per ora lascialo stare li'

mi assento per un po' - nel frattempo devi farmi una scansione online con kaspersky

http://www.kaspersky.com/virusscanner


1. Clicca su Kaspersky Online Scanner
2. Clicca su Accept
3. Partirà un Update
4. Vai nella colonna di sinistra dov'è scritto Scan e scegli my computer
5. Al termine della scansione in fondo a destra trovi la voce View Scan Report. Cliccaci sopra e poi clicca su Save "Save Report As" e salvalo sul desktop.

La scansione richiede il java della sun e l'accettazione del controllo activex
Per effettuare la scansione, portati sulla pagina di kaspersky, devi avere solo quella pagina aperta, disattiva il tuo antivirus, lancia la scansione, dopo che avrà caricato tutti i files del database e comincerà a scansionare puoi anche disconnettere il pc da internet e lasciarlo lavorare.

ok mi hai risolto tutto manca solo la modalità provvisoria e se mi dai una pulita al pc poi il resto è tutto risolto anke quello del regedit tutto sei un genio ;) appena finisco la scansione con kaspersky ti posto il report

sisi funziona e ho abilititato manca la modalità provvisoria e una cosa brutta ke ho trovato posto il report di kaspersky:

---

KASPERSKY ONLINE SCANNER 7 REPORT
Tuesday, February 3, 2009
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Monday, February 02, 2009 19:36:36
Records in database: 1738097

---

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - My Computer:
A:\
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
K:\

Scan statistics:
Files scanned: 88219
Threat name: 14
Infected objects: 149
Suspicious objects: 0
Duration of the scan: 01:58:16


File name / Threat name / Threats count
D:\Programmi\MegauploadToolbar\megauploadtoolbar.dll/D:\Programmi\MegauploadToolbar\megauploadtoolbar.dll Infected: not-a-virus:AdWare.Win32.MegaSearch.aj 1
C:\Lanterna\Lantmirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.617 1
C:\Programmi\MiRc InViSiOn\Killer x mirc\GuARDiAN_MOD.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.617 1
C:\Programmi\MiRc InViSiOn\Mirc x fast\Lanterna.Script.fw.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.617 1
C:\Programmi\MiRc InViSiOn\Script 4 mirc\FUSIONSCRIPT.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.621 1
C:\Programmi\MiRc InViSiOn\Script 4 mirc\FUSIONSCRIPT.rar Infected: not-a-virus:RiskTool.Win32.PsKill.q 1
C:\Programmi\MiRc InViSiOn\Script 4 mirc\miracle_1.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.616 1
C:\Programmi\MiRc InViSiOn\Script 4 mirc\¤$ÝVÿÞ€®¤$Ç®ÏÞT¤1.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.616 1
C:\Programmi\Pro_wIRC\Pro_wIRC1[1][1].0fx.rar Infected: not-a-virus:Client-IRC.Win32.mIRC.616 1
C:\Programmi\X risolvere windows copia nn autentica\per risolvere windows copia non autentica.rar Infected: not-a-virus:PSWTool.Win32.RAS.g 1
C:\Programmi\X risolvere windows copia nn autentica\per risolvere windows copia non autentica.rar Infected: not-a-virus:PSWTool.Win32.RAS.a 1
C:\RECYCLER\S-1-5-21-790525478-484763869-682003330-1006\Dd2\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.616 1
D:\Documents and Settings\Joe\Incomplete\T-3877629-j ax limonare al multisala - greatest hits.mp3 Infected: Trojan-Downloader.WMA.GetCodec.n 1
D:\Documents and Settings\Joe\Incomplete\T-4542054-j ax limonare al multisala MTV.mp3 Infected: Trojan-Downloader.WMA.GetCodec.f 1
D:\Programmi\MegauploadToolbar\megauploadtoolbar.dll Infected: not-a-virus:AdWare.Win32.MegaSearch.aj 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\drivers\downld\1195890.exe.vir Infected: Email-Worm.Win32.Bagle.majc 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\drivers\downld\959859.exe.vir Infected: Email-Worm.Win32.Bagle.of 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\drivers\winupgro.exe.vir Infected: Trojan-Downloader.Win32.Bagle.ana 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\drivers\_wfsintwq_.sys.zip Infected: Trojan-Downloader.Win32.Bagle.amj 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\data.oct.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\flec006.exe.vir Infected: Email-Worm.Win32.Bagle.of 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\.Winrar.v3.42.Tr.Nod32.v2.12.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\190-531 - Administering Lotus QuickPlace 3 Practice Exam Questions 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ABest MOV Video Converter 6.17.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Abscissa.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Acids & Bases - The Ritzytown Water Proj 2.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ActivityRecording 1.9.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Adblock Filterset.G Updater 0.3.1.3.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Advanced Bookmark Search 0.3.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\AIM2Fone 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\All Recorder 3.3.5.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Allok MPEG4 Converter 5.1.0925.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\America 2.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\AnimeVision 0.6.5 buid 1820.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\APP.ITA.-.Panda.Platinum.Internet.Security.2006.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Auto Web View Screensaver 4.00.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Avira Premium Security Suite 8.2.0.251.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Barcode ActiveX Control 4.7.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Baseball Statistic Calculator 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\BatchCCEWS 0.9.1.6 Final.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\BBC Asian Network Radio 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Big Stretch 0.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Bitdefender.Professional.Plus.v8.0.Crack.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Camping Memories Screen Saver Collection 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Car Book Plus 5.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\CatalogBlog 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Categorizing Data for Excel 2.3.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Classroom Timer 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Clipboard Assistant 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Complimentary $100 Seafood Dinner 1.12.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Cookie Crumble 1.0.2510.42108.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Cranberry Gin 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Cute Password Manager 2008 1.3.9.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\CXY 2.1.40.77.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Daniusoft DVD to 3GP Converter 1.3.29.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\DatabaseToDoc 2.4.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Dead Pixel Tester 2.30.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Drive Doppler 1.31.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Easymenu 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\eduCam! 1.9.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Emsa Web monitor 1.0.21.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Ewisoft Template Builder 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Exif Date Changer 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\EyeDefender 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Fast smarty harvester 1.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\File Assembler 1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\File Identifier 1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\FileWatcher 2.5.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Flexsite 2.8e.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Flickr Photo Search 1.01.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Flower Tower 3D Nokia n73 240x320.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\foo dsp continuator 0.5.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\FRAMER 3.3.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\GMT Clock 1.31.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Great Stella 4.1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Groovy backgrounds 12.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\HtmlTree Plug-in 1.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\IdeaSling RSS Reader 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\IET Discover Plugin (Firefox Edition) 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Inno7zip 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\inSpeak Communicator 4.2.0 Build 477.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Intelliscore Polyphonic WAV to MIDI Converter 7.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\iPod Access Photo 1.6.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ItelPop 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Jaguar XK120 Screensaver 1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\JPEE Email Utility Lite 5.3.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Kernel Palm PDB 4.03.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Ligos Indeo Codec 5.11.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ListRenamer 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\localTrezor 1.0.8.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Maid Of The Wave Theme.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\McAfee.SpamKiller.v4.0.47.1.Retail-ACME.ShareReactor.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\McAfee.Spamkiller.v7.0.14.Retail-ZWT.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Mighty Ticker 1.1.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Millionaire 1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\MMup 1.0.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Mortgages+ 1.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\NOD32_Antivirus_System_v2.70.23_Full.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\OakDoc PS to PDF Converter Command Line 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\OggCarton for Linux 1.0 Beta.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Page Popup Maker 2.1.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\PaintingAll Paul Cezanne Screensaver 1.1.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Palm Coast Screensaver 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\PDFsearcher 1.1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Pepinator Vocabulary Trainer 1.0.8.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Perfgraph 2.0.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Photo Slideshow Builder 3.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Picture Magnifier 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\PictureGirdle 2.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Plato DVD iPod Ripper 7.85.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ProcessActivityView 1.05.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Project64 1.6.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Qlick 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Quick Macros 2.2.1.3 Beta.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ReSieve 2.0.37.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Rotate Image 0.1.3.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ShopWiki Form Filler Assistant 1.20.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Siemens Mobile Control 2.2.8.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\SimVector 4.22 Build 422001.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\SizeFixer SRL 1.2.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\spider-man_3_s60v2_multilang_gioco_giochi_Java_Nokia_6600_7610_6630_3650_3660_66803_.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\SQL Assistant 1.0.70.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Stock Photo Assistant 1.3.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Stormpay Shopping Cart 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Sundi 1.060.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Symantec.Norton.Personal.Firewall.2005.Full.(Spanish-Español).Keygen.By.Charly-Team.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Systerac XP Tools 4.02.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Tasks Reminder 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\The Easy Bee 3.1.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Tinnes Desktop Calendar 0.42b.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Traditional Chinese ClearType Fonts.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Troi Activator Plug-in 2.0.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\TwinSeek 1.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Ultra trigger FX Pro 1.000.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\URL Suffix 0.3.3.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\UseBestMail Personal Edition 1.0.1.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Visendo popConnect 6.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Voxelsoft HIDE 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Voxengo LF-Punch 1.4.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\WIDI Recognition System Professional 3.3.2 Build 588.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\Wikipedia Lookup Extension 0.3.1.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\YahooTaster 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ZakatCalculater 1.0.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\ZipTools 1.2.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\[HGame_XP][AVG][jpn_jpn][いたいけな彼女][Game.Disc].zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Documents and Settings\Joe\Dati applicazioni\m\shared\[Mcafee.VirusScan.Plus.2007.简体中文版].mcafee2007.zip.vir Infected: Packed.Win32.Black.a 1
D:\Qoobox\Quarantine\D\Programmi\MSN Messenger\msnmsgr.exe.vir Infected: Trojan-Downloader.Win32.Bagle.ana 1
D:\Qoobox\Quarantine\D\WINDOWS\system32\mdelk.exe.vir Infected: Email-Worm.Win32.Bagle.of 1
D:\Qoobox\Quarantine\D\WINDOWS\system32\wintems.exe.vir Infected: Email-Worm.Win32.Bagle.of 1

The selected area was scanned.

aiuto sn tanti....

Mi puoi fare un'ultimo favore?? puoi pulirmi il log di hijackthis??

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12.23.48, on 03/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20935)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
D:\Programmi\Alwil Software\Avast4\ashServ.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Programmi\Bonjour\mDNSResponder.exe
D:\Programmi\Java\jre6\bin\jqs.exe
D:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
D:\Programmi\System Protect\SysProtect_srv.exe
D:\WINDOWS\system32\svchost.exe
D:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
D:\Programmi\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\Explorer.EXE
D:\Programmi\Conexant\AccessRunner ADSL\CnxDslTb.exe
D:\Programmi\System Protect\SysProtect_Tray.exe
D:\Programmi\Java\jre6\bin\jusched.exe
D:\Programmi\Search Settings\SearchSettings.exe
D:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe
D:\Programmi\IObit\Advanced SystemCare 3\AWC.exe
D:\Programmi\Messenger\msmsgs.exe
D:\Programmi\MSN Messenger\msnmsgr.exe
D:\Programmi\MSN Messenger\usnsvc.exe
D:\Programmi\Internet Explorer\IEXPLORE.EXE
D:\Programmi\Internet Explorer\IEXPLORE.EXE
D:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - D:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programmi\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\Programmi\MegauploadToolbar\megauploadtoolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - D:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - D:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - D:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\Programmi\MegauploadToolbar\megauploadtoolbar.dll
O4 - HKLM\..\Run: [CnxDslTaskBar] "D:\Programmi\Conexant\AccessRunner ADSL\CnxDslTb.exe"
O4 - HKLM\..\Run: [SystemProtect] D:\Programmi\System Protect\SysProtect_Tray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [MediaFace Integration] D:\Programmi\Fellowes\MediaFACE 4.2\SetHook.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SearchSettings] D:\Programmi\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SmartRAM] "D:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [Advanced SystemCare 3] "D:\Programmi\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [EPSON Stylus DX6000 Series] D:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "D:\WINDOWS\TEMP\E_S11C.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [MSMSGS] "D:\Programmi\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "D:\Programmi\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - D:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - D:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6F08C96B-9712-40B5-B841-CB3E17E8B190}: NameServer = 193.70.152.15 193.70.152.25
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programmi\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - D:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - D:\Programmi\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - D:\Programmi\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - D:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - D:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - D:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: System Protect Deletion Prevention Service (SP_Service) - Xacti Corporation - D:\Programmi\System Protect\SysProtect_srv.exe
O23 - Service: Virit eXplorer Lite (viritsvclite) - TG Soft Sas www.tgsoft.it - D:\PROGRAMMI\VEXPLITE\viritsvc.exe

--
End of file - 8668 bytes

grazie mille di tutto sei un genio ;)

ti ricordo che devi prima finire la scansi one con bitdefender e togliere quello che trova

per la provvisoria, vediamo se findy te la ripristina

disattiva il tuo antivirus e lancia ► http://www.4shared.com/file/75022994/b07bff/FindyKill.html


Doppio click sull'icona Findykill per avviare l'installazione:
Inserisci la prima spunta per accettare la licenza e prosegui > Suivant
Clicca su "Si" per destinare una cartella al programma
Clicca su Dèmarrer > Quitter per terminare l'installazione.
Cerca l'icona del programma sul desktop o in programmi ed eseguilo
Dovrai usare prima il tasto 1 (invio) per la ricerca e successivamente il tanto 2 (invio) per la pulizia.
Il report delle operazioni effettuate lo trovarai in C:\FindyKill.txt
Allega il rapporto nella tua risposta.

funziona la provvisoria?

sodomino non capisco il tuo intervento

la discussione e' di smokerjoe - e' da lui che aspetto una risposta