ciao,
non riuscivo piu' a connettermi ho scansionato con avast e ho trovato di tutto.adesso sembra a posto ma non ne sono sicuro continua a venirmi fuori una finestra di connessione che non avevo.vi mando il log per sicurezza:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11.38.30, on 03/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Java\jre6\bin\jusched.exe
C:\Programmi\Alwil Software\Avast4\ashDisp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\PC Tools Firewall Plus\FirewallGUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAHE.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Programmi\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Programmi\PC Tools Firewall Plus\FWService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] "C:\Programmi\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [00PCTFW] "C:\Programmi\PC Tools Firewall Plus\FirewallGUI.exe" -s
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [CTSysVol] C:\Programmi\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe /r
O4 - HKCU\..\Run: [EPSON Stylus Photo R240 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAHE.EXE /P30 "EPSON Stylus Photo R240 Series" /M "Stylus Photo R240" /EF "HKCU"
O4 - HKCU\..\Run: [QUAD Windows service] C:\Programmi\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h
O4 - HKCU\..\Run: [QUAD Scheduler] C:\Programmi\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - PC Tools - C:\Programmi\PC Tools Firewall Plus\FWService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 5962 bytes

prova a fare una scansione con malwarebytes, lo scarichi da www.malwarebytes.org, fai la scansione completa e vedi se trova qualcosa.

Ciao.
Scrivi il percorso completo del file che Avast non riesce a eliminare.
E non cliccare su "connetti" in quella finestra che si apre.

Ciao
Purtroppo non posso farti fare una scansione con Combofix, e tu sai perchè.
I file è meglio se li sposti nel Cestino.
Poi, dopo 3-4 giorni, se vedi che non hai nessun problema, li elimini del tutto.
Questa è una precauzione in caso di eliminazione di "falsi positivi".
Se dovesse succedere, dal cestino li puoi ripristinare.

ciao non ho trovato nessun virus ne trojan ho fatto anche una scansione on line il sistema sembra pulito.Il problema e' che sia explorer che firefox mi danno l'errore connessione annullata...ma in effetti la connessione e' attiva perche' scarico tranquillamente tutti i vari aggiornamenti(anche dell'antivirus) non capisco quale possa essere il problema ho pensato subito a un virus(uno e' ancora nel cestino di AVAST) probabilmente qualche errore di configurazione?Ho disinstallato firefox e reinstallato ma e' uguale devo riavviare il pc per navigare in internet e non sempre va'.non so piu' cosa fare...

CIAO,PROPRIO MENTRE DOVEVO CARICARE IL FILE ZIP SYSTEM SCAN NON SI APRIVA LA PAGINA(ERRORE CARICAMENTO PAGINA)VA' BE C'E Lo fatta:http://freefilehosting.net/download/45jaa
UNA DOMANDA:MA NELLE RISORSE DI RETE E' NORMALE AVERE 2 CONNESSIONI?
SPYBOT MI RILEVA 15 MINACCE TUTTE TRA CHIAVI DI REGISTRO E FILE RIGUARDANTI "QUAD REGISTRY CLEANER" non le ho rimosse.

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\kytqgjfh

*******************

Script file located at: \??\C:\Documents and Settings\wdagysfj.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\Documents and Settings\VINCENZO\Dati applicazioni\inst.exe deleted successfully.
Program C:\Documents and Settings\VINCENZO\Desktop\sys72968.exe successfully set up to run once on reboot.

Completed script processing.

*******************

Finished! Terminate.

che fatica per mandarti il log!Ho fatto la scansione con MALWAREBYTES ma non sono riuscito a mandarti il log (CONNESSIONE ANNULATA)non ha trovato niente ma se hai bisogno la rifaccio
Ho disinstallato "QUAD" pazienza ho buttato via i soldi pensi di fare bene a comprare programmi commerciali e invece sono una FREGATURA VA BE'
aspetto tue notizie adesso posso fare le scansioni che mi hai detto
grazie a presto!

non posso postare il log non ha rilevato niente.mi hai detto di spuntare solo C devo estendere la ricerca anche alle partizioni del disco?proviamo combofix? scusa e' mezz'ora che cerco di risponderti la connessione non va'!!!!!!

ComboFix 09-03-04.01 - VINCENZO 2009-03-06 21.42.24.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1040.18.1023.606 [GMT 1:00]
Eseguito da: c:\documents and settings\VINCENZO\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090305-1] *On-access scanning disabled* (Updated)
FW: Outpost Firewall Pro *disabled*
FW: PC Tools Firewall Plus *disabled*
* Creato nuovo punto di ripristino

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\Pncrt.dll

.
((((((((((((((((((((((((( Files Creati Da 2009-02-06 al 2009-03-06 )))))))))))))))))))))))))))))))))))
.

2009-03-06 20:15 . 2009-03-06 20:15 7,168 --a------ c:\windows\system32\drivers\uti0mzu5.sys
2009-03-06 14:47 . 2009-03-06 20:43 2,467,872 --ahs---- c:\windows\system32\drivers\fidbox.dat
2009-03-06 14:47 . 2009-03-06 20:43 32,084 --ahs---- c:\windows\system32\drivers\fidbox.idx
2009-03-05 10:48 . 2009-03-05 10:48 <DIR> d-------- c:\programmi\Lavalys
2009-03-05 00:38 . 2009-03-05 08:28 <DIR> d-------- c:\programmi\Spybot - Search & Destroy
2009-03-03 23:44 . 2009-03-03 23:44 <DIR> d-------- c:\programmi\Xvid
2009-03-03 23:44 . 2008-04-27 10:33 765,952 --a------ c:\windows\system32\xvidcore.dll
2009-03-03 23:44 . 2008-04-27 10:35 180,224 --a------ c:\windows\system32\xvidvfw.dll
2009-03-03 23:44 . 2007-06-28 18:55 77,824 --a------ c:\windows\system32\xvid.ax
2009-03-02 23:43 . 2008-12-11 08:38 159,600 --a------ c:\windows\system32\drivers\pctgntdi.sys
2009-03-02 23:43 . 2009-01-20 14:12 130,928 --a------ c:\windows\system32\drivers\PCTCore.sys
2009-03-02 23:43 . 2008-12-18 12:16 73,840 --a------ c:\windows\system32\drivers\PCTAppEvent.sys
2009-03-02 23:42 . 2009-03-02 23:49 <DIR> d-------- c:\programmi\PC Tools Firewall Plus
2009-03-02 23:42 . 2008-09-22 12:29 97,408 --a------ c:\windows\system32\drivers\pctfw.sys
2009-03-02 23:42 . 2009-01-21 10:38 95,640 --a------ c:\windows\system32\drivers\pctplfw.sys
2009-03-01 22:36 . 2009-03-02 23:05 49 --a------ c:\windows\transp.gif
2009-03-01 22:33 . 2009-03-02 23:05 150 --a------ c:\windows\ODBC.INI
2009-03-01 18:51 . 2009-03-03 23:28 <DIR> d-------- c:\programmi\VSO
2009-03-01 18:51 . 2006-09-29 12:24 217,127 --a------ c:\windows\system32\drv43260.dll
2009-03-01 18:51 . 2006-09-29 12:25 208,935 --a------ c:\windows\system32\drv33260.dll
2009-03-01 18:51 . 2006-09-29 12:26 176,165 --a------ c:\windows\system32\drv23260.dll
2009-03-01 18:51 . 2002-12-10 02:20 102,439 --a------ c:\windows\system32\sipr3260.dll
2009-03-01 18:51 . 2007-03-18 20:37 65,602 --a------ c:\windows\system32\cook3260.dll
2009-03-01 17:51 . 2009-03-01 17:51 <DIR> d-------- c:\programmi\Alwil Software
2009-03-01 15:03 . 2009-03-01 15:03 <DIR> d-------- C:\ProgramData
2009-02-28 16:59 . 2009-02-28 16:59 <DIR> d-------- c:\programmi\Conduit
2009-02-28 14:15 . 2009-02-28 14:15 <DIR> d-------- c:\programmi\uTorrent
2009-02-27 14:40 . 2009-02-27 14:40 <DIR> d-------- c:\programmi\Windows Installer Clean Up
2009-02-27 14:40 . 2009-02-27 14:40 <DIR> d-------- c:\programmi\MSECACHE
2009-02-26 22:04 . 2009-02-26 22:04 <DIR> d-------- c:\documents and settings\VINCENZO\Dati applicazioni\CyberLink
2009-02-26 22:04 . 2009-02-26 22:04 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\CyberLink
2009-02-26 15:34 . 2009-02-26 15:34 <DIR> d--h----- c:\windows\system32\GroupPolicy
2009-02-26 14:21 . 2009-01-09 20:19 1,090,181 -----c--- c:\windows\system32\dllcache\ntprint.cat
2009-02-20 23:56 . 2009-02-20 23:57 <DIR> d-------- C:\Temp
2009-02-20 23:55 . 1998-06-24 00:00 115,016 --a------ c:\windows\system32\MSINET.OCX
2009-02-20 23:55 . 1998-07-22 00:00 102,912 --a------ c:\windows\system32\Vb6stkit.dll
2009-02-20 23:55 . 1998-07-22 00:00 102,160 --a------ c:\windows\system32\VB6KO.DLL
2009-02-20 23:55 . 2006-02-17 14:19 16,384 --a------ c:\windows\system32\lgfwunis.exe
2009-02-20 23:55 . 2009-02-26 22:16 386 --a------ c:\windows\lgfwup.ini
2009-02-20 23:52 . 2005-01-07 17:34 486,766 --a------ c:\windows\CLBUDF.tbl
2009-02-20 23:52 . 2007-06-04 18:25 162,096 --------- c:\windows\system32\drivers\CLBUDF.sys
2009-02-20 23:52 . 2007-06-04 18:24 131,072 --a------ c:\windows\IBUnInst.exe
2009-02-20 23:52 . 2007-06-04 18:25 16,048 --------- c:\windows\system32\drivers\CLBStor.sys
2009-02-20 23:51 . 2009-02-20 23:51 <DIR> d-------- c:\programmi\File comuni\LightScribe
2009-02-20 23:51 . 2002-12-11 20:11 35,680 --a------ c:\windows\system32\WMPrfITA.prx
2009-02-20 23:38 . 2003-06-25 16:05 266,360 --a------ c:\windows\system32\TweakUI.exe
2009-02-20 23:38 . 2002-06-21 15:09 160,217 --a------ c:\windows\system32\PowerToysLicense.rtf
2009-02-20 22:14 . 2009-02-22 23:30 <DIR> d-------- c:\programmi\Feurio
2009-02-19 23:39 . 2002-07-17 09:20 45,056 --a------ c:\windows\system32\WNASPI2K.BAK
2009-02-19 23:39 . 2002-07-17 08:53 16,877 --a------ c:\windows\system32\drivers\ASPI2K.BAK
2009-02-19 23:39 . 2002-07-17 16:22 5,600 --a------ c:\windows\system\WINASPI.BAK
2009-02-19 23:39 . 2002-07-17 16:22 4,672 --a------ c:\windows\system\WOWPOST.BAK
2009-02-19 22:55 . 2009-02-22 23:26 1,180 --a------ c:\windows\cdplayer.ini
2009-02-18 00:07 . 2009-02-18 00:11 <DIR> d-------- c:\documents and settings\VINCENZO\Dati applicazioni\DeepBurner
2009-02-15 23:40 . 2009-02-16 09:45 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\DriverScanner
2009-02-15 23:39 . 2009-02-15 23:48 <DIR> d-------- c:\windows\SxsCaPendDel
2009-02-15 23:38 . 2009-02-15 23:40 <DIR> d--h-c--- c:\documents and settings\All Users\Dati applicazioni\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2009-02-15 23:30 . 2009-02-15 23:30 <DIR> dr-h----- C:\AHCache
2009-02-15 23:16 . 2009-02-16 09:45 <DIR> d-------- c:\documents and settings\VINCENZO\Dati applicazioni\Uniblue
2009-02-15 22:46 . 2002-07-17 09:20 45,056 --a------ c:\windows\system32\WNASPI32.DLL
2009-02-15 22:46 . 2002-07-17 08:53 16,877 --a------ c:\windows\system32\drivers\ASPI32.SYS
2009-02-15 22:46 . 2002-07-17 16:22 5,600 --a------ c:\windows\system\WINASPI.DLL
2009-02-15 22:46 . 2002-07-17 16:22 4,672 --a------ c:\windows\system\WOWPOST.EXE
2009-02-15 16:06 . 2009-02-15 22:19 <DIR> d----c--- c:\documents and settings\All Users\Dati applicazioni\{148D8B8A-8F96-4822-81EC-D510B626B7D5}
2009-02-08 19:25 . 2009-02-08 19:24 410,984 --a------ c:\windows\system32\deploytk.dll
2009-02-08 19:25 . 2009-02-08 19:24 73,728 --a------ c:\windows\system32\javacpl.cpl
2009-02-08 19:24 . 2009-02-08 19:24 <DIR> d-------- c:\programmi\Java
2009-02-07 22:18 . 2009-02-15 22:28 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2009-02-07 22:18 . 2009-02-07 22:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-02-07 22:18 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-07 22:18 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-02-07 00:38 . 2009-02-07 00:38 <DIR> d-------- c:\programmi\Trend Micro

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-06 19:55 --------- d---a-w c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-03-06 12:42 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-03-05 17:02 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Test Drive Unlimited
2009-03-04 23:18 --------- d-----w c:\programmi\Windows Defender
2009-03-03 23:30 --------- d-----w c:\programmi\Mozilla Thunderbird
2009-03-03 22:51 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\uTorrent
2009-03-03 22:29 47,360 ----a-w c:\documents and settings\VINCENZO\Dati applicazioni\pcouffin.sys
2009-03-03 22:29 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\Vso
2009-03-02 23:37 --------- d-----w c:\programmi\Unlocker
2009-03-02 22:43 --------- d-----w c:\programmi\File comuni\PC Tools
2009-03-01 21:31 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\OpenOffice.org2
2009-03-01 16:19 --------- d--h--w c:\programmi\InstallShield Installation Information
2009-02-23 15:18 --------- d-----w c:\programmi\IObit
2009-02-08 18:08 0 ----a-w c:\windows\system32\drivers\6d082a8e.sys
2009-02-02 12:05 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\PC Tools
2009-02-01 22:13 --------- d-----w c:\programmi\File comuni\AVSMedia
2009-02-01 21:54 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\AVS4YOU
2009-02-01 21:54 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\AVS4YOU
2009-01-29 21:18 --------- d-----w c:\documents and settings\NetworkService\Dati applicazioni\PCToolsSpamMonitorPlus
2009-01-29 21:18 --------- d-----w c:\documents and settings\NetworkService\Dati applicazioni\PCToolsFirewallPlus
2009-01-29 16:29 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\Babylon
2009-01-29 16:29 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Babylon
2009-01-26 22:01 --------- d-----w c:\documents and settings\NetworkService\Dati applicazioni\iolo
2009-01-26 21:54 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\iolo
2009-01-26 21:33 --------- d-----w c:\documents and settings\LocalService\Dati applicazioni\iolo
2009-01-26 21:33 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\iolo
2009-01-26 13:57 --------- d-----w c:\programmi\File comuni\Apple
2009-01-26 13:57 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2009-01-25 21:25 --------- d-----w c:\programmi\Infogrames
2009-01-25 20:06 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2009-01-24 21:43 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\MAGIX
2009-01-21 23:00 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\MAGIX
2009-01-21 22:34 20 ---h--w c:\documents and settings\All Users\Dati applicazioni\PKP_DLdw.DAT
2009-01-21 22:31 20 ---h--w c:\documents and settings\All Users\Dati applicazioni\PKP_DLdu.DAT
2009-01-19 22:20 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\Ashampoo
2009-01-19 12:22 --------- d-----w c:\documents and settings\VINCENZO\Dati applicazioni\IObit
2009-01-16 14:27 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Installations
2009-01-16 14:24 --------- d-----w c:\programmi\Nokia
2009-01-16 14:24 --------- d-----w c:\programmi\File comuni\Nokia
2009-01-16 14:19 0 ---ha-w c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2009-01-16 14:19 0 ---ha-w c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2009-01-16 14:13 --------- d-----w c:\programmi\File comuni\PCSuite
2009-01-16 14:12 --------- d-----w c:\programmi\PC Connectivity Solution
2009-01-11 13:37 --------- d-----w c:\programmi\Ubi Soft
2009-01-10 18:15 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\vsosdk
2009-01-06 13:15 --------- d-----w c:\programmi\File comuni\Sonic Shared
2009-01-06 13:13 --------- d-----w c:\programmi\File comuni\Roxio Shared
2008-12-20 22:31 826,368 ----a-w c:\windows\system32\wininet.dll
2008-10-11 19:50 32,768 --sha-w c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\MSHist012008101120081012\index.dat
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"CTSysVol"="c:\programmi\Creative\SB Live! 24-bit\Surround Mixer\CTSysVol.exe" [2003-09-17 57344]
"EPSON Stylus Photo R240 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIAHE.EXE" [2005-04-25 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-02-08 136600]
"avast!"="c:\programmi\Alwil Software\Avast4\ashDisp.exe" [2009-02-05 81000]
"00PCTFW"="c:\programmi\PC Tools Firewall Plus\FirewallGUI.exe" [2009-03-02 2652056]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFileUrl"= 0 (0x0)
"NoUpdateCheck"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.clmp3enc"= c:\progra~1\CyberLink\Power2Go\CLMP3Enc.ACM

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"CTRegRun"=c:\windows\CTRegRun.EXE
"EPSON Stylus Photo R240 Series"=c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIAHE.EXE /P30 "EPSON Stylus Photo R240 Series" /O6 "USB001" /M "Stylus Photo R240"
"UpdReg"=c:\windows\UpdReg.EXE
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"AppleSyncNotifier"=c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
"NeroFilterCheck"=c:\programmi\File comuni\Nero\Lib\NeroCheck.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);c:\windows\system32\drivers\sfsync03.sys [2005-12-06 35328]
R0 xfilt;VIA SATA IDE Hot-plug Driver;c:\windows\system32\drivers\xfilt.sys [2008-09-03 11264]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-03-01 114768]
R1 CLBStor;InstantBurn Storage Helper Driver;c:\windows\system32\drivers\CLBStor.sys [2009-02-20 16048]
R1 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [2009-03-02 159600]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-03-01 20560]
R2 CLBUDF;CyberLink InstantBurn UDF Filesystem;c:\windows\system32\drivers\CLBUDF.sys [2009-02-20 162096]
R2 PCTAppEvent;PCTAppEvent Driver;c:\windows\system32\drivers\PCTAppEvent.sys [2009-03-02 73840]
R2 windefend;Windows Defender;c:\programmi\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R3 pctplfw;pctplfw;c:\windows\system32\drivers\pctplfw.sys [2009-03-02 95640]
S1 6d082a8e;6d082a8e;c:\windows\system32\drivers\6d082a8e.sys [2009-01-29 0]
S1 c2scsi;c2scsi;c:\windows\system32\drivers\c2scsi.sys [2009-01-04 241664]
S2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};{95808DC4-FA4A-4C74-92FE-5B863F82066B}; [x]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2009-01-16 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2009-01-16 8320]
S3 uti0mzu5;AVZ Kernel Driver;c:\windows\system32\drivers\uti0mzu5.sys [2009-03-06 7168]
.
Contenuto della cartella 'Scheduled Tasks'

2009-03-06 c:\windows\Tasks\1-Click Maintenance.job
- c:\programmi\TuneUp Utilities 2008\OneClickStarter.exe []

2009-03-06 c:\windows\Tasks\MP Scheduled Scan.job
- c:\programmi\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]

2009-01-09 c:\windows\Tasks\Schedule Task Weekly.job
- c:\programmi\Registry Easy\RE.exe []

2009-02-22 c:\windows\Tasks\SmartDefrag.job
- c:\programmi\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2009-02-13 18:15]

2009-02-22 c:\windows\Tasks\SmartDefrag.job
- c:\programmi\IObit\IObit SmartDefrag\ [2009-02-21 18:42]

2009-03-06 c:\windows\Tasks\Verifica e correzione automatica.job
- c:\programmi\TuneUp Utilities 2008\OneClickStarter.exe []
.
.
------- Scansione supplementare -------
.
FF - ProfilePath - c:\documents and settings\VINCENZO\Dati applicazioni\Mozilla\Firefox\Profiles\4yzoc5hd.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1701838&SearchSource=3&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1701838&SearchSource=2&q=

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 18
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.notify.interval - 750000
FF - user.js: content.switch.threshold - 750000
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: network.prefetch-next - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - true
.
.
------- Associazioni dei file -------
.
JSEFile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-06 21:43:47
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(944)
c:\windows\system32\Ati2evxx.dll
.
Ora fine scansione: 2009-03-06 21.45.06
ComboFix-quarantined-files.txt 2009-03-06 20:45:04

Pre-Run: 27.045.982.208 byte disponibili
Post-Run: 27,030,679,552 byte disponibili

257 --- E O F --- 2009-03-05 07:42:32


NON E' SERVITO A NIENTE LA CONNESSIONE NON VA' PIU' FA' QUELLO CHE HA VOGLIA...NON MI ARRENDO!COME FACCIO A TOGLIERE QUESTO MALEDETTO VIRUS?

ma non so' piu' cosa pensare,la connessione un momento va' un momento non va',specialmente quando devo ricaricare una pagina web la connesione mi si annulla.Il log di combofix ti sembra pulito?