.
.
.
Questo intervento è stato cancellato dal Webmaster
in quanto non conforme alle regole del forum.
Clicca qui per leggere le regole di questo forum
.
.
.

---

eccolo qua: in formato.txt


ComboFix 10-09-25.07 - Utente 26/09/2010 17.45.29.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.2047.1453 [GMT 2:00]
Eseguito da: c:\documents and settings\Utente\Documenti\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\InfoSat.txt
c:\programmi\pdfforge Toolbar\IE\1.1.2\pdFForgetoolbarie.dll
c:\programmi\pdfforge Toolbar\SearchSettings.dll

.
((((((((((((((((((((((((( Files Creati Da 2010-08-26 al 2010-09-26 )))))))))))))))))))))))))))))))))))
.

2010-09-24 16:40 . 2010-09-24 16:41 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Temp
2010-09-24 16:40 . 2010-09-24 16:41 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google
2010-09-24 16:40 . 2010-09-24 16:40 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Deployment
2010-09-23 18:17 . 2010-09-23 18:17 4093792 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgui.exe
2010-09-23 18:17 . 2010-09-23 18:17 3586912 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\setup.exe
2010-09-23 18:17 . 2010-09-23 18:17 620896 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgnsx.exe
2010-09-23 18:17 . 2010-09-23 18:17 1615200 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgssie.dll
2010-09-23 18:16 . 2010-09-23 18:16 1373536 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgssff.dll
2010-09-23 18:16 . 2010-09-23 18:16 1107296 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgxpl.dll
2010-09-23 18:16 . 2010-09-23 18:16 942432 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgcfgx.dll
2010-09-23 18:16 . 2010-09-23 18:16 598368 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgsrmx.dll
2010-09-23 18:16 . 2010-09-23 18:16 4368224 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgcorex.dll
2010-09-23 18:16 . 2010-09-23 18:16 300896 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgchclx.dll
2010-09-23 18:15 . 2010-09-23 18:15 1690952 ----a-w- c:\documents and settings\All Users\Dati applicazioni\avg9\update\backup\avgupd.dll
2010-09-20 13:52 . 2010-09-20 13:52 -------- d-----w- c:\programmi\File comuni\Java
2010-09-20 13:52 . 2010-09-20 13:52 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-09-19 07:02 . 2010-09-19 07:02 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Malwarebytes
2010-09-19 07:02 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-09-19 07:02 . 2010-09-19 07:02 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2010-09-19 07:02 . 2010-09-19 07:02 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2010-09-19 07:02 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-09-19 02:20 . 2010-09-19 02:20 -------- d-----w- C:\$AVG
2010-09-19 01:36 . 2010-09-19 01:36 12536 ----a-w- c:\windows\system32\avgrsstx.dll
2010-09-19 01:36 . 2010-09-19 01:36 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-09-19 01:36 . 2010-09-19 01:36 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-09-19 01:36 . 2010-09-19 01:36 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-09-19 01:36 . 2010-09-26 08:10 -------- d-----w- c:\windows\system32\drivers\Avg
2010-09-19 01:35 . 2010-09-19 07:20 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\avg9
2010-09-19 01:35 . 2010-09-19 01:35 -------- d-----w- c:\programmi\AVG
2010-09-18 12:33 . 2010-09-18 12:33 -------- d-----w- c:\documents and settings\LocalService\Dati applicazioni\McAfee
2010-09-17 11:57 . 2010-09-17 11:57 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\McAfee
2010-08-31 15:35 . 2010-08-31 15:35 -------- d-----w- c:\programmi\QuickTime
2010-08-31 15:35 . 2010-08-31 15:35 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2010-08-31 15:34 . 2010-08-31 15:34 -------- d-----w- c:\programmi\File comuni\Apple
2010-08-31 15:34 . 2010-08-31 15:34 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Apple
2010-08-31 15:34 . 2010-08-31 15:34 -------- d-----w- c:\programmi\Apple Software Update
2010-08-31 15:34 . 2010-08-31 15:34 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple
2010-08-31 15:33 . 2010-08-31 15:33 -------- d-----w- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Apple Computer

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-26 15:48 . 2009-09-12 09:13 -------- d-----w- c:\programmi\pdfforge Toolbar
2010-09-22 12:08 . 2009-09-20 10:09 -------- d-----w- c:\programmi\Dl_cats
2010-09-16 20:45 . 2009-10-07 19:05 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Skype
2010-09-16 20:42 . 2009-10-07 19:09 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\skypePM
2010-08-05 13:32 . 2010-08-05 13:32 503808 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-3de9c604-n\msvcp71.dll
2010-08-05 13:32 . 2010-08-05 13:32 499712 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-3de9c604-n\jmc.dll
2010-08-05 13:32 . 2010-08-05 13:32 348160 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-3de9c604-n\msvcr71.dll
2010-08-05 13:32 . 2010-08-05 13:32 61440 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-6c4b8b32-n\decora-sse.dll
2010-08-05 13:32 . 2010-08-05 13:32 12800 ----a-w- c:\documents and settings\Utente\Dati applicazioni\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-6c4b8b32-n\decora-d3d.dll
2010-06-29 22:01 . 2010-06-29 22:01 387445 ----a-w- c:\documents and settings\All Users\SPLA1.tmp
.

------- Sigcheck -------

[-] 2007-10-29 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
[-] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\atapi.sys
[-] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\drivers\atapi.sys

[-] 2007-10-29 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\asyncmac.sys
[-] 2007-10-29 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2007-10-29 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2007-10-29 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

[-] 2007-10-29 . E883AE6EA0B313E659225AA32E449CE9 . 25088 . . [5.1.2600.2180] . . c:\windows\system32\drivers\kbdclass.sys

[-] 2007-10-29 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ndis.sys
[-] 2007-10-29 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ndis.sys

[-] 2007-10-29 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ntfs.sys
[-] 2007-10-29 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ntfs.sys

[-] 2007-10-29 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2007-10-29 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

[-] 2007-10-29 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2007-10-29 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\system32\drivers\tcpip.sys

[-] 2007-10-29 . 72FBF0322BE8A0F25AE722FDE36AB1E6 . 77312 . . [5.1.2600.2180] . . c:\windows\system32\browser.dll
[-] 2007-10-29 . 72FBF0322BE8A0F25AE722FDE36AB1E6 . 77312 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\browser.dll

[-] 2007-10-29 . 0815E8DA286775FA432C7C9EE5E10BA1 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\lsass.exe
[-] 2007-10-29 . 0815E8DA286775FA432C7C9EE5E10BA1 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\lsass.exe

[-] 2007-10-29 . 4AD6F202266A25BC0CC1DCE2A3D91563 . 198144 . . [5.1.2600.2180] . . c:\windows\system32\netman.dll
[-] 2007-10-29 . 4AD6F202266A25BC0CC1DCE2A3D91563 . 198144 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\netman.dll

[-] 2007-10-29 . 04E8321935AD5643FF59901F3EF5F4F3 . 382464 . . [6.6.2600.2180] . . c:\windows\system32\qmgr.dll
[-] 2007-10-29 . 04E8321935AD5643FF59901F3EF5F4F3 . 382464 . . [6.6.2600.2180] . . c:\windows\system32\dllcache\qmgr.dll

[-] 2007-10-29 . 0C015AB735A4624C44CB5696E9208C4C . 395776 . . [5.1.2600.2180] . . c:\windows\system32\rpcss.dll
[-] 2007-10-29 . 0C015AB735A4624C44CB5696E9208C4C . 395776 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\rpcss.dll

[-] 2007-10-29 . E77F6FA2A15390F1727F4C1C55B69DA6 . 108544 . . [5.1.2600.2180] . . c:\windows\system32\services.exe
[-] 2007-10-29 . E77F6FA2A15390F1727F4C1C55B69DA6 . 108544 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\services.exe

[-] 2007-10-29 . 216F8454A9415DD3E451B169DC3121C4 . 57856 . . [5.1.2600.2180] . . c:\windows\system32\spoolsv.exe
[-] 2007-10-29 . 216F8454A9415DD3E451B169DC3121C4 . 57856 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\spoolsv.exe

[-] 2007-10-29 12:00 . 20BAE2D3C95E8E68BBB32D598420F4FA . 509440 . . [5.1.2600.3160 built by: xpsp_sp2_qfe(pavang)] . . c:\windows\system32\winlogon.exe
[-] 2007-10-29 12:00 . 20BAE2D3C95E8E68BBB32D598420F4FA . 509440 . . [5.1.2600.3160 built by: xpsp_sp2_qfe(pavang)] . . c:\windows\system32\dllcache\winlogon.exe

[-] 2007-10-29 . 197FB5735293C1DE647B02BBD8121A9F . 111616 . . [5.4.3790.2180] . . c:\windows\system32\wuauclt.exe
[-] 2007-10-29 . 197FB5735293C1DE647B02BBD8121A9F . 111616 . . [5.4.3790.2180] . . c:\windows\system32\dllcache\wuauclt.exe

[-] 2007-10-29 . 0FE5F5912C30795C455A9645970E6C7C . 611328 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2007-10-29 . 0FE5F5912C30795C455A9645970E6C7C . 611328 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll

[-] 2007-10-29 . E0CC838265401128097D182FB583889A . 60416 . . [5.1.2600.2180] . . c:\windows\system32\cryptsvc.dll
[-] 2007-10-29 . E0CC838265401128097D182FB583889A . 60416 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\cryptsvc.dll

[-] 2007-10-29 12:00 . 16A4DE76313DD3ABF7635565BAAF1512 . 243200 . . [2001.12.4414.258] . . c:\windows\system32\es.dll
[-] 2007-10-29 12:00 . 16A4DE76313DD3ABF7635565BAAF1512 . 243200 . . [2001.12.4414.258] . . c:\windows\system32\dllcache\es.dll

[-] 2007-10-29 . CA38A6091ECAC2668EC99AFD4B6C0615 . 110080 . . [5.1.2600.2180] . . c:\windows\system32\imm32.dll
[-] 2007-10-29 . CA38A6091ECAC2668EC99AFD4B6C0615 . 110080 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\imm32.dll

[-] 2007-10-29 . FEB3CC200749FF119BB8B08224A1A594 . 1027584 . . [5.1.2600.2180] . . c:\windows\system32\kernel32.dll
[-] 2007-10-29 . FEB3CC200749FF119BB8B08224A1A594 . 1027584 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\kernel32.dll

[-] 2007-10-29 . AED27A44228C3B2D24406A2755133922 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\linkinfo.dll
[-] 2007-10-29 . AED27A44228C3B2D24406A2755133922 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\linkinfo.dll

[-] 2007-10-29 . 54260506F6A2589DCF5722E32BDC7CB6 . 22016 . . [5.1.2600.2180] . . c:\windows\system32\lpk.dll
[-] 2007-10-29 . 54260506F6A2589DCF5722E32BDC7CB6 . 22016 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\lpk.dll

[-] 2007-10-29 . AE8C1E1E7B979D4346E754A25A31DC3C . 3070464 . . [6.00.2900.2853] . . c:\windows\system32\mshtml.dll
[-] 2007-10-29 . AE8C1E1E7B979D4346E754A25A31DC3C . 3070464 . . [6.00.2900.2853] . . c:\windows\system32\dllcache\mshtml.dll
[-] 2006-02-20 . 94CFA560D9EEAA14E4CB9AC88DCFB2F6 . 3073024 . . [6.00.2900.2853] . . c:\windows\$hf_mig$\KB911164\SP2QFE\mshtml.dll

[-] 2007-10-29 . 9E6CB81BE111B9935F6A97C367CABD4E . 343040 . . [7.0.2600.2180] . . c:\windows\system32\msvcrt.dll
[-] 2007-10-29 . 9E6CB81BE111B9935F6A97C367CABD4E . 343040 . . [7.0.2600.2180] . . c:\windows\system32\dllcache\msvcrt.dll

[-] 2007-10-29 . 337CB52AF1F7CF6C0F57EC8BD14DC6D1 . 247296 . . [5.1.2600.2180] . . c:\windows\system32\mswsock.dll
[-] 2007-10-29 . 337CB52AF1F7CF6C0F57EC8BD14DC6D1 . 247296 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\mswsock.dll

[-] 2007-10-29 . 926BB51BB6DE79DEDB93E9C2B0811CCF . 407040 . . [5.1.2600.2180] . . c:\windows\system32\netlogon.dll
[-] 2007-10-29 . 926BB51BB6DE79DEDB93E9C2B0811CCF . 407040 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\netlogon.dll

[-] 2007-10-29 . 8AB08C18BED548F7A534E9650911F660 . 2151936 . . [5.1.2600.2180] . . c:\windows\system32\ntoskrnl.exe

[-] 2007-10-29 . 41FF9D663219A1DD0397FE2C5B09436C . 17408 . . [6.00.2900.2180] . . c:\windows\system32\powrprof.dll
[-] 2007-10-29 . 41FF9D663219A1DD0397FE2C5B09436C . 17408 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\powrprof.dll

[-] 2007-10-29 . 1446EB71ADF0F54980CDD7E5A812E102 . 186880 . . [5.1.2600.2180] . . c:\windows\system32\scecli.dll
[-] 2007-10-29 . 1446EB71ADF0F54980CDD7E5A812E102 . 186880 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\scecli.dll

[-] 2007-10-29 . E6F026DBC75B6EED7331EBF581AFD4D8 . 5120 . . [5.1.2600.2180] . . c:\windows\system32\sfc.dll
[-] 2007-10-29 . E6F026DBC75B6EED7331EBF581AFD4D8 . 5120 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\sfc.dll

[-] 2007-10-29 . 73955B04F209D8A1C633867841267A96 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\svchost.exe
[-] 2007-10-29 . 73955B04F209D8A1C633867841267A96 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\svchost.exe

[-] 2007-10-29 . 2F8CBA2D2A332EB5D2A7DC084E3B30B3 . 246272 . . [5.1.2600.2180] . . c:\windows\system32\tapisrv.dll
[-] 2007-10-29 . 2F8CBA2D2A332EB5D2A7DC084E3B30B3 . 246272 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\tapisrv.dll

[-] 2007-10-29 . 08447BDFCE5D1B1956F962602381F5C1 . 578048 . . [5.1.2600.2180] . . c:\windows\system32\user32.dll
[-] 2007-10-29 . 08447BDFCE5D1B1956F962602381F5C1 . 578048 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\user32.dll

[-] 2007-10-29 . C1E7FE19F98A877BF8F941BF48148695 . 25088 . . [5.1.2600.2180] . . c:\windows\system32\userinit.exe
[-] 2007-10-29 . C1E7FE19F98A877BF8F941BF48148695 . 25088 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\userinit.exe

[-] 2007-10-29 . 27966534A0820CD3BD988BD1517C8FF2 . 658944 . . [6.00.2900.2180] . . c:\windows\system32\wininet.dll
[-] 2007-10-29 . 27966534A0820CD3BD988BD1517C8FF2 . 658944 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\wininet.dll

[-] 2007-10-29 . 12EAD983C875ED9BCC8B90E3F77F2E4A . 82944 . . [5.1.2600.2180] . . c:\windows\system32\ws2_32.dll
[-] 2007-10-29 . 12EAD983C875ED9BCC8B90E3F77F2E4A . 82944 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ws2_32.dll

[-] 2007-10-29 . 0C1F495C1761C126BC820F4DE4C8B967 . 19968 . . [5.1.2600.2180] . . c:\windows\system32\ws2help.dll
[-] 2007-10-29 . 0C1F495C1761C126BC820F4DE4C8B967 . 19968 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ws2help.dll

[-] 2007-10-29 . 178D42BD8FC34A9837417A6CE1D6BB7B . 1034752 . . [6.00.2900.2180] . . c:\windows\explorer.exe
[-] 2007-10-29 . 178D42BD8FC34A9837417A6CE1D6BB7B . 1034752 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\explorer.exe

[-] 2007-10-29 . 66364440C71911D07468F3791206FB87 . 1281024 . . [5.1.2600.2180] . . c:\windows\system32\ole32.dll
[-] 2007-10-29 . 66364440C71911D07468F3791206FB87 . 1281024 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ole32.dll

[-] 2007-10-29 . BA4E8AC9A60C4527C969D08F3ABE9D36 . 171008 . . [5.1.2600.2180] . . c:\windows\system32\srsvc.dll
[-] 2007-10-29 . BA4E8AC9A60C4527C969D08F3ABE9D36 . 171008 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\srsvc.dll

[-] 2007-10-29 . A49C11376727F7ADC7E206E4C89B24E1 . 13824 . . [5.1.2600.2180] . . c:\windows\system32\wscntfy.exe
[-] 2007-10-29 . A49C11376727F7ADC7E206E4C89B24E1 . 13824 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\wscntfy.exe

[-] 2007-10-29 . 3208BAD59EFA3F4FCCCFBF1317F2A1C1 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\xmlprov.dll
[-] 2007-10-29 . 3208BAD59EFA3F4FCCCFBF1317F2A1C1 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\xmlprov.dll

[-] 2007-10-29 . D1CAA255F33C06C8302769A86FFB905E . 55808 . . [5.1.2600.2180] . . c:\windows\system32\eventlog.dll
[-] 2007-10-29 . D1CAA255F33C06C8302769A86FFB905E . 55808 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\eventlog.dll

[-] 2007-10-29 . AE360320E4143315BFEF9DE2E403F808 . 1546752 . . [5.1.2600.3186] . . c:\windows\system32\sfcfiles.dll
[-] 2007-10-29 . AE360320E4143315BFEF9DE2E403F808 . 1546752 . . [5.1.2600.3186] . . c:\windows\system32\dllcache\sfcfiles.dll

[-] 2007-10-29 . 5B33B4265966EE063C7FBEA28958D9C2 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\ctfmon.exe
[-] 2007-10-29 . 5B33B4265966EE063C7FBEA28958D9C2 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ctfmon.exe

[-] 2007-10-29 . 500E8EF27757B1C463A4A263ED2C95D2 . 134656 . . [6.00.2900.2180] . . c:\windows\system32\shsvcs.dll
[-] 2007-10-29 . 500E8EF27757B1C463A4A263ED2C95D2 . 134656 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\shsvcs.dll

[-] 2007-10-29 . 78FBE7DA29307EDE7ED0E33F1C4969BC . 59904 . . [5.1.2600.2180] . . c:\windows\system32\regsvc.dll
[-] 2007-10-29 . 78FBE7DA29307EDE7ED0E33F1C4969BC . 59904 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\regsvc.dll

[-] 2007-10-29 . 546254D4769E165CDC3388D74B201FCB . 193024 . . [5.1.2600.2180] . . c:\windows\system32\schedsvc.dll
[-] 2007-10-29 . 546254D4769E165CDC3388D74B201FCB . 193024 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\schedsvc.dll

[-] 2007-10-29 . 1FBF38A525EEDD7402BFA7E27236A64F . 71680 . . [5.1.2600.2180] . . c:\windows\system32\ssdpsrv.dll
[-] 2007-10-29 . 1FBF38A525EEDD7402BFA7E27236A64F . 71680 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ssdpsrv.dll

[-] 2007-10-29 . C06CD1890279603E15020757E02DE56B . 296960 . . [5.1.2600.2180] . . c:\windows\system32\termsrv.dll
[-] 2007-10-29 . C06CD1890279603E15020757E02DE56B . 296960 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\termsrv.dll

[-] 2007-10-29 . 00E50CD4D9247CB56EFC1360C32AB755 . 175104 . . [5.1.2600.2180] . . c:\windows\system32\appmgmts.dll
[-] 2007-10-29 . 00E50CD4D9247CB56EFC1360C32AB755 . 175104 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\appmgmts.dll

[-] 2007-10-29 . 49AC5CD87FBDDA62F3E25190019E7627 . 12160 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

[-] 2004-08-03 20:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\system32\dllcache\aec.sys
[-] 2004-08-03 20:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\system32\drivers\aec.sys

[-] 2007-10-29 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ip6fw.sys
[-] 2007-10-29 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2007-10-29 12:00 . 907601D4078A5526CDA46536A4288E44 . 924432 . . [4.1.6140] . . c:\windows\system32\mfc40u.dll
[-] 2007-10-29 12:00 . 907601D4078A5526CDA46536A4288E44 . 924432 . . [4.1.6140] . . c:\windows\system32\dllcache\mfc40u.dll

[-] 2007-10-29 . 3777AB9537D05BFD404B0FBC13A140A6 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\msgsvc.dll
[-] 2007-10-29 . 3777AB9537D05BFD404B0FBC13A140A6 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\msgsvc.dll

[-] 2007-10-29 12:00 . 68B975F737FA8F063F4036F9F8432F0A . 52736 . . [9.0.1.56] . . c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSNSv.dll
[-] 2006-10-18 19:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\mspmsnsv.dll
[-] 2006-10-18 19:47 . C51B4A5C05A5475708E3C81C7765B71D . 27136 . . [11.0.5721.5145] . . c:\windows\system32\dllcache\mspmsnsv.dll
[-] 2004-08-10 23:45 . A477391B7A8B0A0DAABADB17CF533A4B . 25088 . . [10.0.3790.3646] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll
[-] 2004-08-10 23:45 . A477391B7A8B0A0DAABADB17CF533A4B . 25088 . . [10.0.3790.3646] . . c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSNSv.dll

[-] 2007-10-29 . 4B42A1C0085CE18E4BE81A25A3D1C9CF . 2018816 . . [5.1.2600.2180] . . c:\windows\system32\ntkrnlpa.exe

[-] 2007-10-29 12:00 . 6D96A941EED90224486F9AF30B9666E1 . 437248 . . [5.1.2400.2180] . . c:\windows\system32\ntmssvc.dll
[-] 2007-10-29 12:00 . 6D96A941EED90224486F9AF30B9666E1 . 437248 . . [5.1.2400.2180] . . c:\windows\system32\dllcache\ntmssvc.dll

[-] 2007-10-29 . 55D9782BFE8C70B70E892E51566BF7D4 . 185344 . . [5.1.2600.2180] . . c:\windows\system32\upnphost.dll
[-] 2007-10-29 . 55D9782BFE8C70B70E892E51566BF7D4 . 185344 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\upnphost.dll

[-] 2007-10-29 . E99A5DF2A937580361D6C698E4620DBA . 367616 . . [5.3.2600.2180] . . c:\windows\system32\dsound.dll
[-] 2007-10-29 . E99A5DF2A937580361D6C698E4620DBA . 367616 . . [5.3.2600.2180] . . c:\windows\system32\dllcache\dsound.dll

[-] 2007-10-29 . CC954D05B696D408EA1A962651FC6F83 . 1689088 . . [5.03.2600.2180] . . c:\windows\system32\d3d9.dll
[-] 2007-10-29 . CC954D05B696D408EA1A962651FC6F83 . 1689088 . . [5.03.2600.2180] . . c:\windows\system32\dllcache\d3d9.dll

[-] 2007-10-29 . 613E66ACE3FAE6523E6F1A0183AF7F2D . 266240 . . [5.03.2600.2180] . . c:\windows\system32\ddraw.dll
[-] 2007-10-29 . 613E66ACE3FAE6523E6F1A0183AF7F2D . 266240 . . [5.03.2600.2180] . . c:\windows\system32\dllcache\ddraw.dll

[-] 2007-10-29 12:00 . CB6B225CC6C85CDA0430EF12441EA5B6 . 83456 . . [5.1.2600.2180] . . c:\windows\system32\olepro32.dll
[-] 2007-10-29 12:00 . CB6B225CC6C85CDA0430EF12441EA5B6 . 83456 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\olepro32.dll

[-] 2007-10-29 . 8058A9383E61C45D25B93B26605F2A80 . 40960 . . [5.1.2600.2180] . . c:\windows\system32\perfctrs.dll
[-] 2007-10-29 . 8058A9383E61C45D25B93B26605F2A80 . 40960 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\perfctrs.dll

[-] 2007-10-29 . 9B5A59851D9A237C86210E07E2195A12 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\version.dll
[-] 2007-10-29 . 9B5A59851D9A237C86210E07E2195A12 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\version.dll

[-] 2007-10-29 . C49ED6E4358FFAECFE70FC8F3C67D224 . 93184 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\iexplore.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\programmi\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Google Update"="c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" [2010-09-24 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-05-18 16207872]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"InCD"="c:\programmi\Nero\Nero 7\InCD\InCD.exe" [2006-07-25 1043968]
"StartCCC"="c:\programmi\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-21 61440]
"Motive SmartBridge"="c:\progra~1\ALICET~1\SMARTB~1\MotiveSB.exe" [2006-04-21 438359]
"SSBkgdUpdate"="c:\programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-09-28 185896]
"OpwareSE4"="c:\programmi\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"dlcgmon.exe"="c:\programmi\Dell AIO 810\dlcgmon.exe" [2007-01-12 431600]
"FaxCenterServer"="c:\programmi\Dell Fax Solutions\fm3032.exe" [2006-12-08 312200]
"BigDogPath"="c:\windows\VM_STI.EXE" [2005-02-28 53248]
"SearchSettings"="c:\programmi\pdfforge Toolbar\SearchSettings.exe" [2010-01-08 974848]
"DLCGCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLCGtime.dll" [2006-10-20 73728]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2010-08-10 421888]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-09-19 2065760]
"SunJavaUpdateSched"="c:\programmi\File comuni\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2007-10-29 15360]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Reader Synchronizer.lnk - c:\programmi\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
Alice ti aiuta.lnk - c:\programmi\Alice ti aiuta\bin\matcli.exe [2009-9-12 217088]
Avvio veloce di Adobe Reader.lnk - c:\programmi\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
BlueSoleil.lnk - c:\programmi\IVT Corporation\BlueSoleil\BlueSoleil.exe [2005-9-20 1200128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-09-19 01:36 12536 ----a-w- c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2009-07-26 14:44 3883856 ----a-w- c:\programmi\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\eMule0.49c\\emule.exe"=
"c:\\Programmi\\Dell AIO 810\\DLCGmon.exe"=
"c:\\Programmi\\Dell AIO 810\\DLCGaiox.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"c:\\WINDOWS\\system32\\dlcgcoms.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgupd.exe"=
"c:\\Programmi\\AVG\\AVG9\\avgnsx.exe"=

R0 iteraid;ITERAID_Service_Install;c:\windows\system32\drivers\iteraid.sys [12/09/2009 12.13.40 24827]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [19/09/2010 3.36.32 216400]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [19/09/2010 3.36.38 243024]
R2 Application Updater;Application Updater;c:\programmi\Application Updater\ApplicationUpdater.exe [08/01/2010 1.51.02 380928]
R2 avg9wd;AVG Free WatchDog;c:\programmi\AVG\AVG9\avgwdsvc.exe [19/09/2010 3.35.57 308136]
.
Contenuto della cartella 'Scheduled Tasks'

2010-08-31 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

2010-09-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-2025429265-839522115-1003Core.job
- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-09-24 16:40]

2010-09-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-2025429265-839522115-1003UA.job
- c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-09-24 16:40]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.tgcom.mediaset.it/
uInternet Settings,ProxyOverride = 127.0.0.1
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\kagcu3a2.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.tgcom.mediaset.it/
FF - prefs.js: network.proxy.type - 0
FF - component: c:\programmi\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: c:\programmi\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\documents and settings\Utente\Dati applicazioni\Facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\documents and settings\Utente\Impostazioni locali\Dati applicazioni\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\programmi\Java\jre6\bin\new_plugin\npdeployJava1.dll

---- FIREFOX POLICIES ----
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
.
------- Associazioni dei file -------
.
.scr=AutoCADScriptFile
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-09-26 17:50
Windows 5.1.2600 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
DLCGCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLCGtime.dll,_RunDLLEntry@16??????????????????????????????????????????????

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(908)
c:\windows\system32\Ati2evxx.dll
.
Ora fine scansione: 2010-09-26 17:51:57
ComboFix-quarantined-files.txt 2010-09-26 15:51

Pre-Run: 210.580.815.872 byte disponibili
Post-Run: 211.037.122.560 byte disponibili

- - End Of File - - 27A529E0D851694BBEEFE720633B3CC4

@cris61 ciao.

Tu usi CCleaner ?. Altrimenti puoi scaricarlo e installarlo (è gratuito). Poi senza toccare le impostazioni di default, fai una pulizia, anche del registro.

Le uniche impostazioni che dovrai settare di CCleaner e mettere la spunta, prima di fare la pulizia, sono le seguenti in Pulizia/Windows/Internet Explorer :
-File temporanei internet
-Cookie
-Cronologia
-Indirizzi web digitati di recente
-File Index.dat
-Ultima collocazione download

Ora Firefox in Pulizia/Applicazioni/Firefox :
-Cache internet
-Cookie
-Cronologia dawnload
-Sessione
-Compatta Database

Ora avvia la pulizia, dopo collegati con entrambi i browser, e vedi se hai ancora quei problemi.

Ciao.

Prego.

Tu eri stata appena infettata da un virus, che ha toccato come hai visto qualche software. Per cui fare pulizia non guasta (anzi ti velocizzerà il PC).

Esattamente, devi lasciare le spunte che lui ti propone, e aggiungere quelle che ti ho indicato.

Quelle tipo : Adobe - Java - MSN non ti cancella nulla di importante, ma solo la cronologia degli aggiornamenti, o connessioni da loro effettuate.

Se hai "Appunti" creati di recente, puoi a limite togliere la spunta in : Sistema/Appunti

Poi per esempio, se in : Applicazioni/Firefox metteresti la spunta in : Informazioni Moduli Salvate cancelleresti le password di Firefox (e questo sarebbe seccante).

Tranquilla, CCleaner non fa danni (è uno dei pulitori più usato e sicuro) e ancor di meno usato come ti ho indicato.

ok, pulizia fatta, e finita.

(devo ancora però andare a vedere se ora i 2 browser funzionano bene... )

per quanto riguarda il "Registro" :

ho "lanciato" il "Trova Problemi". ne ha trovati...
posso cliccare su "Ripara selezionati" ?

thanks..

questo lo leggo solo ora...
cmq ho fatto l'analisi senza la spunta "Estensioni file non usate" e poi il Ripara
( ma non ho fatto backup )

ora sta facendo (da un pezzo) il Bonifica...

.
.
.
Questo intervento è stato cancellato dal Webmaster
in quanto non conforme alle regole del forum.
Clicca qui per leggere le regole di questo forum
.
.
.

grazie anche a te! ogni consiglio ben venga, io ho tutto da imparare da voi...
ciao

benissimo, proverò a fare così!

(dico proverò perché qua sta ancora Bonificando... quindi mi sa che dovrò provare domani)