Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » Computer & Internet » Problemi Informatici » dopo la formattazione del pc ho notato che il pc è molto più lento

dopo la formattazione del pc ho notato che il pc è molto più lento Opzioni
Topic Precedente · Topic Sucessivo
anny82
Inviato: Monday, October 11, 2010 10:30:21 AM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Per il problema con il rootkit mbr.sys ho cambiato l'hd ma questo sembra essere più lento.
Non sapendo se imputare il problema all'hd vi posto ugualmente i log di combofix e hijackthis.
Perfavore ditemi voi se ho fatto altri danni.
Grazie.

ComboFix 10-10-10.02 - aNNucCia 11/10/2010 10.17.41.5.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.3001.2513 [GMT 2:00]
Eseguito da: c:\documents and settings\aNNucCia\Desktop\ComboFix.exe
AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((( Files Creati Da 2010-09-11 al 2010-10-11 )))))))))))))))))))))))))))))))))))
.

2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin7.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin6.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin5.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin4.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin3.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin2.dll
2010-10-09 18:09 . 2010-10-09 18:09 159744 ----a-w- c:\programmi\Internet Explorer\Plugin\npqtplugin.dll
2010-10-09 18:08 . 2010-10-09 18:09 -------- d-----w- c:\programmi\QuickTime
2010-10-09 18:08 . 2010-10-09 18:08 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2010-10-09 18:05 . 2010-10-09 18:05 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2010-10-09 18:05 . 2010-10-09 18:05 -------- d-----w- c:\documents and settings\NetworkService\Impostazioni locali\Dati applicazioni\Apple
2010-10-09 16:34 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll
2010-10-09 16:34 . 2009-08-06 17:23 215920 ----a-w- c:\windows\system32\muweb.dll
2010-10-09 15:48 . 2009-12-29 08:56 117120 ----a-r- c:\windows\system32\drivers\pmx3gnet.sys
2010-10-09 15:47 . 2009-12-29 08:56 103552 ----a-r- c:\windows\system32\drivers\pmx3gmdm.sys
2010-10-09 15:42 . 2010-10-09 15:42 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Chiavetta Internet Olicard 100
2010-10-09 15:42 . 2010-10-09 15:42 -------- d-----w- c:\programmi\Chiavetta Internet Olicard 100
2010-10-09 10:57 . 2010-10-09 14:48 -------- d-----w- c:\programmi\Spybot - Search & Destroy
2010-10-09 10:57 . 2010-10-09 14:47 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2010-10-09 08:34 . 2010-10-09 08:34 -------- d-----w- c:\programmi\File comuni\Nero
2010-10-09 08:33 . 2010-10-09 08:39 -------- d-----w- c:\programmi\Nero
2010-10-09 02:34 . 2008-01-10 18:44 199176 ----a-w- c:\windows\GVUni.exe
2010-10-09 02:34 . 2007-12-03 22:11 207368 ----a-w- c:\windows\UNINST32.EXE
2010-10-09 02:34 . 2006-01-20 21:42 17408 ----a-w- c:\windows\system32\drivers\DKbFltr.SYS
2010-10-09 02:34 . 2004-12-09 19:04 5120 ----a-w- c:\windows\system32\FILTRCOI.DLL
2010-10-09 02:33 . 2008-07-17 19:27 380928 ----a-w- c:\windows\AcerStore.exe
2010-10-09 02:33 . 2008-05-09 12:58 49152 ----a-w- c:\windows\Interop.IWshRuntimeLibrary.dll
2010-10-09 02:33 . 2010-10-08 17:36 -------- d-----w- c:\windows\WLAN
2010-10-09 02:33 . 2008-04-28 13:14 3626112 ----a-w- c:\windows\system32\drivers\NETw5x32.sys
2010-10-09 02:33 . 2008-04-18 23:09 2756608 ----a-w- c:\windows\system32\NETw5r32.dll
2010-10-09 02:33 . 2008-04-18 23:08 659456 ----a-w- c:\windows\system32\NETw5c32.dll
2010-10-09 02:32 . 2008-01-30 01:45 50576 ----a-w- c:\windows\system32\drivers\tcusb.sys
2010-10-09 02:32 . 2008-04-29 23:09 108032 ----a-w- c:\windows\system32\drivers\IntcHdmi.sys
2010-10-09 02:32 . 2010-10-08 17:36 -------- d-----w- c:\windows\VGA
2010-10-09 02:32 . 2008-04-15 17:46 147456 ----a-w- c:\windows\PLAUNCH.EXE
2010-10-09 02:31 . 2010-10-08 17:36 -------- d-----w- c:\windows\Lan
2010-10-08 22:31 . 2010-10-08 22:31 -------- d-----w- c:\programmi\Microsoft
2010-10-08 22:30 . 2010-10-08 22:30 -------- d-----w- c:\programmi\Windows Live SkyDrive
2010-10-08 22:29 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-08 22:29 . 2010-10-08 22:29 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2010-10-08 22:29 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-08 22:28 . 2010-10-08 22:28 -------- d-----w- c:\programmi\File comuni\Windows Live
2010-10-08 22:25 . 2010-10-08 22:44 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2010-10-08 22:03 . 2010-10-08 22:03 398336 ----a-w- c:\windows\system32\CF32023.exe
2010-10-08 21:37 . 2010-10-09 08:34 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Nero
2010-10-08 21:14 . 2010-10-08 21:14 -------- d-----w- c:\windows\system32\XPSViewer
2010-10-08 21:14 . 2010-10-08 21:14 -------- d-----w- c:\programmi\MSBuild
2010-10-08 21:14 . 2010-10-08 21:14 -------- d-----w- c:\programmi\Reference Assemblies
2010-10-08 21:14 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2010-10-08 21:13 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-10-08 21:13 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-10-08 21:13 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-10-08 21:13 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-10-08 21:13 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-10-08 21:13 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2010-10-08 21:13 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-10-08 21:13 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2010-10-08 21:06 . 2010-10-08 21:06 -------- d-----w- c:\programmi\SpacialAudio
2010-10-08 21:06 . 2009-07-22 15:46 450560 ----a-w- c:\windows\system32\GDS32.DLL
2010-10-08 21:06 . 2009-07-22 15:59 462848 ----a-w- c:\windows\system32\Firebird2Control.cpl
2010-10-08 21:06 . 2010-10-08 21:06 -------- d-----w- c:\programmi\Firebird
2010-10-08 21:02 . 2009-09-04 15:29 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2010-10-08 21:02 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2010-10-08 21:02 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2010-10-08 21:02 . 2007-07-19 16:14 3727720 ----a-w- c:\windows\system32\d3dx9_35.dll
2010-10-08 21:02 . 2007-05-16 14:45 3497832 ----a-w- c:\windows\system32\d3dx9_34.dll
2010-10-08 21:02 . 2010-10-08 21:02 -------- d-----w- c:\windows\Logs
2010-10-08 20:57 . 2010-10-08 20:57 -------- d-----w- c:\programmi\File comuni\Skype
2010-10-08 20:57 . 2010-10-08 20:57 -------- d-----r- c:\programmi\Skype
2010-10-08 20:56 . 2010-10-08 20:57 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Skype
2010-10-08 20:55 . 2010-10-10 17:10 -------- d-----w- c:\programmi\mIRC
2010-10-08 20:53 . 2010-10-08 20:53 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2010-10-08 20:52 . 2010-10-08 20:52 -------- d-----w- c:\programmi\Trend Micro
2010-10-08 20:52 . 2010-10-08 20:52 -------- d-----w- c:\programmi\File comuni\DVDVideoSoft
2010-10-08 20:52 . 2010-10-08 20:52 -------- d-----w- c:\programmi\DVDVideoSoft
2010-10-08 20:48 . 2010-10-11 08:08 -------- d-----w- c:\programmi\File comuni\Akamai
2010-10-08 20:43 . 2010-10-08 22:43 -------- d-----w- c:\programmi\Messenger Plus! Live
2010-10-08 20:42 . 2010-10-08 20:42 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-10-08 20:40 . 2010-10-08 20:41 -------- dcsh--w- c:\programmi\File comuni\WindowsLiveInstaller
2010-10-08 20:40 . 2010-10-08 22:30 -------- d-----w- c:\programmi\Windows Live
2010-10-08 20:40 . 2010-10-08 20:40 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\WLInstaller
2010-10-08 20:31 . 2010-08-26 11:08 13312 -c----w- c:\windows\system32\dllcache\iecompat.dll
2010-10-08 20:30 . 2010-06-24 12:22 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-10-08 20:30 . 2010-06-24 12:22 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-10-08 20:30 . 2010-06-24 12:22 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-10-08 20:29 . 2010-10-08 20:30 -------- dc-h--w- c:\windows\ie8
2010-10-08 20:22 . 2010-10-08 20:22 -------- d-----w- c:\programmi\File comuni\Apple
2010-10-08 20:21 . 2010-10-08 20:21 -------- d-----w- c:\programmi\Apple Software Update
2010-10-08 20:21 . 2010-10-08 20:21 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple
2010-10-08 20:19 . 2010-10-08 20:19 -------- d-----w- c:\programmi\MSXML 4.0
2010-10-08 20:18 . 2010-10-08 20:18 -------- d-----w- c:\programmi\VideoLAN
2010-10-08 20:16 . 2010-10-08 20:16 -------- d-----w- c:\programmi\JRE
2010-10-08 20:15 . 2010-10-08 20:42 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-10-08 20:15 . 2010-10-08 20:42 -------- d-----w- c:\programmi\Java
2010-10-08 20:15 . 2010-10-08 20:43 -------- d-----w- c:\programmi\File comuni\Java
2010-10-08 20:14 . 2010-10-08 20:15 -------- d-----w- c:\programmi\OpenOffice
2010-10-08 20:13 . 2010-10-08 20:13 -------- d-----w- c:\programmi\CCleaner
2010-10-08 20:12 . 2010-02-24 13:11 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-10-08 20:11 . 2010-04-28 18:11 2193664 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2010-10-08 20:11 . 2010-04-28 05:41 2070528 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2010-10-08 20:11 . 2010-04-28 05:41 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2010-10-08 20:11 . 2008-04-13 09:45 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2010-10-08 20:11 . 2010-04-28 05:41 2028032 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2010-10-08 20:05 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2010-10-08 19:47 . 2010-09-07 14:52 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-10-08 19:47 . 2010-09-07 14:47 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-10-08 19:47 . 2010-09-07 14:47 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-10-08 19:47 . 2010-09-07 14:52 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-10-08 19:47 . 2010-09-07 14:47 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-10-08 19:47 . 2010-09-07 14:47 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-10-08 19:47 . 2010-09-07 14:46 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-10-08 19:47 . 2010-09-07 15:12 38848 ----a-w- c:\windows\avastSS.scr
2010-10-08 19:47 . 2010-09-07 15:11 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-10-08 19:47 . 2010-10-08 19:47 -------- d-----w- c:\programmi\Alwil Software
2010-10-08 19:47 . 2010-10-08 19:47 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Alwil Software
2010-10-08 19:33 . 2010-10-08 19:33 -------- d-----w- c:\documents and settings\NetworkService\Menu Avvio
2010-10-08 19:29 . 2008-04-13 09:45 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-10-08 19:29 . 2008-04-13 09:45 10368 ----a-w- c:\windows\system32\drivers\hidusb.sys
2010-10-08 19:29 . 2010-10-08 19:29 -------- d-----w- c:\programmi\Acer Inc
2010-10-08 18:04 . 2010-10-08 18:04 -------- d-----w- c:\programmi\Launch Manager
2010-10-08 18:03 . 2005-09-21 00:27 10368 ----a-w- c:\windows\system32\drivers\iviaspi.sys
2010-10-08 18:03 . 2010-10-08 18:03 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Corel
2010-10-08 18:03 . 2010-10-08 18:03 -------- d-----w- c:\programmi\File comuni\Protexis
2010-10-08 18:03 . 2010-10-08 18:03 -------- d-----w- c:\programmi\File comuni\InterVideo
2010-10-08 18:01 . 2007-04-13 09:51 321024 ----a-w- c:\windows\system32\ERUpdateHidden.EXE

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.

((((((((((((((((((((((((((((( SnapShot_2010-10-09_21.42.02 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-10-11 08:08 . 2010-10-11 08:08 16384 c:\windows\Temp\Perflib_Perfdata_790.dat
+ 2010-10-11 08:08 . 2010-10-11 08:08 16384 c:\windows\Temp\Perflib_Perfdata_5ac.dat
+ 2008-09-05 08:14 . 2010-10-10 21:50 85492 c:\windows\system32\perfc010.dat
+ 2008-09-05 08:14 . 2010-10-10 21:50 72488 c:\windows\system32\perfc009.dat
- 2010-10-09 18:37 . 2010-10-09 18:37 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5b0279d9cf310178085bf7f9ffd218f9\Microsoft.SqlServer.CustomControls.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5b0279d9cf310178085bf7f9ffd218f9\Microsoft.SqlServer.CustomControls.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 51712 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5663cf86900591cf6272226aebe0ab90\microsoft.sqlserver.setup.resources.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 51712 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5663cf86900591cf6272226aebe0ab90\microsoft.sqlserver.setup.resources.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 18944 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\390d8a0094aba0aeab2dc04ea310bb68\microsoft.sqlserver.gridcontrol.resources.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 18944 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\390d8a0094aba0aeab2dc04ea310bb68\microsoft.sqlserver.gridcontrol.resources.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 69632 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.NetEnterp#\ddddd3bfbb951ecd9ff7114bc512281b\microsoft.netenterpriseservers.exceptionmessagebox.resources.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 69632 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.NetEnterp#\ddddd3bfbb951ecd9ff7114bc512281b\microsoft.netenterpriseservers.exceptionmessagebox.resources.ni.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2010-10-09 21:14 . 2010-10-09 21:14 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2008-09-05 08:14 . 2010-10-10 21:50 491320 c:\windows\system32\perfh010.dat
+ 2008-09-05 08:14 . 2010-10-10 21:50 443222 c:\windows\system32\perfh009.dat
+ 2010-10-11 08:14 . 2010-10-11 08:14 529408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\f1e8955a27a68884b6f9d4df711e166e\Microsoft.SqlServer.GridControl.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 529408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\f1e8955a27a68884b6f9d4df711e166e\Microsoft.SqlServer.GridControl.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 989184 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\aa01e1555b04d307cbe6c2911e63ed3a\Microsoft.SqlServer.WizardFrameworkLite.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 989184 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\aa01e1555b04d307cbe6c2911e63ed3a\Microsoft.SqlServer.WizardFrameworkLite.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 336384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5723c79679f2f691a57a4300c2252f0f\microsoft.sqlserver.wizardframeworklite.resources.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 336384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\5723c79679f2f691a57a4300c2252f0f\microsoft.sqlserver.wizardframeworklite.resources.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 355840 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\0cc7a9cd49866accef8708377da25536\Microsoft.SqlServer.Setup.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 355840 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.SqlServer#\0cc7a9cd49866accef8708377da25536\Microsoft.SqlServer.Setup.ni.dll
+ 2010-10-11 08:14 . 2010-10-11 08:14 231936 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.NetEnterp#\c8b06ec827865d0e37447f75b1c27b23\Microsoft.NetEnterpriseServers.ExceptionMessageBox.ni.dll
- 2010-10-09 18:37 . 2010-10-09 18:37 231936 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.NetEnterp#\c8b06ec827865d0e37447f75b1c27b23\Microsoft.NetEnterpriseServers.ExceptionMessageBox.ni.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-10-10 21:49 . 2010-10-10 21:49 5238784 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 5238784 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2010-10-09 21:14 . 2010-10-09 21:14 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2010-10-10 21:50 . 2010-10-10 21:50 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2010-10-09 21:13 . 2010-10-09 21:13 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"preload"="c:\windows\RUNXMLPL.exe" [2007-04-21 20480]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-17 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-17 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-17 141848]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"ZPdtWzdVitaKey MC3000"="c:\programmi\Acer\Acer Bio Protection\PdtWzd.exe" [2010-10-08 3724800]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"avast5"="c:\programmi\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]
"SunJavaUpdateSched"="c:\programmi\File comuni\Java\Java Update\jusched.exe" [2010-05-14 248552]
"ePower_DMC"="c:\programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-07-08 466944]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2010-09-08 421888]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\AWinNotifyVitaKey MC3000]
2010-10-08 17:57 3167744 ----a-w- c:\programmi\Acer\Acer Bio Protection\WinNotify.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\spba]
2008-03-25 13:24 567560 ----a-w- c:\programmi\File comuni\SPBA\homefus2.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Acer Empowering Technology.lnk]
path=c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Acer Empowering Technology.lnk
backup=c:\windows\pss\Acer Empowering Technology.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^BTTray.lnk]
path=c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\BTTray.lnk
backup=c:\windows\pss\BTTray.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07 932288 ----a-r- c:\programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-09-23 02:47 35760 ----a-w- c:\programmi\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
2008-01-24 23:22 159744 ----a-w- c:\programmi\Apoint2K\Apoint.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AzMixerSel]
2006-07-18 05:40 53248 ------w- c:\programmi\Realtek\Audio\InstallShield\AzMixerSel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BkupTray]
2008-04-06 20:42 34040 ----a-w- c:\programmi\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Boot]
2007-12-25 01:17 579584 ----a-w- c:\programmi\Acer\Empowering Technology\ePower\Boot.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ePower_DMC]
2008-07-08 16:18 466944 ----a-w- c:\programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eRecoveryService]
2007-07-11 12:07 421888 ----a-w- c:\programmi\Acer\Empowering Technology\eRecovery\eRAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
2008-05-07 15:41 178712 ----a-w- c:\programmi\Intel\Intel Matrix Storage Manager\IAAnotif.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
2008-07-25 02:48 875016 ----a-w- c:\progra~1\LAUNCH~1\LManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
2010-04-16 20:11 3872080 ----a-w- c:\programmi\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
2010-03-26 08:52 1234216 ----a-w- c:\programmi\Nero\Nero 10\Nero BackItUp\NBAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI]
2007-10-23 08:56 200704 ----a-w- c:\windows\PLFSetI.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetL]
2007-07-05 10:35 94208 ----a-w- c:\windows\PLFSetL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProductReg]
2008-09-23 03:53 6144 ----a-w- c:\programmi\Acer\WR_PopUp\ProductReg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-09-08 09:17 421888 ----a-w- c:\programmi\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TimMonitor]
2010-01-19 15:45 393216 ----a-w- c:\programmi\Chiavetta Internet Olicard 100\TimMonitor.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\NewTech Infosystems\\NTI Backup Now 5\\BackupSvc.exe"=
"c:\\Programmi\\NewTech Infosystems\\NTI Backup Now 5\\SchedulerSvc.exe"=
"c:\\Programmi\\NewTech Infosystems\\NTI Backup Now 5\\Client\\Agentsvc.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Programmi\\SpacialAudio\\SAMBC\\SAMBC.exe"=
"c:\\Programmi\\mIRC\\mirc.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Documents and Settings\\aNNucCia\\temp\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1031:TCP"= 1031:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface

R0 AlfaFF;AlfaFF File System mini-filter;c:\windows\system32\drivers\AlfaFF.sys [08/10/2010 19.57.32 42608]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [08/10/2010 21.47.31 165584]
R2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe -k Akamai [14/04/2008 6.00.00 14336]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [08/10/2010 21.47.31 17744]
R2 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\programmi\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [03/03/2008 13.11.14 16384]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\programmi\Firebird\Firebird_2_1\bin\fbguard.exe -s DefaultInstance --> c:\programmi\Firebird\Firebird_2_1\bin\fbguard.exe -s DefaultInstance [?]
R2 NAUpdate;@c:\programmi\Nero\Update\NASvc.exe,-200;c:\programmi\Nero\Update\NASvc.exe [25/03/2010 14.39.22 490280]
R2 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\programmi\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [06/04/2008 22.42.24 50424]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [17/04/2007 20.09.28 11032]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\programmi\Firebird\Firebird_2_1\bin\fbserver.exe -s DefaultInstance --> c:\programmi\Firebird\Firebird_2_1\bin\fbserver.exe -s DefaultInstance [?]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [09/10/2010 4.32.11 108032]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [13/05/2008 21.49.12 51288]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [12/06/2008 18.30.12 43608]
S2 IGBASVC;iGroupTec Service;c:\programmi\Acer\Acer Bio Protection\BASVC.exe [08/10/2010 19.57.36 3566080]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\programmi\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [04/04/2008 3.03.14 131072]
S3 pmx3gmdm;Olivetti USB Device for Legacy Serial Communication;c:\windows\system32\drivers\pmx3gmdm.sys [09/10/2010 17.47.47 103552]
S3 pmx3gnet;Olivetti USB-NDIS miniport;c:\windows\system32\drivers\pmx3gnet.sys [09/10/2010 17.48.47 117120]
S3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\drivers\TpChoice.sys [26/12/2007 7.23.10 17968]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contenuto della cartella 'Scheduled Tasks'

2010-10-09 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60342
IE: Invia a Bluetooth - c:\programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Invia a periferica &Bluetooth... - c:\programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
FF - ProfilePath - c:\documents and settings\aNNucCia\Dati applicazioni\Mozilla\Firefox\Profiles\9ap00kg5.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://it.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:it:official
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60342&qkw=
FF - plugin: c:\programmi\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Programmi/File comuni/Akamai/netsession_win_062a651.dll"

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="C:/Programmi/File comuni/Akamai/netsession_win_062a651.dll"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(908)
c:\programmi\Acer\Acer Bio Protection\WinNotify.dll
c:\programmi\Acer\Acer Bio Protection\CustomRes.dll
c:\programmi\File comuni\SPBA\vtapip.dll
c:\programmi\File comuni\SPBA\infql2.dll
c:\windows\system32\bsapi.dll
c:\programmi\File comuni\SPBA\homefus2.dll
c:\programmi\File comuni\SPBA\homepass.dll
c:\programmi\File comuni\SPBA\bio.dll
c:\programmi\File comuni\SPBA\qlbase.dll
c:\programmi\File comuni\SPBA\vtapipql.dll
c:\windows\system32\l3codeca.acm

- - - - - - - > 'explorer.exe'(1168)
c:\windows\system32\WININET.dll
c:\programmi\Acer\Empowering Technology\ePower\SysHook.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
.
Ora fine scansione: 2010-10-11 10:22:40
ComboFix-quarantined-files.txt 2010-10-11 08:22
ComboFix2.txt 2010-10-09 21:43
ComboFix3.txt 2010-10-09 16:07
ComboFix4.txt 2010-10-08 23:18
ComboFix5.txt 2010-10-11 08:16

Pre-Run: 79.757.688.832 byte disponibili
Post-Run: 79.914.627.072 byte disponibili

- - End Of File - - 767889B51367C28C7CEAF39CF82F48FB



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10.28.13, on 11/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
C:\Programmi\Firebird\Firebird_2_1\bin\fbguard.exe
C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Programmi\File comuni\InterVideo\RegMgr\iviRegMgr.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Programmi\Nero\Update\NASvc.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
C:\Programmi\Acer\Acer Bio Protection\PdtWzd.exe
C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Programmi\File comuni\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programmi\Alwil Software\Avast5\avastUI.exe
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Programmi\Acer\Acer Bio Protection\PwdBank.exe
C:\Programmi\Firebird\Firebird_2_1\bin\fbserver.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60342
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60342
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60342
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Programmi\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avast5] "C:\Programmi\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ePower_DMC] C:\Programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\QTTask.exe" -atboottime
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Invia a Bluetooth - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Invia a periferica &Bluetooth... - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Programmi\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Programmi\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programmi\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Programmi\Acer\Acer Bio Protection\WinNotify.dll
O20 - Winlogon Notify: spba - C:\Programmi\File comuni\SPBA\homefus2.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Programmi\Firebird\Firebird_2_1\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Programmi\Firebird\Firebird_2_1\bin\fbserver.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Programmi\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: IviRegMgr - InterVideo - C:\Programmi\File comuni\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: @C:\Programmi\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Programmi\Nero\Update\NASvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Programmi\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Programmi\File comuni\Protexis\License Service\PsiService_2.exe

--
End of file - 8735 bytes
Torna in alto
 
Sponsor
Inviato: Monday, October 11, 2010 10:30:21 AM

 
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 11:58:00 AM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Qualcuno mi dice qualcosa???
Torna in alto
 
cbbusto
Inviato: Monday, October 11, 2010 12:17:38 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ciao, in HJT fixa questa voce ed elimina:
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60342
Il resto sembra a posto.
Riguardo all'HDD bisognerebbe confrontarli, dovresti dire marca e modello del primo e quello che hai montato ora.
Torna in alto
 
dottorserpente
Inviato: Monday, October 11, 2010 12:25:01 PM

Rank: AiutAmico

Iscritto dal : 9/6/2010
Posts: 2,017
Post Autoeliminato volontariamente.
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 12:36:33 PM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Quello che avevo prima dovrebbe essere un HD WD sata 320gb modello wd3200bevt 3Gb/s velocità 5400.
Quello nuovo è nel pc vi scrivo quello che è riportato nella fattura ho provato anche a fare una ricerca ma ne capisco poco.
Codice articolo: HDNSAM8005
Descrizione: HD 320GB SATA X NB
Matricola: S24PJ9BZ605147
Dovrebbe essere un samsung.
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 12:49:21 PM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Ho smontato il pc. Il modello è HM321HI.
Torna in alto
 
wolfestein
Inviato: Monday, October 11, 2010 3:20:33 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 15,918
anny82 ha scritto:
Ho smontato il pc. Il modello è HM321HI.

Il tuo pc è un desktop o un notebook.
Guardando in Hijack penso che sia un portatile.
Comunque per cercare di velocizzare il tuo pc elimina dall'avvio automatico tutti i programmi che non sono indispensabili e fai una deframmentazione dell'HD.
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 4:48:57 PM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Il pc è notebook.
Da msconfig ho disabilitato tutto il disabilitabile ma noto ancora una sostanziosa differenza tra il vecchio hd e quello nuovo.
E' possibile reperire un HD come quello che ho sostituito?
Torna in alto
 
cbbusto
Inviato: Monday, October 11, 2010 5:47:47 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Volevo capire la velocità dei 2 HDD e sono uguali 5400rpm, posso dire che il precedente un Western Digital è sicuramente superiore al Samsung.
Si possono trovare ancora LEGGI QUI
Non capisco perchè hai sostituito il disco, non era possibile formattare e reinstallare tutto ?
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 5:53:03 PM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Perchè qualche giorno fa avevo beccato un rootkit mbr.sys e nonostante avessi ripetutamente formattato, al termine di ogni formattazione combofix mi rilevava la presenza del rootkit.
Solo che ora non so se sia per l'hd o per altro ma il pc è più lento. Prima si avviava subito si spegneva subito, quando avviavo un programma lo apriva subito...ora no.
Torna in alto
 
anny82
Inviato: Monday, October 11, 2010 6:12:28 PM

Rank: AiutAmico

Iscritto dal : 4/16/2010
Posts: 37
Adesso ho notato una cosa strana. Sto usando solo firefox e in task manager c'è il processo explorer.exe che pur essendo chiuso ha il valore CPU pari a 53.
E' normale???
Torna in alto
 
wolfestein
Inviato: Monday, October 11, 2010 6:51:10 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 15,918
anny82 ha scritto:
Adesso ho notato una cosa strana. Sto usando solo firefox e in task manager c'è il processo explorer.exe che pur essendo chiuso ha il valore CPU pari a 53.E' normale???

No non è normale.Metti un log di Hijack in Sicurezza virus,perchè non è assolutamente possibile che un virus si replichi su di hd formattato,non vorrei che tu avessi una pen-drive infetta per cui ogni volta che la colleghi ti reinfetta il sistema.
Torna in alto
 
cbbusto
Inviato: Tuesday, October 12, 2010 12:34:59 AM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ha ragione wolfe, se formatti non ci deve rimanere nessun virus, quando hai reinstallato il S.O. attenta ai programmi che installi, controllali bene oppure scaricali da aiutamici che sono tutti testati e sicuri.
Torna in alto
 
fdaccc
Inviato: Tuesday, October 12, 2010 3:01:48 PM

Rank: AiutAmico

Iscritto dal : 12/12/2009
Posts: 2,114
Piccola Precisazione:
I Bootkit che si insediano nell'MBR, il settore di avvio primario del PC, possono resistere anche ad una formattazione, se eseguita NON a basso livello, o con la tecnica di ZeroFilling.
In quei casi bisogna procedere con strumenti di rimozione adeguati.
Saluti.
Torna in alto
 
wolfestein
Inviato: Tuesday, October 12, 2010 11:40:32 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 15,918
fdaccc ha scritto:
Piccola Precisazione:
I Bootkit che si insediano nell'MBR, il settore di avvio primario del PC, possono resistere anche ad una formattazione, se eseguita NON a basso livello, o con la tecnica di ZeroFilling.
In quei casi bisogna procedere con strumenti di rimozione adeguati.
Saluti.

Su questo hai ragione fdaccc,ma anny ha parlato di rootkit.
Comunque qui c'è una guida alla rimozione del BootKit.
Torna in alto
 
fdaccc
Inviato: Wednesday, October 13, 2010 1:44:00 PM

Rank: AiutAmico

Iscritto dal : 12/12/2009
Posts: 2,114
Bravo Wolf, hai postato una ottima guida.
Saluti e buona risoluzione del problema.
Francesco
Torna in alto
 
dottorserpente
Inviato: Wednesday, October 13, 2010 1:53:12 PM

Rank: AiutAmico

Iscritto dal : 9/6/2010
Posts: 2,017
fdaccc ha scritto:
Piccola Precisazione:
I Bootkit che si insediano nell'MBR, il settore di avvio primario del PC, possono resistere anche ad una formattazione, se eseguita NON a basso livello, o con la tecnica di ZeroFilling.
In quei casi bisogna procedere con strumenti di rimozione adeguati.
Saluti.



Ne sei proprio sicuro?? Hai fatto delle richerche al riguardo ??

"In realtà già negli anni precedenti esistevano virus capaci di infettare i primi settori del disco, quelli che abbiamo visto essere i settori di avvio, ma nessuno di questi aveva pensato a utilizzare un rootkit nascosto nel MBR, posizione da cui è possibile effettuare qualunque operazione, nascondersi da qualunque software e allo stesso tempo modificare il kernel del sistema operativo a caldo."
Fonte...





Il primo fondamento della sicurezza non e' la tecnologia, ma l'attitudine mentale.
Torna in alto
 
Utenti presenti in questo topic
Guest

Aiutamici Forum » Computer & Internet » Problemi Informatici » dopo la formattazione del pc ho notato che il pc è molto più lento


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.