Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » Computer & Internet » Problemi Informatici » Ciao R16....computer lento dopo aver scaricato google earth..

2 pages: [1] 2
Ciao R16....computer lento dopo aver scaricato google earth.. Opzioni
Topic Precedente · Topic Sucessivo
fiart50
Inviato: Saturday, February 14, 2009 11:26:01 AM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
Ciao ragazzi... mi date un occhio al log!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11.24.38, on 14/02/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\COMODO\Firewall\cmdagent.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Programmi\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Programmi\Multimedia Combo Set\MouseDrv.exe
C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
C:\Programmi\COMODO\Firewall\cfp.exe
C:\Programmi\Java\jre6\bin\jusched.exe
C:\Programmi\Multimedia Combo Set\PS2USBKbdDrv.exe
C:\Programmi\Eset\nod32kui.exe
C:\Programmi\Eset\nod32krn.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Programmi\Spyware Terminator\sp_rsser.exe
C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Programmi\IncrediMail\bin\IMApp.exe
C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Programmi\Windows Live\Messenger\usnsvc.exe
C:\Programmi\IncrediMail\bin\IncMail.exe
C:\Programmi\internet explorer\iexplore.exe
C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar2.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [WireLessMouse ] C:\Programmi\Multimedia Combo Set\MouseDrv.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Programmi\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SpywareTerminator] "C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Programmi\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Programmi\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [WireLessKeyboard ] C:\Programmi\Multimedia Combo Set\PS2USBKbdDrv.exe
O4 - HKLM\..\Run: [nod32kui] "C:\Programmi\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [StartCCC] C:\Programmi\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\PROGRA~1\WINDOW~4\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Programmi\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [EPSON Stylus DX7400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE /FU "C:\WINDOWS\TEMP\E_S669.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [New Application] C:\Programmi\Eset\nod32kui.exe
O4 - HKCU\..\Run: [swg] C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab?AuthParam=1229441350_40e17d239fa9d6194b9a074ae182a1dd&GroupName=JSC&BHost=javadl.sun.com&FilePath=/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab&File=jinstall-6u11-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{732B0EF4-37EF-4888-BC91-503A8D9C71E9}: NameServer = 85.37.17.11 85.38.28.69
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programmi\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown owner - C:\Programmi\COMODO\Firewall\cmdagent.exe
O23 - Service: FreePOPs - Unknown owner - C:\Programmi\FreePOPs\freepopsservice.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Nero\Lib\NMIndexingService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Programmi\Eset\nod32krn.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Programmi\Spyware Terminator\sp_rsser.exe

--
End of file - 9973 bytes
Torna in alto
 
Sponsor
Inviato: Saturday, February 14, 2009 11:26:01 AM

 
Torna in alto
 
r16
Inviato: Saturday, February 14, 2009 1:59:26 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ciao fiart50 .
Dov'è il problema fiart50......
Prendi google earth e lo prendi a calci nei posti dove non batte il sole, e lo elimini.....Drool
Il log non presenta problemi.
Prova eseguire queste operazioni di pulizia:
Dai una pulita (registro compreso)con CCleaner http://www.aiutaamici.com/software?ID=11223
Poi:
Start\Esegui\copia e incolla la stringa %temp% clicca su Ok, svuota la cartella temp. (non eliminare la cartella)
Poi:
Provvedi a svuotare del suo contenuto la cartella Prefetch :
clicca su Risorse del Computer
clicca su Disco locale C:
cerca, all’interno delle cartelle che saranno visualizzate la cartella Windows, aprila ed, al suo interno, cerca la cartella Prefetch, la apri ed elimina tutte le voci conservate al suo interno ( non eliminare la cartella)
SVUOTA IL CESTINO
Poi:
Lancia Hijackthis e pulisci gli ADS in questo modo:
clicca sulla voce Open the misc tool section
clicca su Open ads spy
togli la spunta alla voce Quick scan (windows base folder only)
clicca su Scan
se venissero rilevati ADS, spunta tutte le caselline e clicca su Remove selected
Vediamo se il pc và meglio.
Torna in alto
 
fiart50
Inviato: Saturday, February 14, 2009 2:44:08 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
Ciao..bello...sempre gentile
HO fatto tutto lettere dopo lettera qello che mi hai indicato...di ads eliminati erano parecchi...svuotato prefetch,..pulito con ccleaner,...svuotato cestino.. ti posto la cartella temp..ho svuotato tutto tranne questi due file dove mi e' uscita questa finestra e non me li fa eliminare!!!...
Torna in alto
 
r16
Inviato: Saturday, February 14, 2009 3:28:16 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ciao fiart50 .
Non preoccuparti per quei 2 file, non sono pericolosi.
Nessun miglioramento?
Senti fiart50 , se non ci sono stati miglioramenti, si potrebbe fare una scansione con SystemScan.
SystemScan, mi permette di avere una visualizzazione più ampia del tuo pc.
E' inutile, riempirti il pc di scansioni con vari software,andando a casaccio.

SYSTEM SCAN:
scaricalo sul desktop
http://www.suspectfile.com/systemscan
aprilo ed assicurati che tutte le opzioni siano spuntate, clicca su "Scan Now" al termine della scansione verranno rilasciati (sempre sul desktop all'interno della cartella suspectfile) due file.
Vai su http://www.freefilehosting.net carica il file con estensione .zip e scrivi, nella tua prossima replica l'URL per poterlo scaricare.
Caricalo su Direct Link
Ricordati d'effettuare la scansione senza connessione attiva e con l'antivirus disabilitato salvo poi riattivarlo a scansione terminata.

NB:
la durata della scansione può risultare lunga, potrebbe addirittura sembrare che il programma non stia lavorando, non preoccuparti non è così ;)

SystemScan viene riconosciuto, erroneamente, da alcuni antivirus come infetto.
Però, se il pc fosse migliorato in modo soddisfacente, non fare la scansione.
Torna in alto
 
fiart50
Inviato: Saturday, February 14, 2009 4:28:32 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387


ciao r16.. ho caricato il file zippato nel link che mi hai dato http://www.freefilehosting.net/,..ho caricato il file,..upload,..e mi e' uscita la schermata di sopra.. non capisco quale devo copiare ed incollare nel directlink!!!!
Torna in alto
 
r16
Inviato: Saturday, February 14, 2009 5:02:05 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Scusa il ritardo fiart50 , ma il bimbo mi sta facendo dannare.......Anxious
Quando sei nella pagina che hai postato, copia con il tasto destro l'URL (nella barra degli indirizzi in alto) e lo incolli nel forum.
Torna in alto
 
fiart50
Inviato: Saturday, February 14, 2009 5:10:04 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
scusa ma ancora non capisco!!!!

ti posto il directlink : http://freefilehosting.net/download/45646

ed il forum link: 14_02_2009_16_12_report_1234631287082_2496.zip

adesso di questi due link cosa devo fare??
Torna in alto
 
r16
Inviato: Saturday, February 14, 2009 5:16:22 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
fiart50 ha scritto:
scusa ma ancora non capisco!!!!

ti posto il directlink : http://freefilehosting.net/download/45646

ed il forum link: 14_02_2009_16_12_report_1234631287082_2496.zip

adesso di questi due link cosa devo fare??

Niente fiart50 .....
I file mi sono arrivati......Drool
Dammi un pò di tempo per analizzarli.
Torna in alto
 
fiart50
Inviato: Saturday, February 14, 2009 5:24:58 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
ohh..scusa r16!!!.. pensavo fossi io che sbagliavo qualcosa che mi avevi indicato!!!!...
Torna in alto
 
r16
Inviato: Saturday, February 14, 2009 6:17:17 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ola fiart50 .
Hai degli eseguibile, che non sò a cosa si riferiscano:
CF6019.exe
CF26743.exe
CF10196.exe
Io ti consiglio di farli scansionare con Virus Total:
http://www.virustotal.com/it/
Poi ho visto che hai fatto una scansione con Combofix,(questa notte) vorrei vedere il log....Drool
Torna in alto
 
fiart50
Inviato: Sunday, February 15, 2009 11:33:09 AM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
scusa r16.. le ho dimenticate,.. ricordi tutte le procedure prima di lanciare combofix???..
Torna in alto
 
r16
Inviato: Sunday, February 15, 2009 12:35:17 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Eccole qui fiart50
Importante: Disabilita il tuo antivirus e chiudi TUTTI i programmi aperti,e dopo aver scaricato COMBOFIX, chiudi la connessione.

Scarica Combofix
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Salvalo sul desktop.
Doppio click su combofix.exe (comparirà una videata.)
Se ti verrà chiesto se vuoi Installare LA CONSOLE DI RIPRISTINO DI EMERGENZA, clicca NO.
Digita 1 premi Invio e segui le indicazioni.
Al termine, verrà creato un file log chiamato C:\ComboFix.txt. Postalo qui.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendere pazientemente la fine delle operazioni.

Disinstalla combofix in questo modo: (dopo che avrò visto il log)
Start
Esegui
nella finestra di dialogo, digita (oppure, copia ed incolla) questo comando: Combofix /u e premi Invio poi cancella le cartelle in "C" di combofix (qoobox)
Torna in alto
 
fiart50
Inviato: Sunday, February 15, 2009 5:34:40 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
omboFix 09-02-12.03 - Savio 2009-02-15 17.21.38.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1918.1416 [GMT 1:00]
Eseguito da: c:\documents and settings\Savio\Documenti\PROGRAMMI\ComboFix.exe
FW: COMODO Firewall *disabled*

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((( Files Creati Da 2009-01-15 al 2009-02-15 )))))))))))))))))))))))))))))))))))
.

2009-02-15 11:24 . 2009-02-15 11:24 <DIR> d-------- C:\67c3f7ba95a8cbc0f31032f7df47c14f
2009-02-15 11:19 . 2009-02-15 11:23 <DIR> d-------- C:\a222657fc964a925e4b81c
2009-02-15 11:19 . 2009-02-15 11:24 <DIR> d-------- C:\8837132efa4535f1d1
2009-02-15 02:13 . 2009-02-15 02:16 <DIR> d-------- C:\f4745f9dbbc0c57cd7b1de6877
2009-02-15 02:13 . 2009-02-15 02:13 <DIR> d-------- C:\bbb6e4e1ed785cd80e661514
2009-02-09 20:04 . 2009-02-09 20:04 <DIR> d-------- C:\vcs5core
2009-02-09 20:04 . 2009-02-09 20:04 <DIR> d-------- C:\vcs5BGEffects
2009-02-09 20:04 . 2009-02-09 20:04 <DIR> d-------- C:\AV_LOGS
2009-02-07 15:45 . 2009-02-07 15:45 <DIR> d-------- c:\programmi\pdfsam
2009-02-05 00:55 . 2009-02-05 00:55 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\Qualcomm
2009-02-05 00:54 . 2009-02-05 00:58 <DIR> d-------- c:\programmi\Qualcomm
2009-02-05 00:54 . 2005-08-09 16:09 317,952 --a------ c:\windows\system32\Roboex32.dll
2009-02-05 00:54 . 2005-08-09 16:09 48,640 --a------ c:\windows\system32\INETWH32.DLL
2009-02-04 22:22 . 2009-02-04 22:25 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\Faxalo
2009-02-04 12:21 . 2009-02-04 13:24 <DIR> d-------- c:\windows\BDOSCAN8
2009-02-03 14:38 . 2009-02-03 14:44 <DIR> d-------- c:\programmi\r2 Studios
2009-02-02 20:59 . 2009-02-02 20:59 <DIR> d-------- C:\spoolerlogs
2009-02-02 20:30 . 2009-02-02 20:30 5,248 --a------ c:\windows\system32\giveio.sys
2009-02-02 20:29 . 2009-02-02 21:02 <DIR> d-------- c:\programmi\SSC Service Utility
2009-01-30 15:39 . 2009-01-30 15:41 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\EuteliaF@x
2009-01-29 17:49 . 2009-01-29 18:32 <DIR> d-------- C:\Lop SD
2009-01-28 01:50 . 2009-01-28 01:50 <DIR> d-------- c:\programmi\Bonjour
2009-01-28 01:49 . 2009-01-28 11:54 <DIR> d-------- c:\programmi\File comuni\Apple
2009-01-28 01:46 . 2009-01-28 11:57 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2009-01-27 20:34 . 2009-01-27 20:34 <DIR> d-------- c:\programmi\Safari
2009-01-27 20:34 . 2009-01-27 20:34 <DIR> d-------- c:\programmi\Apple Software Update
2009-01-27 20:34 . 2009-01-27 20:34 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple
2009-01-26 16:52 . 2009-01-26 16:52 398,336 --a------ c:\windows\system32\cmd.cfexe
2009-01-25 23:17 . 2009-02-09 20:21 57,424 --ah----- c:\windows\system32\mlfcache.dat
2009-01-25 23:08 . 2009-01-28 01:51 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\Apple Computer
2009-01-24 15:49 . 2009-01-24 15:49 <DIR> d-------- c:\programmi\Magentic
2009-01-24 15:49 . 2008-08-04 09:51 750,984 --a------ c:\windows\system32\Magentic Screensaver.scr
2009-01-22 23:00 . 2009-02-02 15:52 <DIR> d-------- c:\programmi\Oberon Media
2009-01-22 23:00 . 2009-01-22 23:00 <DIR> d-------- c:\programmi\File comuni\Oberon Media
2009-01-22 23:00 . 2009-01-22 23:00 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\PlayFirst
2009-01-22 23:00 . 2009-01-22 23:00 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\PlayFirst
2009-01-22 18:09 . 2009-01-22 18:09 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\IM
2009-01-22 18:08 . 2009-01-24 13:43 <DIR> d-------- c:\programmi\IncrediMail
2009-01-22 18:08 . 2009-01-24 13:43 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\IncrediMail
2009-01-20 23:00 . 2009-01-27 22:33 <DIR> d-------- c:\programmi\Netscape
2009-01-20 23:00 . 2009-01-20 23:00 <DIR> d-------- c:\documents and settings\Savio\Dati applicazioni\Netscape

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-15 16:19 --------- d-----w c:\programmi\Eset
2009-02-14 23:31 --------- d-----w c:\programmi\Google
2009-02-14 14:26 --------- d-----w c:\programmi\Spyware Terminator
2009-02-14 14:26 --------- d-----w c:\documents and settings\Savio\Dati applicazioni\Spyware Terminator
2009-02-13 23:13 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Spyware Terminator
2009-02-12 09:34 --------- d-----w c:\programmi\eMule
2009-02-11 17:26 --------- d-----w c:\documents and settings\Savio\Dati applicazioni\Skype
2009-02-11 16:45 --------- d-----w c:\documents and settings\Savio\Dati applicazioni\skypePM
2009-02-11 12:33 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-02-09 17:18 --------- d-----w c:\programmi\Malwarebytes' Anti-Malware
2009-02-08 12:25 --------- d-----w c:\programmi\ATI Technologies
2009-02-06 23:52 --------- d-----w c:\documents and settings\Savio\Dati applicazioni\LimeWire
2009-02-04 23:54 --------- d--h--w c:\programmi\InstallShield Installation Information
2009-02-02 14:50 --------- d---a-w c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-01-31 00:42 --------- d-----w c:\programmi\WinClamAVShield
2009-01-29 19:37 --------- d-----w c:\programmi\CCleaner
2009-01-21 17:52 --------- d-----w c:\programmi\ABBYY FineReader 6.0 Sprint
2009-01-14 15:11 38,496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-14 15:11 15,504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-01-09 00:40 --------- d-----w c:\programmi\Motorola Phone Tools
2009-01-09 00:33 --------- d-----w c:\programmi\Avanquest update
2009-01-08 00:03 69,007 ----a-w c:\windows\system32\zvwyqpjhfuiedlux.dll-uninst.exe
2009-01-07 23:38 --------- d-----w c:\programmi\Motorola
2009-01-07 23:38 --------- d-----w c:\programmi\File comuni\Motorola Shared
2008-12-30 23:48 --------- d-----w c:\programmi\FreePOPs
2008-12-30 23:47 --------- d-----w c:\programmi\vso
2008-12-23 19:29 390,144 ----a-w c:\windows\system32\yacpqoaatl.dll
2008-12-20 22:31 826,368 ----a-w c:\windows\system32\wininet.dll
2008-12-19 12:09 --------- d-----w c:\programmi\Zeallsoft
2008-12-15 18:56 --------- d-----w c:\programmi\File comuni\Adobe
2008-12-15 13:31 --------- d-----w c:\programmi\Java
2008-11-19 08:39 143,096 ----a-w c:\windows\system32\guard32.dll
2008-09-06 21:07 92,064 ----a-w c:\documents and settings\Savio\mqdmmdm.sys
2008-09-06 21:07 9,232 ----a-w c:\documents and settings\Savio\mqdmmdfl.sys
2008-09-06 21:07 79,328 ----a-w c:\documents and settings\Savio\mqdmserd.sys
2008-09-06 21:07 66,656 ----a-w c:\documents and settings\Savio\mqdmbus.sys
2008-09-06 21:07 6,208 ----a-w c:\documents and settings\Savio\mqdmcmnt.sys
2008-09-06 21:07 5,936 ----a-w c:\documents and settings\Savio\mqdmwhnt.sys
2008-09-06 21:07 4,048 ----a-w c:\documents and settings\Savio\mqdmcr.sys
2008-09-06 21:07 25,600 ----a-w c:\documents and settings\Savio\usbsermptxp.sys
2008-09-06 21:07 22,768 ----a-w c:\documents and settings\Savio\usbsermpt.sys
2008-09-17 16:28 32,768 --sha-w c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\MSHist012008091720080918\index.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-02-15_ 0.10.33,89 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-08-19 16:24:23 69,120 ----a-w c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2009-02-15 01:16:05 69,120 ----a-w c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2008-08-19 16:24:25 72,192 ----a-w c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2009-02-15 01:16:11 72,192 ----a-w c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2008-08-19 16:24:18 4,444,160 ----a-w c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2009-02-15 01:16:27 4,546,560 ----a-w c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2008-08-19 16:24:25 483,840 ----a-w c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2009-02-15 01:16:27 486,400 ----a-w c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2008-08-19 16:24:21 3,036,160 ----a-w c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2009-02-15 01:16:29 2,933,248 ----a-w c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2008-08-19 16:24:26 258,048 ----a-w c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2009-02-15 01:16:26 258,048 ----a-w c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2008-08-19 16:24:26 113,664 ----a-w c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2009-02-15 01:16:26 113,664 ----a-w c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2008-08-19 16:24:25 261,120 ----a-w c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2009-02-15 01:16:15 261,632 ----a-w c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2008-08-19 16:24:20 5,431,296 ----a-w c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-02-15 01:15:59 5,238,784 ----a-w c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2008-08-19 16:24:22 10,752 ----a-w c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2009-02-15 01:16:04 10,752 ----a-w c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2008-08-19 16:24:20 507,904 ----a-w c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2009-02-15 01:16:00 507,904 ----a-w c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2008-08-19 16:24:23 13,312 ----a-w c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2009-02-15 01:16:05 13,312 ----a-w c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2008-08-19 16:24:24 8,192 ----a-w c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2009-02-15 01:16:06 8,192 ----a-w c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2008-08-19 16:24:24 77,824 ----a-w c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2009-02-15 01:16:06 77,824 ----a-w c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2008-08-19 16:24:24 6,656 ----a-w c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2009-02-15 01:16:07 6,656 ----a-w c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2008-08-19 16:24:26 348,160 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-02-15 01:16:22 348,160 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2008-08-19 16:24:26 36,864 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-02-15 01:16:23 36,864 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2008-08-19 16:24:27 655,360 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2009-02-15 01:16:24 655,360 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2008-08-19 16:24:27 77,824 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2009-02-15 01:16:25 77,824 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2008-08-19 16:24:24 749,568 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-02-15 01:16:11 749,568 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2008-08-19 16:24:24 110,592 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2009-02-15 01:16:10 110,592 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2008-08-19 16:24:23 372,736 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2009-02-15 01:16:09 372,736 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2008-08-19 16:24:26 28,672 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2009-02-15 01:16:13 28,672 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2008-08-19 16:24:23 671,744 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2009-02-15 01:16:08 659,456 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2008-08-19 16:24:19 5,632 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2009-02-15 01:16:29 5,632 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2008-08-19 16:24:26 12,800 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2009-02-15 01:16:14 12,800 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2008-08-19 16:24:23 32,768 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2009-02-15 01:16:07 32,768 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2008-08-19 16:24:23 7,168 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2009-02-15 01:16:07 7,168 ----a-w c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2008-08-19 16:24:24 110,592 ----a-w c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-02-15 01:16:26 110,592 ----a-w c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2008-08-19 16:24:25 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2009-02-15 01:16:27 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2008-08-19 16:24:20 425,984 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2009-02-15 01:16:29 425,984 ----a-w c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2008-08-19 16:24:21 741,376 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2009-02-15 01:16:24 745,472 ----a-w c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2008-08-19 16:24:21 933,888 ----a-w c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2009-02-15 01:16:18 970,752 ----a-w c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2008-08-19 16:24:27 5,070,848 ----a-w c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2009-02-15 01:16:04 5,062,656 ----a-w c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2008-08-19 16:24:27 188,416 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2009-02-15 01:16:13 188,416 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2008-08-19 16:24:22 401,408 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2009-02-15 01:16:17 401,408 ----a-w c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2008-08-19 16:24:26 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2009-02-15 01:16:03 81,920 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2008-08-19 16:24:19 630,784 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2009-02-15 01:16:30 626,688 ----a-w c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2008-08-19 16:24:26 372,736 ----a-w c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2009-02-15 01:16:25 372,736 ----a-w c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2008-08-19 16:24:26 258,048 ----a-w c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2009-02-15 01:16:24 258,048 ----a-w c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2008-08-19 16:24:25 299,008 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2009-02-15 01:16:23 303,104 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2008-08-19 16:24:25 131,072 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2009-02-15 01:16:18 131,072 ----a-w c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2008-08-19 16:24:19 258,048 ----a-w c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2009-02-15 01:16:31 258,048 ----a-w c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2008-08-19 16:24:19 114,688 ----a-w c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-02-15 01:16:31 114,688 ----a-w c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2008-08-19 16:24:22 884,736 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2009-02-15 01:16:02 835,584 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2008-08-19 16:24:22 90,112 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2009-02-15 01:16:01 77,824 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2008-08-19 16:24:21 839,680 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2009-02-15 01:16:01 839,680 ----a-w c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2008-08-19 16:24:22 5,013,504 ----a-w c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2009-02-15 01:16:03 5,025,792 ----a-w c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2008-08-19 16:24:20 2,068,480 ----a-w c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2009-02-15 01:16:30 2,048,000 ----a-w c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2008-08-19 16:24:21 3,076,096 ----a-w c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2009-02-15 01:16:12 3,149,824 ----a-w c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2008-07-06 12:06:10 89,088 ------w c:\windows\Driver Cache\i386\filterpipelineprintproc.dll
+ 2008-07-06 12:06:10 765,440 ------w c:\windows\Driver Cache\i386\mxdwdrv.dll
+ 2008-07-06 12:06:10 198,656 ------w c:\windows\Driver Cache\i386\mxdwdui.dll
+ 2008-07-06 12:06:10 373,248 ------w c:\windows\Driver Cache\i386\unidrv.dll
+ 2008-07-06 12:06:10 744,960 ------w c:\windows\Driver Cache\i386\unidrvui.dll
+ 2008-03-13 04:52:36 761,344 ------w c:\windows\Driver Cache\i386\unires.dll
- 2007-03-22 18:24:58 28,160 -c----w c:\windows\system32\dllcache\FilterPipelinePrintProc.dll
+ 2008-07-06 12:06:10 89,088 -c--a-w c:\windows\system32\dllcache\filterpipelineprintproc.dll
- 2007-03-22 18:25:42 677,376 -c----w c:\windows\system32\dllcache\PrintFilterPipelineSvc.exe
+ 2008-07-06 10:50:03 597,504 -c--a-w c:\windows\system32\dllcache\printfilterpipelinesvc.exe
- 2007-03-23 04:07:54 583,504 -c----w c:\windows\system32\dllcache\XPSSHHDR.dll
+ 2008-07-06 12:06:10 575,488 -c--a-w c:\windows\system32\dllcache\xpsshhdr.dll
- 2007-03-23 04:07:56 1,683,280 -c----w c:\windows\system32\dllcache\XpsSvcs.dll
+ 2008-07-06 12:06:10 1,676,288 -c--a-w c:\windows\system32\dllcache\xpssvcs.dll
- 2008-12-15 13:31:20 72,230 ----a-w c:\windows\system32\perfc009.dat
+ 2009-02-15 01:16:37 71,982 ----a-w c:\windows\system32\perfc009.dat
- 2008-12-15 13:31:20 94,118 ----a-w c:\windows\system32\perfc010.dat
+ 2009-02-15 01:16:37 93,722 ----a-w c:\windows\system32\perfc010.dat
- 2008-12-15 13:31:20 444,224 ----a-w c:\windows\system32\perfh009.dat
+ 2009-02-15 01:16:37 443,724 ----a-w c:\windows\system32\perfh009.dat
- 2008-12-15 13:31:20 515,624 ----a-w c:\windows\system32\perfh010.dat
+ 2009-02-15 01:16:37 515,064 ----a-w c:\windows\system32\perfh010.dat
- 2007-03-22 18:25:02 124,928 ------w c:\windows\system32\prntvpt.dll
+ 2008-07-06 12:06:10 117,760 ----a-w c:\windows\system32\prntvpt.dll
- 2009-02-13 22:39:51 2,332,880 ----a-w c:\windows\system32\Restore\rstrlog.dat
+ 2009-02-15 10:24:24 481,296 ----a-w c:\windows\system32\Restore\rstrlog.dat
- 2008-07-09 07:42:34 18,808 ------w c:\windows\system32\spmsg.dll
+ 2007-11-30 12:39:22 17,272 ------w c:\windows\system32\spmsg.dll
- 2007-03-22 18:24:50 762,880 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mxdwdrv.dll
+ 2008-07-06 12:06:10 765,440 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mxdwdrv.dll
- 2007-03-22 18:24:34 131,584 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mxdwdui.dll
+ 2008-07-06 12:06:10 198,656 ----a-w c:\windows\system32\spool\drivers\w32x86\3\mxdwdui.dll
- 2008-04-14 03:13:56 373,248 ----a-w c:\windows\system32\spool\drivers\w32x86\3\UNIDRV.DLL
+ 2008-07-06 12:06:10 373,248 ----a-w c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
- 2008-04-14 03:13:56 744,448 ----a-w c:\windows\system32\spool\drivers\w32x86\3\UNIDRVUI.DLL
+ 2008-07-06 12:06:10 744,960 ----a-w c:\windows\system32\spool\drivers\w32x86\3\unidrvui.dll
- 2007-03-22 19:03:58 761,344 ----a-w c:\windows\system32\spool\drivers\w32x86\3\unires.dll
+ 2008-03-13 04:52:36 761,344 ----a-w c:\windows\system32\spool\drivers\w32x86\3\unires.dll
- 2007-03-23 04:07:56 1,683,280 ----a-w c:\windows\system32\spool\drivers\w32x86\3\XpsSvcs.dll
+ 2008-07-06 12:06:10 1,676,288 ----a-w c:\windows\system32\spool\drivers\w32x86\3\XpsSvcs.dll
- 2006-10-14 14:43:18 27,648 ----a-w c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
+ 2008-07-06 12:06:10 89,088 ----a-w c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
- 2007-03-22 18:25:42 677,376 ------w c:\windows\system32\spool\prtprocs\w32x86\PrintFilterPipelineSvc.exe
+ 2008-07-06 10:50:03 597,504 ----a-w c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
- 2006-10-14 15:13:02 34,304 ----a-w c:\windows\system32\spool\prtprocs\x64\filterpipelineprintproc.dll
+ 2008-07-06 12:06:10 147,456 ----a-w c:\windows\system32\spool\prtprocs\x64\filterpipelineprintproc.dll
- 2007-03-22 18:53:16 746,496 ----a-w c:\windows\system32\spool\XPSEP\amd64\amd64\mxdwdrv.dll
+ 2008-07-06 12:06:10 748,032 ----a-w c:\windows\system32\spool\XPSEP\amd64\amd64\mxdwdrv.dll
- 2007-03-22 18:59:24 2,932,224 ----a-w c:\windows\system32\spool\XPSEP\amd64\amd64\xpssvcs.dll
+ 2008-07-06 16:36:12 2,936,832 ----a-w c:\windows\system32\spool\XPSEP\amd64\amd64\xpssvcs.dll
- 2007-03-22 18:53:16 746,496 ----a-w c:\windows\system32\spool\XPSEP\amd64\mxdwdrv.dll
+ 2008-07-06 12:06:10 748,032 ----a-w c:\windows\system32\spool\XPSEP\amd64\mxdwdrv.dll
- 2007-03-22 18:59:24 2,932,224 ----a-w c:\windows\system32\spool\XPSEP\amd64\xpssvcs.dll
+ 2008-07-06 16:36:12 2,936,832 ----a-w c:\windows\system32\spool\XPSEP\amd64\xpssvcs.dll
- 2007-03-22 18:24:50 762,880 ----a-w c:\windows\system32\spool\XPSEP\i386\i386\mxdwdrv.dll
+ 2008-07-06 12:06:10 765,440 ----a-w c:\windows\system32\spool\XPSEP\i386\i386\mxdwdrv.dll
- 2007-03-23 04:07:56 1,683,280 ----a-w c:\windows\system32\spool\XPSEP\i386\i386\xpssvcs.dll
+ 2008-07-06 12:06:10 1,676,288 ----a-w c:\windows\system32\spool\XPSEP\i386\i386\xpssvcs.dll
- 2007-03-22 18:24:50 762,880 ----a-w c:\windows\system32\spool\XPSEP\i386\mxdwdrv.dll
+ 2008-07-06 12:06:10 765,440 ----a-w c:\windows\system32\spool\XPSEP\i386\mxdwdrv.dll
- 2007-03-23 04:07:56 1,683,280 ----a-w c:\windows\system32\spool\XPSEP\i386\xpssvcs.dll
+ 2008-07-06 12:06:10 1,676,288 ----a-w c:\windows\system32\spool\XPSEP\i386\xpssvcs.dll
- 2007-08-10 06:20:26 26,488 ----a-w c:\windows\system32\spupdsvc.exe
+ 2007-11-30 11:18:51 26,488 ----a-w c:\windows\system32\spupdsvc.exe
- 2007-03-23 04:07:54 583,504 ------w c:\windows\system32\XPSSHHDR.dll
+ 2008-07-06 12:06:10 575,488 ----a-w c:\windows\system32\xpsshhdr.dll
- 2007-03-23 04:07:56 1,683,280 ------w c:\windows\system32\XpsSvcs.dll
+ 2008-07-06 12:06:10 1,676,288 ----a-w c:\windows\system32\xpssvcs.dll
+ 2009-02-15 16:19:47 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_138.dat
- 2008-08-19 16:24:24 8,192 ----a-w c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2009-02-15 01:16:06 8,192 ----a-w c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-07-25 10:17:20 479,232 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2008-07-25 10:17:20 558,080 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 10:17:20 635,904 ----a-w c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
- 2008-08-19 16:24:26 258,048 ----a-w c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2009-02-15 01:16:26 258,048 ----a-w c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2008-08-19 16:24:26 113,664 ----a-w c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2009-02-15 01:16:26 113,664 ----a-w c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"StartCCC"="c:\programmi\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"MsnMsgr"="c:\progra~1\WINDOW~4\MESSEN~1\msnmsgr.exe" [2008-11-06 5724184]
"IncrediMail"="c:\programmi\IncrediMail\bin\IncMail.exe" [2009-01-15 251264]
"EPSON Stylus DX7400 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATICDE.EXE" [2007-04-12 182272]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-07 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WireLessMouse "="c:\programmi\Multimedia Combo Set\MouseDrv.exe" [2004-06-27 503808]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"NBKeyScan"="c:\programmi\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2008-10-06 185896]
"SpywareTerminator"="c:\progra~1\SPYWAR~1\SpywareTerminatorShield.exe" [2008-10-12 1783808]
"COMODO Firewall Pro"="c:\programmi\COMODO\Firewall\cfp.exe" [2008-11-19 1796856]
"COMODO Internet Security"="c:\programmi\COMODO\Firewall\cfp.exe" [2008-11-19 1796856]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2008-11-10 136600]
"WireLessKeyboard "="c:\programmi\Multimedia Combo Set\PS2USBKbdDrv.exe" [2005-08-02 233472]
"RTHDCPL"="RTHDCPL.EXE" [2007-03-21 c:\windows\RTHDCPL.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programmi\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-10-15 01:04 39792 c:\programmi\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 14:57 153136 c:\programmi\File comuni\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"LifeCam"="c:\programmi\Microsoft LifeCam\LifeExp.exe"
"VX1000"=c:\windows\vVX1000.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\LimeWire\\LimeWire.exe"=
"c:\\Programmi\\eMule\\eMule.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\Nero\\Nero8\\Nero Home\\NeroHome.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Programmi\\Java\\jre6\\bin\\java.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\Programmi\\Motorola\\Software Update\\msu.exe"=
"c:\\Programmi\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Programmi\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Programmi\\IncrediMail\\bin\\ImpCnt.exe"=
"c:\\Programmi\\Magentic\\bin\\MgImp.exe"=
"c:\\Programmi\\Magentic\\bin\\Magentic.exe"=
"c:\\Programmi\\Magentic\\bin\\MgApp.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=

R1 cmdGuard;COMODO Firewall Pro Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2008-11-02 99216]
R1 cmdHlp;COMODO Firewall Pro Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2008-11-02 31504]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-10-12 141312]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys --> c:\windows\system32\DRIVERS\motccgp.sys [?]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys --> c:\windows\system32\DRIVERS\motccgpfl.sys [?]
S3 MotDev;Motorola Inc. USB Device;c:\windows\system32\drivers\motodrv.sys [2008-10-10 42112]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\ccc-core-static]
msiexec /fums {A75BF1D0-C7C3-CB55-EE17-3225387FD154} /qb
.
Contenuto della cartella 'Scheduled Tasks'

2009-01-27 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.msn.it/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = iexplore
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-15 17:23:26
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(756)
c:\windows\system32\guard32.dll
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'lsass.exe'(812)
c:\windows\system32\guard32.dll
.
Ora fine scansione: 2009-02-15 17.24.35
ComboFix-quarantined-files.txt 2009-02-15 16:24:33
ComboFix2.txt 2009-02-14 23:11:24

Pre-Run: 84.563.562.496 byte disponibili
Post-Run: 84,647,718,912 byte disponibili

387 --- E O F --- 2009-02-15 10:23:29
Torna in alto
 
r16
Inviato: Sunday, February 15, 2009 7:22:00 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ciao fiart50 .
Anche il log di Combofix, non rileva fetecchie.
A mio parere il rallentamento del pc, è causato da qualche programma, che và in conflitto con il firewall.
Difficile che il rallentamento possa dipendere da un virus.
Ci sono molti file che sono indecifrabili. (per questo, non è detto che siano virus)
Oltre a quelli che ti ho già segnalato nel post precedente, anche Combofix mi segnala questi:
C:\67c3f7ba95a8cbc0f31032f7df47c14f
C:\a222657fc964a925e4b81c
C:\8837132efa4535f1d1
C:\f4745f9dbbc0c57cd7b1de6877
C:\bbb6e4e1ed785cd80e661514
E, il bello è, che si sono creati oggi, e precisamente: 3 alle ore 11:24 . e 2 alle ore 02:16
Cosa hai scaricato?
Torna in alto
 
fiart50
Inviato: Sunday, February 15, 2009 8:31:19 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
a quell'ora ho cercato di ricaricare google earth 5... l'ho caricato ma si carica lentissimamente!!!..poi ho effettuato il ripristino del sistema per cercare di recuperare il vecchio che andava alla grande...ma non e' stato possibile!!!! secondo me e' earth che mi da questi problemi.. pensare che prima l'avevo la versione 4.2 e non mi ha dato mai problemi!!!!... poi mi ha aggiornato automaticamente al 5 e una volta caricato si e' rallentato tutto!!!.. che facciamo con questi file???... ti faccio una scansione con malwerebyte's??... e con nod32??...quelli che mi hai segnalato prima sono scomparsi con il riavvia computer!!!..strano vero??? faccio una pulizia con ccleaner
Torna in alto
 
r16
Inviato: Sunday, February 15, 2009 9:44:52 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ciao.
Penso sia inutile una scansione con Malwarebytes, in quanto,non penso si tratti di un virus.
Comunque falla, e vediamo se rileva qualcosa.
Se ci tieni tanto a google earth 5, prova a scaricarlo con il firewall disabilitato temporaneamente.
Magari è lui che rompe.....
Io al posto tuo, farei come ti ho detto al mio primo post........Drool
Torna in alto
 
fiart50
Inviato: Monday, February 16, 2009 12:43:44 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
incredibile...ho disabilitato firewall e tutto ed ancora quando installo earth 5 non va!!!... e' lentissimo per aprirsi!!!..e' stra-lento per aprire una mappa!!!.. prima avevo il 4.2 era buonissimo!!!..tento di re-installare il 4.2 e mi da lo stesso problema.... bohhh!!!!

risolto.. da google scaricavo la versione beta!!!!.. su filehippo ho scaricato la versione che avevo e va di nuovo una bomba!!!
Torna in alto
 
r16
Inviato: Monday, February 16, 2009 5:39:52 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,017
Ciao fiart50 .
Bravo, ti sei arrangiato da solo.Applause
Elimina SystemScan, e Combofix, e fai una pulizia con CCleaner.
Ciao!
Torna in alto
 
fiart50
Inviato: Monday, February 16, 2009 6:09:43 PM

Rank: AiutAmico

Iscritto dal : 8/17/2008
Posts: 387
beh...girando da perecchio su questo forum anche se sei proprio negato in materia qualcosa la si impara sempre no!!!! chissa' perche la versione beta non se la fila proprio il mio pc????... bohhh!!! Not talking Not talking
Torna in alto
 
Utenti presenti in questo topic
Guest

2 pages: [1] 2

Aiutamici Forum » Computer & Internet » Problemi Informatici » Ciao R16....computer lento dopo aver scaricato google earth..


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.