ecco i apporto combo
ComboFix 09-08-10.06 - proprietario 14/08/2009 12.18.22.1.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.1024.250 [GMT 2:00]
Eseguito da: c:\documents and settings\proprietario\Desktop\ComboFix.exe
AV: McAfee VirusScan *On-access scanning disabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Personal Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
FW: PC Tools Firewall Plus *disabled* {ABBD5028-5A95-4B6D-996E-98D64AE88D52}
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\All Users\Menu Avvio\Programmi\Windows Live Messenger .lnk
c:\documents and settings\proprietario\Dati applicazioni\inst.exe
c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\eomuwyw.dat
c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\eomuwyw.exe
c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\eomuwyw_nav.dat
c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\eomuwyw_navps.dat
c:\windows\Installer\1b28b1a.msp
c:\windows\Installer\35556a6.msi
c:\windows\Installer\35556a7.msp
c:\windows\Installer\35556a8.msp
c:\windows\Installer\35556a9.msp
c:\windows\Installer\35556aa.msp
c:\windows\Installer\35556ab.msp
c:\windows\Installer\35556ac.msp
c:\windows\Installer\35556ad.msp
c:\windows\Installer\35556ae.msp
c:\windows\Installer\35556af.msp
c:\windows\Installer\35556b0.msp
c:\windows\system32\_000006_.tmp.dll
c:\windows\system32\_000009_.tmp.dll
c:\windows\system32\_000010_.tmp.dll
c:\windows\system32\_000011_.tmp.dll
c:\windows\system32\_000012_.tmp.dll
c:\windows\system32\_000023_.tmp.dll
c:\windows\system32\mfc45.dll
.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NWCWORKSTATION
-------\Service_NWCWorkstation
((((((((((((((((((((((((( Files Creati Da 2009-07-14 al 2009-08-14 )))))))))))))))))))))))))))))))))))
.
2009-08-13 13:22 . 2009-08-13 13:22 -------- d-----w- c:\programmi\Astonsoft
2009-08-08 16:24 . 2009-08-10 16:42 -------- d-----w- c:\windows\system32\XPSViewer
2009-08-08 16:23 . 2009-08-08 16:23 -------- d-----w- c:\programmi\Reference Assemblies
2009-08-08 16:20 . 2009-08-09 05:50 -------- d-----w- c:\windows\SxsCaPendDel
2009-08-07 19:48 . 2009-08-07 19:48 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\Auslogics
2009-08-07 19:19 . 2009-08-07 19:19 -------- d-----w- c:\programmi\CCleaner
2009-08-07 16:11 . 2009-08-07 16:11 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\PCToolsFirewallPlus
2009-08-07 16:04 . 2009-08-07 16:41 -------- d-----w- c:\programmi\File comuni\PC Tools
2009-08-06 17:39 . 2009-08-06 17:39 6144 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Spyware Terminator\sp_rsdel.exe
2009-08-06 17:39 . 2009-08-06 17:39 5632 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Spyware Terminator\fileobjinfo.sys
2009-08-06 17:39 . 2009-08-06 17:39 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2009-08-06 17:39 . 2009-08-13 18:02 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\Spyware Terminator
2009-08-06 17:39 . 2009-08-14 08:40 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spyware Terminator
2009-08-06 17:39 . 2009-08-06 18:10 -------- d-----w- c:\programmi\Spyware Terminator
2009-08-06 13:42 . 2009-08-06 13:52 -------- d-----w- c:\programmi\Spybot - Search & Destroy
2009-07-28 19:28 . 2009-05-13 21:25 79816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2009-07-28 19:28 . 2009-05-13 21:25 40552 ----a-w- c:\windows\system32\drivers\mfesmfk.sys
2009-07-28 19:28 . 2009-05-13 21:25 35272 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2009-07-28 19:28 . 2009-04-09 12:23 120136 ----a-w- c:\windows\system32\drivers\Mpfp.sys
2009-07-28 19:28 . 2009-07-28 19:28 -------- d-----w- c:\programmi\File comuni\McAfee
2009-07-28 19:28 . 2009-07-28 19:28 -------- d-----w- c:\programmi\McAfee.com
2009-07-28 19:27 . 2009-07-28 23:26 -------- d-----w- c:\programmi\McAfee
2009-07-28 19:23 . 2009-05-13 21:24 34248 ----a-w- c:\windows\system32\drivers\mferkdk.sys
2009-07-17 23:43 . 2009-08-01 20:43 -------- d-----w- c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\Temp
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-13 13:07 . 2007-08-04 17:54 1744 ----a-w- c:\windows\system32\d3d9caps.dat
2009-08-12 16:04 . 2008-03-05 14:19 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-08-12 15:56 . 2007-07-20 18:31 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\DVD Shrink
2009-08-10 22:49 . 2007-03-22 14:05 78184 -c--a-w- c:\documents and settings\proprietario\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-08-10 17:07 . 2001-08-31 15:00 93722 ----a-w- c:\windows\system32\perfc010.dat
2009-08-10 17:07 . 2001-08-31 15:00 515080 ----a-w- c:\windows\system32\perfh010.dat
2009-08-08 18:00 . 2007-03-22 15:41 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-08-08 16:23 . 2007-07-28 11:17 -------- d-----w- c:\programmi\MSBuild
2009-08-07 19:48 . 2007-07-25 19:47 -------- d-----w- c:\programmi\AusLogics Disk Defrag
2009-08-07 19:12 . 2008-09-07 18:07 -------- d-----w- c:\programmi\Teen Spirit
2009-08-07 19:12 . 2008-11-06 19:00 -------- d-----w- c:\programmi\IObit
2009-08-07 16:34 . 2008-08-11 18:50 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-08-05 09:05 . 2004-08-19 13:39 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-28 19:32 . 2008-08-27 09:26 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\McAfee
2009-07-17 18:56 . 2004-08-19 13:39 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-13 21:43 . 2004-08-19 13:39 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-11 19:13 . 2007-10-14 20:49 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\dvdcss
2009-07-10 18:17 . 2008-07-07 18:43 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\U3
2009-06-30 19:24 . 2008-04-29 18:50 52634 -c--a-w- c:\documents and settings\proprietario\Dati applicazioni\mdbu.bin
2009-06-29 15:55 . 2004-08-19 13:39 827392 ----a-w- c:\windows\system32\wininet.dll
2009-06-29 15:55 . 2004-08-19 13:39 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-06-29 15:54 . 2004-08-19 13:39 17408 ----a-w- c:\windows\system32\corpol.dll
2009-06-28 17:09 . 2007-07-29 10:31 -------- d-----w- c:\documents and settings\proprietario\Dati applicazioni\XnView
2009-06-25 18:34 . 2004-08-19 13:39 95744 ----a-w- c:\windows\system32\mqsec.dll
2009-06-25 18:34 . 2004-08-19 13:39 519168 ----a-w- c:\windows\system32\mqutil.dll
2009-06-25 18:34 . 2004-08-19 13:39 517120 ----a-w- c:\windows\system32\mqsnap.dll
2009-06-25 18:34 . 2004-08-19 13:39 48640 ----a-w- c:\windows\system32\mqupgrd.dll
2009-06-25 18:34 . 2004-08-19 13:39 186880 ----a-w- c:\windows\system32\mqtrig.dll
2009-06-25 18:34 . 2004-08-19 13:39 123392 ----a-w- c:\windows\system32\mqrtdep.dll
2009-06-25 18:34 . 2004-08-19 13:39 661504 ----a-w- c:\windows\system32\mqqm.dll
2009-06-25 18:34 . 2004-08-19 13:39 47104 ----a-w- c:\windows\system32\mqdscli.dll
2009-06-25 18:34 . 2004-08-19 13:39 225280 ----a-w- c:\windows\system32\mqoa.dll
2009-06-25 18:34 . 2004-08-19 13:39 177152 ----a-w- c:\windows\system32\mqrt.dll
2009-06-25 18:34 . 2004-08-19 13:39 16896 ----a-w- c:\windows\system32\mqise.dll
2009-06-25 18:34 . 2004-08-19 13:39 138240 ----a-w- c:\windows\system32\mqad.dll
2009-06-23 14:13 . 2007-07-19 15:05 -------- d-----r- c:\programmi\Video
2009-06-22 11:49 . 2004-08-19 13:39 19968 ----a-w- c:\windows\system32\mqbkup.exe
2009-06-22 11:49 . 2004-08-19 13:39 117248 ----a-w- c:\windows\system32\mqtgsvc.exe
2009-06-22 11:49 . 2004-08-19 13:39 4608 ----a-w- c:\windows\system32\mqsvc.exe
2009-06-22 11:48 . 2004-08-03 20:58 91776 ----a-w- c:\windows\system32\drivers\mqac.sys
2009-06-19 17:49 . 2009-06-19 17:49 -------- d-----w- c:\programmi\File comuni\xing shared
2009-06-19 17:49 . 2008-03-24 15:32 -------- d-----w- c:\programmi\File comuni\Real
2009-06-19 17:49 . 2007-08-05 16:07 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-06-19 17:49 . 2007-08-05 16:07 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-06-19 17:46 . 2007-07-19 15:22 -------- d-----w- c:\programmi\Google
2009-06-16 14:53 . 2004-08-19 13:39 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-16 14:53 . 2001-08-31 15:00 82432 ----a-w- c:\windows\system32\fontsub.dll
2009-06-15 11:32 . 2004-08-19 13:39 78336 ----a-w- c:\windows\system32\telnet.exe
2009-06-15 11:32 . 2004-08-19 13:39 82432 ----a-w- c:\windows\system32\tlntsess.exe
2009-06-10 14:23 . 2004-08-19 13:39 85504 ----a-w- c:\windows\system32\avifil32.dll
2009-06-10 06:26 . 2004-08-19 13:39 134144 ----a-w- c:\windows\system32\wkssvc.dll
2009-06-09 15:04 . 2007-03-22 11:33 1871872 ----a-w- c:\windows\system32\mstscax.dll
2009-06-03 19:25 . 2004-08-19 13:39 1295872 ----a-w- c:\windows\system32\quartz.dll
2008-10-06 21:43 . 2008-09-21 17:09 103 -c--a-w- c:\programmi\MegaLab.it.url
2008-03-01 13:32 . 2008-03-01 13:32 15251 -c--a-w- c:\programmi\settings.dat
2007-04-01 16:41 . 2007-07-19 15:05 520 -c--a-w- c:\programmi\spider.sav
2004-10-01 13:00 . 2007-07-19 15:03 40960 -c--a-w- c:\programmi\Uninstall_CDS.exe
2002-03-11 09:06 . 2002-03-11 09:06 1822520 -c--a-w- c:\programmi\instmsiw.exe
2002-03-11 08:45 . 2002-03-11 08:45 1708856 -c--a-w- c:\programmi\instmsia.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-03 68856]
"MSMSGS"="c:\programmi\Messenger\msmsgs.exe" [2007-04-11 1661304]
"Advanced SystemCare 3"="c:\programmi\IObit\Advanced SystemCare 3\AWC.exe" [2008-11-06 2235408]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
"TomTomHOME.exe"="c:\programmi\TomTom HOME 2\TomTomHOMERunner.exe" [2009-04-08 251240]
"SpywareTerminatorUpdate"="c:\programmi\Spyware Terminator\SpywareTerminatorUpdate.exe" [2009-08-06 3055616]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-05-01 148888]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2009-06-19 198160]
"mcagent_exe"="c:\programmi\McAfee.com\Agent\mcagent.exe" [2009-05-01 645328]
"McENUI"="c:\progra~1\McAfee\MHN\McENUI.exe" [2009-04-09 1176808]
"SpywareTerminator"="c:\programmi\Spyware Terminator\SpywareTerminatorShield.exe" [2009-08-06 2171904]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-19 15360]
c:\documents and settings\proprietario\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2007-12-7 101440]
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Gamma Loader.lnk - c:\programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe [2007-7-29 113664]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programmi\Windows Desktop Search\MSNLNamespaceMgr.dll" [2007-02-05 294400]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Programmi\\Messenger\\Msmsgs.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\File comuni\\McAfee\\MNA\\McNASvc.exe"=
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [06/08/2009 19.39.50 142592]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\programmi\iolo\Common\Lib\ioloServiceManager.exe [06/11/2008 22.39.28 596840]
R2 ioloSystemService;iolo System Service;c:\programmi\iolo\Common\Lib\ioloServiceManager.exe [06/11/2008 22.39.28 596840]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\programmi\McAfee\SiteAdvisor\McSACore.exe [28/07/2009 21.31.14 206112]
R2 TomTomHOMEService;TomTomHOMEService;c:\programmi\TomTom HOME 2\TomTomHOMEService.exe [08/04/2009 12.38.14 92008]
S2 gupdate1c9f105e6f75df7;Servizio di Google Update (gupdate1c9f105e6f75df7);c:\programmi\Google\Update\GoogleUpdate.exe [19/06/2009 19.46.39 133104]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\2C4.tmp --> c:\windows\system32\2C4.tmp [?]
--- Altri Servizi/Drivers In Memoria ---
*Deregistered* - uphcleanhlp
.
Contenuto della cartella 'Scheduled Tasks'
2009-08-05 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 15:57]
2009-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-06-19 17:46]
2009-08-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-06-19 17:46]
2009-07-28 c:\windows\Tasks\McDefragTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2009-07-28 06:57]
2009-07-28 c:\windows\Tasks\McQcTask.job
- c:\progra~1\mcafee\mqc\QcConsol.exe [2009-07-28 06:57]
2009-08-14 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
- c:\programmi\Spybot - Search & Destroy\SpybotSD.exe [2009-08-06 13:31]
2009-08-13 c:\windows\Tasks\User_Feed_Synchronization-{B4409BC6-225A-4808-8F5E-3C62CA67C010}.job
- c:\windows\system32\msfeedssync.exe [2007-07-30 16:36]
2009-08-14 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2009-04-09 20:18]
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
HKCU-Run-eomuwyw - c:\documents and settings\proprietario\impostazioni locali\dati applicazioni\eomuwyw.exe
Notify-WgaLogon - (no file)
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.fastweb.it/portale/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Aggiungi all'elenco di stampa Easy-WebPrint - c:\programmi\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
IE: Anteprima Easy-WebPrint - c:\programmi\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Invia a &Bluetooth
IE: Stampa ad alta velocità Easy-WebPrint - c:\programmi\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
IE: Stampa Easy-WebPrint - c:\programmi\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
Trusted Zone: internet
Trusted Zone: mcafee.com
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
.
.
------- Associazioni dei file -------
.
JSEFile=NOTEPAD.EXE %1
VBEFile=NOTEPAD.EXE %1
VBSFile=NOTEPAD.EXE %1
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-08-14 12:31
Windows 5.1.2600 Service Pack 2 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\2C4.tmp"
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\Power Translator\LogoMedia TranslateDotNet Server.exe
c:\progra~1\McAfee\MSC\mcmscsvc.exe
c:\programmi\File comuni\McAfee\MNA\McNASvc.exe
c:\progra~1\FILECO~1\McAfee\McProxy\McProxy.exe
c:\progra~1\McAfee\VirusScan\Mcshield.exe
c:\programmi\McAfee\MPF\MpfSrv.exe
c:\windows\system32\HPZipm12.exe
c:\programmi\CyberLink\Shared files\RichVideo.exe
c:\programmi\Analog Devices\SoundMAX\SMAgent.exe
c:\programmi\Spyware Terminator\sp_rsser.exe
c:\programmi\UPHClean\uphclean.exe
c:\windows\system32\searchindexer.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexingService.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\system32\notepad.exe
.
**************************************************************************
.
Ora fine scansione: 2009-08-14 12.41.22 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2009-08-14 10:41
Pre-Run: 24.855.035.904 byte disponibili
Post-Run: 24.986.583.040 byte disponibili
WindowsXP-KB310994-SP2-Pro-BootDisk-ITA.exe
276 --- E O F --- 2009-08-12 16:09
