Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13.10.30, on 13/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Programmi\File comuni\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Programmi\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Programmi\Logitech\QuickCam\Quickcam.exe
C:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe
C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\IObit\Advanced SystemCare 3\AWC.exe
C:\Programmi\File comuni\Nero\Lib\NMIndexStoreSvr.exe
C:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe
C:\Programmi\File comuni\Logishrd\LQCVFX\COCIManager.exe
C:\Programmi\File comuni\Nero\Lib\NMIndexingService.exe
C:\Programmi\File comuni\LightScribe\LightScribeControlPanel.exe
C:\Programmi\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\mmc.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O4 - HKLM\..\Run: [nwiz] C:\Programmi\NVIDIA Corporation\nView\nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Programmi\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Programmi\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [Acronis True Image Monitor] "C:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Programmi\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [SmartRAM] "C:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [Philips Intelligent Agent] "C:\Programmi\Philips Intelligent Agent\Philips Intelligent Agent.exe" /SILENT
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Programmi\File comuni\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [swg] C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Programmi\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Policies\Explorer\Run: [NT Printing Services6] dllhosts.exe
O4 - HKCU\..\Policies\Explorer\Run: [Windows Printing Driver] doskeys.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B34C1F7D-5476-43FB-BF44-D39558A3A447}: NameServer = 62.211.69.170,212.48.4.30
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Servizio di Google Update (gupdate1ca2fbdb6a5d088) (gupdate1ca2fbdb6a5d088) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Programmi\File comuni\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe

Ciao.
Certo, che se oltre a postare il log, dicevi anche il tipo di problemi (sempre che di problemi si tratti) che affligge il tuo pc, ci aiutavi meglio.

Fai queste 2 scansioni, eseguendo alla lettera le indicazioni:

Scarica ed installa MalwareBytes:
clicca qui per il download : http://www.aiutamici.com/software?id=80346
Prima di fare la scansione AGGIORNALO. (è molto importante)
Esegui una scansione completa del sistema.
Posta il log.
*********************************************************************************
Scarica Combofix
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Salvalo sul desktop.

Importante: Disabilita il tuo antivirus e chiudi TUTTI i programmi aperti,(Firewall compreso) e dopo aver scaricato COMBOFIX, chiudi la connessione.

Doppio click su combofix.exe (comparirà una videata.)
Se ti verrà chiesto se vuoi Installare LA CONSOLE DI RIPRISTINO DI EMERGENZA, clicca NO.
E' probabile che ti siano inviati messaggi dall'antivirus, tu ignorali.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendere pazientemente la fine delle operazioni.
Al termine, verrà creato un file log sul Desktop, chiamato C:\ComboFix.txt. Postalo qui.

Disinstalla combofix in questo modo: (dopo che avrò visto il log)
Start
Esegui
nella finestra di dialogo, copia ed incolla questo comando: Combofix /u e premi Invio poi cancella le cartelle in "C" di Combofix e (qoobox)

ComboFix 09-09-12.A0 - Marco 13/09/2009 18.54.59.1.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.2047.1527 [GMT 2:00]
Eseguito da: d:\video\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\config\49446640.Evt
c:\windows\TEMP\logishrd\LVPrcInj01.dll

.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_ASC3550P
-------\Service_asc3550p


((((((((((((((((((((((((( Files Creati Da 2009-08-13 al 2009-09-13 )))))))))))))))))))))))))))))))))))
.

2010-09-12 10:10 . 2010-09-12 10:10 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2010-09-12 10:10 . 2010-09-12 10:10 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-09-12 10:10 . 2010-09-12 10:10 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-09-12 10:10 . 2009-09-13 09:18 -------- d-----w- c:\windows\system32\drivers\Avg
2010-09-12 10:10 . 2010-09-12 10:10 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-09-12 10:10 . 2010-09-12 10:10 -------- d-----w- c:\programmi\AVG
2010-09-12 10:10 . 2010-09-12 10:10 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\avg8
2010-09-12 09:44 . 2010-09-12 09:44 507392 ----a-w- c:\windows\system32\autoprnt.exe
2010-09-12 09:44 . 2010-09-12 09:44 -------- d-----w- c:\programmi\File comuni\Acronis
2010-09-01 16:29 . 2010-09-01 16:29 376 ----a-w- c:\windows\mozregistry.dat
2010-09-01 16:28 . 2010-09-01 16:28 -------- d-----w- c:\programmi\hp deskjet 845c series
2010-09-01 16:27 . 2010-09-01 16:28 -------- d-----w- c:\programmi\Hewlett-Packard
2010-09-01 16:22 . 2010-09-01 16:22 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Philips
2010-09-01 16:21 . 2010-09-01 16:22 -------- d-----w- c:\programmi\Philips Intelligent Agent
2010-09-01 16:08 . 2009-09-01 17:49 -------- d-----w- c:\windows\ServicePackFiles
2009-09-13 14:57 . 2009-09-13 14:57 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\Malwarebytes
2009-09-13 14:57 . 2009-09-10 12:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-13 14:56 . 2009-09-13 14:57 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2009-09-13 14:56 . 2009-09-13 14:56 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-09-13 14:56 . 2009-09-10 12:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-13 11:22 . 2009-09-13 12:29 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-09-13 11:22 . 2009-09-13 11:26 -------- d-----w- c:\programmi\Spybot - Search & Destroy
2009-09-13 11:10 . 2009-09-13 11:10 -------- d-----w- c:\programmi\Trend Micro
2009-09-12 21:15 . 2009-09-12 21:16 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\DVD Shrink
2009-09-12 21:15 . 2009-09-12 21:15 -------- d-----w- c:\programmi\DVD Shrink
2009-09-12 10:20 . 2009-09-13 15:00 -------- d-----w- C:\$AVG8.VAULT$
2009-09-10 11:33 . 2008-04-13 18:45 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2009-09-09 13:15 . 2009-06-21 21:47 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2009-09-08 09:53 . 2009-09-08 10:01 -------- d-----w- c:\programmi\uTorrent
2009-09-08 09:51 . 2009-09-11 16:44 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\uTorrent
2009-09-07 13:39 . 2009-09-07 13:39 -------- d-----w- c:\documents and settings\NetworkService\Impostazioni locali\Dati applicazioni\Google
2009-09-07 13:18 . 2009-09-07 13:18 -------- d-----w- c:\documents and settings\LocalService\Impostazioni locali\Dati applicazioni\Google
2009-09-07 13:18 . 2009-09-07 13:33 -------- d-----w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\Google
2009-09-07 13:15 . 2009-09-07 13:20 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Google Updater
2009-09-07 13:15 . 2009-09-07 13:19 -------- d-----w- c:\programmi\Google
2009-09-06 19:57 . 2009-09-06 19:57 -------- d-sh--w- c:\documents and settings\Max\IECompatCache
2009-09-06 19:56 . 2009-09-06 19:56 -------- d-sh--w- c:\documents and settings\Max\PrivacIE
2009-09-06 19:00 . 2009-09-06 19:00 -------- d-----w- c:\documents and settings\Max\Dati applicazioni\skypePM
2009-09-06 18:58 . 2009-09-06 20:33 -------- d-----w- c:\documents and settings\Max\Dati applicazioni\Skype
2009-09-06 18:57 . 2009-09-06 18:57 -------- d-----w- c:\documents and settings\Max\Impostazioni locali\Dati applicazioni\Ahead
2009-09-06 18:57 . 2009-09-06 18:57 -------- d-----w- c:\documents and settings\Max\Dati applicazioni\Nero
2009-09-06 18:56 . 2009-09-01 15:27 -------- d--h--w- c:\documents and settings\Max\Risorse di stampa
2009-09-06 18:56 . 2009-09-01 15:27 -------- d--h--w- c:\documents and settings\Max\Risorse di rete
2009-09-06 18:56 . 2009-09-01 15:27 -------- d-----r- c:\documents and settings\Max\Menu Avvio
2009-09-06 18:56 . 2009-09-01 13:40 -------- d--h--w- c:\documents and settings\Max\Modelli
2009-09-06 18:48 . 2009-09-06 18:48 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\Leadertech
2009-09-06 18:48 . 2008-12-17 06:01 432664 ----a-r- c:\windows\system32\LVUI2RC.dll
2009-09-06 18:48 . 2008-12-17 06:00 494104 ----a-r- c:\windows\system32\LVUI2.dll
2009-09-06 18:48 . 2008-12-17 05:55 416280 ----a-r- c:\windows\system32\lvcodec2.dll
2009-09-06 18:48 . 2008-12-17 06:01 6364440 ----a-r- c:\windows\system32\drivers\lvuvc.sys
2009-09-06 18:46 . 2008-12-17 05:37 29562 ----a-r- c:\windows\system32\Repository.reg
2009-09-06 18:46 . 2008-12-17 06:01 41752 ----a-r- c:\windows\system32\drivers\LVUSBSta.sys
2009-09-06 18:46 . 2008-12-17 06:00 768024 ----a-r- c:\windows\system32\drivers\lvrs.sys
2009-09-06 18:46 . 2008-12-17 05:55 195096 ----a-r- c:\windows\system32\lvci11901262.dll
2009-09-06 18:44 . 2008-12-17 06:02 23832 ----a-r- c:\windows\system32\drivers\lvuvcflt.sys
2009-09-06 18:44 . 2009-09-06 18:46 -------- dc----w- c:\windows\system32\DRVSTORE
2009-09-06 18:43 . 2009-09-06 18:48 -------- d-----w- c:\programmi\File comuni\LogiShrd
2009-09-06 18:43 . 2009-09-06 18:43 -------- d-----w- c:\programmi\Logitech
2009-09-06 18:36 . 2009-09-06 18:36 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-09-06 18:36 . 2009-09-08 17:55 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\skypePM
2009-09-06 18:35 . 2009-09-06 18:35 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\LogiShrd
2009-09-06 18:34 . 2008-04-13 18:39 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2009-09-06 18:34 . 2008-04-13 18:39 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys
2009-09-06 18:34 . 2008-04-13 18:46 10880 -c--a-w- c:\windows\system32\dllcache\ndisip.sys
2009-09-06 18:34 . 2008-04-13 18:46 10880 ----a-w- c:\windows\system32\drivers\NdisIP.sys
2009-09-06 18:34 . 2008-04-13 18:46 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2009-09-06 18:34 . 2008-04-13 18:46 15232 ----a-w- c:\windows\system32\drivers\StreamIP.sys
2009-09-06 18:34 . 2008-04-13 18:46 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2009-09-06 18:34 . 2008-04-13 18:46 11136 ----a-w- c:\windows\system32\drivers\SLIP.sys
2009-09-06 18:34 . 2008-04-13 18:46 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2009-09-06 18:34 . 2008-04-13 18:46 19200 ----a-w- c:\windows\system32\drivers\WSTCODEC.SYS
2009-09-06 18:33 . 2008-04-13 18:46 85248 -c--a-w- c:\windows\system32\dllcache\nabtsfec.sys
2009-09-06 18:33 . 2008-04-13 18:46 85248 ----a-w- c:\windows\system32\drivers\NABTSFEC.sys
2009-09-06 18:33 . 2008-04-13 18:46 17024 -c--a-w- c:\windows\system32\dllcache\ccdecode.sys
2009-09-06 18:33 . 2008-04-13 18:46 17024 ----a-w- c:\windows\system32\drivers\CCDECODE.sys
2009-09-06 18:33 . 2008-04-13 18:45 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2009-09-06 18:33 . 2008-04-13 18:45 60032 ----a-w- c:\windows\system32\drivers\USBAUDIO.sys
2009-09-06 18:33 . 2008-04-14 02:13 54784 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2009-09-06 18:33 . 2008-04-14 02:13 54784 ----a-w- c:\windows\system32\vfwwdm32.dll
2009-09-03 10:20 . 2009-09-03 10:20 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\dvdcss
2009-09-02 18:46 . 2009-09-02 18:57 8 ----a-w- c:\windows\system32\nvModes.dat
2009-09-02 17:26 . 2009-09-12 22:35 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\vlc
2009-09-02 12:54 . 2009-09-09 17:01 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\LightScribe
2009-09-02 12:54 . 2009-09-02 12:54 -------- d-----w- c:\programmi\File comuni\LightScribe
2009-09-02 11:55 . 2009-09-11 16:44 -------- d-----w- c:\programmi\PokerStars.IT
2009-09-02 08:03 . 2009-09-02 08:05 -------- d-----w- c:\programmi\eMule
2009-09-02 07:59 . 2009-09-02 07:59 -------- d-sh--w- c:\documents and settings\Marco\IECompatCache
2009-09-01 22:19 . 2006-10-26 17:58 30512 ----a-w- c:\windows\system32\mdimon.dll
2009-09-01 22:18 . 2009-09-01 22:18 -------- d-----w- c:\programmi\Microsoft Works
2009-09-01 22:18 . 2009-09-01 22:18 -------- d-----w- c:\programmi\Microsoft.NET
2009-09-01 22:16 . 2009-09-01 22:16 -------- d-----w- c:\windows\SHELLNEW
2009-09-01 22:16 . 2009-09-01 22:16 -------- d-----w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\Microsoft Help
2009-09-01 22:16 . 2009-09-10 15:24 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-09-01 22:15 . 2009-09-01 22:15 -------- d-----r- C:\MSOCache
2009-09-01 18:30 . 2009-09-01 18:30 -------- d-sh--w- c:\documents and settings\Marco\PrivacIE
2009-09-01 18:26 . 2009-09-01 18:26 -------- d-----w- c:\programmi\File comuni\Adobe
2009-09-01 18:21 . 2009-09-01 18:21 -------- d-sh--w- c:\documents and settings\Marco\IETldCache
2009-09-01 18:17 . 2009-08-07 08:48 100352 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-09-01 18:17 . 2009-09-01 18:17 -------- d-----w- c:\windows\ie8updates
2009-09-01 18:17 . 2009-07-19 16:42 11067392 -c----w- c:\windows\system32\dllcache\ieframe.dll
2009-09-01 18:17 . 2009-07-03 16:55 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-09-01 18:17 . 2009-07-03 16:55 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2009-09-01 18:17 . 2009-07-03 16:55 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2009-09-01 18:17 . 2009-07-03 16:55 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2009-09-01 18:17 . 2009-07-03 16:55 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-09-01 18:16 . 2009-09-01 18:16 -------- dc-h--w- c:\windows\ie8
2009-09-01 18:13 . 2009-09-01 18:13 134 ----a-w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\fusioncache.dat
2009-09-01 18:12 . 2009-09-01 18:14 -------- d-----w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\ApplicationHistory
2009-09-01 18:00 . 2009-09-02 13:09 -------- d-----w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\Adobe
2009-09-01 17:50 . 2009-09-01 18:20 -------- d-----w- c:\windows\system32\it-it
2009-09-01 17:50 . 2009-09-01 17:50 -------- d-----w- c:\windows\system32\it
2009-09-01 17:50 . 2009-09-01 17:50 -------- d-----w- c:\windows\system32\bits
2009-09-01 17:50 . 2009-09-01 17:50 -------- d-----w- c:\windows\l2schemas
2009-09-01 17:32 . 2004-08-19 13:23 701440 ------w- c:\windows\system32\drivers\ati2mtag.sys
2009-09-01 17:17 . 2009-09-08 19:44 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\Skype
2009-09-01 17:17 . 2009-09-01 17:17 -------- d-----w- c:\programmi\File comuni\Skype
2009-09-01 17:17 . 2009-09-01 17:17 -------- d-----r- c:\programmi\Skype
2009-09-01 17:17 . 2009-09-01 17:17 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Skype
2009-09-01 17:15 . 2009-09-01 17:15 -------- d-----w- c:\windows\system32\Adobe
2009-09-01 17:14 . 2009-09-01 18:08 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\NOS
2009-09-01 17:13 . 2009-09-01 17:13 -------- d-----w- c:\programmi\VideoLAN
2009-09-01 16:38 . 2009-09-01 16:38 -------- d-----w- c:\programmi\MSXML 4.0
2009-09-01 16:35 . 2009-09-01 16:35 -------- d-----w- c:\windows\system32\URTTEMP

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-12 09:44 . 2009-09-01 14:05 37888 ----a-w- c:\windows\system32\setupnt.dll
2010-09-12 09:44 . 2009-09-01 14:05 -------- d-----w- c:\programmi\Acronis
2010-09-01 16:07 . 2009-09-01 14:23 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\IObit
2009-09-13 17:22 . 2009-09-06 20:35 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs
2009-09-13 17:22 . 2009-09-06 18:45 0 ----a-w- c:\windows\system32\drivers\logiflt.iad
2009-09-12 14:17 . 2009-09-01 14:25 97 ----a-w- c:\windows\system32\Monitored2.dat
2009-09-06 18:57 . 2009-09-06 18:57 -------- d-----w- c:\documents and settings\Max\Dati applicazioni\.clamwin
2009-09-05 08:07 . 2006-03-02 12:00 84996 ----a-w- c:\windows\system32\perfc010.dat
2009-09-05 08:07 . 2006-03-02 12:00 491438 ----a-w- c:\windows\system32\perfh010.dat
2009-09-02 18:41 . 2009-09-01 13:58 24736 ----a-w- c:\documents and settings\Marco\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-09-01 16:04 . 2009-09-01 14:05 388000 ----a-w- c:\windows\system32\drivers\timntr.sys
2009-09-01 16:04 . 2009-09-01 14:05 32288 ----a-w- c:\windows\system32\drivers\tifsfilt.sys
2009-09-01 15:51 . 2009-09-01 14:05 99776 ----a-w- c:\windows\system32\drivers\snapman.sys
2009-09-01 15:20 . 2009-09-01 15:20 -------- d-----w- c:\programmi\MSBuild
2009-09-01 15:20 . 2009-09-01 15:20 -------- d-----w- c:\programmi\Reference Assemblies
2009-09-01 15:16 . 2009-09-01 15:16 -------- d-----w- c:\programmi\MSXML 6.0
2009-09-01 15:08 . 2009-09-01 15:08 -------- d-----w- c:\programmi\Windows Media Connect 2
2009-09-01 14:38 . 2009-09-01 14:38 -------- d-----w- c:\programmi\NeroInstall.bak
2009-09-01 14:34 . 2009-09-01 14:34 -------- d-----w- c:\documents and settings\Marco\Dati applicazioni\Nero
2009-09-01 14:33 . 2009-09-01 14:32 -------- d-----w- c:\programmi\File comuni\Nero
2009-09-01 14:32 . 2009-09-01 14:32 -------- d-----w- c:\programmi\Nero
2009-09-01 14:32 . 2009-09-01 14:32 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Nero
2009-09-01 14:29 . 2009-09-01 14:29 -------- d-----w- c:\programmi\Auslogics
2009-09-01 14:24 . 2009-09-01 14:24 -------- d-----w- c:\programmi\CCleaner
2009-09-01 14:23 . 2009-09-01 14:23 -------- d-----w- c:\programmi\IObit
2009-09-01 14:11 . 2009-09-01 14:11 -------- d-----w- c:\programmi\C-Media 3D Audio
2009-09-01 14:11 . 2009-09-01 14:10 -------- d--h--w- c:\programmi\InstallShield Installation Information
2009-09-01 14:11 . 2009-09-01 14:10 -------- d-----w- c:\programmi\File comuni\InstallShield
2009-09-01 14:00 . 2009-09-01 14:00 -------- d-----w- c:\programmi\NVIDIA Corporation
2009-09-01 14:00 . 2009-09-01 14:00 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\NVIDIA Corporation
2009-09-01 13:58 . 2009-09-01 13:58 -------- d-----w- c:\programmi\NVIDIA
2009-09-01 13:55 . 2009-09-01 13:55 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-09-01 13:55 . 2009-09-01 13:55 552 ----a-w- c:\windows\system32\d3d8caps.dat
2009-09-01 13:55 . 2009-09-01 13:55 -------- d-----w- c:\programmi\SystemRequirementsLab
2009-09-01 13:44 . 2009-09-01 13:44 -------- d-----w- c:\programmi\microsoft frontpage
2009-09-01 13:43 . 2009-09-01 13:43 -------- d-----w- c:\programmi\Servizi in linea
2009-09-01 13:40 . 2009-09-01 13:40 21840 ----a-w- c:\windows\system32\emptyregdb.dat
2009-08-17 01:03 . 2009-08-17 01:03 3674112 ----a-w- c:\windows\system32\nvwssr.dll
2009-08-17 01:02 . 2009-08-17 01:02 229376 ----a-w- c:\windows\system32\nvmccs.dll
2009-08-16 22:57 . 2009-09-01 13:59 485920 ----a-w- c:\windows\system32\nvudisp.exe
2009-08-16 22:57 . 2009-08-16 22:57 868352 ----a-w- c:\windows\system32\nvapi.dll
2009-08-16 22:57 . 2009-08-16 22:57 7729568 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-08-16 22:57 . 2009-08-16 22:57 5845760 ----a-w- c:\windows\system32\nv4_disp.dll
2009-08-16 22:57 . 2009-08-16 22:57 2189856 ----a-w- c:\windows\system32\nvcuvid.dll
2009-08-16 22:57 . 2009-08-16 22:57 2002944 ----a-w- c:\windows\system32\nvcuda.dll
2009-08-16 22:57 . 2009-08-16 22:57 1706528 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-08-16 22:57 . 2009-08-16 22:57 1597690 ----a-w- c:\windows\system32\nvdata.bin
2009-08-16 22:57 . 2009-08-16 22:57 155648 ----a-w- c:\windows\system32\nvcodins.dll
2009-08-16 22:57 . 2009-08-16 22:57 155648 ----a-w- c:\windows\system32\nvcod.dll
2009-08-16 22:57 . 2009-08-16 22:57 10457088 ----a-w- c:\windows\system32\nvoglnt.dll
2009-08-11 10:35 . 2009-09-01 13:58 485920 ----a-w- c:\windows\system32\NVUNINST.EXE
2009-08-05 08:59 . 2006-03-02 12:00 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-31 12:47 . 2009-07-31 12:47 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-07-31 12:47 . 2009-07-31 12:47 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-07-29 04:34 . 2006-03-02 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-07-29 04:34 . 2006-03-02 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-07-17 19:01 . 2006-03-02 12:00 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-13 21:43 . 2006-03-02 12:00 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-03 16:55 . 2006-03-02 12:00 915456 ----a-w- c:\windows\system32\wininet.dll
2009-06-25 18:34 . 2006-03-02 12:00 95744 ----a-w- c:\windows\system32\mqsec.dll
2009-06-25 18:34 . 2006-03-02 12:00 519168 ----a-w- c:\windows\system32\mqutil.dll
2009-06-25 18:34 . 2006-03-02 12:00 517120 ----a-w- c:\windows\system32\mqsnap.dll
2009-06-25 18:34 . 2006-03-02 12:00 48640 ----a-w- c:\windows\system32\mqupgrd.dll
2009-06-25 18:34 . 2006-03-02 12:00 186880 ----a-w- c:\windows\system32\mqtrig.dll
2009-06-25 18:34 . 2006-03-02 12:00 123392 ----a-w- c:\windows\system32\mqrtdep.dll
2009-06-25 18:34 . 2006-03-02 12:00 661504 ----a-w- c:\windows\system32\mqqm.dll
2009-06-25 18:34 . 2006-03-02 12:00 47104 ----a-w- c:\windows\system32\mqdscli.dll
2009-06-25 18:34 . 2006-03-02 12:00 225280 ----a-w- c:\windows\system32\mqoa.dll
2009-06-25 18:34 . 2006-03-02 12:00 177152 ----a-w- c:\windows\system32\mqrt.dll
2009-06-25 18:34 . 2006-03-02 12:00 16896 ----a-w- c:\windows\system32\mqise.dll
2009-06-25 18:34 . 2006-03-02 12:00 138240 ----a-w- c:\windows\system32\mqad.dll
2009-06-25 08:25 . 2006-03-02 12:00 735744 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:25 . 2006-03-02 12:00 56832 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:25 . 2006-03-02 12:00 54272 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:25 . 2006-03-02 12:00 301568 ----a-w- c:\windows\system32\kerberos.dll
2009-06-25 08:25 . 2006-03-02 12:00 147456 ----a-w- c:\windows\system32\schannel.dll
2009-06-25 08:25 . 2006-03-02 12:00 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-06-24 11:18 . 2006-03-02 12:00 92928 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-22 11:49 . 2006-03-02 12:00 19968 ----a-w- c:\windows\system32\mqbkup.exe
2009-06-22 11:49 . 2006-03-02 12:00 117248 ----a-w- c:\windows\system32\mqtgsvc.exe
2009-06-22 11:49 . 2006-03-02 12:00 4608 ----a-w- c:\windows\system32\mqsvc.exe
2009-06-22 11:48 . 2006-03-02 12:00 91776 ----a-w- c:\windows\system32\drivers\mqac.sys
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"="c:\programmi\IObit\Advanced SystemCare 3\AWC.exe" [2009-06-30 2329224]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"SmartRAM"="c:\programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" [2009-02-19 202064]
"Philips Intelligent Agent"="c:\programmi\Philips Intelligent Agent\Philips Intelligent Agent.exe" [2008-02-21 613792]
"LightScribe Control Panel"="c:\programmi\File comuni\LightScribe\LightScribeControlPanel.exe" [2008-08-22 2363392]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-07 39408]
"WMPNSCFG"="c:\programmi\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288]
"SpybotSD TeaTimer"="c:\programmi\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="c:\programmi\NVIDIA Corporation\nView\nwiz.exe" [2009-08-12 1657376]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-08-17 13877248]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-08-17 86016]
"NeroFilterCheck"="c:\programmi\File comuni\Nero\Lib\NeroCheck.exe" [2008-02-28 570664]
"NBKeyScan"="c:\programmi\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-02-18 2221352]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"LogitechQuickCamRibbon"="c:\programmi\Logitech\QuickCam\Quickcam.exe" [2008-12-20 2656528]
"Acronis True Image Monitor"="c:\programmi\Acronis\TrueImage\TrueImageMonitor.exe" [2010-09-12 500561]
"Acronis Scheduler2 Service"="c:\programmi\File comuni\Acronis\Schedule2\schedhlp.exe" [2010-09-12 65536]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2010-09-12 2007832]
"Malwarebytes Anti-Malware (reboot)"="c:\programmi\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-09-12 10:10 11952 ----a-w- c:\windows\system32\avgrsstx.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Philips Intelligent Agent\\Philips Intelligent Agent.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgemc.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgupd.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgnsx.exe"=

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [12/09/2010 12.10.25 335240]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [12/09/2010 12.10.56 108552]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [12/09/2010 12.10.22 908056]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [12/09/2010 12.10.22 297752]
S2 gupdate1ca2fbdb6a5d088;Servizio di Google Update (gupdate1ca2fbdb6a5d088);c:\programmi\Google\Update\GoogleUpdate.exe [07/09/2009 15.18.34 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\programmi\File comuni\LightScribe\LSRunOnce.exe"
.
Contenuto della cartella 'Scheduled Tasks'

2009-09-13 c:\windows\Tasks\User_Feed_Synchronization-{B6E649AF-FC46-405E-B212-9C0DDA773F40}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 02:31]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://it.yahoo.com/
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: {B34C1F7D-5476-43FB-BF44-D39558A3A447} = 62.211.69.170,212.48.4.30
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKLM-Run-Cmaudio - cmicnfg.cpl



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-13 19:24
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_USERS\S-1-5-21-1275210071-1214440339-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{1B62E208-1D9A-8E0B-679F-BC767A7AB15D}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"iamjejknecmgjmbhpe"=hex:6b,61,6c,63,6e,61,69,6c,62,6f,6c,62,67,6b,70,6d,66,67,
6f,62,6a,63,00,7c
"jameielnmokaogcicgcc"=hex:62,61,69,63,00,00
"jameielnmokaogcicggc"=hex:62,61,69,63,00,00
"hagkgonmegceabbm"=hex:6b,61,6c,63,6e,61,69,6c,62,6f,6c,62,67,6b,70,6d,66,67,
6f,62,6a,63,00,7c
"iam"=hex:6b,61,6c,00,6e
"jam"=hex:62,61,69,00,00
"hag"=hex:6b,61,6c,00,6e

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(2912)
c:\windows\system32\WININET.dll
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\programmi\File comuni\Acronis\Schedule2\schedul2.exe
c:\programmi\File comuni\LightScribe\LSSrvc.exe
c:\programmi\Google\Update\1.2.183.7\GoogleCrashHandler.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
c:\programmi\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\IoctlSvc.exe
c:\programmi\Windows Media Player\wmpnetwk.exe
c:\programmi\AVG\AVG8\avgrsx.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\programmi\AVG\AVG8\avgcsrvx.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\programmi\File comuni\Nero\Lib\NMIndexingService.exe
c:\programmi\File comuni\LogiShrd\LQCVFX\COCIManager.exe
.
**************************************************************************
.
Ora fine scansione: 2009-09-13 19.29.25 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2009-09-13 17:29

Pre-Run: 240.438.525.952 byte disponibili
Post-Run: 240.381.849.600 byte disponibili

370 --- E O F --- 2009-09-09 14:19

Ciao.
Elimina quello che ha trovato Malwarebyte.
Disistalla Combofix, nelle modalità descritte nel post sopra.
Siccome sia Malwarebytes, che Combofix, hanno eliminato delle infezioni importanti, prova a verificare se si verificano ancora i riavvii.
I riavvii, possono essere causati da molteplici cause, che vanno appunto da un possibile virus, a un problema hardware. (surriscaldamento, sbalzi di tensione,chiavi del registro danneggiate ecc..)