controllo combofit... - Sicurezza VIRUS

Benvenuto Ospite

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » controllo combofit...

controllo combofit...

Opzioni

Topic Precedente · Topic Sucessivo

giovi652

Inviato: Wednesday, October 07, 2009 6:42:01 PM

Rank: AiutAmico

Iscritto dal : 8/5/2009
Posts: 48

ciao a tutti,credo non tener nessun problema con il pc,ho fatto una scansione con combofit qualcuno mi puo controllare se tutto sta bene?ripeto,ho fatto la scansione solo per un controllo e spero sia stato un controllo superfluo grazie...

ComboFix 09-10-06.04 - giovanni 07/10/2009 11.14.29.1.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1982.1403 [GMT -5:00]
Eseguito da: e:\personale gio computer\UTILITY\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {00000002-0002-0000-7C25-9E7C08000A00}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00000000-F020-0012-5D5C-927C00000000}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {0012EF50-EE04-0012-41BB-011000000000}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {735C5357-DA0A-7C91-EB21-807CFFFFFFFF}
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\Installer\194b9.msi
c:\windows\Installer\b670e0.msp
c:\windows\Installer\b670e1.msp
c:\windows\Installer\f22f3f.msi
c:\windows\system32\AutoRun.inf

.
((((((((((((((((((((((((( Files Creati Da 2009-09-07 al 2009-10-07 )))))))))))))))))))))))))))))))))))
.

2009-10-07 10:56 . 2009-10-07 10:56 -------- d-----w- c:\windows\LastGood
2009-10-06 00:30 . 2009-10-06 00:30 -------- d-----w- c:\programmi\SIW
2009-10-04 13:06 . 2009-03-30 15:33 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys
2009-10-04 13:06 . 2009-02-13 17:29 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2009-10-04 13:06 . 2009-02-13 17:17 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2009-10-04 13:06 . 2009-10-04 13:06 -------- d-----w- c:\programmi\Avira
2009-10-04 13:06 . 2009-10-04 13:06 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Avira
2009-10-04 00:35 . 2009-10-04 00:35 -------- d-----w- c:\programmi\Glary Utilities
2009-10-03 20:47 . 2009-10-03 20:47 -------- d-----w- c:\programmi\Trend Micro
2009-10-01 15:57 . 2009-10-01 15:57 -------- d-----w- c:\programmi\CCleaner
2009-09-30 22:14 . 2009-09-30 22:14 -------- d-----w- c:\documents and settings\giovanni\Impostazioni locali\Dati applicazioni\Innovative Solutions
2009-09-30 22:14 . 2009-09-30 22:14 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Innovative Solutions
2009-09-30 22:13 . 2009-09-30 22:37 -------- d-----w- c:\programmi\Innovative Solutions
2009-09-26 01:51 . 2009-09-26 01:59 170438 ----a-w- c:\windows\hpqins00.dat
2009-09-26 01:44 . 2009-09-26 01:59 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\HpUpdate
2009-09-26 01:44 . 2009-09-26 01:44 -------- d-----w- c:\windows\Hewlett-Packard
2009-09-25 15:35 . 2009-09-25 15:35 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Panda Software
2009-09-21 11:58 . 2009-09-21 11:58 604488 ----a-w- c:\windows\system32\TUProgSt.exe
2009-09-17 00:37 . 2009-10-05 21:54 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-09-17 00:37 . 2009-09-17 00:42 -------- d-----w- c:\programmi\Spybot - Search & Destroy
2009-09-16 02:20 . 2009-09-16 02:20 68424 ----a-w- c:\windows\system32\drivers\GRD.sys
2009-09-16 01:57 . 2009-09-16 01:57 50632 ----a-w- c:\windows\system32\drivers\MiniIcpt.sys
2009-09-16 01:57 . 2009-09-16 01:57 22272 ----a-w- c:\windows\system32\drivers\GDNdisIc.sys
2009-09-16 01:57 . 2009-09-16 01:57 51016 ----a-w- c:\windows\system32\drivers\GDTdiIcpt.sys
2009-09-16 01:56 . 2009-09-16 22:58 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\G DATA
2009-09-16 01:56 . 2009-09-16 22:58 -------- d-----w- c:\programmi\File comuni\G DATA
2009-09-16 01:50 . 2009-09-16 01:50 -------- d-----w- c:\documents and settings\giovanni\Impostazioni locali\Dati applicazioni\Downloaded Installations
2009-09-12 01:30 . 2009-09-12 01:30 -------- d-----w- c:\programmi\Microsoft
2009-09-09 23:14 . 2009-09-09 23:14 -------- d-----r- c:\documents and settings\LocalService\Preferiti
2009-09-09 21:24 . 2009-06-21 21:47 153088 -c----w- c:\windows\system32\dllcache\triedit.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-07 16:09 . 2009-07-18 23:24 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\Skype
2009-10-07 13:00 . 2009-07-18 23:25 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\skypePM
2009-10-06 16:39 . 2009-07-29 16:49 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\vlc
2009-10-05 18:50 . 2009-07-18 23:11 -------- d--h--w- c:\programmi\InstallShield Installation Information
2009-10-05 15:38 . 2009-08-03 17:52 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-10-04 02:09 . 2009-07-28 13:08 -------- d-----w- c:\programmi\PokerStars.IT
2009-10-04 01:15 . 2004-08-30 20:00 80268 ----a-w- c:\windows\system32\perfc010.dat
2009-10-04 01:15 . 2004-08-30 20:00 481664 ----a-w- c:\windows\system32\perfh010.dat
2009-10-04 01:13 . 2009-07-20 15:09 -------- d-----w- c:\programmi\uTorrent
2009-10-04 01:13 . 2009-07-19 13:53 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-10-03 22:06 . 2009-07-20 15:08 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\uTorrent
2009-09-30 00:33 . 2009-08-31 10:37 -------- d-sh--w- c:\documents and settings\All Users\Dati applicazioni\{55A29068-F2CE-456C-9148-C869879E2357}
2009-09-26 10:05 . 2009-07-20 15:05 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\QuickTime
2009-09-25 17:33 . 2009-08-20 01:32 -------- d-----w- c:\programmi\TuxPaint
2009-09-12 01:34 . 2009-08-29 14:44 -------- d-----w- c:\programmi\Microsoft Office Outlook Connector
2009-09-12 01:33 . 2009-07-24 16:00 -------- d-----w- c:\programmi\Windows Live
2009-09-09 22:01 . 2009-07-21 03:21 -------- d-----w- c:\programmi\Microsoft Silverlight
2009-09-09 21:26 . 2009-07-20 18:10 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-09-09 13:54 . 2009-07-26 17:33 151203 ----a-w- c:\windows\hpoins15.dat
2009-09-07 23:39 . 2009-08-23 22:27 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\HP
2009-09-07 23:39 . 2009-07-26 17:40 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\HP
2009-09-05 12:10 . 2009-09-05 12:10 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\FDRLab
2009-09-02 20:35 . 2009-09-02 20:35 7396 ----a-w- c:\windows\system32\drivers\pctcore.cat
2009-08-31 10:38 . 2009-08-31 10:38 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\TuneUp Software
2009-08-31 10:37 . 2009-08-31 10:37 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\TuneUp Software
2009-08-31 00:03 . 2009-08-30 23:41 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\REAPER
2009-08-30 21:52 . 2009-08-30 14:02 -------- d-----w- c:\programmi\Star Downloader
2009-08-29 12:49 . 2009-08-29 12:49 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\Ashampoo
2009-08-29 12:49 . 2009-08-29 12:49 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\ashampoo
2009-08-29 12:49 . 2009-08-29 12:49 -------- d-----w- c:\programmi\Ashampoo
2009-08-29 12:49 . 2009-08-29 12:49 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\page
2009-08-27 23:17 . 2009-07-19 12:51 -------- d-----w- c:\programmi\Unlocker
2009-08-27 16:08 . 2009-08-27 16:08 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\Nero
2009-08-27 16:04 . 2009-07-22 17:07 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Ahead
2009-08-24 20:21 . 2009-07-19 00:11 70008 ----a-w- c:\documents and settings\giovanni\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-08-24 15:39 . 2009-08-18 01:49 -------- d-----w- c:\programmi\Microsoft Works
2009-08-23 14:22 . 2009-08-15 16:22 -------- d-----w- c:\programmi\File comuni\Stardock
2009-08-23 14:21 . 2009-07-26 23:01 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2009-08-20 20:29 . 2009-08-20 20:29 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\gtk-2.0
2009-08-20 01:45 . 2009-08-20 01:33 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\TuxPaint
2009-08-19 11:36 . 2009-08-19 11:36 -------- d-----w- c:\programmi\Reference Assemblies
2009-08-18 02:43 . 2009-08-18 02:43 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\OfficeUpdate12
2009-08-18 02:31 . 2009-08-18 01:44 -------- d-----w- c:\programmi\Microsoft Visual Studio 8
2009-08-18 01:49 . 2009-08-18 01:49 -------- d-----w- c:\programmi\MSBuild
2009-08-18 01:47 . 2009-08-18 01:47 -------- d-----w- c:\programmi\Microsoft.NET
2009-08-17 22:37 . 2009-08-10 20:11 -------- d-----w- c:\programmi\PhotoScape
2009-08-17 16:08 . 2009-08-17 16:01 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\PoivY
2009-08-16 14:47 . 2009-08-16 14:47 -------- d-----w- c:\documents and settings\LocalService\Dati applicazioni\HPAppData
2009-08-13 01:35 . 2009-08-13 01:33 -------- d-----w- c:\programmi\Disk Cleaner
2009-08-13 01:20 . 2009-08-13 01:20 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\Avant Profiles
2009-08-09 21:02 . 2009-07-20 17:38 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\GetRightToGo
2009-08-09 01:32 . 2009-08-09 01:32 -------- d-----w- c:\documents and settings\giovanni\Dati applicazioni\Stormdance
2009-08-08 18:34 . 2009-08-08 18:34 -------- d-----w- c:\programmi\Formosoft
2009-08-07 00:24 . 2009-07-18 23:00 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-07 00:24 . 2009-07-18 23:00 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-07 00:24 . 2009-07-18 23:00 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-07 00:24 . 2008-10-16 19:09 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-07 00:24 . 2009-07-18 23:00 53472 ----a-w- c:\windows\system32\wuauclt.exe
2009-08-07 00:24 . 2004-08-30 20:00 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-07 00:23 . 2009-07-18 23:00 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-07 00:23 . 2009-07-19 16:51 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-07 00:23 . 2009-07-19 16:51 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-07 00:23 . 2009-07-18 23:00 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 08:59 . 2004-08-30 20:00 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-03 18:36 . 2009-08-05 14:46 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-08-03 18:36 . 2009-08-05 14:46 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-07-26 21:44 . 2009-07-26 21:44 48448 ----a-w- c:\windows\system32\sirenacm.dll
2009-07-25 10:23 . 2009-07-21 01:56 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-24 18:09 . 2009-07-24 18:09 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-07-24 18:09 . 2009-07-24 18:09 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-07-20 17:29 . 2009-07-20 17:29 524288 ----a-w- c:\windows\opuc.dll
2009-07-18 23:35 . 2009-07-18 23:35 0 ----a-w- c:\windows\nsreg.dat
2009-07-18 23:25 . 2009-07-18 23:25 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-07-18 22:59 . 2009-07-18 22:59 21840 ----a-w- c:\windows\system32\emptyregdb.dat
2009-07-17 19:01 . 2004-08-30 20:00 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-14 04:43 . 2004-08-30 20:00 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-10 18:31 . 2009-07-10 18:31 307056 ----a-w- c:\windows\WLXPGSS.SCR
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\programmi\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\programmi\mozilla firefox\plugins\ssldivx.dll
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\programmi\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"msnmsgr"="c:\programmi\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\programmi\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"VX1000"="c:\windows\vVX1000.exe" [2007-04-10 709992]
"VTTimer"="VTTimer.exe" - c:\windows\system32\VTTimer.exe [2006-09-21 53248]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.EXE [2008-10-28 17331200]
"AlcWzrd"="ALCWZRD.EXE" - c:\windows\ALCWZRD.EXE [2008-06-19 2808832]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" -atboottime
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Programmi\\PhotoJoy\\Bin\\PjApp.exe"=
"c:\\Programmi\\PhotoJoy\\Bin\\PjImp.exe"=
"c:\\Programmi\\PhotoJoy\\Bin\\PhotoJoy.exe"=
"c:\\Programmi\\Ares\\Ares.exe"=
"c:\\Programmi\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Programmi\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
"c:\\WINDOWS\\system32\\mmc.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=

R3 S3GIGP;S3GIGP;c:\windows\system32\drivers\S3gIGPm.sys [11/07/2007 13.08.46 714240]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?]
S0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S2 gupdate1ca0d6c1cfdbae0;Servizio di Google Update (gupdate1ca0d6c1cfdbae0);c:\programmi\Google\Update\GoogleUpdate.exe [25/07/2009 16.08.50 133104]
S3 DrvSnSht;DrvSnSht;c:\programmi\R-Drive Image\DrvSnSht.sys [21/12/2007 7.39.10 94608]
S3 R-ImageDisk;R-ImageDisk;c:\programmi\R-Drive Image\R-ImageDisk.sys [21/12/2007 7.39.10 85431]
S3 TfNetMon;TfNetMon;\??\c:\windows\system32\drivers\TfNetMon.sys --> c:\windows\system32\drivers\TfNetMon.sys [?]
S4 pctplsg;pctplsg;\??\c:\windows\system32\drivers\pctplsg.sys --> c:\windows\system32\drivers\pctplsg.sys [?]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contenuto della cartella 'Scheduled Tasks'

2009-10-07 c:\windows\Tasks\GlaryInitialize.job
- c:\programmi\Glary Utilities\initialize.exe [2009-10-04 00:27]

2009-10-07 c:\windows\Tasks\Google Software Updater.job
- c:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-25 21:07]

2009-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-07-25 21:08]

2009-10-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-07-25 21:08]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.com.co/
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: E&xportar a Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Salva oggetto con Star Downloader - c:\programmi\Star Downloader\sdie.htm
IE: {{C4046502-6524-4d87-896C-878F57D1FF07} - c:\programmi\PokerStars.IT\PokerStarsUpdate.exe
FF - ProfilePath - c:\documents and settings\giovanni\Dati applicazioni\Mozilla\Firefox\Profiles\0zqlqbaz.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.fastestp2p.com/search.php?src=tops&q=
FF - prefs.js: browser.startup.homepage - www.google.com.co
FF - prefs.js: keyword.URL - hxxp://search.fastestp2p.com/search.php?src=tops&q=
FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nppl3260.dll
FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nprjplug.dll
FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nprpjplug.dll
FF - plugin: c:\programmi\Google\Google Updater\2.4.1636.7222\npCIDetect13.dll
FF - plugin: c:\programmi\Google\Update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\programmi\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

Toolbar-{f516e6d7-6aa0-4978-93a5-df43fccf0431} - (no file)
SafeBoot-OneCareMP

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-07 11:18
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10c.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Ora fine scansione: 2009-10-07 11.20.04
ComboFix-quarantined-files.txt 2009-10-07 16:20

Pre-Run: 32.486.240.256 byte disponibili
Post-Run: 32.511.037.440 byte disponibili

WindowsXP-KB310994-SP2-Pro-BootDisk-ITA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

265 --- E O F --- 2009-10-03 22:47

Torna in alto

Sponsor

Inviato: Wednesday, October 07, 2009 6:42:01 PM

Torna in alto

Utenti presenti in questo topic

Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » controllo combofit...

Salta al Forum

Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Invia topic via Email

RSS Feed

Watch this topic

Stampa topic

Normale

Threaded