|
|
Rank: AiutAmico
Iscritto dal : 4/5/2005
Posts: 22,971
|
Mi pare che il BOOT.INI vada bene così.
Avast! NON entra in colnflitto con Malwarebytes' AntiMalware (uno è un antivirus, l'altro è un antispyware [se poi usi la versione FREE di Malwarebytes, non può entrarti in conflitto con niente]).
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
VA BENE LA SCANSIONE?
Malwarebytes' Anti-Malware 1.44
Versione del database: 3526
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.11
09/01/2010 15.04.46
mbam-log-2010-01-09 (15-04-46).txt
Tipo di scansione: Scansione rapida
Elementi scansionati: 139455
Tempo trascorso: 5 minute(s), 52 second(s)
Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 3
Cartelle infette: 0
File infetti: 0
Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)
Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)
Chiavi di registro infette:
(Nessun elemento malevolo rilevato)
Valori di registro infetti:
(Nessun elemento malevolo rilevato)
Elementi dato del registro infetti:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Cartelle infette:
(Nessun elemento malevolo rilevato)
File infetti:
(Nessun elemento malevolo rilevato)
|
|
Rank: AiutAmico
Iscritto dal : 12/12/2009
Posts: 2,114
|
ha eliminato gli elementi malevoli, ma devi eseguire una scansione COMPLETA non RAPIDA.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Ecco la scansione completa, sono stati trovati due file infetti, sono infezione pericolose quelle trovate?
Malwarebytes' Anti-Malware 1.44
Versione del database: 3526
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.11
09/01/2010 23.21.24
mbam-log-2010-01-09 (23-21-24).txt
Tipo di scansione: Scansione completa (C:\|F:\|I:\|)
Elementi scansionati: 1037443
Tempo trascorso: 5 hour(s), 13 minute(s), 52 second(s)
Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 0
Cartelle infette: 0
File infetti: 2
Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)
Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)
Chiavi di registro infette:
(Nessun elemento malevolo rilevato)
Valori di registro infetti:
(Nessun elemento malevolo rilevato)
Elementi dato del registro infetti:
(Nessun elemento malevolo rilevato)
Cartelle infette:
(Nessun elemento malevolo rilevato)
File infetti:
C:\System Volume Information\_restore{E375B26E-9A0D-439F-97BF-8C773DA07473}\RP58\A0029591.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{E375B26E-9A0D-439F-97BF-8C773DA07473}\RP123\A0041684.sys (Malware.Trace) -> Quarantined and deleted successfully.
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Scarica Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exeSalvalo sul desktop. Importante: Disabilita il tuo antivirus e chiudi TUTTI i programmi aperti,(Firewall compreso) e dopo aver scaricato COMBOFIX, chiudi la connessione. Doppio click su combofix.exe (comparirà una videata.) Se ti verrà chiesto se vuoi Installare LA CONSOLE DI RIPRISTINO DI EMERGENZA, clicca NO. E' probabile che ti siano inviati messaggi dall'antivirus, tu ignorali. Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendere pazientemente la fine delle operazioni. Al termine, verrà creato un file log sul Desktop, chiamato C:\ComboFix.txt. Postalo qui.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
ComboFix 10-01-04.01 - UTENTE 10/01/2010 19.33.49.5.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.2047.913 [GMT 1:00]
Eseguito da: C:\Combofix\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100110-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: AVG Anti-Virus *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: Online Armor Firewall *enabled* {B797DAA0-7E2E-4711-8BB3-D12744F1922A}
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\RECYCLER\S-1-5-21-1708537768-1292428093-839522115-1003
C:\Thumbs.db
C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll
.
---- Esecuzione precedente -------
.
C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll
.
((((((((((((((((((((((((( Files Creati Da 2009-12-10 al 2010-01-10 )))))))))))))))))))))))))))))))))))
.
2010-01-09 11:02:03 . 2010-01-09 11:02:03 -------- d-----w- C:\Programmi\CCleaner
2010-01-08 19:38:14 . 2010-01-08 19:38:14 -------- d-----w- C:\Programmi\Windows Installer Clean Up
2010-01-08 15:51:04 . 2010-01-09 12:51:08 -------- d-----w- C:\Aiutamici
2010-01-07 21:10:34 . 2010-01-08 09:29:15 -------- d-----w- C:\Parcelle Tecnobit
2010-01-07 20:50:34 . 2010-01-07 20:51:19 -------- d-----w- C:\Windows installer cleanup
2009-12-28 18:39:35 . 2009-12-28 18:39:35 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\SSScanAppDataDir
2009-12-28 18:39:16 . 2009-12-28 18:39:16 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\MSScanAppDataDir
2009-12-17 09:35:43 . 2009-12-17 09:35:43 179 ----a-w- C:\handle.dat
2009-12-17 09:34:38 . 2009-12-17 09:34:38 -------- d-----w- C:\Programmi\File comuni\Sonic Shared
2009-12-17 09:33:44 . 2009-12-17 09:34:04 -------- d-----w- C:\Programmi\File comuni\HP
2009-12-17 09:30:01 . 2006-03-08 02:33:45 173 ------w- C:\WINDOWS\hpgmdl13.dat
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-10 18:45:11 . 2009-03-04 19:02:08 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\skypePM
2010-01-10 18:42:00 . 2009-03-13 20:28:46 0 ----a-w- C:\WINDOWS\system32\drivers\lvuvc.hs
2010-01-10 18:41:55 . 2009-03-13 20:28:17 0 ----a-w- C:\WINDOWS\system32\drivers\logiflt.iad
2010-01-10 18:24:32 . 2009-03-04 18:58:56 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Skype
2010-01-09 15:10:10 . 2009-11-21 21:24:47 -------- d-----w- C:\Programmi\OFFICE11
2010-01-09 15:04:28 . 2001-08-31 11:00:00 82698 ----a-w- C:\WINDOWS\system32\perfc010.dat
2010-01-09 15:04:28 . 2001-08-31 11:00:00 485418 ----a-w- C:\WINDOWS\system32\perfh010.dat
2010-01-08 19:38:15 . 2010-01-08 19:38:15 3584 ----a-r- C:\Documents and Settings\UTENTE\Dati applicazioni\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2010-01-08 19:37:57 . 2009-09-02 13:15:05 -------- d-----w- C:\Programmi\MSECACHE
2010-01-07 21:15:19 . 2006-10-18 20:19:57 -------- d--h--w- C:\Programmi\InstallShield Installation Information
2010-01-07 15:07:14 . 2009-09-19 06:21:24 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07:04 . 2009-09-19 06:21:21 19160 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2010-01-06 20:18:47 . 2009-11-21 13:24:23 -------- d-----w- C:\Programmi\XoftSpySE
2009-12-30 16:27:46 . 2006-10-22 08:42:55 -------- d-----w- C:\Programmi\Tecnobit
2009-12-17 09:35:47 . 2006-11-29 18:31:49 102637 ----a-w- C:\WINDOWS\hpgins13.dat
2009-12-17 09:35:43 . 2006-10-18 20:04:05 130568 ----a-w- C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-12-17 09:32:25 . 2006-10-24 05:30:15 -------- d-----w- C:\Programmi\Hewlett-Packard
2009-12-17 09:32:00 . 2006-11-29 19:12:05 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\HP
2009-12-06 20:24:39 . 2009-10-30 18:19:56 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Profis
2009-12-06 19:45:37 . 2009-11-21 21:23:12 -------- d-----w- C:\Programmi\Hilti
2009-12-05 06:46:08 . 2009-03-04 18:58:30 -------- d-----r- C:\Programmi\Skype
2009-12-05 06:45:58 . 2009-12-05 06:45:58 -------- d-----w- C:\Programmi\File comuni\Skype
2009-12-05 06:45:55 . 2009-03-04 18:58:24 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\Skype
2009-12-03 05:46:51 . 2008-08-10 06:59:21 -------- d-----w- C:\Programmi\IZArc
2009-12-01 17:41:04 . 2006-10-22 06:59:26 -------- d-----w- C:\Programmi\AutoCAD LT 2000
2009-11-26 05:21:49 . 2006-10-23 13:48:46 -------- d-----w- C:\Programmi\File comuni\Logitech
2009-11-24 23:54:29 . 2009-11-22 18:10:28 1280480 ----a-w- C:\WINDOWS\system32\aswBoot.exe
2009-11-24 23:51:09 . 2009-11-22 18:10:45 93424 ----a-w- C:\WINDOWS\system32\drivers\aswmon.sys
2009-11-24 23:49:07 . 2009-11-22 18:10:47 48560 ----a-w- C:\WINDOWS\system32\drivers\aswTdi.sys
2009-11-24 23:48:57 . 2009-11-22 18:10:47 23120 ----a-w- C:\WINDOWS\system32\drivers\aswRdr.sys
2009-11-24 23:47:54 . 2009-11-22 18:10:46 27408 ----a-w- C:\WINDOWS\system32\drivers\aavmker4.sys
2009-11-24 23:47:28 . 2009-11-22 18:10:45 97480 ----a-w- C:\WINDOWS\system32\AvastSS.scr
2009-11-24 15:14:05 . 2009-10-22 14:53:07 1 ----a-w- C:\Documents and Settings\UTENTE\Dati applicazioni\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-11-23 20:01:18 . 2006-10-19 06:28:54 -------- d-----w- C:\Programmi\File comuni\Adobe
2009-11-22 17:48:38 . 2007-01-19 07:13:28 -------- d-----w- C:\Programmi\Microsoft ActiveSync
2009-11-22 17:40:32 . 2006-10-19 06:17:11 -------- d-----w- C:\Programmi\Microsoft Works
2009-11-22 17:40:29 . 2009-11-21 21:24:44 -------- d-----w- C:\Programmi\MEDIA
2009-11-22 17:40:22 . 2009-11-21 21:17:58 -------- d-----w- C:\Programmi\CLIPART
2009-11-22 17:39:41 . 2009-03-12 15:53:06 -------- d-----w- C:\Programmi\MSBuild
2009-11-22 17:39:19 . 2009-11-22 17:03:33 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\Microsoft Help
2009-11-22 14:22:41 . 2009-11-22 14:22:36 -------- d-----w- C:\Programmi\Photoshop
2009-11-22 14:11:14 . 2009-11-22 14:11:04 -------- d-----w- C:\Programmi\Burn masterizzatore
2009-11-22 14:06:28 . 2006-10-19 05:28:42 -------- d-----w- C:\Programmi\Google
2009-11-22 07:03:16 . 2006-10-22 06:26:31 -------- d-----w- C:\Programmi\Graphisoft
2009-11-21 21:27:03 . 2009-11-21 21:27:03 -------- d-----w- C:\Programmi\Templates
2009-11-21 21:26:37 . 2009-11-21 21:26:36 -------- d-----w- C:\Programmi\Print-server
2009-11-21 18:39:57 . 2009-11-21 18:39:57 -------- d-----w- C:\Programmi\Alwil Software
2009-11-21 13:05:19 . 2006-10-19 05:35:49 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Lavasoft
2009-11-21 13:03:18 . 2007-04-07 16:11:00 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Acubix PicoBackup Outlook Express Edition
2009-11-18 15:46:56 . 2008-03-31 14:20:41 -------- d-----w- C:\Programmi\Strutture Tecnobit
2009-11-18 09:50:41 . 2009-09-19 20:03:39 17383456 --sha-w- C:\WINDOWS\system32\drivers\fidbox.dat
2009-11-07 12:45:33 . 2009-11-07 12:45:33 152576 ----a-w- C:\Documents and Settings\UTENTE\Dati applicazioni\Sun\Java\jre1.6.0_17\lzma.dll
2009-05-04 15:23:03 . 2009-05-04 15:23:02 270978 ----a-w- C:\Programmi\La direzione dei lavori.zip
2009-03-26 11:28:08 . 2009-11-21 21:27:00 901120 ----a-w- C:\Programmi\DEI_ScuoleEcocompatibili.exe
2008-08-10 06:57:56 . 2008-08-10 06:57:30 3723454 ----a-w- C:\Programmi\IZArc_Setup.exe
2008-07-17 18:59:36 . 2008-07-17 19:01:10 3536683 ----a-w- C:\Programmi\PicoBackupOESetup.exe
.
((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2006-03-30 14:45:08 . 2006-03-30 14:45:08 313472 C:\Programmi\Adobe\Acrobat 7.0\Reader\bak\AdobeUpdateManager.exe
2006-10-18 20:23:57 . 2003-05-05 06:57:30 143360 C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe
2006-10-19 05:16:34 . 2004-06-10 19:10:00 339968 C:\Programmi\ATI Technologies\ATI Control Panel\bak\atiptaxx.exe
2006-10-23 13:43:08 . 2004-05-10 14:54:24 49152 C:\Programmi\Brother\Brmfl04c\bak\BrStDvPt.exe
2009-08-10 13:39:07 . 2004-05-10 14:54:24 49152 C:\Programmi\Brother\Brmfl04c\BrStDvPt.exe
2003-09-29 23:14:58 . 2003-09-29 23:14:58 155648 C:\Programmi\File comuni\ScanSoft Shared\SSBkgdUpdate\bak\SSBkgdupdate.exe
2007-01-27 18:16:46 . 2007-01-27 18:16:46 171448 C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\bak\GoogleToolbarNotifier.exe
2006-02-19 01:41:10 . 2006-02-19 01:41:10 49152 C:\Programmi\HP\HP Software Update\bak\HPWuSchd2.exe
2006-02-19 01:41:10 . 2006-02-19 01:41:10 49152 C:\Programmi\HP\HP Software Update\hpwuSchd2.exe
2006-06-15 07:43:20 . 2006-06-15 07:43:20 49152 C:\Programmi\HP\ToolboxFX\bin\bak\HPTLBXFX.exe
2009-08-10 13:39:08 . 2006-06-15 07:43:20 49152 C:\Programmi\HP\ToolboxFX\bin\HPTLBXFX.exe
2006-10-22 06:23:15 . 2005-11-10 11:03:52 36975 C:\Programmi\Java\jre1.5.0_06\bin\bak\jusched.exe
2009-08-10 13:39:08 . 2005-11-10 11:03:52 36975 C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe
2007-12-11 15:21:42 . 2007-09-25 00:11:35 132496 C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe
2009-08-10 13:39:08 . 2007-09-25 00:11:35 132496 C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe
2006-10-23 13:48:46 . 2003-12-01 09:38:16 892928 C:\Programmi\Logitech\iTouch\bak\iTouch.exe
2006-10-23 16:30:55 . 2003-07-29 22:37:28 332288 C:\Programmi\MemoRex\bak\MemoRexStart.exe
2009-08-10 13:39:06 . 2003-07-29 22:37:28 332288 C:\Programmi\MemoRex\MemoRexStart.exe
2006-06-21 02:52:42 . 2006-06-21 02:52:42 1211176 C:\Programmi\Microsoft ActiveSync\bak\wcescomm.exe
2006-06-21 02:52:42 . 2006-06-21 02:52:42 1211176 C:\Programmi\Microsoft ActiveSync\wcescomm.exe
2006-09-01 14:57:48 . 2006-09-01 14:57:48 282624 C:\Programmi\QuickTime\bak\qttask.exe
2009-08-10 13:39:07 . 2006-09-01 14:57:48 282624 C:\Programmi\QuickTime\qttask.exe
2005-06-17 13:52:52 . 2005-06-17 13:52:52 1129472 C:\Programmi\Salvataggio outlook express\PicoBackupOE\bak\PicoBackupAgent.exe
2001-08-31 11:00:00 . 2004-08-19 13:39:36 15360 C:\WINDOWS\system32\bak\ctfmon.exe
2001-08-31 11:00:00 . 2008-04-13 17:14:04 15360 C:\WINDOWS\system32\ctfmon.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Programmi\Skype\\Phone\Skype.exe" [2009-10-09 12:11:12 25623336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"zzzHPSETUP"="D:\Setup.exe \RESET" [X]
"Logitech Utility"="Logi_MwX.Exe" [2003-11-07 09:50:00 19968]
"HPUsageTracking"="C:\Programmi\HP\HP UT\bin\hppusg.exe" [2006-06-14 13:20:06 36864]
"LogitechQuickCamRibbon"="C:\Programmi\Logitech\QuickCam\Quickcam.exe" [2008-02-13 12:06:58 2196240]
"SunJavaUpdateSched"="C:\Programmi\Java\jre6\bin\jusched.exe" [2009-10-11 03:17:36 149280]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 23:51:40 81000]
"Acrobat Assistant 7.0"="C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2004-12-14 01:12:02 483328]
"HP Software Update"="C:\Programmi\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 01:41:10 49152]
"QuickTime Task"="C:\Programmi\QuickTime\qttask.exe" [2006-09-01 14:57:48 282624]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2008-04-13 17:14:04 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WUAppSetup"="C:\Programmi\File comuni\logishrd\WUApp32.exe" [2008-12-17 05:51:04 443664]
C:\Documents and Settings\UTENTE\Menu Avvio\Programmi\Esecuzione automatica\
Printkey.lnk - C:\Printkey.exe [2006-10-22 514560]
C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Alice ti aiuta.lnk - C:\Programmi\Alice ti aiuta\bin\matcli.exe [2006-10-23 212992]
Avvio rapido HP Photosmart Premier.lnk - C:\Programmi\HP\Digital Imaging\bin\hpqthb08.exe [2006-2-10 73728]
Avvio veloce di Adobe Acrobat.lnk - C:\WINDOWS\Installer\{AC76BA86-1034-4700-7760-000000000002}\SC_Acrobat.exe [2009-11-23 25214]
Logitech Desktop Messenger.lnk - C:\Programmi\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2009-3-24 66864]
Status Monitor.lnk - C:\Programmi\Brother\Brmfcmon\BrMfcWnd.exe [2006-10-23 819200]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\H:\0autocheck autochk *
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\Programmi\Microsoft ActiveSync\rapimgr.exe"= C:\Programmi\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Programmi\Microsoft ActiveSync\wcescomm.exe"= C:\Programmi\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"C:\Programmi\Microsoft ActiveSync\WCESMgr.exe"= C:\Programmi\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\Programmi\\JavaSoft\\JRE\\1.3.1_13\\bin\\javaw.exe"=
"C:\\WINDOWS\\system32\\mmc.exe"=
"C:\\Programmi\\Graphisoft\\ArchiCAD 11\\ArchiCAD.exe"=
"C:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"C:\\Programmi\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"C:\\Programmi\\Adobe\\Acrobat 7.0\\Acrobat\\Acrobat.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"C:\\Programmi\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"9633:TCP"= 9633:TCP:gyira
"3389:TCP"= 3389:TCP:Remote Desktop
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [22/11/2009 19.10.45 114768]
R1 OADevice;OADriver;C:\WINDOWS\system32\drivers\OADriver.sys [21/09/2009 16.08.32 200784]
R1 OAmon;OAmon;C:\WINDOWS\system32\drivers\OAmon.sys [21/09/2009 16.08.32 24656]
R1 OAnet;OAnet;C:\WINDOWS\system32\drivers\OAnet.sys [21/09/2009 16.08.32 29776]
R2 ACCAKeyServer;ACCA Key Server v.2.00;C:\ACCA\ACCAKeyServer\ACCAKeyService.EXE [15/03/2009 18.35.13 528896]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\drivers\aswFsBlk.sys [22/11/2009 19.10.45 20560]
R2 CPUSB;CPUsb.Sys driver;C:\WINDOWS\system32\drivers\CPUSB.sys [22/10/2006 9.09.26 17080]
R2 cpwnt;cpwnt;C:\WINDOWS\system32\drivers\CPWNT.SYS [21/10/2006 19.08.06 21824]
S1 SASKUTIL;SASKUTIL;\??\F:\Programmi\SuperantiSpyware\SASKUTIL.sys --> F:\Programmi\SuperantiSpyware\SASKUTIL.sys [?]
S1 soqwx32;soqwx32;\??\C:\WINDOWS\system32\drivers\soqwx32.sys --> C:\WINDOWS\system32\drivers\soqwx32.sys [?]
S2 OAcat;Online Armor Helper Service;"F:\Programmi\Firewall Armor\Online Armor\OAcat.exe" --> F:\Programmi\Firewall Armor\Online Armor\OAcat.exe [?]
S2 SvcOnlineArmor;Online Armor;F:\Programmi\Firewall Armor\Online Armor\oasrv.exe --> F:\Programmi\Firewall Armor\Online Armor\oasrv.exe [?]
S3 MSHUSBVideo;NX6000/NX3000/VX5000/VX5500/VX7000 Filter Driver;C:\WINDOWS\system32\drivers\nx6000.sys [12/03/2009 17.33.32 33808]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
gzemr
ejivo
.
Contenuto della cartella 'Scheduled Tasks'
2010-01-10 C:\WINDOWS\Tasks\XoftSpySE 2.job
- C:\Programmi\XoftSpySE\XoftSpy.exe [2009-11-21 13:24:23 . 2007-07-23 16:34:00]
2010-01-10 C:\WINDOWS\Tasks\XoftSpySE.job
- C:\Programmi\XoftSpySE\XoftSpy.exe [2009-11-21 13:24:23 . 2007-07-23 16:34:00]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.virgilio.it/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mStart Page = hxxp://www.virgilio.it/
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = 127.0.0.1
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Converti destinazione link in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti destinazione link in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti i link selezionati in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Converti i link selezionati in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti nel file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti selezione in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti selezione in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&sporta in Microsoft Excel - C:\PROGRA~1\Office12\EXCEL.EXE/3000
TCP: {667CCFE0-179F-4596-86C5-C5967CC876D0} = 151.99.125.2,151.99.125.3
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programmi\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: Microsoft XML Parser for Java - file://C:\WINDOWS\Java\classes\xmldso.cab
FF - ProfilePath - C:\Documents and Settings\UTENTE\Dati applicazioni\Mozilla\Firefox\Profiles\1awbkkbc.default\
FF - prefs.js: browser.startup.homepage - hxxp://VIRGILIO.IT
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
BHO-{D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
Toolbar-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - F:\Programmi\SuperantiSpyware\SASSEH.DLL
ShellExecuteHooks-{4F07DA45-8170-4859-9B5F-037EF2970034} - F:\PROGRA~1\FIREWA~1\ONLINE~1\oaevent.dll
Notify-!SASWinLogon - F:\Programmi\SuperantiSpyware\SASWINLO.dll
Notify-avgrsstarter - avgrsstx.dll
AddRemove-001FFFFFFF10FF00FF1501F08F02F000-R1 - f:\Programmi\Graphisoft\ArchiCAD 10\Uninstall.AC\uninstaller.exe
AddRemove-Channel V2.76 - F:\PROGRA~1\Hilti\CHANNE~1\UNWISE.EXE
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Ciao. Vai in installazione Applicazioni, e Rimuovi Tutte le versioni Java che trovi. Poi fai una pulizia con CCleaner. C'è un dialer da levare. ( e anche altro) Cominciamo dal Dialer: Scarica FindAWF: http://noahdfear.geekstogo.com/FindAWF.exe 3. Esegui FindAWF,premi un tasto qualsiasi,poi premi il tasto 1 e INVIO, aspetti il log che FindAWF stamperà su un file di testo alla fine della ricerca. Il filelog lo posti in questa discussione.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Tutti i java che ti ho indicato con una freccia? Vedi anche i numeri? Ma Java non serrve, l'ho reinstallo dopo? Grazie 
|
|
Rank: AiutAmico
Iscritto dal : 4/5/2005
Posts: 22,971
|
Sì, Java serve.
Sì, dopo vedrai che ti sarà consigliato di installarlo.
Ma ti sarà consigliato di installare la versione più recente e aggiornata (la quale, peraltro, è scaricabile anche da Aiutamici): le versioni che hai adesso, invece, sono obsolete, il che può dare problemi: per questo, ti è stato (giustamente) suggerito di disinstallarle.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Per evitare di disinstallare altri software, devo disinstallare tutti i driver che ho indicato con le frecce, oppure ho indicato dei driver che non devono essere disinstallati? Grazie
|
|
Rank: AiutAmico
Iscritto dal : 4/5/2005
Posts: 22,971
|
Non andrebbe disinstallata la versione più recente ed aggiornata (quella che si chiama: "Java(TM)6 Update 17")...
Tuttavia, per evitar problemi, ti suggerisco di disinstallare tutti i Java (quelli che hai segnato con le frecce), poi di RIAVVIARE il computer e, infine, di re-installare solo Java(TM)6 Update 17...
In questo modo dovresti poterti ritrovar comunque un Java Runtime ben aggiornato e perfettamente funzionante.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Dove la trovo questa : "Java Runtime ben aggiornato e perfettamente funzionante". ?
|
|
Rank: AiutAmico
Iscritto dal : 10/14/2008
Posts: 2,777
|
|
|
Rank: AiutAmico
Iscritto dal : 12/12/2009
Posts: 2,114
|
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Il log di Combofix, non è completo.
Manca la parte finale.
Postamelo integralmente.
E, per favore, NON installare nessun Java, per il momento.
Bisogna prima eliminare il Dialer.
Il dialer lo utilizzerebbe per fare ulteriori danni.
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
ComboFix 10-01-04.01 - UTENTE 10/01/2010 19.33.49.5.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.2047.913 [GMT 1:00]
Eseguito da: C:\Combofix\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100110-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: AVG Anti-Virus *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: Online Armor Firewall *enabled* {B797DAA0-7E2E-4711-8BB3-D12744F1922A}
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\RECYCLER\S-1-5-21-1708537768-1292428093-839522115-1003
C:\Thumbs.db
C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll
.
---- Esecuzione precedente -------
.
C:\WINDOWS\TEMP\logishrd\LVPrcInj01.dll
.
((((((((((((((((((((((((( Files Creati Da 2009-12-10 al 2010-01-10 )))))))))))))))))))))))))))))))))))
.
2010-01-09 11:02:03 . 2010-01-09 11:02:03 -------- d-----w- C:\Programmi\CCleaner
2010-01-08 19:38:14 . 2010-01-08 19:38:14 -------- d-----w- C:\Programmi\Windows Installer Clean Up
2010-01-08 15:51:04 . 2010-01-09 12:51:08 -------- d-----w- C:\Aiutamici
2010-01-07 21:10:34 . 2010-01-08 09:29:15 -------- d-----w- C:\Parcelle Tecnobit
2010-01-07 20:50:34 . 2010-01-07 20:51:19 -------- d-----w- C:\Windows installer cleanup
2009-12-28 18:39:35 . 2009-12-28 18:39:35 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\SSScanAppDataDir
2009-12-28 18:39:16 . 2009-12-28 18:39:16 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\MSScanAppDataDir
2009-12-17 09:35:43 . 2009-12-17 09:35:43 179 ----a-w- C:\handle.dat
2009-12-17 09:34:38 . 2009-12-17 09:34:38 -------- d-----w- C:\Programmi\File comuni\Sonic Shared
2009-12-17 09:33:44 . 2009-12-17 09:34:04 -------- d-----w- C:\Programmi\File comuni\HP
2009-12-17 09:30:01 . 2006-03-08 02:33:45 173 ------w- C:\WINDOWS\hpgmdl13.dat
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-10 18:45:11 . 2009-03-04 19:02:08 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\skypePM
2010-01-10 18:42:00 . 2009-03-13 20:28:46 0 ----a-w- C:\WINDOWS\system32\drivers\lvuvc.hs
2010-01-10 18:41:55 . 2009-03-13 20:28:17 0 ----a-w- C:\WINDOWS\system32\drivers\logiflt.iad
2010-01-10 18:24:32 . 2009-03-04 18:58:56 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Skype
2010-01-09 15:10:10 . 2009-11-21 21:24:47 -------- d-----w- C:\Programmi\OFFICE11
2010-01-09 15:04:28 . 2001-08-31 11:00:00 82698 ----a-w- C:\WINDOWS\system32\perfc010.dat
2010-01-09 15:04:28 . 2001-08-31 11:00:00 485418 ----a-w- C:\WINDOWS\system32\perfh010.dat
2010-01-08 19:38:15 . 2010-01-08 19:38:15 3584 ----a-r- C:\Documents and Settings\UTENTE\Dati applicazioni\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2010-01-08 19:37:57 . 2009-09-02 13:15:05 -------- d-----w- C:\Programmi\MSECACHE
2010-01-07 21:15:19 . 2006-10-18 20:19:57 -------- d--h--w- C:\Programmi\InstallShield Installation Information
2010-01-07 15:07:14 . 2009-09-19 06:21:24 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07:04 . 2009-09-19 06:21:21 19160 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2010-01-06 20:18:47 . 2009-11-21 13:24:23 -------- d-----w- C:\Programmi\XoftSpySE
2009-12-30 16:27:46 . 2006-10-22 08:42:55 -------- d-----w- C:\Programmi\Tecnobit
2009-12-17 09:35:47 . 2006-11-29 18:31:49 102637 ----a-w- C:\WINDOWS\hpgins13.dat
2009-12-17 09:35:43 . 2006-10-18 20:04:05 130568 ----a-w- C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-12-17 09:32:25 . 2006-10-24 05:30:15 -------- d-----w- C:\Programmi\Hewlett-Packard
2009-12-17 09:32:00 . 2006-11-29 19:12:05 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\HP
2009-12-06 20:24:39 . 2009-10-30 18:19:56 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Profis
2009-12-06 19:45:37 . 2009-11-21 21:23:12 -------- d-----w- C:\Programmi\Hilti
2009-12-05 06:46:08 . 2009-03-04 18:58:30 -------- d-----r- C:\Programmi\Skype
2009-12-05 06:45:58 . 2009-12-05 06:45:58 -------- d-----w- C:\Programmi\File comuni\Skype
2009-12-05 06:45:55 . 2009-03-04 18:58:24 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\Skype
2009-12-03 05:46:51 . 2008-08-10 06:59:21 -------- d-----w- C:\Programmi\IZArc
2009-12-01 17:41:04 . 2006-10-22 06:59:26 -------- d-----w- C:\Programmi\AutoCAD LT 2000
2009-11-26 05:21:49 . 2006-10-23 13:48:46 -------- d-----w- C:\Programmi\File comuni\Logitech
2009-11-24 23:54:29 . 2009-11-22 18:10:28 1280480 ----a-w- C:\WINDOWS\system32\aswBoot.exe
2009-11-24 23:51:09 . 2009-11-22 18:10:45 93424 ----a-w- C:\WINDOWS\system32\drivers\aswmon.sys
2009-11-24 23:49:07 . 2009-11-22 18:10:47 48560 ----a-w- C:\WINDOWS\system32\drivers\aswTdi.sys
2009-11-24 23:48:57 . 2009-11-22 18:10:47 23120 ----a-w- C:\WINDOWS\system32\drivers\aswRdr.sys
2009-11-24 23:47:54 . 2009-11-22 18:10:46 27408 ----a-w- C:\WINDOWS\system32\drivers\aavmker4.sys
2009-11-24 23:47:28 . 2009-11-22 18:10:45 97480 ----a-w- C:\WINDOWS\system32\AvastSS.scr
2009-11-24 15:14:05 . 2009-10-22 14:53:07 1 ----a-w- C:\Documents and Settings\UTENTE\Dati applicazioni\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-11-23 20:01:18 . 2006-10-19 06:28:54 -------- d-----w- C:\Programmi\File comuni\Adobe
2009-11-22 17:48:38 . 2007-01-19 07:13:28 -------- d-----w- C:\Programmi\Microsoft ActiveSync
2009-11-22 17:40:32 . 2006-10-19 06:17:11 -------- d-----w- C:\Programmi\Microsoft Works
2009-11-22 17:40:29 . 2009-11-21 21:24:44 -------- d-----w- C:\Programmi\MEDIA
2009-11-22 17:40:22 . 2009-11-21 21:17:58 -------- d-----w- C:\Programmi\CLIPART
2009-11-22 17:39:41 . 2009-03-12 15:53:06 -------- d-----w- C:\Programmi\MSBuild
2009-11-22 17:39:19 . 2009-11-22 17:03:33 -------- d-----w- C:\Documents and Settings\All Users\Dati applicazioni\Microsoft Help
2009-11-22 14:22:41 . 2009-11-22 14:22:36 -------- d-----w- C:\Programmi\Photoshop
2009-11-22 14:11:14 . 2009-11-22 14:11:04 -------- d-----w- C:\Programmi\Burn masterizzatore
2009-11-22 14:06:28 . 2006-10-19 05:28:42 -------- d-----w- C:\Programmi\Google
2009-11-22 07:03:16 . 2006-10-22 06:26:31 -------- d-----w- C:\Programmi\Graphisoft
2009-11-21 21:27:03 . 2009-11-21 21:27:03 -------- d-----w- C:\Programmi\Templates
2009-11-21 21:26:37 . 2009-11-21 21:26:36 -------- d-----w- C:\Programmi\Print-server
2009-11-21 18:39:57 . 2009-11-21 18:39:57 -------- d-----w- C:\Programmi\Alwil Software
2009-11-21 13:05:19 . 2006-10-19 05:35:49 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Lavasoft
2009-11-21 13:03:18 . 2007-04-07 16:11:00 -------- d-----w- C:\Documents and Settings\UTENTE\Dati applicazioni\Acubix PicoBackup Outlook Express Edition
2009-11-18 15:46:56 . 2008-03-31 14:20:41 -------- d-----w- C:\Programmi\Strutture Tecnobit
2009-11-18 09:50:41 . 2009-09-19 20:03:39 17383456 --sha-w- C:\WINDOWS\system32\drivers\fidbox.dat
2009-11-07 12:45:33 . 2009-11-07 12:45:33 152576 ----a-w- C:\Documents and Settings\UTENTE\Dati applicazioni\Sun\Java\jre1.6.0_17\lzma.dll
2009-05-04 15:23:03 . 2009-05-04 15:23:02 270978 ----a-w- C:\Programmi\La direzione dei lavori.zip
2009-03-26 11:28:08 . 2009-11-21 21:27:00 901120 ----a-w- C:\Programmi\DEI_ScuoleEcocompatibili.exe
2008-08-10 06:57:56 . 2008-08-10 06:57:30 3723454 ----a-w- C:\Programmi\IZArc_Setup.exe
2008-07-17 18:59:36 . 2008-07-17 19:01:10 3536683 ----a-w- C:\Programmi\PicoBackupOESetup.exe
.
((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2006-03-30 14:45:08 . 2006-03-30 14:45:08 313472 C:\Programmi\Adobe\Acrobat 7.0\Reader\bak\AdobeUpdateManager.exe
2006-10-18 20:23:57 . 2003-05-05 06:57:30 143360 C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe
2006-10-19 05:16:34 . 2004-06-10 19:10:00 339968 C:\Programmi\ATI Technologies\ATI Control Panel\bak\atiptaxx.exe
2006-10-23 13:43:08 . 2004-05-10 14:54:24 49152 C:\Programmi\Brother\Brmfl04c\bak\BrStDvPt.exe
2009-08-10 13:39:07 . 2004-05-10 14:54:24 49152 C:\Programmi\Brother\Brmfl04c\BrStDvPt.exe
2003-09-29 23:14:58 . 2003-09-29 23:14:58 155648 C:\Programmi\File comuni\ScanSoft Shared\SSBkgdUpdate\bak\SSBkgdupdate.exe
2007-01-27 18:16:46 . 2007-01-27 18:16:46 171448 C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\bak\GoogleToolbarNotifier.exe
2006-02-19 01:41:10 . 2006-02-19 01:41:10 49152 C:\Programmi\HP\HP Software Update\bak\HPWuSchd2.exe
2006-02-19 01:41:10 . 2006-02-19 01:41:10 49152 C:\Programmi\HP\HP Software Update\hpwuSchd2.exe
2006-06-15 07:43:20 . 2006-06-15 07:43:20 49152 C:\Programmi\HP\ToolboxFX\bin\bak\HPTLBXFX.exe
2009-08-10 13:39:08 . 2006-06-15 07:43:20 49152 C:\Programmi\HP\ToolboxFX\bin\HPTLBXFX.exe
2006-10-22 06:23:15 . 2005-11-10 11:03:52 36975 C:\Programmi\Java\jre1.5.0_06\bin\bak\jusched.exe
2009-08-10 13:39:08 . 2005-11-10 11:03:52 36975 C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe
2007-12-11 15:21:42 . 2007-09-25 00:11:35 132496 C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe
2009-08-10 13:39:08 . 2007-09-25 00:11:35 132496 C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe
2006-10-23 13:48:46 . 2003-12-01 09:38:16 892928 C:\Programmi\Logitech\iTouch\bak\iTouch.exe
2006-10-23 16:30:55 . 2003-07-29 22:37:28 332288 C:\Programmi\MemoRex\bak\MemoRexStart.exe
2009-08-10 13:39:06 . 2003-07-29 22:37:28 332288 C:\Programmi\MemoRex\MemoRexStart.exe
2006-06-21 02:52:42 . 2006-06-21 02:52:42 1211176 C:\Programmi\Microsoft ActiveSync\bak\wcescomm.exe
2006-06-21 02:52:42 . 2006-06-21 02:52:42 1211176 C:\Programmi\Microsoft ActiveSync\wcescomm.exe
2006-09-01 14:57:48 . 2006-09-01 14:57:48 282624 C:\Programmi\QuickTime\bak\qttask.exe
2009-08-10 13:39:07 . 2006-09-01 14:57:48 282624 C:\Programmi\QuickTime\qttask.exe
2005-06-17 13:52:52 . 2005-06-17 13:52:52 1129472 C:\Programmi\Salvataggio outlook express\PicoBackupOE\bak\PicoBackupAgent.exe
2001-08-31 11:00:00 . 2004-08-19 13:39:36 15360 C:\WINDOWS\system32\bak\ctfmon.exe
2001-08-31 11:00:00 . 2008-04-13 17:14:04 15360 C:\WINDOWS\system32\ctfmon.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Programmi\Skype\\Phone\Skype.exe" [2009-10-09 12:11:12 25623336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"zzzHPSETUP"="D:\Setup.exe \RESET" [X]
"Logitech Utility"="Logi_MwX.Exe" [2003-11-07 09:50:00 19968]
"HPUsageTracking"="C:\Programmi\HP\HP UT\bin\hppusg.exe" [2006-06-14 13:20:06 36864]
"LogitechQuickCamRibbon"="C:\Programmi\Logitech\QuickCam\Quickcam.exe" [2008-02-13 12:06:58 2196240]
"SunJavaUpdateSched"="C:\Programmi\Java\jre6\bin\jusched.exe" [2009-10-11 03:17:36 149280]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 23:51:40 81000]
"Acrobat Assistant 7.0"="C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2004-12-14 01:12:02 483328]
"HP Software Update"="C:\Programmi\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 01:41:10 49152]
"QuickTime Task"="C:\Programmi\QuickTime\qttask.exe" [2006-09-01 14:57:48 282624]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2008-04-13 17:14:04 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WUAppSetup"="C:\Programmi\File comuni\logishrd\WUApp32.exe" [2008-12-17 05:51:04 443664]
C:\Documents and Settings\UTENTE\Menu Avvio\Programmi\Esecuzione automatica\
Printkey.lnk - C:\Printkey.exe [2006-10-22 514560]
C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Alice ti aiuta.lnk - C:\Programmi\Alice ti aiuta\bin\matcli.exe [2006-10-23 212992]
Avvio rapido HP Photosmart Premier.lnk - C:\Programmi\HP\Digital Imaging\bin\hpqthb08.exe [2006-2-10 73728]
Avvio veloce di Adobe Acrobat.lnk - C:\WINDOWS\Installer\{AC76BA86-1034-4700-7760-000000000002}\SC_Acrobat.exe [2009-11-23 25214]
Logitech Desktop Messenger.lnk - C:\Programmi\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [2009-3-24 66864]
Status Monitor.lnk - C:\Programmi\Brother\Brmfcmon\BrMfcWnd.exe [2006-10-23 819200]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\H:\0autocheck autochk *
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\Programmi\Microsoft ActiveSync\rapimgr.exe"= C:\Programmi\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"C:\Programmi\Microsoft ActiveSync\wcescomm.exe"= C:\Programmi\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"C:\Programmi\Microsoft ActiveSync\WCESMgr.exe"= C:\Programmi\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"C:\\Programmi\\JavaSoft\\JRE\\1.3.1_13\\bin\\javaw.exe"=
"C:\\WINDOWS\\system32\\mmc.exe"=
"C:\\Programmi\\Graphisoft\\ArchiCAD 11\\ArchiCAD.exe"=
"C:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"C:\\Programmi\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"C:\\Programmi\\Adobe\\Acrobat 7.0\\Acrobat\\Acrobat.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"C:\\Programmi\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"9633:TCP"= 9633:TCP:gyira
"3389:TCP"= 3389:TCP:Remote Desktop
R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [22/11/2009 19.10.45 114768]
R1 OADevice;OADriver;C:\WINDOWS\system32\drivers\OADriver.sys [21/09/2009 16.08.32 200784]
R1 OAmon;OAmon;C:\WINDOWS\system32\drivers\OAmon.sys [21/09/2009 16.08.32 24656]
R1 OAnet;OAnet;C:\WINDOWS\system32\drivers\OAnet.sys [21/09/2009 16.08.32 29776]
R2 ACCAKeyServer;ACCA Key Server v.2.00;C:\ACCA\ACCAKeyServer\ACCAKeyService.EXE [15/03/2009 18.35.13 528896]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\drivers\aswFsBlk.sys [22/11/2009 19.10.45 20560]
R2 CPUSB;CPUsb.Sys driver;C:\WINDOWS\system32\drivers\CPUSB.sys [22/10/2006 9.09.26 17080]
R2 cpwnt;cpwnt;C:\WINDOWS\system32\drivers\CPWNT.SYS [21/10/2006 19.08.06 21824]
S1 SASKUTIL;SASKUTIL;\??\F:\Programmi\SuperantiSpyware\SASKUTIL.sys --> F:\Programmi\SuperantiSpyware\SASKUTIL.sys [?]
S1 soqwx32;soqwx32;\??\C:\WINDOWS\system32\drivers\soqwx32.sys --> C:\WINDOWS\system32\drivers\soqwx32.sys [?]
S2 OAcat;Online Armor Helper Service;"F:\Programmi\Firewall Armor\Online Armor\OAcat.exe" --> F:\Programmi\Firewall Armor\Online Armor\OAcat.exe [?]
S2 SvcOnlineArmor;Online Armor;F:\Programmi\Firewall Armor\Online Armor\oasrv.exe --> F:\Programmi\Firewall Armor\Online Armor\oasrv.exe [?]
S3 MSHUSBVideo;NX6000/NX3000/VX5000/VX5500/VX7000 Filter Driver;C:\WINDOWS\system32\drivers\nx6000.sys [12/03/2009 17.33.32 33808]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
gzemr
ejivo
.
Contenuto della cartella 'Scheduled Tasks'
2010-01-10 C:\WINDOWS\Tasks\XoftSpySE 2.job
- C:\Programmi\XoftSpySE\XoftSpy.exe [2009-11-21 13:24:23 . 2007-07-23 16:34:00]
2010-01-10 C:\WINDOWS\Tasks\XoftSpySE.job
- C:\Programmi\XoftSpySE\XoftSpy.exe [2009-11-21 13:24:23 . 2007-07-23 16:34:00]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.virgilio.it/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mStart Page = hxxp://www.virgilio.it/
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = 127.0.0.1
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Converti destinazione link in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti destinazione link in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti i link selezionati in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Converti i link selezionati in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti nel file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti selezione in Adobe PDF - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti selezione in file PDF esistente - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&sporta in Microsoft Excel - C:\PROGRA~1\Office12\EXCEL.EXE/3000
TCP: {667CCFE0-179F-4596-86C5-C5967CC876D0} = 151.99.125.2,151.99.125.3
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programmi\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: Microsoft XML Parser for Java - file://C:\WINDOWS\Java\classes\xmldso.cab
FF - ProfilePath - C:\Documents and Settings\UTENTE\Dati applicazioni\Mozilla\Firefox\Profiles\1awbkkbc.default\
FF - prefs.js: browser.startup.homepage - hxxp://VIRGILIO.IT
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
BHO-{D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
Toolbar-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Programmi\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll
ShellExecuteHooks-{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - F:\Programmi\SuperantiSpyware\SASSEH.DLL
ShellExecuteHooks-{4F07DA45-8170-4859-9B5F-037EF2970034} - F:\PROGRA~1\FIREWA~1\ONLINE~1\oaevent.dll
Notify-!SASWinLogon - F:\Programmi\SuperantiSpyware\SASWINLO.dll
Notify-avgrsstarter - avgrsstx.dll
AddRemove-001FFFFFFF10FF00FF1501F08F02F000-R1 - f:\Programmi\Graphisoft\ArchiCAD 10\Uninstall.AC\uninstaller.exe
AddRemove-Channel V2.76 - F:\PROGRA~1\Hilti\CHANNE~1\UNWISE.EXE
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Find AWF report by noahdfear ©2006
Version 1.40
bak folders found
~~~~~~~~~~~
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\MEMOREX\BAK
29/07/2003 23.37 332 288 MemoRexStart.exe
1 File 332 288 byte
2 Directory 225 073 917 952 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\MESSEN~1\BAK
0 File 0 byte
2 Directory 225 073 917 952 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\MI3AA1~1\BAK
21/06/2006 03.52 1 211 176 wcescomm.exe
1 File 1 211 176 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\QUICKT~1\BAK
01/09/2006 15.57 282 624 qttask.exe
1 File 282 624 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\TOMTOM~1\BAK
0 File 0 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\WINDOWS\SYSTEM32\BAK
19/08/2004 14.39 15 360 ctfmon.exe
1 File 15 360 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\ANALOG~1\SOUNDMAX\BAK
05/05/2003 07.57 143 360 SMTray.exe
1 File 143 360 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\ATITEC~1\ATICON~1\BAK
10/06/2004 20.10 339 968 atiptaxx.exe
1 File 339 968 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\BROTHER\BRMFL04C\BAK
10/05/2004 15.54 49 152 BrStDvPt.exe
1 File 49 152 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\HP\HPSOFT~1\BAK
19/02/2006 02.41 49 152 HPWuSchd2.exe
1 File 49 152 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\LOGITECH\ITOUCH\BAK
01/12/2003 10.38 892 928 iTouch.exe
1 File 892 928 byte
2 Directory 225 073 913 856 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\SALVAT~1\PICOBA~1\BAK
17/06/2005 14.52 1 129 472 PicoBackupAgent.exe
1 File 1 129 472 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\ADOBE\ACROBA~1.0\READER\BAK
30/03/2006 15.45 313 472 AdobeUpdateManager.exe
1 File 313 472 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\FILECO~1\SCANSO~1\SSBKGD~1\BAK
30/09/2003 00.14 155 648 SSBkgdupdate.exe
1 File 155 648 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\GOOGLE\GOOGLE~1\121128~1.546\BAK
27/01/2007 19.16 171 448 GoogleToolbarNotifier.exe
1 File 171 448 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\HP\TOOLBO~1\BIN\BAK
15/06/2006 08.43 49 152 HPTLBXFX.exe
1 File 49 152 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\JAVA\JRE15~1.0_0\BIN\BAK
10/11/2005 12.03 36 975 jusched.exe
1 File 36 975 byte
2 Directory 225 073 909 760 byte disponibili
Il volume nell'unità C non ha etichetta.
Numero di serie del volume: 80CD-DD62
Directory di C:\PROGRA~1\JAVA\JRE16~1.0_0\BIN\BAK
25/09/2007 01.11 132 496 jusched.exe
1 File 132 496 byte
2 Directory 225 073 909 760 byte disponibili
Duplicate files of bak directory contents
~~~~~~~~~~~~~~~~~~~~~~~
3134186 16 May 2005 "C:\Z-agenda\MemoRex1-8-300.exe"
322560 8 Jan 2004 "C:\Programmi\MemoRex\MemoRexOpt.exe"
332288 29 Jul 2003 "C:\Programmi\MemoRex\bak\MemoRexStart.exe"
1211176 21 Jun 2006 "C:\Programmi\Microsoft ActiveSync\wcescomm.exe"
1211176 21 Jun 2006 "C:\Programmi\Microsoft ActiveSync\bak\wcescomm.exe"
282624 1 Sep 2006 "C:\Programmi\QuickTime\qttask.exe"
282624 1 Sep 2006 "C:\Programmi\QuickTime\bak\qttask.exe"
15360 13 Apr 2008 "C:\WINDOWS\system32\ctfmon.exe"
15360 13 Apr 2008 "C:\WINDOWS\ERDNT\cache\ctfmon.exe"
15360 19 Aug 2004 "C:\WINDOWS\system32\bak\ctfmon.exe"
143360 5 May 2003 "C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe"
339968 10 Jun 2004 "C:\Programmi\ATI Technologies\ATI Control Panel\bak\atiptaxx.exe"
49152 10 May 2004 "C:\Programmi\Brother\Brmfl04c\BrStDvPt.exe"
49152 10 May 2004 "C:\Programmi\Brother\Brmfl04c\bak\BrStDvPt.exe"
49152 19 Feb 2006 "C:\Programmi\HP\HP Software Update\hpwuSchd2.exe"
49152 19 Feb 2006 "C:\Programmi\HP\HP Software Update\bak\HPWuSchd2.exe"
892928 1 Dec 2003 "C:\Programmi\Logitech\iTouch\bak\iTouch.exe"
3536683 17 Jul 2008 "C:\Programmi\PicoBackupOESetup.exe"
2125824 20 Jun 2005 "C:\Programmi\PicoBackupOE\PicoBackup.exe"
3536683 30 Mar 2007 "C:\Programmi\Salvataggio outlook express\PicoBackupOESetup.exe"
1129472 17 Jun 2005 "C:\Programmi\Salvataggio outlook express\PicoBackupOE\bak\PicoBackupAgent.exe"
307200 22 Nov 2004 "C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe"
307200 22 Nov 2004 "C:\Programmi\Adobe\Acrobat 7.0\Acrobat Elements\AdobeUpdateManager.exe"
970752 16 Mar 2005 "C:\Programmi\File comuni\Adobe\Updater\AdobeUpdater.exe"
313472 30 Mar 2006 "C:\Programmi\Adobe\Acrobat 7.0\Reader\bak\AdobeUpdateManager.exe"
155648 30 Sep 2003 "C:\Programmi\File comuni\ScanSoft Shared\SSBkgdUpdate\bak\SSBkgdupdate.exe"
13281280 9 Jul 2008 "C:\Programmi\Google\Google Earth\googleearth.exe"
26694 5 Aug 2008 "C:\WINDOWS\Installer\{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}\googleearth.exe_407B9B5CDAC54F44A756B57CAB4E6A8B.exe"
171448 27 Jan 2007 "C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\bak\GoogleToolbarNotifier.exe"
49152 15 Jun 2006 "C:\Programmi\HP\ToolboxFX\bin\HPTLBXFX.exe"
49152 15 Jun 2006 "C:\Programmi\HP\ToolboxFX\bin\bak\HPTLBXFX.exe"
36975 10 Nov 2005 "C:\Programmi\Java\jre1.5.0_06\bin\bak\jusched.exe"
132496 25 Sep 2007 "C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe"
36975 10 Nov 2005 "C:\Programmi\Java\jre1.5.0_06\bin\bak\jusched.exe"
132496 25 Sep 2007 "C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe"
end of report
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Apri un file di testo sul Desktop (start\esegui\digita: notepad.exe\ Ok Ci incolli il codice che vedi qui sotto, e salvi il file di testo obbligatoriamente con il nome CFScript.txtCode:File::
C:\WINDOWS\system32\drivers\soqwx32.sys
C:\WINDOWS\system32\drivers\aswFsBlk.sys
Registry::
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9633:TCP"=-
NetSvcs::
gzemr
ejivo
Driver::
soqwx32
aswFsBlk
gzemr
ejivo e trascinalo sull'icona di ComboFix. Attendi la fine dei lavori, senza toccare tastiera, mouse o altro. Posta il log aggiornato di combofix
|
|
Rank: AiutAmico
Iscritto dal : 8/20/2009
Posts: 1,691
|
Non ho l'icona di Combofix sul desktop, come faccio a metterla?
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
giovannino60 ha scritto:Non ho l'icona di Combofix sul desktop, come faccio a metterla? Perchè NON hai seguito le istruzioni ALLA LETTERA. Ti avevo detto di scaricarlo sul DESKTOP. (l'ho scritto persino in rosso) Adesso disistallalo così: Start Esegui nella finestra di dialogo, copia ed incolla questo comando: Combofix /Uninstall Attendi la fine dei lavori senza toccare tastiera, mouse o altro. Installa questa versione : http://download.bleepingcomputer.com/sUBs/ComboFix.exeE questa volta, lo DEVI scaricare sul DESKTOP.
|
|
|
Guest |
