ecco il primo log:


############################## | FindyKill V5.024 |

# User : Stefano (Administrators) # ADMIN
# Update on 09/01/2010 by El Desaparecido
# Start at: 16.46.50 | 19/01/2010
# Website : http://pagesperso-orange.fr/NosTools/index.html
# Contact : FindyKill.Contact@gmail.com

# Intel(R) Pentium(R) 4 CPU 3.00GHz
# Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 8.0.6001.18702
# Windows Firewall Status : Enabled
# AV : ESET NOD32 Antivirus 4.0 4.0 [ Enabled | Updated ]

# A:\ # Disco floppy, 3,5 pollici
# C:\ # Disco rigido locale # 152,66 Go (74,65 Go free) # NTFS
# D:\ # Disco CD-ROM
# E:\ # Disco CD-ROM
# F:\ # Disco rigido locale # 185,6 Go (118,45 Go free) [Volume] # NTFS

############################## | Active Processes |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
C:\Programmi\File comuni\Acronis\CDP\afcdpsrv.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\crypserv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Google\Update\GoogleUpdate.exe
C:\Programmi\Google\Update\GoogleUpdate.exe
C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Programmi\Hotspot Shield\bin\openvpnas.exe
C:\Programmi\Hotspot Shield\HssWPR\hsssrv.exe
C:\Programmi\Google\Update\GoogleUpdate.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

################## | C: |


################## | C:\WINDOWS |

Deleted ! C:\WINDOWS\mdelk.exe
Deleted ! C:\WINDOWS\wintems.exe

################## | C:\WINDOWS\Prefetch |

Deleted ! C:\WINDOWS\Prefetch\115078.EXE-0CF8DC9E.pf
Deleted ! C:\WINDOWS\Prefetch\140046.EXE-222CB67C.pf
Deleted ! C:\WINDOWS\Prefetch\147093.EXE-2A8A4EAD.pf
Deleted ! C:\WINDOWS\Prefetch\149031.EXE-05E2A022.pf
Deleted ! C:\WINDOWS\Prefetch\155625.EXE-06F689FD.pf
Deleted ! C:\WINDOWS\Prefetch\156421.EXE-263DDCF9.pf
Deleted ! C:\WINDOWS\Prefetch\164187.EXE-09A1E4D8.pf
Deleted ! C:\WINDOWS\Prefetch\165437.EXE-1A2726FA.pf
Deleted ! C:\WINDOWS\Prefetch\166796.EXE-331A4718.pf
Deleted ! C:\WINDOWS\Prefetch\170890.EXE-0A9AC7C7.pf
Deleted ! C:\WINDOWS\Prefetch\176421.EXE-255105C7.pf
Deleted ! C:\WINDOWS\Prefetch\211921.EXE-2FFA264E.pf
Deleted ! C:\WINDOWS\Prefetch\220890.EXE-073A58F7.pf
Deleted ! C:\WINDOWS\Prefetch\244015.EXE-1070F005.pf
Deleted ! C:\WINDOWS\Prefetch\247625.EXE-026B39EA.pf
Deleted ! C:\WINDOWS\Prefetch\FLEC006.EXE-0392C2EB.pf
Deleted ! C:\WINDOWS\Prefetch\MDELK.EXE-087EF2B4.pf
Deleted ! C:\WINDOWS\Prefetch\SERIAL.EXE-1B51BE9F.pf
Deleted ! C:\WINDOWS\Prefetch\WINTEMS.EXE-127B61D4.pf
Deleted ! C:\WINDOWS\Prefetch\WINUPGRO.EXE-1C18064C.pf

################## | C:\WINDOWS\system32 |

Deleted ! C:\WINDOWS\system32\wfsintwq.sys

################## | C:\WINDOWS\system32\drivers |


################## | C:\Documents and Settings\Stefano\Dati applicazioni |

Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\drivers\downld
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\drivers\winupgro.exe
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\drivers
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\flec006.exe
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\#1 Smart PopUp Stopper Pro 4.4 CrAcKed.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\3D Box Maker Professional v1.2 Build 12200512 WinALL Incl Keygen by ARN.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Adaptec Easy CD Creator v4.0 Deluxe Full.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Address 2000.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Adobe After Effects 4.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Adobe Photoshop CS3 v10.0.1.0 by CiM.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AdventNet ManageEngine OpManager Professional v5.5 Keymaker Only by AGAiN.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AirStrike 2 v2.12.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AK Research Labs CHM2Web Pro v2.80.212 by DJiNN.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Akram Audio Converter v2.5 WinALL Incl Keygen by ViRiLiTY.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\ALAP ImagePort for QuarkXPress 1.0.1 for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Alarm Clock Pro 9.2.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Alarm Master Plus v4.11 Win98MeNT2k by EiTHeL.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Alive Address Book v1.5.2.312 by HERETiC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Alive MP3 WAV Converter Standard 2.2.1.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Alloy Executable Compiler 1.05.13.2000.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Altova MapForce Enterprise v2007.3.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Amethyst CADwizz 1.25c (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Amethyst CADwizz 1.27h.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Ancestral Author v2.3i.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Animate Nature Screensaver v1.01.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AOL Instant Messenger (AIM) Ads Removal By ReaLIsTy.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Aone Ultra RM Converter v2.4.0 by AT4RE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Apimac Slide Show for Windows v8.0.0 Incl Keymaker by EMBRACE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Ashampoo BurnYa! DataCD v1.3 by SSG.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AssetManage 99.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Aston 1.2.4.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AT Screen Thief 3.2.3 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Atomic-FTP 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Attractive Clock 2.0.2-key.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AVISplitter 1.1 (crack).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\AVM Alice 3.00.00 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Baldur's Gate 2 SoA & ToB ITEMS LISTING v2.01.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Baldurs Gate 2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Battlefield 1942 Secret Weapons of WWII 1 x (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Beta Program Bug & Feature Database 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Bid-n-Invoice Home Cleaning 2.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\BitTorrent Acceleration Tool 2.3.8.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Black Widow 4.14 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\BlotterGeist 1.3.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Borland JDataStore v7.05 by SHOCK.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Borland StarTeam Stardisk v6.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Bowling Assistant 1 A4 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\BPS CD Ripper Grabber v3.6.0.2 by ECLiPSE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\BPS SpyWare Adware Remover 8.2.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Brickles 3000.1.0 for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\BriefAudit v1.0a by DBC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Budget Advisor 1.19.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Cafe Cop 3.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Camtasia Studio 2.0.2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CaptureIt v1.2.1 by FFF.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CBL Web Application Builder v8.01.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CD Label Designer 2.0 Build 116 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CDmax 1.8.4.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Ceramic Wares 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Charlie and Arnaud 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CheckDialer v1.4 by PC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\ChrisTWEAK v1.20 Multilanguage by TBE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Contraption Zack (1992) (Presage) FULL!.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Cooking Aficionado v3.0.1 WinALL MULTiLANGUAGE ReggedFAiTH.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CoolRead v1.7 by DVT.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\CreateInstall Pro v2003.3.0 by SnD.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Crossword Forge v4.0.2 by Core.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Dark Castle 3D Screensaver 1.1 crack.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\DeltaGIS v4.05.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Digigenius DVD to iPhone Converter 3.6.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\DigitByte Ofilter Player v1.1 by RED.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\DlgXRSizer 4.1.6.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\DLSoft dBarcode Java PDF417 v1.00 by Lz0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Domeru DVD to iPod Converter v3.6.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Dungeon Siege 2 NORTHERN & WESTERN GREILYN JUNGLE MAP.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\DVD Cover Searcher v1.1 Cracked by NiTROUS.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Easy File Sharing Web Server v1.23 Keygen by SND.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\EasyQuizz Pro v2.3.2.19 by FRENCH-BS.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Echo Fire 2.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Elektro Puzzle 1.33.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Empire Earth 2 v1.10 [ENGLISH] No-CD Fixed EXE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Enfish Personal 5.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Eurobuchfuehrung v1.6 DateCode 12102004 German by ViRiLiTY.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\EZB Systems UltraISO Media Edition v7.6.6.1308 WinAll Cracked by CRD.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Feurio v1.67 Professional BiLiNGUAL by HARPOON.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Fifa 2005.1.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Fighters Clock 1.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FinePrint v5.44 Incl Keymaker by ACME.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FineWare Space Hound v4.0.0.1744 by DVT.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Firehand Lightning 2.3.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Flaming Pear LunarCell v1.4.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FlashGet v1.1 Fixed.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FlexHex v2.46 by SND.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FolderView 1.85 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FolderView v1.0 Serial by AmoK.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FSecure AntiVirus Workstation 5.22 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FTP ServU 2.2 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\FWB CDROM Toolkit 2.0.1 for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Gameloft Battle for The White House v111 Retail JAVA by RLYEH.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\GS Advanced GIF Optimizer 4.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\HalWorks v2.0 by PC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Hotel Gigant +2 Trainer 2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\HTML to Image v2.0.2007.708 by CiM.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Icon Extractor 3.3 by Drone.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\IdeaStorm 2.0J for Mac (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\IDentify! 2.5.1 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\II Workproject v4.41 WinALL Regged by ViRiLiTY.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Illumination 110 Lighting Console 1.02.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\imPRESSion Lite 1.01d (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Incredible Hulk Retail JAVA 3220 by RLYEH.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\IOXperts - for Mac (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Iparmor v5.45.0127.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\iSITE 1.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\JPG to PDF Creator 4.3.2.1 crack.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Just Buttons v1.6 by Eminence.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Keep Out Halloween Edition 3D Screen Saver 1.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\KFSensor v1.5.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Liberty 1.2.5 for PalmOS.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Logger Pro 3.8.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Mahjongg Valentines 1.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MarketSMS 2.3.3595.20567.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Medical Toolbar Icons 2009.2 crack.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MENTOR GRAPHICS PRECISION RTL SYNTHESIS V2005c 99UDING UPDATE1 LiNUX by NiTROUS.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MessengerLog v3.07.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Microsoft Windows 98 OEM.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Microstation 3D (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MindControl 1.1 for Mac (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Moyea DVD to iPhone Converter by RESURRECTiON.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MP3 Spliter and Joiner v3.32 build 2 by AT4RE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\MultiDB Querier v1.1.1.43 by DiGERATi.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Nalsoft Subtitle Player v1.0.2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Nero 6.6.0.12 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Nero Burning ROM v5.5.2.4 Regmaker.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\NetBarrier 1.5 for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\NETSCAN PRO 3.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\NetShade 3.0.2 for Mac (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\NFL 2009 Retail JAVA Motorola K1 by RLYEH.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\NiceTracker 1.01b (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Nord And Bert Couldnt Make Head Or Tail Of It (1987) (Infocom) FULL!.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Office Financials 2000.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\OfficeIRC Server 2.3.287.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Offline Explorer v3.3 build 1788 Standard.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\opera bowser 6.20.0 for Symbian OS (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Overlord [MULTI5] No-DVD - Fixed Image.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Panda Platinum Internet Security v8.03.00.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Patriots Retail JAVA 176x220 by RLYEH.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\PDF Stamp Command Line v1.1 (05-03-2004).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Pdf995 Printer Driver v7.2s WinALL Incl Keymaker by Core.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Pennocks Email Notifier 1.1.10.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\PercussionStudio v3.0f by TMG.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Periscope Image Browser 1.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Personal Diary 1.0.0 CrAcKed.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\photoshop 9.0cs2 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\PhotoTools 3.01.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Pocket Relaxer Desktop 1.0 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Power Video Converter v2.2.12 by Under SEH T3am.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Primal Code 3.0.425 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Pristine Sounds 98 SR2.2 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Quick Access Folders and Files v2.0 WinALL Cracked by BRD.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Quota Manager 2.6.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RandGreg Radio Pro 2.2.2.57.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Real Spy Monitor v2.11 by HERETiC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Recovery for Access 2.3 Build 11116.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Recovery for Backup 1.8 Build 11052.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Registry Clean Expert v4.52.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Regit Point of Sale v3.50 by Jest Newbee.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RemodelCOST Estimator for Excel v2.3 DateCode 08182004 WinALL Regged by CHiCNCREAM.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RemoteExec v3.07 by BLiZZARD.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Replica Single Server 3.05 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Resizer XT 1.2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RhythmTutor 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\River Past Talkative 2.0.4.40205.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RoN Thrones and Patriots v3.2.3.2901 & v3.2.3.2905 +3 TRAINER.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\RStudio Agent Emergency v2.0.819 by SCRiPTMAFiA.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\S.T.A.L.K.E.R. Call of Pripyat v1.6.01 SP WEIGHT FIX.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Safe Melt 2.74E.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\SafeHouse 2.00.062 448 Bits (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\SciTech Display Doctor 6.5 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Screen Record 1.3 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\ShuCASH 3000 v3.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Soft PC Big Ben Chimes 1.0.0.6.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Softboy net Exe Icons Changer v4.8c WinALL Incl Keygen by BLiZZARD.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Solas Data Heidenhain CNC Tutor 3.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Sonalksis All Plugins Bundle VST DX RTAS v2.02 Incl KeygenAiR.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Sonic Foundry Video Factory 1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\SourcePublisher for C Plus Plus v1.4.352b.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\South River Titan FTP Server v4.02.248 Enterprise Edition by ZWT.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\SpyBouncer v1.28 WinALL by TBE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Stars Nues ScreenSaver.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Student Diary 1.61 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Super Ad Blocker v4.2.0.1012 by HERiTAGE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Super Charge 4.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Taxi Tycoon v1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\TeamTrax Lite 1.1 CrAcKed.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Teleport Pro v1.47.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\TFTP Server 2000 v3.6.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\The All Seeing Eye v2.3.3.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\The Bat! v2.01 by Core.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\The Da Vinci Code [MULTI] No-DVD Fixed Image.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Titanium AntiVirus 2006 titanium 2006 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Tom Clancys Rainbow Six 3 Raven Shield v1.41 NoCD Patch by DRUNK.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Tony Hawk's Underground 2 1.00 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Total Recorder v3.0.1 Patch by Lockless2k.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\TrialAction Xmas Volley v1.0 for Pocket PC 2002.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Turbo Connect v2.0.0.2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Twistingo Deluxe v1.0 GERMAN Cracked WORKING by TNT.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\TypeInIt Professional v2.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\UEFA Euro 2004.1.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\UsenetGrab 2.0.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\VisioForge Video Edit SDK (ActiveX Version) 3.71.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\VNI IMSL C Numerical Library v6.0 for VC 6.0 by TBE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\voice changer 4.1 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Vortiball 1.1.3.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\VSE Web Site Turbo 3.0.1 for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\WAPman 1.5.2 for PalmOS.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Wichio Browser v3.5 WinALL by TBE.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Windows Wallpaper v1.7.4 German WinAll by LAXiTY.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Windows XP Titanium Edition (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\WinRescue ME 1.08.16 (Serial).zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\WinSuperKit 4.2.545.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\WizFlow Flowcharter Professional v5.09.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Word Perfect Works for Mac.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Wordsheets 5.1.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\WorldShift v1.0.21 +11 TRAINER.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Xilisoft DVD Ripper Standard v5.0.27.0131 by CiM.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Xilisoft DVD Ripper Ultimate v5.0.24 build 0111.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Xilisoft DVD Ripper Ultimate v5.0.32 build 0314 by PSC.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Xlinksoft Youtube to MP4 Converter 2009.05.22-key.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Xtreme PhotoStory on CD & DVD 8.0.3.2.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared\Zealot All Video Converter v1.0.5.zip
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m\shared
Deleted ! C:\Documents and Settings\Stefano\Dati applicazioni\m

################## | Reference of comparaison Bagle MD5 : |

File : C:\Documents and Settings\Stefano\Dati applicazioni\drivers\winupgro.exe
-> Crc32 : 5557b760 | Md5 : b23a7d01c4480742d988a71c94d6148f


################## | Other deleting ... |

Deleted ! "C:\Programmi\File comuni\Nero\Lib\NMBgMonitor.exe"
-> Size : 839168 | Crc32 : 5557b760 | Md5 : b23a7d01c4480742d988a71c94d6148f

################## | Temporary Internet Files |


################## | Registry |

Deleted ! [HKLM\SYSTEM\ControlSet002\Services\sK9Ou0s]
Deleted ! [HKLM\SYSTEM\ControlSet002\Services\srosa]
Deleted ! [HKLM\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S]
Deleted ! [HKLM\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA]
Deleted ! [HKCU\Software\bisoft]
Deleted ! [HKCU\Software\DateTime4]
Deleted ! [HKCU\Software\MuleAppData]
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "drvsyskit"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "german.exe"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Run] "mule_st_key"
Deleted ! [HKCU\Software\Local AppWizard-Generated Applications\serial]
Deleted ! [HKCU\Software\Local AppWizard-Generated Applications\winupgro]

################## | State |

# Safe boot mode : OK


# Showing of hidden files : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )

################## | PEH |

Corrupted : C:\Documents and Settings\Stefano\Desktop\Cose varie\rimuovere virus\ComboFix.exe
[Offset = 00000204 - Value = 0x0001]

Corrupted : C:\Documents and Settings\Stefano\Desktop\Cose varie\rimuovere virus\HijackThis.exe
[Offset = 000000C4 - Value = 0x0001]

Corrupted : C:\Programmi\ESET\ESET NOD32 Antivirus\egui.exe
[Offset = 000000FC - Value = 0x0001]

Corrupted : C:\Programmi\ESET\ESET NOD32 Antivirus\ekrn.exe
[Offset = 000000F4 - Value = 0x0001]

Corrupted : C:\Programmi\Red Kawa\Video Converter\uninstaller.exe
[Offset = 000000DC - Value = 0x0001]

Corrupted : C:\Programmi\Symantec\Norton PartitionMagic 8.0\DOCS\PM8Flash.exe
[Offset = 0000010C - Value = 0x0001]

Corrupted : C:\Programmi\Symantec\Norton PartitionMagic 8.0\DrvMap.exe
[Offset = 00000204 - Value = 0x0001]

Corrupted : C:\Programmi\Symantec\Norton PartitionMagic 8.0\pqbw.exe
[Offset = 00000114 - Value = 0x0001]

Corrupted : C:\Programmi\Unlocker\UnlockerAssistant.exe
[Offset = 000000E4 - Value = 0x0001]

Corrupted : C:\WINDOWS\$NtServicePackUninstall$\sysinfo.exe
[Offset = 000000E4 - Value = 0x0001]

Attempt of repair...
Backup : sysinfo.exe.REN
[Offset = 000000E4 - New value = 0x4C01]
File repaired successfully.


Corrupted : C:\WINDOWS\$NtUninstallKB898461$\update.exe
[Offset = 000000E4 - Value = 0x0001]

Attempt of repair...
Backup : update.exe.REN
[Offset = 000000E4 - New value = 0x4C01]
File repaired successfully.



################## | Cracks > Keygens > Serials |

"C:\Documents and Settings\Stefano\Impostazioni locali\Dati applicazioni\tt7_keygen.exe"
27/07/2008 11.00 |Size 49664 |Crc32 25301ecd |Md5 743050c26f8803d4485d3eecc19c038e


################## | End of Report # FindyKill V5.024 ! |


ecco il secondo:


(19-1-2010 15:40:6)
EliBagle v13.43 (c)2010 S.G.H. / Satinfo S.L. (Actualizado el 18 de Enero del 2010)

---

Lista de Acciones (por Acción Directa):
C:\WINDOWS\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\MDELK.EXE --> Bagle Acceso Denegado.
Por favor, envienos una muestra del fichero
C:\Muestras\WINUPGRO.EXE.Muestra EliBagle v13.43
a "virus@satinfo.es". Gracias.
C:\DOCUMENTS AND SETTINGS\STEFANO\DATI APPLICAZIONI\DRIVERS\WINUPGRO.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\WFSINTWQ.SYS --> Bagle(rootkit) Acceso Denegado.
C:\DOCUMENTS AND SETTINGS\STEFANO\DATI APPLICAZIONI\M\FLEC006.EXE --> Bagle.dldr Acceso Denegado.
Reinicie para Completar la Limpieza.

(19-1-2010 15:40:17)
EliBagle v13.43 (c)2010 S.G.H. / Satinfo S.L. (Actualizado el 18 de Enero del 2010)

---

Lista de Acciones (por Exploración):
Explorando "C:\"

(19-1-2010 16:0:12)
EliBagle v13.43 (c)2010 S.G.H. / Satinfo S.L. (Actualizado el 18 de Enero del 2010)

---

Lista de Acciones (por Acción Directa):

(19-1-2010 16:0:13)
EliBagle v13.43 (c)2010 S.G.H. / Satinfo S.L. (Actualizado el 18 de Enero del 2010)

---

Lista de Acciones (por Exploración):
Explorando "C:\"

Nº Total de Directorios: 9110
Nº Total de Ficheros: 77746
Nº de Ficheros Analizados: 16696
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0


cmq l'antivirus non si avvia ancora

Disistalla questi software, in quanto danneggiati:
Combofix.
HijackThis
NOD32 (già fatto mi sembra, poi, ne installeremo un'altro, se il Nod non è a pagamento.)
Norton PartitionMagic 8.0
Unlocker

Scarica ed installa MalwareBytes:
clicca qui per il download : http://www.aiutamici.com/software?id=80346
Prima di fare la scansione AGGIORNALO. (è molto importante)
Esegui una scansione completa del sistema.
Elimina gli eventuali file infetti che trova.
Posta il log.

E di corsa anche..... (mi sembra di avertelo scritto)

Scarica Combofix (spero che la versione precedente, l'hai disistallata)

http://download.bleepingcomputer.com/sUBs/ComboFix.exe


Salvalo sul desktop.

Importante: Disabilita il tuo antivirus e chiudi TUTTI i programmi aperti,(Firewall compreso) e dopo aver scaricato COMBOFIX, chiudi la connessione.

Doppio click su combofix.exe (comparirà una videata.)
Se ti verrà chiesto se vuoi Installare LA CONSOLE DI RIPRISTINO DI EMERGENZA, clicca NO.
E' probabile che ti siano inviati messaggi dall'antivirus, tu ignorali.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendere pazientemente la fine delle operazioni.
Al termine, verrà creato un file log sul Desktop, chiamato C:\ComboFix.txt. Postalo qui.

Non mi sembra che hai disistallato il Nod.
Esegui questo tooll che elimina gli eventuali "rimasugli":
http://www.nod32.nl/download/tool/nod32removal.exe

Poi:
Apri un file di testo sul Desktop (start\esegui\digita: notepad.exe\ Ok
Ci incolli il codice che vedi qui sotto, e salvi il file di testo obbligatoriamente con il nome CFScript.txt


e trascinalo sull'icona di ComboFix.
Attendi la fine dei lavori, senza toccare tastiera, mouse o altro.
Posta il log aggiornato di combofix

Quando hai finito installa questo antivirus:
Scarica Avira:
http://www.aiutamici.com/software?ID=10908

Lo configuri esattamente come in questa guida, in formato PDF:

http://www.zeusnews.it/zz_upload/PSV/Guida%20completa%20di%20%20AVIRA%20Antivir%209.pdf
Inizia pure dal punto 3.
Le voci indicate nella prima immagine a pagina 11 della Guida, spuntale tutte (nell'immagine non lo sono).
Fai una scansione completa, e posta il log.

@amexis sarebbe meglio se aprissi un topic tutto tuo,altrimenti credo che si generera' confusione.
entri nella sezione e clicchi newtopic,dai un titolo possibilmente esplicativo,spieghi il problema e vedrai che qualcunoti aiutera'.e in bocca al lupo!

@amexis .
Segui il consiglio di Paolopa, fai una scansione con FindKill e posta il log.

Ok.
Dimmi i problemi che riscontri.

Perchè lo hai disistallato male. (infatti, ci sono ancora delle chiavi di registro sul log di Combofix.
Comunque, Avira è migliore del Nod.
Fai una scansione completa, e posta il log.
Scarica Avira:
http://www.aiutamici.com/software?ID=10908

Lo configuri esattamente come in questa guida, in formato PDF:

http://www.zeusnews.it/zz_upload/PSV/Guida%20completa%20di%20%20AVIRA%20Antivir%209.pdf

Le voci indicate nella prima immagine a pagina 11 della Guida, spuntale tutte (nell'immagine non lo sono).

Avira ha eliminato quello che contevano i file infetti nella loro "quarantina". (e altro)
Siamo al finale:
Posta un log di HJT .