Ciao a tutti.Non riscontro particolari problemi con il pc ma volevo essere sicuro.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18.12.45, on 24/01/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Prevx\prevx.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Prevx\prevx.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mobile Partner\Mobile Partner.exe
C:\Program Files\Kaspersky Lab\Kaspersky Password Manager\stpass.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtblfs.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=71&bd=Pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=71&bd=Pavilion&pf=laptop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO DI RETE')
O8 - Extra context menu item: Aggiungi ad Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O8 - Extra context menu item: Scarica con Download &Express - C:\Program Files\Download Express\Add_Url.htm
O9 - Extra button: &Tastiera Virtuale - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: C&ontrollo URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{D8A9ED8F-AED8-4345-B1B1-BBCED6E5B463}: NameServer = 213.230.155.10 217.200.200.42
O20 - AppInit_DLLs: C:\PROGRA~2\AVP9\mzvkbd3.dll,C:\PROGRA~2\AVP9\kloehk.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: CSIScanner - Prevx - C:\Program Files\Prevx\prevx.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: stllssvr - Unknown owner - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 6921 bytes

ciao

c'e' uno spyware da togliere da quello che si vede in hijackthis

Avvia Hijack e clicca su "do a system scan only"
Metti la spunta a queste voci e clicca su "fix checked"

O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe


Scarica e installa malwarebytes
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Aggiornalo: clicca sulla scheda "aggiornamenti" => "controlla aggiornamenti"
Esegui una "scansione completa" (seleziona l'opzione)
A scansione completata, posta il rapporto e per ora non rimuovere niente

come puoi vedere è pulito...

Ciao shapiro ecco il log di combofix pero il combofix non mi ha chiesto se volevo il console di ripristino o no.Spero di aver fatto bene

ComboFix 10-01-24.05 - FLORIAN 25/01/2010 14.55.00.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.39.1040.18.3069.1991 [GMT 1:00]
Eseguito da: c:\users\FLORIAN\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
AV: Prevx 3.0 *On-access scanning enabled* (Updated) {D486329C-1488-4CEB-9CC8-D662B732D901}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Kaspersky Internet Security *disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
SP: Prevx 3.0 *enabled* (Updated) {D486329C-1488-4CEB-9CC8-D662B732D902}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2448904509-1570528734-2371903564-500
c:\windows\system32\gatherWirelessInfo.vbs
c:\windows\unins000.dat
c:\windows\unins000.exe

.
((((((((((((((((((((((((( Files Creati Da 2009-12-25 al 2010-01-25 )))))))))))))))))))))))))))))))))))
.

2010-01-25 11:22 . 2010-01-25 11:22 -------- d-----w- c:\program files\Defraggler
2010-01-24 18:03 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-24 18:03 . 2010-01-24 18:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-01-24 18:03 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-24 16:41 . 2010-01-24 16:41 -------- d-----w- c:\program files\Trend Micro
2010-01-24 14:56 . 2010-01-24 14:56 -------- d-----w- c:\users\FLORIAN\AppData\Roaming\Malwarebytes
2010-01-24 14:56 . 2010-01-24 14:56 -------- d-----w- c:\programdata\Malwarebytes
2010-01-24 12:17 . 2010-01-24 12:17 -------- d-----w- c:\program files\Tracker Software
2010-01-24 12:15 . 2010-01-24 17:59 262144 ----a-w- c:\users\NTUser.dat
2010-01-24 12:15 . 2009-08-25 17:01 28672 ----a-w- c:\users\FLORIAN\AppData\Roaming\Mozilla\Firefox\Profiles\ujdfd04d.default\extensions\{D249FD00-4DF9-11D9-9FDC-0080481ADA61}\components\mpint.dll
2010-01-24 12:15 . 2010-01-24 17:59 -------- d-----w- c:\program files\Download Express
2010-01-23 20:11 . 2010-01-23 20:11 -------- d-----w- c:\windows\Sun
2010-01-22 21:15 . 2010-01-22 21:15 -------- d-----w- c:\program files\Windows Portable Devices
2010-01-22 21:13 . 2009-10-01 01:02 30208 ----a-w- c:\windows\system32\WPDShextAutoplay.exe
2010-01-22 21:13 . 2009-10-01 01:02 31232 ----a-w- c:\windows\system32\BthMtpContextHandler.dll
2010-01-22 21:13 . 2009-10-01 01:01 81920 ----a-w- c:\windows\system32\wpdbusenum.dll
2010-01-22 21:13 . 2009-10-01 01:01 60928 ----a-w- c:\windows\system32\PortableDeviceConnectApi.dll
2010-01-22 21:13 . 2009-10-01 01:02 2537472 ----a-w- c:\windows\system32\wpdshext.dll
2010-01-22 21:13 . 2009-10-01 01:02 334848 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2010-01-22 21:13 . 2009-10-01 01:02 87552 ----a-w- c:\windows\system32\WPDShServiceObj.dll
2010-01-22 21:13 . 2009-10-01 01:01 546816 ----a-w- c:\windows\system32\wpd_ci.dll
2010-01-22 21:13 . 2009-10-01 01:01 160256 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2010-01-22 21:13 . 2009-10-01 01:01 196608 ----a-w- c:\windows\system32\PortableDeviceWMDRM.dll
2010-01-22 21:13 . 2009-10-01 01:01 100864 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2010-01-22 21:13 . 2009-10-01 01:01 350208 ----a-w- c:\windows\system32\WPDSp.dll
2010-01-22 21:12 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll
2010-01-22 21:12 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2010-01-22 21:12 . 2009-10-08 21:08 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll
2010-01-22 20:20 . 2010-01-22 20:20 -------- d-----w- c:\windows\system32\ca-ES
2010-01-22 20:20 . 2010-01-22 20:20 -------- d-----w- c:\windows\system32\eu-ES
2010-01-22 20:20 . 2010-01-22 20:20 -------- d-----w- c:\windows\system32\vi-VN
2010-01-22 20:00 . 2010-01-22 20:00 -------- d-----w- c:\windows\system32\EventProviders
2010-01-22 19:57 . 2009-02-18 18:38 619864 ----a-w- c:\windows\system32\icardagt.exe
2010-01-22 19:56 . 2009-04-11 06:32 53736 ----a-w- c:\windows\system32\drivers\disk.sys
2010-01-22 19:55 . 2009-04-11 06:28 705536 ----a-w- c:\windows\system32\SmiEngine.dll
2010-01-22 19:55 . 2009-04-11 06:28 218624 ----a-w- c:\windows\system32\wdscore.dll
2010-01-22 19:55 . 2009-04-11 06:27 130560 ----a-w- c:\windows\system32\PkgMgr.exe
2010-01-22 19:54 . 2009-04-11 06:28 247808 ----a-w- c:\windows\system32\drvstore.dll
2010-01-21 22:05 . 2009-03-08 11:32 72704 ----a-w- c:\windows\system32\admparse.dll
2010-01-21 22:04 . 2008-05-27 04:59 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin
2010-01-21 21:30 . 2010-01-21 21:30 -------- d-----w- C:\PerfLogs
2010-01-21 20:54 . 2008-01-19 07:29 705536 ----a-w- c:\windows\system32\imagesp1.dll
2010-01-21 20:54 . 2008-01-19 07:36 116736 ----a-w- c:\windows\system32\sstpsvc.dll
2010-01-21 20:54 . 2008-01-19 07:36 175104 ----a-w- c:\windows\system32\winrscmd.dll
2010-01-21 20:54 . 2008-01-19 07:37 1675264 ----a-w- c:\windows\system32\xpssvcs.dll
2010-01-21 20:54 . 2008-01-19 07:33 41472 ----a-w- c:\windows\system32\lpremove.exe
2010-01-21 20:54 . 2008-01-19 07:33 58880 ----a-w- c:\windows\bfsvc.exe
2010-01-21 20:54 . 2008-01-19 05:31 8322048 ----a-w- c:\windows\system32\spwizimg.dll
2010-01-21 20:54 . 2008-01-19 07:33 193024 ----a-w- c:\windows\system32\recdisc.exe
2010-01-21 20:54 . 2008-01-19 07:33 145408 ----a-w- c:\windows\system32\CompMgmtLauncher.exe
2010-01-21 20:54 . 2008-01-19 07:35 1386496 ----a-w- c:\windows\system32\msvbvm60.dll
2010-01-21 20:54 . 2008-01-19 07:35 391680 ----a-w- c:\windows\system32\MSMPEG2ADEC.DLL
2010-01-21 20:54 . 2008-01-19 07:37 38912 ----a-w- c:\windows\system32\xolehlp.dll
2010-01-21 20:52 . 2008-01-19 07:42 52792 ----a-w- c:\windows\system32\drivers\volmgr.sys
2010-01-21 20:51 . 2008-01-19 07:37 55296 ----a-w- c:\windows\system32\WUDFSvc.dll
2010-01-21 20:50 . 2008-01-19 07:34 102400 ----a-w- c:\windows\system32\wbem\mofinstall.dll
2010-01-21 20:50 . 2008-01-19 07:36 357888 ----a-w- c:\windows\system32\wbemcomn.dll
2010-01-21 20:49 . 2008-01-19 07:36 129536 ----a-w- c:\windows\system32\sqmapi.dll
2010-01-21 20:49 . 2008-01-19 07:36 139264 ----a-w- c:\windows\system32\SmiInstaller.dll
2010-01-21 20:47 . 2008-01-19 07:35 35328 ----a-w- c:\windows\system32\mspatcha.dll
2010-01-21 20:47 . 2008-01-19 07:34 305152 ----a-w- c:\windows\system32\msdelta.dll
2010-01-21 20:47 . 2008-01-19 07:34 258560 ----a-w- c:\windows\system32\dpx.dll
2010-01-21 12:50 . 2009-08-24 11:36 377344 ----a-w- c:\windows\system32\winhttp.dll
2010-01-20 22:36 . 2009-06-15 14:52 499712 ----a-w- c:\windows\system32\kerberos.dll
2010-01-20 22:36 . 2009-06-15 14:53 270848 ----a-w- c:\windows\system32\schannel.dll
2010-01-20 20:45 . 2010-01-22 20:30 -------- d-----w- c:\programdata\NVIDIA
2010-01-20 20:38 . 2010-01-20 20:38 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2010-01-20 20:38 . 2010-01-20 20:38 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2010-01-20 20:38 . 2010-01-20 20:38 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2010-01-20 20:38 . 2010-01-20 20:38 19968 ----a-w- c:\windows\system32\ARP.EXE
2010-01-20 20:38 . 2010-01-20 20:38 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2010-01-20 20:38 . 2010-01-20 20:38 17920 ----a-w- c:\windows\system32\netevent.dll
2010-01-20 20:38 . 2010-01-20 20:38 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2010-01-20 20:38 . 2010-01-20 20:38 105984 ----a-w- c:\windows\system32\netiohlp.dll
2010-01-20 20:38 . 2010-01-20 20:38 10240 ----a-w- c:\windows\system32\finger.exe
2010-01-20 20:38 . 2010-01-20 20:38 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-01-20 20:38 . 2010-01-20 20:38 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2010-01-20 20:37 . 2010-01-20 20:37 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2010-01-20 20:37 . 2010-01-20 20:37 68096 ----a-w- c:\windows\system32\wlanhlp.dll
2010-01-20 20:37 . 2010-01-20 20:37 65024 ----a-w- c:\windows\system32\wlanapi.dll
2010-01-20 20:37 . 2010-01-20 20:37 513536 ----a-w- c:\windows\system32\wlansvc.dll
2010-01-20 20:37 . 2010-01-20 20:37 302592 ----a-w- c:\windows\system32\wlansec.dll
2010-01-20 20:37 . 2010-01-20 20:37 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2010-01-20 20:34 . 2010-01-20 20:34 71680 ----a-w- c:\windows\system32\atl.dll
2010-01-20 20:33 . 2010-01-20 20:33 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-01-20 20:33 . 2010-01-20 20:33 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-01-20 20:32 . 2010-01-20 20:32 160256 ----a-w- c:\windows\system32\wkssvc.dll
2010-01-20 20:31 . 2010-01-20 20:31 91136 ----a-w- c:\windows\system32\avifil32.dll
2010-01-20 20:31 . 2010-01-20 20:31 82944 ----a-w- c:\windows\system32\mciavi32.dll
2010-01-20 20:31 . 2010-01-20 20:31 65024 ----a-w- c:\windows\system32\avicap32.dll
2010-01-20 20:31 . 2010-01-20 20:31 31232 ----a-w- c:\windows\system32\msvidc32.dll
2010-01-20 20:31 . 2010-01-20 20:31 12800 ----a-w- c:\windows\system32\msrle32.dll
2010-01-20 20:31 . 2010-01-20 20:31 123904 ----a-w- c:\windows\system32\msvfw32.dll
2010-01-20 20:29 . 2010-01-20 20:29 6656 ----a-w- c:\windows\system32\kbd106n.dll
2010-01-20 20:11 . 2010-01-20 20:11 41984 ----a-w- c:\windows\system32\netfxperf.dll
2010-01-20 19:55 . 2010-01-20 19:55 355328 ----a-w- c:\windows\system32\WSDApi.dll
2010-01-20 19:53 . 2010-01-20 19:53 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-01-20 19:53 . 2010-01-20 19:53 310784 ----a-w- c:\windows\system32\unregmp2.exe
2010-01-20 19:53 . 2010-01-20 19:53 7680 ----a-w- c:\windows\system32\spwmp.dll
2010-01-20 19:53 . 2010-01-20 19:53 4096 ----a-w- c:\windows\system32\dxmasf.dll
2010-01-20 10:48 . 2010-01-20 10:48 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-01-20 10:48 . 2010-01-20 10:48 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-01-20 10:48 . 2010-01-20 10:48 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-01-20 10:48 . 2010-01-20 10:48 23552 ----a-w- c:\windows\system32\lpk.dll
2010-01-20 10:48 . 2010-01-20 10:48 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-01-20 10:48 . 2010-01-20 10:48 10240 ----a-w- c:\windows\system32\dciman32.dll
2010-01-20 10:47 . 2010-01-20 10:47 61440 ----a-w- c:\windows\system32\winipsec.dll
2010-01-20 10:47 . 2010-01-20 10:47 272896 ----a-w- c:\windows\system32\polstore.dll
2010-01-20 10:41 . 2010-01-20 10:41 1248768 ----a-w- c:\windows\system32\msxml3.dll
2010-01-20 10:41 . 2010-01-20 10:41 1401856 ----a-w- c:\windows\system32\msxml6.dll
2010-01-20 10:41 . 2010-01-20 10:41 2048 ----a-w- c:\windows\system32\msxml3r.dll
2010-01-20 10:41 . 2010-01-20 10:41 2048 ----a-w- c:\windows\system32\msxml6r.dll
2010-01-20 10:40 . 2010-01-20 10:40 9728 ----a-w- c:\windows\system32\lsass.exe
2010-01-20 10:40 . 2010-01-20 10:40 72704 ----a-w- c:\windows\system32\secur32.dll
2010-01-20 10:40 . 2010-01-20 10:40 439864 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2010-01-20 10:40 . 2010-01-20 10:40 218624 ----a-w- c:\windows\system32\msv1_0.dll
2010-01-20 10:40 . 2010-01-20 10:40 175104 ----a-w- c:\windows\system32\wdigest.dll
2010-01-20 10:40 . 2010-01-20 10:40 1259008 ----a-w- c:\windows\system32\lsasrv.dll
2010-01-20 10:38 . 2010-01-20 10:38 98816 ----a-w- c:\windows\system32\mfps.dll
2010-01-20 10:38 . 2010-01-20 10:38 53248 ----a-w- c:\windows\system32\rrinstaller.exe
2010-01-20 10:38 . 2010-01-20 10:38 2868224 ----a-w- c:\windows\system32\mf.dll
2010-01-20 10:38 . 2010-01-20 10:38 24576 ----a-w- c:\windows\system32\mfpmp.exe
2010-01-20 10:38 . 2010-01-20 10:38 2048 ----a-w- c:\windows\system32\mferror.dll
2010-01-20 10:37 . 2010-01-20 10:37 2048 ----a-w- c:\windows\system32\tzres.dll
2010-01-20 10:25 . 2010-01-20 10:25 53248 ----a-w- c:\windows\system32\tsgqec.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-25 13:38 . 2010-01-20 20:36 41946 ----a-w- c:\programdata\nvModes.dat
2010-01-25 09:59 . 2006-11-06 01:52 662846 ----a-w- c:\windows\system32\perfh010.dat
2010-01-25 09:59 . 2006-11-06 01:52 120326 ----a-w- c:\windows\system32\perfc010.dat
2010-01-24 23:37 . 2006-12-24 23:09 12 ----a-w- c:\windows\bthservsdp.dat
2010-01-22 21:15 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-01-22 21:15 . 2010-01-22 21:15 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-01-22 20:20 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2010-01-22 20:20 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-01-22 20:18 . 2010-01-22 20:18 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2010-01-21 21:13 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2010-01-21 21:13 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2010-01-21 15:34 . 2006-12-25 00:13 -------- d-----w- c:\program files\Java
2010-01-20 19:56 . 2006-12-24 23:15 -------- d-----w- c:\program files\CONEXANT
2010-01-20 19:05 . 2010-01-19 16:53 13119 ----a-w- c:\users\FLORIAN\AppData\Roaming\nvModes.dat
2010-01-20 09:58 . 2006-12-24 23:52 -------- d-----w- c:\program files\Microsoft Works
2010-01-20 09:56 . 2010-01-20 09:56 2560 ----a-w- c:\windows\AppPatch\AcRes.dll
2010-01-20 09:56 . 2010-01-20 09:56 2159616 ----a-w- c:\windows\AppPatch\AcGenral.dll
2010-01-20 09:56 . 2010-01-20 09:56 542720 ----a-w- c:\windows\AppPatch\AcLayers.dll
2010-01-20 09:56 . 2010-01-20 09:56 458752 ----a-w- c:\windows\AppPatch\AcSpecfc.dll
2010-01-20 09:56 . 2010-01-20 09:56 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2010-01-19 21:52 . 2010-01-19 21:52 78 ----a-w- c:\users\FLORIAN\AppData\Roaming\wklnhst.dat
2010-01-19 18:26 . 2006-12-24 23:29 -------- d-----w- c:\program files\Common Files\InstallShield
2010-01-19 18:26 . 2006-12-24 23:54 -------- d-----w- c:\programdata\CyberLink
2010-01-19 18:26 . 2006-12-24 23:53 -------- d-----w- c:\program files\HP
2010-01-19 18:26 . 2006-12-24 23:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-19 17:26 . 2006-12-24 23:26 -------- d-----w- c:\program files\Hewlett-Packard
2010-01-19 16:42 . 2010-01-19 16:42 0 --sha-r- c:\windows\system32\drivers\103C_HP_cNB_Pavilion dv6000 (RY647EA#ABZ)_Y5335KV_0U_QCNF702071Y_E436463-063_4A_I30BC_SQuanta_V66.35_F.12_T061219_WV3-0_L410_M3070_J160_7Intel_86E8_91.73_#100119_N8086109A;80864222_(RY647EA#ABZ)_XMOBILE_CN10_Z.MRK
2010-01-19 16:36 . 2010-01-19 16:36 -------- d-----w- c:\users\FLORIAN\AppData\Roaming\Hewlett-Packard
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Preferiti
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Modelli
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Menu Avvio
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Documenti
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Desktop
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\programdata\Dati applicazioni
2010-01-19 16:31 . 2010-01-19 16:31 -------- d-sh--we c:\program files\File comuni
2010-01-02 06:38 . 2010-01-21 22:06 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-21 22:06 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-01-21 22:06 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-01-21 22:06 133632 ----a-w- c:\windows\system32\ieUnatt.exe
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-28 1045800]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-11-06 159744]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" [2009-10-20 340456]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-04 13556256]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-04 92704]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\AVP9\mzvkbd3.dll c:\progra~2\AVP9\kloehk.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):38,5e,b8,5c,a1,9b,ca,01

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3312219593-2232309884-3606941899-1000]
"EnableNotificationsRef"=dword:00000001

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [14/10/2009 21.18.34 36880]
R0 pxscan;pxscan;c:\windows\System32\drivers\pxscan.sys [19/01/2010 23.05.05 30280]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [14/09/2009 14.46.36 21520]
R2 CSIScanner;CSIScanner;c:\program files\Prevx\prevx.exe [19/01/2010 23.05.02 6259392]
R2 pxrts;pxrts;c:\windows\System32\drivers\pxrts.sys [19/01/2010 23.05.05 47664]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\System32\drivers\ewusbdev.sys [19/01/2010 19.34.21 101248]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\System32\drivers\klmouflt.sys [02/10/2009 19.39.36 19472]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [17/11/2008 15.40.22 3668480]
R3 pxkbf;pxkbf;c:\windows\System32\drivers\pxkbf.sys [19/01/2010 23.05.04 24496]
R3 R5U870FLx86;R5U870 UVC Lower Filter ;c:\windows\System32\drivers\R5U870FLx86.sys [18/12/2006 22.31.46 73472]
R3 R5U870FUx86;R5U870 UVC Upper Filter ;c:\windows\System32\drivers\R5U870FUx86.sys [18/12/2006 22.31.46 43904]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 6\DfSdkS.exe [19/01/2010 19.08.27 406016]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\System32\drivers\ewusbnet.sys [19/01/2010 19.34.21 112128]
S3 FontCache;Servizio cache tipi di carattere Windows;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21/01/2010 21.52.05 21504]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=71&bd=Pavilion&pf=laptop
FF - ProfilePath - c:\users\FLORIAN\AppData\Roaming\Mozilla\Firefox\Profiles\ujdfd04d.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.it/
FF - component: c:\program files\Kaspersky Lab\Kaspersky Password Manager\spAutofill\components\spAutofill.dll
FF - component: c:\program files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll
FF - component: c:\users\FLORIAN\AppData\Roaming\Mozilla\Firefox\Profiles\ujdfd04d.default\extensions\{D249FD00-4DF9-11D9-9FDC-0080481ADA61}\components\mpint.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npPDFXCviewNPPlugin.dll
FF - plugin: c:\program files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

AddRemove-Ashampoo Burning Studio 9 Theme Pack_is1 - c:\windows\unins000.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-25 15:01
Windows 6.0.6002 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Ora fine scansione: 2010-01-25 15:05:33
ComboFix-quarantined-files.txt 2010-01-25 14:05

Pre-Run: 126.524.923.904 byte disponibili
Post-Run: 126.471.094.272 byte disponibili

- - End Of File - - F536257E4B41F03B13D98D707F84AFBD

Ciao Shapiro dal controllo che ho fatto non risulta niente.Sono puliti.Apartengono se non sbaglio alla webcam integrato al portatile e la societa e Ricoh.