per essere più chiaro, ho disistallato norton 20 gg perchè il trial era finito e ho istallato avast

Questo log....

ComboFix 10-02-19.04 - Vincenzo Siciliano 20/02/2010 11.55.05.2.2 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1014.420 [GMT 1:00]
Eseguito da: c:\documents and settings\Vincenzo Siciliano\Desktop\Antivirus\ComboFix.exe
Opzioni usate :: c:\documents and settings\Vincenzo Siciliano\Desktop\Antivirus\CFScript.txt
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\FOUND.002
c:\found.002\FILE0000.CHK
c:\programmi\Symantec
c:\programmi\Symantec\LiveUpdate\1.Settings.Default.LiveUpdate
c:\programmi\Symantec\LiveUpdate\ALUNOTIFY.EXE
c:\programmi\Symantec\LiveUpdate\ALUNOTIFYRES.DLL
c:\programmi\Symantec\LiveUpdate\AluSchedulerSvc.exe
c:\programmi\Symantec\LiveUpdate\AluSchedulerSvcRes.dll
c:\programmi\Symantec\LiveUpdate\AUPDATE.EXE
c:\programmi\Symantec\LiveUpdate\AUPDATERES.DLL
c:\programmi\Symantec\LiveUpdate\LEGGIMI.TXT
c:\programmi\Symantec\LiveUpdate\LSETUP.EXE
c:\programmi\Symantec\LiveUpdate\LSETUPRES.DLL
c:\programmi\Symantec\LiveUpdate\LUALL.EXE
c:\programmi\Symantec\LiveUpdate\LUALLRES.DLL
c:\programmi\Symantec\LiveUpdate\LuCallbackProxy.exe
c:\programmi\Symantec\LiveUpdate\LuComServer_3_0.EXE
c:\programmi\Symantec\LiveUpdate\LuComServerPS_3_0.DLL
c:\programmi\Symantec\LiveUpdate\LuComServerRes.dll
c:\programmi\Symantec\LiveUpdate\ludirloc.dat
c:\programmi\Symantec\LiveUpdate\LUINFO.INF
c:\programmi\Symantec\LiveUpdate\LUInit.exe
c:\programmi\Symantec\LiveUpdate\LUInit.ini
c:\programmi\Symantec\LiveUpdate\LUINSDLL.DLL
c:\programmi\Symantec\LiveUpdate\LUINSDLLRES.DLL
c:\programmi\Symantec\LiveUpdate\luinventoryinst.jar
c:\programmi\Symantec\LiveUpdate\LuPreCon.DLL
c:\programmi\Symantec\LiveUpdate\LuResult.txt
c:\programmi\Symantec\LiveUpdate\LUSESAIntegration.dll
c:\programmi\Symantec\LiveUpdate\LUSESAIntegrationRes.dll
c:\programmi\Symantec\LiveUpdate\LUSETUP.EXE
c:\programmi\Symantec\LiveUpdate\LUUPDATE.EXE
c:\programmi\Symantec\LiveUpdate\MFC71.DLL
c:\programmi\Symantec\LiveUpdate\MSVCP71.DLL
c:\programmi\Symantec\LiveUpdate\MSVCR71.DLL
c:\programmi\Symantec\LiveUpdate\NetDetectController_3_0.DLL
c:\programmi\Symantec\LiveUpdate\ProductRegCom_3_0.DLL
c:\programmi\Symantec\LiveUpdate\providerInst.jar
c:\programmi\Symantec\LiveUpdate\S32LIVE1.DLL
c:\programmi\Symantec\LiveUpdate\S32LUCP1.CPL
c:\programmi\Symantec\LiveUpdate\S32LUCP1RES.DLL
c:\programmi\Symantec\LiveUpdate\S32LUIS1.DLL
c:\programmi\Symantec\LiveUpdate\S32LUWI1.DLL
c:\programmi\Symantec\LiveUpdate\SESA.Settings.LiveUpdate
c:\programmi\Symantec\LiveUpdate\Settings.Default.LiveUpdate
c:\programmi\Symantec\LiveUpdate\SymantecRootInstaller.exe
c:\programmi\Symantec\LiveUpdate\SymantecRootInstaller.log
c:\programmi\Symantec\LiveUpdate\SymantecRootInstallerRes.dll
c:\programmi\Symantec\LiveUpdate\UNRAR.DLL
c:\programmi\Symantec\LiveUpdate\winluproviderinst.jar
c:\programmi\Symantec\pcAnywhere\adsauth.dll
c:\programmi\Symantec\pcAnywhere\Anywhere.Bin
c:\programmi\Symantec\pcAnywhere\aw32capi.dll
c:\programmi\Symantec\pcAnywhere\aw32nb.dll
c:\programmi\Symantec\pcAnywhere\aw32prn.dll
c:\programmi\Symantec\pcAnywhere\aw32ser.dll
c:\programmi\Symantec\pcAnywhere\aw32spx.dll
c:\programmi\Symantec\pcAnywhere\aw32tcp.dll
c:\programmi\Symantec\pcAnywhere\awcfgmgr.dll
c:\programmi\Symantec\pcAnywhere\awchat.dll
c:\programmi\Symantec\pcAnywhere\awcm32.dll
c:\programmi\Symantec\pcAnywhere\awconn32.dll
c:\programmi\Symantec\pcAnywhere\awcp.dll
c:\programmi\Symantec\pcAnywhere\awds32.dll
c:\programmi\Symantec\pcAnywhere\awdsp32.dll
c:\programmi\Symantec\pcAnywhere\awgui32.dll
c:\programmi\Symantec\pcAnywhere\awhk32.dll
c:\programmi\Symantec\pcAnywhere\awhlogon.dll
c:\programmi\Symantec\pcAnywhere\awhost32.exe
c:\programmi\Symantec\pcAnywhere\awhost32.exe.manifest
c:\programmi\Symantec\pcAnywhere\awhpilot.dll
c:\programmi\Symantec\pcAnywhere\awhprobe.exe
c:\programmi\Symantec\pcAnywhere\awhprobedll.dll
c:\programmi\Symantec\pcAnywhere\awhseq.dll
c:\programmi\Symantec\pcAnywhere\awhutil.dll
c:\programmi\Symantec\pcAnywhere\awhxprb.dll
c:\programmi\Symantec\pcAnywhere\AwInvite.exe
c:\programmi\Symantec\pcAnywhere\awio.dll
c:\programmi\Symantec\pcAnywhere\AwioResources.dll
c:\programmi\Symantec\pcAnywhere\awlog32.dll
c:\programmi\Symantec\pcAnywhere\awofrwrk.dll
c:\programmi\Symantec\pcAnywhere\awplay32.dll
c:\programmi\Symantec\pcAnywhere\awPlay32Resources.dll
c:\programmi\Symantec\pcAnywhere\awrem32.exe
c:\programmi\Symantec\pcAnywhere\awrem32.exe.manifest
c:\programmi\Symantec\pcAnywhere\awres-all.dll
c:\programmi\Symantec\pcAnywhere\awres-host.dll
c:\programmi\Symantec\pcAnywhere\awrpilot.dll
c:\programmi\Symantec\pcAnywhere\awses32.dll
c:\programmi\Symantec\pcAnywhere\awterm32.dll
c:\programmi\Symantec\pcAnywhere\awtime32.dll
c:\programmi\Symantec\pcAnywhere\awxfer.dll
c:\programmi\Symantec\pcAnywhere\awxferui.dll
c:\programmi\Symantec\pcAnywhere\bindauth.dll
c:\programmi\Symantec\pcAnywhere\certcons.exe
c:\programmi\Symantec\pcAnywhere\CmdPromptClient.dll
c:\programmi\Symantec\pcAnywhere\CmdPromptServer.dll
c:\programmi\Symantec\pcAnywhere\CmdQEng.dll
c:\programmi\Symantec\pcAnywhere\CMS\admin.bhf
c:\programmi\Symantec\pcAnywhere\CMS\admin11.chf
c:\programmi\Symantec\pcAnywhere\CMS\admin12.chf
c:\programmi\Symantec\pcAnywhere\CMS\pca_trap.mib
c:\programmi\Symantec\pcAnywhere\crypshim.dll
c:\programmi\Symantec\pcAnywhere\crypto.dll
c:\programmi\Symantec\pcAnywhere\CryptoAddressBook.reg
c:\programmi\Symantec\pcAnywhere\CryptoFile.reg
c:\programmi\Symantec\pcAnywhere\CryptoIE.reg
c:\programmi\Symantec\pcAnywhere\DbgHelp.Dll
c:\programmi\Symantec\pcAnywhere\DefaultConfig.dll
c:\programmi\Symantec\pcAnywhere\DevPCA.dll
c:\programmi\Symantec\pcAnywhere\DevSocket.dll
c:\programmi\Symantec\pcAnywhere\DevTCP.dll
c:\programmi\Symantec\pcAnywhere\DSBrowse.exe
c:\programmi\Symantec\pcAnywhere\DSBrowserResources.dll
c:\programmi\Symantec\pcAnywhere\DSMgr.dll
c:\programmi\Symantec\pcAnywhere\EditFileClient.dll
c:\programmi\Symantec\pcAnywhere\EditFileServer.dll
c:\programmi\Symantec\pcAnywhere\EULA.rtf
c:\programmi\Symantec\pcAnywhere\EventClient.dll
c:\programmi\Symantec\pcAnywhere\EventServer.dll
c:\programmi\Symantec\pcAnywhere\ftpauth.dll
c:\programmi\Symantec\pcAnywhere\FTStatus.dll
c:\programmi\Symantec\pcAnywhere\FTStatusResources.dll
c:\programmi\Symantec\pcAnywhere\HTTPAuth.dll
c:\programmi\Symantec\pcAnywhere\HTTPSAuth.dll
c:\programmi\Symantec\pcAnywhere\ijl20.dll
c:\programmi\Symantec\pcAnywhere\IMPLODE.DLL
c:\programmi\Symantec\pcAnywhere\InstalledAppsClient.dll
c:\programmi\Symantec\pcAnywhere\InstalledAppsServer.dll
c:\programmi\Symantec\pcAnywhere\InstData.dll
c:\programmi\Symantec\pcAnywhere\IntgStat.exe
c:\programmi\Symantec\pcAnywhere\iscustom.dll
c:\programmi\Symantec\pcAnywhere\ISDNTB32.DLL
c:\programmi\Symantec\pcAnywhere\ldapauth.dll
c:\programmi\Symantec\pcAnywhere\LDAPSDK.DLL
c:\programmi\Symantec\pcAnywhere\LDAPSSL.DLL
c:\programmi\Symantec\pcAnywhere\LDAPX.DLL
c:\programmi\Symantec\pcAnywhere\libsnmp.dll
c:\programmi\Symantec\pcAnywhere\LicensePCA.txt
c:\programmi\Symantec\pcAnywhere\loadtapi.dll
c:\programmi\Symantec\pcAnywhere\LocalEng.dll
c:\programmi\Symantec\pcAnywhere\MachKey.exe
c:\programmi\Symantec\pcAnywhere\MachKeyResources.dll
c:\programmi\Symantec\pcAnywhere\ndsauth.dll
c:\programmi\Symantec\pcAnywhere\novell_ldapauth.dll
c:\programmi\Symantec\pcAnywhere\nsldapauth.dll
c:\programmi\Symantec\pcAnywhere\nsldapssl32v41.dll
c:\programmi\Symantec\pcAnywhere\nspr3.dll
c:\programmi\Symantec\pcAnywhere\nssl.dll
c:\programmi\Symantec\pcAnywhere\pca.product
c:\programmi\Symantec\pcAnywhere\pca_HAT.chm
c:\programmi\Symantec\pcAnywhere\pcAauth.dll
c:\programmi\Symantec\pcAnywhere\pcACmndg.dll
c:\programmi\Symantec\pcAnywhere\pcAdiscovery.dll
c:\programmi\Symantec\pcAnywhere\pcaime.dll
c:\programmi\Symantec\pcAnywhere\pcanylog.dll
c:\programmi\Symantec\pcAnywhere\pcAnywhere 12.0.1 Update Release Notes.txt
c:\programmi\Symantec\pcAnywhere\pcAnywhere.chm
c:\programmi\Symantec\pcAnywhere\PCASharedUI.dll
c:\programmi\Symantec\pcAnywhere\plc3.dll
c:\programmi\Symantec\pcAnywhere\plds3.dll
c:\programmi\Symantec\pcAnywhere\PowerMgr.dll
c:\programmi\Symantec\pcAnywhere\ProcessClient.dll
c:\programmi\Symantec\pcAnywhere\ProcessServer.dll
c:\programmi\Symantec\pcAnywhere\README.TXT
c:\programmi\Symantec\pcAnywhere\RegistryClient.dll
c:\programmi\Symantec\pcAnywhere\RegistryServer.dll
c:\programmi\Symantec\pcAnywhere\RemStart.exe
c:\programmi\Symantec\pcAnywhere\RMClient.dll
c:\programmi\Symantec\pcAnywhere\RMcomm.dll
c:\programmi\Symantec\pcAnywhere\RMcommServer.dll
c:\programmi\Symantec\pcAnywhere\S32PCAG.DLL
c:\programmi\Symantec\pcAnywhere\SAEng.dll
c:\programmi\Symantec\pcAnywhere\SecureID_Auth.dll
c:\programmi\Symantec\pcAnywhere\SEEBuilder.exe
c:\programmi\Symantec\pcAnywhere\ServicesClient.dll
c:\programmi\Symantec\pcAnywhere\ServicesServer.dll
c:\programmi\Symantec\pcAnywhere\SessionController.exe
c:\programmi\Symantec\pcAnywhere\SessionController.exe.manifest
c:\programmi\Symantec\pcAnywhere\SessionManager.dll
c:\programmi\Symantec\pcAnywhere\SetDefaultProvider.exe
c:\programmi\Symantec\pcAnywhere\setdefaultproviderresources.dll
c:\programmi\Symantec\pcAnywhere\SharFileMgr.dll
c:\programmi\Symantec\pcAnywhere\ShellClient.dll
c:\programmi\Symantec\pcAnywhere\SidEditor.exe
c:\programmi\Symantec\pcAnywhere\SidEditorResources.dll
c:\programmi\Symantec\pcAnywhere\slaunch.exe
c:\programmi\Symantec\pcAnywhere\snmputil.dll
c:\programmi\Symantec\pcAnywhere\stophost.exe
c:\programmi\Symantec\pcAnywhere\SWISH.WAV
c:\programmi\Symantec\pcAnywhere\SWOOSH.WAV
c:\programmi\Symantec\pcAnywhere\SymCrypt.dll
c:\programmi\Symantec\pcAnywhere\SymCrypt.edc
c:\programmi\Symantec\pcAnywhere\SymZip.dll
c:\programmi\Symantec\pcAnywhere\SystemStateClient.dll
c:\programmi\Symantec\pcAnywhere\SystemStateServer.dll
c:\programmi\Symantec\pcAnywhere\TaskAppClient.dll
c:\programmi\Symantec\pcAnywhere\TaskAppServer.dll
c:\programmi\Symantec\pcAnywhere\ThinAWCP.dll
c:\programmi\Symantec\pcAnywhere\ThinCrypshim.dll
c:\programmi\Symantec\pcAnywhere\ThinCrypto.dll
c:\programmi\Symantec\pcAnywhere\thinhost.tar.gz
c:\programmi\Symantec\pcAnywhere\thinhost_mac.tar.gz
c:\programmi\Symantec\pcAnywhere\ThinRes.dll
c:\programmi\Symantec\pcAnywhere\ThinSet.exe
c:\programmi\Symantec\pcAnywhere\THook32.dll
c:\programmi\Symantec\pcAnywhere\THost.exe
c:\programmi\Symantec\pcAnywhere\TrayIcon.dll
c:\programmi\Symantec\pcAnywhere\Util.dll
c:\programmi\Symantec\pcAnywhere\Winaw32.exe
c:\programmi\Symantec\pcAnywhere\winaw32.exe.manifest
c:\programmi\Symantec\pcAnywhere\winawsvr.exe
c:\programmi\Symantec\pcAnywhere\winawsvrResources.dll
c:\programmi\Symantec\pcAnywhere\WindowsAuth.dll
c:\programmi\Symantec\pcAnywhere\WinNTAuth.dll

.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_Utilità di pianificazione di LiveUpdate automatico


((((((((((((((((((((((((( Files Creati Da 2010-01-20 al 2010-02-20 )))))))))))))))))))))))))))))))))))
.

2010-02-19 21:59 . 2010-02-19 21:59 -------- d-----w- c:\programmi\VEXPLite
2010-02-19 21:49 . 2010-02-19 21:49 -------- d--h--w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}
2010-02-19 21:49 . 2010-02-19 21:49 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Impostazioni locali\Dati applicazioni\PackageAware
2010-02-19 00:20 . 2010-02-19 00:20 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Media Player Classic
2010-02-19 00:18 . 2009-12-12 14:15 178176 ----a-w- c:\windows\system32\unrar.dll
2010-02-19 00:18 . 2010-02-19 00:18 -------- d-----w- c:\programmi\K-Lite Codec Pack
2010-02-18 21:53 . 2010-02-18 21:53 -------- d-----w- c:\programmi\Locate
2010-02-18 21:51 . 2010-02-18 21:51 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Locate32
2010-02-17 19:11 . 2010-02-17 19:11 -------- d-----w- c:\programmi\uTorrent
2010-02-17 19:10 . 2010-02-17 19:10 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\uTorrent
2010-02-16 19:55 . 2010-02-16 19:55 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Malwarebytes
2010-02-16 19:55 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-16 19:55 . 2010-02-16 19:55 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2010-02-16 19:55 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-16 19:55 . 2010-02-16 19:55 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2010-02-15 20:54 . 2010-02-15 20:54 -------- d-----w- c:\programmi\TrendMicro
2010-02-07 17:18 . 2010-02-07 17:18 -------- d-----w- c:\programmi\PC Cleaner
2010-02-06 16:34 . 2010-02-06 16:34 -------- d-----w- c:\programmi\File comuni\4Team
2010-02-06 16:34 . 2010-02-06 16:34 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\4Team
2010-02-06 16:34 . 2010-02-06 16:34 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\4Team
2010-02-06 15:37 . 2010-02-06 15:37 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Uniblue
2010-02-05 23:57 . 2010-02-05 23:57 -------- d-----w- c:\documents and settings\NetworkService\Impostazioni locali\Dati applicazioni\gMozilla
2010-02-05 23:57 . 2010-02-05 23:57 -------- d-----w- c:\documents and settings\NetworkService\Dati applicazioni\gMozilla
2010-02-05 23:51 . 2010-02-05 23:51 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\FLVPlayer4Free
2010-02-05 23:51 . 2010-02-05 23:51 -------- d-----w- c:\programmi\FLVPlayer4Free
2010-01-31 23:09 . 2010-01-31 23:09 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\FLEXnet
2010-01-27 19:50 . 2009-06-29 17:00 102656 ----a-r- c:\windows\system32\drivers\ewusbfake.sys
2010-01-27 19:45 . 2009-06-29 17:00 112640 ----a-r- c:\windows\system32\drivers\ewusbnet.sys
2010-01-27 19:45 . 2009-04-09 12:38 102400 ----a-r- c:\windows\system32\drivers\ewusbmdm.sys
2010-01-27 19:44 . 2010-01-27 19:44 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Vodafone
2010-01-27 19:44 . 2010-01-27 19:44 -------- d-----w- c:\documents and settings\LocalService\Dati applicazioni\Vodafone
2010-01-27 19:44 . 2010-01-27 19:44 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Vodafone
2010-01-27 19:43 . 2010-01-27 19:43 -------- d-----w- c:\programmi\Vodafone
2010-01-27 19:43 . 2010-01-27 19:43 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\FLEXnet
2010-01-27 19:43 . 2010-01-27 19:43 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Impostazioni locali\Dati applicazioni\{6118B561-4CCF-4F70-B358-73ACA4B8FB39}
2010-01-27 19:28 . 2010-01-27 19:28 -------- d-----w- c:\programmi\vodafonesam
2010-01-27 19:28 . 2010-01-27 19:28 -------- d-----w- c:\programmi\Common Files
2010-01-27 19:24 . 2010-01-27 19:24 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Motive

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-20 11:00 . 2006-08-30 23:34 12 ----a-w- c:\windows\bthservsdp.dat
2010-02-18 15:33 . 2010-02-19 21:59 2855006 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\vnlt6593.exe
2010-02-15 20:55 . 2010-02-15 20:54 388096 ----a-r- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe
2010-02-11 18:53 . 2010-01-07 18:42 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-02-11 18:53 . 2010-01-07 17:41 153184 ----a-w- c:\windows\system32\aswBoot.exe
2010-02-11 18:42 . 2010-01-07 17:42 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-02-11 18:42 . 2010-01-07 17:42 162512 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-02-11 18:39 . 2010-01-07 17:42 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-02-11 18:38 . 2010-01-07 17:42 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-02-11 18:38 . 2010-01-07 17:42 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-02-11 18:38 . 2010-01-07 17:42 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-02-11 18:38 . 2010-01-07 17:42 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-02-10 17:44 . 2010-02-19 21:49 352256 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\OFFLINE\BB22A901\76AC2E42\Scan.dll
2010-02-07 17:16 . 2009-10-19 15:44 0 ---h--w- c:\documents and settings\All Users\Dati applicazioni\PKP_DLbx.DAT
2010-02-07 16:35 . 2009-10-19 15:39 57344 ----a-r- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
2010-02-06 15:45 . 2006-08-30 23:13 85070 ----a-w- c:\windows\system32\perfc010.dat
2010-02-06 15:45 . 2006-08-30 23:13 490898 ----a-w- c:\windows\system32\perfh010.dat
2010-02-06 13:25 . 2009-10-19 15:37 20 ---h--w- c:\documents and settings\All Users\Dati applicazioni\PKP_DLdw.DAT
2010-02-05 20:09 . 2006-08-30 04:28 1024 ---h--r- c:\windows\system32\NTIMPEG2.dll
2010-01-11 21:34 . 2010-01-11 21:34 -------- d-----w- c:\programmi\File comuni\Skype
2010-01-07 19:42 . 2010-01-07 19:42 33558 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Google\Toolbar for Firefox\Firefox_Toolbar_Uninstaller.exe
2010-01-07 17:41 . 2010-01-07 17:41 -------- d-----w- c:\programmi\Alwil Software
2010-01-07 17:41 . 2010-01-07 17:41 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Alwil Software
2010-01-07 17:38 . 2010-01-07 17:38 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Google Updater
2010-01-07 17:25 . 2010-01-07 17:25 -------- d-----w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\gMozilla
2010-01-07 15:44 . 2010-02-19 21:49 274432 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\OFFLINE\D89A54DE\76AC2E42\MONLITE.exe
2010-01-05 09:53 . 2006-01-09 18:59 832512 ------w- c:\windows\system32\wininet.dll
2010-01-05 09:53 . 2004-09-07 19:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-01-05 09:53 . 2004-09-07 19:00 17408 ----a-w- c:\windows\system32\corpol.dll
2010-01-01 02:53 . 2010-01-01 02:53 16614 --sh--w- c:\windows\system32\wbem\xiao.vbs
2009-12-31 16:50 . 2004-09-07 19:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-29 21:09 . 2009-12-29 21:09 -------- d--h--w- c:\documents and settings\All Users\Dati applicazioni\{BC13C66E-D01E-4443-A1D1-35EEDF3A964A}
2009-12-29 21:08 . 2009-12-29 21:08 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Native Instruments
2009-12-29 21:08 . 2009-12-29 21:08 -------- d--h--w- c:\documents and settings\All Users\Dati applicazioni\{D7CFB71A-972A-44FF-AE44-8780EB53ABB2}
2009-12-29 21:08 . 2009-12-29 21:08 -------- d-----w- c:\programmi\Native Instruments
2009-12-29 21:08 . 2009-12-29 21:08 -------- d-----w- c:\programmi\File comuni\Native Instruments
2009-12-28 22:58 . 2009-12-28 22:07 21856 ----a-w- c:\windows\system32\drivers\BCD3000WDM.SYS
2009-12-28 22:53 . 2009-12-28 22:07 548864 ----a-w- c:\windows\system32\bcd3kcpan.exe
2009-12-28 22:53 . 2009-12-28 22:07 42784 ----a-w- c:\windows\system32\drivers\BCD3000.SYS
2009-12-28 22:53 . 2009-12-28 22:07 106496 ----a-w- c:\windows\system32\bcd3kasio.dll
2009-12-20 11:28 . 2009-10-19 15:34 20 ---h--w- c:\documents and settings\All Users\Dati applicazioni\PKP_DLdu.DAT
2009-12-18 10:18 . 2010-02-19 21:49 122880 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\OFFLINE\361580F9\76AC2E42\viritupg.dll
2009-12-17 07:40 . 2004-09-07 19:00 346112 ----a-w- c:\windows\system32\mspaint.exe
2009-12-16 13:42 . 2010-01-08 22:12 872960 ----a-w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
2009-12-16 13:42 . 2010-01-08 22:12 43008 ----a-w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2009-12-16 13:42 . 2010-01-08 22:12 340480 ----a-w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2009-12-16 13:41 . 2010-01-08 22:12 346624 ----a-w- c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2009-12-14 22:27 . 2009-08-26 07:43 180288 ----a-w- c:\documents and settings\LocalService\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat
2009-12-14 07:08 . 2004-09-07 19:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-12-09 10:07 . 2005-09-29 19:27 2148864 ------w- c:\windows\system32\ntoskrnl.exe
2009-12-09 10:07 . 2005-09-29 19:28 2027520 ------w- c:\windows\system32\ntkrnlpa.exe
2009-12-04 18:22 . 2004-09-07 19:00 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-11-27 17:12 . 2005-06-29 02:55 1296896 ----a-w- c:\windows\system32\quartz.dll
2009-11-27 17:12 . 2004-09-07 19:00 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:07 . 2004-09-07 19:00 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:07 . 2004-09-07 19:00 85504 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:07 . 2004-09-07 19:00 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-27 16:07 . 2004-09-07 19:00 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:07 . 2004-09-07 19:00 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-27 14:10 . 2010-02-19 21:49 69632 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\OFFLINE\__Nas01_sviluppo_varie\Setup\VIRITLite\Files\viritsvc.exe
2009-11-27 14:06 . 2010-02-19 21:49 815104 ----a-w- c:\documents and settings\All Users\Dati applicazioni\{33284F1B-AA9B-4290-B5B9-2F38EBF6EA01}\OFFLINE\5BF53870\76AC2E42\viritexp.exe
.

------- Sigcheck -------

[7] 2008-04-14 . F53CDDEF33A4C41336A782BE3D170158 . 15360 . . [5.1.2600.5512] . . c:\windows\ERDNT\cache\ctfmon.exe
[7] 2008-04-14 . F53CDDEF33A4C41336A782BE3D170158 . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2004-09-07 . 33F14C55448FFA3E9DAE4854CC632D33 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\ctfmon.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="c:\programmi\Messenger\msmsgs.exe" [2008-04-14 1695232]
"PC Suite Tray"="c:\programmi\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-10-02 1124352]
"Nokia.PCSync"="c:\programmi\Nokia\Nokia PC Suite 7\PCSync2.exe" [2008-06-17 1249280]
"Google Update"="c:\documents and settings\Vincenzo Siciliano\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" [2009-05-18 133104]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-01-07 39408]
"Skype"="c:\programmi\Skype\\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="Alaunch" [X]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-17 64512]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-09-07 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-09-07 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-09-07 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-09-07 455168]
"Acer ePower Management"="c:\acer\Empowering Technology\ePower\Acer ePower Management.exe" [2006-05-22 3080704]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-10 16342528]
"Symantec PIF AlertEng"="c:\programmi\File comuni\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2007-12-11 286720]
"BCD3000"="c:\windows\system32\bcd3kcpan.exe" [2009-12-28 548864]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-02-11 2756488]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"MobileConnect"="c:\programmi\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" [2009-07-03 2328576]
"VIRIT LITE MONITOR"="c:\programmi\VEXPLite\MONLITE.EXE" [2010-02-19 274432]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-09-07 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PCANotify]
2006-02-14 11:00 8704 ----a-w- c:\windows\system32\PCANotify.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\SimpleCenter\\Home Media Server.exe"=
"c:\\Programmi\\File comuni\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Programmi\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Programmi\\eMule0.48\\emule.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Documents and Settings\\Vincenzo Siciliano\\Local Settings\\Temp\\VVisit.exe"=
"c:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\WINDOWS\\System32\\FXSCLNT.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=

R0 VIRAGTLT;VIRAGTLT;c:\windows\system32\drivers\VIRAGTLT.sys [11/11/2009 8.53.20 45312]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [07/01/2010 18.42.11 162512]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [07/01/2010 18.42.11 19024]
R2 Network WanMiniport First Position;Network WanMiniport First Position;c:\programmi\Telecom Italia\WanMiniport1st\srvany.exe [12/11/2008 19.33.04 8192]
R2 viritsvclite;VirIT eXplorer Lite;c:\programmi\VEXPLite\VIRITSVC.EXE [27/11/2009 15.10.32 69632]
R2 VMCService;Vodafone Mobile Connect Service;c:\programmi\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [03/07/2009 11.40.30 9216]
R3 lv321av;Logitech USB PC Camera (VC0321);c:\windows\system32\drivers\lv321av.sys [19/06/2006 12.20.24 1097728]
S2 gupdate;Servizio di Google Update (gupdate);c:\programmi\Google\Update\GoogleUpdate.exe [07/01/2010 20.45.27 135664]
S3 BCD3000;Behringer BCD3000 V1.2.0.0;c:\windows\system32\drivers\BCD3000.SYS [28/12/2009 23.07.26 42784]
S3 BCD3000WDM;Behringer BCD3000WDM V1.2.0.0;c:\windows\system32\drivers\BCD3000WDM.SYS [28/12/2009 23.07.26 21856]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [27/01/2010 20.45.10 112640]
S3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\drivers\ewusbfake.sys [27/01/2010 20.50.11 102656]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [15/02/2009 23.31.33 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [15/02/2009 23.31.33 8320]
S3 ONDAusbmdm6k;ONDA Proprietary USB Driver;c:\windows\system32\DRIVERS\ONDAusbmdm6k.sys --> c:\windows\system32\DRIVERS\ONDAusbmdm6k.sys [?]
S3 ONDAusbnet;ONDA USB-NDIS miniport;c:\windows\system32\DRIVERS\ONDAusbnet.sys --> c:\windows\system32\DRIVERS\ONDAusbnet.sys [?]
S3 ONDAusbser6k;ONDA Diagnostic Port;c:\windows\system32\DRIVERS\ONDAusbser6k.sys --> c:\windows\system32\DRIVERS\ONDAusbser6k.sys [?]
S3 ThSerial;ThSerial;c:\windows\system32\drivers\thserial.sys [12/04/2007 21.47.54 59776]
S3 ThSerMux;ThSerMux;c:\windows\system32\drivers\thsermux.sys [12/04/2007 21.47.54 33408]
S3 thserprt;thserprt;c:\windows\system32\drivers\thserprt.sys [12/04/2007 21.47.54 17664]
.
Contenuto della cartella 'Scheduled Tasks'

2010-02-20 c:\windows\Tasks\Google Software Updater.job
- c:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-01-07 23:17]

2010-02-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-01-07 19:44]

2010-02-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-01-07 19:44]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.libero.it/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mStart Page = hxxp://it.intl.acer.yahoo.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyServer = proxy:8080
uSearchURL,(Default) = hxxp://it.rd.yahoo.com/customize/ycomp/defaults/su/*http://it.yahoo.com
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
IE: Invia a periferica &Bluetooth... - c:\programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
FF - ProfilePath - c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.libero.it/
FF - component: c:\documents and settings\Vincenzo Siciliano\Dati applicazioni\Mozilla\Firefox\Profiles\9xhr90co.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: general.useragent.extra.zencast - Creative ZENcast v2.00.13);user_pref(general.useragent.extra.zencast, .
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKLM-Run-AzMixerSel - c:\programmi\Realtek\InstallShield\AzMixerSel.exe
AddRemove-LiveUpdate - c:\programmi\Symantec\LiveUpdate\LSETUP.EXE



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-20 12:05
Windows 5.1.2600 Service Pack 3 FAT NTAPI

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(6968)
c:\windows\system32\WININET.dll
c:\programmi\File comuni\Logitech\LVMVFM\LVPrcInj.dll
c:\progra~1\WINDOW~3\wmpband.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\programmi\Nokia\Nokia PC Suite 7\phonebrowser.dll
c:\programmi\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\programmi\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ita.nlr
c:\programmi\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\programmi\Intel\Wireless\Bin\EvtEng.exe
c:\programmi\Intel\Wireless\Bin\S24EvMon.exe
c:\programmi\Alwil Software\Avast5\AvastSvc.exe
c:\programmi\file comuni\logitech\lvmvfm\LVPrcSrv.exe
c:\programmi\Google\Update\1.2.183.13\GoogleCrashHandler.exe
c:\windows\system32\rundll32.exe
c:\windows\eHome\ehmsas.exe
c:\acer\Empowering Technology\eRecovery\Monitor.exe
c:\acer\Empowering Technology\admServ.exe
c:\windows\RTHDCPL.EXE
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\programmi\File comuni\LightScribe\LSSrvc.exe
c:\programmi\Common Files\Motive\McciCMService.exe
c:\programmi\Telecom Italia\WanMiniport1st\WanMiniport1st_srv.exe
c:\programmi\Intel\Wireless\Bin\RegSrvc.exe
c:\windows\ehome\mcrdsvc.exe
c:\windows\system32\fxssvc.exe
c:\docume~1\VINCEN~1\IMPOST~1\Temp\RtkBtMnt.exe
c:\programmi\PC Connectivity Solution\ServiceLayer.exe
c:\windows\system32\dllhost.exe
c:\programmi\File comuni\Nokia\MPAPI\MPAPI3s.exe
c:\programmi\PC Connectivity Solution\Transports\NclIrSrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclMSBTSrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\programmi\PC Connectivity Solution\Transports\NclBCBTSrv.exe
c:\programmi\Skype\Phone\Skype.exe
c:\programmi\Skype\Plugin Manager\skypePM.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Ora fine scansione: 2010-02-20 12:07:44 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2010-02-20 11:07
ComboFix2.txt 2010-02-18 18:41

Pre-Run: 5.229.281.280 byte disponibili
Post-Run: 5.164.597.248 byte disponibili

- - End Of File - - F1237BA7A5F44C5F144B04B98DA1E990

Si con ninja avevo fatto la scansione ed avevo trovato xiao.vbs e l'ho cancellato, l'ho trovato anche altre mie chiavette e sd card. Faccio la scansione con Find e ti faccio sapere

Questo Find


Find AWF report by noahdfear ©2006
Version 1.40



bak folders found
~~~~~~~~~~~

Il volume nell'unità C è ACER
Numero di serie del volume: 0954-16DC

Directory di C:\WINDOWS\SYSTEM32\BAK

0 File 0 byte
2 Directory 5.200.642.048 byte disponibili


Duplicate files of bak directory contents
~~~~~~~~~~~~~~~~~~~~~~~



end of report

ultimamente hai fatto uno scandisk?

si eliminale

visualizza i file nascosti(come hai fatto prina)

elimina questa cartella e il file

li ho segnati in rosso

C:\WINDOWS\SYSTEM32\BAK

C:\Programmi\File comuni\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe


al posto di avast installerei avira, sicuramente superiore

se vuoi ti lascio il link diretto del setup

PIFScv.exe lo eliminerai dopo da provvisoria

vorrei che provassi di nuovo questo programmino

disinstallalo e reinstallalo

'esegui locate32 e, nella finestra che si apre, clicca su:
options => settings => auto update => add
in "schedule updates" inserisci At Startup => ok <<<''

vai nella scheda ''size and date''

digita negli spazi bianchi :

"minimum filesize " digita 14348 bytes
"maximum filesize " digita 14348 bytes

cerchero' di capire a cosa e' riferito quell'errore, semmai nel pomeriggio

per ora ti lascio queste pulizie da fare

scarica ccleaner

durante l’installazione deseleziona l’opzione per la barra di Yahoo, lo apri, vai in Opzioni>Avanzate, togli la spunta a “Cancella file temp diwindows solo se più vecchi di 48 ore”, poi avvialo, seleziona "Analizza" ed alla fine dell'analisi premi "Avvia pulizia''


clicca su Registro, nella pagina successiva clicca Trova problemi, poi al termine dello scan clicca su Ripara selezionati , risposndi di sì alla richiesta di salvare il backup (salvalo in una cartella a piacimento) poi ripara tutti gli elementi trovati.

scarica http://www.atribune.org/ccount/click.php?id=1

non ha bisogno di installazione

Avvia ATF Cleaner.exe con un doppio click
- clicca sul menu main
- seleziona la casella Select All
- clicca sul pulsante Empty selected
- aspetta l'avviso Done Cleaning.
(se non vuoi eliminare le password togli la spunta)
(se usi opera o firefox,spunta anche le loro sezioni)

wincensic

il programma locate 32 quando lo hai installato lo hai messo in C:\ oppure in documents and setting ?

vai in C:\ e controlla se lo vedi tra i programmi

lo devi installare in C:\PROGRAMMI