MegaLab.it

Mi permetto di rivolgermi sempre a VOI, per la vostra gentilezza.
Ho un po' di problemi con il mio PC, uso WIN XP SP2 e recentemente ho installato il browser di FireFox, e mi trovo bene,(anche se con Firefox mi e' impossibbile entrare sul forum, non capisco il perche!!!!!), pero' vorrei che mi controllaste la scansione che ho fatto con "hithjackthis", in quanto ho subito piu' di un riavvio improvviso del pc recentemente.
Eccovi il log, grazie.

Logfile of HijackThis v1.99.1
Scan saved at 13.07.51, on 25/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\Mixer.exe
C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\WINDOWS\system32\DNHlp32.exe
C:\Programmi\File comuni\ToolSicuro\strpmon.exe
C:\Programmi\File comuni\Logitech\QCDriver\LVCOMS.EXE
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Nokia\Nokia PC Suite 6\PCSuite.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Programmi\File comuni\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
C:\Programmi\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Programmi\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\WINDOWS\system32\RaConfig2500.exe
C:\Programmi\Reality Fusion\Reality Fusion GameCam SE\Program\RFTRay.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Webshots\Webshots.scr
C:\Programmi\Messenger\msmsgs.exe
C:\Programmi\Outlook Express\msimn.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Se ... ftPane.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [RealTray] C:\Programmi\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [DNHelper32] C:\WINDOWS\system32\DNHlp32.exe
O4 - HKLM\..\Run: [Salestart] "C:\Programmi\File comuni\ToolSicuro\strpmon.exe" dm=http://toolsicuro.com; ad=http://toolsicuro.com
O4 - HKLM\..\Run: [LVCOMS] C:\Programmi\File comuni\Logitech\QCDriver\LVCOMS.EXE
O4 - HKCU\..\Run: [updateMgr] C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Programmi\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray
O4 - Startup: Webshots.lnk = C:\Programmi\Webshots\Launcher.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: RaConfig2500.lnk = C:\WINDOWS\system32\RaConfig2500.exe
O4 - Global Startup: Reality Fusion GameCam SE.lnk = ?
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {08BBAF4C-4A89-471C-9552-3694A7F2D081} (LoginCtl Class) - http://www.smart-clip.com/SmartLogin/SmartLogin.cab
O16 - DPF: {6ABE4BC3-7253-418E-85E8-F334A73154D3} (CSmartClient Object) - http://www.smart-clip.com/activex/SmartClip.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Programmi\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Programmi\File comuni\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

Buon Natale

Fai una scansione completa del disco fisso con superantispyware e rimuovi queste due righe con hijackthis
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Se ... ftPane.htm
O4 - HKLM\..\Run: [Salestart] "C:\Programmi\File comuni\ToolSicuro\strpmon.exe" dm=http://toolsicuro.com; ad=http://toolsicuro.com

Fai analizzare questo file sul sito www.virustotal.com e vediamo se è proprio buono.
O4 - HKLM\..\Run: [DNHelper32] C:\WINDOWS\system32\DNHlp32.exe

Ok, intanto ti ringrazio, adesso provo a togliere quelle due righe , ti faccio sapere, grazie

Ciao, scusa il disturbo, allora:
- ho tolto le 2 stringhe da te segnalate.
- ho fatto fare la scansione di quel file ed ecco il risultato, (scusa, ma io non ci capisco nulla):

File DNHlp32.exe ricevuto il 2007.12.25 14:35:43 (CET)
Stato corrente: Carico ... in coda attesa scansione finito NON TROVATO INTERROTTO


Risultato: 0/32 (0%)
Carico informazioni server...
Il tuo file è in coda in posizione: 4.
Tempo stimato inizio tra 47 e 68 secondi.
Non chiudere la finestra fino al termine della scansione.
Lo scanner che stava processando il tuo file si è fermato in questo momento, stiamo aspettando alcuni secondi per tentare di recuperare i tuoi risultati.
Se stai aspettando da più di cinque minuti devi rimandare il tuo file.
VirusTotal sta controllando il tuo file in questo momento,
i risultati saranno visualizzati mentre vengono generati.
Formattato Stampa risultati
Il tuo file è scaduto o non esiste.
Il servizio è fermo in questo momento, il tuo file sta aspettando di essere controllato (posizione: ) da un tempo indefinito.

Puoi aspettare la risposta sul web (ricarico automatico) o digitare il tuo indirizzo email nel riquadro qui sotto e premere "richiesta" così il sistema ti invierà una notifica al termine della scansione.
Email:


Antivirus Versione Ultimo aggiornamento Risultato
AhnLab-V3 2007.12.25.10 2007.12.24 -
AntiVir 7.6.0.46 2007.12.25 -
Authentium 4.93.8 2007.12.25 -
Avast 4.7.1098.0 2007.12.24 -
AVG 7.5.0.516 2007.12.25 -
BitDefender 7.2 2007.12.25 -
CAT-QuickHeal 9.00 2007.12.25 -
ClamAV 0.91.2 2007.12.25 -
DrWeb 4.44.0.09170 2007.12.25 -
eSafe 7.0.15.0 2007.12.24 -
eTrust-Vet 31.3.5400 2007.12.24 -
Ewido 4.0 2007.12.25 -
FileAdvisor 1 2007.12.25 -
Fortinet 3.14.0.0 2007.12.25 -
F-Prot 4.4.2.54 2007.12.25 -
F-Secure 6.70.13030.0 2007.12.25 -
Ikarus T3.1.1.15 2007.12.25 -
Kaspersky 7.0.0.125 2007.12.25 -
McAfee 5192 2007.12.24 -
Microsoft 1.3109 2007.12.25 -
NOD32v2 2747 2007.12.25 -
Norman 5.80.02 2007.12.24 -
Panda 9.0.0.4 2007.12.25 -
Prevx1 V2 2007.12.25 -
Rising 20.24.12.00 2007.12.25 -
Sophos 4.24.0 2007.12.25 -
Sunbelt 2.2.907.0 2007.12.21 -
Symantec 10 2007.12.25 -
TheHacker 6.2.9.168 2007.12.22 -
VBA32 3.12.2.5 2007.12.24 -
VirusBuster 4.3.26:9 2007.12.24 -
Webwasher-Gateway 6.6.2 2007.12.25 -
Informazioni addizionali
File size: 45056 bytes
MD5: 75be86547cc058bf7efb1b944de24776
SHA1: 771ae966b716b21c1e7fdf8b2aed467d0f85669b
PEiD: Armadillo v1.71

Cosa mi dici?

ripgsm ha scritto: NON TROVATO INTERROTTO
Il tuo file è scaduto o non esiste.

Che non sembrerebbe aver finito il controllo?

crazy.cat ha scritto:

ripgsm ha scritto: NON TROVATO INTERROTTO
Il tuo file è scaduto o non esiste.

Che non sembrerebbe aver finito il controllo?

Scusami, cosa faccio, ci riprovo?

si riprova

Ecco, lo ho rifatto:

File DNHlp32.exe ricevuto il 2007.12.25 14:56:54 (CET)Antivirus Versione Ultimo aggiornamento Risultato
AhnLab-V3 2007.12.25.10 2007.12.24 -
AntiVir 7.6.0.46 2007.12.25 -
Authentium 4.93.8 2007.12.25 -
Avast 4.7.1098.0 2007.12.24 -
AVG 7.5.0.516 2007.12.25 -
BitDefender 7.2 2007.12.25 -
CAT-QuickHeal 9.00 2007.12.25 -
ClamAV 0.91.2 2007.12.25 -
DrWeb 4.44.0.09170 2007.12.25 -
eSafe 7.0.15.0 2007.12.24 -
eTrust-Vet 31.3.5400 2007.12.24 -
Ewido 4.0 2007.12.25 -
FileAdvisor 1 2007.12.25 -
Fortinet 3.14.0.0 2007.12.25 -
F-Prot 4.4.2.54 2007.12.25 -
F-Secure 6.70.13030.0 2007.12.25 -
Ikarus T3.1.1.15 2007.12.25 -
Kaspersky 7.0.0.125 2007.12.25 -
McAfee 5192 2007.12.24 -
Microsoft 1.3109 2007.12.25 -
NOD32v2 2747 2007.12.25 -
Norman 5.80.02 2007.12.24 -
Panda 9.0.0.4 2007.12.25 -
Prevx1 V2 2007.12.25 -
Rising 20.24.12.00 2007.12.25 -
Sophos 4.24.0 2007.12.25 -
Sunbelt 2.2.907.0 2007.12.21 -
Symantec 10 2007.12.25 -
TheHacker 6.2.9.168 2007.12.22 -
VBA32 3.12.2.5 2007.12.24 -
VirusBuster 4.3.26:9 2007.12.24 -
Webwasher-Gateway 6.6.2 2007.12.25 -

Informazioni addizionali
File size: 45056 bytes
MD5: 75be86547cc058bf7efb1b944de24776
SHA1: 771ae966b716b21c1e7fdf8b2aed467d0f85669b
PEiD: Armadillo v1.71

quel file è pulito, scarica e scansiona con superantispyware

crazy.cat ha scritto:quel file è pulito, scarica e scansiona con superantispyware

Ciao ecco la scansione fatta con SUPERANTISPYWERE:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/26/2007 at 00:29 AM

Application Version : 3.9.1008

Core Rules Database Version : 3330
Trace Rules Database Version: 1331

Scan type : Custom Scan
Total Scan Time : 01:05:31

Memory items scanned : 423
Memory threats detected : 1
Registry items scanned : 5045
Registry threats detected : 0
File items scanned : 39456
File threats detected : 7

Adware.MyWebSearch
C:\PROGRA~1\MYWEBS~1\BAR\1.BIN\MWSOEMON.EXE
C:\PROGRA~1\MYWEBS~1\BAR\1.BIN\MWSOEMON.EXE
C:\PROGRAMMI\MYWEBSEARCH\BAR\1.BIN\MWSOEMON.EXE

Adware.Tracking Cookie
C:\Documents and Settings\Utente\Cookies\utente@eas.apm.emediate[1].txt
C:\Documents and Settings\Utente\Cookies\utente@maxserving[1].txt
C:\Documents and Settings\Utente\Cookies\utente@ads.adbrite[1].txt
C:\Documents and Settings\Utente\Cookies\utente@adbrite[2].txt
C:\Documents and Settings\Utente\Cookies\utente@mywebsearch[2].txt

C'era solo qualche minaccia insignificante... Non credo tu abbia risolto il problema...

Scarica ed usa Combofix, quindi posta il log

ste_95 ha scritto:C'era solo qualche minaccia insignificante... Non credo tu abbia risolto il problema...

Scarica ed usa Combofix, quindi posta il log

Ciao, si, infatti, non ho risolto molto, adesso provo a fare come dici e....speriamo bene, ciao e grazie

Ciao, ho fatto come mi hai suggerito, pero' la prima volta, ho scaricato il programma su "DOCUMENTI" e mi ha risposto :
la CPU NTVDM ha incontrato un'istruzione non valida.
In seguito ho letto che bisognava scaricarlo sul DESKTOP, e da li' lo ho lanciato, e mi ha creato questo LOG:

ComboFix 07-12-28.1 - Utente 2007-12-28 13.58.28.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.63 [GMT 1:00]
Eseguito da: C:\Documents and Settings\Utente\Desktop\ComboFix.exe
* Creato nuovo punto di ripristino
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Utente\Dati applicazioni\FunWebProducts
C:\Programmi\FunWebProducts
C:\Programmi\myglobalsearch
C:\Programmi\myglobalsearch\bar\History\search
C:\Programmi\MyWebSearch
C:\Programmi\MyWebSearch\bar\History\search2
C:\Programmi\MyWebSearch\bar\Settings\s_pid.dat

.
((((((((((((((((((((((((( Files Creati Da 2007-11-28 al 2007-12-28 )))))))))))))))))))))))))))))))))))
.

2007-12-25 14:50 . 2007-12-25 14:50 <DIR> d-------- C:\Programmi\VirusTotalUploader
2007-12-23 15:14 . 2007-12-25 13:02 <DIR> d-------- C:\Programmi\NokiaFREE Unlock Codes Calculator
2007-12-22 02:49 . 2007-12-25 13:28 75 --a------ C:\WINDOWS\USBBC.ini
2007-12-22 02:49 . 2007-12-22 02:49 0 --a------ C:\WINDOWS\MDI.INI
2007-12-22 00:09 . 2007-12-25 23:18 <DIR> d-------- C:\Programmi\PC-Linq
2007-12-14 14:29 . 2007-12-18 17:06 <DIR> d-------- C:\Programmi\LGMDP World Edition
2007-12-14 00:49 . 2007-12-14 00:49 1,142 --a------ C:\WINDOWS\mozver.dat
2007-12-13 23:23 . 2007-12-13 23:23 0 --a------ C:\WINDOWS\nsreg.dat
2007-12-13 15:03 . 2007-12-13 15:04 200 --a------ C:\WINDOWS\IPLT.INI
2007-12-13 13:25 . 2007-12-13 13:25 <DIR> d-------- C:\Programmi\File comuni\PCSuite
2007-12-13 13:22 . 2007-12-13 13:22 <DIR> d-------- C:\Programmi\PC Connectivity Solution
2007-12-12 18:31 . 2007-12-12 18:31 16 --a------ C:\WINDOWS\RealityFusion.ini
2007-12-12 18:23 . 2007-12-12 18:23 <DIR> d-------- C:\Programmi\Reality Fusion
2007-12-12 18:18 . 2007-12-12 18:18 <DIR> d----c--- C:\Documents and Settings\Utente\WINDOWS
2007-12-10 17:19 . 2007-12-10 17:19 <DIR> d-------- C:\Programmi\Axalto
2007-12-03 18:50 . 2007-12-05 13:48 <DIR> d-------- C:\Programmi\Cruiser
2007-11-29 15:35 . 2007-11-29 15:35 <DIR> d----c--- C:\03ed400054f95d25a1bc6249
2007-11-29 01:08 . 2007-11-29 01:08 <DIR> d----c--- C:\Documents and Settings\Utente\Dati applicazioni\Nokia Multimedia Player
2007-11-28 23:27 . 2006-06-29 13:07 14,048 --a------ C:\WINDOWS\system32\spmsg2.dll
2007-11-28 21:29 . 2007-11-28 21:29 13,352 --a------ C:\WINDOWS\system32\drivers\ggflt.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-28 11:26 --------- dc----w C:\Documents and Settings\Utente\Dati applicazioni\AVG7
2007-12-27 16:06 --------- d-----w C:\Programmi\SUPERAntiSpyware
2007-12-26 12:59 --------- d-----w C:\Programmi\LeaderGL_FlexEditor
2007-12-25 22:18 --------- d--h--w C:\Programmi\InstallShield Installation Information
2007-12-23 02:33 --------- d-----w C:\Programmi\FuriouS BOX 2
2007-12-22 20:08 --------- d-----w C:\Programmi\FuriouS BOX 2 V.2026
2007-12-20 18:15 --------- d-----w C:\Programmi\GsmServer
2007-12-20 17:26 --------- d-----w C:\Programmi\Sony Ericsson
2007-12-18 16:03 4,452,903 ----a-w C:\Programmi\LGMDP World Edition.rar
2007-12-15 18:15 --------- dc----w C:\Documents and Settings\All Users\Dati applicazioni\avg7
2007-12-14 20:28 --------- d-----w C:\Programmi\LGMDP
2007-12-14 20:27 --------- d-----w C:\Programmi\GSMCHAT.EU Client
2007-12-13 13:39 --------- d-----w C:\Programmi\NEC
2007-12-13 12:25 --------- d-----w C:\Programmi\Nokia
2007-12-13 12:25 --------- d-----w C:\Programmi\File comuni\Nokia
2007-12-13 12:16 --------- dc----w C:\Documents and Settings\All Users\Dati applicazioni\Installations
2007-12-11 12:36 --------- dc----w C:\Documents and Settings\Utente\Dati applicazioni\Nokia
2007-11-28 20:29 20,520 ----a-w C:\WINDOWS\system32\drivers\ggsemc.sys
2007-11-28 03:25 --------- d-----w C:\Programmi\Motorola Tools
2007-11-26 20:55 --------- d-----w C:\Programmi\MotoKup
2007-11-06 21:27 --------- dc----w C:\Documents and Settings\Utente\Dati applicazioni\PC Suite
2007-11-06 21:22 --------- dc----w C:\Documents and Settings\All Users\Dati applicazioni\PC Suite
2007-11-06 21:19 --------- d-----w C:\Programmi\DIFX
2007-11-06 20:18 --------- dc----w C:\Documents and Settings\Utente\Dati applicazioni\toolsicuro
2007-11-06 20:12 --------- d-----w C:\Programmi\File comuni\ToolSicuro
2007-11-03 03:04 --------- dc----w C:\Documents and Settings\Utente\Dati applicazioni\LG Electronics
2007-11-03 02:34 --------- d-----w C:\Programmi\LG PC Suite
2007-11-03 00:54 86,016 ----a-w C:\WINDOWS\system32\DNClnt32.dll
2007-11-03 00:54 82,432 ----a-w C:\WINDOWS\system32\DNCP32.DLL
2007-11-03 00:54 57,344 ----a-w C:\WINDOWS\system32\vercp32.dll
2007-11-03 00:54 42,624 ----a-w C:\WINDOWS\system32\drivers\dk2drv.sys
2007-11-03 00:54 23,552 ----a-w C:\WINDOWS\system32\DK2UInst.exe
2007-11-03 00:54 11,392 ----a-w C:\WINDOWS\system32\drivers\DK2USB.sys
2007-11-03 00:54 1,597,440 ----a-w C:\WINDOWS\system32\DK2INST.DLL
2007-11-03 00:54 --------- d---a-w C:\Programmi\Common Files
2007-11-03 00:40 80,160 ----a-w C:\WINDOWS\system32\fls1wn16.dll
2007-11-03 00:40 8,344 ----a-w C:\WINDOWS\system32\drivers\flsser.sys
2007-11-03 00:40 61,440 ----a-w C:\WINDOWS\system32\fle5wn32.dll
2007-11-03 00:40 60,418 ----a-w C:\WINDOWS\system32\drivers\FLS5FWLD.SYS
2007-11-03 00:40 53,248 ----a-w C:\WINDOWS\system32\FLS5FL32.DLL
2007-11-03 00:40 51,798 ----a-w C:\WINDOWS\system32\drivers\FLSUSB.SYS
2007-11-03 00:40 50,175 ----a-w C:\WINDOWS\system32\drivers\FlsFWLdr.sys
2007-11-03 00:40 46,976 ----a-w C:\WINDOWS\system32\drivers\FLS5USB.SYS
2007-11-03 00:40 397,312 ----a-w C:\WINDOWS\system32\fls1wn32.dll
2007-11-03 00:40 38,147 ----a-w C:\WINDOWS\system32\drivers\FLS8500.LDR
2007-11-03 00:40 33,404 ----a-w C:\WINDOWS\system32\drivers\fle5wnnt.sys
2007-11-03 00:40 32,544 ----a-w C:\WINDOWS\system32\drivers\flsvcom.sys
2007-11-03 00:40 3,984 ----a-w C:\WINDOWS\system32\flscoins.dll
2007-11-03 00:40 23,216 ----a-w C:\WINDOWS\system32\drivers\FPGA8501.rd4
2007-11-03 00:40 22,064 ----a-w C:\WINDOWS\system32\fle5wn16.dll
2007-11-03 00:40 20,388 ----a-w C:\WINDOWS\system32\drivers\fls8200.ldr
2007-11-03 00:40 20,320 ----a-w C:\WINDOWS\system32\drivers\fls8000.ldr
2007-11-03 00:40 19,277 ----a-w C:\WINDOWS\system32\drivers\fls8100.ldr
2007-11-03 00:40 19,157 ----a-w C:\WINDOWS\system32\drivers\fls8400.ldr
2007-11-03 00:40 16,314 ----a-w C:\WINDOWS\system32\drivers\flspar.sys
2007-11-03 00:40 13,440 ----a-w C:\WINDOWS\system32\drivers\flsiface.sys
2007-11-03 00:40 --------- d-----w C:\Programmi\File comuni\DESkey
2007-08-07 17:58 92,064 -c--a-w C:\Documents and Settings\Utente\mqdmmdm.sys
2007-08-07 17:58 9,232 -c--a-w C:\Documents and Settings\Utente\mqdmmdfl.sys
2007-08-07 17:58 79,328 -c--a-w C:\Documents and Settings\Utente\mqdmserd.sys
2007-08-07 17:58 66,656 -c--a-w C:\Documents and Settings\Utente\mqdmbus.sys
2007-08-07 17:58 6,208 -c--a-w C:\Documents and Settings\Utente\mqdmcmnt.sys
2007-08-07 17:58 5,936 -c--a-w C:\Documents and Settings\Utente\mqdmwhnt.sys
2007-08-07 17:58 4,048 -c--a-w C:\Documents and Settings\Utente\mqdmcr.sys
2007-08-07 17:58 25,600 -c--a-w C:\Documents and Settings\Utente\usbsermptxp.sys
2007-08-07 17:58 22,768 -c--a-w C:\Documents and Settings\Utente\usbsermpt.sys
2007-06-09 09:37 99,372,967 ----a-w C:\Programmi\Motorola Phone Tools.rar
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* i valori vuoti & legittimi/default non sono visualizzati.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"updateMgr"="C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" []
"WebCamRT.exe"="" []
"SUPERAntiSpyware"="C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-27 09:55]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 14:39]
"PC Suite Tray"="C:\Programmi\Nokia\Nokia PC Suite 6\PCSuite.exe" [2007-12-10 10:12]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RealTray"="C:\Programmi\Real\RealPlayer\RealPlay.exe" [2007-03-18 02:30]
"C-Media Mixer"="Mixer.exe" [2001-12-07 15:24 C:\WINDOWS\Mixer.exe]
"NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 19:50]
"Adobe Photo Downloader"="C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 10:09]
"Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 18:51]
"DNHelper32"="C:\WINDOWS\system32\DNHlp32.exe" [2005-10-20 15:50]
"LVCOMS"="C:\Programmi\File comuni\Logitech\QCDriver\LVCOMS.EXE" [2001-09-24 09:39]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-19 14:39]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2007-10-25 10:51]
"Nokia.PCSync"="C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-11-07 17:35]

C:\Documents and Settings\Utente\Menu Avvio\Programmi\Esecuzione automatica\
Webshots.lnk - C:\Programmi\Webshots\Launcher.exe [2007-03-10 17:09:19]

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Microsoft Office.lnk - C:\Programmi\Microsoft Office\Office\OSA9.EXE [2000-01-21 09:15:56]
RaConfig2500.lnk - C:\WINDOWS\system32\RaConfig2500.exe [2007-03-08 22:41:27]
Reality Fusion GameCam SE.lnk - C:\Programmi\Reality Fusion\Reality Fusion GameCam SE\Program\RFTRay.exe [2000-07-10 13:58:12]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Programmi\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 12:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Programmi\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 12:41 294912 C:\Programmi\SUPERAntiSpyware\SASWINLO.dll

R1 XPROTECTOR;XPROTECTOR;C:\WINDOWS\system32\drivers\Oreans.sys [2007-04-05 00:17]
R2 dk2drv;DK2 WindowsNT Driver;C:\WINDOWS\system32\Drivers\dk2drv.sys [2007-11-03 01:54]
R2 FLE5WNNT;FLE-5 WindowsNT Driver;C:\WINDOWS\System32\Drivers\fle5wnnt.sys [2007-11-03 01:40]
R2 FLSIFACE;FLSIface;C:\WINDOWS\System32\Drivers\flsiface.sys [2007-11-03 01:40]
R2 FLSPAR;FLSPar;C:\WINDOWS\System32\Drivers\flspar.sys [2007-11-03 01:40]
R2 FLSSER;FLSSer;C:\WINDOWS\System32\Drivers\flsser.sys [2007-11-03 01:40]
R2 FLSVCOM;FLSVCom;C:\WINDOWS\System32\Drivers\flsvcom.sys [2007-11-03 01:40]
R2 SVKP;SVKP;C:\WINDOWS\system32\SVKP.sys [2007-04-29 17:24]
R3 ati2mtaa;ati2mtaa;C:\WINDOWS\system32\DRIVERS\ati2mtaa.sys [2004-08-19 16:23]
R3 Egatebus;Egatebus;C:\WINDOWS\system32\drivers\egatebus.sys [2006-05-19 10:22]
R3 Egaterdr;Egaterdr;C:\WINDOWS\system32\drivers\egaterdr.sys [2006-05-19 10:22]
R3 PhilCam8116;Logitech QuickCam Pro 3000(PID_08B0);C:\WINDOWS\system32\DRIVERS\CamDrL21.sys [2001-07-09 04:13]
R3 Rockey_USB;Feitian ROCKEY4 USB Service;C:\WINDOWS\system32\DRIVERS\Rockey4USB.sys [2007-09-23 17:05]
R3 ROCKEYNT;Feitian ROCKEY4 Device Service;C:\WINDOWS\system32\DRIVERS\Rockey4.sys [2007-09-23 17:05]
S1 lusbaudio;Logitech USB Microphone;C:\WINDOWS\system32\drivers\lvsound2.sys [2001-09-24 09:38]
S2 Ca504bv;Icatch(VII) Video Camera Device;C:\WINDOWS\system32\Drivers\Ca504bv.sys [2002-10-21 11:37]
S3 ggflt;SEMC USB Flash Driver Filter;C:\WINDOWS\system32\DRIVERS\ggflt.sys [2007-11-28 21:29]
S3 gggen;Generic USB Flash Driver;C:\WINDOWS\system32\DRIVERS\gggen.sys [2006-09-28 13:10]
S3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;C:\WINDOWS\system32\drivers\libusb0.sys [2005-03-09 19:50]
S3 liusbf;NEC 338 IPL Port Driver;C:\WINDOWS\system32\DRIVERS\liusbf.sys [2004-07-22 23:00]
S3 LVBulk;LVBulk Service;C:\WINDOWS\system32\DRIVERS\LVBulk.sys [2001-09-24 09:39]
S3 LVVI500A;LVVI500A Service;C:\WINDOWS\system32\DRIVERS\lvvi500a.sys [2001-09-20 03:39]
S3 motccgp;Motorola USB Composite Device Driver;C:\WINDOWS\system32\DRIVERS\motccgp.sys [2007-02-27 13:31]
S3 motccgpfl;MotCcgpFlService;C:\WINDOWS\system32\DRIVERS\motccgpfl.sys [2007-01-23 18:03]
S3 MotDev;Motorola Inc. USB Device;C:\WINDOWS\system32\DRIVERS\motodrv.sys [2006-12-14 09:27]
S3 motmodem;Motorola USB CDC ACM Driver;C:\WINDOWS\system32\DRIVERS\motmodem.sys [2007-02-27 13:31]
S3 ntportio;ntportio;C:\DOCUME~1\Utente\IMPOST~1\Temp\Rar$EX00.922\LG3G_Tool_v21\ntportio.sys []
S3 PortTalk;PortTalk;C:\WINDOWS\system32\drivers\PortTalk.sys [2007-03-10 11:44]
S3 USBCamera;Icatch(VII) Still Camera Device;C:\WINDOWS\system32\Drivers\Bulk504B.sys [2002-07-25 11:19]
S3 z10xbus;Sony Ericsson driver (WDM);C:\WINDOWS\system32\DRIVERS\z10xbus.sys [2004-03-28 20:39]
S3 z10xmdfl;Sony Ericsson USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\z10xmdfl.sys [2004-03-28 20:40]
S3 z10xmdm;Sony Ericsson USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\z10xmdm.sys [2004-03-28 20:40]
S3 z10xmgmt;Sony Ericsson USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\z10xmgmt.sys [2004-03-28 20:41]
S3 z10xobex;Sony Ericsson USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\z10xobex.sys [2004-03-28 20:42]

*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
**************************************************************************

catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-28 14:05:53
Windows 5.1.2600 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
Ora fine scansione: 2007-12-28 14.06.51
.
2007-09-12 00:21:24 --- E O F ---


saresti cosi cortese da dirmi qualcosa in merito? Grazie

Potresti far analizzare i seguenti file su www.virustotal.com :

C:\WINDOWS\mozver.dat
C:\WINDOWS\nsreg.dat
C:\WINDOWS\system32\spmsg2.dll

Poi scarica e usa SpyBot S&D e SuperAntiSpyware per eliminare i resti di ToolSicuro

ste_95 ha scritto:Potresti far analizzare i seguenti file su www.virustotal.com :

C:\WINDOWS\mozver.dat
C:\WINDOWS\nsreg.dat
C:\WINDOWS\system32\spmsg2.dll

Poi scarica e usa SpyBot S&D e SuperAntiSpyware per eliminare i resti di ToolSicuro

Ciao, come avrai capito non sono molto pratico, comunque, ecco le scansioni:

File mozver.dat ricevuto il 2007.12.28 15:22:30 (CET)Antivirus Versione Ultimo aggiornamento Risultato
AhnLab-V3 2007.12.28.12 2007.12.28 -
AntiVir 7.6.0.46 2007.12.28 -
Authentium 4.93.8 2007.12.28 -
Avast 4.7.1098.0 2007.12.27 -
AVG 7.5.0.516 2007.12.28 -
BitDefender 7.2 2007.12.28 -
CAT-QuickHeal 9.00 2007.12.28 -
ClamAV 0.91.2 2007.12.28 -
DrWeb 4.44.0.09170 2007.12.28 -
eSafe 7.0.15.0 2007.12.27 -
eTrust-Vet 31.3.5408 2007.12.28 -
Ewido 4.0 2007.12.28 -
FileAdvisor 1 2007.12.28 -
Fortinet 3.14.0.0 2007.12.28 -
F-Prot 4.4.2.54 2007.12.28 -
F-Secure 6.70.13030.0 2007.12.28 -
Ikarus T3.1.1.15 2007.12.28 -
Kaspersky 7.0.0.125 2007.12.28 -
McAfee 5194 2007.12.27 -
Microsoft 1.3109 2007.12.28 -
NOD32v2 2753 2007.12.28 -
Norman 5.80.02 2007.12.28 -
Panda 9.0.0.4 2007.12.27 -
Prevx1 V2 2007.12.28 -
Rising 20.24.42.00 2007.12.28 -
Sophos 4.24.0 2007.12.28 -
Sunbelt 2.2.907.0 2007.12.28 -
Symantec 10 2007.12.28 -
TheHacker 6.2.9.172 2007.12.27 -
VBA32 3.12.2.5 2007.12.26 -
VirusBuster 4.3.26:9 2007.12.27 -
Webwasher-Gateway 6.0.1 2007.12.28 -

Informazioni addizionali
File size: 1142 bytes
MD5: 000a43edcfdf5ee3213b6af81d8e7830
SHA1: b21f23dc205231c3c1c6af38f2796066b15e22c1
PEiD: -

2° FILE:

0 bytes size received / Se ha recibido un archivo vacio

3° FILE:

File spmsg2.dll ricevuto il 2007.12.28 15:42:47 (CET)Antivirus Versione Ultimo aggiornamento Risultato
AhnLab-V3 2007.12.28.12 2007.12.28 -
AntiVir 7.6.0.46 2007.12.28 -
Authentium 4.93.8 2007.12.28 -
Avast 4.7.1098.0 2007.12.27 -
AVG 7.5.0.516 2007.12.28 -
BitDefender 7.2 2007.12.28 -
CAT-QuickHeal 9.00 2007.12.28 -
ClamAV 0.91.2 2007.12.28 -
DrWeb 4.44.0.09170 2007.12.28 -
eSafe 7.0.15.0 2007.12.27 -
eTrust-Vet 31.3.5408 2007.12.28 -
Ewido 4.0 2007.12.28 -
FileAdvisor 1 2007.12.28 -
Fortinet 3.14.0.0 2007.12.28 -
F-Prot 4.4.2.54 2007.12.28 -
F-Secure 6.70.13030.0 2007.12.28 -
Ikarus T3.1.1.15 2007.12.28 -
Kaspersky 7.0.0.125 2007.12.28 -
McAfee 5194 2007.12.27 -
Microsoft 1.3109 2007.12.28 -
NOD32v2 2753 2007.12.28 -
Norman 5.80.02 2007.12.28 -
Panda 9.0.0.4 2007.12.27 -
Prevx1 V2 2007.12.28 -
Rising 20.24.42.00 2007.12.28 -
Sophos 4.24.0 2007.12.28 -
Sunbelt 2.2.907.0 2007.12.28 -
Symantec 10 2007.12.28 -
TheHacker 6.2.9.172 2007.12.27 -
VBA32 3.12.2.5 2007.12.26 -
VirusBuster 4.3.26:9 2007.12.28 -
Webwasher-Gateway 6.0.1 2007.12.28 -

Informazioni addizionali
File size: 14048 bytes
MD5: 37044da1f53a8a6e5c54fca4c974511a
SHA1: c67e85389503bea34fa7c4c29486bc349b3f39b7
PEiD: -


Scusami, adesso, devo fare la scansione con entrambi i programmi che mi hai dato?

ripgsm ha scritto:Scusami, adesso, devo fare la scansione con entrambi i programmi che mi hai dato?

Sì

ste_95 ha scritto:

ripgsm ha scritto:Scusami, adesso, devo fare la scansione con entrambi i programmi che mi hai dato?

Sì

scusa, mentre stava scansionando il primo programma, e' venuto fuori un ERRORE in ROSSO, su HKEY-local machine o simile ...e mi si e OSCURATO completamente il PC, ho dovuto spegnerlo forzatamente, e poi lo ho fatto ripartire dal tasto di partenza, cosa e' successo?, adesso ho l'iconcina vicino all'orologio che mi dice 58807 processi inseriti nella lista nera!!!! che succede, lancio di nuovo la scansione?

Che programma te lo dice?

ste_95 ha scritto:Che programma te lo dice?

SpyBot S&D

adesso ho rifatto di nuovo la scansione, mi ha fatto arrivare fino alla fine, pero' mentre stavo visualizzando un bel po' di ERRORI in ROSSO, e stavo pensando cosa fare, e' Risuccesso di nuovo l'oscuramento IMPROVVISO ed ho dovuto fare di nuovo, spegnimento da alimentazione e poi e' ripartito.
Scusa, ma non saranno tutti questi programmi antispyware che vanno in conflitto tra loro?
Comunque, questo e' il risultato della scansione che sono riuscito a terminare, con il programma sopra:



--- Report generated: 2007-12-28 18.38 ---

UtileProtection: [SBI $7162C2E7] Impostazioni (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Purchased Products\System Error Repair

Ask.MyGlobalSearch: [SBI $4DAB2DF8] Impostazioni utente (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{37B85A21-692B-4205-9CAD-2626E4993404}

Ask.MyGlobalSearch: [SBI $C3B7E532] ID di classe (Chiave di registro, nothing done)
HKEY_CLASSES_ROOT\CLSID\{EF281620-A3A3-4f08-874F-D68CFC9B7945}

Ask.MyGlobalSearch: [SBI $3542CED2] Classe radice (Root) (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MyGlobalSearchBar.ToolbarPlugin

Ask.MyGlobalSearch: [SBI $3542CED2] Classe radice (Root) (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\MyGlobalSearchBar.ToolbarPlugin.1

Ask.MyGlobalSearch: [SBI $3542CED2] ID di classe (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF281620-A3A3-4f08-874F-D68CFC9B7945}

Ask.MyGlobalSearch: [SBI $271270A7] Impostazioni (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\MyGlobalSearch

CliprexDVDPro: [SBI $0F3D3306] Impostazioni utente (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Cliprex Cdivx Player

CliprexDVDPro: [SBI $D3D7FE37] Impostazioni utente (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Cliprex DVD Player Professional

FunWebProducts: [SBI $561F0D2E] Impostazioni utente (Valore di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Microsoft\Internet Explorer\MenuExt\&Search\=...http://edits.mywebsearch.com/toolbaredi ... ch.jhtml...

FunWebProducts: [SBI $E2D974B3] Impostazioni (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Fun Web Products

MyWay.MyWebSearch: [SBI $6404C538] Impostazioni (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}

MyWay.MyWebSearch: [SBI $39E631BB] Impostazioni (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}

MyWay.MyWebSearch: [SBI $1D729FD1] Impostazioni (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}

MyWay.MyWebSearch: [SBI $B1C70274] Assistente del browser (BHO) (Chiave di registro, nothing done)
HKEY_USERS\S-1-5-21-1482476501-1715567821-725345543-1003\Software\MyWebSearch

FunWeb: [SBI $C9EF9978] Impostazioni (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\Software\Fun Web Products

MyWebSearch: [SBI $0778094F] Interfaccia (Chiave di registro, nothing done)
HKEY_CLASSES_ROOT\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}

MyWebSearch: [SBI $EB0F98F9] Interfaccia (Chiave di registro, nothing done)
HKEY_CLASSES_ROOT\Interface\{741DE825-A6F0-4497-9AA6-8023CF9B0FFF}

DoubleClick: [SBI $61F39AC8] Cookie tracciante (Internet Explorer: Utente) (Cookie, nothing done)


Zedo: [SBI $61F39AC8] Cookie tracciante (Internet Explorer: Utente) (Cookie, nothing done)


Zedo: [SBI $61F39AC8] Cookie tracciante (Internet Explorer: Utente) (Cookie, nothing done)


TagASaurus: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


TagASaurus: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


TagASaurus: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


TagASaurus: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


DoubleClick: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


WebTrends live: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Tradedoubler: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Tradedoubler: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Tradedoubler: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Tradedoubler: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)


WebTrends live: [SBI $61F39AC8] Cookie tracciante (Firefox: default) (Cookie, nothing done)



--- Spybot - Search & Destroy version: 1.5 (build: 20070830) ---

2007-08-31 blindman.exe (1.0.0.6)
2007-08-31 SDMain.exe (1.0.0.4)
2007-08-31 SDUpdate.exe (1.0.6.4)
2007-08-31 SDWinSec.exe (1.0.0.8)
2007-08-31 SpybotSD.exe (1.5.1.15)
2007-08-31 TeaTimer.exe (1.5.0.9)
2007-12-28 unins000.exe (51.46.0.0)
2007-08-31 Update.exe (1.4.0.5)
2007-08-31 advcheck.dll (1.5.3.0)
2007-04-02 aports.dll (2.1.0.0)
2007-04-02 DelZip179.dll (1.79.5.3)
2007-08-31 SDHelper.dll (1.5.0.8)
2007-08-31 Tools.dll (2.1.2.0)
2007-12-26 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2007-12-26 Includes\DialerC.sbi (*)
2007-12-26 Includes\Hijackers.sbi (*)
2007-12-26 Includes\HijackersC.sbi (*)
2007-10-04 Includes\Keyloggers.sbi (*)
2007-12-26 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2007-11-07 Includes\Malware.sbi (*)
2007-12-26 Includes\MalwareC.sbi (*)
2007-10-24 Includes\PUPS.sbi (*)
2007-12-26 Includes\PUPSC.sbi (*)
2007-12-26 Includes\Revision.sbi (*)
2007-05-30 Includes\Security.sbi (*)
2007-12-26 Includes\SecurityC.sbi (*)
2007-11-07 Includes\Spybots.sbi (*)
2007-12-26 Includes\SpybotsC.sbi (*)
2007-11-06 Includes\Tracks.uti
2007-12-12 Includes\Trojans.sbi (*)
2007-12-26 Includes\TrojansC.sbi (*)
2008-12-24 Plugins\TCPIPAddress.dll

cosa faccio? altra scansione? come mai questi OSCURAMENTI?, cancello "COMBOFIX?"
Grazie

Hai pulito i problemi rilevati?