eccco il log di combo fix.
ComboFix 10-05-31.03 - sony-pc 01/06/2010 16.58.39.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1022.477 [GMT 2:00]
Eseguito da: c:\documents and settings\sony-pc\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Outdated) {00000000-F020-0013-5D5C-927C00000000}
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {00000002-0002-0000-7C25-9E7C08000A00}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00000000-F020-0012-5D5C-927C00000000}
.
ADS - WINDOWS: deleted 24 bytes in 1 streams. ((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\akeqjcwa.dat
c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\akeqjcwa_nav.dat
c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\akeqjcwa_navps.dat
c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\isnpatv.exe
c:\programmi\Search Settings
c:\programmi\Search Settings\FF\chrome.manifest
c:\programmi\Search Settings\FF\chrome\content\plugin.js
c:\programmi\Search Settings\FF\chrome\content\plugin.xul
c:\programmi\Search Settings\FF\chrome\content\protection.js
c:\programmi\Search Settings\FF\chrome\content\utils.js
c:\programmi\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.dtd
c:\programmi\Search Settings\FF\chrome\locale\en-US\searchsettingsplugin.properties
c:\programmi\Search Settings\FF\components\IFBHOSearch.xpt
c:\programmi\Search Settings\FF\components\IFBHOSearchHelperEngine.xpt
c:\programmi\Search Settings\FF\components\IFHelperPreferences.xpt
c:\programmi\Search Settings\FF\components\SearchSettingsFF.dll
c:\programmi\Search Settings\FF\install.rdf
c:\programmi\Search Settings\SeARchsettings.dll
c:\programmi\Search Settings\SearchSettings.exe
c:\programmi\Search Settings\SearchSettingsRes409.dll
.
original MBR restored successfully !
.
((((((((((((((((((((((((( Files Creati Da 2010-05-01 al 2010-06-01 )))))))))))))))))))))))))))))))))))
.
2010-06-01 14:43 . 2010-06-01 14:43 398336 ----a-w- c:\windows\system32\CF19779.exe
2010-05-27 15:04 . 2010-05-27 15:04 57344 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-05-27 15:02 . 2010-05-27 14:57 754984 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Setup\Resource.dll
2010-05-27 15:02 . 2010-05-27 14:56 1180952 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Setup\DivXSetup.exe
2010-05-27 15:02 . 2010-05-27 15:02 56766 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-05-27 15:02 . 2009-11-24 19:17 530625 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DivX7\DivX Plus DirectShow Filters\DivXDSFiltersUninstall.exe
2010-05-27 15:02 . 2009-11-24 19:17 530625 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DivX7\DivX Converter\DivXConverterUninstall.exe
2010-05-27 15:02 . 2010-05-27 15:02 56978 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\WebPlayer\Uninstaller.exe
2010-05-27 15:02 . 2010-05-27 15:02 53600 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Update\Uninstaller.exe
2010-05-27 15:02 . 2010-05-27 15:02 57679 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Player\Uninstaller.exe
2010-05-27 15:01 . 2010-05-27 15:01 84040 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\TransferWizard\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 57054 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DSDesktopComponents\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54166 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DSAVCDecoder\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 57532 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DSASPDecoder\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 56458 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DivXDecoderShortcut\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54174 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DSAACDecoder\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54153 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\DFXPlugin\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54128 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Converter\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54629 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\TranscodeEngine\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 57409 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\ControlPanel\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 54101 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\MPEG2Plugin\Uninstaller.exe
2010-05-27 15:00 . 2010-05-27 15:00 52963 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\MSVC80CRTRedist\Uninstaller.exe
2010-05-27 14:59 . 2010-05-27 14:59 54073 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\Qt4.5\Uninstaller.exe
2010-05-27 14:59 . 2010-05-27 14:59 56969 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\ASPEncoder\Uninstaller.exe
2010-05-27 14:57 . 2010-05-27 14:57 144696 ----a-w- c:\documents and settings\All Users\Dati applicazioni\DivX\RunAsUser\RUNASUSERPROCESS.exe
2010-05-27 14:56 . 2010-05-27 15:04 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\DivX
2010-05-27 14:50 . 2010-05-27 14:50 -------- d-----w- c:\programmi\ConvertHelper
2010-05-16 12:51 . 2010-05-16 12:51 -------- d-----w- c:\programmi\TVAnts
2010-05-09 21:26 . 2010-05-09 21:27 21284336 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\rp\RealPlayerSPGold_it.exe
2010-05-05 11:02 . 2010-05-05 11:02 471040 ----a-w- c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\ucjxefd.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-01 14:57 . 2009-05-06 01:33 -------- d-----w- c:\programmi\DNA
2010-06-01 14:57 . 2009-05-06 01:33 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\DNA
2010-06-01 14:41 . 2007-08-30 16:56 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\Skype
2010-06-01 14:07 . 2008-04-28 11:14 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\skypePM
2010-06-01 13:45 . 2008-01-14 15:06 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Google Updater
2010-06-01 12:47 . 2007-08-30 18:01 -------- d-----w- c:\programmi\Mozilla Thunderbird
2010-05-31 16:18 . 2007-08-28 06:01 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2010-05-30 21:48 . 2007-08-31 18:45 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\DivX
2010-05-30 20:30 . 2008-01-14 16:59 -------- d-----w- c:\programmi\Recycle
2010-05-30 18:57 . 2007-08-30 18:21 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\foobar2000
2010-05-30 18:20 . 2008-10-29 17:20 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2010-05-30 17:04 . 2006-08-01 08:15 -------- d-----w- c:\programmi\File comuni\Symantec Shared
2010-05-30 16:55 . 2008-01-14 15:27 -------- d-----w- c:\programmi\Norton Security Scan
2010-05-27 22:24 . 2010-03-03 10:06 443912 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\setup.exe
2010-05-27 15:02 . 2007-08-31 18:44 -------- d-----w- c:\programmi\DivX
2010-05-27 14:59 . 2009-09-12 10:45 -------- d-----w- c:\programmi\File comuni\DivX Shared
2010-05-17 22:36 . 2007-09-01 17:25 9004 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\wklnhst.dat
2010-05-16 12:15 . 2006-08-01 08:13 -------- d-----w- c:\programmi\Google
2010-05-12 09:21 . 2009-10-03 23:38 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-05-03 18:44 . 2007-09-09 16:07 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\DVD Shrink
2010-04-29 13:39 . 2008-10-29 17:20 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 13:39 . 2008-10-29 17:20 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-18 18:56 . 2009-12-21 23:49 -------- d-----w- c:\documents and settings\sony-pc\Dati applicazioni\BitTorrent
2010-04-13 10:49 . 2010-04-13 10:49 446464 ----a-w- c:\documents and settings\sony-pc\Impostazioni locali\Dati applicazioni\koagcosp.exe
2010-04-06 16:03 . 2010-04-06 16:02 -------- d-----w- c:\programmi\Veetle
2010-04-06 13:52 . 2008-08-13 15:24 -------- d-----w- c:\programmi\QuickTime
2010-04-02 13:10 . 2010-01-09 15:59 38784 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-03-31 21:55 . 2006-07-31 03:37 73958 ----a-w- c:\windows\system32\perfc010.dat
2010-03-31 21:55 . 2006-07-31 03:37 449782 ----a-w- c:\windows\system32\perfh010.dat
2010-03-31 21:54 . 2010-03-31 21:54 79488 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Sun\Java\jre1.6.0_19\gtapi.dll
2010-03-31 01:58 . 2008-11-20 19:19 44944 ----a-w- c:\windows\system32\drivers\pxhelp20.sys
2010-03-31 01:58 . 2007-08-31 18:44 133616 ------w- c:\windows\system32\pxafs.dll
2010-03-31 01:58 . 2006-08-01 08:03 125424 ------w- c:\windows\system32\pxinsi64.exe
2010-03-31 01:58 . 2006-08-01 08:03 123888 ------w- c:\windows\system32\pxcpyi64.exe
2010-03-26 08:33 . 2010-04-08 11:35 1496064 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
2010-03-26 08:33 . 2010-04-08 11:35 43008 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
2010-03-26 08:33 . 2010-04-08 11:35 339456 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll
2010-03-26 08:32 . 2010-04-08 11:35 346112 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll
2010-03-11 18:07 . 2010-03-11 18:07 8405312 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\gtb\GOOGLE_TOOLBAR\GoogleToolbarInstaller.exe
2010-03-11 18:07 . 2010-03-11 18:07 149000 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\chr_helper\LaunchHelper.exe
2010-03-11 18:07 . 2010-03-11 18:07 10309448 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\chr\ChromeInstaller.exe
2010-03-11 18:07 . 2010-03-11 18:07 79368 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\vista.exe
2010-03-11 18:07 . 2010-03-11 18:07 64000 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\gcapi_dll.dll
2010-03-11 18:07 . 2010-03-11 18:07 52288 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\gtapi.dll
2010-03-11 18:07 . 2010-03-11 18:07 50688 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\fftbapi.dll
2010-03-11 18:07 . 2010-03-11 18:07 49152 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\CarboniteCompatibility.dll
2010-03-11 18:07 . 2010-03-11 18:07 118784 ----a-w- c:\documents and settings\sony-pc\Dati applicazioni\Real\Update\setup3.10\RUP\inst_config\compat.dll
2010-03-10 06:15 . 2006-07-31 03:37 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-09 02:28 . 2010-01-02 16:58 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-03-08 17:59 . 2010-03-08 17:59 94208 ----a-w- c:\windows\system32\dpl100.dll
2008-01-16 17:17 . 2008-01-16 17:17 21504 ----a-w- c:\programmi\FLV PlayerRCATSetup.exe
2008-01-16 17:15 . 2008-01-16 17:10 411248 ----a-w- c:\programmi\FLV PlayerRCSetup.exe
2008-04-28 13:24 . 2007-10-06 13:56 122880 ----a-w- c:\programmi\mozilla firefox\components\GoogleDesktopMozilla.dll
2004-05-07 13:31 . 2007-08-30 18:01 348160 ----a-w- c:\programmi\mozilla firefox\components\MSVCR71.DLL
2006-11-07 10:58 . 2007-08-30 18:01 139264 ----a-r- c:\programmi\mozilla firefox\components\SABFF20.DLL
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\programmi\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 15:50 1197448 ----a-w- c:\programmi\Ask.com\GenericAskToolbar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\programmi\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\programmi\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BitTorrent DNA"="c:\programmi\DNA\btdna.exe" [2009-11-09 323392]
"DAEMON Tools Lite"="c:\programmi\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-05 68856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-05-08 7561216]
"Apoint"="c:\programmi\Apoint\Apoint.exe" [2004-11-17 118784]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-17 64512]
"Mouse Suite 98 Daemon"="ICO.EXE" [2002-03-14 45056]
"VAIOCameraUtility"="c:\programmi\Sony\VAIO Camera Utility\VCUServe.exe" [2005-12-27 69632]
"SonyPowerCfg"="c:\programmi\Sony\VAIO Power Management\SPMgr.exe" [2006-06-27 217088]
"ISBMgr.exe"="c:\programmi\Sony\ISB Utility\ISBMgr.exe" [2004-02-20 32768]
"Switcher.exe"="c:\programmi\Sony\Wireless Switch Setting Utility\Switcher.exe" [2006-02-14 176128]
"Acrobat Assistant 7.0"="c:\programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2005-03-03 483328]
"vsc32cnf.exe"="c:\programmi\Roland\VSC32\vsc32cnf.exe" [2000-02-07 36864]
"vscvol.exe"="c:\programmi\Roland\VSC32\vscvol.exe" [2000-02-08 36864]
"Google Desktop Search"="c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe" [2008-04-28 29744]
"H2O"="c:\programmi\SyncroSoft\Pos\H2O\cledx.exe" [2005-12-18 307200]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2008-11-04 413696]
"avgnt"="c:\programmi\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"VAIO Update 5"="c:\programmi\Sony\VAIO Update 5\VAIOUpdt.exe" [2009-12-08 1324400]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2010-02-02 198160]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]
"Adobe ARM"="c:\programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"DivXUpdate"="c:\programmi\DivX\DivX Update\DivXUpdate.exe" [2010-04-12 1135912]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"MySpaceIM"="c:\programmi\MySpace\IM\MySpaceIM.exe" [2008-12-12 9555968]
"Picasa Media Detector"="c:\programmi\Picasa2\PicasaMediaDetector.exe" [2008-02-26 443968]
"DWQueuedReporting"="c:\progra~1\FILECO~1\MICROS~1\DW\dwtrig20.exe" [2008-11-04 435096]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RealUpgradeHelper"="c:\programmi\File comuni\Real\Update_OB\upgrdhlp.exe" [2010-02-02 136744]
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Audio Filter.lnk - c:\programmi\Sony\SonicStage Mastering Studio\Audio Filter\SSMSFilter.exe [2007-8-28 5649408]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2006-03-09 12:51 73728 ----a-w- c:\windows\system32\VESWinlogon.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MIDI3"=vscapi.dll
"WAVE3"=vscapi.dll
"wave8"=fireface_mme.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Adobe\\Photoshop Elements 4.0\\AdobePhotoshopElementsMediaServer.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Sony\\VAIO Media 5.0\\Vc.exe"=
"c:\\WINDOWS\\system32\\mmc.exe"=
"c:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"c:\\Programmi\\DNA\\btdna.exe"=
"c:\\Programmi\\BitTorrent\\bittorrent.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\eMule AdunanzA\\eMule_AdnzA.exe"=
"c:\\Program Files\\Microprose\\Grand Prix 3\\gp3.exe"=
"c:\\Programmi\\MySpace\\IM\\MySpaceIM.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Programmi\\SopCast\\SopCast.exe"=
"c:\\Programmi\\SopCast\\adv\\SopAdver.exe"=
"c:\\Programmi\\TVAnts\\Tvants.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [31/08/2007 22.34.03 11264]
R2 Application Updater;Application Updater;c:\programmi\Application Updater\ApplicationUpdater.exe [16/12/2009 18.38.20 375296]
R2 MSSQL$VAIO_VEDB;MSSQL$VAIO_VEDB;c:\programmi\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB
c:\programmi\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe -sVAIO_VEDB
R2 RVIEGVST;VSC VST Engine;c:\programmi\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys [27/09/2007 14.12.48 188276]
R2 WinDefend;Windows Defender;c:\programmi\Windows Defender\MsMpEng.exe [03/11/2006 19.19.58 13592]
R3 CLEDX;Team H2O CLEDX service;c:\windows\system32\drivers\cledx.sys [31/08/2007 22.42.00 33792]
R3 SonyImgF;Sony Image Conversion Filter Driver;c:\windows\system32\drivers\SonyImgF.sys [31/07/2006 5.38.12 30080]
R3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [31/07/2006 5.38.10 808448]
R3 vsc32;Virtual Sound Canvas 3.2;c:\windows\system32\drivers\vsc.sys [27/09/2007 14.05.38 951284]
S2 gupdate1ca33964ea13d42;Servizio di Google Update (gupdate1ca33964ea13d42);c:\programmi\Google\Update\GoogleUpdate.exe [12/09/2009 12.46.19 133104]
S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO;c:\windows\system32\drivers\BUSB2902.sys [17/10/2009 22.18.19 352256]
S3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO;c:\windows\system32\drivers\busbwdm.sys [17/10/2009 22.18.21 33792]
S3 cc5f4ad3-754d-4552-8b24-413359a0fd24;cc5f4ad3-754d-4552-8b24-413359a0fd24;\??\f:\player\cds300.dll
f:\player\cds300.dll
S3 fireface;Service for Fireface (WDM);c:\windows\system32\drivers\fireface.sys
c:\windows\system32\drivers\fireface.sys
S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438;c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe [31/08/2007 20.36.57 29744]
S3 SQLAgent$VAIO_VEDB;SQLAgent$VAIO_VEDB;c:\programmi\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB
c:\programmi\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlagent.EXE -i VAIO_VEDB
S3 VUAgent;VUAgent;c:\programmi\Sony\VAIO Update 5\VUAgent.exe [02/01/2010 18.01.00 673136]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [11/11/2009 15.10.06 691696]
.
Contenuto della cartella 'Scheduled Tasks'
2010-04-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2007-08-29 10:34]
2010-06-01 c:\windows\Tasks\Google Software Updater.job
- c:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-08-30 18:41]
2010-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-09-12 10:45]
2010-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2009-09-12 10:45]
2010-06-01 c:\windows\Tasks\MP Scheduled Scan.job
- c:\programmi\Windows Defender\MpCmdRun.exe [2006-11-03 17:20]
2010-05-21 c:\windows\Tasks\Norton Security Scan.job
- c:\programmi\Norton Security Scan\Nss.exe [2007-09-18 22:42]
2010-05-27 c:\windows\Tasks\OGADaily.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 16:04]
2010-06-01 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAVerify.exe [2008-12-31 16:04]
2010-06-01 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\programmi\Ask.com\UpdateTask.exe [2010-02-04 15:50]
.
.
------- Scansione supplementare -------
.
uStart Page =
hxxp://it.ask.com?o=15003&l=disuSearchMigratedDefaultURL =
hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyServer = proxone:8080
uInternet Settings,ProxyOverride = hotspot;192;168;192;254;*.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Aggiungi sito di supporto RSS a VAIO Information FLOW - c:\programmi\Sony\VAIO Information FLOW\aiesc.html
IE: Apri in nuova scheda in primo piano - c:\programmi\Windows Live Toolbar\Components\it-it\msntabres.dll.mui/230?a71d97f80d544702a9200ca75133c563
IE: Apri in nuova scheda in secondo piano - c:\programmi\Windows Live Toolbar\Components\it-it\msntabres.dll.mui/229?a71d97f80d544702a9200ca75133c563
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
IE: Trasferimento tramite Image Converter 2 Plus - c:\programmi\Sony\Image Converter 2\menu.htm
Trusted Zone: sony-europe.com
Trusted Zone: sonystyle-europe.com
Trusted Zone: vaio-link.com
Handler: CDS300 - {AD43AA67-6860-4531-AC8A-0E68F9CF023E} -
FF - ProfilePath - c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\
FF - prefs.js: browser.search.defaulturl -
hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch
FF - prefs.js: browser.startup.homepage -
hxxp://en.wikipedia.org/wiki/List_of_Hi ... and_saintsFF - prefs.js: keyword.URL -
hxxp://websearch.ask.com/redirect?clien ... e=en_IT&q=FF - component: c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\sony-pc\Dati applicazioni\Mozilla\Firefox\Profiles\4braiout.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\components\RadioWMPCore.dll
FF - component: c:\programmi\Real\RealPlayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\programmi\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\programmi\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\programmi\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\programmi\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\programmi\Picasa2\npPicasa3.dll
FF - plugin: c:\programmi\Veetle\Player\npvlc.dll
FF - plugin: c:\programmi\Veetle\plugins\npVeetle.dll
FF - plugin: c:\programmi\Veetle\VLCBroadcast\npvbp.dll
---- FIREFOX POLICIES ----
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
HKLM-Run-SunJavaUpdateSched - c:\programmi\Java\jre6\bin\jusched.exe
HKLM-Run-SearchSettings - c:\programmi\Search Settings\SearchSettings.exe
AddRemove-akeqjcwa - c:\documents and settings\sony-pc\impostazioni locali\dati applicazioni\akeqjcwa.exe
AddRemove-DivX Content Uploader - c:\programmi\DivX\DivXContentUploaderUninstall.exe
AddRemove-FriendBot Suite - c:\programmi\FriendBot\FriendBot Suite\uninstall.exe
AddRemove-ReCycle v2.1 - c:\progra~1\Recycle\UNWISE.EXE
AddRemove-Steinberg Cubase SX v3.0.2.623 - c:\progra~1\STEINB~1\CUBASE~1\UNWISE.EXE
AddRemove-TC Native Bundle v3.1 - c:\progra~1\TCWorks\UNINST~1\UNWISE.EXE
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - c:\programmi\DivX\DivXCodecUninstall.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2010-06-01 17:05
Windows 5.1.2600 Service Pack 3 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
"0140211900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
- - - - - - - > 'winlogon.exe'(912)
c:\windows\system32\VESWinlogon.dll
.
Ora fine scansione: 2010-06-01 17:08:16
ComboFix-quarantined-files.txt 2010-06-01 15:08
ComboFix2.txt 2009-04-14 19:33
ComboFix3.txt 2009-04-14 17:18
Pre-Run: 9.393.319.936 byte disponibili
Post-Run: 11.568.230.400 byte disponibili
- - End Of File - - F61862E5A01110680D497024681DF02B