www.MegaLab.it

[CRYPAX]

ComboFix 10-07-24.06 - user 26/07/2010 17:53:07.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.39.1040.18.3067.2197 [GMT 2:00]
Eseguito da: c:\users\user\Downloads\ComboFix.exe
* Creato nuovo punto di ripristino
* Resident AV is active

.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\vbzlib1.dll

.
((((((((((((((((((((((((( Files Creati Da 2010-06-26 al 2010-07-26 )))))))))))))))))))))))))))))))))))
.

2010-07-26 15:59 . 2010-07-26 15:59 -------- d-----w- c:\users\user\AppData\Local\temp
2010-07-26 15:48 . 2010-07-26 15:49 -------- d-----w- C:\32788R22FWJFW
2010-07-26 15:43 . 2010-07-26 15:43 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-07-26 15:26 . 2010-07-26 15:43 16968 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-07-26 15:23 . 2010-07-26 15:43 -------- d-----w- c:\programdata\Hitman Pro
2010-07-26 15:23 . 2010-07-26 15:23 -------- d-----w- c:\program files\Hitman Pro 3.5
2010-07-25 17:17 . 2010-07-25 17:17 -------- d-----w- c:\program files\IObit
2010-07-25 13:59 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-07-25 13:59 . 2010-07-25 13:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-07-25 13:59 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-07-23 10:38 . 2010-07-23 10:38 -------- d-----w- c:\program files\Winamp Detect
2010-07-22 21:27 . 2010-07-22 21:27 -------- d-----w- c:\program files\Sandboxie
2010-07-21 15:02 . 2010-07-21 15:02 -------- d-----w- c:\users\user\AppData\Local\Sunbelt Software
2010-07-19 07:31 . 2010-07-19 07:31 -------- d-----w- c:\program files\Conduit
2010-07-19 07:31 . 2010-04-21 10:07 52224 ----a-w- c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\FFExternalAlert.dll
2010-07-19 07:31 . 2010-04-21 10:07 101376 ----a-w- c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\RadioWMPCore.dll
2010-07-13 18:57 . 2010-07-13 18:57 -------- d-----r- C:\Sandbox
2010-07-13 18:44 . 2010-07-20 18:20 71112 ----a-w- c:\programdata\Immunet\banner.dll
2010-07-13 18:44 . 2010-07-13 18:49 -------- d-----w- c:\users\user\AppData\Local\Immunet
2010-07-13 18:44 . 2010-07-13 18:44 -------- d-----w- c:\programdata\Immunet
2010-07-13 18:42 . 2010-07-21 15:17 -------- d-----w- c:\program files\Immunet Protect
2010-07-13 16:21 . 2010-07-13 16:23 -------- d-----w- c:\users\user\AppData\Roaming\QuickScan
2010-07-12 16:00 . 2010-07-12 16:00 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2010-07-10 17:22 . 2010-07-10 17:22 -------- d-----w- c:\program files\ESET
2010-07-10 11:49 . 2010-07-10 11:49 10134 ----a-r- c:\users\user\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2010-07-10 11:49 . 2010-07-10 11:49 -------- d-----w- c:\program files\Microsoft WSE
2010-07-10 11:37 . 2010-07-10 11:37 -------- d-----w- c:\program files\Electronic Arts
2010-07-04 17:42 . 2010-07-04 17:51 -------- d-----w- c:\program files\Google
2010-07-04 16:56 . 2010-07-04 16:56 -------- d-----w- c:\users\user\DoctorWeb
2010-07-04 13:55 . 2010-07-04 13:55 -------- d-----w- c:\program files\VS Revo Group
2010-07-04 13:38 . 2010-07-04 14:09 -------- d-----w- c:\users\user\AppData\Local\Lphant
2010-06-27 13:05 . 2010-06-27 13:06 -------- d-----w- c:\users\user\AppData\Roaming\calibre
2010-06-27 13:04 . 2010-06-27 13:05 -------- d-----w- c:\program files\Calibre2

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-26 08:07 . 2010-02-17 19:48 701426 ----a-w- c:\windows\system32\perfh010.dat
2010-07-26 08:07 . 2010-02-17 19:48 128740 ----a-w- c:\windows\system32\perfc010.dat
2010-07-26 08:02 . 2010-04-02 20:24 -------- d-----w- c:\users\user\AppData\Roaming\BitTorrent
2010-07-25 13:58 . 2010-04-25 22:28 -------- d-----w- c:\programdata\Lavasoft
2010-07-25 08:39 . 2010-04-06 08:37 -------- d-----w- c:\users\user\AppData\Roaming\vlc
2010-07-24 19:08 . 2010-06-22 15:29 -------- d-----w- c:\program files\Minilyrics
2010-07-23 19:09 . 2010-04-16 22:29 -------- d-----w- c:\programdata\Kaspersky Lab
2010-07-23 10:56 . 2010-04-02 20:33 -------- d-----w- c:\users\user\AppData\Roaming\Winamp
2010-07-23 10:38 . 2010-04-02 20:33 -------- d-----w- c:\program files\Winamp
2010-07-19 07:31 . 2010-04-02 20:03 -------- d-----w- c:\program files\Messenger Plus! Live
2010-07-17 12:22 . 2010-04-02 08:33 -------- d-----w- c:\programdata\Microsoft Help
2010-07-10 11:37 . 2010-04-02 15:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-07-04 11:01 . 2010-04-03 21:26 -------- d-----w- c:\programdata\G DATA
2010-07-04 10:59 . 2010-04-03 21:26 -------- d-----w- c:\program files\Common Files\G DATA
2010-07-04 10:13 . 2010-04-03 21:45 29992 ----a-w- c:\windows\system32\drivers\GRD.sys
2010-07-04 10:08 . 2010-04-03 21:28 61512 ----a-w- c:\windows\system32\drivers\MiniIcpt.sys
2010-07-04 10:08 . 2010-04-03 21:28 33480 ----a-w- c:\windows\system32\drivers\GDBehave.sys
2010-07-04 10:08 . 2010-04-03 21:27 40904 ----a-w- c:\windows\system32\drivers\gdwfpcd32.sys
2010-06-24 21:40 . 2010-04-08 19:33 -------- d-----w- c:\program files\Microsoft.NET
2010-06-22 14:17 . 2010-04-02 20:14 -------- d-----w- c:\program files\Songr
2010-06-22 13:00 . 2010-06-22 13:00 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2010-06-22 11:28 . 2010-06-22 11:28 -------- d-----w- c:\program files\SEGA
2010-06-21 21:16 . 2010-06-21 21:16 -------- d-----w- c:\programdata\Alwil Software
2010-06-19 07:05 . 2010-06-18 16:40 -------- d-----w- c:\users\user\AppData\Roaming\Teleca
2010-06-06 15:32 . 2010-06-06 15:32 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-03 02:41 . 2010-06-03 02:41 3600384 ----a-w- c:\windows\system32\GPhotos.scr
2010-05-29 21:40 . 2010-05-29 21:40 -------- d-----w- c:\program files\DsNET Corp
2010-05-29 11:48 . 2010-04-02 15:29 -------- d-----w- c:\program files\Acer
2010-05-29 08:26 . 2010-05-29 08:18 -------- d--h--w- c:\program files\Zero G Registry
2010-05-29 08:18 . 2010-05-29 08:18 -------- d-----w- c:\program files\Sports Interactive
2010-05-27 07:24 . 2010-06-09 06:01 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-05-27 03:49 . 2010-06-09 06:01 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-05-21 12:14 . 2010-04-02 08:09 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-05-21 05:18 . 2010-06-09 06:01 977920 ----a-w- c:\windows\system32\wininet.dll
2010-05-20 16:00 . 2010-05-20 16:00 68256 ----a-w- c:\programdata\Kaspersky Lab Setup Files\Kaspersky Internet Security 2011 11.0.0.232\Italian\setup.exe
2010-05-09 09:14 . 2010-06-23 04:03 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-05-09 09:14 . 2010-06-23 04:03 417792 ----a-w- c:\windows\system32\msdri.dll
2010-05-01 14:49 . 2010-06-09 06:02 2326528 ----a-w- c:\windows\system32\win32k.sys
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2010-07-04 398568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-04-02 200704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 13797920]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Servizio di Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 136176]
R3 EraserUtilDrvI9;EraserUtilDrvI9;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI9.sys [x]
R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-30 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-04-24 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
S1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [2010-04-25 95024]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-12-18 38240]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S3 k57nd60x;Gigabit Ethernet Broadcom NetXtreme - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2009-05-01 64032]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]

.
Contenuto della cartella 'Scheduled Tasks'

2010-07-26 c:\windows\Tasks\AWC Startup.job
- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2010-07-25 15:33]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 17:42]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 17:42]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-633374088-4001182803-702579871-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-26 20:12]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-633374088-4001182803-702579871-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-26 20:12]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://search.conduit.com?SearchSource= ... =CT2567691
uInternet Settings,ProxyOverride = local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: 0716E646F627F6 = 8.8.8.8,4.4.4.4
TCP: 4505D2C494E4B4F5346464438303 = 8.8.8.8,4.4.4.4
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.co ... 1.71.0.cab
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Messenger Plus Live Italy Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.it/firefox?client=fir ... t:official
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 2567691&q=
FF - component: c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\FFExternalAlert.dll
FF - component: c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\RadioWMPCore.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\npdeployJava1.dll
FF - plugin: c:\program files\Java\jre6\bin\npjpi160_20.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: c:\users\user\AppData\Local\Google\Update\1.2.183.29\npGoogleOneClick8.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

URLSearchHooks-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
BHO-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
Toolbar-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
AddRemove-Messenger_Plus_Live_Italy Toolbar - c:\progra~1\MESSEN~2\UNWISE.EXE


.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2010-07-26 18:01:37
ComboFix-quarantined-files.txt 2010-07-26 16:01

Pre-Run: 171.250.290.688 byte disponibili
Post-Run: 171.195.187.200 byte disponibili

- - End Of File - - 171AB6BDE78965EF4AC4AE7AC457A99B

mi analizzate xfavore questa log?? cè qualcosa che nn va? è un po' lunghetto, ma spero nel vostro aiuto

[crazy.cat]

E' stata rimossa una dll vbzlib1.dll che non è chiarissimo di cosa sia, sembra un rogue,.
Che problemi hai di preciso?
Una scansione con malwarebytes non fa mai male.

[CRYPAX]

innanzitutto permettimi di complimentarmi con te per il megatest degli antivirus, grandioso
comunque nessun problema di preciso
volevo analizzare x sicurezza il pc ed ho usato combofix
quindi sembra tt ok ?

grazie XD

[crazy.cat]

innanzitutto permettimi di complimentarmi con te per il megatest degli antivirus, grandioso

L'ultimo test non l'avevo fatto io ma fabrix.

C'è solo quella dll che è stata eliminata ma non si capisce bene a cosa appartenesse. Niente di buono ma non saprei di cosa si trattava.
Usa malwarebytes.

[gio!]

L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.

[CRYPAX]

L'ultimo test non l'avevo fatto io ma fabrix

allora chiedo scusa a fabrix
fatto una scansione completa con Malwarebytes e nn ha rilevato nulla
quindi credo di essere a posto
per il tempo dedicatomi

[CRYPAX]

L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.

mi ero dimentico di dirvi che avevo fatto una scansione con hijackthis
mi segnava in rosso proprio qll voce, ed io l'ho eliminata
comunque era di internet explorer... browser che nn mi sognerei mai di usare

[gio!]

L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.

mi ero dimentico di dirvi che avevo fatto una scansione con hijackthis
mi segnava in rosso proprio qll voce, ed io l'ho eliminata
comunque era di internet explorer... browser che non mi sognerei mai di usare

Si infatti ti avevo chiesto il log hijackthis proprio per fixarla da lì

[CRYPAX]

gio! ha scritto :
Si infatti ti avevo chiesto il log hijackthis proprio per fixarla da lì

per la segnalazione