ComboFix 09-10-26.06 - Beppe 31/10/2009 8.37.16.11.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.39.1040.18.511.192 [GMT 1:00]
Eseguito da: c:\documents and settings\Beppe\Desktop\aab.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
AV: VIRUSfighter ver. 5.99 *On-access scanning enabled* (Updated) {EB9EFB40-AE72-4C43-B204-0FCD0E92D5F1}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Trend Micro PC-cillin Internet Security *enabled* {3E790E9E-6A5D-4303-A7F9-185EC20F3EB6}
.
((((((((((((((((((((((((( Files Creati Da 2009-09-28 al 2009-10-31 )))))))))))))))))))))))))))))))))))
.
2009-10-31 07:31 . 2009-10-31 07:32 -------- d-----w- C:\aab
2009-10-30 17:18 . 2008-05-29 08:28 28416 ----a-w- c:\windows\system32\uxtuneup.dll
2009-10-30 17:18 . 2009-10-30 17:18 355584 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2009-10-30 17:17 . 2009-10-30 17:17 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\TuneUp Software
2009-10-30 17:16 . 2009-10-30 17:16 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\TuneUp Software
2009-10-30 17:15 . 2009-10-30 17:20 -------- d-----w- c:\programmi\TuneUp Utilities 2008
2009-10-30 17:12 . 2009-10-30 17:12 -------- d-----w- c:\programmi\File comuni\Wise Installation Wizard
2009-10-29 19:45 . 2009-10-29 19:46 -------- d-----w- C:\FindyKill
2009-10-29 19:16 . 2009-10-29 19:16 -------- d-----w- c:\programmi\Trend Micro
2009-10-28 19:04 . 2009-10-28 19:04 44288 ----a-w- c:\windows\system32\drivers\viragtlt.sys
2009-10-28 18:10 . 2009-10-28 18:10 604140 --sha-w- c:\windows\system32\drivers\ISwift3.dat
2009-10-28 18:07 . 2009-10-28 18:22 108059 ----a-w- c:\windows\system32\drivers\klin.dat
2009-10-28 18:07 . 2009-10-28 18:22 95259 ----a-w- c:\windows\system32\drivers\klick.dat
2009-10-28 18:04 . 2009-10-31 08:03 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab
2009-10-28 18:04 . 2009-10-28 18:04 -------- d-----w- c:\programmi\Kaspersky Lab
2009-10-27 19:13 . 2008-07-08 12:54 148496 ----a-w- c:\windows\system32\drivers\37837622.sys
2009-10-27 17:07 . 2008-07-08 12:54 148496 ----a-w- c:\windows\system32\drivers\99745568.sys
2009-10-27 16:38 . 2008-07-08 12:54 148496 ----a-w- c:\windows\system32\drivers\54650354.sys
2009-10-27 16:36 . 2009-10-27 16:36 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\CrystalIdea Software
2009-10-27 16:29 . 2009-10-27 16:29 -------- d-----w- c:\programmi\Uninstall Tool
2009-10-27 16:28 . 2009-10-29 21:35 22060 -c--a-w- c:\windows\system32\dllcache\npds.zip
2009-10-27 16:28 . 2009-10-29 21:36 403 -c--a-w- c:\windows\system32\dllcache\npdrmv2.zip
2009-10-27 16:16 . 2009-10-27 16:17 -------- d-----w- C:\abc13308a
2009-10-26 21:30 . 2009-10-26 21:30 -------- d-----w- c:\programmi\Codyssey
2009-10-26 21:21 . 2009-10-26 21:24 -------- d-----w- c:\documents and settings\Beppe\Impostazioni locali\Dati applicazioni\Eraser
2009-10-26 21:17 . 2009-06-10 13:22 83344 ----a-w- c:\windows\system32\Erasext.dll
2009-10-26 21:17 . 2009-06-10 13:22 307088 ----a-w- c:\windows\system32\Eraser.dll
2009-10-26 21:17 . 2009-06-10 13:22 73104 ----a-w- c:\windows\system32\Eraserl.exe
2009-10-26 19:29 . 2009-10-26 19:29 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Martau
2009-10-24 19:09 . 2008-07-08 12:54 148496 ----a-w- c:\windows\system32\drivers\07980805.sys
2009-10-17 10:44 . 2009-10-17 10:48 -------- d-----w- c:\programmi\XP TCPIP Repair
2009-10-17 08:26 . 2009-10-17 08:26 -------- d-----w- c:\documents and settings\Default User\Impostazioni locali\Dati applicazioni\Microsoft Help
2009-10-14 17:47 . 2009-10-14 17:47 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\Malwarebytes
2009-10-14 17:47 . 2009-10-14 17:47 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-10-14 17:41 . 2009-10-31 08:03 85542944 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-10-14 17:36 . 2009-10-27 18:01 14848 -c--a-w- c:\windows\system32\dllcache\register.exe.REN
2009-10-14 14:07 . 2009-10-14 14:07 -------- d-----w- C:\QUARANTENA_VIRIT
2009-10-13 20:25 . 2009-10-13 20:25 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\Desktop Maestro
2009-10-13 20:24 . 2009-10-23 06:59 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-10-11 10:25 . 2009-10-11 10:34 -------- d-----w- C:\abc
2009-10-10 14:54 . 2009-10-10 14:54 -------- d-----w- c:\programmi\MIKSOFT
2009-10-10 11:57 . 2009-10-11 12:41 -------- d-----w- c:\programmi\Lphant
2009-10-09 15:56 . 2009-10-11 12:24 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2009-10-09 15:38 . 2009-10-09 15:38 -------- d-----w- c:\documents and settings\Beppe\Impostazioni locali\Dati applicazioni\PackageAware
2009-10-09 13:33 . 2009-10-09 13:33 -------- d-----w- c:\documents and settings\Beppe\DoctorWeb
2009-10-09 05:28 . 2009-10-09 15:09 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Norton
2009-10-09 05:28 . 2009-10-09 05:28 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Symantec
2009-10-09 05:28 . 2009-10-09 05:28 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\NortonInstaller
2009-10-07 22:15 . 2009-10-07 22:15 -------- d-----w- c:\programmi\NOS
2009-10-07 20:27 . 2009-10-07 20:27 -------- d-----w- c:\windows\system32\wbem\Repository
2009-10-07 20:26 . 2009-10-07 20:26 -------- d-----w- c:\programmi\K-Lite Codec Pack
2009-10-07 20:26 . 2009-10-07 20:26 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\DivX
2009-10-07 20:26 . 2009-10-07 20:26 -------- d-----w- c:\programmi\Codec Pack - All In 1
2009-10-07 20:25 . 2009-10-07 20:25 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\ATI
2009-10-07 20:22 . 2009-10-07 20:22 -------- d--h--w- c:\documents and settings\All Users\Dati applicazioni\{FCCD3ACF-B2F9-4087-B2A4-0DB5FADB9C32}
2009-10-07 20:22 . 2009-10-07 20:26 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\McAfee Security Scan
2009-10-06 21:42 . 2009-10-07 20:22 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\NOS(4)
2009-10-06 20:51 . 2009-10-07 20:59 -------- d-----w- c:\programmi\Mozilla Firefox(2)
2009-10-06 20:28 . 2009-10-06 20:28 0 ----a-w- c:\windows\nsreg.dat
2009-10-06 20:28 . 2009-10-06 20:28 -------- d-----w- c:\documents and settings\Beppe\Impostazioni locali\Dati applicazioni\Mozilla
2009-10-06 09:46 . 2009-10-07 20:26 -------- d-----w- c:\programmi\K-Lite Codec Pack(2)
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-31 07:59 . 2009-10-14 17:41 1003784 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-10-28 18:01 . 2009-01-19 19:33 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab Setup Files
2009-10-27 15:57 . 2008-10-16 17:58 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\uTorrent
2009-10-27 15:41 . 2001-08-31 12:00 91962 ----a-w- c:\windows\system32\perfc010.dat
2009-10-27 15:41 . 2001-08-31 12:00 505964 ----a-w- c:\windows\system32\perfh010.dat
2009-10-24 09:20 . 2009-10-13 14:23 241664 ----a-w- c:\documents and settings\NetworkService\NTUSER.DAT.TMP
2009-10-24 09:20 . 2009-10-12 12:31 32422 ----a-w- c:\windows\SchedLgU.Txt.TMP
2009-10-24 09:20 . 2009-10-12 12:31 262144 ----a-w- c:\documents and settings\LocalService\NTUSER.DAT.TMP
2009-10-24 09:20 . 2009-10-12 12:31 1024 ----a-w- c:\documents and settings\Beppe\ntuser.dat.LOG.TMP
2009-10-22 08:19 . 2009-10-12 12:31 1024 ----a-w- c:\documents and settings\Beppe\NTUSER~1.LOG.TMP
2009-10-22 08:18 . 2009-10-18 17:29 786432 ----a-w- c:\documents and settings\Administrator\ntuser.dat.TMP
2009-10-19 12:18 . 2009-09-08 21:36 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\DriverScanner
2009-10-17 18:02 . 2008-09-05 16:15 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-10-13 20:14 . 2009-02-22 17:46 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Trend Micro
2009-10-12 16:34 . 2008-11-13 14:58 -------- d-----w- c:\programmi\Softwin
2009-10-12 16:34 . 2008-11-13 14:55 -------- d-----w- c:\programmi\File comuni\Softwin
2009-10-08 17:39 . 2008-10-31 13:41 -------- d-----w- c:\programmi\Windows Live Safety Center
2009-10-07 22:17 . 2009-09-30 10:17 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\NOS
2009-10-07 20:23 . 2009-09-16 17:35 -------- dc-h--w- c:\documents and settings\All Users\Dati applicazioni\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2009-10-07 20:22 . 2009-09-08 21:18 -------- dc-h--w- c:\documents and settings\All Users\Dati applicazioni\{C4C0E335-EDDF-46A0-A57D-F3802AE44275}
2009-10-06 21:35 . 2008-09-15 20:28 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\Vso
2009-10-01 11:21 . 2008-11-21 10:40 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\Datalayer
2009-09-16 18:12 . 2008-09-10 06:39 -------- d-----w- c:\programmi\ATI Technologies
2009-09-16 17:39 . 2008-09-23 20:53 -------- d-----w- c:\programmi\Uniblue
2009-09-16 17:01 . 2009-09-16 17:01 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Uniblue
2009-09-16 16:59 . 2008-09-23 20:53 -------- d-----w- c:\documents and settings\Beppe\Dati applicazioni\Uniblue
2009-09-15 17:56 . 2009-09-15 17:56 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\McAfee
2009-09-11 14:17 . 2001-08-31 12:00 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 07:52 . 2009-09-02 17:49 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Trymedia
2009-09-09 07:51 . 2009-09-08 21:48 -------- dc----w- c:\documents and settings\All Users\Dati applicazioni\{8A09CD83-59E1-4DB1-AAFC-E25174FC6706}
2009-09-09 07:51 . 2009-09-08 21:49 -------- dc----w- c:\documents and settings\All Users\Dati applicazioni\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2009-09-09 07:51 . 2009-09-09 07:51 867336 ----a-w- c:\documents and settings\LocalService\Impostazioni locali\Dati applicazioni\FontCache3.0.0.0.dat
2009-09-04 21:03 . 2001-08-31 12:00 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 07:56 . 2001-08-31 12:00 916480 ------w- c:\windows\system32\wininet.dll
2009-08-26 08:00 . 2001-08-31 12:00 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-17 21:33 . 2009-08-17 21:33 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-06 17:24 . 2008-09-05 14:26 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 17:24 . 2008-09-05 14:26 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 17:24 . 2008-09-05 14:26 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 17:24 . 2008-09-05 14:26 35552 ----a-w- c:\windows\system32\wups(2)(3).dll
2009-08-06 17:24 . 2007-07-30 17:19 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 17:24 . 2007-07-30 17:19 44768 ----a-w- c:\windows\system32\wups2(2)(3).dll
2009-08-06 17:24 . 2008-09-05 13:59 53472 ------w- c:\windows\system32\wuauclt.exe
2009-08-06 17:24 . 2001-08-31 12:00 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 17:23 . 2008-09-05 14:26 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 17:23 . 2008-09-06 15:49 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-06 17:23 . 2008-09-05 13:59 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-06 17:23 . 2008-07-18 20:07 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-05 08:59 . 2001-08-31 12:00 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 20:56 . 2001-08-31 12:00 2192896 ------w- c:\windows\system32\ntoskrnl.exe
2009-08-04 17:26 . 2001-08-30 21:33 2069760 ------w- c:\windows\system32\ntkrnlpa.exe
.
((((((((((((((((((((((((((((( SnapShot_2009-10-27_19.02.28 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-03 14:45 . 2009-07-03 14:45 27507 c:\windows\system32\drivers\klopp.dat
+ 2009-05-16 19:59 . 2009-05-16 19:59 19472 c:\windows\system32\drivers\klmouflt.sys
+ 2009-05-13 16:46 . 2009-05-13 16:46 31760 c:\windows\system32\drivers\klim5.sys
+ 2008-12-15 19:41 . 2008-12-15 19:41 33808 c:\windows\system32\drivers\klbg.sys
+ 2008-09-05 14:06 . 2009-10-28 16:31 14848 c:\windows\system32\dllcache\register.exe
- 2008-09-05 14:06 . 2009-10-27 18:01 14848 c:\windows\system32\dllcache\register.exe
+ 2009-07-11 23:02 . 2009-07-11 23:02 159032 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\atl90.dll
+ 2009-07-03 14:48 . 2009-07-03 14:48 219664 c:\windows\system32\klogon.dll
+ 2009-10-28 18:03 . 2009-10-28 18:03 296976 c:\windows\system32\drivers\klif.sys
+ 2009-06-15 13:01 . 2009-06-15 13:01 128016 c:\windows\system32\drivers\kl1.sys
+ 2009-10-28 04:24 . 2009-10-28 04:24 195584 c:\windows\Installer\20e1da0.msi
+ 2009-10-30 17:17 . 2009-10-30 17:17 2563072 c:\windows\Installer\ae522b.msi
+ 2009-10-28 18:07 . 2009-10-28 18:07 3401216 c:\windows\Installer\5dfa7b.msi
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PcSync"="c:\programmi\Nokia\Nokia PC Suite 6\PcSync2.exe" [2006-06-27 1449984]
"Uniblue RegistryBooster 2"="c:\programmi\Uniblue\RegistryBooster 2\RegistryBooster.exe" [2008-01-10 1885464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpeedTouch USB Diagnostics"="c:\programmi\Thomson\SpeedTouch USB\Dragdiag.exe" [2003-09-05 878080]
"ATIPTA"="c:\programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-08-25 339968]
"ATICCC"="c:\programmi\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-13 15360]
c:\documents and settings\Beppe\Menu Avvio\Programmi\Esecuzione automatica\
is-H6EI7.lnk - c:\documents and settings\Beppe\Desktop\Virus Removal Tool2\is-H6EI7\startup.exe [2009-10-27 65536]
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
WinZip Quick Pick.lnk - c:\programmi\WinZip\WZQKPICK.EXE [2008-9-9 525664]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^McAfee Security Scan.lnk]
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Programmi\\SopCast\\adv\\SopAdver.exe"=
"c:\\Programmi\\SopCast\\SopCast.exe"=
"c:\\Programmi\\File comuni\\Nokia\\Service Layer\\A\\nsl_host_process.exe"=
"c:\\Programmi\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"=
"c:\\Programmi\\Lphant\\eLePhantClient.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"55556:UDP"= 55556:UDP:UDP
"55555:TCP"= 55555:TCP:TCP
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [15/12/2008 20.41.32 33808]
R1 is-CPSHNdrv;is-CPSHNdrv;c:\windows\system32\drivers\54650354.sys [27/10/2009 17.38.22 148496]
R1 is-H6EI7drv;is-H6EI7drv;c:\windows\system32\drivers\37837622.sys [27/10/2009 20.13.00 148496]
R1 is-LLM70drv;is-LLM70drv;c:\windows\system32\drivers\07980805.sys [24/10/2009 20.09.41 148496]
R1 is-R58B8drv;is-R58B8drv;c:\windows\system32\drivers\99745568.sys [27/10/2009 18.07.46 148496]
R2 ousbehci;OrangeWare USB Enhanced Host Controller Service;c:\windows\system32\drivers\ousbehci.sys [05/09/2008 15.13.18 45440]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [13/05/2009 17.46.52 31760]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [16/05/2009 20.59.44 19472]
R3 ousb2hub;OrangeWare USB 2.0 Root Hub Support;c:\windows\system32\drivers\ousb2hub.sys [05/09/2008 15.13.18 56960]
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys
c:\windows\system32\drivers\pavboot.sys
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [19/01/2009 16.47.21 138112]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [19/01/2009 16.47.24 8320]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\f:\ntglm7x.sys
f:\NTGLM7X.sys
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contenuto della cartella 'Scheduled Tasks'
2009-10-25 c:\windows\Tasks\Uniblue SpeedUpMyPC Nag.job
- c:\programmi\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe [2009-09-14 08:13]
2009-09-14 c:\windows\Tasks\Uniblue SpeedUpMyPC.job
- c:\programmi\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe [2009-09-14 08:13]
2009-10-28 c:\windows\Tasks\Uniblue SpyEraser Nag.job
- c:\programmi\Uniblue\SpyEraser\SpyEraser.exe [2009-09-16 13:44]
2009-09-16 c:\windows\Tasks\Uniblue SpyEraser.job
- c:\programmi\Uniblue\SpyEraser\SpyEraser.exe [2009-09-16 13:44]
2009-10-31 c:\windows\Tasks\User_Feed_Synchronization-{5E3EABF5-93D7-4BDA-8F12-80749F258036}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
2009-10-31 c:\windows\Tasks\Verifica e correzione automatica.job
- c:\programmi\TuneUp Utilities 2008\OneClickStarter.exe [2008-06-20 08:27]
.
.
------- Scansione supplementare -------
.
uStart Page =
hxxp://www.libero.it/IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Beppe\Dati applicazioni\Mozilla\Firefox\Profiles\ie1iw790.default\
FF - prefs.js: browser.startup.homepage -
hxxp://www.google.it/FF - component: c:\programmi\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll
FF - plugin: c:\documents and settings\Beppe\Dati applicazioni\Mozilla\Firefox\Profiles\ie1iw790.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-10-31 09:02
Windows 5.1.2600 Service Pack 3 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------