Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Help me: non riesco ad installare antivirus...

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Help me: non riesco ad installare antivirus...

Messaggioda Ojo_Feliz » mar nov 23, 2010 5:48 pm

Ciao a tutti.
Ho riscontrato un problema piuttosto scocciante e girando per i motori di ricerca ho trovato il vostro forum.
Considerato che mi sembrate parecchio esperti ho deciso di affidarmi a voi [:)]

Ho sempre avuto come antivirus Avira e mi son trovato sempre parecchio bene...
Ora però da un po' di tempo c'è stato questo bisogno di installare la nuova versione perché mi ha detto che quella che avevo presto non sarebbe più stata supportata... E qui son iniziati i problemi.
perché non mi fa installare per nessun motivo la nuova versione dandomi questo errore:

Immagine

Mi hanno consigliato un procedimento che non è funzionato e il risultato è questo: al momento sono senza antivirus è c'è sempre un errore che mi impedisce di installarne di altri (ho provato anche AVG o Avast, ma nulla).
Qualcuno sa come potrei?
Vi ringrazio in anticipo... Spero davvero in un supporto, perché sta cosa mi sta facendo parecchio impazzire....


Aggiunto anche il risultato che mi ha HiJackThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17.48.52, on 23/11/2010
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16982)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\CPUID\HWMonitor\HWMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Softonic-IT Toolbar - {e3393495-8103-46a0-8181-270273eddd60} - C:\Program Files\Softonic-IT\tbSoft.dll
O1 - Hosts: ::1 localhost
O2 - BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Softonic-IT Toolbar - {e3393495-8103-46a0-8181-270273eddd60} - C:\Program Files\Softonic-IT\tbSoft.dll
O3 - Toolbar: Softonic-IT Toolbar - {e3393495-8103-46a0-8181-270273eddd60} - C:\Program Files\Softonic-IT\tbSoft.dll
O3 - Toolbar: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.EXE
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO DI RETE')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: eBay - {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?IT (file missing)
O9 - Extra button: PokerStars.it - {C4046502-6524-4d87-896C-878F57D1FF07} - C:\Program Files\PokerStars.IT\PokerStarsUpdate.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\utente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: IZRRESR - Unknown owner - C:\Users\utente\AppData\Local\Temp\IZRRESR.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: OUWFXC - Unknown owner - C:\Users\utente\AppData\Local\Temp\OUWFXC.exe (file missing)
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: QMWXMVKXCF - Unknown owner - C:\Users\utente\AppData\Local\Temp\QMWXMVKXCF.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Utilità di pianificazione di LiveUpdate automatico - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)

--
End of file - 9637 bytes



Un saluto e un ringraziamento anticipato,
Silvio
Avatar utente
Ojo_Feliz
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: mar nov 23, 2010 5:41 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda farbix89 » mar nov 23, 2010 6:03 pm

Il log è pulito,nessun malware.

Può non centrarci nulla,ma un problema simile l'ho avuto in uno dei miei articoli.

hai provato a disattivare temporaneamente Windows Update?

Se è in esecuzione e sta scaricando/installando gli aggiornamenti in background,può portare a questi inconvenienti.

Ovviamente lo riattiverai a installazione ultimata.

http://www.MegaLab.it/6303/3/pc-infetto ... ntervenire

Scorri la pagina fino alla sezione "Avira Antivir e modalità provvisoria"

Nel tuo caso non è necessario entrare in provvisoria,ma se hai ancora problemi puoi anche installare da lì [:)]
Avatar utente
farbix89
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 14093
Iscritto il: ven feb 13, 2009 10:09 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda crazy.cat » mar nov 23, 2010 6:14 pm

Ojo_Feliz ha scritto:al momento sono senza antivirus è c'è sempre un errore che mi impedisce di installarne di altri (ho provato anche AVG o Avast, ma nulla).

Hai usato qualche file proveniente dal mondo del P2P?
Mi basta un si o no come risposta.

Vedo che ci sono i rimasugli di tre servizi fasulli che erano sicuramente dei malware, quindi penso che il tuo pc abbia subito qualche infezione almeno in passato.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre


Re: Help me: non riesco ad installare antivirus...

Messaggioda Ojo_Feliz » mar nov 23, 2010 6:27 pm

farbix89 ha scritto:Il log è pulito,nessun malware.

Può non centrarci nulla,ma un problema simile l'ho avuto in uno dei miei articoli.

hai provato a disattivare temporaneamente Windows Update?

Se è in esecuzione e sta scaricando/installando gli aggiornamenti in background,può portare a questi inconvenienti.

Ovviamente lo riattiverai a installazione ultimata.

http://www.MegaLab.it/6303/3/pc-infetto ... ntervenire

Scorri la pagina fino alla sezione "Avira Antivir e modalità provvisoria"

Nel tuo caso non è necessario entrare in provvisoria,ma se hai ancora problemi puoi anche installare da lì [:)]



Ho provato, ma niente... Il problema rimane lo stesso.... [...]


crazy.cat ha scritto:
Ojo_Feliz ha scritto:al momento sono senza antivirus è c'è sempre un errore che mi impedisce di installarne di altri (ho provato anche AVG o Avast, ma nulla).

Hai usato qualche file proveniente dal mondo del P2P?
Mi basta un si o no come risposta.

Vedo che ci sono i rimasugli di tre servizi fasulli che erano sicuramente dei malware, quindi penso che il tuo pc abbia subito qualche infezione almeno in passato.


In maniera molto limitata, ma sì.....
Avatar utente
Ojo_Feliz
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: mar nov 23, 2010 5:41 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda crazy.cat » mar nov 23, 2010 7:08 pm

Ti volevo dire di usare findykill per rimuovere il probabile virus bagle che ti sarai preso, ma il sito ufficiale di findykill è scomparso.
Proviamo a vedere se combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe funziona, scaricalo e vedi se si avvia ed esegue la scansione.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: Help me: non riesco ad installare antivirus...

Messaggioda hashcat » mar nov 23, 2010 8:13 pm

crazy.cat ha scritto:Ti volevo dire di usare findykill per rimuovere il probabile virus bagle che ti sarai preso, ma il sito ufficiale di findykill è scomparso.
Proviamo a vedere se combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe funziona, scaricalo e vedi se si avvia ed esegue la scansione.

Il link per scaricare findykill è questo:
http://dl.commentcamarche.net/it.kioskea.net/download/files/Setup-5.051.exe

Si, effettivamente queste sono molto probabilmente traccie di infezioni:
Codice: Seleziona tutto
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\utente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O23 - Service: IZRRESR - Unknown owner - C:\Users\utente\AppData\Local\Temp\IZRRESR.exe (file missing)
O23 - Service: OUWFXC - Unknown owner - C:\Users\utente\AppData\Local\Temp\OUWFXC.exe (file missing)
O23 - Service: QMWXMVKXCF - Unknown owner - C:\Users\utente\AppData\Local\Temp\QMWXMVKXCF.exe (file missing)

I nomi dei file sembrano essere assegnati in modo casuale.
<<Intelligence is the ability to avoid doing work, yet getting the work done.>>
Linus Torvalds

EX [MLI] Power User.
Avatar utente
hashcat
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 2285
Iscritto il: lun ott 25, 2010 1:26 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda hashcat » mar nov 23, 2010 8:32 pm

hashcat ha scritto:Il link per scaricare findykill è questo:
http://dl.commentcamarche.net/it.kioskea.net/download/files/Setup-5.051.exe

Quello nel link sopra è un falso, quello buono di findykill rinominato in f0indme è questo:
http://dl.dropbox.com/u/13391898/f01ndme.exe
<<Intelligence is the ability to avoid doing work, yet getting the work done.>>
Linus Torvalds

EX [MLI] Power User.
Avatar utente
hashcat
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 2285
Iscritto il: lun ott 25, 2010 1:26 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda Ojo_Feliz » mar nov 23, 2010 8:47 pm

crazy.cat ha scritto:Ti volevo dire di usare findykill per rimuovere il probabile virus bagle che ti sarai preso, ma il sito ufficiale di findykill è scomparso.
Proviamo a vedere se combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe funziona, scaricalo e vedi se si avvia ed esegue la scansione.


L'ho usato e niente ancora....
Posto il log magari spiega qualcosa:

ComboFix 10-11-22.05 - utente 23/11/2010 20.09.59.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.39.1040.18.1013.295 [GMT 1:00]
Eseguito da: c:\users\utente\Downloads\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Outdated) {00260148-0053-0078-0000-000000002600}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00800000-EE64-0012-89BE-2B7778503477}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00800000-EE64-0012-89BE-A3777850AC77}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Outdated) {00249D08-8F40-0024-2E00-000008000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0015AFA8-8C50-0015-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0016AFA8-8C50-0016-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0017AFA8-8C50-0017-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0018AFA8-8C50-0018-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0019AFA8-8C50-0019-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001AAFA8-8C50-001A-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001BAFA8-8C50-001B-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001CAFA8-8C50-001C-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001DAFA8-8C50-001D-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001EAFA8-8C50-001E-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {001FAFA8-8C50-001F-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0020AFA8-8C50-0020-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0021AFA8-8C50-0021-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0022AFA8-8C50-0022-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0023AFA8-8C50-0023-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0024AFA8-8C50-0024-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0025AFA8-8C50-0025-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0026AFA8-8C50-0026-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0027AFA8-8C50-0027-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0028AFA8-8C50-0028-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0029AFA8-8C50-0029-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002AAFA8-8C50-002A-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002BAFA8-8C50-002B-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002CAFA8-8C50-002C-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002DAFA8-8C50-002D-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002EAFA8-8C50-002E-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {002FAFA8-8C50-002F-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0030AFA8-8C50-0030-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0031AFA8-8C50-0031-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0062AFA8-8C50-0062-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0063AFA8-8C50-0063-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Updated) {0064AFA8-8C50-0064-1200-000080000000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00142AE0-00C4-0014-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00152AE0-00C4-0015-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0015AE60-2AA8-0014-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0015AE70-2AB8-0014-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00162AE0-00C4-0016-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0016AE60-2AA8-0015-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0016AE70-2AB8-0015-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00172AE0-00C4-0017-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0017AE60-2AA8-0016-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0017AE70-2AB8-0016-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00182AE0-00C4-0018-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0018AE60-2AA8-0017-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0018AE70-2AB8-0017-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00192AE0-00C4-0019-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0019AE60-2AA8-0018-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0019AE70-2AB8-0018-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001A2AE0-00C4-001A-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001AAE60-2AA8-0019-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001AAE70-2AB8-0019-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001B2AE0-00C4-001B-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001BAE60-2AA8-001A-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001BAE70-2AB8-001A-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001C2AE0-00C4-001C-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001CAE60-2AA8-001B-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001CAE70-2AB8-001B-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001D2AE0-00C4-001D-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001DAE60-2AA8-001C-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001DAE70-2AB8-001C-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001E2AE0-00C4-001E-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001EAE60-2AA8-001D-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001EAE70-2AB8-001D-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001F2AE0-00C4-001F-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001FAE60-2AA8-001E-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {001FAE70-2AB8-001E-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00202AE0-00C4-0020-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0020AE60-2AA8-001F-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0020AE70-2AB8-001F-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00212AE0-00C4-0021-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0021AE60-2AA8-0020-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0021AE70-2AB8-0020-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00222AE0-00C4-0022-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0022AE60-2AA8-0021-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0022AE70-2AB8-0021-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00232AE0-00C4-0023-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0023AE60-2AA8-0022-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0023AE70-2AB8-0022-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00242AE0-00C4-0024-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0024AE60-2AA8-0023-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0024AE70-2AB8-0023-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00252AE0-00C4-0025-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0025AE60-2AA8-0024-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0025AE70-2AB8-0024-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00262AE0-00C4-0026-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0026AE60-2AA8-0025-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0026AE70-2AB8-0025-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00272AE0-00C4-0027-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0027AE60-2AA8-0026-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0027AE70-2AB8-0026-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00282AE0-00C4-0028-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0028AE60-2AA8-0027-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0028AE70-2AB8-0027-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00292AE0-00C4-0029-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0029AE60-2AA8-0028-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0029AE70-2AB8-0028-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002A2AE0-00C4-002A-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002AAE60-2AA8-0029-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002AAE70-2AB8-0029-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002B2AE0-00C4-002B-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002BAE60-2AA8-002A-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002BAE70-2AB8-002A-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002C2AE0-00C4-002C-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002CAE60-2AA8-002B-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002CAE70-2AB8-002B-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002D2AE0-00C4-002D-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002DAE60-2AA8-002C-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002DAE70-2AB8-002C-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002E2AE0-00C4-002E-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002EAE60-2AA8-002D-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002EAE70-2AB8-002D-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002F2AE0-00C4-002F-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002FAE60-2AA8-002E-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {002FAE70-2AB8-002E-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00302AE0-00C4-0030-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0030AE60-2AA8-002F-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0030AE70-2AB8-002F-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0031AE60-2AA8-0030-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0031AE70-2AB8-0030-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00612AE0-00C4-0061-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00622AE0-00C4-0062-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0062AE60-2AA8-0061-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0062AE70-2AB8-0061-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00632AE0-00C4-0063-0300-000000000001}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0063AE60-2AA8-0062-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0063AE70-2AB8-0062-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0064AE60-2AA8-0063-1300-000000010000}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0064AE70-2AB8-0063-1300-000000010000}
SP: AntiVir Desktop *disabled* (Outdated) {00260148-0053-0078-0000-000000002600}
SP: AntiVir Desktop *enabled* (Updated) {00800000-EE64-0012-89BE-2B7778503477}
SP: AntiVir Desktop *enabled* (Updated) {00800000-EE64-0012-89BE-A3777850AC77}
SP: Avira AntiVir PersonalEdition *disabled* (Outdated) {00249D08-8F40-0024-2E00-000008000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0015AFA8-8C50-0015-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0016AFA8-8C50-0016-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0017AFA8-8C50-0017-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0018AFA8-8C50-0018-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0019AFA8-8C50-0019-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001AAFA8-8C50-001A-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001BAFA8-8C50-001B-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001CAFA8-8C50-001C-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001DAFA8-8C50-001D-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001EAFA8-8C50-001E-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {001FAFA8-8C50-001F-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0020AFA8-8C50-0020-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0021AFA8-8C50-0021-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0022AFA8-8C50-0022-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0023AFA8-8C50-0023-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0024AFA8-8C50-0024-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0025AFA8-8C50-0025-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0026AFA8-8C50-0026-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0027AFA8-8C50-0027-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0028AFA8-8C50-0028-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0029AFA8-8C50-0029-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002AAFA8-8C50-002A-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002BAFA8-8C50-002B-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002CAFA8-8C50-002C-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002DAFA8-8C50-002D-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002EAFA8-8C50-002E-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {002FAFA8-8C50-002F-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0030AFA8-8C50-0030-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0031AFA8-8C50-0031-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0062AFA8-8C50-0062-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0063AFA8-8C50-0063-1200-000080000000}
SP: Avira AntiVir PersonalEdition *disabled* (Updated) {0064AFA8-8C50-0064-1200-000080000000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00142AE0-00C4-0014-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00152AE0-00C4-0015-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0015AE60-2AA8-0014-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0015AE70-2AB8-0014-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00162AE0-00C4-0016-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0016AE60-2AA8-0015-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0016AE70-2AB8-0015-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00172AE0-00C4-0017-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0017AE60-2AA8-0016-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0017AE70-2AB8-0016-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00182AE0-00C4-0018-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0018AE60-2AA8-0017-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0018AE70-2AB8-0017-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00192AE0-00C4-0019-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0019AE60-2AA8-0018-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0019AE70-2AB8-0018-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001A2AE0-00C4-001A-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001AAE60-2AA8-0019-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001AAE70-2AB8-0019-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001B2AE0-00C4-001B-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001BAE60-2AA8-001A-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001BAE70-2AB8-001A-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001C2AE0-00C4-001C-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001CAE60-2AA8-001B-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001CAE70-2AB8-001B-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001D2AE0-00C4-001D-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001DAE60-2AA8-001C-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001DAE70-2AB8-001C-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001E2AE0-00C4-001E-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001EAE60-2AA8-001D-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001EAE70-2AB8-001D-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001F2AE0-00C4-001F-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001FAE60-2AA8-001E-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {001FAE70-2AB8-001E-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00202AE0-00C4-0020-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0020AE60-2AA8-001F-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0020AE70-2AB8-001F-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00212AE0-00C4-0021-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0021AE60-2AA8-0020-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0021AE70-2AB8-0020-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00222AE0-00C4-0022-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0022AE60-2AA8-0021-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0022AE70-2AB8-0021-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00232AE0-00C4-0023-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0023AE60-2AA8-0022-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0023AE70-2AB8-0022-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00242AE0-00C4-0024-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0024AE60-2AA8-0023-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0024AE70-2AB8-0023-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00252AE0-00C4-0025-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0025AE60-2AA8-0024-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0025AE70-2AB8-0024-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00262AE0-00C4-0026-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0026AE60-2AA8-0025-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0026AE70-2AB8-0025-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00272AE0-00C4-0027-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0027AE60-2AA8-0026-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0027AE70-2AB8-0026-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00282AE0-00C4-0028-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0028AE60-2AA8-0027-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0028AE70-2AB8-0027-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00292AE0-00C4-0029-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0029AE60-2AA8-0028-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0029AE70-2AB8-0028-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002A2AE0-00C4-002A-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002AAE60-2AA8-0029-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002AAE70-2AB8-0029-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002B2AE0-00C4-002B-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002BAE60-2AA8-002A-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002BAE70-2AB8-002A-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002C2AE0-00C4-002C-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002CAE60-2AA8-002B-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002CAE70-2AB8-002B-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002D2AE0-00C4-002D-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002DAE60-2AA8-002C-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002DAE70-2AB8-002C-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002E2AE0-00C4-002E-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002EAE60-2AA8-002D-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002EAE70-2AB8-002D-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002F2AE0-00C4-002F-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002FAE60-2AA8-002E-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {002FAE70-2AB8-002E-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00302AE0-00C4-0030-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0030AE60-2AA8-002F-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0030AE70-2AB8-002F-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0031AE60-2AA8-0030-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0031AE70-2AB8-0030-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00612AE0-00C4-0061-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00622AE0-00C4-0062-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0062AE60-2AA8-0061-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0062AE70-2AB8-0061-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {00632AE0-00C4-0063-0300-000000000001}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0063AE60-2AA8-0062-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0063AE70-2AB8-0062-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0064AE60-2AA8-0063-1300-000000010000}
SP: Avira AntiVir PersonalEdition *enabled* (Updated) {0064AE70-2AB8-0063-1300-000000010000}
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
* Creato nuovo punto di ripristino
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\utente\AppData\Roaming\Desktopicon
c:\users\utente\AppData\Roaming\Desktopicon\eBay.ico
c:\users\utente\AppData\Roaming\Desktopicon\uninst.exe
c:\users\utente\AppData\Roaming\inst.exe
c:\windows\system32\uninstall.exe

.
((((((((((((((((((((((((( Files Creati Da 2010-10-23 al 2010-11-23 )))))))))))))))))))))))))))))))))))
.

2010-11-23 19:17 . 2010-11-23 19:17 -------- d-----w- c:\users\utente\AppData\Local\temp
2010-11-23 16:22 . 2010-11-23 16:23 -------- d-----w- c:\programdata\MFAData
2010-11-18 00:27 . 2010-11-18 00:27 -------- d-----w- c:\users\utente\AppData\Local\Sports Interactive
2010-11-17 00:21 . 2010-11-17 00:21 -------- d--h--w- c:\users\utente\InstallAnywhere
2010-11-14 18:16 . 2010-11-14 18:16 0 ----a-w- c:\windows\system32\nsnFCB7.tmp
2010-11-10 00:59 . 2010-11-10 00:59 -------- d-----w- c:\users\utente\fontconfig
2010-11-10 00:58 . 2010-11-10 01:03 -------- d-----w- c:\users\utente\.smplayer
2010-11-10 00:57 . 2010-11-10 00:57 -------- d-----w- c:\program files\SMPlayer
2010-11-10 00:35 . 2010-11-10 00:41 -------- d-----w- c:\program files\GRETECH

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-20 13:02 . 2010-10-20 13:02 0 ----a-w- c:\windows\system32\REN31DA.tmp
2010-08-27 23:26 . 2010-08-27 23:26 0 ----a-w- c:\windows\system32\nsq8642.tmp
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{e3393495-8103-46a0-8181-270273eddd60}"= "c:\program files\Softonic-IT\tbSoft.dll" [2010-06-03 2736736]

[HKEY_CLASSES_ROOT\clsid\{e3393495-8103-46a0-8181-270273eddd60}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e3393495-8103-46a0-8181-270273eddd60}]
2010-06-03 16:24 2736736 ----a-w- c:\program files\Softonic-IT\tbSoft.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{e3393495-8103-46a0-8181-270273eddd60}"= "c:\program files\Softonic-IT\tbSoft.dll" [2010-06-03 2736736]

[HKEY_CLASSES_ROOT\clsid\{e3393495-8103-46a0-8181-270273eddd60}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{E3393495-8103-46A0-8181-270273EDDD60}"= "c:\program files\Softonic-IT\tbSoft.dll" [2010-06-03 2736736]

[HKEY_CLASSES_ROOT\clsid\{e3393495-8103-46a0-8181-270273eddd60}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2006-12-13 554640]
"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2006-12-15 577536]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-14 1348904]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-10-28 72736]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-12-07 81920]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2006-12-07 90191]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-12-07 7766016]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-10-11 62760]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-11 133656]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-11 166424]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-11 141848]
"RtHDVCpl"="RtHDVCpl.exe" [2006-11-07 3772416]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2007-11-16 91432]
"NDSTray.exe"="NDSTray.exe" [BU]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-994293184-3325729458-3634486379-1000]
"EnableNotificationsRef"=dword:00000001

R2 gupdate;Servizio di Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-14 135664]
R3 IZRRESR;IZRRESR;c:\users\utente\AppData\Local\Temp\IZRRESR.exe [x]
R3 OUWFXC;OUWFXC;c:\users\utente\AppData\Local\Temp\OUWFXC.exe [x]
R3 QMWXMVKXCF;QMWXMVKXCF;c:\users\utente\AppData\Local\Temp\QMWXMVKXCF.exe [x]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2006-11-02 22016]
S3 FwLnk;FwLnk Driver;c:\windows\system32\DRIVERS\FwLnk.sys [2006-11-19 7168]
S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2009-05-29 4233728]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contenuto della cartella 'Scheduled Tasks'

2010-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-14 14:34]

2010-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-14 14:34]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uInternet Settings,ProxyOverride = local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?IT
IE: {{C4046502-6524-4d87-896C-878F57D1FF07} - c:\program files\PokerStars.IT\PokerStarsUpdate.exe
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\utente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
FF - ProfilePath - c:\users\utente\AppData\Roaming\Mozilla\Firefox\Profiles\klw3rsbk.default\
FF - prefs.js: browser.search.selectedEngine - Dicios.com
FF - prefs.js: browser.startup.homepage - hxxp://www.sportinglife.com/
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\npjpi160_22.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\TVUPlayer\npTVUAx.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll
FF - plugin: c:\program files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
FF - plugin: c:\users\utente\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKCU-Run-TOSCDSPD - TOSCDSPD.EXE
HKCU-Run-IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
HKLM-Run-SmoothView - %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
HKLM-Run-TPwrMain - %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-00TCrdMain - %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-HSON - %ProgramFiles%\TOSHIBA\TBS\HSON.exe
AddRemove-eBay Icon - c:\users\utente\AppData\Roaming\Desktopicon\uninst.exe
AddRemove-FM 2010 English Kits Install - c:\users\utente\Documents\Sports Interactive\Football Manager 2010\Graphics\Kits\Uninstal.exe
AddRemove-{7B63B2922B174135AFC0E1377DD81EC2} - c:\program files\DivX\DivXCodecUninstall.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-23 20:17
Windows 6.0.6000 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
Ora fine scansione: 2010-11-23 20:20:26
ComboFix-quarantined-files.txt 2010-11-23 19:20

Pre-Run: 56.889.520.128 byte disponibili
Post-Run: 56.846.995.456 byte disponibili

- - End Of File - - E65C977A6A29B998263BB59023B1501C



Peraltro mi ha dato ora un nuovo problema: per ogni cosa che apro torna a chiedermi l'autorizzazione... Essendo un pc che uso solo io, questa cosa l'avevo tolto solo che ora non ricordo come disattivarla....


hashcat ha scritto:
hashcat ha scritto:Il link per scaricare findykill è questo:
http://dl.commentcamarche.net/it.kioskea.net/download/files/Setup-5.051.exe

Quello nel link sopra è un falso, quello buono di findykill rinominato in f0indme è questo:
http://dl.dropbox.com/u/13391898/f01ndme.exe


Ciao...
Intanto ti ringrazio [:)]
Il programma però mi permette solo l'operazione "Deletion". In tutte le altre mi dà "accesso negato"......
Avatar utente
Ojo_Feliz
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: mar nov 23, 2010 5:41 pm

Re: Help me: non riesco ad installare antivirus...

Messaggioda FDAC » mer nov 24, 2010 12:20 pm

Start - Esegui e digita: notepad.exe
● clicca Ok
copia le righe qui sotto, senza saltarne nessuna:

File::
c:\windows\system32\REN31DA.tmp
c:\windows\system32\nsq8642.tmp
c:\windows\system32\nsnFCB7.tmp

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

● le incolli all'interno dell'editor di testo Notepad
● clicca in alto su File
● nel menù che vedi scegli Salva con nome
● controlla che in alto, dove c'è scritto Salva in, sia selezionato Desktop
● in Nome file se trovi selezionato .txt lo cancelli, e scrivi CFScript.txt
● clicca Salva
● adesso, sul Desktop, trovi il file di testo
● con il tasto sinistro del mouse, lo trascini sopra l'icona di Combofix, lo rilasci, e parte la scansione di Combofix
non toccare più ne' mouse ne' tastiera, finche' non è finita
● se il sistema non si riavvia da solo, riavvialo tu
● a questo punta allega il log di Combofix

Per allegare il log utilizza questo servizio di upload: http://wikisend.com
e, pubblica il Forumlink che verrà rilasciato dopo il caricamento del file.

******************************
Sebbene la procedura di utilizzare un servizio di upload esterno non sia errata, si consiglia di allegare i LOG utilizzando il tag MEMO.
Qualora il log fosse troppo lungo, lo stesso andrà diviso in più parti.
******************************


POI

Scarica ed installa Malwarebytes' Anti-Malware Free Version: http://www.malwarebytes.org
● alla richiesta di aggiornamento delle definizioni consenti l'aggiornamento
● clicca sul tasto scansiona ed esegui una scansione completa
● se vengono rilevate infezioni, eliminale
● al termine della scansione verrà rilasciato un log: salvalo sul Desktop perché lo dovrai allegare

Per allegare il log utilizza questo servizio di upload: http://wikisend.com
e, pubblica il Forumlink che verrà rilasciato dopo il caricamento del file.

******************************
Sebbene la procedura di utilizzare un servizio di upload esterno non sia errata, si consiglia di allegare i LOG utilizzando il tag MEMO.
Qualora il log fosse troppo lungo, lo stesso andrà diviso in più parti.
******************************


Fai sapere come va il PC, dopo averlo riavviato.
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 11 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising