Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

rallentamento pc: c'è qualcosa di strano mel gmer?

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

rallentamento pc: c'è qualcosa di strano mel gmer?

Messaggioda djlino » dom feb 25, 2007 5:19 pm

GMER 1.0.12.12027 - http://www.gmer.net
Rootkit scan 2007-02-25 16:16:41
Windows 5.1.2600 Service Pack 2


---- System - GMER 1.0.12 ----

SSDT 8411A280 ZwAlertResumeThread
SSDT 8426B7D0 ZwAlertThread
SSDT 84263508 ZwAllocateVirtualMemory
SSDT 8411F0B0 ZwConnectPort
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwCreateKey
SSDT 84112858 ZwCreateMutant
SSDT 84207190 ZwCreateThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteKey
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteValueKey
SSDT sptd.sys ZwEnumerateKey
SSDT sptd.sys ZwEnumerateValueKey
SSDT 8426B050 ZwFreeVirtualMemory
SSDT 84119BE8 ZwImpersonateAnonymousToken
SSDT 84119D28 ZwImpersonateThread
SSDT 8412DC50 ZwMapViewOfSection
SSDT 83DCE3E8 ZwOpenEvent
SSDT sptd.sys ZwOpenKey
SSDT 841DF160 ZwOpenProcessToken
SSDT 8418D1E8 ZwOpenThreadToken
SSDT sptd.sys ZwQueryKey
SSDT sptd.sys ZwQueryValueKey
SSDT 8426F0B0 ZwResumeThread
SSDT 841881B8 ZwSetContextThread
SSDT 841AD3A0 ZwSetInformationProcess
SSDT 841871F0 ZwSetInformationThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwSetValueKey
SSDT 84321F38 ZwSuspendProcess
SSDT 84175A00 ZwSuspendThread
SSDT 84248E50 ZwTerminateProcess
SSDT 84272910 ZwTerminateThread
SSDT 841D1008 ZwUnmapViewOfSection
SSDT 8411E130 ZwWriteVirtualMemory

---- Kernel code sections - GMER 1.0.12 ----

.text USBPORT.SYS!DllUnload F6FBA62C 5 Bytes JMP 83F26578

---- User code sections - GMER 1.0.12 ----

.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!DialogBoxParamW 77D2662C 5 Bytes JMP 7E1FF205 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!DialogBoxIndirectParamW 77D32043 5 Bytes JMP 7E38FEBF C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!MessageBoxIndirectA 77D3A05A 5 Bytes JMP 7E38FE40 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!DialogBoxParamA 77D3B11C 5 Bytes JMP 7E38FE84 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!MessageBoxExW 77D50538 5 Bytes JMP 7E38FDCC C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!MessageBoxExA 77D5055C 5 Bytes JMP 7E38FE06 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!DialogBoxIndirectParamA 77D56CAD 5 Bytes JMP 7E38FEFA C:\WINDOWS\system32\IEFRAME.dll
.text C:\Programmi\Internet Explorer\iexplore.exe[1356] USER32.dll!MessageBoxIndirectW 77D66093 5 Bytes JMP 7E2215DA C:\WINDOWS\system32\IEFRAME.dll

---- Devices - GMER 1.0.12 ----

Device \FileSystem\Fastfat \FatCdrom IRP_MJ_CREATE 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_CLOSE 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_READ 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_WRITE 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_QUERY_INFORMATION 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_SET_INFORMATION 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_QUERY_EA 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_SET_EA 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_FLUSH_BUFFERS 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_QUERY_VOLUME_INFORMATION 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_SET_VOLUME_INFORMATION 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_DIRECTORY_CONTROL 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_FILE_SYSTEM_CONTROL 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_DEVICE_CONTROL 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_SHUTDOWN 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_LOCK_CONTROL 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_CLEANUP 843501D8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_PNP 843501D8
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_CREATE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_CLOSE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_INTERNAL_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_CLEANUP 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4F0ECFC3-F5EF-4690-9147-E3D53B6BBB2C} IRP_MJ_PNP 83F4C980
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_CREATE 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_CLOSE 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_INTERNAL_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_POWER 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_SYSTEM_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-0 IRP_MJ_PNP 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_CREATE 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_CLOSE 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_INTERNAL_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_POWER 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_SYSTEM_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBPDO-1 IRP_MJ_PNP 83F111D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_CREATE 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_CLOSE 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_DEVICE_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_INTERNAL_DEVICE_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_POWER 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_SYSTEM_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBPDO-2 IRP_MJ_PNP 83EFA1D8
Device \Driver\prodrv06 \Device\ProDrv06 IRP_MJ_CREATE E1934798
Device \Driver\prodrv06 \Device\ProDrv06 IRP_MJ_CLOSE E1934798
Device \Driver\prodrv06 \Device\ProDrv06 IRP_MJ_DEVICE_CONTROL E1934798
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_CREATE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_CLOSE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_INTERNAL_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_CLEANUP 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{4266D7F8-DADA-45CA-B634-158953ADFA5B} IRP_MJ_PNP 83F4C980
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CREATE 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_READ 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_WRITE 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_FLUSH_BUFFERS 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_DEVICE_CONTROL 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_INTERNAL_DEVICE_CONTROL 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SHUTDOWN 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CLEANUP 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_POWER 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SYSTEM_CONTROL 843661D8
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_PNP 843661D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSE 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_READ 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL 83EEE1D8
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP 83EEE1D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE 843651D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CLOSE 843651D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DEVICE_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_INTERNAL_DEVICE_CONTROL [F7A61661] prosync1.sys
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_POWER 843651D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SYSTEM_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_PNP 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CLOSE 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_DEVICE_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_INTERNAL_DEVICE_CONTROL [F7A61661] prosync1.sys
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_POWER 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SYSTEM_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_PNP 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CLOSE 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DEVICE_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_INTERNAL_DEVICE_CONTROL [F7A61661] prosync1.sys
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_POWER 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SYSTEM_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_PNP 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_CREATE 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_CLOSE 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_DEVICE_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_INTERNAL_DEVICE_CONTROL [F7A61661] prosync1.sys
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_POWER 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_SYSTEM_CONTROL 843651D8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-e IRP_MJ_PNP 843651D8
Device \Driver\prohlp02 \Device\ProHlp02 IRP_MJ_CREATE E15F29C8
Device \Driver\prohlp02 \Device\ProHlp02 IRP_MJ_CLOSE E15F29C8
Device \Driver\prohlp02 \Device\ProHlp02 IRP_MJ_DEVICE_CONTROL E15F29C8
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CREATE 83F4C980
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLOSE 83F4C980
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_INTERNAL_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLEANUP 83F4C980
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_PNP 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CREATE 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLOSE 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_INTERNAL_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLEANUP 83F4C980
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_PNP 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_CREATE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_CLOSE 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_INTERNAL_DEVICE_CONTROL 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_CLEANUP 83F4C980
Device \Driver\NetBT \Device\NetBT_Tcpip_{E1545AE8-77C9-4370-9751-42B98019DDE6} IRP_MJ_PNP 83F4C980
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_CREATE 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_CLOSE 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_INTERNAL_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_POWER 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_SYSTEM_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-0 IRP_MJ_PNP 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_CREATE 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_CLOSE 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_INTERNAL_DEVICE_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_POWER 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_SYSTEM_CONTROL 83F111D8
Device \Driver\usbohci \Device\USBFDO-1 IRP_MJ_PNP 83F111D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_NAMED_PIPE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLOSE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_READ 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_WRITE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_EA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_EA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FLUSH_BUFFERS 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_VOLUME_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_VOLUME_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DIRECTORY_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FILE_SYSTEM_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_INTERNAL_DEVICE_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SHUTDOWN 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_LOCK_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLEANUP 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_MAILSLOT 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_SECURITY 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_SECURITY 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_POWER 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SYSTEM_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CHANGE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_QUOTA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_QUOTA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_PNP 83F581D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_CREATE 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_CLOSE 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_DEVICE_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_INTERNAL_DEVICE_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_POWER 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_SYSTEM_CONTROL 83EFA1D8
Device \Driver\usbehci \Device\USBFDO-2 IRP_MJ_PNP 83EFA1D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_NAMED_PIPE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLOSE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_READ 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_WRITE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_EA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_EA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FLUSH_BUFFERS 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_VOLUME_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_VOLUME_INFORMATION 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DIRECTORY_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FILE_SYSTEM_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_INTERNAL_DEVICE_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SHUTDOWN 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_LOCK_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLEANUP 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_MAILSLOT 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_SECURITY 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_SECURITY 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_POWER 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SYSTEM_CONTROL 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CHANGE 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_QUOTA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_QUOTA 83F581D8
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_PNP 83F581D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CREATE 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_READ 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_WRITE 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_FLUSH_BUFFERS 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_DEVICE_CONTROL 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_INTERNAL_DEVICE_CONTROL 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SHUTDOWN 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CLEANUP 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_POWER 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SYSTEM_CONTROL 843661D8
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_PNP 843661D8
Device \FileSystem\Fastfat \Fat IRP_MJ_CREATE 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_CLOSE 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_READ 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_WRITE 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_QUERY_INFORMATION 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_SET_INFORMATION 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_QUERY_EA 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_SET_EA 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_FLUSH_BUFFERS 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_QUERY_VOLUME_INFORMATION 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_SET_VOLUME_INFORMATION 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_DIRECTORY_CONTROL 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_FILE_SYSTEM_CONTROL 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_DEVICE_CONTROL 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_SHUTDOWN 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_LOCK_CONTROL 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_CLEANUP 843501D8
Device \FileSystem\Fastfat \Fat IRP_MJ_PNP 843501D8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CREATE 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLOSE 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_READ 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_INFORMATION 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_SET_INFORMATION 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_VOLUME_INFORMATION 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_DIRECTORY_CONTROL 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_FILE_SYSTEM_CONTROL 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_DEVICE_CONTROL 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_SHUTDOWN 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_LOCK_CONTROL 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLEANUP 8415B2E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_PNP 8415B2E8
---- Processes - GMER 1.0.12 ----

Library C:\Programmi\OpenOffice.org (*** hidden *** ) @ C:\WINDOWS\EXPLORER.EXE [1536] 0x62390000
Library C:\Programmi\OpenOffice.org (*** hidden *** ) @ C:\WINDOWS\EXPLORER.EXE [1536] 0x60470000
Library C:\Programmi\OpenOffice.org (*** hidden *** ) @ C:\WINDOWS\EXPLORER.EXE [1536] 0x61EF0000

---- EOF - GMER 1.0.12 ----
Avatar utente
djlino
Bronze Member
Bronze Member
 
Messaggi: 995
Iscritto il: gio gen 25, 2007 7:59 pm
Località: Madonna di Campiglio

Messaggioda djlino » dom feb 25, 2007 5:20 pm

se serve metto anche l'autostart...

GMER 1.0.12.12027 - http://www.gmer.net
Autostart scan 2007-02-25 16:19:37
Windows 5.1.2600 Service Pack 2


HKLM\SYSTEM\CurrentControlSet\Control\Session Manager@BootExecute = PDBoot.exe autocheck autochk *

HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems@Windows = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon@Userinit = C:\WINDOWS\system32\userinit.exe,

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ >>>
AtiExtEvent@DLLName = Ati2evxx.dll
WgaLogon@DLLName = WgaLogon.dll

HKLM\SYSTEM\CurrentControlSet\Services\ >>>
Ati HotKey Poller@ = %SystemRoot%\System32\Ati2evxx.exe
btwdins /*Bluetooth Service*/@ = C:\Programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe /*file not found*/
ccEvtMgr /*Symantec Event Manager*/@ = "C:\Programmi\File comuni\Symantec Shared\ccSvcHst.exe" /h ccCommon
ccSetMgr /*Symantec Settings Manager*/@ = "C:\Programmi\File comuni\Symantec Shared\ccSvcHst.exe" /h ccCommon
CLTNetCnService /*Symantec Lic NetConnect service*/@ = "C:\Programmi\File comuni\Symantec Shared\ccSvcHst.exe" /h ccCommon
LightScribeService /*LightScribeService Direct Disc Labeling Service*/@ = "C:\Programmi\File comuni\LightScribe\LSSrvc.exe"
PDSched /*PDScheduler*/@ = C:\Programmi\Raxco\PerfectDisk\PDSched.exe
ScsiPort@ = %SystemRoot%\system32\drivers\scsiport.sys
Spooler /*Spooler di stampa*/@ = %SystemRoot%\system32\spoolsv.exe
SymAppCore /*Symantec AppCore Service*/@ = "C:\Programmi\File comuni\Symantec Shared\AppCore\AppSvc32.exe"
Utilità di pianificazione di LiveUpdate automatico /*Utilità di pianificazione di LiveUpdate automatico*/@ = "C:\Programmi\Symantec\LiveUpdate\ALUSchedulerSvc.exe"
WLTRYSVC /*WLTRYSVC*/@ = C:\WINDOWS\System32\wltrysvc.exe C:\WINDOWS\System32\bcmwltry.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>>
@ATIPTAC:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe = C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
@SynTPLprC:\Programmi\Synaptics\SynTP\SynTPLpr.exe = C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
@SynTPEnhC:\Programmi\Synaptics\SynTP\SynTPEnh.exe = C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
@AGRSMMSGAGRSMMSG.exe = AGRSMMSG.exe
@LaunchApC:\Program Files\Launch Manager\LaunchAp.exe = C:\Program Files\Launch Manager\LaunchAp.exe
@PowerKey"C:\Program Files\Launch Manager\PowerKey.exe" = "C:\Program Files\Launch Manager\PowerKey.exe"
@LManagerC:\Program Files\Launch Manager\HotkeyApp.exe = C:\Program Files\Launch Manager\HotkeyApp.exe
@CtrlVolC:\Program Files\Launch Manager\CtrlVol.exe = C:\Program Files\Launch Manager\CtrlVol.exe
@LMgrOSDC:\Program Files\Launch Manager\OSDCtrl.exe = C:\Program Files\Launch Manager\OSDCtrl.exe
@Wbutton"C:\Program Files\Launch Manager\Wbutton.exe" = "C:\Program Files\Launch Manager\Wbutton.exe"
@ccApp"C:\Programmi\File comuni\Symantec Shared\ccApp.exe" = "C:\Programmi\File comuni\Symantec Shared\ccApp.exe"
@osCheck"C:\Programmi\Norton AntiVirus\osCheck.exe" = "C:\Programmi\Norton AntiVirus\osCheck.exe"

HKCU\Software\Microsoft\Windows\CurrentVersion\Run@CTFMON.EXE = C:\WINDOWS\system32\ctfmon.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad@WPDShServiceObj = C:\WINDOWS\system32\WPDShServiceObj.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved >>>
@{42071714-76d4-11d1-8b24-00a0c9068ff3} /*Estensione panoramica video del Pannello di controllo*/deskpan.dll /*file not found*/ = deskpan.dll /*file not found*/
@{30D02401-6A81-11d0-8274-00C04FD5AE38} /*IE Search Band*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{32683183-48a0-441b-a342-7c2a440a9478} /*Media Band*/(null) =
@{E7E4BC40-E76A-11CE-A9BB-00AA004AE837} /*Shell DocObject Viewer*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FBF23B40-E3F0-101B-8488-00AA003E56F8} /*InternetShortcut*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3C374A40-BAE4-11CF-BF7D-00AA006946EE} /*Microsoft Url History Service*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FF393560-C2A7-11CF-BFF4-444553540000} /*History*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{7BD29E00-76C1-11CF-9DD0-00A0C9034933} /*Temporary Internet Files*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{7BD29E01-76C1-11CF-9DD0-00A0C9034933} /*Temporary Internet Files*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{CFBFAE00-17A6-11D0-99CB-00C04FD64497} /*Microsoft Url Search Hook*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3DC7A020-0ACD-11CF-A9BB-00AA004AE837} /*The Internet*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{871C5380-42A0-1069-A2EA-08002B30309D} /*Internet Name Space*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{2F603045-309F-11CF-9774-0020AFD0CFF6} /*Synaptics Control Panel*/C:\Programmi\Synaptics\SynTP\SynTPCpl.dll = C:\Programmi\Synaptics\SynTP\SynTPCpl.dll
@{0A082D00-EC93-11D0-B1E6-80580BC10627} /*Corel Media Folder Root Menu Handler*/(null) =
@{0FBF99C1-4127-11D1-B1E6-C17E96D9180A} /*Folder To Corel Media Folder Menu Handler*/(null) =
@{854AF161-1AE1-11D1-AB9B-00C0F00683EB} /*Corel Media Folder*/(null) =
@{E856F161-1AE5-11d1-AB9B-00C0F00683EB} /*Corel Media Folder*/(null) =
@{CDB89701-262F-11D1-AB9C-00C0F00683EB} /*Corel Media Find Folder*/(null) =
@{F8152501-455F-11D1-B1E6-444553540000} /*Corel Media Folder Copy Hook Handler*/(null) =
@{8E524B0D-04F0-11D1-B74A-00A0C90646A4} /*IconFactTemp.NSIconHandlerFactory*/(null) =
@{A2AC368A-F883-11D0-B745-00A0C90646A4} /*NSFiltManDll.FiltManCom*/(null) =
@{B63FCD5A-2396-11D1-B762-00A0C90646A4} /*¼*/(null) =
@{BB7DF450-F119-11CD-8465-00AA00425D90} /*Microsoft Access Custom Icon Handler*/(null) =
@{59850401-6664-101B-B21C-00AA004BA90B} /*Utilità di separazione di Raccoglitore Office.*/(null) =
@{596AB062-B4D2-4215-9F74-E9109B0A8153} /*Previous Versions Property Page*/C:\WINDOWS\System32\twext.dll = C:\WINDOWS\System32\twext.dll
@{9DB7A13C-F208-4981-8353-73CC61AE2783} /*Previous Versions*/C:\WINDOWS\System32\twext.dll = C:\WINDOWS\System32\twext.dll
@{692F0339-CBAA-47e6-B5B5-3B84DB604E87} /*Extensions Manager Folder*/C:\WINDOWS\system32\extmgr.dll = C:\WINDOWS\system32\extmgr.dll
@{32020A01-506E-484D-A2A8-BE3CF17601C3} /*AlcoholShellEx*/(null) =
@{2AA59FC0-31E8-42DA-9D3C-E9A52953853B} /*CopyToCD shell extension*/(null) =
@{00E7B358-F65B-4dcf-83DF-CD026B94BFD4} /*Autoplay for SlideShow*/(null) =
@{45AC2688-0253-4ED8-97DE-B5370FA7D48A} /*Shell Extension for Malware scanning*/(null) =
@{B41DB860-8EE4-11D2-9906-E49FADC173CA} /*WinRAR shell extension*/C:\Programmi\WinRAR\rarext.dll = C:\Programmi\WinRAR\rarext.dll
@{07C45BB1-4A8C-4642-A1F5-237E7215FF66} /*IE Microsoft BrowserBand*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{1C1EDB47-CE22-4bbb-B608-77B48F83C823} /*IE Fade Task*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{205D7A97-F16D-4691-86EF-F3075DCCA57D} /*IE Menu Desk Bar*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{3028902F-6374-48b2-8DC6-9725E775B926} /*IE AutoComplete*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{43886CD5-6529-41c4-A707-7B3C92C05E68} /*IE Navigation Bar*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{44C76ECD-F7FA-411c-9929-1B77BA77F524} /*IE Menu Site*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{4B78D326-D922-44f9-AF2A-07805C2A3560} /*IE Menu Band*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{6038EF75-ABFC-4e59-AB6F-12D397F6568D} /*IE Microsoft History AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{6B4ECC4F-16D1-4474-94AB-5A763F2A54AE} /*IE Tracking Shell Menu*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{6CF48EF8-44CD-45d2-8832-A16EA016311B} /*IE IShellFolderBand*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{73CFD649-CD48-4fd8-A272-2070EA56526B} /*IE BandProxy*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{98FF6D4B-6387-4b0a-8FBD-C5C4BB17B4F8} /*IE MRU AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{9A096BB5-9DC3-4D1C-8526-C3CBF991EA4E} /*IE RSS Feeder Folder*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{9D958C62-3954-4b44-8FAB-C4670C1DB4C2} /*IE Microsoft Shell Folder AutoComplete List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{B31C5FAE-961F-415b-BAF0-E697A5178B94} /*IE Microsoft Multiple AutoComplete List Container*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{BC476F4C-D9D7-4100-8D4E-E043F6DEC409} /*Microsoft Browser Architecture*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{BFAD62EE-9D54-4b2a-BF3B-76F90697BD2A} /*IE Shell Rebar BandSite*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{E6EE9AAC-F76B-4947-8260-A9F136138E11} /*IE Shell Band Site Menu*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{F2CF5485-4E02-4f68-819C-B92DE9277049} /*&Links*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{F83DAC1C-9BB9-4f2b-B619-09819DA81B0E} /*IE Registry Tree Options Utility*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FAC3CBF6-8697-43d0-BAB9-DCD1FCE19D75} /*IE User Assist*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{FDE7673D-2E19-4145-8376-BBD58C4BC7BA} /*IE Custom MRU AutoCompleted List*/C:\WINDOWS\system32\ieframe.dll = C:\WINDOWS\system32\ieframe.dll
@{35786D3C-B075-49b9-88DD-029876E11C01} /*Portable Devices*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{D6791A63-E7E2-4fee-BF52-5DED8E86E9B8} /*Portable Devices Menu*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} /*Messenger Sharing Folders*/(null) =
@{e82a2d71-5b2f-43a0-97b8-81be15854de8} /*ShellLink for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} /*Shell Icon Handler for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{45670FA8-ED97-4F44-BC93-305082590BFB} /*Microsoft.XPS.Shell.Metadata.1*/%SystemRoot%\System32\XPSSHHDR.DLL = %SystemRoot%\System32\XPSSHHDR.DLL
@{44121072-A222-48f2-A58A-6D9AD51EBBE9} /*Microsoft.XPS.Shell.Thumbnail.1*/%SystemRoot%\System32\XPSSHHDR.DLL = %SystemRoot%\System32\XPSSHHDR.DLL

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ >>>
Symantec.Norton.Antivirus.IEContextMenu@{FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} = C:\PROGRA~1\NORTON~1\NavShExt.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ >>>
Symantec.Norton.Antivirus.IEContextMenu@{FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} = C:\PROGRA~1\NORTON~1\NavShExt.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects >>>
@{02478D38-C3F9-4EFB-9B51-7695ECA05670}C:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll = C:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
@{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll = C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
@{53707962-6F74-2D53-2644-206D7942484F}C:\PROGRA~1\SPYBOT~1\SDHelper.dll = C:\PROGRA~1\SPYBOT~1\SDHelper.dll
@{9030D464-4C02-4ABF-8ECC-5164760863C6}C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll = C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

HKLM\Software\Microsoft\Internet Explorer\Plugins\Extension\.spop@Location = C:\Programmi\Internet Explorer\Plugins\NPDocBox.dll

HKLM\Software\Microsoft\Internet Explorer\Main >>>
@Default_Page_URLhttp://go.microsoft.com/fwlink/?LinkId=69157 = http://go.microsoft.com/fwlink/?LinkId=69157
@Start Pagehttp://go.microsoft.com/fwlink/?LinkId=69157 = http://go.microsoft.com/fwlink/?LinkId=69157
@Local Page%SystemRoot%\system32\blank.htm = %SystemRoot%\system32\blank.htm

HKCU\Software\Microsoft\Internet Explorer\Main >>>
@Start Pagehttp://www.yahoo.it/ = http://www.yahoo.it/
@Local PageC:\WINDOWS\system32\blank.htm = C:\WINDOWS\system32\blank.htm

HKLM\Software\Classes\PROTOCOLS\Handler\ >>>
dvd@CLSID = C:\WINDOWS\system32\msvidctl.dll
its@CLSID = C:\WINDOWS\System32\itss.dll
livecall@CLSID = C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
mhtml@CLSID = %SystemRoot%\System32\inetcomm.dll
ms-its@CLSID = C:\WINDOWS\System32\itss.dll
msnim@CLSID = C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
tv@CLSID = C:\WINDOWS\system32\msvidctl.dll
wia@CLSID = C:\WINDOWS\System32\wiascr.dll

HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{4266D7F8-DADA-45CA-B634-158953ADFA5B} /*Connessione alla rete locale (LAN)*/ >>>
@IPAddress192.168.97.119 = 192.168.97.119
@NameServer193.43.96.16,212.45.136.14 = 193.43.96.16,212.45.136.14
@DefaultGateway192.168.97.253 = 192.168.97.253
@Domain =

C:\Documents and Settings\DANIELE\Menu Avvio\Programmi\Esecuzione automatica >>>
PowerReg Scheduler V3.exe = PowerReg Scheduler V3.exe
DESKTOP.INI = DESKTOP.INI

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica = DESKTOP.INI

---- EOF - GMER 1.0.12 ----
Avatar utente
djlino
Bronze Member
Bronze Member
 
Messaggi: 995
Iscritto il: gio gen 25, 2007 7:59 pm
Località: Madonna di Campiglio

Messaggioda Amantide » dom feb 25, 2007 6:02 pm

Beh... a parte la presenza di Norton Antivirus nei log non vedo altro che ti potrebbe rallenatare il pc.
Fai lo scandisk e la deframmentazione delle unità e dai una passatina con CCleaner o Regseeker.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo


Messaggioda djlino » dom feb 25, 2007 6:50 pm

Amantide ha scritto:Beh... a parte la presenza di Norton Antivirus nei log non vedo altro che ti potrebbe rallenatare il pc.
Fai lo scandisk e la deframmentazione delle unità e dai una passatina con CCleaner o Regseeker.


lo so che è pesante, ma prima di conoscervi mi hanno sempre consigliato questo e ormai ho pagato anche il 2007...[acc2]


ma appena scade cambio subito [;)]

io ho easycleaner, ma facendo il controllo del registro mi trova dellechiavi non valide anche di programmi come il mulo, service pack e sistem32, e visto che già una volta mettendo mano al registro mi è partito quasi tutto il SO non vorrei che cancellando quelle chiavi mi trovassi ancora col pc in falle...

dici che è meglio cccleaner come programma?

invece non so se è un problema, ma usando perfeckt disck per la deframmentazione l'ho dovuto lasciare tutta la notte in defrag, ma la mattina era ancora al 67%...

allora visto che sembrava una ventola di una macchina per cercare di raffreddare il notebook l'ho bloccato e spento...

ho riprovato ancora ma sempre al 67% sulla barra si vede che deframmenta, ma non va più avanti di così...

tu dici che sia un problema di HD o di programma?
Avatar utente
djlino
Bronze Member
Bronze Member
 
Messaggi: 995
Iscritto il: gio gen 25, 2007 7:59 pm
Località: Madonna di Campiglio

Messaggioda Amantide » dom feb 25, 2007 6:55 pm

CCleaner è meglio perché non combina mai i danni, anche se magari individua meno cose di altrri pulitori del registro.

Intanto fai lo scandisk e vedi se ti risolve la situazione.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Messaggioda djlino » dom feb 25, 2007 6:58 pm

Amantide ha scritto:CCleaner è meglio perché non combina mai i danni, anche se magari individua meno cose di altrri pulitori del registro.

Intanto fai lo scandisk e vedi se ti risolve la situazione.


ora scarico ccleaner, così metto apposto il registro e poi avvio la defrag...

grazie amantide [^]
Avatar utente
djlino
Bronze Member
Bronze Member
 
Messaggi: 995
Iscritto il: gio gen 25, 2007 7:59 pm
Località: Madonna di Campiglio

Messaggioda Amantide » dom feb 25, 2007 7:08 pm

djlino ha scritto:
Amantide ha scritto:CCleaner è meglio perché non combina mai i danni, anche se magari individua meno cose di altrri pulitori del registro.

Intanto fai lo scandisk e vedi se ti risolve la situazione.


ora scarico ccleaner, così metto apposto il registro e poi avvio la defrag...

grazie amantide [^]

No, prima lo scandisk e poi defrag [;)]

Devi andare sul prompt dei comandi e digitare
chkdsk c: /f /r
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 4 ospiti

cron
Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising