Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Virus Bagle

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Virus Bagle

Messaggioda Ivao » sab feb 02, 2008 2:17 pm

Ciao a tutti, ho un problema con il virus bagle. Leggendo sul forum ho notato che andrebbe fatta una scansione con Kaspersky, ma purtorppo dopo la schermata per accettare le condizioni non mi fa più andare avanti..
Non so più cosa fare, vi do anche il risultato della scansione con Gmer.
Qualcuno può aiutarmi perpiacere? [cry+]


GMER 1.0.14.14116 - http://www.gmer.net
Rootkit scan 2008-02-02 14:18:44
Windows 5.1.2600 Service Pack 2


---- System - GMER 1.0.14 ----

SSDT d347bus.sys (PnP BIOS Extension/ ) ZwClose [0xF844A818]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwCreateKey [0xF844A7D0]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwCreatePagingFile [0xF843EA20]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateKey [0xF843F2A8]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwEnumerateValueKey [0xF844A910]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwOpenKey [0xF844A794]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwQueryKey [0xF843F2C8]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwQueryValueKey [0xF844A866]
SSDT d347bus.sys (PnP BIOS Extension/ ) ZwSetSystemPowerState [0xF844A0B0]
SSDT sptd.sys ZwSetValueKey [0xF84824AA]

---- Kernel code sections - GMER 1.0.14 ----

? C:\WINDOWS\system32\drivers\sptd.sys Impossibile accedere al file. Il file è utilizzato da un altro processo.
? iybwaxsn.sys Impossibile trovare il file specificato. !
.text USBPORT.SYS!DllUnload F7DE362C 5 Bytes JMP 8211B1C8

---- User code sections - GMER 1.0.14 ----

.text C:\Programmi\Windows Live\Mail\wlmail.exe[3932] kernel32.dll!SetUnhandledExceptionFilter 7C84467D 5 Bytes JMP 004044A7 C:\Programmi\Windows Live\Mail\wlmail.exe (Windows Live Mail/Microsoft Corporation)

---- Kernel IAT/EAT - GMER 1.0.14 ----

IAT \SystemRoot\System32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [F849229A] sptd.sys

---- Devices - GMER 1.0.14 ----

Device \FileSystem\Ntfs \Ntfs 823D51E8
Device \Driver\NetBT \Device\NetBT_Tcpip_{5C474283-7063-4623-ABC5-6A2A0BD06ADB} 81BEE790
Device \Driver\usbuhci \Device\USBPDO-0 820761E8
Device \Driver\dmio \Device\DmControl\DmIoDaemon 823D71E8
Device \Driver\dmio \Device\DmControl\DmConfig 823D71E8
Device \Driver\dmio \Device\DmControl\DmPnP 823D71E8
Device \Driver\dmio \Device\DmControl\DmInfo 823D71E8
Device \Driver\usbuhci \Device\USBPDO-1 820761E8
Device \Driver\usbuhci \Device\USBPDO-2 820761E8
Device \Driver\usbuhci \Device\USBPDO-3 820761E8
Device \Driver\usbehci \Device\USBPDO-4 8205F1E8
Device \Driver\prodrv06 \Device\ProDrv06 E1B72828
Device \Driver\Ftdisk \Device\HarddiskVolume1 8236A1E8
Device \FileSystem\Rdbss \Device\FsWrap 81FFACF8
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 8218C008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 8218C008
Device \Driver\atapi \Device\Ide\IdePort0 8218C008
Device \Driver\atapi \Device\Ide\IdePort1 8218C008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f 8218C008
Device \Driver\prohlp02 \Device\ProHlp02 E1397DE0
Device \Driver\NetBT \Device\NetBt_Wins_Export 81BEE790
Device \Driver\NetBT \Device\NetbiosSmb 81BEE790
Device \FileSystem\Srv \Device\LanmanServer 81CE2170
Device \Driver\NetBT \Device\NetBT_Tcpip_{8114B52C-8C6F-4ABE-9429-20037E8BF10E} 81BEE790
Device \Driver\usbuhci \Device\USBFDO-0 820761E8
Device \Driver\usbuhci \Device\USBFDO-1 820761E8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 81BD21E8
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 82006030
Device \Driver\usbuhci \Device\USBFDO-2 820761E8
Device \FileSystem\MRxSmb \Device\LanmanRedirector 81BD21E8
Device \FileSystem\MRxSmb \Device\LanmanRedirector 82006030
Device \Driver\usbuhci \Device\USBFDO-3 820761E8
Device \FileSystem\Npfs \Device\NamedPipe 81FF7DF0
Device \Driver\usbehci \Device\USBFDO-4 8205F1E8
Device \Driver\Ftdisk \Device\FtControl 8236A1E8
Device \FileSystem\Msfs \Device\Mailslot 81FF7C48
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 81E85868
Device \Driver\c2scsi \Device\Scsi\c2scsi1Port3Path0Target0Lun0 81D1FF00
Device \Driver\c2scsi \Device\Scsi\c2scsi1 81D1FF00
Device \Driver\d347prt \Device\Scsi\d347prt1 81E85868
Device \FileSystem\Fs_Rec \FileSystem\UdfsCdRomRecognizer 820457A0
Device \FileSystem\Fs_Rec \FileSystem\FatCdRomRecognizer 820457A0
Device \FileSystem\Fs_Rec \FileSystem\CdfsRecognizer 820457A0
Device \FileSystem\Fs_Rec \FileSystem\FatDiskRecognizer 820457A0
Device \FileSystem\Fs_Rec \FileSystem\UdfsDiskRecognizer 820457A0
Device \FileSystem\Cdfs \Cdfs 82194790
Device \FileSystem\Cdfs \Cdfs 820273E0
Device \FileSystem\Cdfs \Cdfs DLAIFS_M.SYS (Drive Letter Access Component/Sonic Solutions)

---- Modules - GMER 1.0.14 ----

Module _________ F83A1000-F83B9000 (98304 bytes)

---- Registry - GMER 1.0.14 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\d347prt\Cfg\0Jf40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x69 0x41 0xA3 0xEA ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x69 0x41 0xA3 0xEA ...
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\CancelAutoplay\CLSID@\30 A\0E\0002\0A\0E\0D\08\0F\0-\0005\0006\09\0005\0-\0004\0a\0006\0d\0-\09\0007\0000\09\0-\0001\0004\0E\0005\0001\0C\0D\0001\0007\0B\0001\0C\0'

---- EOF - GMER 1.0.14 ----
E questo pr l'autostart

GMER 1.0.14.14116 - http://www.gmer.net
Autostart scan 2008-02-02 14:19:16
Windows 5.1.2600 Service Pack 2


HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems@Windows = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon@Userinit = C:\WINDOWS\system32\userinit.exe,

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon@DLLName = WgaLogon.dll

HKLM\SYSTEM\CurrentControlSet\Services\ >>>
NVSvc@ = %SystemRoot%\system32\nvsvc32.exe
Roxio Upnp Server 9@ = "C:\Programmi\File comuni\Sonic Shared\RoxioUpnpService9.exe"
RoxLiveShare10@ = "C:\Programmi\File comuni\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe" /*file not found*/
RoxLiveShare9@ = "C:\Programmi\File comuni\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe"
RoxWatch9@ = "C:\Programmi\File comuni\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe"
ScsiPort@ = %SystemRoot%\system32\drivers\scsiport.sys
SDhelper@ = C:\Programmi\Spyware Doctor\sdhelp.exe /*file not found*/
SessionLauncher@ = C:\DOCUME~1\PJ\IMPOST~1\Temp\DX9\SessionLauncher.exe /*file not found*/
SoundMAX Agent Service (default)@ = C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>>
@NvCplDaemonRUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
@NvMediaCenterRUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit = RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
@PCSuiteTrayApplicationC:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup = C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
@PCTAVApp"C:\Programmi\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN = "C:\Programmi\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN
@RegistryMechanic /*file not found*/ = /*file not found*/
@avast!C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

HKCU\Software\Microsoft\Windows\CurrentVersion\Run@german.exe = C:\WINDOWS\system32\wintems.exe /*file not found*/

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad@WPDShServiceObj = C:\WINDOWS\system32\WPDShServiceObj.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks@{88485281-8b4b-4f8d-9ede-82e29a064277} = C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved >>>
@{42071714-76d4-11d1-8b24-00a0c9068ff3} /*Estensione panoramica video del Pannello di controllo*/deskpan.dll /*file not found*/ = deskpan.dll /*file not found*/
@{32683183-48a0-441b-a342-7c2a440a9478} /*Media Band*/(null) =
@{596AB062-B4D2-4215-9F74-E9109B0A8153} /*Previous Versions Property Page*/C:\WINDOWS\System32\twext.dll = C:\WINDOWS\System32\twext.dll
@{9DB7A13C-F208-4981-8353-73CC61AE2783} /*Previous Versions*/C:\WINDOWS\System32\twext.dll = C:\WINDOWS\System32\twext.dll
@{692F0339-CBAA-47e6-B5B5-3B84DB604E87} /*Extensions Manager Folder*/C:\WINDOWS\System32\extmgr.dll = C:\WINDOWS\System32\extmgr.dll
@{A70C977A-BF00-412C-90B7-034C51DA2439} /*NvCpl DesktopContext Class*/C:\WINDOWS\system32\nvcpl.dll = C:\WINDOWS\system32\nvcpl.dll
@{FFB699E0-306A-11d3-8BD1-00104B6F7516} /*Play on my TV helper*/C:\WINDOWS\system32\nvcpl.dll = C:\WINDOWS\system32\nvcpl.dll
@{1CDB2949-8F65-4355-8456-263E7C208A5D} /*Desktop Explorer*/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll
@{1E9B04FB-F9E5-4718-997B-B8DA88302A47} /*Desktop Explorer Menu*/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll
@{1E9B04FB-F9E5-4718-997B-B8DA88302A48} /*nView Desktop Context Menu*/C:\WINDOWS\system32\nvshell.dll = C:\WINDOWS\system32\nvshell.dll
@{B327765E-D724-4347-8B16-78AE18552FC3} /*NeroDigitalIconHandler*/blank /*file not found*/ = blank /*file not found*/
@{7F1CF152-04F8-453A-B34C-E609530A9DC8} /*NeroDigitalPropSheetHandler*/blank /*file not found*/ = blank /*file not found*/
@{BDEADF00-C265-11D0-BCED-00A0C90AB50F} /*Cartelle Web*/C:\PROGRA~1\FILECO~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL = C:\PROGRA~1\FILECO~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
@{00020D75-0000-0000-C000-000000000046} /*Microsoft Office Outlook Desktop Icon Handler*/C:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL = C:\PROGRA~1\MICROS~2\OFFICE11\MLSHEXT.DLL
@{0006F045-0000-0000-C000-000000000046} /*Microsoft Office Outlook Custom Icon Handler*/C:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL = C:\PROGRA~1\MICROS~2\OFFICE11\OLKFSTUB.DLL
@{42042206-2D85-11D3-8CFF-005004838597} /*Microsoft Office HTML Icon Handler*/C:\Programmi\Microsoft Office\OFFICE11\msohev.dll = C:\Programmi\Microsoft Office\OFFICE11\msohev.dll
@{0563DB41-F538-4B37-A92D-4659049B7766} /*WLMD Message Handler*/C:\Programmi\Windows Live\Mail\mailcomm.dll = C:\Programmi\Windows Live\Mail\mailcomm.dll
@{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D} /*Messenger Sharing Folders*/C:\Programmi\Windows Live\Messenger\fsshext.8.5.1302.1018.dll = C:\Programmi\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
@{06A2568A-CED6-4187-BB20-400B8C02BE5A} /**/(null) =
@{00F33137-EE26-412F-8D71-F84E4C2C6625} /**/C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll = C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll
@{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} /*Windows Live Photo Gallery Autoplay Drop Target*/(null) =
@{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} /*Windows Live Photo Gallery Viewer Drop Target*/(null) =
@{00F374B7-B390-4884-B372-2FC349F2172B} /*Windows Live Photo Gallery Editor Drop Target*/(null) =
@{00F346CB-35A4-465B-8B8F-65A29DBAB1F6} /*Windows Live Photo Gallery Viewer Drop Target Shim*/C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll = C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll
@{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} /*Windows Live Photo Gallery Editor Drop Target Shim*/C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll = C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll
@{00F30F90-3E96-453B-AFCD-D71989ECC2C7} /*Windows Live Photo Gallery Autoplay Drop Target Shim*/C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll = C:\Programmi\Windows Live\Photo Gallery\PhotoViewerShim.dll
@{e82a2d71-5b2f-43a0-97b8-81be15854de8} /*ShellLink for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{E37E2028-CE1A-4f42-AF05-6CEABC4E5D75} /*Shell Icon Handler for Application References*/C:\WINDOWS\system32\dfshim.dll = C:\WINDOWS\system32\dfshim.dll
@{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} /*PhoneBrowser*/C:\Programmi\Nokia\Nokia PC Suite 6\PhoneBrowser.dll = C:\Programmi\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
@{35786D3C-B075-49b9-88DD-029876E11C01} /*Portable Devices*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{D6791A63-E7E2-4fee-BF52-5DED8E86E9B8} /*Portable Devices Menu*/%SystemRoot%\system32\wpdshext.dll = %SystemRoot%\system32\wpdshext.dll
@{0FB82570-BB2D-23D3-8D3B-AC2F34F1FA3C} /*RXDCExtShlExt extension*/C:\Programmi\Roxio\Virtual Drive 9\DC_ShellExt.dll = C:\Programmi\Roxio\Virtual Drive 9\DC_ShellExt.dll
@{5E44E225-A408-11CF-B581-008029601108} /*Roxio DragToDisc Shell Extension*/C:\Programmi\Roxio\Drag-to-Disc\Shellex.dll = C:\Programmi\Roxio\Drag-to-Disc\Shellex.dll
@{B41DB860-8EE4-11D2-9906-E49FADC173CA} /*WinRAR shell extension*/C:\Programmi\WinRAR\rarext.dll = C:\Programmi\WinRAR\rarext.dll
@{472083B0-C522-11CF-8763-00608CC02F24} /*avast*/C:\Programmi\Alwil Software\Avast4\ashShell.dll = C:\Programmi\Alwil Software\Avast4\ashShell.dll

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\ >>>
avast@{472083B0-C522-11CF-8763-00608CC02F24} = C:\Programmi\Alwil Software\Avast4\ashShell.dll
DaemonShellExtImage@{40966797-8FFE-46C8-9EF8-7003F33CCF0F} = blank /*file not found*/
PCTAVShellExtension@{AEEAEC2D-7EE9-4C66-937C-80BF8B03FD54} = C:\Programmi\PC Tools AntiVirus\PCTAVShellExtension.dll
RXDCExtSvr@{0FB82570-BB2D-23D3-8D3B-AC2F34F1FA3C} = C:\Programmi\Roxio\Virtual Drive 9\DC_ShellExt.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\ >>>
PCTAVShellExtension@{AEEAEC2D-7EE9-4C66-937C-80BF8B03FD54} = C:\Programmi\PC Tools AntiVirus\PCTAVShellExtension.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\ >>>
avast@{472083B0-C522-11CF-8763-00608CC02F24} = C:\Programmi\Alwil Software\Avast4\ashShell.dll
RXDCExtSvr@{0FB82570-BB2D-23D3-8D3B-AC2F34F1FA3C} = C:\Programmi\Roxio\Virtual Drive 9\DC_ShellExt.dll
WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects >>>
@{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll = C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
@{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll = C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll
@{9030D464-4C02-4ABF-8ECC-5164760863C6}C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll = C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

HKCU\Control Panel\Desktop@SCRNSAVE.EXE = C:\WINDOWS\System32\logon.scr

HKLM\Software\Microsoft\Internet Explorer\Main >>>
@Default_Page_URLhttp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
@Start Pagehttp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
@Local Page%SystemRoot%\system32\blank.htm = %SystemRoot%\system32\blank.htm

HKCU\Software\Microsoft\Internet Explorer\Main >>>
@Start Pagehttp://www.google.it/ = http://www.google.it/
@Local PageC:\WINDOWS\system32\blank.htm = C:\WINDOWS\system32\blank.htm

HKLM\Software\Classes\PROTOCOLS\Filter\text/xml@CLSID = C:\Programmi\File comuni\Microsoft Shared\OFFICE11\MSOXMLMF.DLL

HKLM\Software\Classes\PROTOCOLS\Handler\ >>>
dvd@CLSID = C:\WINDOWS\system32\msvidctl.dll
its@CLSID = C:\WINDOWS\System32\itss.dll
livecall@CLSID = C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
mhtml@CLSID = %SystemRoot%\System32\inetcomm.dll
ms-its@CLSID = C:\WINDOWS\System32\itss.dll
msnim@CLSID = C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
mso-offdap@CLSID = C:\PROGRA~1\FILECO~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
mso-offdap11@CLSID = C:\PROGRA~1\FILECO~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
tv@CLSID = C:\WINDOWS\system32\msvidctl.dll
wia@CLSID = C:\WINDOWS\System32\wiascr.dll

HKLM\Software\Classes\PROTOCOLS\Handler\wlmailhtml@CLSID = C:\Programmi\Windows Live\Mail\mailcomm.dll

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica = Alice ti aiuta.lnk

---- EOF - GMER 1.0.14 ----
Avatar utente
Ivao
Neo Iscritto
Neo Iscritto
 
Messaggi: 1
Iscritto il: sab feb 02, 2008 1:30 pm

Messaggioda crazy.cat » sab feb 02, 2008 2:22 pm

Gmer non serve a niente.
La scansione su kaspersky deve essere fatta con Internet explorer.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 4 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising