Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

rete o virus??

Malfunzionamenti della LAN, suggerimenti sulla condivisione e altro legato alle reti.

rete o virus??

Messaggioda fakkO85 » mer dic 16, 2009 10:41 am

ciao a tutti, ho un problema con l'apertura delle porte verso un bel po di programmi di filesharing, mi spiego meglio:
è da una settimana che non riesco più ad aprire porte sia con utorrent, azureus, bittorrent anche provando a disintallarli e reinstallarli. altra cosa che nn riesco più è fare gli aggiornamenti sia di antimalware vari, l unica cosa che riesco a fare è navigare nella rete.
può essere che ho preso qualche virus o trojan? (avira nn mi segnala nulla)
io ho tele2, ma ho anche provato con fastweb e alice ma la cosa non cambia....
ringrazio anticipatamente chiunque possa aiutarmi grazie!!!
Avatar utente
fakkO85
Neo Iscritto
Neo Iscritto
 
Messaggi: 20
Iscritto il: mer apr 15, 2009 11:01 am

Re: rete o virus??

Messaggioda crazy.cat » mer dic 16, 2009 1:01 pm

Posta un qualche log di scansione di hijackthis o meglio ancora di combofix.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: rete o virus??

Messaggioda fakkO85 » mer dic 16, 2009 2:13 pm

ho fatto una scansione con hijackthis

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 13.31.37, on 16/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Sygate\SPF\smc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
C:\Programmi\File comuni\Autodesk Shared\Service\AdskScSrv.exe
C:\Programmi\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Programmi\Toshiba\Toshiba Applet\thotkey.exe
C:\WINDOWS\system32\TPSMain.exe
C:\Programmi\TOSHIBA\ConfigFree\NDSTray.exe
C:\Programmi\TOSHIBA\Tvs\TvsTray.exe
C:\Programmi\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
C:\Programmi\TOSHIBA\TOSHIBA Controls\TFncKy.exe
C:\Programmi\Garzanti Linguistica\Hazon clic\HAZON.EXE
C:\Programmi\iTunes\iTunesHelper.exe
C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Programmi\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Nikon\NkView6\NkvMon.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\Programmi\Windows Live\Messenger\msnmsgr.exe
C:\Programmi\Windows Live\Contacts\wlcomm.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\Programmi\TrendMicro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=13170&l=dis
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmi\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmi\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Programmi\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Programmi\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [Tvs] C:\Programmi\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Programmi\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
O4 - HKLM\..\Run: [TFncKy] TFncKy.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [Hazon clic] "C:\Programmi\Garzanti Linguistica\Hazon clic\HAZON.EXE" -I
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Programmi\File comuni\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmi\D-Tools\daemon.exe" -lang 1033 -noicon
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Programmi\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [OpwareSE2] "C:\Programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Programmi\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: NkvMon.exe.lnk = C:\Programmi\Nikon\NkView6\NkvMon.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6408185381
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Programmi\File comuni\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Programmi\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2009 32-bit 32-bit (mi-raysat_3dsMax2009_32) - Unknown owner - C:\Programmi\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Programmi\Sygate\SPF\smc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Programmi\Toshiba\TOSHIBA Applet\TAPPSRV.exe

--
End of file - 11181 bytes
Avatar utente
fakkO85
Neo Iscritto
Neo Iscritto
 
Messaggi: 20
Iscritto il: mer apr 15, 2009 11:01 am


Re: rete o virus??

Messaggioda crazy.cat » mer dic 16, 2009 3:08 pm

Come hai fatto a provare con tre gestori di adsl diversi?

Nel log non si vede niente se non che c'è attivo sia il firewall di windows che sygate. Prova ad eliminarli tutti e due e vedi cosa cambia.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: rete o virus??

Messaggioda fakkO85 » mer dic 16, 2009 3:30 pm

sono andato da amici diversi a provare via lan per vedere se era tele2 oppure era problema di pc...
sono attivati i firewall ma ci sono sempre stati e scaricavo normalmente.
per eliminarli da hijackthis li selezione e faccio fixed check giusto?
Avatar utente
fakkO85
Neo Iscritto
Neo Iscritto
 
Messaggi: 20
Iscritto il: mer apr 15, 2009 11:01 am

Re: rete o virus??

Messaggioda crazy.cat » mer dic 16, 2009 6:32 pm

Il firewall di windows va disattivato nei servizi, sygate è ormai vecchio e piuttosto sorpassato, potresti anche provare a disinstallarlo e cambiarlo con qualche prodotto più moderno come pc tools firewall.

Prova però prima a fare una scansione con combofix che con quello si vedono molti più dettagli.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: rete o virus??

Messaggioda fakkO85 » mer dic 16, 2009 8:01 pm

ho fatto la scansione con combofix, però mi ha detto che non ha potuto fare il ripristino perché nn riusciva a connettersi (cosa che mi capita anche con altri antimalware) anche se è connesso...
non so se centra ma ora mozzilla non mi funziona più... [V]

ComboFix 09-09-25.01 - fakkO 16/12/2009 19.46.00.1.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.39.1040.18.2047.1592 [GMT 1:00]
Eseguito da: c:\documents and settings\fakkO\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {00000002-0002-0000-7C25-9E7C08000A00}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00000002-0002-0000-0C24-9E7C08000A00}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00000002-0002-0000-3C24-9E7C08000A00}
AV: AntiVir Desktop *On-access scanning enabled* (Updated) {00200000-EE94-0012-94EE-120094EE1200}
FW: Sygate Personal Firewall *enabled* {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
- MODALITÀ CON FUNZIONALITÀ RIDOTTE -
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\recycler\S-1-5-21-1482476501-1708537768-854245398-1003
c:\recycler\S-1-5-21-1482476501-1708537768-854245398-1003\desktop.ini
c:\recycler\S-1-5-21-1482476501-1708537768-854245398-1003\INFO2
c:\recycler\S-1-5-21-3897356463-2329793908-788896330-9364
c:\recycler\S-1-5-21-3897356463-2329793908-788896330-9364\Desktop.ini
c:\recycler\S-1-5-21-6322350947-7483479891-091406629-8462
c:\recycler\S-1-5-21-6322350947-7483479891-091406629-8462\Desktop.ini
c:\recycler\S-1-5-21-7030841866-6838815133-502676803-0953
c:\recycler\S-1-5-21-7030841866-6838815133-502676803-0953\Desktop.ini

.
((((((((((((((((((((((((( Files Creati Da 2009-11-16 al 2009-12-16 )))))))))))))))))))))))))))))))))))
.

2009-12-16 12:31 . 2009-12-16 12:31 -------- d-----w- c:\programmi\TrendMicro
2009-12-15 14:54 . 2009-12-15 14:54 -------- d-----w- c:\programmi\uTorrent
2009-12-15 14:53 . 2009-12-16 09:32 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\uTorrent
2009-12-14 20:40 . 2009-12-03 15:14 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-14 20:40 . 2009-12-14 20:40 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2009-12-14 20:40 . 2009-12-03 15:13 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-14 20:11 . 2009-12-16 09:58 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2009-12-14 18:48 . 2009-12-14 18:48 -------- d-----w- c:\programmi\Ask.com
2009-12-14 16:56 . 2009-12-14 16:56 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Azureus
2009-12-14 16:56 . 2009-12-16 09:37 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Azureus
2009-12-14 16:54 . 2009-12-14 16:55 -------- d-----w- c:\programmi\Vuze
2009-12-07 18:39 . 2009-12-07 18:39 -------- d--h--w- c:\windows\PIF
2009-12-02 13:27 . 2009-12-02 13:27 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Nikon
2009-12-02 13:22 . 2001-08-30 22:07 5632 ----a-w- c:\windows\system32\ptpusb.dll
2009-12-02 13:22 . 2008-04-14 02:13 159232 ----a-w- c:\windows\system32\ptpusd.dll
2009-12-01 08:57 . 2009-12-01 08:57 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\RETScreen
2009-12-01 08:45 . 2009-12-01 08:45 -------- d-----w- c:\programmi\RETScreen
2009-12-01 08:31 . 2009-12-01 08:31 -------- d-----w- c:\documents and settings\fakkO\.ta
2009-11-30 10:48 . 2009-11-30 10:48 -------- d-----w- c:\documents and settings\fakkO\.autodesk
2009-11-29 09:49 . 2009-11-29 09:49 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Malwarebytes
2009-11-29 09:49 . 2009-11-29 09:49 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-11-28 11:58 . 2009-11-28 11:58 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\SUPERAntiSpyware.com
2009-11-28 11:56 . 2009-11-29 09:49 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\SUPERAntiSpyware.com
2009-11-28 11:56 . 2009-11-29 09:49 -------- d-----w- c:\programmi\SUPERAntiSpyware
2009-11-26 15:17 . 2009-12-16 17:37 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\LimeWire
2009-11-26 15:16 . 2009-10-11 03:17 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-11-26 15:15 . 2009-11-26 15:17 -------- d-----w- c:\programmi\LimeWire
2009-11-24 16:26 . 2009-11-24 16:26 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\id Software
2009-11-23 09:51 . 2009-11-23 09:52 -------- d-----w- c:\programmi\VcaSlu
2009-11-18 15:01 . 2009-12-16 18:08 138504 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-11-18 15:01 . 2009-11-18 15:01 -------- d-----w- c:\documents and settings\fakkO\Impostazioni locali\Dati applicazioni\PunkBuster

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-16 18:43 . 2005-08-24 13:45 84354 ----a-w- c:\windows\system32\perfc010.dat
2009-12-16 18:43 . 2005-08-24 13:45 489648 ----a-w- c:\windows\system32\perfh010.dat
2009-12-16 18:08 . 2009-11-07 18:22 214488 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-12-10 22:01 . 2009-10-24 13:16 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-12-10 11:23 . 2009-10-24 15:56 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-12-04 11:15 . 2009-11-09 13:38 -------- d-----w- c:\programmi\IsoReflex
2009-12-01 08:44 . 2009-10-24 13:04 -------- d-----w- c:\programmi\File comuni\Wise Installation Wizard
2009-11-26 15:28 . 2005-08-24 14:14 -------- d-----w- c:\programmi\Java
2009-11-24 16:26 . 2009-11-07 18:22 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-11-24 16:26 . 2009-11-07 18:22 2373712 ----a-w- c:\windows\system32\pbsvc.exe
2009-11-23 09:51 . 2009-11-09 13:38 253952 ------w- c:\windows\Setup1.exe
2009-11-23 09:51 . 2009-10-24 14:59 74752 ----a-w- c:\windows\ST6UNST.EXE
2009-11-16 14:53 . 2009-11-16 14:53 -------- d-----w- c:\programmi\DvbTco
2009-11-16 14:52 . 2009-11-16 14:52 -------- d-----w- c:\programmi\TraveConDwg
2009-11-16 14:51 . 2009-11-16 14:50 -------- d-----w- c:\programmi\PacchettoComune
2009-11-16 11:34 . 2009-10-24 14:37 -------- d-----w- c:\programmi\T-Splines for Rhino
2009-11-10 20:34 . 2009-11-10 20:34 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Canon
2009-11-10 20:30 . 2009-11-08 22:19 -------- d-----w- c:\programmi\Canon
2009-11-10 20:30 . 2005-08-25 05:18 -------- d--h--w- c:\programmi\InstallShield Installation Information
2009-11-10 20:29 . 2009-11-10 20:29 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\ScanSoft
2009-11-10 20:29 . 2009-11-10 20:29 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\SSScanWizard
2009-11-10 20:29 . 2009-11-10 20:29 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\SSScanAppDataDir
2009-11-10 20:29 . 2009-11-10 20:28 -------- d-----w- c:\programmi\File comuni\ScanSoft Shared
2009-11-10 20:28 . 2009-11-10 20:28 -------- d-----w- c:\programmi\ScanSoft
2009-11-08 22:22 . 2009-11-08 22:22 -------- d--h--w- c:\documents and settings\All Users\Dati applicazioni\CanonBJ
2009-11-08 22:21 . 2009-11-08 22:21 -------- d--h--w- c:\programmi\CanonBJ
2009-11-08 15:18 . 2009-10-24 11:24 122144 ----a-w- c:\documents and settings\fakkO\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-11-08 14:53 . 2009-10-24 13:19 -------- d-----w- c:\programmi\Microsoft Works
2009-11-07 20:31 . 2009-11-07 19:57 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Skype
2009-11-07 20:00 . 2009-11-07 20:00 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2009-11-07 20:00 . 2009-11-07 20:00 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\skypePM
2009-11-07 18:22 . 2009-11-07 18:22 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\id Software
2009-11-05 21:10 . 2009-11-05 21:10 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\ArcSoft
2009-11-01 21:51 . 2009-10-24 14:27 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Nero
2009-10-30 09:46 . 2009-10-30 09:46 -------- d-----w- c:\programmi\Microsoft
2009-10-30 09:45 . 2009-10-30 09:45 -------- d-----w- c:\programmi\Windows Live SkyDrive
2009-10-30 09:45 . 2009-10-28 15:44 -------- d-----w- c:\programmi\Windows Live
2009-10-30 09:41 . 2009-10-30 09:41 -------- d-----w- c:\programmi\File comuni\Windows Live
2009-10-29 19:34 . 2009-10-29 19:34 -------- d-----w- c:\programmi\MAXON
2009-10-29 19:31 . 2009-10-24 13:49 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\MAXON
2009-10-29 11:57 . 2009-10-24 14:23 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\McNeel
2009-10-29 10:25 . 2009-10-29 10:25 -------- d-----w- c:\programmi\Microsoft CAPICOM 2.1.0.2
2009-10-29 09:08 . 2009-10-29 09:08 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Conviva
2009-10-28 15:57 . 2009-10-28 15:57 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2009-10-28 15:54 . 2009-10-28 15:54 -------- d-----w- c:\programmi\Messenger Plus! Live
2009-10-28 15:46 . 2009-10-28 15:45 -------- dcsh--w- c:\programmi\File comuni\WindowsLiveInstaller
2009-10-28 15:44 . 2009-10-28 15:44 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\WLInstaller
2009-10-27 20:02 . 2009-10-27 20:02 -------- d-----w- c:\programmi\File comuni\Nikon
2009-10-27 20:02 . 2009-10-27 20:02 -------- d-----w- c:\programmi\Nikon
2009-10-27 20:01 . 2009-10-27 20:01 -------- d-----w- c:\programmi\ArcSoft
2009-10-26 14:28 . 2009-10-24 11:06 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Autodesk
2009-10-26 14:28 . 2009-10-24 11:06 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Autodesk
2009-10-25 19:26 . 2009-10-25 19:26 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\TSplines
2009-10-25 10:33 . 2009-10-24 13:08 -------- d-----w- c:\programmi\QuickTime
2009-10-25 10:31 . 2009-10-25 10:31 -------- d-----w- c:\programmi\File comuni\Apple
2009-10-25 10:31 . 2009-10-25 10:31 -------- d-----w- c:\programmi\Apple Software Update
2009-10-25 10:31 . 2009-10-25 10:31 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple
2009-10-25 10:03 . 2009-10-25 09:15 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\AdobeUM
2009-10-25 10:02 . 2005-08-25 09:28 -------- d-----w- c:\programmi\File comuni\Adobe
2009-10-25 09:55 . 2009-10-25 09:55 -------- d-----w- c:\programmi\MSXML 6.0
2009-10-25 09:51 . 2009-10-24 10:23 134 ----a-w- c:\documents and settings\fakkO\Impostazioni locali\Dati applicazioni\fusioncache.dat
2009-10-24 21:04 . 2009-10-24 21:04 -------- d-----w- c:\programmi\MSXML 4.0
2009-10-24 20:54 . 2009-10-24 20:54 -------- d-----w- c:\programmi\id Software
2009-10-24 19:39 . 2009-10-24 19:39 -------- d-----w- c:\programmi\D-Tools
2009-10-24 15:58 . 2009-10-24 15:58 0 ----a-w- c:\windows\nsreg.dat
2009-10-24 15:56 . 2009-10-24 15:56 -------- d-----w- c:\programmi\Avira
2009-10-24 15:56 . 2009-10-24 15:56 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Avira
2009-10-24 14:45 . 2009-10-24 14:45 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\McNeel
2009-10-24 14:45 . 2009-10-24 14:45 -------- d-----w- c:\programmi\Penguin SR3
2009-10-24 14:44 . 2009-10-24 14:44 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\InstallShield
2009-10-24 14:43 . 2009-10-24 14:39 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\ASGvis
2009-10-24 14:43 . 2005-08-24 14:05 -------- d-----w- c:\programmi\File comuni\InstallShield
2009-10-24 14:34 . 2009-10-24 14:34 -------- d-----w- c:\programmi\Flamingo 1.1
2009-10-24 14:30 . 2009-10-24 14:30 -------- d-----w- c:\programmi\File comuni\McNeel Shared
2009-10-24 14:29 . 2009-10-24 14:29 -------- d-----w- c:\programmi\Rhinoceros 4.0
2009-10-24 14:26 . 2009-10-24 14:23 -------- d-----w- c:\programmi\Rhinoceros 3.0
2009-10-24 14:23 . 2009-10-24 14:23 -------- d-----w- c:\programmi\Common Files
2009-10-24 14:20 . 2009-10-24 14:20 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Adobe Systems
2009-10-24 14:20 . 2009-10-24 14:20 -------- d-----w- c:\programmi\File comuni\Adobe Systems Shared
2009-10-24 14:07 . 2009-10-24 11:06 -------- d-----w- c:\programmi\Autodesk
2009-10-24 14:07 . 2009-10-24 11:06 -------- d-----w- c:\programmi\File comuni\Autodesk Shared
2009-10-24 14:04 . 2009-10-24 14:04 -------- d-----w- c:\programmi\MSBuild
2009-10-24 14:01 . 2009-10-24 14:01 -------- d-----w- c:\programmi\Reference Assemblies
2009-10-24 13:45 . 2009-10-24 13:45 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\vlc
2009-10-24 13:37 . 2009-10-24 13:37 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\FLEXnet
2009-10-24 13:29 . 2009-10-24 13:29 -------- d-----w- c:\programmi\File comuni\Macrovision Shared
2009-10-24 13:18 . 2009-10-24 13:18 -------- d-----w- c:\programmi\Microsoft.NET
2009-10-24 13:18 . 2009-10-24 13:18 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Advanced Chemistry Development
2009-10-24 13:09 . 2009-10-24 13:09 -------- d-----w- c:\documents and settings\fakkO\Dati applicazioni\Apple Computer
2009-10-24 13:08 . 2009-10-24 13:08 -------- d-----w- c:\programmi\iTunes
2009-10-24 13:08 . 2009-10-24 13:08 -------- d-----w- c:\programmi\iPod
2009-10-24 13:08 . 2009-10-24 13:08 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2009-10-24 13:06 . 2009-10-24 13:06 -------- d-----w- c:\programmi\Garzanti Linguistica
2009-10-24 13:05 . 2009-10-24 13:05 -------- d-----w- c:\programmi\Sygate
2009-10-24 13:03 . 2009-10-24 13:03 -------- d-----w- c:\programmi\VideoLAN
2009-10-24 13:02 . 2009-10-24 13:02 -------- d-----w- c:\programmi\7-Zip
2009-10-24 13:01 . 2009-10-24 13:01 -------- d-----w- c:\programmi\Google
2009-10-24 11:34 . 2009-10-24 11:30 -------- d-----w- c:\programmi\Nero
2009-10-24 11:34 . 2009-10-24 11:34 -------- d-----w- c:\programmi\Windows Sidebar
2009-10-24 11:33 . 2009-10-24 11:30 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Nero
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2009-07-10 16:28 1174920 ----a-w- c:\programmi\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\programmi\Ask.com\GenericAskToolbar.dll" [2009-07-10 1174920]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-14 344064]
"SynTPLpr"="c:\programmi\Synaptics\SynTP\SynTPLpr.exe" [2004-10-14 98394]
"SynTPEnh"="c:\programmi\Synaptics\SynTP\SynTPEnh.exe" [2004-10-14 688218]
"SoundMAXPnP"="c:\programmi\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-07-27 1388544]
"THotkey"="c:\programmi\Toshiba\Toshiba Applet\thotkey.exe" [2005-08-10 356352]
"Tvs"="c:\programmi\TOSHIBA\Tvs\TvsTray.exe" [2005-04-05 73728]
"SmoothView"="c:\programmi\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe" [2005-05-12 118784]
"SmcService"="c:\progra~1\Sygate\SPF\smc.exe" [2004-10-15 2577632]
"Hazon clic"="c:\programmi\Garzanti Linguistica\Hazon clic\HAZON.EXE" [2003-08-04 643072]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2006-06-14 278528]
"AdobeCS4ServiceManager"="c:\programmi\File comuni\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Acrobat Assistant 7.0"="c:\programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" [2008-04-23 483328]
"avgnt"="c:\programmi\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"DAEMON Tools-1033"="c:\programmi\D-Tools\daemon.exe" [2004-08-22 81920]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2009-09-05 417792]
"CanonMyPrinter"="c:\programmi\Canon\MyPrinter\BJMyPrt.exe" [2008-03-18 1848648]
"OpwareSE2"="c:\programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 49152]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\agrsmmsg.exe [2005-04-12 88358]
"TPSMain"="TPSMain.exe" - c:\windows\system32\TPSMain.exe [2005-08-04 266240]
"NDSTray.exe"="NDSTray.exe" [BU]
"TFncKy"="TFncKy.exe" [BU]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\fakkO\Menu Avvio\Programmi\Esecuzione automatica\
LimeWire On Startup.lnk - c:\programmi\LimeWire\LimeWire.exe [2009-9-30 503808]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Acrobat Speed Launcher.lnk - c:\windows\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [2009-10-24 25214]
Avvio veloce di Adobe Reader.lnk - c:\programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
NkvMon.exe.lnk - c:\programmi\Nikon\NkView6\NkvMon.exe [2009-10-27 233472]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\File comuni\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"c:\\Programmi\\Autodesk\\Backburner\\monitor.exe"=
"c:\\Programmi\\Autodesk\\Backburner\\manager.exe"=
"c:\\Programmi\\Autodesk\\Backburner\\server.exe"=
"c:\\Programmi\\Autodesk\\3ds Max 2009\\3dsmax.exe"=
"c:\\Documents and Settings\\All Users\\Dati applicazioni\\ASGvis\\DRSpawner\\DRSpawner.exe"=
"c:\\Programmi\\id Software\\Quake 4\\quake4Ded.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Rhinoceros 4.0\\System\\Rhino4.exe"=
"c:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4

S2 mi-raysat_3dsMax2009_32;mental ray 3.6 Satellite for Autodesk 3ds Max 2009 32-bit 32-bit;c:\programmi\Autodesk\3ds Max 2009\mentalray\satellite\raysat_3dsMax2009_32server.exe [09/03/2008 23.04.52 65536]
.
Contenuto della cartella 'Scheduled Tasks'

2009-10-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2009-12-16 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\programmi\Ask.com\UpdateTask.exe [2009-07-10 16:29]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.ask.com?o=13170&l=dis
IE: Convert link target to Adobe PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\fakkO\Dati applicazioni\Mozilla\Firefox\Profiles\9im1evlf.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.hotmail.com/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&o ... &gfns=1&q=
FF - prefs.js: network.proxy.type - 2
FF - plugin: c:\documents and settings\All Users\Dati applicazioni\id Software\QuakeLive\npquakezero.dll
FF - plugin: c:\documents and settings\fakkO\Dati applicazioni\Mozilla\Firefox\Profiles\9im1evlf.default\extensions\StreamingPlugin@conviva.com\platform\WINNT_x86-msvc\plugins\npconviva.4.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

AddRemove-CINEMA 4D Release 11 - c:\windows\unvise32.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-16 19:46
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet002\Services\vsdatant]
"ImagePath"=""
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(860)
c:\windows\system32\Ati2evxx.dll
.
Ora fine scansione: 2009-12-16 19.48.18
ComboFix-quarantined-files.txt 2009-12-16 18:48

Pre-Run: 45.282.652.160 byte disponibili
Post-Run: 45.756.772.352 byte disponibili

281 --- E O F --- 2009-12-10 22:02


devo formattare??
Avatar utente
fakkO85
Neo Iscritto
Neo Iscritto
 
Messaggi: 20
Iscritto il: mer apr 15, 2009 11:01 am


Torna a Reti e Internet

Chi c’è in linea

Visitano il forum: Nessuno e 0 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising