Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

PC LENTO

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

PC LENTO

Messaggioda giuseppe67 » mer giu 09, 2010 8:32 am

BUONGIORNO,DELLE VOLTE IL MIO PC E LENTO E DELLE VOLTE SI BLOCCA O FATTO DELLE VARIE SCANSIONI MA NON SAPREI COSA ELIMINARE O COSA FARE METTO I LOG DEI VARI PROGRAMMI CHE O USATOLogfile of Trend Micro HijackThis v2.0.2

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8.11.06, on 09/06/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\Lavasoft\Ad-Aware\AAWTray.exe
C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe
C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE
C:\Documents and Settings\user\Desktop\ninja.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programmi\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Programmi\Bandoo\Plugins\IE\ieplugin.dll
O3 - Toolbar: LEC - {1DBAB667-A486-421e-AFE4-CF07DD0088E5} - C:\Programmi\Power Translator 10\Applications\LEC IE Translation Extension.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Adobe ARM] "C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Ad-Watch] C:\Programmi\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [DataLayer] C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [AVP] "C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: ninja.lnk = C:\Programmi\Ninja\ninja.exe
O8 - Extra context menu item: Aggiungi ad Anti-Banner - C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Barra di ricerca di Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Programmi\File comuni\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{45DC4DE7-2584-4638-8886-1B223360BF58}: NameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{45DC4DE7-2584-4638-8886-1B223360BF58}: NameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{45DC4DE7-2584-4638-8886-1B223360BF58}: NameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{45DC4DE7-2584-4638-8886-1B223360BF58}: NameServer = 192.168.1.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programmi\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Programmi\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LEC TranslateDotNet Server - Language Engineering Corporation, LLC - C:\Programmi\Power Translator 10\LogoMedia TranslateDotNet Server.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Programmi\File comuni\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 7366 bytes
Avatar utente
giuseppe67
Aficionado
Aficionado
 
Messaggi: 76
Iscritto il: lun dic 22, 2008 10:05 pm

Re: PC LENTO

Messaggioda giuseppe67 » mer giu 09, 2010 8:35 am

AGGIUNGO ANCHE IL LOG DI CComboFix 10-06-08.03 - user 09/06/2010 8.40.29.5.2 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.39.1040.18.1023.445 [GMT 2:00]
Eseguito da: c:\documents and settings\user\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
AV: Lavasoft Ad-Watch Live! Anti-virus *On-access scanning disabled* (Updated) {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.

((((((((((((((((((((((((( Files Creati Da 2010-05-09 al 2010-06-09 )))))))))))))))))))))))))))))))))))
.

2010-06-02 17:32 . 2010-06-02 17:38 -------- d-----w- C:\Movavi Library
2010-06-02 17:30 . 2010-06-02 17:30 -------- d-----w- c:\documents and settings\user\Dati applicazioni\MOVAVI
2010-06-02 16:53 . 2010-06-02 16:53 -------- d-----w- C:\OutputFolder
2010-06-02 16:47 . 2010-06-02 16:52 -------- d-----w- c:\documents and settings\user\Dati applicazioni\GetRightToGo
2010-06-02 16:26 . 2010-06-02 16:26 -------- d-----w- C:\videodvdmaker
2010-06-02 16:26 . 2010-06-02 16:26 -------- d-----w- c:\documents and settings\user\Dati applicazioni\Video DVD Maker FREE
2010-05-23 15:09 . 2010-05-23 15:11 -------- d-----w- c:\programmi\Trend Micro
2010-05-14 17:50 . 2010-05-15 16:17 -------- d-----w- c:\programmi\BurnAware Free

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-09 06:52 . 2009-01-11 08:37 163104 --sha-w- c:\windows\system32\drivers\fidbox.dat
2010-06-09 06:51 . 2009-01-11 08:37 32 --sha-w- c:\windows\system32\drivers\fidbox.idx
2010-06-09 06:50 . 2009-01-11 08:37 3979296 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2010-06-09 06:31 . 2009-01-11 08:37 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab
2010-06-09 06:27 . 2009-01-11 08:37 375860 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2010-06-08 10:47 . 2010-02-24 19:18 -------- d-----w- c:\programmi\Ninja
2010-06-07 14:26 . 2009-01-10 23:17 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2010-05-19 12:28 . 2009-01-16 05:50 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2010-05-12 20:17 . 2009-06-30 20:35 -------- d-----w- c:\programmi\Imperivm Civitas
2010-05-05 08:30 . 2009-01-11 08:38 97549 ----a-w- c:\windows\system32\drivers\klick.dat
2010-05-05 08:30 . 2009-01-11 08:38 113933 ----a-w- c:\windows\system32\drivers\klin.dat
2010-04-27 07:01 . 2004-08-19 12:00 84996 ----a-w- c:\windows\system32\perfc010.dat
2010-04-27 07:01 . 2004-08-19 12:00 491438 ----a-w- c:\windows\system32\perfh010.dat
2010-04-25 07:53 . 2009-01-11 07:41 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2010-04-21 11:09 . 2010-04-21 11:09 -------- d-----w- c:\programmi\Digiarty
2010-04-14 16:52 . 2010-04-14 16:51 -------- d-----w- c:\programmi\TuneUp Utilities 2009
2010-04-14 16:52 . 2010-04-14 16:52 604488 ----a-w- c:\windows\system32\TUProgSt.exe
2010-04-14 16:52 . 2010-04-14 16:52 361288 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-04-14 16:52 . 2010-04-14 16:52 -------- d-----w- c:\documents and settings\user\Dati applicazioni\TuneUp Software
2010-04-14 16:51 . 2010-04-14 16:51 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\TuneUp Software
2010-04-14 16:50 . 2010-04-14 16:50 -------- d-sh--w- c:\documents and settings\All Users\Dati applicazioni\{55A29068-F2CE-456C-9148-C869879E2357}
2010-04-14 16:41 . 2010-04-14 16:41 -------- d-----w- c:\programmi\OO Software
2010-04-11 11:11 . 2010-02-22 19:07 -------- d-----w- c:\programmi\JDownloader
.

((((((((((((((((((((((((((((( SnapShot@2010-03-19_17.45.14 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-14 16:52 . 2009-11-16 10:25 29000 c:\windows\system32\uxtuneup.dll
- 2008-10-22 09:47 . 2010-01-23 08:11 46080 c:\windows\system32\tzchange.exe
+ 2008-10-22 09:47 . 2010-04-21 13:28 46080 c:\windows\system32\tzchange.exe
+ 2009-01-10 23:47 . 2007-07-27 21:11 26488 c:\windows\system32\spupdsvc.exe
- 2009-01-10 23:47 . 2007-07-27 08:41 26488 c:\windows\system32\spupdsvc.exe
+ 2009-01-10 20:55 . 2009-05-26 09:01 18808 c:\windows\system32\spmsg.dll
- 2009-01-10 20:55 . 2008-07-08 13:06 18808 c:\windows\system32\spmsg.dll
- 2004-08-19 12:00 . 2010-02-24 10:21 71846 c:\windows\system32\perfc009.dat
+ 2004-08-19 12:00 . 2010-04-27 07:01 71846 c:\windows\system32\perfc009.dat
- 2004-08-19 12:00 . 2009-12-22 05:08 81920 c:\windows\system32\ieencode.dll
+ 2004-08-19 12:00 . 2010-02-26 05:41 81920 c:\windows\system32\ieencode.dll
- 2004-08-19 12:00 . 2009-12-22 05:08 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2004-08-19 12:00 . 2010-02-26 05:41 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2010-01-13 14:00 . 2010-01-13 14:00 86528 c:\windows\system32\dllcache\cabview.dll
- 2009-01-10 20:41 . 2010-03-19 17:33 32768 c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
+ 2009-01-10 20:41 . 2010-06-09 06:29 32768 c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
+ 2010-03-21 12:13 . 2010-06-09 06:29 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2010-02-28 13:23 . 2010-03-19 17:33 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2004-08-19 12:00 . 2010-01-13 14:00 86528 c:\windows\system32\cabview.dll
+ 2010-04-21 11:09 . 2006-05-29 07:12 63488 c:\windows\system32\BugslayerUtil.dll
+ 2010-02-11 08:06 . 2010-05-30 08:21 87702 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2010-05-05 14:05 . 2010-05-05 14:05 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
- 2010-01-12 06:26 . 2010-01-12 06:26 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2010-04-29 10:11 . 2010-04-29 10:11 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
- 2010-01-12 05:54 . 2010-01-12 05:54 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
- 2010-01-12 06:41 . 2010-01-12 06:41 65816 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2010-05-05 14:38 . 2010-05-05 14:38 65816 c:\windows\system32\Adobe\Director\SWDNLD.EXE
- 2009-01-10 23:22 . 2010-03-16 08:38 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-12-21 19:09 . 2009-12-21 19:09 16832 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\ViewerPS.dll
+ 2009-12-22 00:57 . 2009-12-22 00:57 35760 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\reader_sl.exe
+ 2009-12-21 19:02 . 2009-12-21 19:02 79280 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\PDFPrevHndlr.dll
+ 2009-12-21 22:21 . 2009-12-21 22:21 99776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\eula.exe
+ 2009-12-21 22:37 . 2009-12-21 22:37 27048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\acrotextextractor.exe
+ 2009-12-21 17:39 . 2009-12-21 17:39 15288 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroRd32Info.exe
+ 2009-12-21 17:27 . 2009-12-21 17:27 75200 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\acroiehelpershim.dll
+ 2009-12-21 17:27 . 2009-12-21 17:27 61888 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroIEHelper.dll
+ 2008-10-25 07:18 . 2008-10-25 07:18 72568 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONFILTER.DLL
+ 2008-10-25 07:18 . 2008-10-25 07:18 98696 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTEM.EXE
+ 2010-04-21 11:16 . 2010-04-21 11:16 34816 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fc97f4e0dd2e7b178ead45b293c083e5\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 39936 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\e4352091bd115e043086d732ec5c5206\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 63488 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\c04516d15820d4de3301aa1ac7e3214f\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\4dd3b1a57e62fd648593751e5ae1c68e\Microsoft.VisualStudio.Tools.Office.HostAdapter.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 39936 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\43b15cd683619c7fb28d5b9dd159376d\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 51712 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\2faecc5eb593dadcca303486d3df6b82\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v9.0.ni.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 69632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 65536 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 25088 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 36864 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 61440 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.HostAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.HostAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 73728 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 49152 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 24576 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 65536 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Controls.ContainerControl.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Controls.ContainerControl.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 45056 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Contract.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 81920 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 77824 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 36864 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 45056 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 98304 c:\windows\assembly\GAC_MSIL\Microsoft.Office.Tools.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.Office.Tools.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Office.Tools.Outlook.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.Office.Tools.Outlook.v9.0.dll
+ 2010-03-31 11:26 . 2009-12-22 05:08 81920 c:\windows\$NtUninstallKB980182$\ieencode.dll
+ 2010-04-14 20:56 . 2008-04-14 02:13 84992 c:\windows\$NtUninstallKB979309$\cabview.dll
+ 2010-04-14 20:59 . 2009-05-26 11:41 26488 c:\windows\$hf_mig$\KB981349\update\spcustom.dll
+ 2010-04-14 20:59 . 2009-05-26 11:41 18808 c:\windows\$hf_mig$\KB981349\spmsg.dll
+ 2010-04-14 21:04 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB980232\update\spcustom.dll
+ 2010-04-14 21:04 . 2009-05-26 09:01 18808 c:\windows\$hf_mig$\KB980232\spmsg.dll
+ 2010-03-31 11:26 . 2008-07-08 13:06 26488 c:\windows\$hf_mig$\KB980182\update\spcustom.dll
+ 2010-03-31 11:26 . 2008-07-08 13:06 18808 c:\windows\$hf_mig$\KB980182\spmsg.dll
+ 2010-02-26 05:38 . 2010-02-26 05:38 81920 c:\windows\$hf_mig$\KB980182\SP3QFE\ieencode.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 26488 c:\windows\$hf_mig$\KB979683\update\spcustom.dll
+ 2010-04-14 15:54 . 2010-03-05 14:53 16896 c:\windows\$hf_mig$\KB979683\update\mpsyschk.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 18808 c:\windows\$hf_mig$\KB979683\spmsg.dll
+ 2010-04-14 20:56 . 2008-07-08 13:06 26488 c:\windows\$hf_mig$\KB979309\update\spcustom.dll
+ 2010-04-14 20:56 . 2008-07-08 13:06 18808 c:\windows\$hf_mig$\KB979309\spmsg.dll
+ 2010-01-13 13:48 . 2010-01-13 13:48 86528 c:\windows\$hf_mig$\KB979309\SP3QFE\cabview.dll
+ 2010-04-14 20:57 . 2008-07-08 13:06 26488 c:\windows\$hf_mig$\KB978601\update\spcustom.dll
+ 2010-04-14 20:57 . 2008-07-08 13:06 18808 c:\windows\$hf_mig$\KB978601\spmsg.dll
+ 2010-04-14 20:58 . 2009-05-26 11:41 26488 c:\windows\$hf_mig$\KB978338\update\spcustom.dll
+ 2010-04-14 20:58 . 2009-05-26 11:41 18808 c:\windows\$hf_mig$\KB978338\spmsg.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 26488 c:\windows\$hf_mig$\KB977816\update\spcustom.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 18808 c:\windows\$hf_mig$\KB977816\spmsg.dll
- 2010-01-12 06:28 . 2010-01-12 06:28 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2010-05-05 14:07 . 2010-05-05 14:07 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2008-06-16 23:41 . 2008-06-16 23:41 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.123_x-ww_e0f31f6f\msvcr90.dll
+ 2008-06-16 23:31 . 2008-06-16 23:31 568832 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.123_x-ww_e0f31f6f\msvcp90.dll
+ 2008-06-16 19:19 . 2008-06-16 19:19 224768 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.123_x-ww_e0f31f6f\msvcm90.dll
+ 2008-06-16 23:41 . 2008-06-16 23:41 161784 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.21022.123_x-ww_41930ce3\atl90.dll
+ 2004-08-19 12:00 . 2009-12-24 06:59 177664 c:\windows\system32\wintrust.dll
+ 2004-08-19 12:00 . 2010-02-26 05:41 669696 c:\windows\system32\wininet.dll
- 2004-08-19 12:00 . 2009-12-22 05:08 669696 c:\windows\system32\wininet.dll
+ 2004-08-19 12:00 . 2010-03-09 11:09 430080 c:\windows\system32\vbscript.dll
- 2004-08-19 12:00 . 2008-05-09 10:53 430080 c:\windows\system32\vbscript.dll
+ 2004-08-19 12:00 . 2010-02-26 05:41 627712 c:\windows\system32\urlmon.dll
- 2004-08-19 12:00 . 2009-12-22 05:08 627712 c:\windows\system32\urlmon.dll
- 2004-08-19 12:00 . 2010-02-24 10:21 443588 c:\windows\system32\perfh009.dat
+ 2004-08-19 12:00 . 2010-04-27 07:01 443588 c:\windows\system32\perfh009.dat
- 2009-01-10 20:35 . 2008-04-11 19:04 691712 c:\windows\system32\inetcomm.dll
+ 2009-01-10 20:35 . 2010-01-29 14:59 691712 c:\windows\system32\inetcomm.dll
+ 2004-08-19 12:00 . 2010-02-26 05:41 251904 c:\windows\system32\iepeers.dll
- 2004-08-19 12:00 . 2008-04-14 02:13 251904 c:\windows\system32\iepeers.dll
+ 2004-08-19 12:00 . 2010-02-11 12:02 226880 c:\windows\system32\drivers\tcpip6.sys
+ 2004-08-19 12:00 . 2010-02-24 13:11 455680 c:\windows\system32\drivers\mrxsmb.sys
+ 2009-12-24 06:59 . 2009-12-24 06:59 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2009-01-11 07:32 . 2010-02-26 05:41 669696 c:\windows\system32\dllcache\wininet.dll
- 2009-01-11 07:32 . 2009-12-22 05:08 669696 c:\windows\system32\dllcache\wininet.dll
- 2008-05-09 10:53 . 2008-05-09 10:53 430080 c:\windows\system32\dllcache\vbscript.dll
+ 2008-05-09 10:53 . 2010-03-09 11:09 430080 c:\windows\system32\dllcache\vbscript.dll
+ 2009-01-11 07:32 . 2010-02-26 05:41 627712 c:\windows\system32\dllcache\urlmon.dll
- 2009-01-11 07:32 . 2009-12-22 05:08 627712 c:\windows\system32\dllcache\urlmon.dll
+ 2008-06-20 11:08 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2009-01-11 07:28 . 2010-02-24 13:11 455680 c:\windows\system32\dllcache\mrxsmb.sys
+ 2009-01-11 07:27 . 2010-01-29 14:59 691712 c:\windows\system32\dllcache\inetcomm.dll
- 2009-01-11 07:27 . 2008-04-11 19:04 691712 c:\windows\system32\dllcache\inetcomm.dll
+ 2010-02-26 05:41 . 2010-02-26 05:41 251904 c:\windows\system32\dllcache\iepeers.dll
+ 2010-02-12 04:33 . 2010-02-12 04:33 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2010-04-20 20:06 . 2010-02-12 10:03 293376 c:\windows\system32\browserchoice.exe
+ 2010-04-29 10:11 . 2010-04-29 10:11 136568 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
- 2010-01-12 05:54 . 2010-01-12 05:54 136568 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
+ 2010-05-05 14:05 . 2010-05-05 14:05 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
- 2010-01-12 06:26 . 2010-01-12 06:26 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2010-05-05 14:36 . 2010-05-05 14:36 467224 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1157609.exe
+ 2010-05-05 14:08 . 2010-05-05 14:08 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
- 2010-01-12 06:29 . 2010-01-12 06:29 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
- 2010-01-12 06:27 . 2010-01-12 06:27 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2010-05-05 14:06 . 2010-05-05 14:06 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2010-04-29 10:11 . 2010-04-29 10:11 753152 c:\windows\system32\Adobe\Shockwave 11\gi.dll
- 2010-01-12 05:54 . 2010-01-12 05:54 753152 c:\windows\system32\Adobe\Shockwave 11\gi.dll
- 2010-01-12 06:26 . 2010-01-12 06:26 503808 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2010-05-05 14:05 . 2010-05-05 14:05 503808 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2010-05-05 14:07 . 2010-05-05 14:07 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2004-08-19 12:00 . 2010-02-12 04:33 100864 c:\windows\system32\6to4svc.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 673280 c:\windows\Installer\903968.msi
+ 2010-04-14 16:51 . 2010-04-14 16:51 828416 c:\windows\Installer\38a1d4.msi
- 2009-01-10 23:22 . 2010-03-16 08:38 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2010-04-14 16:41 . 2010-04-14 16:41 292878 c:\windows\Installer\{534802E0-761E-47F4-BD27-061BC8F976AE}\NewShortcut5_534802E0761E47F4BD27061BC8F976AE.exe
+ 2010-04-14 16:41 . 2010-04-14 16:41 292878 c:\windows\Installer\{534802E0-761E-47F4-BD27-061BC8F976AE}\ARPPRODUCTICON.exe
+ 2009-12-21 17:35 . 2009-12-21 17:35 378264 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\pdfshell.dll
+ 2009-12-21 19:05 . 2009-12-21 19:05 116168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\PDFPrevHndlrShim.exe
+ 2009-12-21 17:34 . 2009-12-21 17:34 103864 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\nppdf32.dll
+ 2009-11-09 18:18 . 2009-11-09 18:18 684032 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\JP2KLib.dll
+ 2009-12-21 19:02 . 2009-12-21 19:02 542168 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AdobeCollabSync.exe
+ 2009-12-21 17:43 . 2009-12-21 17:43 120240 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroRdIF.dll
+ 2009-12-22 00:57 . 2009-12-22 00:57 349616 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroRd32.exe
+ 2009-12-21 17:15 . 2009-12-21 17:15 660912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroPDF.dll
+ 2009-12-21 18:32 . 2009-12-21 18:32 280024 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\acrobroker.exe
+ 2009-12-21 18:15 . 2009-12-21 18:15 251296 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\a3dutility.exe
+ 2008-10-25 06:52 . 2008-10-25 06:52 664968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNOL.DLL
+ 2008-10-25 06:52 . 2008-10-25 06:52 604056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNIE.DLL
+ 2009-01-11 07:28 . 2010-02-24 13:11 455680 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2010-04-21 11:16 . 2010-04-21 11:16 160768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fe69687ad436b1af0959c7e7fbfa4b25\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 462336 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\dec05e37b4d1bb10edbe1b0a63d43be3\Microsoft.VisualStudio.Tools.Office.Runtime.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 332288 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\d9f51e14cc9217e17400d83948a6a091\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 167936 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\d5c3e2d9a7c16cc610cf653dd8f63b08\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 267264 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\9cb62eb69ef2fd1bb5c2ea348ac943b0\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 129024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\79b0f5304f7c150dc8f2dbd2f6b907cc\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 302592 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\688c9db44c1a951622a6c99931c45e6d\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 110592 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\671888156f3c6fd767c6e3d6c0a9c75d\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 155648 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\0aaabb96d186f6070ac475d2959dc441\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0.ni.dll
+ 2010-04-21 11:16 . 2010-04-21 11:16 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\174fc82a0601cc222b440b1fc6dcfaab\Microsoft.Office.Tools.v9.0.ni.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 294912 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.Runtime.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.Runtime.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 131072 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 106496 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 135168 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 282624 c:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 331776 c:\windows\assembly\GAC_MSIL\Microsoft.Office.Tools.Word.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.Office.Tools.Word.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 479232 c:\windows\assembly\GAC_MSIL\Microsoft.Office.Tools.Excel.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.Office.Tools.Excel.v9.0.dll
+ 2010-04-21 10:40 . 2010-04-21 10:40 372736 c:\windows\assembly\GAC_MSIL\Microsoft.Office.Tools.Common.v9.0\9.0.0.0__b03f5f7f11d50a3a\Microsoft.Office.Tools.Common.v9.0.dll
+ 2010-04-14 20:59 . 2008-05-09 10:53 430080 c:\windows\$NtUninstallKB981349$\vbscript.dll
+ 2010-04-14 20:59 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB981349$\spuninst\updspapi.dll
+ 2010-04-14 20:59 . 2009-05-26 11:41 233848 c:\windows\$NtUninstallKB981349$\spuninst\spuninst.exe
+ 2010-04-14 21:04 . 2009-05-26 09:01 402296 c:\windows\$NtUninstallKB980232$\spuninst\updspapi.dll
+ 2010-04-14 21:04 . 2009-05-26 09:01 233848 c:\windows\$NtUninstallKB980232$\spuninst\spuninst.exe
+ 2010-04-14 21:04 . 2009-12-04 18:22 455424 c:\windows\$NtUninstallKB980232$\mrxsmb.sys
+ 2010-03-31 11:26 . 2009-12-22 05:08 669696 c:\windows\$NtUninstallKB980182$\wininet.dll
+ 2010-03-31 11:26 . 2009-12-22 05:08 627712 c:\windows\$NtUninstallKB980182$\urlmon.dll
+ 2010-03-31 11:26 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB980182$\spuninst\updspapi.dll
+ 2010-03-31 11:26 . 2008-07-08 13:06 233848 c:\windows\$NtUninstallKB980182$\spuninst\spuninst.exe
+ 2010-03-31 11:26 . 2008-04-14 02:13 251904 c:\windows\$NtUninstallKB980182$\iepeers.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB979683$\spuninst\updspapi.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 233848 c:\windows\$NtUninstallKB979683$\spuninst\spuninst.exe
+ 2010-04-14 21:03 . 2007-07-27 21:11 382840 c:\windows\$NtUninstallKB979402_WM9$\spuninst\updspapi.dll
+ 2010-04-14 21:03 . 2007-07-27 19:05 233848 c:\windows\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe
+ 2010-04-14 20:56 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB979309$\spuninst\updspapi.dll
+ 2010-04-14 20:56 . 2008-07-08 13:06 233848 c:\windows\$NtUninstallKB979309$\spuninst\spuninst.exe
+ 2010-04-14 20:57 . 2008-04-14 02:13 176640 c:\windows\$NtUninstallKB978601$\wintrust.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB978601$\spuninst\updspapi.dll
+ 2010-04-14 20:57 . 2008-07-08 13:06 233848 c:\windows\$NtUninstallKB978601$\spuninst\spuninst.exe
+ 2010-04-14 20:58 . 2008-06-20 11:08 225856 c:\windows\$NtUninstallKB978338$\tcpip6.sys
+ 2010-04-14 20:58 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB978338$\spuninst\updspapi.dll
+ 2010-04-14 20:58 . 2009-05-26 11:41 233848 c:\windows\$NtUninstallKB978338$\spuninst\spuninst.exe
+ 2010-04-14 20:58 . 2008-04-14 02:13 100352 c:\windows\$NtUninstallKB978338$\6to4svc.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 402296 c:\windows\$NtUninstallKB977816$\spuninst\updspapi.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 233848 c:\windows\$NtUninstallKB977816$\spuninst\spuninst.exe
+ 2010-04-14 20:59 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB981349\update\updspapi.dll
+ 2010-04-14 20:59 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB981349\update\update.exe
+ 2010-04-14 20:59 . 2009-05-26 11:41 233848 c:\windows\$hf_mig$\KB981349\spuninst.exe
+ 2010-03-09 11:07 . 2010-03-09 11:07 430080 c:\windows\$hf_mig$\KB981349\SP3QFE\vbscript.dll
+ 2010-04-14 21:04 . 2009-05-26 09:01 402296 c:\windows\$hf_mig$\KB980232\update\updspapi.dll
+ 2010-04-14 21:04 . 2009-05-26 09:01 763768 c:\windows\$hf_mig$\KB980232\update\update.exe
+ 2010-04-14 21:04 . 2009-05-26 09:01 233848 c:\windows\$hf_mig$\KB980232\spuninst.exe
+ 2010-04-14 15:54 . 2010-02-24 11:57 457216 c:\windows\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
+ 2010-03-31 11:26 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB980182\update\updspapi.dll
+ 2010-03-31 11:26 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB980182\update\update.exe
+ 2010-03-31 11:26 . 2008-07-08 13:06 233848 c:\windows\$hf_mig$\KB980182\spuninst.exe
+ 2010-02-26 05:38 . 2010-02-26 05:38 671232 c:\windows\$hf_mig$\KB980182\SP3QFE\wininet.dll
+ 2010-02-26 05:38 . 2010-02-26 05:38 628736 c:\windows\$hf_mig$\KB980182\SP3QFE\urlmon.dll
+ 2010-02-26 05:38 . 2010-02-26 05:38 251904 c:\windows\$hf_mig$\KB980182\SP3QFE\iepeers.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB979683\update\updspapi.dll
+ 2010-04-14 21:04 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB979683\update\update.exe
+ 2010-04-14 21:04 . 2009-05-26 11:41 233848 c:\windows\$hf_mig$\KB979683\spuninst.exe
+ 2010-04-14 20:56 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB979309\update\updspapi.dll
+ 2010-04-14 20:56 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB979309\update\update.exe
+ 2010-04-14 20:56 . 2008-07-08 13:06 233848 c:\windows\$hf_mig$\KB979309\spuninst.exe
+ 2010-04-14 20:57 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB978601\update\updspapi.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB978601\update\update.exe
+ 2010-04-14 20:57 . 2008-07-08 13:06 233848 c:\windows\$hf_mig$\KB978601\spuninst.exe
+ 2009-12-24 06:43 . 2009-12-24 06:43 178176 c:\windows\$hf_mig$\KB978601\SP3QFE\wintrust.dll
+ 2010-04-14 20:58 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB978338\update\updspapi.dll
+ 2010-04-14 20:58 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB978338\update\update.exe
+ 2010-04-14 20:58 . 2009-05-26 11:41 233848 c:\windows\$hf_mig$\KB978338\spuninst.exe
+ 2010-02-11 11:36 . 2010-02-11 11:36 226880 c:\windows\$hf_mig$\KB978338\SP3QFE\tcpip6.sys
+ 2010-02-12 04:28 . 2010-02-12 04:28 100864 c:\windows\$hf_mig$\KB978338\SP3QFE\6to4svc.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 402296 c:\windows\$hf_mig$\KB977816\update\updspapi.dll
+ 2010-04-14 20:57 . 2009-05-26 11:41 763768 c:\windows\$hf_mig$\KB977816\update\update.exe
+ 2010-04-14 20:57 . 2009-05-26 11:41 233848 c:\windows\$hf_mig$\KB977816\spuninst.exe
- 2004-08-19 12:00 . 2009-07-12 10:21 4874240 c:\windows\system32\wmp.dll
+ 2004-08-19 12:00 . 2010-03-19 16:05 4874240 c:\windows\system32\wmp.dll
+ 2004-08-19 12:00 . 2010-03-10 04:41 1510400 c:\windows\system32\shdocvw.dll
- 2004-08-19 12:00 . 2009-12-22 05:08 1510400 c:\windows\system32\shdocvw.dll
+ 2004-08-19 12:00 . 2010-02-16 19:05 2149888 c:\windows\system32\ntoskrnl.exe
+ 2004-08-19 15:34 . 2010-02-16 19:05 2028032 c:\windows\system32\ntkrnlpa.exe
+ 2004-08-19 12:00 . 2010-02-26 05:41 3094016 c:\windows\system32\mshtml.dll
- 2004-08-19 12:00 . 2009-07-12 10:21 4874240 c:\windows\system32\dllcache\wmp.dll
+ 2004-08-19 12:00 . 2010-03-19 16:05 4874240 c:\windows\system32\dllcache\wmp.dll
- 2009-01-11 07:32 . 2009-12-22 05:08 1510400 c:\windows\system32\dllcache\shdocvw.dll
+ 2009-01-11 07:32 . 2010-03-10 04:41 1510400 c:\windows\system32\dllcache\shdocvw.dll
+ 2009-04-17 06:57 . 2010-02-17 12:05 2193664 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2009-04-17 06:56 . 2010-02-16 19:05 2028032 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-02-10 17:02 . 2010-02-16 19:05 2070528 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2009-04-17 06:57 . 2010-02-16 19:05 2149888 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2009-08-13 18:56 . 2010-01-29 14:59 1315328 c:\windows\system32\dllcache\msoe.dll
- 2009-08-13 18:56 . 2009-07-10 13:26 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2009-01-11 07:32 . 2010-02-26 05:41 3094016 c:\windows\system32\dllcache\mshtml.dll
+ 2010-03-10 04:41 . 2010-03-10 04:41 1025024 c:\windows\system32\dllcache\browseui.dll
+ 2004-08-19 12:00 . 2010-03-10 04:41 1025024 c:\windows\system32\browseui.dll
- 2004-08-19 12:00 . 2008-04-14 02:13 1025024 c:\windows\system32\browseui.dll
+ 2010-05-05 13:40 . 2010-05-05 13:40 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
- 2010-01-12 06:01 . 2010-01-12 06:01 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2010-04-29 10:11 . 2010-04-29 10:11 1975408 c:\windows\system32\Adobe\Shockwave 11\gt.exe
- 2010-01-12 05:54 . 2010-01-12 05:54 1975408 c:\windows\system32\Adobe\Shockwave 11\gt.exe
+ 2010-05-05 13:44 . 2010-05-05 13:44 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
- 2010-01-12 06:05 . 2010-01-12 06:05 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
+ 2010-02-20 23:03 . 2010-02-20 23:03 4472832 c:\windows\Installer\d949a.msp
+ 2010-02-20 23:02 . 2010-02-20 23:02 4195840 c:\windows\Installer\d947d.msp
+ 2010-03-11 21:59 . 2010-03-11 21:59 5031424 c:\windows\Installer\d9466.msp
+ 2009-10-16 05:08 . 2009-10-16 05:08 2237952 c:\windows\Installer\5b91c2.msp
+ 2010-04-09 13:21 . 2010-04-09 13:21 5025792 c:\windows\Installer\5b91ab.msp
+ 2010-04-14 16:41 . 2010-04-14 16:41 2028544 c:\windows\Installer\38a1d0.msi
+ 2009-01-10 23:22 . 2010-05-12 21:40 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2009-01-10 23:22 . 2010-03-16 08:38 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-01-10 23:22 . 2010-05-12 21:40 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-12-21 17:29 . 2009-12-21 17:29 2409880 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\rt3d.dll
+ 2009-12-21 22:31 . 2009-12-21 22:31 5713920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AGM.dll
+ 2008-08-25 21:50 . 2008-08-25 21:50 2585592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VBE6.DLL
+ 2009-03-06 03:00 . 2009-03-06 03:00 6596472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONMAIN.DLL
+ 2008-11-10 09:49 . 2008-11-10 09:49 1165680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONLIBS.DLL
+ 2008-11-24 21:16 . 2008-11-24 21:16 1020776 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTE.EXE
+ 2009-04-17 06:57 . 2010-02-17 12:05 2193664 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2009-04-17 06:56 . 2010-02-16 19:05 2028032 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-02-10 17:02 . 2010-02-16 19:05 2070528 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2009-04-17 06:57 . 2010-02-16 19:05 2149888 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2010-04-21 11:16 . 2010-04-21 11:16 1183232 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\b7073fe7e8dc5ea5d57567ade94e2777\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0.ni.dll
+ 2010-03-31 11:26 . 2009-12-22 05:08 1510400 c:\windows\$NtUninstallKB980182$\shdocvw.dll
+ 2010-03-31 11:26 . 2009-12-22 05:08 3092480 c:\windows\$NtUninstallKB980182$\mshtml.dll
+ 2010-03-31 11:26 . 2008-04-14 02:13 1025024 c:\windows\$NtUninstallKB980182$\browseui.dll
+ 2010-04-14 21:04 . 2009-12-09 10:07 2148864 c:\windows\$NtUninstallKB979683$\ntoskrnl.exe
+ 2010-04-14 21:04 . 2009-12-09 10:07 2027520 c:\windows\$NtUninstallKB979683$\ntkrpamp.exe
+ 2010-04-14 21:04 . 2009-12-09 10:07 2027520 c:\windows\$NtUninstallKB979683$\ntkrnlpa.exe
+ 2010-04-14 21:04 . 2009-12-09 10:07 2148864 c:\windows\$NtUninstallKB979683$\ntkrnlmp.exe
+ 2010-04-14 21:03 . 2009-07-12 10:21 4874240 c:\windows\$NtUninstallKB979402_WM9$\wmp.dll
+ 2010-03-10 04:54 . 2010-03-10 04:54 1510400 c:\windows\$hf_mig$\KB980182\SP3QFE\shdocvw.dll
+ 2010-02-26 05:38 . 2010-02-26 05:38 3094528 c:\windows\$hf_mig$\KB980182\SP3QFE\mshtml.dll
+ 2010-03-10 04:54 . 2010-03-10 04:54 1025024 c:\windows\$hf_mig$\KB980182\SP3QFE\browseui.dll
+ 2010-04-14 15:54 . 2010-02-16 18:59 2193792 c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
+ 2010-04-14 15:54 . 2010-02-16 18:59 2028032 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrpamp.exe
+ 2010-04-14 15:54 . 2010-02-16 18:59 2070656 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe
+ 2010-04-14 15:54 . 2010-02-16 18:59 2149888 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlmp.exe
+ 2010-02-16 18:31 . 2010-04-30 18:51 32058312 c:\windows\system32\MRT.exe
+ 2010-03-22 14:03 . 2010-03-22 14:03 11732992 c:\windows\Installer\d94b1.msp
+ 2010-04-04 06:54 . 2010-04-04 06:54 11850240 c:\windows\Installer\1b4e9.msp
+ 2009-12-21 22:21 . 2009-12-21 22:21 20436408 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA70401B7449A0300000010\9.3.0\AcroRd32.dll
+ 2009-04-03 17:46 . 2009-04-03 17:46 17314688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSO.DLL
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}]
2009-09-29 07:24 1863616 ----a-w- c:\programmi\Bandoo\Plugins\IE\ieplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"Adobe ARM"="c:\programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe" [2010-03-24 952768]
"Ad-Watch"="c:\programmi\Lavasoft\Ad-Aware\AAWTray.exe" [2010-03-02 524632]
"DataLayer"="c:\programmi\File comuni\PCSuite\DataLayer\DataLayer.exe" [2005-06-07 819712]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-04-04 36272]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\user\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Documents and Settings\\All Users\\Dati applicazioni\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 7.0.1.325\\Italian\\setup.exe"=
"c:\\Documents and Settings\\user\\Desktop\\[Mondololloso-Script] v2.0.1\\[Mondololloso Script] v2.0.1.exe"=
"c:\\Programmi\\Electronic Arts\\L'Ascesa del Re Stregone\\lotrbfme2ep1.exe"=
"c:\\Programmi\\Kaspersky Lab\\Kaspersky Internet Security 7.0\\avp.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Documents and Settings\\user\\temp\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\xdccMule\\mIRC.exe"=
"c:\\Programmi\\Java\\jre1.6.0_07\\bin\\javaw.exe"=
"f:\\eMule\\eMule.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"14662:TCP"= 14662:TCP:EmulePlus1
"14672:UDP"= 14672:UDP:EmulePlus1

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [01/03/2010 20.45.59 64160]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\programmi\Lavasoft\Ad-Aware\AAWService.exe [18/01/2009 23.34.37 1029456]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [13/12/2007 14.28.40 24592]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\programmi\MAGIX\Common\Database\bin\fbserver.exe [11/10/2009 17.43.27 1527900]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys --> c:\windows\system32\drivers\nmwcdnsu.sys [?]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys --> c:\windows\system32\drivers\nmwcdnsuc.sys [?]
S3 PRODIGY;PRODIGY;c:\windows\system32\drivers\prodigy.sys [15/02/2010 0.31.55 32377]
S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [11/01/2009 1.26.06 685816]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Contenuto della cartella 'Scheduled Tasks'

2010-05-31 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\programmi\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 20:12]

2010-06-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-117609710-688789844-682003330-1004Core.job
- c:\documents and settings\user\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-03-08 18:51]

2010-06-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-117609710-688789844-682003330-1004UA.job
- c:\documents and settings\user\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-03-08 18:51]

2010-06-09 c:\windows\Tasks\Manutenzione in 1 clic.job
- c:\programmi\TuneUp Utilities 2009\OneClickStarter.exe [2009-11-16 15:38]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uInternet Connection Wizard,ShellNext = iexplore
IE: Aggiungi ad Anti-Banner - c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: {45DC4DE7-2584-4638-8886-1B223360BF58} = 192.168.1.1
FF - ProfilePath - c:\documents and settings\user\Dati applicazioni\Mozilla\Firefox\Profiles\jbzkyaz3.default\
FF - prefs.js: browser.search.selectedEngine - Ask.com
FF - prefs.js: browser.startup.homepage - hxxp://it.start3.mozilla.com/firefox?cl ... t:official
FF - plugin: c:\documents and settings\user\Impostazioni locali\Dati applicazioni\Google\Update\1.2.183.23\npGoogleOneClick8.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\programmi\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\programmi\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\programmi\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-09 08:51
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_USERS\S-1-5-21-117609710-688789844-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*s*c*f* \OpenWithList]
@Class="Shell"
"a"="WORDPAD.EXE"
"MRUList"="ba"
"b"="NOTEPAD.EXE"

[HKEY_USERS\S-1-5-21-117609710-688789844-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*s*c*f* \OpenWithProgids]
"scf”_auto_file"=hex(0):

[HKEY_USERS\S-1-5-21-117609710-688789844-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{3DDAF073-4544-42D2-9CE2-AF2140346445}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"oalpggdoiiifkngjmbdfafhagggcbf"=hex:64,61,69,6a,6c,6f,70,64,00,85
"oahpokphhbhfmmjijgkfbcdpaolmae"=hex:6b,61,6c,6a,66,6a,6d,70,6e,6a,69,69,62,63,
66,68,6d,6a,70,66,67,64,00,7c
"nanoehbldjnoekdiacgdgiicahaj"=hex:6b,61,6c,6a,66,6a,6d,70,6e,6a,69,69,62,63,
66,68,6d,6a,70,66,67,64,00,7c

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(2000)
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\klogon.dll

- - - - - - - > 'lsass.exe'(200)
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\dnsq.dll
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll

- - - - - - - > 'explorer.exe'(2664)
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\miscr3.dll
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\fssync.dll
c:\programmi\Kaspersky Lab\Kaspersky Internet Security 7.0\scrchpg.dll
c:\windows\system32\msi.dll
.
Ora fine scansione: 2010-06-09 09:00:37
ComboFix-quarantined-files.txt 2010-06-09 07:00
ComboFix2.txt 2010-03-19 17:49

Pre-Run: 79.281.315.840 byte disponibili
Post-Run: 79.229.296.640 byte disponibili

- - End Of File - - 99F171892CCE41D47B6C19CCFA16EDEAOMBIFIX
[grazie] COME POSSO RISOLVERE I VARI PROBLEMI DI NUOVO [grazie]
Avatar utente
giuseppe67
Aficionado
Aficionado
 
Messaggi: 76
Iscritto il: lun dic 22, 2008 10:05 pm

Re: PC LENTO

Messaggioda crazy.cat » mer giu 09, 2010 8:41 am

comincia a togliere kaspersky e l'inutile adware, li cambi con avast e malwarebytes e vedi come va.
Poi un format ogni tanto non fa mai male.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: PC LENTO

Messaggioda Roberto88 » mer giu 09, 2010 11:13 am

within the truth of evil and good there's more than you see
....much more than you should
Avatar utente
Roberto88
Bronze Member
Bronze Member
 
Messaggi: 968
Iscritto il: mar nov 11, 2008 11:17 pm


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 2 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising