|
| Precedente :: Successivo |
| Autore |
Messaggio |
Blax
Eroe in grazia degli dei
Registrato: 02/03/07 19:34
Messaggi: 97
|
 Inviato: 05 Lug 2008 00:46 Oggetto: Sparita opzione "Visualizza file e cartelle nascosti'' |
 |
|
Salve,
ho un piccolo problema che però potrebbe rivelare la presenza di un virus (ma gli hacker che obiettivi hanno nella vita?):
quando vado su Strumenti -> Opzioni cartella -> scheda Visualizzazione non compare più l'opzione "visualizza cartelle e file nascosti e "non visualizzare cartelle e file nascosti", così io non ho più la possibilità di visualizzare e utilizzare tali file.
Il mio sistema operativo è Windows XP SP2.
Vi posto qui il mio log di hijackthis per scovare il dannato intruso (ce ne saranno probabilmente anche altri).
Grazie per l'aiuto che mi darete:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0.38.07, on 05/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\crypserv.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe
E:\Programmi\iTunes\iTunesHelper.exe
E:\Programmi\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Programmi\D-Link\AirPlus XtremeG\AirPlusCFG.exe
C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\Windows Live\Messenger\usnsvc.exe
E:\Programmi\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVGTOOLBAR - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O3 - Toolbar: AVGTOOLBAR - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "E:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SMSTray] e:\Programmi\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [D-Link AirPlus XtremeG] C:\Programmi\D-Link\AirPlus XtremeG\AirPlusCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [CurseClient] E:\Giochi\World of Warcraft\Interface\AddOns\Curse\CurseClient.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - e:\Programmi\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - e:\Programmi\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/webplayer/stage6/windows/AutoDLDivXWebPlayerInstaller.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-4b393176ae729f8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F184A6DA-2B5A-4507-8555-C05C5C5C9A9B} (ITCClient Control) - https://82.85.38.60/itcclient.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\SSScsiSV.exe
--
End of file - 8770 bytes |
|
| Top |
|
 |
Sante62
Dio maturo
Registrato: 27/06/07 17:55
Messaggi: 3477
Residenza: Floridia
|
| Inviato: 05 Lug 2008 12:32 Oggetto: |
|
|
Ciao Blax 
Intanto proviamo a fare un pò di pulizia con questi:
CCleaner;
Combofix;
Virit;
Se il PC sarà pulito, o comunque vadano le cose, proveremo a togliere gli attributi ai file nascosti. |
|
| Top |
|
|
Blax
Eroe in grazia degli dei
Registrato: 02/03/07 19:34
Messaggi: 97
|
| Inviato: 06 Lug 2008 19:10 Oggetto: |
|
|
Grazie mille ora il problema è risolto, ha funzionato subito dopo aver fatto lo scan con ComboFix.
Posto qui i log di ComboFix, Virit e Hijackthis per vedere se è ancora rimasto qualcosa.
ComboFix 08-07-05.1 - Casa 2008-07-06 16.12.14.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.299 [GMT 2:00]Eseguito da: C:\Documents and Settings\Rocco.HOME\Desktop\Combat-Fix.exe
* Creato nuovo punto di ripristino
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\system32\drivers\downld
C:\WINDOWS\system32\drivers\downld\14225843.exe
C:\WINDOWS\system32\drivers\downld\14338015.exe
C:\WINDOWS\system32\drivers\downld\14372625.exe
C:\WINDOWS\system32\drivers\downld\14401578.exe
C:\WINDOWS\system32\drivers\downld\144234.exe
C:\WINDOWS\system32\drivers\downld\14447453.exe
C:\WINDOWS\system32\drivers\downld\174468.exe
C:\WINDOWS\system32\drivers\downld\203109.exe
C:\WINDOWS\system32\drivers\downld\254984.exe
C:\WINDOWS\system32\drivers\downld\342312.exe
C:\WINDOWS\system32\drivers\downld\358281.exe
C:\WINDOWS\system32\drivers\downld\380984.exe
C:\WINDOWS\system32\drivers\downld\434281.exe
C:\WINDOWS\system32\drivers\downld\467609.exe
C:\WINDOWS\system32\drivers\downld\485562.exe
C:\WINDOWS\system32\drivers\downld\487046.exe
C:\WINDOWS\system32\drivers\downld\507359.exe
C:\WINDOWS\system32\drivers\downld\594250.exe
C:\WINDOWS\system32\drivers\downld\618468.exe
C:\WINDOWS\system32\drivers\downld\643906.exe
C:\WINDOWS\system32\drivers\downld\662593.exe
.
((((((((((((((((((((((((( Files Creati Da 2008-06-06 al 2008-07-06 )))))))))))))))))))))))))))))))))))
.
2008-07-05 11:18 . 2008-07-05 11:18 <DIR> d-------- C:\Documents and Settings\Rocco.HOME\Dati applicazioni\Ashampoo
2008-07-05 11:17 . 2008-07-05 11:17 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\ashampoo
2008-07-04 18:10 . 2008-07-06 13:34 3,284 --a------ C:\WINDOWS\system32\ANIWZCS{EE7179CD-25A9-40D2-9A49-E75F9573C4EC}
2008-07-04 18:10 . 2008-07-06 12:06 5 --a------ C:\WINDOWS\system32\ANIWZCSUSERNAME{EE7179CD-25A9-40D2-9A49-E75F9573C4EC}
2008-07-04 17:55 . 2008-07-04 17:55 <DIR> d-------- C:\Programmi\ANI
2008-07-04 17:54 . 2008-07-04 17:54 <DIR> d-------- C:\Programmi\D-Link
2008-07-04 14:20 . 2008-07-04 14:20 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Elaborate Bytes
2008-07-04 12:46 . 2008-07-04 14:19 48 --ahs---- C:\WINDOWS\S722778AD.tmp
2008-07-04 12:05 . 2008-07-04 12:07 <DIR> d-------- C:\Documents and Settings\Rocco.HOME\Dati applicazioni\DeepBurner
2008-06-29 13:18 . 2008-06-29 13:18 <DIR> d-------- C:\ProgramData
2008-06-28 21:21 . 2008-06-28 21:21 <DIR> d-------- C:\Programmi\LizardTech
2008-06-25 08:12 . 2008-06-25 08:12 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2008-06-25 08:10 . 2008-06-25 08:10 984 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg
2008-06-19 00:42 . 2008-06-19 00:42 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Office Genuine Advantage
2008-06-15 08:46 . 2008-06-15 08:46 <DIR> d-------- C:\Programmi\File comuni\Wise Installation Wizard
2008-06-13 21:16 . 2008-01-10 16:53 16,232 --a------ C:\WINDOWS\system32\mapisvc.inf
2008-06-11 21:29 . 2008-06-11 21:31 1,374 --a------ C:\WINDOWS\imsins.BAK
2008-06-11 16:11 . 2008-06-11 16:11 26 --a------ C:\WINDOWS\ITCCLI~1.INI
2008-06-11 14:05 . 2008-06-14 19:59 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-06 13:43 --------- d-----w C:\Documents and Settings\Rocco.HOME\Dati applicazioni\Skype
2008-07-06 13:35 --------- d-----w C:\Documents and Settings\Rocco.HOME\Dati applicazioni\skypePM
2008-07-04 15:55 --------- d--h--w C:\Programmi\InstallShield Installation Information
2008-07-03 06:34 --------- d--h--w C:\Programmi\FX Uninstall Information
2008-06-25 06:11 --------- d-----w C:\Programmi\Electronic Arts
2008-06-21 16:02 76,040 ----a-w C:\WINDOWS\system32\drivers\avgtdix.sys
2008-06-21 16:01 96,520 ----a-w C:\WINDOWS\system32\drivers\avgldx86.sys
2008-06-21 16:01 12,936 ----a-w C:\WINDOWS\system32\drivers\avgrkx86.sys
2008-06-21 16:01 10,520 ----a-w C:\WINDOWS\system32\avgrsstx.dll
2008-06-18 09:00 --------- d-----w C:\Programmi\Windows Live Safety Center
2008-06-14 17:59 272,768 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-13 19:15 --------- d-----w C:\Programmi\Ontrack
2008-06-13 07:19 --------- d-----w C:\Programmi\activePDF
2008-06-05 08:59 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\Kaspersky Lab
2008-06-04 06:30 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2008-06-02 05:14 --------- d-----w C:\Documents and Settings\Rocco.HOME\Dati applicazioni\AVGTOOLBAR
2008-06-01 19:20 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\avg8
2008-06-01 19:14 --------- d-----w C:\Programmi\AVG
2008-05-18 18:16 --------- d-----w C:\Documents and Settings\Rocco.HOME\Dati applicazioni\Nitro PDF
2008-05-14 16:45 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!
2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:14 1,292,800 ----a-w C:\WINDOWS\system32\quartz.dll
2008-04-23 15:17 693,792 ----a-w C:\WINDOWS\system32\OGACheckControl.dll
2008-04-23 15:17 504,864 ----a-w C:\WINDOWS\system32\OGAVerify.exe
2008-04-23 15:17 504,352 ----a-w C:\WINDOWS\system32\OGAAddin.dll
2008-04-21 07:01 662,016 ----a-w C:\WINDOWS\system32\wininet.dll
2008-01-08 09:10 92,064 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmmdm.sys
2008-01-08 09:10 9,232 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmmdfl.sys
2008-01-08 09:10 79,328 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmserd.sys
2008-01-08 09:10 66,656 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmbus.sys
2008-01-08 09:10 6,208 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmcmnt.sys
2008-01-08 09:10 5,936 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmwhnt.sys
2008-01-08 09:10 4,048 ----a-w C:\Documents and Settings\Rocco.HOME\mqdmcr.sys
2008-01-08 09:10 25,600 ----a-w C:\Documents and Settings\Rocco.HOME\usbsermptxp.sys
2008-01-08 09:10 22,768 ----a-w C:\Documents and Settings\Rocco.HOME\usbsermpt.sys
2007-11-26 11:17 32 ----a-w C:\Documents and Settings\All Users\Dati applicazioni\ezsid.dat
.
((((((((((((((((((((((((((((( snapshot_2008-06-01_20.53.52.39 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-06-01 18:28:05 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-07-06 10:05:00 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-14 17:59:10 272,768 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
- 2008-02-20 06:57:12 3,262 ----a-r C:\WINDOWS\Installer\{79B92240-9C65-4DD7-B1AD-59910D2C1353}\NewShortcut2.exe
+ 2008-07-04 15:54:57 3,262 ----a-r C:\WINDOWS\Installer\{79B92240-9C65-4DD7-B1AD-59910D2C1353}\NewShortcut2.exe
- 2008-02-20 06:57:12 3,262 ----a-r C:\WINDOWS\Installer\{79B92240-9C65-4DD7-B1AD-59910D2C1353}\NewShortcut3.exe
+ 2008-07-04 15:54:57 3,262 ----a-r C:\WINDOWS\Installer\{79B92240-9C65-4DD7-B1AD-59910D2C1353}\NewShortcut3.exe
- 2008-05-15 01:10:13 38,240 ----a-r C:\WINDOWS\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2008-06-11 01:05:09 38,240 ----a-r C:\WINDOWS\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
- 2008-05-15 01:17:19 593,920 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-06-11 19:32:18 593,920 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\accicons.exe
- 2008-05-15 01:17:19 12,288 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-06-11 19:32:19 12,288 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2008-05-15 01:17:18 135,168 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-06-11 19:32:18 135,168 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-05-15 01:17:19 11,264 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-06-11 19:32:19 11,264 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2008-05-15 01:17:19 27,136 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-06-11 19:32:19 27,136 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-05-15 01:17:19 4,096 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2008-06-11 19:32:19 4,096 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2008-05-15 01:17:19 794,624 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-06-11 19:32:19 794,624 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-05-15 01:17:19 249,856 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-06-11 19:32:18 249,856 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2008-05-15 01:17:18 61,440 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2008-06-11 19:32:18 61,440 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-05-15 01:17:19 23,040 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-06-11 19:32:19 23,040 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2008-05-15 01:17:18 286,720 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-06-11 19:32:18 286,720 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-05-15 01:17:18 409,600 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-06-11 19:32:18 409,600 ----a-r C:\WINDOWS\Installer\{91110410-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2008-06-13 19:15:25 3,638 ----a-r C:\WINDOWS\Installer\{A0BF4C3E-EA9D-498C-8B03-A23319AC38DA}\ARPPRODUCTICON.exe
+ 2008-06-13 19:15:25 40,960 ----a-r C:\WINDOWS\Installer\{A0BF4C3E-EA9D-498C-8B03-A23319AC38DA}\ExtractWizard.exe
+ 2008-06-13 19:15:25 40,960 ----a-r C:\WINDOWS\Installer\{A0BF4C3E-EA9D-498C-8B03-A23319AC38DA}\EZUpdate_1.exe
+ 2008-06-13 19:15:25 3,638 ----a-r C:\WINDOWS\Installer\{A0BF4C3E-EA9D-498C-8B03-A23319AC38DA}\PowerControls.exe
- 2007-11-04 08:27:33 295,606 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1040-7B44-A81000000003}\SC_Reader.exe
+ 2008-06-13 08:59:06 295,606 ----a-r C:\WINDOWS\Installer\{AC76BA86-7AD7-1040-7B44-A81000000003}\SC_Reader.exe
+ 2008-06-25 06:11:26 7,598 ----a-r C:\WINDOWS\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ARPPRODUCTICON.exe
+ 2008-06-25 06:11:26 7,598 ----a-r C:\WINDOWS\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ead_desktop_shortcut_F557710133CC471182353A95BCD49DB0.exe
+ 2008-06-25 06:11:26 7,598 ----a-r C:\WINDOWS\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ead_startmenu_shortc_F557710133CC471182353A95BCD49DB0.exe
- 1998-10-29 15:45:06 306,688 ----a-w C:\WINDOWS\IsUninst.exe
+ 1998-10-29 13:45:06 306,688 ----a-w C:\WINDOWS\IsUninst.exe
- 2000-08-31 06:00:00 28,160 ----a-w C:\WINDOWS\NirCmd.exe
+ 2000-08-31 06:00:00 28,672 ----a-w C:\WINDOWS\NirCmd.exe
- 2006-04-07 13:40:24 184,320 ----a-w C:\WINDOWS\system32\aIPH.dll
+ 2006-04-07 12:40:24 184,320 ----a-w C:\WINDOWS\system32\aIPH.dll
- 2005-10-19 17:19:08 57,407 ----a-w C:\WINDOWS\system32\ANICtl.dll
+ 2005-10-19 16:19:08 57,407 ----a-w C:\WINDOWS\system32\ANICtl.dll
- 2005-12-11 10:55:38 28,195 ----a-w C:\WINDOWS\system32\ANIO.sys
+ 2005-12-11 09:55:38 28,195 ----a-w C:\WINDOWS\system32\ANIO.sys
- 2004-10-14 09:29:16 11,904 ----a-w C:\WINDOWS\system32\anio4.sys
+ 2004-10-14 08:29:16 11,904 ----a-w C:\WINDOWS\system32\anio4.sys
- 2005-12-13 09:38:20 48,128 ----a-w C:\WINDOWS\system32\ANIO64.sys
+ 2005-12-13 08:38:20 48,128 ----a-w C:\WINDOWS\system32\ANIO64.sys
- 2005-10-21 14:56:48 36,864 ----a-w C:\WINDOWS\system32\ANIOApi.dll
+ 2005-10-21 13:56:48 36,864 ----a-w C:\WINDOWS\system32\ANIOApi.dll
- 2006-06-01 15:58:52 663,552 ----a-w C:\WINDOWS\system32\ANIWZCS2.dll
+ 2006-06-01 14:58:52 663,552 ----a-w C:\WINDOWS\system32\ANIWZCS2.dll
- 2005-10-19 17:19:08 49,152 ----a-w C:\WINDOWS\system32\AQCKGen.dll
+ 2005-10-19 16:19:08 49,152 ----a-w C:\WINDOWS\system32\AQCKGen.dll
- 2008-02-16 09:01:18 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
+ 2008-04-21 07:01:13 1,023,488 ----a-w C:\WINDOWS\system32\browseui.dll
- 2008-02-16 09:01:18 151,552 ----a-w C:\WINDOWS\system32\cdfview.dll
+ 2008-04-21 07:01:14 151,552 ----a-w C:\WINDOWS\system32\cdfview.dll
- 2008-02-16 09:01:18 1,056,256 ----a-w C:\WINDOWS\system32\danim.dll
+ 2008-04-21 07:01:15 1,056,256 ----a-w C:\WINDOWS\system32\danim.dll
- 2008-02-16 09:01:18 1,023,488 -c----w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2008-04-21 07:01:13 1,023,488 -c----w C:\WINDOWS\system32\dllcache\browseui.dll
- 2008-02-16 09:01:18 151,552 -c----w C:\WINDOWS\system32\dllcache\cdfview.dll
+ 2008-04-21 07:01:14 151,552 -c----w C:\WINDOWS\system32\dllcache\cdfview.dll
- 2008-02-16 09:01:18 1,056,256 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
+ 2008-04-21 07:01:15 1,056,256 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll
- 2008-02-16 09:01:18 357,888 -c----w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-04-21 07:01:15 357,888 -c----w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2008-02-16 09:01:18 205,312 -c----w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-04-21 07:01:15 205,312 -c----w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2008-02-16 09:01:18 55,808 -c----w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-04-21 07:01:15 55,808 -c----w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2008-02-15 09:23:37 18,432 -c----w C:\WINDOWS\system32\dllcache\iedw.exe
+ 2008-04-17 10:52:54 18,432 -c----w C:\WINDOWS\system32\dllcache\iedw.exe
- 2008-02-16 09:01:18 251,392 -c----w C:\WINDOWS\system32\dllcache\iepeers.dll
+ 2008-04-21 07:01:15 251,392 -c----w C:\WINDOWS\system32\dllcache\iepeers.dll
- 2008-02-16 09:01:18 96,768 -c----w C:\WINDOWS\system32\dllcache\inseng.dll
+ 2008-04-21 07:01:16 96,768 -c----w C:\WINDOWS\system32\dllcache\inseng.dll
- 2008-02-16 09:01:19 16,384 -c----w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-04-21 07:01:16 16,384 -c----w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2008-02-16 22:31:22 3,080,704 -c----w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-04-21 07:01:20 3,080,704 -c----w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2008-02-16 09:01:21 449,024 -c----w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-04-21 07:01:20 449,024 -c----w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2008-02-16 09:01:21 146,432 -c----w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-04-21 07:01:20 146,432 -c----w C:\WINDOWS\system32\dllcache\msrating.dll
- 2008-02-16 09:01:21 532,480 -c----w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-04-21 07:01:21 532,480 -c----w C:\WINDOWS\system32\dllcache\mstime.dll
- 2008-02-16 09:01:21 39,424 -c----w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-04-21 07:01:21 39,424 -c----w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2007-10-29 22:42:50 1,292,800 -c----w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:14:42 1,292,800 -c----w C:\WINDOWS\system32\dllcache\quartz.dll
- 2006-07-13 08:48:58 202,240 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2004-08-19 22:39:44 23,040 -c--a-w C:\WINDOWS\system32\dllcache\setup.exe
- 2008-02-16 09:01:22 1,495,040 -c----w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2008-04-21 07:01:23 1,495,040 -c----w C:\WINDOWS\system32\dllcache\shdocvw.dll
- 2008-02-16 09:01:23 474,624 -c----w C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2008-04-21 07:01:23 474,624 -c----w C:\WINDOWS\system32\dllcache\shlwapi.dll
- 2008-02-16 09:01:23 616,960 -c----w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-04-21 07:01:24 616,960 -c----w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2008-02-16 09:01:23 662,016 -c----w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-04-21 07:01:24 662,016 -c----w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-06-21 16:01:39 26,824 ----a-w C:\WINDOWS\system32\drivers\avgmfx86.sys
- 2007-08-19 17:27:24 36,096 ----a-w C:\WINDOWS\system32\drivers\VIRAGTLT.SYS
+ 2008-03-17 17:23:30 39,808 ----a-w C:\WINDOWS\system32\drivers\VIRAGTLT.SYS
- 2008-02-16 09:01:18 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-04-21 07:01:15 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2008-02-16 09:01:18 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-04-21 07:01:15 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2008-02-16 09:01:18 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-04-21 07:01:15 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2008-02-16 09:01:18 251,392 ----a-w C:\WINDOWS\system32\iepeers.dll
+ 2008-04-21 07:01:15 251,392 ----a-w C:\WINDOWS\system32\iepeers.dll
- 1998-10-20 22:05:44 54,784 ----a-w C:\WINDOWS\system32\Inetwh32.dll
+ 2000-08-04 15:25:30 49,152 ----a-w C:\WINDOWS\system32\INETWH32.dll
- 2008-02-16 09:01:18 96,768 ----a-w C:\WINDOWS\system32\inseng.dll
+ 2008-04-21 07:01:16 96,768 ----a-w C:\WINDOWS\system32\inseng.dll
- 2005-10-27 07:55:30 49,152 ----a-w C:\WINDOWS\system32\JJAKEn.dll
+ 2005-10-27 06:55:30 49,152 ----a-w C:\WINDOWS\system32\JJAKEn.dll
- 2008-02-16 09:01:19 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-04-21 07:01:16 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2005-05-24 10:27:16 213,048 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavss.dll
+ 2007-08-29 13:47:20 94,208 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
+ 2007-08-29 13:49:54 950,272 ----a-w C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll
+ 2008-03-25 02:32:44 218,496 ----a-r C:\WINDOWS\system32\Macromed\Flash\FlashUtil9f.exe
- 2008-02-23 04:11:52 74,649 ----a-w C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
+ 2008-07-04 10:25:24 74,137 ----a-w C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
- 2008-05-09 21:35:04 16,863,864 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-05-29 23:35:11 17,486,968 ----a-w C:\WINDOWS\system32\MRT.exe
- 2008-02-16 22:31:22 3,080,704 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-04-21 07:01:20 3,080,704 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2008-02-16 09:01:21 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-04-21 07:01:20 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2008-02-16 09:01:21 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-04-21 07:01:20 146,432 ----a-w C:\WINDOWS\system32\msrating.dll
- 2008-02-16 09:01:21 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-04-21 07:01:21 532,480 ----a-w C:\WINDOWS\system32\mstime.dll
- 2005-10-19 17:19:08 1,327,189 ----a-w C:\WINDOWS\system32\odSupp_M.dll
+ 2005-10-19 16:19:08 1,327,189 ----a-w C:\WINDOWS\system32\odSupp_M.dll
- 2008-02-16 09:01:21 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-04-21 07:01:21 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2001-06-14 09:30:48 1,044,480 ----a-w C:\WINDOWS\system32\ROBOEX32.DLL
+ 2002-04-12 14:23:56 1,044,480 ----a-w C:\WINDOWS\system32\ROBOEX32.DLL
- 2008-02-16 09:01:22 1,495,040 ----a-w C:\WINDOWS\system32\shdocvw.dll
+ 2008-04-21 07:01:23 1,495,040 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2008-02-16 09:01:23 474,624 ----a-w C:\WINDOWS\system32\shlwapi.dll
+ 2008-04-21 07:01:23 474,624 ----a-w C:\WINDOWS\system32\shlwapi.dll
- 2007-01-03 09:22:10 16,176 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:19:29 18,808 ------w C:\WINDOWS\system32\spmsg.dll
- 2008-02-16 09:01:23 616,960 ----a-w C:\WINDOWS\system32\urlmon.dll
+ 2008-04-21 07:01:24 616,960 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2007-04-10 13:01:38 337,280 ------w C:\WINDOWS\system32\WgaTray.exe
+ 2008-04-23 15:17:42 909,864 ----a-w C:\WINDOWS\system32\WGATray.exe
- 2006-05-05 10:14:42 237,568 ----a-w C:\WINDOWS\system32\wlanapi.dll
+ 2006-05-05 09:14:42 237,568 ----a-w C:\WINDOWS\system32\wlanapi.dll
- 2006-06-01 09:12:38 184,320 ----a-w C:\WINDOWS\system32\WlanApp.dll
+ 2006-06-01 08:12:38 184,320 ----a-w C:\WINDOWS\system32\WlanApp.dll
- 2008-02-15 23:03:16 367,104 ----a-w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-04-17 11:03:49 367,104 ----a-w C:\WINDOWS\system32\xpsp3res.dll
+ 2006-12-01 20:56:00 96,256 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
+ 2006-12-01 22:25:52 1,101,824 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2006-12-01 22:25:56 1,093,120 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 22:25:58 69,632 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-01 22:26:00 57,856 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 22:08:00 40,960 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-01 22:08:00 45,056 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 22:08:00 65,536 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 22:08:00 57,344 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 22:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 22:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 22:08:00 61,440 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 22:08:00 49,152 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 22:08:00 49,152 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-01 22:46:44 65,536 ----a-w C:\WINDOWS\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 00:39 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2003-07-31 11:22 4616192]
"Adobe Reader Speed Launcher"="D:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 20:51 39792]
"SunJavaUpdateSched"="C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"QuickTime Task"="C:\Programmi\QuickTime\qttask.exe" [2007-11-15 00:43 286720]
"iTunesHelper"="E:\Programmi\iTunes\iTunesHelper.exe" [2007-11-15 14:11 267048]
"SMSTray"="e:\Programmi\Samsung\Samsung Media Studio 5\SMSTray.exe" [2007-09-20 09:23 132624]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-06-21 18:02 1231128]
"D-Link AirPlus XtremeG"="C:\Programmi\D-Link\AirPlus XtremeG\AirPlusCFG.exe" [2006-06-16 10:24 1323008]
"ANIWZCS2Service"="C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2006-06-01 16:59 49152]
"nwiz"="nwiz.exe" [2003-07-31 11:22 323584 C:\WINDOWS\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-20 00:39 15360]
C:\Documents and Settings\Rocco.HOME\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Gamma.lnk - C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 20:16:50 113664]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "C:\Programmi\Windows Desktop Search\MSNLNamespaceMgr.dll" [2007-02-05 15:39 294400]
"{88485281-8b4b-4f8d-9ede-82e29a064277}"= "C:\PROGRA~1\MarkAny\CONTEN~1\MACSMA~1.DLL" [2004-11-23 17:51 192512]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=avgrsstx.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.yv12"= yv12vfw.dll
"VIDC.JPEG"= JPEGCODE.DLL
"VIDC.MPEG"= JPEGCODE.DLL
"msacm.l3codecp"= l3codecp.acm
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wd.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UltraSMS]
--a------ 2008-02-13 11:55 4138496 C:\Programmi\UltraSMS\UltraSMS.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"E:\\Programmi\\eMule\\emule.exe"=
"C:\\Programmi\\Grisoft\\AVG7\\avgamsvr.exe"=
"C:\\Programmi\\Grisoft\\AVG7\\avgemc.exe"=
"E:\\Programmi\\iTunes\\iTunes.exe"=
"C:\\Activity\\nxServer\\nxServer.exe"=
"E:\\Programmi\\Camfrog\\Camfrog Video Chat\\Camfrog Video Chat.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"D:\\AVGDownload\\tpflashfiler_bin\\ffe.exe"=
"E:\\Giochi\\World of Warcraft\\Repair.exe"=
"C:\\WINDOWS\\system32\\muzapp.exe"=
"C:\\Programmi\\Internet Explorer\\iexplore.exe"=
"C:\\Programmi\\AVG\\AVG8\\avgupd.exe"=
"C:\\Programmi\\AVG\\AVG8\\avgemc.exe"=
"C:\\Programmi\\AVG\\AVG8\\avgnsx.exe"=
"C:\\Programmi\\Electronic Arts\\EADM\\Core.exe"=
"D:\\Programmi\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1755:TCP"= 1755:TCP:Emule TCP
"1765:UDP"= 1765:UDP:Emule UDP
"3724:TCP"= 3724:TCP:Blizzard Downloader: 3724
R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\Drivers\avgrkx86.sys [2008-06-21 18:01]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-06-21 18:01]
R2 athsgt;athsgt;C:\WINDOWS\system32\DRIVERS\athsgt.sys [2007-07-11 16:15]
R2 avg8emc;AVG8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-06-21 18:01]
R2 avg8wd;AVG8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-06-21 18:01]
R2 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-06-21 18:02]
R2 limsgt;limsgt;C:\WINDOWS\system32\DRIVERS\limsgt.sys [2007-07-11 16:15]
R3 A3AB;D-Link AirPro 802.11a/b Wireless Adapter Service(A3AB);C:\WINDOWS\system32\DRIVERS\A3AB.sys [2006-05-11 14:11]
S3 adxapie;adxapie;C:\DOCUME~1\ROCCO~1.HOM\IMPOST~1\Temp\adxapie.sys []
S3 eusk3usb;SmartKey 3 USB;C:\WINDOWS\system32\Drivers\eusk3usb.sys [2005-07-26 15:42]
S3 V0330VID;WebCam Vista;C:\WINDOWS\system32\DRIVERS\V0330Vid.sys [2006-11-03 19:01]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\##Home#ViaLibera#Via Libera contabilità 5.0 + aggiornamenti alla 5.50]
\Shell\AutoRun\command - K:\autorun.exe
.
Contenuto della cartella 'Scheduled Tasks'
"2008-07-05 22:42:16 C:\WINDOWS\Tasks\OGADaily.job"
- C:\WINDOWS\system32\OGAVerify.exe
"2008-07-06 10:06:28 C:\WINDOWS\Tasks\OGALogon.job"
- C:\WINDOWS\system32\OGAVerify.exe
.
- - - - ORPHANS REMOVED - - - -
HKCU-Run-CurseClient - E:\Giochi\World of Warcraft\Interface\AddOns\Curse\CurseClient.exe
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-06 16:18:15
Windows 5.1.2600 Service Pack 2 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
**************************************************************************
.
Ora fine scansione: 2008-07-06 16.22.04
ComboFix-quarantined-files.txt 2008-07-06 14:20:59
ComboFix2.txt 2008-06-01 18:56:06
ComboFix3.txt 2007-11-03 17:51:35
26 Directory 7,156,391,936 byte disponibili
31 Directory 7,479,844,864 byte disponibili
381 --- E O F --- 2008-06-20 01:07:03
VirIT eXplorer Lite Log
[SCANSIONE DELLA MEMORIA]
OK
[SCANSIONE DELLA MEMORIA]
OK
--------------------------------------------------------
06/07/2008 - 16:39:41
[SCANSIONE DEL REGISTRO]
OK
[A:]
BOOT SECTOR: OK
[C:]
MASTER BOOT RECORD: OK
BOOT SECTOR: OK
C:\Muestras\LDR64.DLL.Muestra EliBagle v11.44 Infetto da Trojan.Win32.Agent.YM
[D:]
MASTER BOOT RECORD: OK
BOOT SECTOR: OK
[E:]
MASTER BOOT RECORD: OK
BOOT SECTOR: OK
[F:]
[K:]
Chiavi Registro infette: 0.
Files Infetti: 1.
Files Sospetti: 0.
Files Analizzati: 221456.
Files Totali: 221456.
Chiavi Registro rimosse: 0.
Virus Rimossi: 0.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19.04.31, on 06/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\crypserv.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\VEXPLITE\viritsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe
E:\Programmi\iTunes\iTunesHelper.exe
E:\Programmi\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Programmi\D-Link\AirPlus XtremeG\AirPlusCFG.exe
C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\AVG\AVG8\avgtray.exe
E:\Programmi\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - D:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVGTOOLBAR - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O3 - Toolbar: AVGTOOLBAR - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "E:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SMSTray] e:\Programmi\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [D-Link AirPlus XtremeG] C:\Programmi\D-Link\AirPlus XtremeG\AirPlusCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programmi\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - D:\Programmi\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - e:\Programmi\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - e:\Programmi\ICQ6\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/webplayer/stage6/windows/AutoDLDivXWebPlayerInstaller.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-4b393176ae729f8d.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F184A6DA-2B5A-4507-8555-C05C5C5C9A9B} (ITCClient Control) - https://82.85.38.60/itcclient.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Programmi\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Programmi\File comuni\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Virit eXplorer Lite (viritsvclite) - TG Soft Sas www.tgsoft.it - C:\VEXPLITE\viritsvc.exe
--
End of file - 8758 bytes |
|
| Top |
|
|
Sante62
Dio maturo
Registrato: 27/06/07 17:55
Messaggi: 3477
Residenza: Floridia
|
| Inviato: 06 Lug 2008 19:42 Oggetto: |
|
|
Sono residui di Bagle;
Hai fatto la scansione con Elibagla per caso?
Altrimenti procedi tramite questa discussione
Dopo fai la scansione con Systemscan e posta il log generato come
indicato quì |
|
| Top |
|
|
Blax
Eroe in grazia degli dei
Registrato: 02/03/07 19:34
Messaggi: 97
|
| Inviato: 07 Lug 2008 13:30 Oggetto: |
|
|
No non avevo fatto lo scan con Elibagla.
L'ho fatto ora ma sembra non aver trovato nulla.
Ecco i log di Elibagla e di Systemscan.
Grazie.
Mon Jul 07 12:02:20 2008
EliBagle v11.55 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 4 de Julio del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):
Mon Jul 07 12:02:29 2008
EliBagle v11.55 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 4 de Julio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\
Nº Total de Directorios: 6503
Nº Total de Ficheros: 74386
Nº de Ficheros Analizados: 11953
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
Mon Jul 07 12:21:04 2008
EliBagle v11.55 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 4 de Julio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad D:\
Nº Total de Directorios: 1292
Nº Total de Ficheros: 22866
Nº de Ficheros Analizados: 744
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
Mon Jul 07 12:26:21 2008
EliBagle v11.55 (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 4 de Julio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad E:\
Nº Total de Directorios: 12543
Nº Total de Ficheros: 125701
Nº de Ficheros Analizados: 1812
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados: 0
[URL="http://www.freefilehosting.net/download/3j9g7"]07_07_2008_13_22_report.zip[/URL] |
|
| Top |
|
|
Sante62
Dio maturo
Registrato: 27/06/07 17:55
Messaggi: 3477
Residenza: Floridia
|
| Inviato: 07 Lug 2008 14:24 Oggetto: |
 |
|
Va bene, il log risulta pulito...
Adesso collegati a Kaspersky online scanner e procedi con la scansione estesa del PC... |
|
| Top |
|
|
|
|
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi
|
|
FAQ
Cerca
Lista utenti
Gruppi
Registrati
Profilo
Messaggi privati
Log in
