Olimpo Informatico

claudio82 · Comune mortale Registrato: 19/01/10 22:30 Messaggi: 1

Non essendo sicuro poichè non praticissimo di combofix. Ho fatto una scansione con esso e non mi eliminato nulla,è possibile davvero che il mio pc sia pulito però volevo avere un vostro parere di qualche voce che magari voi pensiate possa essere sospetta.

Questo è il file di log di Combofix:

ComboFix 10-01-19.01 - xp 19/01/2010 21.20.28.3.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.1014.528 [GMT 1:00]
Eseguito da: c:\documents and settings\xp\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100119-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((( Files Creati Da 2009-12-19 al 2010-01-19 )))))))))))))))))))))))))))))))))))
.

2010-01-19 14:44 . 2010-01-19 14:44 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-03 03:35 . 2010-01-03 03:35 -------- d-----w- c:\programmi\MSXML 4.0
2010-01-02 13:59 . 2010-01-02 13:57 397824 ----a-w- c:\windows\system32\CF25239.exe
2010-01-02 11:54 . 2010-01-02 11:54 -------- d-----w- c:\windows\ServicePackFiles
2010-01-01 22:35 . 2010-01-01 22:35 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\F-Secure
2010-01-01 22:32 . 2010-01-01 22:32 -------- d-----w- c:\documents and settings\xp\Dati applicazioni\QuickScan
2009-12-31 02:41 . 2009-12-31 02:41 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.001\UserData
2009-12-31 02:41 . 2009-12-31 02:41 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.001\Tracing
2009-12-31 02:41 . 2009-12-31 02:41 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.001\P5JavaClientSettings
2009-12-30 21:25 . 2010-01-19 20:20 -------- d-----w- c:\windows\system32\CatRoot2
2009-12-30 18:01 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\UserData
2009-12-30 18:01 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\P5JavaClientSettings
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Documenti
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Dati applicazioni
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Preferiti
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Modelli
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Menu Avvio
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000\Impostazioni locali
2009-12-30 17:59 . 2009-12-31 02:23 -------- d-s---w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9.000
2009-12-30 16:08 . 2009-12-31 02:23 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\UserData
2009-12-30 16:08 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\P5JavaClientSettings
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Documenti
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Dati applicazioni
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Preferiti
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Modelli
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Menu Avvio
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9\Impostazioni locali
2009-12-30 16:04 . 2009-12-31 02:24 -------- d-s---w- c:\documents and settings\HelpAssistant.ACER-13DB0A52D9
2009-12-30 15:27 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant\UserData
2009-12-30 15:27 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant\Tracing
2009-12-30 15:27 . 2009-12-31 02:24 -------- d-----w- c:\documents and settings\HelpAssistant\P5JavaClientSettings
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Preferiti
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Modelli
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Menu Avvio
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Impostazioni locali
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Documenti
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-----w- c:\documents and settings\HelpAssistant\Dati applicazioni
2009-12-30 15:23 . 2009-12-31 02:25 -------- d-s---w- c:\documents and settings\HelpAssistant

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-19 15:26 . 2009-03-26 18:41 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2010-01-19 15:26 . 2009-03-26 18:50 5115824 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
2010-01-19 14:44 . 2009-04-21 18:12 -------- d-----w- c:\documents and settings\xp\Dati applicazioni\dvdcss
2010-01-18 18:52 . 2009-11-19 10:08 -------- d-----w- c:\documents and settings\xp\Dati applicazioni\vlc
2010-01-12 14:20 . 2009-07-22 17:37 -------- d-----w- c:\programmi\PokerStars.IT
2010-01-07 15:07 . 2009-03-26 18:50 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-01-07 15:07 . 2009-03-26 18:41 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-01-03 03:35 . 2009-06-17 20:20 -------- d-----w- c:\programmi\Panda Security
2010-01-03 03:02 . 2007-08-09 17:53 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2010-01-02 19:07 . 2009-11-24 19:05 79488 ----a-w- c:\documents and settings\xp\Dati applicazioni\Sun\Java\jre1.6.0_17\gtapi.dll
2010-01-02 12:30 . 2009-03-26 23:37 -------- d-----w- c:\programmi\JkDefrag
2010-01-01 22:47 . 2009-04-05 18:09 -------- d-----w- c:\programmi\eMule
2009-12-31 02:06 . 2007-08-09 17:49 -------- d--h--w- c:\programmi\InstallShield Installation Information
2009-12-31 02:06 . 2007-08-09 17:37 -------- d-----w- c:\programmi\Broadcom
2009-12-24 23:29 . 2009-07-23 18:46 -------- d-----w- c:\documents and settings\xp\Dati applicazioni\uTorrent
2009-12-08 20:58 . 2009-07-28 16:38 1 ----a-w- c:\documents and settings\xp\Dati applicazioni\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2009-11-27 19:10 . 2007-08-09 17:55 94136 ----a-w- c:\documents and settings\Administrator\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-11-27 15:14 . 2009-11-27 15:14 -------- d-----w- c:\programmi\JRE
2009-11-27 15:14 . 2009-05-26 23:04 -------- d-----w- c:\programmi\OpenOffice.org 3
2009-11-24 23:54 . 2009-03-13 13:27 1280480 ----a-w- c:\windows\system32\aswBoot.exe
2009-11-24 23:51 . 2009-03-13 13:27 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-11-24 23:50 . 2009-03-13 13:27 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-11-24 23:50 . 2009-03-13 13:27 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-11-24 23:50 . 2009-03-13 13:27 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-11-24 23:49 . 2009-03-13 13:27 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-11-24 23:48 . 2009-03-13 13:27 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-11-24 23:47 . 2009-03-13 13:27 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-11-24 23:47 . 2009-03-13 13:27 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-11-20 19:42 . 2007-08-10 06:56 97236 ----a-w- c:\windows\system32\perfc010.dat
2009-11-20 19:42 . 2007-08-10 06:56 505986 ----a-w- c:\windows\system32\perfh010.dat
.

------- Sigcheck -------

[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[7] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 01D5EAAFF224415A7FF513E4C882BE30 . 360320 . . [5.1.2600.3394] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\a43a40dec52d2202c514fab10b5b4eb2\tcpip.sys
[7] 2004-08-19 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2010-01-02_14.11.42 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-19 19:46 . 2010-01-19 19:46 16384 c:\windows\Temp\Perflib_Perfdata_a18.dat
+ 2010-01-19 19:45 . 2010-01-19 19:45 16384 c:\windows\Temp\Perflib_Perfdata_660.dat
+ 2010-01-19 19:45 . 2010-01-19 19:45 16384 c:\windows\Temp\Perflib_Perfdata_4bc.dat
+ 2004-08-19 18:00 . 2009-06-25 08:44 59392 c:\windows\system32\wdigest.dll
+ 2004-08-19 18:00 . 2009-06-25 08:44 56320 c:\windows\system32\secur32.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 48640 c:\windows\system32\mqupgrd.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 48640 c:\windows\system32\mqupgrd.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 95744 c:\windows\system32\mqsec.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 95744 c:\windows\system32\mqsec.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 16896 c:\windows\system32\mqise.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 16896 c:\windows\system32\mqise.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 47104 c:\windows\system32\mqdscli.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 47104 c:\windows\system32\mqdscli.dll
+ 2004-08-19 18:00 . 2009-06-22 11:49 19968 c:\windows\system32\mqbkup.exe
- 2004-08-19 18:00 . 2004-08-19 18:00 19968 c:\windows\system32\mqbkup.exe
+ 2004-08-19 18:00 . 2009-06-22 11:48 91776 c:\windows\system32\drivers\mqac.sys
+ 2004-08-19 18:00 . 2009-06-22 11:34 92544 c:\windows\system32\drivers\ksecdd.sys
+ 2004-08-19 20:00 . 2009-06-25 08:44 59392 c:\windows\system32\dllcache\wdigest.dll
+ 2004-08-19 20:00 . 2009-06-25 08:44 56320 c:\windows\system32\dllcache\secur32.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 48640 c:\windows\system32\dllcache\mqupgrd.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 48640 c:\windows\system32\dllcache\mqupgrd.dll
- 2004-08-19 20:00 . 2004-08-19 20:00 95744 c:\windows\system32\dllcache\mqsec.dll
+ 2004-08-19 20:00 . 2009-06-25 18:34 95744 c:\windows\system32\dllcache\mqsec.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 16896 c:\windows\system32\dllcache\mqise.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 16896 c:\windows\system32\dllcache\mqise.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 47104 c:\windows\system32\dllcache\mqdscli.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 47104 c:\windows\system32\dllcache\mqdscli.dll
+ 2004-08-19 18:00 . 2009-06-22 11:49 19968 c:\windows\system32\dllcache\mqbkup.exe
- 2004-08-19 18:00 . 2004-08-19 18:00 19968 c:\windows\system32\dllcache\mqbkup.exe
+ 2004-08-19 18:00 . 2009-06-22 11:48 91776 c:\windows\system32\dllcache\mqac.sys
+ 2004-08-19 18:00 . 2009-06-22 11:34 92544 c:\windows\system32\dllcache\ksecdd.sys
+ 2009-06-24 18:56 . 2009-06-24 18:56 73728 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe
- 2007-04-13 19:58 . 2007-04-13 19:58 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2008-05-27 23:49 . 2008-05-27 23:49 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2008-05-27 23:49 . 2008-05-27 23:49 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
- 2007-04-13 19:57 . 2007-04-13 19:57 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2008-05-27 23:49 . 2008-05-27 23:49 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2007-04-13 19:57 . 2007-04-13 19:57 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2008-05-28 00:30 . 2008-05-28 00:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
- 2007-04-13 20:30 . 2007-04-13 20:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2010-01-03 02:58 . 2010-01-03 02:58 32768 c:\windows\Installer\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}\icon.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 35088 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\oisicon.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 35088 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\oisicon.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 18704 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\mspicons.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 18704 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\mspicons.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 20240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\cagicon.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 20240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\cagicon.exe
+ 2010-01-03 03:01 . 2010-01-03 03:01 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_a1d386c3\System.Drawing.Design.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_abf6a5b3\CustomMarshalers.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB970238\update\spcustom.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 18808 c:\windows\$hf_mig$\KB970238\spmsg.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB960803\update\spcustom.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 18808 c:\windows\$hf_mig$\KB960803\spmsg.dll
+ 2004-08-19 18:00 . 2009-06-22 11:49 4608 c:\windows\system32\mqsvc.exe
- 2004-08-19 18:00 . 2004-08-19 18:00 4608 c:\windows\system32\mqsvc.exe
+ 2004-08-19 18:00 . 2009-06-22 11:49 4608 c:\windows\system32\dllcache\mqsvc.exe
- 2004-08-19 18:00 . 2004-08-19 18:00 4608 c:\windows\system32\dllcache\mqsvc.exe
- 2007-04-18 01:27 . 2008-10-15 19:05 367104 c:\windows\system32\xpsp3res.dll
+ 2007-04-18 01:27 . 2009-04-15 09:56 367104 c:\windows\system32\xpsp3res.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 351232 c:\windows\system32\winhttp.dll
+ 2004-08-19 18:00 . 2008-12-16 12:47 351232 c:\windows\system32\winhttp.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 169472 c:\windows\system32\Setup\msmqocm.dll
+ 2007-04-25 14:21 . 2009-06-25 08:44 168448 c:\windows\system32\schannel.dll
+ 2004-08-19 18:00 . 2009-04-15 15:16 584192 c:\windows\system32\rpcrt4.dll
+ 2009-06-01 12:10 . 2010-01-19 14:45 158056 c:\windows\system32\Restore\rstrlog.dat
+ 2004-08-19 18:00 . 2009-10-13 10:51 267776 c:\windows\system32\oakley.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 267776 c:\windows\system32\oakley.dll
+ 2004-08-19 18:00 . 2009-08-05 09:05 205312 c:\windows\system32\mswebdvd.dll
+ 2004-08-19 18:00 . 2009-09-11 14:34 133632 c:\windows\system32\msv1_0.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 519168 c:\windows\system32\mqutil.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 519168 c:\windows\system32\mqutil.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 186880 c:\windows\system32\mqtrig.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 186880 c:\windows\system32\mqtrig.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 117248 c:\windows\system32\mqtgsvc.exe
+ 2004-08-19 18:00 . 2009-06-22 11:49 117248 c:\windows\system32\mqtgsvc.exe
+ 2004-08-19 18:00 . 2009-06-25 18:34 517120 c:\windows\system32\mqsnap.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 123392 c:\windows\system32\mqrtdep.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 123392 c:\windows\system32\mqrtdep.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 177152 c:\windows\system32\mqrt.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 177152 c:\windows\system32\mqrt.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 661504 c:\windows\system32\mqqm.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 225280 c:\windows\system32\mqoa.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 225280 c:\windows\system32\mqoa.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 138240 c:\windows\system32\mqad.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 138240 c:\windows\system32\mqad.dll
+ 2004-08-19 18:00 . 2009-06-25 08:44 730112 c:\windows\system32\lsasrv.dll
+ 2004-08-19 18:00 . 2009-06-25 08:44 298496 c:\windows\system32\kerberos.dll
+ 2004-08-19 18:00 . 2009-08-21 06:50 450560 c:\windows\system32\jscript.dll
- 2004-08-19 18:00 . 2007-12-18 14:40 450560 c:\windows\system32\jscript.dll
+ 2007-08-10 06:51 . 2010-01-03 03:04 347400 c:\windows\system32\FNTCACHE.DAT
- 2007-08-10 06:51 . 2009-11-27 19:10 347400 c:\windows\system32\FNTCACHE.DAT
- 2004-08-19 20:00 . 2004-08-19 20:00 351232 c:\windows\system32\dllcache\winhttp.dll
+ 2004-08-19 20:00 . 2008-12-16 12:47 351232 c:\windows\system32\dllcache\winhttp.dll
+ 2007-04-25 14:21 . 2009-06-25 08:44 168448 c:\windows\system32\dllcache\schannel.dll
+ 2004-08-19 20:00 . 2009-04-15 15:16 584192 c:\windows\system32\dllcache\rpcrt4.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 267776 c:\windows\system32\dllcache\oakley.dll
+ 2004-08-19 18:00 . 2009-10-13 10:51 267776 c:\windows\system32\dllcache\oakley.dll
+ 2004-08-19 18:00 . 2009-08-05 09:05 205312 c:\windows\system32\dllcache\mswebdvd.dll
+ 2004-08-19 20:00 . 2009-09-11 14:34 133632 c:\windows\system32\dllcache\msv1_0.dll
+ 2004-08-19 20:00 . 2009-06-25 18:34 169472 c:\windows\system32\dllcache\msmqocm.dll
+ 2004-08-19 20:00 . 2009-06-25 18:34 519168 c:\windows\system32\dllcache\mqutil.dll
- 2004-08-19 20:00 . 2004-08-19 20:00 519168 c:\windows\system32\dllcache\mqutil.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 186880 c:\windows\system32\dllcache\mqtrig.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 186880 c:\windows\system32\dllcache\mqtrig.dll
+ 2004-08-19 18:00 . 2009-06-22 11:49 117248 c:\windows\system32\dllcache\mqtgsvc.exe
- 2004-08-19 18:00 . 2004-08-19 18:00 117248 c:\windows\system32\dllcache\mqtgsvc.exe
+ 2004-08-19 18:00 . 2009-06-25 18:34 517120 c:\windows\system32\dllcache\mqsnap.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 123392 c:\windows\system32\dllcache\mqrtdep.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 123392 c:\windows\system32\dllcache\mqrtdep.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 177152 c:\windows\system32\dllcache\mqrt.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 177152 c:\windows\system32\dllcache\mqrt.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 661504 c:\windows\system32\dllcache\mqqm.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 225280 c:\windows\system32\dllcache\mqoa.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 225280 c:\windows\system32\dllcache\mqoa.dll
+ 2004-08-19 18:00 . 2009-06-25 18:34 138240 c:\windows\system32\dllcache\mqad.dll
- 2004-08-19 18:00 . 2004-08-19 18:00 138240 c:\windows\system32\dllcache\mqad.dll
+ 2004-08-19 20:00 . 2009-06-25 08:44 730112 c:\windows\system32\dllcache\lsasrv.dll
+ 2004-08-19 20:00 . 2009-06-25 08:44 298496 c:\windows\system32\dllcache\kerberos.dll
+ 2004-08-19 18:00 . 2009-08-21 06:50 450560 c:\windows\system32\dllcache\jscript.dll
- 2004-08-19 18:00 . 2007-12-18 14:40 450560 c:\windows\system32\dllcache\jscript.dll
+ 2008-05-27 23:49 . 2008-05-27 23:49 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2007-04-13 19:58 . 2007-04-13 19:58 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2008-05-27 23:48 . 2008-05-27 23:48 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2007-04-13 19:56 . 2007-04-13 19:56 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2007-04-13 20:30 . 2007-04-13 20:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2008-05-28 00:30 . 2008-05-28 00:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2010-01-03 02:58 . 2010-01-03 02:58 429568 c:\windows\Installer\1b58f79.msi
- 2007-08-09 17:53 . 2007-08-09 17:53 888080 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\wordicon.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 888080 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\wordicon.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 272648 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pubs.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 272648 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pubs.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 922384 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pptico.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 922384 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\pptico.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 845584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 845584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 217864 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\misc.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 217864 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\misc.exe
+ 2009-03-20 00:01 . 2009-03-20 00:01 835584 c:\windows\assembly\temp\Z8GOW4CKS0\System.Drawing.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_f87a833e\System.Drawing.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_ac1eec04\System.Drawing.Design.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 118784 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_edaac478\CustomMarshalers.dll
+ 2010-01-03 02:59 . 2008-10-15 19:05 367104 c:\windows\$NtUninstallKB970238$\xpsp3res.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 402296 c:\windows\$NtUninstallKB970238$\spuninst\updspapi.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 233848 c:\windows\$NtUninstallKB970238$\spuninst\spuninst.exe
+ 2010-01-03 02:59 . 2004-08-19 18:00 581120 c:\windows\$NtUninstallKB970238$\rpcrt4.dll
+ 2010-01-03 02:59 . 2004-08-19 18:00 351232 c:\windows\$NtUninstallKB960803$\winhttp.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 402296 c:\windows\$NtUninstallKB960803$\spuninst\updspapi.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 233848 c:\windows\$NtUninstallKB960803$\spuninst\spuninst.exe
+ 2010-01-03 02:59 . 2007-11-30 12:39 402296 c:\windows\$hf_mig$\KB970238\update\updspapi.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 763768 c:\windows\$hf_mig$\KB970238\update\update.exe
+ 2010-01-03 02:59 . 2007-11-30 12:39 233848 c:\windows\$hf_mig$\KB970238\spuninst.exe
+ 2009-04-15 15:24 . 2009-04-15 15:24 585216 c:\windows\$hf_mig$\KB970238\SP3QFE\rpcrt4.dll
+ 2009-04-15 14:52 . 2009-04-15 14:52 585216 c:\windows\$hf_mig$\KB970238\SP3GDR\rpcrt4.dll
+ 2009-04-15 09:56 . 2009-04-15 09:56 367104 c:\windows\$hf_mig$\KB970238\SP2QFE\spru0410.dll
+ 2009-04-15 15:29 . 2009-04-15 15:29 583168 c:\windows\$hf_mig$\KB970238\SP2QFE\rpcrt4.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 402296 c:\windows\$hf_mig$\KB960803\update\updspapi.dll
+ 2010-01-03 02:59 . 2007-11-30 12:39 763768 c:\windows\$hf_mig$\KB960803\update\update.exe
+ 2010-01-03 02:59 . 2007-11-30 12:39 233848 c:\windows\$hf_mig$\KB960803\spuninst.exe
+ 2008-12-16 12:23 . 2008-12-16 12:23 354304 c:\windows\$hf_mig$\KB960803\SP3QFE\winhttp.dll
+ 2008-12-16 12:30 . 2008-12-16 12:30 354304 c:\windows\$hf_mig$\KB960803\SP3GDR\winhttp.dll
+ 2008-12-16 12:39 . 2008-12-16 12:39 354304 c:\windows\$hf_mig$\KB960803\SP2QFE\winhttp.dll
+ 2009-07-20 23:03 . 2009-07-20 23:03 1348432 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9876.0_x-ww_a621d1d5\msxml4.dll
+ 2007-03-08 15:33 . 2009-08-14 15:20 1850112 c:\windows\system32\win32k.sys
- 2007-02-28 16:06 . 2008-08-14 13:37 2146304 c:\windows\system32\ntoskrnl.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2146304 c:\windows\system32\ntoskrnl.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2024448 c:\windows\system32\ntkrnlpa.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2024448 c:\windows\system32\ntkrnlpa.exe
+ 2009-07-20 23:05 . 2009-07-20 23:05 1348432 c:\windows\system32\msxml4.dll
+ 2007-03-08 15:33 . 2009-08-14 15:20 1850112 c:\windows\system32\dllcache\win32k.sys
+ 2007-02-28 16:06 . 2009-08-04 17:16 2189696 c:\windows\system32\dllcache\ntoskrnl.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2189696 c:\windows\system32\dllcache\ntoskrnl.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2024448 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2024448 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2007-02-28 06:06 . 2009-08-04 17:16 2066688 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2007-02-28 06:06 . 2008-08-14 13:37 2066688 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2146304 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2146304 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2007-04-13 20:35 . 2007-04-13 20:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2008-05-28 00:35 . 2008-05-28 00:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2008-05-28 00:35 . 2008-05-28 00:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2007-04-13 20:35 . 2007-04-13 20:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2007-04-13 19:57 . 2007-04-13 19:57 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2008-05-27 23:48 . 2008-05-27 23:48 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
- 2007-04-13 19:57 . 2007-04-13 19:57 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2008-05-27 23:48 . 2008-05-27 23:48 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2007-04-13 19:50 . 2007-04-13 19:50 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2008-05-27 23:43 . 2008-05-27 23:43 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2009-09-18 08:30 . 2009-09-18 08:30 5016576 c:\windows\Installer\1b58fa3.msp
+ 2007-08-09 17:53 . 2010-01-03 03:02 1172240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\xlicons.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 1172240 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\xlicons.exe
- 2007-08-09 17:53 . 2007-08-09 17:53 1165584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\accicons.exe
+ 2007-08-09 17:53 . 2010-01-03 03:02 1165584 c:\windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\accicons.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2189696 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2189696 c:\windows\Driver Cache\i386\ntoskrnl.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2024448 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2024448 c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2007-02-28 06:06 . 2008-08-14 13:37 2066688 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2007-02-28 06:06 . 2009-08-04 17:16 2066688 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2007-02-28 16:06 . 2009-08-04 17:16 2146304 c:\windows\Driver Cache\i386\ntkrnlmp.exe
- 2007-02-28 16:06 . 2008-08-14 13:37 2146304 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2009-03-20 00:01 . 2009-03-20 00:01 3391488 c:\windows\assembly\temp\Z7FNV3BJRZ\mscorlib.dll
+ 2009-03-20 00:01 . 2009-03-20 00:01 2088960 c:\windows\assembly\temp\MV3BJRZ7FN\System.Xml.dll
+ 2009-03-20 00:00 . 2009-03-20 00:00 1232896 c:\windows\assembly\temp\HRZ6EMT19H\System.dll
+ 2009-03-20 00:00 . 2009-03-20 00:00 1265664 c:\windows\assembly\temp\AIQY6EMU2A\System.Web.dll
+ 2009-03-20 00:01 . 2009-03-20 00:01 3018752 c:\windows\assembly\temp\8HPX5DLT18\System.Windows.Forms.dll
+ 2009-03-20 00:00 . 2009-03-20 00:00 1966080 c:\windows\assembly\temp\4DLS08GOW4\System.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 4792320 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_9e5991f6\System.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_647c9b5f\System.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 5513216 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_fb10e935\System.Xml.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_645bb18f\System.Xml.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 7884800 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_edcfba64\System.Windows.Forms.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 3018752 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_35c37e92\System.Windows.Forms.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_dd1dfd38\System.Drawing.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 1470464 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_6e4549fc\System.Design.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_5b4d4374\System.Design.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_1823b13e\mscorlib.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 8908800 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_0f4702e7\mscorlib.dll
- 2009-03-20 00:00 . 2009-03-20 00:00 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
- 2009-03-20 00:00 . 2009-03-20 00:00 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-01-03 03:01 . 2010-01-03 03:01 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-08-10 20:08 . 2009-08-10 20:08 11315712 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp
+ 2009-08-10 13:09 . 2009-08-10 13:09 17254912 c:\windows\Installer\1b58f90.msp
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdobeUpdater"="c:\programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe" [2008-09-26 2356088]
"msnmsgr"="c:\programmi\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"Google Update"="c:\documents and settings\xp\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" [2009-11-08 135664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"preload"="c:\windows\RUNXMLPL.exe" [2007-04-21 20480]
"IAAnotif"="c:\programmi\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-03-21 174872]
"SynTPEnh"="c:\programmi\Synaptics\SynTP\SynTPEnh.exe" [2007-09-07 1015808]
"AzMixerSel"="c:\programmi\Realtek\InstallShield\AzMixerSel.exe" [2005-06-11 53248]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-19 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-19 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-19 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-19 455168]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-06-13 142104]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-06-13 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-06-13 138008]
"SynTPStart"="c:\programmi\Synaptics\SynTP\SynTPStart.exe" [2007-09-07 102400]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2007-01-08 68640]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-08 52256]
"Acer ePresentation HPD"="c:\acer\Empowering Technology\ePresentation\ePresentation.exe" [2007-03-02 208896]
"ePower_DMC"="c:\acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 475136]
"Boot"="c:\acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 579584]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-05-28 342528]
"eRecoveryService"="c:\acer\Empowering Technology\eRecovery\eRAgent.exe" [2007-07-11 421888]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-10-17 858632]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-28 16132608]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-07-28 148888]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-19 15360]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Acer Empowering Technology.lnk - c:\acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2008-11-17 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"65533:TCP"= 65533:TCP:Services
"52344:TCP"= 52344:TCP:Services
"4583:TCP"= 4583:TCP:Services
"2479:TCP"= 2479:TCP:Services
"3389:TCP"= 3389:TCP:Remote Desktop

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [13/03/2009 14.27.22 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [13/03/2009 14.27.22 20560]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{61E3FE32-07B9-4563-A3E0-2DE2D620FE10}]
2008-02-25 09:55 7680 ----a-w- c:\programmi\PixiePack Codec Pack\InstallerHelper.exe
.
Contenuto della cartella 'Scheduled Tasks'

2010-01-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2144015867-2496841287-2906468167-1008Core.job
- c:\documents and settings\xp\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2009-11-08 19:51]

2010-01-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2144015867-2496841287-2906468167-1008UA.job
- c:\documents and settings\xp\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2009-11-08 19:51]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://it.intl.acer.yahoo.com/
uInternet Connection Wizard,ShellNext = hxxp://it.intl.acer.yahoo.com/
uInternet Settings,ProxyOverride = local
uSearchURL,(Default) = hxxp://it.rd.yahoo.com/customize/ycomp/defaults/su/*http://it.yahoo.com
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{C4046502-6524-4d87-896C-878F57D1FF07} - c:\programmi\PokerStars.IT\PokerStarsUpdate.exe
TCP: {D7EAE8D6-D9BD-4E68-BABD-8E0907BED964} = 208.67.222.222,208.67.220.220
FF - ProfilePath - c:\documents and settings\xp\Dati applicazioni\Mozilla\Firefox\Profiles\n3g4ii4v.default\
FF - prefs.js: browser.startup.homepage - hxxp://it.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:it:official
FF - plugin: c:\documents and settings\xp\Impostazioni locali\Dati applicazioni\Google\Update\1.2.183.13\npGoogleOneClick8.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: content.max.tokenizing.time - 200000
FF - user.js: content.notify.interval - 100000
FF - user.js: content.switch.threshold - 650000
FF - user.js: nglayout.initialpaint.delay - 300
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-19 21:24
Windows 5.1.2600 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(980)
c:\windows\system32\MSNCHATHOOK.DLL
c:\windows\system32\sysenv.dll
c:\windows\system32\CryptoAPI.dll
c:\windows\system32\ShowErrMsg.dll
c:\windows\system32\MFC71U.DLL
.
Ora fine scansione: 2010-01-19 21:25:52
ComboFix-quarantined-files.txt 2010-01-19 20:25
ComboFix2.txt 2010-01-02 14:15
ComboFix3.txt 2009-04-08 09:52

Pre-Run: 8.321.306.624 byte disponibili
Post-Run: 8.296.914.944 byte disponibili

- - End Of File - - DE5765EBB30BCA01A75A09AA5B39576D

Spero di aver postato come si deve e soprattutto spero di non aver violato nessuna regola. Grazie mille per la risposta.

Saluti

Claudio

Anny

Ciao Claudio - dal log che hai pubblicato non risulta nessuna infezione - la domanda è - perché è lo hai pubblicato? - il tuo pc mostra dei problemi?

R16 · Dio maturo Registrato: 07/03/08 22:58 Messaggi: 10129

Ciao a tutti. Ciao