fatto tutto ecco il report:
ComboFix 10-01-11.01 - Anselmo 12/01/2010 1.19.20.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.2943.2254 [GMT 1:00]
Eseguito da: d:\documents and settings\Anselmo\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {00000002-0002-0000-7C25-9E7C08000A00}
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
d:\windows\system32\drivers\npf.sys
d:\windows\system32\Packet.dll
d:\windows\system32\pthreadVC.dll
d:\windows\system32\twain_32.dll
d:\windows\system32\wpcap.dll
.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
-------\Service_NPF
((((((((((((((((((((((((( Files Creati Da 2009-12-12 al 2010-01-12 )))))))))))))))))))))))))))))))))))
.
2010-01-11 23:06 . 2010-01-11 23:06 -------- d-----w- d:\programmi\CCleaner
2010-01-11 22:14 . 2010-01-11 22:14 -------- d-----w- d:\programmi\Trend Micro
2010-01-11 16:23 . 2010-01-11 16:23 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Malwarebytes
2010-01-11 16:23 . 2010-01-07 15:07 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2010-01-11 16:23 . 2010-01-11 16:23 -------- d-----w- d:\programmi\Malwarebytes' Anti-Malware
2010-01-11 16:23 . 2010-01-11 16:23 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2010-01-11 16:23 . 2010-01-07 15:07 19160 ----a-w- d:\windows\system32\drivers\mbam.sys
2010-01-11 14:52 . 2010-01-11 14:52 -------- d-----w- d:\programmi\Enigma Software Group
2010-01-07 09:20 . 2010-01-07 09:20 -------- d-----w- d:\programmi\Apowersoft
2010-01-03 22:19 . 2010-01-03 22:19 -------- d-----w- d:\programmi\Adobe Media Player
2010-01-03 21:07 . 2010-01-12 00:26 -------- d-----w- d:\programmi\File comuni\Akamai
2010-01-03 10:50 . 2010-01-03 10:50 -------- d-----w- d:\programmi\YouTube Downloader
2009-12-31 16:51 . 2009-12-31 16:51 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\SWiSH miniMax3
2009-12-31 16:46 . 2009-12-31 16:46 -------- d-----w- d:\programmi\LameACM
2009-12-31 16:45 . 2009-12-31 16:45 -------- d-----w- d:\programmi\File comuni\SWiSHzone.com
2009-12-31 16:45 . 2009-12-31 17:48 -------- d-----w- d:\programmi\SWiSH miniMax3
2009-12-31 14:36 . 2009-12-31 14:36 -------- d-----w- d:\programmi\Aneesoft
2009-12-29 13:53 . 2009-12-29 13:53 -------- d-----w- d:\documents and settings\Anselmo\Impostazioni locali\Dati applicazioni\Downloaded Installations
2009-12-28 17:28 . 2009-12-28 17:28 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\SuperUtils.com
2009-12-28 17:27 . 2009-12-28 17:27 -------- d-----w- d:\programmi\SuperUtils.com
2009-12-27 21:17 . 2009-12-27 21:17 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\AVS4YOU
2009-12-27 21:11 . 2009-12-27 21:11 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\AVS4YOU
2009-12-27 21:10 . 2009-12-27 21:11 -------- d-----w- d:\programmi\File comuni\AVSMedia
2009-12-27 21:10 . 2007-09-27 14:22 261632 ----a-w- d:\windows\system32\mcdvd_32.dll
2009-12-27 21:10 . 2009-12-27 21:11 -------- d-----w- d:\programmi\AVS4YOU
2009-12-27 21:10 . 2003-05-21 12:50 24576 ----a-w- d:\windows\system32\msxml3a.dll
2009-12-25 18:59 . 2009-12-25 18:59 -------- d-sh--w- d:\documents and settings\NetworkService\IETldCache
2009-12-18 15:04 . 2009-12-28 21:20 -------- d-----w- d:\programmi\Crawler
2009-12-18 14:54 . 2009-12-18 14:56 -------- d-----w- d:\programmi\WinClamAVShield
2009-12-18 14:52 . 2009-12-18 14:52 142592 ----a-w- d:\windows\system32\drivers\sp_rsdrv2.sys
2009-12-18 14:52 . 2010-01-11 22:10 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Spyware Terminator
2009-12-18 14:52 . 2010-01-11 22:10 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Spyware Terminator
2009-12-18 14:52 . 2010-01-11 22:09 -------- d-----w- d:\programmi\Spyware Terminator
2009-12-17 14:19 . 2009-12-17 14:22 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\FILEminimizerPictures
2009-12-17 14:19 . 2009-12-17 14:19 -------- d-----w- d:\programmi\FILEminimizer Pictures
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-12 00:28 . 2009-04-20 19:22 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Skype
2010-01-11 23:35 . 2009-09-15 16:52 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2010-01-11 23:34 . 2009-05-30 14:23 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\FileZilla
2010-01-11 23:08 . 2009-04-20 19:25 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\skypePM
2010-01-11 00:23 . 2009-04-08 20:16 -------- d-----w- d:\programmi\SWiSH v2.0
2010-01-07 17:12 . 2009-04-10 20:09 66 ----a-w- d:\documents and settings\Anselmo\Dati applicazioni\ispro4_0.tmp
2010-01-07 09:21 . 2009-10-16 11:57 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Apowersoft
2010-01-06 09:34 . 2009-04-11 21:22 -------- d---a-w- d:\documents and settings\All Users\Dati applicazioni\TEMP
2010-01-04 16:57 . 2009-04-07 16:30 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\NOS
2010-01-03 22:22 . 2009-04-07 09:20 -------- d-----w- d:\programmi\File comuni\Adobe
2010-01-03 20:14 . 2010-01-03 20:14 1956528 ----a-w- d:\documents and settings\All Users\Dati applicazioni\NOS\Adobe_Downloads\install_flash_player_ax.exe
2010-01-03 10:17 . 2009-11-08 12:40 -------- d-----w- d:\programmi\YoutubeMusicDownloader
2009-12-31 14:35 . 2009-04-06 21:19 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab
2009-12-29 13:57 . 2009-04-06 21:22 132408 ----a-w- d:\documents and settings\Anselmo\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-12-29 13:42 . 2009-04-17 08:45 -------- d-----w- d:\programmi\Wondershare
2009-12-25 19:00 . 2009-08-13 22:07 -------- d-----w- d:\programmi\Google
2009-12-18 14:52 . 2009-12-18 14:52 6144 ----a-w- d:\documents and settings\All Users\Dati applicazioni\Spyware Terminator\sp_rsdel.exe
2009-12-18 14:52 . 2009-12-18 14:52 5632 ----a-w- d:\documents and settings\All Users\Dati applicazioni\Spyware Terminator\fileobjinfo.sys
2009-12-13 23:38 . 2009-10-29 22:16 -------- d-----w- d:\programmi\Free Video Converter
2009-12-11 11:09 . 2009-07-28 21:45 56816 ----a-w- d:\windows\system32\drivers\avgntflt.sys
2009-12-09 16:29 . 2009-04-18 13:01 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Audio Editor Deluxe
2009-12-09 16:28 . 2009-04-18 13:00 -------- d-----w- d:\programmi\Audio Editor Deluxe
2009-12-09 14:54 . 2009-04-06 20:22 -------- d--h--w- d:\programmi\InstallShield Installation Information
2009-12-09 12:14 . 2001-08-31 13:00 79514 ----a-w- d:\windows\system32\perfc010.dat
2009-12-09 12:14 . 2001-08-31 13:00 479180 ----a-w- d:\windows\system32\perfh010.dat
2009-12-08 11:12 . 2009-12-08 11:12 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\dvdcss
2009-12-03 08:27 . 2009-12-03 08:27 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Aunsoft
2009-12-03 08:27 . 2009-12-03 08:27 -------- d-----w- d:\programmi\Aunsoft
2009-12-01 18:37 . 2009-05-13 21:47 111 ----a-w- d:\programmi\unlockswf.ini
2009-12-01 17:59 . 2009-04-16 20:28 -------- d-----w- d:\programmi\Moyea
2009-12-01 08:21 . 2009-12-01 08:21 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\F-Secure
2009-11-30 22:53 . 2009-11-30 22:53 -------- d-----w- d:\programmi\Sophos
2009-11-30 22:14 . 2009-07-10 21:51 -------- d-----w- d:\programmi\File comuni\DVDVideoSoft
2009-11-30 22:07 . 2009-11-04 12:14 -------- d-----w- d:\programmi\AllMedia Grabber
2009-11-30 21:59 . 2009-09-15 16:52 -------- d-----w- d:\programmi\Spybot - Search & Destroy
2009-11-30 11:46 . 2009-05-13 15:53 -------- d-----w- d:\programmi\OLYMPUS
2009-11-30 11:40 . 2009-04-28 12:04 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Apple Computer
2009-11-30 11:33 . 2009-11-30 11:33 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Panasonic
2009-11-30 11:29 . 2009-11-30 11:29 -------- d-----w- d:\programmi\File comuni\Panasonic
2009-11-30 11:29 . 2009-11-30 11:29 -------- d-----w- d:\programmi\Panasonic
2009-11-29 15:02 . 2009-11-29 15:02 -------- d-----w- d:\programmi\File comuni\Skype
2009-11-29 15:02 . 2009-11-29 15:02 -------- d-----r- d:\programmi\Skype
2009-11-29 15:02 . 2009-04-20 18:48 -------- d-----w- d:\documents and settings\All Users\Dati applicazioni\Skype
2009-11-24 13:50 . 2009-12-13 21:53 57344 ----a-w- d:\documents and settings\Anselmo\Dati applicazioni\Mozilla\Firefox\Profiles\d01dgee5.default\extensions\{FCAB6FDD-5585-425b-95C1-5ED856F3FD08}\components\nsCatcher.dll
2009-11-21 10:51 . 2009-11-21 10:51 -------- d-----w- d:\programmi\Digiarty
2009-11-20 15:29 . 2009-11-20 15:27 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\GetRightToGo
2009-11-20 15:03 . 2009-11-20 15:03 -------- d-----w- d:\programmi\RichFLV
2009-11-20 15:03 . 2009-11-20 15:03 -------- d-----w- d:\programmi\File comuni\Adobe AIR
2009-11-20 15:03 . 2009-11-20 15:03 38208 ----a-w- d:\documents and settings\Anselmo\Dati applicazioni\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2009-11-20 15:03 . 2009-11-20 15:03 38208 ----a-w- d:\documents and settings\Default User\Dati applicazioni\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2009-11-20 14:54 . 2009-11-20 14:54 -------- d-----w- d:\programmi\Emicsoft Studio
2009-11-18 12:49 . 2009-10-26 11:52 12208 --sha-w- d:\windows\system32\KGyGaAvL.sys
2009-11-17 14:07 . 2009-11-16 13:55 -------- d-----w- d:\programmi\Flash2Video
2009-11-17 14:06 . 2009-11-16 13:51 -------- d-----w- d:\programmi\SWF to AVI
2009-11-17 11:29 . 2009-11-17 11:29 -------- d-----w- d:\programmi\AnyBizSoft
2009-11-16 15:37 . 2009-04-16 20:29 -------- d-----w- d:\documents and settings\Anselmo\Dati applicazioni\Moyea
2009-11-15 14:27 . 2009-10-01 20:58 83 ----a-w- d:\windows\system32\gpupdate.bin
2009-11-15 14:09 . 2009-10-01 20:55 -------- d-----w- d:\programmi\RadioGet
2009-11-14 17:35 . 2009-11-14 17:35 -------- d-----w- d:\programmi\Save Tube Video Company
2009-11-10 13:48 . 2009-11-06 10:40 152576 ----a-w- d:\documents and settings\Anselmo\Dati applicazioni\Sun\Java\jre1.6.0_17\lzma.dll
2009-11-10 13:48 . 2009-11-10 13:48 79488 ----a-w- d:\documents and settings\Anselmo\Dati applicazioni\Sun\Java\jre1.6.0_17\gtapi.dll
2009-10-29 07:40 . 2004-08-19 13:39 916480 ----a-w- d:\windows\system32\wininet.dll
2009-10-21 05:38 . 2004-08-19 13:39 75776 ----a-w- d:\windows\system32\strmfilt.dll
2009-10-21 05:38 . 2004-08-19 13:39 25088 ----a-w- d:\windows\system32\httpapi.dll
2009-10-20 16:20 . 2004-08-03 21:00 265728 ----a-w- d:\windows\system32\drivers\http.sys
2003-12-26 01:00 . 2009-05-13 21:42 335360 ----a-w- d:\programmi\unlockswf.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="d:\programmi\File comuni\Ahead\lib\NMBgMonitor.exe" [2005-10-28 94208]
"swg"="d:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-13 39408]
"SpybotSD TeaTimer"="d:\programmi\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"StaffLogger"="d:\documents and settings\Anselmo\Dati applicazioni\Almeza\StaffLogger\sysdrvmon.exe" [2009-10-07 965120]
"Skype"="d:\programmi\Skype\Phone\Skype.exe" [2009-10-09 25623336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [2006-08-04 53248]
"S3Trayp"="S3trayp.exe" [2006-07-11 176128]
"SkyTel"="SkyTel.EXE" [2007-08-03 1826816]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-27 16844800]
"NeroFilterCheck"="d:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"QuickTime Task"="d:\programmi\QuickTime\qttask.exe" [2009-01-05 413696]
"avgnt"="d:\programmi\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153]
"Adobe Reader Speed Launcher"="d:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="d:\programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"SunJavaUpdateSched"="d:\programmi\Java\jre6\bin\jusched.exe" [2009-10-11 149280]
"PinnacleDriverCheck"="d:\windows\system32\PSDrvCheck.exe" [2003-12-04 406016]
"SpywareTerminator"="d:\progra~1\SPYWAR~1\SpywareTerminatorShield.exe" [2009-12-18 2166784]
"AdobeCS4ServiceManager"="d:\programmi\File comuni\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="d:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
d:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Microsoft Office.lnk - d:\programmi\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Documents and Settings\\All Users\\Dati applicazioni\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 7.0.1.325\\Italian\\setup.exe"=
"d:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"d:\\Programmi\\Save Tube Video Company\\SaveTubeVideoBurn\\downloader.exe"=
"d:\\Programmi\\File comuni\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
"d:\\Programmi\\Macromedia\\Dreamweaver MX\\Dreamweaver.exe"=
"d:\\Programmi\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
R1 SAVRKBootTasks;Boot Tasks Driver;d:\windows\system32\SAVRKBootTasks.sys [01/12/2009 8.27.22 18816]
R1 sp_rsdrv2;Spyware Terminator Driver 2;d:\windows\system32\drivers\sp_rsdrv2.sys [18/12/2009 15.52.26 142592]
R2 Akamai;Akamai NetSession Interface;d:\windows\System32\svchost.exe -k Akamai [19/08/2004 14.39.46 14336]
R3 S3GIGP;S3GIGP;d:\windows\system32\drivers\S3gIGPm.sys [06/04/2009 21.25.05 659456]
S2 gupdate1ca1c62892b932c;Servizio di Google Update (gupdate1ca1c62892b932c);d:\programmi\Google\Update\GoogleUpdate.exe [13/08/2009 23.08.05 133104]
S3 MEMSWEEP2;MEMSWEEP2;\??\d:\windows\system32\1E.tmp --> d:\windows\system32\1E.tmp [?]
S3 QCEmerald;Logitech QuickCam Web;d:\windows\system32\drivers\OVCE.sys [10/06/2009 19.32.26 31872]
S3 RGService;RGService;d:\programmi\RadioGet\RGService.exe [01/10/2009 21.55.25 335872]
S3 STSService;STSService;d:\programmi\SoundTaxi Media Suite\STSService.exe [29/09/2009 11.41.04 335872]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
Akamai REG_MULTI_SZ Akamai
.
Contenuto della cartella 'Scheduled Tasks'
2010-01-12 d:\windows\Tasks\Google Software Updater.job
- d:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-13 22:07]
2010-01-12 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- d:\programmi\Google\Update\GoogleUpdate.exe [2009-08-13 22:08]
2010-01-12 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- d:\programmi\Google\Update\GoogleUpdate.exe [2009-08-13 22:08]
2010-01-11 d:\windows\Tasks\User_Feed_Synchronization-{3477BB23-C474-4A4F-BEF9-2BAB34FCEA2E}.job
- d:\windows\system32\msfeedssync.exe [2007-08-13 02:31]
.
.
------- Scansione supplementare -------
.
uStart Page =
www.millevetrine.com/public/inizio/IE: Crawler Search - tbr:iemenu
IE: Download with Xilisoft Download YouTube Video - d:\programmi\Xilisoft\Download YouTube Video\upod_link.HTM
IE: E&sporta in Microsoft Excel - d:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Sothink SWF Catcher - d:\programmi\File comuni\SourceTec\SWF Catcher\InternetExplorer.htm
TCP: {DDD031FF-5C18-4376-A272-C055750FE31E} = 212.216.112.112,212.216.172.62
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - d:\programmi\Crawler\ctbr.dll
DPF: {96816368-C1E3-414D-A193-63C3CC921990} -
hxxp://hotelatlantestar-rome.remotemana ... Render.ocxFF - ProfilePath - d:\documents and settings\Anselmo\Dati applicazioni\Mozilla\Firefox\Profiles\d01dgee5.default\
FF - prefs.js: browser.search.selectedEngine - GoogleFeed.net
FF - prefs.js: browser.startup.homepage -
hxxp://www.google-feed.net/?CID=2&PID=STVFF - component: d:\documents and settings\Anselmo\Dati applicazioni\Mozilla\Firefox\Profiles\d01dgee5.default\extensions\{FCAB6FDD-5585-425b-95C1-5ED856F3FD08}\components\nsCatcher.dll
FF - component: d:\programmi\Crawler\firefox\components\xcomm.dll
FF - component: d:\programmi\Crawler\firefox\components\xshared.dll
FF - component: d:\programmi\Crawler\firefox\components\xsupport.dll
FF - component: d:\programmi\Crawler\firefox\components\xwsg.dll
FF - component: d:\programmi\Save Tube Video Company\SaveTubeVideoBurn\FF\components\swslib.dll
FF - plugin: d:\programmi\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: d:\programmi\Google\Google Updater\2.4.1636.7222\npCIDetect13.dll
FF - plugin: d:\programmi\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: d:\programmi\Virtual Earth 3D\npVE3D.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - d:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2010-01-12 01:27
Windows 5.1.2600 Service Pack 3 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="D:/Programmi/File comuni/Akamai/rswin_3629.dll"
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Akamai]
"ServiceDll"="D:/Programmi/File comuni/Akamai/rswin_3629.dll"
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\d:\windows\system32\1E.tmp"
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\FlashProp.FlashProp]
@DACL=(02 0000)
@="FlashProp Class"
[HKEY_LOCAL_MACHINE\software\Classes\FlashProp.FlashProp.1]
@DACL=(02 0000)
@="FlashProp Class"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
- - - - - - - > 'winlogon.exe'(548)
d:\programmi\File comuni\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
- - - - - - - > 'explorer.exe'(3400)
d:\windows\system32\WININET.dll
d:\windows\system32\webcheck.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
d:\programmi\Avira\AntiVir Desktop\sched.exe
d:\programmi\Avira\AntiVir Desktop\avguard.exe
d:\windows\system32\crypserv.exe
d:\programmi\Java\jre6\bin\jqs.exe
d:\programmi\SWiSH Studio2\burner\nmsaccessu.exe
d:\programmi\Spyware Terminator\sp_rsser.exe
d:\windows\system32\wdfmgr.exe
d:\windows\system32\wbem\wmiapsrv.exe
d:\windows\system32\VTTimer.exe
d:\windows\system32\S3trayp.exe
d:\windows\RTHDCPL.EXE
d:\programmi\Skype\Plugin Manager\skypePM.exe
.
**************************************************************************
.
Ora fine scansione: 2010-01-12 01:33:56 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2010-01-12 00:33
Pre-Run: 224.356.044.800 byte disponibili
Post-Run: 224.237.002.752 byte disponibili
- - End Of File - - 3D3D42CE627B3F3C4069C92494581387
Registrazione
di anselmo » 11/01/10 16:15 
