Pietro_Catania

La Vostra Invidia Sarà La Mia Fortuna! Oppure Vivere significa Rischiare. Chi non rischia è già morto.

Buongiorno a TUTTI!!!!

Buonasera ragazzuoli/e, passavo di qui per inserire un annucio, bè....mi fermo 5 minuti, a chi offro un aperitivo?

Vendo HP PAVILION ZT3000 NON FUNZIONANTE PREMENDO L’ACCENSIONE LE SPIE NON SI ACCENDONO E IL PORTATILE NON PARTE. Non ho il tempo per farlo aggiustare,il problema è probabilmente un possibile falso contatto sulla scheda madre. Il computer è tenuto veramente bene, il monitor da 15,4" è perfetto e funzionante non ha pixel bruciati o graffi. IDEALE PER TECNICI PER IL RECUPERO PEZZI DI RICAMBIO O RISOLVENDO IL PROBLEMA. PENSATE CHE SOLO IL MONITOR HA UN VALORE DI 120€. RIPETO, IL PRODOTTO VIENE VENDUTO COME NON FUNZIONANTE……. Le caratteristiche sono: Alimentatore Processore Centrino 1.5 Memoria 256 MB Schermo da 15,4" panoramico Wireless Wi-fi Firewire Masterizzatore Lettore dvd / Cd-rom Lettore di schede SD Pcmcia Scheda Video Ati Mobility Radeon 9200 NON HA L’HARD DISK. [/size] Se siete interessati contattatemi in privato. ciao ciao a tutti/e.

Salve a tutti, un mio amico ha il seguente problema: quando fà partire un file .AVI, sul task manager appare "dumprep.exe" e si prende il 100% di memoria effettuata scansione con antivirus, antispy e altro, ma non trova nulla di strano, ho fatto il log che posto, "mi sembra" che non c'è nulla di strano. mi aiutate please?Grazie. Logfile of HijackThis v1.99.1 Scan saved at 20.28.02, on 13/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe C:\Programmi\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ZoneLabs\isafe.exe C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Programmi\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\System32\alg.exe C:\Programmi\Zone Labs\ZoneAlarm\zlclient.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Andrea\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Programmi\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Programmi\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [Zone Labs Client] "C:\Programmi\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [spyware Doctor] "C:\Programmi\Spyware Doctor\swdoctor.exe" /Q O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [EPSON Stylus Photo RX560 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBPE.EXE /FU "C:\WINDOWS\TEMP\E_SA0.tmp" /EF "HKCU" O8 - Extra context menu item: Apri immagine in &Microsoft PhotoDraw - res://C:\PROGRA~1\MICROS~2\Office\1040\phdintl.dll/phdContext.htm O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ServiceLayer - Nokia. - C:\Programmi\File comuni\PCSuite\Services\ServiceLayer.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe Il problema glielo fà solo ed esclusivamente con i file AVI. per sicurezza ho disinstallato tutti i lettori player (VLC,Real player, windows media player,nero pòlayer....... perchè ne aveva un bel pò.) Adesso c'è solo Windows media player aggiornato. Grazie a tutti.

Ciao kuma, allora il mio amico ha fatto tuto quello che mi hai detto. però non ha risolto....... Il problema che non mi ha ben spiegato prima glielo fà solo su pochi file, e si è accorto anche di un'altra cosa I video che fà con la macchinetta fino a 2 Mpixel li legge bene, quelli fatti sopra i 2Mpx gli si mette questa applicazione e gli crasha il pc. In poche parole alcuni file che prima gli si leggevano tranquillamente adesso crashano e altri partono....consigli?

Benvenuti a tutti!!!!!

Buonasera a tutti. ben ritrovati, passavo di qua e vi faccio un salutino.

Vi faccio sapere il prima possibile se risolve. grazie kuma.

Salve a tutti, purtroppo mio padre ha cliccato su una cartella inviata da mio cugino (ovviamente spy) che purtroppo non riesco a togliere la cartella si chiama myimage.zip, se si scompatta, si autoinstalla un sacco di file con myimage........alcuni li ho tolti, ma questi non riesco proprio ad eliminarli. Questi sono i file che elimino (fatto anche in modalità provvisoria) ma una volta che si riavvia il pc me li rimette in automatico...... effettuata la scansione con AVG e non mi trova nulla, stesso risultato con Spyware Terminator Non mi dà nessun problema a livello software hardware, ma convivere con uno spy, non è bello Questo è il log HiJackThis l'ho visto io e mi sembra che non ci siano problemi però una voce esperta fà sempre comodo Spero in un vostro aiuto. ciao ciao Pietro. In questo momento stò rifacendo la scansione con Spyware terminator, mooolto approfondita. a dopo. Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 12.10.38, on 28/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Programmi\PC Tools Firewall Plus\FWService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe C:\PROGRA~1\Grisoft\AVG7\avgemc.exe C:\Programmi\LogMeIn\x86\RaMaint.exe C:\Programmi\LogMeIn\x86\LogMeIn.exe C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Programmi\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe C:\WINDOWS\system32\nvsvc32.exe C:\Programmi\Photodex\ProShowGold\ScsiAccess.exe C:\Programmi\Spyware Terminator\sp_rsser.exe C:\WINDOWS\system32\svchost.exe c:\programmi\pinnacle\shared files\programs\mediaserver\pmshost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\Programmi\Lexmark X74-X75\lxbbbmgr.exe C:\PROGRA~1\FILECO~1\PCSuite\DATALA~1\DATALA~1.EXE C:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE C:\Programmi\File comuni\Real\Update_OB\realsched.exe C:\Programmi\LogMeIn\x86\LogMeInSystray.exe C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe C:\Programmi\Lexmark X74-X75\lxbbbmon.exe C:\PROGRA~1\Grisoft\AVG7\avgcc.exe C:\Programmi\PC Tools Firewall Plus\FirewallGUI.exe C:\Programmi\Spyware Terminator\SpywareTerminatorShield.exe C:\Programmi\PKR\pkrpal.exe C:\Programmi\iTunes\iTunesHelper.exe C:\Programmi\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe C:\Programmi\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe C:\Programmi\DAEMON Tools\daemon.exe C:\WINDOWS\system32\ctfmon.exe C:\Programmi\File comuni\Ahead\lib\NMBgMonitor.exe C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE C:\Programmi\MSN Messenger\MsnMsgr.Exe C:\PROGRA~1\Grisoft\AVG7\avgw.exe C:\Programmi\VisualTaskTips\VisualTaskTips.exe C:\Programmi\iPod\bin\iPodService.exe C:\Programmi\Mozilla Firefox\firefox.exe C:\Programmi\MSN Messenger\usnsvc.exe C:\Programmi\Spyware Terminator\SpywareTerminator.exe C:\Unità D\File Setup\HiJackThis_v2.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll O3 - Toolbar: StylerToolBar - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Programmi\styler\TB\StylerTB.dll O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Lexmark X74-X75] "C:\Programmi\Lexmark X74-X75\lxbbbmgr.exe" O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\FILECO~1\PCSuite\DATALA~1\DATALA~1.EXE O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Programmi\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP O4 - HKLM\..\Run: [00PCTFW] "C:\Programmi\PC Tools Firewall Plus\FirewallGUI.exe" -s O4 - HKLM\..\Run: [spywareTerminator] "C:\Programmi\Spyware Terminator\SpywareTerminatorShield.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [PKR Pal] "C:\Programmi\PKR\pkrpal.exe" -osboot O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [PMCRemote] C:\Programmi\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe O4 - HKLM\..\Run: [PMCS] "C:\Programmi\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe" -host -clearDebug O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKCU\..\Run: [DAEMON Tools] "C:\Programmi\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Santonocito\Dati applicazioni\Mozilla\Firefox\Profiles\qo4byzkg.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Santonocito\Dati applicazioni\Mozilla\Firefox\Profiles/qo4byzkg.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVIZIO LOCALE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: VisualTaskTips.lnk = C:\Programmi\VisualTaskTips\VisualTaskTips.exe O8 - Extra context menu item: &eBay Search - res://C:\Programmi\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Programmi\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Programmi\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PC Tools Firewall Plus (PCToolsFirewallPlus) - Unknown owner - C:\Programmi\PC Tools Firewall Plus\FWService.exe O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - c:\programmi\pinnacle\shared files\programs\mediaserver\pmshost.exe O23 - Service: ScsiAccess - Unknown owner - C:\Programmi\Photodex\ProShowGold\ScsiAccess.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Programmi\Spyware Terminator\sp_rsser.exe -- End of file - 9125 bytes sono indeciso su questa voce O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\********\Dati applicazioni\Mozilla\Firefox\Profiles\qo4byzkg.default\extensions\{B13721C7-F507 -4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\**********\Dati applicazioni\Mozilla\Firefox\Profiles/qo4byzkg.default\extensions\{B13721C7-F507 -4982-B2E5-502A71474FED}" ------>Cosa dovrebbe essere?

tutti e due ok. nessun problema rivelato. Risultato: 0/32 (0%) ok, faccio lo scan con kapersky, ci sentiamo fra un paio di ore

lo faccio adesso, quello di prima, lo cancello? File pCastCtl.dll ricevuto il 2007.10.28 14:24:01 (CET) Stato corrente: Carico ... in coda attesa scansione finito NON TROVATO INTERROTTO Risultato: 8/32 (25%)

Niente, ho riportato il ripristino ad un mese fà, ma ancora il problema c'è

NIENTE DI NIENTE!!!! Ho ripristinato il pc a una settimana fà, ma il problema è sempre lo stesso......... che devo fare. myimage.zip

Niente Kuma, stò myimage.....su regseeker esiste sempre......... se faccio un ripristino più vecchiotto, un film che ho registrato dalla televisione, lo perdo? oppure rimane? il film l'ho registrato il 25. Se faccio un ripristino di giorno 20, il film lo perdo?

File pcast.dll ricevuto il 2007.10.28 14:22:10 (CET) Risultato: 0/31 (0%) Antivirus Versione Ultimo aggiornamento Risultato AhnLab-V3 2007.10.27.0 2007.10.26 - AntiVir 7.6.0.30 2007.10.26 - Authentium 4.93.8 2007.10.26 - Avast 4.7.1074.0 2007.10.27 - AVG 7.5.0.503 2007.10.27 - BitDefender 7.2 2007.10.28 - CAT-QuickHeal 9.00 2007.10.26 - ClamAV 0.91.2 2007.10.28 - DrWeb 4.44.0.09170 2007.10.28 - eSafe 7.0.15.0 2007.10.22 - eTrust-Vet 31.2.5244 2007.10.26 - Ewido 4.0 2007.10.28 - FileAdvisor 1 2007.10.28 - Fortinet 3.11.0.0 2007.10.19 - F-Prot 4.3.2.48 2007.10.26 - F-Secure 6.70.13030.0 2007.10.27 - Ikarus T3.1.1.12 2007.10.27 - Kaspersky 7.0.0.125 2007.10.28 - McAfee 5150 2007.10.26 - Microsoft 1.2908 2007.10.28 - NOD32v2 2621 2007.10.28 - Norman 5.80.02 2007.10.26 - Panda 9.0.0.4 2007.10.27 - Prevx1 V2 2007.10.28 - Rising 19.46.61.00 2007.10.28 - Sophos 4.23.0 2007.10.28 - Sunbelt 2.2.907.0 2007.10.27 - Symantec 10 2007.10.28 - TheHacker 6.2.9.110 2007.10.27 - VBA32 3.12.2.4 2007.10.28 - VirusBuster 4.3.26:9 2007.10.27 - File pCastCtl.dll ricevuto il 2007.10.28 14:24:01 (CET) Stato corrente: Carico ... in coda attesa scansione finito NON TROVATO INTERROTTO Risultato: 8/32 (25%) Antivirus Versione Ultimo aggiornamento Risultato AhnLab-V3 2007.10.27.0 2007.10.26 - AntiVir 7.6.0.30 2007.10.26 - Authentium 4.93.8 2007.10.26 - Avast 4.7.1074.0 2007.10.27 - AVG 7.5.0.503 2007.10.27 Adware Generic.RAS BitDefender 7.2 2007.10.28 Adware.Dudu.F CAT-QuickHeal 9.00 2007.10.26 - ClamAV 0.91.2 2007.10.28 - DrWeb 4.44.0.09170 2007.10.28 - eSafe 7.0.15.0 2007.10.22 - eTrust-Vet 31.2.5244 2007.10.26 - Ewido 4.0 2007.10.28 Adware.Dudu FileAdvisor 1 2007.10.28 - Fortinet 3.11.0.0 2007.10.19 - F-Prot 4.3.2.48 2007.10.26 W32/Adware.DKM F-Secure 6.70.13030.0 2007.10.27 - Ikarus T3.1.1.12 2007.10.27 not-a-virus:AdWare.Win32.Dudu.f Kaspersky 7.0.0.125 2007.10.28 not-a-virus:AdWare.Win32.Dudu.f McAfee 5150 2007.10.26 - Microsoft 1.2908 2007.10.28 - NOD32v2 2621 2007.10.28 Win32/Adware.DuDu Norman 5.80.02 2007.10.26 - Panda 9.0.0.4 2007.10.27 Adware/Dudu Prevx1 V2 2007.10.28 - Rising 19.46.61.00 2007.10.28 - Sophos 4.23.0 2007.10.28 - Sunbelt 2.2.907.0 2007.10.27 - Symantec 10 2007.10.28 - TheHacker 6.2.9.110 2007.10.27 - VBA32 3.12.2.4 2007.10.28 - VirusBuster 4.3.26:9 2007.10.27 - Webwasher-Gateway 6.6.1 2007.10.28 - Tento di fare un ripristino........ ti faccio sapere come và.

Ma quanti antivirus controlla? per adesso, il primo è così: AhnLab-V3 2007.10.27.0 2007.10.26 - AntiVir 7.6.0.30 2007.10.26 - Authentium 4.93.8 2007.10.26 - Avast 4.7.1074.0 2007.10.27 - AVG 7.5.0.503 2007.10.27 - BitDefender 7.2 2007.10.28 - CAT-QuickHeal 9.00 2007.10.26 - ClamAV 0.91.2 2007.10.28 - DrWeb 4.44.0.09170 2007.10.28 - eSafe 7.0.15.0 2007.10.22 - eTrust-Vet 31.2.5244 2007.10.26 - Ewido 4.0 2007.10.28 - FileAdvisor 1 2007.10.28 - Fortinet 3.11.0.0 2007.10.19 - F-Prot 4.3.2.48 2007.10.26 - F-Secure 6.70.13030.0 2007.10.27 - Ikarus T3.1.1.12 2007.10.27 - Kaspersky 7.0.0.125 2007.10.28 - McAfee 5150 2007.10.26 - Microsoft 1.2908 2007.10.28 - NOD32v2 2621 2007.10.28 - Norman 5.80.02 2007.10.26 - Panda 9.0.0.4 2007.10.27 - appena finiscono entrambi te li posto l'atro invece è così AhnLab-V3 2007.10.27.0 2007.10.26 - AntiVir 7.6.0.30 2007.10.26 - Authentium 4.93.8 2007.10.26 - Avast 4.7.1074.0 2007.10.27 - AVG 7.5.0.503 2007.10.27 Adware Generic.RAS BitDefender 7.2 2007.10.28 Adware.Dudu.F CAT-QuickHeal 9.00 2007.10.26 - ClamAV 0.91.2 2007.10.28 - DrWeb 4.44.0.09170 2007.10.28 - eSafe 7.0.15.0 2007.10.22 - eTrust-Vet 31.2.5244 2007.10.26 - Ewido 4.0 2007.10.28 Adware.Dudu FileAdvisor 1 2007.10.28 - Fortinet 3.11.0.0 2007.10.19 - F-Prot 4.3.2.48 2007.10.26 W32/Adware.DKM F-Secure 6.70.13030.0 2007.10.27 - Ikarus T3.1.1.12 2007.10.27 not-a-virus:AdWare.Win32.Dudu.f

Pcast è un porgramma per vedere la TV........però se dici che è virus lo elimino.....

ahahahhahahahhahah. Ti ho preceduto Ho fatto la scansione, ma purtroppo mi ha riavviato il pc, già aveva individuato 7 files....... che devo ricominciare daccapo?Che dici se faccio un ripristino di sistema?potrei risolvere? Penso che il virus l'ho preso tra giorno 24 e giorno 25 ottobre 2007

Ho fatto la scnasione, ma purtroppo mi ha riavviato il pc, già aveva individuato 7 files....... che devo ricominciare daccapo?Che dici se faccio un ripristino di sistema?potrei risolvere? Penso che il virus l'ho preso tra giorno 24 e giorno 25 ottobre 2007 ComboFix 07-10-26.4 - ************* 2007-10-28 13.57.15.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.253 [GMT 1:00] Eseguito da: C:\Unità D\File Setup\ComboFix.exe * Creato nuovo punto di ripristino . ((((((((((((((((((((((((((((((((((((( Altre eliminazioni ))))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\********\ravmonlog C:\Programmi\pcast C:\WINDOWS\system32\LMIinit.dll . ((((((((((((((((((((((((( Files Creati Da 2007-09-28 al 2007-10-28 ))))))))))))))))))))))))))))))))))) . 2007-10-28 13:56 51,200 --a------ C:\WINDOWS\NirCmd.exe 2007-10-28 13:12 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab 2007-10-28 13:12 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Kaspersky Lab 2007-10-27 14:01 <DIR> d-------- C:\Programmi\eBay 2007-10-27 14:01 <DIR> d-------- C:\Documents and Settings\*******\Dati applicazioni\WholeSecurity 2007-10-26 17:25 <DIR> d-------- C:\Programmi\CCleaner 2007-10-26 12:33 <DIR> d-------- C:\Programmi\MSN Messenger 2007-10-24 09:00 664 --a------ C:\WINDOWS\system32\d3d9caps.dat 2007-10-23 23:43 <DIR> d-------- C:\Documents and Settings\*******\Dati applicazioni\dvdcss 2007-10-21 18:07 <DIR> d-------- C:\Documents and Settings\******\Dati applicazioni\Styler 2007-10-21 17:45 <DIR> d-------- C:\Programmi\VisualTaskTips 2007-10-21 17:45 <DIR> d-------- C:\Programmi\styler 2007-10-21 17:39 <DIR> d-------- C:\WINDOWS\VistaMizer 2007-10-20 21:31 <DIR> d-------- C:\Programmi\File comuni\Java 2007-10-20 20:25 573,440 --a------ C:\WINDOWS\system32\pcast.dll 2007-10-20 20:20 491,520 --a------ C:\WINDOWS\system32\pCastCtl.dll 2007-10-20 19:33 <DIR> d-------- C:\TV 2007-10-20 19:26 19,456 --------- C:\WINDOWS\system32\asapi.dll 2007-10-20 19:26 11,264 --------- C:\WINDOWS\system32\drivers\asapiW2k.sys 2007-10-20 19:25 196,096 --------- C:\WINDOWS\system32\MACD32.DLL 2007-10-20 19:25 138,752 --------- C:\WINDOWS\system32\MASE32.DLL 2007-10-20 19:25 136,192 --------- C:\WINDOWS\system32\MAMC32.DLL 2007-10-20 19:25 57,856 --------- C:\WINDOWS\system32\MASD32.DLL 2007-10-20 19:25 27,648 --------- C:\WINDOWS\system32\MA32.DLL 2007-10-20 19:24 2,179,072 --------- C:\WINDOWS\system32\mfc71d.dll 2007-10-20 19:24 737,280 --------- C:\WINDOWS\system32\msvcp70d.dll 2007-10-20 19:24 536,576 --------- C:\WINDOWS\system32\msvcr70d.dll 2007-10-20 19:24 385,100 --------- C:\WINDOWS\system32\MSVCRTD.DLL 2007-10-20 19:24 85,504 --------- C:\WINDOWS\system32\lame_enc.dll 2007-10-20 17:10 <DIR> d-------- C:\Programmi\SopCast 2007-10-20 17:10 <DIR> d-------- C:\Documents and Settings\*******\Dati applicazioni\SopCast 2007-10-15 10:37 <DIR> d--hs---- C:\found.000 2007-10-13 14:23 <DIR> d--h----- C:\Documents and Settings\Administrator\Risorse di stampa 2007-10-13 14:23 <DIR> d--h----- C:\Documents and Settings\Administrator\Risorse di rete 2007-10-13 14:23 <DIR> d-------- C:\Documents and Settings\Administrator\Preferiti 2007-10-13 14:23 <DIR> d--h----- C:\Documents and Settings\Administrator\Modelli 2007-10-13 14:23 <DIR> dr------- C:\Documents and Settings\Administrator\Menu Avvio 2007-10-13 14:23 <DIR> d--h----- C:\Documents and Settings\Administrator\Impostazioni locali 2007-10-13 14:23 <DIR> d-------- C:\Documents and Settings\Administrator\Documenti 2007-10-13 14:23 <DIR> dr-h----- C:\Documents and Settings\Administrator\Dati applicazioni 2007-10-09 15:59 <DIR> d-------- C:\Programmi\iTunes 2007-10-09 15:59 <DIR> d-------- C:\Programmi\iPod 2007-10-07 00:23 <DIR> d-------- C:\Documents and Settings\******\Dati applicazioni\Eltima Software 2007-09-29 11:14 <DIR> d-------- C:\CloneDVDTemp 2007-09-29 11:07 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Elaborate Bytes . (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2007-10-28 11:41 --------- d-----w C:\Programmi\Spyware Terminator 2007-10-28 11:41 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\Spyware Terminator 2007-10-28 10:28 --------- d-----w C:\Documents and Settings\********\Dati applicazioni\AVG7 2007-10-27 23:13 --------- d-----w C:\Programmi\LogMeIn 2007-10-27 20:06 --------- d-----w C:\Programmi\Everest Poker 2007-10-27 19:17 --------- d-----w C:\Programmi\eMule 2007-10-27 17:19 --------- d-----w C:\Programmi\PKR 2007-10-27 13:01 --------- d--h--w C:\Programmi\InstallShield Installation Information 2007-10-27 10:51 --------- d-----w C:\Programmi\Mozilla Thunderbird 2007-10-26 21:59 --------- d-----w C:\Documents and Settings\******\Dati applicazioni\Skype 2007-10-26 16:34 --------- d-----w C:\Programmi\GetRight 2007-10-21 16:44 219,648 ----a-w C:\WINDOWS\system32\uxtheme.dll 2007-10-20 20:33 --------- d-----w C:\Programmi\Java 2007-10-20 18:24 --------- d-----w C:\Programmi\Pinnacle 2007-10-18 18:48 83,288 ----a-w C:\WINDOWS\system32\LMIRfsClientNP.dll 2007-10-18 18:47 23,736 ----a-w C:\WINDOWS\system32\lmimirr.dll 2007-10-18 18:47 21,496 ----a-w C:\WINDOWS\system32\LMIport.dll 2007-10-18 18:47 10,040 ----a-w C:\WINDOWS\system32\lmimirr2.dll 2007-10-09 14:44 --------- d-----w C:\Programmi\Apple Software Update 2007-10-02 09:59 --------- d-----w C:\Programmi\PokerStars 2007-10-02 08:35 --------- d-----w C:\Programmi\PC Tools Firewall Plus 2007-09-27 17:41 --------- d-----w C:\Programmi\Motorola Phone Tools 2007-09-27 17:38 92,064 ----a-w C:\Documents and Settings\******\mqdmmdm.sys 2007-09-27 17:38 9,232 ----a-w C:\Documents and Settings\*******\mqdmmdfl.sys 2007-09-27 17:38 79,328 ----a-w C:\Documents and Settings\********\mqdmserd.sys 2007-09-27 17:38 66,656 ----a-w C:\Documents and Settings\******\mqdmbus.sys 2007-09-27 17:38 6,208 ----a-w C:\Documents and Settings\*******\mqdmcmnt.sys 2007-09-27 17:38 5,936 ----a-w C:\Documents and Settings\Santonocito\mqdmwhnt.sys 2007-09-27 17:38 4,048 ----a-w C:\Documents and Settings\Santonocito\mqdmcr.sys 2007-09-27 17:38 25,600 ----a-w C:\Documents and Settings\Santonocito\usbsermptxp.sys 2007-09-27 17:38 22,768 ----a-w C:\Documents and Settings\Santonocito\usbsermpt.sys 2007-09-27 17:37 22,768 ----a-w C:\WINDOWS\system32\drivers\usbsermpt.sys 2007-09-27 17:33 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\BVRP Software 2007-09-27 17:29 --------- d-----w C:\Programmi\Avanquest update 2007-09-27 17:29 --------- d-----w C:\Documents and Settings\Santonocito\Dati applicazioni\InstallShield 2007-09-16 11:04 --------- d-----w C:\Programmi\Photodex Presenter 2007-09-16 11:04 --------- d-----w C:\Programmi\Photodex 2007-09-16 11:04 --------- d-----w C:\Documents and Settings\Santonocito\Dati applicazioni\Netscape 2007-09-16 11:03 --------- d-----w C:\Documents and Settings\Santonocito\Dati applicazioni\Photodex 2007-09-12 08:20 46,112 ----a-w C:\WINDOWS\system32\drivers\LMIRfsDriver.sys 2007-09-12 08:20 10,144 ----a-w C:\WINDOWS\system32\drivers\lmimirr.sys 2007-09-05 19:16 138,624 ----a-w C:\WINDOWS\system32\drivers\sp_rsdrv2.sys 2007-08-31 19:47 0 ---ha-w C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf 2007-08-31 19:47 0 ---ha-w C:\WINDOWS\system32\drivers\Msft_Kernel_motmodem_01005.Wdf 2007-08-31 19:45 --------- d-----w C:\Programmi\File comuni\Motorola Shared 2007-08-21 06:16 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll 2007-07-30 17:19 92,504 ----a-w C:\WINDOWS\system32\cdm.dll 2007-07-30 17:19 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll 2007-07-30 17:19 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe 2007-07-30 17:19 43,352 ----a-w C:\WINDOWS\system32\wups2.dll 2007-07-30 17:19 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll 2007-07-30 17:19 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll 2007-07-30 17:19 207,736 ----a-w C:\WINDOWS\system32\muweb.dll 2007-07-30 17:19 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll 2007-07-30 17:19 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll 2007-07-30 17:18 33,624 ----a-w C:\WINDOWS\system32\wups.dll 2004-10-13 16:24:37 1,694,208 --sha-w C:\WINDOWS\VistaMizer\old\msmsgs.exe . ((((((((((((((((((((((((((((((((((((( Punti Reg Caricati )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* i valori vuoti & legittimi/default non sono visualizzati. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 16:07 C:\WINDOWS\system32\HdAShCut.exe] "SoundMan"="SOUNDMAN.EXE" [2005-06-21 08:09 C:\WINDOWS\SOUNDMAN.EXE] "AlcWzrd"="ALCWZRD.EXE" [2005-07-13 08:47 C:\WINDOWS\ALCWZRD.EXE] "PinnacleDriverCheck"="C:\WINDOWS\system32\PSDrvCheck.exe" [2003-11-10 16:06] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-12-10 12:06] "nwiz"="nwiz.exe" [2005-12-10 12:06 C:\WINDOWS\system32\nwiz.exe] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-12-10 12:06] "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50] "Lexmark X74-X75"="C:\Programmi\Lexmark X74-X75\lxbbbmgr.exe" [2002-10-14 21:17] "DataLayer"="C:\PROGRA~1\FILECO~1\PCSuite\DATALA~1\DATALA~1.EXE" [2004-09-23 09:33] "PCSuiteTrayApplication"="C:\PROGRA~1\Nokia\NOKIAP~1\TRAYAP~1.EXE" [2004-09-15 14:36] "TkBellExe"="C:\Programmi\File comuni\Real\Update_OB\realsched.exe" [2007-06-09 16:01] "LogMeIn GUI"="C:\Programmi\LogMeIn\x86\LogMeInSystray.exe" [2007-09-12 09:20] "Adobe Photo Downloader"="C:\Programmi\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 10:09] "Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06] "AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-10-24 08:07] "00PCTFW"="C:\Programmi\PC Tools Firewall Plus\FirewallGUI.exe" [2007-07-17 21:28] "SpywareTerminator"="C:\Programmi\Spyware Terminator\SpywareTerminatorShield.exe" [2007-09-05 20:16] "QuickTime Task"="C:\Programmi\QuickTime\QTTask.exe" [2007-06-29 05:24] "PKR Pal"="C:\Programmi\PKR\pkrpal.exe" [2007-10-26 13:05] "iTunesHelper"="C:\Programmi\iTunes\iTunesHelper.exe" [2007-09-26 13:42] "PMCRemote"="C:\Programmi\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe" [2005-06-01 21:47] "PMCS"="C:\Programmi\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe" [2005-06-03 15:51] "SunJavaUpdateSched"="C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"="C:\Programmi\DAEMON Tools\daemon.exe" [2006-11-12 11:48] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-19 15:39] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programmi\File comuni\Ahead\lib\NMBgMonitor.exe" [2005-09-08 10:06] "MsnMsgr"="C:\Programmi\MSN Messenger\MsnMsgr.exe" [2007-01-19 11:54] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runonce] "FFTI"=C:\Documents and Settings\******\Dati applicazioni\Mozilla\Firefox\Profiles\qo4byzkg.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\*******\Dati applicazioni\Mozilla\Firefox\Profiles/qo4byzkg.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}" C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\ VisualTaskTips.lnk - C:\Programmi\VisualTaskTips\VisualTaskTips.exe [2006-07-31 12:33:50] R1 sp_rsdrv2;Spyware Terminator Driver 2;\??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys R2 LMIInfo;LogMeIn Kernel Information Provider;\??\C:\Programmi\LogMeIn\x86\RaInfo.sys R2 LMIRfsDriver;LogMeIn Remote File System Driver;\??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys R3 3xHybrid;Pinnacle PCTV 310i Stereo DVB-T;C:\WINDOWS\system32\DRIVERS\3xHybrid.sys R3 lmimirr;lmimirr;C:\WINDOWS\system32\DRIVERS\lmimirr.sys R3 SNPP106;PC CAMERA DATA SOURCE(6029)1.0(32-32);C:\WINDOWS\system32\DRIVERS\snpp106.sys S3 AVMAP_S3C;AvMap S3C Chart Plotter USB Driver (avmap_cp.sys);C:\WINDOWS\system32\Drivers\avmap_cp.sys S3 motmodem;Motorola USB CDC ACM Driver;C:\WINDOWS\system32\DRIVERS\motmodem.sys S3 z3f2bus;Sony Ericsson driver (WDM);C:\WINDOWS\system32\DRIVERS\z3f2bus.sys S3 z3f2mdfl;Sony Ericsson USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\z3f2mdfl.sys S3 z3f2mdm;Sony Ericsson USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\z3f2mdm.sys S3 z3f2mgmt;Sony Ericsson USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\z3f2mgmt.sys S3 z3f2obex;Sony Ericsson USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\z3f2obex.sys [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1ac8a2b0-114e-11dc-9bcc-0013d4fa2bcd}] Auto\command - G:\RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{65407ef4-6f67-11dc-9da1-000000000000}] Auto\command - RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6e80cff2-3202-11dc-9c82-0013d4fa2bcd}] Auto\command - D:\RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{be377366-6b96-11dc-9d8f-0013d4fa2bcd}] Auto\command - D:\RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c01a9528-2703-11dc-9c48-0013d4fa2bcd}] AutoRun\command - D:\autorun\autorun.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8c8cc54-f5ab-11db-9b3c-0013d4fa2bcd}] Auto\command - D:\RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d8da1be9-32fb-11dc-9c89-0013d4fa2bcd}] Auto\command - D:\RavMonE.exe e AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RavMonE.exe e [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{ff733a76-dfb7-11db-9a93-0013d4fa2bcd}] AutoRun\command - H:\Launcher.exe . Contenuto della cartella 'Scheduled Tasks' "2007-10-25 08:33:01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" . ************************************************************************** catchme 0.3.1232 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-10-28 14:08:39 Windows 5.1.2600 Service Pack 2 NTFS scansione processi nascosti ... scansione entrate autostart nascoste ... Scansione files nascosti ... Scansione completata con successo Files nascosti: 0 ************************************************************************** . Ora fine scansione: 2007-10-28 14:09:26 - machine was rebooted . --- E O F ---

35 minuti ancora al 15%.....la giornata si prevede lunga........

Ho fatto con entrambi i tool, ma il problema persiste , entrambi mi dicono malware non trovato prima di riavviare avevo finito la scansione approfondita con AVG riavviato il pc, mi ricompaiono questi. Ora faccio con kapersky.

MSNFix.zip l'ho già fatto, adesso provo con "NO worm Live Messanger" riavvio il pc e ti faccio sapere. O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE OK, allora lo fisso.

[ben]duick[/ben] ciao ciao

[ben] ricer [/ben] Qualsiasi cosa vuoi sapere, noi siamo qui.