balsamo

Pc Lentissimo Ho Un Virus

31 messaggi in questa discussione

Allora quando fai la scansione con MalwareBytes, a fine scansione, seleziona ed elimina tutto quello che ti trova, altrimenti i problemi rimangono. Poi il log di Combofix selezionalo e copialo direttamente qui nel post.

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

No l'altro programma non lascia il log. Per postare quello di combofix devi allegarlo alla discussione con il pulsante upload, oppure copialo direttamente qui sul post.

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

io combifix lo posto come mi hai detto ma dice che è troppo grande (provo con trascinandolo )file:///C:/CombixoF.txt ma non va come devo fare??? scusami ciao e grazie

Modificato da balsamo

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

ComboFix 08-10-12.01 - utente 2008-10-14 20:01:07.2 - NTFSx86

Eseguito da: C:\Documents and Settings\utente\Desktop\ComboFix.exe

* Resident AV is active

ATENÇÃO - ESTA MAQUINA NAO TEM A CONSOLE DE RECUPERAÇÃO INSTALADA !!

.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\WINDOWS\system32\drivers\nod32drv.sys

.

((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_NOD32DRV

-------\Service_nod32drv

((((((((((((((((((((((((( Files Creati Da 2008-09-14 al 2008-10-14 )))))))))))))))))))))))))))))))))))

.

2008-10-10 17:22 . 2008-10-10 17:22 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\DivX

2008-10-10 17:22 . 2008-10-14 17:45 69 --a------ C:\WINDOWS\NeroDigital.ini

2008-10-08 22:43 . 2008-10-08 22:43 <DIR> d-------- C:\Programmi\IObit

2008-10-08 13:57 . 2001-08-30 23:08 87,040 --a------ C:\WINDOWS\system32\wiafbdrv.dll

2008-10-08 13:57 . 2001-08-30 23:08 87,040 --a--c--- C:\WINDOWS\system32\dllcache\wiafbdrv.dll

2008-10-08 13:57 . 2008-04-13 11:45 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys

2008-10-08 13:57 . 2008-04-13 11:45 15,104 --a--c--- C:\WINDOWS\system32\dllcache\usbscan.sys

2008-10-08 13:54 . 2001-08-30 23:08 99,328 --a------ C:\WINDOWS\system32\srusd.dll

2008-10-08 13:54 . 2001-08-30 23:08 99,328 --a--c--- C:\WINDOWS\system32\dllcache\srusd.dll

2008-10-08 13:54 . 2001-08-30 23:07 71,680 --a------ C:\WINDOWS\system32\fnfilter.dll

2008-10-08 13:54 . 2001-08-30 23:07 71,680 --a--c--- C:\WINDOWS\system32\dllcache\fnfilter.dll

2008-10-08 13:54 . 2001-08-30 22:28 6,912 --a------ C:\WINDOWS\system32\drivers\serscan.sys

2008-10-08 13:54 . 2001-08-30 22:28 6,912 --a--c--- C:\WINDOWS\system32\dllcache\serscan.sys

2008-10-08 13:49 . 2001-07-10 18:01 45,056 --------- C:\WINDOWS\system32\Remove48U.exe

2008-10-08 13:49 . 2008-10-08 14:02 11,479 --a------ C:\WINDOWS\Dusb4ar.ini

2008-10-08 13:49 . 2008-10-08 14:02 2,686 --a------ C:\WINDOWS\Ausba4.ini

2008-10-08 13:49 . 2008-10-08 19:48 1,334 --a------ C:\WINDOWS\ScnPanel.ini

2008-10-08 13:49 . 2001-06-22 15:57 766 --------- C:\WINDOWS\Uninstall.ico

2008-10-08 13:48 . 2002-01-18 04:31 167,936 --------- C:\WINDOWS\Ausba4.dll

2008-10-08 13:48 . 2002-01-11 11:54 167,936 -ra------ C:\WINDOWS\A4.dll

2008-10-08 13:48 . 2001-10-18 12:01 45,056 -ra------ C:\WINDOWS\GetKey.dll

2008-10-08 13:48 . 2001-06-07 17:56 18,120 --a------ C:\WINDOWS\system32\drivers\Artec48.sys

2008-10-08 13:48 . 2001-03-14 19:07 8,192 --------- C:\WINDOWS\system32\drivers\Artec48.usb

2008-10-08 13:48 . 2002-01-06 05:57 7,168 -ra------ C:\WINDOWS\system32\48UMicro.dll

2008-10-08 13:48 . 2002-01-23 05:40 1,607 --------- C:\WINDOWS\ePlus48U142.ini

2008-10-07 21:24 . 2008-10-07 21:24 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\MSN6

2008-10-07 21:23 . 2008-10-07 21:23 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\MSN6

2008-10-07 20:17 . 1996-08-23 20:11 384,512 --a------ C:\WINDOWS\system32\MFCO40.DLL

2008-10-07 20:17 . 1995-05-22 06:37 358,400 --a------ C:\WINDOWS\system32\MFC30.DLL

2008-10-07 20:17 . 1995-05-22 06:37 151,040 --a------ C:\WINDOWS\system32\MFCO30.DLL

2008-10-07 20:17 . 1999-07-25 18:12 36,864 --a------ C:\WINDOWS\Photo Express 3.scr

2008-10-07 20:17 . 2008-10-08 14:02 589 --a------ C:\WINDOWS\ULEAD32.INI

2008-10-07 20:16 . 1998-11-13 13:07 307,712 --a------ C:\WINDOWS\IsUn0410.exe

2008-10-07 17:44 . 2006-10-26 19:56 32,592 --a------ C:\WINDOWS\system32\msonpmon.dll

2008-10-07 16:01 . 2008-10-07 16:01 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\skypePM

2008-10-07 16:01 . 2008-10-07 16:01 56 --ah----- C:\WINDOWS\system32\ezsidmv.dat

2008-10-07 14:21 . 2008-04-13 11:45 26,368 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys

2008-10-07 14:10 . 2008-10-07 14:10 133 --a------ C:\WINDOWS\msfsetup.ini

2008-10-07 14:07 . 1999-11-10 10:05 86,016 --a------ C:\WINDOWS\unvise32qt.exe

2008-10-07 14:06 . 2008-10-07 14:32 <DIR> d-------- C:\Programmi\QuickTime

2008-10-07 14:03 . 2008-10-07 14:04 <DIR> d-------- C:\Programmi\FinePixViewer

2008-10-07 14:00 . 2008-10-07 14:00 <DIR> d-------- C:\Programmi\REGSHAVE

2008-10-07 14:00 . 2001-11-24 19:11 81,924 --------- C:\WINDOWS\system32\drivers\VC4CB104.SYS

2008-10-07 14:00 . 2002-02-05 00:33 69,632 --------- C:\WINDOWS\system32\FREGSHEX.DLL

2008-10-07 14:00 . 2002-02-26 19:27 65,536 --------- C:\WINDOWS\system32\FINFCHECK.dll

2008-10-07 14:00 . 2002-06-25 10:06 45,056 --------- C:\WINDOWS\system32\FINFCOPY.dll

2008-10-07 14:00 . 2002-02-12 18:00 45,056 --------- C:\WINDOWS\system32\FCLKBTN.DLL

2008-10-07 12:51 . 2008-07-18 22:07 270,880 --a------ C:\WINDOWS\system32\mucltui.dll

2008-10-07 12:51 . 2008-07-18 22:07 210,976 --a------ C:\WINDOWS\system32\muweb.dll

2008-10-07 12:51 . 2008-07-18 22:07 29,728 --a------ C:\WINDOWS\system32\mucltui.dll.mui

2008-10-07 12:43 . 2008-10-07 12:43 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab

2008-10-07 10:58 . 2008-10-07 14:10 <DIR> d-------- C:\MWASPI

2008-10-07 10:58 . 1997-02-28 03:00 2,486 --------- C:\WINDOWS\system\AS16POST.BIN

2008-10-07 10:56 . 2008-10-07 10:56 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\QuickTime

2008-10-07 10:56 . 2008-10-07 14:07 8,393 --a------ C:\WINDOWS\system32\QuickTime.qtp

2008-10-07 10:55 . 2008-10-07 12:44 <DIR> d-------- C:\Programmi\QuickTime(2)

2008-10-07 10:44 . 2008-10-07 10:44 <DIR> d-------- C:\Programmi\Ulead Systems

2008-10-07 10:43 . 2008-10-08 14:00 30,720 --a------ C:\WINDOWS\6816White12.dat

2008-10-07 10:43 . 2008-10-08 14:00 30,720 --a------ C:\WINDOWS\6816Dark12.dat

2008-10-07 10:43 . 2008-10-08 14:00 6 --a------ C:\WINDOWS\6816Exposure.dat

2008-10-07 10:43 . 2008-10-08 14:00 4 --a------ C:\WINDOWS\6816Error.dat

2008-10-07 10:43 . 2008-10-08 14:00 3 --a------ C:\WINDOWS\6816Offset.dat

2008-10-07 10:43 . 2008-10-08 14:00 3 --a------ C:\WINDOWS\6816Gain.dat

2008-10-07 10:37 . 2008-10-08 13:49 <DIR> d-------- C:\ScanPanel

2008-10-07 10:31 . 2008-10-07 10:31 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\LG Electronics

2008-10-07 10:30 . 2008-10-07 10:34 <DIR> d-------- C:\Programmi\LG PC Suite

2008-10-06 23:01 . 2008-10-07 16:31 <DIR> d-------- C:\Programmi\AVIConverter

2008-10-06 22:44 . 2008-10-06 22:44 <DIR> d-------- C:\Programmi\Microsoft Works

2008-10-06 22:43 . 2008-10-06 22:43 <DIR> d-------- C:\Programmi\MSBuild

2008-10-06 22:40 . 2008-10-06 22:40 <DIR> d-------- C:\Programmi\Microsoft.NET

2008-10-06 22:34 . 2008-10-06 22:34 <DIR> d-------- C:\Programmi\Microsoft Visual Studio 8

2008-10-06 22:28 . 2008-10-06 22:42 <DIR> d-------- C:\WINDOWS\SHELLNEW

2008-10-06 22:27 . 2008-10-09 19:51 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Microsoft Help

2008-10-06 22:20 . 2008-10-06 22:20 <DIR> dr-h----- C:\MSOCache

2008-10-06 20:37 . 2008-10-06 20:37 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!

2008-10-06 20:17 . 2008-10-06 21:32 <DIR> d-------- C:\Programmi\Messenger Plus! Live

2008-10-06 20:13 . 2008-10-06 20:14 <DIR> d-------- C:\Documents and Settings\utente\Contacts

2008-10-06 20:07 . 2008-10-06 20:08 <DIR> d-------- C:\Programmi\Windows Live Toolbar

2008-10-06 20:07 . 2008-10-06 20:08 <DIR> d-------- C:\Programmi\Windows Live Favorites

2008-10-06 20:06 . 2006-11-29 13:06 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll

2008-10-06 20:05 . 2008-10-06 20:05 <DIR> d-------- C:\Programmi\Microsoft SQL Server Compact Edition

2008-10-06 20:03 . 2008-10-07 13:31 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE

2008-10-06 19:56 . 2008-10-06 19:59 <DIR> d--hsc--- C:\Programmi\File comuni\WindowsLiveInstaller

2008-10-06 19:55 . 2008-10-07 13:53 <DIR> d-------- C:\Programmi\Windows Live

2008-10-06 19:55 . 2008-10-07 21:21 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\WLInstaller

2008-10-06 19:39 . 2008-10-06 19:39 <DIR> d-------- C:\Programmi\BitTorrent

2008-10-06 19:13 . 2008-10-14 20:07 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\DNA

2008-10-06 18:35 . 2008-10-06 22:10 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\BitTorrent

2008-10-06 18:34 . 2008-10-06 19:12 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\BitTorrent DNA

2008-10-06 16:59 . 2008-10-06 16:59 <DIR> d-------- C:\WINDOWS\system32\it

2008-10-06 16:31 . 2008-10-06 16:31 <DIR> d-------- C:\WINDOWS\Sun

2008-10-06 16:20 . 2008-04-13 09:36 144,384 --------- C:\WINDOWS\system32\drivers\hdaudbus.sys

2008-10-06 16:20 . 2008-04-13 11:40 10,240 --------- C:\WINDOWS\system32\drivers\sffp_mmc.sys

2008-10-06 16:06 . 2006-12-28 12:01 19,569 --a------ C:\WINDOWS\004901_.tmp

2008-10-06 13:39 . 2008-10-06 13:39 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\Ahead

2008-10-06 13:35 . 2008-10-06 13:35 <DIR> d-------- C:\Programmi\Nero

2008-10-06 13:35 . 2008-10-06 13:35 <DIR> d-------- C:\Programmi\File comuni\Ahead

2008-10-06 13:19 . 2008-10-06 13:20 <DIR> d-------- C:\Programmi\E.M. PowerPoint Video Converter

2008-10-06 13:06 . 2008-10-11 19:13 <DIR> d-------- C:\Programmi\Wise Registry Cleaner 3

2008-10-06 12:44 . 2004-08-19 15:39 221,184 --a------ C:\WINDOWS\system32\wmpns.dll

2008-10-06 12:43 . 2008-10-06 12:43 <DIR> d-------- C:\Programmi\Windows Media Connect 2

2008-10-06 12:41 . 2008-10-06 12:41 <DIR> d-------- C:\WINDOWS\system32\LogFiles

2008-10-06 12:41 . 2008-10-06 12:42 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF

2008-10-06 12:41 . 2008-10-07 16:06 <DIR> d-------- C:\Documents and Settings\utente\Dati applicazioni\Skype

2008-10-06 12:39 . 2008-10-06 12:39 <DIR> d-------- C:\Programmi\Skype

2008-10-06 12:39 . 2008-10-06 12:39 <DIR> d-------- C:\Programmi\File comuni\Skype

2008-10-06 12:39 . 2008-10-06 12:39 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Skype

2008-10-06 12:36 . 2008-10-06 12:36 <DIR> d-------- C:\Programmi\VSO

2008-10-06 12:32 . 2008-10-06 12:32 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\DVD Shrink

2008-10-06 12:30 . 2008-10-06 12:32 <DIR> d-------- C:\Programmi\DVD Shrink 3.2

2008-10-06 12:25 . 2008-10-06 12:25 <DIR> d-------- C:\Programmi\Ashampoo

2008-10-06 12:25 . 2008-10-06 12:25 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\ashampoo

2008-10-06 12:17 . 2007-01-18 14:00 3,968 --a------ C:\WINDOWS\system32\drivers\AvgArCln.sys

2008-10-04 22:55 . 2008-10-04 22:57 <DIR> d--h----- C:\WINDOWS\msdownld.tmp

2008-10-04 22:54 . 2008-10-06 16:59 <DIR> d-------- C:\WINDOWS\system32\it-it

2008-10-04 22:40 . 2008-06-23 18:15 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll

2008-10-04 22:40 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat

2008-10-04 22:40 . 2007-03-08 07:11 1,032,192 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui

2008-10-04 22:40 . 2008-06-23 18:15 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll

2008-10-04 22:40 . 2008-06-23 18:15 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll

2008-10-04 22:40 . 2008-06-23 18:15 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll

2008-10-04 22:40 . 2008-06-23 18:15 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll

2008-10-04 22:40 . 2008-06-23 18:15 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll

2008-10-04 22:40 . 2008-06-23 11:20 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe

2008-10-04 22:39 . 2006-11-07 21:03 33,792 --a--c--- C:\WINDOWS\system32\dllcache\custsat.dll

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-10-07 12:34 --------- d--h--w C:\Programmi\InstallShield Installation Information

2008-10-03 20:52 155,995 ----a-w C:\WINDOWS\java\Packages\4TVDBBND.ZIP

2008-10-03 20:52 --------- d-----w C:\Programmi\Motive

2008-10-03 20:52 --------- d-----w C:\Programmi\File comuni\Motive

2008-10-03 20:52 --------- d-----w C:\Programmi\File comuni\InstallShield

2008-10-03 20:52 --------- d-----w C:\Programmi\Common Files

2008-10-03 20:52 --------- d-----w C:\Programmi\Alice ti aiuta

2008-10-03 20:52 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\Motive

2008-10-03 20:50 --------- d-----w C:\Programmi\Telecom Italia

2008-10-03 20:29 --------- d-----w C:\Programmi\microsoft frontpage

2008-10-03 20:27 --------- d-----w C:\Programmi\Servizi in linea

2008-07-18 20:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll

2008-07-18 20:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe

2008-07-18 20:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll

2008-07-18 20:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll

2008-07-18 20:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll

2008-07-18 20:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll

2008-07-18 20:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll

2008-07-18 20:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll

.

((((((((((((((((((((((((((((( snapshot@2008-10-10_20.25.37.01 )))))))))))))))))))))))))))))))))))))))))

.

+ 2005-10-20 18:02:28 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE

.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* i valori vuoti & legittimi/default non sono visualizzati.

REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{6b284373-1765-4464-a587-80fbc2b2eefa}"= "C:\Programmi\LphantBar\tbLpha.dll" [2008-03-13 1524248]

[HKEY_CLASSES_ROOT\clsid\{6b284373-1765-4464-a587-80fbc2b2eefa}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6b284373-1765-4464-a587-80fbc2b2eefa}]

2008-03-13 10:30 1524248 --a------ C:\Programmi\LphantBar\tbLpha.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{6b284373-1765-4464-a587-80fbc2b2eefa}"= "C:\Programmi\LphantBar\tbLpha.dll" [2008-03-13 1524248]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{6B284373-1765-4464-A587-80FBC2B2EEFA}"= "C:\Programmi\LphantBar\tbLpha.dll" [2008-03-13 1524248]

[HKEY_CLASSES_ROOT\clsid\{6b284373-1765-4464-a587-80fbc2b2eefa}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 15360]

"BitTorrent DNA"="C:\Programmi\DNA\btdna.exe" [2008-10-06 289088]

"swg"="C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-10-06 171448]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Programmi\File comuni\Ahead\lib\NMBgMonitor.exe" [2005-10-28 94208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Motive SmartBridge"="C:\PROGRA~1\ALICET~1\SMARTB~1\MotiveSB.exe" [2006-04-21 438359]

"D-Link AirPlus XtremeG Utility"="C:\Programmi\Wireless USB adapter Alice G-132\AirPlusCFG.exe" [2006-11-20 1728512]

"ANIWZCS2Service"="C:\Programmi\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2006-06-29 49152]

"nod32kui"="C:\Programmi\Eset\nod32kui.exe" [2008-10-04 949376]

"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [2005-09-27 2635472]

"!AVG Anti-Spyware"="C:\Programmi\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2008-10-04 6731312]

"Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]

"SunJavaUpdateSched"="C:\Programmi\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 144784]

"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 155648]

"GrooveMonitor"="C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]

"REGSHAVE"="C:\Programmi\REGSHAVE\REGSHAVE.EXE" [2002-02-04 53248]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoResolveSearch"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"msacm.divxa32"= msaud32_divx.acm

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"C:\\Programmi\\DNA\\btdna.exe"=

"C:\\Programmi\\BitTorrent\\bittorrent.exe"=

"C:\\Programmi\\DNA\\dna.exe"=

"C:\\Programmi\\Messenger\\msmsgs.exe"=

"C:\\Programmi\\Shareaza\\Shareaza.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"C:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"C:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=

"C:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=

"C:\\Programmi\\Skype\\Phone\\Skype.exe"=

"C:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=

"C:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=

"C:\\Programmi\\Lphant\\eLePhantClient.exe"=

R0 VIRAGTLT;VIRAGTLT;C:\WINDOWS\system32\drivers\VIRAGTLT.SYS [2008-03-17 39808]

R2 UxTuneUp;TuneUp Design Expansion;C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]

R2 viritsvclite;Virit eXplorer Lite;C:\VEXPLITE\viritsvc.exe [2008-10-04 57344]

S3 A5AGU;D-Link USB Wireless Network Adapter Service;C:\WINDOWS\system32\DRIVERS\A5AGU.sys [2006-09-21 347648]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

UxTuneUp

.

Contenuto della cartella 'Scheduled Tasks'

2008-10-10 C:\WINDOWS\Tasks\1-Click Maintenance.job

- C:\Programmi\TuneUp Utilities 2007\SystemOptimizer.exe [2006-12-19 16:53]

2008-10-14 C:\WINDOWS\Tasks\Verifica aggiornamenti per Windows Live Toolbar.job

- C:\Programmi\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 11:20]

.

.

------- Supplementare di scansione -------

.

FireFox -: Profile - C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\v9n20ebt.default\

FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=

FF -: plugin - C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\v9n20ebt.default\extensions\OberonGameHost@OberonGames.com\platform\WINNT_x86-msvc\plugins\npOberonGameHost.dll

FF -: plugin - C:\Programmi\DNA\plugins\npbtdna.dll

FF -: plugin - C:\Programmi\Mozilla Firefox\plugins\npbittorrent.dll

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-10-14 20:10:53

Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo

Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\vsdatant]

"ImagePath"=""

.

--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------

PROCESSO: C:\WINDOWS\system32\lsass.exe

-> C:\Programmi\Eset\pr_imon.dll

.

------------------------ Altri processi in esecuzione ------------------------

.

C:\WINDOWS\system32\LEXBCES.EXE

C:\WINDOWS\system32\LEXPPS.EXE

C:\Programmi\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Programmi\Eset\nod32krn.exe

C:\Programmi\Sygate\SPF\Smc.exe

C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

.

**************************************************************************

.

Ora fine scansione: 2008-10-14 20:18:01 - macchina è stato riavviato [utente]

ComboFix-quarantined-files.txt 2008-10-14 18:17:48

ComboFix2.txt 2008-10-10 18:26:16

Pre-Run: 27,268,034,560 byte disponibili

Post-Run: 27,186,847,744 byte disponibili

275 --- E O F --- 2008-10-09 17:52:42

sono riuscita a mandarlo solo così ciao e grazie

Condividi questo messaggio


Link di questo messaggio
Condividi su altri siti

Crea un account o accedi per lasciare un commento

Devi essere un utente registrato per partecipare

Crea un account

Iscriviti per un nuovo account nella nostra community. È facile!


Registra un nuovo account

Accedi

Sei già registrato? Accedi qui.


Accedi Ora