Aller au contenu

gripette22

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    12

  • Inscription

  • Dernière visite

gripette22's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. gripette22
    Bonjour, Voilà après un CHKDSK mon problème est réglé ! Je ne poste pas le rapport car il est en italien... à ce que je vois il y a eu des lignes qui ont été nettoyées (si je peux m'exprimer ainsi). Tout est OK, comme avant. Mon pc démarre au quart de tour, je suis la plus heureuse des filles ! Merci de ton aide, tu vois tu n'avais pas trop d'idée au début et tu as résolu mon problème. Bravo et merci.
  2. gripette22
    J'ai oublié c'est un pc de bureau, il y a peu de temps je l'ai ouvert et dépoussiéré.
  3. gripette22
    Wow ! Merci de prendre de ton temps pour m'aider. Je vais faire ça tard en soirée. T'en donne des nouvelles.
  4. gripette22
    Mais as-tu une petite idée d'où ça pourrait venir?
  5. gripette22
    Voilà avec Ccleaner. Egalement j'ai un peu peur de changer de version Firefox, mais si tu me dis que c'est mieux je vais le faire. Egalement, ça fait deux fois que lorsque j'ouvre le pc avec la mise en veille, j'ai un message : impossible d'ouvrir ce Pc, windows recherche le problème, ensuite on me propose de faire une configuration à une date précédente. (Excuse la traduction mon pc est en italien). J'ai également débranché mon dique dur externe et je ne fais que rarement quelques mise à jour windows car souvent j'ai des problèmes et je dois rechercher la mise à jour en cause. Comme tu vois je ne suis pas experte du tout. Merci à toi, ______________________________________________ Non HKCU:Run BitTorrent BitTorrent Inc. Utente "C:\Users\Utente\AppData\Roaming\BitTorrent\BitTorrent.exe" /MINIMIZED Non HKCU:Run CyberGhost Tous les utilisateurs "C:\Program Files\CyberGhost 5\CyberGhost.EXE" /autostart /min Non HKCU:Run GarminExpressTrayApp Garmin Ltd or its subsidiaries Tous les utilisateurs "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" Non HKCU:Run MSIDLL Microsoft Corporation Tous les utilisateurs C:\Windows\SysWOW64\rundll32.exe msinsj32.dll,ezOwWnjCjXh Non HKCU:Run NETGEARGenie NETGEAR Inc. Tous les utilisateurs "C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect Non HKCU:Run Skype Skype Technologies S.A. Tous les utilisateurs "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun Non HKLM:Run APSDaemon Apple Inc. Tous les utilisateurs "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" Oui HKLM:Run avgnt Avira Operations GmbH & Co. KG Tous les utilisateurs "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min Oui HKLM:Run Avira Systray Avira Operations GmbH & Co. KG Tous les utilisateurs C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe Oui HKLM:Run BCSSync Microsoft Corporation Tous les utilisateurs "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices Non HKLM:Run bdruninstaller Tous les utilisateurs "C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\downloader\setupdownloader.exe" /args:"/after_restart" Oui HKLM:Run Cobian Backup 10 Interface Luis Cobian, CobianSoft Tous les utilisateurs "C:\Program Files (x86)\Cobian Backup 10\cbInterface.exe" -service Non HKLM:Run emsisoft anti-malware Tous les utilisateurs "C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe" /d=60 Non HKLM:Run HP Software Update Hewlett-Packard Tous les utilisateurs C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe Oui HKLM:Run hpqSRMon Hewlett-Packard Tous les utilisateurs C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe Oui HKLM:Run IDProtect Monitor Athena Smartcard Solutions Tous les utilisateurs "C:\Program Files (x86)\Athena\IDProtect Client\Utils\IDProtect Monitor.exe" Non HKLM:Run QuickTime Task Apple Inc. Tous les utilisateurs "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime Oui HKLM:Run RtHDVCpl Realtek Semiconductor Tous les utilisateurs C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe Oui HKLM:Run Skytel Realtek Semiconductor Corp. Tous les utilisateurs C:\Program Files\Realtek\Audio\HDA\Skytel.exe Oui HKLM:Run SunJavaUpdateSched Oracle Corporation Tous les utilisateurs "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" Non Startup Common HP Digital Imaging Monitor.lnk Hewlett-Packard Co. Tous les utilisateurs C:\PROGRA~2\HP\DIGITA~1\bin\hpqtra08.exe Non Startup User Dropbox.lnk Dropbox, Inc. Utente C:\Users\Utente\AppData\Roaming\Dropbox\bin\Dropbox.exe
  6. gripette22
    Merci à vous je vais reposter le message sur un de ces forums.
  7. gripette22
    Bonjour, J'ai mis la veille prolongée depuis quelque temps. Mon pc, qui allait très bien avant, prend environ 5 à 10 minutes à repartir après la mise en veille. J'ai fait un scan avec mon anti virus, avec malwarebytes et je n'ai rien trouvé. Je suis assez découragée. Y aurait-il une âme charitable qui veuille bien m'aider ou me conseiller. Je suis sous windows7, Firefox version 26.0 Je vous remercie à l'avance.
  8. gripette22
    Bonjour, Je l'ai déjà fait et cette semain et ça n'a rien donné malheureusement. Auriez-vous d'autres suggestions. Merci
  9. gripette22
    Bonjour, J'ai mis la veille prolongée depuis quelque temps. Mon pc, qui allait très bien avant, prend environ 5 à 10 minutes à repartir après la mise en veille. J'ai fait un scan avec mon anti virus, avec malwarebytes et je n'ai rien trouvé. Je suis assez découragée. Y aurait-il une âme charitable qui veuille bien m'aider ou me conseiller. Je suis sous windows7, Firefox version 26.0 Je vous remercie à l'avance.
  10. gripette22
    Bonjour, J'ai effectué le scan en ligne de kap. tout est OK. J'ai désinstallé et réinstallé le cd qui vient avec mon modem. Et depuis tout est OK. Je te remercie du temps que tu as pris pour m'aider. Je peux enfin naviguer !
  11. gripette22
    Bonsoir et un gros merci pour ton aide, Voici les rapports demandés, je m'aperçois qu'il y a des commentaires en italien dans le rapport, j'ai pas le choix j'habite en Italie (mais je suis québécoise)... j'espère que cela ne te posera pas de problèmes. J'espère que j'ai tout fait correct !!! _______________________ info.txt logfile of random's system information tool 1.06 2010-05-24 01:01:50 ======Uninstall list====== -->C:\PROGRA~1\ALICET~1\Uninstall.exe AliceRE -->MsiExec /X{DEA314C4-0929-4250-BC92-98E4C105F28D} -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Ad-Aware Email Scanner for Outlook-->MsiExec.exe /I{338F08AB-C262-42C7-B000-34DE1A475273} Ad-Aware-->"C:\Documents and Settings\All Users\Dati applicazioni\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}\Ad-AwareInstaller.exe" REMOVE=TRUE MODIFY=FALSE Ad-Aware-->C:\Documents and Settings\All Users\Dati applicazioni\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}\Ad-AwareInstaller.exe Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -maintain activex Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Reader 9.3.2 - Italiano-->MsiExec.exe /I{AC76BA86-7AD7-1040-7B44-A93000000001} Aggiornamento della protezione per Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe" Aggiornamento della protezione per Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe" Aggiornamento per Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" Aggiornamento per Windows XP (KB932823-v3)-->"C:\WINDOWS\$NtUninstallKB932823-v3$\spuninst\spuninst.exe" Alice ti aiuta-->C:\Programmi\Alice ti aiuta\bin\UninstallAlice.exe Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver-->"C:\Programmi\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\Setup.exe" -runfromtemp -l0x0010 -removeonly Avira AntiVir Personal - Free Antivirus-->C:\Programmi\Avira\AntiVir Desktop\setup.exe /REMOVE CCleaner-->"C:\Programmi\CCleaner\uninst.exe" Disco ricordo HP-->MsiExec.exe /X{B376402D-58EA-45EA-BD50-DD924EB67A70} Foto e imaging HP 2.0 - All-in-One Drivers-->MsiExec.exe /X{6ECB39BD-73C2-44DD-B1A0-898207C58D8B} Foto e imaging HP 2.0 - All-in-One-->MsiExec.exe /X{9867A917-5D17-40DE-83BA-BEA5293194B1} High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe" HijackThis 2.0.2-->"C:\Documents and Settings\Propretario\Documenti\Téléchargements\HijackThis.exe" /uninstall Installazione Guidata Alice-->RunDll32 C:\PROGRA~1\FILECO~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Programmi\InstallShield Installation Information\{AE141553-8A8C-467D-B2E9-A352F1141508}\setup.exe" -l0x10 -uninst Java 6 Update 16-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216016FF} Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Mozilla Firefox (3.5.9)-->C:\Programmi\Mozilla Firefox\uninstall\helper.exe Nero 6 Ultra Edition-->C:\Programmi\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL NVIDIA Display Control Panel-->C:\Programmi\NVIDIA Corporation\Uninstall\nvuninst.exe DisplayControlPanel NVIDIA Drivers-->C:\Programmi\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI NVIDIA nView Desktop Manager-->C:\Programmi\NVIDIA Corporation\nView\nViewSetup.exe -uninstall NVIDIA PhysX-->MsiExec.exe /X{DEA314C4-0929-4250-BC92-98E4C105F28D} OpenOffice.org 3.1-->MsiExec.exe /I{43A650AA-D1DC-4C52-8819-D7848B3A08DA} Picasa 3-->"C:\Programmi\Google\Picasa3\Uninstall.exe" Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\FILECO~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Programmi\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x10 -removeonly Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27} Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT="" VLC media player 1.0.5-->C:\Programmi\VideoLAN\VLC\uninstall.exe Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe" Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe" WinRAR gestione archivi-->C:\Programmi\WinRAR\uninstall.exe ======Security center information====== AV: AntiVir Desktop ======System event log====== Computer Name: UTENTE Event Code: 3260 Message: Il computer è stato aggiunto a workgroup 'WORKGROUP'. Record Number: 5 Source Name: Workstation Time Written: 20100514101753.000000+120 Event Type: Informazione User: Computer Name: UTENTE Event Code: 6011 Message: Il nome NetBIOS e il nome host DNS del computer sono stati modificati da MACHINENAME in UTENTE. Record Number: 4 Source Name: EventLog Time Written: 20100514101711.000000+120 Event Type: Informazione User: Computer Name: MACHINENAME Event Code: 2 Message: Nel controllo che \Device\Serial0 fosse effettivamente una porta seriale è stata rilevata una coda fifo (first in, first out). Questa verrà utilizzata. Record Number: 3 Source Name: Serial Time Written: 20100514121243.000000+120 Event Type: Informazione User: Computer Name: MACHINENAME Event Code: 6005 Message: Il servizio Registro eventi è stato avviato. Record Number: 2 Source Name: EventLog Time Written: 20100514121221.000000+120 Event Type: Informazione User: Computer Name: MACHINENAME Event Code: 6009 Message: Microsoft ® Windows ® 5.01. 2600 Service Pack 2 Multiprocessor Free. Record Number: 1 Source Name: EventLog Time Written: 20100514121221.000000+120 Event Type: Informazione User: =====Application event log===== Computer Name: UTENTE Event Code: 1000 Message: I contatori delle prestazioni per il servizio MSDTC (MSDTC) sono stati caricati. I Dati del record contengono nuovi valori di indice assegnati al servizio. Record Number: 5 Source Name: LoadPerf Time Written: 20100514101903.000000+120 Event Type: Informazione User: Computer Name: UTENTE Event Code: 1000 Message: I contatori delle prestazioni per il servizio TermService (Servizi terminal) sono stati caricati. I Dati del record contengono nuovi valori di indice assegnati al servizio. Record Number: 4 Source Name: LoadPerf Time Written: 20100514101900.000000+120 Event Type: Informazione User: Computer Name: UTENTE Event Code: 1000 Message: I contatori delle prestazioni per il servizio RemoteAccess (Routing e Accesso remoto) sono stati caricati. I Dati del record contengono nuovi valori di indice assegnati al servizio. Record Number: 3 Source Name: LoadPerf Time Written: 20100514101743.000000+120 Event Type: Informazione User: Computer Name: UTENTE Event Code: 1000 Message: I contatori delle prestazioni per il servizio PSched (PSched) sono stati caricati. I Dati del record contengono nuovi valori di indice assegnati al servizio. Record Number: 2 Source Name: LoadPerf Time Written: 20100514101720.000000+120 Event Type: Informazione User: Computer Name: UTENTE Event Code: 1000 Message: I contatori delle prestazioni per il servizio RSVP (QoS RSVP) sono stati caricati. I Dati del record contengono nuovi valori di indice assegnati al servizio. Record Number: 1 Source Name: LoadPerf Time Written: 20100514101719.000000+120 Event Type: Informazione User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=c:\Programmi\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel "PROCESSOR_REVISION"=0f0b "NUMBER_OF_PROCESSORS"=4 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF----------------- Logfile of random's system information tool 1.07 (written by random/random) Run by Propretario at 2010-05-24 01:01:45 Microsoft Windows XP Professional Service Pack 2 System drive C: has 464 GB (97%) free of 477 GB Total RAM: 3327 MB (81% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 01:01:49, on 2010-05-24 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\Programmi\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Programmi\Java\jre6\bin\jusched.exe C:\Programmi\Avira\AntiVir Desktop\avgnt.exe C:\PROGRA~1\ALICET~1\SMARTB~2\MotiveSB.exe C:\WINDOWS\system32\ctfmon.exe C:\Programmi\Messenger\msmsgs.exe C:\Programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Programmi\Avira\AntiVir Desktop\avguard.exe C:\WINDOWS\system32\svchost.exe C:\Programmi\Lavasoft\Ad-Aware\AAWTray.exe C:\Programmi\Mozilla Firefox\firefox.exe C:\Documents and Settings\Propretario\Documenti\Téléchargements\RSIT(2).exe C:\Programmi\trend micro\Propretario.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\ALICET~1\SMARTB~2\MotiveSB.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Programmi\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 3.1.lnk = C:\Programmi\OpenOffice.org 3\program\quickstart.exe O4 - Global Startup: Alice ti aiuta.lnk = C:\Programmi\Alice ti aiuta\bin\matcli.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{E39154D4-86AA-439F-B9F4-F98B7FEAD3A1}: NameServer = 85.37.17.5 85.38.28.77 O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 5071 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job C:\WINDOWS\tasks\Maintenance en 1 clic.job C:\WINDOWS\tasks\User_Feed_Synchronization-{4DBDDE32-A40C-416F-A7AA-52D9090DC6BF}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Programmi\Java\jre6\bin\jp2ssv.dll [2010-05-14 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-05-14 73728] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-07-03 16876032] "Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344] "nwiz"=nwiz.exe /installquiet [] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2010-04-03 110696] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2010-04-03 13670504] "SunJavaUpdateSched"=C:\Programmi\Java\jre6\bin\jusched.exe [2010-05-14 149280] "avgnt"=C:\Programmi\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153] "Motive SmartBridge"=C:\PROGRA~1\ALICET~1\SMARTB~2\MotiveSB.exe [2006-04-21 438359] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-19 15360] "MSMSGS"=C:\Programmi\Messenger\msmsgs.exe [2004-08-19 1667584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-04-04 36272] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648] C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica Alice ti aiuta.lnk - C:\Programmi\Alice ti aiuta\bin\matcli.exe hpoddt01.exe.lnk - C:\Programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Documents and Settings\Propretario\Menu Avvio\Programmi\Esecuzione automatica OpenOffice.org 3.1.lnk - C:\Programmi\OpenOffice.org 3\program\quickstart.exe [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2010-05-24 01:01:46 ----D---- C:\Programmi\trend micro 2010-05-24 01:01:45 ----D---- C:\rsit 2010-05-23 16:45:19 ----A---- C:\WINDOWS\system32\ptpusd.dll 2010-05-23 16:45:19 ----A---- C:\WINDOWS\system32\ptpusb.dll 2010-05-22 23:16:05 ----D---- C:\Programmi\Mozilla Firefox 2010-05-22 22:44:19 ----A---- C:\WINDOWS\system32\lsdelete.exe 2010-05-22 22:26:56 ----HDC---- C:\Documents and Settings\All Users\Dati applicazioni\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6} 2010-05-22 22:26:51 ----D---- C:\Programmi\Lavasoft 2010-05-22 22:26:51 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Lavasoft 2010-05-22 22:17:56 ----D---- C:\WINDOWS\Motive 2010-05-22 22:17:51 ----D---- C:\Programmi\File comuni\Motive 2010-05-22 22:17:35 ----D---- C:\Programmi\Motive 2010-05-22 22:17:22 ----A---- C:\WINDOWS\system32\jit.dll 2010-05-22 22:17:22 ----A---- C:\WINDOWS\system32\javaee.dll 2010-05-22 22:17:22 ----A---- C:\WINDOWS\system32\dx3j.dll 2010-05-22 22:17:22 ----A---- C:\WINDOWS\setdebug.exe 2010-05-22 22:17:19 ----A---- C:\WINDOWS\system32\wjview.exe 2010-05-22 22:17:19 ----A---- C:\WINDOWS\system32\vmhelper.dll 2010-05-22 22:17:19 ----A---- C:\WINDOWS\system32\msjdbc10.dll 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\msjava.dll 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\msawt.dll 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\jview.exe 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\jdbgmgr.exe 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\javart.dll 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\javaprxy.dll 2010-05-22 22:17:18 ----A---- C:\WINDOWS\system32\javacypt.dll 2010-05-22 22:17:17 ----A---- C:\WINDOWS\system32\clspack.exe 2010-05-22 21:54:31 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\U3 2010-05-22 13:53:50 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\QuickScan 2010-05-22 13:02:28 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Malwarebytes 2010-05-22 13:02:19 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Malwarebytes 2010-05-22 13:02:18 ----D---- C:\Programmi\Malwarebytes' Anti-Malware 2010-05-22 12:59:33 ----D---- C:\Programmi\Spybot - Search & Destroy 2010-05-22 12:59:33 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Spybot - Search & Destroy 2010-05-22 01:45:21 ----D---- C:\Programmi\File comuni\Hewlett-Packard 2010-05-22 01:44:38 ----D---- C:\Programmi\Hewlett-Packard 2010-05-22 01:39:05 ----D---- C:\Programmi\Motive(3) 2010-05-16 19:04:38 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\PoivY 2010-05-16 18:54:12 ----D---- C:\Programmi\PoivY.com 2010-05-16 18:09:50 ----D---- C:\Programmi\Skype(2) 2010-05-16 01:32:41 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Thunderbird 2010-05-15 23:48:11 ----D---- C:\Programmi\Microsoft SQL Server Compact Edition 2010-05-15 23:47:53 ----DC---- C:\WINDOWS\$NtUninstallWIC$ 2010-05-15 23:47:12 ----D---- C:\Programmi\Windows Live 2010-05-15 23:44:18 ----D---- C:\Programmi\File comuni\Windows Live 2010-05-15 20:44:55 ----D---- C:\Programmi\FreePOPs 2010-05-15 01:16:32 ----D---- C:\Programmi\Motive(2) 2010-05-15 00:22:58 ----D---- C:\Programmi\MSECache 2010-05-14 23:40:50 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\uTorrent 2010-05-14 21:51:33 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\skypePM 2010-05-14 21:51:12 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Skype 2010-05-14 21:50:43 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Skype 2010-05-14 21:30:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$ 2010-05-14 21:30:01 ----D---- C:\Programmi\Google 2010-05-14 21:26:03 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\TuneUp Software 2010-05-14 21:25:52 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\TuneUp Software 2010-05-14 21:25:51 ----D---- C:\Programmi\TuneUp Utilities 2009 2010-05-14 21:11:33 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Mozilla 2010-05-14 21:11:30 ----D---- C:\Programmi\Mozilla Firefox(2) 2010-05-14 21:00:43 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Motive 2010-05-14 21:00:41 ----D---- C:\Programmi\Common Files 2010-05-14 21:00:29 ----D---- C:\Programmi\Alice ti aiuta 2010-05-14 20:59:37 ----D---- C:\Programmi\Telecom Italia 2010-05-14 12:17:07 ----A---- C:\WINDOWS\system32\h323log.txt 2010-05-14 12:14:19 ----A---- C:\WINDOWS\system32\usbui.dll 2010-05-14 12:13:21 ----SHD---- C:\WINDOWS\Installer 2010-05-14 12:13:21 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-05-14 12:13:20 ----D---- C:\Programmi\File comuni\ODBC 2010-05-14 12:13:20 ----A---- C:\WINDOWS\ODBCINST.INI 2010-05-14 12:13:18 ----D---- C:\Programmi\File comuni\SpeechEngines 2010-05-14 12:13:17 ----RD---- C:\Programmi 2010-05-14 12:13:17 ----D---- C:\Programmi\File comuni\Microsoft Shared 2010-05-14 12:13:17 ----D---- C:\Programmi\File comuni 2010-05-14 12:13:14 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2010-05-14 12:13:14 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2010-05-14 12:13:14 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdur.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2010-05-14 12:13:12 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2010-05-14 12:13:11 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2010-05-14 12:13:11 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2010-05-14 12:13:11 ----RA---- C:\WINDOWS\system32\kbdru.dll 2010-05-14 12:13:11 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2010-05-14 12:13:11 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2010-05-14 12:13:09 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2010-05-14 12:13:08 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2010-05-14 12:13:08 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2010-05-14 12:13:07 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2010-05-14 12:13:07 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2010-05-14 12:13:07 ----RA---- C:\WINDOWS\system32\kbdest.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdro.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2010-05-14 12:13:05 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2010-05-14 12:13:03 ----A---- C:\WINDOWS\system32\irclass.dll 2010-05-14 12:13:03 ----A---- C:\WINDOWS\system32\dgsetup.dll 2010-05-14 12:13:03 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2010-05-14 12:13:02 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-05-14 12:13:02 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2010-05-14 12:13:00 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2010-05-14 12:13:00 ----A---- C:\WINDOWS\TASKMAN.EXE 2010-05-14 12:13:00 ----A---- C:\WINDOWS\system32\batt.dll 2010-05-14 12:12:59 ----A---- C:\WINDOWS\NOTEPAD.EXE 2010-05-14 12:12:58 ----A---- C:\WINDOWS\system32\storprop.dll 2010-05-14 12:12:52 ----ASH---- C:\Documents and Settings\All Users\Dati applicazioni\desktop.ini 2010-05-14 12:12:49 ----RA---- C:\WINDOWS\SET8.tmp 2010-05-14 12:12:47 ----RA---- C:\WINDOWS\SET4.tmp 2010-05-14 12:12:45 ----RA---- C:\WINDOWS\SET3.tmp 2010-05-14 12:12:40 ----D---- C:\WINDOWS\system32\CatRoot2 2010-05-14 12:12:40 ----D---- C:\WINDOWS\system32\CatRoot 2010-05-14 12:12:35 ----SD---- C:\Documents and Settings\All Users\Dati applicazioni\Microsoft 2010-05-14 12:12:15 ----SHD---- C:\System Volume Information 2010-05-14 12:12:15 ----D---- C:\Documents and Settings 2010-05-14 12:11:39 ----SH---- C:\boot.ini 2010-05-14 12:07:45 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-05-14 12:07:45 ----RSD---- C:\WINDOWS\Fonts 2010-05-14 12:07:45 ----RD---- C:\WINDOWS\Web 2010-05-14 12:07:45 ----HD---- C:\WINDOWS\inf 2010-05-14 12:07:45 ----D---- C:\WINDOWS\WinSxS 2010-05-14 12:07:45 ----D---- C:\WINDOWS\twain_32 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Temp 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\wins 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\wbem 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\usmt 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\spool 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\ShellExt 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\Setup 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\ras 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\oobe 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\npp 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\mui 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\inetsrv 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\IME 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\icsxml 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\ias 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\export 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\drivers 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\dhcp 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\config 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\3com_dmi 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\3076 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\2052 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1054 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1042 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1041 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1040 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1037 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1033 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1031 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1028 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32\1025 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system32 2010-05-14 12:07:45 ----D---- C:\WINDOWS\system 2010-05-14 12:07:45 ----D---- C:\WINDOWS\security 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Resources 2010-05-14 12:07:45 ----D---- C:\WINDOWS\repair 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Provisioning 2010-05-14 12:07:45 ----D---- C:\WINDOWS\PeerNet 2010-05-14 12:07:45 ----D---- C:\WINDOWS\pchealth 2010-05-14 12:07:45 ----D---- C:\WINDOWS\mui 2010-05-14 12:07:45 ----D---- C:\WINDOWS\msapps 2010-05-14 12:07:45 ----D---- C:\WINDOWS\msagent 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Media 2010-05-14 12:07:45 ----D---- C:\WINDOWS\java 2010-05-14 12:07:45 ----D---- C:\WINDOWS\ime 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Help 2010-05-14 12:07:45 ----D---- C:\WINDOWS\ehome 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Driver Cache 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Debug 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Cursors 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Connection Wizard 2010-05-14 12:07:45 ----D---- C:\WINDOWS\Config 2010-05-14 12:07:45 ----D---- C:\WINDOWS\AppPatch 2010-05-14 12:07:45 ----D---- C:\WINDOWS\addins 2010-05-14 12:07:45 ----D---- C:\WINDOWS 2010-05-14 11:53:29 ----D---- C:\Programmi\File comuni\Java 2010-05-14 11:53:29 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Sun 2010-05-14 11:47:46 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Macromedia 2010-05-14 11:44:40 ----D---- C:\Programmi\File comuni\Adobe 2010-05-14 11:44:40 ----D---- C:\Programmi\Adobe 2010-05-14 11:44:25 ----D---- C:\WINDOWS\WBEM 2010-05-14 11:44:20 ----SHD---- C:\Config.Msi 2010-05-14 11:43:08 ----HDC---- C:\WINDOWS\ie8 2010-05-14 11:43:08 ----D---- C:\WINDOWS\system32\it-IT 2010-05-14 11:37:54 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\OpenOffice.org 2010-05-14 11:37:45 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$ 2010-05-14 11:36:31 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\vlc 2010-05-14 11:36:21 ----D---- C:\Programmi\Avira 2010-05-14 11:36:21 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Avira 2010-05-14 11:35:48 ----D---- C:\Programmi\VideoLAN 2010-05-14 11:35:44 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Adobe 2010-05-14 11:35:39 ----A---- C:\WINDOWS\system32\wmpns.dll 2010-05-14 11:33:31 ----A---- C:\WINDOWS\system32\TwnLib20.dll 2010-05-14 11:33:30 ----N---- C:\WINDOWS\system32\ImagXRA7.dll 2010-05-14 11:33:30 ----N---- C:\WINDOWS\system32\ImagXR7.dll 2010-05-14 11:33:30 ----N---- C:\WINDOWS\system32\ImagXpr7.dll 2010-05-14 11:33:30 ----N---- C:\WINDOWS\system32\ImagX7.dll 2010-05-14 11:33:30 ----D---- C:\Programmi\File comuni\Ahead 2010-05-14 11:33:30 ----A---- C:\WINDOWS\system32\NeroCheck.exe 2010-05-14 11:33:27 ----D---- C:\Programmi\Ahead 2010-05-14 11:31:49 ----SHD---- C:\RECYCLER 2010-05-14 11:31:01 ----D---- C:\Programmi\JRE 2010-05-14 11:30:59 ----D---- C:\Programmi\OpenOffice.org 3 2010-05-14 11:30:48 ----A---- C:\WINDOWS\system32\javaws.exe 2010-05-14 11:30:48 ----A---- C:\WINDOWS\system32\javaw.exe 2010-05-14 11:30:48 ----A---- C:\WINDOWS\system32\java.exe 2010-05-14 11:30:48 ----A---- C:\WINDOWS\system32\deploytk.dll 2010-05-14 11:30:42 ----D---- C:\Programmi\Java 2010-05-14 11:30:25 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Sun 2010-05-14 11:28:20 ----D---- C:\Programmi\CCleaner 2010-05-14 11:28:16 ----D---- C:\WINDOWS\system32\CatRoot_bak 2010-05-14 11:26:05 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\Adobe 2010-05-14 11:23:15 ----RSD---- C:\WINDOWS\assembly 2010-05-14 11:22:48 ----D---- C:\WINDOWS\Microsoft.NET 2010-05-14 11:18:35 ----D---- C:\Documents and Settings\All Users\Dati applicazioni\NVIDIA Corporation 2010-05-14 11:18:31 ----D---- C:\Programmi\NVIDIA Corporation 2010-05-14 11:18:18 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ 2010-05-14 11:18:03 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$ 2010-05-14 11:18:01 ----A---- C:\WINDOWS\system32\OpenCL.dll 2010-05-14 11:18:00 ----A---- C:\WINDOWS\system32\nvoglnt.dll 2010-05-14 11:17:59 ----D---- C:\WINDOWS\system32\PreInstall 2010-05-14 11:17:59 ----A---- C:\WINDOWS\system32\nvcuvid.dll 2010-05-14 11:17:59 ----A---- C:\WINDOWS\system32\nvcuvenc.dll 2010-05-14 11:17:57 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$ 2010-05-14 11:17:57 ----A---- C:\WINDOWS\system32\nvcuda.dll 2010-05-14 11:17:56 ----A---- C:\WINDOWS\system32\nvcompiler.dll 2010-05-14 11:17:56 ----A---- C:\WINDOWS\system32\nvcodins.dll 2010-05-14 11:17:56 ----A---- C:\WINDOWS\system32\nvcod.dll 2010-05-14 11:17:56 ----A---- C:\WINDOWS\system32\nvapi.dll 2010-05-14 11:17:56 ----A---- C:\WINDOWS\system32\nv4_disp.dll 2010-05-14 11:17:49 ----D---- C:\NVIDIA 2010-05-14 11:17:43 ----N---- C:\WINDOWS\system32\spmsg.dll 2010-05-14 11:17:42 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$ 2010-05-14 11:17:41 ----HD---- C:\WINDOWS\$hf_mig$ 2010-05-14 11:16:20 ----D---- C:\WINDOWS\system32\Lang 2010-05-14 11:14:50 ----A---- C:\WINDOWS\system32\ChCfg.exe 2010-05-14 11:14:39 ----D---- C:\WINDOWS\system32\RTCOM 2010-05-14 11:14:38 ----A---- C:\WINDOWS\system32\ksuser.dll 2010-05-14 11:14:12 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2010-05-14 11:14:11 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$ 2010-05-14 11:14:07 ----A---- C:\WINDOWS\SoundMan.exe 2010-05-14 11:14:07 ----A---- C:\WINDOWS\SkyTel.exe 2010-05-14 11:14:07 ----A---- C:\WINDOWS\RtlUpd.exe 2010-05-14 11:14:07 ----A---- C:\WINDOWS\RTLCPL.exe 2010-05-14 11:14:06 ----A---- C:\WINDOWS\RTHDCPL.exe 2010-05-14 11:14:06 ----A---- C:\WINDOWS\MicCal.exe 2010-05-14 11:14:05 ----D---- C:\Programmi\Realtek 2010-05-14 11:14:05 ----A---- C:\WINDOWS\alcwzrd.exe 2010-05-14 11:14:05 ----A---- C:\WINDOWS\Alcmtr.exe 2010-05-14 11:13:59 ----A---- C:\WINDOWS\RtlExUpd.dll 2010-05-14 11:13:59 ----A---- C:\WINDOWS\HideWin.exe 2010-05-14 11:13:57 ----D---- C:\Programmi\File comuni\InstallShield 2010-05-14 11:12:00 ----A---- C:\WINDOWS\AS_Debug.txt 2010-05-14 11:08:13 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-05-14 11:08:12 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-05-14 11:08:12 ----D---- C:\Programmi\Intel 2010-05-14 11:08:12 ----A---- C:\WINDOWS\system32\CSVer.dll 2010-05-14 11:08:03 ----D---- C:\Intel 2010-05-14 11:06:00 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2010-05-14 11:05:16 ----D---- C:\WINDOWS\system32\Atheros_L1e 2010-05-14 11:05:13 ----HD---- C:\Programmi\InstallShield Installation Information 2010-05-14 11:05:00 ----A---- C:\WINDOWS\Language_trs.ini 2010-05-14 11:03:23 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\WinRAR 2010-05-14 11:02:51 ----D---- C:\driver 2010-05-14 11:02:41 ----D---- C:\Programmi\WinRAR 2010-05-14 10:28:04 ----D---- C:\Documents and Settings\Propretario\Dati applicazioni\Identities 2010-05-14 10:28:03 ----HD---- C:\Programmi\Uninstall Information 2010-05-14 10:27:59 ----SD---- C:\Documents and Settings\Propretario\Dati applicazioni\Microsoft 2010-05-14 10:27:59 ----ASH---- C:\Documents and Settings\Propretario\Dati applicazioni\desktop.ini 2010-05-14 10:26:28 ----D---- C:\WINDOWS\SoftwareDistribution 2010-05-14 10:26:27 ----D---- C:\WINDOWS\Prefetch 2010-05-14 10:26:19 ----SD---- C:\WINDOWS\system32\Microsoft 2010-05-14 10:26:19 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-05-14 10:23:10 ----D---- C:\WINDOWS\system32\xircom 2010-05-14 10:23:10 ----D---- C:\Programmi\xerox 2010-05-14 10:23:10 ----D---- C:\Programmi\microsoft frontpage 2010-05-14 10:22:25 ----A---- C:\WINDOWS\control.ini 2010-05-14 10:22:25 ----A---- C:\AUTOEXEC.BAT 2010-05-14 10:22:14 ----A---- C:\WINDOWS\system32\mapi32.dll 2010-05-14 10:21:37 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-05-14 10:21:37 ----RD---- C:\WINDOWS\Offline Web Pages 2010-05-14 10:21:36 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-05-14 10:21:33 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-05-14 10:21:29 ----HD---- C:\Programmi\WindowsUpdate 2010-05-14 10:21:26 ----D---- C:\Programmi\Servizi in linea 2010-05-14 10:21:10 ----D---- C:\WINDOWS\system32\DirectX 2010-05-14 10:20:44 ----A---- C:\WINDOWS\system32\atrace.dll 2010-05-14 10:20:41 ----A---- C:\WINDOWS\system32\desktop.ini 2010-05-14 10:20:41 ----A---- C:\WINDOWS\desktop.ini 2010-05-14 10:20:32 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2010-05-14 10:20:31 ----A---- C:\WINDOWS\system32\acctres.dll 2010-05-14 10:20:30 ----D---- C:\Programmi\File comuni\Services 2010-05-14 10:20:27 ----SD---- C:\WINDOWS\Tasks 2010-05-14 10:20:27 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2010-05-14 10:20:25 ----D---- C:\Programmi\File comuni\MSSoap 2010-05-14 10:20:21 ----D---- C:\WINDOWS\srchasst 2010-05-14 10:20:19 ----D---- C:\WINDOWS\system32\Macromed 2010-05-14 10:20:16 ----A---- C:\WINDOWS\system32\wuweb.dll 2010-05-14 10:20:16 ----A---- C:\WINDOWS\system32\wucltui.dll 2010-05-14 10:20:16 ----A---- C:\WINDOWS\system32\wuauserv.dll 2010-05-14 10:20:16 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\wups.dll 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\wuaueng.dll 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\wuauclt.exe 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\wuapi.dll 2010-05-14 10:20:15 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2010-05-14 10:20:14 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2010-05-14 10:20:14 ----A---- C:\WINDOWS\system32\qmgr.dll 2010-05-14 10:20:14 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2010-05-14 10:20:10 ----D---- C:\Programmi\Movie Maker 2010-05-14 10:20:05 ----A---- C:\WINDOWS\system32\safrslv.dll 2010-05-14 10:20:05 ----A---- C:\WINDOWS\system32\safrdm.dll 2010-05-14 10:20:05 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2010-05-14 10:20:05 ----A---- C:\WINDOWS\system32\racpldlg.dll 2010-05-14 10:20:00 ----D---- C:\WINDOWS\system32\Restore 2010-05-14 10:20:00 ----A---- C:\WINDOWS\system32\srrstr.dll 2010-05-14 10:20:00 ----A---- C:\WINDOWS\system32\fltMc.exe 2010-05-14 10:20:00 ----A---- C:\WINDOWS\system32\fltlib.dll 2010-05-14 10:19:59 ----A---- C:\WINDOWS\system32\srsvc.dll 2010-05-14 10:19:59 ----A---- C:\WINDOWS\system32\srclient.dll 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\msconf.dll 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\mnmdd.dll 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2010-05-14 10:19:58 ----A---- C:\WINDOWS\system32\ils.dll 2010-05-14 10:19:54 ----D---- C:\Programmi\NetMeeting 2010-05-14 10:19:54 ----A---- C:\WINDOWS\system32\msoert2.dll 2010-05-14 10:19:54 ----A---- C:\WINDOWS\system32\msoeacct.dll 2010-05-14 10:19:53 ----A---- C:\WINDOWS\system32\inetres.dll 2010-05-14 10:19:52 ----A---- C:\WINDOWS\system32\inetcomm.dll 2010-05-14 10:19:50 ----D---- C:\Programmi\Outlook Express 2010-05-14 10:19:50 ----A---- C:\WINDOWS\system32\schedsvc.dll 2010-05-14 10:19:50 ----A---- C:\WINDOWS\system32\mstinit.exe 2010-05-14 10:19:50 ----A---- C:\WINDOWS\system32\mstask.dll 2010-05-14 10:19:49 ----A---- C:\WINDOWS\system32\isign32.dll 2010-05-14 10:19:49 ----A---- C:\WINDOWS\system32\inetcfg.dll 2010-05-14 10:19:49 ----A---- C:\WINDOWS\system32\icwphbk.dll 2010-05-14 10:19:49 ----A---- C:\WINDOWS\system32\icwdial.dll 2010-05-14 10:19:41 ----D---- C:\Programmi\File comuni\System 2010-05-14 10:19:40 ----D---- C:\Programmi\Internet Explorer 2010-05-14 10:19:12 ----D---- C:\Programmi\ComPlus Applications 2010-05-14 10:19:10 ----A---- C:\WINDOWS\vbaddin.ini 2010-05-14 10:19:10 ----A---- C:\WINDOWS\vb.ini 2010-05-14 10:19:06 ----D---- C:\WINDOWS\Registration 2010-05-14 10:19:00 ----D---- C:\Programmi\Windows Media Player 2010-05-14 10:18:55 ----D---- C:\Programmi\Messenger 2010-05-14 10:18:50 ----D---- C:\Programmi\MSN Gaming Zone 2010-05-14 10:18:50 ----A---- C:\WINDOWS\system32\write.exe 2010-05-14 10:18:39 ----A---- C:\WINDOWS\system32\sndvol32.exe 2010-05-14 10:18:39 ----A---- C:\WINDOWS\system32\hticons.dll 2010-05-14 10:18:39 ----A---- C:\WINDOWS\system32\avwav.dll 2010-05-14 10:18:39 ----A---- C:\WINDOWS\system32\avtapi.dll 2010-05-14 10:18:39 ----A---- C:\WINDOWS\system32\avmeter.dll 2010-05-14 10:18:38 ----A---- C:\WINDOWS\system32\winchat.exe 2010-05-14 10:18:29 ----A---- C:\WINDOWS\system32\getuname.dll 2010-05-14 10:18:29 ----A---- C:\WINDOWS\system32\charmap.exe 2010-05-14 10:18:28 ----A---- C:\WINDOWS\system32\winmine.exe 2010-05-14 10:18:28 ----A---- C:\WINDOWS\system32\sol.exe 2010-05-14 10:18:28 ----A---- C:\WINDOWS\system32\calc.exe 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\tskill.exe 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\reset.exe 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\mshearts.exe 2010-05-14 10:18:27 ----A---- C:\WINDOWS\system32\freecell.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\tslabels.ini 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\tscon.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\shadow.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\rwinsta.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\regini.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\qwinsta.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\qappsrv.exe 2010-05-14 10:18:26 ----A---- C:\WINDOWS\system32\msg.exe 2010-05-14 10:18:25 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2010-05-14 10:18:25 ----A---- C:\WINDOWS\system32\logoff.exe 2010-05-14 10:18:25 ----A---- C:\WINDOWS\system32\cdmodem.dll 2010-05-14 10:18:24 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2010-05-14 10:18:24 ----A---- C:\WINDOWS\system32\mtxex.dll 2010-05-14 10:18:24 ----A---- C:\WINDOWS\system32\mtxdm.dll 2010-05-14 10:18:24 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2010-05-14 10:18:24 ----A---- C:\WINDOWS\system32\comaddin.dll 2010-05-14 10:18:23 ----A---- C:\WINDOWS\system32\stclient.dll 2010-05-14 10:18:23 ----A---- C:\WINDOWS\system32\comsnap.dll 2010-05-14 10:18:23 ----A---- C:\WINDOWS\system32\comrepl.dll 2010-05-14 10:18:17 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2010-05-14 10:18:16 ----A---- C:\WINDOWS\system32\accwiz.exe 2010-05-14 10:18:15 ----A---- C:\WINDOWS\system32\sndrec32.exe 2010-05-14 10:18:15 ----A---- C:\WINDOWS\system32\mplay32.exe 2010-05-14 10:18:15 ----A---- C:\WINDOWS\system32\hypertrm.dll 2010-05-14 10:18:14 ----D---- C:\Programmi\Windows NT 2010-05-14 10:18:14 ----A---- C:\WINDOWS\system32\mspaint.exe 2010-05-14 10:18:14 ----A---- C:\WINDOWS\system32\clipbrd.exe 2010-05-14 10:18:13 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2010-05-14 10:18:13 ----A---- C:\WINDOWS\system32\spider.exe 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\sessmgr.exe 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\remotepg.dll 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\rdshost.exe 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\rdchost.dll 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\mstscax.dll 2010-05-14 10:18:12 ----A---- C:\WINDOWS\system32\mstsc.exe 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\termsrv.dll 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\rdpclip.exe 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\qprocess.exe 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\icaapi.dll 2010-05-14 10:18:11 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2010-05-14 10:18:10 ----D---- C:\WINDOWS\system32\MsDtc 2010-05-14 10:18:10 ----A---- C:\WINDOWS\system32\mtxoci.dll 2010-05-14 10:18:10 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2010-05-14 10:18:10 ----A---- C:\WINDOWS\system32\msdtctm.dll 2010-05-14 10:18:10 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2010-05-14 10:18:09 ----A---- C:\WINDOWS\system32\xolehlp.dll 2010-05-14 10:18:09 ----A---- C:\WINDOWS\system32\msdtclog.dll 2010-05-14 10:18:09 ----A---- C:\WINDOWS\system32\msdtc.exe 2010-05-14 10:18:08 ----D---- C:\WINDOWS\system32\Com 2010-05-14 10:18:08 ----A---- C:\WINDOWS\system32\colbact.dll 2010-05-14 10:18:08 ----A---- C:\WINDOWS\system32\clbcatex.dll 2010-05-14 10:18:08 ----A---- C:\WINDOWS\system32\catsrvps.dll 2010-05-14 10:18:07 ----A---- C:\WINDOWS\system32\comsvcs.dll 2010-05-14 10:18:07 ----A---- C:\WINDOWS\system32\catsrvut.dll 2010-05-14 10:18:07 ----A---- C:\WINDOWS\system32\catsrv.dll 2010-05-14 10:18:06 ----A---- C:\WINDOWS\system32\comuid.dll 2010-05-14 10:18:06 ----A---- C:\WINDOWS\system32\clbcatq.dll 2010-05-14 10:17:59 ----A---- C:\WINDOWS\system32\servdeps.dll 2010-05-14 10:17:58 ----A---- C:\WINDOWS\system32\mmfutil.dll 2010-05-14 10:17:58 ----A---- C:\WINDOWS\system32\licwmi.dll 2010-05-14 10:17:58 ----A---- C:\WINDOWS\system32\cmprops.dll ======List of files/folders modified in the last 1 months====== 2010-05-23 13:36:29 ----A---- C:\WINDOWS\win.ini 2010-05-22 23:39:30 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2010-05-23 82380] R1 avgio;avgio; \??\C:\Programmi\Avira\AntiVir Desktop\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2009-03-30 96104] R1 intelppm;Driver processore Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-19 40192] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2009-11-25 56816] R3 Arp1394;Protocollo client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-19 60800] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752] R3 HidUsb;Driver di classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600] R3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2003-03-09 51024] R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2003-03-09 21456] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-03 4745216] R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2009-08-05 39424] R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810] R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-19 61824] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-04-04 10232128] R3 usbccgp;Driver principale generico USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] R3 usbehci;Driver Miniport controller enhanced host USB 2.0 Microsoft; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-03 26624] R3 usbhub;Hub abilitato USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600] R3 usbprint;Classe stampanti USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] R3 usbscan;Driver scanner USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] R3 usbstor;Driver archiviazione di massa USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] R3 usbuhci;Driver Miniport Controller Universal Host USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirScheduler;Avira AntiVir Scheduler; C:\Programmi\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289] R2 AntiVirService;Avira AntiVir Guard; C:\Programmi\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe [2010-02-04 1228208] R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2010-04-03 154216] S2 JavaQuickStarterService;Java Quick Starter; C:\Programmi\Java\jre6\bin\jqs.exe [2010-05-14 153376] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 gusvc;Google Updater Service; C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120] -----------------EOF-----------------
  12. gripette22
    Bonsoir à tous, Depuis quelques jours mon pc n'ouvre pas les sessions, message de firefox: adresse invalide, des adresses que j'utilise toujours. Pour en avoir le coeur net, j'ai passé un scan en ligne plus Spyboot, plus malwarebyte, il y avait bien deux malware que j'ai détruit. Voilà que mon pc n'est pas beaucoup plus en santé, j'ai dont fait un rapport hijackthis, y'a-t-il des pros qui peuvent me l'interpréter SVP car moi je n'y comprends rien ... je remercie à l'avance ceux ou celles qui voudront bien y jeter un coup d'oeil. ------------------------ Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:38:03, on 2010-05-23 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\Programmi\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Programmi\Java\jre6\bin\jusched.exe C:\Programmi\Avira\AntiVir Desktop\avgnt.exe C:\PROGRA~1\ALICET~1\SMARTB~2\MotiveSB.exe C:\WINDOWS\system32\ctfmon.exe C:\Programmi\Messenger\msmsgs.exe C:\Programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Programmi\OpenOffice.org 3\program\soffice.exe C:\Programmi\OpenOffice.org 3\program\soffice.bin C:\Programmi\Alice ti aiuta\bin\mpbtn.exe C:\Programmi\Avira\AntiVir Desktop\avguard.exe C:\WINDOWS\system32\svchost.exe C:\Programmi\Lavasoft\Ad-Aware\AAWTray.exe C:\Programmi\Mozilla Firefox\firefox.exe C:\Documents and Settings\Propretario\Documenti\Téléchargements\HiJackThis.exe C:\Documents and Settings\Propretario\Documenti\Téléchargements\HijackThis(2).exe C:\WINDOWS\system32\msfeedssync.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\ALICET~1\SMARTB~2\MotiveSB.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Programmi\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 3.1.lnk = C:\Programmi\OpenOffice.org 3\program\quickstart.exe O4 - Global Startup: Alice ti aiuta.lnk = C:\Programmi\Alice ti aiuta\bin\matcli.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{E39154D4-86AA-439F-B9F4-F98B7FEAD3A1}: NameServer = 85.37.17.5 85.38.28.77 O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Programmi\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 5297 bytes
×
×
  • Créer...