Valutazione 4.87/ 5 (100.00%) 5838 voti

Condividi:        

RUNDLL: Errore all'avvio di Windows Vista, odbckbd32.dll

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: kadosh, Luke57

RUNDLL: Errore all'avvio di Windows Vista, odbckbd32.dll

Postdi manara48 » 10/03/10 11:13

Dopo aver scansionato il PC in modalità provvisoria con AVG 9, all'avvio mi appare il messaggio di errore:

RUNDLL
Errore durante il caricamento di:
C:\User\utente\AppData\Local\odbckbd32\odbckbd32.dll
Impossibile trovare il modulo specificato.

Se vado a cliccare su OK il pc parte regolarmente a non sembra abbia problemi.

Qualche consiglio?

Ciao e grazie.
manara48
Utente Junior
 
Post: 13
Iscritto il: 18/06/03 08:56

Sponsor
 

Re: Errore all'avvio di Windows Vista

Postdi -> EleKtrA <- » 10/03/10 11:30

Ciao manara48, allega un log di hijackthis

Scarica ed installa HIjackthis

Come eseguire il log:
Tasto destro su hijackthis.exe
esegui come amministratore
cliccare su "Do a system scan and save a logfile"

Postare il log nel topic inserendolo nel tag "code". (CLICCA)
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: Errore all'avvio di Windows Vista

Postdi manara48 » 10/03/10 11:37

Innanzitutto grazie per l'interessamento.

Ecco il log di hijackthis

Codice: Seleziona tutto
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11.34.23, on 10/03/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\SSLEmptyCache.exe
C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\CyberLink\Shared Files\brs.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\EssentialPIM\EssentialPIM.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\utente\Desktop\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://news.google.it/nwshp?hl=it&tab=wn
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SSLEmptyCache] C:\Windows\system32\SSLEmptyCache.exe
O4 - HKLM\..\Run: [DiscWizardMonitor.exe] C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Seagate Scheduler2 Service] "C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [cbbabysys] rundll32.exe "c:\users\utente\appdata\local\temp\qopnnn.dll",DllRegisterServer
O4 - HKLM\..\Run: [cbyyxvdrv] rundll32.exe "c:\users\utente\appdata\local\temp\iifggh.dll",s
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [odbckbd32] rundll32.exe "C:\Users\utente\AppData\Local\odbckbd32\odbckbd32.dll", DllInit
O4 - HKCU\..\Run: [mdply3d] C:\Users\utente\AppData\Roaming\mdply3d\mdply3d.exe
O4 - HKCU\..\Run: [EssentialPIM] "C:\Program Files\EssentialPIM\EssentialPIM.exe" /autorun
O4 - HKCU\..\Run: [nnkhijsys] rundll32.exe "c:\users\utente\appdata\local\temp\qopnnn.dll",DllRegisterServer
O4 - HKCU\..\Run: [fccayvdrv] rundll32.exe "c:\users\utente\appdata\local\temp\iifggh.dll",s
O8 - Extra context menu item: Aggiungi a PDF esistente - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Aggiungi destinazione link a PDF esistente - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti destinazione link in Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Converti in Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutti i video usando BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Scarica tutto usando BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Scarica usando &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {15D151C8-5180-43C1-9360-4D794663BD6E} (Posto di Lavoro del Cittadino - Attestazione) - http://www.crs.regione.lombardia.it/components/OcsKitCittadino.cab
O16 - DPF: {3263F297-5CB9-4D8C-A2DB-CDFB8C69CB6D} (Posto di Lavoro del Cittadino - Autenticazione utente) - http://www.crs.regione.lombardia.it/components/OcxCertUpdate.cab
O16 - DPF: {4384AA75-43AB-4095-84F9-C5B35EC62B5D} (Posto di Lavoro del Cittadino - Interprete dati) - http://www.crs.regione.lombardia.it/components/OcxCrsInfo.cab
O16 - DPF: {877E14A6-0ACF-4509-8CF3-E4A0F4ED46F4} (Postazione di Lavoro del Cittadino 3.0) - http://supportsiss.lispa.it/components/pdlc.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - AppInit_DLLs: C:\Windows\System32\avgrsstx.dll,C:\Windows\System32\avgrsstx.dll,C:\Windows\System32\acaptuser32.dll,avgrsstx.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\Windows\system32\ASTSRV.EXE
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate1c985e0b89f4580) (gupdate1c985e0b89f4580) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NitroPDFDriverCreatorReadSpool (NitroDriverReadSpool) - Nitro PDF Software - C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12321 bytes


Ciao.
Ultima modifica di -> EleKtrA <- su 10/03/10 11:44, modificato 1 volte in totale.
Motivazione: inserito tag code
manara48
Utente Junior
 
Post: 13
Iscritto il: 18/06/03 08:56

Re: Errore all'avvio di Windows Vista

Postdi -> EleKtrA <- » 10/03/10 11:44

C'è un'infezione in corso.

Disattiva momentaneamente l'antivirus
Scarica Combofix
Tasto destro sull'exe, esegui come amministratore
Lascia lavorare il programma senza interferire
Allega il rapporto C:\ComboFix.txt nella tua risposta.
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: Errore all'avvio di Windows Vista

Postdi manara48 » 10/03/10 12:46

Fatto

Codice: Seleziona tutto
ComboFix 10-03-09.08 - utente 10/03/2010  12.25.55.5.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.39.1040.18.2047.756 [GMT 1:00]
Eseguito da: c:\users\utente\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Norton AntiVirus *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton AntiVirus *enabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Lavasoft Ad-Watch Live! *disabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: Norton AntiVirus *enabled* (Updated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((((   Altre eliminazioni   )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\utente\appdata\local\temp\iifggh.dll
c:\users\utente\appdata\local\temp\qopnnn.dll

.
(((((((((((((((((((((((((   Files Creati Da 2010-02-10 al 2010-03-10  )))))))))))))))))))))))))))))))))))
.

2010-03-10 11:34 . 2010-03-10 11:34   --------   d-----w-   c:\users\utente\AppData\Local\temp
2010-03-10 11:34 . 2010-03-10 11:34   --------   d-----w-   c:\users\Public\AppData\Local\temp
2010-03-10 11:34 . 2010-03-10 11:34   --------   d-----w-   c:\users\Default\AppData\Local\temp
2010-03-10 11:05 . 2010-01-07 15:07   38224   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-10 11:05 . 2010-03-10 11:12   --------   d-----w-   c:\program files\Malwarebytes' Anti-Malware
2010-03-10 11:05 . 2010-01-07 15:07   19160   ----a-w-   c:\windows\system32\drivers\mbam.sys
2010-03-10 07:00 . 2010-02-20 23:06   24064   ----a-w-   c:\windows\system32\nshhttp.dll
2010-03-10 07:00 . 2010-02-20 20:53   411648   ----a-w-   c:\windows\system32\drivers\http.sys
2010-03-10 07:00 . 2010-02-20 23:05   30720   ----a-w-   c:\windows\system32\httpapi.dll
2010-03-09 05:56 . 2010-03-09 05:57   142848   ----a-w-   c:\users\utente\pod62.exe
2010-03-09 05:55 . 2010-03-09 05:56   81031   ----a-w-   c:\users\utente\pod60.exe
2010-03-08 12:56 . 2010-03-08 12:56   --------   d-----w-   c:\program files\EssentialPIM
2010-03-07 19:08 . 2010-03-09 07:18   --------   d-----w-   c:\users\utente\AppData\Roaming\mdply3d
2010-03-07 19:08 . 2010-03-10 07:00   --------   d-----w-   c:\users\utente\AppData\Local\odbckbd32
2010-03-07 09:50 . 2010-03-07 09:50   --------   d-----w-   c:\users\utente\AppData\Roaming\URSoft
2010-03-07 08:11 . 2010-03-07 08:11   3584   ----a-r-   c:\users\utente\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2010-03-07 08:11 . 2010-03-07 08:11   --------   d-----w-   c:\program files\Windows Installer Clean Up
2010-03-07 07:42 . 2009-08-05 21:48   54632   ----a-w-   c:\windows\system32\drivers\fssfltr.sys
2010-03-07 07:40 . 2006-11-29 12:06   3426072   ----a-w-   c:\windows\system32\d3dx9_32.dll
2010-03-05 17:23 . 2010-03-05 17:23   --------   d-----w-   c:\users\utente\AppData\Roaming\AVG9
2010-03-05 17:03 . 2010-02-12 10:32   293376   ----a-w-   c:\windows\system32\browserchoice.exe
2010-02-28 09:05 . 2010-02-28 09:05   --------   d-----w-   c:\program files\Goomsoft
2010-02-28 08:47 . 2010-02-28 08:53   --------   d-----w-   c:\program files\ChrisTV Online FREE Edition
2010-02-28 08:09 . 2010-02-28 08:09   --------   d-----w-   c:\users\utente\AppData\Roaming\FDRLab
2010-02-25 08:22 . 2010-02-25 08:23   --------   d-----w-   c:\program files\Glary Registry Repair
2010-02-24 09:24 . 2010-02-24 09:24   --------   d-----w-   c:\program files\IncrediMail
2010-02-24 07:30 . 2010-02-24 08:24   --------   d-----w-   c:\users\utente\AppData\Local\IM
2010-02-24 07:30 . 2010-02-24 07:30   --------   d-----w-   c:\programdata\IncrediMail
2010-02-24 07:30 . 2010-02-24 07:32   --------   d-----w-   c:\programdata\IM
2010-02-24 05:30 . 2010-01-06 15:39   1696256   ----a-w-   c:\windows\system32\gameux.dll
2010-02-24 05:30 . 2010-01-06 15:38   28672   ----a-w-   c:\windows\system32\Apphlpdm.dll
2010-02-24 05:30 . 2010-01-06 13:30   4240384   ----a-w-   c:\windows\system32\GameUXLegacyGDFs.dll
2010-02-24 05:30 . 2010-01-23 09:26   2048   ----a-w-   c:\windows\system32\tzres.dll
2010-02-24 05:30 . 2010-01-25 12:00   471552   ----a-w-   c:\windows\system32\secproc_isv.dll
2010-02-24 05:30 . 2010-01-25 12:00   471552   ----a-w-   c:\windows\system32\secproc.dll
2010-02-24 05:30 . 2010-01-25 08:21   526336   ----a-w-   c:\windows\system32\RMActivate_isv.exe
2010-02-24 05:29 . 2010-01-25 12:00   152576   ----a-w-   c:\windows\system32\secproc_ssp_isv.dll
2010-02-24 05:29 . 2010-01-25 08:21   346624   ----a-w-   c:\windows\system32\RMActivate_ssp_isv.exe
2010-02-24 05:29 . 2010-01-25 08:21   518144   ----a-w-   c:\windows\system32\RMActivate.exe
2010-02-24 05:29 . 2010-01-25 08:21   347136   ----a-w-   c:\windows\system32\RMActivate_ssp.exe
2010-02-24 05:29 . 2010-01-25 12:00   152064   ----a-w-   c:\windows\system32\secproc_ssp.dll
2010-02-24 05:29 . 2010-01-25 11:58   332288   ----a-w-   c:\windows\system32\msdrm.dll
2010-02-23 19:19 . 2007-05-23 16:54   260248   ----a-w-   c:\windows\system32\QMO.dll
2010-02-23 19:19 . 2007-05-23 16:54   80024   ----a-w-   c:\windows\system32\TXGYUploader.dll
2010-02-23 19:19 . 2007-05-23 16:54   92312   ----a-w-   c:\windows\system32\QMOCameraDll.dll
2010-02-23 06:57 . 2010-02-26 07:24   --------   d-----w-   c:\users\utente\AppData\Roaming\FreshDiagnose
2010-02-22 19:06 . 2010-02-27 15:35   --------   d-----w-   c:\program files\MyInternetTV
2010-02-21 07:52 . 2010-02-25 19:14   --------   d-----w-   c:\users\utente\AppData\Roaming\java
2010-02-21 07:52 . 2010-02-25 19:14   45056   ---ha-w-   c:\users\utente\AppData\Roaming\java\msnmsgs.exe
2010-02-21 07:52 . 2010-02-21 07:55   0   ----a-w-   c:\users\utente\AppData\Roaming\msnmsgs.exe
2010-02-20 06:44 . 2010-03-07 07:46   --------   d-----w-   c:\users\utente\Tracing
2010-02-19 06:11 . 2010-02-18 19:28   15880   ----a-w-   c:\windows\system32\lsdelete.exe
2010-02-18 19:27 . 2010-03-04 19:21   94712   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\PrivacyClean.dll
2010-02-18 19:27 . 2010-02-18 19:27   17480   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\EmailScannerBridge.dll
2010-02-18 19:27 . 2010-03-04 19:21   961984   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\CEAPI.dll
2010-02-18 19:27 . 2010-02-18 19:27   835312   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\Ad-AwareCommand.exe
2010-02-18 19:27 . 2010-02-18 19:27   842992   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\Ad-AwareAdmin.exe
2010-02-18 19:27 . 2010-03-04 19:21   1593320   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
2010-02-18 19:27 . 2010-02-18 19:27   815184   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\AAWTray.exe
2010-02-18 19:27 . 2010-02-18 19:27   1229232   ----a-w-   c:\programdata\Lavasoft\Ad-Aware\Update\AAWService.exe
2010-02-18 19:18 . 2010-02-04 15:53   64288   ----a-w-   c:\windows\system32\drivers\Lbd.sys
2010-02-18 19:16 . 2010-02-18 19:16   --------   dc-h--w-   c:\programdata\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2010-02-18 19:16 . 2010-02-04 15:53   2954656   -c--a-w-   c:\programdata\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}\Ad-AwareInstaller.exe
2010-02-18 19:16 . 2010-02-18 19:16   --------   d-----w-   c:\program files\Lavasoft
2010-02-18 08:06 . 2010-02-18 08:06   81920   ----a-w-   c:\users\utente\AppData\Roaming\ezpinst.exe
2010-02-18 08:06 . 2010-02-18 08:09   --------   d-----w-   c:\program files\Video Convert Master
2010-02-17 08:27 . 2010-02-17 08:27   --------   d-----w-   c:\users\utente\AppData\Local\WinAVI
2010-02-17 08:27 . 2010-02-17 08:27   --------   d-----w-   c:\program files\WinAVI Video Converter 9.0
2010-02-17 08:27 . 2010-02-17 08:27   --------   d-----w-   c:\windows\WinAVI Video Converter 9.0
2010-02-17 08:11 . 2010-02-17 08:18   --------   d-----w-   c:\users\utente\AppData\Roaming\WinAVI
2010-02-17 06:23 . 2010-02-17 07:47   --------   d-----w-   C:\OutputFolder
2010-02-13 13:58 . 2010-02-13 13:58   --------   d-----w-   c:\users\utente\AppData\Roaming\MOVAVI
2010-02-13 13:55 . 2010-02-13 13:55   --------   d-----w-   c:\users\utente\AppData\Local\Downloaded Installations
2010-02-13 07:02 . 2010-02-13 07:04   --------   d-----w-   c:\program files\XMedia Recode
2010-02-12 19:26 . 2010-02-12 19:26   --------   d-----w-   c:\users\utente\AppData\Roaming\FreeVideoConverter
2010-02-12 14:24 . 2010-02-12 14:24   --------   d-----w-   c:\users\utente\AppData\Local\Apps
2010-02-11 13:49 . 2010-02-11 13:49   --------   d-----w-   c:\program files\JRE
2010-02-11 13:43 . 2010-02-11 13:43   --------   d-----w-   c:\program files\Common Files\Java
2010-02-10 05:34 . 2009-12-11 11:43   302080   ----a-w-   c:\windows\system32\drivers\srv.sys
2010-02-10 05:34 . 2009-12-11 11:43   98816   ----a-w-   c:\windows\system32\drivers\srvnet.sys
2010-02-10 05:34 . 2009-12-08 20:01   3600456   ----a-w-   c:\windows\system32\ntkrnlpa.exe
2010-02-10 05:34 . 2009-12-08 20:01   3548216   ----a-w-   c:\windows\system32\ntoskrnl.exe
2010-02-09 08:32 . 2009-12-09 16:31   20992   ----a-w-   c:\users\utente\AppData\Roaming\Mozilla\Firefox\Profiles\pe75m728.default\extensions\{de1b245c-de57-11da-ba2d-0050c2490048}\library\WINNT-32\MinimizeToTrayPlus.dll

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-03-10 11:29 . 2006-11-06 01:52   676876   ----a-w-   c:\windows\system32\perfh010.dat
2010-03-10 11:29 . 2006-11-06 01:52   124992   ----a-w-   c:\windows\system32\perfc010.dat
2010-03-10 11:22 . 2008-05-02 06:15   504900   ----a-w-   c:\windows\system32\drivers\stwrte.log
2010-03-10 10:26 . 2009-07-27 08:36   --------   d-----w-   c:\users\utente\AppData\Roaming\uTorrent
2010-03-10 09:19 . 2007-10-03 15:15   --------   d-----w-   c:\programdata\Microsoft Help
2010-03-10 09:18 . 2006-11-02 11:18   --------   d-----w-   c:\program files\Windows Mail
2010-03-10 05:17 . 2008-05-14 05:35   --------   d-----w-   c:\programdata\Google Updater
2010-03-08 13:03 . 2008-04-21 06:34   --------   d-----w-   c:\users\utente\AppData\Roaming\EssentialPIM
2010-03-07 09:47 . 2008-10-19 13:36   --------   d-----w-   c:\users\utente\AppData\Roaming\Free Download Manager
2010-03-07 08:10 . 2007-11-21 07:09   --------   d-----w-   c:\program files\MSECache
2010-03-07 07:39 . 2009-04-12 08:38   --------   d-----w-   c:\program files\Windows Live
2010-03-06 06:50 . 2007-10-23 10:19   116288   ----a-w-   c:\users\utente\AppData\Local\GDIPFONTCACHEV1.DAT
2010-03-05 17:55 . 2009-01-30 07:05   360584   ----a-w-   c:\windows\system32\drivers\avgtdix.sys
2010-03-05 17:55 . 2008-11-05 09:19   12464   ----a-w-   c:\windows\system32\avgrsstx.dll
2010-03-05 17:55 . 2008-11-05 09:19   28424   ----a-w-   c:\windows\system32\drivers\avgmfx86.sys
2010-03-05 17:37 . 2009-10-20 07:00   --------   d-----w-   c:\programdata\avg9
2010-03-02 09:32 . 2010-02-01 17:14   --------   d-----w-   c:\users\utente\AppData\Roaming\vlc
2010-02-26 06:45 . 2007-10-26 13:35   --------   d-----w-   c:\program files\CCleaner
2010-02-25 16:28 . 2007-12-27 08:25   --------   d-----w-   c:\users\utente\AppData\Roaming\Vso
2010-02-25 08:22 . 2008-10-02 06:34   --------   d-----w-   c:\users\utente\AppData\Roaming\GlarySoft
2010-02-19 08:48 . 2009-05-26 06:04   --------   d-----w-   c:\users\utente\AppData\Roaming\WIPE
2010-02-19 07:04 . 2008-10-31 05:21   --------   d-----w-   c:\program files\Glary Utilities
2010-02-18 19:16 . 2008-07-13 15:58   --------   d-----w-   c:\programdata\Lavasoft
2010-02-18 17:09 . 2009-10-28 09:05   95024   ----a-w-   c:\windows\system32\drivers\SBREDrv.sys
2010-02-18 16:16 . 2010-01-03 07:01   --------   d-----w-   c:\program files\Super_DVD_Creator_9.8
2010-02-18 08:06 . 2007-12-27 08:25   47360   ----a-w-   c:\windows\system32\drivers\pcouffin.sys
2010-02-18 08:06 . 2007-12-27 08:25   47360   ----a-w-   c:\users\utente\AppData\Roaming\pcouffin.sys
2010-02-18 08:06 . 2007-12-27 08:25   47360   ----a-w-   c:\users\utente\AppData\Roaming\pcouffin.sys
2010-02-14 08:40 . 2008-10-14 05:20   1   ----a-w-   c:\users\utente\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys
2010-02-13 06:37 . 2009-04-13 08:29   --------   d-----w-   c:\program files\Free Video Converter
2010-02-12 13:31 . 2008-11-25 06:54   --------   d-----w-   c:\program files\FormatFactory
2010-02-12 06:41 . 2008-10-17 06:06   --------   d-----w-   c:\program files\Siw
2010-02-11 13:51 . 2008-10-14 05:18   --------   d-----w-   c:\program files\OpenOffice.org 3
2010-02-11 13:42 . 2009-02-04 07:30   411368   ----a-w-   c:\windows\system32\deploytk.dll
2010-02-10 19:16 . 2009-07-23 16:08   --------   d-----w-   c:\program files\BurnAware Free
2010-02-08 06:20 . 2007-10-26 06:45   --------   d-----w-   c:\program files\Google
2010-02-07 07:01 . 2010-02-07 07:01   --------   d-----w-   c:\program files\Duplicate Cleaner
2010-02-06 08:14 . 2008-01-20 15:07   --------   d-----w-   c:\program files\Auslogics
2010-02-05 07:20 . 2010-02-05 07:20   --------   d-----w-   c:\users\utente\AppData\Roaming\ntstream97
2010-02-05 06:54 . 2008-10-03 05:42   --------   d-----w-   c:\program files\uTorrent
2010-02-04 19:14 . 2008-04-22 05:45   --------   d-----w-   c:\program files\Mozilla Sunbird
2010-02-04 08:40 . 2008-04-21 07:51   --------   d-----w-   c:\program files\Unforgiven Organizer
2010-02-04 05:13 . 2010-02-04 05:13   49152   ----a-w-   c:\users\utente\AppData\Roaming\ntstream97\ntstream97.exe
2010-02-03 19:29 . 2010-02-03 19:29   7986848   ----a-w-   c:\users\utente\essentialpimpro3.exe
2010-02-02 06:44 . 2010-02-02 06:44   --------   d-----w-   c:\users\utente\AppData\Roaming\Canneverbe Limited
2010-02-02 06:44 . 2009-07-23 16:10   --------   d-----w-   c:\program files\CDBurnerXP
2010-02-01 16:54 . 2010-01-15 16:26   --------   d-----w-   c:\users\utente\AppData\Roaming\Nero
2010-01-31 06:11 . 2010-01-31 06:07   --------   d-----w-   c:\program files\Rainlendar2
2010-01-28 07:21 . 2010-01-28 07:21   --------   d-----w-   c:\program files\Common Files\Nitro PDF
2010-01-28 07:21 . 2010-01-28 07:21   --------   d-----w-   c:\program files\Nitro PDF
2010-01-25 06:38 . 2009-09-15 14:41   --------   d-----w-   c:\users\utente\AppData\Roaming\ZipGenius
2010-01-25 06:38 . 2009-09-15 14:41   --------   d-----w-   c:\program files\ZipGenius 6
2010-01-21 09:38 . 2010-01-02 07:43   --------   d-----w-   c:\program files\dvdSanta
2010-01-20 18:51 . 2008-03-02 06:54   --------   d-----w-   c:\program files\Microsoft Silverlight
2010-01-20 09:53 . 2009-12-12 09:02   --------   d-----w-   c:\users\utente\AppData\Roaming\Spider Player
2010-01-16 13:39 . 2010-01-16 13:39   --------   d-----w-   c:\programdata\TomTom
2010-01-16 13:39 . 2010-01-16 13:39   --------   d-----w-   c:\program files\TomTom International B.V
2010-01-16 13:38 . 2010-01-16 13:38   --------   d-----w-   c:\program files\TomTom HOME 2
2010-01-16 13:35 . 2010-01-16 13:35   --------   d-----w-   c:\program files\TomTom DesktopSuite
2010-01-16 08:30 . 2010-01-16 08:30   --------   d-----w-   c:\users\utente\AppData\Roaming\NeroDigital(TM)
2010-01-15 16:25 . 2010-01-15 16:11   --------   d-----w-   c:\program files\Common Files\Nero
2010-01-15 16:19 . 2010-01-15 16:11   --------   d-----w-   c:\program files\Nero
2010-01-15 16:15 . 2009-08-07 15:48   --------   d-----w-   c:\programdata\Nero
2010-01-15 16:10 . 2010-01-15 16:10   --------   d-----w-   c:\program files\Common Files\LightScribe
2010-01-15 10:42 . 2009-05-23 14:39   --------   d-----w-   c:\program files\Common Files\AVSMedia
2010-01-15 09:46 . 2008-10-17 08:39   --------   d-----w-   c:\programdata\LightScribe
2010-01-14 09:55 . 2008-07-25 07:39   --------   d-----w-   c:\program files\Common Files\Adobe
2010-01-12 10:48 . 2009-02-03 08:58   --------   d-----w-   c:\users\utente\AppData\Roaming\dvdcss
2010-01-12 07:12 . 2010-01-12 07:12   --------   d-----w-   c:\program files\Avidemux 2.5
2010-01-06 15:38 . 2010-02-24 05:30   173056   ----a-w-   c:\windows\AppPatch\AcXtrnal.dll
2010-01-06 15:38 . 2010-02-24 05:30   542720   ----a-w-   c:\windows\AppPatch\AcLayers.dll
2010-01-06 15:38 . 2010-02-24 05:30   458752   ----a-w-   c:\windows\AppPatch\AcSpecfc.dll
2010-01-06 15:38 . 2010-02-24 05:30   2159616   ----a-w-   c:\windows\AppPatch\AcGenral.dll
2010-01-02 06:38 . 2010-01-22 05:10   916480   ----a-w-   c:\windows\system32\wininet.dll
2010-01-02 06:32 . 2010-01-22 05:10   71680   ----a-w-   c:\windows\system32\iesetup.dll
2010-01-02 06:32 . 2010-01-22 05:10   109056   ----a-w-   c:\windows\system32\iesysprep.dll
2010-01-02 04:57 . 2010-01-22 05:10   133632   ----a-w-   c:\windows\system32\ieUnatt.exe
2009-12-23 15:31 . 2009-12-23 15:31   4403427   ----a-w-   c:\windows\x32dett.exe
2009-05-19 09:00 . 2008-09-16 07:42   72   --sh--w-   c:\windows\S40400E79.tmp
2009-08-27 07:23 . 2009-08-27 07:23   23   --sha-w-   c:\windows\System32\edacded0.dat
.

(((((((((((((((((((((((((((((((((((((   Punti Reg Caricati   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-10-26 68856]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"EssentialPIM"="c:\program files\EssentialPIM\EssentialPIM.exe" [2010-02-03 1851488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SSLEmptyCache"="c:\windows\system32\SSLEmptyCache.exe" [2008-10-02 32768]
"DiscWizardMonitor.exe"="c:\program files\Seagate\DiscWizard\DiscWizardMonitor.exe" [2008-08-22 1348224]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2008-03-10 909592]
"Seagate Scheduler2 Service"="c:\program files\Common Files\Seagate\Schedule2\schedhlp.exe" [2008-08-22 136472]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2008-03-10 2617808]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2008-03-10 140568]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2006-12-19 868352]
"RemoteControl9"="c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe" [2009-04-27 87336]
"PDVD9LanguageShortcut"="c:\program files\CyberLink\PowerDVD9\Language\Language.exe" [2009-04-27 50472]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2009-05-07 75048]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-11 640376]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll c:\windows\System32\avgrsstx.dll c:\windows\System32\acaptuser32.dll c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Quick Search Box]
2010-02-26 13:24   122880   ----a-w-   c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
2010-01-07 15:07   429392   ----a-w-   c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2010-02-25 07:36   319280   ----a-w-   c:\program files\uTorrent\uTorrent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2009-02-25 21:26   37888   ----a-w-   c:\program files\Winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" /s

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):a7,14,80,e7,1f,fa,c9,01

R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2009-08-19 722416]
R2 gupdate1c985e0b89f4580;Google Update Service (gupdate1c985e0b89f4580);c:\program files\Google\Update\GoogleUpdate.exe [2009-02-03 133104]
R3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\DRIVERS\a38usbxp.sys [2004-04-30 24832]
R3 fssfltr;fssfltr;c:\windows\system32\DRIVERS\fssfltr.sys [2009-08-05 54632]
R3 fsssvc;Servizio Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
R3 VST_DPV;VST_DPV;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
R3 VSTHWBS2;VSTHWBS2;c:\windows\system32\DRIVERS\VSTBS23.SYS [2006-11-02 251904]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [2010-02-04 64288]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2009-10-20 333192]
S1 AvgTdiX;AVG8 Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2010-03-05 360584]
S2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/07/20 16:17];c:\program files\CyberLink\PowerDVD9\000.fcl [2009-05-07 19:05 87536]
S2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2009-10-20 906520]
S2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-03-05 285392]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [2010-02-18 1229232]
S2 NitroDriverReadSpool;NitroPDFDriverCreatorReadSpool;c:\program files\Nitro PDF\Professional\NitroPDFDriverService.exe [2009-06-12 184320]
S2 SgtSch2Svc;Seagate Scheduler2 Service;c:\program files\Common Files\Seagate\Schedule2\schedul2.exe [2008-08-22 431384]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2009-11-13 92008]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation   REG_MULTI_SZ      FontCache

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 09:14   451872   ----a-w-   c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Contenuto della cartella 'Scheduled Tasks'

2010-03-10 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2008-10-31 18:44]

2010-03-10 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-10-26 13:24]

2010-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-03 09:20]

2010-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-03 09:20]

2010-03-10 c:\windows\Tasks\User_Feed_Synchronization-{DF6869C6-186E-4AF5-88F0-231404B239B9}.job
- c:\windows\system32\msfeedssync.exe [2010-01-22 04:56]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://news.google.it/nwshp?hl=it&tab=wn
IE: Aggiungi a PDF esistente - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Aggiungi destinazione link a PDF esistente - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti destinazione link in Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Converti in Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html
IE: Scarica con Free Download Manager - file://c:\program files\Free Download Manager\dllink.htm
IE: Scarica i video con Free Download Manager - file://c:\program files\Free Download Manager\dlfvideo.htm
IE: Scarica selezionati con Free Download Manager - file://c:\program files\Free Download Manager\dlselected.htm
IE: Scarica tutti i video usando BitComet - c:\program files\BitComet\BitComet.exe/AddVideo.htm
IE: Scarica tutto con Free Download Manager - file://c:\program files\Free Download Manager\dlall.htm
IE: Scarica tutto usando BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: Scarica usando &BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
DPF: {15D151C8-5180-43C1-9360-4D794663BD6E} - hxxp://www.crs.regione.lombardia.it/components/OcsKitCittadino.cab
DPF: {3263F297-5CB9-4D8C-A2DB-CDFB8C69CB6D} - hxxp://www.crs.regione.lombardia.it/components/OcxCertUpdate.cab
DPF: {4384AA75-43AB-4095-84F9-C5B35EC62B5D} - hxxp://www.crs.regione.lombardia.it/components/OcxCrsInfo.cab
DPF: {877E14A6-0ACF-4509-8CF3-E4A0F4ED46F4} - hxxp://supportsiss.lispa.it/components/pdlc.cab
FF - ProfilePath - c:\users\utente\AppData\Roaming\Mozilla\Firefox\Profiles\pe75m728.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www3.iamwired.net/websearch.php?src=tops&search=
FF - prefs.js: browser.startup.homepage - hxxp://news.google.it/nwshp?hl=it&tab=wn
FF - prefs.js: keyword.URL - hxxp://www3.iamwired.net/websearch.php?src=tops&search=
FF - component: c:\progra~1\FREEDO~1\Firefox\Extension\components\vmsfdmff.dll
FF - component: c:\program files\AVG\AVG9\Firefox\components\avgssff.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{09fa6977-1531-d674-351c-dd0db665bf90}\components\G__--4q.dll
FF - component: c:\users\utente\AppData\Roaming\Lamantine\Sticky Password\spautofill\components\SPAutofill.dll
FF - component: c:\users\utente\AppData\Roaming\Mozilla\Firefox\Profiles\pe75m728.default\extensions\{de1b245c-de57-11da-ba2d-0050c2490048}\library\WINNT-32\MinimizeToTrayPlus.dll
FF - plugin: c:\program files\Earth Resource Mapping\Image Web Server\Firefox Plug-in\NP_NCS6.dll
FF - plugin: c:\program files\Earth Resource Mapping\Image Web Server\Firefox Plug-in\NP_NCSPB6.dll
FF - plugin: c:\program files\Earth Resource Mapping\Image Web Server\Firefox Plug-in\NP_NCSTB6.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.17\npGoogleOneClick8.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency",   1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug",            false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight",       2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize",       1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight",   25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight",     5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKCU-Run-odbckbd32 - c:\users\utente\AppData\Local\odbckbd32\odbckbd32.dll
HKCU-Run-mdply3d - c:\users\utente\AppData\Roaming\mdply3d\mdply3d.exe
AddRemove-HijackThis - c:\users\utente\Desktop\Nuova cartella\HijackThis.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-03-10 12:34
Windows 6.0.6002 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'lsass.exe'(852)
c:\windows\system32\relog_ap.dll
.
Ora fine scansione: 2010-03-10  12:37:34
ComboFix-quarantined-files.txt  2010-03-10 11:37

Pre-Run: 194.483.363.840 byte disponibili
Post-Run: 193.738.833.920 byte disponibili

- - End Of File - - 5784C8F112AB29190142F94510809246

Ciao
Ultima modifica di -> EleKtrA <- su 10/03/10 13:13, modificato 1 volte in totale.
Motivazione: inserito tag code
manara48
Utente Junior
 
Post: 13
Iscritto il: 18/06/03 08:56

Re: Errore all'avvio di Windows Vista

Postdi -> EleKtrA <- » 10/03/10 13:12

Ora segui questi passi:

Scarica Norton Removal Tool
tasto destro, esegui come amministratore
segui le istruzioni a video e riavvia.

Scarica Malwarebytes, installa il programma ed aggiorna le firme.
Nella scheda scansione, seleziona "scansione completa"
Salva il rapporto ed allegalo.

Scarica TFC by OldTimer sul desktop
chiudi tutti i programmi
avvia TFC, (tasto destro, esegui come amministratore)
clicca su "star"
al termine della scansione ti chiederà il riavvio, dai ok.

Scarica OTC by OldTimer sul desktop
Tasto destro, esegui come amministratore
clicca su "CleanUP" > "Yes" > "Yes"
riavvia.

Al termine delle operazioni allega un nuovo log di hijackthis
Ricordati di collocare Hijackthis in una cartella in programmi ed eseguirlo da lì.
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: Errore all'avvio di Windows Vista

Postdi manara48 » 10/03/10 14:53

Innanzitutto preciso che prima delle tue ultime istruzioni avevo eseguito una scansione rapida con malwarebytes. Ecco il log generato:

Codice: Seleziona tutto
Malwarebytes' Anti-Malware 1.44
Versione del database: 3510
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18882

10/03/2010 12.53.25
mbam-log-2010-03-10 (12-53-25).txt

Tipo di scansione: Scansione rapida
Elementi scansionati: 101229
Tempo trascorso: 4 minute(s), 18 second(s)

Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 0
Cartelle infette: 0
File infetti: 1

Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)

Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)

Chiavi di registro infette:
(Nessun elemento malevolo rilevato)

Valori di registro infetti:
(Nessun elemento malevolo rilevato)

Elementi dato del registro infetti:
(Nessun elemento malevolo rilevato)

Cartelle infette:
(Nessun elemento malevolo rilevato)

File infetti:
C:\Users\utente\pod60.exe (Adware.Agent) -> Quarantined and deleted successfully.


1) Eseguito Norton Removal Tool

2) Eseguita scansione completa Malwarebites. Ecco il log:

Codice: Seleziona tutto
Malwarebytes' Anti-Malware 1.44
Versione del database: 3846
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18882

10/03/2010 14.33.39
mbam-log-2010-03-10 (14-33-39).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi scansionati: 283530
Tempo trascorso: 1 hour(s), 5 minute(s), 40 second(s)

Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 0
Cartelle infette: 0
File infetti: 0

Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)

Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)

Chiavi di registro infette:
(Nessun elemento malevolo rilevato)

Valori di registro infetti:
(Nessun elemento malevolo rilevato)

Elementi dato del registro infetti:
(Nessun elemento malevolo rilevato)

Cartelle infette:
(Nessun elemento malevolo rilevato)

File infetti:
(Nessun elemento malevolo rilevato)

3) Eseguito TFC by OldTimer

4) Eseguito OTC by OldTimer

5) Eseguito hijackthis. Ecco il nuovo log:

Codice: Seleziona tutto
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14.42.51, on 10/03/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\SSLEmptyCache.exe
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\CyberLink\Shared Files\brs.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\EssentialPIM\EssentialPIM.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Users\utente\Desktop\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://news.google.it/nwshp?hl=it&tab=wn
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SSLEmptyCache] C:\Windows\system32\SSLEmptyCache.exe
O4 - HKLM\..\Run: [DiscWizardMonitor.exe] C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Seagate Scheduler2 Service] "C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EssentialPIM] "C:\Program Files\EssentialPIM\EssentialPIM.exe" /autorun
O8 - Extra context menu item: Aggiungi a PDF esistente - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Aggiungi destinazione link a PDF esistente - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Converti destinazione link in Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Converti in Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutti i video usando BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Scarica tutto usando BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Scarica usando &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O16 - DPF: {15D151C8-5180-43C1-9360-4D794663BD6E} (Posto di Lavoro del Cittadino - Attestazione) - http://www.crs.regione.lombardia.it/components/OcsKitCittadino.cab
O16 - DPF: {3263F297-5CB9-4D8C-A2DB-CDFB8C69CB6D} (Posto di Lavoro del Cittadino - Autenticazione utente) - http://www.crs.regione.lombardia.it/components/OcxCertUpdate.cab
O16 - DPF: {4384AA75-43AB-4095-84F9-C5B35EC62B5D} (Posto di Lavoro del Cittadino - Interprete dati) - http://www.crs.regione.lombardia.it/components/OcxCrsInfo.cab
O16 - DPF: {877E14A6-0ACF-4509-8CF3-E4A0F4ED46F4} (Postazione di Lavoro del Cittadino 3.0) - http://supportsiss.lispa.it/components/pdlc.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - AppInit_DLLs: C:\Windows\System32\avgrsstx.dll C:\Windows\System32\avgrsstx.dll C:\Windows\System32\acaptuser32.dll C:\Windows\System32\avgrsstx.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\Windows\system32\ASTSRV.EXE
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate1c985e0b89f4580) (gupdate1c985e0b89f4580) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NitroPDFDriverCreatorReadSpool (NitroDriverReadSpool) - Nitro PDF Software - C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Seagate Scheduler2 Service (SgtSch2Svc) - Seagate - C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10983 bytes


Ti faccio altresì presente che durante tutti i riavvii effettuati non è più apparso il messaggio di errore di cui al mio primo post.

Ciao.
Ultima modifica di -> EleKtrA <- su 10/03/10 18:02, modificato 1 volte in totale.
Motivazione: inserito tag code
manara48
Utente Junior
 
Post: 13
Iscritto il: 18/06/03 08:56

Re: Errore all'avvio di Windows Vista

Postdi -> EleKtrA <- » 10/03/10 18:05

Bene, abbiamo concluso. :)
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: RUNDLL: Errore all'avvio di Windows Vista, odbckbd32.dll

Postdi manara48 » 10/03/10 19:54

Grazie 1000
Ciao
manara48
Utente Junior
 
Post: 13
Iscritto il: 18/06/03 08:56


Torna a Sicurezza e Privacy


Topic correlati a "RUNDLL: Errore all'avvio di Windows Vista, odbckbd32.dll":


Chi c’è in linea

Visitano il forum: Nessuno e 4 ospiti