Condividi:        

aiuto!!!

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

aiuto!!!

Postdi dominique87 » 11/12/08 12:55

ciao a tutto ho dei virus che mi girano quando accendo internet
e vorrei sapere come devo fare per toglierli... prima vorrei sapere come devo fare per creare il linck da mandarvi.... vi prego in una vostra risposta e vi ringrazio in anticipo... ciao!!!!!
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Sponsor
 

Re: aiuto!!!

Postdi dominique87 » 11/12/08 13:00

ecco il moi link


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12.58.31, on 11/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Programmi\ClamWin\bin\ClamTray.exe
C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programmi\Maxtor\OneTouch\utils\Onetouch.exe
C:\Programmi\Maxtor\OneTouch Status\maxmenumgr.exe
C:\Programmi\PowerISO\PWRISOVM.EXE
C:\Programmi\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe
C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe
C:\Programmi\DAEMON Tools\daemon.exe
C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
C:\Programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\AskBarDis\bar\bin\AskService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Programmi\Maxtor\OneTouch\Utils\SyncServices.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Vuze\Azureus.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.bearshare.com/sidebar.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - (no file)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ClamWin] "C:\Programmi\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MaxtorOneTouch] C:\Programmi\Maxtor\OneTouch\utils\Onetouch.exe
O4 - HKLM\..\Run: [mxomssmenu] "C:\Programmi\Maxtor\OneTouch Status\maxmenumgr.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Programmi\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [CnxTrApp] rundll32.exe "C:\Programmi\StarModem\StarModem USB Network\CnxTrApp.dll",AppEntry -REG "Conexant\Conexant USB Network"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [c0b43796] rundll32.exe "C:\WINDOWS\system32\cmrusdhb.dll",b
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Programmi\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{E77CDC81-0FB4-41F7-9ED7-CFD534FF0522}: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Programmi\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Programmi\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: MaxBackServiceInt - Unknown owner - C:\Programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
O23 - Service: MaxSyncService (NTService1) - - C:\Programmi\Maxtor\OneTouch\Utils\SyncServices.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 8130 bytes
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 11/12/08 14:50

ciao ragazzi hijakthis mi ha fatto fixara alcuni componenti nella lista che sicuramente per lui erano virus...
ora vi mando il log aggiornato....

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14.48.00, on 11/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Programmi\ClamWin\bin\ClamTray.exe
C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Programmi\Maxtor\OneTouch\utils\Onetouch.exe
C:\Programmi\Maxtor\OneTouch Status\maxmenumgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe
C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe
C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
C:\Programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
C:\Programmi\ClamWin\bin\ClamWin.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\AskBarDis\bar\bin\AskService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
C:\Programmi\ClamWin\bin\clamscan.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Programmi\Maxtor\OneTouch\Utils\SyncServices.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Vuze\Azureus.exe
C:\Programmi\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\explorer.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - (no file)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Programmi\AskBarDis\bar\bin\askBar.dll
O4 - HKLM\..\Run: [C6501Sound] RunDll32 c6501.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ClamWin] "C:\Programmi\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MaxtorOneTouch] C:\Programmi\Maxtor\OneTouch\utils\Onetouch.exe
O4 - HKLM\..\Run: [mxomssmenu] "C:\Programmi\Maxtor\OneTouch Status\maxmenumgr.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Programmi\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [CnxTrApp] rundll32.exe "C:\Programmi\StarModem\StarModem USB Network\CnxTrApp.dll",AppEntry -REG "Conexant\Conexant USB Network"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [c0b43796] rundll32.exe "C:\WINDOWS\system32\cmrusdhb.dll",b
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Programmi\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [MsnMsgr] "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{E77CDC81-0FB4-41F7-9ED7-CFD534FF0522}: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.103;85.255.112.214
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKService - Unknown owner - C:\Programmi\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Programmi\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: MaxBackServiceInt - Unknown owner - C:\Programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
O23 - Service: MaxSyncService (NTService1) - - C:\Programmi\Maxtor\OneTouch\Utils\SyncServices.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7544 bytes
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi -> EleKtrA <- » 11/12/08 15:01

Ciao dominique87,
quei DNS (85.255.116.103;85.255.112.214) non sono del tuo provider, ma sono il risultato di una infezione da Zlob.DNS Changer, (dialer local internet che dirotta la connessione verso dei numeri a pagamento) che puoi rimuovere con FixWareout oppure con Malwarebytes.

Nello specifico, visto anche altri file infetti sarebbe opportuno usare sia Combofix che Malwarebytes,
quindi ricapotolando...

Chiudi i programmi di sicurezza: Scarica Combofix
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Disconnettiti da internet...
1. Doppio click su combofix.exe, comparirà la seguente videata:
http://img293.imageshack.us/img293/8500 ... fn6zj1.jpg
2. Digita 1, premi Invio e segui le indicazioni.
3. Al termine, verrà creato un file log chiamato C:\ComboFix.txt.
4. Posta il log creato
Nota: Durante l'operazione di scansione è importante non usare il PC e attendere pazientemente la fine delle operazioni.

Scarica installa, aggiorna ed esegui una scansione complea con Malwarebytes
http://www.download.com/Malwarebytes-An ... 04572.html
allega il rapporto nella tua risposta, insieme ad un nuovo log (non linck) di Hijackthis, eseguito al termine di queste scansioni.

;)
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: aiuto!!!

Postdi dominique87 » 11/12/08 15:43

ciao elektra a me fa entrare soltanto un modalita provvisoria.. ora infatti st scivendo con un altro pc...
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 11/12/08 15:48

dopo aver usato Malwarebytes alla fine si riavvia da solo il pc...
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 11/12/08 15:50

questo e il log lavorando pero in modalita provvisoria....

ComboFix 08-12-09.03 - domenico 2008-12-11 15:46:44.2 - NTFSx86 NETWORK
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1040.18.1780 [GMT 1:00]
Eseguito da: c:\documents and settings\domenico\Desktop\ComboFix.exe

ATENÇÃO - ESTA MAQUINA NAO TEM A CONSOLE DE RECUPERAÇÃO INSTALADA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Autorun.inf
c:\docume~1\domenico\IMPOST~1\Temp\tmp1.tmp
c:\docume~1\domenico\IMPOST~1\Temp\tmp2.tmp
c:\documents and settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat
c:\documents and settings\domenico\Dati applicazioni\addons.dat
c:\programmi\Windows Live\Messenger\msimg32.dll
c:\windows\IE4 Error Log.txt
c:\windows\system32\xxyywtuS.dll
c:\windows\Tasks\pogidyfo.job
c:\windows\Temp\tmp3.tmp

.
((((((((((((((((((((((((( Files Creati Da 2008-11-11 al 2008-12-11 )))))))))))))))))))))))))))))))))))
.

2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-12-11 15:12 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-12-11 12:58 . 2008-12-11 12:58 <DIR> d-------- c:\programmi\Trend Micro
2008-12-10 16:19 . 2008-12-10 16:19 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\POP3Profiles
2008-12-09 23:31 . 2008-12-09 23:38 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Sports Interactive
2008-12-09 23:17 . 2008-12-09 23:17 <DIR> d-------- c:\windows\Logs
2008-12-09 23:17 . 2008-05-30 14:11 3,850,760 --a------ c:\windows\system32\D3DX9_38.dll
2008-12-09 23:17 . 2008-05-30 14:11 1,491,992 --a------ c:\windows\system32\D3DCompiler_38.dll
2008-12-09 23:17 . 2008-05-30 14:19 507,400 --a------ c:\windows\system32\XAudio2_1.dll
2008-12-09 23:17 . 2008-05-30 14:11 467,984 --a------ c:\windows\system32\d3dx10_38.dll
2008-12-09 23:17 . 2008-05-30 14:18 238,088 --a------ c:\windows\system32\xactengine3_1.dll
2008-12-09 23:17 . 2008-05-30 14:17 65,032 --a------ c:\windows\system32\XAPOFX1_0.dll
2008-12-09 23:17 . 2008-05-30 14:17 25,608 --a------ c:\windows\system32\X3DAudio1_4.dll
2008-12-09 16:37 . 2008-12-09 16:37 <DIR> d-------- c:\programmi\BearShare Applications
2008-12-09 16:37 . 2006-11-12 11:39 483,328 --a------ c:\windows\system32\actskn45.ocx
2008-12-08 21:50 . 2008-12-09 17:41 <DIR> d-------- c:\programmi\eMule
2008-12-08 21:39 . 2008-12-08 21:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2008-12-08 21:37 . 2008-12-08 21:38 <DIR> d-------- c:\programmi\Messenger Plus! Live
2008-12-08 21:33 . 2008-12-08 21:33 <DIR> d-------- c:\documents and settings\domenico\Contacts
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\AskBarDis
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Thunderbird
2008-12-08 21:31 . 2008-12-11 15:08 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 0 --a------ c:\windows\nsreg.dat
2008-12-08 21:30 . 2008-12-10 15:42 <DIR> d-------- c:\programmi\Vuze
2008-12-08 21:30 . 2008-12-08 21:30 <DIR> d-------- c:\programmi\File comuni\i4j_jres
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- c:\documents and settings\domenico\WINDOWS
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- C:\DeAMM
2008-12-05 13:44 . 2000-01-11 09:25 577,536 --a------ c:\windows\system32\DeAAtx.ocx
2008-12-05 13:44 . 2000-01-11 08:57 458,752 --a------ c:\windows\system32\DeAT.ocx
2008-12-05 13:44 . 1998-08-05 00:00 150,528 --a------ c:\windows\system32\MSCMCIT.DLL
2008-12-05 13:44 . 1999-05-07 00:00 140,288 --------- c:\windows\system32\COMDLG32.OCX
2008-12-05 13:44 . 1999-05-10 12:16 131,072 --a------ c:\windows\system32\MultimediaDataControl.ocx
2008-12-05 13:44 . 1998-06-18 00:00 89,360 --a------ c:\windows\system32\VB5DB.DLL
2008-12-05 13:44 . 1999-06-01 13:46 86,016 --a------ c:\windows\system32\DEAPIC.dll
2008-12-05 13:44 . 1999-05-07 00:00 82,960 --a------ c:\windows\system32\PICCLP32.OCX
2008-12-05 13:44 . 1999-02-25 14:42 40,960 --a------ c:\windows\system32\Deaole.dll
2008-12-05 13:44 . 1998-08-05 00:00 9,728 --a------ c:\windows\system32\PCCLPIT.DLL
2008-12-05 13:44 . 2008-12-05 13:44 94 --a------ c:\windows\DeAMM.ini
2008-12-04 21:28 . 2008-12-04 22:10 <DIR> d-------- c:\programmi\VirtualDJ
2008-12-04 10:08 . 2008-12-04 10:08 288 --a------ c:\windows\ODBC.INI
2008-12-04 10:06 . 2008-12-04 10:06 <DIR> d-------- c:\programmi\Finson Grafica
2008-12-01 13:00 . 2008-12-09 23:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Sports Interactive
2008-12-01 12:34 . 2008-12-01 12:34 <DIR> d-------- c:\programmi\Kylotonn Entertainment
2008-12-01 12:04 . 2008-12-01 12:04 151 --a------ c:\windows\PhotoSnapViewer.INI
2008-11-27 19:21 . 2008-11-27 19:21 268 --ah----- C:\sqmdata19.sqm
2008-11-27 19:21 . 2008-11-27 19:21 244 --ah----- C:\sqmnoopt19.sqm
2008-11-26 16:59 . 2008-11-26 16:59 268 --ah----- C:\sqmdata18.sqm
2008-11-26 16:59 . 2008-11-26 16:59 244 --ah----- C:\sqmnoopt18.sqm
2008-11-26 16:19 . 2008-11-26 16:19 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\QuickTime
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iTunes
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iPod
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\File comuni\Apple
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Bonjour
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Apple Software Update
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple
2008-11-26 16:18 . 2008-07-22 20:32 32,000 --a------ c:\windows\system32\drivers\usbaapl.sys
2008-11-25 23:27 . 2008-11-25 23:27 268 --ah----- C:\sqmdata17.sqm
2008-11-25 23:27 . 2008-11-25 23:27 244 --ah----- C:\sqmnoopt17.sqm
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\StarModem
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\Conexant
2008-11-25 19:06 . 2003-07-16 19:12 2,700,796 --a------ c:\windows\system32\drivers\CnxE2Fw.bin
2008-11-25 19:06 . 2008-11-25 19:06 524,288 --a------ c:\windows\system32\drivers\CnxE2FS.bin
2008-11-25 19:06 . 2003-07-07 17:37 52,352 --a------ c:\windows\system32\drivers\CnxTrUsb.sys
2008-11-25 19:06 . 2003-07-07 17:37 25,984 --a------ c:\windows\system32\drivers\CnxTrLan.sys
2008-11-25 19:06 . 2001-07-21 18:30 22,048 --a------ c:\windows\system32\cocpyinf.dll
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\programmi\Zero G Registry
2008-11-25 13:00 . 2008-12-10 15:41 <DIR> d-------- c:\programmi\Sports Interactive
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\documents and settings\domenico\InstallAnywhere
2008-11-25 12:33 . 2008-11-25 12:33 268 --ah----- C:\sqmdata16.sqm
2008-11-25 12:33 . 2008-11-25 12:33 244 --ah----- C:\sqmnoopt16.sqm
2008-11-24 23:02 . 2008-11-24 23:02 268 --ah----- C:\sqmdata15.sqm
2008-11-24 23:02 . 2008-11-24 23:02 244 --ah----- C:\sqmnoopt15.sqm
2008-11-24 16:44 . 1998-08-27 05:51 182,032 --a------ c:\windows\system32\dxtmsft3.dll
2008-11-24 16:44 . 1998-08-20 12:02 140,800 --a------ c:\windows\system32\tm20dec.ax
2008-11-24 16:44 . 1998-09-02 09:28 38,160 --a------ c:\windows\system32\LMRTREND.dll
2008-11-24 16:43 . 2008-11-24 16:43 <DIR> d-------- c:\programmi\CANAL+
2008-11-24 16:43 . 1998-10-06 18:57 327,168 --a------ c:\windows\IsUn0410.exe
2008-11-24 16:43 . 1998-09-02 09:02 194,320 --a------ c:\windows\system32\qcut.dll
2008-11-24 16:43 . 1998-09-02 09:28 63,488 --a------ c:\windows\system32\unam4ie.exe
2008-11-24 16:43 . 1998-08-17 10:21 11,776 --a------ c:\windows\system32\mciqtz.drv
2008-11-24 16:43 . 1998-08-17 10:21 10,240 --a------ c:\windows\system32\vidx16.dll
2008-11-24 16:43 . 1998-08-17 10:21 5,672 --a------ c:\windows\system32\quartz.vxd
2008-11-24 16:43 . 2008-11-24 16:43 4,608 --a------ c:\windows\system32\w95inf32.dll
2008-11-24 16:43 . 2008-11-24 16:43 2,272 --a------ c:\windows\system32\w95inf16.dll
2008-11-24 16:12 . 2008-11-24 16:12 268 --ah----- C:\sqmdata14.sqm
2008-11-24 16:12 . 2008-11-24 16:12 244 --ah----- C:\sqmnoopt14.sqm
2008-11-24 16:11 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\PowerISO
2008-11-24 16:11 . 2008-12-10 18:00 958,875 ---h----- c:\windows\system32\drivers\logg.dat
2008-11-24 16:10 . 2008-11-24 16:10 <DIR> d-------- c:\programmi\MagicISO
2008-11-24 13:23 . 2008-12-11 12:45 69 --a------ c:\windows\NeroDigital.ini
2008-11-21 19:36 . 2008-11-21 19:36 268 --ah----- C:\sqmdata13.sqm
2008-11-21 19:36 . 2008-11-21 19:36 244 --ah----- C:\sqmnoopt13.sqm
2008-11-21 00:31 . 2008-11-21 00:31 268 --ah----- C:\sqmdata12.sqm
2008-11-21 00:31 . 2008-11-21 00:31 244 --ah----- C:\sqmnoopt12.sqm
2008-11-20 16:33 . 2008-11-20 16:33 268 --ah----- C:\sqmdata11.sqm
2008-11-20 16:33 . 2008-11-20 16:33 244 --ah----- C:\sqmnoopt11.sqm
2008-11-19 23:19 . 2008-11-19 23:19 268 --ah----- C:\sqmdata10.sqm
2008-11-19 23:19 . 2008-11-19 23:19 244 --ah----- C:\sqmnoopt10.sqm
2008-11-19 11:59 . 2008-11-19 11:59 107,888 --a------ c:\windows\system32\CmdLineExt.dll
2008-11-19 11:54 . 2008-11-19 11:54 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\KONAMI
2008-11-18 23:27 . 2008-11-18 23:27 268 --ah----- C:\sqmdata09.sqm
2008-11-18 23:27 . 2008-11-18 23:27 244 --ah----- C:\sqmnoopt09.sqm
2008-11-18 20:52 . 2008-11-18 20:52 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Ubisoft
2008-11-18 20:51 . 2008-11-18 20:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Ubisoft
2008-11-18 20:39 . 2008-12-10 16:16 <DIR> d-------- c:\programmi\Ubisoft
2008-11-18 20:39 . 2008-11-18 20:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\InstallShield
2008-11-18 20:34 . 2008-12-10 23:49 <DIR> d-------- c:\programmi\KONAMI
2008-11-18 20:30 . 2008-11-18 20:30 <DIR> d-------- c:\programmi\DAEMON Tools
2008-11-18 20:28 . 2008-11-18 20:28 646,392 --a------ c:\windows\system32\drivers\sptd.sys
2008-11-18 20:28 . 2008-12-05 17:43 268 --ah----- C:\sqmdata08.sqm
2008-11-18 20:28 . 2008-12-05 17:43 244 --ah----- C:\sqmnoopt08.sqm
2008-11-18 20:21 . 2008-11-18 20:21 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Maxtor
2008-11-18 20:20 . 2008-12-05 17:35 268 --ah----- C:\sqmdata07.sqm
2008-11-18 20:20 . 2008-12-05 17:35 244 --ah----- C:\sqmnoopt07.sqm
2008-11-18 20:19 . 2008-11-18 20:19 <DIR> d-------- c:\windows\Downloaded Installations
2008-11-18 20:19 . 2008-11-18 20:20 <DIR> d-------- c:\programmi\Maxtor
2008-11-18 19:48 . 2008-12-05 15:15 268 --ah----- C:\sqmdata06.sqm
2008-11-18 19:48 . 2008-12-05 15:15 244 --ah----- C:\sqmnoopt06.sqm
2008-11-18 19:21 . 2008-04-13 19:13 21,504 --a------ c:\windows\system32\hidserv.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-10 15:16 --------- d--h--w c:\programmi\InstallShield Installation Information
2008-11-18 19:19 --------- d-----w c:\programmi\File comuni\InstallShield
2008-11-18 17:57 --------- d-----w c:\programmi\File comuni\Ahead
2008-11-18 17:57 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\Ahead
2008-11-18 17:56 --------- d-----w c:\programmi\Nero
2008-11-18 17:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Nero
2008-11-18 17:47 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2008-11-18 17:46 --------- d-----w c:\programmi\MSBuild
2008-11-18 17:46 --------- d-----w c:\programmi\Microsoft Works
2008-11-18 17:43 --------- d-----w c:\programmi\File comuni\Adobe
2008-11-18 17:43 --------- d-----w c:\programmi\ClamWin
2008-11-18 17:43 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\.clamwin
2008-11-18 17:14 --------- d-----w c:\programmi\ASUS
2008-11-18 17:10 --------- d-----w c:\programmi\C-Media 6501 Sound
2008-11-18 17:03 --------- d-----w c:\programmi\DIFX
2008-11-18 16:57 --------- d-----w c:\programmi\microsoft frontpage
2008-11-18 16:55 --------- d-----w c:\programmi\Servizi in linea
2008-11-18 16:53 --------- d-----w c:\programmi\Windows Live
2008-11-18 16:52 --------- d-----w c:\programmi\Windows Media Connect 2
2008-11-02 08:44 56,572 ----a-w c:\windows\system32\drivers\scdemu.sys
2008-10-02 09:07 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-24 20:25 333192 --a------ c:\programmi\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
"DAEMON Tools"="c:\programmi\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"ClamWin"="c:\programmi\ClamWin\bin\ClamTray.exe" [2008-04-19 77824]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"MaxtorOneTouch"="c:\programmi\Maxtor\OneTouch\utils\Onetouch.exe" [2006-03-27 712704]
"mxomssmenu"="c:\programmi\Maxtor\OneTouch Status\maxmenumgr.exe" [2005-10-17 81920]
"PWRISOVM.EXE"="c:\programmi\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
"AppleSyncNotifier"="c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2008-05-27 413696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2008-07-30 289064]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]

c:\documents and settings\domenico\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wuauserv"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"c:\\Programmi\\KONAMI\\Pro Evolution Soccer 2009\\pes2009.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Sports Interactive\\Football Manager 2009\\fm.exe"=

R0 nvcchflt;NVIDIA Disk Cache Filter Driver;c:\windows\system32\DRIVERS\nvcchflt.sys [2008-05-08 16640]
S0 yjmcmq;yjmcmq;c:\windows\system32\drivers\ntxtz.sys []
S2 ASKService;ASKService;c:\programmi\AskBarDis\bar\bin\AskService.exe [2008-12-08 464264]
S2 ASKUpgrade;ASKUpgrade;c:\programmi\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-08 234888]
S3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [2008-11-18 1305600]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2148b1d6-b5a6-11dd-bf8d-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com r:
\Shell\Open\command - r:\resycled\boot.com r:

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7163c040-ba22-11dd-bf95-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com q:
\Shell\Open\command - q:\resycled\boot.com q:

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{74233E61-EF19-25AF-B35C-83DCA1391BA5}]
c:\windows\system32\drivers\smss.exe s
.
Contenuto della cartella 'Scheduled Tasks'

2008-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORFÃOS REMOVIDOS - - - -

BHO-{8DBEB7C6-A74E-461F-A0BD-F6A1FD27E276} - c:\windows\system32\wvUljICs.dll
HKLM-Run-C6501Sound - c6501.cpl
ShellExecuteHooks-{4E007A5F-299F-44FC-8B6B-F06B61867A2E} - (no file)


.
------- Supplementare di scansione -------
.
uStart Page = hxxp://www.google.it/
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FireFox -: Profile - c:\documents and settings\domenico\Dati applicazioni\Mozilla\Firefox\Profiles\9mks8g1p.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.it
FF -: plugin - c:\programmi\iTunes\Mozilla Plugins\npitunes.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-11 15:47:29
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\msqpdxserv.sys]
"imagepath"="\systemroot\system32\drivers\msqpdxosvdnrsr.sys"
.
Ora fine scansione: 2008-12-11 15:47:53
ComboFix-quarantined-files.txt 2008-12-11 14:47:45

Pre-Run: 434,639,958,016 byte disponibili
Post-Run: 434,631,659,520 byte disponibili

282
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 11/12/08 15:51

questo e il log lavorando pero in modalita provvisoria....

ComboFix 08-12-09.03 - domenico 2008-12-11 15:46:44.2 - NTFSx86 NETWORK
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1040.18.1780 [GMT 1:00]
Eseguito da: c:\documents and settings\domenico\Desktop\ComboFix.exe

ATENÇÃO - ESTA MAQUINA NAO TEM A CONSOLE DE RECUPERAÇÃO INSTALADA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Autorun.inf
c:\docume~1\domenico\IMPOST~1\Temp\tmp1.tmp
c:\docume~1\domenico\IMPOST~1\Temp\tmp2.tmp
c:\documents and settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat
c:\documents and settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat
c:\documents and settings\domenico\Dati applicazioni\addons.dat
c:\programmi\Windows Live\Messenger\msimg32.dll
c:\windows\IE4 Error Log.txt
c:\windows\system32\xxyywtuS.dll
c:\windows\Tasks\pogidyfo.job
c:\windows\Temp\tmp3.tmp

.
((((((((((((((((((((((((( Files Creati Da 2008-11-11 al 2008-12-11 )))))))))))))))))))))))))))))))))))
.

2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-12-11 15:12 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-12-11 12:58 . 2008-12-11 12:58 <DIR> d-------- c:\programmi\Trend Micro
2008-12-10 16:19 . 2008-12-10 16:19 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\POP3Profiles
2008-12-09 23:31 . 2008-12-09 23:38 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Sports Interactive
2008-12-09 23:17 . 2008-12-09 23:17 <DIR> d-------- c:\windows\Logs
2008-12-09 23:17 . 2008-05-30 14:11 3,850,760 --a------ c:\windows\system32\D3DX9_38.dll
2008-12-09 23:17 . 2008-05-30 14:11 1,491,992 --a------ c:\windows\system32\D3DCompiler_38.dll
2008-12-09 23:17 . 2008-05-30 14:19 507,400 --a------ c:\windows\system32\XAudio2_1.dll
2008-12-09 23:17 . 2008-05-30 14:11 467,984 --a------ c:\windows\system32\d3dx10_38.dll
2008-12-09 23:17 . 2008-05-30 14:18 238,088 --a------ c:\windows\system32\xactengine3_1.dll
2008-12-09 23:17 . 2008-05-30 14:17 65,032 --a------ c:\windows\system32\XAPOFX1_0.dll
2008-12-09 23:17 . 2008-05-30 14:17 25,608 --a------ c:\windows\system32\X3DAudio1_4.dll
2008-12-09 16:37 . 2008-12-09 16:37 <DIR> d-------- c:\programmi\BearShare Applications
2008-12-09 16:37 . 2006-11-12 11:39 483,328 --a------ c:\windows\system32\actskn45.ocx
2008-12-08 21:50 . 2008-12-09 17:41 <DIR> d-------- c:\programmi\eMule
2008-12-08 21:39 . 2008-12-08 21:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2008-12-08 21:37 . 2008-12-08 21:38 <DIR> d-------- c:\programmi\Messenger Plus! Live
2008-12-08 21:33 . 2008-12-08 21:33 <DIR> d-------- c:\documents and settings\domenico\Contacts
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\AskBarDis
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Thunderbird
2008-12-08 21:31 . 2008-12-11 15:08 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 0 --a------ c:\windows\nsreg.dat
2008-12-08 21:30 . 2008-12-10 15:42 <DIR> d-------- c:\programmi\Vuze
2008-12-08 21:30 . 2008-12-08 21:30 <DIR> d-------- c:\programmi\File comuni\i4j_jres
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- c:\documents and settings\domenico\WINDOWS
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- C:\DeAMM
2008-12-05 13:44 . 2000-01-11 09:25 577,536 --a------ c:\windows\system32\DeAAtx.ocx
2008-12-05 13:44 . 2000-01-11 08:57 458,752 --a------ c:\windows\system32\DeAT.ocx
2008-12-05 13:44 . 1998-08-05 00:00 150,528 --a------ c:\windows\system32\MSCMCIT.DLL
2008-12-05 13:44 . 1999-05-07 00:00 140,288 --------- c:\windows\system32\COMDLG32.OCX
2008-12-05 13:44 . 1999-05-10 12:16 131,072 --a------ c:\windows\system32\MultimediaDataControl.ocx
2008-12-05 13:44 . 1998-06-18 00:00 89,360 --a------ c:\windows\system32\VB5DB.DLL
2008-12-05 13:44 . 1999-06-01 13:46 86,016 --a------ c:\windows\system32\DEAPIC.dll
2008-12-05 13:44 . 1999-05-07 00:00 82,960 --a------ c:\windows\system32\PICCLP32.OCX
2008-12-05 13:44 . 1999-02-25 14:42 40,960 --a------ c:\windows\system32\Deaole.dll
2008-12-05 13:44 . 1998-08-05 00:00 9,728 --a------ c:\windows\system32\PCCLPIT.DLL
2008-12-05 13:44 . 2008-12-05 13:44 94 --a------ c:\windows\DeAMM.ini
2008-12-04 21:28 . 2008-12-04 22:10 <DIR> d-------- c:\programmi\VirtualDJ
2008-12-04 10:08 . 2008-12-04 10:08 288 --a------ c:\windows\ODBC.INI
2008-12-04 10:06 . 2008-12-04 10:06 <DIR> d-------- c:\programmi\Finson Grafica
2008-12-01 13:00 . 2008-12-09 23:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Sports Interactive
2008-12-01 12:34 . 2008-12-01 12:34 <DIR> d-------- c:\programmi\Kylotonn Entertainment
2008-12-01 12:04 . 2008-12-01 12:04 151 --a------ c:\windows\PhotoSnapViewer.INI
2008-11-27 19:21 . 2008-11-27 19:21 268 --ah----- C:\sqmdata19.sqm
2008-11-27 19:21 . 2008-11-27 19:21 244 --ah----- C:\sqmnoopt19.sqm
2008-11-26 16:59 . 2008-11-26 16:59 268 --ah----- C:\sqmdata18.sqm
2008-11-26 16:59 . 2008-11-26 16:59 244 --ah----- C:\sqmnoopt18.sqm
2008-11-26 16:19 . 2008-11-26 16:19 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\QuickTime
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iTunes
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iPod
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\File comuni\Apple
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Bonjour
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Apple Software Update
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple
2008-11-26 16:18 . 2008-07-22 20:32 32,000 --a------ c:\windows\system32\drivers\usbaapl.sys
2008-11-25 23:27 . 2008-11-25 23:27 268 --ah----- C:\sqmdata17.sqm
2008-11-25 23:27 . 2008-11-25 23:27 244 --ah----- C:\sqmnoopt17.sqm
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\StarModem
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\Conexant
2008-11-25 19:06 . 2003-07-16 19:12 2,700,796 --a------ c:\windows\system32\drivers\CnxE2Fw.bin
2008-11-25 19:06 . 2008-11-25 19:06 524,288 --a------ c:\windows\system32\drivers\CnxE2FS.bin
2008-11-25 19:06 . 2003-07-07 17:37 52,352 --a------ c:\windows\system32\drivers\CnxTrUsb.sys
2008-11-25 19:06 . 2003-07-07 17:37 25,984 --a------ c:\windows\system32\drivers\CnxTrLan.sys
2008-11-25 19:06 . 2001-07-21 18:30 22,048 --a------ c:\windows\system32\cocpyinf.dll
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\programmi\Zero G Registry
2008-11-25 13:00 . 2008-12-10 15:41 <DIR> d-------- c:\programmi\Sports Interactive
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\documents and settings\domenico\InstallAnywhere
2008-11-25 12:33 . 2008-11-25 12:33 268 --ah----- C:\sqmdata16.sqm
2008-11-25 12:33 . 2008-11-25 12:33 244 --ah----- C:\sqmnoopt16.sqm
2008-11-24 23:02 . 2008-11-24 23:02 268 --ah----- C:\sqmdata15.sqm
2008-11-24 23:02 . 2008-11-24 23:02 244 --ah----- C:\sqmnoopt15.sqm
2008-11-24 16:44 . 1998-08-27 05:51 182,032 --a------ c:\windows\system32\dxtmsft3.dll
2008-11-24 16:44 . 1998-08-20 12:02 140,800 --a------ c:\windows\system32\tm20dec.ax
2008-11-24 16:44 . 1998-09-02 09:28 38,160 --a------ c:\windows\system32\LMRTREND.dll
2008-11-24 16:43 . 2008-11-24 16:43 <DIR> d-------- c:\programmi\CANAL+
2008-11-24 16:43 . 1998-10-06 18:57 327,168 --a------ c:\windows\IsUn0410.exe
2008-11-24 16:43 . 1998-09-02 09:02 194,320 --a------ c:\windows\system32\qcut.dll
2008-11-24 16:43 . 1998-09-02 09:28 63,488 --a------ c:\windows\system32\unam4ie.exe
2008-11-24 16:43 . 1998-08-17 10:21 11,776 --a------ c:\windows\system32\mciqtz.drv
2008-11-24 16:43 . 1998-08-17 10:21 10,240 --a------ c:\windows\system32\vidx16.dll
2008-11-24 16:43 . 1998-08-17 10:21 5,672 --a------ c:\windows\system32\quartz.vxd
2008-11-24 16:43 . 2008-11-24 16:43 4,608 --a------ c:\windows\system32\w95inf32.dll
2008-11-24 16:43 . 2008-11-24 16:43 2,272 --a------ c:\windows\system32\w95inf16.dll
2008-11-24 16:12 . 2008-11-24 16:12 268 --ah----- C:\sqmdata14.sqm
2008-11-24 16:12 . 2008-11-24 16:12 244 --ah----- C:\sqmnoopt14.sqm
2008-11-24 16:11 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\PowerISO
2008-11-24 16:11 . 2008-12-10 18:00 958,875 ---h----- c:\windows\system32\drivers\logg.dat
2008-11-24 16:10 . 2008-11-24 16:10 <DIR> d-------- c:\programmi\MagicISO
2008-11-24 13:23 . 2008-12-11 12:45 69 --a------ c:\windows\NeroDigital.ini
2008-11-21 19:36 . 2008-11-21 19:36 268 --ah----- C:\sqmdata13.sqm
2008-11-21 19:36 . 2008-11-21 19:36 244 --ah----- C:\sqmnoopt13.sqm
2008-11-21 00:31 . 2008-11-21 00:31 268 --ah----- C:\sqmdata12.sqm
2008-11-21 00:31 . 2008-11-21 00:31 244 --ah----- C:\sqmnoopt12.sqm
2008-11-20 16:33 . 2008-11-20 16:33 268 --ah----- C:\sqmdata11.sqm
2008-11-20 16:33 . 2008-11-20 16:33 244 --ah----- C:\sqmnoopt11.sqm
2008-11-19 23:19 . 2008-11-19 23:19 268 --ah----- C:\sqmdata10.sqm
2008-11-19 23:19 . 2008-11-19 23:19 244 --ah----- C:\sqmnoopt10.sqm
2008-11-19 11:59 . 2008-11-19 11:59 107,888 --a------ c:\windows\system32\CmdLineExt.dll
2008-11-19 11:54 . 2008-11-19 11:54 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\KONAMI
2008-11-18 23:27 . 2008-11-18 23:27 268 --ah----- C:\sqmdata09.sqm
2008-11-18 23:27 . 2008-11-18 23:27 244 --ah----- C:\sqmnoopt09.sqm
2008-11-18 20:52 . 2008-11-18 20:52 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Ubisoft
2008-11-18 20:51 . 2008-11-18 20:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Ubisoft
2008-11-18 20:39 . 2008-12-10 16:16 <DIR> d-------- c:\programmi\Ubisoft
2008-11-18 20:39 . 2008-11-18 20:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\InstallShield
2008-11-18 20:34 . 2008-12-10 23:49 <DIR> d-------- c:\programmi\KONAMI
2008-11-18 20:30 . 2008-11-18 20:30 <DIR> d-------- c:\programmi\DAEMON Tools
2008-11-18 20:28 . 2008-11-18 20:28 646,392 --a------ c:\windows\system32\drivers\sptd.sys
2008-11-18 20:28 . 2008-12-05 17:43 268 --ah----- C:\sqmdata08.sqm
2008-11-18 20:28 . 2008-12-05 17:43 244 --ah----- C:\sqmnoopt08.sqm
2008-11-18 20:21 . 2008-11-18 20:21 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Maxtor
2008-11-18 20:20 . 2008-12-05 17:35 268 --ah----- C:\sqmdata07.sqm
2008-11-18 20:20 . 2008-12-05 17:35 244 --ah----- C:\sqmnoopt07.sqm
2008-11-18 20:19 . 2008-11-18 20:19 <DIR> d-------- c:\windows\Downloaded Installations
2008-11-18 20:19 . 2008-11-18 20:20 <DIR> d-------- c:\programmi\Maxtor
2008-11-18 19:48 . 2008-12-05 15:15 268 --ah----- C:\sqmdata06.sqm
2008-11-18 19:48 . 2008-12-05 15:15 244 --ah----- C:\sqmnoopt06.sqm
2008-11-18 19:21 . 2008-04-13 19:13 21,504 --a------ c:\windows\system32\hidserv.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-10 15:16 --------- d--h--w c:\programmi\InstallShield Installation Information
2008-11-18 19:19 --------- d-----w c:\programmi\File comuni\InstallShield
2008-11-18 17:57 --------- d-----w c:\programmi\File comuni\Ahead
2008-11-18 17:57 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\Ahead
2008-11-18 17:56 --------- d-----w c:\programmi\Nero
2008-11-18 17:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Nero
2008-11-18 17:47 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2008-11-18 17:46 --------- d-----w c:\programmi\MSBuild
2008-11-18 17:46 --------- d-----w c:\programmi\Microsoft Works
2008-11-18 17:43 --------- d-----w c:\programmi\File comuni\Adobe
2008-11-18 17:43 --------- d-----w c:\programmi\ClamWin
2008-11-18 17:43 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\.clamwin
2008-11-18 17:14 --------- d-----w c:\programmi\ASUS
2008-11-18 17:10 --------- d-----w c:\programmi\C-Media 6501 Sound
2008-11-18 17:03 --------- d-----w c:\programmi\DIFX
2008-11-18 16:57 --------- d-----w c:\programmi\microsoft frontpage
2008-11-18 16:55 --------- d-----w c:\programmi\Servizi in linea
2008-11-18 16:53 --------- d-----w c:\programmi\Windows Live
2008-11-18 16:52 --------- d-----w c:\programmi\Windows Media Connect 2
2008-11-02 08:44 56,572 ----a-w c:\windows\system32\drivers\scdemu.sys
2008-10-02 09:07 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-24 20:25 333192 --a------ c:\programmi\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
"DAEMON Tools"="c:\programmi\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"ClamWin"="c:\programmi\ClamWin\bin\ClamTray.exe" [2008-04-19 77824]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"MaxtorOneTouch"="c:\programmi\Maxtor\OneTouch\utils\Onetouch.exe" [2006-03-27 712704]
"mxomssmenu"="c:\programmi\Maxtor\OneTouch Status\maxmenumgr.exe" [2005-10-17 81920]
"PWRISOVM.EXE"="c:\programmi\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
"AppleSyncNotifier"="c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2008-05-27 413696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2008-07-30 289064]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]

c:\documents and settings\domenico\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wuauserv"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"c:\\Programmi\\KONAMI\\Pro Evolution Soccer 2009\\pes2009.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Sports Interactive\\Football Manager 2009\\fm.exe"=

R0 nvcchflt;NVIDIA Disk Cache Filter Driver;c:\windows\system32\DRIVERS\nvcchflt.sys [2008-05-08 16640]
S0 yjmcmq;yjmcmq;c:\windows\system32\drivers\ntxtz.sys []
S2 ASKService;ASKService;c:\programmi\AskBarDis\bar\bin\AskService.exe [2008-12-08 464264]
S2 ASKUpgrade;ASKUpgrade;c:\programmi\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-08 234888]
S3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [2008-11-18 1305600]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2148b1d6-b5a6-11dd-bf8d-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com r:
\Shell\Open\command - r:\resycled\boot.com r:

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7163c040-ba22-11dd-bf95-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com q:
\Shell\Open\command - q:\resycled\boot.com q:

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{74233E61-EF19-25AF-B35C-83DCA1391BA5}]
c:\windows\system32\drivers\smss.exe s
.
Contenuto della cartella 'Scheduled Tasks'

2008-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORFÃOS REMOVIDOS - - - -

BHO-{8DBEB7C6-A74E-461F-A0BD-F6A1FD27E276} - c:\windows\system32\wvUljICs.dll
HKLM-Run-C6501Sound - c6501.cpl
ShellExecuteHooks-{4E007A5F-299F-44FC-8B6B-F06B61867A2E} - (no file)


.
------- Supplementare di scansione -------
.
uStart Page = hxxp://www.google.it/
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FireFox -: Profile - c:\documents and settings\domenico\Dati applicazioni\Mozilla\Firefox\Profiles\9mks8g1p.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.it
FF -: plugin - c:\programmi\iTunes\Mozilla Plugins\npitunes.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-11 15:47:29
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\msqpdxserv.sys]
"imagepath"="\systemroot\system32\drivers\msqpdxosvdnrsr.sys"
.
Ora fine scansione: 2008-12-11 15:47:53
ComboFix-quarantined-files.txt 2008-12-11 14:47:45

Pre-Run: 434,639,958,016 byte disponibili
Post-Run: 434,631,659,520 byte disponibili

282
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 11/12/08 16:15

ciao ecco qui il log che ho appena fatto anche se sono riuscito nn so come a farlo entrare in modalita normale....
vi prego in un vostro aiuto....

ComboFix 08-12-09.03 - domenico 2008-12-11 16.05.15.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1040.18.1628 [GMT 1:00]
Eseguito da: c:\documents and settings\domenico\Desktop\ComboFix.exe
* Creato nuovo punto di ripristino

ATENÇÃO - ESTA MAQUINA NAO TEM A CONSOLE DE RECUPERAÇÃO INSTALADA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Autorun.inf
c:\programmi\Windows Live\Messenger\msimg32.dll
c:\windows\system32\xxyywtuS.dll

.
((((((((((((((((((((((((( Files Creati Da 2008-11-11 al 2008-12-11 )))))))))))))))))))))))))))))))))))
.

2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-12-11 15:12 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-12-11 12:58 . 2008-12-11 12:58 <DIR> d-------- c:\programmi\Trend Micro
2008-12-10 16:19 . 2008-12-10 16:19 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\POP3Profiles
2008-12-09 23:31 . 2008-12-09 23:38 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Sports Interactive
2008-12-09 23:17 . 2008-12-09 23:17 <DIR> d-------- c:\windows\Logs
2008-12-09 23:17 . 2008-05-30 14:11 3,850,760 --a------ c:\windows\system32\D3DX9_38.dll
2008-12-09 23:17 . 2008-05-30 14:11 1,491,992 --a------ c:\windows\system32\D3DCompiler_38.dll
2008-12-09 23:17 . 2008-05-30 14:19 507,400 --a------ c:\windows\system32\XAudio2_1.dll
2008-12-09 23:17 . 2008-05-30 14:11 467,984 --a------ c:\windows\system32\d3dx10_38.dll
2008-12-09 23:17 . 2008-05-30 14:18 238,088 --a------ c:\windows\system32\xactengine3_1.dll
2008-12-09 23:17 . 2008-05-30 14:17 65,032 --a------ c:\windows\system32\XAPOFX1_0.dll
2008-12-09 23:17 . 2008-05-30 14:17 25,608 --a------ c:\windows\system32\X3DAudio1_4.dll
2008-12-09 16:37 . 2008-12-09 16:37 <DIR> d-------- c:\programmi\BearShare Applications
2008-12-09 16:37 . 2006-11-12 11:39 483,328 --a------ c:\windows\system32\actskn45.ocx
2008-12-08 21:50 . 2008-12-09 17:41 <DIR> d-------- c:\programmi\eMule
2008-12-08 21:39 . 2008-12-08 21:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2008-12-08 21:37 . 2008-12-08 21:38 <DIR> d-------- c:\programmi\Messenger Plus! Live
2008-12-08 21:33 . 2008-12-08 21:33 <DIR> d-------- c:\documents and settings\domenico\Contacts
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\AskBarDis
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Thunderbird
2008-12-08 21:31 . 2008-12-11 15:08 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 0 --a------ c:\windows\nsreg.dat
2008-12-08 21:30 . 2008-12-10 15:42 <DIR> d-------- c:\programmi\Vuze
2008-12-08 21:30 . 2008-12-08 21:30 <DIR> d-------- c:\programmi\File comuni\i4j_jres
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- c:\documents and settings\domenico\WINDOWS
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- C:\DeAMM
2008-12-05 13:44 . 2000-01-11 09:25 577,536 --a------ c:\windows\system32\DeAAtx.ocx
2008-12-05 13:44 . 2000-01-11 08:57 458,752 --a------ c:\windows\system32\DeAT.ocx
2008-12-05 13:44 . 1998-08-05 00:00 150,528 --a------ c:\windows\system32\MSCMCIT.DLL
2008-12-05 13:44 . 1999-05-07 00:00 140,288 --------- c:\windows\system32\COMDLG32.OCX
2008-12-05 13:44 . 1999-05-10 12:16 131,072 --a------ c:\windows\system32\MultimediaDataControl.ocx
2008-12-05 13:44 . 1998-06-18 00:00 89,360 --a------ c:\windows\system32\VB5DB.DLL
2008-12-05 13:44 . 1999-06-01 13:46 86,016 --a------ c:\windows\system32\DEAPIC.dll
2008-12-05 13:44 . 1999-05-07 00:00 82,960 --a------ c:\windows\system32\PICCLP32.OCX
2008-12-05 13:44 . 1999-02-25 14:42 40,960 --a------ c:\windows\system32\Deaole.dll
2008-12-05 13:44 . 1998-08-05 00:00 9,728 --a------ c:\windows\system32\PCCLPIT.DLL
2008-12-05 13:44 . 2008-12-05 13:44 94 --a------ c:\windows\DeAMM.ini
2008-12-04 21:28 . 2008-12-04 22:10 <DIR> d-------- c:\programmi\VirtualDJ
2008-12-04 10:08 . 2008-12-04 10:08 288 --a------ c:\windows\ODBC.INI
2008-12-04 10:06 . 2008-12-04 10:06 <DIR> d-------- c:\programmi\Finson Grafica
2008-12-01 13:00 . 2008-12-09 23:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Sports Interactive
2008-12-01 12:34 . 2008-12-01 12:34 <DIR> d-------- c:\programmi\Kylotonn Entertainment
2008-12-01 12:04 . 2008-12-01 12:04 151 --a------ c:\windows\PhotoSnapViewer.INI
2008-11-27 19:21 . 2008-11-27 19:21 268 --ah----- C:\sqmdata19.sqm
2008-11-27 19:21 . 2008-11-27 19:21 244 --ah----- C:\sqmnoopt19.sqm
2008-11-26 16:59 . 2008-11-26 16:59 268 --ah----- C:\sqmdata18.sqm
2008-11-26 16:59 . 2008-11-26 16:59 244 --ah----- C:\sqmnoopt18.sqm
2008-11-26 16:19 . 2008-11-26 16:19 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\QuickTime
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iTunes
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iPod
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\File comuni\Apple
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Bonjour
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Apple Software Update
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple
2008-11-26 16:18 . 2008-07-22 20:32 32,000 --a------ c:\windows\system32\drivers\usbaapl.sys
2008-11-25 23:27 . 2008-11-25 23:27 268 --ah----- C:\sqmdata17.sqm
2008-11-25 23:27 . 2008-11-25 23:27 244 --ah----- C:\sqmnoopt17.sqm
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\StarModem
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\Conexant
2008-11-25 19:06 . 2003-07-16 19:12 2,700,796 --a------ c:\windows\system32\drivers\CnxE2Fw.bin
2008-11-25 19:06 . 2008-11-25 19:06 524,288 --a------ c:\windows\system32\drivers\CnxE2FS.bin
2008-11-25 19:06 . 2003-07-07 17:37 52,352 --a------ c:\windows\system32\drivers\CnxTrUsb.sys
2008-11-25 19:06 . 2003-07-07 17:37 25,984 --a------ c:\windows\system32\drivers\CnxTrLan.sys
2008-11-25 19:06 . 2001-07-21 18:30 22,048 --a------ c:\windows\system32\cocpyinf.dll
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\programmi\Zero G Registry
2008-11-25 13:00 . 2008-12-10 15:41 <DIR> d-------- c:\programmi\Sports Interactive
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\documents and settings\domenico\InstallAnywhere
2008-11-25 12:33 . 2008-11-25 12:33 268 --ah----- C:\sqmdata16.sqm
2008-11-25 12:33 . 2008-11-25 12:33 244 --ah----- C:\sqmnoopt16.sqm
2008-11-24 23:02 . 2008-11-24 23:02 268 --ah----- C:\sqmdata15.sqm
2008-11-24 23:02 . 2008-11-24 23:02 244 --ah----- C:\sqmnoopt15.sqm
2008-11-24 16:44 . 1998-08-27 05:51 182,032 --a------ c:\windows\system32\dxtmsft3.dll
2008-11-24 16:44 . 1998-08-20 12:02 140,800 --a------ c:\windows\system32\tm20dec.ax
2008-11-24 16:44 . 1998-09-02 09:28 38,160 --a------ c:\windows\system32\LMRTREND.dll
2008-11-24 16:43 . 2008-11-24 16:43 <DIR> d-------- c:\programmi\CANAL+
2008-11-24 16:43 . 1998-10-06 18:57 327,168 --a------ c:\windows\IsUn0410.exe
2008-11-24 16:43 . 1998-09-02 09:02 194,320 --a------ c:\windows\system32\qcut.dll
2008-11-24 16:43 . 1998-09-02 09:28 63,488 --a------ c:\windows\system32\unam4ie.exe
2008-11-24 16:43 . 1998-08-17 10:21 11,776 --a------ c:\windows\system32\mciqtz.drv
2008-11-24 16:43 . 1998-08-17 10:21 10,240 --a------ c:\windows\system32\vidx16.dll
2008-11-24 16:43 . 1998-08-17 10:21 5,672 --a------ c:\windows\system32\quartz.vxd
2008-11-24 16:43 . 2008-11-24 16:43 4,608 --a------ c:\windows\system32\w95inf32.dll
2008-11-24 16:43 . 2008-11-24 16:43 2,272 --a------ c:\windows\system32\w95inf16.dll
2008-11-24 16:12 . 2008-11-24 16:12 268 --ah----- C:\sqmdata14.sqm
2008-11-24 16:12 . 2008-11-24 16:12 244 --ah----- C:\sqmnoopt14.sqm
2008-11-24 16:11 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\PowerISO
2008-11-24 16:11 . 2008-12-10 18:00 958,875 ---h----- c:\windows\system32\drivers\logg.dat
2008-11-24 16:10 . 2008-11-24 16:10 <DIR> d-------- c:\programmi\MagicISO
2008-11-24 13:23 . 2008-12-11 12:45 69 --a------ c:\windows\NeroDigital.ini
2008-11-21 19:36 . 2008-11-21 19:36 268 --ah----- C:\sqmdata13.sqm
2008-11-21 19:36 . 2008-11-21 19:36 244 --ah----- C:\sqmnoopt13.sqm
2008-11-21 00:31 . 2008-11-21 00:31 268 --ah----- C:\sqmdata12.sqm
2008-11-21 00:31 . 2008-11-21 00:31 244 --ah----- C:\sqmnoopt12.sqm
2008-11-20 16:33 . 2008-11-20 16:33 268 --ah----- C:\sqmdata11.sqm
2008-11-20 16:33 . 2008-11-20 16:33 244 --ah----- C:\sqmnoopt11.sqm
2008-11-19 23:19 . 2008-11-19 23:19 268 --ah----- C:\sqmdata10.sqm
2008-11-19 23:19 . 2008-11-19 23:19 244 --ah----- C:\sqmnoopt10.sqm
2008-11-19 11:59 . 2008-11-19 11:59 107,888 --a------ c:\windows\system32\CmdLineExt.dll
2008-11-19 11:54 . 2008-11-19 11:54 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\KONAMI
2008-11-18 23:27 . 2008-11-18 23:27 268 --ah----- C:\sqmdata09.sqm
2008-11-18 23:27 . 2008-11-18 23:27 244 --ah----- C:\sqmnoopt09.sqm
2008-11-18 20:52 . 2008-11-18 20:52 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Ubisoft
2008-11-18 20:51 . 2008-11-18 20:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Ubisoft
2008-11-18 20:39 . 2008-12-10 16:16 <DIR> d-------- c:\programmi\Ubisoft
2008-11-18 20:39 . 2008-11-18 20:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\InstallShield
2008-11-18 20:34 . 2008-12-10 23:49 <DIR> d-------- c:\programmi\KONAMI
2008-11-18 20:30 . 2008-11-18 20:30 <DIR> d-------- c:\programmi\DAEMON Tools
2008-11-18 20:28 . 2008-11-18 20:28 646,392 --a------ c:\windows\system32\drivers\sptd.sys
2008-11-18 20:28 . 2008-12-05 17:43 268 --ah----- C:\sqmdata08.sqm
2008-11-18 20:28 . 2008-12-05 17:43 244 --ah----- C:\sqmnoopt08.sqm
2008-11-18 20:21 . 2008-11-18 20:21 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Maxtor
2008-11-18 20:20 . 2008-12-05 17:35 268 --ah----- C:\sqmdata07.sqm
2008-11-18 20:20 . 2008-12-05 17:35 244 --ah----- C:\sqmnoopt07.sqm
2008-11-18 20:19 . 2008-11-18 20:19 <DIR> d-------- c:\windows\Downloaded Installations
2008-11-18 20:19 . 2008-11-18 20:20 <DIR> d-------- c:\programmi\Maxtor
2008-11-18 19:48 . 2008-12-05 15:15 268 --ah----- C:\sqmdata06.sqm
2008-11-18 19:48 . 2008-12-05 15:15 244 --ah----- C:\sqmnoopt06.sqm
2008-11-18 19:21 . 2008-04-13 19:13 21,504 --a------ c:\windows\system32\hidserv.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-10 15:16 --------- d--h--w c:\programmi\InstallShield Installation Information
2008-11-18 19:19 --------- d-----w c:\programmi\File comuni\InstallShield
2008-11-18 17:57 --------- d-----w c:\programmi\File comuni\Ahead
2008-11-18 17:57 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\Ahead
2008-11-18 17:56 --------- d-----w c:\programmi\Nero
2008-11-18 17:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Nero
2008-11-18 17:47 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2008-11-18 17:46 --------- d-----w c:\programmi\MSBuild
2008-11-18 17:46 --------- d-----w c:\programmi\Microsoft Works
2008-11-18 17:43 --------- d-----w c:\programmi\File comuni\Adobe
2008-11-18 17:43 --------- d-----w c:\programmi\ClamWin
2008-11-18 17:43 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\.clamwin
2008-11-18 17:14 --------- d-----w c:\programmi\ASUS
2008-11-18 17:10 --------- d-----w c:\programmi\C-Media 6501 Sound
2008-11-18 17:03 --------- d-----w c:\programmi\DIFX
2008-11-18 16:57 --------- d-----w c:\programmi\microsoft frontpage
2008-11-18 16:55 --------- d-----w c:\programmi\Servizi in linea
2008-11-18 16:53 --------- d-----w c:\programmi\Windows Live
2008-11-18 16:52 --------- d-----w c:\programmi\Windows Media Connect 2
2008-11-02 08:44 56,572 ----a-w c:\windows\system32\drivers\scdemu.sys
2008-10-02 09:07 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
.

------- Sigcheck -------

2008-05-08 17:28 361344 accf5a9a1ffaa490f33dba1c632b95e1 c:\windows\system32\drivers\tcpip.sys
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2008-11-24 20:25 333192 --a------ c:\programmi\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\programmi\AskBarDis\bar\bin\askBar.dll" [2008-11-24 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
"DAEMON Tools"="c:\programmi\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"ClamWin"="c:\programmi\ClamWin\bin\ClamTray.exe" [2008-04-19 77824]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"MaxtorOneTouch"="c:\programmi\Maxtor\OneTouch\utils\Onetouch.exe" [2006-03-27 712704]
"mxomssmenu"="c:\programmi\Maxtor\OneTouch Status\maxmenumgr.exe" [2005-10-17 81920]
"PWRISOVM.EXE"="c:\programmi\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
"AppleSyncNotifier"="c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2008-05-27 413696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2008-07-30 289064]
"C6501Sound"="c6501.cpl" [BU]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]

c:\documents and settings\domenico\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{4E007A5F-299F-44FC-8B6B-F06B61867A2E}"= "c:\windows\system32\byXQggDT.dll" [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wuauserv"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"c:\\Programmi\\KONAMI\\Pro Evolution Soccer 2009\\pes2009.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Sports Interactive\\Football Manager 2009\\fm.exe"=

R0 nvcchflt;NVIDIA Disk Cache Filter Driver;c:\windows\system32\DRIVERS\nvcchflt.sys [2008-05-08 16640]
R2 ASKService;ASKService;c:\programmi\AskBarDis\bar\bin\AskService.exe [2008-12-08 464264]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [2008-11-18 1305600]
S2 ASKUpgrade;ASKUpgrade;c:\programmi\AskBarDis\bar\bin\ASKUpgrade.exe [2008-12-08 234888]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
\Shell\AutoRun\command - k:\autorun\UbiAutorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7163c040-ba22-11dd-bf95-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com q:
\Shell\Open\command - q:\resycled\boot.com q:

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{74233E61-EF19-25AF-B35C-83DCA1391BA5}]
c:\windows\system32\drivers\smss.exe s
.
Contenuto della cartella 'Scheduled Tasks'

2008-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORFÃOS REMOVIDOS - - - -

BHO-{67F8EB90-BB69-4214-B43F-FDDE92B4D17A} - c:\windows\system32\wvUljICs.dll
HKCU-Run-Steam - c:\programmi\Steam\Steam.exe
HKLM-Run-CnxTrApp - c:\programmi\StarModem\StarModem USB Network\CnxTrApp.dll
HKLM-Run-c0b43796 - c:\windows\system32\cmrusdhb.dll
Notify-byXQggDT - byXQggDT.dll


.
------- Supplementare di scansione -------
.
uStart Page = hxxp://search.bearshare.com/it/
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FireFox -: Profile - c:\documents and settings\domenico\Dati applicazioni\Mozilla\Firefox\Profiles\9mks8g1p.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.it
FF -: plugin - c:\programmi\iTunes\Mozilla Plugins\npitunes.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-11 16:10:15
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\msqpdxserv.sys]
"imagepath"="\systemroot\system32\drivers\msqpdxosvdnrsr.sys"
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\programmi\Bonjour\mDNSResponder.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
c:\programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
c:\programmi\Maxtor\OneTouch\Utils\SyncServices.exe
c:\windows\system32\nvsvc32.exe
c:\programmi\iPod\bin\iPodService.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexingService.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Ora fine scansione: 2008-12-11 16:11:29 - macchina è stato riavviato
ComboFix-quarantined-files.txt 2008-12-11 15:11:26
ComboFix2.txt 2008-12-11 14:47:54

Pre-Run: 434.558.005.248 byte disponibili
Post-Run: 434,549,854,208 byte disponibili

294
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi -> EleKtrA <- » 11/12/08 18:02

Salva il documento che ti allego
con il mouse trascina il file CFScript.txt sull'icona rossa di Combofix
http://img77.imageshack.us/img77/6174/cfscript08oy6.gif
riavvia il computer,
verrà creato un nuovo log combofix.txt,
copialo nella tua risposta.

Apri Malwarebyte -> scheda File di Log,
se è presente il file della scansione lo selezioni -> apri e copi il contenuto nella tua risposta.

;)
Allegati

[L’estensione txt è stata disattivata e non puó essere visualizzata.]

“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: aiuto!!!

Postdi dominique87 » 12/12/08 11:14

ciao elektra ecco il log che mi ha creato combofix in 2 parti xke e troppo grande...


ComboFix 08-12-09.03 - domenico 2008-12-12 11.05.31.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1040.18.1512 [GMT 1:00]
Eseguito da: c:\documents and settings\domenico\Desktop\ComboFix.exe
Interruttori di comando utilizzati :: c:\documents and settings\domenico\Desktop\CFScript.txt
* Creato nuovo punto di ripristino

FILE ::
c:\programmi\AskBarDis\bar\bin\askBar.dll
c:\programmi\AskBarDis\bar\bin\AskService.exe
C:\sqmdata06.sqm
C:\sqmdata07.sqm
C:\sqmdata08.sqm
C:\sqmdata09.sqm
C:\sqmdata10.sqm
C:\sqmdata11.sqm
C:\sqmdata12.sqm
C:\sqmdata13.sqm
C:\sqmdata14.sqm
C:\sqmdata15.sqm
C:\sqmdata16.sqm
C:\sqmdata17.sqm
C:\sqmdata18.sqm
C:\sqmdata19.sqm
C:\sqmnoopt06.sqm
C:\sqmnoopt07.sqm
C:\sqmnoopt08.sqm
C:\sqmnoopt09.sqm
C:\sqmnoopt10.sqm
C:\sqmnoopt11.sqm
C:\sqmnoopt12.sqm
C:\sqmnoopt13.sqm
C:\sqmnoopt14.sqm
C:\sqmnoopt15.sqm
C:\sqmnoopt16.sqm
C:\sqmnoopt17.sqm
C:\sqmnoopt18.sqm
C:\sqmnoopt19.sqm
c:\windows\system32\byXQggDT.dll
c:\windows\system32\drivers\ntxtz.sys
c:\windows\system32\wvUljICs.dll
k:\autorun\UbiAutorun.exe
c:\windows\Tasks -- Whitelisted --
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Autorun.inf
c:\programmi\AskBarDis
c:\programmi\AskBarDis\bar\bin\askBar.dll
c:\programmi\AskBarDis\bar\bin\askPopStp.dll
c:\programmi\AskBarDis\bar\bin\AskService.exe
c:\programmi\AskBarDis\bar\bin\AskSplash.exe
c:\programmi\AskBarDis\bar\bin\AskTBApp.exe
c:\programmi\AskBarDis\bar\bin\ASKUpgrade.exe
c:\programmi\AskBarDis\bar\bin\psvince.dll
c:\programmi\AskBarDis\bar\Cache\00059F83
c:\programmi\AskBarDis\bar\Cache\0005A2DF.bin
c:\programmi\AskBarDis\bar\Cache\0005A5BD.bin
c:\programmi\AskBarDis\bar\Cache\0005A772.bin
c:\programmi\AskBarDis\bar\Cache\0005A89B.bin
c:\programmi\AskBarDis\bar\Cache\0005AA03.bin
c:\programmi\AskBarDis\bar\Cache\0005AB3B.bin
c:\programmi\AskBarDis\bar\Cache\0005ACF1.bin
c:\programmi\AskBarDis\bar\Cache\files.ini
c:\programmi\AskBarDis\bar\History\search
c:\programmi\AskBarDis\bar\Settings\AskLogo.ico
c:\programmi\AskBarDis\bar\Settings\config.dat
c:\programmi\AskBarDis\bar\Settings\config.dat.bak
c:\programmi\AskBarDis\bar\Settings\prevcfg.htm
c:\programmi\AskBarDis\unins000.dat
c:\programmi\AskBarDis\unins000.exe
c:\programmi\Mozilla Firefox\components\iamfamous.dll
C:\resycled
c:\resycled\boot.com
C:\sqmdata06.sqm
C:\sqmdata07.sqm
C:\sqmdata08.sqm
C:\sqmdata09.sqm
C:\sqmdata10.sqm
C:\sqmdata11.sqm
C:\sqmdata12.sqm
C:\sqmdata13.sqm
C:\sqmdata14.sqm
C:\sqmdata15.sqm
C:\sqmdata16.sqm
C:\sqmdata17.sqm
C:\sqmdata18.sqm
C:\sqmdata19.sqm
C:\sqmnoopt06.sqm
C:\sqmnoopt07.sqm
C:\sqmnoopt08.sqm
C:\sqmnoopt09.sqm
C:\sqmnoopt10.sqm
C:\sqmnoopt11.sqm
C:\sqmnoopt12.sqm
C:\sqmnoopt13.sqm
C:\sqmnoopt14.sqm
C:\sqmnoopt15.sqm
C:\sqmnoopt16.sqm
C:\sqmnoopt17.sqm
C:\sqmnoopt18.sqm
C:\sqmnoopt19.sqm
c:\windows\temp\_avast4_\Webshlock.txt
c:\windows\temp\Perflib_Perfdata_664.dat
c:\windows\temp\Perflib_Perfdata_6c0.dat
c:\windows\temp . . . . Eliminazione Fallita

.
((((((((((((((((((((((((( Files Creati Da 2008-11-12 al 2008-12-12 )))))))))))))))))))))))))))))))))))
.

2008-12-11 23:01 . 2008-10-16 20:32 6,068,224 -----c--- c:\windows\system32\dllcache\ieframe.dll
2008-12-11 23:01 . 2007-04-17 10:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2008-12-11 23:01 . 2007-03-08 06:11 1,032,192 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2008-12-11 23:01 . 2008-10-16 20:32 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2008-12-11 23:01 . 2008-10-16 20:32 380,928 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2008-12-11 23:01 . 2008-06-14 18:32 272,768 --------- c:\windows\system32\drivers\bthport.sys
2008-12-11 23:01 . 2008-06-14 18:32 272,768 -----c--- c:\windows\system32\dllcache\bthport.sys
2008-12-11 23:01 . 2008-10-16 20:32 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2008-12-11 23:01 . 2008-10-16 20:32 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2008-12-11 23:01 . 2008-10-16 20:32 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2008-12-11 23:01 . 2008-10-16 13:46 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe
2008-12-11 22:59 . 2008-12-11 22:59 <DIR> d-------- c:\windows\system32\LogFiles
2008-12-11 20:15 . 2008-08-14 14:22 2,192,896 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe
2008-12-11 20:15 . 2008-08-14 14:22 2,148,864 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe
2008-12-11 20:15 . 2008-08-14 14:22 2,069,760 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe
2008-12-11 20:15 . 2008-08-14 14:22 2,027,520 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe
2008-12-11 20:15 . 2008-10-24 12:21 455,296 -----c--- c:\windows\system32\dllcache\mrxsmb.sys
2008-12-11 17:44 . 2008-12-11 23:13 <DIR> d--h----- c:\windows\$hf_mig$
2008-12-11 17:44 . 2005-02-25 04:35 22,752 --a------ c:\windows\system32\spupdsvc.exe
2008-12-11 16:29 . 2008-12-11 16:29 <DIR> d-------- c:\programmi\Alwil Software
2008-12-11 16:21 . 2008-12-11 16:21 62,464 --a------ c:\windows\system32\drivers\msqpdxserv.sys
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\programmi\Malwarebytes' Anti-Malware
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-11 15:12 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2008-12-11 15:12 . 2008-12-03 19:52 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2008-12-11 15:12 . 2008-12-03 19:52 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2008-12-11 12:58 . 2008-12-11 12:58 <DIR> d-------- c:\programmi\Trend Micro
2008-12-10 16:19 . 2008-12-10 16:19 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\POP3Profiles
2008-12-09 23:31 . 2008-12-09 23:38 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Sports Interactive
2008-12-09 23:17 . 2008-12-09 23:17 <DIR> d-------- c:\windows\Logs
2008-12-09 23:17 . 2008-05-30 14:11 3,850,760 --a------ c:\windows\system32\D3DX9_38.dll
2008-12-09 23:17 . 2008-05-30 14:11 1,491,992 --a------ c:\windows\system32\D3DCompiler_38.dll
2008-12-09 23:17 . 2008-05-30 14:19 507,400 --a------ c:\windows\system32\XAudio2_1.dll
2008-12-09 23:17 . 2008-05-30 14:11 467,984 --a------ c:\windows\system32\d3dx10_38.dll
2008-12-09 23:17 . 2008-05-30 14:18 238,088 --a------ c:\windows\system32\xactengine3_1.dll
2008-12-09 23:17 . 2008-05-30 14:17 65,032 --a------ c:\windows\system32\XAPOFX1_0.dll
2008-12-09 23:17 . 2008-05-30 14:17 25,608 --a------ c:\windows\system32\X3DAudio1_4.dll
2008-12-09 16:37 . 2008-12-09 16:37 <DIR> d-------- c:\programmi\BearShare Applications
2008-12-09 16:37 . 2006-11-12 11:39 483,328 --a------ c:\windows\system32\actskn45.ocx
2008-12-08 21:50 . 2008-12-09 17:41 <DIR> d-------- c:\programmi\eMule
2008-12-08 21:39 . 2008-12-08 21:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Messenger Plus!
2008-12-08 21:37 . 2008-12-08 21:38 <DIR> d-------- c:\programmi\Messenger Plus! Live
2008-12-08 21:33 . 2008-12-08 21:33 <DIR> d-------- c:\documents and settings\domenico\Contacts
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Thunderbird
2008-12-08 21:31 . 2008-12-11 22:59 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Azureus
2008-12-08 21:31 . 2008-12-08 21:31 0 --a------ c:\windows\nsreg.dat
2008-12-08 21:30 . 2008-12-10 15:42 <DIR> d-------- c:\programmi\Vuze
2008-12-08 21:30 . 2008-12-08 21:30 <DIR> d-------- c:\programmi\File comuni\i4j_jres
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- c:\documents and settings\domenico\WINDOWS
2008-12-05 13:44 . 2008-12-05 13:44 <DIR> d-------- C:\DeAMM
2008-12-05 13:44 . 2000-01-11 09:25 577,536 --a------ c:\windows\system32\DeAAtx.ocx
2008-12-05 13:44 . 2000-01-11 08:57 458,752 --a------ c:\windows\system32\DeAT.ocx
2008-12-05 13:44 . 1998-08-05 00:00 150,528 --a------ c:\windows\system32\MSCMCIT.DLL
2008-12-05 13:44 . 1999-05-07 00:00 140,288 --------- c:\windows\system32\COMDLG32.OCX
2008-12-05 13:44 . 1999-05-10 12:16 131,072 --a------ c:\windows\system32\MultimediaDataControl.ocx
2008-12-05 13:44 . 1998-06-18 00:00 89,360 --a------ c:\windows\system32\VB5DB.DLL
2008-12-05 13:44 . 1999-06-01 13:46 86,016 --a------ c:\windows\system32\DEAPIC.dll
2008-12-05 13:44 . 1999-05-07 00:00 82,960 --a------ c:\windows\system32\PICCLP32.OCX
2008-12-05 13:44 . 1999-02-25 14:42 40,960 --a------ c:\windows\system32\Deaole.dll
2008-12-05 13:44 . 1998-08-05 00:00 9,728 --a------ c:\windows\system32\PCCLPIT.DLL
2008-12-05 13:44 . 2008-12-05 13:44 94 --a------ c:\windows\DeAMM.ini
2008-12-04 21:28 . 2008-12-04 22:10 <DIR> d-------- c:\programmi\VirtualDJ
2008-12-04 10:08 . 2008-12-04 10:08 288 --a------ c:\windows\ODBC.INI
2008-12-04 10:06 . 2008-12-04 10:06 <DIR> d-------- c:\programmi\Finson Grafica
2008-12-01 13:00 . 2008-12-09 23:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Sports Interactive
2008-12-01 12:34 . 2008-12-01 12:34 <DIR> d-------- c:\programmi\Kylotonn Entertainment
2008-12-01 12:04 . 2008-12-01 12:04 151 --a------ c:\windows\PhotoSnapViewer.INI
2008-11-26 16:19 . 2008-11-26 16:19 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\QuickTime
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iTunes
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\iPod
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\File comuni\Apple
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Bonjour
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\programmi\Apple Software Update
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple Computer
2008-11-26 16:18 . 2008-11-26 16:18 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Apple
2008-11-26 16:18 . 2008-07-22 20:32 32,000 --a------ c:\windows\system32\drivers\usbaapl.sys
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\StarModem
2008-11-25 19:06 . 2008-11-25 19:06 <DIR> d-------- c:\programmi\Conexant
2008-11-25 19:06 . 2003-07-16 19:12 2,700,796 --a------ c:\windows\system32\drivers\CnxE2Fw.bin
2008-11-25 19:06 . 2008-11-25 19:06 524,288 --a------ c:\windows\system32\drivers\CnxE2FS.bin
2008-11-25 19:06 . 2003-07-07 17:37 52,352 --a------ c:\windows\system32\drivers\CnxTrUsb.sys
2008-11-25 19:06 . 2003-07-07 17:37 25,984 --a------ c:\windows\system32\drivers\CnxTrLan.sys
2008-11-25 19:06 . 2001-07-21 18:30 22,048 --a------ c:\windows\system32\cocpyinf.dll
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\programmi\Zero G Registry
2008-11-25 13:00 . 2008-12-10 15:41 <DIR> d-------- c:\programmi\Sports Interactive
2008-11-25 13:00 . 2008-11-25 13:00 <DIR> d--h----- c:\documents and settings\domenico\InstallAnywhere
2008-11-24 16:44 . 1998-08-27 05:51 182,032 --a------ c:\windows\system32\dxtmsft3.dll
2008-11-24 16:44 . 1998-08-20 12:02 140,800 --a------ c:\windows\system32\tm20dec.ax
2008-11-24 16:44 . 1998-09-02 09:28 38,160 --a------ c:\windows\system32\LMRTREND.dll
2008-11-24 16:43 . 2008-11-24 16:43 <DIR> d-------- c:\programmi\CANAL+
2008-11-24 16:43 . 1998-10-06 18:57 327,168 --a------ c:\windows\IsUn0410.exe
2008-11-24 16:43 . 1998-09-02 09:02 194,320 --a------ c:\windows\system32\qcut.dll
2008-11-24 16:43 . 1998-09-02 09:28 63,488 --a------ c:\windows\system32\unam4ie.exe
2008-11-24 16:43 . 1998-08-17 10:21 11,776 --a------ c:\windows\system32\mciqtz.drv
2008-11-24 16:43 . 1998-08-17 10:21 10,240 --a------ c:\windows\system32\vidx16.dll
2008-11-24 16:43 . 1998-08-17 10:21 5,672 --a------ c:\windows\system32\quartz.vxd
2008-11-24 16:43 . 2008-11-24 16:43 4,608 --a------ c:\windows\system32\w95inf32.dll
2008-11-24 16:43 . 2008-11-24 16:43 2,272 --a------ c:\windows\system32\w95inf16.dll
2008-11-24 16:11 . 2008-12-08 21:31 <DIR> d-------- c:\programmi\PowerISO
2008-11-24 16:11 . 2008-12-10 18:00 958,875 ---h----- c:\windows\system32\drivers\logg.dat
2008-11-24 16:10 . 2008-11-24 16:10 <DIR> d-------- c:\programmi\MagicISO
2008-11-24 13:23 . 2008-12-11 12:45 69 --a------ c:\windows\NeroDigital.ini
2008-11-19 11:59 . 2008-11-19 11:59 107,888 --a------ c:\windows\system32\CmdLineExt.dll
2008-11-19 11:54 . 2008-11-19 11:54 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\KONAMI
2008-11-18 20:52 . 2008-11-18 20:52 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\Ubisoft
2008-11-18 20:51 . 2008-11-18 20:51 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Ubisoft
2008-11-18 20:39 . 2008-12-10 16:16 <DIR> d-------- c:\programmi\Ubisoft
2008-11-18 20:39 . 2008-11-18 20:39 <DIR> d-------- c:\documents and settings\domenico\Dati applicazioni\InstallShield
2008-11-18 20:34 . 2008-12-10 23:49 <DIR> d-------- c:\programmi\KONAMI
2008-11-18 20:30 . 2008-12-11 16:45 <DIR> d-------- c:\programmi\DAEMON Tools
2008-11-18 20:28 . 2008-11-18 20:28 646,392 --a------ c:\windows\system32\drivers\sptd.sys
2008-11-18 20:21 . 2008-11-18 20:21 <DIR> d-------- c:\documents and settings\All Users\Dati applicazioni\Maxtor
2008-11-18 20:19 . 2008-11-18 20:19 <DIR> d-------- c:\windows\Downloaded Installations
2008-11-18 20:19 . 2008-11-18 20:20 <DIR> d-------- c:\programmi\Maxtor
2008-11-18 19:21 . 2008-04-13 19:13 21,504 --a------ c:\windows\system32\hidserv.dll
2008-11-18 19:21 . 2008-04-13 18:53 14,720 --a------ c:\windows\system32\drivers\kbdhid.sys
2008-11-18 19:21 . 2001-08-30 20:41 12,160 --a------ c:\windows\system32\drivers\mouhid.sys
2008-11-18 19:21 . 2008-04-13 11:45 10,368 --a------ c:\windows\system32\drivers\hidusb.sys
2008-11-18 19:11 . 2008-12-04 22:22 268 --ah----- C:\sqmdata05.sqm
2008-11-18 19:11 . 2008-12-04 22:22 244 --ah----- C:\sqmnoopt05.sqm
2008-11-18 19:03 . 2008-12-03 17:33 268 --ah----- C:\sqmdata04.sqm
2008-11-18 19:03 . 2008-12-03 17:33 244 --ah----- C:\sqmnoopt04.sqm
2008-11-18 19:02 . 2008-11-18 19:02 <DIR> d-------- c:\windows\system32\AGEIA

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-10 15:16 --------- d--h--w c:\programmi\InstallShield Installation Information
2008-11-18 19:19 --------- d-----w c:\programmi\File comuni\InstallShield
2008-11-18 17:57 --------- d-----w c:\programmi\File comuni\Ahead
2008-11-18 17:57 --------- d-----w c:\documents and settings\domenico\Dati applicazioni\Ahead
2008-11-18 17:56 --------- d-----w c:\programmi\Nero
2008-11-18 17:56 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Nero
2008-11-18 17:47 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2008-11-18 17:46 --------- d-----w c:\programmi\MSBuild
2008-11-18 17:46 --------- d-----w c:\programmi\Microsoft Works
2008-11-18 17:43 --------- d-----w c:\programmi\File comuni\Adobe
2008-11-18 17:14 --------- d-----w c:\programmi\ASUS
2008-11-18 17:10 --------- d-----w c:\programmi\C-Media 6501 Sound
2008-11-18 17:03 --------- d-----w c:\programmi\DIFX
2008-11-18 16:57 --------- d-----w c:\programmi\microsoft frontpage
2008-11-18 16:55 --------- d-----w c:\programmi\Servizi in linea
2008-11-18 16:53 --------- d-----w c:\programmi\Windows Live
2008-11-18 16:52 --------- d-----w c:\programmi\Windows Media Connect 2
2008-11-02 08:44 56,572 ----a-w c:\windows\system32\drivers\scdemu.sys
2008-10-24 11:21 455,296 ----a-w c:\windows\system32\drivers\mrxsmb.sys
2008-10-23 12:36 286,720 ----a-w c:\windows\system32\gdi32.dll
2008-10-16 19:32 827,904 ----a-w c:\windows\system32\wininet.dll
2008-10-16 13:13 202,776 ----a-w c:\windows\system32\wuweb.dll
2008-10-16 13:13 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
2008-10-16 13:12 561,688 ----a-w c:\windows\system32\wuapi.dll
2008-10-16 13:12 323,608 ----a-w c:\windows\system32\wucltui.dll
2008-10-16 13:09 92,696 ----a-w c:\windows\system32\cdm.dll
2008-10-16 13:09 51,224 ----a-w c:\windows\system32\wuauclt.exe
2008-10-16 13:09 43,544 ----a-w c:\windows\system32\wups2.dll
2008-10-16 13:08 34,328 ----a-w c:\windows\system32\wups.dll
2008-10-03 10:02 247,326 ----a-w c:\windows\system32\strmdll.dll
2008-10-02 09:07 453,152 ----a-w c:\windows\system32\NVUNINST.EXE
2008-09-15 15:24 1,846,400 ----a-w c:\windows\system32\win32k.sys
.

(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\ODBC.INI -- Not a PE file.
MD5: d7e5a0d9d46d85bde508fce9c5364c0a

c:\windows\system32\drivers\logg.dat -- Not a PE file.
MD5: fae1a7bceffc95f73f5cc594922d73f8

---- Directory of c:\programmi\File comuni\i4j_jres ----

2008-12-08 21:30 994 --a------ c:\programmi\File comuni\i4j_jres\jre1\Welcome.html
2008-12-08 21:30 9910 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\java.security
2008-12-08 21:30 98304 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpinscp.dll
2008-12-08 21:30 98304 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpicom.dll
2008-12-08 21:30 98304 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\instrument.dll
2008-12-08 21:30 976 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Baku
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Nauru
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Cape_Verde
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Vientiane
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Saigon
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Phnom_Penh
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Dhaka
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Calcutta
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Nairobi
2008-12-08 21:30 97 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Kampala
2008-12-08 21:30 968 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Andorra
2008-12-08 21:30 962019 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\plugin.jar
2008-12-08 21:30 932 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Winamac
2008-12-08 21:30 93 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Dili
2008-12-08 21:30 93 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Blanc-Sablon
2008-12-08 21:30 93 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Atikokan
2008-12-08 21:30 928 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Miquelon
2008-12-08 21:30 900 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Marengo
2008-12-08 21:30 892 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Tehran
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Niue
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Midway
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Kwajalein
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Kiritimati
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Enderbury
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Antananarivo
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Martinique
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Guyana
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Bogota
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Niamey
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Ndjamena
2008-12-08 21:30 89 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Maseru
2008-12-08 21:30 884 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Vincennes
2008-12-08 21:30 884 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Tell_City
2008-12-08 21:30 88256 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\jce.jar
2008-12-08 21:30 880 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Mexico_City
2008-12-08 21:30 868 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Indianapolis
2008-12-08 21:30 852 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Thule
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Kosrae
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Rangoon
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Makassar
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Jayapura
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Caracas
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Nouakchott
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Dar_es_Salaam
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Conakry
2008-12-08 21:30 85 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Bamako
2008-12-08 21:30 840 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Mazatlan
2008-12-08 21:30 830486 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\localedata.jar
2008-12-08 21:30 828 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Tunis
2008-12-08 21:30 824 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Windhoek
2008-12-08 21:30 8239 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\dnsns.jar
2008-12-08 21:30 8192 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npt.dll
2008-12-08 21:30 816 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Chihuahua
2008-12-08 21:30 81 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\DumontDUrville
2008-12-08 21:30 81 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Davis
2008-12-08 21:30 81 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\La_Paz
2008-12-08 21:30 8003 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\fontconfig.properties.src
2008-12-08 21:30 7945 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\im\thaiim.jar
2008-12-08 21:30 792 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Cancun
2008-12-08 21:30 788 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Monterrey
2008-12-08 21:30 788 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Merida
2008-12-08 21:30 77824 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\net.dll
2008-12-08 21:30 77824 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jli.dll
2008-12-08 21:30 77228 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\classlist
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Saipan
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Pitcairn
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Pago_Pago
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Norfolk
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Majuro
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Galapagos
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Apia
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Chagos
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Thimphu
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Qatar
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Katmandu
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Brunei
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Bahrain
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Puerto_Rico
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Curacao
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Cayenne
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Aruba
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Antigua
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Porto-Novo
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Monrovia
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Malabo
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Gaborone
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\El_Aaiun
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Dakar
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Bissau
2008-12-08 21:30 77 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Banjul
2008-12-08 21:30 7680 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\j2pcsc.dll
2008-12-08 21:30 760 --a------ c:\programmi\File comuni\i4j_jres\jre1\PATCH.ERR
2008-12-08 21:30 7591 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\fontconfig.98.properties.src
2008-12-08 21:30 7420 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\tzmappings
2008-12-08 21:30 73 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Mogadishu
2008-12-08 21:30 724 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Vevay
2008-12-08 21:30 698236 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\fonts\LucidaSansRegular.ttf
2008-12-08 21:30 69632 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\javacpl.cpl
2008-12-08 21:30 69632 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\deploy.dll
2008-12-08 21:30 671 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\i386\jvm.cfg
2008-12-08 21:30 6555645 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\charsets.jar
2008-12-08 21:30 65536 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpioji.dll
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Wallis
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Wake
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Truk
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Tarawa
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Tahiti
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Ponape
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Palau
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Marquesas
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Guam
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Guadalcanal
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Gambier
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Funafuti
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Fakaofo
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Reunion
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Mayotte
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Mauritius
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Maldives
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Mahe
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Kerguelen
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Comoro
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\St_Helena
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Riyadh
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Muscat
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kuwait
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kabul
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Dubai
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Bangkok
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Aden
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Vostok
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Syowa
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Rothera
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Mawson
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Casey
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Tortola
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\St_Vincent
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\St_Thomas
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\St_Lucia
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\St_Kitts
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Port_of_Spain
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Panama
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Montserrat
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Guayaquil
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Guadeloupe
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Grenada
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Dominica
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Cayman
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Anguilla
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Sao_Tome
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Ouagadougou
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Mbabane
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Maputo
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Lusaka
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Luanda
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Libreville
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Lagos
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Kigali
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Harare
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Douala
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Djibouti
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Brazzaville
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Blantyre
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Bangui
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Asmara
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Addis_Ababa
2008-12-08 21:30 65 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Abidjan
2008-12-08 21:30 6457 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_ja.properties
2008-12-08 21:30 632 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\cmm\GRAY.pf
2008-12-08 21:30 617 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Hong_Kong
2008-12-08 21:30 61440 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\unpack.dll
2008-12-08 21:30 602112 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\mlib_image.dll
2008-12-08 21:30 59944 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\splash.jpg
2008-12-08 21:30 577 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Reykjavik
2008-12-08 21:30 556594 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\jsse.jar
2008-12-08 21:30 5506 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\content-types.properties
2008-12-08 21:30 54672 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jureg.exe
2008-12-08 21:30 537 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Bahia
2008-12-08 21:30 529 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Resolute
2008-12-08 21:30 521 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\meta-index
2008-12-08 21:30 5159 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_ko.properties
2008-12-08 21:30 513 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Belize
2008-12-08 21:30 51236 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\cmm\CIEXYZ.pf
2008-12-08 21:30 5120 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\rmi.dll
2008-12-08 21:30 5120 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jawt.dll
2008-12-08 21:30 509328 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\ssv.dll
2008-12-08 21:30 509 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Dawson_Creek
2008-12-08 21:30 49271 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\cacerts
2008-12-08 21:30 49152 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\javacpl.exe
2008-12-08 21:30 485 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Bishkek
2008-12-08 21:30 4821 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Riyadh87
2008-12-08 21:30 481 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Regina
2008-12-08 21:30 4765 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Riyadh89
2008-12-08 21:30 4733 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Riyadh88
2008-12-08 21:30 47104 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\zip.dll
2008-12-08 21:30 469 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Tbilisi
2008-12-08 21:30 465 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Qyzylorda
2008-12-08 21:30 461 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Oral
2008-12-08 21:30 457 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Araguaina
2008-12-08 21:30 453 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Aqtobe
2008-12-08 21:30 453 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Aqtau
2008-12-08 21:30 453 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Almaty
2008-12-08 21:30 441 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Choibalsan
2008-12-08 21:30 437 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Ulaanbaatar
2008-12-08 21:30 437 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Hovd
2008-12-08 21:30 42721746 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\rt.jar
2008-12-08 21:30 4221 --a------ c:\programmi\File comuni\i4j_jres\jre1\COPYRIGHT
2008-12-08 21:30 393 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Macau
2008-12-08 21:30 393 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Maceio
2008-12-08 21:30 3828 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\flavormap.properties
2008-12-08 21:30 382 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\management-agent.jar
2008-12-08 21:30 381 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Taipei
2008-12-08 21:30 3789 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_zh_TW.properties
2008-12-08 21:30 3789 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_zh_HK.properties
2008-12-08 21:30 377 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Recife
2008-12-08 21:30 377 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Noronha
2008-12-08 21:30 377 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Fortaleza
2008-12-08 21:30 3746 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_zh_CN.properties
2008-12-08 21:30 37376 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\j2pkcs11.dll
2008-12-08 21:30 36352 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\JdbcOdbc.dll
2008-12-08 21:30 3501 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_fr.properties
2008-12-08 21:30 348160 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\msvcr71.dll
2008-12-08 21:30 345 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Port-au-Prince
2008-12-08 21:30 341 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Danmarkshavn
2008-12-08 21:30 3403 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_es.properties
2008-12-08 21:30 3376 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\management\snmp.acl.template
2008-12-08 21:30 337 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Khartoum
2008-12-08 21:30 335872 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\fontmanager.dll
2008-12-08 21:30 333 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Algiers
2008-12-08 21:30 3304 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_sv.properties
2008-12-08 21:30 329104 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jucheck.exe
2008-12-08 21:30 329 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Boa_Vista
2008-12-08 21:30 3213 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_de.properties
2008-12-08 21:30 31744 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\verify.dll
2008-12-08 21:30 31632 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\sunmscapi.jar
2008-12-08 21:30 3160 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages_it.properties
2008-12-08 21:30 3144 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\cmm\sRGB.pf
2008-12-08 21:30 313 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Manaus
2008-12-08 21:30 313 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Eirunepe
2008-12-08 21:30 313 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Freetown
2008-12-08 21:30 3070 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\psfont.properties.ja
2008-12-08 21:30 3070 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\net.properties
2008-12-08 21:30 3058 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\fontconfig.bfc
2008-12-08 21:30 297 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Rio_Branco
2008-12-08 21:30 297 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Porto_Velho
2008-12-08 21:30 297 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Belem
2008-12-08 21:30 2940 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\local_policy.jar
2008-12-08 21:30 293 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Tripoli
2008-12-08 21:30 2856 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\management\jmxremote.password.template
2008-12-08 21:30 285 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Rarotonga
2008-12-08 21:30 2807 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\jvm.hprof.txt
2008-12-08 21:30 2710 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\fontconfig.98.bfc
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\YST9
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\PST8
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\MST7
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\HST10
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\EST5
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\CST6
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\AST4
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Port_Moresby
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Johnston
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\MST
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Cocos
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Indian\Christmas
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\HST
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\GMT
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\UTC
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\UCT
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+9
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+8
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+7
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+6
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+5
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+4
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+3
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+2
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+12
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+11
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+10
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT+1
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-9
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-8
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-7
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-6
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-5
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-4
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-3
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-2
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-14
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-13
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-12
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-11
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-10
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Etc\GMT-1
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\EST
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\South_Georgia
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Lubumbashi
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Lome
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Kinshasa
2008-12-08 21:30 27 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Bujumbura
2008-12-08 21:30 269 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Ashgabat
2008-12-08 21:30 2661 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\messages.properties
2008-12-08 21:30 26112 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\tnameserv.exe
2008-12-08 21:30 261 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Tashkent
2008-12-08 21:30 261 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Samarkand
2008-12-08 21:30 261 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Dushanbe
2008-12-08 21:30 2605062 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy.jar
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\servertool.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\rmiregistry.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\rmid.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\policytool.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\pack200.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\orbd.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\ktab.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\klist.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\kinit.exe
2008-12-08 21:30 25600 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\keytool.exe
2008-12-08 21:30 25088 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\java-rmi.exe
2008-12-08 21:30 24701 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\w2k_lsa_auth.dll
2008-12-08 21:30 2469 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\US_export_policy.jar
2008-12-08 21:30 241 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Swift_Current
2008-12-08 21:30 237568 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\regutils.dll
2008-12-08 21:30 2351 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\management\jmxremote.access
2008-12-08 21:30 2334720 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\client\jvm.dll
2008-12-08 21:30 233 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Efate
2008-12-08 21:30 233 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Jamaica
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\YST9YDT
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\PST8PDT
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\MST7MDT
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\EST5EDT
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\CST6CDT
2008-12-08 21:30 2288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\SystemV\AST4ADT
2008-12-08 21:30 2245 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\logging.properties
2008-12-08 21:30 224493 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\sunpkcs11.jar
2008-12-08 21:30 2221 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\java.policy
2008-12-08 21:30 221 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Lindeman
2008-12-08 21:30 217 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kuching
2008-12-08 21:30 213 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Casablanca
2008-12-08 21:30 205 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Perth
2008-12-08 21:30 205 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Eucla
2008-12-08 21:30 205 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Harbin
2008-12-08 21:30 20480 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\nio.dll
2008-12-08 21:30 2024 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\London
2008-12-08 21:30 201 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Shanghai
2008-12-08 21:30 201 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Santo_Domingo
2008-12-08 21:30 2000 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\St_Johns
2008-12-08 21:30 1990 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\meta-index
2008-12-08 21:30 1960 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\New_York
2008-12-08 21:30 1960 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Chicago
2008-12-08 21:30 193 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kashgar
2008-12-08 21:30 1928 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Toronto
2008-12-08 21:30 1928 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Montreal
2008-12-08 21:30 192512 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\cmm.dll
2008-12-08 21:30 192391 --a------ c:\programmi\File comuni\i4j_jres\jre1\THIRDPARTYLICENSEREADME.txt
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi dominique87 » 12/12/08 11:15

2008-12-08 21:30 1916 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Dublin
2008-12-08 21:30 1908 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Halifax
2008-12-08 21:30 19005 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\servicetag\jdk_header.png
2008-12-08 21:30 189 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Brisbane
2008-12-08 21:30 189 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Hermosillo
2008-12-08 21:30 1868 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Lisbon
2008-12-08 21:30 1868 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Azores
2008-12-08 21:30 1864 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Madeira
2008-12-08 21:30 185 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Managua
2008-12-08 21:30 185 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Lima
2008-12-08 21:30 18432 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\management.dll
2008-12-08 21:30 18432 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jsoundds.dll
2008-12-08 21:30 181 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Urumqi
2008-12-08 21:30 181 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Chongqing
2008-12-08 21:30 181 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Accra
2008-12-08 21:30 1732 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Moncton
2008-12-08 21:30 1728 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Goose_Bay
2008-12-08 21:30 170239 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\ext\sunjce_provider.jar
2008-12-08 21:30 16896 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\dt_shmem.dll
2008-12-08 21:30 16801 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\deploy\ffjcext.zip
2008-12-08 21:30 168 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_LinkDrop32x32.gif
2008-12-08 21:30 167936 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jdwp.dll
2008-12-08 21:30 1676 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Gibraltar
2008-12-08 21:30 165 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Seoul
2008-12-08 21:30 165 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_CopyDrop32x32.gif
2008-12-08 21:30 16384 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\sunmscapi.dll
2008-12-08 21:30 1592 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Vancouver
2008-12-08 21:30 15872 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\hpi.dll
2008-12-08 21:30 1576 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Monaco
2008-12-08 21:30 15733 --a------ c:\programmi\File comuni\i4j_jres\jre1\README.txt
2008-12-08 21:30 1568 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Paris
2008-12-08 21:30 1568 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Luxembourg
2008-12-08 21:30 1564 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Brussels
2008-12-08 21:30 1560 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Winnipeg
2008-12-08 21:30 1560 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Los_Angeles
2008-12-08 21:30 1544 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Amsterdam
2008-12-08 21:30 153 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_MoveNoDrop32x32.gif
2008-12-08 21:30 153 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_LinkNoDrop32x32.gif
2008-12-08 21:30 153 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_CopyNoDrop32x32.gif
2008-12-08 21:30 153 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\invalid32x32.gif
2008-12-08 21:30 1500 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Kentucky\Louisville
2008-12-08 21:30 1500 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Cairo
2008-12-08 21:30 147456 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jsound.dll
2008-12-08 21:30 147456 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpeg.dll
2008-12-08 21:30 147 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\win32_MoveDrop32x32.gif
2008-12-08 21:30 1464 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Istanbul
2008-12-08 21:30 145 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kuala_Lumpur
2008-12-08 21:30 144784 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jusched.exe
2008-12-08 21:30 1447 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\client\Xusage.txt
2008-12-08 21:30 1440 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Rome
2008-12-08 21:30 1440 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Malta
2008-12-08 21:30 143360 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\dcpr.dll
2008-12-08 21:30 14336 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\java_crw_demo.dll
2008-12-08 21:30 1416 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Warsaw
2008-12-08 21:30 1416 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Madrid
2008-12-08 21:30 141 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Phoenix
2008-12-08 21:30 14006 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\ZoneInfoMappings
2008-12-08 21:30 139264 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\hprof.dll
2008-12-08 21:30 137 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Guatemala
2008-12-08 21:30 137 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Costa_Rica
2008-12-08 21:30 137 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Barbados
2008-12-08 21:30 1368 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Santiago
2008-12-08 21:30 135168 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\javaw.exe
2008-12-08 21:30 135168 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\java.exe
2008-12-08 21:30 1348 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Auckland
2008-12-08 21:30 1340 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Havana
2008-12-08 21:30 1336 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Denver
2008-12-08 21:30 13312 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\dt_socket.dll
2008-12-08 21:30 133 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Tongatapu
2008-12-08 21:30 133 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Singapore
2008-12-08 21:30 132496 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjpi160_06.dll
2008-12-08 21:30 132 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\security\javaws.policy
2008-12-08 21:30 1318 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\images\cursors\cursors.properties
2008-12-08 21:30 1316 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Edmonton
2008-12-08 21:30 1312 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Budapest
2008-12-08 21:30 131072 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\splashscreen.dll
2008-12-08 21:30 13068 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\management\management.properties
2008-12-08 21:30 1304 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Knox
2008-12-08 21:30 1300 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Damascus
2008-12-08 21:30 129 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Jakarta
2008-12-08 21:30 129 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Colombo
2008-12-08 21:30 1288 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Hobart
2008-12-08 21:30 1284 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Nassau
2008-12-08 21:30 1284 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Boise
2008-12-08 21:30 12800 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\ioser12.dll
2008-12-08 21:30 1276 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Tijuana
2008-12-08 21:30 1276 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\North_Dakota\New_Salem
2008-12-08 21:30 1276 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\North_Dakota\Center
2008-12-08 21:30 1272 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\PST8PDT
2008-12-08 21:30 1272 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\MST7MDT
2008-12-08 21:30 1272 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\EST5EDT
2008-12-08 21:30 1272 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\CST6CDT
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npoji610.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjava32.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjava14.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjava13.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjava12.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\npjava11.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpishare.dll
2008-12-08 21:30 126976 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\java.dll
2008-12-08 21:30 12602 --a------ c:\programmi\File comuni\i4j_jres\jre1\LICENSE
2008-12-08 21:30 1260 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Kentucky\Monticello
2008-12-08 21:30 125 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Darwin
2008-12-08 21:30 125 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Tokyo
2008-12-08 21:30 125 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Pontianak
2008-12-08 21:30 125 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Manila
2008-12-08 21:30 1248 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Easter
2008-12-08 21:30 1236 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Berlin
2008-12-08 21:30 1236 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Jerusalem
2008-12-08 21:30 1236 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Gaza
2008-12-08 21:30 122880 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\unpack200.exe
2008-12-08 21:30 1228 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Nome
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Sydney
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Melbourne
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Currie
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Broken_Hill
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Adelaide
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Juneau
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Anchorage
2008-12-08 21:30 1224 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Adak
2008-12-08 21:30 1220 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Yakutat
2008-12-08 21:30 1216 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Prague
2008-12-08 21:30 1216 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Oslo
2008-12-08 21:30 1216 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Menominee
2008-12-08 21:30 1215 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\calendars.properties
2008-12-08 21:30 1212 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Chisinau
2008-12-08 21:30 1210 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\sound.properties
2008-12-08 21:30 121 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Noumea
2008-12-08 21:30 121 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Karachi
2008-12-08 21:30 121 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Tegucigalpa
2008-12-08 21:30 1208 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Beirut
2008-12-08 21:30 1204 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Glace_Bay
2008-12-08 21:30 1200 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Vienna
2008-12-08 21:30 1200 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Detroit
2008-12-08 21:30 1196 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Athens
2008-12-08 21:30 1188 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Thunder_Bay
2008-12-08 21:30 1180 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Bucharest
2008-12-08 21:30 117 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Honolulu
2008-12-08 21:30 1168 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\MET
2008-12-08 21:30 1168 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\CET
2008-12-08 21:30 1164 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Tirane
2008-12-08 21:30 1152 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Moscow
2008-12-08 21:30 1152 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Copenhagen
2008-12-08 21:30 1152 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Montevideo
2008-12-08 21:30 114688 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\axbridge.dll
2008-12-08 21:30 1144 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Rainy_River
2008-12-08 21:30 1144 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Nipigon
2008-12-08 21:30 1140 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Kaliningrad
2008-12-08 21:30 1124 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Chatham
2008-12-08 21:30 1124 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Bermuda
2008-12-08 21:30 1124 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\McMurdo
2008-12-08 21:30 1116 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Nicosia
2008-12-08 21:30 1116 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Sao_Paulo
2008-12-08 21:30 1116 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Campo_Grande
2008-12-08 21:30 1116 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Asuncion
2008-12-08 21:30 1112 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Ceuta
2008-12-08 21:30 1110580 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\resources.jar
2008-12-08 21:30 1108 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Riga
2008-12-08 21:30 1108 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Whitehorse
2008-12-08 21:30 1108 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Dawson
2008-12-08 21:30 110592 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\wsdetect.dll
2008-12-08 21:30 110592 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jpiexp.dll
2008-12-08 21:30 1104 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Antarctica\Palmer
2008-12-08 21:30 1100 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Cuiaba
2008-12-08 21:30 1088 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Sofia
2008-12-08 21:30 1080 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Tallinn
2008-12-08 21:30 1080 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Stanley
2008-12-08 21:30 1076 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Pangnirtung
2008-12-08 21:30 1076 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Cambridge_Bay
2008-12-08 21:30 1072 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Zaporozhye
2008-12-08 21:30 1072 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\EET
2008-12-08 21:30 1068 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\WET
2008-12-08 21:30 1068 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Yellowknife
2008-12-08 21:30 10669 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\psfontj2d.properties
2008-12-08 21:30 1064 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Simferopol
2008-12-08 21:30 1064 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Minsk
2008-12-08 21:30 1064 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Iqaluit
2008-12-08 21:30 1060864 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\awt.dll
2008-12-08 21:30 1060 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Vilnius
2008-12-08 21:30 1060 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Inuvik
2008-12-08 21:30 1056 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Zurich
2008-12-08 21:30 1056 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\San_Juan
2008-12-08 21:30 1056 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\La_Rioja
2008-12-08 21:30 1052 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Uzhgorod
2008-12-08 21:30 1052 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Amman
2008-12-08 21:30 1052 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Rankin_Inlet
2008-12-08 21:30 105 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Pacific\Fiji
2008-12-08 21:30 105 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\El_Salvador
2008-12-08 21:30 105 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Africa\Johannesburg
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Kiev
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Novosibirsk
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Ushuaia
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Tucuman
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Rio_Gallegos
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Mendoza
2008-12-08 21:30 1048 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Catamarca
2008-12-08 21:30 1044 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Canary
2008-12-08 21:30 1044 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Sakhalin
2008-12-08 21:30 1044 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Anadyr
2008-12-08 21:30 1044 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Grand_Turk
2008-12-08 21:30 1044 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\cmm\LINEAR_RGB.pf
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Stockholm
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Samara
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Belgrade
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Yekaterinburg
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Yakutsk
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Vladivostok
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Omsk
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Magadan
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Krasnoyarsk
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Kamchatka
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Irkutsk
2008-12-08 21:30 1040 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Scoresbysund
2008-12-08 21:30 1036 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Helsinki
2008-12-08 21:30 1036 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Godthab
2008-12-08 21:30 1032 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Jujuy
2008-12-08 21:30 1032 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Cordoba
2008-12-08 21:30 1032 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Argentina\Buenos_Aires
2008-12-08 21:30 10240 --a------ c:\programmi\File comuni\i4j_jres\jre1\bin\jaas_nt.dll
2008-12-08 21:30 1024 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Volgograd
2008-12-08 21:30 10217 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\im\indicim.jar
2008-12-08 21:30 1016 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Atlantic\Faroe
2008-12-08 21:30 1016 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Yerevan
2008-12-08 21:30 1012 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Australia\Lord_Howe
2008-12-08 21:30 101 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Pyongyang
2008-12-08 21:30 101 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Paramaribo
2008-12-08 21:30 1008 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Europe\Vaduz
2008-12-08 21:30 1004 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\Asia\Baghdad
2008-12-08 21:30 1004 --a------ c:\programmi\File comuni\i4j_jres\jre1\lib\zi\America\Indiana\Petersburg


((((((((((((((((((((((((((((( snapshot@2008-12-11_16.11.12.32 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-06-14 17:32:08 272,768 ------w c:\windows\Driver Cache\i386\bthport.sys
+ 2008-10-24 11:21:09 455,296 ------w c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2008-08-14 13:22:07 2,148,864 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-08-14 13:22:50 2,069,760 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-08-14 13:22:06 2,027,520 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-08-14 13:22:50 2,192,896 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-05-08 16:27:05 124,928 -c----w c:\windows\ie7updates\KB958215-IE7\advpack.dll
+ 2008-05-08 16:27:06 347,136 -c----w c:\windows\ie7updates\KB958215-IE7\dxtmsft.dll
+ 2008-05-08 16:27:06 214,528 -c----w c:\windows\ie7updates\KB958215-IE7\dxtrans.dll
+ 2008-05-08 16:27:06 132,608 -c----w c:\windows\ie7updates\KB958215-IE7\extmgr.dll
+ 2008-05-08 16:27:26 63,488 -c----w c:\windows\ie7updates\KB958215-IE7\icardie.dll
+ 2008-05-08 16:27:07 70,656 -c----w c:\windows\ie7updates\KB958215-IE7\ie4uinit.exe
+ 2008-05-08 16:27:07 153,088 -c----w c:\windows\ie7updates\KB958215-IE7\ieakeng.dll
+ 2008-05-08 16:27:07 230,400 -c----w c:\windows\ie7updates\KB958215-IE7\ieaksie.dll
+ 2008-05-08 16:27:08 161,792 -c----w c:\windows\ie7updates\KB958215-IE7\ieakui.dll
+ 2008-05-08 16:27:31 383,488 -c----w c:\windows\ie7updates\KB958215-IE7\ieapfltr.dll
+ 2008-05-08 16:27:08 388,608 -c----w c:\windows\ie7updates\KB958215-IE7\iedkcs32.dll
+ 2008-05-08 16:27:37 6,067,712 -c----w c:\windows\ie7updates\KB958215-IE7\ieframe.dll
+ 2008-05-08 16:27:09 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\iernonce.dll
+ 2008-05-08 16:27:39 267,776 -c----w c:\windows\ie7updates\KB958215-IE7\iertutil.dll
+ 2008-05-08 16:27:39 13,824 -c----w c:\windows\ie7updates\KB958215-IE7\ieudinit.exe
+ 2008-05-08 16:27:10 625,664 -c----w c:\windows\ie7updates\KB958215-IE7\iexplore.exe
+ 2008-05-08 16:27:15 27,648 -c----w c:\windows\ie7updates\KB958215-IE7\jsproxy.dll
+ 2008-05-08 16:27:40 459,264 -c----w c:\windows\ie7updates\KB958215-IE7\msfeeds.dll
+ 2008-05-08 16:27:40 52,224 -c----w c:\windows\ie7updates\KB958215-IE7\msfeedsbs.dll
+ 2008-05-08 16:27:19 3,593,216 -c----w c:\windows\ie7updates\KB958215-IE7\mshtml.dll
+ 2008-05-08 16:27:21 478,208 -c----w c:\windows\ie7updates\KB958215-IE7\mshtmled.dll
+ 2008-05-08 16:27:22 193,024 -c----w c:\windows\ie7updates\KB958215-IE7\msrating.dll
+ 2008-05-08 16:27:22 671,232 -c----w c:\windows\ie7updates\KB958215-IE7\mstime.dll
+ 2008-05-08 16:27:22 102,912 -c----w c:\windows\ie7updates\KB958215-IE7\occache.dll
+ 2008-05-08 16:27:23 44,544 -c----w c:\windows\ie7updates\KB958215-IE7\pngfilt.dll
+ 2007-03-06 01:48:14 215,776 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:49:24 390,880 -c----w c:\windows\ie7updates\KB958215-IE7\spuninst\updspapi.dll
+ 2008-05-08 16:27:23 105,984 -c----w c:\windows\ie7updates\KB958215-IE7\url.dll
+ 2008-05-08 16:27:24 1,162,752 -c----w c:\windows\ie7updates\KB958215-IE7\urlmon.dll
+ 2008-05-08 16:27:25 233,472 -c----w c:\windows\ie7updates\KB958215-IE7\webcheck.dll
+ 2008-05-08 16:27:26 827,392 -c----w c:\windows\ie7updates\KB958215-IE7\wininet.dll
- 2008-05-08 16:27:05 124,928 ----a-w c:\windows\system32\advpack.dll
+ 2008-10-16 19:32:32 124,928 ----a-w c:\windows\system32\advpack.dll
+ 2008-11-26 17:21:30 1,236,208 ----a-w c:\windows\system32\aswBoot.exe
+ 2008-11-26 17:15:10 97,480 ----a-w c:\windows\system32\AvastSS.scr
- 2008-04-13 17:14:04 139,264 ----a-w c:\windows\system32\cscript.exe
+ 2008-05-07 09:07:23 135,168 ----a-w c:\windows\system32\cscript.exe
- 2008-05-08 16:27:05 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll
+ 2008-10-16 19:32:32 124,928 -c--a-w c:\windows\system32\dllcache\advpack.dll
- 2008-04-13 10:19:24 138,112 -c--a-w c:\windows\system32\dllcache\afd.sys
+ 2008-08-14 10:04:36 138,496 -c--a-w c:\windows\system32\dllcache\afd.sys
- 2008-05-08 16:26:48 92,504 -c--a-w c:\windows\system32\dllcache\cdm.dll
+ 2008-10-16 13:09:44 92,696 -c--a-w c:\windows\system32\dllcache\cdm.dll
- 2008-04-13 17:14:04 139,264 -c--a-w c:\windows\system32\dllcache\cscript.exe
+ 2008-05-07 09:07:23 135,168 -c--a-w c:\windows\system32\dllcache\cscript.exe
- 2008-05-08 16:27:06 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll
+ 2008-10-16 19:32:32 347,136 -c--a-w c:\windows\system32\dllcache\dxtmsft.dll
- 2008-05-08 16:27:06 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll
+ 2008-10-16 19:32:32 214,528 -c--a-w c:\windows\system32\dllcache\dxtrans.dll
- 2008-04-13 17:13:40 246,272 -c--a-w c:\windows\system32\dllcache\es.dll
+ 2008-07-07 20:27:44 253,952 -c--a-w c:\windows\system32\dllcache\es.dll
- 2008-05-08 16:27:06 132,608 -c--a-w c:\windows\system32\dllcache\extmgr.dll
+ 2008-10-16 19:32:33 132,608 -c--a-w c:\windows\system32\dllcache\extmgr.dll
- 2008-04-13 17:13:40 285,184 -c--a-w c:\windows\system32\dllcache\gdi32.dll
+ 2008-10-23 12:36:14 286,720 -c--a-w c:\windows\system32\dllcache\gdi32.dll
- 2008-05-08 16:27:07 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-10-16 12:46:08 70,656 -c--a-w c:\windows\system32\dllcache\ie4uinit.exe
- 2008-05-08 16:27:07 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll
+ 2008-10-16 19:32:33 153,088 -c--a-w c:\windows\system32\dllcache\ieakeng.dll
- 2008-05-08 16:27:07 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll
+ 2008-10-16 19:32:33 230,400 -c--a-w c:\windows\system32\dllcache\ieaksie.dll
- 2008-05-08 16:27:08 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll
+ 2008-10-15 06:33:26 161,792 -c--a-w c:\windows\system32\dllcache\ieakui.dll
- 2008-05-08 16:27:08 388,608 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-10-16 19:32:33 388,608 -c--a-w c:\windows\system32\dllcache\iedkcs32.dll
- 2008-05-08 16:27:09 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll
+ 2008-10-16 19:32:35 44,544 -c--a-w c:\windows\system32\dllcache\iernonce.dll
- 2008-05-08 16:27:10 625,664 -c--a-w c:\windows\system32\dllcache\iexplore.exe
+ 2008-10-15 06:34:58 633,632 -c--a-w c:\windows\system32\dllcache\iexplore.exe
- 2008-04-13 17:13:42 512,000 -c--a-w c:\windows\system32\dllcache\jscript.dll
+ 2008-05-09 10:53:49 512,000 -c--a-w c:\windows\system32\dllcache\jscript.dll
- 2008-05-08 16:27:15 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll
+ 2008-10-16 19:32:35 27,648 -c--a-w c:\windows\system32\dllcache\jsproxy.dll
- 2007-01-19 15:07:02 100,864 -c--a-w c:\windows\system32\dllcache\logagent.exe
+ 2008-06-18 00:09:22 100,864 -c--a-w c:\windows\system32\dllcache\logagent.exe
- 2008-04-13 17:13:44 331,776 -c--a-w c:\windows\system32\dllcache\msadce.dll
+ 2008-05-01 14:34:52 331,776 -c--a-w c:\windows\system32\dllcache\msadce.dll
- 2008-04-13 17:13:44 73,728 -c--a-w c:\windows\system32\dllcache\mscms.dll
+ 2008-06-24 16:42:56 74,240 -c--a-w c:\windows\system32\dllcache\mscms.dll
- 2008-05-08 16:27:19 3,593,216 -c--a-w c:\windows\system32\dllcache\mshtml.dll
+ 2008-10-16 19:32:37 3,595,264 -c--a-w c:\windows\system32\dllcache\mshtml.dll
- 2008-05-08 16:27:21 478,208 -c--a-w c:\windows\system32\dllcache\mshtmled.dll
+ 2008-10-16 19:32:37 477,696 -c--a-w c:\windows\system32\dllcache\mshtmled.dll
- 2008-05-08 16:27:22 193,024 -c--a-w c:\windows\system32\dllcache\msrating.dll
+ 2008-10-16 19:32:37 193,024 -c--a-w c:\windows\system32\dllcache\msrating.dll
- 2008-05-08 16:27:22 671,232 -c--a-w c:\windows\system32\dllcache\mstime.dll
+ 2008-10-16 19:32:37 671,232 -c--a-w c:\windows\system32\dllcache\mstime.dll
- 2008-04-13 17:13:48 1,104,896 -c--a-w c:\windows\system32\dllcache\msxml3.dll
+ 2008-09-04 17:15:03 1,106,944 -c--a-w c:\windows\system32\dllcache\msxml3.dll
- 2008-04-13 17:13:48 1,306,624 -c--a-w c:\windows\system32\dllcache\msxml6.dll
+ 2008-09-10 01:14:02 1,307,648 -c--a-w c:\windows\system32\dllcache\msxml6.dll
- 2008-04-13 17:13:48 337,408 -c--a-w c:\windows\system32\dllcache\netapi32.dll
+ 2008-10-15 16:36:15 337,408 -c--a-w c:\windows\system32\dllcache\netapi32.dll
- 2008-05-08 16:27:22 102,912 -c--a-w c:\windows\system32\dllcache\occache.dll
+ 2008-10-16 19:32:37 102,912 -c--a-w c:\windows\system32\dllcache\occache.dll
- 2008-05-08 16:27:23 44,544 -c--a-w c:\windows\system32\dllcache\pngfilt.dll
+ 2008-10-16 19:32:37 44,544 -c--a-w c:\windows\system32\dllcache\pngfilt.dll
- 2008-04-13 17:13:50 1,293,312 -c--a-w c:\windows\system32\dllcache\quartz.dll
+ 2008-05-07 05:10:16 1,293,312 -c--a-w c:\windows\system32\dllcache\quartz.dll
- 2008-04-13 09:55:10 202,624 -c--a-w c:\windows\system32\dllcache\rmcast.sys
+ 2008-05-08 14:02:52 203,136 -c--a-w c:\windows\system32\dllcache\rmcast.sys
- 2008-04-13 17:13:50 180,224 -c--a-w c:\windows\system32\dllcache\scrobj.dll
+ 2008-05-09 10:53:49 180,224 -c--a-w c:\windows\system32\dllcache\scrobj.dll
- 2008-04-13 17:13:50 172,032 -c--a-w c:\windows\system32\dllcache\scrrun.dll
+ 2008-05-09 10:53:49 172,032 -c--a-w c:\windows\system32\dllcache\scrrun.dll
- 2008-04-13 10:15:12 334,848 -c--a-w c:\windows\system32\dllcache\srv.sys
+ 2008-09-08 10:41:42 333,824 -c--a-w c:\windows\system32\dllcache\srv.sys
- 2008-04-13 17:13:56 246,814 -c--a-w c:\windows\system32\dllcache\strmdll.dll
+ 2008-10-03 10:02:46 247,326 -c--a-w c:\windows\system32\dllcache\strmdll.dll
- 2008-05-08 16:27:23 105,984 -c--a-w c:\windows\system32\dllcache\url.dll
+ 2008-10-16 19:32:37 105,984 -c--a-w c:\windows\system32\dllcache\url.dll
- 2008-05-08 16:27:24 1,162,752 -c--a-w c:\windows\system32\dllcache\urlmon.dll
+ 2008-10-16 19:32:37 1,163,264 -c--a-w c:\windows\system32\dllcache\urlmon.dll
- 2008-04-13 17:13:56 434,176 -c--a-w c:\windows\system32\dllcache\vbscript.dll
+ 2008-05-09 10:53:50 430,080 -c--a-w c:\windows\system32\dllcache\vbscript.dll
- 2008-05-08 16:27:25 233,472 -c--a-w c:\windows\system32\dllcache\webcheck.dll
+ 2008-10-16 19:32:37 233,472 -c--a-w c:\windows\system32\dllcache\webcheck.dll
- 2008-04-13 16:50:32 1,845,632 -c--a-w c:\windows\system32\dllcache\win32k.sys
+ 2008-09-15 15:24:38 1,846,400 -c--a-w c:\windows\system32\dllcache\win32k.sys
- 2008-05-08 16:27:26 827,392 -c--a-w c:\windows\system32\dllcache\wininet.dll
+ 2008-10-16 19:32:38 827,904 -c--a-w c:\windows\system32\dllcache\wininet.dll
- 2007-12-24 14:52:00 937,984 -c--a-w c:\windows\system32\dllcache\wmnetmgr.dll
+ 2008-06-18 04:03:08 938,496 -c--a-w c:\windows\system32\dllcache\WMNetmgr.dll
- 2008-03-29 16:39:30 2,457,600 -c--a-w c:\windows\system32\dllcache\wmvcore.dll
+ 2008-06-18 04:03:14 2,458,112 -c--a-w c:\windows\system32\dllcache\WMVCore.dll
- 2008-04-13 17:14:26 155,648 -c--a-w c:\windows\system32\dllcache\wscript.exe
+ 2008-05-08 11:24:44 155,648 -c--a-w c:\windows\system32\dllcache\wscript.exe
- 2008-04-13 17:13:58 90,112 -c--a-w c:\windows\system32\dllcache\wshext.dll
+ 2008-05-09 10:53:50 90,112 -c--a-w c:\windows\system32\dllcache\wshext.dll
- 2008-05-08 16:26:49 549,720 -c--a-w c:\windows\system32\dllcache\wuapi.dll
+ 2008-10-16 13:12:20 561,688 -c--a-w c:\windows\system32\dllcache\wuapi.dll
- 2008-05-08 16:26:49 53,080 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
+ 2008-10-16 13:09:44 51,224 -c--a-w c:\windows\system32\dllcache\wuauclt.exe
- 2008-05-08 16:26:51 1,712,984 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 13:13:40 1,809,944 -c--a-w c:\windows\system32\dllcache\wuaueng.dll
- 2008-05-08 16:26:52 325,976 -c--a-w c:\windows\system32\dllcache\wucltui.dll
+ 2008-10-16 13:12:22 323,608 -c--a-w c:\windows\system32\dllcache\wucltui.dll
- 2008-05-08 16:26:52 33,624 -c--a-w c:\windows\system32\dllcache\wups.dll
+ 2008-10-16 13:08:58 34,328 -c--a-w c:\windows\system32\dllcache\wups.dll
- 2008-05-08 16:26:52 203,096 -c--a-w c:\windows\system32\dllcache\wuweb.dll
+ 2008-10-16 13:13:40 202,776 -c--a-w c:\windows\system32\dllcache\wuweb.dll
+ 2008-11-26 17:15:35 26,944 ----a-w c:\windows\system32\drivers\aavmker4.sys
- 2008-04-13 10:19:24 138,112 ----a-w c:\windows\system32\drivers\afd.sys
+ 2008-08-14 10:04:36 138,496 ----a-w c:\windows\system32\drivers\afd.sys
+ 2008-11-26 17:17:25 20,560 ----a-w c:\windows\system32\drivers\aswFsBlk.sys
+ 2008-11-26 17:18:25 93,296 ----a-w c:\windows\system32\drivers\aswmon.sys
+ 2008-11-26 17:18:18 94,032 ----a-w c:\windows\system32\drivers\aswmon2.sys
+ 2008-11-26 17:16:29 23,152 ----a-w c:\windows\system32\drivers\aswRdr.sys
+ 2008-11-26 17:17:36 111,184 ----a-w c:\windows\system32\drivers\aswSP.sys
+ 2008-11-26 17:16:38 50,864 ----a-w c:\windows\system32\drivers\aswTdi.sys
- 2008-04-13 09:55:10 202,624 ----a-w c:\windows\system32\drivers\RMCast.sys
+ 2008-05-08 14:02:52 203,136 ----a-w c:\windows\system32\drivers\rmcast.sys
- 2008-04-13 10:15:12 334,848 ----a-w c:\windows\system32\drivers\srv.sys
+ 2008-09-08 10:41:42 333,824 ----a-w c:\windows\system32\drivers\srv.sys
- 2008-05-08 16:27:06 347,136 ----a-w c:\windows\system32\dxtmsft.dll
+ 2008-10-16 19:32:32 347,136 ----a-w c:\windows\system32\dxtmsft.dll
- 2008-05-08 16:27:06 214,528 ----a-w c:\windows\system32\dxtrans.dll
+ 2008-10-16 19:32:32 214,528 ----a-w c:\windows\system32\dxtrans.dll
- 2008-04-13 17:13:40 246,272 ----a-w c:\windows\system32\es.dll
+ 2008-07-07 20:27:44 253,952 ----a-w c:\windows\system32\es.dll
- 2008-05-08 16:27:06 132,608 ----a-w c:\windows\system32\extmgr.dll
+ 2008-10-16 19:32:33 132,608 ----a-w c:\windows\system32\extmgr.dll
- 2008-12-05 16:08:04 261,432 ----a-w c:\windows\system32\FNTCACHE.DAT
+ 2008-12-12 09:57:05 261,432 ----a-w c:\windows\system32\FNTCACHE.DAT
- 2008-05-08 16:27:26 63,488 ----a-w c:\windows\system32\icardie.dll
+ 2008-10-16 19:32:33 63,488 ----a-w c:\windows\system32\icardie.dll
- 2008-05-08 16:27:07 70,656 ----a-w c:\windows\system32\ie4uinit.exe
+ 2008-10-16 12:46:08 70,656 ----a-w c:\windows\system32\ie4uinit.exe
- 2008-05-08 16:27:07 153,088 ----a-w c:\windows\system32\ieakeng.dll
+ 2008-10-16 19:32:33 153,088 ----a-w c:\windows\system32\ieakeng.dll
- 2008-05-08 16:27:07 230,400 ----a-w c:\windows\system32\ieaksie.dll
+ 2008-10-16 19:32:33 230,400 ----a-w c:\windows\system32\ieaksie.dll
- 2008-05-08 16:27:08 161,792 ----a-w c:\windows\system32\ieakui.dll
+ 2008-10-15 06:33:26 161,792 ----a-w c:\windows\system32\ieakui.dll
- 2008-05-08 16:27:31 383,488 ----a-w c:\windows\system32\ieapfltr.dll
+ 2008-10-16 19:32:33 380,928 ----a-w c:\windows\system32\ieapfltr.dll
- 2008-05-08 16:27:08 388,608 ----a-w c:\windows\system32\iedkcs32.dll
+ 2008-10-16 19:32:33 388,608 ----a-w c:\windows\system32\iedkcs32.dll
- 2008-05-08 16:27:37 6,067,712 ----a-w c:\windows\system32\ieframe.dll
+ 2008-10-16 19:32:35 6,068,224 ----a-w c:\windows\system32\ieframe.dll
- 2008-05-08 16:27:09 44,544 ----a-w c:\windows\system32\iernonce.dll
+ 2008-10-16 19:32:35 44,544 ----a-w c:\windows\system32\iernonce.dll
- 2008-05-08 16:27:39 267,776 ----a-w c:\windows\system32\iertutil.dll
+ 2008-10-16 19:32:35 267,776 ----a-w c:\windows\system32\iertutil.dll
- 2008-05-08 16:27:39 13,824 ----a-w c:\windows\system32\ieudinit.exe
+ 2008-10-16 12:46:08 13,824 ----a-w c:\windows\system32\ieudinit.exe
- 2008-04-13 17:13:42 512,000 ----a-w c:\windows\system32\jscript.dll
+ 2008-05-09 10:53:49 512,000 ----a-w c:\windows\system32\jscript.dll
- 2008-05-08 16:27:15 27,648 ----a-w c:\windows\system32\jsproxy.dll
+ 2008-10-16 19:32:35 27,648 ----a-w c:\windows\system32\jsproxy.dll
- 2007-01-19 15:07:02 100,864 ----a-w c:\windows\system32\logagent.exe
+ 2008-06-18 00:09:22 100,864 ----a-w c:\windows\system32\logagent.exe
+ 2003-03-18 20:20:00 1,060,864 ----a-w c:\windows\system32\MFC71.dll
- 2008-04-13 17:13:44 73,728 ----a-w c:\windows\system32\mscms.dll
+ 2008-06-24 16:42:56 74,240 ----a-w c:\windows\system32\mscms.dll
- 2008-05-08 16:27:40 459,264 ----a-w c:\windows\system32\msfeeds.dll
+ 2008-10-16 19:32:35 459,264 ----a-w c:\windows\system32\msfeeds.dll
- 2008-05-08 16:27:40 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
+ 2008-10-16 19:32:35 52,224 ----a-w c:\windows\system32\msfeedsbs.dll
- 2008-05-08 16:27:19 3,593,216 ----a-w c:\windows\system32\mshtml.dll
+ 2008-10-16 19:32:37 3,595,264 ----a-w c:\windows\system32\mshtml.dll
- 2008-05-08 16:27:21 478,208 ----a-w c:\windows\system32\mshtmled.dll
+ 2008-10-16 19:32:37 477,696 ----a-w c:\windows\system32\mshtmled.dll
- 2008-05-08 16:27:22 193,024 ----a-w c:\windows\system32\msrating.dll
+ 2008-10-16 19:32:37 193,024 ----a-w c:\windows\system32\msrating.dll
- 2008-05-08 16:27:22 671,232 ----a-w c:\windows\system32\mstime.dll
+ 2008-10-16 19:32:37 671,232 ----a-w c:\windows\system32\mstime.dll
+ 2003-03-18 19:14:52 499,712 ----a-w c:\windows\system32\MSVCP71.dll
+ 2003-02-21 03:42:22 348,160 ----a-w c:\windows\system32\MSVCR71.dll
- 2008-04-13 17:13:48 1,104,896 ----a-w c:\windows\system32\msxml3.dll
+ 2008-09-04 17:15:03 1,106,944 ----a-w c:\windows\system32\msxml3.dll
- 2008-04-13 17:13:48 1,306,624 ----a-w c:\windows\system32\msxml6.dll
+ 2008-09-10 01:14:02 1,307,648 ----a-w c:\windows\system32\msxml6.dll
- 2008-04-13 17:13:48 337,408 ----a-w c:\windows\system32\netapi32.dll
+ 2008-10-15 16:36:15 337,408 ----a-w c:\windows\system32\netapi32.dll
- 2008-04-13 17:25:00 2,027,520 ----a-w c:\windows\system32\ntkrnlpa.exe
+ 2008-08-14 13:22:06 2,027,520 ----a-w c:\windows\system32\ntkrnlpa.exe
- 2008-04-13 16:54:48 2,148,864 ----a-w c:\windows\system32\ntoskrnl.exe
+ 2008-08-14 13:22:07 2,148,864 ----a-w c:\windows\system32\ntoskrnl.exe
- 2008-05-08 16:27:22 102,912 ----a-w c:\windows\system32\occache.dll
+ 2008-10-16 19:32:37 102,912 ----a-w c:\windows\system32\occache.dll
- 2008-05-08 16:27:23 44,544 ----a-w c:\windows\system32\pngfilt.dll
+ 2008-10-16 19:32:37 44,544 ----a-w c:\windows\system32\pngfilt.dll
- 2008-04-13 17:13:50 1,293,312 ----a-w c:\windows\system32\quartz.dll
+ 2008-05-07 05:10:16 1,293,312 ----a-w c:\windows\system32\quartz.dll
- 2008-04-13 17:13:50 180,224 ----a-w c:\windows\system32\scrobj.dll
+ 2008-05-09 10:53:49 180,224 ----a-w c:\windows\system32\scrobj.dll
- 2008-04-13 17:13:50 172,032 ----a-w c:\windows\system32\scrrun.dll
+ 2008-05-09 10:53:49 172,032 ----a-w c:\windows\system32\scrrun.dll
+ 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
+ 2007-11-30 11:19:29 18,808 ------w c:\windows\system32\spmsg.dll
- 2008-04-13 17:14:24 60,416 ----a-w c:\windows\system32\tzchange.exe
+ 2008-10-23 10:06:59 62,976 ----a-w c:\windows\system32\tzchange.exe
- 2008-05-08 16:27:23 105,984 ----a-w c:\windows\system32\url.dll
+ 2008-10-16 19:32:37 105,984 ----a-w c:\windows\system32\url.dll
- 2008-05-08 16:27:24 1,162,752 ----a-w c:\windows\system32\urlmon.dll
+ 2008-10-16 19:32:37 1,163,264 ----a-w c:\windows\system32\urlmon.dll
- 2008-04-13 17:13:56 434,176 ----a-w c:\windows\system32\vbscript.dll
+ 2008-05-09 10:53:50 430,080 ----a-w c:\windows\system32\vbscript.dll
- 2008-05-08 16:27:25 233,472 ----a-w c:\windows\system32\webcheck.dll
+ 2008-10-16 19:32:37 233,472 ----a-w c:\windows\system32\webcheck.dll
- 2007-12-24 14:52:00 937,984 ----a-w c:\windows\system32\wmnetmgr.dll
+ 2008-06-18 04:03:08 938,496 ----a-w c:\windows\system32\WMNetmgr.dll
- 2007-01-19 15:06:22 295,936 ----a-w c:\windows\system32\wmpeffects.dll
+ 2008-06-24 17:12:58 295,936 ----a-w c:\windows\system32\wmpeffects.dll
- 2008-03-29 16:39:30 2,457,600 ----a-w c:\windows\system32\wmvcore.dll
+ 2008-06-18 04:03:14 2,458,112 ----a-w c:\windows\system32\WMVCore.dll
- 2008-04-13 17:14:26 155,648 ----a-w c:\windows\system32\wscript.exe
+ 2008-05-08 11:24:44 155,648 ----a-w c:\windows\system32\wscript.exe
- 2008-04-13 17:13:58 90,112 ----a-w c:\windows\system32\wshext.dll
+ 2008-05-09 10:53:50 90,112 ----a-w c:\windows\system32\wshext.dll
+ 2008-12-12 10:07:43 16,384 ----atw c:\windows\temp\Perflib_Perfdata_658.dat
+ 2008-04-15 17:47:48 1,724,416 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\GdiPlus.dll
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
"DAEMON Tools"="c:\programmi\DAEMON Tools\daemon.exe" [2006-11-12 157592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"MaxtorOneTouch"="c:\programmi\Maxtor\OneTouch\utils\Onetouch.exe" [2006-03-27 712704]
"mxomssmenu"="c:\programmi\Maxtor\OneTouch Status\maxmenumgr.exe" [2005-10-17 81920]
"PWRISOVM.EXE"="c:\programmi\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
"AppleSyncNotifier"="c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2008-05-27 413696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2008-07-30 289064]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
"C6501Sound"="c6501.cpl" [BU]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
"MsnMsgr"="c:\programmi\Windows Live\Messenger\MsnMsgr.Exe" [2008-05-08 5724184]

c:\documents and settings\domenico\Menu Avvio\Programmi\Esecuzione automatica\
Ritaglio schermata e avvio di OneNote 2007.lnk - c:\programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{4E007A5F-299F-44FC-8B6B-F06B61867A2E}"= "c:\windows\system32\byXQggDT.dll" [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wuauserv"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"c:\\Programmi\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"c:\\Programmi\\KONAMI\\Pro Evolution Soccer 2009\\pes2009.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Vuze\\Azureus.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Sports Interactive\\Football Manager 2009\\fm.exe"=

R0 nvcchflt;NVIDIA Disk Cache Filter Driver;c:\windows\system32\DRIVERS\nvcchflt.sys [2008-05-08 16640]
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-12-11 111184]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-12-11 20560]
R3 c65013264;C-Media CM6501 Like Sound UDAX Interface;c:\windows\system32\drivers\c6501.sys [2008-11-18 1305600]
S2 ASKService;ASKService;c:\programmi\AskBarDis\bar\bin\AskService.exe []
S2 ASKUpgrade;ASKUpgrade;c:\programmi\AskBarDis\bar\bin\ASKUpgrade.exe []

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
\Shell\AutoRun\command - f:\autorun\UbiAutorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2148b1d6-b5a6-11dd-bf8d-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com r:
\Shell\Open\command - r:\resycled\boot.com r:

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7163c040-ba22-11dd-bf95-001a9234d867}]
\Shell\AutoRun\command - c:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL resycled\boot.com q:
\Shell\Open\command - q:\resycled\boot.com q:

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{74233E61-EF19-25AF-B35C-83DCA1391BA5}]
c:\windows\system32\drivers\smss.exe s
.
Contenuto della cartella 'Scheduled Tasks'

2008-11-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
.
- - - - ORFÃOS REMOVIDOS - - - -

Toolbar-{3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - (no file)


.
------- Supplementare di scansione -------
.
uStart Page = hxxp://search.bearshare.com/it/
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FireFox -: Profile - c:\documents and settings\domenico\Dati applicazioni\Mozilla\Firefox\Profiles\9mks8g1p.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.it
FF -: plugin - c:\programmi\iTunes\Mozilla Plugins\npitunes.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-12 11:07:45
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\msqpdxserv.sys]
"imagepath"="\systemroot\system32\drivers\msqpdxosvdnrsr.sys"
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\Alwil Software\Avast4\aswUpdSv.exe
c:\programmi\Alwil Software\Avast4\ashServ.exe
c:\programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\programmi\Bonjour\mDNSResponder.exe
c:\programmi\Maxtor\Maxtor Backup\MaxBackServiceInt.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\mdm.exe
c:\programmi\Maxtor\OneTouch\Utils\SyncServices.exe
c:\windows\system32\nvsvc32.exe
c:\programmi\Alwil Software\Avast4\ashMaiSv.exe
c:\programmi\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
c:\programmi\iPod\bin\iPodService.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexingService.exe
.
**************************************************************************
.
Ora fine scansione: 2008-12-12 11:09:29 - macchina è stato riavviato
ComboFix-quarantined-files.txt 2008-12-12 10:09:26
ComboFix2.txt 2008-12-11 15:11:30
ComboFix3.txt 2008-12-11 14:47:54

Pre-Run: 434.026.151.936 byte disponibili
Post-Run: 434,017,091,584 byte disponibili

WindowsXP-KB310994-SP2-Pro-BootDisk-ITA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer

1261 --- E O F --- 2008-12-11 22:13:11

grazie ancora elektra ;)
dominique87
Utente Junior
 
Post: 37
Iscritto il: 18/02/07 17:52

Re: aiuto!!!

Postdi -> EleKtrA <- » 12/12/08 15:55

Ciao dominique87 ,
Scarica the Avenger
http://swandog46.geekstogo.com/avenger.zip
Lo salvi in una cartella, scompatti il file .zip
Individua avenger.exe, lo avvii
Inserisci questo script nel box bianco

Drivers to disable:
msqpdxserv

Drivers to delete:
msqpdxserv

Registry values to replace with dummy:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs

registry keys to delete:
HKEY_LOCAL_MACHINE\System\ControlSet001\Services\msqpdxserv.sys
HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{67F8EB90-BB69-4214-B43F-FDDE92B4D17A}

Files to delete:
c:\windows\system32\wvUljICs.dll
c:\windows\system32\drivers\logg.dat
c:\windows\system32\drivers\msqpdxosvdnrsr.sys

folders to delete:
C:\WINDOWS\temp
C:\WINDOWS\Tasks
c:\programmi\AskBarDis



Installa Ccleaner ed esegui una pulizia generale
http://www.ccleaner.com/download/downloading
Installa Eusing Free Registry Cleaner ed esegui la pulizia del registro
http://www.eusing.com/free_registry_cle ... leaner.htm

Esegui una deframmentazione ed uno scandisk
Start > programmi > accessori > utilità di sistema

Esegui una scansione online con Kaspersky (su "my computer")ed allega il report
http://www.kaspersky.com/virusscanner

;)
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: aiuto!!!

Postdi -> EleKtrA <- » 12/12/08 16:04

Ops..ho dimenticato il comando per avenger :oops:

Dopo aver inserito lo script
Clicca su Execute
Il pc dovrebbe riavviarsi (se così non fosse, fallo tu)
Posta il log che verrà creato in C:\Avenger
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50

Re: aiuto!!!

Postdi -> EleKtrA <- » 13/12/08 14:40

Ciao dominique87,
ho letto che hai aperto un nuovo topic per un'altro pc, dove è già intervenuto luke57,
vorrei solo precisare che su questo pc non abbiamo concluso ;) qualcosa ha interferito con il lavoro di Combofix, almeno in parte, ecco perchè ti ho consigliato anche la scansione online oltre lo script di Avenger ;)
“Ieri è storia, domani è mistero, ma oggi è un dono... per questo si chiama presente!”.
Avatar utente
-> EleKtrA <-
Moderatore
 
Post: 436
Iscritto il: 11/12/08 12:50


Torna a Sicurezza e Privacy


Topic correlati a "aiuto!!!":

aiuto windows 10
Autore: mod360
Forum: Software Windows
Risposte: 1
aiuto installazione
Autore: mod360
Forum: Software Windows
Risposte: 3
aiuto x mobili
Autore: MarioLombardi
Forum: Forum off-topic
Risposte: 8

Chi c’è in linea

Visitano il forum: Nessuno e 92 ospiti