Contenuto della cartella 'Scheduled Tasks'
.
2012-09-25 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpda teService.exe [2012-04-13 10:27]
.
2012-09-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-18 14:19]
.
2012-09-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-06-18 14:19]
.
2012-09-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2900431811-4106917416-381626465-1000Core.job
- c:\users\Kiki\AppData\Local\Google\Update\GoogleUp date.exe [2011-01-30 23:41]
.
2012-09-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2900431811-4106917416-381626465-1000UA.job
- c:\users\Kiki\AppData\Local\Google\Update\GoogleUp date.exe [2011-01-30 23:41]
.
.
------- Scansione supplementare -------
.
uStart Page = about:blank
uInternet Settings,ProxyOverride = local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{4B21E152-BA59-4ebf-B522-8C55B265EE1A}
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{0A0F4C56-BF22-443F-B0D6-2505D4BECF1D}: NameServer = 212.52.97.25 193.70.152.25
TCP: Interfaces\{18084B73-866F-47AA-910F-C726CA0DCC7A}: NameServer = 212.52.97.25 193.70.152.25
TCP: Interfaces\{2CBE801B-014E-4AE9-A6EB-08595F87018A}: NameServer = 212.52.97.25 193.70.152.25
TCP: Interfaces\{34B0BE65-C78E-4CEA-8CC9-3BA62D391DD2}: NameServer = 212.52.97.25 193.70.152.25
TCP: Interfaces\{DD7F3F76-EA7D-41E9-87D9-D179DB76AA07}: NameServer = 193.70.152.25 212.52.97.25
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
Toolbar-Locked - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-10 - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1} - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
AddRemove-{B7050CBDB2504B34BC2A9CA0A692CC29} - c:\program files\DivX\DivXWebPlayerUninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\p ostgresql-8.4]
"ImagePath"="C:/Program Files/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"C:/Program Files/PostgreSQL/8.4/data\" -w"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\p ostgresql-8.4]
"ImagePath"="C:/Program Files/PostgreSQL/8.4/bin/pg_ctl.exe runservice -N \"postgresql-8.4\" -D \"C:/Program Files/PostgreSQL/8.4/data\" -w"
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PC W\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2012-09-25 09:43:09
ComboFix-quarantined-files.txt 2012-09-25 07:43
.
Pre-Run: 111.024.328.704 byte disponibili
Post-Run: 111.546.814.464 byte disponibili
.
- - End Of File - - 1628EB8C90F820F81C2E05B5DB96DE50
Scusate ma nn mi bastavano i caratteri e non sono riusicto ad allegare....
Rispondi quotando