www.MegaLab.it

da **mitrha** » ven feb 07, 2014 5:28 pm

ora sono fuori casa ho lasciato il pc al lavoro appena torno posterò con ordine tutti i log delle scansioni effettuate. intanto vi ringrazio come sempre per il vostro valido supporto

da GERONIMO* » ven feb 07, 2014 6:16 pm

è anche Antivirus Comdo internet security, è una suite [sh]

quindi disinstalla Avira

ok [^]

da **mitrha** » sab feb 08, 2014 6:13 pm

Posso tenere Avira e mettere Online Armor come firewall?,è una configurazione che ho su un altro pc da molto tempo e nn mi ha mai dato problemi.Oppure mi cosigli di tenere solo Comodo?
Comunque intanto ecco alcuni log:
AdwCleaner:

# AdwCleaner v3.018 - Report created 06/02/2014 at 18:00:28
# Updated 28/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Fabio - E774BAE2
# Running from : C:\Documents and Settings\Manuel Valori.E774BAE2\desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v14.0.1 (it)

[ File : C:\Documents and Settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\prefs.js ]

[ File : C:\Documents and Settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\prefs.js ]

[ File : C:\Documents and Settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\prefs.js ]

[ File : C:\Documents and Settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\prefs.js ]

[ File : C:\Documents and Settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\prefs.js ]

*************************

AdwCleaner[R1].txt - [1375 octets] - [06/02/2014 17:59:30]
AdwCleaner[S1].txt - [1296 octets] - [06/02/2014 18:00:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1356 octets] ##########

Combofix:

ComboFix 14-02-05.02 - Fabio 07/02/2014 15.57.41.10.1 - x86 MINIMAL
Microsoft Windows XP Home Edition 5.1.2600.3.1252.39.1040.18.1023.800 [GMT 1:00]
Eseguito da: c:\documents and settings\Manuel Valori.E774BAE2\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Outdated* {0012F2B4-5CE9-7C92-0300-000000000000}
AV: AntiVir Desktop *Disabled/Outdated* {7698207D-3A00-003E-AC1D-9876381E9876}
AV: AntiVir Desktop *Enabled/Updated* {0012F220-F65C-7C91-61F6-917C340000C0}
AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
AV: Avira Desktop *Enabled/Outdated* {00000000-0000-0000-0000-000000000000}
FW: COMODO Firewall *Enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
.
((((((((((((((((((((((((( Files Creati Da 2014-01-07 al 2014-02-07 )))))))))))))))))))))))))))))))))))
.
.
2014-02-07 12:26 . 2014-01-22 01:16 101664 ----a-w- c:\windows\system32\BootDefrag.exe
2014-02-07 12:26 . 2014-01-22 01:09 13504 ----a-w- c:\windows\system32\drivers\BootDefragDriver.sys
2014-02-07 12:26 . 2014-02-07 12:27 -------- d-----w- c:\programmi\Glary Utilities 4
2014-02-06 18:56 . 2014-02-06 18:56 -------- d-----w- c:\programmi\HitmanPro
2014-02-06 18:51 . 2014-02-07 00:12 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\HitmanPro
2014-02-06 17:11 . 2014-02-06 17:11 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2014-02-06 17:11 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-02-05 18:26 . 2014-02-05 18:26 21361 ----a-w- c:\windows\system32\drivers\AegisP.sys
2014-02-05 18:26 . 2008-06-10 20:53 580096 ----a-w- c:\windows\system32\drivers\rt2870.sys
2014-02-05 15:12 . 2014-02-07 13:59 -------- d--h--w- c:\documents and settings\Manuel Valori.E774BAE2\Modelli
2014-02-05 15:12 . 2014-02-05 15:12 -------- d--h--w- c:\documents and settings\Manuel Valori.E774BAE2\Risorse di stampa
2014-02-05 15:12 . 2014-02-05 15:12 -------- d-----w- c:\documents and settings\All Users\Preferiti
2014-02-03 20:31 . 2014-02-03 20:31 -------- d-----w- c:\windows\system32\wbem\Repository
2014-02-03 20:28 . 2014-02-03 20:28 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Ralink Driver
2014-02-03 20:28 . 2014-02-03 20:28 -------- d-----w- c:\documents and settings\Manuel Valori.E774BAE2\Dati applicazioni\InstallShield
2014-02-03 20:28 . 2014-02-03 20:28 -------- d-----w- c:\programmi\RALINK
2014-02-03 19:32 . 2008-06-16 13:57 4096 ----a-w- c:\windows\system32\drivers\rt2870.bin
2014-02-03 19:32 . 2005-11-30 10:33 2048 ----a-w- c:\windows\system32\drivers\rt73.bin
2014-02-02 05:00 . 2014-02-02 05:00 -------- d-----w- c:\documents and settings\Manuel Valori.E774BAE2\Impostazioni locali\Dati applicazioni\4kdownload.com
2014-02-02 04:40 . 2014-02-02 04:40 -------- d-----w- c:\programmi\4KDownload
2014-02-02 04:09 . 2014-02-02 04:09 -------- d-----w- c:\programmi\ScanSoft
2014-02-02 00:17 . 2014-02-02 00:17 -------- d-----w- c:\documents and settings\NetworkService\Impostazioni locali\Dati applicazioni\COMODO
2014-02-02 00:17 . 2014-02-02 00:17 0 ----a-w- c:\windows\ativpsrm.bin
2014-02-02 00:06 . 2014-02-02 00:07 -------- d-s---w- c:\documents and settings\All Users\Dati applicazioni\Shared Space
2014-02-02 00:04 . 2014-02-02 00:04 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2014-02-02 00:00 . 2014-02-02 00:00 -------- d-----w- C:\first_launch
2014-02-02 00:00 . 2014-02-02 00:49 -------- d-----w- c:\documents and settings\Manuel Valori.E774BAE2\Impostazioni locali\Dati applicazioni\COMODO
2014-02-02 00:00 . 2014-02-02 00:00 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-02-01 23:59 . 2014-02-02 00:49 -------- d-----w- c:\programmi\Comodo
2014-02-01 23:59 . 2014-02-01 23:59 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Comodo Downloader
2014-02-01 23:32 . 2014-02-01 23:32 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Bitdefender
2014-02-01 23:32 . 2014-02-02 16:19 -------- d-----w- c:\programmi\Bitdefender
2014-02-01 23:02 . 2014-02-01 23:02 -------- d-----w- c:\documents and settings\Manuel Valori.E774BAE2\Dati applicazioni\Malwarebytes
2014-02-01 21:25 . 2014-02-01 21:25 -------- d-----w- c:\programmi\File comuni\Java
2014-02-01 21:25 . 2013-12-18 20:10 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-02-01 18:16 . 2014-02-01 18:16 -------- d-----w- c:\programmi\Yamaha
2014-02-01 18:16 . 2014-02-01 18:16 -------- d-----w- c:\programmi\File comuni\Steinberg
2014-02-01 12:12 . 2014-02-06 17:00 -------- d-----w- C:\AdwCleaner
2014-02-01 02:25 . 2014-02-01 02:25 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2014-02-01 00:13 . 2014-02-01 00:17 -------- d-----w- c:\windows\system32\MRT
2014-01-31 23:37 . 2014-01-31 23:37 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\AskPartnerNetwork
2014-01-31 20:07 . 2014-01-31 20:07 -------- d-----w- c:\documents and settings\Manuel Valori.E774BAE2\Dati applicazioni\Avira
2014-01-31 19:56 . 2013-12-13 14:04 37352 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2014-01-31 19:56 . 2013-12-13 14:04 90400 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-01-31 19:56 . 2013-12-13 14:04 135648 ----a-w- c:\windows\system32\drivers\avipbb.sys
2014-01-31 19:56 . 2014-01-31 19:56 -------- d-----w- c:\programmi\Avira
2014-01-31 19:45 . 2012-01-30 16:23 151552 ----a-w- c:\windows\system32\RalinkGina.dll
2014-01-31 19:45 . 2011-05-04 12:56 1608768 ----a-w- c:\windows\system32\RaCertMgr.dll
2014-01-31 19:45 . 2011-05-04 12:47 2178112 ----a-w- c:\windows\system32\Scutum.dll
2014-01-31 19:45 . 2010-07-01 16:09 185696 ----a-w- c:\windows\system32\W32N55.dll
2014-01-31 19:45 . 2010-06-29 09:34 480608 ----a-w- c:\windows\system32\DiagFunc.dll
2014-01-31 19:45 . 2009-11-13 12:42 34080 ----a-w- c:\windows\system32\CTAAEI.dll
2014-01-31 19:45 . 2009-04-21 14:31 19072 ----a-w- c:\windows\system32\drivers\Scutum50.sys
2014-01-31 19:44 . 2008-06-10 20:52 438272 ----a-w- c:\windows\system32\RaCoInst.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-31 00:18 . 2013-12-30 23:57 45056 ----a-r- c:\documents and settings\Manuel Valori.E774BAE2\Dati applicazioni\Microsoft\Installer\{597BF944-30BE-4E43-854E-F11D066CEC5B}\ARPPRODUCTICON.exe
2013-12-18 19:46 . 2011-05-28 22:04 145408 ----a-w- c:\windows\system32\javacpl.cpl
2013-11-27 20:21 . 2006-03-02 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2013-11-14 10:38 . 2013-11-14 10:38 587864 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2013-11-14 10:38 . 2013-11-14 10:38 36000 ----a-w- c:\windows\system32\cmdcsr.dll
2013-11-13 02:59 . 2006-03-02 12:00 150528 ----a-w- c:\windows\system32\imagehlp.dll
2012-07-22 16:37 . 2012-07-22 16:37 136672 ----a-w- c:\programmi\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\programmi\Avira\AntiVir Desktop\avgnt.exe" [2013-12-13 684600]
"SunJavaUpdateSched"="c:\programmi\File comuni\Java\Java Update\jusched.exe" [2013-07-02 254336]
"COMODO Internet Security"="c:\programmi\COMODO\COMODO Internet Security\cistray.exe" [2013-11-11 1576152]
"KORG USB-MIDI Driver"="c:\programmi\KORG\KORG USB-MIDI Driver\EsHelper2.exe" [2013-10-03 394096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoCommonGroups"= 0 (0x0)
"NoSimpleStartMenu"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\programmi\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"midi"=KORGUMDD.DRV
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk * \0dfboottime \??\c:\windows\System32\dfboottime.cfg
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Ralink Wireless Utility.lnk]
path=c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Ralink Wireless Utility.lnk
backup=c:\windows\pss\Ralink Wireless Utility.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-13 17:14 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KORG USB-MIDI Driver]
2013-10-03 00:05 394096 ----a-w- c:\programmi\KORG\KORG USB-MIDI Driver\EsHelper2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"c:\\Programmi\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Programmi\\RALINK\\Common\\ApUI.exe"=
"c:\\Programmi\\RALINK\\Common\\RaMediaServer.exe"=
"c:\\Programmi\\RALINK\\Common\\RaUI.exe"=
.
R0 BootDefragDriver;BootDefragDriver;c:\windows\system32\drivers\BootDefragDriver.sys [07/02/2014 13.26.56 13504]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys -->

\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]

R1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\drivers\cmderd.sys [24/09/2013 10.54.00 15704]
S0 27670172;27670172 Boot Guard Driver;c:\windows\system32\DRIVERS\27670172.sys -->

c:\windows\system32\DRIVERS\27670172.sys [?]

S0 38155282;38155282 Boot Guard Driver;c:\windows\system32\DRIVERS\38155282.sys -->

c:\windows\system32\DRIVERS\38155282.sys [?]

S0 44449212;44449212 Boot Guard Driver;c:\windows\system32\DRIVERS\44449212.sys -->

c:\windows\system32\DRIVERS\44449212.sys [?]

S1 27670171;27670171;c:\windows\system32\DRIVERS\27670171.sys -->

c:\windows\system32\DRIVERS\27670171.sys [?]

S1 44449211;44449211;c:\windows\system32\DRIVERS\44449211.sys -->

c:\windows\system32\DRIVERS\44449211.sys [?]

S1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [31/01/2014 20.56.22 37352]
S1 cmdGuard;COMODO Internet Security Driver;c:\windows\system32\drivers\cmdGuard.sys [14/11/2013 11.38.08 587864]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [24/09/2013 10.54.00 30552]
S1 setup_9.0.0.722_22.05.2011_10-14drv;setup_9.0.0.722_22.05.2011_10-14drv;c:\windows\system32\DRIVERS\4444921.sys -->

c:\windows\system32\DRIVERS\4444921.sys [?]

S1 setup_9.0.0.722_26.05.2011_14-12drv;setup_9.0.0.722_26.05.2011_14-12drv;c:\windows\system32\drivers\2767017.sys [26/05/2011 11.59.38 315408]
S2 AntiVirSchedulerService;Avira Pianificatore;c:\programmi\Avira\AntiVir Desktop\sched.exe [31/01/2014 20.56.28 440376]
S2 AntiVirWebService;Avira Web Protection;c:\programmi\Avira\AntiVir Desktop\avwebgrd.exe [31/01/2014 20.56.23 1011768]
S2 RaMediaServer;Ralink UPnP Media Server;c:\programmi\RALINK\Common\RaMediaServer.exe [31/01/2014 20.45.14 1863680]
S2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [31/01/2014 20.45.10 19072]
S2 ubsbm;Unibrain 1394 SBM Driver;c:\windows\system32\drivers\UBSBM.sys [19/01/2012 21.51.14 17408]
S2 ubumapi;Unibrain 1394 FireAPI Driver;c:\windows\system32\drivers\UBUMAPI.sys [19/01/2012 21.51.14 46592]
S3 cmdvirth;COMODO Virtual Service Manager;c:\programmi\Comodo\COMODO Internet Security\cmdvirth.exe [24/09/2013 10.53.28 131288]
S3 KeyControl25;Service for KeyControl25 Driver (WDM);c:\windows\system32\drivers\esikey25.sys [29/07/2012 10.56.14 52608]
S3 KORGUMDS;KORG USB-MIDI Driver for Windows;c:\windows\system32\drivers\KORGUMDS.SYS [05/10/2012 1.14.00 24536]
S3 NvnUsbAudio;Novation USB Audio Driver;c:\windows\system32\drivers\nvnusbaudio.sys [19/08/2012 12.31.19 41944]
S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [22/06/2011 22.55.10 47360]
S3 RDID1064;Roland MC-808;c:\windows\system32\drivers\Rdwm1064.sys [02/01/2014 4.02.21 79153]
S3 ubohci;Unibrain 1394 OHCI Driver;c:\windows\system32\drivers\ubohci.sys [19/01/2012 21.51.14 116224]
S3 usbaucmd;usbaucmd;c:\windows\system32\drivers\usbaucmd.sys -->

c:\windows\system32\drivers\usbaucmd.sys [?]

S3 ysusb32;Yamaha Steinberg USB Audio;c:\windows\system32\drivers\ysusb32.sys [27/09/2012 11.38.38 91624]
.
--- Altri Servizi/Drivers In Memoria ---
.
*NewlyCreated* - UBOHCI
.
Contenuto della cartella 'Scheduled Tasks'
.
2014-02-07 c:\windows\Tasks\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85}.job
- c:\programmi\COMODO\COMODO Internet Security\cfpconfg.exe [2013-11-11 13:58]
.
2014-02-07 c:\windows\Tasks\GlaryInitialize 4.job
- c:\programmi\Glary Utilities 4\Initialize.exe [2014-01-22 01:15]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.com
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Manuel Valori.E774BAE2\Dati applicazioni\Mozilla\Firefox\Profiles\noojsmhu.default\
FF - prefs.js: browser.search.selectedEngine - YouTube
FF - prefs.js: browser.startup.homepage - http://www.google.it
FF - prefs.js: network.proxy.type - 0
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-02-07 16:04
Windows 5.1.2600 Service Pack 3 NTFS
.
scansione processi nascosti ...
.
scansione entrate autostart nascoste ...
.
Scansione files nascosti ...
.
Scansione completata con successo
Files nascosti: 0
.
**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_USERS\S-1-5-21-2000478354-261903793-839522115-1008\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{85931272-7482-A030-A61B-2BDAA8BBE72F}*]
"hanmfcpejindfapk"=hex:69,61,65,65,64,65,68,6e,6a,61,6a,6f,6e,65,67,66,61,62,
00,00
"iapmpdpihbehbaipoa"=hex:69,61,65,65,64,65,68,6e,6a,61,6a,6f,6e,65,67,66,61,62,
00,00
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Reinstall\]*’|8[]]
"DisplayName"="?\11???"
"DeviceDesc"="?\11???"
"ProviderName"="\16"
"MFG"="?????"
"ReinstallString"="c:\\WINDOWS\\System32\\ReinstallBackups\\]???\\DriverFiles\\.INF"
"DeviceInstanceIds"=multi:"\0c\00"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Reinstall\]*’|`³g]
"DisplayName"="?\11???"
"DeviceDesc"="?\11???"
"ProviderName"=""
"MFG"="?????"
"ReinstallString"="c:\\WINDOWS\\System32\\ReinstallBackups\\]???\\DriverFiles\\.INF"
"DeviceInstanceIds"=multi:"\0c\00"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG14.00.00.01PROFESSIONAL"="0F76B6345D9EFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74C5D575E7D6A3B98088EDD5E5BE2F6E667A6A0AC4980AC7933BA7FD869164D6794FBAA1211F9C560A6AEEC2F2A1B6594E866D978410A5DD7D1933E9C12B6E2E21BB31AC2C5DDA11BDD3DCB77961977E579E057FBFDCB35580D9AAAD1FEDB79B38614042570B6143039CEDB7BE32E7D9E0A2C663F989FDECE29B81E8EF96729CC5D516862B73234735D0F3B01648F01403C076746285B7687E0E25AB383F6BCE913388657A5512229973CCB81C84291BCD248FB46282B9AC28F22E05381F985393EA463142A69FC0FD32CB32AAA9EC1FDB7D58C297B0DEEB6B793FB353E345A5C178A495E15A26DD3A7C35DDB8453A7DF742D438FE4D31D0BFC6937D4E43C1167FC6F452C1E791B98497F76AD35625DB0BADE104A0DA64DDE28E76262080007E7EF6EA72CE0BE3376926E706801228336DC8E25DF8000B241276812C01E3D9D5818B4863F5917E8F6823403880F3ABBA8D473FA0BAFADFE388AD79D87FE0938AD3D843A77EAFB711B3D0828C06A2B2C32BC5BCC3B6E55E93C8639A283E8CAC04D4FB4609F5D3A06D389B31DF682C4007455A61812F56AAFBBF42001B2FCBD248FDE30D9B3D971E4885219E4C32BAD66030149A067E1B9101652B6DB4840F25144A2F34C63ED18CF9425A844F59B5F11664A4B6F433361CDA040B91CAD9CCCBEACF39321148D758AC7B5EA478CEE28B61A5BC94DE54E533024027BEC7CDF04E37FD0B304DD0F2761645AFBBBBF26A8128D84F2C9C27CD8065F01604006BA24BDE55B90E60EAB1E2021100B32782257E2253A0D397EE70A9B81CAE0484CC20DCD7DD87680A4039D992A73D98153AC7E6A3A13EF3174235745AF118B7E87F0719759B349C65596C0A21DC7C0C5226E3B7017CB080EB2A003DB84A6811E23A3D9237FFA7DF9894D72940E75AA5A6AF9003FFCC355EE7BBAA2B98B86F7283F9B2300E9DD9F99DDF074CE8386186365BF12A39E80EA36C62DA33F464C3861ADFDFB3B85344C6AA2B05BB1F8A81AC502998A7325A7F20C3F17C2D02A381FCFF7D4686C36F7B6F65D9F10A2DCB05A2C61C1D7832D0629DA417E93541F319DC1D88E4029D046A40CC3B14E0C1394128457D73CAEC48CDDD1E04B7CB603BE3AC540F9AE121F61F03A4543A85A716F91026FDECDD371CEF4E464C9B8E6260E0E3150CD3444DFAE895702138202C3FEBB19E5BEF355AB8267C9C62AD6D84F70C59A612424E54539EFFACC4115F448A78884AD42EF995D86407CB581B885B55A23DF00F8279FF3AE3B84AF576C2FB37083C36999500CE759A03C934796E587647A2169AF389E08DF959367BCEAAEAB834A96F6D7FC9A9F9EBC8C77D87AFAE4CBB541140C26920DC3BD0EE2C1C3744CB09106"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
.
- - - - - - - > 'winlogon.exe'(244)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(748)
c:\windows\system32\WININET.dll
.
Ora fine scansione: 2014-02-07 16:06:50
ComboFix-quarantined-files.txt 2014-02-07 15:06
.
Pre-Run: 73 478 234 112 byte disponibili
Post-Run: 73 475 842 048 byte disponibili
.
- - End Of File - - 4BA6B78981C61BBCD4ADAB3CE4A309D3
828E02D5C4A4FBE53441EE9DBEE51F43

MalwareBite:

Malwarebytes Anti-Malware 1.75.0.1300
http://www.malwarebytes.org

Versione database: v2014.02.06.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Fabio :: E774BAE2 [amministratore]

06/02/2014 18.13.36
mbam-log-2014-02-06 (18-13-36).txt

Tipo di scansione: Scansione completa (C:\|)
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 309175
Tempo impiegato: 1 ore, 19 minuti, 3 secondi

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)

Cartelle rilevate: 0
(non sono stati rilevati elementi nocivi)

File rilevati: 0
(non sono stati rilevati elementi nocivi)

(fine)

da **mitrha** » sab feb 08, 2014 6:16 pm

LogHijakThis:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18.14.37, on 08/02/2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\netdde.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\Programmi\File comuni\Java\Java Update\jusched.exe
C:\Programmi\COMODO\COMODO Internet Security\cistray.exe
C:\Programmi\KORG\KORG USB-MIDI Driver\EsHelper2.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\RALINK\Common\RalinkRegistryWriter.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Programmi\Avira\AntiVir Desktop\avshadow.exe
C:\Programmi\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\COMODO\COMODO Internet Security\cis.exe
C:\Documents and Settings\Manuel Valori.E774BAE2\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\File comuni\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] C:\Programmi\COMODO\COMODO Internet Security\cistray.exe
O4 - HKLM\..\Run: [KORG USB-MIDI Driver] C:\Programmi\KORG\KORG USB-MIDI Driver\EsHelper2.exe /s
O4 - HKUS\S-1-5-21-2000478354-261903793-839522115-500\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Administrator')
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira Pianificatore (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Programmi\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Programmi\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Programmi\Java\jre7\bin\jqs.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Programmi\RALINK\Common\RalinkRegistryWriter.exe
O23 - Service: Ralink UPnP Media Server (RaMediaServer) - Ralink - C:\Programmi\RALINK\Common\RaMediaServer.exe

--
End of file - 4713 bytes

E TDssKiller:

02:42:48.0515 2860 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
02:42:48.0531 2860 ============================================================
02:42:48.0531 2860 Current date / time: 2014/02/08 02:42:48.0531
02:42:48.0531 2860 SystemInfo:
02:42:48.0531 2860
02:42:48.0531 2860 OS Version: 5.1.2600 ServicePack: 3.0
02:42:48.0531 2860 Product type: Workstation
02:42:48.0531 2860 ComputerName: E774BAE2
02:42:48.0531 2860 UserName: Fabio
02:42:48.0531 2860 Windows directory: C:\WINDOWS
02:42:48.0531 2860 System windows directory: C:\WINDOWS
02:42:48.0531 2860 Processor architecture: Intel x86
02:42:48.0531 2860 Number of processors: 1
02:42:48.0531 2860 Page size: 0x1000
02:42:48.0531 2860 Boot type: Normal boot
02:42:48.0531 2860 ============================================================
02:42:49.0343 2860 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
02:42:51.0828 2860 ============================================================
02:42:51.0828 2860 \Device\Harddisk0\DR0:
02:42:51.0828 2860 MBR partitions:
02:42:51.0828 2860 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17499EC1
02:42:51.0828 2860 ============================================================
02:42:51.0875 2860 C: <-> \Device\Harddisk0\DR0\Partition1
02:42:51.0875 2860 ============================================================
02:42:51.0875 2860 Initialize success
02:42:51.0875 2860 ============================================================
02:42:53.0531 2996 ============================================================
02:42:53.0531 2996 Scan started
02:42:53.0531 2996 Mode: Manual;
02:42:53.0531 2996 ============================================================
02:42:53.0765 2996 ================ Scan system memory ========================
02:42:53.0781 2996 System memory - ok
02:42:53.0796 2996 ================ Scan services =============================
02:42:54.0000 2996 27670171 - ok
02:42:54.0015 2996 27670172 - ok
02:42:54.0031 2996 38155282 - ok
02:42:54.0046 2996 44449211 - ok
02:42:54.0046 2996 44449212 - ok
02:42:54.0062 2996 Abiosdsk - ok
02:42:54.0078 2996 abp480n5 - ok
02:42:54.0156 2996 [ D766E636187B8F240BBFBABCD51EB2C6 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
02:42:54.0171 2996 ACPI - ok
02:42:54.0218 2996 [ 49AC5CD87FBDDA62F3E25190019E7627 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
02:42:54.0218 2996 ACPIEC - ok
02:42:54.0234 2996 adpu160m - ok
02:42:54.0312 2996 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
02:42:54.0343 2996 aec - ok
02:42:54.0421 2996 [ 023867B6606FBABCDD52E089C4A507DA ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
02:42:54.0421 2996 AegisP - ok
02:42:54.0578 2996 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
02:42:54.0671 2996 AFD - ok
02:42:54.0703 2996 Aha154x - ok
02:42:54.0718 2996 aic78u2 - ok
02:42:54.0734 2996 aic78xx - ok
02:42:54.0906 2996 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
02:42:55.0203 2996 ALCXWDM - ok
02:42:55.0250 2996 [ 14A077AD0CF6116D1102631D8E1EDEE8 ] Alerter C:\WINDOWS\system32\alrsvc.dll
02:42:55.0250 2996 Alerter - ok
02:42:55.0281 2996 [ 79FE2E0D7859738225816658F0BB2A0D ] ALG C:\WINDOWS\System32\alg.exe
02:42:55.0281 2996 ALG - ok
02:42:55.0296 2996 AliIde - ok
02:42:55.0312 2996 amsint - ok
02:42:55.0468 2996 [ FE79366FECD444A16CCA9979134DBEA8 ] AntiVirSchedulerService C:\Programmi\Avira\AntiVir Desktop\sched.exe
02:42:55.0500 2996 AntiVirSchedulerService - ok
02:42:55.0578 2996 [ FDE9C7030FB1E9E2715E113EE6A10F90 ] AntiVirService C:\Programmi\Avira\AntiVir Desktop\avguard.exe
02:42:55.0578 2996 AntiVirService - ok
02:42:55.0656 2996 [ 29D956C8CB67222D678FAF20D485B25B ] AntiVirWebService C:\Programmi\Avira\AntiVir Desktop\AVWEBGRD.EXE
02:42:55.0671 2996 AntiVirWebService - ok
02:42:55.0687 2996 AppMgmt - ok
02:42:55.0734 2996 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
02:42:55.0734 2996 Arp1394 - ok
02:42:55.0750 2996 asc - ok
02:42:55.0765 2996 asc3350p - ok
02:42:55.0781 2996 asc3550 - ok
02:42:55.0921 2996 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
02:42:55.0921 2996 aspnet_state - ok
02:42:55.0968 2996 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
02:42:55.0984 2996 AsyncMac - ok
02:42:56.0031 2996 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
02:42:56.0046 2996 atapi - ok
02:42:56.0062 2996 Atdisk - ok
02:42:56.0140 2996 [ D80A3FD3DB6F999F6D1C6D23A293851B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
02:42:56.0140 2996 Ati HotKey Poller - ok
02:42:56.0375 2996 [ C832BF76F003999D2E91E5115583C69E ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
02:42:56.0609 2996 ati2mtag - ok
02:42:56.0656 2996 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
02:42:56.0671 2996 Atmarpc - ok
02:42:56.0734 2996 [ 1B58D118049304E88464BE614C6D0014 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
02:42:56.0734 2996 AudioSrv - ok
02:42:56.0796 2996 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
02:42:56.0843 2996 audstub - ok
02:42:56.0890 2996 [ B8C10FF9369394EB84993F331810CF29 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
02:42:56.0906 2996 avgntflt - ok
02:42:56.0953 2996 [ 4189E5AB2CAD6F395D87DAAE73EB090F ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
02:42:56.0968 2996 avipbb - ok
02:42:57.0000 2996 [ D8C712305F73CD34D1B344810E522728 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
02:42:57.0015 2996 avkmgr - ok
02:42:57.0062 2996 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
02:42:57.0062 2996 Beep - ok
02:42:57.0125 2996 [ 48C4763A9C8990FB48B73445BEB15D6A ] BITS C:\WINDOWS\system32\qmgr.dll
02:42:57.0156 2996 BITS - ok
02:42:57.0203 2996 [ 3722F97E33CACAB1D08B76ABFCCC2966 ] BootDefragDriver C:\WINDOWS\system32\drivers\BootDefragDriver.sys
02:42:57.0203 2996 BootDefragDriver - ok
02:42:57.0250 2996 [ 076D11B52F066ED33E3A80F8070A3E2E ] Browser C:\WINDOWS\System32\browser.dll
02:42:57.0250 2996 Browser - ok
02:42:57.0296 2996 [ C3C2F59695742CFADBA9EE561249E27C ] CAM1210 C:\WINDOWS\system32\Drivers\cam1210.sys
02:42:57.0312 2996 CAM1210 - ok
02:42:57.0359 2996 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
02:42:57.0359 2996 cbidf2k - ok
02:42:57.0421 2996 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
02:42:57.0421 2996 CCDECODE - ok
02:42:57.0437 2996 cd20xrnt - ok
02:42:57.0468 2996 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
02:42:57.0468 2996 Cdaudio - ok
02:42:57.0515 2996 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
02:42:57.0531 2996 Cdfs - ok
02:42:57.0562 2996 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
02:42:57.0578 2996 Cdrom - ok
02:42:57.0593 2996 Changer - ok
02:42:57.0640 2996 [ D04F2BEB5EA63D0766E12E44AEF7C38D ] CiSvc C:\WINDOWS\system32\cisvc.exe
02:42:57.0640 2996 CiSvc - ok
02:42:57.0656 2996 [ 48CB1DEFA1A6506C3CF09E4950F82EF6 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
02:42:57.0671 2996 ClipSrv - ok
02:42:57.0765 2996 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:42:57.0781 2996 clr_optimization_v2.0.50727_32 - ok
02:42:58.0718 2996 [ BB76C416AC9064F184A1C715179DE7A9 ] cmdAgent C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe
02:42:58.0750 2996 cmdAgent - ok
02:42:58.0875 2996 [ 7E7C723B64DF1E264F3909D6263E0FF9 ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys
02:42:58.0875 2996 cmderd - ok
02:42:59.0031 2996 [ ADE6F053C0767B0DAED0C4FEBF8B62B5 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
02:42:59.0078 2996 cmdGuard - ok
02:42:59.0109 2996 [ CA93B11EDA062B5D4BAB6A97FE9FECCD ] cmdHlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
02:42:59.0125 2996 cmdHlp - ok
02:42:59.0140 2996 CmdIde - ok
02:42:59.0265 2996 [ E6E4CDA093D59D576178BF2BB272C124 ] cmdvirth C:\Programmi\COMODO\COMODO Internet Security\cmdvirth.exe
02:42:59.0281 2996 cmdvirth - ok
02:42:59.0296 2996 COMSysApp - ok
02:42:59.0328 2996 Cpqarray - ok
02:42:59.0390 2996 [ B6FCBB157E9C8ABDCA4134C535535A8B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
02:42:59.0390 2996 CryptSvc - ok
02:42:59.0421 2996 dac2w2k - ok
02:42:59.0437 2996 dac960nt - ok
02:42:59.0500 2996 [ BC4E0226341AAEC1222336B3AED86BAB ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
02:42:59.0515 2996 DcomLaunch - ok
02:42:59.0562 2996 [ 699EE7F752A25180AEB92C3A0EAEE440 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
02:42:59.0562 2996 Dhcp - ok
02:42:59.0609 2996 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
02:42:59.0609 2996 Disk - ok
02:42:59.0625 2996 dmadmin - ok
02:42:59.0671 2996 [ E959DDC0EA7AC11EE5E5602E2A364310 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
02:42:59.0687 2996 dmio - ok
02:42:59.0734 2996 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
02:42:59.0734 2996 dmload - ok
02:42:59.0828 2996 [ A01858C50704B2D2EDEEBBF6BBBCED2A ] dmserver C:\WINDOWS\System32\dmserver.dll
02:42:59.0828 2996 dmserver - ok
02:42:59.0875 2996 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
02:42:59.0875 2996 DMusic - ok
02:42:59.0937 2996 [ B7A1162B1A26DF7B60D5D9500006096C ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
02:42:59.0937 2996 Dnscache - ok
02:42:59.0984 2996 [ D580D77DFF316BD8C9D73B38695DE8DC ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
02:43:00.0000 2996 Dot3svc - ok
02:43:00.0015 2996 dpti2o - ok
02:43:00.0062 2996 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
02:43:00.0062 2996 drmkaud - ok
02:43:00.0093 2996 [ 86B1F123BACD444E81960B339BAE3FF2 ] EapHost C:\WINDOWS\System32\eapsvc.dll
02:43:00.0093 2996 EapHost - ok
02:43:00.0156 2996 [ B6599EDA9F3EBEF064504EE35BBECA1C ] ERSvc C:\WINDOWS\System32\ersvc.dll
02:43:00.0156 2996 ERSvc - ok
02:43:00.0203 2996 [ 26845F272435302E0F3322E660A24F7D ] Eventlog C:\WINDOWS\system32\services.exe
02:43:00.0218 2996 Eventlog - ok
02:43:00.0265 2996 [ 8360CB9756E598A5C6214EACFB3677C3 ] EventSystem C:\WINDOWS\system32\es.dll
02:43:00.0265 2996 EventSystem - ok
02:43:00.0312 2996 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
02:43:00.0328 2996 Fastfat - ok
02:43:00.0390 2996 [ DCCC606FC144F6E44E497F9A906F1C30 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
02:43:00.0406 2996 FastUserSwitchingCompatibility - ok
02:43:00.0453 2996 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
02:43:00.0453 2996 Fdc - ok
02:43:00.0484 2996 [ 2CFEA3326981A18C6BAF2BD9BE76225B ] Fips C:\WINDOWS\system32\drivers\Fips.sys
02:43:00.0484 2996 Fips - ok
02:43:00.0531 2996 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
02:43:00.0546 2996 Flpydisk - ok
02:43:00.0593 2996 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
02:43:00.0625 2996 FltMgr - ok
02:43:00.0718 2996 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
02:43:00.0734 2996 FontCache3.0.0.0 - ok
02:43:00.0781 2996 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
02:43:00.0781 2996 Fs_Rec - ok
02:43:00.0843 2996 [ F3269A6EE547EA87B949A1CEA4816B38 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
02:43:00.0843 2996 Ftdisk - ok
02:43:00.0906 2996 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
02:43:00.0906 2996 Gpc - ok
02:43:00.0953 2996 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
02:43:00.0953 2996 HDAudBus - ok
02:43:01.0015 2996 [ 6CE66B51B4EB23D9D073F92698C55C8D ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
02:43:01.0015 2996 helpsvc - ok
02:43:01.0046 2996 [ 43D985A9A51E0295091B6EBE84C96B78 ] HidServ C:\WINDOWS\System32\hidserv.dll
02:43:01.0062 2996 HidServ - ok
02:43:01.0109 2996 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
02:43:01.0109 2996 HidUsb - ok
02:43:01.0156 2996 [ 00CAD842F48947887A972828ACA665F7 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
02:43:01.0156 2996 hkmsvc - ok
02:43:01.0171 2996 hpn - ok
02:43:01.0218 2996 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
02:43:01.0234 2996 HPZid412 - ok
02:43:01.0250 2996 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
02:43:01.0265 2996 HPZipr12 - ok
02:43:01.0296 2996 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
02:43:01.0312 2996 HPZius12 - ok
02:43:01.0359 2996 [ 1821032E9EE6A72F10448824BEFC5DEB ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
02:43:01.0375 2996 HSFHWBS2 - ok
02:43:01.0437 2996 [ 607EDABFD9CA9C864F3D07B159A9EC19 ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
02:43:01.0500 2996 HSF_DP - ok
02:43:01.0546 2996 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
02:43:01.0546 2996 HTTP - ok
02:43:01.0593 2996 [ 450091AEBFCD08E5858533EAB5B9A436 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
02:43:01.0609 2996 HTTPFilter - ok
02:43:01.0656 2996 [ 2310CA92D37D97C9231ADF1796B47B9D ] hwdatacard C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
02:43:01.0671 2996 hwdatacard - ok
02:43:01.0687 2996 i2omgmt - ok
02:43:01.0703 2996 i2omp - ok
02:43:01.0765 2996 [ 610726E28AF55B95043C5C35A727E320 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
02:43:01.0781 2996 i8042prt - ok
02:43:01.0921 2996 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
02:43:01.0937 2996 IDriverT - ok
02:43:02.0031 2996 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:43:02.0046 2996 idsvc - ok
02:43:02.0093 2996 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
02:43:02.0093 2996 Imapi - ok
02:43:02.0140 2996 [ DB491237445F172FDDDF00541DE1A51D ] ImapiService C:\WINDOWS\system32\imapi.exe
02:43:02.0140 2996 ImapiService - ok
02:43:02.0171 2996 ini910u - ok
02:43:02.0296 2996 [ 4E9612379CF48934356B2A843677FED2 ] Inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
02:43:02.0296 2996 Inspect - ok
02:43:02.0312 2996 IntelIde - ok
02:43:02.0359 2996 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
02:43:02.0375 2996 Ip6Fw - ok
02:43:02.0406 2996 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
02:43:02.0406 2996 IpFilterDriver - ok
02:43:02.0453 2996 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
02:43:02.0453 2996 IpInIp - ok
02:43:02.0500 2996 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
02:43:02.0515 2996 IpNat - ok
02:43:02.0562 2996 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
02:43:02.0562 2996 IPSec - ok
02:43:02.0593 2996 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
02:43:02.0593 2996 IRENUM - ok
02:43:02.0640 2996 [ 0953594BEB81CC72FCC62D37921B25A6 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
02:43:02.0640 2996 isapnp - ok
02:43:02.0750 2996 [ B9436A665A8621073A12338B16D7BFD4 ] JavaQuickStarterService C:\Programmi\Java\jre7\bin\jqs.exe
02:43:02.0750 2996 JavaQuickStarterService - ok
02:43:02.0875 2996 [ 28B6EACE513CA7EABA3B809AD4BC274D ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
02:43:02.0890 2996 Kbdclass - ok
02:43:02.0921 2996 [ 4C61C226BDDA2EF1672B2C5F4E56625E ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
02:43:02.0953 2996 kbdhid - ok
02:43:03.0000 2996 [ 42574425646667F075066DE341CFE7B2 ] KeyControl25 C:\WINDOWS\system32\drivers\esikey25.sys
02:43:03.0015 2996 KeyControl25 - ok
02:43:03.0046 2996 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
02:43:03.0062 2996 kmixer - ok
02:43:03.0109 2996 [ C9B9F72AD15434219DAD8DC8FAF59397 ] KORGUMDS C:\WINDOWS\system32\Drivers\KORGUMDS.SYS
02:43:03.0125 2996 KORGUMDS - ok
02:43:03.0171 2996 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
02:43:03.0187 2996 KSecDD - ok
02:43:03.0234 2996 [ 0F726D49C0B19E5A506A1CDFCE0EE42F ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
02:43:03.0234 2996 lanmanserver - ok
02:43:03.0281 2996 [ E13B0181DDA60B93E3253EFF52A79CBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
02:43:03.0281 2996 lanmanworkstation - ok
02:43:03.0296 2996 lbrtfdc - ok
02:43:03.0375 2996 [ E01255727D0B158538D7C2B469B533A8 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
02:43:03.0375 2996 LmHosts - ok
02:43:03.0421 2996 [ 8FD868E32459ECE2A1BB0169F513D31E ] mcdbus C:\WINDOWS\system32\DRIVERS\mcdbus.sys
02:43:03.0437 2996 mcdbus - ok
02:43:03.0468 2996 [ 195741AEE20369980796B557358CD774 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
02:43:03.0468 2996 mdmxsdk - ok
02:43:03.0500 2996 [ 3B32F662C8607E891F325E41F7EE225C ] Messenger C:\WINDOWS\System32\msgsvc.dll
02:43:03.0500 2996 Messenger - ok
02:43:03.0546 2996 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
02:43:03.0562 2996 mnmdd - ok
02:43:03.0609 2996 [ 514A299EC926BAADA3C718B171476AA4 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
02:43:03.0609 2996 mnmsrvc - ok
02:43:03.0656 2996 [ 8CB6636806D76B85FAFAEE94D75F5129 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
02:43:03.0656 2996 Modem - ok
02:43:03.0687 2996 [ E904EBED608055A2BFB824C07F59766C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
02:43:03.0687 2996 Mouclass - ok
02:43:03.0750 2996 [ D7662F0CF5B77BBBE3202716F5BD5318 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
02:43:03.0750 2996 mouhid - ok
02:43:03.0812 2996 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
02:43:03.0812 2996 MountMgr - ok
02:43:03.0875 2996 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
02:43:03.0890 2996 MozillaMaintenance - ok
02:43:03.0906 2996 mraid35x - ok
02:43:03.0937 2996 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
02:43:03.0968 2996 MRxDAV - ok
02:43:04.0015 2996 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
02:43:04.0046 2996 MRxSmb - ok
02:43:04.0093 2996 [ 01F77E9E473235C31796ADE46107B0AD ] MSDTC C:\WINDOWS\system32\msdtc.exe
02:43:04.0093 2996 MSDTC - ok
02:43:04.0125 2996 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
02:43:04.0156 2996 Msfs - ok
02:43:04.0171 2996 MSIServer - ok
02:43:04.0234 2996 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
02:43:04.0250 2996 MSKSSRV - ok
02:43:04.0281 2996 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
02:43:04.0281 2996 MSPCLOCK - ok
02:43:04.0312 2996 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
02:43:04.0328 2996 MSPQM - ok
02:43:04.0359 2996 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
02:43:04.0359 2996 mssmbios - ok
02:43:04.0390 2996 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
02:43:04.0390 2996 MSTEE - ok
02:43:04.0437 2996 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
02:43:04.0453 2996 Mup - ok
02:43:04.0500 2996 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
02:43:04.0500 2996 NABTSFEC - ok
02:43:04.0546 2996 [ 911587FD303C9690A428BB4B04732B61 ] napagent C:\WINDOWS\System32\qagentrt.dll
02:43:04.0562 2996 napagent - ok
02:43:04.0609 2996 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
02:43:04.0625 2996 NDIS - ok
02:43:04.0671 2996 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
02:43:04.0687 2996 NdisIP - ok
02:43:04.0734 2996 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
02:43:04.0734 2996 NdisTapi - ok
02:43:04.0796 2996 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
02:43:04.0812 2996 Ndisuio - ok
02:43:04.0859 2996 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
02:43:04.0859 2996 NdisWan - ok
02:43:04.0906 2996 [ 2F597BB467E05B1FE3830EABD821B8E0 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
02:43:04.0906 2996 NDProxy - ok
02:43:04.0937 2996 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
02:43:04.0953 2996 NetBIOS - ok
02:43:04.0984 2996 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
02:43:05.0000 2996 NetBT - ok
02:43:05.0046 2996 [ 1B09227E41F414A93DBC0BAF80C4D527 ] NetDDE C:\WINDOWS\system32\netdde.exe
02:43:05.0062 2996 NetDDE - ok
02:43:05.0078 2996 [ 1B09227E41F414A93DBC0BAF80C4D527 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
02:43:05.0078 2996 NetDDEdsdm - ok
02:43:05.0125 2996 [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] Netlogon C:\WINDOWS\system32\lsass.exe
02:43:05.0125 2996 Netlogon - ok
02:43:05.0171 2996 [ 02815B70FC4CA8611A926176F1C39FC2 ] Netman C:\WINDOWS\System32\netman.dll
02:43:05.0171 2996 Netman - ok
02:43:05.0234 2996 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:43:05.0250 2996 NetTcpPortSharing - ok
02:43:05.0265 2996 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
02:43:05.0265 2996 NIC1394 - ok
02:43:05.0328 2996 [ C6B69A18D39744725FB73AC85E46032B ] Nla C:\WINDOWS\System32\mswsock.dll
02:43:05.0343 2996 Nla - ok
02:43:05.0375 2996 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
02:43:05.0375 2996 Npfs - ok
02:43:05.0453 2996 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
02:43:05.0500 2996 Ntfs - ok
02:43:05.0531 2996 [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
02:43:05.0531 2996 NtLmSsp - ok
02:43:05.0593 2996 [ 89DB90B5F35D2795D9FC56D933CC72B8 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
02:43:05.0625 2996 NtmsSvc - ok
02:43:05.0656 2996 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
02:43:05.0656 2996 Null - ok
02:43:05.0718 2996 [ C8DAA008F9E390B9DA504C1CD0DA1EE9 ] nvatabus C:\WINDOWS\system32\DRIVERS\nvatabus.sys
02:43:05.0718 2996 nvatabus - ok
02:43:05.0781 2996 [ 0F432994CA6BAFD97321BFA86296F435 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
02:43:05.0796 2996 NVENETFD - ok
02:43:05.0843 2996 [ 75E2E77C5497F34E60491D27BF03F1CB ] nvgts C:\WINDOWS\system32\DRIVERS\nvgts.sys
02:43:05.0859 2996 nvgts - ok
02:43:05.0906 2996 [ CAE6911F13850B56CB6C96F6BDA70D9B ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
02:43:05.0906 2996 nvnetbus - ok
02:43:05.0953 2996 [ 73D4112D75E188BC161B3695C401DB86 ] NvnUsbAudio C:\WINDOWS\system32\DRIVERS\nvnusbaudio.sys
02:43:05.0968 2996 NvnUsbAudio - ok
02:43:06.0015 2996 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
02:43:06.0015 2996 NwlnkFlt - ok
02:43:06.0046 2996 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
02:43:06.0062 2996 NwlnkFwd - ok
02:43:06.0078 2996 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
02:43:06.0078 2996 ohci1394 - ok
02:43:06.0109 2996 ovt519 - ok
02:43:06.0171 2996 [ 4E9408A178B2D955871C2CDD278DE3C3 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
02:43:06.0171 2996 Parport - ok
02:43:06.0203 2996 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
02:43:06.0203 2996 PartMgr - ok
02:43:06.0250 2996 [ 0DABEF655A444CB1E193626FB1D24B9F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
02:43:06.0265 2996 ParVdm - ok
02:43:06.0281 2996 pccsmcfd - ok
02:43:06.0328 2996 [ F40A46892AFEBB0314536B849D57C11E ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
02:43:06.0343 2996 PCI - ok
02:43:06.0359 2996 PCIDump - ok
02:43:06.0390 2996 [ B2DF00D650FD6C4EE781740ED3C8E67F ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
02:43:06.0390 2996 PCIIde - ok
02:43:06.0421 2996 [ 815C50F2B1D1562800BDCE8BE895000E ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
02:43:06.0437 2996 Pcmcia - ok
02:43:06.0484 2996 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
02:43:06.0484 2996 pcouffin - ok
02:43:06.0515 2996 PDCOMP - ok
02:43:06.0531 2996 PDFRAME - ok
02:43:06.0546 2996 PDRELI - ok
02:43:06.0562 2996 PDRFRAME - ok
02:43:06.0578 2996 perc2 - ok
02:43:06.0593 2996 perc2hib - ok
02:43:06.0656 2996 [ 26845F272435302E0F3322E660A24F7D ] PlugPlay C:\WINDOWS\system32\services.exe
02:43:06.0671 2996 PlugPlay - ok
02:43:06.0687 2996 [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
02:43:06.0687 2996 PolicyAgent - ok
02:43:06.0812 2996 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
02:43:06.0812 2996 PptpMiniport - ok
02:43:06.0859 2996 [ B479F50E883B2297A5F7F212AAEE6F6C ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
02:43:06.0859 2996 Processor - ok
02:43:06.0875 2996 [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
02:43:06.0875 2996 ProtectedStorage - ok
02:43:06.0921 2996 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
02:43:06.0937 2996 Ptilink - ok
02:43:06.0953 2996 ql1080 - ok
02:43:06.0968 2996 Ql10wnt - ok
02:43:06.0984 2996 ql12160 - ok
02:43:07.0000 2996 ql1240 - ok
02:43:07.0015 2996 ql1280 - ok
02:43:07.0140 2996 [ 432F5B15E21A54B48072593F03570326 ] RalinkRegistryWriter C:\Programmi\RALINK\Common\RalinkRegistryWriter.exe
02:43:07.0140 2996 RalinkRegistryWriter - ok
02:43:07.0265 2996 [ 2977F7750EA2BECB3E623814D2C18800 ] RaMediaServer C:\Programmi\RALINK\Common\RaMediaServer.exe
02:43:07.0390 2996 RaMediaServer - ok
02:43:07.0437 2996 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
02:43:07.0453 2996 RasAcd - ok
02:43:07.0500 2996 [ 9839B418343D6E6E52659BDF3FF1FE67 ] RasAuto C:\WINDOWS\System32\rasauto.dll
02:43:07.0515 2996 RasAuto - ok
02:43:07.0546 2996 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
02:43:07.0546 2996 Rasl2tp - ok
02:43:07.0593 2996 [ 62AD41548E720DB4763B86F95E44F3FA ] RasMan C:\WINDOWS\System32\rasmans.dll
02:43:07.0593 2996 RasMan - ok
02:43:07.0625 2996 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
02:43:07.0640 2996 RasPppoe - ok
02:43:07.0656 2996 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
02:43:07.0671 2996 Raspti - ok
02:43:07.0687 2996 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
02:43:07.0765 2996 Rdbss - ok
02:43:07.0828 2996 [ CE6ADD4A9C6D5685A14C66F7C01FC133 ] RDID1064 C:\WINDOWS\system32\Drivers\rdwm1064.sys
02:43:07.0843 2996 RDID1064 - ok
02:43:07.0875 2996 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
02:43:07.0875 2996 RDPCDD - ok
02:43:07.0968 2996 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
02:43:07.0984 2996 RDPWD - ok
02:43:08.0046 2996 [ CC72E6AE90245F0AE48BF1236A7E1F9C ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
02:43:08.0046 2996 RDSessMgr - ok
02:43:08.0093 2996 [ 393FC252593323B624B230ECA6B85E63 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
02:43:08.0109 2996 redbook - ok
02:43:08.0156 2996 [ 7EBBF16FBD3E0E34F084FA635C1844E3 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
02:43:08.0156 2996 RemoteAccess - ok
02:43:08.0203 2996 [ DC97F6C8A94691834439872B9E8FF2B3 ] RpcLocator C:\WINDOWS\system32\locator.exe
02:43:08.0203 2996 RpcLocator - ok
02:43:08.0265 2996 [ BC4E0226341AAEC1222336B3AED86BAB ] RpcSs C:\WINDOWS\System32\rpcss.dll
02:43:08.0265 2996 RpcSs - ok
02:43:08.0312 2996 [ DCE0D20F8FB66DF41D53734BFF9D66F0 ] RSVP C:\WINDOWS\system32\rsvp.exe
02:43:08.0328 2996 RSVP - ok
02:43:08.0406 2996 [ 4F73E0A397A85392A4F7410F8B808311 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys
02:43:08.0453 2996 rt2870 - ok
02:43:08.0531 2996 [ C7BCF9808E2A1B4CABE16FF7FBCE5FAB ] RT73 C:\WINDOWS\system32\DRIVERS\Dr71WU.sys
02:43:08.0546 2996 RT73 - ok
02:43:08.0718 2996 [ B916D4C11EB16F6F5B91360E78DADFF7 ] RTHDMIAzAudService C:\WINDOWS\system32\drivers\RtKHDMI.sys
02:43:08.0921 2996 RTHDMIAzAudService - ok
02:43:08.0937 2996 [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] SamSs C:\WINDOWS\system32\lsass.exe
02:43:08.0953 2996 SamSs - ok
02:43:09.0000 2996 [ 1D456F1CD76A80793C07BA52CF3A7455 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
02:43:09.0015 2996 SCardSvr - ok
02:43:09.0062 2996 [ 511886E5BD060046CCE8373E92E62EDF ] Schedule C:\WINDOWS\system32\schedsvc.dll
02:43:09.0062 2996 Schedule - ok
02:43:09.0156 2996 [ F34C06D1C706A6D9433570B087A18B02 ] Scutum50 C:\WINDOWS\system32\Drivers\Scutum50.sys
02:43:09.0156 2996 Scutum50 - ok
02:43:09.0234 2996 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
02:43:09.0234 2996 Secdrv - ok
02:43:09.0265 2996 [ 17C6354CA08E7C7972E12C67478AE134 ] seclogon C:\WINDOWS\System32\seclogon.dll
02:43:09.0265 2996 seclogon - ok
02:43:09.0296 2996 [ A0ECA1CE0FCCB29C5E4E1F416E95E73E ] SENS C:\WINDOWS\system32\sens.dll
02:43:09.0296 2996 SENS - ok
02:43:09.0343 2996 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
02:43:09.0359 2996 serenum - ok
02:43:09.0406 2996 [ FDBD9D64E2E03270021D424F0DCCF79D ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
02:43:09.0437 2996 Serial - ok
02:43:09.0484 2996 setup_9.0.0.722_22.05.2011_10-14drv - ok
02:43:09.0609 2996 [ BEBD4B6AA84D977B997587897342816C ] setup_9.0.0.722_26.05.2011_14-12drv C:\WINDOWS\system32\DRIVERS\2767017.sys
02:43:09.0718 2996 setup_9.0.0.722_26.05.2011_14-12drv - ok
02:43:09.0843 2996 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
02:43:09.0859 2996 Sfloppy - ok
02:43:10.0046 2996 [ 152C0555925DFE028E3148FD215146BB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
02:43:10.0093 2996 SharedAccess - ok
02:43:10.0125 2996 [ DCCC606FC144F6E44E497F9A906F1C30 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
02:43:10.0125 2996 ShellHWDetection - ok
02:43:10.0140 2996 Simbad - ok
02:43:10.0218 2996 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
02:43:10.0234 2996 SLIP - ok
02:43:10.0265 2996 Sparrow - ok
02:43:10.0343 2996 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
02:43:10.0375 2996 splitter - ok
02:43:10.0421 2996 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
02:43:10.0437 2996 Spooler - ok
02:43:10.0656 2996 [ F42EFEFB765235F24B24E1D2B6F99F46 ] sptd C:\WINDOWS\System32\Drivers\sptd.sys
02:43:10.0656 2996 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: F42EFEFB765235F24B24E1D2B6F99F46
02:43:10.0656 2996 sptd ( LockedFile.Multi.Generic ) - warning
02:43:10.0656 2996 sptd - detected LockedFile.Multi.Generic (1)
02:43:10.0703 2996 [ 618718CAE288BF7CBD8FCBAB2577D932 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
02:43:10.0734 2996 sr - ok
02:43:10.0859 2996 [ B3E3DA70A7A76E69B872DE3D06D32C19 ] srservice C:\WINDOWS\system32\srsvc.dll
02:43:10.0859 2996 srservice - ok
02:43:11.0046 2996 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
02:43:11.0125 2996 Srv - ok
02:43:11.0218 2996 [ 5215569DD3A8FBC65A85E85F3C12258B ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
02:43:11.0218 2996 SSDPSRV - ok
02:43:11.0281 2996 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
02:43:11.0328 2996 ssmdrv - ok
02:43:11.0406 2996 [ 1F730FDDC8E4602ECFD8D143F970CF82 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys
02:43:11.0437 2996 StarOpen - ok
02:43:11.0625 2996 [ 3B9263E137896E4D303494F116E00608 ] stisvc C:\WINDOWS\system32\wiaservc.dll
02:43:11.0656 2996 stisvc - ok
02:43:11.0703 2996 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
02:43:11.0843 2996 streamip - ok
02:43:11.0968 2996 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
02:43:12.0046 2996 swenum - ok
02:43:12.0093 2996 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
02:43:12.0125 2996 swmidi - ok
02:43:12.0140 2996 SwPrv - ok
02:43:12.0171 2996 symc810 - ok
02:43:12.0187 2996 symc8xx - ok
02:43:12.0203 2996 sym_hi - ok
02:43:12.0218 2996 sym_u3 - ok
02:43:12.0250 2996 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
02:43:12.0281 2996 sysaudio - ok
02:43:12.0375 2996 [ A34A9A872EEC4C026FD542AC7156FE0B ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
02:43:12.0421 2996 SysmonLog - ok
02:43:12.0484 2996 [ 6B85F1A9DCE45D45BFFAD3222C21F297 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
02:43:12.0515 2996 TapiSrv - ok
02:43:12.0656 2996 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
02:43:12.0890 2996 Tcpip - ok
02:43:13.0000 2996 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
02:43:13.0031 2996 TDPIPE - ok
02:43:13.0062 2996 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
02:43:13.0109 2996 TDTCP - ok
02:43:13.0156 2996 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
02:43:13.0187 2996 TermDD - ok
02:43:13.0406 2996 [ FE5A5329CCFC33D645C33077FF04F052 ] TermService C:\WINDOWS\System32\termsrv.dll
02:43:13.0437 2996 TermService - ok
02:43:13.0500 2996 [ DCCC606FC144F6E44E497F9A906F1C30 ] Themes C:\WINDOWS\System32\shsvcs.dll
02:43:13.0500 2996 Themes - ok
02:43:13.0531 2996 TosIde - ok
02:43:13.0578 2996 [ 690294999DF1248FAF85D95B31955D0C ] TrkWks C:\WINDOWS\system32\trkwks.dll
02:43:13.0578 2996 TrkWks - ok
02:43:13.0640 2996 [ B44A0B17EBFF0D6B34B168FB43065586 ] ubohci C:\WINDOWS\system32\DRIVERS\ubohci.sys
02:43:13.0656 2996 ubohci - ok
02:43:13.0687 2996 [ 0FF74147913ADDF9690FA556B62D8195 ] ubsbm C:\WINDOWS\system32\DRIVERS\ubsbm.sys
02:43:13.0703 2996 ubsbm - ok
02:43:13.0734 2996 [ 20DED0B52A38D67EA9A520A7323CB9E1 ] ubumapi C:\WINDOWS\system32\DRIVERS\ubumapi.sys
02:43:13.0750 2996 ubumapi - ok
02:43:13.0812 2996 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
02:43:13.0828 2996 Udfs - ok
02:43:13.0859 2996 ultra - ok
02:43:13.0921 2996 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
02:43:13.0953 2996 Update - ok
02:43:14.0015 2996 [ 8057B0744D9842A090E51D2845861D5F ] upnphost C:\WINDOWS\System32\upnphost.dll
02:43:14.0015 2996 upnphost - ok
02:43:14.0062 2996 [ F5E8B846EC10E1DF8DCA64119E2EB709 ] UPS C:\WINDOWS\System32\ups.exe
02:43:14.0078 2996 UPS - ok
02:43:14.0093 2996 usbaucmd - ok
02:43:14.0171 2996 [ 65898A183FBF1D1F7759D5CCB364DCD4 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
02:43:14.0171 2996 usbaudio - ok
02:43:14.0234 2996 [ 1B611611C28D2DF25BC057D79C6F13FC ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
02:43:14.0234 2996 usbccgp - ok
02:43:14.0265 2996 [ 4BAC8DF07F1D8434FC640E677A62204E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
02:43:14.0265 2996 usbehci - ok
02:43:14.0328 2996 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
02:43:14.0328 2996 usbhub - ok
02:43:14.0359 2996 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
02:43:14.0375 2996 usbohci - ok
02:43:14.0421 2996 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
02:43:14.0437 2996 usbprint - ok
02:43:14.0484 2996 [ F8EDE2B6928970DCE3D5614C27D9E7F6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
02:43:14.0484 2996 usbscan - ok
02:43:14.0546 2996 [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
02:43:14.0546 2996 usbstor - ok
02:43:14.0578 2996 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
02:43:14.0578 2996 VgaSave - ok
02:43:14.0593 2996 ViaIde - ok
02:43:14.0609 2996 vkquwexg - ok
02:43:14.0656 2996 [ E46C1B5A56DA7DA603D09DFCC79EC59E ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
02:43:14.0671 2996 VolSnap - ok
02:43:14.0750 2996 [ C2FE17125256102F5B44194D5DB0A799 ] VSS C:\WINDOWS\System32\vssvc.exe
02:43:14.0765 2996 VSS - ok
02:43:14.0828 2996 [ 2969DD84B584A6BB541A5273103957A3 ] W32Time C:\WINDOWS\system32\w32time.dll
02:43:14.0843 2996 W32Time - ok
02:43:14.0921 2996 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
02:43:14.0921 2996 Wanarp - ok
02:43:14.0984 2996 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
02:43:15.0031 2996 Wdf01000 - ok
02:43:15.0046 2996 WDICA - ok
02:43:15.0093 2996 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
02:43:15.0093 2996 wdmaud - ok
02:43:15.0156 2996 [ 2EC50EE79B65F60C8E8B4A03BBB3A42F ] WebClient C:\WINDOWS\System32\webclnt.dll
02:43:15.0156 2996 WebClient - ok
02:43:15.0203 2996 [ AC89B0FD546D430CC784AEE928BA108E ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
02:43:15.0265 2996 winachsf - ok
02:43:15.0359 2996 [ 40911E98D0F1CBB1015F2101982F1DDF ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
02:43:15.0359 2996 winmgmt - ok
02:43:15.0453 2996 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
02:43:15.0453 2996 WmdmPmSN - ok
02:43:15.0500 2996 [ 81FD02839FDB10ACF0EC40B809B9F8CC ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
02:43:15.0500 2996 WmiApSrv - ok
02:43:15.0609 2996 [ F30DC8F80CF65A323E8B6A2DB81561E3 ] WMPNetworkSvc C:\Programmi\Windows Media Player\WMPNetwk.exe
02:43:15.0687 2996 WMPNetworkSvc - ok
02:43:15.0734 2996 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
02:43:15.0750 2996 WpdUsb - ok
02:43:15.0796 2996 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
02:43:15.0812 2996 WS2IFSL - ok
02:43:15.0859 2996 [ 926D921C93CFF1E19EF4DE3E4C8368CA ] wscsvc C:\WINDOWS\system32\wscsvc.dll
02:43:15.0859 2996 wscsvc - ok
02:43:15.0875 2996 WSearch - ok
02:43:15.0921 2996 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
02:43:15.0921 2996 WSTCODEC - ok
02:43:15.0968 2996 [ CC48415E6C7CBAA441A3D6A6DCCBCFA6 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
02:43:15.0968 2996 wuauserv - ok
02:43:16.0015 2996 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
02:43:16.0031 2996 WudfPf - ok
02:43:16.0078 2996 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
02:43:16.0109 2996 WudfRd - ok
02:43:16.0156 2996 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
02:43:16.0156 2996 WudfSvc - ok
02:43:16.0218 2996 [ 053E0307A08CAC60793E27E921B46B3E ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
02:43:16.0234 2996 WZCSVC - ok
02:43:16.0281 2996 [ 5526482DCBA6047641B13BF9C75A74E0 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
02:43:16.0296 2996 xmlprov - ok
02:43:16.0359 2996 [ 570BA580BD8CAB422D463A7E9BB38773 ] ysusb32 C:\WINDOWS\system32\drivers\ysusb32.sys
02:43:16.0375 2996 ysusb32 - ok
02:43:16.0421 2996 ================ Scan global ===============================
02:43:16.0468 2996 [ 17DDFE6A0B5404C5EF4C03AD996D0562 ] C:\WINDOWS\system32\basesrv.dll
02:43:16.0546 2996 [ 63A5456E7C4E7771A8B39F82217E7825 ] C:\WINDOWS\system32\winsrv.dll
02:43:16.0562 2996 [ 63A5456E7C4E7771A8B39F82217E7825 ] C:\WINDOWS\system32\winsrv.dll
02:43:16.0609 2996 [ 26845F272435302E0F3322E660A24F7D ] C:\WINDOWS\system32\services.exe
02:43:16.0609 2996 [Global] - ok
02:43:16.0625 2996 ================ Scan MBR ==================================
02:43:16.0640 2996 [ 828E02D5C4A4FBE53441EE9DBEE51F43 ] \Device\Harddisk0\DR0
02:43:16.0828 2996 \Device\Harddisk0\DR0 - ok
02:43:16.0828 2996 ================ Scan VBR ==================================
02:43:16.0843 2996 [ BD1EA0BD47153FA77EFC8302847E26C4 ] \Device\Harddisk0\DR0\Partition1
02:43:16.0843 2996 \Device\Harddisk0\DR0\Partition1 - ok
02:43:16.0843 2996 ============================================================
02:43:16.0843 2996 Scan finished
02:43:16.0859 2996 ============================================================
02:43:16.0875 3016 Detected object count: 1
02:43:16.0875 3016 Actual detected object count: 1
02:43:27.0171 3016 C:\WINDOWS\System32\Drivers\sptd.sys - copied to quarantine
02:43:27.0171 3016 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
02:43:44.0390 2812 Deinitialize success

da GERONIMO* » sab feb 08, 2014 6:31 pm

ok
se hai la nuova versione cioè questa
http://www.comodo.com/home/internet-sec ... curity.php

lasiati solo comodo

altrimenti Avira più Online Armor

gli aggiornamenti riesci a installarli ora?

da **mitrha** » sab feb 08, 2014 7:49 pm

sembre prorpio di no

da **mitrha** » dom feb 09, 2014 1:26 pm

Niente da fare gli aggiornamenti nn riescono ad istallarsi [cry]

nncapisco perché??

da GERONIMO* » dom feb 09, 2014 2:54 pm

prova col Fix della Microsoft
http://go.microsoft.com/?linkid=9665683
salvalo sul desktop
lancia il tool
dispone di 2 opzioni Predefinita e Aggressiva
lo lanci e scegli Aggressiva segui le indicazioni
alla fine Riavvia il pc

da **mitrha** » dom feb 09, 2014 5:42 pm

alcune scansione che avevo effettuato con RogueKiller

RogueKiller V8.8.6 [Feb 7 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Safe mode with network support
User : Fabio [Admin rights]
Mode : Remove -- Date : 02/09/2014 16:44:39
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 29 ¤¤¤
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> [0x2] Impossibile trovare il file specificato.
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 38155281 (C:\WINDOWS\system32\DRIVERS\38155281.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> Cancellato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> Cancellato
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> Cancellato
[HJ][PUM] HKLM\[...]\SystemRestore : DisableSR (1) -> Sostituito (0)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> Sostituito (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> Sostituito (1)
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> Sostituito (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> Sostituito (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> Sostituito (0)

¤¤¤ Le attività pianificate : 0 ¤¤¤

¤¤¤ voci di avvio : 0 ¤¤¤

¤¤¤ I browser Web : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x2] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
-->

%SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2000BB-55GUC0 +++++
--- User ---
[MBR] 16884e38ed9f1c6aefb75d8aa1238268
[BSP] e57cd4280fd553a6a4f629f9540eb629 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 190771 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Funzione non corretta. )

Finished : << RKreport[0]_D_02092014_164439.txt >>
RKreport[0]_S_02092014_164347.txt

RogueKiller V8.8.6 [Feb 7 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Safe mode with network support
User : Fabio [Admin rights]
Mode : DNSFix -- Date : 02/09/2014 16:45:19
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x2] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

Finished : << RKreport[0]_DN_02092014_164519.txt >>
RKreport[0]_D_02092014_164439.txt;RKreport[0]_H_02092014_164508.txt;RKreport[0]_S_02092014_164347.txt

RogueKiller V8.8.6 [Feb 7 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Safe mode with network support
User : Fabio [Admin rights]
Mode : HOSTSFix -- Date : 02/09/2014 16:45:08
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x2] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
-->

%SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ Reset HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[0]_H_02092014_164508.txt >>
RKreport[0]_D_02092014_164439.txt;RKreport[0]_S_02092014_164347.txt

RogueKiller V8.8.6 [Feb 7 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Safe mode with network support
User : Fabio [Admin rights]
Mode : ProxyFix -- Date : 02/09/2014 16:45:11
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ I browser Web : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x2] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

Finished : << RKreport[0]_PR_02092014_164511.txt >>
RKreport[0]_D_02092014_164439.txt;RKreport[0]_H_02092014_164508.txt;RKreport[0]_S_02092014_164347.txt

RogueKiller V8.8.6 [Feb 7 2014] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Safe mode with network support
User : Fabio [Admin rights]
Mode : Scan -- Date : 02/09/2014 16:43:47
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 29 ¤¤¤
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CCSet\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS002\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 27670171 (C:\WINDOWS\system32\DRIVERS\27670171.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 27670172 (C:\WINDOWS\system32\DRIVERS\27670172.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 38155281 (C:\WINDOWS\system32\DRIVERS\38155281.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 38155282 (C:\WINDOWS\system32\DRIVERS\38155282.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 44449211 (C:\WINDOWS\system32\DRIVERS\44449211.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : 44449212 (C:\WINDOWS\system32\DRIVERS\44449212.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : setup_9.0.0.722_22.05.2011_10-14drv (C:\WINDOWS\system32\DRIVERS\4444921.sys [x]) -> Trovato
[SERVICE][ROGUE ST] HKLM\[...]\CS003\[...]\Services : setup_9.0.0.722_26.05.2011_14-12drv (C:\WINDOWS\system32\DRIVERS\2767017.sys [-]) -> Trovato
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> Trovato
[HJ][PUM] HKLM\[...]\SystemRestore : DisableSR (1) -> Trovato
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyPics (0) -> Trovato
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyMusic (0) -> Trovato
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> Trovato
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> Trovato
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> Trovato

¤¤¤ Le attività pianificate : 0 ¤¤¤

¤¤¤ voci di avvio : 0 ¤¤¤

¤¤¤ I browser Web : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED 0x2] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
-->

%SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD2000BB-55GUC0 +++++
--- User ---
[MBR] 16884e38ed9f1c6aefb75d8aa1238268
[BSP] e57cd4280fd553a6a4f629f9540eb629 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 190771 Mo
User = LL1 ... OK!
Error reading LL2 MBR! ([0x1] Funzione non corretta. )

Finished : << RKreport[0]_S_02092014_164347.txt >>

da **mitrha** » dom feb 09, 2014 5:48 pm

E Virus Remover:

Virus Remover version 1.2.0.890

System memory OK
ACPI: C:\WINDOWS\system32\DRIVERS\ACPI.sys OK
aec: C:\WINDOWS\system32\drivers\aec.sys OK
AegisP: C:\WINDOWS\system32\DRIVERS\AegisP.sys OK
AFD: C:\WINDOWS\System32\drivers\afd.sys OK
ALCXWDM: C:\WINDOWS\system32\drivers\ALCXWDM.SYS OK
Alerter: C:\WINDOWS\system32\alrsvc.dll OK
ALG: C:\WINDOWS\System32\alg.exe OK
AntiVirWebService: C:\Programmi\Avira\AntiVir Desktop\AVWEBGRD.EXE OK
AppMgmt: C:\WINDOWS\System32\appmgmts.dll Not Found
Arp1394: C:\WINDOWS\system32\DRIVERS\arp1394.sys OK
aspnet_state: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe OK
AsyncMac: C:\WINDOWS\system32\DRIVERS\asyncmac.sys OK
atapi: C:\WINDOWS\system32\DRIVERS\atapi.sys OK
ati2mtag: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys OK
Atmarpc: C:\WINDOWS\system32\DRIVERS\atmarpc.sys OK
AudioSrv: C:\WINDOWS\System32\audiosrv.dll OK
audstub: C:\WINDOWS\system32\DRIVERS\audstub.sys OK
avgntflt: C:\WINDOWS\system32\DRIVERS\avgntflt.sys OK
avipbb: C:\WINDOWS\system32\DRIVERS\avipbb.sys OK
avkmgr: C:\WINDOWS\system32\DRIVERS\avkmgr.sys OK
BootDefragDriver: C:\WINDOWS\System32\drivers\BootDefragDriver.sys OK
Browser: C:\WINDOWS\System32\browser.dll OK
CAM1210: C:\WINDOWS\System32\Drivers\cam1210.sys OK
CCDECODE: C:\WINDOWS\system32\DRIVERS\CCDECODE.sys OK
Cdrom: C:\WINDOWS\system32\DRIVERS\cdrom.sys OK
ClipSrv: C:\WINDOWS\system32\clipsrv.exe OK
clr_optimization_v2.0.50727_32: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe OK
COMSysApp: C:\WINDOWS\system32\dllhost.exe OK
CryptSvc: C:\WINDOWS\System32\cryptsvc.dll OK
DcomLaunch: C:\WINDOWS\system32\rpcss.dll OK
Dhcp: C:\WINDOWS\System32\dhcpcsvc.dll OK
Disk: C:\WINDOWS\system32\DRIVERS\disk.sys OK
dmadmin: C:\WINDOWS\System32\dmadmin.exe OK
dmio: C:\WINDOWS\System32\drivers\dmio.sys OK
dmload: C:\WINDOWS\System32\drivers\dmload.sys OK
dmserver: C:\WINDOWS\System32\dmserver.dll OK
DMusic: C:\WINDOWS\system32\drivers\DMusic.sys OK
Dnscache: C:\WINDOWS\System32\dnsrslvr.dll OK
Dot3svc: C:\WINDOWS\System32\dot3svc.dll OK
drmkaud: C:\WINDOWS\system32\drivers\drmkaud.sys OK
EapHost: C:\WINDOWS\System32\eapsvc.dll OK
ERSvc: C:\WINDOWS\System32\ersvc.dll OK
Eventlog: C:\WINDOWS\system32\services.exe OK
EventSystem: C:\WINDOWS\system32\es.dll OK
FastUserSwitchingCompatibility: C:\WINDOWS\System32\shsvcs.dll OK
Fdc: C:\WINDOWS\system32\DRIVERS\fdc.sys OK
Flpydisk: C:\WINDOWS\system32\DRIVERS\flpydisk.sys OK
FltMgr: C:\WINDOWS\system32\drivers\fltmgr.sys OK
FontCache3.0.0.0: c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe OK
Ftdisk: C:\WINDOWS\system32\DRIVERS\ftdisk.sys OK
Gpc: C:\WINDOWS\system32\DRIVERS\msgpc.sys OK
HDAudBus: C:\WINDOWS\system32\DRIVERS\HDAudBus.sys OK
helpsvc: C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll OK
HidServ: C:\WINDOWS\System32\hidserv.dll OK
HidUsb: C:\WINDOWS\system32\DRIVERS\hidusb.sys OK
hitmanpro37: C:\WINDOWS\system32\drivers\hitmanpro37.sys OK
hkmsvc: C:\WINDOWS\System32\kmsvc.dll OK
HPZid412: C:\WINDOWS\system32\DRIVERS\HPZid412.sys OK
HPZipr12: C:\WINDOWS\system32\DRIVERS\HPZipr12.sys OK
HPZius12: C:\WINDOWS\system32\DRIVERS\HPZius12.sys OK
HSFHWBS2: C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys OK
HSF_DP: C:\WINDOWS\system32\DRIVERS\HSF_DP.sys OK
HTTP: C:\WINDOWS\System32\Drivers\HTTP.sys OK
HTTPFilter: C:\WINDOWS\System32\w3ssl.dll OK
hwdatacard: C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys OK
i8042prt: C:\WINDOWS\system32\DRIVERS\i8042prt.sys OK
IDriverT: C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe OK
idsvc: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe OK
Imapi: C:\WINDOWS\system32\DRIVERS\imapi.sys OK
ImapiService: C:\WINDOWS\system32\imapi.exe OK
Ip6Fw: C:\WINDOWS\system32\drivers\ip6fw.sys OK
IpFilterDriver: C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys OK
IpInIp: C:\WINDOWS\system32\DRIVERS\ipinip.sys OK
IpNat: C:\WINDOWS\system32\DRIVERS\ipnat.sys OK
IPSec: C:\WINDOWS\system32\DRIVERS\ipsec.sys OK
IRENUM: C:\WINDOWS\system32\DRIVERS\irenum.sys OK
isapnp: C:\WINDOWS\system32\DRIVERS\isapnp.sys OK
JavaQuickStarterService: C:\Programmi\Java\jre7\bin\jqs.exe OK
Kbdclass: C:\WINDOWS\system32\DRIVERS\kbdclass.sys OK
kbdhid: C:\WINDOWS\system32\DRIVERS\kbdhid.sys OK
KeyControl25: C:\WINDOWS\system32\drivers\esikey25.sys OK
kmixer: C:\WINDOWS\system32\drivers\kmixer.sys OK
KORGUMDS: C:\WINDOWS\System32\Drivers\KORGUMDS.SYS OK
lanmanserver: C:\WINDOWS\System32\srvsvc.dll OK
lanmanworkstation: C:\WINDOWS\System32\wkssvc.dll OK
LmHosts: C:\WINDOWS\System32\lmhsvc.dll OK
mcdbus: C:\WINDOWS\system32\DRIVERS\mcdbus.sys OK
mdmxsdk: C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys OK
Messenger: C:\WINDOWS\System32\msgsvc.dll OK
Mouclass: C:\WINDOWS\system32\DRIVERS\mouclass.sys OK
mouhid: C:\WINDOWS\system32\DRIVERS\mouhid.sys OK
MozillaMaintenance: C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe OK
MRxDAV: C:\WINDOWS\system32\DRIVERS\mrxdav.sys OK
MRxSmb: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys OK
MSDTC: C:\WINDOWS\system32\msdtc.exe OK
MSIServer: C:\WINDOWS\system32\msiexec.exe OK
MSKSSRV: C:\WINDOWS\system32\drivers\MSKSSRV.sys OK
MSPCLOCK: C:\WINDOWS\system32\drivers\MSPCLOCK.sys OK
MSPQM: C:\WINDOWS\system32\drivers\MSPQM.sys OK
mssmbios: C:\WINDOWS\system32\DRIVERS\mssmbios.sys OK
MSTEE: C:\WINDOWS\system32\drivers\MSTEE.sys OK
NABTSFEC: C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys OK
napagent: C:\WINDOWS\System32\qagentrt.dll OK
NdisIP: C:\WINDOWS\system32\DRIVERS\NdisIP.sys OK
NdisTapi: C:\WINDOWS\system32\DRIVERS\ndistapi.sys OK
Ndisuio: C:\WINDOWS\system32\DRIVERS\ndisuio.sys OK
NdisWan: C:\WINDOWS\system32\DRIVERS\ndiswan.sys OK
NetBIOS: C:\WINDOWS\system32\DRIVERS\netbios.sys OK
NetBT: C:\WINDOWS\system32\DRIVERS\netbt.sys OK
NetDDE: C:\WINDOWS\system32\netdde.exe OK
NetDDEdsdm: C:\WINDOWS\system32\netdde.exe OK
Netlogon: C:\WINDOWS\system32\lsass.exe OK
NetTcpPortSharing: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe OK
NIC1394: C:\WINDOWS\system32\DRIVERS\nic1394.sys OK
Nla: C:\WINDOWS\System32\mswsock.dll OK
NtLmSsp: C:\WINDOWS\system32\lsass.exe OK
NtmsSvc: C:\WINDOWS\system32\ntmssvc.dll OK
nvatabus: C:\WINDOWS\system32\DRIVERS\nvatabus.sys OK
NVENETFD: C:\WINDOWS\system32\DRIVERS\NVENETFD.sys OK
nvgts: C:\WINDOWS\system32\DRIVERS\nvgts.sys OK
nvnetbus: C:\WINDOWS\system32\DRIVERS\nvnetbus.sys OK
NvnUsbAudio: C:\WINDOWS\system32\DRIVERS\nvnusbaudio.sys OK
NwlnkFlt: C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys OK
NwlnkFwd: C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys OK
OAcat: C:\Programmi\Online Armor\OAcat.exe OK
OADevice: C:\WINDOWS\system32\drivers\OADriver.sys OK
oahlpXX: C:\WINDOWS\system32\drivers\oahlp32.sys OK
OAmon: C:\WINDOWS\system32\drivers\OAmon.sys OK
OAnet: C:\WINDOWS\system32\drivers\OAnet.sys OK
ohci1394: C:\WINDOWS\system32\DRIVERS\ohci1394.sys OK
Parport: C:\WINDOWS\system32\DRIVERS\parport.sys OK
PCI: C:\WINDOWS\system32\DRIVERS\pci.sys OK
PCIIde: C:\WINDOWS\system32\DRIVERS\pciide.sys OK
pcouffin: C:\WINDOWS\System32\Drivers\pcouffin.sys OK
PlugPlay: C:\WINDOWS\system32\services.exe OK
PolicyAgent: C:\WINDOWS\system32\lsass.exe OK
PptpMiniport: C:\WINDOWS\system32\DRIVERS\raspptp.sys OK
Processor: C:\WINDOWS\system32\DRIVERS\processr.sys OK
Ptilink: C:\WINDOWS\system32\DRIVERS\ptilink.sys OK
RalinkRegistryWriter: C:\Programmi\RALINK\Common\RalinkRegistryWriter.exe OK
RaMediaServer: C:\Programmi\RALINK\Common\RaMediaServer.exe OK
RasAcd: C:\WINDOWS\system32\DRIVERS\rasacd.sys OK
RasAuto: C:\WINDOWS\System32\rasauto.dll OK
Rasl2tp: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys OK
RasMan: C:\WINDOWS\System32\rasmans.dll OK
RasPppoe: C:\WINDOWS\system32\DRIVERS\raspppoe.sys OK
Raspti: C:\WINDOWS\system32\DRIVERS\raspti.sys OK
Rdbss: C:\WINDOWS\system32\DRIVERS\rdbss.sys OK
RDID1064: C:\WINDOWS\system32\Drivers\rdwm1064.sys OK
RDPCDD: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys OK
RDSessMgr: C:\WINDOWS\system32\sessmgr.exe OK
redbook: C:\WINDOWS\system32\DRIVERS\redbook.sys OK
RemoteAccess: C:\WINDOWS\System32\mprdim.dll OK
RpcLocator: C:\WINDOWS\system32\locator.exe OK
RpcSs: C:\WINDOWS\System32\rpcss.dll OK
RSVP: C:\WINDOWS\system32\rsvp.exe OK
rt2870: C:\WINDOWS\system32\DRIVERS\rt2870.sys OK
RT73: C:\WINDOWS\system32\DRIVERS\Dr71WU.sys OK
RTHDMIAzAudService: C:\WINDOWS\system32\drivers\RtKHDMI.sys OK
SamSs: C:\WINDOWS\system32\lsass.exe OK
SCardSvr: C:\WINDOWS\System32\SCardSvr.exe OK
Schedule: C:\WINDOWS\system32\schedsvc.dll OK
Scutum50: C:\WINDOWS\System32\Drivers\Scutum50.sys OK
Secdrv: C:\WINDOWS\system32\DRIVERS\secdrv.sys OK
SENS: C:\WINDOWS\system32\sens.dll OK
serenum: C:\WINDOWS\system32\DRIVERS\serenum.sys OK
Serial: C:\WINDOWS\system32\DRIVERS\serial.sys OK
SharedAccess: C:\WINDOWS\System32\ipnathlp.dll OK
ShellHWDetection: C:\WINDOWS\System32\shsvcs.dll OK
SLIP: C:\WINDOWS\system32\DRIVERS\SLIP.sys OK
splitter: C:\WINDOWS\system32\drivers\splitter.sys OK
sptd: C:\WINDOWS\System32\Drivers\sptd.sys Can't open
sr: C:\WINDOWS\system32\DRIVERS\sr.sys OK
srservice: C:\WINDOWS\system32\srsvc.dll OK
Srv: C:\WINDOWS\system32\DRIVERS\srv.sys OK
SSDPSRV: C:\WINDOWS\System32\ssdpsrv.dll OK
ssmdrv: C:\WINDOWS\system32\DRIVERS\ssmdrv.sys OK
stisvc: C:\WINDOWS\system32\wiaservc.dll OK
streamip: C:\WINDOWS\system32\DRIVERS\StreamIP.sys OK
SvcOnlineArmor: C:\Programmi\Online Armor\oasrv.exe OK
swenum: C:\WINDOWS\system32\DRIVERS\swenum.sys OK
swmidi: C:\WINDOWS\system32\drivers\swmidi.sys OK
SwPrv: C:\WINDOWS\system32\dllhost.exe OK
sysaudio: C:\WINDOWS\system32\drivers\sysaudio.sys OK
SysmonLog: C:\WINDOWS\system32\smlogsvc.exe OK
TapiSrv: C:\WINDOWS\System32\tapisrv.dll OK
Tcpip: C:\WINDOWS\system32\DRIVERS\tcpip.sys OK
TermDD: C:\WINDOWS\system32\DRIVERS\termdd.sys OK
TermService: C:\WINDOWS\System32\termsrv.dll OK
Themes: C:\WINDOWS\System32\shsvcs.dll OK
TrkWks: C:\WINDOWS\system32\trkwks.dll OK
TrueSight: C:\WINDOWS\system32\TrueSight.sys Not Found
ubohci: C:\WINDOWS\system32\DRIVERS\ubohci.sys OK
ubsbm: C:\WINDOWS\system32\DRIVERS\ubsbm.sys OK
ubumapi: C:\WINDOWS\system32\DRIVERS\ubumapi.sys OK
Update: C:\WINDOWS\system32\DRIVERS\update.sys OK
upnphost: C:\WINDOWS\System32\upnphost.dll OK
UPS: C:\WINDOWS\System32\ups.exe OK
usbaucmd: C:\WINDOWS\system32\drivers\usbaucmd.sys Not Found
usbaudio: C:\WINDOWS\system32\drivers\usbaudio.sys OK
usbccgp: C:\WINDOWS\system32\DRIVERS\usbccgp.sys OK
usbehci: C:\WINDOWS\system32\DRIVERS\usbehci.sys OK
usbhub: C:\WINDOWS\system32\DRIVERS\usbhub.sys OK
usbohci: C:\WINDOWS\system32\DRIVERS\usbohci.sys OK
usbprint: C:\WINDOWS\system32\DRIVERS\usbprint.sys OK
usbscan: C:\WINDOWS\system32\DRIVERS\usbscan.sys OK
usbstor: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS OK
VgaSave: C:\WINDOWS\System32\drivers\vga.sys OK
vkquwexg: C:\WINDOWS\system32\drivers\Combo-Fix.sys Not Found
VSS: C:\WINDOWS\System32\vssvc.exe OK
W32Time: C:\WINDOWS\system32\w32time.dll OK
Wanarp: C:\WINDOWS\system32\DRIVERS\wanarp.sys OK
Wdf01000: C:\WINDOWS\System32\Drivers\wdf01000.sys OK
wdmaud: C:\WINDOWS\system32\drivers\wdmaud.sys OK
WebClient: C:\WINDOWS\System32\webclnt.dll OK
winachsf: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys OK
winmgmt: C:\WINDOWS\system32\wbem\WMIsvc.dll OK
WmdmPmSN: C:\WINDOWS\system32\MsPMSNSv.dll OK
WmiApSrv: C:\WINDOWS\system32\wbem\wmiapsrv.exe OK
WMPNetworkSvc: C:\Programmi\Windows Media Player\WMPNetwk.exe OK
WpdUsb: C:\WINDOWS\system32\DRIVERS\wpdusb.sys OK
WS2IFSL: C:\WINDOWS\System32\drivers\ws2ifsl.sys OK
wscsvc: C:\WINDOWS\system32\wscsvc.dll OK
WSearch: C:\WINDOWS\system32\SearchIndexer.exe OK
WSTCODEC: C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS OK
wuauserv: C:\WINDOWS\system32\wuauserv.dll OK
WudfPf: C:\WINDOWS\system32\DRIVERS\WudfPf.sys OK
WudfRd: C:\WINDOWS\system32\DRIVERS\wudfrd.sys OK
WudfSvc: C:\WINDOWS\System32\WUDFSvc.dll OK
WZCSVC: C:\WINDOWS\System32\wzcsvc.dll OK
xmlprov: C:\WINDOWS\System32\xmlprov.dll OK
ysusb32: C:\WINDOWS\system32\drivers\ysusb32.sys OK
ACPI: C:\WINDOWS\system32\DRIVERS\ACPI.sys OK
aec: C:\WINDOWS\system32\drivers\aec.sys OK
AFD: C:\WINDOWS\System32\drivers\afd.sys OK
ALCXWDM: C:\WINDOWS\system32\drivers\ALCXWDM.SYS OK
Alerter: C:\WINDOWS\system32\alrsvc.dll OK
ALG: C:\WINDOWS\System32\alg.exe OK
ANIO: C:\WINDOWS\system32\ANIO.SYS Not Found
AppMgmt: C:\WINDOWS\System32\appmgmts.dll Not Found
Arp1394: C:\WINDOWS\system32\DRIVERS\arp1394.sys OK
aspnet_state: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe OK
AsyncMac: C:\WINDOWS\system32\DRIVERS\asyncmac.sys OK
atapi: C:\WINDOWS\system32\DRIVERS\atapi.sys OK
Atmarpc: C:\WINDOWS\system32\DRIVERS\atmarpc.sys OK
AudioSrv: C:\WINDOWS\System32\audiosrv.dll OK
audstub: C:\WINDOWS\system32\DRIVERS\audstub.sys OK
avgio: C:\Programmi\Avira\AntiVir Desktop\avgio.sys Not Found
avgntflt: C:\WINDOWS\system32\DRIVERS\avgntflt.sys OK
avipbb: C:\WINDOWS\system32\DRIVERS\avipbb.sys OK
BITS: C:\WINDOWS\system32\qmgr.dll OK
Browser: C:\WINDOWS\System32\browser.dll OK
CAM1210: C:\WINDOWS\System32\Drivers\cam1210.sys OK
CCDECODE: C:\WINDOWS\system32\DRIVERS\CCDECODE.sys OK
Cdrom: C:\WINDOWS\system32\DRIVERS\cdrom.sys OK
ClipSrv: C:\WINDOWS\system32\clipsrv.exe OK
clr_optimization_v2.0.50727_32: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe OK
COMSysApp: C:\WINDOWS\system32\dllhost.exe OK
CryptSvc: C:\WINDOWS\System32\cryptsvc.dll OK
DcomLaunch: C:\WINDOWS\system32\rpcss.dll OK
Dhcp: C:\WINDOWS\System32\dhcpcsvc.dll OK
Disk: C:\WINDOWS\system32\DRIVERS\disk.sys OK
dmadmin: C:\WINDOWS\System32\dmadmin.exe OK
dmio: C:\WINDOWS\System32\drivers\dmio.sys OK
dmload: C:\WINDOWS\System32\drivers\dmload.sys OK
dmserver: C:\WINDOWS\System32\dmserver.dll OK
DMusic: C:\WINDOWS\system32\drivers\DMusic.sys OK
Dnscache: C:\WINDOWS\System32\dnsrslvr.dll OK
Dot3svc: C:\WINDOWS\System32\dot3svc.dll OK
drmkaud: C:\WINDOWS\system32\drivers\drmkaud.sys OK
EapHost: C:\WINDOWS\System32\eapsvc.dll OK
ERSvc: C:\WINDOWS\System32\ersvc.dll OK
Eventlog: C:\WINDOWS\system32\services.exe OK
EventSystem: C:\WINDOWS\system32\es.dll OK
FastUserSwitchingCompatibility: C:\WINDOWS\System32\shsvcs.dll OK
Fdc: C:\WINDOWS\system32\DRIVERS\fdc.sys OK
Flpydisk: C:\WINDOWS\system32\DRIVERS\flpydisk.sys OK
FltMgr: C:\WINDOWS\system32\drivers\fltmgr.sys OK
FontCache3.0.0.0: c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe OK
Ftdisk: C:\WINDOWS\system32\DRIVERS\ftdisk.sys OK
Gpc: C:\WINDOWS\system32\DRIVERS\msgpc.sys OK
helpsvc: C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll OK
HidServ: C:\WINDOWS\System32\hidserv.dll OK
HidUsb: C:\WINDOWS\system32\DRIVERS\hidusb.sys OK
hkmsvc: C:\WINDOWS\System32\kmsvc.dll OK
HSFHWBS2: C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys OK
HSF_DP: C:\WINDOWS\system32\DRIVERS\HSF_DP.sys OK
HTTP: C:\WINDOWS\System32\Drivers\HTTP.sys OK
HTTPFilter: C:\WINDOWS\System32\w3ssl.dll OK
i8042prt: C:\WINDOWS\system32\DRIVERS\i8042prt.sys OK
IDriverT: C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe OK
idsvc: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe OK
Imapi: C:\WINDOWS\system32\DRIVERS\imapi.sys OK
ImapiService: C:\WINDOWS\system32\imapi.exe OK
Ip6Fw: C:\WINDOWS\system32\drivers\ip6fw.sys OK
IpFilterDriver: C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys OK
IpInIp: C:\WINDOWS\system32\DRIVERS\ipinip.sys OK
IpNat: C:\WINDOWS\system32\DRIVERS\ipnat.sys OK
IPSec: C:\WINDOWS\system32\DRIVERS\ipsec.sys OK
IRENUM: C:\WINDOWS\system32\DRIVERS\irenum.sys OK
isapnp: C:\WINDOWS\system32\DRIVERS\isapnp.sys OK
JavaQuickStarterService: C:\Programmi\Java\jre6\bin\jqs.exe OK
Kbdclass: C:\WINDOWS\system32\DRIVERS\kbdclass.sys OK
kbdhid: C:\WINDOWS\system32\DRIVERS\kbdhid.sys OK
kmixer: C:\WINDOWS\system32\drivers\kmixer.sys OK
lanmanserver: C:\WINDOWS\System32\srvsvc.dll OK
lanmanworkstation: C:\WINDOWS\System32\wkssvc.dll OK
LmHosts: C:\WINDOWS\System32\lmhsvc.dll OK
mdmxsdk: C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys OK
Messenger: C:\WINDOWS\System32\msgsvc.dll OK
Mouclass: C:\WINDOWS\system32\DRIVERS\mouclass.sys OK
mouhid: C:\WINDOWS\system32\DRIVERS\mouhid.sys OK
MRxDAV: C:\WINDOWS\system32\DRIVERS\mrxdav.sys OK
MRxSmb: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys OK
MSDTC: C:\WINDOWS\system32\msdtc.exe OK
MSIServer: C:\WINDOWS\system32\msiexec.exe OK
MSKSSRV: C:\WINDOWS\system32\drivers\MSKSSRV.sys OK
MSPCLOCK: C:\WINDOWS\system32\drivers\MSPCLOCK.sys OK
MSPQM: C:\WINDOWS\system32\drivers\MSPQM.sys OK
mssmbios: C:\WINDOWS\system32\DRIVERS\mssmbios.sys OK
MSTEE: C:\WINDOWS\system32\drivers\MSTEE.sys OK
NABTSFEC: C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys OK
napagent: C:\WINDOWS\System32\qagentrt.dll OK
NdisIP: C:\WINDOWS\system32\DRIVERS\NdisIP.sys OK
NdisTapi: C:\WINDOWS\system32\DRIVERS\ndistapi.sys OK
Ndisuio: C:\WINDOWS\system32\DRIVERS\ndisuio.sys OK
NdisWan: C:\WINDOWS\system32\DRIVERS\ndiswan.sys OK
NetBIOS: C:\WINDOWS\system32\DRIVERS\netbios.sys OK
NetBT: C:\WINDOWS\system32\DRIVERS\netbt.sys OK
NetDDE: C:\WINDOWS\system32\netdde.exe OK
NetDDEdsdm: C:\WINDOWS\system32\netdde.exe OK
Netlogon: C:\WINDOWS\system32\lsass.exe OK
NetTcpPortSharing: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe OK
NIC1394: C:\WINDOWS\system32\DRIVERS\nic1394.sys OK
Nla: C:\WINDOWS\System32\mswsock.dll OK
NMSAccess: C:\Programmi\CDBurnerXP\NMSAccessU.exe OK
NtLmSsp: C:\WINDOWS\system32\lsass.exe OK
NtmsSvc: C:\WINDOWS\system32\ntmssvc.dll OK
nvatabus: C:\WINDOWS\system32\DRIVERS\nvatabus.sys OK
NVENETFD: C:\WINDOWS\system32\DRIVERS\NVENETFD.sys OK
nvnetbus: C:\WINDOWS\system32\DRIVERS\nvnetbus.sys OK
NwlnkFlt: C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys OK
NwlnkFwd: C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys OK
ohci1394: C:\WINDOWS\system32\DRIVERS\ohci1394.sys OK
Parport: C:\WINDOWS\system32\DRIVERS\parport.sys OK
PCI: C:\WINDOWS\system32\DRIVERS\pci.sys OK
PCIIde: C:\WINDOWS\system32\DRIVERS\pciide.sys OK
PlugPlay: C:\WINDOWS\system32\services.exe OK
PolicyAgent: C:\WINDOWS\system32\lsass.exe OK
PptpMiniport: C:\WINDOWS\system32\DRIVERS\raspptp.sys OK
Processor: C:\WINDOWS\system32\DRIVERS\processr.sys OK
Ptilink: C:\WINDOWS\system32\DRIVERS\ptilink.sys OK
RasAcd: C:\WINDOWS\system32\DRIVERS\rasacd.sys OK
RasAuto: C:\WINDOWS\System32\rasauto.dll OK
Rasl2tp: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys OK
RasMan: C:\WINDOWS\System32\rasmans.dll OK
RasPppoe: C:\WINDOWS\system32\DRIVERS\raspppoe.sys OK
Raspti: C:\WINDOWS\system32\DRIVERS\raspti.sys OK
Rdbss: C:\WINDOWS\system32\DRIVERS\rdbss.sys OK
RDPCDD: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys OK
RDSessMgr: C:\WINDOWS\system32\sessmgr.exe OK
redbook: C:\WINDOWS\system32\DRIVERS\redbook.sys OK
RemoteAccess: C:\WINDOWS\System32\mprdim.dll OK
RpcLocator: C:\WINDOWS\system32\locator.exe OK
RpcSs: C:\WINDOWS\System32\rpcss.dll OK
RSVP: C:\WINDOWS\system32\rsvp.exe OK
RT73: C:\WINDOWS\system32\DRIVERS\Dr71WU.sys OK
SamSs: C:\WINDOWS\system32\lsass.exe OK
SCardSvr: C:\WINDOWS\System32\SCardSvr.exe OK
Schedule: C:\WINDOWS\system32\schedsvc.dll OK
Secdrv: C:\WINDOWS\system32\DRIVERS\secdrv.sys OK
SENS: C:\WINDOWS\system32\sens.dll OK
serenum: C:\WINDOWS\system32\DRIVERS\serenum.sys OK
Serial: C:\WINDOWS\system32\DRIVERS\serial.sys OK
SharedAccess: C:\WINDOWS\System32\ipnathlp.dll OK
ShellHWDetection: C:\WINDOWS\System32\shsvcs.dll OK
SLIP: C:\WINDOWS\system32\DRIVERS\SLIP.sys OK
splitter: C:\WINDOWS\system32\drivers\splitter.sys OK
sr: C:\WINDOWS\system32\DRIVERS\sr.sys OK
srservice: C:\WINDOWS\system32\srsvc.dll OK
Srv: C:\WINDOWS\system32\DRIVERS\srv.sys OK
SSDPSRV: C:\WINDOWS\System32\ssdpsrv.dll OK
ssmdrv: C:\WINDOWS\system32\DRIVERS\ssmdrv.sys OK
stisvc: C:\WINDOWS\system32\wiaservc.dll OK
streamip: C:\WINDOWS\system32\DRIVERS\StreamIP.sys OK
swenum: C:\WINDOWS\system32\DRIVERS\swenum.sys OK
swmidi: C:\WINDOWS\system32\drivers\swmidi.sys OK
SwPrv: C:\WINDOWS\system32\dllhost.exe OK
sysaudio: C:\WINDOWS\system32\drivers\sysaudio.sys OK
SysmonLog: C:\WINDOWS\system32\smlogsvc.exe OK
TapiSrv: C:\WINDOWS\System32\tapisrv.dll OK
Tcpip: C:\WINDOWS\system32\DRIVERS\tcpip.sys OK
TermDD: C:\WINDOWS\system32\DRIVERS\termdd.sys OK
TermService: C:\WINDOWS\System32\termsrv.dll OK
Themes: C:\WINDOWS\System32\shsvcs.dll OK
TrkWks: C:\WINDOWS\system32\trkwks.dll OK
UnlockerDriver5: C:\Programmi\Unlocker\UnlockerDriver5.sys OK
Update: C:\WINDOWS\system32\DRIVERS\update.sys OK
upnphost: C:\WINDOWS\System32\upnphost.dll OK
UPS: C:\WINDOWS\System32\ups.exe OK
usbaudio: C:\WINDOWS\system32\drivers\usbaudio.sys OK
usbccgp: C:\WINDOWS\system32\DRIVERS\usbccgp.sys OK
usbehci: C:\WINDOWS\system32\DRIVERS\usbehci.sys OK
usbhub: C:\WINDOWS\system32\DRIVERS\usbhub.sys OK
usbohci: C:\WINDOWS\system32\DRIVERS\usbohci.sys OK
usbstor: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS OK
VgaSave: C:\WINDOWS\System32\drivers\vga.sys OK
VSS: C:\WINDOWS\System32\vssvc.exe OK
W32Time: C:\WINDOWS\system32\w32time.dll OK
Wanarp: C:\WINDOWS\system32\DRIVERS\wanarp.sys OK
wdmaud: C:\WINDOWS\system32\drivers\wdmaud.sys OK
WebClient: C:\WINDOWS\System32\webclnt.dll OK
winachsf: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys OK
winmgmt: C:\WINDOWS\system32\wbem\WMIsvc.dll OK
WmdmPmSN: C:\WINDOWS\system32\MsPMSNSv.dll OK
WmiApSrv: C:\WINDOWS\system32\wbem\wmiapsrv.exe OK
WMPNetworkSvc: C:\Programmi\Windows Media Player\WMPNetwk.exe OK
WpdUsb: C:\WINDOWS\system32\DRIVERS\wpdusb.sys OK
WS2IFSL: C:\WINDOWS\System32\drivers\ws2ifsl.sys OK
wscsvc: C:\WINDOWS\system32\wscsvc.dll OK
WSearch: C:\WINDOWS\system32\SearchIndexer.exe OK
WSTCODEC: C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS OK
wuauserv: C:\WINDOWS\system32\wuauserv.dll OK
WudfPf: C:\WINDOWS\system32\DRIVERS\WudfPf.sys OK
WudfRd: C:\WINDOWS\system32\DRIVERS\wudfrd.sys OK
WudfSvc: C:\WINDOWS\System32\WUDFSvc.dll OK
WZCSVC: C:\WINDOWS\System32\wzcsvc.dll OK
xmlprov: C:\WINDOWS\System32\xmlprov.dll OK
27670171: C:\WINDOWS\system32\DRIVERS\27670171.sys Not Found
27670172: C:\WINDOWS\system32\DRIVERS\27670172.sys Not Found
38155282: C:\WINDOWS\system32\DRIVERS\38155282.sys Not Found
44449211: C:\WINDOWS\system32\DRIVERS\44449211.sys Not Found
44449212: C:\WINDOWS\system32\DRIVERS\44449212.sys Not Found
ACPI: C:\WINDOWS\system32\DRIVERS\ACPI.sys OK
aec: C:\WINDOWS\system32\drivers\aec.sys OK
AegisP: C:\WINDOWS\system32\DRIVERS\AegisP.sys OK
AFD: C:\WINDOWS\System32\drivers\afd.sys OK
ALCXWDM: C:\WINDOWS\system32\drivers\ALCXWDM.SYS OK
Alerter: C:\WINDOWS\system32\alrsvc.dll OK
ALG: C:\WINDOWS\System32\alg.exe OK
AntiVirWebService: C:\Programmi\Avira\AntiVir Desktop\AVWEBGRD.EXE OK
AppMgmt: C:\WINDOWS\System32\appmgmts.dll Not Found
Arp1394: C:\WINDOWS\system32\DRIVERS\arp1394.sys OK
aspnet_state: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe OK
AsyncMac: C:\WINDOWS\system32\DRIVERS\asyncmac.sys OK
atapi: C:\WINDOWS\system32\DRIVERS\atapi.sys OK
ati2mtag: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys OK
Atmarpc: C:\WINDOWS\system32\DRIVERS\atmarpc.sys OK
AudioSrv: C:\WINDOWS\System32\audiosrv.dll OK
audstub: C:\WINDOWS\system32\DRIVERS\audstub.sys OK
avgntflt: C:\WINDOWS\system32\DRIVERS\avgntflt.sys OK
avipbb: C:\WINDOWS\system32\DRIVERS\avipbb.sys OK
avkmgr: C:\WINDOWS\system32\DRIVERS\avkmgr.sys OK
BootDefragDriver: C:\WINDOWS\System32\drivers\BootDefragDriver.sys OK
Browser: C:\WINDOWS\System32\browser.dll OK
CAM1210: C:\WINDOWS\System32\Drivers\cam1210.sys OK
CCDECODE: C:\WINDOWS\system32\DRIVERS\CCDECODE.sys OK
Cdrom: C:\WINDOWS\system32\DRIVERS\cdrom.sys OK
ClipSrv: C:\WINDOWS\system32\clipsrv.exe OK
clr_optimization_v2.0.50727_32: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe OK
COMSysApp: C:\WINDOWS\system32\dllhost.exe OK
CryptSvc: C:\WINDOWS\System32\cryptsvc.dll OK
DcomLaunch: C:\WINDOWS\system32\rpcss.dll OK
Dhcp: C:\WINDOWS\System32\dhcpcsvc.dll OK
Disk: C:\WINDOWS\system32\DRIVERS\disk.sys OK
dmadmin: C:\WINDOWS\System32\dmadmin.exe OK
dmio: C:\WINDOWS\System32\drivers\dmio.sys OK
dmload: C:\WINDOWS\System32\drivers\dmload.sys OK
dmserver: C:\WINDOWS\System32\dmserver.dll OK
DMusic: C:\WINDOWS\system32\drivers\DMusic.sys OK
Dnscache: C:\WINDOWS\System32\dnsrslvr.dll OK
Dot3svc: C:\WINDOWS\System32\dot3svc.dll OK
drmkaud: C:\WINDOWS\system32\drivers\drmkaud.sys OK
EapHost: C:\WINDOWS\System32\eapsvc.dll OK
ERSvc: C:\WINDOWS\System32\ersvc.dll OK
Eventlog: C:\WINDOWS\system32\services.exe OK
EventSystem: C:\WINDOWS\system32\es.dll OK
FastUserSwitchingCompatibility: C:\WINDOWS\System32\shsvcs.dll OK
Fdc: C:\WINDOWS\system32\DRIVERS\fdc.sys OK
Flpydisk: C:\WINDOWS\system32\DRIVERS\flpydisk.sys OK
FltMgr: C:\WINDOWS\system32\drivers\fltmgr.sys OK
FontCache3.0.0.0: c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe OK
Ftdisk: C:\WINDOWS\system32\DRIVERS\ftdisk.sys OK
Gpc: C:\WINDOWS\system32\DRIVERS\msgpc.sys OK
HDAudBus: C:\WINDOWS\system32\DRIVERS\HDAudBus.sys OK
helpsvc: C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll OK
HidServ: C:\WINDOWS\System32\hidserv.dll OK
HidUsb: C:\WINDOWS\system32\DRIVERS\hidusb.sys OK
hkmsvc: C:\WINDOWS\System32\kmsvc.dll OK
HPZid412: C:\WINDOWS\system32\DRIVERS\HPZid412.sys OK
HPZipr12: C:\WINDOWS\system32\DRIVERS\HPZipr12.sys OK
HPZius12: C:\WINDOWS\system32\DRIVERS\HPZius12.sys OK
HSFHWBS2: C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys OK
HSF_DP: C:\WINDOWS\system32\DRIVERS\HSF_DP.sys OK
HTTP: C:\WINDOWS\System32\Drivers\HTTP.sys OK
HTTPFilter: C:\WINDOWS\System32\w3ssl.dll OK
hwdatacard: C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys OK
i8042prt: C:\WINDOWS\system32\DRIVERS\i8042prt.sys OK
IDriverT: C:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe OK
idsvc: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe OK
Imapi: C:\WINDOWS\system32\DRIVERS\imapi.sys OK
ImapiService: C:\WINDOWS\system32\imapi.exe OK
Ip6Fw: C:\WINDOWS\system32\drivers\ip6fw.sys OK
IpFilterDriver: C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys OK
IpInIp: C:\WINDOWS\system32\DRIVERS\ipinip.sys OK
IpNat: C:\WINDOWS\system32\DRIVERS\ipnat.sys OK
IPSec: C:\WINDOWS\system32\DRIVERS\ipsec.sys OK
IRENUM: C:\WINDOWS\system32\DRIVERS\irenum.sys OK
isapnp: C:\WINDOWS\system32\DRIVERS\isapnp.sys OK
JavaQuickStarterService: C:\Programmi\Java\jre7\bin\jqs.exe OK
Kbdclass: C:\WINDOWS\system32\DRIVERS\kbdclass.sys OK
kbdhid: C:\WINDOWS\system32\DRIVERS\kbdhid.sys OK
KeyControl25: C:\WINDOWS\system32\drivers\esikey25.sys OK
kmixer: C:\WINDOWS\system32\drivers\kmixer.sys OK
KORGUMDS: C:\WINDOWS\System32\Drivers\KORGUMDS.SYS OK
lanmanserver: C:\WINDOWS\System32\srvsvc.dll OK
lanmanworkstation: C:\WINDOWS\System32\wkssvc.dll OK
LmHosts: C:\WINDOWS\System32\lmhsvc.dll OK
mcdbus: C:\WINDOWS\system32\DRIVERS\mcdbus.sys OK
mdmxsdk: C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys OK
Messenger: C:\WINDOWS\System32\msgsvc.dll OK
Mouclass: C:\WINDOWS\system32\DRIVERS\mouclass.sys OK
mouhid: C:\WINDOWS\system32\DRIVERS\mouhid.sys OK
MozillaMaintenance: C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe OK
MRxDAV: C:\WINDOWS\system32\DRIVERS\mrxdav.sys OK
MRxSmb: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys OK
MSDTC: C:\WINDOWS\system32\msdtc.exe OK
MSIServer: C:\WINDOWS\system32\msiexec.exe OK
MSKSSRV: C:\WINDOWS\system32\drivers\MSKSSRV.sys OK
MSPCLOCK: C:\WINDOWS\system32\drivers\MSPCLOCK.sys OK
MSPQM: C:\WINDOWS\system32\drivers\MSPQM.sys OK
mssmbios: C:\WINDOWS\system32\DRIVERS\mssmbios.sys OK
MSTEE: C:\WINDOWS\system32\drivers\MSTEE.sys OK
NABTSFEC: C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys OK
napagent: C:\WINDOWS\System32\qagentrt.dll OK
NdisIP: C:\WINDOWS\system32\DRIVERS\NdisIP.sys OK
NdisTapi: C:\WINDOWS\system32\DRIVERS\ndistapi.sys OK
Ndisuio: C:\WINDOWS\system32\DRIVERS\ndisuio.sys OK
NdisWan: C:\WINDOWS\system32\DRIVERS\ndiswan.sys OK
NetBIOS: C:\WINDOWS\system32\DRIVERS\netbios.sys OK
NetBT: C:\WINDOWS\system32\DRIVERS\netbt.sys OK
NetDDE: C:\WINDOWS\system32\netdde.exe OK
NetDDEdsdm: C:\WINDOWS\system32\netdde.exe OK
Netlogon: C:\WINDOWS\system32\lsass.exe OK
NetTcpPortSharing: c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe OK
NIC1394: C:\WINDOWS\system32\DRIVERS\nic1394.sys OK
Nla: C:\WINDOWS\System32\mswsock.dll OK
NtLmSsp: C:\WINDOWS\system32\lsass.exe OK
NtmsSvc: C:\WINDOWS\system32\ntmssvc.dll OK
nvatabus: C:\WINDOWS\system32\DRIVERS\nvatabus.sys OK
NVENETFD: C:\WINDOWS\system32\DRIVERS\NVENETFD.sys OK
nvgts: C:\WINDOWS\system32\DRIVERS\nvgts.sys OK
nvnetbus: C:\WINDOWS\system32\DRIVERS\nvnetbus.sys OK
NvnUsbAudio: C:\WINDOWS\system32\DRIVERS\nvnusbaudio.sys OK
NwlnkFlt: C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys OK
NwlnkFwd: C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys OK
OAcat: C:\Programmi\Online Armor\OAcat.exe OK
OADevice: C:\WINDOWS\system32\drivers\OADriver.sys OK
oahlpXX: C:\WINDOWS\system32\drivers\oahlp32.sys OK
OAmon: C:\WINDOWS\system32\drivers\OAmon.sys OK
OAnet: C:\WINDOWS\system32\drivers\OAnet.sys OK
ohci1394: C:\WINDOWS\system32\DRIVERS\ohci1394.sys OK
Parport: C:\WINDOWS\system32\DRIVERS\parport.sys OK
PCI: C:\WINDOWS\system32\DRIVERS\pci.sys OK
PCIIde: C:\WINDOWS\system32\DRIVERS\pciide.sys OK
pcouffin: C:\WINDOWS\System32\Drivers\pcouffin.sys OK
PlugPlay: C:\WINDOWS\system32\services.exe OK
PolicyAgent: C:\WINDOWS\system32\lsass.exe OK
PptpMiniport: C:\WINDOWS\system32\DRIVERS\raspptp.sys OK
Processor: C:\WINDOWS\system32\DRIVERS\processr.sys OK
Ptilink: C:\WINDOWS\system32\DRIVERS\ptilink.sys OK
RalinkRegistryWriter: C:\Programmi\RALINK\Common\RalinkRegistryWriter.exe OK
RaMediaServer: C:\Programmi\RALINK\Common\RaMediaServer.exe OK
RasAcd: C:\WINDOWS\system32\DRIVERS\rasacd.sys OK
RasAuto: C:\WINDOWS\System32\rasauto.dll OK
Rasl2tp: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys OK
RasMan: C:\WINDOWS\System32\rasmans.dll OK
RasPppoe: C:\WINDOWS\system32\DRIVERS\raspppoe.sys OK
Raspti: C:\WINDOWS\system32\DRIVERS\raspti.sys OK
Rdbss: C:\WINDOWS\system32\DRIVERS\rdbss.sys OK
RDID1064: C:\WINDOWS\system32\Drivers\rdwm1064.sys OK
RDPCDD: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys OK
RDSessMgr: C:\WINDOWS\system32\sessmgr.exe OK
redbook: C:\WINDOWS\system32\DRIVERS\redbook.sys OK
RemoteAccess: C:\WINDOWS\System32\mprdim.dll OK
RpcLocator: C:\WINDOWS\system32\locator.exe OK
RpcSs: C:\WINDOWS\System32\rpcss.dll OK
RSVP: C:\WINDOWS\system32\rsvp.exe OK
rt2870: C:\WINDOWS\system32\DRIVERS\rt2870.sys OK
RT73: C:\WINDOWS\system32\DRIVERS\Dr71WU.sys OK
RTHDMIAzAudService: C:\WINDOWS\system32\drivers\RtKHDMI.sys OK
SamSs: C:\WINDOWS\system32\lsass.exe OK
SCardSvr: C:\WINDOWS\System32\SCardSvr.exe OK
Schedule: C:\WINDOWS\system32\schedsvc.dll OK
Scutum50: C:\WINDOWS\System32\Drivers\Scutum50.sys OK
Secdrv: C:\WINDOWS\system32\DRIVERS\secdrv.sys OK
SENS: C:\WINDOWS\system32\sens.dll OK
serenum: C:\WINDOWS\system32\DRIVERS\serenum.sys OK
Serial: C:\WINDOWS\system32\DRIVERS\serial.sys OK
setup_9.0.0.722_22.05.2011_10-14drv: C:\WINDOWS\system32\DRIVERS\4444921.sys Not Found
setup_9.0.0.722_26.05.2011_14-12drv: C:\WINDOWS\system32\DRIVERS\2767017.sys OK
SharedAccess: C:\WINDOWS\System32\ipnathlp.dll OK
ShellHWDetection: C:\WINDOWS\System32\shsvcs.dll OK
SLIP: C:\WINDOWS\system32\DRIVERS\SLIP.sys OK
splitter: C:\WINDOWS\system32\drivers\splitter.sys OK
sptd: C:\WINDOWS\System32\Drivers\sptd.sys Can't open
sr: C:\WINDOWS\system32\DRIVERS\sr.sys OK
srservice: C:\WINDOWS\system32\srsvc.dll OK
Srv: C:\WINDOWS\system32\DRIVERS\srv.sys OK
SSDPSRV: C:\WINDOWS\System32\ssdpsrv.dll OK
ssmdrv: C:\WINDOWS\system32\DRIVERS\ssmdrv.sys OK
stisvc: C:\WINDOWS\system32\wiaservc.dll OK
streamip: C:\WINDOWS\system32\DRIVERS\StreamIP.sys OK
SvcOnlineArmor: C:\Programmi\Online Armor\oasrv.exe OK
swenum: C:\WINDOWS\system32\DRIVERS\swenum.sys OK
swmidi: C:\WINDOWS\system32\drivers\swmidi.sys OK
SwPrv: C:\WINDOWS\system32\dllhost.exe OK
sysaudio: C:\WINDOWS\system32\drivers\sysaudio.sys OK
SysmonLog: C:\WINDOWS\system32\smlogsvc.exe OK
TapiSrv: C:\WINDOWS\System32\tapisrv.dll OK
Tcpip: C:\WINDOWS\system32\DRIVERS\tcpip.sys OK
TermDD: C:\WINDOWS\system32\DRIVERS\termdd.sys OK
TermService: C:\WINDOWS\System32\termsrv.dll OK
Themes: C:\WINDOWS\System32\shsvcs.dll OK
TrkWks: C:\WINDOWS\system32\trkwks.dll OK
ubohci: C:\WINDOWS\system32\DRIVERS\ubohci.sys OK
ubsbm: C:\WINDOWS\system32\DRIVERS\ubsbm.sys OK
ubumapi: C:\WINDOWS\system32\DRIVERS\ubumapi.sys OK
Update: C:\WINDOWS\system32\DRIVERS\update.sys OK
upnphost: C:\WINDOWS\System32\upnphost.dll OK
UPS: C:\WINDOWS\System32\ups.exe OK
usbaucmd: C:\WINDOWS\system32\drivers\usbaucmd.sys Not Found
usbaudio: C:\WINDOWS\system32\drivers\usbaudio.sys OK
usbccgp: C:\WINDOWS\system32\DRIVERS\usbccgp.sys OK
usbehci: C:\WINDOWS\system32\DRIVERS\usbehci.sys OK
usbhub: C:\WINDOWS\system32\DRIVERS\usbhub.sys OK
usbohci: C:\WINDOWS\system32\DRIVERS\usbohci.sys OK
usbprint: C:\WINDOWS\system32\DRIVERS\usbprint.sys OK
usbscan: C:\WINDOWS\system32\DRIVERS\usbscan.sys OK
usbstor: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS OK
VgaSave: C:\WINDOWS\System32\drivers\vga.sys OK
vkquwexg: C:\WINDOWS\system32\drivers\Combo-Fix.sys Not Found
VSS: C:\WINDOWS\System32\vssvc.exe OK
W32Time: C:\WINDOWS\system32\w32time.dll OK
Wanarp: C:\WINDOWS\system32\DRIVERS\wanarp.sys OK
Wdf01000: C:\WINDOWS\System32\Drivers\wdf01000.sys OK
wdmaud: C:\WINDOWS\system32\drivers\wdmaud.sys OK
WebClient: C:\WINDOWS\System32\webclnt.dll OK
winachsf: C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys OK
winmgmt: C:\WINDOWS\system32\wbem\WMIsvc.dll OK
WmdmPmSN: C:\WINDOWS\system32\MsPMSNSv.dll OK
WmiApSrv: C:\WINDOWS\system32\wbem\wmiapsrv.exe OK
WMPNetworkSvc: C:\Programmi\Windows Media Player\WMPNetwk.exe OK
WpdUsb: C:\WINDOWS\system32\DRIVERS\wpdusb.sys OK
WS2IFSL: C:\WINDOWS\System32\drivers\ws2ifsl.sys OK
wscsvc: C:\WINDOWS\system32\wscsvc.dll OK
WSearch: C:\WINDOWS\system32\SearchIndexer.exe OK
WSTCODEC: C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS OK
wuauserv: C:\WINDOWS\system32\wuauserv.dll OK
WudfPf: C:\WINDOWS\system32\DRIVERS\WudfPf.sys OK
WudfRd: C:\WINDOWS\system32\DRIVERS\wudfrd.sys OK
WudfSvc: C:\WINDOWS\System32\WUDFSvc.dll OK
WZCSVC: C:\WINDOWS\System32\wzcsvc.dll OK
xmlprov: C:\WINDOWS\System32\xmlprov.dll OK
ysusb32: C:\WINDOWS\system32\drivers\ysusb32.sys OK
Work complete.

-- EOF --

e tra le altre cose quando elimino qualcosa mi dice che il cestino in C è danneggiato... [cry]

da **mitrha** » dom feb 09, 2014 5:55 pm

Non riesco a lanciare l'installazione un messaggio mi dice:non è possibile effettuare l'installazione a causa dei criteri impostati dall'amministratore del sistema. [cry]

da **mitrha** » dom feb 09, 2014 6:07 pm

Ho provato anche sull'altro fix che prima mi apriva..ora neanche quello!!!che cosa è cambiato???

da **mitrha** » dom feb 09, 2014 6:38 pm

OK OK Era in provvisoria che nn andavano ora l'ho lanciata e ho riavviato,solo che durante la schermata salvataggio delle impostazioni di Win si è verificato un crash con schermo blu con questo messaggio: si è verificato un errore e windows è stato bloccato per evitare danni al Computer dettagli:" Driver corrupted_MMPooL STOP: 0x000000D0(0x4100059f,0x00000002,0x00000001,0x80542F69).
Questo messaggio mi è apparso spesso da quando il PC si è infettato e dopo l'apparizione del messaggio alla semplice pressione del tasto di accensione il PC si spegne subito cosa che di solito nn sucede ma ci vuole una pressione di 3 sec. Comunque Ho riavviato e per ora sembra ok nn so devo fare qualche prova???

da GERONIMO* » lun feb 10, 2014 6:40 pm

si fai qualche prova
poi ho visto un probabile mbr infetto,anche combofix lo rilevava [sh]

da **mitrha** » mar feb 11, 2014 5:06 pm

si sembra esserci qualcosa,connessione mooolto lenta,accensione mooolto lenta,il tutto è molto più lento del solito e anche in fase di spegnimento [cry]

.Cosa posso fare per l'MBR c'è qualche programma?

da **mitrha** » mar feb 11, 2014 7:19 pm

Ho trovato questa guida per riparare l'MBR ma per me nn è molto chiara anche se tra quelle lette sembra essere la + semplice cosa ne pensate? è fattibile? [:)]

mi date chiarimenti? [^]

da GERONIMO* » mar feb 11, 2014 10:17 pm

quale guida non la vedo [std]

segui questa guida e posta il report senza fixare nulla
http://www.windoctor.it/sicurezza/ripar ... it-aswmbr/
http://www.windoctor.it/sicurezza/contr ... -mbrcheck/

se hai il cd di windows xp questa
http://www.windoctor.it/sistemi/xp/ripa ... indows-xp/

da **mitrha** » mar feb 11, 2014 10:36 pm

Hai ragione che fulminato che sono!! eccola
Ripristinare il MBR di Windows XP anche senza avere il CD di XP
Per ripristinare il MBR (boot record) di Windows XP anche quando non si ha a disposizione il CD di installazione di XP (esempio sistemi preinstallati) ecco la procedura da seguire.

Avviare Ubuntu da live CD (vanno bene tutte le versioni),
a sistema avviato e connessione internet funzionante aprire una console comandi e digitare in sequenza:

sudo apt-get install ms-sys

poi per installare il MBR

sudo ms-sys –mbr /dev/hdX

dove /dev/hdX va sostituito con il device su cui installare il MBR (/dev/sda nel mio caso)[color=#0000FF]

riavviare e il gioco e’ fatto.

NOTA: occorre che i repository “Universe” siano abilitati.

da **mitrha** » mer feb 12, 2014 12:16 am

Ecco il log della scansione con aswMBR:

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-02-11 22:45:14
-----------------------------
22:45:14.870 OS Version: Windows 5.1.2600 Service Pack 3
22:45:14.870 Number of processors: 1 586 0x2F02
22:45:14.870 ComputerName: E774BAE2 UserName: Fabio
22:45:15.167 Initialize success
22:57:36.573 AVAST engine defs: 14021101
23:45:43.526 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000068
23:45:43.526 Disk 0 Vendor: WDC_WD2000BB-55GUC0 08.02D08 Size: 190782MB BusType: 3
23:45:43.745 Disk 0 MBR read successfully
23:45:43.745 Disk 0 MBR scan
23:45:43.760 Disk 0 Windows XP default MBR code
23:45:43.760 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 190771 MB offset 63
23:45:43.760 Disk 0 scanning sectors +390700800
23:45:43.932 Disk 0 scanning C:\WINDOWS\system32\drivers
23:46:05.948 Service scanning
23:46:22.182 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32
23:46:27.995 Modules scanning
23:46:37.135 Module: C:\WINDOWS\System32\Drivers\nvatabus.sys **SUSPICIOUS**
23:46:43.479 Disk 0 trace - called modules:
23:46:43.526 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll nvatabus.sys sptd.sys
23:46:43.542 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x870a0600]
23:46:43.557 3 CLASSPNP.SYS[f76bcfd7] -> nt!IofCallDriver -> \Device\0000006a[0x870e2b18]
23:46:43.573 5 ACPI.sys[f7423620] -> nt!IofCallDriver -> \Device\00000068[0x870ab030]
23:46:43.932 AVAST engine scan C:\WINDOWS
23:46:48.635 AVAST engine scan C:\WINDOWS\system32
23:50:03.917 AVAST engine scan C:\WINDOWS\system32\drivers
23:50:27.589 AVAST engine scan C:\Documents and Settings\Manuel Valori.E774BAE2
00:06:13.807 AVAST engine scan C:\Documents and Settings\All Users
00:07:02.854 Scan finished successfully
00:08:20.635 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Manuel Valori.E774BAE2\Desktop\MBR.dat"
00:08:20.635 The log file has been saved successfully to "C:\Documents and Settings\Manuel Valori.E774BAE2\Desktop\aswMBR.txt"

da **mitrha** » mer feb 12, 2014 7:26 pm

MBRcheck invece si blocca,appena faccio doppio clic per lanciarlo dopo pochi secondi il cursore lampeggiante sparisce e si blocca tutto anche la freccia del mouse!

www.MegaLab.it

computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Re: computer infetto???

Chi c’è in linea