Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Aiuto per rimozione virus

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Aiuto per rimozione virus

Messaggioda Or4colo » lun mag 23, 2011 7:53 pm

Eccomi di nuovo, scusate se apro un altro argomento, ho bisogno del Vs aiuto.
Sono di sicuro infetto da qualche rootkit, ho letto diversi blog ma non riesco proprio a trovare una soluzione. Il pc all'avvio non mi carica il firewall,Avast mi segnala la presenza di un Virus che si chiama Physicaldrive0 credo. Inoltre sempre l'antivirus, mi dice che ha bloccato l'avvio di un pericolo derivante da svchost.exe
Ho scaricato divesi tools da voi consigliati ma non riesco a risolvere il poblema. Se necessario provo a postare una scansione con Malwarebytes, che ne dite? Oppure avete qualche sito in cui posso provare a fare una scansione sicura?
Grazie come sempre di cuore
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda ste_95 » lun mag 23, 2011 8:29 pm

Per prima cosa fai una scansione con combofix e posta il suo log:
http://www.combofix.org/download.php
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Re: Aiuto per rimozione virus

Messaggioda Or4colo » lun mag 23, 2011 9:12 pm

Ok gazie Ste, ComboFix già ce l'avevo e l'ho aggiornato. Però fa un po' a pugni con Avast e sembra che mi si blocchi. Dice "ComboFix è pronto per lavorare" e non fa più niente,credi che devo solo attendere o c'è qualche procedura che devo fare? Grazie
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm


Re: Aiuto per rimozione virus

Messaggioda ste_95 » lun mag 23, 2011 9:16 pm

Beh nel mentre disattiva Avast, ma comunque sì, Combfix un po' di tempo impiega [;)]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Re: Aiuto per rimozione virus

Messaggioda Nichi » lun mag 23, 2011 9:23 pm

Tranqui, armati di pazienza e segui i consigli degli esperti del sito. Mi hanno sempre consigliato bene.

Nel frattempo per le mie poche conoscenze ti posso suggerire di programmare e fare la scansione all'avvio di avast (punto di forza di questo antivirus). Prima però accertati che avast sia aggiornato con la definizione recente dei virus.

In bocca al lupo...
Siamo solo pedine... [B)]
Avatar utente
Nichi
Senior Member
Senior Member
 
Messaggi: 388
Iscritto il: ven feb 26, 2010 3:16 pm

Re: Aiuto per rimozione virus

Messaggioda Or4colo » lun mag 23, 2011 10:00 pm

Si perfetto, anch'io mi affido a Voi del sito anche pechè di pc non capisco molto [;)]
comunque ce l'ho fatta, ecco il mio log di Combofix:

ComboFix 11-05-23.02 - Administrator 23/05/2011 22.29.30.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1023.692 [GMT 2:00]
Eseguito da: c:\documents and settings\Administrator\Desktop\Antivirus\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\HelpAssistant\WINDOWS
.
.
\\.\PhysicalDrive0 - Bootkit TDL4 was found and disinfected
.
((((((((((((((((((((((((( Files Creati Da 2011-04-23 al 2011-05-23 )))))))))))))))))))))))))))))))))))
.
.
2011-05-23 20:15 . 2011-05-23 20:16 -------- d-----w- C:\32788R22FWJFW
2011-05-23 18:31 . 2011-05-23 18:31 89088 ----a-w- C:\mbr.exe
2011-05-20 16:17 . 2011-05-20 16:17 472808 ----a-w- c:\programmi\Mozilla Firefox\plugins\npdeployJava1.dll
2011-05-20 16:17 . 2011-05-20 16:17 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-05-19 17:24 . 2011-05-19 19:23 -------- d---a-w- c:\documents and settings\All Users\Dati applicazioni\TEMP
2011-05-19 17:22 . 2006-06-19 10:01 69632 ----a-w- c:\windows\system32\ztvcabinet.dll
2011-05-19 17:22 . 2006-05-25 12:52 162304 ----a-w- c:\windows\system32\ztvunrar36.dll
2011-05-19 17:22 . 2005-08-25 22:50 77312 ----a-w- c:\windows\system32\ztvunace26.dll
2011-05-19 17:22 . 2003-02-02 17:06 153088 ----a-w- c:\windows\system32\UNRAR3.dll
2011-05-19 17:22 . 2002-03-05 22:00 75264 ----a-w- c:\windows\system32\unacev2.dll
2011-05-19 17:22 . 2011-05-19 17:22 -------- d-----w- c:\programmi\Trojan Remover
2011-05-19 17:22 . 2011-05-19 17:22 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Simply Super Software
2011-05-19 17:22 . 2011-05-19 17:22 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\Simply Super Software
2011-05-15 16:36 . 2008-04-13 17:13 4255 ------w- c:\windows\system32\drivers\adv01nt5.dll
2011-05-15 16:35 . 2006-12-28 10:01 19569 ----a-w- c:\windows\002857_.tmp
2011-05-15 15:58 . 2011-05-10 12:03 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-05-15 15:57 . 2011-05-10 12:10 40112 ----a-w- c:\windows\avastSS.scr
2011-05-15 15:57 . 2011-05-15 15:57 -------- d-----w- c:\programmi\AVAST Software
2011-05-15 15:57 . 2011-05-15 15:57 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\AVAST Software
2011-05-15 08:25 . 2011-05-23 18:46 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-04-29 10:52 . 2011-05-04 17:24 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\Gisyix
2011-04-29 10:52 . 2011-05-02 17:52 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\Bybuu
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-20 16:17 . 2007-11-02 14:39 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-05-10 12:10 . 2007-09-10 15:46 199304 ----a-w- c:\windows\system32\aswBoot.exe
2011-05-10 12:03 . 2008-04-02 15:26 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-05-10 12:02 . 2007-09-10 15:46 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-05-10 12:02 . 2007-09-10 15:46 102616 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2011-05-10 12:02 . 2007-09-10 15:46 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
2011-05-10 11:59 . 2007-09-10 15:46 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-05-10 11:59 . 2007-09-10 15:46 30808 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2011-05-10 11:59 . 2008-04-02 15:26 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2007-10-24 20:36 . 2007-10-24 20:34 23876904 ----a-w- c:\programmi\SkypeSetup.exe
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-05-10 12:10 122512 ----a-w- c:\programmi\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 152872]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-10-22 68856]
"BitTorrent DNA"="c:\programmi\DNA\btdna.exe" [2010-12-15 323392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"="SkyTel.EXE" [2006-05-16 2879488]
"RTHDCPL"="RTHDCPL.EXE" [2007-01-30 16116224]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"AVFX Engine"="c:\programmi\Creative\Creative Live! Cam\VideoFX\StartFX.exe" [2006-08-15 24576]
"StartCCC"="c:\programmi\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"avast"="c:\programmi\AVAST Software\Avast\avastUI.exe" [2011-05-10 3459712]
"TrojanScanner"="c:\programmi\Trojan Remover\Trjscan.exe" [2010-11-24 1233856]
"SunJavaUpdateSched"="c:\programmi\File comuni\Java\Java Update\jusched.exe" [2011-01-07 253672]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\programmi\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 11:41 294912 ----a-w- c:\programmi\SUPERAntiSpyware\SASWINLO.dll
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Hamachi\\hamachi.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\SightSpeed\\SightSpeed.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\DNA\\btdna.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5311:TCP"= 5311:TCP:messenger
"5283:TCP"= 5283:TCP:messenger
"3389:TCP"= 3389:TCP:Remote Desktop
"24557:UDP"= 24557:UDP:eMule_UDP
"24547:TCP"= 24547:TCP:eMule_TCP
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [15/05/2011 17.58.13 441176]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [02/04/2008 17.26.53 307928]
R1 SASDIFSV;SASDIFSV;c:\programmi\SUPERAntiSpyware\sasdifsv.sys [29/02/2008 17.03.48 8944]
R1 SASKUTIL;SASKUTIL;c:\programmi\SUPERAntiSpyware\SASKUTIL.SYS [29/02/2008 17.03.46 51440]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [02/04/2008 17.26.53 19544]
S2 gupdate;Servizio di Google Update (gupdate);c:\programmi\Google\Update\GoogleUpdate.exe [06/02/2010 23.14.17 135664]
S3 gupdatem;Servizio Google Update (gupdatem);c:\programmi\Google\Update\GoogleUpdate.exe [06/02/2010 23.14.17 135664]
S3 SASENUM;SASENUM;c:\programmi\SUPERAntiSpyware\SASENUM.SYS [16/02/2006 17.51.08 4096]
S3 VF0270Dev;Live! Cam Optia;c:\windows\system32\drivers\V0270Dev.sys [21/10/2007 12.44.14 221152]
S3 VF0270Vfx;VF0270 Video FX;c:\windows\system32\drivers\V0270Vfx.sys [21/10/2007 12.44.14 6912]
.
Contenuto della cartella 'Scheduled Tasks'
.
2011-05-23 c:\windows\Tasks\Google Software Updater.job
- c:\programmi\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-10-22 16:57]
.
2011-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-02-06 21:14]
.
2011-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\programmi\Google\Update\GoogleUpdate.exe [2010-02-06 21:14]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.libero.it/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\programmi\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
FF - ProfilePath - c:\documents and settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\44boro8x.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.libero.it/
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\programmi\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: avast! WebRep: wrc@avast.com - c:\programmi\AVAST Software\Avast\WebRep\FF
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-05-23 22:51
Windows 5.1.2600 Service Pack 3 NTFS
.
scansione processi nascosti ...
.
scansione entrate autostart nascoste ...
.
Scansione files nascosti ...
.
.
C:\## aswSnx private storage
.
Scansione completata con successo
Files nascosti: 1
.
**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10q_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
.
- - - - - - - > 'winlogon.exe'(720)
c:\programmi\SUPERAntiSpyware\SASWINLO.dll
c:\windows\system32\WININET.dll
c:\windows\system32\Ati2evxx.dll
.
Ora fine scansione: 2011-05-23 22:57:48
ComboFix-quarantined-files.txt 2011-05-23 20:57
.
Pre-Run: 22.331.863.040 byte disponibili
Post-Run: 22.519.529.472 byte disponibili
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ITA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - B465A6960FA05B88A6B3C6788FDD3170
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Sabbb » lun mag 23, 2011 10:10 pm

Nel mentre aspettiamo i meglio preparati per la tua questione,fai una scansione anche con questo (che è velocissimo) e posta i risultati .Probabilmente ce ne sarà bisogno . Download
Avatar utente
Sabbb
Utente inattivo
 
Messaggi: 4483
Iscritto il: sab set 04, 2010 11:19 am

Re: Aiuto per rimozione virus

Messaggioda Or4colo » lun mag 23, 2011 10:15 pm

Ecco fatto, grazie:

2011/05/23 23:15:11.0125 2692 TDSS rootkit removing tool 2.5.1.0 May 13 2011 13:20:29
2011/05/23 23:15:11.0203 2692 ================================================================================
2011/05/23 23:15:11.0203 2692 SystemInfo:
2011/05/23 23:15:11.0203 2692
2011/05/23 23:15:11.0203 2692 OS Version: 5.1.2600 ServicePack: 3.0
2011/05/23 23:15:11.0203 2692 Product type: Workstation
2011/05/23 23:15:11.0203 2692 ComputerName: PC
2011/05/23 23:15:11.0203 2692 UserName: Administrator
2011/05/23 23:15:11.0203 2692 Windows directory: C:\WINDOWS
2011/05/23 23:15:11.0203 2692 System windows directory: C:\WINDOWS
2011/05/23 23:15:11.0203 2692 Processor architecture: Intel x86
2011/05/23 23:15:11.0203 2692 Number of processors: 2
2011/05/23 23:15:11.0203 2692 Page size: 0x1000
2011/05/23 23:15:11.0203 2692 Boot type: Normal boot
2011/05/23 23:15:11.0203 2692 ================================================================================
2011/05/23 23:15:11.0546 2692 Initialize success
2011/05/23 23:15:17.0625 1000 ================================================================================
2011/05/23 23:15:17.0625 1000 Scan started
2011/05/23 23:15:17.0625 1000 Mode: Manual;
2011/05/23 23:15:17.0625 1000 ================================================================================
2011/05/23 23:15:17.0937 1000 Aavmker4 (3f6884eff406238d39aaa892218f1df7) C:\WINDOWS\system32\drivers\Aavmker4.sys
2011/05/23 23:15:18.0062 1000 ACPI (d766e636187b8f240bbfbabcd51eb2c6) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/23 23:15:18.0109 1000 ACPIEC (49ac5cd87fbdda62f3e25190019e7627) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/23 23:15:18.0156 1000 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/05/23 23:15:18.0218 1000 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2011/05/23 23:15:18.0406 1000 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011/05/23 23:15:18.0468 1000 aswMon2 (c2181ef6b54752273a0759a968c59279) C:\WINDOWS\system32\drivers\aswMon2.sys
2011/05/23 23:15:18.0500 1000 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\WINDOWS\system32\drivers\aswRdr.sys
2011/05/23 23:15:18.0578 1000 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\WINDOWS\system32\drivers\aswSnx.sys
2011/05/23 23:15:18.0671 1000 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\WINDOWS\system32\drivers\aswSP.sys
2011/05/23 23:15:18.0718 1000 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\WINDOWS\system32\drivers\aswTdi.sys
2011/05/23 23:15:18.0750 1000 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/23 23:15:18.0796 1000 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/23 23:15:18.0937 1000 AtcL002 (07ed1101f574b93a6312bf5d4241b41a) C:\WINDOWS\system32\DRIVERS\atl02_xp.sys
2011/05/23 23:15:19.0156 1000 ati2mtag (067fca861588b18399555412a456de12) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/05/23 23:15:19.0312 1000 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/23 23:15:19.0359 1000 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/23 23:15:19.0406 1000 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/05/23 23:15:19.0562 1000 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/23 23:15:19.0593 1000 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/23 23:15:19.0656 1000 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/23 23:15:19.0687 1000 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/23 23:15:19.0750 1000 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/23 23:15:19.0890 1000 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/23 23:15:20.0000 1000 dmboot (82bc125a8ed33f5f0e75f2aac1065323) C:\WINDOWS\system32\drivers\dmboot.sys
2011/05/23 23:15:20.0125 1000 dmio (e959ddc0ea7ac11ee5e5602e2a364310) C:\WINDOWS\system32\drivers\dmio.sys
2011/05/23 23:15:20.0171 1000 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/05/23 23:15:20.0218 1000 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/05/23 23:15:20.0296 1000 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/23 23:15:20.0343 1000 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/23 23:15:20.0375 1000 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2011/05/23 23:15:20.0390 1000 Fips (2cfea3326981a18c6baf2bd9be76225b) C:\WINDOWS\system32\drivers\Fips.sys
2011/05/23 23:15:20.0421 1000 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/05/23 23:15:20.0484 1000 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/05/23 23:15:20.0515 1000 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/23 23:15:20.0562 1000 Ftdisk (f3269a6ee547ea87b949a1cea4816b38) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/23 23:15:20.0609 1000 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/23 23:15:20.0687 1000 hamachi (d30b31375c40309425c21efe75db90bb) C:\WINDOWS\system32\DRIVERS\hamachi.sys
2011/05/23 23:15:20.0703 1000 HdAudAddService (56bf27d7a539f9e6bbc1de201aba0edf) C:\WINDOWS\system32\drivers\AtiHdAud.sys
2011/05/23 23:15:20.0765 1000 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/05/23 23:15:20.0796 1000 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/23 23:15:20.0875 1000 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/23 23:15:20.0968 1000 i8042prt (610726e28af55b95043c5c35a727e320) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/05/23 23:15:21.0000 1000 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/23 23:15:21.0250 1000 IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/05/23 23:15:21.0437 1000 intelppm (ebd830a0970c438047006a49c23e287f) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/23 23:15:21.0484 1000 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/05/23 23:15:21.0531 1000 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/23 23:15:21.0562 1000 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/23 23:15:21.0609 1000 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/23 23:15:21.0656 1000 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/23 23:15:21.0703 1000 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/23 23:15:21.0750 1000 isapnp (0953594beb81cc72fcc62d37921b25a6) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/23 23:15:21.0781 1000 Kbdclass (28b6eace513ca7eaba3b809ad4bc274d) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/23 23:15:21.0812 1000 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/05/23 23:15:21.0890 1000 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/23 23:15:21.0953 1000 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/23 23:15:22.0000 1000 Modem (8cb6636806d76b85fafaee94d75f5129) C:\WINDOWS\system32\drivers\Modem.sys
2011/05/23 23:15:22.0046 1000 Mouclass (e904ebed608055a2bfb824c07f59766c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/23 23:15:22.0140 1000 mouhid (d7662f0cf5b77bbbe3202716f5bd5318) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/23 23:15:22.0156 1000 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/23 23:15:22.0203 1000 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/23 23:15:22.0281 1000 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/23 23:15:22.0390 1000 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/05/23 23:15:22.0453 1000 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/23 23:15:22.0500 1000 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/23 23:15:22.0531 1000 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/23 23:15:22.0562 1000 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/23 23:15:22.0593 1000 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/23 23:15:22.0640 1000 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
2011/05/23 23:15:22.0687 1000 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/05/23 23:15:22.0750 1000 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/23 23:15:22.0828 1000 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/05/23 23:15:22.0921 1000 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/23 23:15:22.0953 1000 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/23 23:15:23.0000 1000 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/23 23:15:23.0015 1000 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/23 23:15:23.0031 1000 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/23 23:15:23.0078 1000 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/23 23:15:23.0140 1000 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/23 23:15:23.0203 1000 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/05/23 23:15:23.0265 1000 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/23 23:15:23.0328 1000 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/05/23 23:15:23.0406 1000 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/23 23:15:23.0437 1000 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/23 23:15:23.0484 1000 Parport (4e9408a178b2d955871c2cdd278de3c3) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/05/23 23:15:23.0515 1000 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/23 23:15:23.0531 1000 ParVdm (0dabef655a444cb1e193626fb1d24b9f) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/23 23:15:23.0578 1000 PCI (f40a46892afebb0314536b849d57c11e) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/23 23:15:23.0625 1000 PCIIde (b2df00d650fd6c4ee781740ed3c8e67f) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/23 23:15:23.0703 1000 Pcmcia (815c50f2b1d1562800bdce8be895000e) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/05/23 23:15:23.0937 1000 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/23 23:15:23.0953 1000 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/23 23:15:24.0015 1000 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/23 23:15:24.0125 1000 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/23 23:15:24.0171 1000 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/23 23:15:24.0187 1000 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/23 23:15:24.0203 1000 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/23 23:15:24.0265 1000 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/23 23:15:24.0281 1000 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/23 23:15:24.0343 1000 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/05/23 23:15:24.0375 1000 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/23 23:15:24.0421 1000 redbook (393fc252593323b624b230eca6b85e63) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/23 23:15:24.0515 1000 SASDIFSV (c5d996556c9df4716a09e7f8c3ddd2cf) C:\Programmi\SUPERAntiSpyware\SASDIFSV.SYS
2011/05/23 23:15:24.0562 1000 SASENUM (7f1085895e499907f68df7731924122b) C:\Programmi\SUPERAntiSpyware\SASENUM.SYS
2011/05/23 23:15:24.0578 1000 SASKUTIL (1380ab4ac393b5d3e21521fced3cd834) C:\Programmi\SUPERAntiSpyware\SASKUTIL.sys
2011/05/23 23:15:24.0625 1000 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/23 23:15:24.0687 1000 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/05/23 23:15:24.0734 1000 Serial (fdbd9d64e2e03270021d424f0dccf79d) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/05/23 23:15:24.0765 1000 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/05/23 23:15:24.0828 1000 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/23 23:15:24.0890 1000 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/05/23 23:15:24.0953 1000 sr (618718cae288bf7cbd8fcbab2577d932) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/23 23:15:25.0015 1000 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/23 23:15:25.0078 1000 sscdbus (2d4027c46b4c6e45875e3c4ba3f67492) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
2011/05/23 23:15:25.0203 1000 sscdmdfl (f548f1eba107bc19e91189e6a460bd0e) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
2011/05/23 23:15:25.0250 1000 sscdmdm (71d348d53597379dfe1de255d70af13c) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
2011/05/23 23:15:25.0296 1000 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/23 23:15:25.0328 1000 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/23 23:15:25.0359 1000 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/05/23 23:15:25.0453 1000 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/23 23:15:25.0562 1000 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/23 23:15:25.0625 1000 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/23 23:15:25.0640 1000 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/23 23:15:25.0671 1000 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/23 23:15:25.0828 1000 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/05/23 23:15:26.0093 1000 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/05/23 23:15:26.0171 1000 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/23 23:15:26.0203 1000 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/23 23:15:26.0218 1000 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/23 23:15:26.0265 1000 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/05/23 23:15:26.0296 1000 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/05/23 23:15:26.0328 1000 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/23 23:15:26.0437 1000 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/05/23 23:15:26.0500 1000 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
2011/05/23 23:15:26.0546 1000 VF0270Dev (3bdb98e90a4b84c5c7d40a01913cff43) C:\WINDOWS\system32\DRIVERS\V0270Dev.sys
2011/05/23 23:15:26.0609 1000 VF0270Vfx (8c6fc17847495c39a46f61584102a52f) C:\WINDOWS\system32\DRIVERS\V0270VFx.sys
2011/05/23 23:15:26.0656 1000 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/05/23 23:15:26.0718 1000 VolSnap (e46c1b5a56da7da603d09dfcc79ec59e) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/23 23:15:26.0765 1000 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/23 23:15:26.0812 1000 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/23 23:15:26.0890 1000 WpdUsb (1385e5aa9c9821790d33a9563b8d2dd0) C:\WINDOWS\system32\Drivers\wpdusb.sys
2011/05/23 23:15:26.0953 1000 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/23 23:15:27.0140 1000 ================================================================================
2011/05/23 23:15:27.0140 1000 Scan finished
2011/05/23 23:15:27.0140 1000 ================================================================================
2011/05/23 23:15:42.0125 2216 ================================================================================
2011/05/23 23:15:42.0125 2216 Scan started
2011/05/23 23:15:42.0125 2216 Mode: Manual;
2011/05/23 23:15:42.0125 2216 ================================================================================
2011/05/23 23:15:42.0265 2216 Aavmker4 (3f6884eff406238d39aaa892218f1df7) C:\WINDOWS\system32\drivers\Aavmker4.sys
2011/05/23 23:15:42.0359 2216 ACPI (d766e636187b8f240bbfbabcd51eb2c6) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/23 23:15:42.0406 2216 ACPIEC (49ac5cd87fbdda62f3e25190019e7627) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/23 23:15:42.0468 2216 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/05/23 23:15:42.0515 2216 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2011/05/23 23:15:42.0765 2216 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\WINDOWS\system32\drivers\aswFsBlk.sys
2011/05/23 23:15:42.0828 2216 aswMon2 (c2181ef6b54752273a0759a968c59279) C:\WINDOWS\system32\drivers\aswMon2.sys
2011/05/23 23:15:42.0859 2216 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\WINDOWS\system32\drivers\aswRdr.sys
2011/05/23 23:15:42.0937 2216 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\WINDOWS\system32\drivers\aswSnx.sys
2011/05/23 23:15:43.0031 2216 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\WINDOWS\system32\drivers\aswSP.sys
2011/05/23 23:15:43.0078 2216 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\WINDOWS\system32\drivers\aswTdi.sys
2011/05/23 23:15:43.0109 2216 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/23 23:15:43.0171 2216 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/23 23:15:43.0250 2216 AtcL002 (07ed1101f574b93a6312bf5d4241b41a) C:\WINDOWS\system32\DRIVERS\atl02_xp.sys
2011/05/23 23:15:43.0421 2216 ati2mtag (067fca861588b18399555412a456de12) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/05/23 23:15:43.0484 2216 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/23 23:15:43.0546 2216 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/23 23:15:43.0578 2216 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/05/23 23:15:43.0812 2216 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/23 23:15:43.0859 2216 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/23 23:15:43.0906 2216 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/23 23:15:43.0937 2216 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/23 23:15:44.0000 2216 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/23 23:15:44.0156 2216 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/23 23:15:44.0265 2216 dmboot (82bc125a8ed33f5f0e75f2aac1065323) C:\WINDOWS\system32\drivers\dmboot.sys
2011/05/23 23:15:44.0343 2216 dmio (e959ddc0ea7ac11ee5e5602e2a364310) C:\WINDOWS\system32\drivers\dmio.sys
2011/05/23 23:15:44.0359 2216 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/05/23 23:15:44.0406 2216 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/05/23 23:15:44.0453 2216 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/23 23:15:44.0531 2216 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/23 23:15:44.0562 2216 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2011/05/23 23:15:44.0578 2216 Fips (2cfea3326981a18c6baf2bd9be76225b) C:\WINDOWS\system32\drivers\Fips.sys
2011/05/23 23:15:44.0625 2216 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2011/05/23 23:15:44.0671 2216 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/05/23 23:15:44.0765 2216 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/23 23:15:44.0828 2216 Ftdisk (f3269a6ee547ea87b949a1cea4816b38) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/23 23:15:44.0875 2216 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/23 23:15:44.0937 2216 hamachi (d30b31375c40309425c21efe75db90bb) C:\WINDOWS\system32\DRIVERS\hamachi.sys
2011/05/23 23:15:44.0968 2216 HdAudAddService (56bf27d7a539f9e6bbc1de201aba0edf) C:\WINDOWS\system32\drivers\AtiHdAud.sys
2011/05/23 23:15:45.0015 2216 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/05/23 23:15:45.0062 2216 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/23 23:15:45.0125 2216 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/23 23:15:45.0218 2216 i8042prt (610726e28af55b95043c5c35a727e320) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/05/23 23:15:45.0265 2216 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/23 23:15:45.0484 2216 IntcAzAudAddService (b29781b9a90cd55fc5d859c0b1c243bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/05/23 23:15:45.0546 2216 intelppm (ebd830a0970c438047006a49c23e287f) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/23 23:15:45.0593 2216 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/05/23 23:15:45.0671 2216 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/23 23:15:45.0703 2216 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/23 23:15:45.0734 2216 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/23 23:15:45.0796 2216 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/23 23:15:45.0812 2216 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/23 23:15:45.0859 2216 isapnp (0953594beb81cc72fcc62d37921b25a6) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/23 23:15:45.0937 2216 Kbdclass (28b6eace513ca7eaba3b809ad4bc274d) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/23 23:15:45.0984 2216 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/05/23 23:15:46.0046 2216 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/23 23:15:46.0109 2216 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/23 23:15:46.0156 2216 Modem (8cb6636806d76b85fafaee94d75f5129) C:\WINDOWS\system32\drivers\Modem.sys
2011/05/23 23:15:46.0187 2216 Mouclass (e904ebed608055a2bfb824c07f59766c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/23 23:15:46.0234 2216 mouhid (d7662f0cf5b77bbbe3202716f5bd5318) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/23 23:15:46.0250 2216 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/23 23:15:46.0296 2216 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/23 23:15:46.0390 2216 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/23 23:15:46.0453 2216 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/05/23 23:15:46.0500 2216 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/23 23:15:46.0515 2216 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/23 23:15:46.0546 2216 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/23 23:15:46.0578 2216 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/23 23:15:46.0609 2216 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/23 23:15:46.0640 2216 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
2011/05/23 23:15:46.0703 2216 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/05/23 23:15:46.0812 2216 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/23 23:15:46.0890 2216 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/05/23 23:15:46.0906 2216 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/23 23:15:46.0937 2216 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/23 23:15:46.0968 2216 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/23 23:15:46.0984 2216 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/23 23:15:47.0015 2216 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/23 23:15:47.0046 2216 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/23 23:15:47.0093 2216 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/23 23:15:47.0171 2216 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/05/23 23:15:47.0250 2216 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/23 23:15:47.0281 2216 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/05/23 23:15:47.0359 2216 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/23 23:15:47.0390 2216 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/23 23:15:47.0437 2216 Parport (4e9408a178b2d955871c2cdd278de3c3) C:\WINDOWS\system32\DRIVERS\parport.sys
2011/05/23 23:15:47.0468 2216 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/23 23:15:47.0484 2216 ParVdm (0dabef655a444cb1e193626fb1d24b9f) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/23 23:15:47.0562 2216 PCI (f40a46892afebb0314536b849d57c11e) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/23 23:15:47.0640 2216 PCIIde (b2df00d650fd6c4ee781740ed3c8e67f) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/23 23:15:47.0718 2216 Pcmcia (815c50f2b1d1562800bdce8be895000e) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/05/23 23:15:47.0875 2216 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/23 23:15:47.0890 2216 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/23 23:15:47.0937 2216 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/23 23:15:48.0031 2216 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/23 23:15:48.0078 2216 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/23 23:15:48.0093 2216 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/23 23:15:48.0109 2216 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/23 23:15:48.0171 2216 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/23 23:15:48.0187 2216 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/23 23:15:48.0234 2216 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/05/23 23:15:48.0265 2216 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/23 23:15:48.0328 2216 redbook (393fc252593323b624b230eca6b85e63) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/23 23:15:48.0421 2216 SASDIFSV (c5d996556c9df4716a09e7f8c3ddd2cf) C:\Programmi\SUPERAntiSpyware\SASDIFSV.SYS
2011/05/23 23:15:48.0468 2216 SASENUM (7f1085895e499907f68df7731924122b) C:\Programmi\SUPERAntiSpyware\SASENUM.SYS
2011/05/23 23:15:48.0484 2216 SASKUTIL (1380ab4ac393b5d3e21521fced3cd834) C:\Programmi\SUPERAntiSpyware\SASKUTIL.sys
2011/05/23 23:15:48.0546 2216 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/23 23:15:48.0593 2216 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/05/23 23:15:48.0640 2216 Serial (fdbd9d64e2e03270021d424f0dccf79d) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/05/23 23:15:48.0703 2216 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/05/23 23:15:48.0765 2216 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/23 23:15:48.0812 2216 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/05/23 23:15:48.0890 2216 sr (618718cae288bf7cbd8fcbab2577d932) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/23 23:15:49.0000 2216 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/23 23:15:49.0046 2216 sscdbus (2d4027c46b4c6e45875e3c4ba3f67492) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
2011/05/23 23:15:49.0093 2216 sscdmdfl (f548f1eba107bc19e91189e6a460bd0e) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
2011/05/23 23:15:49.0156 2216 sscdmdm (71d348d53597379dfe1de255d70af13c) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
2011/05/23 23:15:49.0203 2216 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/23 23:15:49.0218 2216 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/23 23:15:49.0250 2216 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/05/23 23:15:49.0343 2216 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/23 23:15:49.0437 2216 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/23 23:15:49.0500 2216 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/23 23:15:49.0531 2216 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/23 23:15:49.0562 2216 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/23 23:15:49.0656 2216 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/05/23 23:15:49.0750 2216 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/05/23 23:15:49.0812 2216 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/23 23:15:49.0875 2216 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/23 23:15:49.0890 2216 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/23 23:15:49.0937 2216 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/05/23 23:15:49.0968 2216 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/05/23 23:15:50.0062 2216 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/23 23:15:50.0093 2216 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/05/23 23:15:50.0171 2216 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
2011/05/23 23:15:50.0203 2216 VF0270Dev (3bdb98e90a4b84c5c7d40a01913cff43) C:\WINDOWS\system32\DRIVERS\V0270Dev.sys
2011/05/23 23:15:50.0265 2216 VF0270Vfx (8c6fc17847495c39a46f61584102a52f) C:\WINDOWS\system32\DRIVERS\V0270VFx.sys
2011/05/23 23:15:50.0312 2216 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/05/23 23:15:50.0375 2216 VolSnap (e46c1b5a56da7da603d09dfcc79ec59e) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/23 23:15:50.0406 2216 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/23 23:15:50.0453 2216 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/23 23:15:50.0531 2216 WpdUsb (1385e5aa9c9821790d33a9563b8d2dd0) C:\WINDOWS\system32\Drivers\wpdusb.sys
2011/05/23 23:15:50.0593 2216 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/23 23:15:50.0750 2216 ================================================================================
2011/05/23 23:15:50.0750 2216 Scan finished
2011/05/23 23:15:50.0750 2216 ================================================================================
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Nichi » lun mag 23, 2011 10:33 pm

Nell'attesa (poi se nessuno ti risponde si va a letto) utilizza Stealth Rootkit Detector, scaricalo da qui http://www2.gmer.net/mbr/mbr.exe.
Lo salvi in C:\, poi apri il prompt dei comandi e scrivi: C:\mbr.exe -f
Avrai un log in C:\ copialo e incollalo qua, sempre per servire tutto su un piatto d'argento agli esperti.

[ciao]
Siamo solo pedine... [B)]
Avatar utente
Nichi
Senior Member
Senior Member
 
Messaggi: 388
Iscritto il: ven feb 26, 2010 3:16 pm

Re: Aiuto per rimozione virus

Messaggioda Or4colo » lun mag 23, 2011 10:42 pm

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD1600JS-00NCB1 rev.10.02E02 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK
copy of MBR has been found in sector 312576705


Perfetto grazie Nichi e a tutti, per ora lascio meditare a Voi, gente della notte [:D] e domani ci risentiremo, se vi va.
Notte, ah se può essere d'aiuto spesso quando accendo il pc non compaiono le icone e quindi devo riavviare, e poi anche se parte tutto bene sembra che il pc lavori, che ci sia qualche applicazione di cui non conosco l'esistenza? mah... Ciao ciao
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Nichi » lun mag 23, 2011 10:56 pm

l'ultima voce;
copy of MBR has been found in sector 312576705
non mi sembra normale, comunque aspettiamo il responso.
Buona notte...
Siamo solo pedine... [B)]
Avatar utente
Nichi
Senior Member
Senior Member
 
Messaggi: 388
Iscritto il: ven feb 26, 2010 3:16 pm

Re: Aiuto per rimozione virus

Messaggioda Or4colo » mar mag 24, 2011 5:21 pm

Ragazzi qualcuno sa darmi qualche consiglio??? oggi quando ho acceso il pc mi sembra che il mio problema con Avast che trovava quella infezione in vchost.exe sia risolto, ed in effetti si è attivato anche il firewall. Però sembra sempre che il pc stia lavorando, anche quando non ho aperto nessuna finestra... Grazie ancora
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Uomo_Senza_Sonno » mar mag 24, 2011 11:42 pm

Nichi ha scritto:l'ultima voce;
copy of MBR has been found in sector 312576705
non mi sembra normale, comunque aspettiamo il responso

Questa voce indica solamente che è presente una copia dell'mbr in quel settore, normalmente non dovrebbe esserci e testimonia la passata prensenza di qualche infezione da rootkit. Seguendo quest'articolo, postami il settore 0 ed il settore dove è stata rilevata la copia, per il momento. Verifichiamo se è rimasta qualcosa o meno [std]
Grazie per tutto Zane

conosciamo l'1% delle leggi che governano l'universo, le altre non le abbiamo ancora comprese a fondo o addirittura nemmeno intuite
Avatar utente
Uomo_Senza_Sonno
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 3255
Iscritto il: gio feb 07, 2008 9:00 am
Località: http://turbolab.it

Re: Aiuto per rimozione virus

Messaggioda Or4colo » mer mag 25, 2011 8:11 pm

Scusa la mia grande ignoranza in tema, ho letto bene tutto nel collegamento che mi hai dato, ma sinceramente non riesco a capire come devo fare,o cosa dovrei fare per postare quelle cose. sono decisamente inesperto sui pc [;)] uff grazie
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Nichi » mer mag 25, 2011 9:09 pm

Dai una letta a questo articolo. Spiega come postare immagini nel forum.

Praticamente devi fotografare i settori indicati da Uomo_Senza_Sonno e postarli qui.
Per vedere quei settori devi usare (con prudenza) il programma indicato nell'articolo già segnalato dall'esperto.
Siamo solo pedine... [B)]
Avatar utente
Nichi
Senior Member
Senior Member
 
Messaggi: 388
Iscritto il: ven feb 26, 2010 3:16 pm

Re: Aiuto per rimozione virus

Messaggioda Or4colo » mer mag 25, 2011 9:47 pm

OK ho fatto degli aggiornamenti ed ora il mio pc sembra non impazzire più, per ora direi che chiudo qui, grazie a tutti del tempo dedicatomi,sono certo che se mi si presentassero altri problemi Vi troverò come al solito disponibili. Vorrei ricambiare ma i consigli che posso darvi potrebbero essere solo su come accendere il pc [rotolo] A presto ragazzi. Ciao
Pedonali o Signore, perché non sanno quello che fanno...
Avatar utente
Or4colo
Aficionado
Aficionado
 
Messaggi: 134
Iscritto il: gio nov 01, 2007 2:33 pm

Re: Aiuto per rimozione virus

Messaggioda Nichi » mer mag 25, 2011 10:06 pm

[^] quando hai tempo dai una letta ai link sopra, potranno servirti per il futuro...
Siamo solo pedine... [B)]
Avatar utente
Nichi
Senior Member
Senior Member
 
Messaggi: 388
Iscritto il: ven feb 26, 2010 3:16 pm


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 9 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising