Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Confirm file delete


  • This topic is locked This topic is locked
28 replies to this topic

#1 oipc

oipc

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 25 January 2013 - 04:43 PM

Thank you for your answer boopme,

Here is the copy of the ddx text;

Hope you can help

PS it says I am not permitted to upload the compressed attach text

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 6.0.2900.2180
Run by Administrator at 22:23:54 on 2013-01-25
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.2038.1338 [GMT 1:00]
.
AV: Total Protection *Disabled/Outdated* {8C354827-2F54-4E28-90DC-AD391E77808C}
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Privatefirewall *Enabled*
FW: Total Protection *Disabled*
.
============== Running Processes ================
.
C:\Programmi\Privacyware\Privatefirewall 7.0\pfsvc.exe
C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\McAfee\HackerWatch\HWAPI.exe
C:\Programmi\McAfee\MPF\MPFSrv.exe
C:\Programmi\Alwil Software\Avast5\avastUI.exe
C:\Programmi\SiteAdvisor\6173\SiteAdv.exe
C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe
C:\Programmi\EPSON_P2\Status Monitor\SEPSPZ.EXE
C:\WINDOWS\SMINST\Scheduler.exe
C:\Programmi\Privacyware\Privatefirewall 7.0\PFGUI.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtTry.exe
C:\Programmi\EPSON\Creativity Suite\Event Manager\EEventManager.exe
C:\Programmi\Auslogics\AusLogics BoostSpeed\boostspeed.exe
C:\Programmi\PDF Complete\pdfsvc.exe
C:\Programmi\EPSON_P2\Status Monitor\SESDBN.EXE
C:\Programmi\SiteAdvisor\6173\SAService.exe
C:\Programmi\OpenOffice.org 3\program\soffice.exe
C:\Programmi\EPSON_P2\Status Monitor\SEPWDN.EXE
C:\Programmi\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\System32\alg.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.it/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
BHO: <No Name>: {089FD14D-132B-48FC-8861-0048AE113215} - c:\programmi\siteadvisor\6173\SiteAdv.dll
BHO: AOL Toolbar BHO: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\programmi\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AOL Toolbar: {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
TB: McAfee SiteAdvisor: {0BF43445-2F28-4351-9252-17FE6E806AA0} - c:\programmi\siteadvisor\6173\SiteAdv.dll
TB: AOL Toolbar: {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
uRun: [Auslogics BoostSpeed 4] c:\programmi\auslogics\auslogics boostspeed\boostspeed.exe
mRun: [avast] "c:\programmi\alwil software\avast5\avastUI.exe" /nogui
mRun: [SSBkgdUpdate] "c:\programmi\file comuni\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [SiteAdvisor] c:\programmi\siteadvisor\6173\SiteAdv.exe
mRun: [SetRefresh] c:\programmi\compaq\setrefresh\SetRefresh.exe
mRun: [SESMPSP] "c:\programmi\epson_p2\status monitor\SEPSPZ.EXE"
mRun: [SEQLU] "c:\programmi\epson_p2\printer software\SEQLUZ.EXE" /S
mRun: [Scheduler] c:\windows\sminst\Scheduler.exe
mRun: [Reminder] c:\windows\creator\Remind_XP.exe
mRun: [Recguard] c:\windows\sminst\Recguard.exe
mRun: [Privatefirewall] c:\programmi\privacyware\privatefirewall 7.0\PFGUI.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [PDF Complete] c:\programmi\pdf complete\pdfsty.exe
mRun: [OpwareSE4] "c:\programmi\scansoft\omnipagese4.0\OpwareSE4.exe"
mRun: [MVS Splash] c:\programmi\mcafee\managed virusscan\agent\Splash.exe
mRun: [McAfee Managed Services Tray] c:\programmi\mcafee\managed virusscan\agent\StartMyAgtTry.Exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [EEventManager] c:\programmi\epson\creativity suite\event manager\EEventManager.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\admini~1\menuav~1\progra~1\esecuz~1\openof~1.lnk - c:\programmi\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\docume~1\alluse~1\menuav~1\progra~1\esecuz~1\micros~1.lnk - c:\programmi\microsoft office\office\OSA9.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: &AOL Toolbar Cerca - c:\documents and settings\all users\dati applicazioni\aol\ietoolbar\resources\it-it\local\search.html
IE: {3369AF0D-62E9-4bda-8103-B4C75499B578} - {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{8CE65691-F652-4C3A-9C3C-ADB93E21DB18} : DHCPNameServer = 192.168.1.1
Handler: myrm - {4D034FC3-013F-4b95-B544-44D49ABE3E76} - c:\programmi\mcafee\managed virusscan\agent\myRmProt4.7.0.584.dll
Handler: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - c:\programmi\siteadvisor\6173\SiteAdv.dll
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\dati applicazioni\mozilla\firefox\profiles\g4mox0ue.default\
FF - plugin: c:\program files\tracker software\pdf viewer\npPDFXCviewNPPlugin.dll
FF - plugin: c:\windows\system32\c2mp\npdivx32.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-10-5 93536]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-9-18 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-8-27 361032]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2012-8-27 201320]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-27 21256]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\alwil software\avast5\AvastSvc.exe [2012-8-27 44808]
R2 EngineServer;EngineServer;c:\progra~1\mcafee\manage~1\vscan\ENGINE~1.EXE [2012-8-27 14144]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service;c:\programmi\file comuni\mcafee\hackerwatch\HWAPI.exe [2012-8-27 540776]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\programmi\mcafee\managed virusscan\agent\myAgtSvc.exe [2012-8-27 169280]
R2 pdfcDispatcher;PDF Document Manager;c:\programmi\pdf complete\pdfsvc.exe [2012-8-27 576024]
R2 PFNet;Privacyware network service;c:\programmi\privacyware\privatefirewall 7.0\pfsvc.exe [2013-1-14 374600]
R2 SESMPWD;EPSON Status Monitor Status Watcher;c:\programmi\epson_p2\status monitor\SEPWDN.EXE [2012-9-22 116760]
R2 SESMSDB;EPSON Status Monitor Status Database;c:\programmi\epson_p2\status monitor\SESDBN.EXE [2012-9-22 227360]
R3 pwipf6;Privacyware Filter Driver;c:\windows\system32\drivers\pwipf6.sys [2013-1-22 135272]
S2 0318521346079100mcinstcleanup;McAfee Application Installer Cleanup (0318521346079100); [x]
S3 McShield;McShield;c:\progra~1\mcafee\manage~1\vscan\McShield.exe [2012-8-27 144704]
S3 MfeAVFK;McAfee Inc. MfeAVFK;c:\windows\system32\drivers\MfeAVFK.sys [2012-8-27 79304]
S3 MfeBOPK;McAfee Inc. MfeBOPK;c:\windows\system32\drivers\MfeBOPK.sys [2012-8-27 35240]
S3 MfeRKDK;McAfee Inc. MfeRKDK;c:\windows\system32\drivers\MfeRKDK.sys [2012-8-27 33832]
S3 VirtDisk;XSS Virtual Disk Driver;c:\windows\sminst\virtdisk.sys [2012-8-27 57344]
.
=============== File Associations ===============
.
ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~2\office\FRONTPG.EXE
ShellExec: pdfvista.exe: Open="c:\programmi\pdf complete\pdfvista.exe"
ShellExec: pdfvista.exe: Read="c:\programmi\pdf complete\pdfvista.exe"
.
=============== Created Last 30 ================
.
2013-01-25 03:04:36 98816 ----a-w- c:\windows\sed.exe
2013-01-25 03:04:36 256000 ----a-w- c:\windows\PEV.exe
2013-01-25 03:04:36 208896 ----a-w- c:\windows\MBR.exe
2013-01-23 23:18:54 -------- d-----w- c:\windows\ShellNew
2013-01-23 23:07:59 -------- d-----w- c:\windows\system32\appmgmt
2013-01-22 07:38:21 -------- d-----w- c:\windows\pss
2013-01-22 01:03:57 -------- d-----w- c:\documents and settings\administrator\impostazioni locali\dati applicazioni\Privatefirewall
2013-01-22 01:00:17 135272 ----a-w- c:\windows\system32\drivers\pwipf6.sys
2013-01-22 01:00:12 -------- d-----w- c:\documents and settings\all users\dati applicazioni\Privacyware
2013-01-22 01:00:11 -------- d-----w- c:\programmi\Privacyware
2013-01-22 00:06:49 -------- d--h--w- c:\windows\system32\GroupPolicy
2013-01-22 00:04:02 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\MatSpoon
2013-01-22 00:03:58 -------- d-----w- c:\programmi\MatSpoon
2013-01-21 23:18:07 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-01-21 23:18:07 21504 ----a-w- c:\windows\system32\dllcache\hidserv.dll
2013-01-21 23:18:02 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2013-01-21 23:18:02 14848 ----a-w- c:\windows\system32\dllcache\kbdhid.sys
2013-01-21 23:17:49 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-01-21 23:17:49 31616 ----a-w- c:\windows\system32\dllcache\usbccgp.sys
2013-01-19 23:18:58 -------- d-----w- C:\ESET
2013-01-19 22:31:40 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\f-secure
2013-01-19 22:31:22 -------- d-----w- c:\documents and settings\all users\dati applicazioni\F-Secure
2013-01-19 22:12:29 -------- d-----w- c:\programmi\CCleaner
2013-01-19 22:02:02 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\Malwarebytes
2013-01-19 22:01:43 -------- d-----w- c:\documents and settings\all users\dati applicazioni\Malwarebytes
2013-01-19 22:01:42 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-19 22:01:42 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2013-01-19 21:57:28 -------- d-----w- c:\programmi\Panda Security
2013-01-19 18:01:50 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2013-01-19 18:01:50 12160 ----a-w- c:\windows\system32\dllcache\mouhid.sys
2013-01-19 18:01:46 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2013-01-19 18:01:46 9600 ----a-w- c:\windows\system32\dllcache\hidusb.sys
2013-01-19 17:55:52 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-01-19 17:55:52 -------- d-----w- c:\windows\system32\wbem\Repository
2013-01-18 01:38:46 -------- d-----w- c:\programmi\MSECache
.
==================== Find3M ====================
.
2012-10-30 22:51:58 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51:07 41224 ----a-w- c:\windows\avastSS.scr
.
============= FINISH: 22.24.55,50 ===============

BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:53 AM

Posted 30 January 2013 - 04:45 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

Posted Image In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/483016 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

Posted Image If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 31 January 2013 - 03:06 PM

Help,
When I left click on a desktop icon, to open a file, I get the window-confirm file deletion. If I check no it does not go away and usually it fills the screen with duplicates of the same window. After several attempts I usually manage to close it. I have done an antivirus check but no virus was found. I also tried to run Combofix, what happened was that the start bar disappeared, and I had to unplug the PC to turn it off. When I turned it back on the start bar had reappeared but so had the problem.


I do not have the original WIndows CD available.


Here is the Dds log:

Internet Explorer:
Run by Administrator at 20:53:26 on 2013-01-31
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.2038.1341 [GMT 1:00]
.
AV: Total Protection *Disabled/Outdated* {8C354827-2F54-4E28-90DC-AD391E77808C}
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Privatefirewall *Disabled*
FW: Total Protection *Disabled*
.
============== Running Processes ================
.
C:\Programmi\Privacyware\Privatefirewall 7.0\pfsvc.exe
C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\McAfee\HackerWatch\HWAPI.exe
C:\Programmi\McAfee\MPF\MPFSrv.exe
C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe
C:\Programmi\Alwil Software\Avast5\avastUI.exe
C:\Programmi\SiteAdvisor\6173\SiteAdv.exe
C:\Programmi\PDF Complete\pdfsvc.exe
C:\Programmi\EPSON_P2\Status Monitor\SEPSPZ.EXE
C:\WINDOWS\SMINST\Scheduler.exe
C:\Programmi\EPSON_P2\Status Monitor\SESDBN.EXE
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\SiteAdvisor\6173\SAService.exe
C:\Programmi\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Programmi\EPSON_P2\Status Monitor\SEPWDN.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtTry.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Programmi\EPSON\Creativity Suite\Event Manager\EEventManager.exe
C:\Programmi\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Auslogics\AusLogics BoostSpeed\boostspeed.exe
C:\Programmi\OpenOffice.org 3\program\soffice.exe
C:\Programmi\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\System32\alg.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Microsoft Office\Office\WINWORD.EXE
C:\WINDOWS\msagent\AgentSvr.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.it/
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
BHO: <No Name>: {089FD14D-132B-48FC-8861-0048AE113215} - c:\programmi\siteadvisor\6173\SiteAdv.dll
BHO: AOL Toolbar BHO: {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\programmi\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AOL Toolbar: {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
TB: McAfee SiteAdvisor: {0BF43445-2F28-4351-9252-17FE6E806AA0} - c:\programmi\siteadvisor\6173\SiteAdv.dll
TB: AOL Toolbar: {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
uRun: [MSMSGS] "c:\programmi\messenger\msmsgs.exe" /background
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Auslogics BoostSpeed 4] c:\programmi\auslogics\auslogics boostspeed\boostspeed.exe
mRun: [avast] "c:\programmi\alwil software\avast5\avastUI.exe" /nogui
mRun: [SSBkgdUpdate] "c:\programmi\file comuni\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [SiteAdvisor] c:\programmi\siteadvisor\6173\SiteAdv.exe
mRun: [SetRefresh] c:\programmi\compaq\setrefresh\SetRefresh.exe
mRun: [SESMPSP] "c:\programmi\epson_p2\status monitor\SEPSPZ.EXE"
mRun: [SEQLU] "c:\programmi\epson_p2\printer software\SEQLUZ.EXE" /S
mRun: [Scheduler] c:\windows\sminst\Scheduler.exe
mRun: [Reminder] c:\windows\creator\Remind_XP.exe
mRun: [Recguard] c:\windows\sminst\Recguard.exe
mRun: [Privatefirewall] c:\programmi\privacyware\privatefirewall 7.0\PFGUI.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [PDF Complete] c:\programmi\pdf complete\pdfsty.exe
mRun: [OpwareSE4] "c:\programmi\scansoft\omnipagese4.0\OpwareSE4.exe"
mRun: [MVS Splash] c:\programmi\mcafee\managed virusscan\agent\Splash.exe
mRun: [McAfee Managed Services Tray] c:\programmi\mcafee\managed virusscan\agent\StartMyAgtTry.Exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [EEventManager] c:\programmi\epson\creativity suite\event manager\EEventManager.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\admini~1\menuav~1\progra~1\esecuz~1\openof~1.lnk - c:\programmi\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\docume~1\alluse~1\menuav~1\progra~1\esecuz~1\micros~1.lnk - c:\programmi\microsoft office\office\OSA9.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: &AOL Toolbar Cerca - c:\documents and settings\all users\dati applicazioni\aol\ietoolbar\resources\it-it\local\search.html
IE: {3369AF0D-62E9-4bda-8103-B4C75499B578} - {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\programmi\aol\aol toolbar 5.0\aoltb.dll
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1359417789312
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Handler: myrm - {4D034FC3-013F-4b95-B544-44D49ABE3E76} - c:\programmi\mcafee\managed virusscan\agent\myRmProt4.7.0.584.dll
Handler: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - c:\programmi\siteadvisor\6173\SiteAdv.dll
Notify: igfxcui - igfxdev.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\programmi\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\programmi\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\dati applicazioni\mozilla\firefox\profiles\g4mox0ue.default\
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\tracker software\pdf viewer\npPDFXCviewNPPlugin.dll
FF - plugin: c:\programmi\java\jre6\bin\new_plugin\npdeploytk.dll
FF - plugin: c:\programmi\java\jre6\bin\new_plugin\npjp2.dll
FF - plugin: c:\programmi\windows media player\npdrmv2.dll
FF - plugin: c:\programmi\windows media player\npdsplay.dll
FF - plugin: c:\programmi\windows media player\npwmsdrm.dll
FF - plugin: c:\windows\system32\c2mp\npdivx32.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_278.dll
FF - ExtSQL: 2013-01-26 16:53; {e001c731-5e37-4538-a5cb-8168736a2360}; c:\documents and settings\administrator\dati applicazioni\mozilla\firefox\profiles\g4mox0ue.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-10-5 93536]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-9-18 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-8-27 361032]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2012-8-27 201320]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-27 21256]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\alwil software\avast5\AvastSvc.exe [2012-8-27 44808]
R2 EngineServer;EngineServer;c:\progra~1\mcafee\manage~1\vscan\ENGINE~1.EXE [2012-8-27 14144]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service;c:\programmi\file comuni\mcafee\hackerwatch\HWAPI.exe [2012-8-27 540776]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\programmi\mcafee\managed virusscan\agent\myAgtSvc.exe [2012-8-27 169280]
R2 pdfcDispatcher;PDF Document Manager;c:\programmi\pdf complete\pdfsvc.exe [2012-8-27 576024]
R2 PFNet;Privacyware network service;c:\programmi\privacyware\privatefirewall 7.0\pfsvc.exe [2013-1-14 374600]
R2 SESMPWD;EPSON Status Monitor Status Watcher;c:\programmi\epson_p2\status monitor\SEPWDN.EXE [2012-9-22 116760]
R2 SESMSDB;EPSON Status Monitor Status Database;c:\programmi\epson_p2\status monitor\SESDBN.EXE [2012-9-22 227360]
R3 pwipf6;Privacyware Filter Driver;c:\windows\system32\drivers\pwipf6.sys [2013-1-22 135272]
S2 0318521346079100mcinstcleanup;McAfee Application Installer Cleanup (0318521346079100); [x]
S3 McShield;McShield;c:\progra~1\mcafee\manage~1\vscan\McShield.exe [2012-8-27 144704]
S3 MfeAVFK;McAfee Inc. MfeAVFK;c:\windows\system32\drivers\MfeAVFK.sys [2012-8-27 79304]
S3 MfeBOPK;McAfee Inc. MfeBOPK;c:\windows\system32\drivers\MfeBOPK.sys [2012-8-27 35240]
S3 MfeRKDK;McAfee Inc. MfeRKDK;c:\windows\system32\drivers\MfeRKDK.sys [2012-8-27 33832]
S3 VirtDisk;XSS Virtual Disk Driver;c:\windows\sminst\virtdisk.sys [2012-8-27 57344]
.
=============== File Associations ===============
.
ShellExec: FRONTPG.EXE: edit=c:\progra~1\micros~2\office\FRONTPG.EXE
ShellExec: pdfvista.exe: Open="c:\programmi\pdf complete\pdfvista.exe"
ShellExec: pdfvista.exe: Read="c:\programmi\pdf complete\pdfvista.exe"
.
=============== Created Last 30 ================
.
2013-01-28 23:30:10 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2013-01-28 23:30:07 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2013-01-28 23:30:03 17408 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2013-01-28 23:30:00 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2013-01-28 23:28:58 701386 ----a-w- c:\windows\system32\dllcache\wdhaalba.sys
2013-01-28 23:27:57 113762 ----a-w- c:\windows\system32\dllcache\usrpda.sys
2013-01-28 23:26:57 212480 ----a-w- c:\windows\system32\dllcache\um54scan.dll
2013-01-28 23:25:59 241664 ----a-w- c:\windows\system32\dllcache\tosdvd02.sys
2013-01-28 23:24:58 10240 ----a-w- c:\windows\system32\dllcache\swpdflt2.dll
2013-01-28 23:23:57 20752 ----a-w- c:\windows\system32\dllcache\sonync.sys
2013-01-28 23:22:59 91294 ----a-w- c:\windows\system32\dllcache\skfpwin.sys
2013-01-28 23:21:58 6912 ----a-w- c:\windows\system32\dllcache\seaddsmc.sys
2013-01-28 23:20:59 166720 ----a-w- c:\windows\system32\dllcache\s3m.sys
2013-01-28 23:19:58 899754 ----a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2013-01-28 23:18:56 121344 ----a-w- c:\windows\system32\dllcache\phvfwext.dll
2013-01-28 23:17:58 25216 ----a-w- c:\windows\system32\dllcache\ovsound2.sys
2013-01-28 23:16:58 7552 ----a-w- c:\windows\system32\dllcache\nsmmc.sys
2013-01-28 23:15:58 19968 ----a-w- c:\windows\system32\dllcache\mxnic.sys
2013-01-28 23:14:57 6528 ----a-w- c:\windows\system32\dllcache\miniqic.sys
2013-01-28 23:13:59 25065 ----a-w- c:\windows\system32\dllcache\lmndis3.sys
2013-01-28 23:12:58 23552 ----a-w- c:\windows\system32\dllcache\irmk7.sys
2013-01-28 23:11:58 109085 ----a-w- c:\windows\system32\dllcache\ibmtrp.sys
2013-01-28 23:10:59 5760 ----a-w- c:\windows\system32\dllcache\hpt4qic.sys
2013-01-28 23:09:59 320384 ----a-w- c:\windows\system32\dllcache\g200m.sys
2013-01-28 23:08:58 348062 ----a-w- c:\windows\system32\dllcache\es56tpi.sys
2013-01-28 23:07:59 8704 ----a-w- c:\windows\system32\dllcache\dot4scan.sys
2013-01-28 23:06:59 3072 ----a-w- c:\windows\system32\dllcache\cwbmidi.sys
2013-01-28 23:05:59 39680 ----a-w- c:\windows\system32\dllcache\brparwdm.sys
2013-01-28 23:04:59 747392 ----a-w- c:\windows\system32\dllcache\adm8830.sys
2013-01-28 00:18:02 256904 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2013-01-27 17:43:07 -------- d-----w- c:\windows\system32\wbem\repository\FS
2013-01-27 17:43:07 -------- d-----w- c:\windows\system32\wbem\Repository
2013-01-27 17:42:56 -------- d-----w- c:\windows\system32\URTTemp
2013-01-27 17:42:56 -------- d-----w- c:\documents and settings\administrator\WINDOWS
2013-01-27 17:42:51 -------- d-s---w- C:\ComboFix
2013-01-26 19:43:46 -------- d-----w- c:\documents and settings\all users\dati applicazioni\Kaspersky Lab
2013-01-26 15:53:28 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\QuickScan
2013-01-25 03:04:36 98816 ----a-w- c:\windows\sed.exe
2013-01-25 03:04:36 256000 ----a-w- c:\windows\PEV.exe
2013-01-25 03:04:36 208896 ----a-w- c:\windows\MBR.exe
2013-01-23 23:18:54 -------- d-----w- c:\windows\ShellNew
2013-01-23 23:07:59 -------- d-----w- c:\windows\system32\appmgmt
2013-01-22 07:38:21 -------- d-----w- c:\windows\pss
2013-01-22 01:03:57 -------- d-----w- c:\documents and settings\administrator\impostazioni locali\dati applicazioni\Privatefirewall
2013-01-22 01:00:17 135272 ----a-w- c:\windows\system32\drivers\pwipf6.sys
2013-01-22 01:00:12 -------- d-----w- c:\documents and settings\all users\dati applicazioni\Privacyware
2013-01-22 00:06:49 -------- d--h--w- c:\windows\system32\GroupPolicy
2013-01-22 00:04:02 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\MatSpoon
2013-01-21 23:18:07 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-01-21 23:18:07 21504 ----a-w- c:\windows\system32\dllcache\hidserv.dll
2013-01-21 23:18:02 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2013-01-21 23:18:02 14848 ----a-w- c:\windows\system32\dllcache\kbdhid.sys
2013-01-21 23:17:49 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-01-21 23:17:49 31616 ----a-w- c:\windows\system32\dllcache\usbccgp.sys
2013-01-19 23:18:58 -------- d-----w- C:\ESET
2013-01-19 22:31:40 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\f-secure
2013-01-19 22:31:22 -------- d-----w- c:\documents and settings\all users\dati applicazioni\F-Secure
2013-01-19 22:02:02 -------- d-----w- c:\documents and settings\administrator\dati applicazioni\Malwarebytes
2013-01-19 22:01:43 -------- d-----w- c:\documents and settings\all users\dati applicazioni\Malwarebytes
2013-01-19 22:01:42 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-19 18:01:50 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2013-01-19 18:01:50 12160 ----a-w- c:\windows\system32\dllcache\mouhid.sys
2013-01-19 18:01:46 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2013-01-19 18:01:46 9600 ----a-w- c:\windows\system32\dllcache\hidusb.sys
.
==================== Find3M ====================
.
.
============= FINISH: 20.53.36,35 ===============

#4 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 01 February 2013 - 02:06 AM

Hello and welcome to BleepingComputer. I am The Dark Knight and will be assisting you. Please ask questions if anything is unclear. :welcome:


My apologies for the delay.

Please download and run the following tool to help allow other programs to run. (courtesy of BleepingComputer.com).
  • There are 3 different versions. If one of them won't run then download and try to run the other one.
  • Vista and Win7 users need to right click and choose Run as Admin.
  • You only need to get one of them to run, not all of them.
rkill.exe
rkill.com
rkill.scr

It is possible that the infection you are trying to remove will not allow you to download files on the infected computer. If this is the case, then you will need to download the files requested on another computer and then transfer them to the Desktop of the infected computer. You can transfer the files via a CD/DVD, external drive, or USB flash drive.

Before proceeding any further the processes that belong to Windows Recovery need to be terminated so that it does not interfere with the cleaning procedure.

Double-click on the RKill.exe icon in order to automatically attempt to stop any processes associated with Windows Recovery and other Rogue programs.
===

Please do not reboot your computer.


Then, please delete your current copy of ComboFix. Finally, please follow these instructions to run ComboFix.exe. Please visit this webpage for download links and instructions for running this tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix (CF).

Please go here to see a list of programs that need to be disabled.

**Note: Do not mouseclick ComboFix's window while it's running. That may cause it to stall.**

**Note 2: If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.**

Please include the C:\ComboFix.txt in your next reply for further review.

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image


#5 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 01 February 2013 - 04:14 AM

Thank you for your assistance Dark Knight,

Here is the ComboFix txt. Just like last time when it had finished running the start bar disappeared and I had to turn the PC off; then when I turned the PC on again it reappered but so did the problem;

ComboFix 13-01-31.03 - Administrator 01/02/2013 9.33.47.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.2038.1449 [GMT 1:00]
Eseguito da: c:\documents and settings\Administrator\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Total Protection *Disabled/Outdated* {8C354827-2F54-4E28-90DC-AD391E77808C}
FW: Privatefirewall *Disabled* {AF0CFAAE-AAB5-450a-8C74-0DEEB429DF4F}
FW: Total Protection *Disabled* {259FBE35-46BE-45F3-8F2F-4DB67BBBC614}
* Creato nuovo punto di ripristino
.
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
D:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Creati Da 2013-01-01 al 2013-02-01 )))))))))))))))))))))))))))))))))))
.
.
2013-01-28 23:30 . 2004-08-19 14:39 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2013-01-28 23:30 . 2001-08-30 22:08 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2013-01-28 23:30 . 2001-08-30 22:08 17408 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2013-01-28 23:30 . 2001-08-30 22:08 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2013-01-28 23:28 . 2001-08-17 20:28 701386 ----a-w- c:\windows\system32\dllcache\wdhaalba.sys
2013-01-28 23:27 . 2001-08-17 20:28 113762 ----a-w- c:\windows\system32\dllcache\usrpda.sys
2013-01-28 23:26 . 2001-08-30 22:08 212480 ----a-w- c:\windows\system32\dllcache\um54scan.dll
2013-01-28 23:25 . 2001-08-17 21:01 241664 ----a-w- c:\windows\system32\dllcache\tosdvd02.sys
2013-01-28 23:24 . 2001-08-30 22:08 10240 ----a-w- c:\windows\system32\dllcache\swpdflt2.dll
2013-01-28 23:23 . 2001-08-17 19:51 20752 ----a-w- c:\windows\system32\dllcache\sonync.sys
2013-01-28 23:22 . 2001-08-17 19:12 91294 ----a-w- c:\windows\system32\dllcache\skfpwin.sys
2013-01-28 23:21 . 2001-08-17 20:53 6912 ----a-w- c:\windows\system32\dllcache\seaddsmc.sys
2013-01-28 23:20 . 2001-08-17 19:50 166720 ----a-w- c:\windows\system32\dllcache\s3m.sys
2013-01-28 23:19 . 2001-08-30 21:10 899754 ----a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2013-01-28 23:18 . 2001-08-30 22:07 121344 ----a-w- c:\windows\system32\dllcache\phvfwext.dll
2013-01-28 23:17 . 2001-08-17 21:05 25216 ----a-w- c:\windows\system32\dllcache\ovsound2.sys
2013-01-28 23:16 . 2006-03-02 12:00 45056 ----a-w- c:\windows\system32\dllcache\nsepm.dll
2013-01-28 23:15 . 2001-08-17 20:49 19968 ----a-w- c:\windows\system32\dllcache\mxnic.sys
2013-01-28 23:14 . 2001-08-17 20:52 6528 ----a-w- c:\windows\system32\dllcache\miniqic.sys
2013-01-28 23:13 . 2001-08-17 19:11 25065 ----a-w- c:\windows\system32\dllcache\lmndis3.sys
2013-01-28 23:12 . 2001-08-17 20:49 23552 ----a-w- c:\windows\system32\dllcache\irmk7.sys
2013-01-28 23:11 . 2001-08-17 19:12 109085 ----a-w- c:\windows\system32\dllcache\ibmtrp.sys
2013-01-28 23:10 . 2001-08-17 20:52 5760 ----a-w- c:\windows\system32\dllcache\hpt4qic.sys
2013-01-28 23:09 . 2001-08-30 21:06 320384 ----a-w- c:\windows\system32\dllcache\g200m.sys
2013-01-28 23:08 . 2001-08-30 20:54 348062 ----a-w- c:\windows\system32\dllcache\es56tpi.sys
2013-01-28 23:07 . 2001-08-17 20:47 8704 ----a-w- c:\windows\system32\dllcache\dot4scan.sys
2013-01-28 23:06 . 2001-08-17 19:19 3072 ----a-w- c:\windows\system32\dllcache\cwbmidi.sys
2013-01-28 23:05 . 2001-08-30 19:18 39680 ----a-w- c:\windows\system32\dllcache\brparwdm.sys
2013-01-28 23:04 . 2001-08-17 19:19 747392 ----a-w- c:\windows\system32\dllcache\adm8830.sys
2013-01-28 00:18 . 2013-01-28 00:17 256904 ----a-w- c:\windows\system32\drivers\tmcomm.sys
2013-01-27 21:16 . 2013-01-27 21:16 -------- d-----w- c:\programmi\ESET
2013-01-27 17:43 . 2013-01-27 17:43 -------- d-----w- c:\windows\system32\wbem\Repository
2013-01-26 19:43 . 2013-01-26 19:43 -------- d-----w- c:\programmi\Kaspersky Lab
2013-01-26 19:43 . 2013-01-26 19:43 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab
2013-01-26 15:53 . 2013-01-26 15:53 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\QuickScan
2013-01-23 23:18 . 2013-01-30 21:18 -------- d-----w- c:\windows\ShellNew
2013-01-22 01:03 . 2013-01-22 01:03 -------- d-----w- c:\documents and settings\Administrator\Impostazioni locali\Dati applicazioni\Privatefirewall
2013-01-22 01:00 . 2012-05-25 17:34 135272 ----a-w- c:\windows\system32\drivers\pwipf6.sys
2013-01-22 01:00 . 2013-01-22 01:00 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Privacyware
2013-01-22 01:00 . 2013-01-22 01:00 -------- d-----w- c:\programmi\Privacyware
2013-01-22 00:06 . 2013-01-22 00:06 -------- d--h--w- c:\windows\system32\GroupPolicy
2013-01-22 00:04 . 2013-01-22 00:04 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\MatSpoon
2013-01-22 00:03 . 2013-01-22 00:03 -------- d-----w- c:\programmi\MatSpoon
2013-01-21 23:18 . 2004-08-19 14:39 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-01-21 23:18 . 2004-08-19 14:39 21504 ----a-w- c:\windows\system32\dllcache\hidserv.dll
2013-01-21 23:18 . 2004-08-19 14:30 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2013-01-21 23:18 . 2004-08-19 14:30 14848 ----a-w- c:\windows\system32\dllcache\kbdhid.sys
2013-01-21 23:17 . 2004-08-03 22:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-01-21 23:17 . 2004-08-03 22:08 31616 ----a-w- c:\windows\system32\dllcache\usbccgp.sys
2013-01-19 23:18 . 2013-01-19 23:18 -------- d-----w- C:\ESET
2013-01-19 22:31 . 2013-01-19 22:31 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\f-secure
2013-01-19 22:31 . 2013-01-19 22:31 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\F-Secure
2013-01-19 22:12 . 2013-01-19 22:12 -------- d-----w- c:\programmi\CCleaner
2013-01-19 22:02 . 2013-01-19 22:02 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\Malwarebytes
2013-01-19 22:01 . 2013-01-19 22:01 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2013-01-19 22:01 . 2013-01-27 22:00 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2013-01-19 22:01 . 2012-12-14 15:49 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-19 21:57 . 2013-01-19 21:57 -------- d-----w- c:\programmi\Panda Security
2013-01-19 18:01 . 2001-08-30 19:41 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
2013-01-19 18:01 . 2001-08-30 19:41 12160 ----a-w- c:\windows\system32\dllcache\mouhid.sys
2013-01-19 18:01 . 2001-08-17 21:02 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
2013-01-19 18:01 . 2001-08-17 21:02 9600 ----a-w- c:\windows\system32\dllcache\hidusb.sys
2013-01-19 17:49 . 2013-01-19 17:49 -------- d-----w- c:\documents and settings\Administrator\Dati applicazioni\Microsoft Web Folders
2013-01-18 01:38 . 2013-01-18 01:38 -------- d-----w- c:\programmi\MSECache
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-19 22:09 . 2013-01-19 22:09 262552 ----a-w- c:\programmi\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 121528 ----a-w- c:\programmi\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Auslogics BoostSpeed 4"="c:\programmi\Auslogics\AusLogics BoostSpeed\boostspeed.exe" [2008-05-05 255600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\programmi\Alwil Software\Avast5\avastUI.exe" [2012-10-30 4297136]
"SSBkgdUpdate"="c:\programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-09-28 185896]
"SiteAdvisor"="c:\programmi\SiteAdvisor\6173\SiteAdv.exe" [2007-08-28 36640]
"SetRefresh"="c:\programmi\Compaq\SetRefresh\SetRefresh.exe" [2003-11-20 525824]
"SESMPSP"="c:\programmi\EPSON_P2\Status Monitor\SEPSPZ.EXE" [2011-02-02 436248]
"SEQLU"="c:\programmi\EPSON_P2\Printer Software\SEQLUZ.EXE" [2011-02-03 755672]
"Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-07-10 872448]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-31 761856]
"Recguard"="c:\windows\Sminst\Recguard.exe" [2006-05-12 1138688]
"Privatefirewall"="c:\programmi\Privacyware\Privatefirewall 7.0\PFGUI.exe" [2013-01-14 3011400]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-11-26 137752]
"PDF Complete"="c:\programmi\PDF Complete\pdfsty.exe" [2008-04-07 318488]
"OpwareSE4"="c:\programmi\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"MVS Splash"="c:\programmi\McAfee\Managed VirusScan\Agent\Splash.exe" [2008-03-24 468288]
"McAfee Managed Services Tray"="c:\programmi\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe" [2008-03-24 87360]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-11-26 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-11-26 166424]
"EEventManager"="c:\programmi\EPSON\Creativity Suite\Event Manager\EEventManager.exe" [2006-10-12 102400]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-19 15360]
.
c:\documents and settings\Administrator\Menu Avvio\Programmi\Esecuzione automatica\
OpenOffice.org 3.1.lnk - c:\programmi\OpenOffice.org 3\program\quickstart.exe [2009-4-16 384000]
.
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Microsoft Office.lnk - c:\programmi\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Programmi\\McAfee\\Managed VirusScan\\Agent\\myAgtSvc.exe"=
"c:\\WINDOWS\\SMINST\\Scheduler.exe"=
"c:\\Programmi\\AVG\\AVG2013\\avgnsx.exe"=
"c:\\Programmi\\AVG\\AVG2013\\avgemcx.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Programmi\\AVG\\AVG2013\\avgdiagex.exe"=
"c:\\Programmi\\AVG\\AVG2013\\avgmfapx.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"135:TCP"= 135:TCP:DCOM(135)
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [15/10/2012 3.48.52 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [21/09/2012 3.46.00 177376]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [14/09/2012 3.05.20 35552]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [18/09/2012 20.01.03 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [27/08/2012 16.13.33 361032]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [22/10/2012 13.02.46 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [21/09/2012 3.45.54 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [02/10/2012 3.30.38 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [21/09/2012 3.46.06 164832]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27/08/2012 16.13.33 21256]
R2 EngineServer;EngineServer;c:\progra~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE [27/08/2012 15.51.28 14144]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe [27/08/2012 15.51.28 169280]
R2 pdfcDispatcher;PDF Document Manager;c:\programmi\PDF Complete\pdfsvc.exe [27/08/2012 15.50.47 576024]
R2 PFNet;Privacyware network service;c:\programmi\Privacyware\Privatefirewall 7.0\pfsvc.exe [14/01/2013 22.16.42 374600]
R2 SESMPWD;EPSON Status Monitor Status Watcher;c:\programmi\EPSON_P2\Status Monitor\SEPWDN.EXE [22/09/2012 19.35.14 116760]
R2 SESMSDB;EPSON Status Monitor Status Database;c:\programmi\EPSON_P2\Status Monitor\SESDBN.EXE [22/09/2012 19.35.14 227360]
R3 pwipf6;Privacyware Filter Driver;c:\windows\system32\drivers\pwipf6.sys [22/01/2013 2.00.17 135272]
S2 0318521346079100mcinstcleanup;McAfee Application Installer Cleanup (0318521346079100); [x]
S3 VirtDisk;XSS Virtual Disk Driver;c:\windows\SMINST\virtdisk.sys [27/08/2012 16.03.38 57344]
.
Contenuto della cartella 'Scheduled Tasks'
.
2013-02-01 c:\windows\Tasks\avast! Emergency Update.job
- c:\programmi\Alwil Software\Avast5\AvastEmUpdate.exe [2012-09-18 22:50]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
IE: &AOL Toolbar Cerca - c:\documents and settings\All Users\Dati applicazioni\AOL\ieToolbar\resources\it-IT\local\search.html
FF - ProfilePath - c:\documents and settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\g4mox0ue.default\
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-01-26 16:53; {e001c731-5e37-4538-a5cb-8168736a2360}; c:\documents and settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\g4mox0ue.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
SafeBoot-57504234.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-02-01 09:37
Windows 5.1.2600 Service Pack 2 NTFS
.
scansione processi nascosti ...
.
scansione entrate autostart nascoste ...
.
Scansione files nascosti ...
.
Scansione completata con successo
Files nascosti: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\pdfcDispatcher]
"ImagePath"="c:\programmi\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
Ora fine scansione: 2013-02-01 09:39:10
ComboFix-quarantined-files.txt 2013-02-01 08:39
ComboFix2.txt 2013-01-25 03:11
.
Pre-Run: 213.386.960.896 byte disponibili
Post-Run: 213.378.494.464 byte disponibili
.
- - End Of File - - EBEEED10C21C3679CA90C7471E352EAA

#6 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 01 February 2013 - 05:02 AM

Good evening oipc :).

I notice that you are using more than one antivirus program.
  • avast!
  • Total Protection
This is very dangerous, as multiple Antivirus programs can interfere with one another and actually allow more viruses to get through.
It is important that only one antivirus program is running realtime protection.
I strongly suggest you either (1) remove all but one antivirus program through Control Panel->Add or remove Programs,
OR (2) keep the programs, but leave all but one of them disabled most of the time.
You can still use them for scanning your computer. I recommend removing avast!, as it is considered a very effective free antivirus program.


In addition, you are also running two firewalls:
  • Private firewall
  • Total Protection
Similar reasoning above, you should only have one firewall. I strongly recommend uninstalling one.

=====

I notice that you use Auslogics SpeedBoost. These types of programs give you plenty of functions for increasing performance and speed on your computer, but often they are bundled with Registry Cleaners, which can cause more harm than good. I generally recommend avoiding these programs, as they tend to "clean up" things that don't need to be cleaned.

=====

I would like some more information please.

Please download OTL.exe by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe.
  • In the "Custom Scans/Fixes" window (under the light green bar) paste the following in bold:

    netsvcs
    drivers32
    %SYSTEMDRIVE%\*.*
    %systemroot%\*. /mp /s
    CREATERESTOREPOINT
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs

  • Click Run Scan and let the program run uninterrupted.
  • When the scan completes, it will open two Notepad windows. OTL.txt and Extras.txt. These are saved in the same location as OTL. Post both logs in this thread.
  • You may need to use two posts to get it all.

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image


#7 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 01 February 2013 - 07:44 PM

<a name="OLE_LINK2">Hi Dark Knight,

I tried my best to remove Total Protection (which in any case is out of date) but I don’t think I succeeded: I think I managed to remove part of it, maybe the antivirus, but the firewall seems impossible to get rid of. It no longer appears among the programs under Control Panel but it is definitely still here, I see the icon on the start bar and when I turn the PC on a pop up appears reminding me to buy the update. I even tried to bin the whole folder but it won’t let me, it says “impossible to remove AgtRes.dll: access denied”. I removed Auslogics SpeedBoost without problems.

When you wrote “I recommend removing avast!, as it is considered a very effective free antivirus program” did you mean that I should leave it because it is effective or that I should remove it because it is not very effective?

I am sorry but when I ran OTL.exe the first time I forgot to paste the lines you had told me to paste under the green bar. So I ran it a second time but this time it opened only the OTL.txt file: here below I copied about half of the OTL.txt and in the next post I'll copy the other half and the Extras.txt


Thank you again for your assistance


OTL logfile created on: 02/02/2013 0.22.13 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1,99 Gb Total Physical Memory | 1,47 Gb Available Physical Memory | 73,72% Memory free
3,84 Gb Paging File | 3,47 Gb Available in Paging File | 90,26% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 222,87 Gb Total Space | 198,86 Gb Free Space | 89,22% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 3,45 Gb Free Space | 34,50% Space Free | Partition Type: NTFS

Computer Name: HP19935648252 | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/02/01 22.46.30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2013/01/14 22.16.42 | 003,011,400 | ---- | M] (Privacyware/PWI, Inc.) -- C:\Programmi\Privacyware\Privatefirewall 7.0\PFGUI.exe
PRC - [2013/01/14 22.16.42 | 000,374,600 | ---- | M] (Privacyware/PWI, Inc.) -- C:\Programmi\Privacyware\Privatefirewall 7.0\pfsvc.exe
PRC - [2012/10/30 23.50.59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Programmi\Alwil Software\Avast5\AvastUI.exe
PRC - [2012/10/30 23.50.59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Programmi\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/02/02 09.25.24 | 000,227,360 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Programmi\EPSON_P2\Status Monitor\SESDBN.EXE
PRC - [2011/02/02 09.07.14 | 000,116,760 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Programmi\EPSON_P2\Status Monitor\SEPWDN.EXE
PRC - [2011/02/02 09.04.04 | 000,436,248 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Programmi\EPSON_P2\Status Monitor\SEPSPZ.EXE
PRC - [2009/04/23 05.40.18 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Programmi\OpenOffice.org 3\program\soffice.bin
PRC - [2009/04/23 05.40.14 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Programmi\OpenOffice.org 3\program\soffice.exe
PRC - [2008/04/07 06.10.52 | 000,576,024 | ---- | M] (PDF Complete Inc) -- C:\Programmi\PDF Complete\pdfsvc.exe
PRC - [2008/03/24 23.00.38 | 000,169,280 | ---- | M] (McAfee, Inc.) -- C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe
PRC - [2008/03/24 23.00.28 | 000,247,104 | ---- | M] (McAfee, Inc.) -- C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtTry.exe
PRC - [2006/10/12 14.57.08 | 000,102,400 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Programmi\epson\Creativity Suite\Event Manager\EEventManager.exe
PRC - [2006/10/11 11.45.12 | 000,075,304 | ---- | M] (ScanSoft, Inc.) -- C:\Programmi\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
PRC - [2006/07/10 09.53.08 | 000,872,448 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe
PRC - [2004/08/19 23.39.36 | 001,034,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2013/02/01 10.48.41 | 002,049,536 | ---- | M] () -- C:\Programmi\Alwil Software\Avast5\defs\13020100\algo.dll
MOD - [2009/04/16 12.02.16 | 000,970,752 | ---- | M] () -- C:\Programmi\OpenOffice.org 3\program\libxml2.dll
MOD - [2008/03/29 16.42.20 | 000,159,744 | ---- | M] () -- C:\WINDOWS\system32\mmfinfo.dll
MOD - [2008/03/29 16.41.52 | 000,023,552 | ---- | M] () -- C:\WINDOWS\system32\mkunicode.dll
MOD - [2006/09/13 23.20.24 | 000,126,976 | ---- | M] () -- C:\Programmi\WinRAR\RarExt.dll
MOD - [2006/07/10 09.53.08 | 000,872,448 | ---- | M] () -- C:\WINDOWS\SMINST\Scheduler.exe


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (0318521346079100mcinstcleanup)
SRV - [2013/01/19 23.09.46 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/01/14 22.16.42 | 000,374,600 | ---- | M] (Privacyware/PWI, Inc.) [Auto | Running] -- C:\Programmi\Privacyware\Privatefirewall 7.0\pfsvc.exe -- (PFNet)
SRV - [2012/10/30 23.50.59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programmi\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/02/02 09.25.24 | 000,227,360 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Programmi\EPSON_P2\Status Monitor\SESDBN.EXE -- (SESMSDB)
SRV - [2011/02/02 09.07.14 | 000,116,760 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Programmi\EPSON_P2\Status Monitor\SEPWDN.EXE -- (SESMPWD)
SRV - [2008/04/07 06.10.52 | 000,576,024 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Programmi\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2008/03/24 23.00.38 | 000,169,280 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe -- (myAgtSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\ADMINI~1\IMPOST~1\Temp\catchme.sys -- (catchme)
DRV - [2012/10/30 23.51.58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012/10/30 23.51.58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012/10/30 23.51.58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012/10/30 23.51.58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012/10/30 23.51.57 | 000,097,608 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2012/10/30 23.51.56 | 000,025,256 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2012/10/30 23.51.56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012/10/22 13.02.46 | 000,179,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2012/10/15 03.48.52 | 000,055,776 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/10/05 03.32.50 | 000,093,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2012/10/02 03.30.38 | 000,159,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/09/21 03.46.06 | 000,164,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/09/21 03.46.00 | 000,177,376 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avglogx.sys -- (Avglogx)
DRV - [2012/09/21 03.45.54 | 000,019,936 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2012/09/14 03.05.20 | 000,035,552 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2012/05/25 18.34.42 | 000,135,272 | ---- | M] (Privacyware/PWI, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pwipf6.sys -- (pwipf6)
DRV - [2007/11/06 18.23.56 | 004,622,848 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2007/08/07 17.40.38 | 000,098,944 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2006/05/05 15.34.02 | 000,057,344 | ---- | M] (XSS) [Kernel | On_Demand | Stopped] -- c:\WINDOWS\SMINST\virtdisk.sys -- (VirtDisk)
DRV - [2005/02/23 13.58.56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2004/08/04 01.29.50 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wVchNTxx.sys -- (iAimFP4)
DRV - [2004/08/04 01.29.48 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wSiINTxx.sys -- (iAimFP3)
DRV - [2004/08/04 01.29.46 | 000,025,471 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV10nt.sys -- (iAimTV5)
DRV - [2004/08/04 01.29.46 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wCh7xxNT.sys -- (iAimTV4)
DRV - [2004/08/04 01.29.46 | 000,022,271 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV06nt.sys -- (iAimTV6)
DRV - [2004/08/04 01.29.44 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV04nt.sys -- (iAimTV3)
DRV - [2004/08/04 01.29.44 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV02NT.sys -- (iAimTV1)
DRV - [2004/08/04 01.29.42 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wATV01nt.sys -- (iAimTV0)
DRV - [2004/08/04 01.29.42 | 000,011,871 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV09NT.sys -- (iAimFP7)
DRV - [2004/08/04 01.29.40 | 000,011,807 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV07nt.sys -- (iAimFP5)
DRV - [2004/08/04 01.29.40 | 000,011,295 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV08NT.sys -- (iAimFP6)
DRV - [2004/08/04 01.29.38 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\i81xnt5.sys -- (i81x)
DRV - [2004/08/04 01.29.38 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV01nt.sys -- (iAimFP0)
DRV - [2004/08/04 01.29.38 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV02NT.sys -- (iAimFP1)
DRV - [2004/08/04 01.29.38 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\wADV05NT.sys -- (iAimFP2)
DRV - [2002/04/04 06.32.06 | 000,028,416 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\drivers\symmpi.sys -- (Symmpi)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=desktop
IE - HKLM\..\SearchScopes,DefaultScope = {00AC5F23-7D93-4C0A-BE30-AED4AC88F959}
IE - HKLM\..\SearchScopes\{00AC5F23-7D93-4C0A-BE30-AED4AC88F959}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1120&query={searchTerms}&invocationType=tb50hpcmdtie7-it-it

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
IE - HKCU\..\SearchScopes,DefaultScope = {00AC5F23-7D93-4C0A-BE30-AED4AC88F959}
IE - HKCU\..\SearchScopes\{00AC5F23-7D93-4C0A-BE30-AED4AC88F959}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1120&query={searchTerms}&invocationType=tb50hpcmdtie7-it-it
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7Be001c731-5e37-4538-a5cb-8168736a2360%7D:0.9.9.119
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_4_402_278.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\WINDOWS\system32\C2MP\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\wrc@avast.com: C:\Programmi\Alwil Software\Avast5\WebRep\FF [2013/01/19 18.58.10 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Programmi\Mozilla Firefox\components [2013/01/19 23.09.49 | 000,000,000 | ---D | M]

[2012/09/18 18.34.32 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dati applicazioni\Mozilla\Extensions
[2013/01/27 18.41.37 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\g4mox0ue.default\extensions
[2013/01/27 18.41.37 | 000,000,000 | ---D | M] (Bitdefender QuickScan) -- C:\Documents and Settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\g4mox0ue.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
[2013/01/19 23.09.36 | 000,000,000 | ---D | M] (No name found) -- C:\Programmi\Mozilla Firefox\extensions
[2013/01/19 23.09.48 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Programmi\mozilla firefox\components\browsercomps.dll
[2013/01/19 23.09.43 | 000,001,606 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\amazon-it.xml
[2013/01/19 23.09.43 | 000,002,465 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\bing.xml
[2013/01/19 23.09.43 | 000,000,957 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\eBay-it.xml
[2013/01/19 23.09.43 | 000,001,030 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\hoepli.xml
[2013/01/19 23.09.43 | 000,001,395 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\wikipedia-it.xml
[2013/01/19 23.09.43 | 000,001,166 | ---- | M] () -- C:\Programmi\mozilla firefox\searchplugins\yahoo-it.xml

O1 HOSTS File: ([2013/02/01 09.37.37 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Programmi\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3 - HKLM\..\Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Programmi\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Programmi\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O4 - Startup: C:\Documents and Settings\Administrator\Menu Avvio\Programmi\Esecuzione automatica\OpenOffice.org 3.1.lnk = C:\Programmi\OpenOffice.org 3\program\quickstart.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &AOL Toolbar Cerca - C:\Documents and Settings\All Users\Dati applicazioni\AOL\ieToolbar\resources\it-IT\local\search.html ()
O9 - Extra Button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Programmi\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O13 - ftp Prefix: missing
O13 - gopher Prefix: missing
O13 - home Prefix: missing
O13 - mosaic Prefix: missing
O13 - www Prefix: missing
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1359417789312 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab (Java Plug-in 1.6.0_13)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8CE65691-F652-4C3A-9C3C-ADB93E21DB18}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programmi\File comuni\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\myrm {4D034FC3-013F-4b95-B544-44D49ABE3E76} - C:\Programmi\McAfee\Managed VirusScan\Agent\myRmProt4.7.0.584.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Pagina iniziale corrente) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
Drivers32: msacm.at3 - C:\WINDOWS\System32\atrac3.acm ()
Drivers32: msacm.divxa32 - C:\WINDOWS\System32\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.divx - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\System32\ff_vfw.dll ()
Drivers32: vidc.hfyu - C:\WINDOWS\System32\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.vp60 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp61 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.vp62 - C:\WINDOWS\System32\vp6vfw.dll (On2.com)
Drivers32: vidc.xvid - C:\WINDOWS\System32\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/02/01 23.39.02 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2013/02/01 23.34.31 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2013/02/01 10.00.11 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2013/02/01 08.47.01 | 005,029,270 | R--- | C] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2013/01/30 22.20.36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Administrative Tools
[2013/01/29 00.30.10 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2013/01/29 00.30.07 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2013/01/29 00.29.56 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2013/01/29 00.29.51 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2013/01/29 00.29.48 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2013/01/29 00.29.43 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2013/01/29 00.29.42 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2013/01/29 00.29.28 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2013/01/29 00.29.26 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2013/01/29 00.29.23 | 000,035,402 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2013/01/29 00.29.22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2013/01/29 00.29.21 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2013/01/29 00.29.20 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2013/01/29 00.29.18 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2013/01/29 00.29.17 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2013/01/29 00.29.17 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2013/01/29 00.29.13 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2013/01/29 00.29.08 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2013/01/29 00.29.04 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2013/01/29 00.29.03 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2013/01/29 00.29.03 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2013/01/29 00.28.58 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2013/01/29 00.28.57 | 000,032,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2013/01/29 00.28.54 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2013/01/29 00.28.50 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2013/01/29 00.28.50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2013/01/29 00.28.50 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2013/01/29 00.28.48 | 000,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wacompen.sys
[2013/01/29 00.28.44 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2013/01/29 00.28.40 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2013/01/29 00.28.36 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2013/01/29 00.28.36 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2013/01/29 00.28.36 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2013/01/29 00.28.36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2013/01/29 00.28.35 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2013/01/29 00.28.34 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2013/01/29 00.28.31 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2013/01/29 00.28.26 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2013/01/29 00.28.26 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2013/01/29 00.28.25 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2013/01/29 00.28.22 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2013/01/29 00.28.18 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2013/01/29 00.28.16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2013/01/29 00.28.13 | 000,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaagp.sys
[2013/01/29 00.28.13 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2013/01/29 00.28.11 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2013/01/29 00.28.05 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2013/01/29 00.28.01 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2013/01/29 00.27.57 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2013/01/29 00.27.53 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2013/01/29 00.27.49 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2013/01/29 00.27.45 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2013/01/29 00.27.42 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2013/01/29 00.27.38 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2013/01/29 00.27.37 | 000,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2013/01/29 00.27.36 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2013/01/29 00.27.34 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbohci.sys
[2013/01/29 00.27.32 | 000,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2013/01/29 00.27.31 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2013/01/29 00.27.30 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2013/01/29 00.27.28 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2013/01/29 00.27.28 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2013/01/29 00.27.24 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2013/01/29 00.27.21 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2013/01/29 00.27.17 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2013/01/29 00.27.14 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2013/01/29 00.27.11 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2013/01/29 00.27.07 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2013/01/29 00.27.04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2013/01/29 00.27.00 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2013/01/29 00.26.57 | 000,212,480 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2013/01/29 00.26.53 | 000,216,576 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2013/01/29 00.26.50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2013/01/29 00.26.50 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys
[2013/01/29 00.26.48 | 000,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uagp35.sys
[2013/01/29 00.26.44 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2013/01/29 00.26.43 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2013/01/29 00.26.38 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2013/01/29 00.26.35 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2013/01/29 00.26.31 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2013/01/29 00.26.28 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2013/01/29 00.26.25 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2013/01/29 00.26.21 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2013/01/29 00.26.17 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2013/01/29 00.26.14 | 000,043,008 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2013/01/29 00.26.13 | 000,082,432 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2013/01/29 00.26.09 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2013/01/29 00.26.05 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys
[2013/01/29 00.26.02 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2013/01/29 00.25.59 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2013/01/29 00.25.55 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2013/01/29 00.25.55 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2013/01/29 00.25.54 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2013/01/29 00.25.50 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2013/01/29 00.25.50 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2013/01/29 00.25.50 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2013/01/29 00.25.49 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2013/01/29 00.25.48 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2013/01/29 00.25.45 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2013/01/29 00.25.41 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2013/01/29 00.25.40 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2013/01/29 00.25.39 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2013/01/29 00.25.36 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2013/01/29 00.25.33 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2013/01/29 00.25.33 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2013/01/29 00.25.32 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2013/01/29 00.25.28 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2013/01/29 00.25.23 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2013/01/29 00.25.20 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2013/01/29 00.25.17 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2013/01/29 00.25.11 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2013/01/29 00.25.08 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2013/01/29 00.25.04 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2013/01/29 00.25.01 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2013/01/29 00.24.58 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2013/01/29 00.24.55 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2013/01/29 00.24.52 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2013/01/29 00.24.51 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2013/01/29 00.24.51 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2013/01/29 00.24.47 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2013/01/29 00.24.44 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2013/01/29 00.24.41 | 000,286,816 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2013/01/29 00.24.36 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2013/01/29 00.24.36 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2013/01/29 00.24.35 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2013/01/29 00.24.34 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2013/01/29 00.24.30 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2013/01/29 00.24.27 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2013/01/29 00.24.27 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2013/01/29 00.24.21 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2013/01/29 00.24.16 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2013/01/29 00.24.13 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2013/01/29 00.24.10 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2013/01/29 00.24.06 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2013/01/29 00.24.03 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2013/01/29 00.24.00 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2013/01/29 00.23.57 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2013/01/29 00.23.54 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2013/01/29 00.23.53 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2013/01/29 00.23.53 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2013/01/29 00.23.49 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2013/01/29 00.23.49 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2013/01/29 00.23.48 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2013/01/29 00.23.48 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2013/01/29 00.23.48 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2013/01/29 00.23.48 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2013/01/29 00.23.47 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2013/01/29 00.23.47 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2013/01/29 00.23.47 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2013/01/29 00.23.46 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2013/01/29 00.23.45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2013/01/29 00.23.45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2013/01/29 00.23.42 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2013/01/29 00.23.42 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2013/01/29 00.23.41 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2013/01/29 00.23.38 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2013/01/29 00.23.38 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2013/01/29 00.23.35 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2013/01/29 00.23.32 | 000,036,937 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2013/01/29 00.23.29 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2013/01/29 00.23.26 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2013/01/29 00.23.25 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2013/01/29 00.23.25 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2013/01/29 00.23.24 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2013/01/29 00.23.24 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbali.sys
[2013/01/29 00.23.21 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2013/01/29 00.23.18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2013/01/29 00.23.17 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2013/01/29 00.23.14 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2013/01/29 00.23.14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2013/01/29 00.23.14 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2013/01/29 00.23.13 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2013/01/29 00.23.11 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2013/01/29 00.23.10 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2013/01/29 00.23.10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2013/01/29 00.23.10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2013/01/29 00.23.10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2013/01/29 00.23.09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2013/01/29 00.23.09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2013/01/29 00.23.09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2013/01/29 00.23.09 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2013/01/29 00.23.08 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slwdmsup.sys
[2013/01/29 00.23.07 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slserv.exe
[2013/01/29 00.23.07 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slrundll.exe
[2013/01/29 00.23.06 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slntamr.sys
[2013/01/29 00.23.06 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnthal.sys
[2013/01/29 00.23.05 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnt7554.sys
[2013/01/29 00.23.05 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2013/01/29 00.23.04 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slgen.dll
[2013/01/29 00.23.03 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slextspk.dll
[2013/01/29 00.23.03 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slcoinst.dll
[2013/01/29 00.23.02 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2013/01/29 00.22.59 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2013/01/29 00.22.56 | 000,095,050 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2013/01/29 00.22.53 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2013/01/29 00.22.50 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2013/01/29 00.22.49 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2013/01/29 00.22.46 | 000,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2013/01/29 00.22.43 | 000,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2013/01/29 00.22.42 | 000,041,088 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisagp.sys
[2013/01/29 00.22.39 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2013/01/29 00.22.36 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2013/01/29 00.22.33 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2013/01/29 00.22.30 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2013/01/29 00.22.30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2013/01/29 00.22.23 | 000,161,792 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2013/01/29 00.22.20 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2013/01/29 00.22.17 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2013/01/29 00.22.14 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2013/01/29 00.22.11 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2013/01/29 00.22.06 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2013/01/29 00.22.03 | 000,018,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2013/01/29 00.22.02 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2013/01/29 00.21.58 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2013/01/29 00.21.55 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2013/01/29 00.21.52 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2013/01/29 00.21.51 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2013/01/29 00.21.48 | 000,017,536 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2013/01/29 00.21.44 | 000,016,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2013/01/29 00.21.40 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2013/01/29 00.21.37 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2013/01/29 00.21.36 | 000,043,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys
[2013/01/29 00.21.33 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2013/01/29 00.21.29 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2013/01/29 00.21.26 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2013/01/29 00.21.23 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2013/01/29 00.21.20 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2013/01/29 00.21.17 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2013/01/29 00.21.14 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2013/01/29 00.21.11 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2013/01/29 00.21.08 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2013/01/29 00.21.05 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2013/01/29 00.21.02 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2013/01/29 00.20.59 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2013/01/29 00.20.56 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnbm.sys
[2013/01/29 00.20.56 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2013/01/29 00.20.55 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnb.dll
[2013/01/29 00.20.55 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2013/01/29 00.20.52 | 000,083,456 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2013/01/29 00.20.49 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2013/01/29 00.20.48 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2013/01/29 00.20.48 | 000,080,896 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2013/01/29 00.20.45 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2013/01/29 00.20.42 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2013/01/29 00.20.42 | 000,025,088 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2013/01/29 00.20.42 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2013/01/29 00.20.40 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys
[2013/01/29 00.20.37 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2013/01/29 00.20.34 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2013/01/29 00.20.30 | 000,010,752 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2013/01/29 00.20.27 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2013/01/29 00.20.26 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2013/01/29 00.20.25 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2013/01/29 00.20.24 | 000,079,360 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2013/01/29 00.20.24 | 000,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rndismpx.sys
[2013/01/29 00.20.20 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2013/01/29 00.20.19 | 000,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2013/01/29 00.20.16 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2013/01/29 00.20.14 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2013/01/29 00.20.14 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2013/01/29 00.20.12 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\recagent.sys
[2013/01/29 00.20.06 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2013/01/29 00.20.04 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2013/01/29 00.20.01 | 000,715,338 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2013/01/29 00.19.58 | 000,899,754 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2013/01/29 00.19.55 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2013/01/29 00.19.52 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2013/01/29 00.19.52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2013/01/29 00.19.52 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2013/01/29 00.19.52 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2013/01/29 00.19.48 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys
[2013/01/29 00.19.45 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys
[2013/01/29 00.19.42 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys
[2013/01/29 00.19.39 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys
[2013/01/29 00.19.36 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys
[2013/01/29 00.19.35 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2013/01/29 00.19.34 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2013/01/29 00.19.31 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2013/01/29 00.19.28 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2013/01/29 00.19.25 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2013/01/29 00.19.24 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2013/01/29 00.19.21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2013/01/29 00.19.18 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2013/01/29 00.19.14 | 000,016,384 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2013/01/29 00.19.11 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2013/01/29 00.19.08 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2013/01/29 00.19.06 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys
[2013/01/29 00.19.02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2013/01/29 00.19.01 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2013/01/29 00.19.01 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2013/01/29 00.19.01 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2013/01/29 00.19.01 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2013/01/29 00.19.00 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2013/01/29 00.19.00 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2013/01/29 00.19.00 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2013/01/29 00.18.56 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2013/01/29 00.18.55 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2013/01/29 00.18.52 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2013/01/29 00.18.50 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2013/01/29 00.18.47 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2013/01/29 00.18.44 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2013/01/29 00.18.41 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2013/01/29 00.18.38 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2013/01/29 00.18.38 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2013/01/29 00.18.38 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2013/01/29 00.18.37 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2013/01/29 00.18.36 | 000,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2013/01/29 00.18.36 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2013/01/29 00.18.32 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys
[2013/01/29 00.18.29 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys
[2013/01/29 00.18.28 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2013/01/29 00.18.25 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2013/01/29 00.18.23 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2013/01/29 00.18.20 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2013/01/29 00.18.17 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2013/01/29 00.18.13 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2013/01/29 00.18.12 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2013/01/29 00.18.09 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2013/01/29 00.18.08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2013/01/29 00.18.08 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2013/01/29 00.18.08 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2013/01/29 00.18.07 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2013/01/29 00.18.07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2013/01/29 00.18.04 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2013/01/29 00.18.01 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2013/01/29 00.17.58 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2013/01/29 00.17.55 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2013/01/29 00.17.52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2013/01/29 00.17.50 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2013/01/29 00.17.47 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2013/01/29 00.17.44 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2013/01/29 00.17.41 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2013/01/29 00.17.38 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2013/01/29 00.17.36 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2013/01/29 00.17.33 | 000,054,826 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2013/01/29 00.17.27 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2013/01/29 00.17.24 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2013/01/29 00.17.19 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2013/01/29 00.17.18 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2013/01/29 00.17.15 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2013/01/29 00.17.12 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2013/01/29 00.17.11 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\ntmtlfax.sys
[2013/01/29 00.17.05 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2013/01/29 00.17.01 | 000,009,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2013/01/29 00.16.58 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2013/01/29 00.16.58 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2013/01/29 00.16.57 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2013/01/29 00.16.53 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2013/01/29 00.16.50 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2013/01/29 00.16.46 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2013/01/29 00.16.46 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2013/01/29 00.16.45 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2013/01/29 00.16.40 | 000,066,174 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2013/01/29 00.16.35 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2013/01/29 00.16.33 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2013/01/29 00.16.30 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2013/01/29 00.16.29 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2013/01/29 00.16.27 | 000,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2013/01/29 00.16.25 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2013/01/29 00.16.22 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2013/01/29 00.16.19 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2013/01/29 00.16.16 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2013/01/29 00.16.14 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2013/01/29 00.16.11 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2013/01/29 00.16.08 | 000,130,048 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2013/01/29 00.16.06 | 000,053,279 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2013/01/29 00.16.03 | 000,076,544 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2013/01/29 00.16.00 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2013/01/29 00.15.58 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2013/01/29 00.15.55 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2013/01/29 00.15.52 | 000,022,144 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2013/01/29 00.15.51 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2013/01/29 00.15.51 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mutohpen.sys
[2013/01/29 00.15.48 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2013/01/29 00.15.47 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhm.sys
[2013/01/29 00.15.46 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhd.dll
[2013/01/29 00.15.46 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2013/01/29 00.15.45 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlstrm.sys
[2013/01/29 00.15.44 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlmnt5.sys
[2013/01/29 00.15.40 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2013/01/29 00.15.39 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2013/01/29 00.15.35 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2013/01/29 00.15.29 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2013/01/29 00.15.29 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2013/01/29 00.15.28 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2013/01/29 00.15.28 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2013/01/29 00.15.28 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2013/01/29 00.15.21 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2013/01/29 00.15.18 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2013/01/29 00.15.17 | 000,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2013/01/29 00.15.11 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2013/01/29 00.15.07 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2013/01/29 00.15.02 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys
[2013/01/29 00.14.57 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2013/01/29 00.14.56 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2013/01/29 00.14.55 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migisol.exe
[2013/01/29 00.14.52 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2013/01/29 00.14.49 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2013/01/29 00.14.49 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2013/01/29 00.14.49 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2013/01/29 00.14.48 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2013/01/29 00.14.48 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2013/01/29 00.14.45 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2013/01/29 00.14.43 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2013/01/29 00.14.42 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2013/01/29 00.14.39 | 000,165,034 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2013/01/29 00.14.39 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2013/01/29 00.14.35 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2013/01/29 00.14.32 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2013/01/29 00.14.29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2013/01/29 00.14.27 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2013/01/29 00.14.24 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2013/01/29 00.14.23 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2013/01/29 00.14.21 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2013/01/29 00.14.18 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2013/01/29 00.14.17 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2013/01/29 00.14.16 | 000,422,272 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2013/01/29 00.14.14 | 000,607,292 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2013/01/29 00.14.14 | 000,577,322 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2013/01/29 00.14.11 | 000,728,394 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2013/01/29 00.14.10 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2013/01/29 00.14.10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2013/01/29 00.14.08 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2013/01/29 00.14.07 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2013/01/29 00.14.07 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2013/01/29 00.14.03 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2013/01/29 00.14.01 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2013/01/29 00.13.59 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2013/01/29 00.13.58 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2013/01/29 00.13.56 | 000,015,872 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2013/01/29 00.13.54 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2013/01/29 00.13.52 | 000,026,986 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2013/01/29 00.13.49 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2013/01/29 00.13.49 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2013/01/29 00.13.48 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2013/01/29 00.13.47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2013/01/29 00.13.44 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2013/01/29 00.13.43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2013/01/29 00.13.40 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2013/01/29 00.13.38 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2013/01/29 00.13.37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2013/01/29 00.13.33 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2013/01/29 00.13.33 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2013/01/29 00.13.33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2013/01/29 00.13.31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2013/01/29 00.13.31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2013/01/29 00.13.29 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkor.dll
[2013/01/29 00.13.27 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdjpn.dll
[2013/01/29 00.13.24 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2013/01/29 00.13.19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2013/01/29 00.13.18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2013/01/29 00.13.15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106.dll
[2013/01/29 00.13.13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd103.dll
[2013/01/29 00.13.11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101c.dll
[2013/01/29 00.13.08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2013/01/29 00.13.08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101b.dll
[2013/01/29 00.13.08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2013/01/29 00.13.08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2013/01/29 00.13.07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2013/01/29 00.13.06 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2013/01/29 00.13.05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2013/01/29 00.13.03 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2013/01/29 00.13.01 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2013/01/29 00.13.00 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2013/01/29 00.12.58 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2013/01/29 00.12.57 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2013/01/29 00.12.57 | 000,087,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2013/01/29 00.12.56 | 000,040,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irbus.sys
[2013/01/29 00.12.54 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2013/01/29 00.12.53 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2013/01/29 00.12.50 | 000,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2013/01/29 00.12.47 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2013/01/29 00.12.45 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2013/01/29 00.12.42 | 000,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2013/01/29 00.12.39 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll



































































































































































































































































































































































































































































































#8 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 01 February 2013 - 07:52 PM

Hi Dark Knight,
Here is the second part of OTL.txt and the Extras.txt

[2013/01/29 00.12.39 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys
[2013/01/29 00.12.39 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2013/01/29 00.12.38 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2013/01/29 00.12.37 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2013/01/29 00.12.36 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2013/01/29 00.12.36 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2013/01/29 00.12.36 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2013/01/29 00.12.35 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2013/01/29 00.12.35 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2013/01/29 00.12.35 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2013/01/29 00.12.34 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2013/01/29 00.12.34 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2013/01/29 00.12.34 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2013/01/29 00.12.33 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2013/01/29 00.12.33 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2013/01/29 00.12.33 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2013/01/29 00.12.32 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2013/01/29 00.12.32 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2013/01/29 00.12.32 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2013/01/29 00.12.31 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2013/01/29 00.12.31 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2013/01/29 00.12.31 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2013/01/29 00.12.31 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2013/01/29 00.12.30 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2013/01/29 00.12.30 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2013/01/29 00.12.30 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2013/01/29 00.12.29 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2013/01/29 00.12.29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2013/01/29 00.12.29 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2013/01/29 00.12.28 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2013/01/29 00.12.28 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2013/01/29 00.12.28 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2013/01/29 00.12.28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2013/01/29 00.12.28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2013/01/29 00.12.22 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2013/01/29 00.12.19 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2013/01/29 00.12.17 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2013/01/29 00.12.15 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2013/01/29 00.12.13 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2013/01/29 00.12.10 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2013/01/29 00.12.07 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2013/01/29 00.12.05 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2013/01/29 00.12.02 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2013/01/29 00.12.00 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2013/01/29 00.11.58 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2013/01/29 00.11.55 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2013/01/29 00.11.53 | 000,010,752 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2013/01/29 00.11.51 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2013/01/29 00.11.47 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2013/01/29 00.11.45 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2013/01/29 00.11.44 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys
[2013/01/29 00.11.43 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2013/01/29 00.11.42 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2013/01/29 00.11.39 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2013/01/29 00.11.39 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2013/01/29 00.11.38 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2013/01/29 00.11.38 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2013/01/29 00.11.37 | 001,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfdpsp2.sys
[2013/01/29 00.11.35 | 000,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcxts2.sys
[2013/01/29 00.11.34 | 000,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfbs2s2.sys
[2013/01/29 00.11.34 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcisp2.dll
[2013/01/29 00.11.31 | 000,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2013/01/29 00.11.29 | 000,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2013/01/29 00.11.27 | 000,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2013/01/29 00.11.24 | 000,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2013/01/29 00.11.22 | 000,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2013/01/29 00.11.20 | 000,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2013/01/29 00.11.17 | 000,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2013/01/29 00.11.15 | 000,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2013/01/29 00.11.13 | 000,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2013/01/29 00.11.11 | 000,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2013/01/29 00.11.08 | 000,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2013/01/29 00.11.06 | 000,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2013/01/29 00.11.04 | 000,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2013/01/29 00.11.01 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2013/01/29 00.10.59 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2013/01/29 00.10.57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2013/01/29 00.10.55 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2013/01/29 00.10.53 | 000,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpn.sys
[2013/01/29 00.10.50 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2013/01/29 00.10.48 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2013/01/29 00.10.44 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2013/01/29 00.10.40 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2013/01/29 00.10.36 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2013/01/29 00.10.31 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2013/01/29 00.10.27 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2013/01/29 00.10.27 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2013/01/29 00.10.23 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2013/01/29 00.10.22 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidir.sys
[2013/01/29 00.10.20 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2013/01/29 00.10.19 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbth.sys
[2013/01/29 00.10.17 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2013/01/29 00.10.14 | 000,908,224 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2013/01/29 00.10.13 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2013/01/29 00.10.12 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2013/01/29 00.10.12 | 000,028,416 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2013/01/29 00.10.10 | 000,082,688 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2013/01/29 00.10.08 | 000,017,536 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2013/01/29 00.10.06 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2013/01/29 00.10.06 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2013/01/29 00.10.05 | 000,046,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gagp30kx.sys
[2013/01/29 00.10.03 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2013/01/29 00.10.01 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2013/01/29 00.09.59 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2013/01/29 00.09.57 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2013/01/29 00.09.55 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2013/01/29 00.09.55 | 000,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2013/01/29 00.09.55 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2013/01/29 00.09.55 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2013/01/29 00.09.54 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2013/01/29 00.09.54 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2013/01/29 00.09.54 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2013/01/29 00.09.54 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2013/01/29 00.09.54 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2013/01/29 00.09.53 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2013/01/29 00.09.53 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2013/01/29 00.09.53 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2013/01/29 00.09.53 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2013/01/29 00.09.53 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2013/01/29 00.09.52 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2013/01/29 00.09.52 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2013/01/29 00.09.52 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2013/01/29 00.09.52 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2013/01/29 00.09.52 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2013/01/29 00.09.52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2013/01/29 00.09.51 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2013/01/29 00.09.51 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2013/01/29 00.09.51 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2013/01/29 00.09.49 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2013/01/29 00.09.47 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2013/01/29 00.09.45 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2013/01/29 00.09.45 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2013/01/29 00.09.45 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2013/01/29 00.09.45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2013/01/29 00.09.44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2013/01/29 00.09.42 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2013/01/29 00.09.40 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2013/01/29 00.09.38 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2013/01/29 00.09.37 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2013/01/29 00.09.37 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2013/01/29 00.09.37 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2013/01/29 00.09.35 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2013/01/29 00.09.33 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2013/01/29 00.09.29 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2013/01/29 00.09.24 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2013/01/29 00.09.21 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2013/01/29 00.09.19 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2013/01/29 00.09.19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2013/01/29 00.09.17 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2013/01/29 00.09.16 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2013/01/29 00.09.15 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2013/01/29 00.09.13 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2013/01/29 00.09.12 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2013/01/29 00.09.11 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2013/01/29 00.09.11 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2013/01/29 00.09.11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2013/01/29 00.09.10 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2013/01/29 00.09.10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2013/01/29 00.09.08 | 000,046,080 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2013/01/29 00.09.06 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2013/01/29 00.09.06 | 000,046,080 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2013/01/29 00.09.05 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2013/01/29 00.09.04 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2013/01/29 00.09.03 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2013/01/29 00.09.02 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2013/01/29 00.09.01 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2013/01/29 00.08.58 | 000,348,062 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2013/01/29 00.08.57 | 000,594,750 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2013/01/29 00.08.55 | 000,596,159 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2013/01/29 00.08.53 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2013/01/29 00.08.51 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2013/01/29 00.08.50 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2013/01/29 00.08.48 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2013/01/29 00.08.46 | 000,062,464 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2013/01/29 00.08.44 | 000,051,712 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2013/01/29 00.08.43 | 000,053,760 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2013/01/29 00.08.41 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2013/01/29 00.08.39 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2013/01/29 00.08.38 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2013/01/29 00.08.36 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2013/01/29 00.08.35 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys
[2013/01/29 00.08.33 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2013/01/29 00.08.30 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2013/01/29 00.08.29 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2013/01/29 00.08.27 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2013/01/29 00.08.26 | 000,176,128 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2013/01/29 00.08.25 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2013/01/29 00.08.24 | 000,455,711 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2013/01/29 00.08.22 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2013/01/29 00.08.21 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2013/01/29 00.08.20 | 000,241,270 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2013/01/29 00.08.19 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2013/01/29 00.08.18 | 000,634,166 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2013/01/29 00.08.16 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2013/01/29 00.08.15 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2013/01/29 00.08.14 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2013/01/29 00.08.13 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2013/01/29 00.08.12 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2013/01/29 00.08.11 | 000,044,615 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2013/01/29 00.08.10 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2013/01/29 00.08.09 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2013/01/29 00.08.08 | 000,051,743 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2013/01/29 00.08.05 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2013/01/29 00.08.04 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2013/01/29 00.08.01 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2013/01/29 00.08.00 | 000,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4usb.sys
[2013/01/29 00.07.59 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2013/01/29 00.07.58 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4prt.sys
[2013/01/29 00.07.57 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4.sys
[2013/01/29 00.07.55 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2013/01/29 00.07.54 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2013/01/29 00.07.53 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2013/01/29 00.07.52 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2013/01/29 00.07.48 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2013/01/29 00.07.47 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2013/01/29 00.07.45 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2013/01/29 00.07.43 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2013/01/29 00.07.42 | 000,622,621 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2013/01/29 00.07.41 | 000,042,624 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2013/01/29 00.07.40 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2013/01/29 00.07.39 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2013/01/29 00.07.38 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2013/01/29 00.07.37 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2013/01/29 00.07.36 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2013/01/29 00.07.35 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2013/01/29 00.07.34 | 000,103,460 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2013/01/29 00.07.34 | 000,090,685 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2013/01/29 00.07.33 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2013/01/29 00.07.32 | 000,037,959 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2013/01/29 00.07.31 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2013/01/29 00.07.29 | 000,421,917 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2013/01/29 00.07.28 | 000,029,787 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2013/01/29 00.07.27 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2013/01/29 00.07.26 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2013/01/29 00.07.25 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2013/01/29 00.07.24 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2013/01/29 00.07.22 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2013/01/29 00.07.21 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2013/01/29 00.07.20 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2013/01/29 00.07.19 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2013/01/29 00.07.18 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2013/01/29 00.07.17 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2013/01/29 00.07.16 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2013/01/29 00.07.16 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2013/01/29 00.07.16 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2013/01/29 00.07.14 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dac960nt.sys
[2013/01/29 00.07.13 | 000,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS\System32\dllcache\dac2w2k.sys
[2013/01/29 00.07.11 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2013/01/29 00.07.10 | 000,050,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2013/01/29 00.07.10 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2013/01/29 00.07.09 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2013/01/29 00.07.08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2013/01/29 00.07.07 | 000,050,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2013/01/29 00.07.06 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2013/01/29 00.07.05 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2013/01/29 00.07.04 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2013/01/29 00.07.04 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2013/01/29 00.07.03 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2013/01/29 00.07.02 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2013/01/29 00.07.01 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2013/01/29 00.07.00 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2013/01/29 00.06.59 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2013/01/29 00.06.58 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2013/01/29 00.06.58 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2013/01/29 00.06.57 | 000,251,392 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2013/01/29 00.06.56 | 000,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2013/01/29 00.06.55 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2013/01/29 00.06.54 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2013/01/29 00.06.53 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2013/01/29 00.06.51 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2013/01/29 00.06.50 | 000,216,576 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2013/01/29 00.06.50 | 000,061,322 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2013/01/29 00.06.50 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2013/01/29 00.06.49 | 000,022,045 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2013/01/29 00.06.48 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2013/01/29 00.06.48 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2013/01/29 00.06.48 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cpqarray.sys
[2013/01/29 00.06.47 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2013/01/29 00.06.47 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2013/01/29 00.06.45 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2013/01/29 00.06.45 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compbatt.sys
[2013/01/29 00.06.43 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2013/01/29 00.06.42 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2013/01/29 00.06.41 | 000,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS\System32\dllcache\cmdide.sys
[2013/01/29 00.06.40 | 000,020,992 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2013/01/29 00.06.40 | 000,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmbatt.sys
[2013/01/29 00.06.39 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2013/01/29 00.06.38 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2013/01/29 00.06.37 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2013/01/29 00.06.37 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2013/01/29 00.06.36 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2013/01/29 00.06.36 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2013/01/29 00.06.36 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2013/01/29 00.06.36 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2013/01/29 00.06.35 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2013/01/29 00.06.34 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2013/01/29 00.06.34 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2013/01/29 00.06.34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2013/01/29 00.06.33 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2013/01/29 00.06.33 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2013/01/29 00.06.32 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2013/01/29 00.06.32 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2013/01/29 00.06.32 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2013/01/29 00.06.31 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2013/01/29 00.06.31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2013/01/29 00.06.31 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2013/01/29 00.06.30 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2013/01/29 00.06.29 | 000,022,556 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2013/01/29 00.06.29 | 000,022,556 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2013/01/29 00.06.28 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2013/01/29 00.06.28 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2013/01/29 00.06.27 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cd20xrnt.sys
[2013/01/29 00.06.26 | 000,715,338 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2013/01/29 00.06.26 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2013/01/29 00.06.25 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2013/01/29 00.06.25 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2013/01/29 00.06.24 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2013/01/29 00.06.23 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2013/01/29 00.06.22 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2013/01/29 00.06.22 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2013/01/29 00.06.21 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2013/01/29 00.06.20 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2013/01/29 00.06.20 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2013/01/29 00.06.19 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2013/01/29 00.06.19 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2013/01/29 00.06.18 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2013/01/29 00.06.18 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2013/01/29 00.06.17 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2013/01/29 00.06.17 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2013/01/29 00.06.16 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2013/01/29 00.06.16 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2013/01/29 00.06.16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2013/01/29 00.06.05 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthprint.sys
[2013/01/29 00.06.05 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2013/01/29 00.06.05 | 000,013,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2013/01/29 00.06.04 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2013/01/29 00.06.03 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2013/01/29 00.06.03 | 000,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthmodem.sys
[2013/01/29 00.06.02 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2013/01/29 00.06.02 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2013/01/29 00.06.02 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2013/01/29 00.06.01 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2013/01/29 00.06.01 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2013/01/29 00.06.00 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2013/01/29 00.06.00 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2013/01/29 00.05.59 | 000,039,680 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2013/01/29 00.05.59 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2013/01/29 00.05.58 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2013/01/29 00.05.58 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2013/01/29 00.05.57 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2013/01/29 00.05.56 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2013/01/29 00.05.56 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2013/01/29 00.05.56 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2013/01/29 00.05.55 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2013/01/29 00.05.55 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2013/01/29 00.05.54 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2013/01/29 00.05.54 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2013/01/29 00.05.53 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2013/01/29 00.05.53 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2013/01/29 00.05.52 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2013/01/29 00.05.51 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2013/01/29 00.05.51 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2013/01/29 00.05.50 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2013/01/29 00.05.50 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2013/01/29 00.05.49 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2013/01/29 00.05.49 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2013/01/29 00.05.48 | 000,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\battc.sys
[2013/01/29 00.05.47 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2013/01/29 00.05.47 | 000,097,152 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2013/01/29 00.05.47 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2013/01/29 00.05.46 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2013/01/29 00.05.46 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2013/01/29 00.05.45 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2013/01/29 00.05.45 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2013/01/29 00.05.45 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2013/01/29 00.05.44 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2013/01/29 00.05.43 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2013/01/29 00.05.42 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2013/01/29 00.05.42 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2013/01/29 00.05.38 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ativvaxx.dll
[2013/01/29 00.05.37 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll
[2013/01/29 00.05.36 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax
[2013/01/29 00.05.36 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativdaxx.ax
[2013/01/29 00.05.34 | 000,070,784 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2013/01/29 00.05.33 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2013/01/29 00.05.33 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxsxx.sys
[2013/01/29 00.05.32 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys
[2013/01/29 00.05.31 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys
[2013/01/29 00.05.31 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinttxx.sys
[2013/01/29 00.05.30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys
[2013/01/29 00.05.29 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys
[2013/01/29 00.05.29 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinraxx.sys
[2013/01/29 00.05.28 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys
[2013/01/29 00.05.28 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinpdxx.sys
[2013/01/29 00.05.28 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinmdxx.sys
[2013/01/29 00.05.27 | 000,281,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2013/01/29 00.05.27 | 000,075,392 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2013/01/29 00.05.26 | 000,289,920 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2013/01/29 00.05.26 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2013/01/29 00.05.26 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2013/01/29 00.05.25 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2013/01/29 00.05.25 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2013/01/29 00.05.24 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ati3duag.dll
[2013/01/29 00.05.23 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ati3d1ag.dll
[2013/01/29 00.05.22 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtag.sys
[2013/01/29 00.05.22 | 000,327,168 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtaa.sys
[2013/01/29 00.05.21 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvaa.dll
[2013/01/29 00.05.21 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2cqag.dll
[2013/01/29 00.05.21 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvag.dll
[2013/01/29 00.05.20 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xsxx.sys
[2013/01/29 00.05.20 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xbxx.sys
[2013/01/29 00.05.19 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1tuxx.sys
[2013/01/29 00.05.18 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1rvxx.sys
[2013/01/29 00.05.18 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1snxx.sys
[2013/01/29 00.05.18 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1ttxx.sys
[2013/01/29 00.05.17 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1raxx.sys
[2013/01/29 00.05.17 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1pdxx.sys
[2013/01/29 00.05.17 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1mdxx.sys
[2013/01/29 00.05.16 | 000,077,824 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2013/01/29 00.05.16 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1btxx.sys
[2013/01/29 00.05.15 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2013/01/29 00.05.15 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2013/01/29 00.05.15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2013/01/29 00.05.14 | 000,379,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2013/01/29 00.05.14 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2013/01/29 00.05.13 | 000,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc.sys
[2013/01/29 00.05.13 | 000,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asc3350p.sys
[2013/01/29 00.05.13 | 000,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc3550.sys
[2013/01/29 00.05.12 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2013/01/29 00.05.11 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2013/01/29 00.05.11 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2013/01/29 00.05.10 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2013/01/29 00.05.10 | 000,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\amsint.sys
[2013/01/29 00.05.09 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\dllcache\amdagp.sys
[2013/01/29 00.05.09 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2013/01/29 00.05.08 | 000,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alim1541.sys
[2013/01/29 00.05.08 | 000,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\aliide.sys
[2013/01/29 00.05.07 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2013/01/29 00.05.07 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2013/01/29 00.05.06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2013/01/29 00.05.06 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2013/01/29 00.05.06 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aha154x.sys
[2013/01/29 00.05.05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2013/01/29 00.05.05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2013/01/29 00.05.05 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2013/01/29 00.05.04 | 000,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agpcpq.sys
[2013/01/29 00.05.04 | 000,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agp440.sys
[2013/01/29 00.05.04 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2013/01/29 00.05.03 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2013/01/29 00.05.01 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2013/01/29 00.05.01 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2013/01/29 00.05.00 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2013/01/29 00.05.00 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2013/01/29 00.05.00 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2013/01/29 00.04.59 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2013/01/29 00.04.59 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2013/01/29 00.04.59 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2013/01/29 00.04.58 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2013/01/29 00.04.58 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2013/01/29 00.04.57 | 000,061,952 | ---- | C] (Scanner piano a colori) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2013/01/29 00.04.56 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2013/01/29 00.04.56 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2013/01/29 00.04.55 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2013/01/29 00.04.55 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys
[2013/01/29 00.04.54 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2013/01/29 00.04.54 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2013/01/29 00.04.54 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2013/01/29 00.04.53 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2013/01/29 00.04.52 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2013/01/29 00.04.52 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2013/01/29 00.04.52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2013/01/29 00.04.51 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2013/01/29 00.04.51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2013/01/29 00.04.50 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys
[2013/01/29 00.04.39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2013/01/29 00.04.37 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2013/01/29 00.04.37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2013/01/29 00.04.36 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2013/01/29 00.04.32 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2013/01/29 00.04.24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2013/01/29 00.04.23 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2013/01/29 00.04.23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2013/01/29 00.04.23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2013/01/29 00.04.23 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2013/01/29 00.04.22 | 000,839,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2013/01/29 00.04.22 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2013/01/29 00.04.22 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2013/01/29 00.04.21 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2013/01/29 00.04.21 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2013/01/29 00.04.21 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2013/01/29 00.04.21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2013/01/29 00.04.20 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2013/01/29 00.04.20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2013/01/29 00.04.14 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2013/01/29 00.04.13 | 000,280,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2013/01/29 00.04.13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2013/01/29 00.04.12 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2013/01/29 00.04.11 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2013/01/29 00.04.11 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2013/01/28 15.51.53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\How to Fix a Corrupted Windows Explorer_files
[2013/01/28 15.47.37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\EXPLORER.EXE corrupted or infected [Solved] _ Kioskea_files
[2013/01/28 15.43.03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folderscopy_files
[2013/01/28 15.42.15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folders_files
[2013/01/28 15.42.06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer File and Folder properties_files
[2013/01/28 15.41.56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Copy Move Rename files and Folders_files
[2013/01/28 15.41.43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Files and Folders_files
[2013/01/28 15.41.35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer views_files
[2013/01/28 15.41.21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer_files
[2013/01/28 15.35.57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Confirm file delete_files
[2013/01/28 01.18.02 | 000,256,904 | ---- | C] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmcomm.sys
[2013/01/28 00.57.10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\How to use Malwarebytes Anti-Rootkit to remove rootkits from a Computer_files
[2013/01/27 23.00.06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Malwarebytes' Anti-Malware
[2013/01/27 22.16.44 | 000,000,000 | ---D | C] -- C:\Programmi\ESET
[2013/01/26 22.11.15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Come accedere alla cartella System Volume Information_files
[2013/01/26 22.10.25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\index_files
[2013/01/26 22.10.09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\log Kaspersky_files
[2013/01/26 20.43.46 | 000,000,000 | ---D | C] -- C:\Programmi\Kaspersky Lab
[2013/01/26 20.43.46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Kaspersky Lab
[2013/01/26 16.53.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dati applicazioni\QuickScan
[2013/01/25 04.04.36 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2013/01/25 04.04.36 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2013/01/25 04.04.36 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2013/01/25 04.04.36 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2013/01/25 04.04.22 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/01/25 04.04.17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Documenti\Video
[2013/01/25 04.04.08 | 000,000,000 | ---D | C] -- C:\WINDOWS\erdnt
[2013/01/25 03.57.19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\ComboFix _ www.winhelp.us_files
[2013/01/24 00.19.55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Strumenti di Office
[2013/01/24 00.18.54 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew
[2013/01/24 00.07.59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2013/01/22 08.38.21 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2013/01/22 02.53.44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Aiutooooooo virus per favore - Yahoo! Answers_files
[2013/01/22 02.03.57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\Privatefirewall
[2013/01/22 02.00.17 | 000,135,272 | ---- | C] (Privacyware/PWI, Inc.) -- C:\WINDOWS\System32\drivers\pwipf6.sys
[2013/01/22 02.00.13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Privatefirewall 7.0
[2013/01/22 02.00.12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Privacyware
[2013/01/22 02.00.11 | 000,000,000 | ---D | C] -- C:\Programmi\Privacyware
[2013/01/22 01.07.00 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Menu Avvio\Programmi\Strumenti di amministrazione
[2013/01/22 01.06.49 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy
[2013/01/22 01.04.02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dati applicazioni\MatSpoon
[2013/01/22 01.03.58 | 000,000,000 | ---D | C] -- C:\Programmi\MatSpoon
[2013/01/22 01.03.58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\MatSpoon
[2013/01/22 00.55.43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Fixit-Portable
[2013/01/22 00.18.07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2013/01/22 00.18.02 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2013/01/22 00.17.49 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2013/01/20 00.18.58 | 000,000,000 | ---D | C] -- C:\ESET
[2013/01/19 23.31.40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dati applicazioni\f-secure
[2013/01/19 23.31.22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\F-Secure
[2013/01/19 23.12.29 | 000,000,000 | ---D | C] -- C:\Programmi\CCleaner
[2013/01/19 23.09.35 | 000,000,000 | ---D | C] -- C:\Programmi\Mozilla Firefox
[2013/01/19 23.02.02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dati applicazioni\Malwarebytes
[2013/01/19 23.01.43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dati applicazioni\Malwarebytes
[2013/01/19 23.01.42 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2013/01/19 23.01.42 | 000,000,000 | ---D | C] -- C:\Programmi\Malwarebytes' Anti-Malware
[2013/01/19 22.57.28 | 000,000,000 | ---D | C] -- C:\Programmi\Panda Security
[2013/01/19 22.57.28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Panda Security
[2013/01/19 19.01.50 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2013/01/19 19.01.46 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2013/01/19 18.49.26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Dati applicazioni\Microsoft Web Folders
[2013/01/18 02.38.46 | 000,000,000 | ---D | C] -- C:\Programmi\MSECache
[2013/01/08 14.16.38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\Tramontana gen
[2013/01/07 16.05.23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop\possibilit-ricongiungimento-gratuito-dei-contributi-allinps-pensione-vecchiaia_files
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/02/01 23.30.01 | 000,000,358 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013/02/01 23.28.42 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013/02/01 23.28.37 | 2137,313,280 | -HS- | M] () -- C:\hiberfil.sys
[2013/02/01 23.00.21 | 000,004,950 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130201_225958.reg
[2013/02/01 22.46.30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2013/02/01 09.37.37 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2013/02/01 08.47.30 | 005,029,270 | R--- | M] (Swearware) -- C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
[2013/01/30 22.20.40 | 000,000,542 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2013/01/29 01.48.46 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/01/29 00.47.36 | 000,000,768 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130129_004724.reg
[2013/01/28 15.51.54 | 000,051,893 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\How to Fix a Corrupted Windows Explorer.htm
[2013/01/28 15.47.38 | 000,084,898 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\EXPLORER.EXE corrupted or infected [Solved] _ Kioskea.htm
[2013/01/28 15.43.03 | 000,010,879 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folderscopy.htm
[2013/01/28 15.42.15 | 000,010,811 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folders.htm
[2013/01/28 15.42.06 | 000,010,356 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer File and Folder properties.htm
[2013/01/28 15.41.56 | 000,010,716 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Copy Move Rename files and Folders.htm
[2013/01/28 15.41.43 | 000,011,126 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Files and Folders.htm
[2013/01/28 15.41.35 | 000,010,800 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer views.htm
[2013/01/28 15.41.22 | 000,014,678 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer.htm
[2013/01/28 15.35.58 | 000,076,977 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Confirm file delete.htm
[2013/01/28 14.48.39 | 001,430,065 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\alicegate2pluswifi-usermanual.pdf
[2013/01/28 01.17.49 | 000,256,904 | ---- | M] (Trend Micro Inc.) -- C:\WINDOWS\System32\drivers\tmcomm.sys
[2013/01/28 00.57.12 | 000,032,795 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\How to use Malwarebytes Anti-Rootkit to remove rootkits from a Computer.htm
[2013/01/27 23.00.06 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/27 19.05.59 | 000,014,108 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130127_190412.reg
[2013/01/27 18.45.18 | 000,002,934 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2013/01/27 18.45.18 | 000,001,664 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2013/01/26 22.11.17 | 000,150,009 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Come accedere alla cartella System Volume Information.htm
[2013/01/26 22.10.26 | 000,008,684 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\index.html
[2013/01/26 22.10.11 | 000,008,744 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\log Kaspersky.htm
[2013/01/25 23.23.32 | 000,084,238 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\get_file.pdf
[2013/01/25 22.32.00 | 000,001,442 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\attach.rar
[2013/01/25 03.57.20 | 000,148,233 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix _ www.winhelp.us.htm
[2013/01/24 00.46.13 | 000,232,783 | ---- | M] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\census.cache
[2013/01/24 00.46.12 | 000,121,776 | ---- | M] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\ars.cache
[2013/01/24 00.19.56 | 000,001,739 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Microsoft Office.lnk
[2013/01/22 08.50.41 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2013/01/22 02.53.46 | 000,065,015 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Aiutooooooo virus per favore - Yahoo! Answers.htm
[2013/01/22 01.26.52 | 000,002,266 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\pdf uno.pdf
[2013/01/20 14.45.17 | 000,000,891 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Panda Cloud Cleaner.lnk
[2013/01/20 14.10.57 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\housecall.guid.cache
[2013/01/19 23.12.31 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/01/19 18.56.46 | 000,134,872 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/01/17 06.52.40 | 000,026,417 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\Leasing _fisco.odt
[2013/01/09 13.20.10 | 000,220,529 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\incarichi esterni scuola.pdf
[2013/01/08 14.35.44 | 000,112,898 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\bilancio imprese industriali con dati a scelta es di recupero V.pdf
[2013/01/08 14.33.51 | 000,045,282 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\finanziaria 2013.pdf
[2013/01/07 16.05.24 | 000,034,150 | ---- | M] () -- C:\Documents and Settings\Administrator\Desktop\possibilit-ricongiungimento-gratuito-dei-contributi-allinps-pensione-vecchiaia.htm
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/02/01 23.00.01 | 000,004,950 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130201_225958.reg
[2013/01/29 00.47.28 | 000,000,768 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130129_004724.reg
[2013/01/29 00.30.03 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2013/01/29 00.30.00 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2013/01/29 00.19.20 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2013/01/29 00.19.17 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2013/01/29 00.19.00 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2013/01/29 00.17.30 | 000,044,361 | ---- | C] () -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2013/01/29 00.15.18 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2013/01/29 00.13.44 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2013/01/29 00.12.36 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2013/01/29 00.12.34 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2013/01/29 00.12.29 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2013/01/29 00.11.40 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2013/01/29 00.10.46 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2013/01/29 00.10.42 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2013/01/29 00.10.38 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2013/01/29 00.10.33 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2013/01/29 00.10.29 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2013/01/29 00.10.13 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2013/01/29 00.07.51 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2013/01/29 00.07.50 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2013/01/29 00.07.49 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2013/01/29 00.07.46 | 000,031,817 | ---- | C] () -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2013/01/29 00.06.34 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2013/01/29 00.05.40 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2013/01/29 00.05.39 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2013/01/29 00.05.38 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2013/01/29 00.05.36 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2013/01/29 00.05.35 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2013/01/29 00.05.35 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2013/01/29 00.05.35 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2013/01/29 00.05.34 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2013/01/29 00.05.33 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2013/01/29 00.05.25 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2013/01/28 15.51.53 | 000,051,893 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\How to Fix a Corrupted Windows Explorer.htm
[2013/01/28 15.47.37 | 000,084,898 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\EXPLORER.EXE corrupted or infected [Solved] _ Kioskea.htm
[2013/01/28 15.43.03 | 000,010,879 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folderscopy.htm
[2013/01/28 15.42.15 | 000,010,811 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer arrange folders.htm
[2013/01/28 15.42.06 | 000,010,356 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer File and Folder properties.htm
[2013/01/28 15.41.56 | 000,010,716 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Copy Move Rename files and Folders.htm
[2013/01/28 15.41.43 | 000,011,126 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer Files and Folders.htm
[2013/01/28 15.41.35 | 000,010,800 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer views.htm
[2013/01/28 15.41.21 | 000,014,678 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Microsoft Windows XP tutorial free. Unit 4 Windows Explorer.htm
[2013/01/28 15.35.57 | 000,076,977 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Confirm file delete.htm
[2013/01/28 14.48.39 | 001,430,065 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\alicegate2pluswifi-usermanual.pdf
[2013/01/28 00.57.10 | 000,032,795 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\How to use Malwarebytes Anti-Rootkit to remove rootkits from a Computer.htm
[2013/01/27 23.00.06 | 000,000,756 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
[2013/01/27 19.04.17 | 000,014,108 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\cc_20130127_190412.reg
[2013/01/26 22.11.15 | 000,150,009 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Come accedere alla cartella System Volume Information.htm
[2013/01/26 22.10.24 | 000,008,684 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\index.html
[2013/01/26 22.10.08 | 000,008,744 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\log Kaspersky.htm
[2013/01/25 23.23.32 | 000,084,238 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\get_file.pdf
[2013/01/25 22.32.00 | 000,001,442 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\attach.rar
[2013/01/25 04.04.36 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013/01/25 04.04.36 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013/01/25 04.04.36 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013/01/25 04.04.36 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013/01/25 04.04.36 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013/01/25 03.57.18 | 000,148,233 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\ComboFix _ www.winhelp.us.htm
[2013/01/24 00.19.56 | 000,002,513 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Word.lnk
[2013/01/24 00.19.56 | 000,002,176 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Outlook.lnk
[2013/01/24 00.19.56 | 000,002,060 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft PowerPoint.lnk
[2013/01/24 00.19.56 | 000,001,739 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Microsoft Office.lnk
[2013/01/24 00.19.55 | 000,002,543 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Access.lnk
[2013/01/24 00.19.55 | 000,002,054 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft Excel.lnk
[2013/01/24 00.19.55 | 000,002,006 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Avvio\Programmi\Microsoft FrontPage.lnk
[2013/01/22 08.51.01 | 000,000,836 | ---- | C] () -- C:\Documents and Settings\Administrator\Menu Avvio\Programmi\Esecuzione automatica\OpenOffice.org 3.1.lnk
[2013/01/22 02.53.43 | 000,065,015 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Aiutooooooo virus per favore - Yahoo! Answers.htm
[2013/01/22 01.26.52 | 000,002,266 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\pdf uno.pdf
[2013/01/20 14.29.56 | 000,232,783 | ---- | C] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\census.cache
[2013/01/20 14.29.52 | 000,121,776 | ---- | C] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\ars.cache
[2013/01/20 14.10.57 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\housecall.guid.cache
[2013/01/19 23.12.31 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2013/01/19 22.57.35 | 000,000,891 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Panda Cloud Cleaner.lnk
[2013/01/17 06.52.39 | 000,026,417 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\Leasing _fisco.odt
[2013/01/09 13.20.10 | 000,220,529 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\incarichi esterni scuola.pdf
[2013/01/08 14.35.44 | 000,112,898 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\bilancio imprese industriali con dati a scelta es di recupero V.pdf
[2013/01/08 14.33.51 | 000,045,282 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\finanziaria 2013.pdf
[2013/01/07 16.05.22 | 000,034,150 | ---- | C] () -- C:\Documents and Settings\Administrator\Desktop\possibilit-ricongiungimento-gratuito-dei-contributi-allinps-pensione-vecchiaia.htm
[2012/09/19 23.56.29 | 000,010,593 | ---- | C] () -- C:\WINDOWS\CSTBox.INI
[2012/09/19 21.54.19 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\IPPCPUID.DLL
[2012/09/19 21.54.01 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\pmsbfn32.dll
[2012/09/19 21.50.28 | 000,000,408 | ---- | C] () -- C:\WINDOWS\MAXLINK.INI
[2012/09/19 21.11.40 | 000,000,029 | ---- | C] () -- C:\WINDOWS\DEBUGSM.INI
[2012/09/19 18.33.48 | 000,000,542 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012/09/19 18.09.45 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2012/09/19 18.09.45 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2012/09/19 18.09.45 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2012/09/19 18.09.45 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2012/09/19 18.09.45 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2012/09/19 18.09.45 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2012/09/19 18.09.45 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2012/09/19 18.09.45 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2012/09/19 18.09.45 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2012/09/19 18.09.45 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat
[2012/09/19 18.09.45 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2012/09/19 18.09.45 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2012/09/19 18.09.45 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2012/09/19 18.09.45 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2012/09/19 18.09.45 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2012/09/19 18.09.45 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat
[2012/09/19 18.09.45 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat
[2012/09/19 18.09.45 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2012/09/19 18.09.45 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2012/09/19 18.08.42 | 000,000,025 | ---- | C] () -- C:\WINDOWS\CDE V200DEFGIPSRUk.ini
[2012/09/19 18.05.06 | 000,065,793 | ---- | C] () -- C:\WINDOWS\System32\esfw7a.bin
[2012/09/18 19.15.23 | 000,000,313 | ---- | C] () -- C:\WINDOWS\BRDIAG.INI
[2012/09/18 19.15.23 | 000,000,141 | ---- | C] () -- C:\WINDOWS\BRVIDEO.INI
[2012/09/18 19.15.23 | 000,000,023 | ---- | C] () -- C:\WINDOWS\Brownie.ini
[2012/09/18 19.15.17 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\BROSNMP.DLL
[2012/09/18 19.15.17 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC32.DLL
[2012/09/18 19.15.17 | 000,004,608 | ---- | C] () -- C:\WINDOWS\System32\BRGSRC16.DLL
[2012/09/18 19.15.16 | 000,008,975 | ---- | C] () -- C:\WINDOWS\HL-2030.INI
[2012/09/18 19.15.04 | 000,000,420 | ---- | C] () -- C:\WINDOWS\BRWMARK.INI
[2012/09/18 19.15.04 | 000,000,034 | ---- | C] () -- C:\WINDOWS\System32\BD2030.DAT
[2012/08/28 00.36.54 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4885.dll
[2012/08/28 00.34.30 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2012/08/28 00.34.24 | 000,004,605 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2012/08/28 00.34.23 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2012/08/28 00.34.22 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2012/08/28 00.33.59 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2012/08/28 00.31.54 | 000,000,899 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2012/08/27 15.58.07 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2012/08/27 15.48.51 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012/08/27 15.43.23 | 000,000,142 | ---- | C] () -- C:\Documents and Settings\Administrator\Impostazioni locali\Dati applicazioni\fusioncache.dat

========== ZeroAccess Check ==========

[2012/08/27 15.42.34 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2006/03/02 13.00.00 | 001,492,992 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2004/08/19 23.39.10 | 000,472,064 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2004/08/19 23.39.30 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >
[2013/01/22 08.50.41 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2006/03/02 03.00.00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2013/02/01 09.39.10 | 000,015,122 | ---- | M] () -- C:\ComboFix.txt
[2013/02/01 23.28.37 | 2137,313,280 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/19 18.27.36 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012/09/19 18.27.36 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2006/03/02 03.00.00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2006/03/02 03.00.00 | 000,251,072 | RHS- | M] () -- C:\ntldr
[2013/02/01 23.28.36 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
[2013/01/22 00.35.23 | 000,000,359 | ---- | M] () -- C:\rkill.log
[2013/01/28 04.28.12 | 000,086,664 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_28.01.2013_04.26.09_log.txt
[2013/01/28 04.33.47 | 000,599,612 | ---- | M] () -- C:\TDSSKiller.2.8.15.0_28.01.2013_04.31.00_log.txt

< %systemroot%\*. /mp /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >

< End of report >



OTL Extras logfile created on: 01/02/2013 23.39.40 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000410 | Country: Italia | Language: ITA | Date Format: dd/MM/yyyy

1,99 Gb Total Physical Memory | 1,57 Gb Available Physical Memory | 78,92% Memory free
3,84 Gb Paging File | 3,57 Gb Available in Paging File | 93,12% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Programmi
Drive C: | 222,87 Gb Total Space | 198,87 Gb Free Space | 89,23% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 3,45 Gb Free Space | 34,50% Space Free | Partition Type: NTFS

Computer Name: HP19935648252 | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Programmi\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"135:TCP" = 135:TCP:*:Enabled:DCOM(135)

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent -- (McAfee, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Programmi\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent -- (McAfee, Inc.)
"C:\WINDOWS\SMINST\Scheduler.exe" = C:\WINDOWS\SMINST\Scheduler.exe:*:Enabled:Scheduler -- ()
"C:\Programmi\AVG\AVG2013\avgnsx.exe" = C:\Programmi\AVG\AVG2013\avgnsx.exe:*:Enabled:Online Shield -- (AVG Technologies CZ, s.r.o.)
"C:\Programmi\AVG\AVG2013\avgemcx.exe" = C:\Programmi\AVG\AVG2013\avgemcx.exe:*:Enabled:Scansione e-mail personale -- (AVG Technologies CZ, s.r.o.)
"C:\WINDOWS\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Programmi\AVG\AVG2013\avgdiagex.exe" = C:\Programmi\AVG\AVG2013\avgdiagex.exe:*:Disabled:Diagnostica AVG 2013 -- (AVG Technologies CZ, s.r.o.)
"C:\Programmi\AVG\AVG2013\avgmfapx.exe" = C:\Programmi\AVG\AVG2013\avgmfapx.exe:*:Disabled:Installazione di AVG -- (AVG Technologies CZ, s.r.o.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00000410-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 Premium
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4803" = CanoScan 4400F
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java™ 6 Update 13
"{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}" = EPSON Scan Assistant
"{2EB81825-E9EE-44F4-8F51-1240C3898DC6}" = EPSON File Manager
"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java™ 6 Update 2
"{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{373CDA0D-A5B1-4BCB-8E74-C6337DC4A259}" = Microsoft .NET Framework 2.0 Language Pack - ITA
"{3F9F7336-6DF8-476F-ABF6-C70A17FAF619}" = HP Backup and Recovery Manager
"{43A650AA-D1DC-4C52-8819-D7848B3A08DA}" = OpenOffice.org 3.1
"{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = EPSON Event Manager
"{67EDD823-135A-4D59-87BD-950616D6E857}" = EPSON Copy Utility 3
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7612D261-8150-4B33-ADEE-3D3C086F0815}" = EPSON Printer Software
"{76B136EE-68DD-4CD5-B0B0-9036AF78C734}" = Brother HL-2030
"{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}" = Zune Desktop Theme
"{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1" = Panda Cloud Cleaner
"{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1" = PDF-Viewer
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{C1E693A4-B1D5-4DCD-B68D-2087835B7184}" = ScanSoft OmniPage SE 4.0
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D03E7B00-CA85-4684-9321-1888873C34BD}" = ArcSoft PhotoImpression 6
"{D2D6B9EB-C6DC-4DAA-B4DE-BB7D9735E7DA}" = Presto! PageManager 7.15.14
"{DE5EB975-946C-4ADF-ABCC-3609BCEBF978}" = AVG 2013
"{E8EA933E-03A2-4E62-9F52-812C72BE2A6B}" = Privatefirewall 7.0
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2D2B58B-B2FD-46D1-8319-DCE564079934}" = Microsoft .NET Framework 1.1 Italian Language Pack
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AOL Toolbar" = AOL Toolbar 5.0
"avast" = avast! Free Antivirus
"CanoScan Toolbox 5.0" = Canon CanoScan Toolbox 5.0
"CCleaner" = CCleaner
"EPSON PERFECTION V200 PHOTO Guida utente" = EPSON PERFECTION V200 PHOTO Manuale
"EPSON Scanner" = EPSON Scan
"ESET Online Scanner" = ESET Online Scanner v3
"HDMI" = Intel® Graphics Media Accelerator Driver
"InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}" = EPSON Attach To Email
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versione 1.70.0.1100
"MatSpoon - CloseTheDoor" = MatSpoon CloseTheDoor 0.2.1
"Media Player - Codec Pack" = Media Player Codec Pack 3.2.0
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 2.0 Language Pack - ITA" = Microsoft .NET Framework 2.0 - Language Pack (italiano)
"Mozilla Firefox 17.0.1 (x86 it)" = Mozilla Firefox 17.0.1 (x86 it)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PDF Complete" = PDF Complete
"WinRAR archiver" = WinRAR gestione archivi

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 3.42.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 4.16.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

Error - 31/01/2013 4.16.57 | Computer Name = HP19935648252 | Source = Userenv | ID = 1047
Description = Impossibile leggere dal Registro di sistema la cronologia degli oggetti
Criteri di gruppo. L'elaborazione dei criteri di gruppo prosegue.

[ System Events ]
Error - 01/02/2013 3.37.34 | Computer Name = HP19935648252 | Source = Dhcp | ID = 1002
Description = Il lease 192.168.1.2 dell'indirizzo IP della scheda di rete con indirizzo
001E0BA9A253 è stato negato dal server DHCP 0.0.0.0. Il server DHCP ha inviato un
messaggio DHCPNACK.

Error - 01/02/2013 4.33.42 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'Realtek RTL8168C(P)/8111C(P) PCI-E Gigabit Ethernet
NIC - Privacyware Filter Miniport' (Root\PWIPF6MP\0000) è scomparsa dal sistema
senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 4.33.42 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'WAN Miniport (IP) - Privacyware Filter Miniport' (Root\PWIPF6MP\0001)
è scomparsa dal sistema senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 5.54.46 | Computer Name = HP19935648252 | Source = DCOM | ID = 10010
Description = Il server {000C101C-0000-0000-C000-000000000046} non si è registrato
con DCOM entro il tempo d'attesa richiesto.

Error - 01/02/2013 18.04.43 | Computer Name = HP19935648252 | Source = Windows Update Agent | ID = 16
Description = Impossibile stabilire la connessione. Non è possibile connettersi
al servizio Aggiornamenti automatici e non è quindi possibile scaricare e installare
gli aggiornamenti in base alla pianificazione impostata. Verranno effettuati altri
tentativi di stabilire una connessione.

Error - 01/02/2013 18.15.31 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'Realtek RTL8168C(P)/8111C(P) PCI-E Gigabit Ethernet
NIC - Privacyware Filter Miniport' (Root\PWIPF6MP\0000) è scomparsa dal sistema
senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 18.15.31 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'WAN Miniport (IP) - Privacyware Filter Miniport' (Root\PWIPF6MP\0001)
è scomparsa dal sistema senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 18.21.55 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'Realtek RTL8168C(P)/8111C(P) PCI-E Gigabit Ethernet
NIC - Privacyware Filter Miniport' (Root\PWIPF6MP\0000) è scomparsa dal sistema
senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 18.21.55 | Computer Name = HP19935648252 | Source = PlugPlayManager | ID = 12
Description = La periferica 'WAN Miniport (IP) - Privacyware Filter Miniport' (Root\PWIPF6MP\0001)
è scomparsa dal sistema senza essere stata prima preparata per la rimozione.

Error - 01/02/2013 18.22.02 | Computer Name = HP19935648252 | Source = RemoteAccess | ID = 20151
Description = Il protocollo di controllo IPCP nel modulo PPP (unknown) ha restituito
un errore durante l'inizializzazione. Una periferica collegata al sistema non è
in funzione.


< End of report >

#9 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 01 February 2013 - 10:20 PM

Good afternoon oipc,

When you wrote “I recommend removing avast!, as it is considered a very effective free antivirus program” did you mean that I should leave it because it is effective or that I should remove it because it is not very effective?

Ah! I mean keep it because it very effective.

As for Total Protection:

Revo Uninstaller is more thorough in deleting programs on your computer than using the Add/Remove option in Windows. Since it is a more powerful tool, please be sure to follow the instructions carefully.

Please note there is a chance when you look for this program to uninstall through Revo it might not be listed because of the previous uninstall. If that is the case simply stop and let me know.
  • Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on the listed program(s), or anything similar, to remove it.

    Total Protection
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes.
  • When the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check the items in bold only on the list then click Delete. You may have to expand some folders by clicking the "+" mark.
  • When prompted click on Yes and then on Next.
  • Put a check on any folders that are found and select Delete.
  • When prompted select Yes then Next.
  • Once done click Finish.

=====

Next, please run OTL.exe.
  • Copy the commands with file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    :OTL
    O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

    :Commands
    [EmptyTemp]

  • Return to OTL.exe, right click in the "Custom Scans/Fixes" window (under the light green bar) and choose Paste.
  • Click the red Run Fix button.
  • A fix log in Notepad will appear. Copy the contents of the fix log to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTL.exe
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

=====

Finally, I notice that you are missing some prefixes. Often this is caused by a dodgy Microsoft Update. Please see their article and follow the instructions to fix the issue:

http://support.microsoft.com/kb/918165/en-us

This may fix your file deletion problem too.

=====

In your reply please the following:
  • OTL fix log.
  • An update on the Total Protection situation.
  • If the original issue still persists.

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image


#10 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 02 February 2013 - 12:55 PM

Hi The Dark Knight,

Sorry, I installed Revo but Total Protection is not listed (nor is McAfee which is the name of its folder).

I did not run OTL.exe as you told me to run it only after uninstalling Total Protection.


I had a look at the article at the link you posted; Microsoft updates don’t seem to work on my pc, anyway I tried running their file (MicrosoftFixit50632.msi) but it would not even open.

My problem could have something to do with Windows installer, however, because sometimes, and this started much sooner than the file deletion problem, when I try to open a Microsoft Office file, a window opens instead saying something about Windows installer. After a while it simply closes itself and nothing happens. I thought the problem was with Microsoft Office and reinstalled it several times, now I realize it maybe wasn’t. Also when I click on an icon to open it (not necessarily a file sometimes it does it with any icon on the desktop) and instead the confirm file (or folder, or icon) delete appears, I found that for it to accept no as an answer besides clicking on no dozens of times sometimes it helps if I open task manager and point the mouse on explorer.exe. I started doing it because I noticed that each time I click no the explorer.exe process is the active one (whose KB number changes at each click). By the way, another problem that I noticed, and this is much more recent, about 4 or 5 days ago, is that when I do a file search it never stops (when it finishes searching it starts all over again and so on). Sorry I know I am not being very clear… :unsure:
















#11 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 02 February 2013 - 05:17 PM

Good morning oipc. :)

OK so a couple of issues there. They might be fixed with a repair. Do you have your Windows disc available?

In the meantime, please try the following.


First, please run a Disk Check:

http://support.microsoft.com/kb/315265

=====

After running the disk check, now please run the System File Checker:

http://support.microsoft.com/kb/929833

=====

Did that fix any of your issues?

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image


#12 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 02 February 2013 - 09:52 PM

Good afternoon The Dark Knight,

I did both the check disk (with the option repair) and the scan disk. Well, the search problem seems to have been sorted out. Unfortunately the file deletion problem is still here and no, I don't have the Windows disk. Actually this is a second hand pc which I got about five months ago. It worked fine (except for the very occasional Windows installer window pop up) until about a fortnight ago. I did a scan with Avast! and it found several viruses. Here are the names of a few that I wrote down:

Java CVE-2012-5076-P[Exp]

Java: Agent-BXD [Trj]

Error 421

Java/EXPLOIT.AGENT.NEOtrojan

Avast! said that it got rid of them all.

As the problem persisted, I also did a lot of on-line virus checks, with Panda, Kasperski, Eset ecc. They all say that the PC is virus free. However today I did a scan with Avast! and while it too says that it found no viruses it also said that it cannot check a number of files…

#13 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 02 February 2013 - 10:34 PM

Good afternoon oipc,

Please download to the Desktop RogueKiller (by tigzy).
  • Please quit all programs.
  • Start RogueKiller.exe.
  • Wait until Prescan has finished.
  • Click on Scan.
  • Click on Report and copy/paste the contents of the report in your next reply.

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image


#14 oipc

oipc
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:53 AM

Posted 02 February 2013 - 11:11 PM

Hi The Dark Knight,



I tried to run RogueKiller; it completed the prescan, I clicked scan but after a few seconds it stopped and the following message appeared “An error as occurred and the application will now close”. I tried once more, this time running the program online (I thought that maybe it needed to look for updates) but the same thing happened again :(



#15 The Dark Knight

The Dark Knight

    The Magician


  • Security Colleague
  • 661 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Krypton
  • Local time:05:53 PM

Posted 03 February 2013 - 02:45 AM

Hey oipc,

Please boot into Safe Mode (restart F8 repeatedly). Then try running RogueKiller.

If you make yourself more than just a man, if you devote yourself to an ideal...you become something else entirely. A legend, Mr. Wayne, a legend!


If I have helped you please consider donating to the Neuroscience Research Institute.


Posted Image
Posted Image





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users