Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

How can I check if my PC is infected?


  • Please log in to reply
13 replies to this topic

#1 accacca

accacca

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 13 March 2013 - 03:12 PM

Good evening,
Unfortunately, this morning I made a mistake visiting a site where I downloaded a file and I think I downloaded a virus ...

The chronology of events was this
after the beginning of the file download firefox crashed for a few minutes
I've been waiting (... and began to think), and after firefox restart normally.
I turned off the PC and in the shutoff dialog box appear also the message

"Click here to turn off without installing updates ...."
I immediately suspected something, because I did not have a Windows message that appears when Windows download new updates.
I started in safe mode and did a clean scan (antivirus VirIT) complete with ccleaner.
After this I restarted the computer in normal mode, I did a scan with Hijackthis and unfortunately I found something suspicious

O2 - BHO [... here it says something that I do not remember] and follow C: \ PROGRA ~ 1 \ MI1933 ~ 1 \ Office14 \ URLREDIR.DLL

I canceled with Hijackthis, but after a few minutes, I started to print from Libreoffice to PDF with PDFCreator (print is oddly very slow) and antivirus VirIT report a suspicious program running
with the same information C: \ PROGRA ~ 1 \ MI1933 ~ 1 \ Office14 \ URLREDIR.DLL

At this point the PC slows down greatly, internet browsing.

I started an oline scan with housecall and ddownlaod scan file was very very slow and the scan found nothing
I turned off the PC and in the dialog box still says "click here to turn off without installing updates ...."

Now it seemed to work, but when I started a print file to USB printer, printing is suddenly stopped indicating a communication error (never done until now), then he started to print normally.

At this point I would check if my PC is infected.

I have read the various posts before I begin my discussion and I'm tempted to try to do something on my own, but I saw that the tools are very complex and I do not know how to use them and how to read the log file

Can anyone help me to find out if my PC is infected

 

Operating System WIN XP home SP3


thank you very much



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 13 March 2013 - 03:31 PM

    

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 13 March 2013 - 06:01 PM

ok thanks for quick reply narenxp 

I follow your instructions

After complete I post all logs (I need a few days ..)

 

thanks again



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 13 March 2013 - 06:13 PM

:thumbup2:



#5 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 15 March 2013 - 04:38 AM

Below the logs

 

TDSSKiller log

08:49:13.0578 3344  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:49:15.0609 3344  ============================================================
08:49:15.0609 3344  Current date / time: 2013/03/14 08:49:15.0609
08:49:15.0609 3344  SystemInfo:
08:49:15.0609 3344  
08:49:15.0609 3344  OS Version: 5.1.2600 ServicePack: 3.0
08:49:15.0609 3344  Product type: Workstation
08:49:15.0640 3344  ComputerName: UB0011
08:49:15.0640 3344  UserName: Compaq_Proprietario
08:49:15.0640 3344  Windows directory: C:\WINDOWS
08:49:15.0640 3344  System windows directory: C:\WINDOWS
08:49:15.0640 3344  Processor architecture: Intel x86
08:49:15.0640 3344  Number of processors: 2
08:49:15.0640 3344  Page size: 0x1000
08:49:15.0640 3344  Boot type: Normal boot
08:49:15.0640 3344  ============================================================
08:49:27.0093 3344  BG loaded
08:49:31.0375 3344  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
08:49:31.0671 3344  Drive \Device\Harddisk3\DR6 - Size: 0x1F40000 (0.03 Gb), SectorSize: 0x200, Cylinders: 0x3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:49:31.0750 3344  ============================================================
08:49:31.0750 3344  \Device\Harddisk0\DR0:
08:49:31.0750 3344  MBR partitions:
08:49:31.0750 3344  \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x63E5D1
08:49:31.0750 3344  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x63E610, BlocksNum 0x186A0320
08:49:31.0765 3344  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x18CDE96F, BlocksNum 0x216A5F21
08:49:31.0765 3344  \Device\Harddisk3\DR6:
08:49:31.0765 3344  MBR partitions:
08:49:31.0765 3344  \Device\Harddisk3\DR6\Partition1: MBR, Type 0x1, StartLBA 0x23, BlocksNum 0xF9DD
08:49:31.0765 3344  ============================================================
08:49:31.0859 3344  C: <-> \Device\Harddisk0\DR0\Partition2
08:49:31.0859 3344  Z: <-> \Device\Harddisk0\DR0\Partition1
08:49:31.0937 3344  D: <-> \Device\Harddisk0\DR0\Partition3
08:49:32.0046 3344  ============================================================
08:49:32.0046 3344  Initialize success
08:49:32.0046 3344  ============================================================
08:49:50.0968 3908  ============================================================
08:49:50.0968 3908  Scan started
08:49:50.0968 3908  Mode: Manual;
08:49:50.0968 3908  ============================================================
08:49:53.0296 3908  ================ Scan system memory ========================
08:49:53.0296 3908  System memory - ok
08:49:53.0296 3908  ================ Scan services =============================
08:49:53.0687 3908  Abiosdsk - ok
08:49:53.0703 3908  abp480n5 - ok
08:49:53.0750 3908  [ D766E636187B8F240BBFBABCD51EB2C6 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:49:53.0968 3908  ACPI - ok
08:49:54.0000 3908  [ 49AC5CD87FBDDA62F3E25190019E7627 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
08:49:54.0109 3908  ACPIEC - ok
08:49:54.0203 3908  [ 7099700A3789AD64FBCE8EBE956DA65D ] ACSSCR          C:\WINDOWS\system32\DRIVERS\a38usbxp.sys
08:49:54.0343 3908  ACSSCR - ok
08:49:54.0343 3908  adpu160m - ok
08:49:54.0375 3908  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
08:49:54.0531 3908  aec - ok
08:49:54.0562 3908  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
08:49:54.0781 3908  AFD - ok
08:49:54.0828 3908  [ 593AEFC67283D409F34CC1245D00A509 ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
08:49:55.0078 3908  AgereSoftModem - ok
08:49:55.0156 3908  Aha154x - ok
08:49:55.0203 3908  aic78u2 - ok
08:49:55.0218 3908  aic78xx - ok
08:49:55.0250 3908  [ 14A077AD0CF6116D1102631D8E1EDEE8 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
08:49:55.0390 3908  Alerter - ok
08:49:55.0406 3908  [ 79FE2E0D7859738225816658F0BB2A0D ] ALG             C:\WINDOWS\System32\alg.exe
08:49:55.0484 3908  ALG - ok
08:49:55.0500 3908  AliIde - ok
08:49:55.0796 3908  [ 5E90A956526086634547BF8093FEB699 ] altio           C:\Programmi\Altium Designer Summer 09\System\Drivers\altio.sys
08:49:56.0015 3908  altio - ok
08:49:56.0031 3908  amsint - ok
08:49:56.0046 3908  AppMgmt - ok
08:49:56.0093 3908  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:49:56.0187 3908  Arp1394 - ok
08:49:56.0218 3908  asc - ok
08:49:56.0218 3908  asc3350p - ok
08:49:56.0234 3908  asc3550 - ok
08:49:56.0359 3908  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:49:56.0828 3908  aspnet_state - ok
08:49:56.0843 3908  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:49:57.0046 3908  AsyncMac - ok
08:49:57.0078 3908  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
08:49:57.0187 3908  atapi - ok
08:49:57.0203 3908  Atdisk - ok
08:49:57.0265 3908  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:49:57.0437 3908  Atmarpc - ok
08:49:57.0500 3908  [ 1B58D118049304E88464BE614C6D0014 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
08:49:57.0734 3908  AudioSrv - ok
08:49:57.0765 3908  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
08:49:57.0875 3908  audstub - ok
08:49:57.0937 3908  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
08:49:58.0093 3908  Beep - ok
08:49:58.0140 3908  [ 48C4763A9C8990FB48B73445BEB15D6A ] BITS            C:\WINDOWS\system32\qmgr.dll
08:49:58.0203 3908  BITS - ok
08:49:58.0265 3908  [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Programmi\Bonjour\mDNSResponder.exe
08:49:58.0578 3908  Bonjour Service - ok
08:49:58.0640 3908  [ 076D11B52F066ED33E3A80F8070A3E2E ] Browser         C:\WINDOWS\System32\browser.dll
08:49:58.0812 3908  Browser - ok
08:49:58.0843 3908  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
08:49:59.0000 3908  cbidf2k - ok
08:49:59.0109 3908  [ 58BF7714A312698108A96D0DE2BB6825 ] cbVSCService11  C:\Programmi\Cobian Backup 11\cbVSCService11.exe
08:49:59.0359 3908  cbVSCService11 - ok
08:49:59.0390 3908  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
08:49:59.0609 3908  CCDECODE - ok
08:49:59.0625 3908  cd20xrnt - ok
08:49:59.0656 3908  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
08:49:59.0828 3908  Cdaudio - ok
08:49:59.0906 3908  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
08:50:00.0390 3908  Cdfs - ok
08:50:00.0437 3908  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:50:00.0671 3908  Cdrom - ok
08:50:00.0671 3908  Changer - ok
08:50:00.0703 3908  [ D04F2BEB5EA63D0766E12E44AEF7C38D ] CiSvc           C:\WINDOWS\system32\cisvc.exe
08:50:00.0812 3908  CiSvc - ok
08:50:00.0828 3908  [ 48CB1DEFA1A6506C3CF09E4950F82EF6 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
08:50:01.0062 3908  ClipSrv - ok
08:50:01.0140 3908  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:50:01.0656 3908  clr_optimization_v2.0.50727_32 - ok
08:50:01.0781 3908  [ 2A2D72271844C52F004901A60312B96A ] cmdAgent        C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe
08:50:02.0359 3908  cmdAgent - ok
08:50:02.0421 3908  [ 9181CC4D007ADBE21DB9A11BFECAFEF5 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
08:50:02.0687 3908  cmdGuard - ok
08:50:02.0703 3908  [ C5A9FB50E8CA7FD99F256255FEE71580 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
08:50:03.0109 3908  cmdHlp - ok
08:50:03.0109 3908  CmdIde - ok
08:50:03.0125 3908  COMSysApp - ok
08:50:03.0140 3908  Cpqarray - ok
08:50:03.0187 3908  [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135         C:\WINDOWS\system32\drivers\cpuz135_x32.sys
08:50:03.0609 3908  cpuz135 - ok
08:50:03.0609 3908  Crypkey License - ok
08:50:03.0671 3908  [ B6FCBB157E9C8ABDCA4134C535535A8B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
08:50:04.0031 3908  CryptSvc - ok
08:50:04.0078 3908  dac2w2k - ok
08:50:04.0078 3908  dac960nt - ok
08:50:04.0140 3908  [ BC4E0226341AAEC1222336B3AED86BAB ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
08:50:04.0265 3908  DcomLaunch - ok
08:50:04.0312 3908  [ 699EE7F752A25180AEB92C3A0EAEE440 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
08:50:04.0437 3908  Dhcp - ok
08:50:04.0468 3908  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
08:50:04.0671 3908  Disk - ok
08:50:04.0671 3908  dmadmin - ok
08:50:04.0765 3908  [ 82BC125A8ED33F5F0E75F2AAC1065323 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
08:50:05.0078 3908  dmboot - ok
08:50:05.0156 3908  [ E959DDC0EA7AC11EE5E5602E2A364310 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
08:50:05.0328 3908  dmio - ok
08:50:05.0359 3908  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
08:50:05.0468 3908  dmload - ok
08:50:05.0515 3908  [ A01858C50704B2D2EDEEBBF6BBBCED2A ] dmserver        C:\WINDOWS\System32\dmserver.dll
08:50:05.0640 3908  dmserver - ok
08:50:05.0671 3908  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
08:50:05.0843 3908  DMusic - ok
08:50:05.0906 3908  [ B7A1162B1A26DF7B60D5D9500006096C ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
08:50:06.0015 3908  Dnscache - ok
08:50:06.0109 3908  [ D580D77DFF316BD8C9D73B38695DE8DC ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
08:50:06.0421 3908  Dot3svc - ok
08:50:06.0421 3908  dpti2o - ok
08:50:06.0453 3908  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
08:50:06.0593 3908  drmkaud - ok
08:50:06.0750 3908  [ 86B1F123BACD444E81960B339BAE3FF2 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
08:50:06.0984 3908  EapHost - ok
08:50:07.0015 3908  [ B6599EDA9F3EBEF064504EE35BBECA1C ] ERSvc           C:\WINDOWS\System32\ersvc.dll
08:50:07.0187 3908  ERSvc - ok
08:50:07.0218 3908  [ 26845F272435302E0F3322E660A24F7D ] Eventlog        C:\WINDOWS\system32\services.exe
08:50:07.0453 3908  Eventlog - ok
08:50:07.0500 3908  [ 8360CB9756E598A5C6214EACFB3677C3 ] EventSystem     C:\WINDOWS\system32\es.dll
08:50:07.0718 3908  EventSystem - ok
08:50:07.0781 3908  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
08:50:08.0156 3908  Fastfat - ok
08:50:08.0218 3908  [ DCCC606FC144F6E44E497F9A906F1C30 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:50:08.0453 3908  FastUserSwitchingCompatibility - ok
08:50:08.0531 3908  [ F8FB4ADE197638AF6F0AF0DF0D199742 ] Fax             C:\WINDOWS\system32\fxssvc.exe
08:50:08.0906 3908  Fax - ok
08:50:08.0937 3908  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
08:50:09.0093 3908  Fdc - ok
08:50:09.0171 3908  [ 7E76EED28B8B8696B7F7ED5F757AA304 ] FileZilla Server C:\Programmi\FileZilla Server\FileZilla Server.exe
08:50:09.0437 3908  FileZilla Server - ok
08:50:09.0484 3908  [ 2CFEA3326981A18C6BAF2BD9BE76225B ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
08:50:09.0828 3908  Fips - ok
08:50:09.0859 3908  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:50:10.0281 3908  Flpydisk - ok
08:50:10.0328 3908  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
08:50:10.0515 3908  FltMgr - ok
08:50:10.0640 3908  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:50:10.0781 3908  FontCache3.0.0.0 - ok
08:50:10.0828 3908  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:50:11.0031 3908  Fs_Rec - ok
08:50:11.0062 3908  [ A36E8BEEDB3AACA09BF55A1D17904BC8 ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
08:50:11.0218 3908  FTDIBUS - ok
08:50:11.0250 3908  [ F3269A6EE547EA87B949A1CEA4816B38 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:50:11.0468 3908  Ftdisk - ok
08:50:11.0515 3908  [ A14A1F4BB391DF9C233CB5DBD05FEB70 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
08:50:11.0734 3908  FTSER2K - ok
08:50:11.0796 3908  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:50:11.0875 3908  Gpc - ok
08:50:11.0968 3908  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Programmi\Google\Update\GoogleUpdate.exe
08:50:12.0234 3908  gupdate - ok
08:50:12.0234 3908  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Programmi\Google\Update\GoogleUpdate.exe
08:50:12.0312 3908  gupdatem - ok
08:50:12.0359 3908  [ 160B24FD894E79E71C983EA403A6E6E7 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
08:50:12.0562 3908  HdAudAddService - ok
08:50:12.0625 3908  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:50:12.0750 3908  HDAudBus - ok
08:50:12.0828 3908  [ 6CE66B51B4EB23D9D073F92698C55C8D ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:50:13.0046 3908  helpsvc - ok
08:50:13.0078 3908  [ 43D985A9A51E0295091B6EBE84C96B78 ] HidServ         C:\WINDOWS\System32\hidserv.dll
08:50:13.0265 3908  HidServ - ok
08:50:13.0312 3908  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:50:13.0437 3908  HidUsb - ok
08:50:13.0562 3908  [ 00CAD842F48947887A972828ACA665F7 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
08:50:13.0812 3908  hkmsvc - ok
08:50:13.0828 3908  hpn - ok
08:50:14.0125 3908  [ 97AAC45A375168C6A2297BEEB9692E31 ] hpqcxs08        C:\Programmi\HP\Digital Imaging\bin\hpqcxs08.dll
08:50:14.0281 3908  hpqcxs08 - ok
08:50:14.0328 3908  [ 19A4FB67B1C97EA18EDFF44340973CD9 ] hpqddsvc        C:\Programmi\HP\Digital Imaging\bin\hpqddsvc.dll
08:50:14.0546 3908  hpqddsvc - ok
08:50:14.0562 3908  [ 56FC98F1014EA8DC51B92839C32759EC ] HPSLPSVC        C:\Programmi\HP\Digital Imaging\bin\HPSLPSVC32.DLL
08:50:14.0687 3908  HPSLPSVC - ok
08:50:14.0734 3908  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
08:50:14.0843 3908  HTTP - ok
08:50:14.0859 3908  [ 450091AEBFCD08E5858533EAB5B9A436 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
08:50:14.0953 3908  HTTPFilter - ok
08:50:14.0953 3908  i2omgmt - ok
08:50:14.0968 3908  i2omp - ok
08:50:15.0015 3908  [ 610726E28AF55B95043C5C35A727E320 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:50:15.0140 3908  i8042prt - ok
08:50:15.0296 3908  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:50:15.0546 3908  idsvc - ok
08:50:15.0578 3908  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
08:50:15.0906 3908  Imapi - ok
08:50:16.0031 3908  [ DB491237445F172FDDDF00541DE1A51D ] ImapiService    C:\WINDOWS\system32\imapi.exe
08:50:16.0375 3908  ImapiService - ok
08:50:16.0421 3908  ini910u - ok
08:50:16.0562 3908  [ E1DF634BEC066B3D4FFE437BCB78C282 ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
08:50:16.0640 3908  Inspect - ok
08:50:16.0828 3908  [ 93903DDD430DB2FC61CBEEB2BE651E9F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:50:17.0156 3908  IntcAzAudAddService - ok
08:50:17.0187 3908  [ 027FE9B28FB0F861C181D25923B31E78 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
08:50:17.0625 3908  IntelIde - ok
08:50:17.0703 3908  [ EBD830A0970C438047006A49C23E287F ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:50:17.0875 3908  intelppm - ok
08:50:17.0890 3908  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
08:50:18.0078 3908  Ip6Fw - ok
08:50:18.0125 3908  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:50:18.0437 3908  IpFilterDriver - ok
08:50:18.0453 3908  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:50:18.0625 3908  IpInIp - ok
08:50:18.0625 3908  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:50:18.0812 3908  IpNat - ok
08:50:18.0843 3908  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:50:18.0937 3908  IPSec - ok
08:50:18.0968 3908  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
08:50:19.0156 3908  IRENUM - ok
08:50:19.0218 3908  [ 0953594BEB81CC72FCC62D37921B25A6 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:50:19.0531 3908  isapnp - ok
08:50:19.0578 3908  [ F59C3569A2F2C464BB78CB1BDCDCA55E ] Iviaspi         C:\WINDOWS\system32\drivers\iviaspi.sys
08:50:19.0781 3908  Iviaspi - ok
08:50:19.0890 3908  [ 999DB5F88C8E145CCA9D471E33227143 ] JavaQuickStarterService C:\Programmi\Java\jre7\bin\jqs.exe
08:50:20.0031 3908  JavaQuickStarterService - ok
08:50:20.0062 3908  [ 2A2B575B66E9843C55A7E63218B4EF9F ] jlink           C:\WINDOWS\system32\Drivers\jlink.sys
08:50:20.0156 3908  jlink - ok
08:50:20.0187 3908  [ 28B6EACE513CA7EABA3B809AD4BC274D ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:50:20.0375 3908  Kbdclass - ok
08:50:20.0437 3908  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
08:50:20.0671 3908  kmixer - ok
08:50:20.0718 3908  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
08:50:20.0875 3908  KSecDD - ok
08:50:20.0921 3908  [ 0F726D49C0B19E5A506A1CDFCE0EE42F ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
08:50:21.0234 3908  lanmanserver - ok
08:50:21.0296 3908  [ E13B0181DDA60B93E3253EFF52A79CBE ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:50:21.0500 3908  lanmanworkstation - ok
08:50:21.0531 3908  lbrtfdc - ok
08:50:21.0656 3908  [ 8E40C7E223C0AD78DD038A771D05165F ] LdvxBroker      C:\Programmi\LonWorks\bin\LdvxBroker.exe
08:50:21.0890 3908  LdvxBroker - ok
08:50:21.0953 3908  [ E01255727D0B158538D7C2B469B533A8 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
08:50:22.0031 3908  LmHosts - ok
08:50:22.0062 3908  [ C0CAC3B2FFC272F690F39CA48834693F ] LnsMtsSvc       C:\Programmi\LonWorks\bin\LnsMtsSvc.exe
08:50:22.0250 3908  LnsMtsSvc - ok
08:50:22.0281 3908  [ 13C55468C5A453AC604672C90002ADCA ] lonslta         C:\WINDOWS\System32\Drivers\lonslta.sys
08:50:22.0468 3908  lonslta - ok
08:50:22.0562 3908  [ E767A3A04088C9172B6355B14496DCD0 ] ltmodem5        C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
08:50:22.0906 3908  ltmodem5 - ok
08:50:23.0062 3908  [ 2D0AB9D29E6B0C42CCE955B5A8E0D62D ] LVcKap          C:\WINDOWS\system32\DRIVERS\LVcKap.sys
08:50:23.0312 3908  LVcKap - ok
08:50:23.0687 3908  [ A3963E3D997C3646E1D3338EB88A48E9 ] LVMVDrv         C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys
08:50:24.0140 3908  LVMVDrv - ok
08:50:24.0171 3908  [ 39C767BD6D99C23D28E71B6E0CBA3129 ] LVPr2Mon        C:\WINDOWS\system32\drivers\LVPr2Mon.sys
08:50:24.0265 3908  LVPr2Mon - ok
08:50:24.0359 3908  [ 44B3B997E25C5D9A81D6C501451A96D7 ] LVPrcSrv        c:\programmi\file comuni\logitech\lvmvfm\LVPrcSrv.exe
08:50:24.0484 3908  LVPrcSrv - ok
08:50:24.0562 3908  [ 7B4607C0C664DA98753508F85BB10694 ] LVSrvLauncher   C:\Programmi\File comuni\Logitech\SrvLnch\SrvLnch.exe
08:50:24.0656 3908  LVSrvLauncher - ok
08:50:24.0718 3908  [ 6AD3F5275F117F08C12EAB2233A9E3FB ] LVUSBSta        C:\WINDOWS\system32\drivers\lvusbsta.sys
08:50:25.0015 3908  LVUSBSta - ok
08:50:25.0093 3908  [ 3B32F662C8607E891F325E41F7EE225C ] Messenger       C:\WINDOWS\System32\msgsvc.dll
08:50:25.0312 3908  Messenger - ok
08:50:25.0375 3908  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
08:50:25.0500 3908  mnmdd - ok
08:50:25.0562 3908  [ 514A299EC926BAADA3C718B171476AA4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
08:50:28.0015 3908  mnmsrvc - ok
08:50:28.0078 3908  [ 8CB6636806D76B85FAFAEE94D75F5129 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
08:50:28.0187 3908  Modem - ok
08:50:28.0343 3908  [ E904EBED608055A2BFB824C07F59766C ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:50:28.0875 3908  Mouclass - ok
08:50:28.0906 3908  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
08:50:29.0062 3908  MountMgr - ok
08:50:29.0125 3908  [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
08:50:29.0453 3908  MozillaMaintenance - ok
08:50:29.0468 3908  mraid35x - ok
08:50:29.0500 3908  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:50:29.0625 3908  MRxDAV - ok
08:50:29.0687 3908  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:50:29.0875 3908  MRxSmb - ok
08:50:29.0921 3908  [ 01F77E9E473235C31796ADE46107B0AD ] MSDTC           C:\WINDOWS\system32\msdtc.exe
08:50:30.0109 3908  MSDTC - ok
08:50:30.0140 3908  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
08:50:30.0312 3908  Msfs - ok
08:50:30.0343 3908  MSIServer - ok
08:50:30.0359 3908  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:50:30.0562 3908  MSKSSRV - ok
08:50:30.0593 3908  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:50:30.0781 3908  MSPCLOCK - ok
08:50:30.0843 3908  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
08:50:30.0968 3908  MSPQM - ok
08:50:31.0015 3908  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:50:31.0156 3908  mssmbios - ok
08:50:31.0234 3908  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
08:50:31.0859 3908  MSTEE - ok
08:50:31.0890 3908  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
08:50:32.0046 3908  Mup - ok
08:50:32.0140 3908  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
08:50:32.0375 3908  NABTSFEC - ok
08:50:32.0593 3908  [ 911587FD303C9690A428BB4B04732B61 ] napagent        C:\WINDOWS\System32\qagentrt.dll
08:50:32.0796 3908  napagent - ok
08:50:32.0828 3908  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
08:50:32.0968 3908  NDIS - ok
08:50:33.0000 3908  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
08:50:33.0125 3908  NdisIP - ok
08:50:33.0187 3908  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:50:33.0359 3908  NdisTapi - ok
08:50:33.0390 3908  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:50:33.0484 3908  Ndisuio - ok
08:50:33.0515 3908  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:50:33.0640 3908  NdisWan - ok
08:50:33.0687 3908  [ A1D2E1B46E79CE3081607FB88DE2909B ] NDMSHLP         C:\Programmi\File comuni\HHD Software\Device Monitor\ndmshlp.sys
08:50:33.0781 3908  NDMSHLP - ok
08:50:33.0812 3908  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
08:50:33.0921 3908  NDProxy - ok
08:50:33.0968 3908  [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
08:50:34.0015 3908  Net Driver HPZ12 - ok
08:50:34.0062 3908  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
08:50:34.0218 3908  NetBIOS - ok
08:50:34.0296 3908  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
08:50:34.0515 3908  NetBT - ok
08:50:34.0546 3908  [ 1B09227E41F414A93DBC0BAF80C4D527 ] NetDDE          C:\WINDOWS\system32\netdde.exe
08:50:34.0703 3908  NetDDE - ok
08:50:34.0718 3908  [ 1B09227E41F414A93DBC0BAF80C4D527 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
08:50:34.0765 3908  NetDDEdsdm - ok
08:50:34.0796 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] Netlogon        C:\WINDOWS\system32\lsass.exe
08:50:34.0859 3908  Netlogon - ok
08:50:34.0906 3908  [ 02815B70FC4CA8611A926176F1C39FC2 ] Netman          C:\WINDOWS\System32\netman.dll
08:50:35.0062 3908  Netman - ok
08:50:35.0140 3908  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:50:35.0359 3908  NetTcpPortSharing - ok
08:50:35.0406 3908  [ 5EF7DD401771693245D46F4B0B69FE2B ] NetworkX        C:\WINDOWS\system32\ckldrv.sys
08:50:35.0562 3908  NetworkX - ok
08:50:35.0593 3908  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:50:35.0671 3908  NIC1394 - ok
08:50:35.0687 3908  [ C6B69A18D39744725FB73AC85E46032B ] Nla             C:\WINDOWS\System32\mswsock.dll
08:50:35.0843 3908  Nla - ok
08:50:35.0875 3908  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF             C:\WINDOWS\system32\drivers\npf.sys
08:50:36.0000 3908  NPF - ok
08:50:36.0015 3908  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
08:50:36.0140 3908  Npfs - ok
08:50:36.0187 3908  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
08:50:36.0343 3908  Ntfs - ok
08:50:36.0390 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
08:50:36.0515 3908  NtLmSsp - ok
08:50:36.0609 3908  [ 89DB90B5F35D2795D9FC56D933CC72B8 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
08:50:36.0843 3908  NtmsSvc - ok
08:50:36.0890 3908  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
08:50:37.0000 3908  Null - ok
08:50:37.0171 3908  [ A28AB3B7E33467C65EE5858DA5CB166D ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:50:37.0328 3908  nv - ok
08:50:37.0359 3908  [ 43B0A0774EA90BF699D267C45D2702F9 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
08:50:37.0500 3908  NVSvc - ok
08:50:37.0531 3908  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:50:37.0687 3908  NwlnkFlt - ok
08:50:37.0703 3908  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:50:37.0796 3908  NwlnkFwd - ok
08:50:37.0828 3908  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:50:37.0937 3908  ohci1394 - ok
08:50:38.0062 3908  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE
08:50:38.0281 3908  ose - ok
08:50:39.0328 3908  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc         C:\Programmi\File comuni\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:50:39.0671 3908  osppsvc - ok
08:50:39.0734 3908  [ 4E9408A178B2D955871C2CDD278DE3C3 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
08:50:39.0875 3908  Parport - ok
08:50:39.0906 3908  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
08:50:40.0015 3908  PartMgr - ok
08:50:40.0031 3908  [ 0DABEF655A444CB1E193626FB1D24B9F ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
08:50:40.0218 3908  ParVdm - ok
08:50:40.0250 3908  [ F40A46892AFEBB0314536B849D57C11E ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
08:50:40.0390 3908  PCI - ok
08:50:40.0421 3908  PCIDump - ok
08:50:40.0421 3908  [ B2DF00D650FD6C4EE781740ED3C8E67F ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
08:50:40.0531 3908  PCIIde - ok
08:50:40.0609 3908  [ 6DE789C487908D8C3781E96D05B7AE0F ] PciPPorts       C:\WINDOWS\system32\DRIVERS\PciPPorts.sys
08:50:40.0750 3908  PciPPorts - ok
08:50:40.0796 3908  [ FE4150C6E6A59861AA552B5AF55CCCBC ] PciSPorts       C:\WINDOWS\system32\DRIVERS\PciSPorts.sys
08:50:40.0937 3908  PciSPorts - ok
08:50:40.0984 3908  [ 815C50F2B1D1562800BDCE8BE895000E ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
08:50:41.0109 3908  Pcmcia - ok
08:50:41.0109 3908  PDCOMP - ok
08:50:41.0125 3908  PDFRAME - ok
08:50:41.0140 3908  PDRELI - ok
08:50:41.0140 3908  PDRFRAME - ok
08:50:41.0156 3908  perc2 - ok
08:50:41.0171 3908  perc2hib - ok
08:50:41.0234 3908  [ 444F122E68DB44C0589227781F3C8B3F ] Pfc             C:\WINDOWS\system32\drivers\pfc.sys
08:50:41.0437 3908  Pfc - ok
08:50:41.0468 3908  [ 95F6C2E89B5B0EDF33BE7E0BEDF21991 ] PID_0928        C:\WINDOWS\system32\DRIVERS\LV561AV.SYS
08:50:41.0609 3908  PID_0928 - ok
08:50:41.0640 3908  [ 26845F272435302E0F3322E660A24F7D ] PlugPlay        C:\WINDOWS\system32\services.exe
08:50:41.0703 3908  PlugPlay - ok
08:50:41.0750 3908  [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
08:50:41.0796 3908  Pml Driver HPZ12 - ok
08:50:41.0812 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
08:50:41.0906 3908  PolicyAgent - ok
08:50:41.0953 3908  [ C740D0CB238670629AF1B740414A8F3C ] ppa3            C:\WINDOWS\system32\DRIVERS\ppa3.sys
08:50:42.0015 3908  ppa3 - ok
08:50:42.0031 3908  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:50:42.0109 3908  PptpMiniport - ok
08:50:42.0125 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:50:42.0203 3908  ProtectedStorage - ok
08:50:42.0265 3908  [ 9B793A1FFD480155FE9EE5261153F21B ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
08:50:42.0406 3908  Ps2 - ok
08:50:42.0421 3908  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
08:50:42.0500 3908  PSched - ok
08:50:42.0531 3908  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:50:42.0609 3908  Ptilink - ok
08:50:42.0640 3908  [ 30CBAE0A34359F1CD19D1576245149ED ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:50:42.0718 3908  PxHelp20 - ok
08:50:42.0718 3908  ql1080 - ok
08:50:42.0734 3908  Ql10wnt - ok
08:50:42.0750 3908  ql12160 - ok
08:50:42.0765 3908  ql1240 - ok
08:50:42.0781 3908  ql1280 - ok
08:50:42.0812 3908  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:50:42.0984 3908  RasAcd - ok
08:50:43.0062 3908  [ 9839B418343D6E6E52659BDF3FF1FE67 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
08:50:43.0140 3908  RasAuto - ok
08:50:43.0140 3908  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:50:43.0234 3908  Rasl2tp - ok
08:50:43.0265 3908  [ 62AD41548E720DB4763B86F95E44F3FA ] RasMan          C:\WINDOWS\System32\rasmans.dll
08:50:43.0390 3908  RasMan - ok
08:50:43.0421 3908  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:50:43.0484 3908  RasPppoe - ok
08:50:43.0500 3908  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
08:50:43.0625 3908  Raspti - ok
08:50:43.0656 3908  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:50:43.0734 3908  Rdbss - ok
08:50:43.0765 3908  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:50:43.0843 3908  RDPCDD - ok
08:50:43.0890 3908  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
08:50:43.0953 3908  RDPWD - ok
08:50:44.0000 3908  [ CC72E6AE90245F0AE48BF1236A7E1F9C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
08:50:44.0062 3908  RDSessMgr - ok
08:50:44.0109 3908  [ 393FC252593323B624B230ECA6B85E63 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
08:50:44.0203 3908  redbook - ok
08:50:44.0250 3908  [ 7EBBF16FBD3E0E34F084FA635C1844E3 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
08:50:44.0296 3908  RemoteAccess - ok
08:50:44.0343 3908  [ B60F58F175DE20A6739194E85B035178 ] rpcapd          C:\Programmi\WinPcap\rpcapd.exe
08:50:44.0421 3908  rpcapd - ok
08:50:44.0437 3908  [ DC97F6C8A94691834439872B9E8FF2B3 ] RpcLocator      C:\WINDOWS\system32\locator.exe
08:50:44.0531 3908  RpcLocator - ok
08:50:44.0562 3908  [ BC4E0226341AAEC1222336B3AED86BAB ] RpcSs           C:\WINDOWS\system32\rpcss.dll
08:50:44.0609 3908  RpcSs - ok
08:50:44.0625 3908  [ DCE0D20F8FB66DF41D53734BFF9D66F0 ] RSVP            C:\WINDOWS\system32\rsvp.exe
08:50:44.0734 3908  RSVP - ok
08:50:44.0796 3908  [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139         C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
08:50:44.0859 3908  rtl8139 - ok
08:50:44.0906 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] SamSs           C:\WINDOWS\system32\lsass.exe
08:50:44.0968 3908  SamSs - ok
08:50:45.0015 3908  [ 1D456F1CD76A80793C07BA52CF3A7455 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
08:50:45.0515 3908  SCardSvr - ok
08:50:45.0562 3908  [ 511886E5BD060046CCE8373E92E62EDF ] Schedule        C:\WINDOWS\system32\schedsvc.dll
08:50:45.0640 3908  Schedule - ok
08:50:45.0687 3908  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:50:45.0796 3908  Secdrv - ok
08:50:45.0828 3908  [ 17C6354CA08E7C7972E12C67478AE134 ] seclogon        C:\WINDOWS\System32\seclogon.dll
08:50:45.0968 3908  seclogon - ok
08:50:46.0000 3908  [ A0ECA1CE0FCCB29C5E4E1F416E95E73E ] SENS            C:\WINDOWS\system32\sens.dll
08:50:46.0062 3908  SENS - ok
08:50:46.0125 3908  [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] Sentinel        C:\WINDOWS\System32\Drivers\SENTINEL.SYS
08:50:46.0265 3908  Sentinel - ok
08:50:46.0281 3908  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
08:50:46.0375 3908  Serenum - ok
08:50:46.0406 3908  [ FDBD9D64E2E03270021D424F0DCCF79D ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
08:50:46.0593 3908  Serial - ok
08:50:46.0671 3908  [ B98460D74971F0223C2884779C3777F5 ] SerMon          C:\Programmi\HHD Software\Free Serial Port Monitor\sermon.sys
08:50:46.0765 3908  SerMon - ok
08:50:46.0812 3908  [ 0943473F9C525A1C509567E2A8250E4B ] sermouse        C:\WINDOWS\system32\DRIVERS\sermouse.sys
08:50:46.0968 3908  sermouse - ok
08:50:47.0031 3908  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
08:50:47.0078 3908  Sfloppy - ok
08:50:47.0187 3908  [ 152C0555925DFE028E3148FD215146BB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
08:50:47.0312 3908  SharedAccess - ok
08:50:47.0343 3908  [ DCCC606FC144F6E44E497F9A906F1C30 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:50:47.0421 3908  ShellHWDetection - ok
08:50:47.0421 3908  Simbad - ok
08:50:48.0156 3908  [ 2A99850C2A6EDD6C6602E822C716EDAF ] Skype C2C Service C:\Documents and Settings\All Users\Dati applicazioni\Skype\Toolbars\Skype C2C Service\c2c_service.exe
08:50:48.0843 3908  Skype C2C Service - ok
08:50:49.0015 3908  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Programmi\Skype\Updater\Updater.exe
08:50:49.0359 3908  SkypeUpdate - ok
08:50:49.0390 3908  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
08:50:49.0468 3908  SLIP - ok
08:50:49.0531 3908  [ 9DE6E60CE7FD82B4985DE5D9C22265AD ] SNTNLUSB        C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
08:50:49.0718 3908  SNTNLUSB - ok
08:50:49.0734 3908  Sparrow - ok
08:50:49.0765 3908  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
08:50:49.0875 3908  splitter - ok
08:50:49.0921 3908  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
08:50:50.0203 3908  Spooler - ok
08:50:50.0250 3908  [ 618718CAE288BF7CBD8FCBAB2577D932 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
08:50:50.0359 3908  sr - ok
08:50:50.0406 3908  [ B3E3DA70A7A76E69B872DE3D06D32C19 ] srservice       C:\WINDOWS\system32\srsvc.dll
08:50:50.0484 3908  srservice - ok
08:50:50.0546 3908  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
08:50:50.0781 3908  Srv - ok
08:50:50.0812 3908  [ 5215569DD3A8FBC65A85E85F3C12258B ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
08:50:50.0906 3908  SSDPSRV - ok
08:50:50.0968 3908  [ A95D6F47807301FCC940896B9EB45408 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
08:50:51.0343 3908  StillCam - ok
08:50:51.0453 3908  [ 3B9263E137896E4D303494F116E00608 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
08:50:51.0718 3908  stisvc - ok
08:50:51.0765 3908  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
08:50:51.0843 3908  streamip - ok
08:50:51.0875 3908  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
08:50:52.0296 3908  swenum - ok
08:50:52.0359 3908  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
08:50:52.0500 3908  swmidi - ok
08:50:52.0515 3908  SwPrv - ok
08:50:52.0546 3908  symc810 - ok
08:50:52.0562 3908  symc8xx - ok
08:50:52.0578 3908  sym_hi - ok
08:50:52.0593 3908  sym_u3 - ok
08:50:52.0625 3908  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
08:50:52.0796 3908  sysaudio - ok
08:50:52.0859 3908  [ A34A9A872EEC4C026FD542AC7156FE0B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
08:50:53.0015 3908  SysmonLog - ok
08:50:53.0062 3908  [ 6B85F1A9DCE45D45BFFAD3222C21F297 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
08:50:53.0375 3908  TapiSrv - ok
08:50:53.0453 3908  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:50:53.0578 3908  Tcpip - ok
08:50:53.0625 3908  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
08:50:53.0796 3908  TDPIPE - ok
08:50:53.0796 3908  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
08:50:53.0937 3908  TDTCP - ok
08:50:53.0953 3908  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
08:50:54.0062 3908  TermDD - ok
08:50:54.0109 3908  [ FE5A5329CCFC33D645C33077FF04F052 ] TermService     C:\WINDOWS\System32\termsrv.dll
08:50:54.0296 3908  TermService - ok
08:50:54.0375 3908  [ C66D87B83DFEA28345EF26EFE5AE56C9 ] tgndis          C:\WINDOWS\system32\drivers\tgndis.sys
08:50:54.0421 3908  tgndis - ok
08:50:54.0468 3908  [ DCCC606FC144F6E44E497F9A906F1C30 ] Themes          C:\WINDOWS\System32\shsvcs.dll
08:50:54.0781 3908  Themes - ok
08:50:54.0843 3908  TosIde - ok
08:50:54.0875 3908  [ 690294999DF1248FAF85D95B31955D0C ] TrkWks          C:\WINDOWS\system32\trkwks.dll
08:50:55.0187 3908  TrkWks - ok
08:50:55.0218 3908  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
08:50:55.0328 3908  Udfs - ok
08:50:55.0343 3908  ultra - ok
08:50:55.0468 3908  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
08:50:55.0593 3908  Update - ok
08:50:55.0656 3908  [ 8057B0744D9842A090E51D2845861D5F ] upnphost        C:\WINDOWS\System32\upnphost.dll
08:50:55.0812 3908  upnphost - ok
08:50:55.0875 3908  [ F5E8B846EC10E1DF8DCA64119E2EB709 ] UPS             C:\WINDOWS\System32\ups.exe
08:50:55.0953 3908  UPS - ok
08:50:56.0031 3908  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
08:50:56.0343 3908  usbaudio - ok
08:50:56.0375 3908  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:50:56.0484 3908  usbccgp - ok
08:50:56.0578 3908  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:50:56.0718 3908  usbehci - ok
08:50:56.0781 3908  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:50:56.0890 3908  usbhub - ok
08:50:56.0937 3908  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:50:56.0984 3908  usbprint - ok
08:50:57.0031 3908  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:50:57.0171 3908  usbscan - ok
08:50:57.0203 3908  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:50:57.0250 3908  USBSTOR - ok
08:50:57.0265 3908  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:50:57.0421 3908  usbuhci - ok
08:50:57.0437 3908  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
08:50:57.0468 3908  VgaSave - ok
08:50:57.0625 3908  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
08:50:57.0750 3908  ViaIde - ok
08:50:57.0796 3908  [ 903B8EE8F038BEE7FD2AC677D6516CE9 ] VIRAGT          C:\WINDOWS\system32\drivers\VIRAGT.SYS
08:50:57.0890 3908  VIRAGT - ok
08:50:58.0218 3908  [ 830C04BB8C4597F91240A87FE1C453DF ] VIRITMON        C:\Programmi\VirITeXp\VIRITMON.SYS
08:50:58.0359 3908  VIRITMON - ok
08:50:58.0687 3908  [ 9C46196C7198A2D4CD727215E269098D ] viritsvcpro     C:\Programmi\VirITeXp\viritsvc.exe
08:50:58.0812 3908  viritsvcpro - ok
08:50:58.0843 3908  [ EF38373333E77C9BCF3B42129624B6DA ] VIRITTDI        C:\Programmi\VirITeXp\VIRITTDI.SYS
08:50:58.0953 3908  VIRITTDI - ok
08:50:59.0078 3908  [ E46C1B5A56DA7DA603D09DFCC79EC59E ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
08:50:59.0250 3908  VolSnap - ok
08:50:59.0546 3908  [ C2FE17125256102F5B44194D5DB0A799 ] VSS             C:\WINDOWS\System32\vssvc.exe
08:51:00.0875 3908  VSS - ok
08:51:00.0968 3908  [ 2969DD84B584A6BB541A5273103957A3 ] W32Time         C:\WINDOWS\system32\w32time.dll
08:51:01.0078 3908  W32Time - ok
08:51:01.0156 3908  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:51:01.0328 3908  Wanarp - ok
08:51:01.0328 3908  WDICA - ok
08:51:01.0468 3908  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
08:51:01.0562 3908  wdmaud - ok
08:51:01.0671 3908  [ 2EC50EE79B65F60C8E8B4A03BBB3A42F ] WebClient       C:\WINDOWS\System32\webclnt.dll
08:51:01.0812 3908  WebClient - ok
08:51:01.0984 3908  [ 0A597F84BC8AF4229B529F655BB2BA14 ] WinDriver6      C:\WINDOWS\system32\drivers\windrvr6.sys
08:51:02.0453 3908  WinDriver6 - ok
08:51:02.0640 3908  [ 40911E98D0F1CBB1015F2101982F1DDF ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
08:51:02.0859 3908  winmgmt - ok
08:51:03.0093 3908  [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc         C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:51:03.0375 3908  wlidsvc - ok
08:51:03.0437 3908  [ C5B8FF892ECDBE965E1E3F47013E7917 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
08:51:03.0531 3908  WmdmPmSN - ok
08:51:03.0609 3908  [ 81FD02839FDB10ACF0EC40B809B9F8CC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:51:03.0656 3908  WmiApSrv - ok
08:51:03.0750 3908  [ 926D921C93CFF1E19EF4DE3E4C8368CA ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
08:51:03.0859 3908  wscsvc - ok
08:51:03.0906 3908  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
08:51:04.0156 3908  WSTCODEC - ok
08:51:04.0187 3908  [ CC48415E6C7CBAA441A3D6A6DCCBCFA6 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
08:51:04.0296 3908  wuauserv - ok
08:51:04.0421 3908  [ 053E0307A08CAC60793E27E921B46B3E ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
08:51:04.0609 3908  WZCSVC - ok
08:51:04.0671 3908  [ 6104F397127FEECCCE16BD16CD3843A6 ] XilinxPC4Driver C:\WINDOWS\System32\drivers\xpc4drvr.sys
08:51:04.0765 3908  XilinxPC4Driver - ok
08:51:04.0796 3908  [ 5526482DCBA6047641B13BF9C75A74E0 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
08:51:05.0046 3908  xmlprov - ok
08:51:05.0078 3908  ================ Scan global ===============================
08:51:05.0140 3908  [ 17DDFE6A0B5404C5EF4C03AD996D0562 ] C:\WINDOWS\system32\basesrv.dll
08:51:05.0375 3908  [ 7B39F8912DF2C266411F7248EC250AE6 ] C:\WINDOWS\system32\winsrv.dll
08:51:05.0531 3908  [ 7B39F8912DF2C266411F7248EC250AE6 ] C:\WINDOWS\system32\winsrv.dll
08:51:05.0562 3908  [ 26845F272435302E0F3322E660A24F7D ] C:\WINDOWS\system32\services.exe
08:51:05.0609 3908  [Global] - ok
08:51:05.0609 3908  ================ Scan MBR ==================================
08:51:05.0656 3908  [ E867D9BB58BD5787C6D7CB3F36A9E3C5 ] \Device\Harddisk0\DR0
08:51:06.0078 3908  \Device\Harddisk0\DR0 - ok
08:51:06.0109 3908  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR6
08:51:06.0187 3908  \Device\Harddisk3\DR6 - ok
08:51:06.0187 3908  ================ Scan VBR ==================================
08:51:06.0187 3908  [ D93AF1BE5E785C6DF06ADA89B09E20C9 ] \Device\Harddisk0\DR0\Partition1
08:51:06.0187 3908  \Device\Harddisk0\DR0\Partition1 - ok
08:51:06.0203 3908  [ 378E0AFECA35928494DC9F501553A317 ] \Device\Harddisk0\DR0\Partition2
08:51:06.0203 3908  \Device\Harddisk0\DR0\Partition2 - ok
08:51:06.0218 3908  [ 301053BC319FE0CA4AF28D18A8329DA6 ] \Device\Harddisk0\DR0\Partition3
08:51:06.0265 3908  \Device\Harddisk0\DR0\Partition3 - ok
08:51:06.0281 3908  [ F92764F09641EDEF873737D19BAF58BF ] \Device\Harddisk3\DR6\Partition1
08:51:06.0281 3908  \Device\Harddisk3\DR6\Partition1 - ok
08:51:06.0281 3908  ================ Scan active images ========================
08:51:06.0296 3908  [ EBD830A0970C438047006A49C23E287F ] C:\WINDOWS\system32\drivers\intelppm.sys
08:51:06.0296 3908  C:\WINDOWS\system32\drivers\intelppm.sys - ok
08:51:06.0296 3908  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
08:51:06.0296 3908  C:\WINDOWS\system32\drivers\videoprt.sys - ok
08:51:06.0312 3908  [ A28AB3B7E33467C65EE5858DA5CB166D ] C:\WINDOWS\system32\drivers\nv4_mini.sys
08:51:06.0312 3908  C:\WINDOWS\system32\drivers\nv4_mini.sys - ok
08:51:06.0312 3908  [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
08:51:06.0312 3908  C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
08:51:06.0328 3908  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] C:\WINDOWS\system32\drivers\nic1394.sys
08:51:06.0328 3908  C:\WINDOWS\system32\drivers\nic1394.sys - ok
08:51:06.0328 3908  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
08:51:06.0328 3908  C:\WINDOWS\system32\drivers\usbehci.sys - ok
08:51:06.0328 3908  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
08:51:06.0343 3908  C:\WINDOWS\system32\drivers\usbport.sys - ok
08:51:06.0343 3908  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
08:51:06.0343 3908  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
08:51:06.0359 3908  [ 6DE789C487908D8C3781E96D05B7AE0F ] C:\WINDOWS\system32\drivers\PciPPorts.sys
08:51:06.0359 3908  C:\WINDOWS\system32\drivers\PciPPorts.sys - ok
08:51:06.0359 3908  [ FE4150C6E6A59861AA552B5AF55CCCBC ] C:\WINDOWS\system32\drivers\PciSPorts.sys
08:51:06.0359 3908  C:\WINDOWS\system32\drivers\PciSPorts.sys - ok
08:51:06.0375 3908  [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] C:\WINDOWS\system32\drivers\R8139n51.sys
08:51:06.0375 3908  C:\WINDOWS\system32\drivers\R8139n51.sys - ok
08:51:06.0375 3908  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
08:51:06.0375 3908  C:\WINDOWS\system32\drivers\serenum.sys - ok
08:51:06.0390 3908  [ 593AEFC67283D409F34CC1245D00A509 ] C:\WINDOWS\system32\drivers\AGRSM.sys
08:51:06.0390 3908  C:\WINDOWS\system32\drivers\AGRSM.sys - ok
08:51:06.0390 3908  [ 8CB6636806D76B85FAFAEE94D75F5129 ] C:\WINDOWS\system32\drivers\modem.sys
08:51:06.0390 3908  C:\WINDOWS\system32\drivers\modem.sys - ok
08:51:06.0406 3908  [ 4E9408A178B2D955871C2CDD278DE3C3 ] C:\WINDOWS\system32\drivers\parport.sys
08:51:06.0406 3908  C:\WINDOWS\system32\drivers\parport.sys - ok
08:51:06.0406 3908  [ 610726E28AF55B95043C5C35A727E320 ] C:\WINDOWS\system32\drivers\i8042prt.sys
08:51:06.0406 3908  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
08:51:06.0421 3908  [ F59C3569A2F2C464BB78CB1BDCDCA55E ] C:\WINDOWS\system32\drivers\iviaspi.sys
08:51:06.0421 3908  C:\WINDOWS\system32\drivers\iviaspi.sys - ok
08:51:06.0437 3908  [ 28B6EACE513CA7EABA3B809AD4BC274D ] C:\WINDOWS\system32\drivers\kbdclass.sys
08:51:06.0437 3908  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
08:51:06.0453 3908  [ E904EBED608055A2BFB824C07F59766C ] C:\WINDOWS\system32\drivers\mouclass.sys
08:51:06.0453 3908  C:\WINDOWS\system32\drivers\mouclass.sys - ok
08:51:06.0453 3908  [ 444F122E68DB44C0589227781F3C8B3F ] C:\WINDOWS\system32\drivers\pfc.sys
08:51:06.0453 3908  C:\WINDOWS\system32\drivers\pfc.sys - ok
08:51:06.0453 3908  [ 9B793A1FFD480155FE9EE5261153F21B ] C:\WINDOWS\system32\drivers\PS2.sys
08:51:06.0453 3908  C:\WINDOWS\system32\drivers\PS2.sys - ok
08:51:06.0468 3908  [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
08:51:06.0468 3908  C:\WINDOWS\system32\drivers\cdrom.sys - ok
08:51:06.0468 3908  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
08:51:06.0468 3908  C:\WINDOWS\system32\drivers\ks.sys - ok
08:51:06.0468 3908  [ 393FC252593323B624B230ECA6B85E63 ] C:\WINDOWS\system32\drivers\redbook.sys
08:51:06.0468 3908  C:\WINDOWS\system32\drivers\redbook.sys - ok
08:51:06.0484 3908  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
08:51:06.0484 3908  C:\WINDOWS\system32\drivers\usbd.sys - ok
08:51:06.0500 3908  [ 0A597F84BC8AF4229B529F655BB2BA14 ] C:\WINDOWS\system32\drivers\windrvr6.sys
08:51:06.0500 3908  C:\WINDOWS\system32\drivers\windrvr6.sys - ok
08:51:06.0500 3908  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
08:51:06.0500 3908  C:\WINDOWS\system32\drivers\audstub.sys - ok
08:51:06.0515 3908  [ 6AD3F5275F117F08C12EAB2233A9E3FB ] C:\WINDOWS\system32\drivers\LVUSBSta.sys
08:51:06.0515 3908  C:\WINDOWS\system32\drivers\LVUSBSta.sys - ok
08:51:06.0515 3908  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
08:51:06.0515 3908  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
08:51:06.0515 3908  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
08:51:06.0515 3908  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
08:51:06.0531 3908  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
08:51:06.0531 3908  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
08:51:06.0531 3908  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
08:51:06.0531 3908  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
08:51:06.0546 3908  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
08:51:06.0546 3908  C:\WINDOWS\system32\drivers\msgpc.sys - ok
08:51:06.0546 3908  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
08:51:06.0546 3908  C:\WINDOWS\system32\drivers\psched.sys - ok
08:51:06.0546 3908  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
08:51:06.0546 3908  C:\WINDOWS\system32\drivers\raspptp.sys - ok
08:51:06.0562 3908  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
08:51:06.0562 3908  C:\WINDOWS\system32\drivers\ptilink.sys - ok
08:51:06.0562 3908  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
08:51:06.0562 3908  C:\WINDOWS\system32\drivers\raspti.sys - ok
08:51:06.0562 3908  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
08:51:06.0562 3908  C:\WINDOWS\system32\drivers\swenum.sys - ok
08:51:06.0578 3908  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
08:51:06.0578 3908  C:\WINDOWS\system32\drivers\termdd.sys - ok
08:51:06.0578 3908  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
08:51:06.0578 3908  C:\WINDOWS\system32\drivers\update.sys - ok
08:51:06.0593 3908  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
08:51:06.0593 3908  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
08:51:06.0593 3908  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
08:51:06.0593 3908  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
08:51:06.0609 3908  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
08:51:06.0609 3908  C:\WINDOWS\system32\drivers\drmk.sys - ok
08:51:06.0609 3908  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
08:51:06.0609 3908  C:\WINDOWS\system32\drivers\portcls.sys - ok
08:51:06.0625 3908  [ 93903DDD430DB2FC61CBEEB2BE651E9F ] C:\WINDOWS\system32\drivers\RtkHDAud.sys
08:51:06.0625 3908  C:\WINDOWS\system32\drivers\RtkHDAud.sys - ok
08:51:06.0625 3908  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
08:51:06.0625 3908  C:\WINDOWS\system32\drivers\usbhub.sys - ok
08:51:06.0640 3908  [ 9181CC4D007ADBE21DB9A11BFECAFEF5 ] C:\WINDOWS\system32\drivers\cmdGuard.sys
08:51:06.0640 3908  C:\WINDOWS\system32\drivers\cmdGuard.sys - ok
08:51:06.0640 3908  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
08:51:06.0640 3908  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
08:51:06.0656 3908  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
08:51:06.0656 3908  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
08:51:06.0656 3908  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
08:51:06.0656 3908  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
08:51:06.0687 3908  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
08:51:06.0687 3908  C:\WINDOWS\system32\drivers\beep.sys - ok
08:51:06.0687 3908  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
08:51:06.0687 3908  C:\WINDOWS\system32\drivers\null.sys - ok
08:51:06.0703 3908  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
08:51:06.0703 3908  C:\WINDOWS\system32\drivers\vga.sys - ok
08:51:06.0703 3908  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
08:51:06.0703 3908  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
08:51:06.0703 3908  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
08:51:06.0703 3908  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
08:51:06.0718 3908  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
08:51:06.0718 3908  C:\WINDOWS\system32\drivers\msfs.sys - ok
08:51:06.0718 3908  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
08:51:06.0718 3908  C:\WINDOWS\system32\drivers\ipsec.sys - ok
08:51:06.0718 3908  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
08:51:06.0718 3908  C:\WINDOWS\system32\drivers\npfs.sys - ok
08:51:06.0734 3908  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
08:51:06.0734 3908  C:\WINDOWS\system32\drivers\rasacd.sys - ok
08:51:06.0734 3908  [ C66D87B83DFEA28345EF26EFE5AE56C9 ] C:\WINDOWS\system32\drivers\tgndis.sys
08:51:06.0734 3908  C:\WINDOWS\system32\drivers\tgndis.sys - ok
08:51:06.0750 3908  [ C5A9FB50E8CA7FD99F256255FEE71580 ] C:\WINDOWS\system32\drivers\cmdhlp.sys
08:51:06.0750 3908  C:\WINDOWS\system32\drivers\cmdhlp.sys - ok
08:51:06.0750 3908  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
08:51:06.0750 3908  C:\WINDOWS\system32\drivers\tcpip.sys - ok
08:51:06.0765 3908  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
08:51:06.0765 3908  C:\WINDOWS\system32\drivers\afd.sys - ok
08:51:06.0765 3908  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
08:51:06.0765 3908  C:\WINDOWS\system32\drivers\ipnat.sys - ok
08:51:06.0781 3908  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
08:51:06.0781 3908  C:\WINDOWS\system32\drivers\netbt.sys - ok
08:51:06.0781 3908  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
08:51:06.0781 3908  C:\WINDOWS\system32\drivers\wanarp.sys - ok
08:51:06.0796 3908  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
08:51:06.0796 3908  C:\WINDOWS\system32\drivers\netbios.sys - ok
08:51:06.0796 3908  [ B5B8A80875C1DEDEDA8B02765642C32F ] C:\WINDOWS\system32\drivers\arp1394.sys
08:51:06.0796 3908  C:\WINDOWS\system32\drivers\arp1394.sys - ok
08:51:06.0796 3908  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
08:51:06.0796 3908  C:\WINDOWS\system32\drivers\rdbss.sys - ok
08:51:06.0812 3908  [ 5EF7DD401771693245D46F4B0B69FE2B ] C:\WINDOWS\system32\Ckldrv.sys
08:51:06.0812 3908  C:\WINDOWS\system32\Ckldrv.sys - ok
08:51:06.0812 3908  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
08:51:06.0812 3908  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
08:51:06.0828 3908  [ 2CFEA3326981A18C6BAF2BD9BE76225B ] C:\WINDOWS\system32\drivers\fips.sys
08:51:06.0828 3908  C:\WINDOWS\system32\drivers\fips.sys - ok
08:51:06.0843 3908  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
08:51:06.0843 3908  C:\WINDOWS\system32\drivers\imapi.sys - ok
08:51:06.0859 3908  [ 78F29E510389B06BF7417E82E3BB54FF ] C:\WINDOWS\system32\ntdll.dll
08:51:06.0859 3908  C:\WINDOWS\system32\ntdll.dll - ok
08:51:06.0859 3908  [ 47AA35C22DEF2B265449B7CCDF4251AE ] C:\WINDOWS\system32\smss.exe
08:51:06.0859 3908  C:\WINDOWS\system32\smss.exe - ok
08:51:06.0875 3908  [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
08:51:06.0875 3908  C:\WINDOWS\system32\drivers\usbccgp.sys - ok
08:51:06.0875 3908  [ 0B1A3EEBFC02F6868334086D3820B53A ] C:\WINDOWS\system32\autochk.exe
08:51:06.0875 3908  C:\WINDOWS\system32\autochk.exe - ok
08:51:06.0890 3908  [ 38D332A6D56AF32635675F132548343E ] C:\WINDOWS\system32\drivers\fastfat.sys
08:51:06.0890 3908  C:\WINDOWS\system32\drivers\fastfat.sys - ok
08:51:06.0890 3908  [ A32426D9B14A089EAA1D922E0C5801A9 ] C:\WINDOWS\system32\drivers\usbstor.sys
08:51:06.0890 3908  C:\WINDOWS\system32\drivers\usbstor.sys - ok
08:51:06.0906 3908  [ 9DE6E60CE7FD82B4985DE5D9C22265AD ] C:\WINDOWS\system32\drivers\SNTNLUSB.SYS
08:51:06.0906 3908  C:\WINDOWS\system32\drivers\SNTNLUSB.SYS - ok
08:51:06.0921 3908  [ CE7DB8EE1C9BD8A40F84529DDC28B0D8 ] C:\WINDOWS\system32\sfcfiles.dll
08:51:06.0921 3908  C:\WINDOWS\system32\sfcfiles.dll - ok
08:51:06.0921 3908  [ E919708DB44ED8543A7C017953148330 ] C:\WINDOWS\system32\drivers\USBAUDIO.sys
08:51:06.0921 3908  C:\WINDOWS\system32\drivers\USBAUDIO.sys - ok
08:51:06.0937 3908  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
08:51:06.0937 3908  C:\WINDOWS\system32\drivers\hidclass.sys - ok
08:51:06.0937 3908  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
08:51:06.0937 3908  C:\WINDOWS\system32\drivers\hidparse.sys - ok
08:51:06.0953 3908  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
08:51:06.0953 3908  C:\WINDOWS\system32\drivers\hidusb.sys - ok
08:51:06.0953 3908  [ A3963E3D997C3646E1D3338EB88A48E9 ] C:\WINDOWS\system32\drivers\LVMVdrv.sys
08:51:06.0953 3908  C:\WINDOWS\system32\drivers\LVMVdrv.sys - ok
08:51:06.0968 3908  [ 3E5D89099DED9E86E5639F411693218F ] C:\WINDOWS\system32\drivers\stream.sys
08:51:06.0968 3908  C:\WINDOWS\system32\drivers\stream.sys - ok
08:51:06.0968 3908  [ 95F6C2E89B5B0EDF33BE7E0BEDF21991 ] C:\WINDOWS\system32\drivers\LV561AV.SYS
08:51:06.0968 3908  C:\WINDOWS\system32\drivers\LV561AV.SYS - ok
08:51:06.0984 3908  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
08:51:06.0984 3908  C:\WINDOWS\system32\drivers\atapi.sys - ok
08:51:06.0984 3908  [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
08:51:06.0984 3908  C:\WINDOWS\system32\drivers\wmilib.sys - ok
08:51:07.0000 3908  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
08:51:07.0000 3908  C:\WINDOWS\system32\drivers\dxapi.sys - ok
08:51:07.0000 3908  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
08:51:07.0000 3908  C:\WINDOWS\system32\watchdog.sys - ok
08:51:07.0015 3908  [ 93FF730DDB1256CDCF1C792446A8ECAD ] C:\WINDOWS\system32\win32k.sys
08:51:07.0015 3908  C:\WINDOWS\system32\win32k.sys - ok
08:51:07.0015 3908  [ 17DDFE6A0B5404C5EF4C03AD996D0562 ] C:\WINDOWS\system32\basesrv.dll
08:51:07.0015 3908  C:\WINDOWS\system32\basesrv.dll - ok
08:51:07.0015 3908  [ D74BB1A9F083234653D5D5801F1963FC ] C:\WINDOWS\system32\cmdcsr.dll
08:51:07.0015 3908  C:\WINDOWS\system32\cmdcsr.dll - ok
08:51:07.0031 3908  [ F5737EF97EA2516AC5CB736472B976E6 ] C:\WINDOWS\system32\csrsrv.dll
08:51:07.0031 3908  C:\WINDOWS\system32\csrsrv.dll - ok
08:51:07.0031 3908  [ 7378D0AB67B54396CA0FB623A5AAAC94 ] C:\WINDOWS\system32\csrss.exe
08:51:07.0031 3908  C:\WINDOWS\system32\csrss.exe - ok
08:51:07.0046 3908  [ 7B39F8912DF2C266411F7248EC250AE6 ] C:\WINDOWS\system32\winsrv.dll
08:51:07.0046 3908  C:\WINDOWS\system32\winsrv.dll - ok
08:51:07.0046 3908  [ 3D925C52548584DF79C080DBBB9717B5 ] C:\WINDOWS\system32\gdi32.dll
08:51:07.0046 3908  C:\WINDOWS\system32\gdi32.dll - ok
08:51:07.0062 3908  [ 8F1CCE239AECE0D7FF4A240B709DA118 ] C:\WINDOWS\system32\kernel32.dll
08:51:07.0062 3908  C:\WINDOWS\system32\kernel32.dll - ok
08:51:07.0062 3908  [ FA94696C0727BD59E517C674CD6E7C72 ] C:\WINDOWS\system32\user32.dll
08:51:07.0062 3908  C:\WINDOWS\system32\user32.dll - ok
08:51:07.0078 3908  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
08:51:07.0078 3908  C:\WINDOWS\system32\drivers\dxg.sys - ok
08:51:07.0078 3908  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
08:51:07.0078 3908  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
08:51:07.0093 3908  [ E4F2EAAA31F65F09B9FF35D1A5D832B8 ] C:\WINDOWS\system32\nv4_disp.dll
08:51:07.0093 3908  C:\WINDOWS\system32\nv4_disp.dll - ok
08:51:07.0093 3908  [ 935345054429294524738EF4C2A3806D ] C:\WINDOWS\system32\vga.dll
08:51:07.0093 3908  C:\WINDOWS\system32\vga.dll - ok
08:51:07.0109 3908  [ 9259170D29B5A256735FCB8B80280857 ] C:\WINDOWS\system32\winlogon.exe
08:51:07.0109 3908  C:\WINDOWS\system32\winlogon.exe - ok
08:51:07.0109 3908  [ F63CB6DBE268EA0620C67A90CF43885E ] C:\WINDOWS\system32\advapi32.dll
08:51:07.0109 3908  C:\WINDOWS\system32\advapi32.dll - ok
08:51:07.0125 3908  [ D83526F6FBCCB14F256D9AEFD1D2D1DB ] C:\WINDOWS\system32\rpcrt4.dll
08:51:07.0125 3908  C:\WINDOWS\system32\rpcrt4.dll - ok
08:51:07.0125 3908  [ 3156B7E5BB6C64250A04A23B57836322 ] C:\WINDOWS\system32\secur32.dll
08:51:07.0125 3908  C:\WINDOWS\system32\secur32.dll - ok
08:51:07.0140 3908  [ 477226A3D95FEA7DD20D3AA0C69F3C00 ] C:\WINDOWS\system32\authz.dll
08:51:07.0140 3908  C:\WINDOWS\system32\authz.dll - ok
08:51:07.0140 3908  [ 781D19FFC551A3D9FEEAC91C77AAE9F8 ] C:\WINDOWS\system32\crypt32.dll
08:51:07.0140 3908  C:\WINDOWS\system32\crypt32.dll - ok
08:51:07.0156 3908  [ A6C5A59628C1E6A5E7238DDB942F4DDD ] C:\WINDOWS\system32\msvcrt.dll
08:51:07.0156 3908  C:\WINDOWS\system32\msvcrt.dll - ok
08:51:07.0156 3908  [ 7AA0E7D88D71E92D692C2D1565DCBF07 ] C:\WINDOWS\system32\msasn1.dll
08:51:07.0156 3908  C:\WINDOWS\system32\msasn1.dll - ok
08:51:07.0171 3908  [ 84D2060E3AC05F8F057F6AE4C3FCF1B9 ] C:\WINDOWS\system32\nddeapi.dll
08:51:07.0171 3908  C:\WINDOWS\system32\nddeapi.dll - ok
08:51:07.0171 3908  [ 00A0D6896E203861A49E0B64A2518BEE ] C:\WINDOWS\system32\netapi32.dll
08:51:07.0171 3908  C:\WINDOWS\system32\netapi32.dll - ok
08:51:07.0187 3908  [ 3C24A924CF47E3D49C636FCC5FB9EF7A ] C:\WINDOWS\system32\profmap.dll
08:51:07.0187 3908  C:\WINDOWS\system32\profmap.dll - ok
08:51:07.0187 3908  [ 135E88124CFE32C52999FF38297FD77D ] C:\WINDOWS\system32\userenv.dll
08:51:07.0187 3908  C:\WINDOWS\system32\userenv.dll - ok
08:51:07.0203 3908  [ E1C59AD809E2F713911002CC935C1387 ] C:\WINDOWS\system32\psapi.dll
08:51:07.0203 3908  C:\WINDOWS\system32\psapi.dll - ok
08:51:07.0218 3908  [ DB7A2BFEA03351B3B1ABD18CED51686D ] C:\WINDOWS\system32\regapi.dll
08:51:07.0218 3908  C:\WINDOWS\system32\regapi.dll - ok
08:51:07.0218 3908  [ 747F63CC54701F6D6EEBFC9BE6A2185A ] C:\WINDOWS\system32\setupapi.dll
08:51:07.0218 3908  C:\WINDOWS\system32\setupapi.dll - ok
08:51:07.0234 3908  [ 5728855D7C805E5AF40A2F7604940435 ] C:\WINDOWS\system32\imagehlp.dll
08:51:07.0234 3908  C:\WINDOWS\system32\imagehlp.dll - ok
08:51:07.0234 3908  [ DF664CCE822387D0CB6A35787B6DF6CD ] C:\WINDOWS\system32\version.dll
08:51:07.0234 3908  C:\WINDOWS\system32\version.dll - ok
08:51:07.0250 3908  [ C67292CE35C59D2FCAE3996EB6DE6CF0 ] C:\WINDOWS\system32\winsta.dll
08:51:07.0250 3908  C:\WINDOWS\system32\winsta.dll - ok
08:51:07.0250 3908  [ E6325328002404E743B94C6FCFB75586 ] C:\WINDOWS\system32\wintrust.dll
08:51:07.0250 3908  C:\WINDOWS\system32\wintrust.dll - ok
08:51:07.0265 3908  [ 604871D4C2D8D33C4D45CF2E1D081128 ] C:\WINDOWS\system32\fltlib.dll
08:51:07.0265 3908  C:\WINDOWS\system32\fltlib.dll - ok
08:51:07.0265 3908  [ 401107CE7913B526FD87CC53F23A102F ] C:\WINDOWS\system32\guard32.dll
08:51:07.0265 3908  C:\WINDOWS\system32\guard32.dll - ok
08:51:07.0265 3908  [ 3F970150C170A38FCE423994341205B4 ] C:\WINDOWS\system32\imm32.dll
08:51:07.0265 3908  C:\WINDOWS\system32\imm32.dll - ok
08:51:07.0281 3908  [ D041DBDB9192A8B6EA7C6EA379F11255 ] C:\WINDOWS\system32\ws2help.dll
08:51:07.0281 3908  C:\WINDOWS\system32\ws2help.dll - ok
08:51:07.0281 3908  [ D34F635FF28F2AABEDC95BFEB891864C ] C:\WINDOWS\system32\ws2_32.dll
08:51:07.0281 3908  C:\WINDOWS\system32\ws2_32.dll - ok
08:51:07.0296 3908  [ 1C62DA8649D73B0DAE915740FE8CF712 ] C:\WINDOWS\system32\kbdit.dll
08:51:07.0296 3908  C:\WINDOWS\system32\kbdit.dll - ok
08:51:07.0296 3908  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
08:51:07.0296 3908  C:\WINDOWS\system32\kbdus.dll - ok
08:51:07.0312 3908  [ 7D74F6545EDB2A928309966E30CCEC8C ] C:\WINDOWS\system32\msgina.dll
08:51:07.0312 3908  C:\WINDOWS\system32\msgina.dll - ok
08:51:07.0312 3908  [ 5DC6E15B3989AF66D09F39786FD7154E ] C:\WINDOWS\system32\comctl32.dll
08:51:07.0312 3908  C:\WINDOWS\system32\comctl32.dll - ok
08:51:07.0328 3908  [ 67C419CAA22F0F63C84CB162512D6ED1 ] C:\WINDOWS\system32\comdlg32.dll
08:51:07.0328 3908  C:\WINDOWS\system32\comdlg32.dll - ok
08:51:07.0328 3908  [ F8998D6AC1C6940E4182D541AB8EF706 ] C:\WINDOWS\system32\odbc32.dll
08:51:07.0328 3908  C:\WINDOWS\system32\odbc32.dll - ok
08:51:07.0343 3908  [ 480F826B18E4B6F2E96C6FA7C5FBCF35 ] C:\WINDOWS\system32\shell32.dll
08:51:07.0343 3908  C:\WINDOWS\system32\shell32.dll - ok
08:51:07.0359 3908  [ 31370A1353D2D248A8122CA8FB570B12 ] C:\WINDOWS\system32\shlwapi.dll
08:51:07.0359 3908  C:\WINDOWS\system32\shlwapi.dll - ok
08:51:07.0359 3908  [ F549732DE586F0B6054BBE22B3617230 ] C:\WINDOWS\system32\sxs.dll
08:51:07.0359 3908  C:\WINDOWS\system32\sxs.dll - ok
08:51:07.0375 3908  [ B01635393A2B490FE49B7F97A9E41071 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
08:51:07.0375 3908  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
08:51:07.0390 3908  [ DE336BE9C1D5A3D1A5CCEFF735482A04 ] C:\WINDOWS\system32\odbcint.dll
08:51:07.0390 3908  C:\WINDOWS\system32\odbcint.dll - ok
08:51:07.0390 3908  [ DCCC606FC144F6E44E497F9A906F1C30 ] C:\WINDOWS\system32\shsvcs.dll
08:51:07.0390 3908  C:\WINDOWS\system32\shsvcs.dll - ok
08:51:07.0406 3908  [ 084F6A2BCD2B5D4E461EA61760F625F7 ] C:\WINDOWS\system32\ole32.dll
08:51:07.0406 3908  C:\WINDOWS\system32\ole32.dll - ok
08:51:07.0406 3908  [ DA19147BEED619CAB738FE191BA0CD7C ] C:\WINDOWS\system32\sfc.dll
08:51:07.0406 3908  C:\WINDOWS\system32\sfc.dll - ok
08:51:07.0421 3908  [ A37FB9F9BE51C6ED2C4F2891DBAB5ED2 ] C:\WINDOWS\system32\sfc_os.dll
08:51:07.0421 3908  C:\WINDOWS\system32\sfc_os.dll - ok
08:51:07.0421 3908  [ E6CA4FCD18167E2B43D61AAAE96C2FBD ] C:\WINDOWS\system32\apphelp.dll
08:51:07.0421 3908  C:\WINDOWS\system32\apphelp.dll - ok
08:51:07.0437 3908  [ 26845F272435302E0F3322E660A24F7D ] C:\WINDOWS\system32\services.exe
08:51:07.0437 3908  C:\WINDOWS\system32\services.exe - ok
08:51:07.0437 3908  [ 071B459EDFD4FB36461527B98F435D97 ] C:\WINDOWS\system32\lsasrv.dll
08:51:07.0437 3908  C:\WINDOWS\system32\lsasrv.dll - ok
08:51:07.0453 3908  [ 0FBA335727905DE8E4CB5A2CF438ABF5 ] C:\WINDOWS\system32\lsass.exe
08:51:07.0453 3908  C:\WINDOWS\system32\lsass.exe - ok
08:51:07.0453 3908  [ 820615FADC412AEB81A9F23ED96B2617 ] C:\WINDOWS\system32\msvcp60.dll
08:51:07.0453 3908  C:\WINDOWS\system32\msvcp60.dll - ok
08:51:07.0468 3908  [ 99B65150899F28575A166C310E5C10E4 ] C:\WINDOWS\system32\ncobjapi.dll
08:51:07.0468 3908  C:\WINDOWS\system32\ncobjapi.dll - ok
08:51:07.0468 3908  [ 78C9F6321798340A9F0F71079620004A ] C:\WINDOWS\system32\mpr.dll
08:51:07.0468 3908  C:\WINDOWS\system32\mpr.dll - ok
08:51:07.0484 3908  [ 5FAC26325AC44C1946866947A064BF88 ] C:\WINDOWS\system32\ntdsapi.dll
08:51:07.0484 3908  C:\WINDOWS\system32\ntdsapi.dll - ok
08:51:07.0484 3908  [ 5597C7750D657F76DAF36D022CEACA8E ] C:\WINDOWS\system32\scesrv.dll
08:51:07.0484 3908  C:\WINDOWS\system32\scesrv.dll - ok
08:51:07.0500 3908  [ 277188B1584CDDF25ED3D211C5C3A611 ] C:\WINDOWS\system32\dnsapi.dll
08:51:07.0500 3908  C:\WINDOWS\system32\dnsapi.dll - ok
08:51:07.0500 3908  [ 09AC1F584E9F85D3B7D4103C04881E43 ] C:\WINDOWS\system32\samlib.dll
08:51:07.0500 3908  C:\WINDOWS\system32\samlib.dll - ok
08:51:07.0515 3908  [ 19AF7166BF48C5C1B241F0FA5FEFA993 ] C:\WINDOWS\system32\shimeng.dll
08:51:07.0515 3908  C:\WINDOWS\system32\shimeng.dll - ok
08:51:07.0515 3908  [ B4B9617E7BA722C746C4B6C981306BC3 ] C:\WINDOWS\system32\umpnpmgr.dll
08:51:07.0515 3908  C:\WINDOWS\system32\umpnpmgr.dll - ok
08:51:07.0515 3908  [ 0516EDA669A8C3AE4710DB2E61A0757C ] C:\WINDOWS\system32\wldap32.dll
08:51:07.0515 3908  C:\WINDOWS\system32\wldap32.dll - ok
08:51:07.0531 3908  [ EC06BC70432C1312D307AD91686D3AAC ] C:\WINDOWS\AppPatch\acadproc.dll
08:51:07.0531 3908  C:\WINDOWS\AppPatch\acadproc.dll - ok
08:51:07.0531 3908  [ B83FB6DEED714F75FAC674F1A7C4C573 ] C:\WINDOWS\system32\cryptdll.dll
08:51:07.0531 3908  C:\WINDOWS\system32\cryptdll.dll - ok
08:51:07.0546 3908  [ D540E9A0E9F7C733E92CC629FA83DF59 ] C:\WINDOWS\system32\samsrv.dll
08:51:07.0546 3908  C:\WINDOWS\system32\samsrv.dll - ok
08:51:07.0546 3908  [ 687982BF4630B30A5EEDB611AEC4AC1C ] C:\WINDOWS\AppPatch\acgenral.dll
08:51:07.0546 3908  C:\WINDOWS\AppPatch\acgenral.dll - ok
08:51:07.0562 3908  [ 357064BBB64EDA4A6A113773653A303D ] C:\WINDOWS\system32\dbghelp.dll
08:51:07.0562 3908  C:\WINDOWS\system32\dbghelp.dll - ok
08:51:07.0562 3908  [ B880BDB2C1FA7E4EC356C2DE164D64DA ] C:\WINDOWS\system32\msacm32.dll
08:51:07.0562 3908  C:\WINDOWS\system32\msacm32.dll - ok
08:51:07.0578 3908  [ 532515588F27BFA088673079D0B95ADD ] C:\WINDOWS\system32\oleaut32.dll
08:51:07.0578 3908  C:\WINDOWS\system32\oleaut32.dll - ok
08:51:07.0578 3908  [ 7F72E9B1ADDD3664AF49D0FCC01DA2D9 ] C:\WINDOWS\system32\winmm.dll
08:51:07.0578 3908  C:\WINDOWS\system32\winmm.dll - ok
08:51:07.0593 3908  [ 3B0742C355EE996FE54A7F330CCF55FD ] C:\WINDOWS\system32\uxtheme.dll
08:51:07.0593 3908  C:\WINDOWS\system32\uxtheme.dll - ok
08:51:07.0593 3908  [ 7C11E84574D6EFC3BB359E8151A6B2FF ] C:\WINDOWS\system32\msapsspc.dll
08:51:07.0593 3908  C:\WINDOWS\system32\msapsspc.dll - ok
08:51:07.0609 3908  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
08:51:07.0609 3908  C:\WINDOWS\system32\msvcrt40.dll - ok
08:51:07.0609 3908  [ B2960B6F7B81BB357545F4AABC0320E0 ] C:\WINDOWS\system32\schannel.dll
08:51:07.0609 3908  C:\WINDOWS\system32\schannel.dll - ok
08:51:07.0625 3908  [ A0F3EC988A3C39D33E75E23E34A4BAFE ] C:\WINDOWS\system32\digest.dll
08:51:07.0625 3908  C:\WINDOWS\system32\digest.dll - ok
08:51:07.0625 3908  [ 8EA6C2D273077FE99172178D3EA7D630 ] C:\WINDOWS\system32\msnsspc.dll
08:51:07.0625 3908  C:\WINDOWS\system32\msnsspc.dll - ok
08:51:07.0640 3908  [ 758781C3BC642400D5C4D2C94AFC5239 ] C:\WINDOWS\system32\msctfime.ime
08:51:07.0640 3908  C:\WINDOWS\system32\msctfime.ime - ok
08:51:07.0671 3908  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
08:51:07.0671 3908  C:\WINDOWS\system32\msprivs.dll - ok
08:51:07.0671 3908  [ 46BF87232A84574883B5536B0F703CB1 ] C:\WINDOWS\system32\kerberos.dll
08:51:07.0671 3908  C:\WINDOWS\system32\kerberos.dll - ok
08:51:07.0687 3908  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
08:51:07.0687 3908  C:\WINDOWS\system32\atmfd.dll - ok
08:51:07.0687 3908  [ B6581E5EA0789E83F392DA4CA1FA6E83 ] C:\WINDOWS\system32\msv1_0.dll
08:51:07.0687 3908  C:\WINDOWS\system32\msv1_0.dll - ok
08:51:07.0703 3908  [ 67A102E7CFD88FE010D89C5C9F72FBEA ] C:\WINDOWS\system32\iphlpapi.dll
08:51:07.0703 3908  C:\WINDOWS\system32\iphlpapi.dll - ok
08:51:07.0703 3908  [ E1DACEE13CAF8E118416399ABD2A08D9 ] C:\WINDOWS\system32\netlogon.dll
08:51:07.0703 3908  C:\WINDOWS\system32\netlogon.dll - ok
08:51:07.0718 3908  [ 2969DD84B584A6BB541A5273103957A3 ] C:\WINDOWS\system32\w32time.dll
08:51:07.0718 3908  C:\WINDOWS\system32\w32time.dll - ok
08:51:07.0734 3908  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
08:51:07.0734 3908  C:\WINDOWS\system32\rsaenh.dll - ok
08:51:07.0734 3908  [ 5CA03A44CA527586B202DE1EEDDBFA54 ] C:\WINDOWS\system32\wdigest.dll
08:51:07.0734 3908  C:\WINDOWS\system32\wdigest.dll - ok
08:51:07.0734 3908  [ EE9D8D80A258C3ADC319470BCE2D2277 ] C:\WINDOWS\system32\winscard.dll
08:51:07.0734 3908  C:\WINDOWS\system32\winscard.dll - ok
08:51:07.0750 3908  [ EE59B3FDF4B4C81D3D109CF82DC3CB7C ] C:\WINDOWS\system32\wtsapi32.dll
08:51:07.0750 3908  C:\WINDOWS\system32\wtsapi32.dll - ok
08:51:07.0750 3908  [ 034B4B1E882563562B35E1FAB279DEDF ] C:\WINDOWS\system32\scecli.dll
08:51:07.0750 3908  C:\WINDOWS\system32\scecli.dll - ok
08:51:07.0765 3908  [ BB8363ABEC09AA2F9B363484E282117C ] C:\WINDOWS\system32\svchost.exe
08:51:07.0765 3908  C:\WINDOWS\system32\svchost.exe - ok
08:51:07.0765 3908  [ 5E275C67D430F333A151C19F51330241 ] C:\WINDOWS\system32\ntmarta.dll
08:51:07.0765 3908  C:\WINDOWS\system32\ntmarta.dll - ok
08:51:07.0765 3908  [ BC4E0226341AAEC1222336B3AED86BAB ] C:\WINDOWS\system32\rpcss.dll
08:51:07.0765 3908  C:\WINDOWS\system32\rpcss.dll - ok
08:51:07.0781 3908  [ AEEFC351E18FAAFB2A8E32A9EADCA52D ] C:\WINDOWS\system32\xpsp2res.dll
08:51:07.0781 3908  C:\WINDOWS\system32\xpsp2res.dll - ok
08:51:07.0781 3908  [ BD5FEE908FDD9CB09AA3E78111AB1119 ] C:\WINDOWS\system32\eventlog.dll
08:51:07.0781 3908  C:\WINDOWS\system32\eventlog.dll - ok
08:51:07.0796 3908  [ C6B69A18D39744725FB73AC85E46032B ] C:\WINDOWS\system32\mswsock.dll
08:51:07.0796 3908  C:\WINDOWS\system32\mswsock.dll - ok
08:51:07.0796 3908  [ 705B64A073DFF1AF96F49B00B9D297A3 ] C:\WINDOWS\system32\hnetcfg.dll
08:51:07.0796 3908  C:\WINDOWS\system32\hnetcfg.dll - ok
08:51:07.0812 3908  [ 31A1534519C6FA95445F1CB750E425E5 ] C:\WINDOWS\system32\wshtcpip.dll
08:51:07.0812 3908  C:\WINDOWS\system32\wshtcpip.dll - ok
08:51:07.0812 3908  [ C74F0D0D1D80BAF613FF3A7524AFBAAF ] C:\WINDOWS\system32\winrnr.dll
08:51:07.0812 3908  C:\WINDOWS\system32\winrnr.dll - ok
08:51:07.0828 3908  [ C69DBFA61FE3DEA653A9B83C3A2B052B ] C:\Programmi\Bonjour\mdnsNSP.dll
08:51:07.0828 3908  C:\Programmi\Bonjour\mdnsNSP.dll - ok
08:51:07.0828 3908  [ 2A2D72271844C52F004901A60312B96A ] C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe
08:51:07.0828 3908  C:\Programmi\COMODO\COMODO Internet Security\cmdagent.exe - ok
08:51:07.0843 3908  [ 4E31240C4C96ADD76F6C5C63461156EE ] C:\WINDOWS\system32\rasadhlp.dll
08:51:07.0843 3908  C:\WINDOWS\system32\rasadhlp.dll - ok
08:51:07.0843 3908  [ 84D4839DE169A41109342AAECDD9189C ] C:\WINDOWS\system32\wininet.dll
08:51:07.0843 3908  C:\WINDOWS\system32\wininet.dll - ok
08:51:07.0859 3908  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
08:51:07.0859 3908  C:\WINDOWS\system32\normaliz.dll - ok
08:51:07.0859 3908  [ 900413DE08044D38C94DF92C68A12BAD ] C:\WINDOWS\system32\urlmon.dll
08:51:07.0859 3908  C:\WINDOWS\system32\urlmon.dll - ok
08:51:07.0875 3908  [ CBE79879F9360D02A097C5DA136FF763 ] C:\WINDOWS\system32\iertutil.dll
08:51:07.0875 3908  C:\WINDOWS\system32\iertutil.dll - ok
08:51:07.0875 3908  [ 7329994CF0CE4BD32EEDD9E962DA104D ] C:\WINDOWS\system32\msi.dll
08:51:07.0875 3908  C:\WINDOWS\system32\msi.dll - ok
08:51:07.0890 3908  [ 402C5072B5554441CCF47295F909612B ] C:\WINDOWS\system32\logonui.exe
08:51:07.0890 3908  C:\WINDOWS\system32\logonui.exe - ok
08:51:07.0906 3908  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
08:51:07.0906 3908  C:\WINDOWS\system32\oleacc.dll - ok
08:51:07.0921 3908  [ 717507BFA164A23EF4E79F73C7DEBF79 ] C:\WINDOWS\system32\rasapi32.dll
08:51:07.0921 3908  C:\WINDOWS\system32\rasapi32.dll - ok
08:51:07.0921 3908  [ 4CB4D5AB5E8AD8F407399CBCD69BCAA0 ] C:\WINDOWS\system32\winspool.drv
08:51:07.0921 3908  C:\WINDOWS\system32\winspool.drv - ok
08:51:07.0921 3908  [ B4D7BDEDD75F73903986D6C2A138B38C ] C:\WINDOWS\system32\duser.dll
08:51:07.0921 3908  C:\WINDOWS\system32\duser.dll - ok
08:51:07.0937 3908  [ 80F6E389C54399673F8B7C40AC4837BD ] C:\WINDOWS\system32\rasman.dll
08:51:07.0937 3908  C:\WINDOWS\system32\rasman.dll - ok
08:51:07.0953 3908  [ DF4314D8C94E455EAE153C2C750D767A ] C:\WINDOWS\system32\tapi32.dll
08:51:07.0953 3908  C:\WINDOWS\system32\tapi32.dll - ok
08:51:07.0953 3908  [ 023BC61379209F3428A8189933D75817 ] C:\WINDOWS\system32\msimg32.dll
08:51:07.0953 3908  C:\WINDOWS\system32\msimg32.dll - ok
08:51:07.0953 3908  [ 1D2C1582D88DB4FE585A8B59DCF907F5 ] C:\WINDOWS\system32\rtutils.dll
08:51:07.0953 3908  C:\WINDOWS\system32\rtutils.dll - ok
08:51:07.0968 3908  [ A42DF287F97B218F9CC5C96DEC945E59 ] C:\WINDOWS\system32\clbcatq.dll
08:51:07.0968 3908  C:\WINDOWS\system32\clbcatq.dll - ok
08:51:07.0968 3908  [ C43124F63818E65CAFA49D3957C3CA67 ] C:\WINDOWS\system32\comres.dll
08:51:07.0968 3908  C:\WINDOWS\system32\comres.dll - ok
08:51:07.0984 3908  [ 03BC6F93EEE777D321F0BBFE05E23C99 ] C:\WINDOWS\system32\shgina.dll
08:51:07.0984 3908  C:\WINDOWS\system32\shgina.dll - ok
08:51:07.0984 3908  [ CEFD70DB114C9D25EA101CC7B0E97A7F ] C:\Programmi\COMODO\COMODO Internet Security\framework.dll
08:51:07.0984 3908  C:\Programmi\COMODO\COMODO Internet Security\framework.dll - ok
08:51:08.0000 3908  [ 6304ADA4AB25B9F549017F9C356FEE1D ] C:\Programmi\COMODO\COMODO Internet Security\scanners\rkdscan.dll
08:51:08.0000 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\rkdscan.dll - ok
08:51:08.0000 3908  [ 8678F7D9D5D2687B9B6CA47CB7C8572C ] C:\WINDOWS\system32\wbem\wbemcomn.dll
08:51:08.0000 3908  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
08:51:08.0015 3908  [ 510E4AFE5E5871309A1F2FE90914857D ] C:\WINDOWS\system32\wbem\wbemprox.dll
08:51:08.0015 3908  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
08:51:08.0015 3908  [ 0A573E0A09491E06F197D6FB251B52DF ] C:\WINDOWS\system32\atl.dll
08:51:08.0015 3908  C:\WINDOWS\system32\atl.dll - ok
08:51:08.0015 3908  [ 5CF15FF3825B893A54EA04DB54D305A6 ] C:\WINDOWS\system32\certcli.dll
08:51:08.0015 3908  C:\WINDOWS\system32\certcli.dll - ok
08:51:08.0031 3908  [ B6FCBB157E9C8ABDCA4134C535535A8B ] C:\WINDOWS\system32\cryptsvc.dll
08:51:08.0031 3908  C:\WINDOWS\system32\cryptsvc.dll - ok
08:51:08.0031 3908  [ 3A7370A1FAD83BB7E86CA39239BEB706 ] C:\WINDOWS\system32\cryptui.dll
08:51:08.0031 3908  C:\WINDOWS\system32\cryptui.dll - ok
08:51:08.0031 3908  [ 9ABC0B2592FE1535474E675E0A5A3C67 ] C:\WINDOWS\system32\esent.dll
08:51:08.0031 3908  C:\WINDOWS\system32\esent.dll - ok
08:51:08.0046 3908  [ EB9C62DFDA4CD100C6C721F94275A897 ] C:\WINDOWS\system32\riched20.dll
08:51:08.0046 3908  C:\WINDOWS\system32\riched20.dll - ok
08:51:08.0046 3908  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
08:51:08.0046 3908  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
08:51:08.0062 3908  [ AFBEABDC9E9827C5017A651343ADA62C ] C:\WINDOWS\system32\cscdll.dll
08:51:08.0062 3908  C:\WINDOWS\system32\cscdll.dll - ok
08:51:08.0062 3908  [ 7BCB82561979ABB75A46D75339CFA96B ] C:\WINDOWS\system32\dimsntfy.dll
08:51:08.0062 3908  C:\WINDOWS\system32\dimsntfy.dll - ok
08:51:08.0062 3908  [ 699EE7F752A25180AEB92C3A0EAEE440 ] C:\WINDOWS\system32\dhcpcsvc.dll
08:51:08.0062 3908  C:\WINDOWS\system32\dhcpcsvc.dll - ok
08:51:08.0078 3908  [ 116CB8789C1AE1BE1AFF5A4CE5D9EC18 ] C:\WINDOWS\system32\wlnotify.dll
08:51:08.0078 3908  C:\WINDOWS\system32\wlnotify.dll - ok
08:51:08.0078 3908  [ B7A1162B1A26DF7B60D5D9500006096C ] C:\WINDOWS\system32\dnsrslvr.dll
08:51:08.0078 3908  C:\WINDOWS\system32\dnsrslvr.dll - ok
08:51:08.0093 3908  [ B5365CC6CC6FB8A1B00554C2D63796A2 ] C:\WINDOWS\system32\cscui.dll
08:51:08.0093 3908  C:\WINDOWS\system32\cscui.dll - ok
08:51:08.0093 3908  [ 2F331374433E3FE176BEE155D9BE83E1 ] C:\WINDOWS\system32\powrprof.dll
08:51:08.0093 3908  C:\WINDOWS\system32\powrprof.dll - ok
08:51:08.0109 3908  [ 258BB3ADF21FA9E369388FC8271516DF ] C:\WINDOWS\system32\dpcdll.dll
08:51:08.0109 3908  C:\WINDOWS\system32\dpcdll.dll - ok
08:51:08.0109 3908  [ E01255727D0B158538D7C2B469B533A8 ] C:\WINDOWS\system32\lmhsvc.dll
08:51:08.0109 3908  C:\WINDOWS\system32\lmhsvc.dll - ok
08:51:08.0125 3908  [ 053E0307A08CAC60793E27E921B46B3E ] C:\WINDOWS\system32\wzcsvc.dll
08:51:08.0125 3908  C:\WINDOWS\system32\wzcsvc.dll - ok
08:51:08.0125 3908  [ E85960E0EEFB9F7F90B859FADEF587FF ] C:\WINDOWS\system32\dot3api.dll
08:51:08.0125 3908  C:\WINDOWS\system32\dot3api.dll - ok
08:51:08.0140 3908  [ BFEDF99BCE4ADA015FB15DD0A35FA0C9 ] C:\WINDOWS\system32\eapolqec.dll
08:51:08.0140 3908  C:\WINDOWS\system32\eapolqec.dll - ok
08:51:08.0140 3908  [ 8E5EDE8D0FDDD771BE4EB401F38F9556 ] C:\WINDOWS\system32\qutil.dll
08:51:08.0140 3908  C:\WINDOWS\system32\qutil.dll - ok
08:51:08.0156 3908  [ 162D3BAC885B120249E562B4A4979052 ] C:\WINDOWS\system32\wmi.dll
08:51:08.0156 3908  C:\WINDOWS\system32\wmi.dll - ok
08:51:08.0156 3908  [ DF69726907357C3ADD243F48902B0331 ] C:\WINDOWS\system32\userinit.exe
08:51:08.0156 3908  C:\WINDOWS\system32\userinit.exe - ok
08:51:08.0156 3908  [ 8B5EB7B07A44E86A623202F741F15E98 ] C:\WINDOWS\system32\rastls.dll
08:51:08.0156 3908  C:\WINDOWS\system32\rastls.dll - ok
08:51:08.0171 3908  [ 8D50AEF4223BD8ED8CF985011E05729E ] C:\WINDOWS\system32\activeds.dll
08:51:08.0171 3908  C:\WINDOWS\system32\activeds.dll - ok
08:51:08.0171 3908  [ F1E08D3B1809526BDD78DB651928F69E ] C:\WINDOWS\system32\adsldpc.dll
08:51:08.0171 3908  C:\WINDOWS\system32\adsldpc.dll - ok
08:51:08.0187 3908  [ 55094E3E675E6D4195058C0921F88240 ] C:\WINDOWS\system32\mprapi.dll
08:51:08.0187 3908  C:\WINDOWS\system32\mprapi.dll - ok
08:51:08.0187 3908  [ 4180B7506037481BF17339DA0F3960CD ] C:\WINDOWS\system32\raschap.dll
08:51:08.0187 3908  C:\WINDOWS\system32\raschap.dll - ok
08:51:08.0203 3908  [ 02815B70FC4CA8611A926176F1C39FC2 ] C:\WINDOWS\system32\netman.dll
08:51:08.0203 3908  C:\WINDOWS\system32\netman.dll - ok
08:51:08.0203 3908  [ 737E29B27859FF2BBA967A7351F3C6DE ] C:\WINDOWS\system32\netshell.dll
08:51:08.0203 3908  C:\WINDOWS\system32\netshell.dll - ok
08:51:08.0203 3908  [ 132EA5CDBA93EF9EDD0F11461591778A ] C:\WINDOWS\system32\credui.dll
08:51:08.0203 3908  C:\WINDOWS\system32\credui.dll - ok
08:51:08.0218 3908  [ FB99885879A7E74A19B9C289C2BE5569 ] C:\WINDOWS\system32\dot3dlg.dll
08:51:08.0218 3908  C:\WINDOWS\system32\dot3dlg.dll - ok
08:51:08.0218 3908  [ F3B027294B4CDE21E16103961BDD7160 ] C:\WINDOWS\system32\eappcfg.dll
08:51:08.0218 3908  C:\WINDOWS\system32\eappcfg.dll - ok
08:51:08.0234 3908  [ DC2B2346A588E4BC641267B568C71D5A ] C:\WINDOWS\system32\onex.dll
08:51:08.0234 3908  C:\WINDOWS\system32\onex.dll - ok
08:51:08.0234 3908  [ 63574A97E5A93C2094CFAC9CFBB8C60F ] C:\WINDOWS\system32\eappprxy.dll
08:51:08.0234 3908  C:\WINDOWS\system32\eappprxy.dll - ok
08:51:08.0234 3908  [ 40ACFE8087298C69C0C91C7B713495A1 ] C:\WINDOWS\system32\wzcsapi.dll
08:51:08.0234 3908  C:\WINDOWS\system32\wzcsapi.dll - ok
08:51:08.0250 3908  [ 70D7F99D95615C3C278367756287DB71 ] C:\WINDOWS\explorer.exe
08:51:08.0250 3908  C:\WINDOWS\explorer.exe - ok
08:51:08.0250 3908  [ 511886E5BD060046CCE8373E92E62EDF ] C:\WINDOWS\system32\schedsvc.dll
08:51:08.0250 3908  C:\WINDOWS\system32\schedsvc.dll - ok
08:51:08.0265 3908  [ B6442DC1D125003668A8A860C76040B1 ] C:\WINDOWS\system32\browseui.dll
08:51:08.0265 3908  C:\WINDOWS\system32\browseui.dll - ok
08:51:08.0265 3908  [ 8631D7150FABE2F11F896EF7153F811F ] C:\WINDOWS\system32\msidle.dll
08:51:08.0265 3908  C:\WINDOWS\system32\msidle.dll - ok
08:51:08.0281 3908  [ 1FF5111A4DD43708BEA851A2F55907F8 ] C:\WINDOWS\system32\shdocvw.dll
08:51:08.0281 3908  C:\WINDOWS\system32\shdocvw.dll - ok
08:51:08.0281 3908  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
08:51:08.0281 3908  C:\WINDOWS\system32\spoolsv.exe - ok
08:51:08.0296 3908  [ 44B3B997E25C5D9A81D6C501451A96D7 ] C:\Programmi\File comuni\Logitech\LVMVFM\LVPrcSrv.exe
08:51:08.0296 3908  C:\Programmi\File comuni\Logitech\LVMVFM\LVPrcSrv.exe - ok
08:51:08.0296 3908  [ 1B58D118049304E88464BE614C6D0014 ] C:\WINDOWS\system32\audiosrv.dll
08:51:08.0296 3908  C:\WINDOWS\system32\audiosrv.dll - ok
08:51:08.0312 3908  [ FC1886502BED1CE27B1B6C18DC83D6FE ] C:\WINDOWS\system32\desk.cpl
08:51:08.0312 3908  C:\WINDOWS\system32\desk.cpl - ok
08:51:08.0312 3908  [ 1D456F1CD76A80793C07BA52CF3A7455 ] C:\WINDOWS\system32\scardsvr.exe
08:51:08.0312 3908  C:\WINDOWS\system32\scardsvr.exe - ok
08:51:08.0328 3908  [ 88C8A711BBFF3C2B208F8F44C6AC0FCA ] C:\WINDOWS\system32\themeui.dll
08:51:08.0328 3908  C:\WINDOWS\system32\themeui.dll - ok
08:51:08.0328 3908  [ E13B0181DDA60B93E3253EFF52A79CBE ] C:\WINDOWS\system32\wkssvc.dll
08:51:08.0328 3908  C:\WINDOWS\system32\wkssvc.dll - ok
08:51:08.0328 3908  [ 21C044A1A4CAD5636FCED583879EE92F ] C:\WINDOWS\system32\actxprxy.dll
08:51:08.0328 3908  C:\WINDOWS\system32\actxprxy.dll - ok
08:51:08.0343 3908  [ 3DC378A839058A689FD55D34FD58675B ] C:\WINDOWS\system32\cmd.exe
08:51:08.0343 3908  C:\WINDOWS\system32\cmd.exe - ok
08:51:08.0343 3908  [ 2275D729AE9800E3A5EA9FFE5754422D ] C:\WINDOWS\system32\ieframe.dll
08:51:08.0343 3908  C:\WINDOWS\system32\ieframe.dll - ok
08:51:08.0359 3908  [ 423ACF9016973BF955E94893AF2C19A0 ] C:\WINDOWS\system32\wdmaud.drv
08:51:08.0359 3908  C:\WINDOWS\system32\wdmaud.drv - ok
08:51:08.0359 3908  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
08:51:08.0359 3908  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
08:51:08.0375 3908  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
08:51:08.0375 3908  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
08:51:08.0375 3908  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
08:51:08.0375 3908  C:\WINDOWS\system32\drivers\splitter.sys - ok
08:51:08.0390 3908  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
08:51:08.0390 3908  C:\WINDOWS\system32\drivers\aec.sys - ok
08:51:08.0390 3908  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
08:51:08.0390 3908  C:\WINDOWS\system32\drivers\swmidi.sys - ok
08:51:08.0406 3908  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
08:51:08.0406 3908  C:\WINDOWS\system32\drivers\dmusic.sys - ok
08:51:08.0406 3908  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
08:51:08.0406 3908  C:\WINDOWS\system32\drivers\kmixer.sys - ok
08:51:08.0421 3908  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
08:51:08.0421 3908  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
08:51:08.0421 3908  [ 05E84EEAD6B27C958621A4E6D33859D1 ] C:\WINDOWS\system32\msacm32.drv
08:51:08.0421 3908  C:\WINDOWS\system32\msacm32.drv - ok
08:51:08.0437 3908  [ 900D7BBEFCCC50A73B38E342B68D346A ] C:\WINDOWS\system32\midimap.dll
08:51:08.0437 3908  C:\WINDOWS\system32\midimap.dll - ok
08:51:08.0453 3908  [ D8142867C84AC3711E5299DC419040DF ] C:\WINDOWS\system32\bit4upki-store.dll
08:51:08.0453 3908  C:\WINDOWS\system32\bit4upki-store.dll - ok
08:51:08.0453 3908  [ 1A28478E88347179A589E93151377BB7 ] C:\WINDOWS\system32\cryptnet.dll
08:51:08.0468 3908  C:\WINDOWS\system32\cryptnet.dll - ok
08:51:08.0484 3908  [ 033CEF7F1E4FE3F2CE7B737B847DBC90 ] C:\WINDOWS\system32\sensapi.dll
08:51:08.0484 3908  C:\WINDOWS\system32\sensapi.dll - ok
08:51:08.0484 3908  [ 4435246092FA82DC8FB3F18BC5DFE9A7 ] C:\WINDOWS\system32\winhttp.dll
08:51:08.0484 3908  C:\WINDOWS\system32\winhttp.dll - ok
08:51:08.0500 3908  [ 6C513EF3DAC738AEA18D0364DA73ED9B ] C:\WINDOWS\system32\cabinet.dll
08:51:08.0500 3908  C:\WINDOWS\system32\cabinet.dll - ok
08:51:08.0500 3908  [ F02A533F517EB38333CB12A9E8963773 ] C:\Programmi\Google\Update\GoogleUpdate.exe
08:51:08.0500 3908  C:\Programmi\Google\Update\GoogleUpdate.exe - ok
08:51:08.0515 3908  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Programmi\Google\Update\1.3.21.135\goopdate.dll
08:51:08.0515 3908  C:\Programmi\Google\Update\1.3.21.135\goopdate.dll - ok
08:51:08.0515 3908  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Programmi\Google\Update\1.3.21.135\GoogleCrashHandler.exe
08:51:08.0515 3908  C:\Programmi\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
08:51:08.0515 3908  [ 9B57F2721D594568F62857F5A31D6634 ] C:\WINDOWS\system32\mstask.dll
08:51:08.0515 3908  C:\WINDOWS\system32\mstask.dll - ok
08:51:08.0531 3908  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
08:51:08.0531 3908  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
08:51:08.0531 3908  [ 2EC50EE79B65F60C8E8B4A03BBB3A42F ] C:\WINDOWS\system32\webclnt.dll
08:51:08.0531 3908  C:\WINDOWS\system32\webclnt.dll - ok
08:51:08.0546 3908  [ 13C55468C5A453AC604672C90002ADCA ] C:\WINDOWS\system32\drivers\LONSLTA.SYS
08:51:08.0546 3908  C:\WINDOWS\system32\drivers\LONSLTA.SYS - ok
08:51:08.0546 3908  [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] C:\WINDOWS\system32\drivers\sentinel.sys
08:51:08.0546 3908  C:\WINDOWS\system32\drivers\sentinel.sys - ok
08:51:08.0562 3908  [ FDBD9D64E2E03270021D424F0DCCF79D ] C:\WINDOWS\system32\drivers\serial.sys
08:51:08.0562 3908  C:\WINDOWS\system32\drivers\serial.sys - ok
08:51:08.0578 3908  [ 5E90A956526086634547BF8093FEB699 ] C:\Programmi\Altium Designer Summer 09\System\Drivers\altio.sys
08:51:08.0578 3908  C:\Programmi\Altium Designer Summer 09\System\Drivers\altio.sys - ok
08:51:08.0578 3908  [ 14A077AD0CF6116D1102631D8E1EDEE8 ] C:\WINDOWS\system32\alrsvc.dll
08:51:08.0578 3908  C:\WINDOWS\system32\alrsvc.dll - ok
08:51:08.0593 3908  [ F832F1505AD8B83474BD9A5B1B985E01 ] C:\Programmi\Bonjour\mDNSResponder.exe
08:51:08.0593 3908  C:\Programmi\Bonjour\mDNSResponder.exe - ok
08:51:08.0593 3908  [ 48C4763A9C8990FB48B73445BEB15D6A ] C:\WINDOWS\system32\qmgr.dll
08:51:08.0593 3908  C:\WINDOWS\system32\qmgr.dll - ok
08:51:08.0609 3908  [ A0D9E43450BF83B5B5B7A839667B21F3 ] C:\WINDOWS\system32\shfolder.dll
08:51:08.0609 3908  C:\WINDOWS\system32\shfolder.dll - ok
08:51:08.0609 3908  [ 58BF7714A312698108A96D0DE2BB6825 ] C:\Programmi\Cobian Backup 11\cbVSCService11.exe
08:51:08.0609 3908  C:\Programmi\Cobian Backup 11\cbVSCService11.exe - ok
08:51:08.0625 3908  [ 128DD9AF8640DBCC711940903C8B554F ] C:\WINDOWS\system32\mscoree.dll
08:51:08.0625 3908  C:\WINDOWS\system32\mscoree.dll - ok
08:51:08.0625 3908  [ FB53A700132D9A97D1E10E9F80BD6174 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
08:51:08.0625 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
08:51:08.0640 3908  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
08:51:08.0640 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
08:51:08.0656 3908  [ 09523AFBC5937D7CC786FC9C74D2D516 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll
08:51:08.0671 3908  C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll - ok
08:51:08.0671 3908  [ 723528449ED0D1B0AD98AF3EDF23101D ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
08:51:08.0671 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
08:51:08.0687 3908  [ 4B3685AA700084E4ED6635FC1EFD9CC2 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll
08:51:08.0687 3908  C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll - ok
08:51:08.0687 3908  [ C1649188479440AA5834EDA555445CDC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d7ee03714420b252415b952d40ef59e4\System.ServiceProcess.ni.dll
08:51:08.0687 3908  C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d7ee03714420b252415b952d40ef59e4\System.ServiceProcess.ni.dll - ok
08:51:08.0703 3908  [ 86E7B431A007C09437A3F9744FAA6440 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\edbf4e4a55e63b9fbf0b0b40cba13063\System.Core.ni.dll
08:51:08.0703 3908  C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\edbf4e4a55e63b9fbf0b0b40cba13063\System.Core.ni.dll - ok
08:51:08.0703 3908  [ C2EB4539A4F6AB6EDD01BDC191619975 ] C:\WINDOWS\system32\drivers\cpuz135_x32.sys
08:51:08.0703 3908  C:\WINDOWS\system32\drivers\cpuz135_x32.sys - ok
08:51:08.0718 3908  [ 133F82B6391F3390BECFA429C23FB2BE ] C:\WINDOWS\system32\Crypserv.exe
08:51:08.0718 3908  C:\WINDOWS\system32\Crypserv.exe - ok
08:51:08.0718 3908  [ CF6B9E075464BA8BE42FC69C46EE2EE3 ] C:\Programmi\Cobian Backup 11\CobStringList.dll
08:51:08.0718 3908  C:\Programmi\Cobian Backup 11\CobStringList.dll - ok
08:51:08.0734 3908  [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll
08:51:08.0734 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
08:51:08.0734 3908  [ B6599EDA9F3EBEF064504EE35BBECA1C ] C:\WINDOWS\system32\ersvc.dll
08:51:08.0734 3908  C:\WINDOWS\system32\ersvc.dll - ok
08:51:08.0750 3908  [ 8360CB9756E598A5C6214EACFB3677C3 ] C:\WINDOWS\system32\es.dll
08:51:08.0750 3908  C:\WINDOWS\system32\es.dll - ok
08:51:08.0750 3908  [ 6CE66B51B4EB23D9D073F92698C55C8D ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
08:51:08.0750 3908  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
08:51:08.0765 3908  [ 43D985A9A51E0295091B6EBE84C96B78 ] C:\WINDOWS\system32\hidserv.dll
08:51:08.0765 3908  C:\WINDOWS\system32\hidserv.dll - ok
08:51:08.0765 3908  [ 0E53A5D31199A7587EE9F86B574FBB9F ] C:\WINDOWS\system32\hid.dll
08:51:08.0765 3908  C:\WINDOWS\system32\hid.dll - ok
08:51:08.0765 3908  [ 19A4FB67B1C97EA18EDFF44340973CD9 ] C:\Programmi\HP\Digital Imaging\bin\hpqddsvc.dll
08:51:08.0765 3908  C:\Programmi\HP\Digital Imaging\bin\hpqddsvc.dll - ok
08:51:08.0781 3908  [ DC7E73583CEC3F95BFA0F0C7B318E286 ] C:\Programmi\HP\Digital Imaging\bin\hpqddcmn.dll
08:51:08.0781 3908  C:\Programmi\HP\Digital Imaging\bin\hpqddcmn.dll - ok
08:51:08.0796 3908  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
08:51:08.0796 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
08:51:08.0796 3908  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
08:51:08.0796 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
08:51:08.0796 3908  [ 56FC98F1014EA8DC51B92839C32759EC ] C:\Programmi\HP\Digital Imaging\bin\HPSLPSVC32.DLL
08:51:08.0796 3908  C:\Programmi\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
08:51:08.0812 3908  [ 999DB5F88C8E145CCA9D471E33227143 ] C:\Programmi\Java\jre7\bin\jqs.exe
08:51:08.0812 3908  C:\Programmi\Java\jre7\bin\jqs.exe - ok
08:51:08.0812 3908  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Programmi\Java\jre7\bin\msvcr100.dll
08:51:08.0812 3908  C:\Programmi\Java\jre7\bin\msvcr100.dll - ok
08:51:08.0828 3908  [ 8FC5C9AC20C29EF8DBCD4CCE6ACF8F31 ] C:\WINDOWS\system32\pdh.dll
08:51:08.0828 3908  C:\WINDOWS\system32\pdh.dll - ok
08:51:08.0828 3908  [ 3211CAA2B94BA366FDBAF63B02D2D861 ] C:\WINDOWS\system32\odbcbcp.dll
08:51:08.0828 3908  C:\WINDOWS\system32\odbcbcp.dll - ok
08:51:08.0828 3908  [ C0CAC3B2FFC272F690F39CA48834693F ] C:\Programmi\LonWorks\Bin\LnsMtsSvc.exe
08:51:08.0828 3908  C:\Programmi\LonWorks\Bin\LnsMtsSvc.exe - ok
08:51:08.0843 3908  [ 2294755FF578876B6C1BA274C5FABD73 ] C:\WINDOWS\system32\netmsg.dll
08:51:08.0843 3908  C:\WINDOWS\system32\netmsg.dll - ok
08:51:08.0843 3908  [ 0F726D49C0B19E5A506A1CDFCE0EE42F ] C:\WINDOWS\system32\srvsvc.dll
08:51:08.0843 3908  C:\WINDOWS\system32\srvsvc.dll - ok
08:51:08.0843 3908  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
08:51:08.0843 3908  C:\WINDOWS\system32\drivers\srv.sys - ok
08:51:08.0859 3908  [ 7B4607C0C664DA98753508F85BB10694 ] C:\Programmi\File comuni\Logitech\SrvLnch\SrvLnch.exe
08:51:08.0859 3908  C:\Programmi\File comuni\Logitech\SrvLnch\SrvLnch.exe - ok
08:51:08.0859 3908  [ 9ADBA22EC86D6C64FB51CF5281935F87 ] C:\WINDOWS\system32\spoolss.dll
08:51:08.0859 3908  C:\WINDOWS\system32\spoolss.dll - ok
08:51:08.0875 3908  [ A081CB6FB9A12668F233EB5414BE3A0E ] C:\WINDOWS\system32\HPZinw12.dll
08:51:08.0875 3908  C:\WINDOWS\system32\HPZinw12.dll - ok
08:51:08.0875 3908  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] C:\WINDOWS\system32\drivers\npf.sys
08:51:08.0875 3908  C:\WINDOWS\system32\drivers\npf.sys - ok
08:51:08.0890 3908  [ 9D06B8C7B07C2AE0FDD61790F8AB69DE ] C:\WINDOWS\system32\wsock32.dll
08:51:08.0890 3908  C:\WINDOWS\system32\wsock32.dll - ok
08:51:08.0890 3908  [ 44767F6167E2C39A38B19969C30D2178 ] C:\WINDOWS\system32\localspl.dll
08:51:08.0890 3908  C:\WINDOWS\system32\localspl.dll - ok
08:51:08.0906 3908  [ 65BC271F337637731D3C71455AE1F476 ] C:\WINDOWS\system32\HPZipm12.dll
08:51:08.0906 3908  C:\WINDOWS\system32\HPZipm12.dll - ok
08:51:08.0906 3908  [ 5BA846C7A92EE87DFA53F3B8F939A7FE ] C:\WINDOWS\system32\ipsecsvc.dll
08:51:08.0906 3908  C:\WINDOWS\system32\ipsecsvc.dll - ok
08:51:08.0921 3908  [ 9D85CE8B74780AD62FD22A5605D40B4A ] C:\WINDOWS\system32\oakley.dll
08:51:08.0921 3908  C:\WINDOWS\system32\oakley.dll - ok
08:51:08.0921 3908  [ 17C6354CA08E7C7972E12C67478AE134 ] C:\WINDOWS\system32\seclogon.dll
08:51:08.0921 3908  C:\WINDOWS\system32\seclogon.dll - ok
08:51:08.0937 3908  [ A0ECA1CE0FCCB29C5E4E1F416E95E73E ] C:\WINDOWS\system32\sens.dll
08:51:08.0937 3908  C:\WINDOWS\system32\sens.dll - ok
08:51:08.0953 3908  [ 63A82BBFF9EC21282EDE2DCEE21A26CE ] C:\WINDOWS\system32\winipsec.dll
08:51:08.0953 3908  C:\WINDOWS\system32\winipsec.dll - ok
08:51:08.0968 3908  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] C:\Programmi\Skype\Updater\Updater.exe
08:51:08.0968 3908  C:\Programmi\Skype\Updater\Updater.exe - ok
08:51:08.0968 3908  [ 3A70B88E0ABE9A53B808385C23F308FB ] C:\WINDOWS\system32\psbase.dll
08:51:08.0968 3908  C:\WINDOWS\system32\psbase.dll - ok
08:51:08.0968 3908  [ 62C26D6040C8A2303ADE2F18A414DE7A ] C:\WINDOWS\system32\pstorsvc.dll
08:51:08.0968 3908  C:\WINDOWS\system32\pstorsvc.dll - ok
08:51:08.0984 3908  [ CA8C4185B9947F0BB1D2D3EF97CFC384 ] C:\WINDOWS\system32\cnbjmon.dll
08:51:08.0984 3908  C:\WINDOWS\system32\cnbjmon.dll - ok
08:51:08.0984 3908  [ E292F014D08D987D463BE19D973FC39F ] C:\WINDOWS\system32\E_SL2604.DLL
08:51:08.0984 3908  C:\WINDOWS\system32\E_SL2604.DLL - ok
08:51:09.0000 3908  [ 83BA93A703CDF9CDD82BCAE9B079D725 ] C:\WINDOWS\system32\PT27L.DLL
08:51:09.0000 3908  C:\WINDOWS\system32\PT27L.DLL - ok
08:51:09.0000 3908  [ DADEE76CBB9552F6DD5C8639F9AD4CE2 ] C:\WINDOWS\system32\fpmon5.dll
08:51:09.0000 3908  C:\WINDOWS\system32\fpmon5.dll - ok
08:51:09.0000 3908  [ 33FEA6CE39EDDB253BFCB0CF42BF3988 ] C:\WINDOWS\system32\fpres532.dll
08:51:09.0000 3908  C:\WINDOWS\system32\fpres532.dll - ok
08:51:09.0015 3908  [ 5722B18D85EC5853F47E9AA08CAB53A2 ] C:\WINDOWS\system32\fxsmon.dll
08:51:09.0015 3908  C:\WINDOWS\system32\fxsmon.dll - ok
08:51:09.0015 3908  [ 95665E964B5FEE93DD6B9A0FC508EF77 ] C:\WINDOWS\system32\fxsevent.dll
08:51:09.0015 3908  C:\WINDOWS\system32\fxsevent.dll - ok
08:51:09.0015 3908  [ 8AB1CF6FACFEC31E869B16E15C01ADB1 ] C:\WINDOWS\system32\hpz3l58a.dll
08:51:09.0015 3908  C:\WINDOWS\system32\hpz3l58a.dll - ok
08:51:09.0031 3908  [ B3E3DA70A7A76E69B872DE3D06D32C19 ] C:\WINDOWS\system32\srsvc.dll
08:51:09.0031 3908  C:\WINDOWS\system32\srsvc.dll - ok
08:51:09.0031 3908  [ 1574DD9D409F2DC45CF82C22B99164A4 ] C:\WINDOWS\system32\pdfcmnnt.dll
08:51:09.0031 3908  C:\WINDOWS\system32\pdfcmnnt.dll - ok
08:51:09.0046 3908  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
08:51:09.0046 3908  C:\WINDOWS\system32\dssenh.dll - ok
08:51:09.0046 3908  [ E88074B11C9A8424708C7CF41E034106 ] C:\WINDOWS\system32\pjlmon.dll
08:51:09.0046 3908  C:\WINDOWS\system32\pjlmon.dll - ok
08:51:09.0046 3908  [ 31B94E0B6B5914BA7F55C1238A19BE0F ] C:\WINDOWS\system32\tcpmon.dll
08:51:09.0046 3908  C:\WINDOWS\system32\tcpmon.dll - ok
08:51:09.0062 3908  [ EE731C69CFF3C3626CCBBF729261BC93 ] C:\WINDOWS\system32\tcpmib.dll
08:51:09.0062 3908  C:\WINDOWS\system32\tcpmib.dll - ok
08:51:09.0062 3908  [ 2832BAE687F13A7D2B017BB31B7C59B4 ] C:\WINDOWS\system32\mgmtapi.dll
08:51:09.0062 3908  C:\WINDOWS\system32\mgmtapi.dll - ok
08:51:09.0078 3908  [ A2DAA0F564F393F7436EBF32F38ED976 ] C:\WINDOWS\system32\snmpapi.dll
08:51:09.0078 3908  C:\WINDOWS\system32\snmpapi.dll - ok
08:51:09.0078 3908  [ 43039F6F4C753256A6AE0D69431D58E2 ] C:\WINDOWS\system32\SUGG1LMK.DLL
08:51:09.0078 3908  C:\WINDOWS\system32\SUGG1LMK.DLL - ok
08:51:09.0093 3908  [ A5E96F028B598479FC9BAD6FB67EEE3C ] C:\WINDOWS\system32\usbmon.dll
08:51:09.0093 3908  C:\WINDOWS\system32\usbmon.dll - ok
08:51:09.0093 3908  [ 9DEB3886F1067C5CB9B8F4534FCFE309 ] C:\WINDOWS\system32\wsnmp32.dll
08:51:09.0093 3908  C:\WINDOWS\system32\wsnmp32.dll - ok
08:51:09.0109 3908  [ 830C04BB8C4597F91240A87FE1C453DF ] C:\Programmi\VirITeXp\VIRITMON.SYS
08:51:09.0109 3908  C:\Programmi\VirITeXp\VIRITMON.SYS - ok
08:51:09.0109 3908  [ 253FC59ADE0525A9FD42070B309EC235 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp58a.dll
08:51:09.0109 3908  C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp58a.dll - ok
08:51:09.0109 3908  [ 690294999DF1248FAF85D95B31955D0C ] C:\WINDOWS\system32\trkwks.dll
08:51:09.0109 3908  C:\WINDOWS\system32\trkwks.dll - ok
08:51:09.0125 3908  [ 3B9263E137896E4D303494F116E00608 ] C:\WINDOWS\system32\wiaservc.dll
08:51:09.0125 3908  C:\WINDOWS\system32\wiaservc.dll - ok
08:51:09.0125 3908  [ FBCB6A7B45A57965B624DAA9978B7FBA ] C:\WINDOWS\system32\cfgmgr32.dll
08:51:09.0125 3908  C:\WINDOWS\system32\cfgmgr32.dll - ok
08:51:09.0140 3908  [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
08:51:09.0140 3908  C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
08:51:09.0140 3908  [ 45D5ABF76B71129865882D95A91E66E6 ] C:\WINDOWS\system32\mscms.dll
08:51:09.0140 3908  C:\WINDOWS\system32\mscms.dll - ok
08:51:09.0156 3908  [ 2826256E0B04A1473A0A89A066FA3775 ] C:\WINDOWS\system32\win32spl.dll
08:51:09.0156 3908  C:\WINDOWS\system32\win32spl.dll - ok
08:51:09.0156 3908  [ 913858CD930012CC51EA25477299B7C2 ] C:\WINDOWS\system32\netrap.dll
08:51:09.0156 3908  C:\WINDOWS\system32\netrap.dll - ok
08:51:09.0171 3908  [ 846750D84852A6B5210FCC88F39590FC ] C:\WINDOWS\system32\inetpp.dll
08:51:09.0171 3908  C:\WINDOWS\system32\inetpp.dll - ok
08:51:09.0171 3908  [ 203D5ECB5CCDA683053CDA42DFF03573 ] C:\WINDOWS\system32\netfxperf.dll
08:51:09.0171 3908  C:\WINDOWS\system32\netfxperf.dll - ok
08:51:09.0171 3908  [ C5A9554406507AB2AB341B221D97519D ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
08:51:09.0171 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll - ok
08:51:09.0187 3908  [ DAE4E1AD7CF2AA78424BD2B6BF2DB366 ] C:\WINDOWS\system32\wiavusd.dll
08:51:09.0187 3908  C:\WINDOWS\system32\wiavusd.dll - ok
08:51:09.0187 3908  [ 1C3473B18F156B971E5EFDA1D8B4CE46 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
08:51:09.0187 3908  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
08:51:09.0203 3908  [ 2E61C409474416CC78D66300F1BCB722 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
08:51:09.0203 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll - ok
08:51:09.0203 3908  [ F1430F5D20F4BB71A003209C3DB3ADDF ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
08:51:09.0203 3908  C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll - ok
08:51:09.0203 3908  [ 0645AAAD99C516182EA6CBAD0D3238EC ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
08:51:09.0203 3908  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll - ok
08:51:09.0218 3908  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
08:51:09.0218 3908  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll - ok
08:51:09.0218 3908  [ 7152C3BABE5F5F438CAE0866D5D97D94 ] C:\WINDOWS\system32\query.dll
08:51:09.0218 3908  C:\WINDOWS\system32\query.dll - ok
08:51:09.0234 3908  [ 6798618B8308C47FAF3FE127645CD561 ] C:\WINDOWS\system32\fxsperf.dll
08:51:09.0234 3908  C:\WINDOWS\system32\fxsperf.dll - ok
08:51:09.0234 3908  [ 1B086DD0B2E545520EE08796C272B7D9 ] C:\WINDOWS\system32\perfdisk.dll
08:51:09.0234 3908  C:\WINDOWS\system32\perfdisk.dll - ok
08:51:09.0250 3908  [ 713B5C1876CFC66B078CB24EDD7360EB ] C:\WINDOWS\system32\perfnet.dll
08:51:09.0250 3908  C:\WINDOWS\system32\perfnet.dll - ok
08:51:09.0250 3908  [ 9C46196C7198A2D4CD727215E269098D ] C:\Programmi\VirITeXp\VIRITSVC.EXE
08:51:09.0250 3908  C:\Programmi\VirITeXp\VIRITSVC.EXE - ok
08:51:09.0265 3908  [ 4947ABE477BE2882F64802583C6A71F7 ] C:\WINDOWS\system32\perfos.dll
08:51:09.0265 3908  C:\WINDOWS\system32\perfos.dll - ok
08:51:09.0265 3908  [ A8D79DD8B5CAE645EC6722C1E2DF0E10 ] C:\Programmi\VirITeXp\SCAN.DLL
08:51:09.0265 3908  C:\Programmi\VirITeXp\SCAN.DLL - ok
08:51:09.0281 3908  [ 2EAAD12DD46433170AD1A288890CF54D ] C:\WINDOWS\system32\perfproc.dll
08:51:09.0281 3908  C:\WINDOWS\system32\perfproc.dll - ok
08:51:09.0281 3908  [ 0FA53B0C9D634D7654C1E925E542C5F2 ] C:\Programmi\VirITeXp\dbghelp.dll
08:51:09.0281 3908  C:\Programmi\VirITeXp\dbghelp.dll - ok
08:51:09.0281 3908  [ EF38373333E77C9BCF3B42129624B6DA ] C:\Programmi\VirITeXp\VIRITTDI.SYS
08:51:09.0281 3908  C:\Programmi\VirITeXp\VIRITTDI.SYS - ok
08:51:09.0312 3908  [ 64B79231189936341B0E1E8C7C1CCFFF ] C:\Programmi\VirITeXp\VIRITUPG.DLL
08:51:09.0343 3908  C:\Programmi\VirITeXp\VIRITUPG.DLL - ok
08:51:09.0343 3908  [ 5144AE67D60EC653F97DDF3FEED29E77 ] C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:51:09.0343 3908  C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
08:51:09.0343 3908  [ 1F8C9993184F6F2ADE5DAC1236C05333 ] C:\Programmi\VirITeXp\ZLIB.DLL
08:51:09.0343 3908  C:\Programmi\VirITeXp\ZLIB.DLL - ok
08:51:09.0359 3908  [ 40911E98D0F1CBB1015F2101982F1DDF ] C:\WINDOWS\system32\wbem\wmisvc.dll
08:51:09.0359 3908  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
08:51:09.0359 3908  [ A02F896D20134D7A5F609A368CECBBA1 ] C:\WINDOWS\system32\vssapi.dll
08:51:09.0359 3908  C:\WINDOWS\system32\vssapi.dll - ok
08:51:09.0375 3908  [ 5EB87BA0B93CA7E894FC8002E3CE4C2A ] C:\Programmi\File comuni\Microsoft Shared\Windows Live\SQMAPI.DLL
08:51:09.0375 3908  C:\Programmi\File comuni\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
08:51:09.0375 3908  [ 73220E1101463BA0B367D4F047B5E006 ] C:\Programmi\VirITeXp\VIRITWMI.DLL
08:51:09.0375 3908  C:\Programmi\VirITeXp\VIRITWMI.DLL - ok
08:51:09.0390 3908  [ 9F01A3E421D96ECFAA08EBBB8436EACF ] C:\WINDOWS\system32\comsvcs.dll
08:51:09.0390 3908  C:\WINDOWS\system32\comsvcs.dll - ok
08:51:09.0406 3908  [ 82142A607D6832DAEB1EE3E9F270207E ] C:\WINDOWS\system32\clusapi.dll
08:51:09.0406 3908  C:\WINDOWS\system32\clusapi.dll - ok
08:51:09.0406 3908  [ 315F0DDD3EFC7FB737DFE13328B3C37C ] C:\WINDOWS\system32\colbact.dll
08:51:09.0406 3908  C:\WINDOWS\system32\colbact.dll - ok
08:51:09.0421 3908  [ 1856ED7DAC1FEA37C31288610273FAAC ] C:\WINDOWS\system32\mtxclu.dll
08:51:09.0421 3908  C:\WINDOWS\system32\mtxclu.dll - ok
08:51:09.0421 3908  [ 84665BAA2B806E93F8CF1DC4F4324346 ] C:\WINDOWS\system32\resutils.dll
08:51:09.0421 3908  C:\WINDOWS\system32\resutils.dll - ok
08:51:09.0437 3908  [ E9477D55E2DE0D0AAC535EE80D077C64 ] C:\WINDOWS\system32\wbem\esscli.dll
08:51:09.0437 3908  C:\WINDOWS\system32\wbem\esscli.dll - ok
08:51:09.0437 3908  [ C8BD698B9DCF8C4C048F3CEF6BD1851E ] C:\WINDOWS\system32\wbem\wbemcore.dll
08:51:09.0437 3908  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
08:51:09.0453 3908  [ B35FCD73317D0B73AF3E8E9050835BD6 ] C:\WINDOWS\system32\wbem\fastprox.dll
08:51:09.0453 3908  C:\WINDOWS\system32\wbem\fastprox.dll - ok
08:51:09.0453 3908  [ F0DD5CEA69EFD6C28772FF409A362CDC ] C:\WINDOWS\system32\wbem\wbemsvc.dll
08:51:09.0453 3908  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
08:51:09.0468 3908  [ 95312C435CF16B344CF5FB331C13B983 ] C:\WINDOWS\system32\wbem\repdrvfs.dll
08:51:09.0468 3908  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
08:51:09.0468 3908  [ A1DAF324EE74EB4AF15BD2D0EF29D682 ] C:\WINDOWS\system32\wbem\wmiutils.dll
08:51:09.0468 3908  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
08:51:09.0484 3908  [ 926D921C93CFF1E19EF4DE3E4C8368CA ] C:\WINDOWS\system32\wscsvc.dll
08:51:09.0484 3908  C:\WINDOWS\system32\wscsvc.dll - ok
08:51:09.0484 3908  [ 6104F397127FEECCCE16BD16CD3843A6 ] C:\WINDOWS\system32\drivers\xpc4drvr.sys
08:51:09.0484 3908  C:\WINDOWS\system32\drivers\xpc4drvr.sys - ok
08:51:09.0500 3908  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
08:51:09.0500 3908  C:\WINDOWS\system32\wuaueng.dll - ok
08:51:09.0500 3908  [ CC48415E6C7CBAA441A3D6A6DCCBCFA6 ] C:\WINDOWS\system32\wuauserv.dll
08:51:09.0500 3908  C:\WINDOWS\system32\wuauserv.dll - ok
08:51:09.0515 3908  [ 376732B64D458251F38247FB885F3C44 ] C:\WINDOWS\system32\mspatcha.dll
08:51:09.0515 3908  C:\WINDOWS\system32\mspatcha.dll - ok
08:51:09.0515 3908  [ 74440B20A4CC9B28E256315E0E44AE07 ] C:\WINDOWS\system32\msxml3.dll
08:51:09.0515 3908  C:\WINDOWS\system32\msxml3.dll - ok
08:51:09.0515 3908  [ 076D11B52F066ED33E3A80F8070A3E2E ] C:\WINDOWS\system32\browser.dll
08:51:09.0515 3908  C:\WINDOWS\system32\browser.dll - ok
08:51:09.0531 3908  [ 152C0555925DFE028E3148FD215146BB ] C:\WINDOWS\system32\ipnathlp.dll
08:51:09.0531 3908  C:\WINDOWS\system32\ipnathlp.dll - ok
08:51:09.0531 3908  [ 7C008A49062981795B40EAA7565AB05F ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
08:51:09.0531 3908  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
08:51:09.0546 3908  [ 8BD5F71489EC369B386C65B3916E87F2 ] C:\WINDOWS\system32\wbem\wbemess.dll
08:51:09.0546 3908  C:\WINDOWS\system32\wbem\wbemess.dll - ok
08:51:09.0546 3908  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
08:51:09.0546 3908  C:\WINDOWS\system32\wups.dll - ok
08:51:09.0546 3908  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
08:51:09.0546 3908  C:\WINDOWS\system32\wups2.dll - ok
08:51:09.0562 3908  [ 66AA43F07DEE7FE8F22D955E06A1FB0B ] C:\Programmi\FileZilla FTP Client\fzshellext.dll
08:51:09.0562 3908  C:\Programmi\FileZilla FTP Client\fzshellext.dll - ok
08:51:09.0562 3908  [ 915E16D548435E9A27E1BF5CC233E6A6 ] C:\WINDOWS\system32\mydocs.dll
08:51:09.0562 3908  C:\WINDOWS\system32\mydocs.dll - ok
08:51:09.0562 3908  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
08:51:09.0562 3908  C:\WINDOWS\system32\wuauclt.exe - ok
08:51:09.0578 3908  [ 20CC5F031100F9DBA44A87DB3ECB868C ] C:\WINDOWS\system32\ntshrui.dll
08:51:09.0578 3908  C:\WINDOWS\system32\ntshrui.dll - ok
08:51:09.0578 3908  [ 304F15E2898347FCCAF116A65DEAA22B ] C:\Programmi\WinSCP\DragExt.dll
08:51:09.0578 3908  C:\Programmi\WinSCP\DragExt.dll - ok
08:51:09.0593 3908  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
08:51:09.0593 3908  C:\WINDOWS\system32\wuapi.dll - ok
08:51:09.0593 3908  [ 73BE88DF9B642D232F27B4D0BB23C55E ] C:\WINDOWS\system32\wbem\ncprov.dll
08:51:09.0593 3908  C:\WINDOWS\system32\wbem\ncprov.dll - ok
08:51:09.0609 3908  [ C3F00DF9FEC67EFE0D698AC432261FC3 ] C:\WINDOWS\system32\pschdprf.dll
08:51:09.0609 3908  C:\WINDOWS\system32\pschdprf.dll - ok
08:51:09.0609 3908  [ 204C86E44404A965DB178D9A769FD002 ] C:\WINDOWS\system32\traffic.dll
08:51:09.0609 3908  C:\WINDOWS\system32\traffic.dll - ok
08:51:09.0625 3908  [ A78EE88512361BC1B9BDF9985E3A8EF4 ] C:\WINDOWS\system32\rsvpperf.dll
08:51:09.0625 3908  C:\WINDOWS\system32\rsvpperf.dll - ok
08:51:09.0640 3908  [ B5D91042119372579F52237AFBA5AE7F ] C:\WINDOWS\system32\tapiperf.dll
08:51:09.0640 3908  C:\WINDOWS\system32\tapiperf.dll - ok
08:51:09.0640 3908  [ 3B90A7B999B837AB74C1669CE94F11E3 ] C:\WINDOWS\system32\perfctrs.dll
08:51:09.0640 3908  C:\WINDOWS\system32\perfctrs.dll - ok
08:51:09.0640 3908  [ 690161A7B211C5D8B237E1B6E49401AB ] C:\WINDOWS\system32\perfts.dll
08:51:09.0640 3908  C:\WINDOWS\system32\perfts.dll - ok
08:51:09.0656 3908  [ C42C6C2166DE8248CE38E7FE76AA373E ] C:\WINDOWS\system32\utildll.dll
08:51:09.0656 3908  C:\WINDOWS\system32\utildll.dll - ok
08:51:09.0671 3908  [ FE5A5329CCFC33D645C33077FF04F052 ] C:\WINDOWS\system32\termsrv.dll
08:51:09.0671 3908  C:\WINDOWS\system32\termsrv.dll - ok
08:51:09.0671 3908  [ 4BFF19449E6E422BB0A314BE61BAFE13 ] C:\WINDOWS\system32\wbem\wbemcons.dll
08:51:09.0671 3908  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
08:51:09.0687 3908  [ 02DC62D00B92C4F7332E0C8EB37B697B ] C:\WINDOWS\system32\icaapi.dll
08:51:09.0687 3908  C:\WINDOWS\system32\icaapi.dll - ok
08:51:09.0687 3908  [ 3294AF37E37AF48FFECE1063EFEC8AD8 ] C:\WINDOWS\system32\mstlsapi.dll
08:51:09.0687 3908  C:\WINDOWS\system32\mstlsapi.dll - ok
08:51:09.0703 3908  [ 39C767BD6D99C23D28E71B6E0CBA3129 ] C:\WINDOWS\system32\drivers\LVPr2Mon.sys
08:51:09.0703 3908  C:\WINDOWS\system32\drivers\LVPr2Mon.sys - ok
08:51:09.0703 3908  [ 97AAC45A375168C6A2297BEEB9692E31 ] C:\Programmi\HP\Digital Imaging\bin\hpqcxs08.dll
08:51:09.0703 3908  C:\Programmi\HP\Digital Imaging\bin\hpqcxs08.dll - ok
08:51:09.0703 3908  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
08:51:09.0718 3908  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
08:51:09.0718 3908  [ 79FE2E0D7859738225816658F0BB2A0D ] C:\WINDOWS\system32\alg.exe
08:51:09.0718 3908  C:\WINDOWS\system32\alg.exe - ok
08:51:09.0718 3908  [ 9FC50A59A11A7B0FA9A949DA82E3EE64 ] C:\WINDOWS\system32\wbem\wmiaprpl.dll
08:51:09.0718 3908  C:\WINDOWS\system32\wbem\wmiaprpl.dll - ok
08:51:09.0734 3908  [ 014530C51B8CFACEACF86E7C3C8C5BAB ] C:\WINDOWS\system32\wbem\cimwin32.dll
08:51:09.0734 3908  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
08:51:09.0734 3908  [ 327861D8064A3ED44FB91D4286515CBB ] C:\Programmi\File comuni\Logitech\LVMVFM\LVPrcInj.dll
08:51:09.0734 3908  C:\Programmi\File comuni\Logitech\LVMVFM\LVPrcInj.dll - ok
08:51:09.0750 3908  [ 332D734E3FE6014BFE8A6A041DA958E0 ] C:\WINDOWS\system32\netcfgx.dll
08:51:09.0750 3908  C:\WINDOWS\system32\netcfgx.dll - ok
08:51:09.0750 3908  [ DDEC469EE07CBE4EC649D95B932630C7 ] C:\WINDOWS\system32\wbem\framedyn.dll
08:51:09.0750 3908  C:\WINDOWS\system32\wbem\framedyn.dll - ok
08:51:09.0765 3908  [ 9AD52F10C0BCC960BE4478571D37EC01 ] C:\WINDOWS\system32\loadperf.dll
08:51:09.0765 3908  C:\WINDOWS\system32\loadperf.dll - ok
08:51:09.0765 3908  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe
08:51:09.0765 3908  C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe - ok
08:51:09.0781 3908  [ 81FD02839FDB10ACF0EC40B809B9F8CC ] C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:51:09.0781 3908  C:\WINDOWS\system32\wbem\wmiapsrv.exe - ok
08:51:09.0781 3908  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.135\goopdate.dll
08:51:09.0781 3908  C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.135\goopdate.dll - ok
08:51:09.0796 3908  [ 1CD90894F2090814B48C62219FA69E0A ] C:\WINDOWS\system32\wbem\wmiapres.dll
08:51:09.0796 3908  C:\WINDOWS\system32\wbem\wmiapres.dll - ok
08:51:09.0796 3908  [ 6766A0E11A6FB8F7582703E708359481 ] C:\WINDOWS\system32\dskquota.dll
08:51:09.0796 3908  C:\WINDOWS\system32\dskquota.dll - ok
08:51:09.0812 3908  [ EC1DE9D1B243F9F55C5ECEF5BE6D44AF ] C:\Programmi\COMODO\COMODO Internet Security\platform.dll
08:51:09.0812 3908  C:\Programmi\COMODO\COMODO Internet Security\platform.dll - ok
08:51:09.0812 3908  [ 1C074E661B522E7F40D3534089FC225E ] C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.135\psuser.dll
08:51:09.0812 3908  C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Dati applicazioni\Google\Update\1.3.21.135\psuser.dll - ok
08:51:09.0828 3908  [ 93AA270F261712762F50D1008B720BE2 ] C:\Programmi\COMODO\COMODO Internet Security\scanners\common.cav
08:51:09.0828 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\common.cav - ok
08:51:09.0828 3908  [ B321B17EC88DE967221D911698545FCE ] C:\Programmi\COMODO\COMODO Internet Security\signmgr.dll
08:51:09.0828 3908  C:\Programmi\COMODO\COMODO Internet Security\signmgr.dll - ok
08:51:09.0843 3908  [ E91B5FA739CCF7F0CE3282B0FCFA5108 ] C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLIDSVCM.EXE
08:51:09.0843 3908  C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
08:51:09.0859 3908  [ AF40A76DDB6FB7376096A050421F5440 ] C:\Programmi\COMODO\COMODO Internet Security\scanners\fileid.cav
08:51:09.0859 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\fileid.cav - ok
08:51:09.0859 3908  [ 79137A2414DCE313516D0CCA0A44786E ] C:\Programmi\COMODO\COMODO Internet Security\scanners\pkann.dll
08:51:09.0859 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\pkann.dll - ok
08:51:09.0875 3908  [ B5ED2B62F0606893B6A397FD01867782 ] C:\Programmi\COMODO\COMODO Internet Security\scanners\mach32.dll
08:51:09.0875 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\mach32.dll - ok
08:51:09.0875 3908  [ D743C51EF8E128AD21DF34214F18E3C2 ] C:\Programmi\COMODO\COMODO Internet Security\scanners\white.cav
08:51:09.0875 3908  C:\Programmi\COMODO\COMODO Internet Security\scanners\white.cav - ok
08:51:09.0890 3908  [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\COMPAQ~1\IMPOST~1\Temp\4D3E137B-DAA4-46A1-B1A2-AE8EFE328BC1.exe
08:51:09.0890 3908  C:\DOCUME~1\COMPAQ~1\IMPOST~1\Temp\4D3E137B-DAA4-46A1-B1A2-AE8EFE328BC1.exe - ok
08:51:09.0890 3908  [ 06A1ECB63DF139EC639E084D4AB3C9D7 ] C:\WINDOWS\system\hpsysdrv.exe
08:51:09.0890 3908  C:\WINDOWS\system\hpsysdrv.exe - ok
08:51:09.0906 3908  [ 3E7A11C1C4EBD2C3C52197238DF4E14B ] C:\WINDOWS\system32\Hdaudpropshortcut.exe
08:51:09.0906 3908  C:\WINDOWS\system32\Hdaudpropshortcut.exe - ok
08:51:09.0906 3908  [ D51A4B912A90554B580A2401DFAB02A5 ] C:\WINDOWS\system32\rundll32.exe
08:51:09.0906 3908  C:\WINDOWS\system32\rundll32.exe - ok
08:51:09.0921 3908  [ E7BE65BF79906AEBC698E077D53F6A1C ] C:\WINDOWS\AGRSMMSG.exe
08:51:09.0921 3908  C:\WINDOWS\AGRSMMSG.exe - ok
08:51:09.0937 3908  [ 99B69A5697F622A192B2C1E0D55B48AB ] C:\WINDOWS\system32\linkinfo.dll
08:51:09.0937 3908  C:\WINDOWS\system32\linkinfo.dll - ok
08:51:09.0937 3908  [ 4A95F15B706B8FD9EC8715B6401EAB7B ] C:\hp\KBD\kbd.exe
08:51:09.0937 3908  C:\hp\KBD\kbd.exe - ok
08:51:09.0953 3908  [ 310F1E8A0781887BA1C217448C0E4D48 ] C:\WINDOWS\SMINST\Recguard.exe
08:51:09.0953 3908  C:\WINDOWS\SMINST\Recguard.exe - ok
08:51:09.0953 3908  [ 8B3D67651581347878CD7D8FBF016A64 ] C:\WINDOWS\system32\ps2.EXE
08:51:09.0953 3908  C:\WINDOWS\system32\ps2.EXE - ok
08:51:09.0968 3908  [ 16A78C1594DD4870460FD6EF4876A8AB ] C:\WINDOWS\system32\oledlg.dll
08:51:09.0968 3908  C:\WINDOWS\system32\oledlg.dll - ok
08:51:09.0968 3908  [ 35F4F1D866416C0F92D36206F3C52C85 ] C:\WINDOWS\SOUNDMAN.EXE
08:51:09.0968 3908  C:\WINDOWS\SOUNDMAN.EXE - ok
08:51:09.0984 3908  [ F68A3F0D63BE926ED65ED1C8C5B03A3D ] C:\hp\KBD\led.dll
08:51:09.0984 3908  C:\hp\KBD\led.dll - ok
08:51:09.0984 3908  [ 805834D1A0B293B85F8FC3912343D073 ] C:\WINDOWS\ALCWZRD.EXE
08:51:09.0984 3908  C:\WINDOWS\ALCWZRD.EXE - ok
08:51:09.0984 3908  [ EEA7DDED2F11300B4B00C81D93A14898 ] C:\WINDOWS\system32\olepro32.dll
08:51:09.0984 3908  C:\WINDOWS\system32\olepro32.dll - ok
08:51:10.0000 3908  [ 03F469B6C2E743565A41AD0997FD493C ] C:\WINDOWS\system32\nvcpl.dll
08:51:10.0000 3908  C:\WINDOWS\system32\nvcpl.dll - ok
08:51:10.0000 3908  [ D1EAECFBC6777802079CB4EE5EA3E31D ] C:\hp\KBD\usb.dll
08:51:10.0000 3908  C:\hp\KBD\usb.dll - ok
08:51:10.0015 3908  [ DCC1E6B7D3161C5587DB7BD172D44060 ] C:\WINDOWS\system32\Hdaudpropres.dll
08:51:10.0015 3908  C:\WINDOWS\system32\Hdaudpropres.dll - ok
08:51:10.0015 3908  [ 78CB739158EFE0D1DBB4198872C6D6CE ] C:\WINDOWS\ALCMTR.EXE
08:51:10.0015 3908  C:\WINDOWS\ALCMTR.EXE - ok
08:51:10.0031 3908  [ D1308031093AE0FBCB903422E8E6C55E ] C:\WINDOWS\system32\dsound.dll
08:51:10.0031 3908  C:\WINDOWS\system32\dsound.dll - ok
08:51:10.0031 3908  [ 9819C4F68686E9FE1D62DD0D4767DDD5 ] C:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe
08:51:10.0031 3908  C:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe - ok
08:51:10.0046 3908  [ 30A0B072E647757CEDDA9E306D410410 ] C:\Programmi\COMODO\COMODO Internet Security\cfp.exe
08:51:10.0046 3908  C:\Programmi\COMODO\COMODO Internet Security\cfp.exe - ok
08:51:10.0046 3908  [ D001B3135F19DF10E693357FC0CBC3D1 ] C:\Programmi\VirITeXp\MONITOR.EXE
08:51:10.0046 3908  C:\Programmi\VirITeXp\MONITOR.EXE - ok
08:51:10.0062 3908  [ 2AE54F20144B2AF570587A8478D02885 ] C:\hp\KBD\PS2.dll
08:51:10.0062 3908  C:\hp\KBD\PS2.dll - ok
08:51:10.0062 3908  [ 205DB5A0DD15DF2657EFD4B64D0CC4A3 ] C:\hp\KBD\msg.dll
08:51:10.0062 3908  C:\hp\KBD\msg.dll - ok
08:51:10.0078 3908  [ B09E76A4524E8F543EC32B27C7972E38 ] C:\Programmi\VirITeXp\TGDLG.DLL
08:51:10.0078 3908  C:\Programmi\VirITeXp\TGDLG.DLL - ok
08:51:10.0078 3908  [ 9A3DA5E7ED07F5FC488C6A5F9FFE4D8E ] C:\Programmi\VirITeXp\VSMAIL.EXE
08:51:10.0078 3908  C:\Programmi\VirITeXp\VSMAIL.EXE - ok
08:51:10.0078 3908  [ 5048DB37A482447EE60D23EE4356D23E ] C:\hp\KBD\OSD.DLL
08:51:10.0078 3908  C:\hp\KBD\OSD.DLL - ok
08:51:10.0093 3908  [ 43221D88ADC872BED846B0B094EB293E ] C:\Programmi\EPSON\Creativity Suite\Event Manager\EEventManager.exe
08:51:10.0093 3908  C:\Programmi\EPSON\Creativity Suite\Event Manager\EEventManager.exe - ok
08:51:10.0093 3908  [ 3C73C6447195D2006802F4FF452496A7 ] C:\hp\KBD\sct.dll
08:51:10.0093 3908  C:\hp\KBD\sct.dll - ok
08:51:10.0109 3908  [ 22467B6E808F7B4160F9D2775A1DC47B ] C:\hp\KBD\onl.dll
08:51:10.0109 3908  C:\hp\KBD\onl.dll - ok
08:51:10.0109 3908  [ 9DBB99E127077208C525A95A2CD6CE2F ] C:\hp\KBD\aol.dll
08:51:10.0109 3908  C:\hp\KBD\aol.dll - ok
08:51:10.0125 3908  [ 02BBC5611029757D1E096E039BA94853 ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdisp5a.exe
08:51:10.0125 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdisp5a.exe - ok
08:51:10.0125 3908  [ 4D197238FDFAA5793D1B0961AAEF649A ] C:\Programmi\EPSON\Creativity Suite\Event Manager\Mfc42.dll
08:51:10.0125 3908  C:\Programmi\EPSON\Creativity Suite\Event Manager\Mfc42.dll - ok
08:51:10.0140 3908  [ 0E280A4A6805A752F30F2981D6C4603C ] C:\hp\KBD\url.dll
08:51:10.0140 3908  C:\hp\KBD\url.dll - ok
08:51:10.0140 3908  [ 261E5E3602941656A1442B255C936B9E ] C:\hp\KBD\cfg.dll
08:51:10.0140 3908  C:\hp\KBD\cfg.dll - ok
08:51:10.0156 3908  [ 03E0CDD5CCF362593EA52B0151750D0A ] C:\Programmi\File comuni\Logitech\LComMgr\Communications_Helper.exe
08:51:10.0156 3908  C:\Programmi\File comuni\Logitech\LComMgr\Communications_Helper.exe - ok
08:51:10.0156 3908  [ 074ABA35074639E0CB744FD0DEC42278 ] C:\Programmi\VirITeXp\TGRES.DLL
08:51:10.0156 3908  C:\Programmi\VirITeXp\TGRES.DLL - ok
08:51:10.0171 3908  [ 60DB5561F7B646FA217E9EA6561E6705 ] C:\hp\KBD\msikbdif.dll
08:51:10.0171 3908  C:\hp\KBD\msikbdif.dll - ok
08:51:10.0171 3908  [ 3EDC875F3990ACB71CB432C0A51F653D ] C:\WINDOWS\system32\msvcirt.dll
08:51:10.0171 3908  C:\WINDOWS\system32\msvcirt.dll - ok
08:51:10.0187 3908  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
08:51:10.0187 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
08:51:10.0187 3908  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
08:51:10.0187 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
08:51:10.0203 3908  [ 37482D8C36B68D52280294F0AFC6A564 ] C:\WINDOWS\system32\nvrsit.dll
08:51:10.0203 3908  C:\WINDOWS\system32\nvrsit.dll - ok
08:51:10.0203 3908  [ 6C645D7DF2462697BC7A086E328607D5 ] C:\Programmi\Logitech\QuickCam10\QuickCam10.exe
08:51:10.0203 3908  C:\Programmi\Logitech\QuickCam10\QuickCam10.exe - ok
08:51:10.0203 3908  [ B948993BC485CFFEADE246F1C66652E8 ] C:\WINDOWS\system32\WMVCore.dll
08:51:10.0203 3908  C:\WINDOWS\system32\WMVCore.dll - ok
08:51:10.0218 3908  [ 3481E6E8EE407D5E8AFB5E1B03A5D346 ] C:\Programmi\COMODO\COMODO Internet Security\cmdhtml.dll
08:51:10.0218 3908  C:\Programmi\COMODO\COMODO Internet Security\cmdhtml.dll - ok
08:51:10.0218 3908  [ 4E03135C6B43689649293D6CA6C73DD0 ] C:\WINDOWS\system32\mfc42loc.dll
08:51:10.0218 3908  C:\WINDOWS\system32\mfc42loc.dll - ok
08:51:10.0218 3908  [ FF2CD18B6A3E087392E4F0A255FF45E5 ] C:\Programmi\VirITeXp\WEBFILTER.DLL
08:51:10.0218 3908  C:\Programmi\VirITeXp\WEBFILTER.DLL - ok
08:51:10.0234 3908  [ 191EF021E81971407A18E4CC5F980108 ] C:\WINDOWS\system32\drmclien.dll
08:51:10.0234 3908  C:\WINDOWS\system32\drmclien.dll - ok
08:51:10.0234 3908  [ 97CB7E049A2E329EBECC10DBF4A85513 ] C:\WINDOWS\system32\msdmo.dll
08:51:10.0234 3908  C:\WINDOWS\system32\msdmo.dll - ok
08:51:10.0250 3908  [ FCA710EA9C6CF5E55B4CBE60D57EF493 ] C:\WINDOWS\system32\msvfw32.dll
08:51:10.0250 3908  C:\WINDOWS\system32\msvfw32.dll - ok
08:51:10.0250 3908  [ E44B398529B246EE56240F49BEA26299 ] C:\Programmi\VirITeXp\NDISAPI.DLL
08:51:10.0250 3908  C:\Programmi\VirITeXp\NDISAPI.DLL - ok
08:51:10.0265 3908  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
08:51:10.0265 3908  C:\WINDOWS\system32\webcheck.dll - ok
08:51:10.0265 3908  [ 815CC2B190907CF933696E6C491B06EB ] C:\WINDOWS\system32\mlang.dll
08:51:10.0265 3908  C:\WINDOWS\system32\mlang.dll - ok
08:51:10.0281 3908  [ 72F12CA8AA35C87A54CC7349D81D9D0D ] C:\WINDOWS\system32\wmasf.dll
08:51:10.0281 3908  C:\WINDOWS\system32\wmasf.dll - ok
08:51:10.0281 3908  [ 631308542F26A40B3C28001F56ADF0B7 ] C:\WINDOWS\system32\wmidx.dll
08:51:10.0281 3908  C:\WINDOWS\system32\wmidx.dll - ok
08:51:10.0281 3908  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
08:51:10.0281 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll - ok
08:51:10.0296 3908  [ F63465BBCE7059EA281ECAFF7590E1E8 ] C:\Programmi\File comuni\Logitech\LComMgr\LVComSX.exe
08:51:10.0296 3908  C:\Programmi\File comuni\Logitech\LComMgr\LVComSX.exe - ok
08:51:10.0296 3908  [ 8B071DAE78DDE69E4B7B02A193A30D94 ] C:\WINDOWS\system32\stobject.dll
08:51:10.0296 3908  C:\WINDOWS\system32\stobject.dll - ok
08:51:10.0312 3908  [ 54A01A18829C95EE0F1FDFABB832CE0B ] C:\WINDOWS\system32\batmeter.dll
08:51:10.0312 3908  C:\WINDOWS\system32\batmeter.dll - ok
08:51:10.0312 3908  [ C637FC4638A96165256B28D38DE7B953 ] C:\Programmi\HP\HP Software Update\hpwuschd2.exe
08:51:10.0312 3908  C:\Programmi\HP\HP Software Update\hpwuschd2.exe - ok
08:51:10.0328 3908  [ F63CB6DBE268EA0620C67A90CF43885E ] C:\Programmi\VirITeXp\myreg.qwe
08:51:10.0328 3908  C:\Programmi\VirITeXp\myreg.qwe - ok
08:51:10.0328 3908  [ 0F7BA4E92E8B9E751B2D73E0FDF70D79 ] C:\WINDOWS\system32\asycfilt.dll
08:51:10.0328 3908  C:\WINDOWS\system32\asycfilt.dll - ok
08:51:10.0343 3908  [ 9D6DBE249EE42FC82FCB5C016EAD7B6E ] C:\WINDOWS\system32\sti.dll
08:51:10.0343 3908  C:\WINDOWS\system32\sti.dll - ok
08:51:10.0343 3908  [ 33FEA6CE39EDDB253BFCB0CF42BF3988 ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpres532.dll
08:51:10.0343 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpres532.dll - ok
08:51:10.0359 3908  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Programmi\File comuni\Java\Java Update\jusched.exe
08:51:10.0359 3908  C:\Programmi\File comuni\Java\Java Update\jusched.exe - ok
08:51:10.0359 3908  [ 5225673E3F28A251CC8449EFA7C82F03 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ITA.dll
08:51:10.0359 3908  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ITA.dll - ok
08:51:10.0375 3908  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\03282317.sys
08:51:10.0375 3908  C:\WINDOWS\system32\drivers\03282317.sys - ok
08:51:10.0375 3908  [ 9C4E38D98D4F52B5AB967E44BA44536E ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpui5a.dll
08:51:10.0375 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpui5a.dll - ok
08:51:10.0390 3908  [ 790426C7C1C9846301AA2215107D7097 ] C:\Programmi\Logitech\QuickCam10\QuickCam10Res.dll
08:51:10.0390 3908  C:\Programmi\Logitech\QuickCam10\QuickCam10Res.dll - ok
08:51:10.0390 3908  [ 6BF7DA3C5FB0F1A2678145EB4B519B4D ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdspl5a.dll
08:51:10.0390 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpdspl5a.dll - ok
08:51:10.0406 3908  [ 64E7113059513EF422A5D2CA928A0557 ] C:\WINDOWS\system32\atmlib.dll
08:51:10.0406 3908  C:\WINDOWS\system32\atmlib.dll - ok
08:51:10.0406 3908  [ A5C2621BCA114F3BA109050931B9413D ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpgraph5.dll
08:51:10.0406 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpgraph5.dll - ok
08:51:10.0421 3908  [ BA0B06B529AC6AF836FF656E0AB9313C ] C:\WINDOWS\system32\msisip.dll
08:51:10.0421 3908  C:\WINDOWS\system32\msisip.dll - ok
08:51:10.0421 3908  [ 5AE51C59F3C237E62F77EFCAF3BF4C1A ] C:\WINDOWS\system32\spool\drivers\w32x86\3\fpinter5.dll
08:51:10.0421 3908  C:\WINDOWS\system32\spool\drivers\w32x86\3\fpinter5.dll - ok
08:51:10.0437 3908  [ 977C9B2DAA5DD4503CA2B9A426746BA7 ] C:\WINDOWS\system32\wshext.dll
08:51:10.0437 3908  C:\WINDOWS\system32\wshext.dll - ok
08:51:10.0437 3908  [ 0AB23B85BF9E4EFFDB203199BC907552 ] C:\WINDOWS\system32\ksuser.dll
08:51:10.0437 3908  C:\WINDOWS\system32\ksuser.dll - ok
08:51:10.0453 3908  [ 6E3FD2BCA01882E71A420DD6AAB85B7A ] C:\Programmi\Logitech\QuickCam10\LogiMail.dll
08:51:10.0453 3908  C:\Programmi\Logitech\QuickCam10\LogiMail.dll - ok
08:51:10.0453 3908  [ E9AF8B12CFFC04C0F4399ED8E4D3826E ] C:\Programmi\Microsoft Silverlight\xapauthenticodesip.dll
08:51:10.0453 3908  C:\Programmi\Microsoft Silverlight\xapauthenticodesip.dll - ok
08:51:10.0468 3908  [ D862B7C58BC983166C0C574446E98653 ] C:\Programmi\File comuni\Logitech\LComMgr\LVMaEnum.dll
08:51:10.0468 3908  C:\Programmi\File comuni\Logitech\LComMgr\LVMaEnum.dll - ok
08:51:10.0468 3908  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Programmi\File comuni\Logitech\LComMgr\msvcp71.dll
08:51:10.0468 3908  C:\Programmi\File comuni\Logitech\LComMgr\msvcp71.dll - ok
08:51:10.0484 3908  [ 341FD9D4258C8BBB28F7002A74220B78 ] C:\Programmi\HP\Digital Imaging\bin\hpqtra08.exe
08:51:10.0484 3908  C:\Programmi\HP\Digital Imaging\bin\hpqtra08.exe - ok
08:51:10.0484 3908  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Programmi\File comuni\Logitech\LComMgr\msvcr71.dll
08:51:10.0484 3908  C:\Programmi\File comuni\Logitech\LComMgr\msvcr71.dll - ok
08:51:10.0500 3908  [ C44E7A5BEA311BD8F3DD973F107F24EC ] C:\Programmi\Internet Explorer\hmmapi.dll
08:51:10.0500 3908  C:\Programmi\Internet Explorer\hmmapi.dll - ok
08:51:10.0500 3908  [ 5E08F1F6CF8931BAE2B679734446CB32 ] C:\Programmi\LonWorks\Bin\sltalink.exe
08:51:10.0500 3908  C:\Programmi\LonWorks\Bin\sltalink.exe - ok
08:51:10.0515 3908  [ E208E2F15AE140CAFCE029075BB430EA ] C:\Programmi\Mozilla Thunderbird\mozMapi32_InUse.dll
08:51:10.0515 3908  C:\Programmi\Mozilla Thunderbird\mozMapi32_InUse.dll - ok
08:51:10.0515 3908  [ 961BA89BBF7B476DB3FC3D440500160B ] C:\Programmi\Outlook Express\msoe.dll
08:51:10.0515 3908  C:\Programmi\Outlook Express\msoe.dll - ok
08:51:10.0531 3908  [ A9D012939E9651CE0CFD7889947999B8 ] C:\WINDOWS\system32\msoert2.dll
08:51:10.0531 3908  C:\WINDOWS\system32\msoert2.dll - ok
08:51:10.0531 3908  [ DB3F6D76504D88BE2EDC8637380225D3 ] C:\WINDOWS\system32\msoeacct.dll
08:51:10.0531 3908  C:\WINDOWS\system32\msoeacct.dll - ok
08:51:10.0546 3908  [ 487B70D88AE51825E90C98E067205E60 ] C:\WINDOWS\system32\hticons.dll
08:51:10.0546 3908  C:\WINDOWS\system32\hticons.dll - ok
08:51:10.0546 3908  [ 696CBC17A3B59C7AF36AEDF5899EB641 ] C:\WINDOWS\system32\inetcomm.dll
08:51:10.0546 3908  C:\WINDOWS\system32\inetcomm.dll - ok
08:51:10.0562 3908  [ 8174569A04C8B6FE4E9406F1FD46397E ] C:\WINDOWS\system32\acctres.dll
08:51:10.0562 3908  C:\WINDOWS\system32\acctres.dll - ok
08:51:10.0562 3908  [ 566C4D17B9C1A6250A1D8F93EDCAB553 ] C:\WINDOWS\system32\inetres.dll
08:51:10.0562 3908  C:\WINDOWS\system32\inetres.dll - ok
08:51:10.0578 3908  [ 3F1B13B5918F42DB62CAE03DA051C25C ] C:\Programmi\Outlook Express\msoeres.dll
08:51:10.0578 3908  C:\Programmi\Outlook Express\msoeres.dll - ok
08:51:10.0578 3908  [ 193690EB639D6C7221FB2ABB148555FD ] C:\Programmi\HP\Digital Imaging\bin\hpquio08.dll
08:51:10.0578 3908  C:\Programmi\HP\Digital Imaging\bin\hpquio08.dll - ok
08:51:10.0593 3908  [ 6B85F1A9DCE45D45BFFAD3222C21F297 ] C:\WINDOWS\system32\tapisrv.dll
08:51:10.0593 3908  C:\WINDOWS\system32\tapisrv.dll - ok
08:51:10.0593 3908  [ 28CF91B178A8DB0CD1BD9D8AB551B258 ] C:\WINDOWS\system32\security.dll
08:51:10.0593 3908  C:\WINDOWS\system32\security.dll - ok
08:51:10.0609 3908  [ 4BA02FE4E2F2B908D71C2FE6806761AE ] C:\WINDOWS\system32\unimdm.tsp
08:51:10.0609 3908  C:\WINDOWS\system32\unimdm.tsp - ok
08:51:10.0609 3908  [ 92F7F6A0C50AA071CED285886FC863E4 ] C:\WINDOWS\system32\uniplat.dll
08:51:10.0609 3908  C:\WINDOWS\system32\uniplat.dll - ok
08:51:10.0625 3908  [ E299DC00E2953097C62D124F06DD637D ] C:\WINDOWS\system32\upnp.dll
08:51:10.0625 3908  C:\WINDOWS\system32\upnp.dll - ok
08:51:10.0625 3908  [ 5480F6FAF0728CB73640AB5C5AF5DE1C ] C:\Programmi\File comuni\Logitech\LComMgr\LVComCX.dll
08:51:10.0625 3908  C:\Programmi\File comuni\Logitech\LComMgr\LVComCX.dll - ok
08:51:10.0640 3908  [ D8AA0D58DCB8355740C211321DE6DC3E ] C:\Programmi\COMODO\COMODO Internet Security\themes\black.theme
08:51:10.0640 3908  C:\Programmi\COMODO\COMODO Internet Security\themes\black.theme - ok
08:51:10.0640 3908  [ B05EDF0879D79CC323D09BEE9AE5B4E3 ] C:\Programmi\HP\Digital Imaging\bin\hpqtra08.rsc
08:51:10.0640 3908  C:\Programmi\HP\Digital Imaging\bin\hpqtra08.rsc - ok
08:51:10.0656 3908  [ 46645A81C9673DB68D846DFD3DE4297A ] C:\WINDOWS\system32\ssdpapi.dll
08:51:10.0656 3908  C:\WINDOWS\system32\ssdpapi.dll - ok
08:51:10.0671 3908  [ 190134696CF50E4DADD05D63F6E169B1 ] C:\Programmi\COMODO\COMODO Internet Security\themes\blue.theme
08:51:10.0671 3908  C:\Programmi\COMODO\COMODO Internet Security\themes\blue.theme - ok
08:51:10.0671 3908  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
08:51:10.0671 3908  C:\WINDOWS\system32\drivers\http.sys - ok
08:51:10.0671 3908  ============================================================
08:51:10.0671 3908  Scan finished
08:51:10.0671 3908  ============================================================
08:51:10.0937 3900  Detected object count: 0
08:51:10.0937 3900  Actual detected object count: 0
 

 

 

aswMBR log

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-14 08:56:48
-----------------------------
08:56:48.875    OS Version: Windows 5.1.2600 Service Pack 3
08:56:48.875    Number of processors: 2 586 0x401
08:56:48.890    ComputerName: UB0011  UserName:
08:56:56.687    Initialize success
09:18:02.515    AVAST engine defs: 13031301
09:19:46.015    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e
09:19:46.015    Disk 0 Vendor: WDC_WD5000AADS-00S9B0 01.00A01 Size: 476940MB BusType: 3
09:19:46.046    Disk 0 MBR read successfully
09:19:46.046    Disk 0 MBR scan
09:19:46.140    Disk 0 unknown MBR code
09:19:46.140    Disk 0 Partition 1 00     0B        FAT32 RECOVERY     3196 MB offset 63
09:19:46.203    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       200000 MB offset 6546960
09:19:46.218    Disk 0 Partition - 00     05     Extended            273739 MB offset 416147760
09:19:46.250    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       273739 MB offset 416147823
09:19:46.312    Disk 0 scanning sectors +976767120
09:19:46.453    Disk 0 scanning C:\WINDOWS\system32\drivers
09:20:28.500    Service scanning
09:20:59.921    Service VIRITTDI C:\Programmi\VirITeXp\VIRITTDI.SYS **LOCKED** 32
09:21:02.046    Modules scanning
09:21:06.765    Disk 0 trace - called modules:
09:21:06.796    ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll intelide.sys PCIIDEX.SYS
09:21:06.796    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ab51ab8]
09:21:06.796    3 CLASSPNP.SYS[ba108fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-e[0x8ab55b00]
09:21:07.359    AVAST engine scan C:\WINDOWS
09:21:13.359    AVAST engine scan C:\WINDOWS\system32
09:27:34.500    AVAST engine scan C:\WINDOWS\system32\drivers
09:28:15.546    AVAST engine scan C:\Documents and Settings\Compaq_Proprietario
09:45:53.625    AVAST engine scan C:\Documents and Settings\All Users
09:48:07.703    Scan finished successfully
09:50:21.421    Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Compaq_Proprietario\Desktop\MBR.dat"
09:50:21.437    The log file has been saved successfully to "C:\Documents and Settings\Compaq_Proprietario\Desktop\aswMBR_2013_03_14.txt"

 

ESET scan log

C:\Documents and Settings\Compaq_Proprietario\Dati applicazioni\Sun\Java\Deployment\cache\6.0\11\c30b-6ab25d19    Java/Exploit.CVE-2012-1723.BI trojan    cleaned by deleting - quarantined
C:\Documents and Settings\Compaq_Proprietario\Desktop\utility\STViewerSetup.exe    Win32/Toolbar.Babylon application    cleaned by deleting - quarantined
C:\Documents and Settings\Compaq_Proprietario\Documenti\PDFCreator-1_2_3_setup.exe    multiple threats    cleaned by deleting - quarantined
C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Temp\AskSLib.dll    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Documents and Settings\Compaq_Proprietario\Impostazioni locali\Temp\foxCD.tmp\Foxit Reader en5.4.2.901(toolbar) Setup.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Programmi\IAR Systems\Embedded Workbench 6.4\arm\examples\ST\STM32F2xx\Silica_Xynergy_STM32\STM32F2xx_StdPeriph_Lib\Utilities\Third_Party\PC_Software\Tftpd32-3.51-setup.exe    a variant of Win32/TFTPD32.A application    cleaned by deleting - quarantined
C:\Programmi\STPViewer\MyBabylonTB.exe    Win32/Toolbar.Babylon application    cleaned by deleting - quarantined
D:\Diego\prj\ub\503\thermo\sw\tftp\tftpd32.exe    a variant of Win32/TFTPD32.A application    cleaned by deleting - quarantined
D:\Diego\Programmi installati\utility\cpu-z_1.57.1-setup-en.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
D:\Diego\Programmi installati\utility\tftpd32.400.zip    a variant of Win32/TFTPD32.A application    deleted - quarantined
D:\tmp\gunsetup.exe    multiple threats    cleaned by deleting - quarantined
 



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 15 March 2013 - 05:49 AM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Make sure you are connected to the Internet and double-click on the it to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


 



#7 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 15 March 2013 - 12:37 PM

Bad news... JRT fail to start
AdwCleaner ask for PC reboot - After reboot I see log and Adwcleaner terminate correctly (I think)
I start JRT but antivirus found virus WIN32.Agent3.ALSD
I closed antivirus and firewall and I tried to cancel the JRT.EXE file but file is locked and cannot be cancelled
I tried to download a new copy without success
but I have completed the last two steps

 

After reboot antivius open autmatically a popup warning window program JRT.EXE contain virus WIN32.Agent3.ALSD and cannot be removed
 

Logs

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Versione database: v2013.03.15.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Compaq_Proprietario :: UB0011 [amministratore]

15/03/2013 16.43.32
mbam-log-2013-03-15 (16-43-32).txt

Tipo di scansione: Scansione veloce
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 229724
Tempo impiegato: 19 minuti, 36 secondi

Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)

Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)

Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)

Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)

Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)

Cartelle rilevate: 0
(non sono stati rilevati elementi nocivi)

File rilevati: 0
(non sono stati rilevati elementi nocivi)

(fine)
 

 

MiniToolBox

MiniToolBox by Farbar  Version:05-03-2013
Ran by Compaq_Proprietario (administrator) on 15-03-2013 at 17:11:20
Running from "C:\Documents and Settings\Compaq_Proprietario\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Configurazione IP di Windows



Svuotata la cache del resolver DNS.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "127.0.0.1"

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek RTL8139/810x Family Fast Ethernet NIC = Connessione alla rete locale (LAN) (Connected)
1394 Net Adapter = Connessione 1394 (Connected)


# ----------------------------------
# Configurazione IP interfaccia         
# ----------------------------------
pushd interface ip


# Configurazione IP interfaccia per "Connessione alla rete locale (LAN)"

set address name="Connessione alla rete locale (LAN)" source=dhcp
set dns name="Connessione alla rete locale (LAN)" source=dhcp register=PRIMARY
set wins name="Connessione alla rete locale (LAN)" source=dhcp


popd
# Termine della configurazione IP interfaccia




Configurazione IP di Windows



        Nome host . . . . . . . . . . . . . . : UB0011

        Suffisso DNS primario  . . . . . . .  :

        Tipo nodo . . . . . . . . . . . . . .  : Ibrido

        Routing IP abilitato. . . . . . . . . : No

        Proxy WINS abilitato . . . . . . . .  : No

        Elenco di ricerca suffissi DNS. . . . : homenet.telecomitalia.it



Scheda Ethernet Connessione alla rete locale (LAN):



        Suffisso DNS specifico per connessione: homenet.telecomitalia.it

        Descrizione . . . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC

        Indirizzo fisico. . . . . . . . . . . : 00-11-D8-DE-EC-CF

        DHCP abilitato. . . . . . . . . . . . : Sì

        Configurazione automatica abilitata   : Sì

        Indirizzo IP. . . . . . . . . . . . . : 192.168.1.54

        Subnet mask . . . . . . . . . . . . . : 255.255.255.0

        Gateway predefinito . . . . . . . . . : 192.168.1.1

        Server DHCP . . . . . . . . . . . . . : 192.168.1.1

        Server DNS . . . . . . . . . . . . .  : 192.168.1.1

        Lease ottenuto. . . . . . . . . . . . : venerdì 15 marzo 2013 16.22.05

        Scadenza lease . . . . . . . . . . .  : venerdì 15 marzo 2013 22.22.05

Server:  alicegate.homenet.telecomitalia.it
Address:  192.168.1.1

Nome:    google.com
Addresses:  173.194.40.1, 173.194.40.2, 173.194.40.3, 173.194.40.4
      173.194.40.5, 173.194.40.6, 173.194.40.7, 173.194.40.8, 173.194.40.9
      173.194.40.14, 173.194.40.0



Esecuzione di Ping google.com [173.194.40.6] con 32 byte di dati:



Risposta da 173.194.40.6: byte=32 durata=58ms TTL=54

Risposta da 173.194.40.6: byte=32 durata=58ms TTL=54



Statistiche Ping per 173.194.40.6:

    Pacchetti: Trasmessi = 2, Ricevuti = 2, Persi = 0 (0% persi),

Tempo approssimativo percorsi andata/ritorno in millisecondi:

    Minimo = 58ms, Massimo =  58ms, Medio =  58ms

Server:  alicegate.homenet.telecomitalia.it
Address:  192.168.1.1

Nome:    yahoo.com
Addresses:  98.139.183.24, 206.190.36.45, 98.138.253.109



Esecuzione di Ping yahoo.com [98.139.183.24] con 32 byte di dati:



Risposta da 98.139.183.24: byte=32 durata=802ms TTL=50

Risposta da 98.139.183.24: byte=32 durata=329ms TTL=49



Statistiche Ping per 98.139.183.24:

    Pacchetti: Trasmessi = 2, Ricevuti = 2, Persi = 0 (0% persi),

Tempo approssimativo percorsi andata/ritorno in millisecondi:

    Minimo = 329ms, Massimo =  802ms, Medio =  565ms



Esecuzione di Ping 127.0.0.1 con 32 byte di dati:



Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128

Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128



Statistiche Ping per 127.0.0.1:

    Pacchetti: Trasmessi = 2, Ricevuti = 2, Persi = 0 (0% persi),

Tempo approssimativo percorsi andata/ritorno in millisecondi:

    Minimo = 0ms, Massimo =  0ms, Medio =  0ms

===========================================================================
Elenco interfacce
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 d8 de ec cf ...... Realtek RTL8139/810x Family Fast Ethernet NIC - Miniport dell'Utilità di pianificazione pacchetti
===========================================================================
===========================================================================
Route attive:
Indirizzo rete             Mask             Gateway       Interfac.  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.54      30
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0     192.168.1.54    192.168.1.54      20
      192.168.1.0    255.255.255.0     192.168.1.54    192.168.1.54      30
     192.168.1.54  255.255.255.255        127.0.0.1       127.0.0.1      30
    192.168.1.255  255.255.255.255     192.168.1.54    192.168.1.54      30
        224.0.0.0        240.0.0.0     192.168.1.54    192.168.1.54      30
  255.255.255.255  255.255.255.255     192.168.1.54    192.168.1.54      1
Gateway predefinito:       192.168.1.1
===========================================================================
Route permanenti:
  Nessuno
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [247296] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [247296] (Microsoft Corporation)
Catalog5 04 C:\Programmi\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [247296] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/05/2013 07:43:20 PM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore ideframework.dll, versione 6.4.1.2317, indirizzo errore 0x0007c40f.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso

Error: (02/06/2013 10:20:46 AM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore ideframework.dll, versione 6.4.1.2317, indirizzo errore 0x00062c1f.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso

Error: (02/01/2013 11:31:22 AM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore ideframework.dll, versione 6.4.1.2317, indirizzo errore 0x0007c5b3.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso

Error: (01/15/2013 11:45:27 AM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore emodelviewer.exe, versione 12.3.0.113, modulo che ha provocato l'errore msvcr90.dll, versione 9.0.30729.6161, indirizzo errore 0x00058293.
Elaborazione evento specifico al supporto per [emodelviewer.exe!ws!] in corso

Error: (01/15/2013 11:40:08 AM) (Source: Microsoft Smartcard CSP) (User: )
Description: SCardUIDlgSelectCardW returned unexpected error code, 0x8010002e, Impossibile trovare un lettore smart card.

Error: (01/15/2013 11:40:07 AM) (Source: Microsoft Smartcard CSP) (User: )
Description: SCardUIDlgSelectCardW returned unexpected error code, 0x8010002e, Impossibile trovare un lettore smart card.

Error: (01/15/2013 11:35:36 AM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore emodelviewer.exe, versione 12.3.0.113, modulo che ha provocato l'errore msvcr90.dll, versione 9.0.30729.6161, indirizzo errore 0x00058293.
Elaborazione evento specifico al supporto per [emodelviewer.exe!ws!] in corso

Error: (01/11/2013 06:30:04 PM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore ideframework.dll, versione 6.4.1.2317, indirizzo errore 0x0007c5b3.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso

Error: (01/09/2013 07:21:07 PM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore debuggergui.dll, versione 6.4.1.2317, indirizzo errore 0x0002e4db.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso

Error: (01/04/2013 07:20:32 PM) (Source: Application Error) (User: )
Description: Applicazione che ha provocato l'errore iaridepm.exe, versione 6.4.1.2317, modulo che ha provocato l'errore ideframework.dll, versione 6.4.1.2317, indirizzo errore 0x0007c40f.
Elaborazione evento specifico al supporto per [iaridepm.exe!ws!] in corso


System errors:
=============
Error: (03/15/2013 04:22:14 PM) (Source: 0) (User: )
Description:

Error: (03/15/2013 04:22:00 PM) (Source: Dhcp) (User: )
Description: Il lease 192.168.1.54 dell'indirizzo IP della scheda di rete con indirizzo 0011D8DEECCF è stato
negato dal server DHCP 0.0.0.0. Il server DHCP ha inviato un messaggio DHCPNACK.

Error: (03/15/2013 01:46:20 PM) (Source: 0) (User: )
Description:

Error: (03/15/2013 01:46:07 PM) (Source: Dhcp) (User: )
Description: Il lease 192.168.1.54 dell'indirizzo IP della scheda di rete con indirizzo 0011D8DEECCF è stato
negato dal server DHCP 0.0.0.0. Il server DHCP ha inviato un messaggio DHCPNACK.

Error: (03/14/2013 09:54:44 AM) (Source: 0) (User: )
Description:

Error: (03/14/2013 09:54:30 AM) (Source: Dhcp) (User: )
Description: Il lease 192.168.1.54 dell'indirizzo IP della scheda di rete con indirizzo 0011D8DEECCF è stato
negato dal server DHCP 0.0.0.0. Il server DHCP ha inviato un messaggio DHCPNACK.

Error: (03/14/2013 08:55:24 AM) (Source: 0) (User: )
Description:

Error: (03/14/2013 08:55:10 AM) (Source: Dhcp) (User: )
Description: Il lease 192.168.1.54 dell'indirizzo IP della scheda di rete con indirizzo 0011D8DEECCF è stato
negato dal server DHCP 0.0.0.0. Il server DHCP ha inviato un messaggio DHCPNACK.

Error: (03/14/2013 08:48:57 AM) (Source: Service Control Manager) (User: )
Description: All'avvio non è stato possibile caricare i seguenti driver:
ppa3

Error: (03/14/2013 08:48:39 AM) (Source: 0) (User: )
Description:


Microsoft Office Sessions:
=========================
Error: (03/05/2013 07:43:20 PM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317ideframework.dll6.4.1.23170007c40f

Error: (02/06/2013 10:20:46 AM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317ideframework.dll6.4.1.231700062c1f

Error: (02/01/2013 11:31:22 AM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317ideframework.dll6.4.1.23170007c5b3

Error: (01/15/2013 11:45:27 AM) (Source: Application Error)(User: )
Description: emodelviewer.exe12.3.0.113msvcr90.dll9.0.30729.616100058293

Error: (01/15/2013 11:40:08 AM) (Source: Microsoft Smartcard CSP)(User: )
Description: SCardUIDlgSelectCardW returned unexpected error code, 0x8010002e, Impossibile trovare un lettore smart card.

Error: (01/15/2013 11:40:07 AM) (Source: Microsoft Smartcard CSP)(User: )
Description: SCardUIDlgSelectCardW returned unexpected error code, 0x8010002e, Impossibile trovare un lettore smart card.

Error: (01/15/2013 11:35:36 AM) (Source: Application Error)(User: )
Description: emodelviewer.exe12.3.0.113msvcr90.dll9.0.30729.616100058293

Error: (01/11/2013 06:30:04 PM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317ideframework.dll6.4.1.23170007c5b3

Error: (01/09/2013 07:21:07 PM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317debuggergui.dll6.4.1.23170002e4db

Error: (01/04/2013 07:20:32 PM) (Source: Application Error)(User: )
Description: iaridepm.exe6.4.1.2317ideframework.dll6.4.1.23170007c40f


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 7.1.8)
7500_7600_7700_Help1 (Version: 1.00.0000)
7-Zip 9.20
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
ActiveState ActiveTcl 8.5.9.2 (Version: 8.5.9.2)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.265)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Agere Systems PCI Soft Modem
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2482017) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2497640) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2510531) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2530548) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2544521) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2559049) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2618444) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2647516) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2699988) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2722913) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2761465) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2792100) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2797052) (Version: 1)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB982381) (Version: 1)
Aggiornamento per Windows Internet Explorer 8 (KB2447568) (Version: 1)
Altium Designer Summer 09 (Version: 9.3.1.19182)
Alt-N ComAgent (Version: 13.0.1)
Bit4Id - miniLector (Version: 3.0)
Bit4id - Universal MW 2011 1.2.14.2 (Version: 1.2.14.2)
Bonjour (Version: 2.0.4.0)
bpd_scan_Carrier (Version: 3.00.0000)
BPDSoftware (Version: 140.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
Brother P-touch Editor 4.2 (Version: 4.2.012)
BufferChm (Version: 140.0.213.000)
CCleaner (Version: 3.15)
Cobian Backup 10
Cobian Backup 11 Gravity
COMODO Internet Security (Version: 5.3.50343.1263)
CPUID CPU-Z 1.57.1
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 140.0.213.000)
DocProc (Version: 140.0.100.000)
doxygen 1.8.0 (Version: 1.8.0)
Driver di Logitech® Camera
Echelon Interoperable Self-Installation Developer's Kit (Version: 4.00.11)
Echelon LNS Server (Version: 3.27.014)
Echelon LonMaker Turbo Edition (Version: 3.24.12)
Echelon LonPoint Software
Echelon LonScanner FX Protocol Analyzer (Version: 4.00.22)
Echelon Mini FX Evaluation Kit (Version: 4.01.02)
Echelon Multi-Port Router (Version: 1.00.16)
Echelon NodeBuilder Resource Editor (Version: 4.01.07)
Echelon OpenLDV 3.4 (Version: 3.40.016)
EPSON Attach To Email (Version: 1.01.0000)
EPSON Copy Utility 3 (Version: 3.2.0.0)
EPSON Event Manager (Version: 1.80.00)
EPSON File Manager (Version: 1.3.0.0)
EPSON Scan
EPSON Scan Assistant (Version: 1.10.00)
ESET Online Scanner v3
Fax (Version: 140.0.213.000)
FileZilla Client 3.5.3 (Version: 3.5.3)
FileZilla Server (Version: beta 0.9.41)
FinePrint
FirmaVerifica 2.2 (Version: 2.2.0.0)
Foxit Creator (Version: 3,0,2,0506)
Foxit PDF Editor (Version: 2.2.0.0205)
Foxit PDF IFilter (Version: 2.1.1.1503)
Foxit Reader (Version: 5.4.5.114)
FreeFileSync v5.0 (Version: 5.0)
Glary Undelete 1.6.0.262
Google Earth (Version: 6.1.0.5001)
Google Talk Plugin (Version: 3.15.2.12038)
Google Update Helper (Version: 1.3.21.135)
GPBaseService2 (Version: 140.0.212.000)
GPL Ghostscript (Version: 9.06)
Help and Support Additions
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HHD Software Free Hex Editor Neo 5.01 (Version: 5.1.1.4391)
HHD Software Free Serial Port Monitor 3.31 (Version: 3.31.0.0000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP OfficeJet L7300/L7500/7600/7700 (Version: 14.0)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPProductAssistant (Version: 140.0.213.000)
HpSdpAppCoreApp (Version: 3.00.0000)
HPSSupply (Version: 140.0.212.000)
HTML Executable IERuntime (Version: 3.2.2.2)
IAR Embedded Workbench for ARM (Version: 6.10.1)
IAR Embedded Workbench for ARM (Version: 6.40.1)
IAR Embedded Workbench for ARM_2 (C:\Programmi\IAR Systems\Embedded Workbench 6.0_2) (Version: 6.20.2)
InterVideo DiscLabel
InterVideo WinDVD Creator (Version: 2.5.14.426)
InterVideo WinDVD Player (Version: 5.0-B11.752)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 29 (Version: 6.0.290)
J-Link ARM V4.24f (Version: V4.24f)
J-Link ARM V4.36e (Version: V4.36e)
KBD
L7500 (Version: 140.0.000.000)
LibreOffice 3.5 (Version: 3.5.6.2)
Logitech Audio Echo Cancellation Component (Version: 10.00.1439)
Logitech QuickCam (Version: 10.00.1439)
Logitech Video Enumerator (Version: 10.00.1439)
LonMark Resource Files 13.00 (Version: 13.00.14)
LonWorks® SLTA-10
MailStore Home 7.1.0.7815 (Version: 7.1.0.7815)
Malwarebytes Anti-Malware versione 1.70.0.1100 (Version: 1.70.0.1100)
MarketResearch (Version: 140.0.214.000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Italian Language Pack (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Software Update for Web Folders  (English) 14 (Version: 14.0.6029.1000)
Microsoft SQL Server Compact 3.5 SP2 ITA (Version: 3.5.8080.0)
Microsoft Visio 2010 Service Pack 1 (SP1)
Microsoft Visio Standard 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MozBackup 1.5.1
Mozilla Firefox 16.0.2 (x86 it) (Version: 16.0.2)
Mozilla Maintenance Service (Version: 16.0.2)
Mozilla Thunderbird (3.1.19) (Version: 3.1.19 (it))
MPM (Version: 1.00.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network (Version: 140.0.215.000)
NVIDIA Drivers
OCR Software by I.R.I.S. 14.0 (Version: 14.0)
OLYMPUS CAMEDIA Master 4.2
OpenSSL 1.0.1e Light (32-bit)
Pacchetto driver Windows - IAR Systems (IJET) IARUSB  (05/23/2012 2.05) (Version: 05/23/2012 2.05)
Pacchetto provider Microsoft servizio crittografia smart card di base
PC-Doctor for Windows (Version: 1.06.002)
PDFCreator (Version: 1.2.0)
PerfV350 Guida utente
ProductContext (Version: 140.0.000.000)
PS2
QuickTime
Scan (Version: 140.0.167.000)
Scribus 1.4.1 (Version: 1.4.1)
Sentinel System Driver Installer 7.5.0 (Version: 7.5.0)
Shop for HP Supplies (Version: 14.0)
Simplicity Studio (Version: 1.08.0000)
Skype Click to Call (Version: 6.0.10297)
Skype™ 6.1 (Version: 6.1.129)
SmartWebPrinting (Version: 140.0.213.000)
Software per stampante EPSON
SolidWorks eDrawings 2012 (Version: 12.3.113)
SolutionCenter (Version: 140.0.214.000)
Sonic Express Labeler (Version: 1.0.0)
Sonic RecordNow! (Version: 7.22)
Status (Version: 140.0.256.000)
STP Viewer 2.3
TCP/IP Builder 1.9 (Version: 1.9)
TeamViewer 6 (Version: 6.0.10511)
TeamViewer 7 (Version: 7.0.14563)
Tera Term Pro
Texas Instruments SimpliciTI-IAR-1.2.0 (Version: 1.2.0)
TextPad 5 (Version: 5.4.2)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.213.000)
UMVPLStandalone (Version: 10.00.1439)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
VirIT eXplorer PRO (Version: 6.8.35)
VLC media player 2.0.1 (Version: 2.0.1)
WBFS Manager 3.0 (Version: 3.0)
Web Pages Converter (Version: 1.0.0)
WebEx
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 140.0.213.017)
Windows Driver Package - Segger (jlink) USB  (01/09/2007 2.6.5.0) (Version: 01/09/2007 2.6.5.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows XP Service Pack 3 (Version: 20080413.144514)
WinMerge 2.12.4 (Version: 2.12.4)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinSCP 4.3.8 (Version: 4.3.8)
Wireshark 1.4.4 (Version: 1.4.4)

========================= Devices: ================================

Name: L7500,192.168.1.84
Description: Officejet Pro L7500
Class Guid: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet Pro L7500
Description: Officejet Pro L7500
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 2047.29 MB
Available physical RAM: 1351.62 MB
Total Pagefile: 3430.11 MB
Available Pagefile: 2869.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.61 MB

========================= Partitions: =====================================

1 Drive c: (UB011sys) (Fixed) (Total:195.31 GB) (Free:138.04 GB) NTFS
2 Drive d: (UB011data) (Fixed) (Total:267.32 GB) (Free:232.9 GB) NTFS
6 Drive j: () (Removable) (Total:0.03 GB) (Free:0.03 GB) FAT
8 Drive z: (PRESARIO_RP) (Fixed) (Total:3.12 GB) (Free:0.37 GB) FAT32

========================= Users: ========================================

Account utente per \\UB0011

Administrator            ASPNET                   Compaq_Proprietario      
Guest                    HelpAssistant            SUPPORT_388945a0         
SUPPORT_fddfa904         
Esecuzione comando riuscita.


**** End of log ****
 

 

Farbar' Service Scanner

 

Farbar Service Scanner Version: 03-03-2013
Ran by Compaq_Proprietario (administrator) on 15-03-2013 at 17:17:00
Running from "C:\Documents and Settings\Compaq_Proprietario\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll
[2011-04-05 21:29] - [2008-04-13 18:13] - 0126976 ____A (Microsoft Corporation) 699EE7F752A25180AEB92C3A0EAEE440

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll
[2011-04-05 21:29] - [2009-04-20 18:18] - 0045568 ____A (Microsoft Corporation) B7A1162B1A26DF7B60D5D9500006096C

C:\WINDOWS\system32\ipnathlp.dll
[2011-04-05 21:31] - [2008-04-13 18:13] - 0332288 ____A (Microsoft Corporation) 152C0555925DFE028E3148FD215146BB

C:\WINDOWS\system32\netman.dll
[2011-04-05 21:32] - [2008-04-13 18:13] - 0198144 ____A (Microsoft Corporation) 02815B70FC4CA8611A926176F1C39FC2

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2011-04-05 21:33] - [2008-04-13 18:13] - 0145408 ____A (Microsoft Corporation) 40911E98D0F1CBB1015F2101982F1DDF

C:\WINDOWS\system32\srsvc.dll
[2011-04-05 21:33] - [2008-04-13 18:13] - 0171520 ____A (Microsoft Corporation) B3E3DA70A7A76E69B872DE3D06D32C19

C:\WINDOWS\system32\Drivers\sr.sys
[2011-04-05 21:33] - [2008-04-13 17:56] - 0073472 ____A (Microsoft Corporation) 618718CAE288BF7CBD8FCBAB2577D932

C:\WINDOWS\system32\wscsvc.dll
[2011-04-05 21:33] - [2008-04-13 18:13] - 0080896 ____A (Microsoft Corporation) 926D921C93CFF1E19EF4DE3E4C8368CA

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2011-04-05 21:33] - [2008-04-13 18:13] - 0145408 ____A (Microsoft Corporation) 40911E98D0F1CBB1015F2101982F1DDF

C:\WINDOWS\system32\wuauserv.dll
[2011-04-05 21:34] - [2008-04-13 18:13] - 0006656 ____A (Microsoft Corporation) CC48415E6C7CBAA441A3D6A6DCCBCFA6

C:\WINDOWS\system32\qmgr.dll
[2011-04-05 21:33] - [2008-04-13 18:13] - 0409088 ____A (Microsoft Corporation) 48C4763A9C8990FB48B73445BEB15D6A

C:\WINDOWS\system32\es.dll
[2011-04-05 21:31] - [2008-07-07 21:27] - 0253952 ____A (Microsoft Corporation) 8360CB9756E598A5C6214EACFB3677C3

C:\WINDOWS\system32\cryptsvc.dll
[2011-04-05 21:29] - [2008-04-13 18:13] - 0062464 ____A (Microsoft Corporation) B6FCBB157E9C8ABDCA4134C535535A8B

C:\WINDOWS\system32\svchost.exe
[2011-04-05 21:33] - [2008-04-13 18:14] - 0014336 ____A (Microsoft Corporation) BB8363ABEC09AA2F9B363484E282117C

C:\WINDOWS\system32\rpcss.dll
[2011-04-05 21:33] - [2009-02-09 11:51] - 0401408 ____A (Microsoft Corporation) BC4E0226341AAEC1222336B3AED86BAB

C:\WINDOWS\system32\services.exe
[2011-04-05 21:33] - [2009-02-09 12:22] - 0111104 ____A (Microsoft Corporation) 26845F272435302E0F3322E660A24F7D


Extra List:
=======
cmdHlp(9) Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x080000000400000001000000020000000300000009000000050000000600000007000000
IpSec Tag value is correct.

**** End of log ****

 

 

ADwCleaner

 

# AdwCleaner v2.114 - Logfile creato il 15/03/2013 alle 17:20:52
# Aggiornamento 05/03/2013 by Xplode
# Sistema Operativo : Microsoft Windows XP Service Pack 3 (32 bits)
# Utente : Compaq_Proprietario - UB0011
# Modalità Avvio : Modalità Normale
# Eseguito da : C:\Documents and Settings\Compaq_Proprietario\Desktop\AdwCleaner.exe
# Opzioni [Elimina]


***** [Servizi] *****


***** [File / Cartelle] *****

Cartella Eliminato : C:\Documents and Settings\Compaq_Proprietario\Dati applicazioni\Mozilla\Firefox\Profiles\errrbjrf.default\Conduit

***** [Registro] *****

Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Chiave Eliminata : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Chiave Eliminata : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Chiave Eliminata : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Chiave Eliminata : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Chiave Eliminata : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Chiave Eliminata : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}

***** [Browser Internet] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registro Pulito.

-\\ Mozilla Firefox v16.0.2 (it)

File : C:\Documents and Settings\Compaq_Proprietario\Dati applicazioni\Mozilla\Firefox\Profiles\errrbjrf.default\prefs.js

C:\Documents and Settings\Compaq_Proprietario\Dati applicazioni\Mozilla\Firefox\Profiles\errrbjrf.default\user.js ... Eliminato !

Eliminata : user_pref("browser.search.defaultenginename", "Crawler");

File : C:\Documents and Settings\Administrator\Dati applicazioni\Mozilla\Firefox\Profiles\fliizym2.default\prefs.js

[OK] File Pulito.

*************************

AdwCleaner[R1].txt - [1861 octets] - [15/03/2013 17:20:25]
AdwCleaner[S1].txt - [1947 octets] - [15/03/2013 17:20:52]

########## EOF - C:\AdwCleaner[S1].txt - [2007 octets] ##########
 

 

 

 

 

Junkware Removal Tool - FAIL !

 

 

 

 

Rkill

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/15/2013 05:33:12 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\windows\system\hpsysdrv.exe (PID: 1676) [WD-HEUR]
 * C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe (PID: 1928) [WD-HEUR]
 * C:\WINDOWS\system32\crypserv.exe (PID: 1368) [WD-HEUR]

3 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost

Program finished at: 03/15/2013 05:34:11 PM
Execution time: 0 hours(s), 0 minute(s), and 58 seconds(s)

 

 

Autoruns

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "AGRSMMSG"    "SoftModem Messaging Applet"    "Agere Systems"    "c:\windows\agrsmmsg.exe"
+ "Alcmtr"    "Realtek Azalia Audio - Event Monitor"    "Realtek Semiconductor Corp."    "c:\windows\alcmtr.exe"
+ "AlcWzrd"    "RealTek AlcWzrd Application"    "RealTek Semicoductor Corp."    "c:\windows\alcwzrd.exe"
+ "bit4id csp store register (M)"    "csp-certstore Dynamic Link Library"    "bit4id srl"    "c:\windows\system32\bit4upki-store.dll"
+ "Collegamento alla pagina delle proprietà di High Definition Audio"    "High Definition Audio Property Page Shortcut v1.0"    "Windows ® Server 2003 DDK provider"    "c:\windows\system32\hdaudpropshortcut.exe"
+ "COMODO Internet Security"    "COMODO Internet Security"    "COMODO"    "c:\programmi\comodo\comodo internet security\cfp.exe"
+ "EEventManager"    "EEventManager MFC Application"    "SEIKO EPSON CORPORATION"    "c:\programmi\epson\creativity suite\event manager\eeventmanager.exe"
+ "FinePrint Dispatcher v5"    "FinePrint"    "FinePrint Software, LLC"    "c:\windows\system32\spool\drivers\w32x86\3\fpdisp5a.exe"
+ "HP Software Update"    "hpwuSchd Application"    "Hewlett-Packard"    "c:\programmi\hp\hp software update\hpwuschd2.exe"
+ "hpsysdrv"    "hpsysdrv"    "Hewlett-Packard Company"    "c:\windows\system\hpsysdrv.exe"
+ "KBD"    "KBD EXE"    "Hewlett-Packard Company"    "c:\hp\kbd\kbd.exe"
+ "LogitechCommunicationsManager"    "Logitech Communications Manager"    "Logitech Inc."    "c:\programmi\file comuni\logitech\lcommgr\communications_helper.exe"
+ "LogitechQuickCamRibbon"    "QuickCam Software"    "Logitech Inc."    "c:\programmi\logitech\quickcam10\quickcam10.exe"
+ "LSBWatcher"    "LightScribe Burn Watcher"    "Hewlett-Packard Company"    "c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe"
+ "LVCOMSX"    "LVCom Server"    "Logitech Inc."    "c:\programmi\file comuni\logitech\lcommgr\lvcomsx.exe"
+ "NvCplDaemon"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
+ "PS2"    "PS2 EXE"    "Hewlett-Packard Company"    "c:\windows\system32\ps2.exe"
+ "Recguard"    "Recguard Application"    ""    "c:\windows\sminst\recguard.exe"
+ "SoundMan"    "Realtek Sound Manager"    "Realtek Semiconductor Corp."    "c:\windows\soundman.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\programmi\file comuni\java\java update\jusched.exe"
+ "VirIT Scan Mail"    "VirIT Scan Mail"    "TG Soft S.a.s."    "c:\programmi\viritexp\vsmail.exe"
+ "VIRITMONITOR"    "Monitor dei processi VirIT Security Monitor "    "TG Soft S.a.s. - www.tgsoft.it"    "c:\programmi\viritexp\monitor.exe"
"C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica"    ""    ""    ""
+ "HP Digital Imaging Monitor.lnk"    "HP Digital Imaging Monitor"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\bin\hpqtra08.exe"
+ "SLTALink Manager.lnk"    "SLTALink Manager"    "Echelon Corporation"    "c:\programmi\lonworks\bin\sltalink.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Outlook Express 6"    "Libreria dell'installazione di Outlook Express"    "Microsoft Corporation"    "c:\programmi\outlook express\setup50.exe"
+ "Rubrica 6"    "Libreria dell'installazione di Outlook Express"    "Microsoft Corporation"    "c:\programmi\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\documents and settings\compaq_proprietario\impostazioni locali\dati applicazioni\google\update\googleupdate.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\office14\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\help\hxds.dll"
+ "skype-ie-addon-data"    ""    ""    "File not found: C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll"
+ "skype4com"    "Skype for COM API"    "Skype Technologies"    "c:\programmi\file comuni\skype\skype4com.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components"    ""    ""    ""
+ "0"    ""    ""    "File not found: About:Home"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "TextPad"    "TextPad 32-bit shell extension DLL"    "Helios Software Solutions"    "c:\programmi\textpad 5\system\shellext32.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\programmi\7-zip\7-zip.dll"
+ "Comodo Antivirus"    "COMODO Internet Security"    "COMODO"    "c:\programmi\comodo\comodo internet security\cavshell.dll"
+ "ViritMenu"    "viritctx DLL"    ""    "c:\programmi\viritexp\viritctx.dll"
+ "WinMerge"    "WinMerge Shell Integration library"    "http://winmerge.org"    "c:\programmi\winmerge\shellextensionu.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\programmi\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\programmi\7-zip\7-zip.dll"
+ "WinMerge"    "WinMerge Shell Integration library"    "http://winmerge.org"    "c:\programmi\winmerge\shellextensionu.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\programmi\7-zip\7-zip.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""
+ "FileZilla3CopyHook"    "fzshellext Dynamic Link Library"    ""    "c:\programmi\filezilla ftp client\fzshellext.dll"
+ "WinSCPCopyHook"    "Drag&Drop shell extension for WinSCP (32-bit)"    "Martin Prikryl"    "c:\programmi\winscp\dragext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "00nView"    "NVIDIA Desktop Explorer, Version 100.35 "    "NVIDIA Corporation"    "c:\windows\system32\nvshell.dll"
+ "NvCplDesktopContext"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
+ "WinMerge"    "WinMerge Shell Integration library"    "http://winmerge.org"    "c:\programmi\winmerge\shellextensionu.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}"    ""    "The Document Foundation"    "c:\programmi\libreoffice 3.5\program\shlxthdl\shlxthdl.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Comodo Antivirus"    "COMODO Internet Security"    "COMODO"    "c:\programmi\comodo\comodo internet security\cavshell.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\programmi\malwarebytes' anti-malware\mbamext.dll"
+ "ViritMenu"    "viritctx DLL"    ""    "c:\programmi\viritexp\viritctx.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "HP Print Enhancer"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\programmi\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\programmi\java\jre7\bin\ssv.dll"
+ "VirIT eXplorer Antivirus"    "VirIT eXplorer Antivirus"    "TG Soft S.a.s. - www.tgsoft.it"    "c:\programmi\viritexp\viritie.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "Skype Click to Call"    ""    ""    "File not found: C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll"
+ "Visualizza o nasconde HP Smart Web Printing"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\smart web printing\hpswp_bho.dll"
"Task Scheduler"    ""    ""    ""
+ "GoogleUpdateTaskMachineCore.job"    "Google Installer"    "Google Inc."    "c:\programmi\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job"    "Google Installer"    "Google Inc."    "c:\programmi\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-3009106090-766583256-3711954545-1007Core.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\compaq_proprietario\impostazioni locali\dati applicazioni\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-3009106090-766583256-3711954545-1007UA.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\compaq_proprietario\impostazioni locali\dati applicazioni\google\update\googleupdate.exe"
+ "updater.exe.job"    ""    ""    "File not found: C:\ti\controlSUITE\updater.exe /silent"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AppMgmt"    "Offre servizi di installazione di software come Assegna, Pubblica e Rimuovi."    ""    "File not found: C:\WINDOWS\System32\appmgmts.dll"
+ "Bonjour Service"    "Consente la configurazione automatica di dispositivi hardware e servizi software sul network e ne rileva la presenza."    "Apple Inc."    "c:\programmi\bonjour\mdnsresponder.exe"
+ "cbVSCService11"    "Cobian Backup Gravity VSC Requester"    "CobianSoft, Luis Cobian"    "c:\programmi\cobian backup 11\cbvscservice11.exe"
+ "cmdAgent"    "COMODO Internet Security Helper Service"    "COMODO"    "c:\programmi\comodo\comodo internet security\cmdagent.exe"
+ "Crypkey License"    "CrypKey License Service"    "CrypKey (Canada) Ltd."    "c:\windows\system32\crypserv.exe"
+ "FileZilla Server"    "FileZilla Server"    "FileZilla Project"    "c:\programmi\filezilla server\filezilla server.exe"
+ "gupdate"    "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google."    "Google Inc."    "c:\programmi\google\update\googleupdate.exe"
+ "gupdatem"    "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google."    "Google Inc."    "c:\programmi\google\update\googleupdate.exe"
+ "hpqcxs08"    "HP CUE Context Manager Objects"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc"    "Questo servizio è in grado di rilevare e monitorare i dispositivi CUE sul sistema."    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\bin\hpqddsvc.dll"
+ "HPSLPSVC"    "Rileva e monitora lo stato e la configurazione delle periferiche HP collegate alla rete. Se il servizio viene interrotto e vengono modificati gli indirizzi IP delle periferiche in rete, potrebbe non essere più possibile utilizzarle"    "Hewlett-Packard Co."    "c:\programmi\hp\digital imaging\bin\hpslpsvc32.dll"
+ "JavaQuickStarterService"    "Prefetches JRE files for faster startup of Java applets and applications"    "Oracle Corporation"    "c:\programmi\java\jre7\bin\jqs.exe"
+ "LdvxBroker"    "Provides connection services for uplink-initiated xDriver sessions."    "Echelon Corporation"    "c:\programmi\lonworks\bin\ldvxbroker.exe"
+ "LnsMtsSvc"    "Provides support services to Echelon products in Microsoft Terminal Services (MTS) environments."    "Echelon Corporation"    "c:\programmi\lonworks\bin\lnsmtssvc.exe"
+ "LVPrcSrv"    "Webcam Effects Helper."    "Logitech Inc."    "c:\programmi\file comuni\logitech\lvmvfm\lvprcsrv.exe"
+ "LVSrvLauncher"    "Launcher for Logitech Video Components."    "Logitech Inc."    "c:\programmi\file comuni\logitech\srvlnch\srvlnch.exe"
+ "MozillaMaintenance"    "Mozilla Maintenance Service garantisce che sul computer sia sempre installata la versione più recente e più sicura di Mozilla Firefox. Mantenere Firefox costantemente aggiornato è fondamentale per la sicurezza durante la navigazione, per questo motivo Mozilla consiglia di lasciare attivo questo servizio."    "Mozilla Foundation"    "c:\programmi\mozilla maintenance service\maintenanceservice.exe"
+ "Net Driver HPZ12"    "Dot4Net Module"    "Hewlett-Packard"    "c:\windows\system32\hpzinw12.dll"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12"    "PmlDrv Module"    "Hewlett-Packard"    "c:\windows\system32\hpzipm12.dll"
+ "SkypeUpdate"    "Enables the detection, download and installation of updates for Skype."    "Skype Technologies"    "c:\programmi\skype\updater\updater.exe"
+ "viritsvcpro"    "VirIT eXplorer Service"    "TG Soft Sas   www.tgsoft.it"    "c:\programmi\viritexp\viritsvc.exe"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corporation"    "c:\programmi\file comuni\microsoft shared\windows live\wlidsvc.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "ACSSCR"    "PCSC/CCID IFD Handler"    "Advanced Card Systems Ltd"    "c:\windows\system32\drivers\a38usbxp.sys"
+ "AgereSoftModem"    "SoftModem Device Driver"    "Agere Systems"    "c:\windows\system32\drivers\agrsm.sys"
+ "altio"    "Direct Port IO Access"    "Altium Limited"    "c:\programmi\altium designer summer 09\system\drivers\altio.sys"
+ "Changer"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "cmdGuard"    "COMODO Internet Security Sandbox Driver"    "COMODO"    "c:\windows\system32\drivers\cmdguard.sys"
+ "cmdHlp"    "COMODO Internet Security Helper Driver"    "COMODO"    "c:\windows\system32\drivers\cmdhlp.sys"
+ "cpuz135"    "CPUID Driver"    "CPUID"    "c:\windows\system32\drivers\cpuz135_x32.sys"
+ "FTDIBUS"    "FTDIBUS USB Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftdibus.sys"
+ "FTSER2K"    "FTDIBUS Serial Device Driver"    "FTDI Ltd."    "c:\windows\system32\drivers\ftser2k.sys"
+ "HdAudAddService"    "High Definition Audio Function Driver v1.0"    "Windows ® Server 2003 DDK provider"    "c:\windows\system32\drivers\hdaudio.sys"
+ "HDAudBus"    "High Definition Audio Bus Driver v1.0a"    "Windows ® Server 2003 DDK provider"    "c:\windows\system32\drivers\hdaudbus.sys"
+ "i2omgmt"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "Inspect"    "COMODO Internet Security Firewall Driver"    "COMODO"    "c:\windows\system32\drivers\inspect.sys"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkhdaud.sys"
+ "Iviaspi"    "InterVideo ASPI Shell"    "InterVideo, Inc."    "c:\windows\system32\drivers\iviaspi.sys"
+ "jlink"    "SEGGER USB Driver"    "SEGGER Microcontroller Systeme GmbH"    "c:\windows\system32\drivers\jlink.sys"
+ "lbrtfdc"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "lonslta"    "Echelon SLTA-10 Device Driver"    "Echelon Corporation"    "c:\windows\system32\drivers\lonslta.sys"
+ "ltmodem5"    "LT Windows Modem"    "LT"    "c:\windows\system32\drivers\ltmdmnt.sys"
+ "LVcKap"    "Logitech Kernel Audio Processing Filter Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvckap.sys"
+ "LVMVDrv"    "Logitech Machine Vision Engine Loader"    "Logitech Inc."    "c:\windows\system32\drivers\lvmvdrv.sys"
+ "LVPr2Mon"    "Logitech ProcMon Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvpr2mon.sys"
+ "LVUSBSta"    "USB Statistic Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lvusbsta.sys"
+ "NDMSHLP"    "Device Monitor Helper Driver"    "HHD Software"    "c:\programmi\file comuni\hhd software\device monitor\ndmshlp.sys"
+ "NetworkX"    ""    ""    "c:\windows\system32\ckldrv.sys"
+ "NPF"    "npf.sys (NT5/6 x86) Kernel Driver"    "CACE Technologies, Inc."    "c:\windows\system32\drivers\npf.sys"
+ "nv"    "NVIDIA Compatible Windows 2000 Miniport Driver, Version 71.84 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nv4_mini.sys"
+ "PCIDump"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PciPPorts"    "Parallel driver for PCI Parallel Port."    ""    "c:\windows\system32\drivers\pcipports.sys"
+ "PciSPorts"    "Serial driver for PCI Serial Port."    ""    "c:\windows\system32\drivers\pcisports.sys"
+ "PDCOMP"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Pfc"    "Padus® ASPI Shell"    "Padus, Inc."    "c:\windows\system32\drivers\pfc.sys"
+ "PID_0928"    "Logitech Elch 2 Video Driver"    "Logitech Inc."    "c:\windows\system32\drivers\lv561av.sys"
+ "Ps2"    "PS2 SYS"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\ps2.sys"
+ "Ptilink"    "Driver Direct Parallel Link"    "Parallel Technologies, Inc."    "c:\windows\system32\drivers\ptilink.sys"
+ "PxHelp20"    "Px Engine Device Driver for Windows 2000/XP"    "Sonic Solutions"    "c:\windows\system32\drivers\pxhelp20.sys"
+ "rtl8139"    "Realtek RTL8139/810x Family NDIS 5.1 Drv"    "Realtek Semiconductor Corporation       "    "c:\windows\system32\drivers\r8139n51.sys"
+ "Secdrv"    "SafeDisc driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "Sentinel"    "Sentinel System Driver (NT Parallel driver)"    "SafeNet, Inc."    "c:\windows\system32\drivers\sentinel.sys"
+ "SerMon"    "Serial Monitor filter driver"    "HHD Software"    "c:\programmi\hhd software\free serial port monitor\sermon.sys"
+ "SNTNLUSB"    "Sentinel System USB Driver"    "SafeNet, Inc."    "c:\windows\system32\drivers\sntnlusb.sys"
+ "tgndis"    "TG Soft NDIS driver"    "TG Soft S.a.s."    "c:\windows\system32\drivers\tgndis.sys"
+ "VIRAGT"    "VirIT Agent System"    "TG Soft S.a.s."    "c:\windows\system32\drivers\viragt.sys"
+ "VIRITMON"    "VirIT Security Monitor"    "TG Soft S.a.s."    "c:\programmi\viritexp\viritmon.sys"
+ "VIRITTDI"    "VirIT Scan Mail"    "TG Soft S.a.s."    "c:\programmi\viritexp\virittdi.sys"
+ "WDICA"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
+ "WinDriver6"    "WinDriver Device Driver 10.21"    "Jungo"    "c:\windows\system32\drivers\windrvr6.sys"
+ "XilinxPC4Driver"    "Xilinx PC4 Driver"    "Xilinx, Inc."    "c:\windows\system32\drivers\xpc4drvr.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.iac2"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
+ "msacm.sl_anet"    "Audio codec for MS ACM"    "Sipro Lab Telecom Inc."    "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch"    "Codec audio DSP Group TrueSpeech™ per MSACM V3.50"    "DSP GROUP, INC."    "c:\windows\system32\tssoft32.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\system32\iccvid.dll"
+ "VIDC.I420"    "Video Codec"    "Logitech Inc."    "c:\windows\system32\lvcodec2.dll"
+ "vidc.iv31"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter"    ""    ""    ""
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "9x8Resize"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "ACELP.net Audio Decoder"    "ACELP.net Audio Decoder"    "Sipro Lab Telecom Inc."    "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\programmi\google\google earth\client\wavdest.ax"
+ "Bitmap"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "Correct Corrupted Audio"    "Correct Corrupted Audio Filter"    "Microsoft Corporation"    "c:\programmi\intervideo\common\bin\correcta.ax"
+ "Frame Eater"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "Indeo® audio software"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "InterVideo Audio Decoder"    "IVIAUDIO LOGID.27416"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviaudio.ax"
+ "InterVideo Audio Encoder"    "InterVideo?Audio Encoder Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviaenc.ax"
+ "InterVideo Audio Processor"    ""    ""    "c:\programmi\intervideo\common\bin\iviaudioprocess.ax"
+ "InterVideo Demultiplexer"    "InterVideo® MPEG System Demultiplexer Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ividemux.ax"
+ "InterVideo Demux"    "InterVideo® MPEG System Demultiplexer Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ividemxx.ax"
+ "Intervideo Disc Read2 Filter"    ""    ""    "c:\programmi\intervideo\common\bin\discread.ax"
+ "InterVideo Disc Write2 Filter"    "DiscRite"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\discrite.ax"
+ "InterVideo Down Scale Filter"    "InterVideo® Down Scale Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ividowns.ax"
+ "InterVideo DV Pre-Process"    "InterVideo DV Pre-Process Filter"    "InterVideo"    "c:\programmi\intervideo\common\bin\dvprocs.ax"
+ "InterVideo File Writer"    "InterVideo® File Writer Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviwrite.ax"
+ "InterVideo MpegInspect"    "InterVideo MpegInspect Filter"    "InterVideo"    "c:\programmi\intervideo\common\bin\mpginspc.ax"
+ "InterVideo Multiplexer"    "InterVideo® MPEG System Multiplexer Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ivimux.ax"
+ "InterVideo Navigator"    "IVINAV LOGID.27416"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ivinav.ax"
+ "InterVideo Pre-scaling Filter"    "InterVideo® PreScale Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviscale.ax"
+ "Intervideo SmartRender"    "Intervideo SmartRender Filter"    "Microsoft Corporation"    "c:\programmi\intervideo\common\bin\smartrnd.ax"
+ "InterVideo Still Capture"    "InterVideo® Still Capture Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviscapt.ax"
+ "InterVideo Stream Buffer Filter"    "InterVideo Stream Buffer Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\smbuffer.ax"
+ "InterVideo Stream Renderer"    "IinterVideo Stream Renderer Filter "    "InterVideo, Inc."    "c:\programmi\intervideo\common\bin\ivistreamrenderer.ax"
+ "InterVideo Subpicture Source"    "Subpicture Source Filter"    "InterVideo, Inc."    "c:\programmi\intervideo\common\bin\ivispic.ax"
+ "InterVideo Video Decoder"    "IVIVIDEO LOGID.27416"    " InterVideo Inc."    "c:\programmi\intervideo\common\bin\ivivideo.ax"
+ "InterVideo Video Encoder"    "InterVideo® MPEG Video Encoder Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\ivivenc.ax"
+ "InterVideo Wave Wrapper"    "InterVideo Wave Wrapper Filter"    "InterVideo Inc."    "c:\programmi\intervideo\common\bin\iviwavex.ax"
+ "MPEG Layer-3 Decoder"    "MPEG Layer-3 Audio Decoder"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codecx.ax"
+ "Record Queue"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "ShotDetect"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "Stetch"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter"    "WIA Stream Snapshot Filter"    "MyCompanyName"    "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT FormatConversion"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Import Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Interlacer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Log Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Switch Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Virtual Source"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
+ "WMT Volume"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\programmi\movie maker\wmm2filt.dll"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options"    ""    ""    ""
+ "Notepad.exe"    "TextPad"    "Helios Software Solutions"    "c:\programmi\textpad 5\textpad.exe"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls"    ""    ""    ""
+ "         C:\WINDOWS\system32\guard32.dll"    "COMODO Internet Security"    "COMODO"    "c:\windows\system32\guard32.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\programmi\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "Brother PT-2700 Monitor"    "Language Monitor DLL"    "Brother Industries, Ltd."    "c:\windows\system32\pt27l.dll"
+ "EPSON V6 2KMonitor604"    "EPSON Bi-directional Monitor"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_sl2604.dll"
+ "FPR5:"    "FinePrint"    "FinePrint Software, LLC"    "c:\windows\system32\fpmon5.dll"
+ "PCL hpz3l58a"    "LanguageMonitor"    "Hewlett-Packard Company"    "c:\windows\system32\hpz3l58a.dll"
+ "PDFCreator"    ""    ""    "c:\windows\system32\pdfcmnnt.dll"
+ "SUGG1 Langmon"    "Language Monitor for Status Monitor"    "Samsung Electronics."    "c:\windows\system32\sugg1lmk.dll"


 



#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 15 March 2013 - 01:34 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

 



#9 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 16 March 2013 - 02:54 AM

Thanks ! narenxp

I followed your instructions I hope that all problems are solved


While removing java my antivirus show a warning popup with this message: the program NPJPI142_03 run autmatically
After uninstalling java I checked the directory
\ programs \ java
There are two directories
j2re1.4.2_03
jre6 with only one file (I deleted this directory)

thanks again one last question
all programs and reports that I have used I can simply delete them by putting them in the trash

 

 

Uhm... last check

After printing text file with PDFCreator printer, appear a Mircosoft Visio install windows (?)

I stopped visio installation but return again the install window 4/5 times and after print start normally

I have removed PDF creator and Visio (I am sorry but I am very frustrated)



#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 16 March 2013 - 03:39 AM

You can remove the tools used.
 

After printing text file with PDFCreator printer, appear a Mircosoft Visio install windows (?)

I stopped visio installation but return again the install window 4/5 times and after print start normally

I have removed PDF creator and Visio (I am sorry but I am very frustrated)

 

I dont understand.What is the issue here ?



#11 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 16 March 2013 - 04:08 AM

I open a text file with my editor and I start print text file

I need convert text file to PDF file. PDFcreator is a free utility to do this using a procedure like printing

I select PDFcreator printer in program print dialog and I create a PDF file

Normally when print process start the program ask for pdf output filename and create it

For small text file the process is fast.

 

Today when I select print to PDFcreator printer  the program don't show the usal dialog for select output filename as expected

But appear a small window silmilar to windows install process with

title: Microsoft Visio Preparing install

gathering informations and an animate progress bar start scroll

and button "abort"

I select abort but the window close and reopen I select always abort whenever the windows appear (4/5 times)

Only after the usal PDFcreator dialog window appear and I can convert my file

 

But after this strnage behavior my navigation speed is very very slow (7KB)



#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 16 March 2013 - 04:16 AM

This is has nothing do with malware.

 

Please reinstall the software and try once again.



#13 accacca

accacca
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 18 March 2013 - 09:22 AM

PC seems to work fine
I think the problem is solved

I reinstalled an old version of PDFCreator is working properly
thanks narenxp



#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:04 PM

Posted 18 March 2013 - 09:26 AM

:welcome:






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users