Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » HACKTOOL.ROOTKIT

4 pages: 1 [2] 3 4
HACKTOOL.ROOTKIT Opzioni
Topic Precedente · Topic Sucessivo
disel
Inviato: Tuesday, July 14, 2009 10:36:04 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
scusate il ritardo ma sono stato via alcuni giorni,ho scaricato regCleaner, ma di Av non vedo niente, solo norton e panda
Torna in alto
 
disel
Inviato: Tuesday, July 14, 2009 10:55:22 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
questo è il log ( ho pastrocchiato un pò )


######################################

Avira Registry Cleaner
14.07.2009 22:25:18

######################################


The registry was scanned for the following words:
avira,h+bedv,x-avcsd,antivir,avgio,avgnt,avgntflt,ssmdrv,avipbb,aveservice,shell extension for malware


Access denied: S-1-5-21-1177238915-606747145-839522115-1004
Access denied: SAM
Access denied: SECURITY
Access denied: Pending Help Session
Access denied: Credentials
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories


HKEY_CURRENT_USER\software\panda software\panda antivirus lite
HKEY_LOCAL_MACHINE\software\classes\*\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\drive\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\file\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\folder\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu.1
HKEY_LOCAL_MACHINE\system\controlset001\services\ssmdrv
HKEY_LOCAL_MACHINE\system\controlset002\services\ssmdrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv

Number of found keys: 10


DELETED KEYS:


######################################

Avira Registry Cleaner
14.07.2009 22:31:40

######################################


The registry was scanned for the following words:
avira,h+bedv,x-avcsd,antivir,avgio,avgnt,avgntflt,ssmdrv,avipbb,aveservice,shell extension for malware


Access denied: S-1-5-21-1177238915-606747145-839522115-1004
Access denied: SAM
Access denied: SECURITY
Access denied: Pending Help Session
Access denied: Credentials
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: S-1-5-21-1177238915-606747145-839522115-1004


HKEY_CLASSES_ROOT\*\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_CLASSES_ROOT\drive\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_CLASSES_ROOT\file\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_CLASSES_ROOT\folder\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_CLASSES_ROOT\symantec.norton.antivirus.iecontextmenu
HKEY_CLASSES_ROOT\symantec.norton.antivirus.iecontextmenu.1
HKEY_CURRENT_USER\software\panda software\panda antivirus lite
HKEY_LOCAL_MACHINE\software\classes\*\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\drive\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\file\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\folder\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu.1
HKEY_LOCAL_MACHINE\system\controlset001\services\ssmdrv
HKEY_LOCAL_MACHINE\system\controlset002\services\ssmdrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\.default\software\panda software\panda antivirus lite
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-21-1177238915-606747145-839522115-1004\software\panda software\panda antivirus lite
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-18\software\panda software\panda antivirus lite

Number of found keys: 39


DELETED KEYS:


######################################

Avira Registry Cleaner
14.07.2009 22:45:27

######################################


The registry was scanned for the following words:
avira,h+bedv,x-avcsd,antivir,avgio,avgnt,avgntflt,ssmdrv,avipbb,aveservice,shell extension for malware


Access denied: SAM
Access denied: SECURITY
Access denied: Pending Help Session
Access denied: Credentials
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: Properties
Access denied: EncryptedDirectories
Access denied: S-1-5-21-1177238915-606747145-839522115-1004


HKEY_LOCAL_MACHINE\software\classes\*\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\drive\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\file\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\folder\shellex\contextmenuhandlers\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu
HKEY_LOCAL_MACHINE\software\classes\symantec.norton.antivirus.iecontextmenu.1
HKEY_LOCAL_MACHINE\system\controlset001\services\ssmdrv
HKEY_LOCAL_MACHINE\system\controlset002\services\ssmdrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\.default\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\.default\software\panda software\panda antivirus lite
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-19\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-20\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-21-1177238915-606747145-839522115-1004\software\panda software\panda antivirus lite
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\1stantivirus.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirusgolden.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\antivirussecuritypro.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantivirus.com
HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\internet settings\zonemap\domains\winantiviruspro.com
HKEY_USERS\s-1-5-18\software\panda software\panda antivirus lite

Number of found keys: 32


DELETED KEYS:
Torna in alto
 
r16
Inviato: Tuesday, July 14, 2009 11:11:00 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Forse è meglio che provi questo Tool.
http://www.aiutocomputer.org/sicurezza/come-disinstallare-avira-antivir/
Torna in alto
 
disel
Inviato: Tuesday, July 14, 2009 11:21:52 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
scusami, ma è lo stesso (registrycleaner_en), oppure ho sbagliato ?
Torna in alto
 
r16
Inviato: Tuesday, July 14, 2009 11:42:46 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Mi sà che hai ragione.Sick
Tagliamo la testa al toro:
Disattiva, momentaneramente, l'antivirus.

Scarica ed installa Kaspersky Virus Removal tool:
http://downloads1.kaspersky-labs.com/devbuilds/AVPTool/
● al termine della installazione verrà mostrata la schermata principale del tool
● verrà creata una cartella sul Desktop dal nome Virus Removal Tool
● seleziona la partizione da scansionare e clicca su Scan per avviare la scansione
● terminata la scansione, in caso di rilevazione di infezioni, clicca su Neutralize all
● si apriranno dei popup dove potrai scegliere se Cancellare o Disinfettare l'oggetto
● metti la spunta su Apply to all e clicca su Quarantine
● per salvare il Report che verrà rilasciato, clicca sul tasto Reports: salvalo sul Desktop .
Posta solo le infezioni che ha trovato, in quanto il log ha dimensioni enormi.
Terminate tutte le operazioni chiudi il programma che si autodisinstallerà
Torna in alto
 
disel
Inviato: Tuesday, July 14, 2009 11:48:46 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
scusa r16,è passato qualche giorno e ti riassumo la situazione, ho fatto la scansione con combofix e abbiamo rimosso qualcosa, dopo che hai visto i vari log mi hai detto che ho due antivirus e di fermarli, io ho norton che vedo e avira non lo vedo da nessuna parte e non so come eliminarlo
Torna in alto
 
r16
Inviato: Tuesday, July 14, 2009 11:52:10 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
disel ha scritto:
scusa r16,è passato qualche giorno e ti riassumo la situazione, ho fatto la scansione con combofix e abbiamo rimosso qualcosa, dopo che hai visto i vari log mi hai detto che ho due antivirus e di fermarli, io ho norton che vedo e avira non lo vedo da nessuna parte e non so come eliminarlo

Appunto per questo fai la scansione con Kaspersky.
Perchè voglio vedere se c'è un virus collegato ai "rimasugli" di Avira.
Torna in alto
 
disel
Inviato: Tuesday, July 14, 2009 11:53:20 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
quindi vado senza fermarlo ?
Torna in alto
 
r16
Inviato: Tuesday, July 14, 2009 11:56:59 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Si, ma prima, disattiva anche il Tea Timer di SpyBot.
Torna in alto
 
disel
Inviato: Wednesday, July 15, 2009 12:00:18 AM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
dimmi c'è e come si fa (mi sento un verme)
Torna in alto
 
disel
Inviato: Wednesday, July 15, 2009 12:05:00 AM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
volevo dire cos'è e come si fà
Torna in alto
 
disel
Inviato: Wednesday, July 15, 2009 12:09:18 AM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
trovata!!!!
Torna in alto
 
r16
Inviato: Wednesday, July 15, 2009 12:11:53 AM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Cosi evito una figuraccia.....non me lo ricordavo più....Sick
Torna in alto
 
disel
Inviato: Wednesday, July 15, 2009 10:22:30 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
è questa la parte del log?
deleted: Trojan program Trojan.Win32.Qhost.aei File: C:\WINDOWS\system32\drivers\etc\hosts.20080523-223850.backup
deleted: Trojan program Trojan.Win32.Qhost.aei File: C:\WINDOWS\system32\drivers\etc\hosts.20080523-223851.backup
deleted: virus Worm.Win32.Downloader.akm File: C:\_OTMoveIt\MovedFiles\07102009_000109\autorun.exe
deleted: virus Worm.Win32.Downloader.akm File: C:\_OTMoveIt\MovedFiles\07102009_000226\autorun.exe
deleted: virus Worm.Win32.Downloader.akm File: G:\autorun.exe

ho fatto un'altra scansione con combofix ma avira compare e sulla chiavetta ho ancora due file auntorun.inf uno minuscolo e uno maiuscolo
Torna in alto
 
r16
Inviato: Thursday, July 16, 2009 12:15:26 AM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Ciao.
Con la funzione "Cerca" Digita questo: (fai un copia-incolla)
Avira AntiVir PersonalEdition Classic
Se trova qualcosa lo elimini.
Poi:

Scarica Avenger, e scompattalo in una sua cartella non temporanea e non sul desktop:
http://swandog46.geekstogo.com/avenger.zip

Avvia AVENGER
Clicca Ok
Inserisci queste righe (fai copia-incolla) nel riquadro bianco:

Registry keys to delete:
HKEY_LOCAL_MACHINE\system\controlset001\services\ssmdrv
HKEY_LOCAL_MACHINE\system\controlset002\services\ssmdrv
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv

Togli la spunta da Scan for Rootkit
Clicca su Execute e aspetta...
Il pc dovrebbe riavviarsi, se così non fosse, riavvialo tu.
Al termine dell'operazione, posta qui il risultato di Avenger.

In teoria, se fai un'altra scansione con Combofix, non dovresti più trovare le voci di Avira.
Torna in alto
 
disel
Inviato: Thursday, July 16, 2009 11:13:01 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
la ricerca non ha trovato niente e combofix rileva ancora Av, però mi ha dato alcuni errori, provo a rifarlo


Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Registry key "HKEY_LOCAL_MACHINE\system\controlset001\services\ssmdrv" deleted successfully.
Registry key "HKEY_LOCAL_MACHINE\system\controlset002\services\ssmdrv" deleted successfully.

Error: registry key "HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv" not found!
Deletion of registry key "HKEY_LOCAL_MACHINE\system\currentcontrolset\services\ssmdrv" failed!
Status: 0xc0000034 (STATUS_OBJECT_NAME_NOT_FOUND)
--> the object does not exist


Completed script processing.

*******************

Finished! Terminate.
Torna in alto
 
r16
Inviato: Thursday, July 16, 2009 11:30:11 PM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Ciao.
Devi disistallarlo Combofix:
Start
Esegui
nella finestra di dialogo, copia ed incolla questo comando: Combofix /u e premi Invio poi cancella le cartelle in "C" di combofix (qoobox)

Dai una pulita (registro compreso)con CCleaner http://www.aiutaamici.com/software?ID=11223
Nella schermata iniziale di CCleaner, clicca su Opzioni e poi Avanzate, togli il segno di spunta a Cancella i file in Windows Temp solo se più vecchi di 48 ore

Poi lo Reistalli:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
E fai la scansione.
Torna in alto
 
disel
Inviato: Thursday, July 16, 2009 11:56:24 PM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
ho fatto, ma non cambia
Torna in alto
 
r16
Inviato: Friday, July 17, 2009 12:07:54 AM
Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016
Postami il log di Combofix.
Torna in alto
 
disel
Inviato: Friday, July 17, 2009 12:12:31 AM
Rank: AiutAmico

Iscritto dal : 5/28/2008
Posts: 55
ComboFix 09-07-14.08 - Utente 16/07/2009 23.45.52.11.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.39.1040.18.1022.566 [GMT 2:00]
Eseguito da: c:\documents and settings\Utente\Documenti\ComboFix.exe
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {8541247C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {85795DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {85796DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {857A3DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {857BDDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {857C8DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning disabled* (Updated) {8580EDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Outdated) {00000000-0000-0000-0000-000000000000}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {833605C4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {852EFBFC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85773DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85776DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85787DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8578ADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8578CDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8578DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85790DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85797DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8579ADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857A2DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857A4DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857B3DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857C0DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857C6DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857CDDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857CEDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857CFDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857D2DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857D3DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857D9DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857DADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857DBDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857DEDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857DFDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857E2DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857E8DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857E9DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857EDDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857EEDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {857F7DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8580FDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85812DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8581BDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85826DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85827DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8582DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85831B9C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85836DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8583DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85844DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85845DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85854DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8585DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8586ADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8586FDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85870DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85875DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85878DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85879DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85881DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8588ADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8588BDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85892DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85895DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85898CA4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8589A3EC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8589ADDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8589BDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8589DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858ABDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858ACDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858ADDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858B1DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858B8DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858C6DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858CBDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858CCDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858D2DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858DBDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858E1C1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858E2DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858E8DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {858F1DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85903DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85909DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8590BDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85913DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85914B64-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85924DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8593DDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85981DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8599BC6C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8599BDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859A3DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859AADDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859B98E4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859C4DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859CEDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859D8DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859E0DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859E4DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859E9C1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859E9DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859F0DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {859F7C1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A03C1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A06DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A10DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A1BDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A1CDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A1EDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A1EDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A1FDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A47D34-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A48DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A49DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A4FDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A59DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A5FC1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A61DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A68DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A6ADDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A76C1C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A77DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A82DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A84DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A85DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A987A4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85A9EDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AA4DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AAADDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AABDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AAEDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85ABBDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85ABDBCC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85ABDDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AC2344-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AC8DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AD7DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AE9DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AEC4A4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AEFDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AF1DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AF7AA4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85AF8DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B0ACC4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B12DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B20B84-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B35DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B42DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B5FCC4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B60C2C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85B9C7A4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85BA17A4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85BA1DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85BE2DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85BEB3EC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85BFCDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85C0A71C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85C60414-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85D90A34-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85DFB46C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85E1FDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85E2AA34-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85E81054-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85E89DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85E9B41C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85EC639C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85EC978C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85ED99B4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85EEF2CC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F0BAAC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F169B4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F17414-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F2F864-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F30054-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F49824-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F5232C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F61824-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F6A98C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F8E9E4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F8EC5C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85F9818C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FBEA04-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FCD86C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FE632C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FF0744-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FF2DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FF4504-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {85FF6764-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86010DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86011A0C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860145D4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860163F4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8601C40C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8602C5A4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8604E88C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8605041C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86053DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8605962C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8605B6D4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8605C054-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86063ABC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8606F41C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86075DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860766DC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8607A1A4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86084A04-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86096C04-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8609B91C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860A250C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860A2C44-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860ACDDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860AF60C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860C4BAC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860C4CD4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860C95CC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860DA744-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860DF7F4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860DFC3C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860EDCC4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860F0B2C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860F2DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {860FC45C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861012FC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86105AAC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861066B4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86106C5C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8610BB64-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86110984-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86111534-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86118604-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8611E39C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861265AC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86126794-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861273B4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8612C4F4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861313F4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8613366C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861336FC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8613B54C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8613E3FC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8613FC44-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86155754-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8615586C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8615734C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8616562C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8616923C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86169DDC-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8616B32C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8616D89C-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861749EC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8617C4DC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86185A8C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8618E734-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86195AA4-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861B9DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861C9694-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861CADDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861CE324-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861DC534-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861E4444-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {861F1DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862044DC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8620893C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86208DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8620C5E4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8620D1FC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862133E4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86214DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86215CFC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86218934-FFA4-00EA-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8621C9C4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8621E8CC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8622931C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86232674-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86233DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86234D04-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8624CDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862596D4-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8626026C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8626BDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862822EC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862BF054-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862BFA4C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862E3DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {862EB334-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86304054-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86305244-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86316DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86319584-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86323D0C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86327244-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86349054-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8634B4DC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8634CCDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8635E30C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86369914-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8637CDDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86382DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86385374-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8638B584-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {86394DDC-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {863BA56C-FFA4-00FB-0D24-347CA8A3377C}
AV: Avira AntiVir PersonalEdition Classic *On-access scanning enabled* (Updated) {8649A61C-FFA4-00FB-0D24-347CA8A3377C}
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: ActiveArmor Firewall *disabled* {EDC10449-64D1-46c7-A59A-EC20D662F26D}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((( Files Creati Da 2009-06-16 al 2009-07-16 )))))))))))))))))))))))))))))))))))
.

2009-07-16 21:42 . 2009-03-12 09:03 165240 ----a-r- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\IPSFFPlgn\components\IPSFFPl.dll
2009-07-16 19:41 . 2009-07-13 08:00 87888 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\NAVENG.SYS
2009-07-16 19:41 . 2009-07-13 08:00 875728 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\NAVEX15.SYS
2009-07-16 19:41 . 2009-02-19 09:00 177520 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\NAVENG32.DLL
2009-07-16 19:41 . 2009-02-19 09:00 1181040 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\NAVEX32A.DLL
2009-07-16 19:41 . 2009-02-26 09:00 371248 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\EECTRL.SYS
2009-07-16 19:41 . 2009-02-26 09:00 2414128 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\CCERASER.DLL
2009-07-16 19:41 . 2009-02-26 09:00 101936 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\ERASER.SYS
2009-07-16 19:41 . 2009-01-08 09:00 259368 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090715.067\ECMSVR32.DLL
2009-07-15 20:09 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSXpx86.sys
2009-07-15 20:09 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSvix86.sys
2009-07-15 20:09 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\Scxpx86.dll
2009-07-15 20:09 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSxpx86.dll
2009-07-15 20:09 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSviA64.sys
2009-07-14 22:04 . 2009-07-15 19:43 2064416 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-07-11 19:34 . 2009-07-11 19:34 276344 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSXpx86.sys
2009-07-11 19:34 . 2009-07-11 19:34 293424 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSvix86.sys
2009-07-11 19:34 . 2009-07-11 19:34 533880 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\Scxpx86.dll
2009-07-11 19:34 . 2009-07-11 19:34 451960 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSxpx86.dll
2009-07-11 19:34 . 2009-07-11 19:34 397360 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSviA64.sys
2009-07-10 20:39 . 2009-07-14 20:11 -------- d-----w- c:\programmi\Panda USB Vaccine
2009-07-10 20:36 . 2009-03-16 20:03 533880 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090709.001\Scxpx86.dll
2009-07-10 20:36 . 2009-01-29 21:50 276344 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090709.001\IDSXpx86.sys
2009-07-10 20:36 . 2009-01-29 21:50 292912 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090709.001\IDSvix86.sys
2009-07-10 20:36 . 2009-01-29 21:50 447864 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090709.001\IDSxpx86.dll
2009-07-10 20:36 . 2009-01-29 21:50 396848 ----a-w- c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090709.001\IDSviA64.sys
2009-07-09 22:45 . 2009-07-09 22:45 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Malwarebytes
2009-07-09 22:45 . 2009-06-17 09:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-09 22:45 . 2009-07-09 22:53 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2009-07-09 22:45 . 2009-07-09 22:45 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-07-09 22:45 . 2009-06-17 09:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-06-23 20:24 . 2009-06-23 20:25 -------- d-----w- c:\programmi\TeaTimer (Spybot - Search & Destroy)
2009-06-23 20:24 . 2009-06-23 20:24 -------- d-----w- c:\programmi\Misc. Support Library (Spybot - Search & Destroy)
2009-06-23 20:24 . 2009-06-23 20:24 -------- d-----w- c:\programmi\SDHelper (Spybot - Search & Destroy)
2009-06-23 20:24 . 2009-06-23 20:24 -------- d-----w- c:\programmi\File Scanner Library (Spybot - Search & Destroy)

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-16 21:42 . 2007-04-20 16:15 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\Skype
2009-07-16 21:42 . 2008-08-23 10:45 -------- d-----w- c:\documents and settings\Utente\Dati applicazioni\skypePM
2009-07-16 21:41 . 2007-02-26 20:00 -------- d-----w- c:\programmi\eMule
2009-07-15 19:57 . 2006-12-31 17:47 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-07-15 19:43 . 2009-07-14 22:04 25268 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-07-06 20:23 . 2006-12-31 17:47 -------- d-----w- c:\programmi\Spybot - Search & Destroy
2009-06-16 14:53 . 2006-03-02 12:00 82432 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:53 . 2006-03-02 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-03 19:25 . 2006-03-02 12:00 1295872 ----a-w- c:\windows\system32\quartz.dll
2009-05-07 15:41 . 2006-03-02 12:00 346112 ----a-w- c:\windows\system32\localspl.dll
2009-04-29 04:51 . 2006-03-02 12:00 662016 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:51 . 2006-03-02 12:00 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-19 20:08 . 2008-04-09 22:49 1846656 ----a-w- c:\windows\system32\win32k.sys
2009-04-18 07:25 . 2006-03-02 12:00 71908 ----a-w- c:\windows\system32\perfc010.dat
2009-04-18 07:25 . 2006-03-02 12:00 443528 ----a-w- c:\windows\system32\perfh010.dat
2009-06-18 21:32 . 2008-09-03 19:12 134648 ----a-w- c:\programmi\mozilla firefox\components\brwsrcmp.dll
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2006-03-02 15360]
"Skype"="c:\programmi\Skype\Phone\Skype.exe" [2008-09-29 21755688]
"SpybotSD TeaTimer"="c:\programmi\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"eMuleAutoStart"="c:\programmi\eMule\emule.exe" [2008-08-01 5480448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-07-20 7110656]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2005-07-20 86016]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"Adobe Photo Downloader"="c:\programmi\Adobe\Photoshop Elements 4.0\apdproxy.exe" [2005-09-16 57344]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2007-01-22 185896]
"SunJavaUpdateSched"="c:\programmi\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 144784]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb11.exe" [2004-04-06 172032]
"HPHUPD06"="c:\programmi\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-07-14 49152]
"HP Software Update"="c:\programmi\HP\HP Software Update\HPWuSchd2.exe" [2004-02-12 49152]
"HP Component Manager"="c:\programmi\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 241664]
"HPHmon06"="c:\windows\system32\hphmon06.exe" [2004-07-13 659456]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" [2008-11-04 413696]
"iTunesHelper"="c:\programmi\iTunes\iTunesHelper.exe" [2008-11-20 290088]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2005-07-20 1519616]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2006-06-28 16248320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"SymLnch"="c:\documents and settings\Utente\Dati applicazioni\Symantec\Layouts\Norton Internet Security\15.0\SymAllLanguages\NIS_RETAIL\20070828\Support\SymLnch\SymLnch.exe" [2007-08-26 687976]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2006-03-02 15360]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
HP Digital Imaging Monitor.lnk - c:\programmi\HP\digital imaging\bin\hpqtra08.exe [2004-5-28 241664]
Microsoft Office.lnk - c:\programmi\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588]
Tasto di scelta rapida per l'avvio di AutoCAD.lnk - c:\programmi\File comuni\Autodesk Shared\acstart17.exe [2006-3-5 11000]
WG111v2 Smart Wizard Wireless Setting.lnk - c:\programmi\NETGEAR\WG111v2 Configuration Utility\RtlWake.exe [2007-1-21 745472]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
@="FSFilter Activity Monitor"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\File comuni\\Symantec Shared\\NPC\\npcLUStb.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"c:\\Programmi\\BitTorrent\\bittorrent.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1947:TCP"= 1947:TCP:HASP SRM
"1947:UDP"= 1947:UDP:HASP SRM

R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1005000.087\SymEFA.sys [20/03/2009 22.28.58 310320]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\NIS\1005000.087\BHDrvx86.sys [20/03/2009 22.28.56 258608]
R1 BIOS;BIOS;c:\windows\system32\drivers\BIOS.sys [01/01/2006 5.39.16 13696]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1005000.087\cchpx86.sys [20/03/2009 22.28.31 482352]
R1 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSXpx86.sys [15/07/2009 22.09.11 276344]
R2 EAPPkt;Realtek EAPPkt Protocol;c:\windows\system32\drivers\EAPPkt.sys [21/01/2007 13.14.02 66048]
R2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 Norton Internet Security;Norton Internet Security;c:\programmi\Norton Internet Security\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe [20/03/2009 22.28.44 115560]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programmi\File comuni\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [26/02/2009 11.00.00 101936]
S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver;c:\windows\system32\drivers\wg111v2.sys [21/01/2007 13.14.03 167808]
.
Contenuto della cartella 'Scheduled Tasks'

2009-07-13 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2009-07-16 c:\windows\Tasks\HP Usg Daily.job
- c:\programmi\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\pexpress\hphped05.exe [2004-07-14 00:08]
.
.
------- Scansione supplementare -------
.
uInternet Settings,ProxyOverride = *.local
Trusted Zone: symantec.com\ftp
FF - ProfilePath - c:\documents and settings\Utente\Dati applicazioni\Mozilla\Firefox\Profiles\2kyxfcod.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://google.it
FF - component: c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn\components\coFFPlgn.dll
FF - component: c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\IPSFFPlgn\components\IPSFFPl.dll
FF - component: c:\programmi\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\programmi\Mozilla Firefox\plugins\npbittorrent.dll
FF - plugin: c:\programmi\Mozilla Firefox\plugins\nppopcaploader.dll

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-16 23:50
Windows 5.1.2600 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Norton Internet Security]
"ImagePath"="\"c:\programmi\Norton Internet Security\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\programmi\Norton Internet Security\Norton Internet Security\Engine\16.5.0.135\diMaster.dll\" /prefetch:1"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(1968)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Ora fine scansione: 2009-07-16 23.51.40
ComboFix-quarantined-files.txt 2009-07-16 21:51

Pre-Run: 164.317.331.456 byte disponibili
Post-Run: 164.286.537.728 byte disponibili

486 --- E O F --- 2009-07-15 18:33
Torna in alto
 
Utenti presenti in questo topic
Guest

4 pages: 1 [2] 3 4

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » HACKTOOL.ROOTKIT


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.