Ho fatto quello che mi avete detto ma niente.
Ho insatallato come antivirus AVG 8.5 ma questo ora trova Win32/Virut.
Ho eseguito combofix che mi ha dato il log allegato.
Mi potreste aiutare? non posso al momento formattare.
ComboFix 09-04-13.A0 - antonio_old 2009-04-14 7:08.10 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.510.186 [GMT 2:00]
Eseguito da: c:\documents and settings\antonio_old\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\antonio_old\reader_s.exe
c:\windows\system32\config\systemprofile\reader_s.exe
c:\windows\system32\reader_s.exe
c:\windows\system32\userinit.exe . . . è infetto!!.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_restore
((((((((((((((((((((((((( Files Creati Da 2009-03-14 al 2009-04-14 )))))))))))))))))))))))))))))))))))
.
2009-04-14 04:49 . 2009-04-14 04:49 80 ----a-w c:\windows\system32\3.tmp
2009-04-13 22:20 . 2009-04-13 22:20 -------- d-----w c:\windows\system32\KB905474
2009-04-13 22:20 . 2009-03-10 20:26 1437568 ----a-w c:\windows\system32\KB905474\wganotifypackageinner.exe
2009-04-13 22:20 . 2009-03-10 20:18 454016 ----a-w c:\windows\system32\KB905474\wgasetup.exe
2009-04-13 22:20 . 2009-02-09 16:51 17140 ----a-w c:\windows\system32\KB905474\wga_eula.txt
2009-04-13 22:17 . 2009-04-13 22:18 -------- dc----w c:\windows\system32\config\systemprofile\Dati applicazioni\AVGTOOLBAR
2009-04-13 22:12 . 2009-04-13 22:12 80 ----a-w c:\windows\system32\2.tmp
2009-04-13 17:06 . 2009-04-13 17:07 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\.clamwin
2009-04-13 17:05 . 2009-04-13 17:12 -------- d-----w c:\programmi\ClamWin
2009-04-13 17:05 . 2009-04-13 17:05 -------- dc----w c:\documents and settings\All Users.WINDOWS\.clamwin
2009-04-13 16:51 . 2009-04-13 16:51 -------- d-----w c:\programmi\SDHelper (Spybot - Search & Destroy)
2009-04-13 16:51 . 2009-04-13 16:51 -------- d-----w c:\programmi\Misc. Support Library (Spybot - Search & Destroy)
2009-04-13 16:51 . 2009-04-13 16:58 -------- d-----w c:\programmi\TeaTimer (Spybot - Search & Destroy)
2009-04-13 16:51 . 2009-04-13 16:51 -------- d-----w c:\programmi\File Scanner Library (Spybot - Search & Destroy)
2009-04-13 16:42 . 2009-04-13 16:42 108552 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-04-13 16:42 . 2009-04-13 16:42 10520 ----a-w c:\windows\system32\avgrsstx.dll
2009-04-13 16:42 . 2009-04-13 16:42 325640 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-04-13 16:41 . 2009-04-13 16:46 -------- d-----w c:\windows\system32\drivers\Avg
2009-04-13 16:41 . 2009-04-13 16:41 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\AVGTOOLBAR
2009-04-13 14:53 . 2009-04-13 14:53 44 ----a-w c:\windows\system32\76.tmp
2009-04-13 08:27 . 2009-04-13 08:27 44 ----a-w c:\windows\system32\72.tmp
2009-04-12 14:34 . 2009-04-12 14:34 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\IObit
2009-04-12 14:34 . 2009-04-12 14:34 -------- d-----w c:\programmi\IObit
2009-04-12 13:20 . 2009-04-12 13:20 67 ----a-w c:\windows\wininit.ini
2009-04-11 22:56 . 2009-04-11 22:56 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\AcrobatInstall
2009-04-11 21:08 . 2009-04-11 21:08 0 ----a-w c:\windows\system32\3C.tmp
2009-04-11 21:08 . 2009-04-11 21:08 44 ----a-w c:\windows\system32\3A.tmp
2009-04-11 20:14 . 2009-04-10 13:00 21704 ----a-w c:\windows\system32\kk.exe
2009-04-11 19:51 . 2009-04-11 19:51 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\FLEXnet
2009-04-11 19:51 . 2009-04-11 19:51 -------- d-----w c:\programmi\File comuni\Macrovision Shared
2009-03-30 10:42 . 2009-03-30 10:42 -------- dc----w c:\documents and settings\vale.FISSO\Impostazioni locali\Dati applicazioni\Apple
2009-03-25 21:17 . 2009-03-25 21:17 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\AVS4YOU
2009-03-25 21:17 . 2009-03-25 21:17 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\AVS4YOU
2009-03-25 21:15 . 2009-03-25 21:42 -------- d-----w c:\programmi\File comuni\AVSMedia
2009-03-25 21:15 . 2009-03-25 21:42 -------- d-----w c:\programmi\AVS4YOU
2009-03-25 21:15 . 2008-10-28 13:52 1700352 ----a-w c:\windows\system32\GdiPlus.dll
2009-03-25 21:15 . 2007-03-01 10:08 974848 ----a-w c:\windows\system32\mfc70.dll
2009-03-25 21:15 . 2007-03-01 10:08 487424 ----a-w c:\windows\system32\msvcp70.dll
2009-03-25 21:15 . 2007-03-01 10:08 344064 ----a-w c:\windows\system32\msvcr70.dll
2009-03-25 21:15 . 2007-03-01 10:08 24576 ----a-w c:\windows\system32\msxml3a.dll
2009-03-25 19:02 . 2009-03-25 19:02 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\Ahead
2009-03-25 18:57 . 2009-03-25 18:57 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\Nero
2009-03-20 19:11 . 2009-03-20 19:12 -------- d-----w c:\programmi\Microsoft LifeCam
2009-03-20 18:02 . 2009-03-31 14:07 115224 ----a-w C:\img2-001.raw
2009-03-20 18:00 . 2004-08-03 22:07 59264 -c--a-w c:\windows\system32\dllcache\usbaudio.sys
2009-03-20 18:00 . 2004-08-03 22:07 59264 ----a-w c:\windows\system32\drivers\USBAUDIO.sys
2009-03-20 17:55 . 2007-04-10 21:46 116072 ----a-w c:\windows\VX3000.dll
2009-03-20 17:55 . 2007-04-10 21:46 709992 ----a-w c:\windows\vVX3000.exe
2009-03-20 17:55 . 2007-04-10 21:46 476520 ----a-w c:\windows\vVX3000.dll
2009-03-20 17:55 . 2007-04-10 21:46 1966696 ----a-w c:\windows\system32\drivers\VX3000.sys
2009-03-20 17:55 . 2007-04-10 21:46 15498 ----a-w c:\windows\VX3000.ini
2009-03-20 17:55 . 2007-04-10 21:46 13023 ----a-w c:\windows\VX3000.src
2009-03-20 17:55 . 2007-04-10 21:46 202088 ----a-w c:\windows\system32\LCCoin14.dll
2009-03-20 17:55 . 2007-04-10 21:46 185704 ----a-w c:\windows\system32\cVX3000.dll
2009-03-20 17:48 . 2004-08-03 22:08 31616 -c--a-w c:\windows\system32\dllcache\usbccgp.sys
2009-03-20 17:48 . 2004-08-03 22:08 31616 ----a-w c:\windows\system32\drivers\usbccgp.sys
2009-03-15 20:49 . 2009-03-15 20:49 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\PPLiveVA
2009-03-15 20:48 . 2009-03-15 20:48 -------- dc----w c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\VirtualStore
2009-03-15 20:46 . 2009-03-15 21:29 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\PPLiveVA
2009-03-15 20:19 . 2009-03-15 20:19 -------- dc----w c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\TVU Networks
2009-03-15 20:19 . 2009-03-15 20:19 -------- dc----w c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\LocalLow
2009-03-15 20:19 . 2009-03-15 20:19 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\TVU Networks
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-14 05:05 . 2008-08-15 09:57 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\Spybot - Search & Destroy
2009-04-14 05:05 . 2006-09-18 07:02 -------- d-----w c:\programmi\Spybot - Search & Destroy
2009-04-13 22:17 . 2006-03-02 12:00 213376 ----a-w c:\windows\system32\drivers\ndis.sys
2009-04-13 22:13 . 2008-11-24 11:10 -------- dc--a-w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\TEMP
2009-04-13 22:12 . 2009-02-03 22:44 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\avg8
2009-04-13 15:26 . 2003-11-12 10:18 1891296 ----a-w C:\hpfr5600.log
2009-04-12 20:28 . 2008-08-02 04:19 2608 ----a-w c:\windows\system32\d3d9caps.dat
2009-04-12 13:31 . 2008-08-02 04:06 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\Skype
2009-04-12 06:22 . 2008-08-02 04:06 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\skypePM
2009-04-12 06:10 . 2008-08-02 04:13 64728 -c--a-w c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2009-04-12 05:41 . 2007-12-24 17:06 -------- d-----w c:\programmi\Trust
2009-04-11 22:02 . 2004-12-04 15:45 -------- d-----w c:\programmi\eMule
2009-04-11 20:51 . 2008-08-16 09:43 -------- d-----w c:\programmi\Malwarebytes' Anti-Malware
2009-04-11 19:35 . 2000-11-19 15:49 -------- d-----w c:\programmi\File comuni\Adobe
2009-04-11 06:09 . 2005-03-03 07:18 -------- d-----w c:\programmi\Mozilla Thunderbird
2009-04-06 13:32 . 2008-08-16 09:43 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-06 13:32 . 2008-08-16 09:43 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-03-29 20:58 . 2006-03-02 12:00 401654 ----a-w c:\windows\system32\perfh010.dat
2009-03-29 20:58 . 2006-03-02 12:00 68240 ----a-w c:\windows\system32\perfc010.dat
2009-03-27 06:36 . 2005-08-27 06:46 -------- d-----w c:\programmi\Java
2009-03-26 01:44 . 2008-08-02 04:12 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\Ahead
2009-03-25 19:01 . 2004-10-14 08:57 -------- d-----w c:\programmi\File comuni\Ahead
2009-03-23 13:54 . 2008-10-14 19:26 -------- dc----w c:\documents and settings\antonio_old\Dati applicazioni\dvdcss
2009-03-20 18:32 . 2008-11-28 16:34 -------- dc----w c:\documents and settings\All Users.WINDOWS\Dati applicazioni\Skype
2009-03-20 18:32 . 2005-09-09 22:16 -------- d-----r c:\programmi\Skype
2009-03-20 18:32 . 2008-06-16 10:56 -------- d-----w c:\programmi\File comuni\Skype
2009-03-09 04:19 . 2008-12-08 11:43 410984 ----a-w c:\windows\system32\deploytk.dll
2009-02-09 14:56 . 2006-03-02 12:00 1846272 ----a-w c:\windows\system32\win32k.sys
2009-01-12 14:02 . 2009-01-12 14:02 2608 -c--a-w c:\documents and settings\vale.FISSO\Impostazioni locali\Dati applicazioni\d3d9caps.tmp
2008-09-24 13:40 . 2008-09-24 13:40 64272 -c--a-w c:\documents and settings\vale.FISSO\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2008-07-26 20:44 . 2004-01-24 19:11 426096 -c--a-w c:\documents and settings\Gianni.FISSO\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2008-07-26 19:56 . 2004-01-08 07:15 426096 -c--a-w c:\documents and settings\Antonio\Impostazioni locali\Dati applicazioni\GDIPFONTCACHEV1.DAT
2008-01-17 19:39 . 2008-08-02 04:13 136 -c--a-w c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\fusioncache.dat
2008-01-17 19:39 . 2008-01-17 19:39 136 -c--a-w c:\documents and settings\Antonio\Impostazioni locali\Dati applicazioni\fusioncache.dat
2006-08-19 08:30 . 2008-08-02 04:17 24192 -c--a-w c:\documents and settings\antonio_old\usbsermptxp.sys
2006-08-19 08:30 . 2008-08-02 04:17 22768 -c--a-w c:\documents and settings\antonio_old\usbsermpt.sys
2006-08-19 08:30 . 2006-08-19 08:27 24192 -c--a-w c:\documents and settings\Antonio\usbsermptxp.sys
2006-08-19 08:30 . 2006-08-19 08:27 22768 -c--a-w c:\documents and settings\Antonio\usbsermpt.sys
.
------- Sigcheck -------
[-] 2008-04-13 19:20 182656 1DF7F42665C94B825322FAE71721130D c:\windows\SoftwareDistribution\Download\fc8deab818fa7e7ffabfc43e34347907\ndis.sys
[-] 2009-04-13 22:17 213376 FF85EBD2AD3679254CF251136C62D764 c:\windows\system32\dllcache\ndis.sys
[-] 2009-04-13 22:17 213376 FF85EBD2AD3679254CF251136C62D764 c:\windows\system32\drivers\ndis.sys
[-] 2007-06-13 13:22 1054720 B38143238883E9B0D611F2D0CA4D8A43 c:\windows\explorer.exe
[-] 2007-06-13 13:10 1054720 2EE5EFA6DBD9EF94D464555CF50F3652 c:\windows\$hf_mig$\KB938828\SP2QFE\explorer.exe
[-] 2006-03-02 12:00 1053696 F4AFFCFDDDB2CB40E90D4E0DF7F25260 c:\windows\$NtUninstallKB938828$\explorer.exe
[-] 2008-04-14 02:14 1055232 0C5AE1639EB39141615284598AE40F36 c:\windows\SoftwareDistribution\Download\fc8deab818fa7e7ffabfc43e34347907\explorer.exe
[-] 2007-06-13 13:22 1054720 873546B497B668CDE5F8455CE19375D9 c:\windows\system32\dllcache\explorer.exe
[-] 2008-04-14 02:14 34304 AF85D22B99FBC029767C0054F99E4A1A c:\windows\SoftwareDistribution\Download\fc8deab818fa7e7ffabfc43e34347907\ctfmon.exe
[-] 2006-03-02 12:00 34304 44266946EFC65C89A7A35DE110237B0A c:\windows\system32\ctfmon.exe
[-] 2006-03-02 12:00 34304 C01B9159E3373EDBF97E7C6E8AFAD1F6 c:\windows\system32\dllcache\ctfmon.exe
[-] 2005-06-11 00:17 76800 B5A08E64DD59303D75C52FF57605A304 c:\windows\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[-] 2006-03-02 12:00 76800 CD4E64B9CB437FEC046BBE5DE66672A7 c:\windows\$NtUninstallKB896423$\spoolsv.exe
[-] 2008-04-14 02:14 76800 333EA292FC212ED21CDFF90C682D69CF c:\windows\SoftwareDistribution\Download\fc8deab818fa7e7ffabfc43e34347907\spoolsv.exe
[-] 2005-06-10 23:53 76800 85BCA0B6E9987E03A601FE2A75E9A8FB c:\windows\system32\spoolsv.exe
[-] 2005-06-10 23:53 76800 77A2608D536E0692A04A7382C0671C12 c:\windows\system32\dllcache\spoolsv.exe
[-] 2008-04-14 02:14 45568 91FAAF871992780744F3A086998970BC c:\windows\SoftwareDistribution\Download\fc8deab818fa7e7ffabfc43e34347907\userinit.exe
[-] 2006-03-02 12:00 44032 99BC0C4E4CB79483497BBDAC9E84152B c:\windows\system32\userinit.exe
[-] 2006-03-02 12:00 44032 03B8E89667D45AB7A2D831C957D69286 c:\windows\system32\dllcache\userinit.exe
.
(((((((((((((((((((((((((((((
SnapShot@2009-04-13_10.56.44.84 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-08-04 05:27 . 2003-02-26 22:00 61440 c:\windows\twain_32\ESCNDV\estwm.exe
+ 2009-04-14 05:20 . 2009-04-14 05:20 16384 c:\windows\Temp\Perflib_Perfdata_54c.dat
+ 2009-04-13 22:19 . 2005-10-12 23:17 15584 c:\windows\system32\spmsg.dll
+ 2008-08-01 21:40 . 2006-03-02 12:00 66048 c:\windows\system32\Restore\srdiag.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 70656 c:\windows\system32\oobe\oobebaln.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34304 c:\windows\system32\npp\nppagent.exe
+ 2008-12-14 05:21 . 2008-12-03 23:59 98304 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2006-01-21 14:01 . 2006-01-21 14:01 44032 c:\windows\system32\Macromed\Flash\genuinst.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 26624 c:\windows\system32\inetsrv\inetmgr.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 25600 c:\windows\system32\inetsrv\iissync.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 50176 c:\windows\system32\inetsrv\iisrstas.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 61440 c:\windows\system32\inetsrv\davcdata.exe
- 2009-02-03 22:45 . 2009-02-03 22:45 27656 c:\windows\system32\drivers\avgmfx86.sys
+ 2009-04-13 16:42 . 2009-04-13 16:42 27656 c:\windows\system32\drivers\avgmfx86.sys
+ 2003-12-09 18:53 . 2001-08-31 12:00 55881 c:\windows\system32\dllcache\zclientm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 49664 c:\windows\system32\dllcache\xcopy.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51200 c:\windows\system32\dllcache\wupdmgr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\wscntfy.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 24576 c:\windows\system32\dllcache\write.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51712 c:\windows\system32\dllcache\wpnpinst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51200 c:\windows\system32\dllcache\wpabaln.exe
+ 2004-08-11 20:28 . 2006-11-02 21:56 82944 c:\windows\system32\dllcache\wmplayer.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 24576 c:\windows\system32\dllcache\winver.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30720 c:\windows\system32\dllcache\winmsd.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\winmgmt.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27136 c:\windows\system32\dllcache\winhstb.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 85504 c:\windows\system32\dllcache\wextract.exe
+ 2003-03-03 21:10 . 2001-08-31 12:00 32768 c:\windows\system32\dllcache\wb32.exe
+ 2002-10-23 14:44 . 2004-08-19 14:39 49152 c:\windows\system32\dllcache\wabmig.exe
+ 2002-10-23 14:53 . 2004-08-19 14:39 65024 c:\windows\system32\dllcache\wab.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 71168 c:\windows\system32\dllcache\w32tm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 52736 c:\windows\system32\dllcache\vssadmin.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 69120 c:\windows\system32\dllcache\utilman.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37376 c:\windows\system32\dllcache\ups.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 35840 c:\windows\system32\dllcache\upnpcont.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 35840 c:\windows\system32\dllcache\unsecapp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23040 c:\windows\system32\dllcache\unlodctr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 56320 c:\windows\system32\dllcache\typeperf.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 44544 c:\windows\system32\dllcache\twunk_32.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 36352 c:\windows\system32\dllcache\tsshutdn.exe
+ 2008-08-01 21:47 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\tsprof.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 35328 c:\windows\system32\dllcache\tskill.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\tsdiscon.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 63488 c:\windows\system32\dllcache\tscupgrd.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\tscon.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51200 c:\windows\system32\dllcache\tracert6.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 32256 c:\windows\system32\dllcache\tracert.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 93696 c:\windows\system32\dllcache\tlntsvr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 98816 c:\windows\system32\dllcache\tlntsess.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 82432 c:\windows\system32\dllcache\tlntadmn.exe
+ 2008-08-01 21:47 . 2006-03-02 12:00 62976 c:\windows\system32\dllcache\tintlphr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 36352 c:\windows\system32\dllcache\tftp.exe
+ 2006-03-02 12:00 . 2005-05-11 02:29 96768 c:\windows\system32\dllcache\telnet.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 53307 c:\windows\system32\dllcache\tcptest.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 38400 c:\windows\system32\dllcache\tcpsvcs.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 31744 c:\windows\system32\dllcache\tcmsetup.exe
+ 2008-08-01 23:26 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\taskman.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 93184 c:\windows\system32\dllcache\tasklist.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 93696 c:\windows\system32\dllcache\taskkill.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 22016 c:\windows\system32\dllcache\systray.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 56320 c:\windows\system32\dllcache\syskey.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 89088 c:\windows\system32\dllcache\sysinfo.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 70144 c:\windows\system32\dllcache\syncapp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\svchost.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28160 c:\windows\system32\dllcache\subst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\stimon.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\ssstars.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 37888 c:\windows\system32\dllcache\ssmyst.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 66048 c:\windows\system32\dllcache\ssmypics.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 39936 c:\windows\system32\dllcache\ssmarque.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 38912 c:\windows\system32\dllcache\ssbezier.scr
+ 2008-08-01 21:40 . 2006-03-02 12:00 66048 c:\windows\system32\dllcache\srdiag.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30720 c:\windows\system32\dllcache\spnpinst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 31744 c:\windows\system32\dllcache\spiisupd.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 44032 c:\windows\system32\dllcache\sort.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 76288 c:\windows\system32\dllcache\sol.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 27648 c:\windows\system32\dllcache\snmptrap.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 51712 c:\windows\system32\dllcache\snmp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27136 c:\windows\system32\dllcache\smbinst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 45056 c:\windows\system32\dllcache\skeys.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 89600 c:\windows\system32\dllcache\sigverif.exe
+ 2003-12-09 18:53 . 2001-08-31 12:00 61517 c:\windows\system32\dllcache\shvlzm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 38912 c:\windows\system32\dllcache\shutdown.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 36917 c:\windows\system32\dllcache\shtml.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 97280 c:\windows\system32\dllcache\shrpubw.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 61440 c:\windows\system32\dllcache\shmgrate.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\shadow.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 29184 c:\windows\system32\dllcache\sfc.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 92672 c:\windows\system32\dllcache\setup50.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 41984 c:\windows\system32\dllcache\setup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51712 c:\windows\system32\dllcache\sethc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37888 c:\windows\system32\dllcache\secedit.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 97280 c:\windows\system32\dllcache\sdbinst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28160 c:\windows\system32\dllcache\scrnsave.scr
+ 2008-08-01 21:37 . 2006-03-02 12:00 55808 c:\windows\system32\dllcache\scrcons.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 50176 c:\windows\system32\dllcache\sc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\savedump.exe
+ 2003-03-03 21:03 . 2001-08-31 12:00 57344 c:\windows\system32\dllcache\sapisvr.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 35328 c:\windows\system32\dllcache\rwinsta.exe
+ 2003-12-09 18:53 . 2001-08-31 12:00 61518 c:\windows\system32\dllcache\rvsezm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\runonce.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 52224 c:\windows\system32\dllcache\rundll32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 35840 c:\windows\system32\dllcache\runas.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 97280 c:\windows\system32\dllcache\rtcshare.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 81920 c:\windows\system32\dllcache\rsopprov.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 68096 c:\windows\system32\dllcache\rsmui.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 43520 c:\windows\system32\dllcache\rsmsink.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 71680 c:\windows\system32\dllcache\rsm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\rsh.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 44544 c:\windows\system32\dllcache\routemon.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 39936 c:\windows\system32\dllcache\route.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\rexec.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\reset.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 31744 c:\windows\system32\dllcache\replace.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 52736 c:\windows\system32\dllcache\relog.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23552 c:\windows\system32\dllcache\regwiz.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 31232 c:\windows\system32\dllcache\regsvr32.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\register.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 52736 c:\windows\system32\dllcache\regini.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 22528 c:\windows\system32\dllcache\regedt32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 72192 c:\windows\system32\dllcache\reg.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 26112 c:\windows\system32\dllcache\recover.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 86016 c:\windows\system32\dllcache\rdshost.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\rdsaddin.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 81408 c:\windows\system32\dllcache\rdpclip.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 41984 c:\windows\system32\dllcache\rcp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 54784 c:\windows\system32\dllcache\rcimlby.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 76288 c:\windows\system32\dllcache\rasphone.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30720 c:\windows\system32\dllcache\rasdial.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30720 c:\windows\system32\dllcache\rasautou.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 41984 c:\windows\system32\dllcache\qwinsta.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 35840 c:\windows\system32\dllcache\quser.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\query.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 39424 c:\windows\system32\dllcache\qprocess.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 36352 c:\windows\system32\dllcache\qappsrv.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\proxycfg.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 69632 c:\windows\system32\dllcache\proquota.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28160 c:\windows\system32\dllcache\print.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 68096 c:\windows\system32\dllcache\powercfg.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 89088 c:\windows\system32\dllcache\pintlphr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 52736 c:\windows\system32\dllcache\ping6.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 38400 c:\windows\system32\dllcache\ping.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\perfmon.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\pentnt.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 41472 c:\windows\system32\dllcache\pathping.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 77824 c:\windows\system32\dllcache\packager.exe
+ 2008-12-12 08:58 . 2001-08-30 22:08 58368 c:\windows\system32\dllcache\ovcoms.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 59904 c:\windows\system32\dllcache\osuninst.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 90112 c:\windows\system32\dllcache\opnfiles.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 70656 c:\windows\system32\dllcache\oobebaln.exe
+ 2002-10-23 14:53 . 2004-08-19 14:39 79360 c:\windows\system32\dllcache\oemig50.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 90112 c:\windows\system32\dllcache\odbcconf.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 53248 c:\windows\system32\dllcache\odbcad32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 50688 c:\windows\system32\dllcache\ntsd.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 98304 c:\windows\system32\dllcache\nslookup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\nppagent.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 54272 c:\windows\system32\dllcache\notiflag.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 89088 c:\windows\system32\dllcache\notepad.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 56320 c:\windows\system32\dllcache\netstat.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 61440 c:\windows\system32\dllcache\net.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23040 c:\windows\system32\dllcache\nddeapir.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 40960 c:\windows\system32\dllcache\nbtstat.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 73728 c:\windows\system32\dllcache\narrator.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 31232 c:\windows\system32\dllcache\mstinit.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 25600 c:\windows\system32\dllcache\msswchx.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 47104 c:\windows\system32\dllcache\msoobe.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 59904 c:\windows\system32\dllcache\msiregmv.exe
+ 2003-03-03 21:10 . 2001-08-31 12:00 59392 c:\windows\system32\dllcache\msinfo32.exe
+ 2002-10-23 14:53 . 2004-08-19 14:39 79360 c:\windows\system32\dllcache\msimn.exe
+ 2006-03-02 12:00 . 2005-05-04 12:45 97792 c:\windows\system32\dllcache\msiexec.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 48128 c:\windows\system32\dllcache\mshta.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 41472 c:\windows\system32\dllcache\msg.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 25088 c:\windows\system32\dllcache\msdtc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\mrinfo.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23552 c:\windows\system32\dllcache\mqsvc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 38912 c:\windows\system32\dllcache\mqbkup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 40960 c:\windows\system32\dllcache\mpnotify.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 23583 c:\windows\system32\dllcache\mplayer2.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27136 c:\windows\system32\dllcache\mountvol.exe
+ 2008-08-01 21:37 . 2006-03-02 12:00 35840 c:\windows\system32\dllcache\mofcomp.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 53248 c:\windows\system32\dllcache\mnmsrvc.exe
+ 2008-08-01 21:45 . 2005-07-25 23:46 26624 c:\windows\system32\dllcache\migregdb.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 53760 c:\windows\system32\dllcache\migisol.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 92160 c:\windows\system32\dllcache\magnify.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 32256 c:\windows\system32\dllcache\lsass.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27648 c:\windows\system32\dllcache\lpr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 25088 c:\windows\system32\dllcache\lpq.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\logoff.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 80384 c:\windows\system32\dllcache\logman.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 24064 c:\windows\system32\dllcache\lodctr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 94208 c:\windows\system32\dllcache\locator.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 45568 c:\windows\system32\dllcache\lnkstub.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 48640 c:\windows\system32\dllcache\lights.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\label.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 36864 c:\windows\system32\dllcache\isignup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 43008 c:\windows\system32\dllcache\ipxroute.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 72192 c:\windows\system32\dllcache\ipv6.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 64512 c:\windows\system32\dllcache\ipsec6.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 76800 c:\windows\system32\dllcache\ipconfig.exe
+ 2003-03-03 21:10 . 2006-03-02 12:00 40960 c:\windows\system32\dllcache\inetwiz.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 26624 c:\windows\system32\dllcache\inetmgr.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\inetin51.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 85944 c:\windows\system32\dllcache\imscinst.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 78848 c:\windows\system32\dllcache\imkrinst.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 65589 c:\windows\system32\dllcache\imjpuex.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 77878 c:\windows\system32\dllcache\imjpdadm.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 62976 c:\windows\system32\dllcache\imekrmig.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 25600 c:\windows\system32\dllcache\iissync.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 50176 c:\windows\system32\dllcache\iisrstas.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\iisreset.exe
+ 2008-09-26 08:45 . 2008-06-23 09:20 32768 c:\windows\system32\dllcache\ieudinit.exe
+ 2004-12-13 21:34 . 2008-10-15 09:45 37376 c:\windows\system32\dllcache\iedw.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 53248 c:\windows\system32\dllcache\ie4uinit.exe
+ 2004-01-01 20:02 . 2006-03-02 12:00 94208 c:\windows\system32\dllcache\icwtutor.exe
+ 2004-01-01 20:02 . 2006-03-02 12:00 45056 c:\windows\system32\dllcache\icwrmind.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 37888 c:\windows\system32\dllcache\hscupd.exe
+ 2003-12-09 18:53 . 2001-08-31 12:00 61517 c:\windows\system32\dllcache\hrtzzm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27648 c:\windows\system32\dllcache\hostname.exe
+ 2006-03-02 12:00 . 2005-05-26 23:22 29696 c:\windows\system32\dllcache\hh.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34304 c:\windows\system32\dllcache\help.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 58368 c:\windows\system32\dllcache\grpconv.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 77824 c:\windows\system32\dllcache\gpupdate.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 76288 c:\windows\system32\dllcache\getmac.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 30208 c:\windows\system32\dllcache\fxssend.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 64000 c:\windows\system32\dllcache\ftp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 79872 c:\windows\system32\dllcache\fsutil.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 74752 c:\windows\system32\dllcache\freecell.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 41018 c:\windows\system32\dllcache\fpremadm.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 45112 c:\windows\system32\dllcache\fpadmcgi.exe
+ 2003-05-12 15:57 . 2004-08-19 14:39 34064 c:\windows\system32\dllcache\fp98sadm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 26112 c:\windows\system32\dllcache\forcedos.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 40448 c:\windows\system32\dllcache\fontview.exe
+ 2008-08-01 21:39 . 2006-08-21 09:14 41984 c:\windows\system32\dllcache\fltmc.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\flattemp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 22016 c:\windows\system32\dllcache\fixmapi.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\finger.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 47104 c:\windows\system32\dllcache\findstr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28160 c:\windows\system32\dllcache\find.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\fc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 64512 c:\windows\system32\dllcache\extrac32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 35328 c:\windows\system32\dllcache\expand.exe
+ 2008-08-02 15:57 . 2001-08-30 21:08 41984 c:\windows\system32\dllcache\EXCH_regtrace.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 99840 c:\windows\system32\dllcache\evtrig.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 45056 c:\windows\system32\dllcache\evntcmd.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 28160 c:\windows\system32\dllcache\eventvwr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 71168 c:\windows\system32\dllcache\evcreate.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 58368 c:\windows\system32\dllcache\esentutl.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 36864 c:\windows\system32\dllcache\dvdupgrd.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 29696 c:\windows\system32\dllcache\dumprep.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 65536 c:\windows\system32\dllcache\drwtsn32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 79872 c:\windows\system32\dllcache\drvqry.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37376 c:\windows\system32\dllcache\dpnsvr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 49152 c:\windows\system32\dllcache\dplaysvr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 29696 c:\windows\system32\dllcache\doskey.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\dmremote.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23552 c:\windows\system32\dllcache\dllhst3g.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 24064 c:\windows\system32\dllcache\dllhost.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37888 c:\windows\system32\dllcache\diskperf.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 44032 c:\windows\system32\dllcache\defrag.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 50688 c:\windows\system32\dllcache\ddeshare.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 24064 c:\windows\system32\dllcache\dcomcnfg.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 61440 c:\windows\system32\dllcache\davcdata.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 38400 c:\windows\system32\dllcache\cprofile.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 77879 c:\windows\system32\dllcache\cplexe.exe
+ 2008-08-02 15:57 . 2006-03-02 12:00 76288 c:\windows\system32\dllcache\convlog.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\convert.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27136 c:\windows\system32\dllcache\control.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 46592 c:\windows\system32\dllcache\conime.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 24064 c:\windows\system32\dllcache\comrereg.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\comrepl.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37376 c:\windows\system32\dllcache\compact.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 34816 c:\windows\system32\dllcache\comp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 82944 c:\windows\system32\dllcache\cmstp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 58880 c:\windows\system32\dllcache\cmmon32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 66048 c:\windows\system32\dllcache\cmdl32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 52224 c:\windows\system32\dllcache\clipsrv.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 83968 c:\windows\system32\dllcache\cleanmgr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 26624 c:\windows\system32\dllcache\ckcnv.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 24576 c:\windows\system32\dllcache\cisvc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 75776 c:\windows\system32\dllcache\cipher.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 27136 c:\windows\system32\dllcache\cidaemon.exe
+ 2003-12-09 18:53 . 2001-08-31 12:00 61519 c:\windows\system32\dllcache\chkrzm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30208 c:\windows\system32\dllcache\chkntfs.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30720 c:\windows\system32\dllcache\chkdsk.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 33792 c:\windows\system32\dllcache\chgusr.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 35328 c:\windows\system32\dllcache\chgport.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 32768 c:\windows\system32\dllcache\chglogon.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 99840 c:\windows\system32\dllcache\charmap.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 28672 c:\windows\system32\dllcache\change.exe
+ 2003-03-03 21:10 . 2001-08-31 12:00 32768 c:\windows\system32\dllcache\cb32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 37888 c:\windows\system32\dllcache\cacls.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 24064 c:\windows\system32\dllcache\bootvrfy.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23552 c:\windows\system32\dllcache\bootok.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 90624 c:\windows\system32\dllcache\blastcln.exe
+ 2003-12-09 18:53 . 2001-08-31 12:00 61521 c:\windows\system32\dllcache\bckgzm.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 36919 c:\windows\system32\dllcache\author.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 33280 c:\windows\system32\dllcache\auditusr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30208 c:\windows\system32\dllcache\attrib.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 30208 c:\windows\system32\dllcache\atmadm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 44544 c:\windows\system32\dllcache\at.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 51712 c:\windows\system32\dllcache\asr_pfu.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 55808 c:\windows\system32\dllcache\asr_ldm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 49664 c:\windows\system32\dllcache\asr_fmt.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 38912 c:\windows\system32\dllcache\arp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 63488 c:\windows\system32\dllcache\alg.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 36919 c:\windows\system32\dllcache\admin.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 23040 c:\windows\system32\dllcache\actmovie.exe
+ 2009-04-13 22:18 . 2009-04-13 22:18 16384 c:\windows\system32\config\systemprofile\Impostazioni locali\Dati applicazioni\Microsoft\Internet Explorer\MSIMGSIZ.DAT
+ 2009-04-13 22:18 . 2009-04-14 04:50 32768 c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\MSHist012009041420090415\index.dat
+ 2008-08-01 21:48 . 2009-04-14 05:20 32768 c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
- 2008-08-01 21:48 . 2009-04-13 08:48 32768 c:\windows\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
+ 2008-08-01 21:48 . 2009-04-14 05:20 32768 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2009-02-03 22:45 . 2009-02-03 22:45 10520 c:\windows\system32\avgrsstx.dll
+ 2009-04-13 16:42 . 2009-04-13 16:42 10520 c:\windows\system32\avgrsstx.dll
+ 2008-08-03 15:13 . 2004-08-10 23:45 57856 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wdfmgr.exe
+ 2008-08-03 15:13 . 2004-08-10 23:45 66048 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\uwdf.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 54272 c:\windows\PCHEALTH\HELPCTR\Binaries\notiflag.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 37888 c:\windows\PCHEALTH\HELPCTR\Binaries\HscUpd.exe
+ 2008-08-04 16:09 . 2008-08-04 16:09 86016 c:\windows\Installer\{E9787678-551D-4478-9682-DBB587257110}\AppLanuchShortcut_E9787678103300008E67000000000001_1.exe
+ 2008-09-26 12:22 . 2008-09-26 12:22 53248 c:\windows\Installer\{C04E32E0-0416-434D-AFB9-6969D703A9EF}\icon.exe
+ 2008-08-04 16:06 . 2008-08-04 16:06 86016 c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\BridgeCommonShortcut_B74D4E101033000000000001_1.exe
+ 2008-08-04 16:18 . 2008-08-04 16:18 86016 c:\windows\Installer\{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}\ARPPRODUCTICON.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 98304 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\FotoSlateProgramFile_ECE0113B23D04DD889E6D2F026CABF03.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 98304 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\FotoSlateDesktopShor_ECE0113B23D04DD889E6D2F026CABF03.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 65536 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\DevDetectPMShortcut_ECE0113B23D04DD889E6D2F026CABF03.exe
+ 2008-08-03 05:57 . 2008-08-03 05:57 43008 c:\windows\Installer\{90110410-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-11-12 21:43 . 2008-11-12 21:43 53248 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2008-12-22 08:02 . 2006-03-02 12:00 94208 c:\windows\$NtUninstallwmp11$\wmplayer.exe
+ 2008-12-22 08:02 . 2004-08-10 20:52 49152 c:\windows\$NtUninstallwmp11$\wmpenc.exe
+ 2008-12-22 08:00 . 2004-08-10 23:45 57856 c:\windows\$NtUninstallWMFDist11$\wdfmgr.exe
+ 2008-12-22 08:00 . 2004-08-10 23:45 66048 c:\windows\$NtUninstallWMFDist11$\uwdf.exe
+ 2008-12-11 13:45 . 2008-08-19 09:30 37376 c:\windows\$NtUninstallKB958215$\iedw.exe
+ 2008-11-09 08:00 . 2008-06-23 09:49 37376 c:\windows\$NtUninstallKB956390$\iedw.exe
+ 2008-12-11 13:46 . 2008-07-14 11:09 81920 c:\windows\$NtUninstallKB955839$\tzchange.exe
+ 2008-08-13 17:31 . 2008-04-17 10:52 37376 c:\windows\$NtUninstallKB953838$\iedw.exe
+ 2008-08-13 17:32 . 2008-03-27 09:24 79360 c:\windows\$NtUninstallKB951072-v2$\tzchange.exe
+ 2008-08-01 22:16 . 2006-03-02 12:00 37376 c:\windows\$NtUninstallKB950759$\iedw.exe
+ 2008-11-10 15:56 . 2006-03-02 12:00 41472 c:\windows\$NtUninstallKB922582$\fltmc.exe
+ 2008-11-10 15:59 . 2006-03-02 12:00 26624 c:\windows\$NtUninstallKB902400$\migregdb.exe
+ 2008-11-09 07:59 . 2006-03-02 12:00 96256 c:\windows\$NtUninstallKB896428$\telnet.exe
+ 2008-11-10 16:04 . 2006-03-02 12:00 29696 c:\windows\$NtUninstallKB896358$\hh.exe
+ 2008-08-04 18:10 . 2006-03-02 12:00 96256 c:\windows\$MSI31Uninstall_KB893803v2$\msiexec.exe
+ 2008-12-11 10:59 . 2008-10-15 14:18 37376 c:\windows\$hf_mig$\KB958215\SP2QFE\iedw.exe
+ 2008-08-19 09:38 . 2008-08-19 09:38 37376 c:\windows\$hf_mig$\KB956390\SP2QFE\iedw.exe
+ 2008-10-23 10:17 . 2008-10-23 10:17 81920 c:\windows\$hf_mig$\KB955839\SP3QFE\tzchange.exe
+ 2008-10-23 10:06 . 2008-10-23 10:06 81920 c:\windows\$hf_mig$\KB955839\SP3GDR\tzchange.exe
+ 2008-10-22 09:47 . 2008-10-22 09:47 81920 c:\windows\$hf_mig$\KB955839\SP2QFE\tzchange.exe
+ 2008-06-23 09:53 . 2008-06-23 09:53 37376 c:\windows\$hf_mig$\KB953838\SP2QFE\iedw.exe
+ 2008-09-26 08:45 . 2008-06-23 08:23 32768 c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ieudinit.exe
+ 2008-09-26 08:45 . 2008-06-23 08:23 89600 c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\ie4uinit.exe
+ 2008-07-11 12:51 . 2008-07-11 12:51 81920 c:\windows\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe
+ 2008-07-11 12:42 . 2008-07-11 12:42 81920 c:\windows\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe
+ 2008-07-14 11:03 . 2008-07-14 11:03 81920 c:\windows\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe
+ 2008-04-17 10:46 . 2008-04-17 10:46 37376 c:\windows\$hf_mig$\KB950759\SP2QFE\iedw.exe
+ 2008-08-01 22:12 . 2008-03-27 10:46 79360 c:\windows\$hf_mig$\KB942763\SP3QFE\tzchange.exe
+ 2008-08-01 22:12 . 2008-03-27 10:40 79360 c:\windows\$hf_mig$\KB942763\SP3GDR\tzchange.exe
+ 2008-08-01 22:12 . 2008-03-27 09:22 79360 c:\windows\$hf_mig$\KB942763\SP2QFE\tzchange.exe
+ 2008-11-10 15:55 . 2006-08-21 09:43 41984 c:\windows\$hf_mig$\KB922582\SP2QFE\fltmc.exe
+ 2006-03-17 01:05 . 2006-03-17 01:05 47616 c:\windows\$hf_mig$\KB908531\SP2QFE\verclsid.exe
+ 2008-11-09 08:01 . 2005-08-22 17:01 49664 c:\windows\$hf_mig$\KB905749\update\arpidfix.exe
+ 2008-11-10 15:56 . 2005-08-19 23:50 49664 c:\windows\$hf_mig$\KB905414\update\arpidfix.exe
+ 2008-11-10 15:59 . 2005-07-25 18:21 49664 c:\windows\$hf_mig$\KB902400\update\arpidfix.exe
+ 2005-07-25 23:42 . 2005-07-25 23:42 27648 c:\windows\$hf_mig$\KB902400\SP2QFE\migregdb.exe
+ 2008-11-10 16:13 . 2005-09-09 15:26 49664 c:\windows\$hf_mig$\KB901017\update\arpidfix.exe
+ 2008-11-09 08:03 . 2005-09-26 16:36 49664 c:\windows\$hf_mig$\KB900725\update\arpidfix.exe
+ 2008-11-10 16:12 . 2005-06-29 15:54 49664 c:\windows\$hf_mig$\KB899591\update\arpidfix.exe
+ 2008-11-10 16:16 . 2005-06-29 15:54 49664 c:\windows\$hf_mig$\KB899587\update\arpidfix.exe
+ 2005-05-11 02:32 . 2005-05-11 02:32 96768 c:\windows\$hf_mig$\KB896428\SP2QFE\telnet.exe
+ 2008-11-10 16:09 . 2005-06-29 15:54 49664 c:\windows\$hf_mig$\KB896423\update\arpidfix.exe
+ 2005-05-26 23:26 . 2005-05-26 23:26 29696 c:\windows\$hf_mig$\KB896358\SP2QFE\hh.exe
+ 2008-11-10 16:11 . 2005-07-07 18:27 49664 c:\windows\$hf_mig$\KB893756\update\arpidfix.exe
+ 2008-08-04 05:27 . 2003-02-26 22:00 135168 c:\windows\twain_32\ESCNDV\Escfg.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 257536 c:\windows\system32\usmt\migwiz_a.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 123392 c:\windows\system32\usmt\migload.exe
+ 2003-03-26 07:01 . 2003-03-26 07:01 446464 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpztbx08.exe
+ 2003-03-26 07:19 . 2003-03-26 07:19 192512 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpztbu08.exe
+ 2003-03-26 06:12 . 2003-03-26 06:12 184320 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpzstw08.exe
+ 2003-03-26 07:14 . 2003-03-26 07:14 389120 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpzstc08.exe
+ 2003-03-26 06:44 . 2003-03-26 06:44 344064 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpzpre08.exe
+ 2003-03-26 05:05 . 2003-03-26 05:05 647168 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpzeng08.exe
+ 2003-03-26 06:28 . 2003-03-26 06:28 245760 c:\windows\system32\spool\drivers\w32x86\hpdeskjet_5600f8a2\hpzcfg08.exe
+ 2003-03-26 07:01 . 2003-03-26 07:01 446464 c:\windows\system32\spool\drivers\w32x86\3\hpztbx08.exe
+ 2003-03-26 06:44 . 2003-03-26 06:44 344064 c:\windows\system32\spool\drivers\w32x86\3\hpzpre08.exe
+ 2003-03-26 06:28 . 2003-03-26 06:28 245760 c:\windows\system32\spool\drivers\w32x86\3\hpzcfg08.exe
+ 2001-11-07 13:22 . 2001-11-07 13:22 421888 c:\windows\system32\PDesk\pduninst.exe
+ 2001-12-05 11:15 . 2001-12-05 11:15 458752 c:\windows\system32\PDesk\pdmmd.exe
+ 2002-02-14 12:55 . 2002-02-14 12:55 221184 c:\windows\system32\PDesk\pdeskcmd.exe
+ 2009-04-13 22:20 . 2009-03-10 20:18 454016 c:\windows\system32\KB905474\wgasetup.exe
- 2008-09-18 14:43 . 2009-04-13 08:48 214781 c:\windows\system32\inetsrv\MetaBase.bin
+ 2008-09-18 14:43 . 2009-04-14 05:20 214781 c:\windows\system32\inetsrv\MetaBase.bin
+ 2006-03-02 12:00 . 2009-04-13 22:17 213376 c:\windows\system32\drivers\ndis.sys
+ 2009-04-13 16:42 . 2009-04-13 16:42 108552 c:\windows\system32\drivers\avgtdix.sys
+ 2009-04-13 16:42 . 2009-04-13 16:42 325640 c:\windows\system32\drivers\avgldx86.sys
+ 2008-08-01 21:40 . 2006-03-02 12:00 187392 c:\windows\system32\dllcache\wuauclt1.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 135168 c:\windows\system32\dllcache\wscript.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 237056 c:\windows\system32\dllcache\wordpad.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 237056 c:\windows\system32\dllcache\wmiprvse.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 387584 c:\windows\system32\dllcache\wmic.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 145408 c:\windows\system32\dllcache\wmiapsrv.exe
+ 2008-08-01 21:37 . 2006-03-02 12:00 215552 c:\windows\system32\dllcache\wmiadap.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 130048 c:\windows\system32\dllcache\winmine.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 523776 c:\windows\system32\dllcache\winlogon.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 305664 c:\windows\system32\dllcache\winhlp32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 454656 c:\windows\system32\dllcache\wiaacmgr.exe
+ 2008-08-01 21:37 . 2006-03-02 12:00 137216 c:\windows\system32\dllcache\wbemtest.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 312832 c:\windows\system32\dllcache\vssvc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 120832 c:\windows\system32\dllcache\verifier.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 169984 c:\windows\system32\dllcache\uploadm.exe
+ 2006-03-02 12:00 . 2007-06-27 14:48 337408 c:\windows\system32\dllcache\unregmp2.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 279040 c:\windows\system32\dllcache\tracerpt.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 366080 c:\windows\system32\dllcache\tourstrt.exe
+ 2008-08-01 21:47 . 2006-03-02 12:00 474112 c:\windows\system32\dllcache\tintsetp.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 158208 c:\windows\system32\dllcache\taskmgr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 125952 c:\windows\system32\dllcache\sysocmgr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 704512 c:\windows\system32\dllcache\sstext3d.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 630784 c:\windows\system32\dllcache\sspipes.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 413696 c:\windows\system32\dllcache\ssflwbox.scr
+ 2006-03-02 12:00 . 2006-03-02 12:00 729088 c:\windows\system32\dllcache\ss3dfo.scr
+ 2008-08-01 21:38 . 2006-03-02 12:00 558080 c:\windows\system32\dllcache\spider.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 158208 c:\windows\system32\dllcache\sndvol32.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 151552 c:\windows\system32\dllcache\sndrec32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 111616 c:\windows\system32\dllcache\smlogsvc.exe
+ 2008-08-01 21:46 . 2006-03-02 12:00 255488 c:\windows\system32\dllcache\smi2smir.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 161280 c:\windows\system32\dllcache\sessmgr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 127488 c:\windows\system32\dllcache\services.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 148992 c:\windows\system32\dllcache\sctasks.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 116736 c:\windows\system32\dllcache\scardsvr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 151552 c:\windows\system32\dllcache\rsvp.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 402944 c:\windows\system32\dllcache\rstrui.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 126464 c:\windows\system32\dllcache\rsnotify.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 170496 c:\windows\system32\dllcache\regedit.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 128512 c:\windows\system32\dllcache\progman.exe
+ 2003-04-01 12:22 . 2004-08-19 14:39 303104 c:\windows\system32\dllcache\pinball.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 235520 c:\windows\system32\dllcache\osk.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 147968 c:\windows\system32\dllcache\nwscript.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 439296 c:\windows\system32\dllcache\ntvdm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 105984 c:\windows\system32\dllcache\netsh.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 350720 c:\windows\system32\dllcache\netsetup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 132096 c:\windows\system32\dllcache\netdde.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 143872 c:\windows\system32\dllcache\net1.exe
+ 2006-03-02 12:00 . 2009-04-13 22:17 213376 c:\windows\system32\dllcache\ndis.sys
+ 2008-08-01 21:46 . 2006-03-02 12:00 130048 c:\windows\system32\dllcache\mtstocom.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 428032 c:\windows\system32\dllcache\mstsc.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 365056 c:\windows\system32\dllcache\mspaint.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 146432 c:\windows\system32\dllcache\mshearts.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 179200 c:\windows\system32\dllcache\msconfig.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 136192 c:\windows\system32\dllcache\mqtgsvc.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 143360 c:\windows\system32\dllcache\mplay32.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 162816 c:\windows\system32\dllcache\mobsync.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 835072 c:\windows\system32\dllcache\mmc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 257536 c:\windows\system32\dllcache\migwiz_a.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 261632 c:\windows\system32\dllcache\migwiz.exe
+ 2004-08-10 20:51 . 2006-03-02 12:00 806912 c:\windows\system32\dllcache\migrate.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 123392 c:\windows\system32\dllcache\migload.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 104448 c:\windows\system32\dllcache\makecab.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 534528 c:\windows\system32\dllcache\logonui.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 239616 c:\windows\system32\dllcache\logon.scr
+ 2006-03-02 12:00 . 2008-06-18 00:09 119808 c:\windows\system32\dllcache\logagent.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 282680 c:\windows\system32\dllcache\imjputy.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 254007 c:\windows\system32\dllcache\imjprw.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 229432 c:\windows\system32\dllcache\imjpmig.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 225669 c:\windows\system32\dllcache\imjpinst.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 176185 c:\windows\system32\dllcache\imjpdsvr.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 327737 c:\windows\system32\dllcache\imjpdct.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 331839 c:\windows\system32\dllcache\imepadsv.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 168960 c:\windows\system32\dllcache\imapi.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 133632 c:\windows\system32\dllcache\iexpress.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 112128 c:\windows\system32\dllcache\iexplore.exe
+ 2003-03-03 21:10 . 2006-03-02 12:00 106496 c:\windows\system32\dllcache\icwconn2.exe
+ 2003-11-06 21:01 . 2006-03-02 12:00 235520 c:\windows\system32\dllcache\icwconn1.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 762880 c:\windows\system32\dllcache\helpsvc.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 118784 c:\windows\system32\dllcache\helphost.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 787456 c:\windows\system32\dllcache\helpctr.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 142848 c:\windows\system32\dllcache\gprslt.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 287232 c:\windows\system32\dllcache\fxssvc.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 256000 c:\windows\system32\dllcache\fxscover.exe
+ 2008-08-02 15:55 . 2006-03-02 12:00 162304 c:\windows\system32\dllcache\fxsclnt.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 208974 c:\windows\system32\dllcache\fpcount.exe
+ 2003-05-12 15:57 . 2004-08-19 14:39 128784 c:\windows\system32\dllcache\fp98swin.exe
+ 2008-08-01 21:45 . 2006-03-02 12:00 112128 c:\windows\system32\dllcache\evntwin.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 215040 c:\windows\system32\dllcache\eudcedit.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 200704 c:\windows\system32\dllcache\dwwin.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 102400 c:\windows\system32\dllcache\dpvsetup.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 244224 c:\windows\system32\dllcache\dmadmin.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 184320 c:\windows\system32\dllcache\diskpart.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 104448 c:\windows\system32\dllcache\diantz.exe
+ 2003-04-01 12:22 . 2004-08-19 14:39 566272 c:\windows\system32\dllcache\dialer.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 124416 c:\windows\system32\dllcache\dfrgntfs.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 101888 c:\windows\system32\dllcache\dfrgfat.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 118784 c:\windows\system32\dllcache\cscript.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 416768 c:\windows\system32\dllcache\cmd.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 123904 c:\windows\system32\dllcache\clipbrd.exe
+ 2008-08-01 21:44 . 2006-03-02 12:00 499200 c:\windows\system32\dllcache\cintsetp.exe
+ 2003-08-01 23:26 . 2004-08-19 14:39 208960 c:\windows\system32\dllcache\cfgwiz.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 133632 c:\windows\system32\dllcache\calc.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 168960 c:\windows\system32\dllcache\bootcfg.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 117248 c:\windows\system32\dllcache\ahui.exe
+ 2006-03-02 12:00 . 2006-10-12 11:09 275456 c:\windows\system32\dllcache\agentsvr.exe
+ 2008-08-01 21:38 . 2006-03-02 12:00 208384 c:\windows\system32\dllcache\accwiz.exe
+ 2008-08-01 21:48 . 2009-04-14 05:20 180224 c:\windows\system32\config\systemprofile\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat
+ 2008-12-14 05:20 . 1999-06-25 09:55 168448 c:\windows\system32\Adobe\Shockwave 11\UNWISE.EXE
+ 2008-08-03 15:13 . 2004-08-10 23:45 115712 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\logagent.exe
+ 2008-08-03 15:13 . 2006-03-02 12:00 122880 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\logagent.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 169984 c:\windows\PCHEALTH\UploadLB\Binaries\UploadM.exe
+ 2008-08-01 21:39 . 2006-03-02 12:00 179200 c:\windows\PCHEALTH\HELPCTR\Binaries\msconfig.exe
+ 2008-08-01 21:40 . 2006-03-02 12:00 118784 c:\windows\PCHEALTH\HELPCTR\Binaries\HelpHost.exe
+ 2008-09-26 08:36 . 2006-10-10 12:44 576512 c:\windows\network diagnostic\xpnetdiag.exe
+ 2008-09-28 06:34 . 2007-07-13 12:41 592896 c:\windows\Installer\{D6BF6477-8369-489F-8DE6-3731F4B88560}\Setup.exe
+ 2008-08-02 10:25 . 2008-08-02 10:25 315392 c:\windows\Installer\{AF600F7B-67A7-48D9-BA3B-0FF97F35F970}\_BF8B559013DF_491F_B1F5_D330A0E77264.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 102400 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\ACDSeePMShortcut_ECE0113B23D04DD889E6D2F026CABF03.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 102400 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\ACDPhotoEditorProgra_651BC4A249D243579EAEE00A3F4A4317.exe
+ 2008-08-03 15:58 . 2008-08-03 15:58 102400 c:\windows\Installer\{A68C28C4-D5CB-44FF-AE34-B500DA461C04}\ACDPhotoEditorDeskto_651BC4A249D243579EAEE00A3F4A4317.exe
+ 2008-08-01 21:51 . 2008-08-01 21:51 185856 c:\windows\Installer\{350C9410-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe
+ 2009-04-14 05:18 . 2005-10-20 18:02 163328 c:\windows\erdnt\subs\ERDNT.EXE
+ 2008-12-22 08:02 . 2006-11-02 21:56 223232 c:\windows\$NtUninstallwmp11$\wmpnscfg.exe
+ 2008-12-22 08:02 . 2006-11-02 21:56 937472 c:\windows\$NtUninstallwmp11$\wmpnetwk.exe
+ 2008-12-22 08:02 . 2004-08-10 20:52 143360 c:\windows\$NtUninstallwmp11$\wmlaunch.exe
+ 2008-12-22 08:02 . 2006-03-02 12:00 229376 c:\windows\$NtUninstallwmp11$\unregmp2.exe
+ 2008-12-22 08:02 . 2006-03-02 12:00 798720 c:\windows\$NtUninstallwmp11$\setup_wm.exe
+ 2008-12-22 08:00 . 2008-06-10 08:17 115712 c:\windows\$NtUninstallWMFDist11$\logagent.exe
+ 2008-12-11 13:46 . 2006-10-18 18:03 119808 c:\windows\$NtUninstallKB952069_WM9$\logagent.exe
+ 2008-11-10 15:54 . 2006-11-02 20:56 335872 c:\windows\$NtUninstallKB939683$\unregmp2.exe
+ 2008-11-09 08:03 . 2006-03-02 12:00 275456 c:\windows\$NtUninstallKB920213$\agentsvr.exe
+ 2008-11-10 15:59 . 2004-11-30 19:22 189952 c:\windows\$NtUninstallKB891781$\spuninst\spuninst.exe
+ 2008-11-10 15:55 . 2004-11-30 19:22 189952 c:\windows\$NtUninstallKB888302$\spuninst\spuninst.exe
+ 2008-11-10 16:05 . 2004-10-14 10:36 189952 c:\windows\$NtUninstallKB887472$\spuninst\spuninst.exe
+ 2008-11-09 08:02 . 2004-10-14 18:36 189952 c:\windows\$NtUninstallKB886185$\spuninst\spuninst.exe
+ 2008-11-10 16:14 . 2004-10-14 10:36 189952 c:\windows\$NtUninstallKB885836$\spuninst\spuninst.exe
+ 2008-11-10 16:07 . 2004-10-14 09:36 189952 c:\windows\$NtUninstallKB873339$\spuninst\spuninst.exe
+ 2008-09-26 08:45 . 2008-06-23 08:23 644608 c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\iexplore.exe
+ 2006-10-12 11:54 . 2006-10-12 11:54 275456 c:\windows\$hf_mig$\KB920213\SP2QFE\agentsvr.exe
+ 2008-11-10 15:59 . 2004-11-30 13:47 681472 c:\windows\$hf_mig$\KB891781\update\update.exe
+ 2008-11-10 15:59 . 2004-11-30 19:22 189952 c:\windows\$hf_mig$\KB891781\spuninst.exe
+ 2008-11-10 15:55 . 2004-11-30 13:47 681472 c:\windows\$hf_mig$\KB888302\update\update.exe
+ 2008-11-10 15:55 . 2004-11-30 19:22 189952 c:\windows\$hf_mig$\KB888302\spuninst.exe
+ 2008-11-10 16:05 . 2004-10-14 10:35 681472 c:\windows\$hf_mig$\KB887472\update\update.exe
+ 2008-11-10 16:05 . 2004-10-14 10:36 189952 c:\windows\$hf_mig$\KB887472\spuninst.exe
+ 2008-11-09 08:02 . 2004-10-14 18:35 681472 c:\windows\$hf_mig$\KB886185\update\update.exe
+ 2008-11-09 08:02 . 2004-10-14 18:36 189952 c:\windows\$hf_mig$\KB886185\spuninst.exe
+ 2008-11-10 16:14 . 2004-10-14 10:35 681472 c:\windows\$hf_mig$\KB885836\update\update.exe
+ 2008-11-10 16:14 . 2004-10-14 10:36 189952 c:\windows\$hf_mig$\KB885836\spuninst.exe
+ 2008-11-10 16:07 . 2004-10-14 09:35 681472 c:\windows\$hf_mig$\KB873339\update\update.exe
+ 2008-11-10 16:07 . 2004-10-14 09:36 189952 c:\windows\$hf_mig$\KB873339\spuninst.exe
+ 2009-04-13 22:20 . 2009-03-10 20:26 1437568 c:\windows\system32\KB905474\wganotifypackageinner.exe
+ 2004-09-13 12:15 . 2006-11-02 22:33 1697280 c:\windows\system32\dllcache\setup_wm.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 1239552 c:\windows\system32\dllcache\ntbackup.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 3574272 c:\windows\system32\dllcache\moviemk.exe
+ 2006-03-02 12:00 . 2006-03-02 12:00 1318912 c:\windows\system32\dllcache\dxdiag.exe
+ 2003-11-06 21:01 . 2004-08-19 14:39 1056768 c:\windows\system32\dllcache\conf.exe
+ 2008-08-04 16:06 . 2008-08-04 16:06 1925120 c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\ESLaunchShortcut_B74D4E10103300000000000000000001.exe
+ 2008-11-10 16:05 . 2004-08-19 13:51 1686528 c:\windows\$NtUninstallKB887472$\msmsgs.exe
+ 2004-10-13 16:21 . 2004-10-13 16:21 1713152 c:\windows\$hf_mig$\KB887472\SP2QFE\msmsgs.exe
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\programmi\File comuni\Ahead\Lib\NMBgMonitor.exe" [2008-01-22 152872]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2006-03-02 34304]
"Advanced SystemCare 3"="c:\programmi\IObit\Advanced SystemCare 3\AWC.exe" [2009-02-22 2272592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb08.exe" [2003-03-26 192512]
"NeroCheck"="c:\windows\system32\NeroCheck.exe" [2008-08-02 176128]
"Matrox Powerdesk"="c:\windows\system32\PDesk\PDesk.exe" [2002-02-14 671744]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2008-05-27 434176]
"zBrowser Launcher"="c:\progra~1\Logitech\iTouch\iTouch.exe" [2002-11-23 650306]
"EM_EXEC"="c:\progra~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE" [2001-12-20 54272]
"VX3000"="c:\windows\vVX3000.exe" [2007-04-10 709992]
"LifeCam"="c:\programmi\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2008-05-28 570664]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"Acrobat Assistant 8.0"="c:\programmi\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2006-10-22 620152]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-04-13 1932568]
"ClamWin"="c:\programmi\ClamWin\bin\ClamTray.exe" [2008-11-09 106496]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2006-03-02 34304]
c:\documents and settings\All Users.WINDOWS\Menu Avvio\Programmi\Esecuzione automatica\
Adobe Reader Synchronizer.lnk - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe [2006-10-23 734872]
Avvio veloce di Adobe Acrobat.lnk - c:\windows\Installer\{AC76BA86-1040-7D00-7760-000000000003}\_SC_Acrobat.exe [2009-04-11 295606]
BTTray.lnk - c:\programmi\WIDCOMM\Bluetooth Software\BTTray.exe [2006-04-12 663613]
Monitor Apache Servers.lnk - c:\programmi\Apache Software Foundation\Apache2.2\bin\ApacheMonitor.exe [2008-06-13 61521]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="c:\windows\explorer.exe,"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-04-13 18:42 10520 c:\windows\system32\avgrsstx.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Avvio^Programmi^Esecuzione automatica^Adobe Gamma.lnk]
path=c:\documents and settings\All Users.WINDOWS\Menu Avvio\Programmi\Esecuzione automatica\Adobe Gamma.lnk
backup=c:\windows\pss\Adobe Gamma.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^antonio_old^Menu Avvio^Programmi^Esecuzione automatica^Adobe Gamma.lnk]
path=c:\documents and settings\antonio_old\Menu Avvio\Programmi\Esecuzione automatica\Adobe Gamma.lnk
backup=c:\windows\pss\Adobe Gamma.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
--a------ 2004-12-14 02:12 503808 c:\programmi\Adobe\Adobe Acrobat 7.0\Distillr\acrotray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Version Cue CS2]
--a------ 2005-04-06 16:53 876544 c:\programmi\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DeviceDiscovery]
--a------ 2002-12-02 21:56 61440 c:\programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
-ra--c--- 2002-12-17 12:40 69632 c:\programmi\Hewlett-Packard\HP Software Update\hpwuSchd.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\fxsclnt.exe"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\Macromedia\\Dreamweaver MX\\Dreamweaver.exe"=
"c:\\Programmi\\GlobalSCAPE\\CuteFTP\\cutftp32.exe"=
"c:\\Programmi\\Adobe\\Adobe Version Cue CS2\\bin\\VersionCueCS2.exe"=
"c:\\Programmi\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
"c:\\Programmi\\Mozilla Firefox\\firefox.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Programmi\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Programmi\\File comuni\\Ahead\\Nero Web\\SetupX.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgupd.exe"=
"c:\\Programmi\\AVG\\AVG8\\avgnsx.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4662:TCP"= 4662:TCP:eMule: TCP in ingresso
"4672:UDP"= 4672:UDP:eMule: UPD in ingresso
R1 kfa5516;kfa5516; [x]
R1 lkbdhlpr;Logitech Keyboard Class Helper Driver; [x]
R1 toj186b;toj186b; [x]
R3 PAC207;Trust WB-1400T Webcam; [x]
S0 viasraid;viasraid;c:\windows\system32\DRIVERS\viasraid.sys [2003-06-12 75904]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2009-04-13 325640]
S1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2009-04-13 108552]
S2 Apache2.2;Apache2.2;c:\programmi\Apache Software Foundation\Apache2.2\bin\httpd.exe [2008-06-13 45115]
S2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2009-04-13 298264]
S3 Stmatm;ATM/ADSL miniport;c:\windows\system32\DRIVERS\stmatm.sys [2002-09-25 59338]
S3 TaurusUsb;ADSL Modem USB Service 1.09a;c:\windows\system32\DRIVERS\torususb.sys [2003-01-09 527980]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aa30c494-e6f1-11dd-99fb-00e098b9901e}]
\Shell\AutoRun\command - .\run\autorun.exe
\Shell\open\Command - .\run\autorun.exe
.
Contenuto della cartella 'Scheduled Tasks'
2009-03-30 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2008-04-11 17:57]
2009-04-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1659004503-606747145-839522115-1004.job
- c:\documents and settings\antonio_old\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2008-09-02 23:26]
2009-04-14 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2009-03-10 22:18]
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
HKU-Default-Run-reader_s - c:\documents and settings\antonio_old\reader_s.exe
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
IE: Aggiungi a PDF esistente - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti destinazione link in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti destinazione link in file PDF esistente - c:\programmi\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti i link selezionati in Adobe PDF - c:\programmi\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Converti i link selezionati in file PDF esistente - c:\programmi\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Converti in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti nel file PDF esistente - c:\programmi\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Converti selezione in Adobe PDF - c:\programmi\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Converti selezione in file PDF esistente - c:\programmi\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: Invia a periferica &Bluetooth... - c:\programmi\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: {6D8F4672-3AE9-4938-B3DB-19C264F1758D} = 151.99.125.1,151.99.250.2
.
**************************************************************************
catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-04-14 07:20
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwOpenFile
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MySQL]
"ImagePath"="\"c:\programmi\MySQL\MySQL Server 5.0\bin\mysqld-nt\" --defaults-file=\"c:\programmi\MySQL\MySQL Server 5.0\my.ini\" MySQL"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
- - - - - - - > 'explorer.exe'(3408)
c:\progra~1\Logitech\iTouch\iTchHk.dll
c:\programmi\File comuni\Logitech\Scrolling\LgMsgHk.dll
c:\windows\system32\PDesk\PDKERNEL.DLL
c:\windows\system32\PDesk\PDTOOLS.DLL
c:\windows\system32\PDesk\PDRESITA.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\btncopy.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\drivers\CDAC11BA.EXE
c:\windows\system32\inetsrv\inetinfo.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\mgabg.exe
c:\programmi\Microsoft LifeCam\MSCamS32.exe
c:\programmi\mysql\MySQL Server 5.0\bin\mysqld-nt.exe
c:\windows\system32\IoctlSvc.exe
c:\programmi\AVG\AVG8\avgrsx.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\programmi\AVG\AVG8\avgcsrvx.exe
c:\windows\system32\wscntfy.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexingService.exe
c:\programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
c:\programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
.
**************************************************************************
.
Ora fine scansione: 2009-04-14 7:30 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2009-04-14 05:30
ComboFix2.txt 2009-04-13 08:58
ComboFix3.txt 2009-04-12 08:01
ComboFix4.txt 2009-04-11 21:42
Pre-Run: 18.122.005.504 byte disponibili
Post-Run: 18,234,107,904 byte disponibili
864 --- E O F --- 2009-04-13 22:20
