Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » virus. NON RISOLTO

2 pages: [1] 2
virus. NON RISOLTO Opzioni
Topic Precedente · Topic Sucessivo
ginodalcol
Inviato: Sunday, December 04, 2011 7:51:40 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
PC di mia madre; ASUS, XP SP3; Intel Pentium M740; ram 2GB DDR2; HD 59GB.
problemi: lentezza ad aprire i vari programmi; ad entrare in internet; inutile pulizia con CCleaner; file TEMP; cartella Prefetch. Defrag; scandisk
Mi aiutate per piacere. Grazie. Gino



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14.31.00, on 04/12/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
C:\Programmi\Intel\Wireless\Bin\ZcfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\ASUS\Wireless Console\wcourier.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Brother\Brmfcmon\BrMfcWnd.exe
C:\Programmi\Brother\Brmfcmon\BrMfcmon.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
C:\Programmi\Intel\Wireless\Bin\OProtSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Macrium\Reflect\ReflectService.exe
C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Programmi\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Programmi\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Programmi\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O4 - HKLM\..\Run: [Wireless Console] C:\Programmi\ASUS\Wireless Console\wcourier.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [EOUApp] C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Status Monitor.lnk = C:\Programmi\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: EvtEng - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Programmi\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
O23 - Service: OwnershipProtocol - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\OProtSvc.exe
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Programmi\Macrium\Reflect\ReflectService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe

--
End of file - 7266 bytes


Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Versione database: 8273

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

04/12/2011 15.42.29
mbam-log-2011-12-04 (15-42-13).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi esaminati: 230165
Tempo impiegato: 48 minuti, 48 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Voci infette nei dati di registro: 0
Cartelle infette: 0
File infetti: 3

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
(Non sono stati rilevati elementi nocivi)

Valori di registro infetti:
(Non sono stati rilevati elementi nocivi)

Voci infette nei dati di registro:
(Non sono stati rilevati elementi nocivi)

Cartelle infette:
(Non sono stati rilevati elementi nocivi)

File infetti:
c:\programmi\Samsung\samsung pc studio 3\Update\Copyer.exe (Adware.Kraddare) -> No action taken.
c:\programmi\Samsung\samsung pc studio 3\Update\liveupdate.exe (Adware.Kraddare) -> No action taken.
c:\programmi\DIETA\POWRPROF.dll (Trojan.Agent) -> No action taken.
Torna in alto
 
Sponsor
Inviato: Sunday, December 04, 2011 7:51:40 PM

 
Torna in alto
 
cbbusto
Inviato: Sunday, December 04, 2011 11:14:56 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ciao gino, chiudi i programmi e disconnesso fixa questa voce:

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
Il resto sembra a posto.
Fai questa scansione: Start/Esegui digita MRT e dai ok poi avanti e clic su scansione completa, ci metterà un pò
ma lascia fare, vediamo cosa trova.
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 8:45:27 AM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
cbbusto ha scritto:
Ciao gino, chiudi i programmi e disconnesso fixa questa voce:

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
Il resto sembra a posto.
Fai questa scansione: Start/Esegui digita MRT e dai ok poi avanti e clic su scansione completa, ci metterà un pò
ma lascia fare, vediamo cosa trova.

Ciao Claudio, ho iniziato alle ore 08:41, appena possibile darò notizie.
Alcuni tempi: in avvio la macchina è molto veloce; per aprire google ci vogliono 57''; per aprire Hijackthis ci vogliono circa 48'', per aprire word circa 51''.
Ho un sospetto: che in passato siano stati puliti dei virus (non mi è dato sapere) e che vi siano stati danni al registro. Ho anticipato che la pulizia di routine è stata compiuta prima di postare i log. aggiungo che il portatile si surriscalda molto. Mi chiedo se sia giunto alla fine. Intanto grazie. gino
Torna in alto
 
cbbusto
Inviato: Monday, December 05, 2011 11:40:42 AM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Fammi sapere appena finita la scansione.
I portatili si sa che scaldano, dovresti prendere quelle basi per tenerlo rialzato hanno anche una ventolina che tiene raffreddato il portatile.
QUI trovi un esempio.
Controlla che le feritoie sotto e di lato siano pulite, dovresti provare con un aspirapolvere.
Controlla la temperatura del disco con QUESTO.
Hai messo HD da 59Gb, mi sembra molto piccolo, devi controllare che lo spazio occupato non superi l'80% altrimenti causa rallentamenti ed avvisi di spazio insufficiente.
Se l'uso è limitato poù andare avanti ancora.
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 1:56:48 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
cbbusto ha scritto:
Fammi sapere appena finita la scansione.
I portatili si sa che scaldano, dovresti prendere quelle basi per tenerlo rialzato hanno anche una ventolina che tiene raffreddato il portatile.
QUI trovi un esempio.
Controlla che le feritoie sotto e di lato siano pulite, dovresti provare con un aspirapolvere.
Controlla la temperatura del disco con QUESTO.
Hai messo HD da 59Gb, mi sembra molto piccolo, devi controllare che lo spazio occupato non superi l'80% altrimenti causa rallentamenti ed avvisi di spazio insufficiente.
Se l'uso è limitato poù andare avanti ancora.

NEGATIVO: nessun malware rilevato.
L'HD è piccolo ma occupato al 35 % dopo una prima pulizia e una svolta a favore dei programmi AUP
Temperatura HD 35°
La mia tesi è che i problemi derivino dal registro.
Mi accingo a pulire il pc.
Torna in alto
 
francescoamato
Inviato: Monday, December 05, 2011 2:34:58 PM
Rank: AiutAmico

Iscritto dal : 11/19/2011
Posts: 78
Ciao Gino, prova questa scansione; dura pochissimo e ci consente di capire se nel tuo sistema sono attivi Rootkit.

http://computerprotetto.wordpress.com/2011/12/05/6/
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 2:58:52 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
francescoamato ha scritto:
Ciao Gino, prova questa scansione; dura pochissimo e ci consente di capire se nel tuo sistema sono attivi Rootkit.

http://computerprotetto.wordpress.com/2011/12/05/6/

Il log.


14:52:09.0078 3628 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44
14:52:09.0515 3628 ============================================================
14:52:09.0515 3628 Current date / time: 2011/12/05 14:52:09.0515
14:52:09.0515 3628 SystemInfo:
14:52:09.0515 3628
14:52:09.0515 3628 OS Version: 5.1.2600 ServicePack: 3.0
14:52:09.0515 3628 Product type: Workstation
14:52:09.0515 3628 ComputerName: ASUS
14:52:09.0515 3628 UserName: Luciana
14:52:09.0515 3628 Windows directory: C:\WINDOWS
14:52:09.0515 3628 System windows directory: C:\WINDOWS
14:52:09.0515 3628 Processor architecture: Intel x86
14:52:09.0515 3628 Number of processors: 1
14:52:09.0515 3628 Page size: 0x1000
14:52:09.0515 3628 Boot type: Normal boot
14:52:09.0515 3628 ============================================================
14:52:11.0390 3628 Initialize success
14:52:17.0703 2256 ============================================================
14:52:17.0703 2256 Scan started
14:52:17.0703 2256 Mode: Manual; SigCheck; TDLFS;
14:52:17.0703 2256 ============================================================
14:52:18.0093 2256 Abiosdsk - ok
14:52:18.0109 2256 abp480n5 - ok
14:52:18.0171 2256 ACPI (d766e636187b8f240bbfbabcd51eb2c6) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:52:18.0421 2256 ACPI - ok
14:52:18.0437 2256 ACPIEC (49ac5cd87fbdda62f3e25190019e7627) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
14:52:18.0562 2256 ACPIEC - ok
14:52:18.0578 2256 adpu160m - ok
14:52:18.0609 2256 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:52:18.0734 2256 aec - ok
14:52:18.0781 2256 AegisP (f498fd605c08404b20a48954c722ff74) C:\WINDOWS\system32\DRIVERS\AegisP.sys
14:52:18.0796 2256 AegisP ( UnsignedFile.Multi.Generic ) - warning
14:52:18.0796 2256 AegisP - detected UnsignedFile.Multi.Generic (1)
14:52:18.0859 2256 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:52:18.0875 2256 AFD - ok
14:52:18.0875 2256 Aha154x - ok
14:52:18.0890 2256 aic78u2 - ok
14:52:18.0906 2256 aic78xx - ok
14:52:19.0078 2256 ALCXWDM (3cb2e2c258bfff962f90e26c0649c638) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
14:52:19.0218 2256 ALCXWDM - ok
14:52:19.0437 2256 AliIde - ok
14:52:19.0453 2256 amsint - ok
14:52:19.0515 2256 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
14:52:19.0640 2256 Arp1394 - ok
14:52:19.0656 2256 asc - ok
14:52:19.0671 2256 asc3350p - ok
14:52:19.0687 2256 asc3550 - ok
14:52:19.0718 2256 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:52:19.0828 2256 AsyncMac - ok
14:52:19.0859 2256 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:52:19.0984 2256 atapi - ok
14:52:20.0000 2256 Atdisk - ok
14:52:20.0093 2256 ati2mtag (1a12941c75be2003286c7787f21a7f81) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
14:52:20.0140 2256 ati2mtag - ok
14:52:20.0156 2256 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:52:20.0281 2256 Atmarpc - ok
14:52:20.0328 2256 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:52:20.0437 2256 audstub - ok
14:52:20.0593 2256 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:52:20.0718 2256 Beep - ok
14:52:21.0031 2256 BHDrvx86 (9d14d76e4e7b9b2ead17149011db2b11) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20111123.001\BHDrvx86.sys
14:52:21.0109 2256 BHDrvx86 - ok
14:52:21.0171 2256 BrScnUsb (92a964547b96d697e5e9ed43b4297f5a) C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
14:52:21.0187 2256 BrScnUsb - ok
14:52:21.0250 2256 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:52:21.0375 2256 cbidf2k - ok
14:52:21.0484 2256 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:52:21.0609 2256 CCDECODE - ok
14:52:21.0625 2256 cd20xrnt - ok
14:52:21.0656 2256 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:52:21.0781 2256 Cdaudio - ok
14:52:21.0843 2256 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:52:21.0953 2256 Cdfs - ok
14:52:21.0984 2256 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:52:22.0093 2256 Cdrom - ok
14:52:22.0109 2256 Changer - ok
14:52:22.0125 2256 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
14:52:22.0250 2256 CmBatt - ok
14:52:22.0265 2256 CmdIde - ok
14:52:22.0281 2256 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
14:52:22.0390 2256 Compbatt - ok
14:52:22.0421 2256 Cpqarray - ok
14:52:22.0437 2256 dac2w2k - ok
14:52:22.0453 2256 dac960nt - ok
14:52:22.0468 2256 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:52:22.0593 2256 Disk - ok
14:52:22.0671 2256 dmboot (82bc125a8ed33f5f0e75f2aac1065323) C:\WINDOWS\system32\drivers\dmboot.sys
14:52:22.0796 2256 dmboot - ok
14:52:22.0828 2256 dmio (e959ddc0ea7ac11ee5e5602e2a364310) C:\WINDOWS\system32\drivers\dmio.sys
14:52:22.0937 2256 dmio - ok
14:52:22.0953 2256 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:52:23.0078 2256 dmload - ok
14:52:23.0125 2256 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:52:23.0234 2256 DMusic - ok
14:52:23.0250 2256 dpti2o - ok
14:52:23.0265 2256 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:52:23.0375 2256 drmkaud - ok
14:52:23.0500 2256 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Programmi\File comuni\Symantec Shared\EENGINE\eeCtrl.sys
14:52:23.0531 2256 eeCtrl - ok
14:52:23.0562 2256 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Programmi\File comuni\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:52:23.0578 2256 EraserUtilRebootDrv - ok
14:52:23.0718 2256 eugss (45708f1643d7fd5d1102ded09683677c) C:\WINDOWS\system32\Drivers\eugssxp.sys
14:52:23.0734 2256 eugss - ok
14:52:23.0781 2256 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:52:23.0906 2256 Fastfat - ok
14:52:23.0937 2256 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:52:24.0046 2256 Fdc - ok
14:52:24.0078 2256 Fips (2cfea3326981a18c6baf2bd9be76225b) C:\WINDOWS\system32\drivers\Fips.sys
14:52:24.0187 2256 Fips - ok
14:52:24.0203 2256 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:52:24.0312 2256 Flpydisk - ok
14:52:24.0343 2256 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:52:24.0468 2256 FltMgr - ok
14:52:24.0484 2256 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:52:24.0609 2256 Fs_Rec - ok
14:52:24.0625 2256 Ftdisk (f3269a6ee547ea87b949a1cea4816b38) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:52:24.0750 2256 Ftdisk - ok
14:52:24.0796 2256 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:52:24.0812 2256 GEARAspiWDM - ok
14:52:24.0859 2256 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:52:24.0984 2256 Gpc - ok
14:52:25.0000 2256 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:52:25.0109 2256 hidusb - ok
14:52:25.0125 2256 hpn - ok
14:52:25.0203 2256 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
14:52:25.0234 2256 HPZid412 - ok
14:52:25.0250 2256 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
14:52:25.0281 2256 HPZipr12 - ok
14:52:25.0296 2256 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
14:52:25.0312 2256 HPZius12 - ok
14:52:25.0375 2256 HSFHWICH (140ba850417896b6b3322048de280368) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
14:52:25.0390 2256 HSFHWICH - ok
14:52:25.0453 2256 HSF_DP (b2dfc168d6f7512faea085253c5a37ad) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
14:52:25.0500 2256 HSF_DP - ok
14:52:25.0703 2256 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
14:52:25.0812 2256 HTTP - ok
14:52:25.0828 2256 i2omgmt - ok
14:52:25.0843 2256 i2omp - ok
14:52:25.0859 2256 i8042prt (610726e28af55b95043c5c35a727e320) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:52:25.0984 2256 i8042prt - ok
14:52:26.0312 2256 IDSxpx86 (e72d3894d42355e9cd5fd77e1e4fea11) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20111202.001\IDSxpx86.sys
14:52:26.0343 2256 IDSxpx86 - ok
14:52:26.0375 2256 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:52:26.0484 2256 Imapi - ok
14:52:26.0515 2256 ini910u - ok
14:52:26.0546 2256 IntelIde (027fe9b28fb0f861c181d25923b31e78) C:\WINDOWS\system32\DRIVERS\intelide.sys
14:52:26.0656 2256 IntelIde - ok
14:52:26.0687 2256 intelppm (ebd830a0970c438047006a49c23e287f) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:52:26.0796 2256 intelppm - ok
14:52:26.0828 2256 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:52:26.0953 2256 Ip6Fw - ok
14:52:26.0984 2256 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:52:27.0109 2256 IpFilterDriver - ok
14:52:27.0265 2256 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:52:27.0375 2256 IpInIp - ok
14:52:27.0406 2256 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:52:27.0531 2256 IpNat - ok
14:52:27.0562 2256 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:52:27.0671 2256 IPSec - ok
14:52:27.0703 2256 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
14:52:27.0812 2256 irda - ok
14:52:27.0843 2256 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:52:27.0953 2256 IRENUM - ok
14:52:27.0984 2256 isapnp (0953594beb81cc72fcc62d37921b25a6) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:52:28.0093 2256 isapnp - ok
14:52:28.0156 2256 IWCA (872d090ca5c306f62d1982bce6302376) C:\WINDOWS\system32\DRIVERS\iwca.sys
14:52:28.0171 2256 IWCA - ok
14:52:28.0218 2256 Kbdclass (28b6eace513ca7eaba3b809ad4bc274d) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:52:28.0328 2256 Kbdclass - ok
14:52:28.0359 2256 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:52:28.0468 2256 kmixer - ok
14:52:28.0531 2256 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:52:28.0546 2256 KSecDD - ok
14:52:28.0562 2256 lbrtfdc - ok
14:52:28.0625 2256 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
14:52:28.0640 2256 mdmxsdk - ok
14:52:28.0671 2256 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:52:28.0796 2256 mnmdd - ok
14:52:28.0828 2256 Modem (8cb6636806d76b85fafaee94d75f5129) C:\WINDOWS\system32\drivers\Modem.sys
14:52:28.0937 2256 Modem - ok
14:52:28.0953 2256 Mouclass (e904ebed608055a2bfb824c07f59766c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:52:29.0062 2256 Mouclass - ok
14:52:29.0109 2256 mouhid (d7662f0cf5b77bbbe3202716f5bd5318) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:52:29.0234 2256 mouhid - ok
14:52:29.0390 2256 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:52:29.0500 2256 MountMgr - ok
14:52:29.0515 2256 mraid35x - ok
14:52:29.0531 2256 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:52:29.0656 2256 MRxDAV - ok
14:52:29.0734 2256 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:52:29.0750 2256 MRxSmb - ok
14:52:29.0781 2256 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:52:29.0875 2256 Msfs - ok
14:52:29.0906 2256 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:52:30.0031 2256 MSKSSRV - ok
14:52:30.0046 2256 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:52:30.0156 2256 MSPCLOCK - ok
14:52:30.0187 2256 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:52:30.0296 2256 MSPQM - ok
14:52:30.0328 2256 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:52:30.0437 2256 mssmbios - ok
14:52:30.0484 2256 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
14:52:30.0593 2256 MSTEE - ok
14:52:30.0640 2256 MTsensor (1c0f480b7c6136ddb5fb909995af014a) C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
14:52:30.0656 2256 MTsensor - ok
14:52:30.0687 2256 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:52:30.0703 2256 Mup - ok
14:52:30.0734 2256 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:52:30.0843 2256 NABTSFEC - ok
14:52:31.0109 2256 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111204.007\NAVENG.SYS
14:52:31.0125 2256 NAVENG - ok
14:52:31.0343 2256 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111204.007\NAVEX15.SYS
14:52:31.0406 2256 NAVEX15 - ok
14:52:31.0671 2256 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:52:31.0781 2256 NDIS - ok
14:52:31.0828 2256 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:52:31.0937 2256 NdisIP - ok
14:52:31.0984 2256 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:52:32.0000 2256 NdisTapi - ok
14:52:32.0015 2256 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:52:32.0140 2256 Ndisuio - ok
14:52:32.0156 2256 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:52:32.0265 2256 NdisWan - ok
14:52:32.0312 2256 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:52:32.0328 2256 NDProxy - ok
14:52:32.0359 2256 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:52:32.0468 2256 NetBIOS - ok
14:52:32.0500 2256 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:52:32.0625 2256 NetBT - ok
14:52:32.0656 2256 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
14:52:32.0765 2256 NIC1394 - ok
14:52:32.0796 2256 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:52:32.0906 2256 Npfs - ok
14:52:32.0937 2256 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:52:33.0062 2256 Ntfs - ok
14:52:33.0187 2256 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:52:33.0312 2256 Null - ok
14:52:33.0343 2256 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:52:33.0468 2256 NwlnkFlt - ok
14:52:33.0484 2256 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:52:33.0609 2256 NwlnkFwd - ok
14:52:33.0625 2256 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
14:52:33.0734 2256 ohci1394 - ok
14:52:33.0781 2256 P1171VID (25069801c85d6deef75e8c221f37dcb2) C:\WINDOWS\system32\DRIVERS\P1171Vid.sys
14:52:33.0796 2256 P1171VID - ok
14:52:33.0843 2256 Parport (4e9408a178b2d955871c2cdd278de3c3) C:\WINDOWS\system32\drivers\Parport.sys
14:52:33.0953 2256 Parport - ok
14:52:33.0968 2256 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:52:34.0078 2256 PartMgr - ok
14:52:34.0109 2256 ParVdm (0dabef655a444cb1e193626fb1d24b9f) C:\WINDOWS\system32\drivers\ParVdm.sys
14:52:34.0234 2256 ParVdm - ok
14:52:34.0250 2256 PCI (f40a46892afebb0314536b849d57c11e) C:\WINDOWS\system32\DRIVERS\pci.sys
14:52:34.0359 2256 PCI - ok
14:52:34.0375 2256 PCIDump - ok
14:52:34.0406 2256 PCIIde (b2df00d650fd6c4ee781740ed3c8e67f) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:52:34.0531 2256 PCIIde - ok
14:52:34.0546 2256 Pcmcia (815c50f2b1d1562800bdce8be895000e) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
14:52:34.0656 2256 Pcmcia - ok
14:52:34.0671 2256 PDCOMP - ok
14:52:34.0687 2256 PDFRAME - ok
14:52:34.0687 2256 PDRELI - ok
14:52:34.0703 2256 PDRFRAME - ok
14:52:34.0718 2256 perc2 - ok
14:52:34.0734 2256 perc2hib - ok
14:52:34.0796 2256 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:52:34.0906 2256 PptpMiniport - ok
14:52:34.0921 2256 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:52:35.0046 2256 PSched - ok
14:52:35.0078 2256 pssnap (ca0ab394298280adf9f971c0493e0f94) C:\WINDOWS\system32\DRIVERS\pssnap.sys
14:52:35.0093 2256 pssnap - ok
14:52:35.0109 2256 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:52:35.0218 2256 Ptilink - ok
14:52:35.0234 2256 ql1080 - ok
14:52:35.0250 2256 Ql10wnt - ok
14:52:35.0265 2256 ql12160 - ok
14:52:35.0281 2256 ql1240 - ok
14:52:35.0296 2256 ql1280 - ok
14:52:35.0328 2256 R592 (1f459f1c726790f6ca34a0fb3d50292d) C:\WINDOWS\system32\DRIVERS\R592.sys
14:52:35.0343 2256 R592 - ok
14:52:35.0375 2256 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:52:35.0500 2256 RasAcd - ok
14:52:35.0546 2256 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
14:52:35.0609 2256 Rasirda - ok
14:52:35.0640 2256 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:52:35.0750 2256 Rasl2tp - ok
14:52:35.0765 2256 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:52:35.0875 2256 RasPppoe - ok
14:52:35.0890 2256 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:52:36.0015 2256 Raspti - ok
14:52:36.0046 2256 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:52:36.0156 2256 Rdbss - ok
14:52:36.0187 2256 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:52:36.0296 2256 RDPCDD - ok
14:52:36.0421 2256 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:52:36.0546 2256 rdpdr - ok
14:52:36.0593 2256 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
14:52:36.0609 2256 RDPWD - ok
14:52:36.0671 2256 redbook (393fc252593323b624b230eca6b85e63) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:52:36.0781 2256 redbook - ok
14:52:36.0812 2256 risdpntk (66ab0104acd972c415662941176932f5) C:\WINDOWS\system32\DRIVERS\risdpntk.sys
14:52:36.0828 2256 risdpntk - ok
14:52:36.0859 2256 Rismxdp (0c2b27f6584e1ff5e728aff6a48af29f) C:\WINDOWS\system32\DRIVERS\Rismxdp.sys
14:52:36.0875 2256 Rismxdp - ok
14:52:36.0906 2256 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
14:52:37.0031 2256 ROOTMODEM - ok
14:52:37.0062 2256 s24trans (85a26a3bb748dfd3170cdbf45b0dd7fd) C:\WINDOWS\system32\DRIVERS\s24trans.sys
14:52:37.0078 2256 s24trans ( UnsignedFile.Multi.Generic ) - warning
14:52:37.0078 2256 s24trans - detected UnsignedFile.Multi.Generic (1)
14:52:37.0140 2256 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
14:52:37.0250 2256 sdbus - ok
14:52:37.0281 2256 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:52:37.0390 2256 Secdrv - ok
14:52:37.0437 2256 Serial (fdbd9d64e2e03270021d424f0dccf79d) C:\WINDOWS\system32\drivers\Serial.sys
14:52:37.0546 2256 Serial - ok
14:52:37.0578 2256 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:52:37.0687 2256 Sfloppy - ok
14:52:37.0703 2256 Simbad - ok
14:52:37.0750 2256 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:52:37.0859 2256 SLIP - ok
14:52:37.0906 2256 SMCIRDA (f67092c18b1e1ee4d73447f293970a79) C:\WINDOWS\system32\DRIVERS\smcirda.sys
14:52:37.0968 2256 SMCIRDA - ok
14:52:38.0093 2256 Sparrow - ok
14:52:38.0125 2256 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:52:38.0234 2256 splitter - ok
14:52:38.0250 2256 sr (618718cae288bf7cbd8fcbab2577d932) C:\WINDOWS\system32\DRIVERS\sr.sys
14:52:38.0359 2256 sr - ok
14:52:38.0468 2256 SRTSP (83726cf02eced69138948083e06b6eac) C:\WINDOWS\System32\Drivers\NIS\1206000.01D\SRTSP.SYS
14:52:38.0500 2256 SRTSP - ok
14:52:38.0546 2256 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SRTSPX.SYS
14:52:38.0562 2256 SRTSPX - ok
14:52:38.0625 2256 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:52:38.0656 2256 Srv - ok
14:52:38.0703 2256 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
14:52:38.0718 2256 sscdbus - ok
14:52:38.0750 2256 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
14:52:38.0765 2256 sscdmdfl - ok
14:52:38.0796 2256 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
14:52:38.0812 2256 sscdmdm - ok
14:52:38.0937 2256 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys
14:52:38.0937 2256 StarOpen ( UnsignedFile.Multi.Generic ) - warning
14:52:38.0937 2256 StarOpen - detected UnsignedFile.Multi.Generic (1)
14:52:38.0984 2256 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:52:39.0093 2256 streamip - ok
14:52:39.0140 2256 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:52:39.0250 2256 swenum - ok
14:52:39.0281 2256 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:52:39.0390 2256 swmidi - ok
14:52:39.0421 2256 symc810 - ok
14:52:39.0421 2256 symc8xx - ok
14:52:39.0531 2256 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SYMDS.SYS
14:52:39.0546 2256 SymDS - ok
14:52:39.0609 2256 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SYMEFA.SYS
14:52:39.0640 2256 SymEFA - ok
14:52:39.0828 2256 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
14:52:39.0843 2256 SymEvent - ok
14:52:39.0906 2256 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\WINDOWS\system32\drivers\NIS\1206000.01D\Ironx86.SYS
14:52:39.0906 2256 SymIRON - ok
14:52:39.0984 2256 SYMTDI (dec35ccaf7a222df918306cd2fdfbd39) C:\WINDOWS\System32\Drivers\NIS\1206000.01D\SYMTDI.SYS
14:52:40.0015 2256 SYMTDI - ok
14:52:40.0031 2256 sym_hi - ok
14:52:40.0031 2256 sym_u3 - ok
14:52:40.0093 2256 SynTP (55a7c2667ff752fabcae7e6b6df52a10) C:\WINDOWS\system32\DRIVERS\SynTP.sys
14:52:40.0109 2256 SynTP - ok
14:52:40.0171 2256 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:52:40.0281 2256 sysaudio - ok
14:52:40.0359 2256 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:52:40.0375 2256 Tcpip - ok
14:52:40.0406 2256 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:52:40.0531 2256 TDPIPE - ok
14:52:40.0546 2256 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:52:40.0656 2256 TDTCP - ok
14:52:40.0703 2256 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:52:40.0812 2256 TermDD - ok
14:52:40.0968 2256 toshidpt (62c57e7411b5f20980e70530ca69d5a7) C:\WINDOWS\system32\drivers\Toshidpt.sys
14:52:40.0968 2256 toshidpt ( UnsignedFile.Multi.Generic ) - warning
14:52:40.0968 2256 toshidpt - detected UnsignedFile.Multi.Generic (1)
14:52:40.0984 2256 TosIde - ok
14:52:41.0031 2256 tosporte (09505abeae3de953442417a48256684a) C:\WINDOWS\system32\DRIVERS\tosporte.sys
14:52:41.0031 2256 tosporte ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0031 2256 tosporte - detected UnsignedFile.Multi.Generic (1)
14:52:41.0062 2256 Tosrfbd (47bb36a3db94807bc26c280d1ce4a243) C:\WINDOWS\system32\Drivers\tosrfbd.sys
14:52:41.0062 2256 Tosrfbd ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0062 2256 Tosrfbd - detected UnsignedFile.Multi.Generic (1)
14:52:41.0078 2256 Tosrfbnp (fe200eece7521061cdad658c6ee4f341) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
14:52:41.0078 2256 Tosrfbnp ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0078 2256 Tosrfbnp - detected UnsignedFile.Multi.Generic (1)
14:52:41.0109 2256 Tosrfcom (d185be751021bcf1e5d58566d408314a) C:\WINDOWS\system32\Drivers\tosrfcom.sys
14:52:41.0109 2256 Tosrfcom ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0109 2256 Tosrfcom - detected UnsignedFile.Multi.Generic (1)
14:52:41.0125 2256 Tosrfhid (341612b9758054e5965bcd6ae111b8f9) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
14:52:41.0125 2256 Tosrfhid ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0125 2256 Tosrfhid - detected UnsignedFile.Multi.Generic (1)
14:52:41.0140 2256 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
14:52:41.0156 2256 tosrfnds ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0156 2256 tosrfnds - detected UnsignedFile.Multi.Generic (1)
14:52:41.0187 2256 TosRfSnd (350814a87f8ba3b0e28278feddf36f82) C:\WINDOWS\system32\drivers\TosRfSnd.sys
14:52:41.0203 2256 TosRfSnd ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0203 2256 TosRfSnd - detected UnsignedFile.Multi.Generic (1)
14:52:41.0218 2256 Tosrfusb (ddb8a339e57d514768f45d33b11bdb50) C:\WINDOWS\system32\Drivers\tosrfusb.sys
14:52:41.0218 2256 Tosrfusb ( UnsignedFile.Multi.Generic ) - warning
14:52:41.0218 2256 Tosrfusb - detected UnsignedFile.Multi.Generic (1)
14:52:41.0265 2256 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:52:41.0375 2256 Udfs - ok
14:52:41.0390 2256 UIUSys - ok
14:52:41.0406 2256 ultra - ok
14:52:41.0437 2256 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:52:41.0562 2256 Update - ok
14:52:41.0609 2256 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
14:52:41.0625 2256 USBAAPL - ok
14:52:41.0671 2256 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:52:41.0781 2256 usbccgp - ok
14:52:41.0812 2256 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:52:41.0921 2256 usbehci - ok
14:52:41.0937 2256 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:52:42.0062 2256 usbhub - ok
14:52:42.0093 2256 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:52:42.0203 2256 usbprint - ok
14:52:42.0265 2256 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:52:42.0375 2256 usbscan - ok
14:52:42.0500 2256 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:52:42.0609 2256 USBSTOR - ok
14:52:42.0625 2256 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:52:42.0734 2256 usbuhci - ok
14:52:42.0750 2256 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:52:42.0859 2256 VgaSave - ok
14:52:42.0875 2256 ViaIde - ok
14:52:42.0906 2256 VolSnap (e46c1b5a56da7da603d09dfcc79ec59e) C:\WINDOWS\system32\drivers\VolSnap.sys
14:52:43.0015 2256 VolSnap - ok
14:52:43.0234 2256 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys
14:52:43.0359 2256 w29n51 - ok
14:52:43.0578 2256 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:52:43.0687 2256 Wanarp - ok
14:52:43.0703 2256 WDICA - ok
14:52:43.0734 2256 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:52:43.0843 2256 wdmaud - ok
14:52:43.0937 2256 winachsf (2dc7c0b6175a0a8ed84a4f70199c93b5) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
14:52:43.0968 2256 winachsf - ok
14:52:44.0140 2256 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:52:44.0250 2256 WSTCODEC - ok
14:52:44.0312 2256 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:52:44.0328 2256 WudfPf - ok
14:52:44.0343 2256 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:52:44.0359 2256 WudfRd - ok
14:52:44.0421 2256 yukonwxp (4322c32ced8c4772e039616dcbf01d3f) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
14:52:44.0453 2256 yukonwxp - ok
14:52:44.0484 2256 MBR (0x1B8) (828e02d5c4a4fbe53441ee9dbee51f43) \Device\Harddisk0\DR0
14:52:44.0671 2256 \Device\Harddisk0\DR0 - ok
14:52:44.0687 2256 Boot (0x1200) (2072f85f89f5eec11f42ee205efea1ea) \Device\Harddisk0\DR0\Partition0
14:52:44.0687 2256 \Device\Harddisk0\DR0\Partition0 - ok
14:52:44.0687 2256 ============================================================
14:52:44.0687 2256 Scan finished
14:52:44.0687 2256 ============================================================
14:52:44.0796 3532 Detected object count: 12
14:52:44.0796 3532 Actual detected object count: 12
14:52:55.0734 3532 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 toshidpt ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 toshidpt ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 tosporte ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 tosporte ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 Tosrfbd ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 Tosrfbd ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 Tosrfbnp ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 Tosrfbnp ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 Tosrfcom ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 Tosrfcom ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 Tosrfhid ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 Tosrfhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 tosrfnds ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 tosrfnds ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 TosRfSnd ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 TosRfSnd ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:52:55.0734 3532 Tosrfusb ( UnsignedFile.Multi.Generic ) - skipped by user
14:52:55.0734 3532 Tosrfusb ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:54:27.0843 3536 Deinitialize success
Torna in alto
 
francescoamato
Inviato: Monday, December 05, 2011 3:07:36 PM
Rank: AiutAmico

Iscritto dal : 11/19/2011
Posts: 78
Lo sospettavo.
E' doveroso un controllo con ComboFix (quei file non mi piacciono per niente).
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 3:15:04 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
quindi cosa dovrei fare?
Torna in alto
 
francescoamato
Inviato: Monday, December 05, 2011 3:17:43 PM
Rank: AiutAmico

Iscritto dal : 11/19/2011
Posts: 78
A parer mio, questo dovresti fare:
Scarica combofix da questo link: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Salvalo obbligatoriamente sul desktop. Disconnettiti dalla rete.
Disabilita Antivirus e eventuali Antispyware e firewall. Chiudi tutti i programmi aperti.
Lancia Combofix, non installare la console di ripristino di emergenza e prosegui.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendi pazientemente la fine delle operazioni.
Al termine, verrà creato un file log in C:\ComboFix.txt.
Postalo qui.
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 3:24:27 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
francescoamato ha scritto:
A parer mio, questo dovresti fare:
Scarica combofix da questo link: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Salvalo obbligatoriamente sul desktop. Disconnettiti dalla rete.
Disabilita Antivirus e eventuali Antispyware e firewall. Chiudi tutti i programmi aperti.
Lancia Combofix, non installare la console di ripristino di emergenza e prosegui.
Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendi pazientemente la fine delle operazioni.
Al termine, verrà creato un file log in C:\ComboFix.txt.
Postalo qui.

Ciao Francesco.
Procedo
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 3:41:50 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
ComboFix 11-12-05.01 - Luciana 05/12/2011 15.31.24.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.2047.1502 [GMT 1:00]
Eseguito da: c:\documents and settings\Luciana\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *Disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
.
ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Dati applicazioni\TEMP
c:\documents and settings\Luciana\WINDOWS
c:\windows\IsUn0410.exe
c:\windows\iun6002.exe
c:\windows\unin0410.exe
.
.
((((((((((((((((((((((((( Files Creati Da 2011-11-05 al 2011-12-05 )))))))))))))))))))))))))))))))))))
.
.
2011-12-05 12:59 . 2011-12-05 12:59 -------- d-----w- c:\programmi\CrystalDiskInfo
2011-12-04 18:37 . 2011-12-04 18:37 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-10 14:22 . 2010-03-04 04:54 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-28 07:06 . 2007-08-02 12:00 603136 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 09:41 . 2008-07-29 18:59 613888 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 09:41 . 2007-08-02 12:00 23040 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-26 09:41 . 2007-08-02 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console"="c:\programmi\ASUS\Wireless Console\wcourier.exe" [2005-03-02 57344]
"IntelWireless"="c:\programmi\Intel\Wireless\Bin\ifrmewrk.exe" [2004-10-15 385024]
"EOUApp"="c:\programmi\Intel\Wireless\Bin\EOUWiz.exe" [2004-10-15 356352]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-13 15360]
.
c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Status Monitor.lnk - c:\programmi\Brother\Brmfcmon\BrMfcWnd.exe [2010-3-10 1089536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless]
2004-10-15 10:27 110592 ----a-w- c:\programmi\Intel\Wireless\Bin\LgNotify.dll
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Bluetooth Manager.lnk]
backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^HP Digital Imaging Monitor.lnk]
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Status Monitor.lnk]
backup=c:\windows\pss\Status Monitor.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Luciana^Menu Avvio^Programmi^Esecuzione automatica^OpenOffice.org 3.2.lnk]
backup=c:\windows\pss\OpenOffice.org 3.2.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DNS7reminder
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-03-30 04:59 937920 ----a-r- c:\programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2011-09-07 22:58 37296 ----a-w- c:\programmi\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
2005-01-19 20:40 339968 ----a-w- c:\programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrMfcWnd]
2008-02-19 07:22 1089536 ----a-r- c:\programmi\Brother\Brmfcmon\BrMfcWnd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter3]
2007-12-21 16:57 86016 ----a-w- c:\programmi\Brother\ControlCenter3\BrCtrCen.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative WebCam Tray]
2003-10-13 01:04 184320 ----a-w- c:\programmi\Creative\Shared Files\CamTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-05-30 13:02 136176 ----atw- c:\documents and settings\Luciana\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HControl]
2005-02-04 10:34 98304 ----a-r- c:\windows\ATK0100\HControl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
2007-10-11 18:01 46368 ----a-w- c:\programmi\ScanSoft\PaperPort\IndexSearch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2005-02-16 14:15 221184 ----a-w- c:\progra~1\FILECO~1\INSTAL~1\UPDATE~1\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
2005-02-16 15:15 81920 ----a-w- c:\programmi\File comuni\InstallShield\UpdateService\issch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-08-18 23:07 421736 ----a-w- c:\programmi\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-13 18:14 1695232 ------w- c:\programmi\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OmniPage]
1998-11-19 10:20 44032 ----a-w- c:\programmi\Caere\OmniPagePro90\OPware32.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
2007-10-11 18:03 29984 ----a-w- c:\programmi\ScanSoft\PaperPort\pptd40nt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power_Gear]
2004-09-21 15:55 81920 ----a-w- c:\programmi\ASUS\Power4 Gear\BatteryLife.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPort11reminder]
2007-08-31 08:01 328992 ----a-w- c:\programmi\ScanSoft\PaperPort\Ereg\Ereg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-07-05 16:36 421888 ----a-w- c:\programmi\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
2010-10-22 15:47 524288 ----a-w- c:\programmi\File comuni\Spigot\Search Settings\SearchSettings.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2010-05-13 14:12 26192168 ----a-r- c:\programmi\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2004-11-05 14:03 73728 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 08:03 210472 ----a-w- c:\programmi\File comuni\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 09:43 248040 ----a-w- c:\programmi\File comuni\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2004-12-22 06:23 688218 ----a-w- c:\programmi\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
2004-12-22 06:23 98394 ----a-w- c:\programmi\Synaptics\SynTP\SynTPLpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"QuickTime Task"="c:\programmi\QuickTime\QTTask.exe" -atboottime
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpqcopy2.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Programmi\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Programmi\\TeamViewer\\Version5\\TeamViewer.exe"=
"c:\\Programmi\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Programmi\\Java\\jre6\\bin\\java.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Skype\\Phone\\Skype.exe"=
"c:\\Programmi\\Bonjour\\mDNSResponder.exe"=
"c:\\Programmi\\iTunes\\iTunes.exe"=
.
R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [29/07/2010 19.28.02 15328]
R0 R592;R592;c:\windows\system32\drivers\R592.sys [04/03/2010 6.28.37 57088]
R0 risdpntk;risdpntk;c:\windows\system32\drivers\risdpntk.sys [04/03/2010 6.28.37 27264]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1206000.01D\symds.sys [10/05/2011 6.39.42 340088]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1206000.01D\symefa.sys [10/05/2011 6.39.43 744568]
R1 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20111123.001\BHDrvx86.sys [30/11/2011 0.43.10 819320]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1206000.01D\ironx86.sys [10/05/2011 6.39.41 136312]
R2 eugss;EUTRON SmartKey GSS2 Driver;c:\windows\system32\drivers\eugssxp.sys [19/04/2010 9.12.53 66784]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\programmi\File comuni\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [09/11/2011 8.49.25 106104]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20111202.001\IDSXpx86.sys [04/12/2011 12.03.32 356280]
S3 P1171VID;Creative WebCam Notebook #2;c:\windows\system32\drivers\P1171Vid.sys [23/05/2010 23.30.41 91392]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contenuto della cartella 'Scheduled Tasks'
.
2011-11-23 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\programmi\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2011-12-05 c:\windows\Tasks\GlaryInitialize.job
- c:\programmi\Glary Utilities\initialize.exe [2010-06-15 08:01]
.
2011-11-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1085031214-839522115-1003Core.job
- c:\documents and settings\Luciana\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-05-30 13:02]
.
2011-12-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2025429265-1085031214-839522115-1003UA.job
- c:\documents and settings\Luciana\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe [2010-05-30 13:02]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uInternet Settings,ProxyOverride = *.local
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Manuale dell'utente di Creative WebCam Notebook Italian - c:\windows\IsUn0410.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-05 15:37
Windows 5.1.2600 Service Pack 3 NTFS
.
scansione processi nascosti ...
.
scansione entrate autostart nascoste ...
.
Scansione files nascosti ...
.
Scansione completata con successo
Files nascosti: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NIS]
"ImagePath"="\"c:\programmi\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe\" /s \"NIS\" /m \"c:\programmi\Norton Internet Security\Engine\18.6.0.29\diMaster.dll\" /prefetch:1"
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Environment*]
"Licence0"="04F0D21-79D8-7A25-D702-433F"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
.
- - - - - - - > 'winlogon.exe'(1380)
c:\windows\system32\Ati2evxx.dll
c:\programmi\Intel\Wireless\Bin\LgNotify.dll
.
Ora fine scansione: 2011-12-05 15:39:44
ComboFix-quarantined-files.txt 2011-12-05 14:39
.
Pre-Run: 36.417.798.144 byte disponibili
Post-Run: 36.458.508.288 byte disponibili
.
- - End Of File - - 386CC71E38D030152DA8B836BFBC88CB
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 3:43:15 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
io riattivo l'antivirus (Norton)
Torna in alto
 
francescoamato
Inviato: Monday, December 05, 2011 3:47:58 PM
Rank: AiutAmico

Iscritto dal : 11/19/2011
Posts: 78
Log pulito.

Fixa queste voci in Hijackthis:

Commenta:
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Status Monitor.lnk = C:\Programmi\Brother\Brmfcmon\BrMfcWnd.exe


Poi;
Scarica TFC by OldTimer: http://oldtimer.geekstogo.com/TFC.exe
● posiziona il tool sul Desktop
termina tutti i programmi attivi, comprese le pagine Internet
● avvia il tool con un doppio click
● clicca, in basso a sinistra, sul pulsante Start
scomparirà, per qualche istante, il Desktop: nulla di cui preoccuparsi
● attendi pazientemente il termine delle operazioni
● clicca, in basso a destra, sul pulsante Exit
● una volta terminate le operazioni, chiudi il programma

Scarica OTC by OldTimer: http://oldtimer.geekstogo.com/OTC.exe
● posiziona il tool sul Desktop
● chiudi tutti i programmi attivi
● avvia il tool con un doppio click
● clicca sul pulsante CleanUp!
● il programma chiede di riavviare il sistema: consenti, cliccando su Yes per due volte

Riavvia il sistema, e fai sapere come va.

P.s. vorrei vedere una scansione con TDSS Killer, un'altra.

Francesco
Torna in alto
 
jolestar
Inviato: Monday, December 05, 2011 3:50:40 PM
Rank: AiutAmico

Iscritto dal : 9/10/2011
Posts: 142
● fadccc Whistle
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 3:58:09 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
15:55:00.0156 2080 TDSS rootkit removing tool 2.6.21.0 Nov 24 2011 12:32:44
15:55:00.0593 2080 ============================================================
15:55:00.0593 2080 Current date / time: 2011/12/05 15:55:00.0593
15:55:00.0593 2080 SystemInfo:
15:55:00.0593 2080
15:55:00.0593 2080 OS Version: 5.1.2600 ServicePack: 3.0
15:55:00.0593 2080 Product type: Workstation
15:55:00.0593 2080 ComputerName: ASUS
15:55:00.0593 2080 UserName: Luciana
15:55:00.0593 2080 Windows directory: C:\WINDOWS
15:55:00.0593 2080 System windows directory: C:\WINDOWS
15:55:00.0593 2080 Processor architecture: Intel x86
15:55:00.0593 2080 Number of processors: 1
15:55:00.0593 2080 Page size: 0x1000
15:55:00.0593 2080 Boot type: Normal boot
15:55:00.0593 2080 ============================================================
15:55:02.0343 2080 Initialize success
15:55:13.0671 3152 ============================================================
15:55:13.0671 3152 Scan started
15:55:13.0671 3152 Mode: Manual; SigCheck; TDLFS;
15:55:13.0671 3152 ============================================================
15:55:14.0281 3152 Abiosdsk - ok
15:55:14.0296 3152 abp480n5 - ok
15:55:14.0359 3152 ACPI (d766e636187b8f240bbfbabcd51eb2c6) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:55:15.0109 3152 ACPI - ok
15:55:15.0312 3152 ACPIEC (49ac5cd87fbdda62f3e25190019e7627) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
15:55:15.0468 3152 ACPIEC - ok
15:55:15.0468 3152 adpu160m - ok
15:55:15.0531 3152 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:55:15.0671 3152 aec - ok
15:55:15.0718 3152 AegisP (f498fd605c08404b20a48954c722ff74) C:\WINDOWS\system32\DRIVERS\AegisP.sys
15:55:15.0750 3152 AegisP ( UnsignedFile.Multi.Generic ) - warning
15:55:15.0750 3152 AegisP - detected UnsignedFile.Multi.Generic (1)
15:55:15.0796 3152 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
15:55:15.0843 3152 AFD - ok
15:55:15.0859 3152 Aha154x - ok
15:55:15.0875 3152 aic78u2 - ok
15:55:15.0890 3152 aic78xx - ok
15:55:16.0046 3152 ALCXWDM (3cb2e2c258bfff962f90e26c0649c638) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
15:55:16.0375 3152 ALCXWDM - ok
15:55:16.0562 3152 AliIde - ok
15:55:16.0578 3152 amsint - ok
15:55:16.0640 3152 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:55:16.0781 3152 Arp1394 - ok
15:55:16.0796 3152 asc - ok
15:55:16.0812 3152 asc3350p - ok
15:55:16.0828 3152 asc3550 - ok
15:55:16.0875 3152 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:55:17.0000 3152 AsyncMac - ok
15:55:17.0046 3152 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:55:17.0187 3152 atapi - ok
15:55:17.0203 3152 Atdisk - ok
15:55:17.0343 3152 ati2mtag (1a12941c75be2003286c7787f21a7f81) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
15:55:17.0531 3152 ati2mtag - ok
15:55:17.0640 3152 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:55:17.0781 3152 Atmarpc - ok
15:55:17.0828 3152 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:55:17.0953 3152 audstub - ok
15:55:18.0015 3152 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:55:18.0156 3152 Beep - ok
15:55:18.0421 3152 BHDrvx86 (9d14d76e4e7b9b2ead17149011db2b11) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20111123.001\BHDrvx86.sys
15:55:18.0500 3152 BHDrvx86 - ok
15:55:18.0687 3152 BrScnUsb (92a964547b96d697e5e9ed43b4297f5a) C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
15:55:18.0750 3152 BrScnUsb - ok
15:55:18.0859 3152 catchme - ok
15:55:18.0906 3152 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:55:19.0062 3152 cbidf2k - ok
15:55:19.0093 3152 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:55:19.0250 3152 CCDECODE - ok
15:55:19.0265 3152 cd20xrnt - ok
15:55:19.0296 3152 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:55:19.0437 3152 Cdaudio - ok
15:55:19.0500 3152 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:55:19.0625 3152 Cdfs - ok
15:55:19.0671 3152 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:55:19.0781 3152 Cdrom - ok
15:55:19.0796 3152 Changer - ok
15:55:19.0828 3152 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:55:19.0984 3152 CmBatt - ok
15:55:20.0000 3152 CmdIde - ok
15:55:20.0015 3152 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:55:20.0125 3152 Compbatt - ok
15:55:20.0234 3152 Cpqarray - ok
15:55:20.0250 3152 dac2w2k - ok
15:55:20.0265 3152 dac960nt - ok
15:55:20.0296 3152 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:55:20.0406 3152 Disk - ok
15:55:20.0484 3152 dmboot (82bc125a8ed33f5f0e75f2aac1065323) C:\WINDOWS\system32\drivers\dmboot.sys
15:55:20.0687 3152 dmboot - ok
15:55:20.0781 3152 dmio (e959ddc0ea7ac11ee5e5602e2a364310) C:\WINDOWS\system32\drivers\dmio.sys
15:55:20.0921 3152 dmio - ok
15:55:20.0937 3152 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:55:21.0078 3152 dmload - ok
15:55:21.0125 3152 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:55:21.0250 3152 DMusic - ok
15:55:21.0281 3152 dpti2o - ok
15:55:21.0312 3152 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:55:21.0421 3152 drmkaud - ok
15:55:21.0593 3152 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Programmi\File comuni\Symantec Shared\EENGINE\eeCtrl.sys
15:55:21.0609 3152 eeCtrl - ok
15:55:21.0640 3152 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Programmi\File comuni\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:55:21.0656 3152 EraserUtilRebootDrv - ok
15:55:21.0781 3152 eugss (45708f1643d7fd5d1102ded09683677c) C:\WINDOWS\system32\Drivers\eugssxp.sys
15:55:21.0796 3152 eugss - ok
15:55:21.0843 3152 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:55:21.0953 3152 Fastfat - ok
15:55:22.0000 3152 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
15:55:22.0140 3152 Fdc - ok
15:55:22.0171 3152 Fips (2cfea3326981a18c6baf2bd9be76225b) C:\WINDOWS\system32\drivers\Fips.sys
15:55:22.0312 3152 Fips - ok
15:55:22.0328 3152 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
15:55:22.0453 3152 Flpydisk - ok
15:55:22.0515 3152 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
15:55:22.0687 3152 FltMgr - ok
15:55:22.0718 3152 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:55:22.0859 3152 Fs_Rec - ok
15:55:22.0906 3152 Ftdisk (f3269a6ee547ea87b949a1cea4816b38) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:55:23.0046 3152 Ftdisk - ok
15:55:23.0109 3152 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
15:55:23.0125 3152 GEARAspiWDM - ok
15:55:23.0171 3152 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:55:23.0296 3152 Gpc - ok
15:55:23.0453 3152 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:55:23.0578 3152 hidusb - ok
15:55:23.0609 3152 hpn - ok
15:55:23.0671 3152 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:55:23.0843 3152 HPZid412 - ok
15:55:23.0859 3152 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:55:23.0906 3152 HPZipr12 - ok
15:55:23.0921 3152 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:55:23.0984 3152 HPZius12 - ok
15:55:24.0062 3152 HSFHWICH (140ba850417896b6b3322048de280368) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
15:55:24.0109 3152 HSFHWICH - ok
15:55:24.0218 3152 HSF_DP (b2dfc168d6f7512faea085253c5a37ad) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
15:55:24.0328 3152 HSF_DP - ok
15:55:24.0453 3152 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
15:55:24.0593 3152 HTTP - ok
15:55:24.0609 3152 i2omgmt - ok
15:55:24.0625 3152 i2omp - ok
15:55:24.0656 3152 i8042prt (610726e28af55b95043c5c35a727e320) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:55:24.0796 3152 i8042prt - ok
15:55:25.0078 3152 IDSxpx86 (e72d3894d42355e9cd5fd77e1e4fea11) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20111202.001\IDSxpx86.sys
15:55:25.0093 3152 IDSxpx86 - ok
15:55:25.0171 3152 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:55:25.0296 3152 Imapi - ok
15:55:25.0328 3152 ini910u - ok
15:55:25.0375 3152 IntelIde (027fe9b28fb0f861c181d25923b31e78) C:\WINDOWS\system32\DRIVERS\intelide.sys
15:55:25.0515 3152 IntelIde - ok
15:55:25.0562 3152 intelppm (ebd830a0970c438047006a49c23e287f) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:55:25.0703 3152 intelppm - ok
15:55:25.0796 3152 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
15:55:25.0921 3152 Ip6Fw - ok
15:55:26.0015 3152 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:55:26.0171 3152 IpFilterDriver - ok
15:55:26.0296 3152 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:55:26.0406 3152 IpInIp - ok
15:55:26.0453 3152 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:55:26.0593 3152 IpNat - ok
15:55:26.0625 3152 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:55:26.0765 3152 IPSec - ok
15:55:26.0859 3152 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
15:55:27.0000 3152 irda - ok
15:55:27.0062 3152 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:55:27.0171 3152 IRENUM - ok
15:55:27.0203 3152 isapnp (0953594beb81cc72fcc62d37921b25a6) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:55:27.0328 3152 isapnp - ok
15:55:27.0406 3152 IWCA (872d090ca5c306f62d1982bce6302376) C:\WINDOWS\system32\DRIVERS\iwca.sys
15:55:27.0468 3152 IWCA - ok
15:55:27.0515 3152 Kbdclass (28b6eace513ca7eaba3b809ad4bc274d) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:55:27.0625 3152 Kbdclass - ok
15:55:27.0687 3152 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:55:27.0812 3152 kmixer - ok
15:55:27.0843 3152 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:55:27.0921 3152 KSecDD - ok
15:55:28.0000 3152 lbrtfdc - ok
15:55:28.0062 3152 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:55:28.0093 3152 mdmxsdk - ok
15:55:28.0187 3152 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:55:28.0328 3152 mnmdd - ok
15:55:28.0343 3152 Modem (8cb6636806d76b85fafaee94d75f5129) C:\WINDOWS\system32\drivers\Modem.sys
15:55:28.0484 3152 Modem - ok
15:55:28.0500 3152 Mouclass (e904ebed608055a2bfb824c07f59766c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:55:28.0609 3152 Mouclass - ok
15:55:28.0656 3152 mouhid (d7662f0cf5b77bbbe3202716f5bd5318) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:55:28.0796 3152 mouhid - ok
15:55:28.0843 3152 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:55:28.0968 3152 MountMgr - ok
15:55:28.0984 3152 mraid35x - ok
15:55:29.0062 3152 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:55:29.0187 3152 MRxDAV - ok
15:55:29.0265 3152 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:55:29.0437 3152 MRxSmb - ok
15:55:29.0546 3152 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:55:29.0687 3152 Msfs - ok
15:55:29.0718 3152 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:55:29.0828 3152 MSKSSRV - ok
15:55:29.0859 3152 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:55:29.0968 3152 MSPCLOCK - ok
15:55:30.0000 3152 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:55:30.0125 3152 MSPQM - ok
15:55:30.0171 3152 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:55:30.0296 3152 mssmbios - ok
15:55:30.0359 3152 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
15:55:30.0515 3152 MSTEE - ok
15:55:30.0593 3152 MTsensor (1c0f480b7c6136ddb5fb909995af014a) C:\WINDOWS\system32\DRIVERS\ATKACPI.sys
15:55:30.0671 3152 MTsensor - ok
15:55:30.0718 3152 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
15:55:30.0765 3152 Mup - ok
15:55:30.0843 3152 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:55:31.0000 3152 NABTSFEC - ok
15:55:31.0265 3152 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111204.007\NAVENG.SYS
15:55:31.0281 3152 NAVENG - ok
15:55:31.0484 3152 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Dati applicazioni\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111204.007\NAVEX15.SYS
15:55:31.0546 3152 NAVEX15 - ok
15:55:31.0812 3152 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:55:31.0937 3152 NDIS - ok
15:55:31.0984 3152 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:55:32.0109 3152 NdisIP - ok
15:55:32.0156 3152 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:55:32.0203 3152 NdisTapi - ok
15:55:32.0234 3152 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:55:32.0375 3152 Ndisuio - ok
15:55:32.0421 3152 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:55:32.0531 3152 NdisWan - ok
15:55:32.0593 3152 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
15:55:32.0656 3152 NDProxy - ok
15:55:32.0687 3152 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:55:32.0828 3152 NetBIOS - ok
15:55:32.0937 3152 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:55:33.0046 3152 NetBT - ok
15:55:33.0078 3152 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:55:33.0203 3152 NIC1394 - ok
15:55:33.0218 3152 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:55:33.0359 3152 Npfs - ok
15:55:33.0437 3152 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:55:33.0562 3152 Ntfs - ok
15:55:33.0656 3152 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:55:33.0781 3152 Null - ok
15:55:33.0812 3152 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:55:33.0984 3152 NwlnkFlt - ok
15:55:34.0015 3152 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:55:34.0140 3152 NwlnkFwd - ok
15:55:34.0156 3152 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:55:34.0281 3152 ohci1394 - ok
15:55:34.0406 3152 P1171VID (25069801c85d6deef75e8c221f37dcb2) C:\WINDOWS\system32\DRIVERS\P1171Vid.sys
15:55:34.0484 3152 P1171VID - ok
15:55:34.0531 3152 Parport (4e9408a178b2d955871c2cdd278de3c3) C:\WINDOWS\system32\drivers\Parport.sys
15:55:34.0656 3152 Parport - ok
15:55:34.0703 3152 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:55:34.0828 3152 PartMgr - ok
15:55:34.0859 3152 ParVdm (0dabef655a444cb1e193626fb1d24b9f) C:\WINDOWS\system32\drivers\ParVdm.sys
15:55:34.0984 3152 ParVdm - ok
15:55:35.0031 3152 PCI (f40a46892afebb0314536b849d57c11e) C:\WINDOWS\system32\DRIVERS\pci.sys
15:55:35.0156 3152 PCI - ok
15:55:35.0203 3152 PCIDump - ok
15:55:35.0234 3152 PCIIde (b2df00d650fd6c4ee781740ed3c8e67f) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:55:35.0375 3152 PCIIde - ok
15:55:35.0390 3152 Pcmcia (815c50f2b1d1562800bdce8be895000e) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:55:35.0515 3152 Pcmcia - ok
15:55:35.0531 3152 PDCOMP - ok
15:55:35.0546 3152 PDFRAME - ok
15:55:35.0546 3152 PDRELI - ok
15:55:35.0562 3152 PDRFRAME - ok
15:55:35.0578 3152 perc2 - ok
15:55:35.0593 3152 perc2hib - ok
15:55:35.0656 3152 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:55:35.0781 3152 PptpMiniport - ok
15:55:35.0859 3152 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:55:35.0968 3152 PSched - ok
15:55:36.0000 3152 pssnap (ca0ab394298280adf9f971c0493e0f94) C:\WINDOWS\system32\DRIVERS\pssnap.sys
15:55:36.0046 3152 pssnap - ok
15:55:36.0078 3152 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:55:36.0218 3152 Ptilink - ok
15:55:36.0234 3152 ql1080 - ok
15:55:36.0250 3152 Ql10wnt - ok
15:55:36.0265 3152 ql12160 - ok
15:55:36.0281 3152 ql1240 - ok
15:55:36.0281 3152 ql1280 - ok
15:55:36.0343 3152 R592 (1f459f1c726790f6ca34a0fb3d50292d) C:\WINDOWS\system32\DRIVERS\R592.sys
15:55:36.0468 3152 R592 - ok
15:55:36.0531 3152 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:55:36.0671 3152 RasAcd - ok
15:55:36.0718 3152 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
15:55:36.0812 3152 Rasirda - ok
15:55:36.0875 3152 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:55:37.0000 3152 Rasl2tp - ok
15:55:37.0046 3152 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:55:37.0171 3152 RasPppoe - ok
15:55:37.0203 3152 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:55:37.0343 3152 Raspti - ok
15:55:37.0484 3152 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:55:37.0593 3152 Rdbss - ok
15:55:37.0625 3152 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:55:37.0750 3152 RDPCDD - ok
15:55:37.0781 3152 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:55:37.0906 3152 rdpdr - ok
15:55:37.0953 3152 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
15:55:38.0015 3152 RDPWD - ok
15:55:38.0046 3152 redbook (393fc252593323b624b230eca6b85e63) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:55:38.0171 3152 redbook - ok
15:55:38.0234 3152 risdpntk (66ab0104acd972c415662941176932f5) C:\WINDOWS\system32\DRIVERS\risdpntk.sys
15:55:38.0281 3152 risdpntk - ok
15:55:38.0375 3152 Rismxdp (0c2b27f6584e1ff5e728aff6a48af29f) C:\WINDOWS\system32\DRIVERS\Rismxdp.sys
15:55:38.0421 3152 Rismxdp - ok
15:55:38.0484 3152 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
15:55:38.0609 3152 ROOTMODEM - ok
15:55:38.0718 3152 s24trans (85a26a3bb748dfd3170cdbf45b0dd7fd) C:\WINDOWS\system32\DRIVERS\s24trans.sys
15:55:38.0750 3152 s24trans ( UnsignedFile.Multi.Generic ) - warning
15:55:38.0750 3152 s24trans - detected UnsignedFile.Multi.Generic (1)
15:55:38.0812 3152 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
15:55:38.0937 3152 sdbus - ok
15:55:38.0984 3152 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:55:39.0109 3152 Secdrv - ok
15:55:39.0156 3152 Serial (fdbd9d64e2e03270021d424f0dccf79d) C:\WINDOWS\system32\drivers\Serial.sys
15:55:39.0296 3152 Serial - ok
15:55:39.0343 3152 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
15:55:39.0484 3152 Sfloppy - ok
15:55:39.0546 3152 Simbad - ok
15:55:39.0578 3152 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:55:39.0734 3152 SLIP - ok
15:55:39.0781 3152 SMCIRDA (f67092c18b1e1ee4d73447f293970a79) C:\WINDOWS\system32\DRIVERS\smcirda.sys
15:55:39.0859 3152 SMCIRDA - ok
15:55:39.0875 3152 Sparrow - ok
15:55:39.0906 3152 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:55:40.0031 3152 splitter - ok
15:55:40.0125 3152 sr (618718cae288bf7cbd8fcbab2577d932) C:\WINDOWS\system32\DRIVERS\sr.sys
15:55:40.0265 3152 sr - ok
15:55:40.0406 3152 SRTSP (83726cf02eced69138948083e06b6eac) C:\WINDOWS\System32\Drivers\NIS\1206000.01D\SRTSP.SYS
15:55:40.0437 3152 SRTSP - ok
15:55:40.0500 3152 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SRTSPX.SYS
15:55:40.0546 3152 SRTSPX - ok
15:55:40.0750 3152 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
15:55:40.0843 3152 Srv - ok
15:55:41.0000 3152 sscdbus (d6870895fe46a464a19141440eb6cc1e) C:\WINDOWS\system32\DRIVERS\sscdbus.sys
15:55:41.0078 3152 sscdbus - ok
15:55:41.0109 3152 sscdmdfl (0fe167362e4689b716cdc8d93adedda8) C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
15:55:41.0156 3152 sscdmdfl - ok
15:55:41.0203 3152 sscdmdm (55a15707e32b6709242ad127e62ca55a) C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
15:55:41.0234 3152 sscdmdm - ok
15:55:41.0312 3152 StarOpen (306521935042fc0a6988d528643619b3) C:\WINDOWS\system32\drivers\StarOpen.sys
15:55:41.0359 3152 StarOpen ( UnsignedFile.Multi.Generic ) - warning
15:55:41.0359 3152 StarOpen - detected UnsignedFile.Multi.Generic (1)
15:55:41.0406 3152 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:55:41.0531 3152 streamip - ok
15:55:41.0593 3152 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:55:41.0718 3152 swenum - ok
15:55:41.0812 3152 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:55:41.0937 3152 swmidi - ok
15:55:41.0953 3152 symc810 - ok
15:55:41.0968 3152 symc8xx - ok
15:55:42.0062 3152 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SYMDS.SYS
15:55:42.0093 3152 SymDS - ok
15:55:42.0156 3152 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\WINDOWS\system32\drivers\NIS\1206000.01D\SYMEFA.SYS
15:55:42.0203 3152 SymEFA - ok
15:55:42.0296 3152 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
15:55:42.0312 3152 SymEvent - ok
15:55:42.0375 3152 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\WINDOWS\system32\drivers\NIS\1206000.01D\Ironx86.SYS
15:55:42.0390 3152 SymIRON - ok
15:55:42.0468 3152 SYMTDI (dec35ccaf7a222df918306cd2fdfbd39) C:\WINDOWS\System32\Drivers\NIS\1206000.01D\SYMTDI.SYS
15:55:42.0484 3152 SYMTDI - ok
15:55:42.0562 3152 sym_hi - ok
15:55:42.0578 3152 sym_u3 - ok
15:55:42.0625 3152 SynTP (55a7c2667ff752fabcae7e6b6df52a10) C:\WINDOWS\system32\DRIVERS\SynTP.sys
15:55:42.0703 3152 SynTP - ok
15:55:42.0750 3152 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:55:42.0875 3152 sysaudio - ok
15:55:42.0953 3152 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:55:43.0046 3152 Tcpip - ok
15:55:43.0109 3152 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:55:43.0265 3152 TDPIPE - ok
15:55:43.0296 3152 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
15:55:43.0421 3152 TDTCP - ok
15:55:43.0468 3152 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:55:43.0593 3152 TermDD - ok
15:55:43.0703 3152 toshidpt (62c57e7411b5f20980e70530ca69d5a7) C:\WINDOWS\system32\drivers\Toshidpt.sys
15:55:43.0734 3152 toshidpt ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0734 3152 toshidpt - detected UnsignedFile.Multi.Generic (1)
15:55:43.0750 3152 TosIde - ok
15:55:43.0781 3152 tosporte (09505abeae3de953442417a48256684a) C:\WINDOWS\system32\DRIVERS\tosporte.sys
15:55:43.0796 3152 tosporte ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0796 3152 tosporte - detected UnsignedFile.Multi.Generic (1)
15:55:43.0828 3152 Tosrfbd (47bb36a3db94807bc26c280d1ce4a243) C:\WINDOWS\system32\Drivers\tosrfbd.sys
15:55:43.0843 3152 Tosrfbd ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0843 3152 Tosrfbd - detected UnsignedFile.Multi.Generic (1)
15:55:43.0859 3152 Tosrfbnp (fe200eece7521061cdad658c6ee4f341) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
15:55:43.0890 3152 Tosrfbnp ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0890 3152 Tosrfbnp - detected UnsignedFile.Multi.Generic (1)
15:55:43.0921 3152 Tosrfcom (d185be751021bcf1e5d58566d408314a) C:\WINDOWS\system32\Drivers\tosrfcom.sys
15:55:43.0937 3152 Tosrfcom ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0937 3152 Tosrfcom - detected UnsignedFile.Multi.Generic (1)
15:55:43.0968 3152 Tosrfhid (341612b9758054e5965bcd6ae111b8f9) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
15:55:43.0968 3152 Tosrfhid ( UnsignedFile.Multi.Generic ) - warning
15:55:43.0968 3152 Tosrfhid - detected UnsignedFile.Multi.Generic (1)
15:55:43.0984 3152 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
15:55:44.0000 3152 tosrfnds ( UnsignedFile.Multi.Generic ) - warning
15:55:44.0000 3152 tosrfnds - detected UnsignedFile.Multi.Generic (1)
15:55:44.0031 3152 TosRfSnd (350814a87f8ba3b0e28278feddf36f82) C:\WINDOWS\system32\drivers\TosRfSnd.sys
15:55:44.0046 3152 TosRfSnd ( UnsignedFile.Multi.Generic ) - warning
15:55:44.0046 3152 TosRfSnd - detected UnsignedFile.Multi.Generic (1)
15:55:44.0062 3152 Tosrfusb (ddb8a339e57d514768f45d33b11bdb50) C:\WINDOWS\system32\Drivers\tosrfusb.sys
15:55:44.0078 3152 Tosrfusb ( UnsignedFile.Multi.Generic ) - warning
15:55:44.0078 3152 Tosrfusb - detected UnsignedFile.Multi.Generic (1)
15:55:44.0156 3152 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:55:44.0281 3152 Udfs - ok
15:55:44.0296 3152 UIUSys - ok
15:55:44.0312 3152 ultra - ok
15:55:44.0390 3152 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:55:44.0593 3152 Update - ok
15:55:44.0703 3152 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
15:55:44.0781 3152 USBAAPL - ok
15:55:44.0812 3152 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:55:44.0937 3152 usbccgp - ok
15:55:44.0984 3152 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:55:45.0093 3152 usbehci - ok
15:55:45.0125 3152 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:55:45.0250 3152 usbhub - ok
15:55:45.0312 3152 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:55:45.0453 3152 usbprint - ok
15:55:45.0500 3152 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:55:45.0640 3152 usbscan - ok
15:55:45.0687 3152 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:55:45.0828 3152 USBSTOR - ok
15:55:45.0859 3152 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:55:45.0968 3152 usbuhci - ok
15:55:46.0000 3152 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:55:46.0125 3152 VgaSave - ok
15:55:46.0187 3152 ViaIde - ok
15:55:46.0234 3152 VolSnap (e46c1b5a56da7da603d09dfcc79ec59e) C:\WINDOWS\system32\drivers\VolSnap.sys
15:55:46.0343 3152 VolSnap - ok
15:55:46.0578 3152 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys
15:55:46.0796 3152 w29n51 - ok
15:55:46.0937 3152 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:55:47.0078 3152 Wanarp - ok
15:55:47.0093 3152 WDICA - ok
15:55:47.0125 3152 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:55:47.0250 3152 wdmaud - ok
15:55:47.0343 3152 winachsf (2dc7c0b6175a0a8ed84a4f70199c93b5) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:55:47.0406 3152 winachsf - ok
15:55:47.0468 3152 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:55:47.0593 3152 WSTCODEC - ok
15:55:47.0640 3152 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:55:47.0750 3152 WudfPf - ok
15:55:47.0781 3152 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:55:47.0796 3152 WudfRd - ok
15:55:47.0859 3152 yukonwxp (4322c32ced8c4772e039616dcbf01d3f) C:\WINDOWS\system32\DRIVERS\yk51x86.sys
15:55:47.0906 3152 yukonwxp - ok
15:55:47.0937 3152 MBR (0x1B8) (828e02d5c4a4fbe53441ee9dbee51f43) \Device\Harddisk0\DR0
15:55:48.0125 3152 \Device\Harddisk0\DR0 - ok
15:55:48.0140 3152 Boot (0x1200) (2072f85f89f5eec11f42ee205efea1ea) \Device\Harddisk0\DR0\Partition0
15:55:48.0140 3152 \Device\Harddisk0\DR0\Partition0 - ok
15:55:48.0140 3152 ============================================================
15:55:48.0140 3152 Scan finished
15:55:48.0140 3152 ============================================================
15:55:48.0250 2568 Detected object count: 12
15:55:48.0250 2568 Actual detected object count: 12
15:55:56.0046 2568 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 toshidpt ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 toshidpt ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 tosporte ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 tosporte ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 Tosrfbd ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 Tosrfbd ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 Tosrfbnp ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 Tosrfbnp ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0046 2568 Tosrfcom ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0046 2568 Tosrfcom ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0062 2568 Tosrfhid ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0062 2568 Tosrfhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0062 2568 tosrfnds ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0062 2568 tosrfnds ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0062 2568 TosRfSnd ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0062 2568 TosRfSnd ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:55:56.0062 2568 Tosrfusb ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:56.0062 2568 Tosrfusb ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:57:07.0390 0708 Deinitialize success
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 4:02:47 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
mi assento 60 minuti perchè mi trasferisco a casa.
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 4:09:33 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
TFC by OldTimer: eseguito
procedo con altro
Torna in alto
 
ginodalcol
Inviato: Monday, December 05, 2011 4:12:50 PM
Rank: AiutAmico

Iscritto dal : 2/6/2010
Posts: 947
tutto come prima! Nessun miglioramento!.
Torna in alto
 
Utenti presenti in questo topic
Guest

2 pages: [1] 2

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » virus. NON RISOLTO


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.