Solved Unable to run -thoroughly- Combo fix_am I hacked?

SPasini · May 27, 2014

When trying to use Combo fix -I did it alright many times- the app starts Ok but after initialized and complete the first right steps -back up etc.- it seems to be stuck for ever..! Am I hacked for some weird rookit I didhn't know about?

Broni · May 27, 2014

Welcome aboard

Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:

Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
If you're stuck, or you're not sure about certain step, always ask before doing anything else.
Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
Never run more than one scan at a time.
Keep updating me regarding your computer behavior, good, or bad.
The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

SPasini · May 28, 2014

Thank you for your reply Broni and I'm going to follow all the steps as u said and I'll let u know as soon as possible the outcome of this treatment. Tks again SPasini

Broni · May 28, 2014

SPasini · May 29, 2014

Well as I said and u did advice me to run the Anti-virus -I use to do that in a regular basis I mean several times a week- and the result didn't show up anything relevant but the DDs that's another business and you'll have to check up those files..!Tks in advance for your help! SPasini

Broni · May 29, 2014

Please observe forum rules.
All logs have to be pasted not attached.

SPasini · Jun 1, 2014

Sorry to delay the answer but I'm gonna ask u for some more time to paste the right logs because I need to fix some stuff with my PC first. Thanks SPasini

Broni · Jun 1, 2014

Paste all three logs into your reply instead of attaching them.

SPasini · Jun 6, 2014

Att.: Broni : Here you have the Mbam and DDs logs. Tks Regards SPasini

<?xml version="1.0" encoding="UTF-16" ?>
<mbam-log>
<header>
<date>2014/06/01 09:44:25 -0300</date>
<logfile>mbam-log-2014-06-01 (09-44-24).xml</logfile>
<isadmin>yes</isadmin>
</header>
<engine>
<version>2.00.2.1012</version>
<malware-database>v2014.06.01.01</malware-database>
<rootkit-database>v2014.05.21.01</rootkit-database>
<license>premium</license>
<file-protection>enabled</file-protection>
<web-protection>enabled</web-protection>
<self-protection>enabled</self-protection>
</engine>
<system>
<osversion>Windows XP Service Pack 3</osversion>
<arch>x86</arch>
<username>SergioPasini</username>
<filesys>NTFS</filesys>
</system>
<summary>
<type>threat</type>
<result>completed</result>
<objects>667519</objects>
<time>2877</time>
<processes>1</processes>
<modules>0</modules>
<keys>1</keys>
<values>0</values>
<datas>0</datas>
<folders>0</folders>
<files>10</files>
<sectors>0</sectors>
</summary>
<options>
<memory>enabled</memory>
<startup>enabled</startup>
<filesystem>enabled</filesystem>
<archives>enabled</archives>
<rootkits>enabled</rootkits>
<deeprootkit>disabled</deeprootkit>
<heuristics>enabled</heuristics>
<pup>enabled</pup>
<pum>enabled</pum>
</options>
<items>
<process><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\DOWNLOADS\HACK ANY PASSWORD PROTECTED WI-FI NETWORK AND USE UNLIMITED FREE INTERNET.EXE</path><vendor>PUP.Optional.InstalleRex</vendor><action>delete-on-reboot</action><pid>5916</pid><hash>fa15e56fc7b41f17149a93ee3ac7b050</hash></process>
<key><path>HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\SETUP.EXE</path><vendor>PUP.Optional.Tarma.A</vendor><action>success</action><hash>0b04be9693e82f07984dc67f8d737888</hash></key>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\DOWNLOADS\HACK ANY PASSWORD PROTECTED WI-FI NETWORK AND USE UNLIMITED FREE INTERNET.EXE</path><vendor>PUP.Optional.InstalleRex</vendor><action>success</action><hash>fa15e56fc7b41f17149a93ee3ac7b050</hash></file>
<file><path>C:\RECYCLER\S-1-5-21-57989841-796845957-1644491937-1003\Dc1.exe</path><vendor>PUP.Optional.CodecPerformer.A</vendor><action>success</action><hash>3dd2a3b11a61092d4920145a778a02fe</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\down.3884.setupespl.exe</path><vendor>PUP.Optional.MultiPlug.A</vendor><action>success</action><hash>cf40e66e1c5fde587bf3ce77af514ab6</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\down.5140.extIE_setup.exe</path><vendor>PUP.Optional.MultiPlug.A</vendor><action>success</action><hash>5db29cb8245721156be4d2738d736997</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{377F6CA7-B226-4CCD-AE26-FA04EC9C4E51}\Setup.exe</path><vendor>PUP.Optional.Tarma.A</vendor><action>success</action><hash>0b04be9693e82f07984dc67f8d737888</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{4E9F0873-802C-4917-ABFC-C80E957C2A85}\Setup.exe</path><vendor>PUP.Optional.Tarma.A</vendor><action>success</action><hash>0e012e26adce6ec89451fa4b8d736d93</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{4E9F0873-802C-4917-ABFC-C80E957C2A85}\Addons\setupespl.exe</path><vendor>PUP.Optional.MultiPlug.A</vendor><action>success</action><hash>af60cb89443739fd143b0c39709032ce</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{C5AC1E60-D782-46C4-A42F-9FA01E4F3C96}\Setup.exe</path><vendor>PUP.Optional.Tarma.A</vendor><action>success</action><hash>907f0f45f58652e45194f94c6e92ea16</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{F2B7B8FC-A37E-4D63-AF88-EB5C29549A0A}\Setup.exe</path><vendor>PUP.Optional.Tarma.A</vendor><action>success</action><hash>ba55074d9eddbc7ab82dce77a45ca45c</hash></file>
<file><path>C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Impostazioni locali\Temp\{F2B7B8FC-A37E-4D63-AF88-EB5C29549A0A}\Addons\setupespl.exe</path><vendor>PUP.Optional.MultiPlug.A</vendor><action>success</action><hash>818ed77d6219f83ed17ed47103fde020</hash></file>
</items>
</mbam-log>

SPasini · Jun 6, 2014

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.55.2
Run by SergioPasini at 18:24:05 on 2014-06-06
#Option Extended Search is enabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1015.107 [GMT -3:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\netdde.exe
C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
C:\Programmi\Google\Update\1.3.24.7\GoogleCrashHandler.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamservice.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\locator.exe
C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Programmi\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Claro Internet\Claro Internet.exe
C:\Programmi\Uniblue\DriverScanner\dsmonitor.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\msdtc.exe
C:\Programmi\AVAST Software\Avast\AvastUI.exe
C:\Programmi\Spybot - Search & Destroy 2\SDTray.exe
C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\programmi\Core Temp\Core Temp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k eapsvcs
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k WINRM
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programmi\java\jre7\bin\ssv.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\programmi\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre7\bin\jp2ssv.dll
uRun: [Core Temp] "c:\programmi\core temp\Core Temp.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\programmi\superantispyware\SUPERAntiSpyware.exe
uRun: [uTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\utorrent\uTorrent.exe" /MINIMIZED
uRun: [BitTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\bittorrent\BitTorrent.exe" /MINIMIZED
mRun: [AvastUI.exe] "c:\programmi\avast software\avast\AvastUI.exe" /nogui
mRun: [SDTray] "c:\programmi\spybot - search & destroy 2\SDTray.exe"
mRun: [AzMixerSel] c:\programmi\realtek\installshield\AzMixerSel.exe
mRun: [IntelZeroConfig] "c:\programmi\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\programmi\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\programmi\intel\wireless\bin\EOUWiz.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SMSERIAL] c:\programmi\motorola\smserial\sm56hlpr.exe
mRun: [SynTPEnh] c:\programmi\synaptics\syntp\SynTPEnh.exe
mRun: [Synchronization Manager] c:\windows\system32\mobsync.exe /logon
mRun: [RTHDCPL] RTHDCPL.EXE
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Download all with Free Download Manager - c:\programmi\free download manager\dlall.htm
IE: Download selected with Free Download Manager - c:\programmi\free download manager\dlselected.htm
IE: Download video with Free Download Manager - c:\programmi\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - c:\programmi\free download manager\dllink.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1399602363171
TCP: Interfaces\{357CBD21-2DFD-4858-957D-C0971280B9F2} : NameServer = 190.220.191.46 170.51.255.110
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programmi\file comuni\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\programmi\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\programmi\superantispyware\SASSEH.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\programmi\google\chrome\application\35.0.1916.114\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\mozilla\firefox\profiles\k16p1aht.default\
FF - prefs.js: browser.search.selectedEngine - SecureSearch
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_8&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\programmi\adobe\adobe extension manager cs6\npAdobeExManDetectX86.dll
FF - plugin: c:\programmi\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect64.dll
FF - plugin: c:\programmi\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\programmi\google\update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: c:\programmi\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\programmi\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-5-8 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-5-8 180632]
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-13 34176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-5-8 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-5-8 411680]
R1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2014-5-29 53208]
R1 SASDIFSV;SASDIFSV;c:\programmi\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\programmi\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\programmi\superantispyware\SASCore.exe [2013-10-10 120088]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-5-8 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-5-8 67824]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\avast software\avast\AvastSvc.exe [2014-5-8 50344]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\documents and settings\all users.windows\dati applicazioni\datacardservice\HWDeviceService.exe [2011-3-14 271712]
R2 MBAMScheduler;MBAMScheduler;c:\programmi\malwarebytes anti-malware\mbamscheduler.exe [2014-5-29 1809720]
R2 MBAMService;MBAMService;c:\programmi\malwarebytes anti-malware\mbamservice.exe [2014-5-29 860472]
R3 ALSysIO;ALSysIO;\??\c:\docume~1\sergio~1.spa\impost~1\temp\alsysio.sys --> c:\docume~1\sergio~1.spa\impost~1\temp\ALSysIO.sys [?]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-5-9 12160]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2014-5-9 95744]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2014-5-9 67584]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-5-9 76544]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2014-5-9 27520]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-5-29 23256]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-5-29 110296]
R3 NETwLx32; Driver scheda Intel(R) Wireless WiFi Link 5000 Series per Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [2014-5-14 6609920]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2005-12-18 42144]
R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2014-5-9 25704]
S2 Claro Internet. RunOuc;Claro Internet. OUC;c:\programmi\claro internet\updatedog\ouc.exe [2014-5-9 655712]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-5-14 1691480]
S3 DiskDoctorService;Norton Disk Doctor Service;c:\program files\symantec\norton utilities 16\tools\disk doctor\DiskDoctorSrv.exe [2014-5-6 1147424]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-5-9 102784]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\112.tmp --> c:\windows\system32\112.tmp [?]
S3 rspSanity;rspSanity;c:\windows\system32\drivers\rspSanity32XP.sys [2014-5-9 27232]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="c:\programmi\adobe\adobe dreamweaver cs6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="c:\programmi\adobe\adobe dreamweaver cs6\dreamweaver.exe", "%1"

SPasini · Jun 6, 2014

=============== Created Last 60 ================
.2014-06-06 15:33:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\APN
2014-06-05 20:54:26 13816 ----a-w- c:\windows\system32\unikey.sys
2014-06-04 00:48:21 -------- d-----w- C:\CrashLogs
2014-06-01 13:37:38 -------- d-----w- c:\programmi\FiSTiNG4FUN
2014-06-01 05:56:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Boredom Software
2014-06-01 05:49:33 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\f3d8f0d1a680598
2014-06-01 05:49:32 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Chromatic Browser
2014-06-01 05:49:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Torch
2014-06-01 05:49:28 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Comodo
2014-06-01 05:46:18 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\InstallMate
2014-05-31 23:28:30 -------- d-----w- c:\programmi\Driver Identifier
2014-05-29 23:34:56 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-29 23:34:14 53208 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-29 23:34:13 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-29 23:34:09 -------- d-----w- c:\programmi\Malwarebytes Anti-Malware
2014-05-26 21:14:40 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-05-26 20:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Adobe
2014-05-26 20:32:14 -------- d-----w- c:\programmi\Adobe Dreamweaver CS6
2014-05-26 00:16:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\AppData
2014-05-25 21:14:30 -------- d-----w- C:\FRST
2014-05-24 22:16:44 -------- d-sha-r- C:\cmdcons
2014-05-24 01:15:18 -------- d-----w- C:\170787f18cf2ea828ff7b7dde070376f
2014-05-24 00:05:14 -------- d-----w- C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 04:13:06 14048 ------w- c:\windows\system32\spmsg2.dll
2014-05-22 17:24:28 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Sophos
2014-05-22 17:21:28 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2014-05-22 17:21:04 -------- d-----w- c:\programmi\Sophos
2014-05-20 15:42:28 -------- d-----w- c:\programmi\file comuni\Adobe AIR
2014-05-19 15:45:48 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\regid.1986-12.com.adobe
2014-05-17 22:31:41 1639760 ----a-w- c:\programmi\BitTorrent.exe
2014-05-17 22:29:18 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\BitTorrent
2014-05-16 16:07:04 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-16 16:07:04 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-16 04:34:35 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Informer Technologies, Inc
2014-05-16 04:13:20 -------- d-----w- c:\programmi\PFConfig
2014-05-15 23:12:52 -------- d-----w- c:\windows\pss
2014-05-14 21:44:55 6609920 ----a-w- c:\windows\system32\drivers\NETwLx32.sys
2014-05-14 21:44:54 2756608 ----a-w- c:\windows\system32\NETwLr32.dll
2014-05-14 21:44:53 675840 ----a-w- c:\windows\system32\NETwLc32.dll
2014-05-14 17:16:51 739872 ----a-w- c:\windows\system32\O2Icon.dll
2014-05-14 17:09:07 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2014-05-14 17:09:07 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2014-05-14 17:08:06 -------- d-----w- c:\programmi\Motorola
2014-05-14 17:07:56 516096 ----a-w- c:\windows\system32\sm56co85.dll
2014-05-14 17:01:42 359016 ----a-w- c:\windows\vncutil.exe
2014-05-14 17:01:41 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2014-05-14 17:01:40 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2014-05-14 17:01:40 129640 ----a-w- c:\windows\RtkAudioService.exe
2014-05-14 17:01:31 26084 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2014-05-14 17:01:30 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2014-05-14 17:01:27 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2014-05-14 16:33:40 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-05-13 16:24:20 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2014-05-13 16:24:13 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2014-05-13 16:24:12 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2014-05-13 16:24:05 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2014-05-13 16:23:58 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2014-05-13 16:23:47 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2014-05-13 16:23:35 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2014-05-13 16:23:30 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2014-05-13 16:23:22 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2014-05-13 16:23:20 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2014-05-13 16:23:17 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2014-05-13 16:22:25 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2014-05-13 16:22:19 35402 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2014-05-13 16:21:52 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
2014-05-13 16:21:40 54272 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
2014-05-13 16:21:34 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2014-05-13 16:21:15 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2014-05-13 16:21:14 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
2014-05-13 16:21:13 32000 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
2014-05-13 16:21:07 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
2014-05-13 16:21:00 25471 -c--a-w- c:\windows\system32\dllcache\watv10nt.sys
2014-05-13 16:19:52 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2014-05-13 16:19:39 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2014-05-13 16:19:32 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2014-05-13 16:19:22 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2014-05-13 16:19:20 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2014-05-13 16:19:20 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2014-05-13 16:19:16 54784 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2014-05-13 16:19:12 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2014-05-13 16:19:02 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2014-05-13 16:18:55 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2014-05-13 16:18:47 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2014-05-13 16:18:40 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2014-05-13 16:18:32 224802 -c--a-w- c:\windows\system32\dllcache\usr1807a.sys
2014-05-13 16:18:25 794399 -c--a-w- c:\windows\system32\dllcache\usr1806v.sys
2014-05-13 16:18:19 793598 -c--a-w- c:\windows\system32\dllcache\usr1806.sys
2014-05-13 16:18:12 794654 -c--a-w- c:\windows\system32\dllcache\usr1801.sys
2014-05-13 16:18:09 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2014-05-13 16:18:05 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2014-05-13 16:18:04 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2014-05-13 16:18:02 17152 -c--a-w- c:\windows\system32\dllcache\usbohci.sys
2014-05-13 16:17:57 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2014-05-13 16:17:55 32384 -c--a-w- c:\windows\system32\dllcache\usb101et.sys
2014-05-13 16:17:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2014-05-13 16:17:29 28672 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2014-05-13 16:17:23 27136 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2014-05-13 16:17:16 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2014-05-13 16:17:10 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2014-05-13 16:17:03 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2014-05-13 16:16:57 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2014-05-13 16:16:51 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2014-05-13 16:16:44 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2014-05-13 16:16:37 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2014-05-13 16:16:31 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2014-05-13 16:16:26 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2014-05-13 16:16:18 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2014-05-13 16:15:59 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2014-05-13 16:15:53 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2014-05-13 16:15:46 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2014-05-13 16:15:40 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2014-05-13 16:15:33 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2014-05-13 16:15:27 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2014-05-13 16:15:18 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2014-05-13 16:15:12 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2014-05-13 16:15:10 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2014-05-13 16:15:04 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2014-05-13 16:14:55 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2014-05-13 16:14:49 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2014-05-13 16:14:43 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2014-05-13 16:14:36 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2014-05-13 16:14:26 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2014-05-13 16:14:12 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2014-05-13 16:14:06 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2014-05-13 16:14:02 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2014-05-13 16:13:53 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2014-05-13 16:13:47 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2014-05-13 16:13:31 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2014-05-13 16:13:20 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2014-05-13 16:13:14 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2014-05-13 16:13:08 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2014-05-13 16:12:51 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2014-05-13 16:12:45 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2014-05-13 16:12:39 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2014-05-13 16:12:33 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2014-05-13 16:12:27 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2014-05-13 16:12:20 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2014-05-13 16:12:15 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2014-05-13 16:12:09 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2014-05-13 16:12:03 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2014-05-13 16:11:57 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2014-05-13 16:11:51 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2014-05-13 16:11:46 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2014-05-13 16:11:39 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2014-05-13 16:11:33 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2014-05-13 16:11:27 286816 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2014-05-13 16:11:19 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2014-05-13 16:11:03 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2014-05-13 16:10:45 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2014-05-13 16:10:32 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2014-05-13 16:10:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2014-05-13 16:10:20 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2014-05-13 16:10:13 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2014-05-13 16:10:07 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2014-05-13 16:10:01 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2014-05-13 16:09:56 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2014-05-13 16:09:50 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2014-05-13 16:09:49 7552 -c--a-w- c:\windows\system32\dllcache\sonyait.sys
2014-05-13 16:09:41 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
2014-05-13 16:09:19 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2014-05-13 16:09:12 147200 -c--a-w- c:\windows\system32\dllcache\smidispb.dll
2014-05-13 16:09:05 25034 -c--a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2014-05-13 16:07:59 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2014-05-13 16:06:58 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2014-05-13 16:06:53 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2014-05-13 16:06:47 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2014-05-13 16:06:25 161792 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2014-05-13 16:06:20 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2014-05-13 16:06:14 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2014-05-13 16:06:08 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2014-05-13 16:06:02 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2014-05-13 16:05:48 18176 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2014-05-13 16:05:33 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2014-05-13 16:05:31 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2014-05-13 16:05:25 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2014-05-13 16:05:16 17536 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2014-05-13 16:05:10 16768 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2014-05-13 16:05:02 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2014-05-13 16:04:56 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2014-05-13 16:04:53 43904 -c--a-w- c:\windows\system32\dllcache\sbp2port.sys
2014-05-13 16:04:48 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2014-05-13 16:04:37 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2014-05-13 16:04:31 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2014-05-13 16:04:26 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2014-05-13 16:04:20 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2014-05-13 16:04:15 61504 -c--a-w- c:\windows\system32\dllcache\s3sav3dm.sys
2014-05-13 16:04:09 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
2014-05-13 16:04:03 210496 -c--a-w- c:\windows\system32\dllcache\s3mvirge.dll
2014-05-13 16:03:58 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2014-05-13 16:03:52 41216 -c--a-w- c:\windows\system32\dllcache\s3mt3d.sys
2014-05-13 16:03:46 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2014-05-13 16:03:41 166720 -c--a-w- c:\windows\system32\dllcache\s3m.sys
2014-05-13 16:03:35 65664 -c--a-w- c:\windows\system32\dllcache\s3legacy.sys
2014-05-13 16:03:34 166912 -c--a-w- c:\windows\system32\dllcache\s3gnbm.sys
2014-05-13 16:03:33 397056 -c--a-w- c:\windows\system32\dllcache\s3gnb.dll
2014-05-13 16:03:26 83456 -c--a-w- c:\windows\system32\dllcache\rwia450.dll
2014-05-13 16:03:21 80896 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
2014-05-13 16:03:17 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
2014-05-13 16:03:15 28160 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
2014-05-13 16:03:01 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
2014-05-13 16:02:55 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2014-05-13 16:02:45 10752 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2014-05-13 16:02:37 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2014-05-13 16:02:30 79360 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2014-05-13 16:02:29 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2014-05-13 16:02:22 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2014-05-13 16:02:19 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2014-05-13 16:02:12 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2014-05-13 16:01:59 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2014-05-13 16:01:41 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2014-05-13 16:01:30 715338 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2014-05-13 16:01:24 899754 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2014-05-13 16:01:18 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2014-05-13 16:01:12 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2014-05-13 16:00:56 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2014-05-13 16:00:50 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2014-05-13 16:00:45 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2014-05-13 16:00:39 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2014-05-13 16:00:34 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2014-05-13 16:00:32 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2014-05-13 16:00:18 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2014-05-13 16:00:12 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2014-05-13 16:00:07 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2014-05-13 16:00:05 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2014-05-13 15:59:59 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
2014-05-13 15:59:52 35328 -c--a-w- c:\windows\system32\dllcache\psisload.dll
2014-05-13 15:59:50 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2014-05-13 15:59:45 16384 -c--a-w- c:\windows\system32\dllcache\pscr.sys
2014-05-13 15:59:35 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2014-05-13 15:59:30 17792 -c--a-w- c:\windows\system32\dllcache\ppa.sys
2014-05-13 15:59:29 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2014-05-13 15:59:21 7168 -c--a-w- c:\windows\system32\dllcache\pnrmc.sys
2014-05-13 15:59:03 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2014-05-13 15:58:53 19840 -c--a-w- c:\windows\system32\dllcache\philtune.sys
2014-05-13 15:58:48 92416 -c--a-w- c:\windows\system32\dllcache\phildec.sys
2014-05-13 15:58:42 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
2014-05-13 15:58:37 75776 -c--a-w- c:\windows\system32\dllcache\philcam1.sys
2014-05-13 15:58:31 16896 -c--a-w- c:\windows\system32\dllcache\philcam1.dll
2014-05-13 15:58:21 259328 -c--a-w- c:\windows\system32\dllcache\perm3dd.dll
2014-05-13 15:58:20 28032 -c--a-w- c:\windows\system32\dllcache\perm3.sys
2014-05-13 15:58:18 27904 -c--a-w- c:\windows\system32\dllcache\perm2.sys
2014-05-13 15:58:18 211584 -c--a-w- c:\windows\system32\dllcache\perm2dll.dll
2014-05-13 15:58:10 5504 -c--a-w- c:\windows\system32\dllcache\perc2hib.sys
2014-05-13 15:58:04 27296 -c--a-w- c:\windows\system32\dllcache\perc2.sys
2014-05-13 15:58:02 169984 -c--a-w- c:\windows\system32\dllcache\pcx500.sys
2014-05-13 15:57:56 86016 -c--a-w- c:\windows\system32\dllcache\pctspk.exe
2014-05-13 15:57:51 35328 -c--a-w- c:\windows\system32\dllcache\pcntpci5.sys
2014-05-13 15:57:45 29769 -c--a-w- c:\windows\system32\dllcache\pcntn5m.sys
2014-05-13 15:57:40 30282 -c--a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2014-05-13 15:57:34 26153 -c--a-w- c:\windows\system32\dllcache\pcmlm56.sys
2014-05-13 15:57:32 29502 -c--a-w- c:\windows\system32\dllcache\pca200e.sys
2014-05-13 15:57:26 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys
2014-05-13 15:57:07 42496 -c--a-w- c:\windows\system32\dllcache\ovui2rc.dll
2014-05-13 15:57:01 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
2014-05-13 15:56:56 25216 -c--a-w- c:\windows\system32\dllcache\ovsound2.sys
2014-05-13 15:56:50 39424 -c--a-w- c:\windows\system32\dllcache\ovcoms.exe
2014-05-13 15:56:45 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2014-05-13 15:56:39 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2014-05-13 15:56:34 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2014-05-13 15:56:29 31872 -c--a-w- c:\windows\system32\dllcache\ovce.sys
2014-05-13 15:56:23 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2014-05-13 15:56:18 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2014-05-13 15:56:12 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2014-05-13 15:56:07 54826 -c--a-w- c:\windows\system32\dllcache\otcsercb.sys
2014-05-13 15:56:01 44361 -c--a-w- c:\windows\system32\dllcache\otceth5.sys
2014-05-13 15:55:56 27209 -c--a-w- c:\windows\system32\dllcache\otc06x5.sys
2014-05-13 15:55:48 54528 -c--a-w- c:\windows\system32\dllcache\opl3sax.sys
2014-05-13 15:55:29 1897408 -c--a-w- c:\windows\system32\dllcache\nv4_mini.sys
2014-05-13 15:55:27 4274816 -c--a-w- c:\windows\system32\dllcache\nv4_disp.dll
2014-05-13 15:55:22 198144 -c--a-w- c:\windows\system32\dllcache\nv3.sys
2014-05-13 15:55:17 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
2014-05-13 15:55:11 180360 -c--a-w- c:\windows\system32\dllcache\ntmtlfax.sys
2014-05-13 15:54:57 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys
2014-05-13 15:54:46 9472 -c--a-w- c:\windows\system32\dllcache\ntapm.sys
2014-05-13 15:54:41 7552 -c--a-w- c:\windows\system32\dllcache\nsmmc.sys
2014-05-13 15:54:36 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
2014-05-13 15:54:23 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
2014-05-13 15:54:18 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2014-05-13 15:54:10 32840 -c--a-w- c:\windows\system32\dllcache\ngrpci.sys
2014-05-13 15:54:03 132695 -c--a-w- c:\windows\system32\dllcache\netwlan5.sys
2014-05-13 15:53:49 66174 -c--a-w- c:\windows\system32\dllcache\netflx3.sys
2014-05-13 15:53:40 39264 -c--a-w- c:\windows\system32\dllcache\neo20xx.sys
2014-05-13 15:53:34 60480 -c--a-w- c:\windows\system32\dllcache\neo20xx.dll
2014-05-13 15:53:29 15872 -c--a-w- c:\windows\system32\dllcache\ne2000.sys
2014-05-13 15:53:26 10880 -c--a-w- c:\windows\system32\dllcache\ndisip.sys
2014-05-13 15:53:19 85248 -c--a-w- c:\windows\system32\dllcache\nabtsfec.sys
2014-05-13 15:53:13 91488 -c--a-w- c:\windows\system32\dllcache\n9i3disp.dll
2014-05-13 15:53:08 27936 -c--a-w- c:\windows\system32\dllcache\n9i3d.sys
2014-05-13 15:53:03 33088 -c--a-w- c:\windows\system32\dllcache\n9i128v2.sys
2014-05-13 15:52:58 59104 -c--a-w- c:\windows\system32\dllcache\n9i128v2.dll
2014-05-13 15:52:53 13664 -c--a-w- c:\windows\system32\dllcache\n9i128.sys
2014-05-13 15:52:47 35392 -c--a-w- c:\windows\system32\dllcache\n9i128.dll
2014-05-13 15:52:42 130048 -c--a-w- c:\windows\system32\dllcache\n100325.sys
2014-05-13 15:52:37 53279 -c--a-w- c:\windows\system32\dllcache\n1000nt5.sys
2014-05-13 15:52:31 76544 -c--a-w- c:\windows\system32\dllcache\mxport.sys
2014-05-13 15:52:26 7168 -c--a-w- c:\windows\system32\dllcache\mxport.dll
2014-05-13 15:52:21 19968 -c--a-w- c:\windows\system32\dllcache\mxnic.sys
2014-05-13 15:52:16 19968 -c--a-w- c:\windows\system32\dllcache\mxicfg.dll
2014-05-13 15:52:11 22144 -c--a-w- c:\windows\system32\dllcache\mxcard.sys
2014-05-13 15:52:09 12672 -c--a-w- c:\windows\system32\dllcache\mutohpen.sys
2014-05-13 15:52:00 103296 -c--a-w- c:\windows\system32\dllcache\mtxvideo.sys
2014-05-13 15:51:59 452736 -c--a-w- c:\windows\system32\dllcache\mtxparhm.sys
2014-05-13 15:51:58 1737856 -c--a-w- c:\windows\system32\dllcache\mtxparhd.dll
2014-05-13 15:51:49 1309184 -c--a-w- c:\windows\system32\dllcache\mtlstrm.sys
2014-05-13 15:51:47 126686 -c--a-w- c:\windows\system32\dllcache\mtlmnt5.sys
2014-05-13 15:51:31 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2014-05-13 15:51:28 49024 -c--a-w- c:\windows\system32\dllcache\mstape.sys
2014-05-13 15:51:16 12416 -c--a-w- c:\windows\system32\dllcache\msriffwv.sys
2014-05-13 15:50:58 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2014-05-13 15:50:53 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2014-05-13 15:50:21 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2014-05-13 15:50:15 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2014-05-13 15:50:11 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2014-05-13 15:49:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2014-05-13 15:49:35 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2014-05-13 15:49:26 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2014-05-13 15:49:00 6528 -c--a-w- c:\windows\system32\dllcache\miniqic.sys
2014-05-13 15:48:49 320384 -c--a-w- c:\windows\system32\dllcache\mgaum.sys
2014-05-13 15:48:43 235648 -c--a-w- c:\windows\system32\dllcache\mgaud.dll
2014-05-13 15:48:37 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
2014-05-13 15:48:32 47616 -c--a-w- c:\windows\system32\dllcache\memgrp.dll
2014-05-13 15:48:27 8320 -c--a-w- c:\windows\system32\dllcache\memcard.sys
2014-05-13 15:48:19 165034 -c--a-w- c:\windows\system32\dllcache\mdgndis5.sys
2014-05-13 15:48:06 7424 -c--a-w- c:\windows\system32\dllcache\mammoth.sys
2014-05-13 15:46:50 70730 -c--a-w- c:\windows\system32\dllcache\lne100tx.sys
2014-05-13 15:46:45 20573 -c--a-w- c:\windows\system32\dllcache\lne100.sys
2014-05-13 15:46:40 25065 -c--a-w- c:\windows\system32\dllcache\lmndis3.sys
2014-05-13 15:46:33 15872 -c--a-w- c:\windows\system32\dllcache\lit220p.sys
2014-05-13 15:46:30 34688 -c--a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2014-05-13 15:46:25 26986 -c--a-w- c:\windows\system32\dllcache\lanepic5.sys
2014-05-13 15:46:19 19016 -c--a-w- c:\windows\system32\dllcache\ktc111.sys
2014-05-13 15:46:07 37376 -c--a-w- c:\windows\system32\dllcache\kousd.dll
2014-05-13 15:46:01 254464 -c--a-w- c:\windows\system32\dllcache\kdsusd.dll
2014-05-13 15:45:59 49152 -c--a-w- c:\windows\system32\dllcache\kdsui.dll
2014-05-13 15:45:31 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2014-05-13 15:45:26 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2014-05-13 15:45:16 14720 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2014-05-13 15:44:56 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2014-05-13 15:44:51 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2014-05-13 15:44:47 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2014-05-13 15:44:42 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2014-05-13 15:44:28 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2014-05-13 15:44:24 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
2014-05-13 15:44:22 29696 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2014-05-13 15:44:18 23552 -c--a-w- c:\windows\system32\dllcache\irmk7.sys
2014-05-13 15:44:17 152576 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2014-05-13 15:44:15 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2014-05-13 15:44:13 46592 -c--a-w- c:\windows\system32\dllcache\irbus.sys
2014-05-13 15:43:52 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
2014-05-13 15:43:47 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
2014-05-13 15:43:42 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
2014-05-13 15:43:39 5504 -c--a-w- c:\windows\system32\dllcache\intelide.sys
2014-05-13 15:43:34 13568 -c--a-w- c:\windows\system32\dllcache\inport.sys
2014-05-13 15:43:28 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
2014-05-13 15:42:37 81920 -c--a-w- c:\windows\system32\dllcache\ieencode.dll
2014-05-13 15:42:20 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2014-05-13 15:42:14 100992 -c--a-w- c:\windows\system32\dllcache\icam5usb.sys
2014-05-13 15:42:10 20992 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2014-05-13 15:42:05 45056 -c--a-w- c:\windows\system32\dllcache\icam5com.dll
2014-05-13 15:42:01 154496 -c--a-w- c:\windows\system32\dllcache\icam4usb.sys
2014-05-13 15:40:58 8576 -c--a-w- c:\windows\system32\dllcache\i2omgmt.sys
2014-05-13 15:40:30 1041536 -c--a-w- c:\windows\system32\dllcache\hsfdpsp2.sys
2014-05-13 15:40:28 685056 -c--a-w- c:\windows\system32\dllcache\hsfcxts2.sys
2014-05-13 15:40:27 32285 -c--a-w- c:\windows\system32\dllcache\hsfcisp2.dll
2014-05-13 15:40:25 220032 -c--a-w- c:\windows\system32\dllcache\hsfbs2s2.sys
2014-05-13 15:40:20 488383 -c--a-w- c:\windows\system32\dllcache\hsf_v124.sys
2014-05-13 15:40:16 50751 -c--a-w- c:\windows\system32\dllcache\hsf_tone.sys
2014-05-13 15:40:12 73279 -c--a-w- c:\windows\system32\dllcache\hsf_spkp.sys
2014-05-13 15:40:07 44863 -c--a-w- c:\windows\system32\dllcache\hsf_soar.sys
2014-05-13 15:40:03 57471 -c--a-w- c:\windows\system32\dllcache\hsf_samp.sys
2014-05-13 15:38:57 32768 -c--a-w- c:\windows\system32\dllcache\hpgtmcro.dll
2014-05-13 15:37:59 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2014-05-13 15:36:58 470144 -c--a-w- c:\windows\system32\dllcache\g200d.dll
2014-05-13 15:36:55 454912 -c--a-w- c:\windows\system32\dllcache\fxusbase.sys
2014-05-13 15:36:31 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
2014-05-13 15:36:27 455296 -c--a-w- c:\windows\system32\dllcache\fusbbase.sys
2014-05-13 15:36:23 455680 -c--a-w- c:\windows\system32\dllcache\fus2base.sys
2014-05-13 15:36:11 442240 -c--a-w- c:\windows\system32\dllcache\fpnpbase.sys
2014-05-13 15:36:06 441728 -c--a-w- c:\windows\system32\dllcache\fpcmbase.sys
2014-05-13 15:36:03 444416 -c--a-w- c:\windows\system32\dllcache\fpcibase.sys
2014-05-13 15:35:58 34173 -c--a-w- c:\windows\system32\dllcache\forehe.sys
2014-05-13 15:35:44 27165 -c--a-w- c:\windows\system32\dllcache\fetnd5.sys
2014-05-13 15:35:34 22090 -c--a-w- c:\windows\system32\dllcache\fem556n5.sys
2014-05-13 15:35:26 24618 -c--a-w- c:\windows\system32\dllcache\fa410nd5.sys
2014-05-13 15:35:23 16074 -c--a-w- c:\windows\system32\dllcache\fa312nd5.sys
2014-05-13 15:35:19 11850 -c--a-w- c:\windows\system32\dllcache\f3ab18xj.sys
2014-05-13 15:35:16 12362 -c--a-w- c:\windows\system32\dllcache\f3ab18xi.sys
2014-05-13 15:35:08 7040 -c--a-w- c:\windows\system32\dllcache\exabyte2.sys
2014-05-13 15:35:05 16998 -c--a-w- c:\windows\system32\dllcache\ex10.sys
2014-05-13 15:33:59 53760 -c--a-w- c:\windows\system32\dllcache\eqndiag.exe
2014-05-13 15:32:57 55999 -c--a-w- c:\windows\system32\dllcache\el556nd5.sys
2014-05-13 15:32:55 44615 -c--a-w- c:\windows\system32\dllcache\el515.sys
2014-05-13 15:32:45 19594 -c--a-w- c:\windows\system32\dllcache\e100isa4.sys
2014-05-13 15:32:43 117760 -c--a-w- c:\windows\system32\dllcache\e100b325.sys
2014-05-13 15:32:40 51743 -c--a-w- c:\windows\system32\dllcache\e1000nt5.sys
2014-05-13 15:32:21 334208 -c--a-w- c:\windows\system32\dllcache\ds1wdm.sys
2014-05-13 15:32:12 20192 -c--a-w- c:\windows\system32\dllcache\dpti2o.sys
2014-05-13 15:32:04 28062 -c--a-w- c:\windows\system32\dllcache\dp83820.sys
2014-05-13 15:32:02 23936 -c--a-w- c:\windows\system32\dllcache\dot4usb.sys
2014-05-13 15:32:00 8704 -c--a-w- c:\windows\system32\dllcache\dot4scan.sys
2014-05-13 15:30:59 102484 -c--a-w- c:\windows\system32\dllcache\digiinf.dll
2014-05-13 15:29:52 14720 -c--a-w- c:\windows\system32\dllcache\dac960nt.sys
2014-05-13 15:28:59 42112 -c--a-w- c:\windows\system32\dllcache\crtaud.sys
2014-05-13 15:27:59 272640 -c--a-w- c:\windows\system32\dllcache\cinemclc.sys
2014-05-13 15:26:59 314752 -c--a-w- c:\windows\system32\dllcache\camdro21.sys
2014-05-13 15:26:08 13952 -c--a-w- c:\windows\system32\dllcache\bulltlp3.sys
2014-05-13 15:26:06 36480 -c--a-w- c:\windows\system32\dllcache\bthprint.sys
2014-05-13 15:26:06 18944 -c--a-w- c:\windows\system32\dllcache\bthusb.sys
2014-05-13 15:26:05 101120 -c--a-w- c:\windows\system32\dllcache\bthpan.sys
2014-05-13 15:26:04 37888 -c--a-w- c:\windows\system32\dllcache\bthmodem.sys
2014-05-13 15:26:02 17024 -c--a-w- c:\windows\system32\dllcache\bthenum.sys
2014-05-13 15:26:01 31529 -c--a-w- c:\windows\system32\dllcache\brzwlan.sys
2014-05-13 15:26:00 10368 -c--a-w- c:\windows\system32\dllcache\brusbscn.sys
2014-05-13 15:24:56 17279 -c--a-w- c:\windows\system32\dllcache\atv10nt5.dll
2014-05-13 15:23:59 201728 -c--a-w- c:\windows\system32\dllcache\ati2dvag.dll
2014-05-13 15:22:58 44928 -c--a-w- c:\windows\system32\dllcache\agpcpq.sys
2014-05-13 15:22:57 42368 -c--a-w- c:\windows\system32\dllcache\agp440.sys
2014-05-13 15:21:20 3775 -c--a-w- c:\windows\system32\dllcache\adv11nt5.dll
2014-05-13 15:21:20 3711 -c--a-w- c:\windows\system32\dllcache\adv09nt5.dll
2014-05-13 15:21:18 3135 -c--a-w- c:\windows\system32\dllcache\adv08nt5.dll
2014-05-13 15:21:17 3647 -c--a-w- c:\windows\system32\dllcache\adv07nt5.dll
2014-05-13 15:21:15 3615 -c--a-w- c:\windows\system32\dllcache\adv05nt5.dll
2014-05-13 15:21:14 3967 -c--a-w- c:\windows\system32\dllcache\adv02nt5.dll
2014-05-13 15:21:13 4255 -c--a-w- c:\windows\system32\dllcache\adv01nt5.dll
2014-05-13 15:21:07 101888 -c--a-w- c:\windows\system32\dllcache\adpu160m.sys
2014-05-13 15:21:05 46112 -c--a-w- c:\windows\system32\dllcache\adptsf50.sys
2014-05-13 15:21:02 10880 -c--a-w- c:\windows\system32\dllcache\admjoy.sys
2014-05-13 15:18:22 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2014-05-12 21:17:02 98816 ----a-w- c:\windows\sed.exe
2014-05-12 21:17:02 256000 ----a-w- c:\windows\PEV.exe
2014-05-12 21:17:02 208896 ----a-w- c:\windows\MBR.exe
2014-05-12 00:34:46 -------- d-----w- c:\programmi\PFPortChecker
2014-05-11 16:22:52 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\SUPERAntiSpyware.com
2014-05-11 16:21:27 -------- d-----w- c:\programmi\SUPERAntiSpyware
2014-05-11 16:21:27 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\SUPERAntiSpyware.com
2014-05-11 15:30:16 -------- d-----w- c:\programmi\Cheat Engine 6.3
2014-05-11 05:58:33 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Sun
2014-05-11 05:55:32 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-05-11 05:55:04 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-05-10 23:53:39 -------- d-----w- c:\documents and settings\all users.windows\Uniblue
2014-05-10 23:52:34 -------- d-----w- c:\programmi\Uniblue
2014-05-10 23:52:34 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Uniblue
2014-05-10 05:06:18 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2014-05-10 05:06:18 99328 ----a-w- c:\windows\system32\srusd.dll
2014-05-10 05:06:14 6912 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2014-05-10 05:06:14 6912 ----a-w- c:\windows\system32\drivers\serscan.sys
2014-05-10 05:06:09 71680 -c--a-w- c:\windows\system32\dllcache\fnfilter.dll
2014-05-10 05:06:09 71680 ----a-w- c:\windows\system32\fnfilter.dll
2014-05-10 04:57:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Motorola
2014-05-10 04:17:06 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Motorola Mobility
2014-05-10 04:16:13 -------- d-----w- c:\programmi\Motorola Mobility
2014-05-10 04:14:52 24960 ----a-w- c:\windows\system32\drivers\motmodem.sys
2014-05-10 04:14:52 1461992 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll
2014-05-10 04:14:14 -------- d-----w- c:\programmi\file comuni\Motorola Shared
2014-05-10 04:13:15 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Motorola
2014-05-09 22:08:20 95744 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2014-05-09 22:08:20 861696 ----a-w- c:\windows\system32\drivers\mod7700.sys
2014-05-09 22:08:20 76544 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2014-05-09 22:08:20 67584 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2014-05-09 22:08:20 28672 ----a-w- c:\windows\system32\drivers\usbccid.sys
2014-05-09 22:08:20 27520 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2014-05-09 22:08:20 25856 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2014-05-09 22:08:20 245376 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2014-05-09 22:08:20 199168 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2014-05-09 22:08:20 19200 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2014-05-09 22:08:20 12160 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2014-05-09 22:08:20 102784 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2014-05-09 22:07:07 -------- d-----w- c:\programmi\Claro Internet
2014-05-09 21:34:05 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Norton Utilities 16
2014-05-09 16:38:31 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\PCHealth
2014-05-09 16:00:55 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\ApplicationHistory
2014-05-09 14:08:33 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2014-05-09 14:08:05 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2014-05-09 14:08:05 117760 ------w- c:\windows\system32\prntvpt.dll
2014-05-09 14:08:04 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2014-05-09 14:08:04 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2014-05-09 14:08:04 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2014-05-09 14:08:04 575488 ------w- c:\windows\system32\xpsshhdr.dll
2014-05-09 14:08:03 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2014-05-09 14:08:03 1676288 ------w- c:\windows\system32\xpssvcs.dll
2014-05-09 14:08:02 -------- d-----w- C:\df74967e4fe424c322a2b6e536d98c4f
2014-05-09 13:59:43 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Identities
2014-05-09 13:59:35 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Windows Desktop Search
2014-05-09 13:58:50 -------- d-----w- c:\programmi\Windows Desktop Search
2014-05-09 13:56:35 -------- d-----w- c:\programmi\Windows Media Connect 2
2014-05-09 13:44:40 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-05-09 13:15:33 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-05-09 13:15:33 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-05-09 13:15:32 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-05-09 13:15:31 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-05-09 13:15:30 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-05-09 13:15:24 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-05-09 13:15:24 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-05-09 13:15:23 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-05-09 13:07:00 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\IECompatCache
2014-05-09 13:04:30 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\PrivacIE
2014-05-09 11:32:28 155648 ----a-r- c:\windows\system32\igfxres.dll
2014-05-09 11:30:59 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\IETldCache
2014-05-09 05:19:41 -------- d-----w- c:\programmi\MSXML 4.0
2014-05-09 05:16:05 69722 ----a-w- c:\windows\system32\SynTPFcs.dll
2014-05-09 05:16:01 94298 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-05-09 05:16:01 81920 ----a-w- c:\windows\system32\SynTPCo2.dll
2014-05-09 05:16:01 192672 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-05-09 05:15:59 82013 ----a-w- c:\windows\system32\SynCOM.dll
2014-05-09 05:15:59 114688 ----a-w- c:\windows\system32\SynCtrl.dll
2014-05-09 05:15:57 -------- d-----w- c:\programmi\Synaptics
2014-05-09 05:15:48 77824 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\ctor.dll
2014-05-09 05:15:48 32768 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\objectps.dll
2014-05-09 05:15:48 225280 ----a-w- c:\programmi\file comuni\installshield\iscript\iscript.dll
2014-05-09 05:15:48 176128 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\iuser.dll
2014-05-09 05:15:44 610436 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\IKernel.exe
2014-05-09 05:14:57 81920 ----a-r- c:\windows\system32\sm56co.dll
2014-05-09 05:14:53 53248 ----a-r- c:\windows\sm56jpn.dll
2014-05-09 05:14:53 1095936 ----a-w- c:\windows\system32\drivers\smserial.sys
2014-05-09 05:14:52 69632 ----a-r- c:\windows\sm56eng.dll
2014-05-09 05:14:52 61440 ----a-r- c:\windows\sm56ger.dll
2014-05-09 05:14:52 61440 ----a-r- c:\windows\sm56fra.dll
2014-05-09 05:14:52 49152 ----a-r- c:\windows\sm56cht.dll
2014-05-09 05:14:51 69632 ----a-r- c:\windows\sm56brz.dll
2014-05-09 05:14:51 49152 ----a-r- c:\windows\sm56chs.dll
2014-05-09 05:11:42 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Intel
2014-05-09 05:07:19 130432 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys
2014-05-09 05:06:57 73728 ----a-w- c:\windows\system32\ISUSPM.cpl
2014-05-09 05:06:57 385024 ----a-w- c:\programmi\file comuni\installshield\updateservice\_ispmres.dll
2014-05-09 05:06:57 221184 ----a-w- c:\programmi\file comuni\installshield\updateservice\ISUSPM.exe
2014-05-09 05:06:56 81920 ----a-w- c:\programmi\file comuni\installshield\updateservice\issch.exe
2014-05-09 05:06:56 368640 ----a-w- c:\programmi\file comuni\installshield\updateservice\_isusres.dll
2014-05-09 05:06:55 581632 ----a-w- c:\programmi\file comuni\installshield\updateservice\agent.exe
2014-05-09 05:06:55 278528 ----a-w- c:\programmi\file comuni\installshield\updateservice\ISDM.exe
2014-05-09 05:05:59 40960 ------r- c:\windows\system32\ChCfg.exe
2014-05-09 05:05:18 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2014-05-09 05:05:17 1523416 ----a-w- c:\windows\RtlUpd.exe
2014-05-09 05:05:14 891976 ----a-w- c:\windows\system32\RTSndMgr.CPL
2014-05-09 05:05:14 5582552 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2014-05-09 05:05:09 9721960 ----a-w- c:\windows\RTLCPL.EXE
2014-05-09 04:35:58 27232 ----a-w- c:\windows\system32\drivers\rspSanity32XP.sys
2014-05-09 04:35:57 -------- d-----w- c:\programmi\SanityCheck
2014-05-09 04:34:53 -------- d-----w- c:\programmi\WhoCrashed
2014-05-09 04:11:47 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Malwarebytes
2014-05-09 04:11:36 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Malwarebytes
2014-05-09 03:58:42 44544 ----a-w- c:\windows\system32\msxml4a.dll
2014-05-09 03:58:37 37920 ----a-w- c:\windows\system32\CleanMFT32.exe
2014-05-09 03:58:37 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx
2014-05-09 03:58:37 1101824 ----a-w- c:\windows\system32\UniBox210.ocx
2014-05-09 03:58:36 880640 ----a-w- c:\windows\system32\UniBox10.ocx
2014-05-09 03:58:36 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2014-05-09 03:57:58 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Symantec
2014-05-09 03:57:57 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Product_NU16
2014-05-09 03:52:34 -------- d-----w- c:\programmi\Boredom Software
2014-05-09 03:51:10 -------- d-----w- c:\programmi\Core Temp
2014-05-09 03:48:32 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Free Download Manager
2014-05-09 03:48:27 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Free Download Manager

SPasini · Jun 6, 2014

2014-05-09 03:48:27 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Free Download Manager
2014-05-09 03:48:16 -------- d-----w- c:\programmi\Free Download Manager
2014-05-09 03:40:01 1268560 ----a-w- c:\programmi\uTorrent.exe
2014-05-09 03:39:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\uTorrent
2014-05-09 03:37:53 -------- d-----w- c:\programmi\CCleaner
2014-05-09 03:33:03 25704 ----a-w- c:\windows\system32\drivers\WsAudio_DeviceS(5).sys
2014-05-09 03:31:58 25704 ----a-w- c:\windows\system32\drivers\WsAudio_DeviceS(1).sys
2014-05-09 03:31:44 892928 ----a-w- c:\windows\system32\iconv.dll
2014-05-09 03:31:44 675840 ----a-w- c:\windows\system32\ac3filter.ax
2014-05-09 03:31:44 496640 ----a-w- c:\windows\system32\xvid.ax
2014-05-09 03:31:41 153600 ----a-w- c:\windows\system32\WS_ATLMovie.dll
2014-05-09 03:31:36 -------- d-----w- c:\programmi\iSkysoft
2014-05-09 03:29:27 -------- d-----w- c:\programmi\Defraggler
2014-05-09 03:28:50 -------- d-----w- c:\programmi\OverDrive Media Console
2014-05-09 03:25:19 -------- d-----w- c:\programmi\VideoLAN
2014-05-09 03:23:12 -------- d-----w- c:\programmi\Speccy
2014-05-09 03:13:39 272768 -c--a-w- c:\windows\system32\dllcache\bthport.sys
2014-05-09 03:13:39 272768 ------w- c:\windows\system32\drivers\bthport.sys
2014-05-09 03:13:23 14976 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2014-05-09 03:12:05 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-05-09 03:12:05 13312 ------w- c:\windows\system32\xp_eos.exe
2014-05-09 03:04:08 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Mozilla
2014-05-09 02:59:46 12928 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2014-05-09 02:50:43 2197248 -c--a-w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-05-09 02:50:42 2073856 -c--a-w- c:\windows\system32\dllcache\ntkrnlpa.exe
2014-05-09 02:50:18 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-05-09 02:50:18 3072 ------w- c:\windows\system32\iacenc.dll
2014-05-09 02:41:12 -------- d-----w- c:\programmi\Software Informer
2014-05-09 02:41:12 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Software Informer
2014-05-09 02:39:36 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Help
2014-05-09 02:37:43 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Skype
2014-05-09 02:36:58 -------- d-----r- c:\programmi\Skype
2014-05-09 02:25:49 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\UserData
2014-05-09 02:24:19 18968 ----a-w- c:\windows\system32\sdnclean.exe
2014-05-09 02:24:15 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Spybot - Search & Destroy
2014-05-09 02:24:03 -------- d-----w- c:\programmi\Spybot - Search & Destroy 2
2014-05-09 00:46:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Temp
2014-05-09 00:39:25 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Claro Internet
2014-05-09 00:38:49 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2014-05-09 00:38:46 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2014-05-09 00:38:38 1112288 ----a-w- c:\windows\system32\wdfcoinstaller01007.dll
2014-05-09 00:38:38 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-05-09 00:36:57 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\DatacardService
2014-05-09 00:36:43 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2014-05-09 00:36:39 32384 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2014-05-09 00:36:39 32384 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-05-09 00:35:53 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\AVAST Software
2014-05-09 00:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Google
2014-05-09 00:33:44 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-09 00:33:43 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-05-09 00:33:43 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-05-09 00:33:43 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-09 00:33:42 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-09 00:33:36 43152 ----a-w- c:\windows\avastSS.scr
2014-05-09 00:32:56 -------- d-----w- c:\programmi\AVAST Software
2014-05-09 00:31:46 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\AVAST Software
2014-05-09 00:16:03 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
2014-05-09 00:16:03 31360 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys
2014-05-09 00:16:01 9216 -c--a-w- c:\windows\system32\dllcache\wamps51.dll
2014-05-09 00:16:01 78336 -c--a-w- c:\windows\system32\dllcache\wam51.dll
2014-05-09 00:16:01 53248 -c--a-w- c:\windows\system32\dllcache\wamreg51.dll
2014-05-09 00:16:00 74240 -c--a-w- c:\windows\system32\dllcache\w3ext.dll
2014-05-09 00:16:00 5632 -c--a-w- c:\windows\system32\dllcache\w3svapi.dll
2014-05-09 00:16:00 4608 -c--a-w- c:\windows\system32\dllcache\w3ctrs51.dll
2014-05-09 00:16:00 369152 -c--a-w- c:\windows\system32\dllcache\w3svc.dll
2014-05-09 00:14:58 229439 -c--a-w- c:\windows\system32\dllcache\multibox.dll
2014-05-09 00:13:58 10096640 -c--a-w- c:\windows\system32\dllcache\hwxcht.dll
2014-05-09 00:12:59 7168 -c--a-w- c:\windows\system32\dllcache\wamregps.dll
2014-05-09 00:10:38 -------- d-sh--w- c:\documents and settings\all users.windows\DRM
2014-05-09 00:10:03 -------- d--h--w- c:\programmi\WindowsUpdate
2014-05-09 00:08:59 6144 -c--a-w- c:\windows\system32\dllcache\wmm2res2.dll
2014-05-09 00:05:59 85504 -c--a-w- c:\windows\system32\dllcache\catsrvps.dll
2014-05-08 21:01:20 3072 -c--a-w- c:\windows\system32\dllcache\audstub.sys
2014-05-08 21:01:20 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2014-05-08 21:00:38 58368 -c--a-w- c:\windows\system32\dllcache\redbook.sys
2014-05-08 21:00:38 58368 ----a-w- c:\windows\system32\drivers\redbook.sys
2014-05-08 21:00:08 6400 -c--a-w- c:\windows\system32\dllcache\enum1394.sys
2014-05-08 21:00:08 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
2014-05-08 21:00:03 20992 -c--a-w- c:\windows\system32\dllcache\rtl8139.sys
2014-05-08 21:00:03 20992 ----a-w- c:\windows\system32\drivers\RTL8139.sys
2014-05-08 20:59:43 10240 -c--a-w- c:\windows\system32\dllcache\compbatt.sys
2014-05-08 20:59:43 10240 ----a-w- c:\windows\system32\drivers\compbatt.sys
2014-05-08 20:59:42 14208 -c--a-w- c:\windows\system32\dllcache\battc.sys
2014-05-08 20:59:42 14208 ----a-w- c:\windows\system32\drivers\battc.sys
2014-05-08 20:59:42 13952 -c--a-w- c:\windows\system32\dllcache\cmbatt.sys
2014-05-08 20:59:42 13952 ----a-w- c:\windows\system32\drivers\CmBatt.sys
2014-05-08 20:59:27 76800 -c--a-w- c:\windows\system32\dllcache\usbui.dll
2014-05-08 20:59:27 76800 ----a-w- c:\windows\system32\usbui.dll
2014-05-08 20:59:22 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2014-05-08 20:59:22 8832 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2014-05-08 20:56:55 -------- d--h--w- c:\documents and settings\all users.windows\Modelli
2014-05-08 20:56:55 -------- d-----w- c:\documents and settings\all users.windows\Preferiti
2014-05-08 20:56:55 -------- d-----r- c:\documents and settings\all users.windows\Menu Avvio
2014-05-08 20:56:55 -------- d-----r- c:\documents and settings\all users.windows\Documenti
2014-05-08 20:56:33 -------- d--h--r- c:\documents and settings\all users.windows\Dati applicazioni
2014-05-06 19:47:59 -------- d-----w- C:\TDSSKiller_Quarantine
2014-05-06 15:46:42 -------- d-----w- C:\f10e561f9673ea07a872
2014-05-06 04:00:46 -------- d-----w- C:\$WIN_NT$.~BT
2014-05-06 00:31:49 -------- d-----w- c:\windows\system32\Cache
2014-05-05 23:48:53 -------- d-----w- c:\windows\setup.pss
2014-05-04 00:46:28 -------- dc-h--w- c:\windows\ie8
2014-05-03 23:39:05 -------- d-----w- c:\windows\system32\msmq
2014-05-03 23:14:31 -------- d-----w- c:\windows\IIS Temporary Compressed Files
2014-05-03 23:04:42 -------- d-----w- c:\windows\system32\appmgmt
2014-05-02 15:29:40 -------- d-----w- c:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-05-01 16:05:22 -------- d-----w- C:\Temp
2014-04-30 21:13:06 -------- d-----w- c:\windows\system32\winrm
2014-04-30 21:12:58 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2014-04-30 16:44:24 -------- d-----w- c:\windows\system32\XPSViewer
2014-04-30 16:33:20 -------- d--h--w- c:\windows\system32\GroupPolicy
2014-04-30 16:29:34 -------- d-----w- c:\windows\system32\URTTemp
2014-04-29 16:46:32 -------- d-----w- c:\windows\ie8updates
2014-04-29 00:29:47 -------- d-----w- c:\windows\system32\NtmsData
2014-04-28 05:36:59 -------- d-----w- c:\windows\system32\LogFiles
2014-04-27 14:17:31 -------- d-----w- c:\windows\system32\MRT
2014-04-27 13:31:08 -------- d-----w- c:\windows\system32\PreInstall
2014-04-27 13:31:05 -------- d--h--w- c:\windows\$hf_mig$
2014-04-27 13:25:07 -------- d-----w- c:\windows\system32\SoftwareDistribution
.
==================== Find6M ====================
.
2014-05-14 17:16:51 42144 ----a-w- c:\windows\system32\drivers\o2sd.sys
2014-05-14 17:01:36 20145368 ----a-w- c:\windows\RTHDCPL.EXE
2014-05-14 17:01:30 2180712 ----a-w- c:\windows\MicCal.exe
2014-05-14 17:01:28 64104 ----a-w- c:\windows\ALCMTR.EXE
2014-05-14 17:01:28 2815592 ----a-w- c:\windows\ALCWZRD.EXE
2014-05-14 17:01:27 285288 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2014-05-09 00:33:37 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1400200525468
2014-05-09 00:33:37 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1400200525468
2014-03-06 17:58:54 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:58:54 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-03-06 17:58:54 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-06 17:58:53 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-07 06:36:38 1879040 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 08:55:01 563712 ----a-w- c:\windows\system32\qedit.dll
2014-01-04 03:12:52 420864 ----a-w- c:\windows\system32\vbscript.dll
.
============= FINISH: 18.27.03,23 ===============

SPasini · Jun 6, 2014

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.55.2
Run by SergioPasini at 18:24:05 on 2014-06-06
#Option Extended Search is enabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1015.107 [GMT -3:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\netdde.exe
C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
C:\Programmi\Google\Update\1.3.24.7\GoogleCrashHandler.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamservice.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\locator.exe
C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Programmi\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Claro Internet\Claro Internet.exe
C:\Programmi\Uniblue\DriverScanner\dsmonitor.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\msdtc.exe
C:\Programmi\AVAST Software\Avast\AvastUI.exe
C:\Programmi\Spybot - Search & Destroy 2\SDTray.exe
C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\programmi\Core Temp\Core Temp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k eapsvcs
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k WINRM
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programmi\java\jre7\bin\ssv.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\programmi\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre7\bin\jp2ssv.dll
uRun: [Core Temp] "c:\programmi\core temp\Core Temp.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\programmi\superantispyware\SUPERAntiSpyware.exe
uRun: [uTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\utorrent\uTorrent.exe" /MINIMIZED
uRun: [BitTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\bittorrent\BitTorrent.exe" /MINIMIZED
mRun: [AvastUI.exe] "c:\programmi\avast software\avast\AvastUI.exe" /nogui
mRun: [SDTray] "c:\programmi\spybot - search & destroy 2\SDTray.exe"
mRun: [AzMixerSel] c:\programmi\realtek\installshield\AzMixerSel.exe
mRun: [IntelZeroConfig] "c:\programmi\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\programmi\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\programmi\intel\wireless\bin\EOUWiz.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SMSERIAL] c:\programmi\motorola\smserial\sm56hlpr.exe
mRun: [SynTPEnh] c:\programmi\synaptics\syntp\SynTPEnh.exe
mRun: [Synchronization Manager] c:\windows\system32\mobsync.exe /logon
mRun: [RTHDCPL] RTHDCPL.EXE
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Download all with Free Download Manager - c:\programmi\free download manager\dlall.htm
IE: Download selected with Free Download Manager - c:\programmi\free download manager\dlselected.htm
IE: Download video with Free Download Manager - c:\programmi\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - c:\programmi\free download manager\dllink.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1399602363171
TCP: Interfaces\{357CBD21-2DFD-4858-957D-C0971280B9F2} : NameServer = 190.220.191.46 170.51.255.110
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programmi\file comuni\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\programmi\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\programmi\superantispyware\SASSEH.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\programmi\google\chrome\application\35.0.1916.114\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\mozilla\firefox\profiles\k16p1aht.default\
FF - prefs.js: browser.search.selectedEngine - SecureSearch
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_8&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\programmi\adobe\adobe extension manager cs6\npAdobeExManDetectX86.dll
FF - plugin: c:\programmi\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect64.dll
FF - plugin: c:\programmi\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\programmi\google\update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: c:\programmi\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\programmi\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-5-8 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-5-8 180632]
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-13 34176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-5-8 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-5-8 411680]
R1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2014-5-29 53208]
R1 SASDIFSV;SASDIFSV;c:\programmi\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\programmi\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\programmi\superantispyware\SASCore.exe [2013-10-10 120088]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-5-8 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-5-8 67824]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\avast software\avast\AvastSvc.exe [2014-5-8 50344]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\documents and settings\all users.windows\dati applicazioni\datacardservice\HWDeviceService.exe [2011-3-14 271712]
R2 MBAMScheduler;MBAMScheduler;c:\programmi\malwarebytes anti-malware\mbamscheduler.exe [2014-5-29 1809720]
R2 MBAMService;MBAMService;c:\programmi\malwarebytes anti-malware\mbamservice.exe [2014-5-29 860472]
R3 ALSysIO;ALSysIO;\??\c:\docume~1\sergio~1.spa\impost~1\temp\alsysio.sys --> c:\docume~1\sergio~1.spa\impost~1\temp\ALSysIO.sys [?]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-5-9 12160]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2014-5-9 95744]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2014-5-9 67584]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-5-9 76544]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2014-5-9 27520]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-5-29 23256]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-5-29 110296]
R3 NETwLx32; Driver scheda Intel(R) Wireless WiFi Link 5000 Series per Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [2014-5-14 6609920]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2005-12-18 42144]
R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2014-5-9 25704]
S2 Claro Internet. RunOuc;Claro Internet. OUC;c:\programmi\claro internet\updatedog\ouc.exe [2014-5-9 655712]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-5-14 1691480]
S3 DiskDoctorService;Norton Disk Doctor Service;c:\program files\symantec\norton utilities 16\tools\disk doctor\DiskDoctorSrv.exe [2014-5-6 1147424]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-5-9 102784]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\112.tmp --> c:\windows\system32\112.tmp [?]
S3 rspSanity;rspSanity;c:\windows\system32\drivers\rspSanity32XP.sys [2014-5-9 27232]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="c:\programmi\adobe\adobe dreamweaver cs6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="c:\programmi\adobe\adobe dreamweaver cs6\dreamweaver.exe", "%1"
.
=============== Created Last 60 ================
.
2014-06-06 15:33:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\APN
2014-06-05 20:54:26 13816 ----a-w- c:\windows\system32\unikey.sys
2014-06-04 00:48:21 -------- d-----w- C:\CrashLogs
2014-06-01 13:37:38 -------- d-----w- c:\programmi\FiSTiNG4FUN
2014-06-01 05:56:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Boredom Software
2014-06-01 05:49:33 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\f3d8f0d1a680598
2014-06-01 05:49:32 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Chromatic Browser
2014-06-01 05:49:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Torch
2014-06-01 05:49:28 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Comodo
2014-06-01 05:46:18 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\InstallMate
2014-05-31 23:28:30 -------- d-----w- c:\programmi\Driver Identifier
2014-05-29 23:34:56 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-29 23:34:14 53208 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-29 23:34:13 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-29 23:34:09 -------- d-----w- c:\programmi\Malwarebytes Anti-Malware
2014-05-26 21:14:40 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-05-26 20:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Adobe
2014-05-26 20:32:14 -------- d-----w- c:\programmi\Adobe Dreamweaver CS6
2014-05-26 00:16:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\AppData
2014-05-25 21:14:30 -------- d-----w- C:\FRST
2014-05-24 22:16:44 -------- d-sha-r- C:\cmdcons
2014-05-24 01:15:18 -------- d-----w- C:\170787f18cf2ea828ff7b7dde070376f
2014-05-24 00:05:14 -------- d-----w- C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 04:13:06 14048 ------w- c:\windows\system32\spmsg2.dll
2014-05-22 17:24:28 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Sophos
2014-05-22 17:21:28 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2014-05-22 17:21:04 -------- d-----w- c:\programmi\Sophos
2014-05-20 15:42:28 -------- d-----w- c:\programmi\file comuni\Adobe AIR
2014-05-19 15:45:48 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\regid.1986-12.com.adobe
2014-05-17 22:31:41 1639760 ----a-w- c:\programmi\BitTorrent.exe
2014-05-17 22:29:18 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\BitTorrent
2014-05-16 16:07:04 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-16 16:07:04 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-16 04:34:35 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Informer Technologies, Inc
2014-05-16 04:13:20 -------- d-----w- c:\programmi\PFConfig
2014-05-15 23:12:52 -------- d-----w- c:\windows\pss
2014-05-14 21:44:55 6609920 ----a-w- c:\windows\system32\drivers\NETwLx32.sys
2014-05-14 21:44:54 2756608 ----a-w- c:\windows\system32\NETwLr32.dll
2014-05-14 21:44:53 675840 ----a-w- c:\windows\system32\NETwLc32.dll
2014-05-14 17:16:51 739872 ----a-w- c:\windows\system32\O2Icon.dll
2014-05-14 17:09:07 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2014-05-14 17:09:07 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2014-05-14 17:08:06 -------- d-----w- c:\programmi\Motorola
2014-05-14 17:07:56 516096 ----a-w- c:\windows\system32\sm56co85.dll
2014-05-14 17:01:42 359016 ----a-w- c:\windows\vncutil.exe
2014-05-14 17:01:41 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2014-05-14 17:01:40 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2014-05-14 17:01:40 129640 ----a-w- c:\windows\RtkAudioService.exe
2014-05-14 17:01:31 26084 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2014-05-14 17:01:30 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2014-05-14 17:01:27 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2014-05-14 16:33:40 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-05-13 16:24:20 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2014-05-13 16:24:13 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2014-05-13 16:24:12 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2014-05-13 16:24:05 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2014-05-13 16:23:58 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2014-05-13 16:23:47 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2014-05-13 16:23:35 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2014-05-13 16:23:30 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2014-05-13 16:23:22 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2014-05-13 16:23:20 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2014-05-13 16:23:17 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2014-05-13 16:22:25 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2014-05-13 16:22:19 35402 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2014-05-13 16:21:52 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
2014-05-13 16:21:40 54272 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
2014-05-13 16:21:34 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2014-05-13 16:21:15 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2014-05-13 16:21:14 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
2014-05-13 16:21:13 32000 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
2014-05-13 16:21:07 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
2014-05-13 16:21:00 25471 -c--a-w- c:\windows\system32\dllcache\watv10nt.sys
2014-05-13 16:19:52 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2014-05-13 16:19:39 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2014-05-13 16:19:32 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2014-05-13 16:19:22 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2014-05-13 16:19:20 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2014-05-13 16:19:20 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2014-05-13 16:19:16 54784 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2014-05-13 16:19:12 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2014-05-13 16:19:02 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2014-05-13 16:18:55 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2014-05-13 16:18:47 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2014-05-13 16:18:40 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2014-05-13 16:18:32 224802 -c--a-w- c:\windows\system32\dllcache\usr1807a.sys
2014-05-13 16:18:25 794399 -c--a-w- c:\windows\system32\dllcache\usr1806v.sys
2014-05-13 16:18:19 793598 -c--a-w- c:\windows\system32\dllcache\usr1806.sys
2014-05-13 16:18:12 794654 -c--a-w- c:\windows\system32\dllcache\usr1801.sys
2014-05-13 16:18:09 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2014-05-13 16:18:05 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2014-05-13 16:18:04 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2014-05-13 16:18:02 17152 -c--a-w- c:\windows\system32\dllcache\usbohci.sys
2014-05-13 16:17:57 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2014-05-13 16:17:55 32384 -c--a-w- c:\windows\system32\dllcache\usb101et.sys
2014-05-13 16:17:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2014-05-13 16:17:29 28672 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2014-05-13 16:17:23 27136 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2014-05-13 16:17:16 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2014-05-13 16:17:10 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2014-05-13 16:17:03 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2014-05-13 16:16:57 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2014-05-13 16:16:51 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2014-05-13 16:16:44 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2014-05-13 16:16:37 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2014-05-13 16:16:31 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2014-05-13 16:16:26 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2014-05-13 16:16:18 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2014-05-13 16:15:59 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2014-05-13 16:15:53 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2014-05-13 16:15:46 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2014-05-13 16:15:40 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2014-05-13 16:15:33 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2014-05-13 16:15:27 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2014-05-13 16:15:18 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2014-05-13 16:15:12 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2014-05-13 16:15:10 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2014-05-13 16:15:04 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2014-05-13 16:14:55 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2014-05-13 16:14:49 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2014-05-13 16:14:43 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2014-05-13 16:14:36 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2014-05-13 16:14:26 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2014-05-13 16:14:12 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2014-05-13 16:14:06 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2014-05-13 16:14:02 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2014-05-13 16:13:53 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2014-05-13 16:13:47 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2014-05-13 16:13:31 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2014-05-13 16:13:20 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2014-05-13 16:13:14 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2014-05-13 16:13:08 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2014-05-13 16:12:51 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2014-05-13 16:12:45 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2014-05-13 16:12:39 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2014-05-13 16:12:33 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2014-05-13 16:12:27 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2014-05-13 16:12:20 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2014-05-13 16:12:15 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2014-05-13 16:12:09 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2014-05-13 16:12:03 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2014-05-13 16:11:57 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2014-05-13 16:11:51 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2014-05-13 16:11:46 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2014-05-13 16:11:39 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2014-05-13 16:11:33 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2014-05-13 16:11:27 286816 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2014-05-13 16:11:19 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2014-05-13 16:11:03 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2014-05-13 16:10:45 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2014-05-13 16:10:32 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2014-05-13 16:10:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2014-05-13 16:10:20 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2014-05-13 16:10:13 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2014-05-13 16:10:07 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2014-05-13 16:10:01 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2014-05-13 16:09:56 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2014-05-13 16:09:50 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2014-05-13 16:09:49 7552 -c--a-w- c:\windows\system32\dllcache\sonyait.sys
2014-05-13 16:09:41 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
2014-05-13 16:09:19 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2014-05-13 16:09:12 147200 -c--a-w- c:\windows\system32\dllcache\smidispb.dll
2014-05-13 16:09:05 25034 -c--a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2014-05-13 16:07:59 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2014-05-13 16:06:58 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2014-05-13 16:06:53 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2014-05-13 16:06:47 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2014-05-13 16:06:25 161792 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2014-05-13 16:06:20 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2014-05-13 16:06:14 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2014-05-13 16:06:08 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2014-05-13 16:06:02 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2014-05-13 16:05:48 18176 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2014-05-13 16:05:33 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2014-05-13 16:05:31 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2014-05-13 16:05:25 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2014-05-13 16:05:16 17536 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2014-05-13 16:05:10 16768 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2014-05-13 16:05:02 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2014-05-13 16:04:56 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2014-05-13 16:04:53 43904 -c--a-w- c:\windows\system32\dllcache\sbp2port.sys
2014-05-13 16:04:48 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2014-05-13 16:04:37 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2014-05-13 16:04:31 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2014-05-13 16:04:26 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2014-05-13 16:04:20 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2014-05-13 16:04:15 61504 -c--a-w- c:\windows\system32\dllcache\s3sav3dm.sys
2014-05-13 16:04:09 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
2014-05-13 16:04:03 210496 -c--a-w- c:\windows\system32\dllcache\s3mvirge.dll
2014-05-13 16:03:58 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2014-05-13 16:03:52 41216 -c--a-w- c:\windows\system32\dllcache\s3mt3d.sys
2014-05-13 16:03:46 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2014-05-13 16:03:41 166720 -c--a-w- c:\windows\system32\dllcache\s3m.sys
2014-05-13 16:03:35 65664 -c--a-w- c:\windows\system32\dllcache\s3legacy.sys
2014-05-13 16:03:34 166912 -c--a-w- c:\windows\system32\dllcache\s3gnbm.sys
2014-05-13 16:03:33 397056 -c--a-w- c:\windows\system32\dllcache\s3gnb.dll
2014-05-13 16:03:26 83456 -c--a-w- c:\windows\system32\dllcache\rwia450.dll
2014-05-13 16:03:21 80896 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
2014-05-13 16:03:17 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
2014-05-13 16:03:15 28160 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
2014-05-13 16:03:01 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
2014-05-13 16:02:55 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2014-05-13 16:02:45 10752 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2014-05-13 16:02:37 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2014-05-13 16:02:30 79360 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2014-05-13 16:02:29 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2014-05-13 16:02:22 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2014-05-13 16:02:19 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2014-05-13 16:02:12 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2014-05-13 16:01:59 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2014-05-13 16:01:41 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2014-05-13 16:01:30 715338 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2014-05-13 16:01:24 899754 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2014-05-13 16:01:18 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2014-05-13 16:01:12 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2014-05-13 16:00:56 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2014-05-13 16:00:50 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys

SPasini · Jun 6, 2014

(DDS Ver_2012-
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
C:\Programmi\Google\Update\1.3.24.7\GoogleCrashHandler.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamservice.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\locator.exe
C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Programmi\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Claro Internet\Claro Internet.exe
C:\Programmi\Uniblue\DriverScanner\dsmonitor.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\msdtc.exe
C:\Programmi\AVAST Software\Avast\AvastUI.exe
C:\Programmi\Spybot - Search & Destroy 2\SDTray.exe
C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\Motorola\SMSERIAL\sm5611-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.55.2
Run by SergioPasini at 18:24:05 on 2014-06-06
#Option Extended Search is enabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1015.107 [GMT -3:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\netdde.exe
C:\Programmi\SUPERAntiSpyware\SASCORE.EXEhlpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\programmi\Core Temp\Core Temp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k eapsvcs
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k WINRM
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programmi\java\jre7\bin\ssv.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\programmi\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre7\bin\jp2ssv.dll
uRun: [Core Temp] "c:\programmi\core temp\Core Temp.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\programmi\superantispyware\SUPERAntiSpyware.exe
uRun: [uTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\utorrent\uTorrent.exe" /MINIMIZED
uRun: [BitTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\bittorrent\BitTorrent.exe" /MINIMIZED
mRun: [AvastUI.exe] "c:\programmi\avast software\avast\AvastUI.exe" /nogui
mRun: [SDTray] "c:\programmi\spybot - search & destroy 2\SDTray.exe"
mRun: [AzMixerSel] c:\programmi\realtek\installshield\AzMixerSel.exe
mRun: [IntelZeroConfig] "c:\programmi\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\programmi\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\programmi\intel\wireless\bin\EOUWiz.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SMSERIAL] c:\programmi\motorola\smserial\sm56hlpr.exe
mRun: [SynTPEnh] c:\programmi\synaptics\syntp\SynTPEnh.exe
mRun: [Synchronization Manager] c:\windows\system32\mobsync.exe /logon
mRun: [RTHDCPL] RTHDCPL.EXE
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Download all with Free Download Manager - c:\programmi\free download manager\dlall.htm
IE: Download selected with Free Download Manager - c:\programmi\free download manager\dlselected.htm
IE: Download video with Free Download Manager - c:\programmi\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - c:\programmi\free download manager\dllink.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1399602363171
TCP: Interfaces\{357CBD21-2DFD-4858-957D-C0971280B9F2} : NameServer = 190.220.191.46 170.51.255.110
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programmi\file comuni\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\programmi\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\programmi\superantispyware\SASSEH.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\programmi\google\chrome\application\35.0.1916.114\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\mozilla\firefox\profiles\k16p1aht.default\
FF - prefs.js: browser.search.selectedEngine - SecureSearch
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_8&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\programmi\adobe\adobe extension manager cs6\npAdobeExManDetectX86.dll
FF - plugin: c:\programmi\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect64.dll
FF - plugin: c:\programmi\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\programmi\google\update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: c:\programmi\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\programmi\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-5-8 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-5-8 180632]
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-13 34176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-5-8 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-5-8 411680]
R1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2014-5-29 53208]
R1 SASDIFSV;SASDIFSV;c:\programmi\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\programmi\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\programmi\superantispyware\SASCore.exe [2013-10-10 120088]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-5-8 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-5-8 67824]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\avast software\avast\AvastSvc.exe [2014-5-8 50344]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\documents and settings\all users.windows\dati applicazioni\datacardservice\HWDeviceService.exe [2011-3-14 271712]
R2 MBAMScheduler;MBAMScheduler;c:\programmi\malwarebytes anti-malware\mbamscheduler.exe [2014-5-29 1809720]
R2 MBAMService;MBAMService;c:\programmi\malwarebytes anti-malware\mbamservice.exe [2014-5-29 860472]
R3 ALSysIO;ALSysIO;\??\c:\docume~1\sergio~1.spa\impost~1\temp\alsysio.sys --> c:\docume~1\sergio~1.spa\impost~1\temp\ALSysIO.sys [?]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-5-9 12160]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2014-5-9 95744]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2014-5-9 67584]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-5-9 76544]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2014-5-9 27520]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-5-29 23256]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-5-29 110296]
R3 NETwLx32; Driver scheda Intel(R) Wireless WiFi Link 5000 Series per Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [2014-5-14 6609920]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2005-12-18 42144]
R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2014-5-9 25704]
S2 Claro Internet. RunOuc;Claro Internet. OUC;c:\programmi\claro internet\updatedog\ouc.exe [2014-5-9 655712]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-5-14 1691480]
S3 DiskDoctorService;Norton Disk Doctor Service;c:\program files\symantec\norton utilities 16\tools\disk doctor\DiskDoctorSrv.exe [2014-5-6 1147424]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-5-9 102784]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\112.tmp --> c:\windows\system32\112.tmp [?]
S3 rspSanity;rspSanity;c:\windows\system32\drivers\rspSanity32XP.sys [2014-5-9 27232]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="c:\programmi\adobe\adobe dreamweaver cs6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="c:\programmi\adobe\adobe dreamweaver cs6\dreamweaver.exe", "%1"
.
=============== Created Last 60 ================
.
2014-06-06 15:33:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\APN
2014-06-05 20:54:26 13816 ----a-w- c:\windows\system32\unikey.sys
2014-06-04 00:48:21 -------- d-----w- C:\CrashLogs
2014-06-01 13:37:38 -------- d-----w- c:\programmi\FiSTiNG4FUN
2014-06-01 05:56:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Boredom Software
2014-06-01 05:49:33 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\f3d8f0d1a680598
2014-06-01 05:49:32 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Chromatic Browser
2014-06-01 05:49:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Torch
2014-06-01 05:49:28 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Comodo
2014-06-01 05:46:18 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\InstallMate
2014-05-31 23:28:30 -------- d-----w- c:\programmi\Driver Identifier
2014-05-29 23:34:56 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-29 23:34:14 53208 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-29 23:34:13 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-29 23:34:09 -------- d-----w- c:\programmi\Malwarebytes Anti-Malware
2014-05-26 21:14:40 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-05-26 20:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Adobe
2014-05-26 20:32:14 -------- d-----w- c:\programmi\Adobe Dreamweaver CS6
2014-05-26 00:16:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\AppData
2014-05-25 21:14:30 -------- d-----w- C:\FRST
2014-05-24 22:16:44 -------- d-sha-r- C:\cmdcons
2014-05-24 01:15:18 -------- d-----w- C:\170787f18cf2ea828ff7b7dde070376f
2014-05-24 00:05:14 -------- d-----w- C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 04:13:06 14048 ------w- c:\windows\system32\spmsg2.dll
2014-05-22 17:24:28 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Sophos
2014-05-22 17:21:28 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2014-05-22 17:21:04 -------- d-----w- c:\programmi\Sophos
2014-05-20 15:42:28 -------- d-----w- c:\programmi\file comuni\Adobe AIR
2014-05-19 15:45:48 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\regid.1986-12.com.adobe
2014-05-17 22:31:41 1639760 ----a-w- c:\programmi\BitTorrent.exe
2014-05-17 22:29:18 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\BitTorrent
2014-05-16 16:07:04 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-16 16:07:04 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-16 04:34:35 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Informer Technologies, Inc
2014-05-16 04:13:20 -------- d-----w- c:\programmi\PFConfig
2014-05-15 23:12:52 -------- d-----w- c:\windows\pss
2014-05-14 21:44:55 6609920 ----a-w- c:\windows\system32\drivers\NETwLx32.sys
2014-05-14 21:44:54 2756608 ----a-w- c:\windows\system32\NETwLr32.dll
2014-05-14 21:44:53 675840 ----a-w- c:\windows\system32\NETwLc32.dll
2014-05-14 17:16:51 739872 ----a-w- c:\windows\system32\O2Icon.dll
2014-05-14 17:09:07 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2014-05-14 17:09:07 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2014-05-14 17:08:06 -------- d-----w- c:\programmi\Motorola
2014-05-14 17:07:56 516096 ----a-w- c:\windows\system32\sm56co85.dll
2014-05-14 17:01:42 359016 ----a-w- c:\windows\vncutil.exe
2014-05-14 17:01:41 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2014-05-14 17:01:40 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2014-05-14 17:01:40 129640 ----a-w- c:\windows\RtkAudioService.exe
2014-05-14 17:01:31 26084 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2014-05-14 17:01:30 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2014-05-14 17:01:27 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2014-05-14 16:33:40 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-05-13 16:24:20 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2014-05-13 16:24:13 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2014-05-13 16:24:12 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2014-05-13 16:24:05 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2014-05-13 16:23:58 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2014-05-13 16:23:47 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2014-05-13 16:23:35 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2014-05-13 16:23:30 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2014-05-13 16:23:22 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2014-05-13 16:23:20 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2014-05-13 16:23:17 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2014-05-13 16:22:25 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2014-05-13 16:22:19 35402 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2014-05-13 16:21:52 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
2014-05-13 16:21:40 54272 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
2014-05-13 16:21:34 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2014-05-13 16:21:15 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2014-05-13 16:21:14 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
2014-05-13 16:21:13 32000 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
2014-05-13 16:21:07 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
2014-05-13 16:21:00 25471 -c--a-w- c:\windows\system32\dllcache\watv10nt.sys
2014-05-13 16:19:52 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2014-05-13 16:19:39 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2014-05-13 16:19:32 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2014-05-13 16:19:22 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2014-05-13 16:19:20 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2014-05-13 16:19:20 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2014-05-13 16:19:16 54784 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2014-05-13 16:19:12 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2014-05-13 16:19:02 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2014-05-13 16:18:55 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2014-05-13 16:18:47 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2014-05-13 16:18:40 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2014-05-13 16:18:32 224802 -c--a-w- c:\windows\system32\dllcache\usr1807a.sys
2014-05-13 16:18:25 794399 -c--a-w- c:\windows\system32\dllcache\usr1806v.sys
2014-05-13 16:18:19 793598 -c--a-w- c:\windows\system32\dllcache\usr1806.sys
2014-05-13 16:18:12 794654 -c--a-w- c:\windows\system32\dllcache\usr1801.sys
2014-05-13 16:18:09 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2014-05-13 16:18:05 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2014-05-13 16:18:04 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2014-05-13 16:18:02 17152 -c--a-w- c:\windows\system32\dllcache\usbohci.sys
2014-05-13 16:17:57 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2014-05-13 16:17:55 32384 -c--a-w- c:\windows\system32\dllcache\usb101et.sys
2014-05-13 16:17:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2014-05-13 16:17:29 28672 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2014-05-13 16:17:23 27136 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2014-05-13 16:17:16 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2014-05-13 16:17:10 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2014-05-13 16:17:03 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2014-05-13 16:16:57 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2014-05-13 16:16:51 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2014-05-13 16:16:44 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2014-05-13 16:16:37 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2014-05-13 16:16:31 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2014-05-13 16:16:26 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2014-05-13 16:16:18 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2014-05-13 16:15:59 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2014-05-13 16:15:53 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2014-05-13 16:15:46 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2014-05-13 16:15:40 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2014-05-13 16:15:33 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2014-05-13 16:15:27 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2014-05-13 16:15:18 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2014-05-13 16:15:12 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2014-05-13 16:15:10 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2014-05-13 16:15:04 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2014-05-13 16:14:55 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2014-05-13 16:14:49 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2014-05-13 16:14:43 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2014-05-13 16:14:36 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2014-05-13 16:14:26 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2014-05-13 16:14:12 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2014-05-13 16:14:06 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2014-05-13 16:14:02 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2014-05-13 16:13:53 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2014-05-13 16:13:47 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2014-05-13 16:13:31 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2014-05-13 16:13:20 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2014-05-13 16:13:14 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2014-05-13 16:13:08 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2014-05-13 16:12:51 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2014-05-13 16:12:45 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2014-05-13 16:12:39 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2014-05-13 16:12:33 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2014-05-13 16:12:27 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2014-05-13 16:12:20 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2014-05-13 16:12:15 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2014-05-13 16:12:09 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2014-05-13 16:12:03 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2014-05-13 16:11:57 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2014-05-13 16:11:51 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2014-05-13 16:11:46 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2014-05-13 16:11:39 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2014-05-13 16:11:33 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2014-05-13 16:11:27 286816 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2014-05-13 16:11:19 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2014-05-13 16:11:03 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2014-05-13 16:10:45 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2014-05-13 16:10:32 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2014-05-13 16:10:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2014-05-13 16:10:20 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2014-05-13 16:10:13 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2014-05-13 16:10:07 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2014-05-13 16:10:01 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2014-05-13 16:09:56 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2014-05-13 16:09:50 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2014-05-13 16:09:49 7552 -c--a-w- c:\windows\system32\dllcache\sonyait.sys
2014-05-13 16:09:41 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
2014-05-13 16:09:19 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2014-05-13 16:09:12 147200 -c--a-w- c:\windows\system32\dllcache\smidispb.dll
2014-05-13 16:09:05 25034 -c--a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2014-05-13 16:07:59 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2014-05-13 16:06:58 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2014-05-13 16:06:53 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2014-05-13 16:06:47 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2014-05-13 16:06:25 161792 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2014-05-13 16:06:20 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2014-05-13 16:06:14 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2014-05-13 16:06:08 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2014-05-13 16:06:02 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2014-05-13 16:05:48 18176 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2014-05-13 16:05:33 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2014-05-13 16:05:31 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2014-05-13 16:05:25 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2014-05-13 16:05:16 17536 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2014-05-13 16:05:10 16768 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2014-05-13 16:05:02 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2014-05-13 16:04:56 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2014-05-13 16:04:53 43904 -c--a-w- c:\windows\system32\dllcache\sbp2port.sys
2014-05-13 16:04:48 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2014-05-13 16:04:37 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2014-05-13 16:04:31 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2014-05-13 16:04:26 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2014-05-13 16:04:20 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2014-05-13 16:04:15 61504 -c--a-w- c:\windows\system32\dllcache\s3sav3dm.sys
2014-05-13 16:04:09 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
2014-05-13 16:04:03 210496 -c--a-w- c:\windows\system32\dllcache\s3mvirge.dll
2014-05-13 16:03:58 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2014-05-13 16:03:52 41216 -c--a-w- c:\windows\system32\dllcache\s3mt3d.sys
2014-05-13 16:03:46 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2014-05-13 16:03:41 166720 -c--a-w- c:\windows\system32\dllcache\s3m.sys
2014-05-13 16:03:35 65664 -c--a-w- c:\windows\system32\dllcache\s3legacy.sys
2014-05-13 16:03:34 166912 -c--a-w- c:\windows\system32\dllcache\s3gnbm.sys
2014-05-13 16:03:33 397056 -c--a-w- c:\windows\system32\dllcache\s3gnb.dll
2014-05-13 16:03:26 83456 -c--a-w- c:\windows\system32\dllcache\rwia450.dll
2014-05-13 16:03:21 80896 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
2014-05-13 16:03:17 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
2014-05-13 16:03:15 28160 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
2014-05-13 16:03:01 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
2014-05-13 16:02:55 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2014-05-13 16:02:45 10752 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2014-05-13 16:02:37 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2014-05-13 16:02:30 79360 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2014-05-13 16:02:29 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2014-05-13 16:02:22 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2014-05-13 16:02:19 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2014-05-13 16:02:12 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2014-05-13 16:01:59 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2014-05-13 16:01:41 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2014-05-13 16:01:30 715338 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2014-05-13 16:01:24 899754 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2014-05-13 16:01:18 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2014-05-13 16:01:12 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2014-05-13 16:00:56 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2014-05-13 16:00:50 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2014-05-13 16:00:45 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2014-05-13 16:00:39 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2014-05-13 16:00:34 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2014-05-13 16:00:32 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2014-05-13 16:00:18 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2014-05-13 16:00:12 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2014-05-13 16:00:07 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2014-05-13 16:00:05 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2014-05-13 15:59:59 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
2014-05-13 15:59:52 35328 -c--a-w- c:\windows\system32\dllcache\psisload.dll
2014-05-13 15:59:50 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2014-05-13 15:59:45 16384 -c--a-w- c:\windows\system32\dllcache\pscr.sys
2014-05-13 15:59:35 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2014-05-13 15:59:30 17792 -c--a-w- c:\windows\system32\dllcache\ppa.sys
2014-05-13 15:59:29 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2014-05-13 15:59:21 7168 -c--a-w- c:\windows\system32\dllcache\pnrmc.sys
2014-05-13 15:59:03 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2014-05-13 15:58:53 19840 -c--a-w- c:\windows\system32\dllcache\philtune.sys
2014-05-13 15:58:48 92416 -c--a-w- c:\windows\system32\dllcache\phildec.sys
2014-05-13 15:58:42 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
2014-05-13 15:58:37 75776 -c--a-w- c:\windows\system32\dllcache\philcam1.sys
2014-05-13 15:58:31 16896 -c--a-w- c:\windows\system32\dllcache\philcam1.dll
2014-05-13 15:58:21 259328 -c--a-w- c:\windows\system32\dllcache\perm3dd.dll
2014-05-13 15:58:20 28032 -c--a-w- c:\windows\system32\dllcache\perm3.sys
2014-05-13 15:58:18 27904 -c--a-w- c:\windows\system32\dllcache\perm2.sys
2014-05-13 15:58:18 211584 -c--a-w- c:\windows\system32\dllcache\perm2dll.dll
2014-05-13 15:58:10 5504 -c--a-w- c:\windows\system32\dllcache\perc2hib.sys
2014-05-13 15:58:04 27296 -c--a-w- c:\windows\system32\dllcache\perc2.sys
2014-05-13 15:58:02 169984 -c--a-w- c:\windows\system32\dllcache\pcx500.sys
2014-05-13 15:57:56 86016 -c--a-w- c:\windows\system32\dllcache\pctspk.exe
2014-05-13 15:57:51 35328 -c--a-w- c:\windows\system32\dllcache\pcntpci5.sys
2014-05-13 15:57:45 29769 -c--a-w- c:\windows\system32\dllcache\pcntn5m.sys
2014-05-13 15:57:40 30282 -c--a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2014-05-13 15:57:34 26153 -c--a-w- c:\windows\system32\dllcache\pcmlm56.sys
2014-05-13 15:57:32 29502 -c--a-w- c:\windows\system32\dllcache\pca200e.sys
2014-05-13 15:57:26 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys
2014-05-13 15:57:07 42496 -c--a-w- c:\windows\system32\dllcache\ovui2rc.dll
2014-05-13 15:57:01 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
2014-05-13 15:56:56 25216 -c--a-w- c:\windows\system32\dllcache\ovsound2.sys
2014-05-13 15:56:50 39424 -c--a-w- c:\windows\system32\dllcache\ovcoms.exe
2014-05-13 15:56:45 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2014-05-13 15:56:39 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2014-05-13 15:56:34 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2014-05-13 15:56:29 31872 -c--a-w- c:\windows\system32\dllcache\ovce.sys
2014-05-13 15:56:23 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2014-05-13 15:56:18 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2014-05-13 15:56:12 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2014-05-13 15:56:07 54826 -c--a-w-

SPasini · Jun 6, 2014

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.55.2
Run by SergioPasini at 18:24:05 on 2014-06-06
#Option Extended Search is enabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1015.107 [GMT -3:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\netdde.exe
C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\DatacardService\HWDeviceService.exe
C:\Programmi\Google\Update\1.3.24.7\GoogleCrashHandler.exe
C:\Programmi\Java\jre7\bin\jqs.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Programmi\Malwarebytes Anti-Malware\mbamservice.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
C:\Program Files\Symantec\Norton Utilities 16\sMonitor\StartManSvc.exe
C:\WINDOWS\system32\locator.exe
C:\Programmi\Spybot - Search & Destroy 2\SDFSSvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\System32\dmadmin.exe
C:\Programmi\Spybot - Search & Destroy 2\SDUpdSvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Programmi\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Claro Internet\Claro Internet.exe
C:\Programmi\Uniblue\DriverScanner\dsmonitor.exe
C:\Programmi\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\msdtc.exe
C:\Programmi\AVAST Software\Avast\AvastUI.exe
C:\Programmi\Spybot - Search & Destroy 2\SDTray.exe
C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\Motorola\SMSERIAL\sm56hlpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\programmi\Core Temp\Core Temp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\uTorrent\uTorrent.exe
C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Dati applicazioni\BitTorrent\BitTorrent.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\programmi\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k eapsvcs
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k WINRM
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\programmi\java\jre7\bin\ssv.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - c:\programmi\free download manager\iefdm2.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\programmi\java\jre7\bin\jp2ssv.dll
uRun: [Core Temp] "c:\programmi\core temp\Core Temp.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\programmi\superantispyware\SUPERAntiSpyware.exe
uRun: [uTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\utorrent\uTorrent.exe" /MINIMIZED
uRun: [BitTorrent] "c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\bittorrent\BitTorrent.exe" /MINIMIZED
mRun: [AvastUI.exe] "c:\programmi\avast software\avast\AvastUI.exe" /nogui
mRun: [SDTray] "c:\programmi\spybot - search & destroy 2\SDTray.exe"
mRun: [AzMixerSel] c:\programmi\realtek\installshield\AzMixerSel.exe
mRun: [IntelZeroConfig] "c:\programmi\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\programmi\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [EOUApp] "c:\programmi\intel\wireless\bin\EOUWiz.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SMSERIAL] c:\programmi\motorola\smserial\sm56hlpr.exe
mRun: [SynTPEnh] c:\programmi\synaptics\syntp\SynTPEnh.exe
mRun: [Synchronization Manager] c:\windows\system32\mobsync.exe /logon
mRun: [RTHDCPL] RTHDCPL.EXE
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Download all with Free Download Manager - c:\programmi\free download manager\dlall.htm
IE: Download selected with Free Download Manager - c:\programmi\free download manager\dlselected.htm
IE: Download video with Free Download Manager - c:\programmi\free download manager\dlfvideo.htm
IE: Download with Free Download Manager - c:\programmi\free download manager\dllink.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\programmi\messenger\msmsgs.exe
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1399602363171
TCP: Interfaces\{357CBD21-2DFD-4858-957D-C0971280B9F2} : NameServer = 190.220.191.46 170.51.255.110
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\programmi\file comuni\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
Notify: SDWinLogon - SDWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\programmi\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\programmi\superantispyware\SASSEH.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\programmi\google\chrome\application\35.0.1916.114\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\mozilla\firefox\profiles\k16p1aht.default\
FF - prefs.js: browser.search.selectedEngine - SecureSearch
FF - prefs.js: browser.startup.homepage - hxxp://securedsearch2.lavasoft.com/index.php?pr=vmn&id=adawaretb&v=3_8&idate=2014-05-09&ent=hp&u=E89840DCFCA64E798F170A536D57ECA1
FF - prefs.js: keyword.URL - hxxp://securedsearch2.lavasoft.com/results.php?pr=vmn&id=adawaretb&v=3_8&idate=__installtime__&hsimp=yhs-lavasoft&ent=bs&q=
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\programmi\adobe\adobe extension manager cs6\npAdobeExManDetectX86.dll
FF - plugin: c:\programmi\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect32.dll
FF - plugin: c:\programmi\file comuni\adobe\oobe\pdapp\ccm\utilities\npAdobeAAMDetect64.dll
FF - plugin: c:\programmi\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\programmi\google\update\1.3.24.7\npGoogleUpdate3.dll
FF - plugin: c:\programmi\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\programmi\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_214.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-5-8 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-5-8 180632]
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2005-11-13 34176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswsnx.sys [2014-5-8 777488]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2014-5-8 411680]
R1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2014-5-29 53208]
R1 SASDIFSV;SASDIFSV;c:\programmi\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\programmi\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\programmi\superantispyware\SASCore.exe [2013-10-10 120088]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-5-8 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-5-8 67824]
R2 avast! Antivirus;avast! Antivirus;c:\programmi\avast software\avast\AvastSvc.exe [2014-5-8 50344]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\documents and settings\all users.windows\dati applicazioni\datacardservice\HWDeviceService.exe [2011-3-14 271712]
R2 MBAMScheduler;MBAMScheduler;c:\programmi\malwarebytes anti-malware\mbamscheduler.exe [2014-5-29 1809720]
R2 MBAMService;MBAMService;c:\programmi\malwarebytes anti-malware\mbamservice.exe [2014-5-29 860472]
R3 ALSysIO;ALSysIO;\??\c:\docume~1\sergio~1.spa\impost~1\temp\alsysio.sys --> c:\docume~1\sergio~1.spa\impost~1\temp\ALSysIO.sys [?]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-5-9 12160]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2014-5-9 95744]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2014-5-9 67584]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-5-9 76544]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2014-5-9 27520]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-5-29 23256]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-5-29 110296]
R3 NETwLx32; Driver scheda Intel(R) Wireless WiFi Link 5000 Series per Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [2014-5-14 6609920]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2005-12-18 42144]
R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2014-5-9 25704]
R3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2014-5-9 25704]
S2 Claro Internet. RunOuc;Claro Internet. OUC;c:\programmi\claro internet\updatedog\ouc.exe [2014-5-9 655712]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2014-5-14 1691480]
S3 DiskDoctorService;Norton Disk Doctor Service;c:\program files\symantec\norton utilities 16\tools\disk doctor\DiskDoctorSrv.exe [2014-5-6 1147424]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-5-9 102784]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\112.tmp --> c:\windows\system32\112.tmp [?]
S3 rspSanity;rspSanity;c:\windows\system32\drivers\rspSanity32XP.sys [2014-5-9 27232]
.
=============== File Associations ===============
.
FileExt: .js: jsfile="c:\programmi\adobe\adobe dreamweaver cs6\Dreamweaver.exe","%1"
ShellExec: dreamweaver.exe: Open="c:\programmi\adobe\adobe dreamweaver cs6\dreamweaver.exe", "%1"
.
=============== Created Last 60 ================
.
2014-06-06 15:33:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\APN
2014-06-05 20:54:26 13816 ----a-w- c:\windows\system32\unikey.sys
2014-06-04 00:48:21 -------- d-----w- C:\CrashLogs
2014-06-01 13:37:38 -------- d-----w- c:\programmi\FiSTiNG4FUN
2014-06-01 05:56:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Boredom Software
2014-06-01 05:49:33 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\f3d8f0d1a680598
2014-06-01 05:49:32 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Chromatic Browser
2014-06-01 05:49:30 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Torch
2014-06-01 05:49:28 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Comodo
2014-06-01 05:46:18 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\InstallMate
2014-05-31 23:28:30 -------- d-----w- c:\programmi\Driver Identifier
2014-05-29 23:34:56 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-29 23:34:14 53208 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-29 23:34:13 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-29 23:34:09 -------- d-----w- c:\programmi\Malwarebytes Anti-Malware
2014-05-26 21:14:40 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-05-26 20:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Adobe
2014-05-26 20:32:14 -------- d-----w- c:\programmi\Adobe Dreamweaver CS6
2014-05-26 00:16:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\AppData
2014-05-25 21:14:30 -------- d-----w- C:\FRST
2014-05-24 22:16:44 -------- d-sha-r- C:\cmdcons
2014-05-24 01:15:18 -------- d-----w- C:\170787f18cf2ea828ff7b7dde070376f
2014-05-24 00:05:14 -------- d-----w- C:\3ba941fa4d2a0ab9782e6fae
2014-05-23 04:13:06 14048 ------w- c:\windows\system32\spmsg2.dll
2014-05-22 17:24:28 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Sophos
2014-05-22 17:21:28 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe1_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\SVRTgui.exe_810EDD9E2F0A4E2BACF86673C38D9F48.exe
2014-05-22 17:21:27 73728 ----a-r- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\microsoft\installer\{b829e117-d072-41ea-9606-9826a38d34c1}\ARPPRODUCTICON.exe
2014-05-22 17:21:04 -------- d-----w- c:\programmi\Sophos
2014-05-20 15:42:28 -------- d-----w- c:\programmi\file comuni\Adobe AIR
2014-05-19 15:45:48 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\regid.1986-12.com.adobe
2014-05-17 22:31:41 1639760 ----a-w- c:\programmi\BitTorrent.exe
2014-05-17 22:29:18 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\BitTorrent
2014-05-16 16:07:04 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-16 16:07:04 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-16 04:34:35 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Informer Technologies, Inc
2014-05-16 04:13:20 -------- d-----w- c:\programmi\PFConfig
2014-05-15 23:12:52 -------- d-----w- c:\windows\pss
2014-05-14 21:44:55 6609920 ----a-w- c:\windows\system32\drivers\NETwLx32.sys
2014-05-14 21:44:54 2756608 ----a-w- c:\windows\system32\NETwLr32.dll
2014-05-14 21:44:53 675840 ----a-w- c:\windows\system32\NETwLc32.dll
2014-05-14 17:16:51 739872 ----a-w- c:\windows\system32\O2Icon.dll
2014-05-14 17:09:07 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2014-05-14 17:09:07 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2014-05-14 17:08:06 -------- d-----w- c:\programmi\Motorola
2014-05-14 17:07:56 516096 ----a-w- c:\windows\system32\sm56co85.dll
2014-05-14 17:01:42 359016 ----a-w- c:\windows\vncutil.exe
2014-05-14 17:01:41 11368 ----a-w- c:\windows\system32\RtkCoLDRXP.dll
2014-05-14 17:01:40 86232 ----a-w- c:\windows\system32\RtkCoInstIIXP.dll
2014-05-14 17:01:40 129640 ----a-w- c:\windows\RtkAudioService.exe
2014-05-14 17:01:31 26084 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2014-05-14 17:01:30 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2014-05-14 17:01:27 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2014-05-14 16:33:40 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2014-05-13 16:24:20 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2014-05-13 16:24:13 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2014-05-13 16:24:12 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2014-05-13 16:24:05 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2014-05-13 16:23:58 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2014-05-13 16:23:47 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2014-05-13 16:23:35 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2014-05-13 16:23:30 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2014-05-13 16:23:22 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2014-05-13 16:23:20 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2014-05-13 16:23:17 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2014-05-13 16:22:25 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2014-05-13 16:22:19 35402 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2014-05-13 16:21:52 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
2014-05-13 16:21:40 54272 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
2014-05-13 16:21:34 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2014-05-13 16:21:15 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2014-05-13 16:21:14 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
2014-05-13 16:21:13 32000 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
2014-05-13 16:21:07 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
2014-05-13 16:21:00 25471 -c--a-w- c:\windows\system32\dllcache\watv10nt.sys
2014-05-13 16:19:52 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2014-05-13 16:19:39 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2014-05-13 16:19:32 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2014-05-13 16:19:22 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2014-05-13 16:19:20 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2014-05-13 16:19:20 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2014-05-13 16:19:16 54784 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2014-05-13 16:19:12 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2014-05-13 16:19:02 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2014-05-13 16:18:55 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2014-05-13 16:18:47 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2014-05-13 16:18:40 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2014-05-13 16:18:32 224802 -c--a-w- c:\windows\system32\dllcache\usr1807a.sys
2014-05-13 16:18:25 794399 -c--a-w- c:\windows\system32\dllcache\usr1806v.sys
2014-05-13 16:18:19 793598 -c--a-w- c:\windows\system32\dllcache\usr1806.sys
2014-05-13 16:18:12 794654 -c--a-w- c:\windows\system32\dllcache\usr1801.sys
2014-05-13 16:18:09 121984 -c--a-w- c:\windows\system32\dllcache\usbvideo.sys
2014-05-13 16:18:05 26112 -c--a-w- c:\windows\system32\dllcache\usbser.sys
2014-05-13 16:18:04 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2014-05-13 16:18:02 17152 -c--a-w- c:\windows\system32\dllcache\usbohci.sys
2014-05-13 16:17:57 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2014-05-13 16:17:55 32384 -c--a-w- c:\windows\system32\dllcache\usb101et.sys
2014-05-13 16:17:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2014-05-13 16:17:29 28672 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2014-05-13 16:17:23 27136 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2014-05-13 16:17:16 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2014-05-13 16:17:10 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2014-05-13 16:17:03 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2014-05-13 16:16:57 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2014-05-13 16:16:51 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2014-05-13 16:16:44 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2014-05-13 16:16:37 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2014-05-13 16:16:31 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2014-05-13 16:16:26 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2014-05-13 16:16:18 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2014-05-13 16:15:59 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2014-05-13 16:15:53 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2014-05-13 16:15:46 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2014-05-13 16:15:40 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2014-05-13 16:15:33 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2014-05-13 16:15:27 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2014-05-13 16:15:18 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2014-05-13 16:15:12 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2014-05-13 16:15:10 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2014-05-13 16:15:04 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2014-05-13 16:14:55 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2014-05-13 16:14:49 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2014-05-13 16:14:43 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2014-05-13 16:14:36 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2014-05-13 16:14:26 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2014-05-13 16:14:12 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2014-05-13 16:14:06 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2014-05-13 16:14:02 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2014-05-13 16:13:53 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2014-05-13 16:13:47 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2014-05-13 16:13:31 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2014-05-13 16:13:20 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2014-05-13 16:13:14 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2014-05-13 16:13:08 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2014-05-13 16:12:51 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2014-05-13 16:12:45 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2014-05-13 16:12:39 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2014-05-13 16:12:33 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2014-05-13 16:12:27 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2014-05-13 16:12:20 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2014-05-13 16:12:15 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2014-05-13 16:12:09 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2014-05-13 16:12:03 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2014-05-13 16:11:57 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2014-05-13 16:11:51 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2014-05-13 16:11:46 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2014-05-13 16:11:39 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2014-05-13 16:11:33 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2014-05-13 16:11:27 286816 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2014-05-13 16:11:19 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2014-05-13 16:11:03 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2014-05-13 16:10:45 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2014-05-13 16:10:32 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2014-05-13 16:10:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2014-05-13 16:10:20 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2014-05-13 16:10:13 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2014-05-13 16:10:07 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2014-05-13 16:10:01 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2014-05-13 16:09:56 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2014-05-13 16:09:50 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2014-05-13 16:09:49 7552 -c--a-w- c:\windows\system32\dllcache\sonyait.sys
2014-05-13 16:09:41 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
2014-05-13 16:09:19 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2014-05-13 16:09:12 147200 -c--a-w- c:\windows\system32\dllcache\smidispb.dll
2014-05-13 16:09:05 25034 -c--a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2014-05-13 16:07:59 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2014-05-13 16:06:58 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2014-05-13 16:06:53 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2014-05-13 16:06:47 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2014-05-13 16:06:25 161792 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2014-05-13 16:06:20 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2014-05-13 16:06:14 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2014-05-13 16:06:08 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2014-05-13 16:06:02 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2014-05-13 16:05:48 18176 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2014-05-13 16:05:33 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2014-05-13 16:05:31 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2014-05-13 16:05:25 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2014-05-13 16:05:16 17536 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2014-05-13 16:05:10 16768 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2014-05-13 16:05:02 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2014-05-13 16:04:56 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2014-05-13 16:04:53 43904 -c--a-w- c:\windows\system32\dllcache\sbp2port.sys
2014-05-13 16:04:48 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2014-05-13 16:04:37 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2014-05-13 16:04:31 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2014-05-13 16:04:26 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2014-05-13 16:04:20 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2014-05-13 16:04:15 61504 -c--a-w- c:\windows\system32\dllcache\s3sav3dm.sys
2014-05-13 16:04:09 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
2014-05-13 16:04:03 210496 -c--a-w- c:\windows\system32\dllcache\s3mvirge.dll
2014-05-13 16:03:58 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2014-05-13 16:03:52 41216 -c--a-w- c:\windows\system32\dllcache\s3mt3d.sys
2014-05-13 16:03:46 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2014-05-13 16:03:41 166720 -c--a-w- c:\windows\system32\dllcache\s3m.sys
2014-05-13 16:03:35 65664 -c--a-w- c:\windows\system32\dllcache\s3legacy.sys
2014-05-13 16:03:34 166912 -c--a-w- c:\windows\system32\dllcache\s3gnbm.sys
2014-05-13 16:03:33 397056 -c--a-w- c:\windows\system32\dllcache\s3gnb.dll
2014-05-13 16:03:26 83456 -c--a-w- c:\windows\system32\dllcache\rwia450.dll
2014-05-13 16:03:21 80896 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
2014-05-13 16:03:17 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
2014-05-13 16:03:15 28160 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
2014-05-13 16:03:01 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
2014-05-13 16:02:55 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2014-05-13 16:02:45 10752 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2014-05-13 16:02:37 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2014-05-13 16:02:30 79360 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2014-05-13 16:02:29 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2014-05-13 16:02:22 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2014-05-13 16:02:19 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2014-05-13 16:02:12 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2014-05-13 16:01:59 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2014-05-13 16:01:41 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2014-05-13 16:01:30 715338 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2014-05-13 16:01:24 899754 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2014-05-13 16:01:18 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2014-05-13 16:01:12 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2014-05-13 16:00:56 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2014-05-13 16:00:50 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2014-05-13 16:00:45 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2014-05-13 16:00:39 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2014-05-13 16:00:34 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2014-05-13 16:00:32 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2014-05-13 16:00:18 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2014-05-13 16:00:12 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2014-05-13 16:00:07 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2014-05-13 16:00:05 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2014-05-13 15:59:59 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
2014-05-13 15:59:52 35328 -c--a-w- c:\windows\system32\dllcache\psisload.dll
2014-05-13 15:59:50 363520 -c--a-w- c:\windows\system32\dllcache\psisdecd.dll
2014-05-13 15:59:45 16384 -c--a-w- c:\windows\system32\dllcache\pscr.sys
2014-05-13 15:59:35 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2014-05-13 15:59:30 17792 -c--a-w- c:\windows\system32\dllcache\ppa.sys
2014-05-13 15:59:29 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2014-05-13 15:59:21 7168 -c--a-w- c:\windows\system32\dllcache\pnrmc.sys
2014-05-13 15:59:03 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2014-05-13 15:58:53 19840 -c--a-w- c:\windows\system32\dllcache\philtune.sys
2014-05-13 15:58:48 92416 -c--a-w- c:\windows\system32\dllcache\phildec.sys
2014-05-13 15:58:42 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
2014-05-13 15:58:37 75776 -c--a-w- c:\windows\system32\dllcache\philcam1.sys
2014-05-13 15:58:31 16896 -c--a-w- c:\windows\system32\dllcache\philcam1.dll
2014-05-13 15:58:21 259328 -c--a-w- c:\windows\system32\dllcache\perm3dd.dll
2014-05-13 15:58:20 28032 -c--a-w- c:\windows\system32\dllcache\perm3.sys
2014-05-13 15:58:18 27904 -c--a-w- c:\windows\system32\dllcache\perm2.sys
2014-05-13 15:58:18 211584 -c--a-w- c:\windows\system32\dllcache\perm2dll.dll
2014-05-13 15:58:10 5504 -c--a-w- c:\windows\system32\dllcache\perc2hib.sys
2014-05-13 15:58:04 27296 -c--a-w- c:\windows\system32\dllcache\perc2.sys
2014-05-13 15:58:02 169984 -c--a-w- c:\windows\system32\dllcache\pcx500.sys
2014-05-13 15:57:56 86016 -c--a-w- c:\windows\system32\dllcache\pctspk.exe
2014-05-13 15:57:51 35328 -c--a-w- c:\windows\system32\dllcache\pcntpci5.sys
2014-05-13 15:57:45 29769 -c--a-w- c:\windows\system32\dllcache\pcntn5m.sys
2014-05-13 15:57:40 30282 -c--a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2014-05-13 15:57:34 26153 -c--a-w- c:\windows\system32\dllcache\pcmlm56.sys
2014-05-13 15:57:32 29502 -c--a-w- c:\windows\system32\dllcache\pca200e.sys
2014-05-13 15:57:26 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys
2014-05-13 15:57:07 42496 -c--a-w- c:\windows\system32\dllcache\ovui2rc.dll
2014-05-13 15:57:01 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
2014-05-13 15:56:56 25216 -c--a-w- c:\windows\system32\dllcache\ovsound2.sys
2014-05-13 15:56:50 39424 -c--a-w- c:\windows\system32\dllcache\ovcoms.exe
2014-05-13 15:56:45 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2014-05-13 15:56:39 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2014-05-13 15:56:34 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2014-05-13 15:56:29 31872 -c--a-w-

SPasini · Jun 6, 2014

C:\windows\system32\dllcache\ovce.sys
2014-05-13 15:56:23 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2014-05-13 15:56:18 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2014-05-13 15:56:12 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2014-05-13 15:56:07 54826 -c--a-w- c:\windows\system32\dllcache\otcsercb.sys
2014-05-13 15:56:01 44361 -c--a-w- c:\windows\system32\dllcache\otceth5.sys
2014-05-13 15:55:56 27209 -c--a-w- c:\windows\system32\dllcache\otc06x5.sys
2014-05-13 15:55:48 54528 -c--a-w- c:\windows\system32\dllcache\opl3sax.sys
2014-05-13 15:55:29 1897408 -c--a-w- c:\windows\system32\dllcache\nv4_mini.sys
2014-05-13 15:55:27 4274816 -c--a-w- c:\windows\system32\dllcache\nv4_disp.dll
2014-05-13 15:55:22 198144 -c--a-w- c:\windows\system32\dllcache\nv3.sys
2014-05-13 15:55:17 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
2014-05-13 15:55:11 180360 -c--a-w- c:\windows\system32\dllcache\ntmtlfax.sys
2014-05-13 15:54:57 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys
2014-05-13 15:54:46 9472 -c--a-w- c:\windows\system32\dllcache\ntapm.sys
2014-05-13 15:54:41 7552 -c--a-w- c:\windows\system32\dllcache\nsmmc.sys
2014-05-13 15:54:36 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
2014-05-13 15:54:23 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
2014-05-13 15:54:18 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2014-05-13 15:54:10 32840 -c--a-w- c:\windows\system32\dllcache\ngrpci.sys
2014-05-13 15:54:03 132695 -c--a-w- c:\windows\system32\dllcache\netwlan5.sys
2014-05-13 15:53:49 66174 -c--a-w- c:\windows\system32\dllcache\netflx3.sys
2014-05-13 15:53:40 39264 -c--a-w- c:\windows\system32\dllcache\neo20xx.sys
2014-05-13 15:53:34 60480 -c--a-w- c:\windows\system32\dllcache\neo20xx.dll
2014-05-13 15:53:29 15872 -c--a-w- c:\windows\system32\dllcache\ne2000.sys
2014-05-13 15:53:26 10880 -c--a-w- c:\windows\system32\dllcache\ndisip.sys
2014-05-13 15:53:19 85248 -c--a-w- c:\windows\system32\dllcache\nabtsfec.sys
2014-05-13 15:53:13 91488 -c--a-w- c:\windows\system32\dllcache\n9i3disp.dll
2014-05-13 15:53:08 27936 -c--a-w- c:\windows\system32\dllcache\n9i3d.sys
2014-05-13 15:53:03 33088 -c--a-w- c:\windows\system32\dllcache\n9i128v2.sys
2014-05-13 15:52:58 59104 -c--a-w- c:\windows\system32\dllcache\n9i128v2.dll
2014-05-13 15:52:53 13664 -c--a-w- c:\windows\system32\dllcache\n9i128.sys
2014-05-13 15:52:47 35392 -c--a-w- c:\windows\system32\dllcache\n9i128.dll
2014-05-13 15:52:42 130048 -c--a-w- c:\windows\system32\dllcache\n100325.sys
2014-05-13 15:52:37 53279 -c--a-w- c:\windows\system32\dllcache\n1000nt5.sys
2014-05-13 15:52:31 76544 -c--a-w- c:\windows\system32\dllcache\mxport.sys
2014-05-13 15:52:26 7168 -c--a-w- c:\windows\system32\dllcache\mxport.dll
2014-05-13 15:52:21 19968 -c--a-w- c:\windows\system32\dllcache\mxnic.sys
2014-05-13 15:52:16 19968 -c--a-w- c:\windows\system32\dllcache\mxicfg.dll
2014-05-13 15:52:11 22144 -c--a-w- c:\windows\system32\dllcache\mxcard.sys
2014-05-13 15:52:09 12672 -c--a-w- c:\windows\system32\dllcache\mutohpen.sys
2014-05-13 15:52:00 103296 -c--a-w- c:\windows\system32\dllcache\mtxvideo.sys
2014-05-13 15:51:59 452736 -c--a-w- c:\windows\system32\dllcache\mtxparhm.sys
2014-05-13 15:51:58 1737856 -c--a-w- c:\windows\system32\dllcache\mtxparhd.dll
2014-05-13 15:51:49 1309184 -c--a-w- c:\windows\system32\dllcache\mtlstrm.sys
2014-05-13 15:51:47 126686 -c--a-w- c:\windows\system32\dllcache\mtlmnt5.sys
2014-05-13 15:51:31 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2014-05-13 15:51:28 49024 -c--a-w- c:\windows\system32\dllcache\mstape.sys
2014-05-13 15:51:16 12416 -c--a-w- c:\windows\system32\dllcache\msriffwv.sys
2014-05-13 15:50:58 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2014-05-13 15:50:53 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2014-05-13 15:50:21 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2014-05-13 15:50:15 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2014-05-13 15:50:11 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2014-05-13 15:49:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2014-05-13 15:49:35 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2014-05-13 15:49:26 12160 -c--a-w- c:\windows\system32\dllcache\mouhid.sys
2014-05-13 15:49:00 6528 -c--a-w- c:\windows\system32\dllcache\miniqic.sys
2014-05-13 15:48:49 320384 -c--a-w- c:\windows\system32\dllcache\mgaum.sys
2014-05-13 15:48:43 235648 -c--a-w- c:\windows\system32\dllcache\mgaud.dll
2014-05-13 15:48:37 26112 -c--a-w- c:\windows\system32\dllcache\memstpci.sys
2014-05-13 15:48:32 47616 -c--a-w- c:\windows\system32\dllcache\memgrp.dll
2014-05-13 15:48:27 8320 -c--a-w- c:\windows\system32\dllcache\memcard.sys
2014-05-13 15:48:19 165034 -c--a-w- c:\windows\system32\dllcache\mdgndis5.sys
2014-05-13 15:48:06 7424 -c--a-w- c:\windows\system32\dllcache\mammoth.sys
2014-05-13 15:46:50 70730 -c--a-w- c:\windows\system32\dllcache\lne100tx.sys
2014-05-13 15:46:45 20573 -c--a-w- c:\windows\system32\dllcache\lne100.sys
2014-05-13 15:46:40 25065 -c--a-w- c:\windows\system32\dllcache\lmndis3.sys
2014-05-13 15:46:33 15872 -c--a-w- c:\windows\system32\dllcache\lit220p.sys
2014-05-13 15:46:30 34688 -c--a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2014-05-13 15:46:25 26986 -c--a-w- c:\windows\system32\dllcache\lanepic5.sys
2014-05-13 15:46:19 19016 -c--a-w- c:\windows\system32\dllcache\ktc111.sys
2014-05-13 15:46:07 37376 -c--a-w- c:\windows\system32\dllcache\kousd.dll
2014-05-13 15:46:01 254464 -c--a-w- c:\windows\system32\dllcache\kdsusd.dll
2014-05-13 15:45:59 49152 -c--a-w- c:\windows\system32\dllcache\kdsui.dll
2014-05-13 15:45:31 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2014-05-13 15:45:26 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2014-05-13 15:45:16 14720 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2014-05-13 15:44:56 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2014-05-13 15:44:51 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2014-05-13 15:44:47 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2014-05-13 15:44:42 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2014-05-13 15:44:28 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2014-05-13 15:44:24 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
2014-05-13 15:44:22 29696 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2014-05-13 15:44:18 23552 -c--a-w- c:\windows\system32\dllcache\irmk7.sys
2014-05-13 15:44:17 152576 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2014-05-13 15:44:15 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2014-05-13 15:44:13 46592 -c--a-w- c:\windows\system32\dllcache\irbus.sys
2014-05-13 15:43:52 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
2014-05-13 15:43:47 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
2014-05-13 15:43:42 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
2014-05-13 15:43:39 5504 -c--a-w- c:\windows\system32\dllcache\intelide.sys
2014-05-13 15:43:34 13568 -c--a-w- c:\windows\system32\dllcache\inport.sys
2014-05-13 15:43:28 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
2014-05-13 15:42:37 81920 -c--a-w- c:\windows\system32\dllcache\ieencode.dll
2014-05-13 15:42:20 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2014-05-13 15:42:14 100992 -c--a-w- c:\windows\system32\dllcache\icam5usb.sys
2014-05-13 15:42:10 20992 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2014-05-13 15:42:05 45056 -c--a-w- c:\windows\system32\dllcache\icam5com.dll
2014-05-13 15:42:01 154496 -c--a-w- c:\windows\system32\dllcache\icam4usb.sys
2014-05-13 15:40:58 8576 -c--a-w- c:\windows\system32\dllcache\i2omgmt.sys
2014-05-13 15:40:30 1041536 -c--a-w- c:\windows\system32\dllcache\hsfdpsp2.sys
2014-05-13 15:40:28 685056 -c--a-w- c:\windows\system32\dllcache\hsfcxts2.sys
2014-05-13 15:40:27 32285 -c--a-w- c:\windows\system32\dllcache\hsfcisp2.dll
2014-05-13 15:40:25 220032 -c--a-w- c:\windows\system32\dllcache\hsfbs2s2.sys
2014-05-13 15:40:20 488383 -c--a-w- c:\windows\system32\dllcache\hsf_v124.sys
2014-05-13 15:40:16 50751 -c--a-w- c:\windows\system32\dllcache\hsf_tone.sys
2014-05-13 15:40:12 73279 -c--a-w- c:\windows\system32\dllcache\hsf_spkp.sys
2014-05-13 15:40:07 44863 -c--a-w- c:\windows\system32\dllcache\hsf_soar.sys
2014-05-13 15:40:03 57471 -c--a-w- c:\windows\system32\dllcache\hsf_samp.sys
2014-05-13 15:38:57 32768 -c--a-w- c:\windows\system32\dllcache\hpgtmcro.dll
2014-05-13 15:37:59 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2014-05-13 15:36:58 470144 -c--a-w- c:\windows\system32\dllcache\g200d.dll
2014-05-13 15:36:55 454912 -c--a-w- c:\windows\system32\dllcache\fxusbase.sys
2014-05-13 15:36:31 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
2014-05-13 15:36:27 455296 -c--a-w- c:\windows\system32\dllcache\fusbbase.sys
2014-05-13 15:36:23 455680 -c--a-w- c:\windows\system32\dllcache\fus2base.sys
2014-05-13 15:36:11 442240 -c--a-w- c:\windows\system32\dllcache\fpnpbase.sys
2014-05-13 15:36:06 441728 -c--a-w- c:\windows\system32\dllcache\fpcmbase.sys
2014-05-13 15:36:03 444416 -c--a-w- c:\windows\system32\dllcache\fpcibase.sys
2014-05-13 15:35:58 34173 -c--a-w- c:\windows\system32\dllcache\forehe.sys
2014-05-13 15:35:44 27165 -c--a-w- c:\windows\system32\dllcache\fetnd5.sys
2014-05-13 15:35:34 22090 -c--a-w- c:\windows\system32\dllcache\fem556n5.sys
2014-05-13 15:35:26 24618 -c--a-w- c:\windows\system32\dllcache\fa410nd5.sys
2014-05-13 15:35:23 16074 -c--a-w- c:\windows\system32\dllcache\fa312nd5.sys
2014-05-13 15:35:19 11850 -c--a-w- c:\windows\system32\dllcache\f3ab18xj.sys
2014-05-13 15:35:16 12362 -c--a-w- c:\windows\system32\dllcache\f3ab18xi.sys
2014-05-13 15:35:08 7040 -c--a-w- c:\windows\system32\dllcache\exabyte2.sys
2014-05-13 15:35:05 16998 -c--a-w- c:\windows\system32\dllcache\ex10.sys
2014-05-13 15:33:59 53760 -c--a-w- c:\windows\system32\dllcache\eqndiag.exe
2014-05-13 15:32:57 55999 -c--a-w- c:\windows\system32\dllcache\el556nd5.sys
2014-05-13 15:32:55 44615 -c--a-w- c:\windows\system32\dllcache\el515.sys
2014-05-13 15:32:45 19594 -c--a-w- c:\windows\system32\dllcache\e100isa4.sys
2014-05-13 15:32:43 117760 -c--a-w- c:\windows\system32\dllcache\e100b325.sys
2014-05-13 15:32:40 51743 -c--a-w- c:\windows\system32\dllcache\e1000nt5.sys
2014-05-13 15:32:21 334208 -c--a-w- c:\windows\system32\dllcache\ds1wdm.sys
2014-05-13 15:32:12 20192 -c--a-w- c:\windows\system32\dllcache\dpti2o.sys
2014-05-13 15:32:04 28062 -c--a-w- c:\windows\system32\dllcache\dp83820.sys
2014-05-13 15:32:02 23936 -c--a-w- c:\windows\system32\dllcache\dot4usb.sys
2014-05-13 15:32:00 8704 -c--a-w- c:\windows\system32\dllcache\dot4scan.sys
2014-05-13 15:30:59 102484 -c--a-w- c:\windows\system32\dllcache\digiinf.dll
2014-05-13 15:29:52 14720 -c--a-w- c:\windows\system32\dllcache\dac960nt.sys
2014-05-13 15:28:59 42112 -c--a-w- c:\windows\system32\dllcache\crtaud.sys
2014-05-13 15:27:59 272640 -c--a-w- c:\windows\system32\dllcache\cinemclc.sys
2014-05-13 15:26:59 314752 -c--a-w- c:\windows\system32\dllcache\camdro21.sys
2014-05-13 15:26:08 13952 -c--a-w- c:\windows\system32\dllcache\bulltlp3.sys
2014-05-13 15:26:06 36480 -c--a-w- c:\windows\system32\dllcache\bthprint.sys
2014-05-13 15:26:06 18944 -c--a-w- c:\windows\system32\dllcache\bthusb.sys
2014-05-13 15:26:05 101120 -c--a-w- c:\windows\system32\dllcache\bthpan.sys
2014-05-13 15:26:04 37888 -c--a-w- c:\windows\system32\dllcache\bthmodem.sys
2014-05-13 15:26:02 17024 -c--a-w- c:\windows\system32\dllcache\bthenum.sys
2014-05-13 15:26:01 31529 -c--a-w- c:\windows\system32\dllcache\brzwlan.sys
2014-05-13 15:26:00 10368 -c--a-w- c:\windows\system32\dllcache\brusbscn.sys
2014-05-13 15:24:56 17279 -c--a-w- c:\windows\system32\dllcache\atv10nt5.dll
2014-05-13 15:23:59 201728 -c--a-w- c:\windows\system32\dllcache\ati2dvag.dll
2014-05-13 15:22:58 44928 -c--a-w- c:\windows\system32\dllcache\agpcpq.sys
2014-05-13 15:22:57 42368 -c--a-w- c:\windows\system32\dllcache\agp440.sys
2014-05-13 15:21:20 3775 -c--a-w- c:\windows\system32\dllcache\adv11nt5.dll
2014-05-13 15:21:20 3711 -c--a-w- c:\windows\system32\dllcache\adv09nt5.dll
2014-05-13 15:21:18 3135 -c--a-w- c:\windows\system32\dllcache\adv08nt5.dll
2014-05-13 15:21:17 3647 -c--a-w- c:\windows\system32\dllcache\adv07nt5.dll
2014-05-13 15:21:15 3615 -c--a-w- c:\windows\system32\dllcache\adv05nt5.dll
2014-05-13 15:21:14 3967 -c--a-w- c:\windows\system32\dllcache\adv02nt5.dll
2014-05-13 15:21:13 4255 -c--a-w- c:\windows\system32\dllcache\adv01nt5.dll
2014-05-13 15:21:07 101888 -c--a-w- c:\windows\system32\dllcache\adpu160m.sys
2014-05-13 15:21:05 46112 -c--a-w- c:\windows\system32\dllcache\adptsf50.sys
2014-05-13 15:21:02 10880 -c--a-w- c:\windows\system32\dllcache\admjoy.sys
2014-05-13 15:18:22 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2014-05-12 21:17:02 98816 ----a-w- c:\windows\sed.exe
2014-05-12 21:17:02 256000 ----a-w- c:\windows\PEV.exe
2014-05-12 21:17:02 208896 ----a-w- c:\windows\MBR.exe
2014-05-12 00:34:46 -------- d-----w- c:\programmi\PFPortChecker
2014-05-11 16:22:52 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\SUPERAntiSpyware.com
2014-05-11 16:21:27 -------- d-----w- c:\programmi\SUPERAntiSpyware
2014-05-11 16:21:27 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\SUPERAntiSpyware.com
2014-05-11 15:30:16 -------- d-----w- c:\programmi\Cheat Engine 6.3
2014-05-11 05:58:33 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Sun
2014-05-11 05:55:32 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-05-11 05:55:04 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-05-10 23:53:39 -------- d-----w- c:\documents and settings\all users.windows\Uniblue
2014-05-10 23:52:34 -------- d-----w- c:\programmi\Uniblue
2014-05-10 23:52:34 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Uniblue
2014-05-10 05:06:18 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2014-05-10 05:06:18 99328 ----a-w- c:\windows\system32\srusd.dll
2014-05-10 05:06:14 6912 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2014-05-10 05:06:14 6912 ----a-w- c:\windows\system32\drivers\serscan.sys
2014-05-10 05:06:09 71680 -c--a-w- c:\windows\system32\dllcache\fnfilter.dll
2014-05-10 05:06:09 71680 ----a-w- c:\windows\system32\fnfilter.dll
2014-05-10 04:57:16 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Motorola
2014-05-10 04:17:06 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Motorola Mobility
2014-05-10 04:16:13 -------- d-----w- c:\programmi\Motorola Mobility
2014-05-10 04:14:52 24960 ----a-w- c:\windows\system32\drivers\motmodem.sys
2014-05-10 04:14:52 1461992 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll
2014-05-10 04:14:14 -------- d-----w- c:\programmi\file comuni\Motorola Shared
2014-05-10 04:13:15 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Motorola
2014-05-09 22:08:20 95744 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2014-05-09 22:08:20 861696 ----a-w- c:\windows\system32\drivers\mod7700.sys
2014-05-09 22:08:20 76544 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2014-05-09 22:08:20 67584 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2014-05-09 22:08:20 28672 ----a-w- c:\windows\system32\drivers\usbccid.sys
2014-05-09 22:08:20 27520 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2014-05-09 22:08:20 25856 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2014-05-09 22:08:20 245376 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2014-05-09 22:08:20 199168 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2014-05-09 22:08:20 19200 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2014-05-09 22:08:20 12160 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2014-05-09 22:08:20 102784 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2014-05-09 22:07:07 -------- d-----w- c:\programmi\Claro Internet
2014-05-09 21:34:05 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Norton Utilities 16
2014-05-09 16:38:31 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\PCHealth
2014-05-09 16:00:55 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\ApplicationHistory
2014-05-09 14:08:33 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2014-05-09 14:08:05 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2014-05-09 14:08:05 117760 ------w- c:\windows\system32\prntvpt.dll
2014-05-09 14:08:04 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2014-05-09 14:08:04 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2014-05-09 14:08:04 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2014-05-09 14:08:04 575488 ------w- c:\windows\system32\xpsshhdr.dll
2014-05-09 14:08:03 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2014-05-09 14:08:03 1676288 ------w- c:\windows\system32\xpssvcs.dll
2014-05-09 14:08:02 -------- d-----w- C:\df74967e4fe424c322a2b6e536d98c4f
2014-05-09 13:59:43 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Identities
2014-05-09 13:59:35 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Windows Desktop Search
2014-05-09 13:58:50 -------- d-----w- c:\programmi\Windows Desktop Search
2014-05-09 13:56:35 -------- d-----w- c:\programmi\Windows Media Connect 2
2014-05-09 13:44:40 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-05-09 13:15:33 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-05-09 13:15:33 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-05-09 13:15:32 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-05-09 13:15:31 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-05-09 13:15:30 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-05-09 13:15:24 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-05-09 13:15:24 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-05-09 13:15:23 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-05-09 13:07:00 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\IECompatCache
2014-05-09 13:04:30 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\PrivacIE
2014-05-09 11:32:28 155648 ----a-r- c:\windows\system32\igfxres.dll
2014-05-09 11:30:59 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\IETldCache
2014-05-09 05:19:41 -------- d-----w- c:\programmi\MSXML 4.0
2014-05-09 05:16:05 69722 ----a-w- c:\windows\system32\SynTPFcs.dll
2014-05-09 05:16:01 94298 ----a-w- c:\windows\system32\SynTPAPI.dll
2014-05-09 05:16:01 81920 ----a-w- c:\windows\system32\SynTPCo2.dll
2014-05-09 05:16:01 192672 ----a-w- c:\windows\system32\drivers\SynTP.sys
2014-05-09 05:15:59 82013 ----a-w- c:\windows\system32\SynCOM.dll
2014-05-09 05:15:59 114688 ----a-w- c:\windows\system32\SynCtrl.dll
2014-05-09 05:15:57 -------- d-----w- c:\programmi\Synaptics
2014-05-09 05:15:48 77824 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\ctor.dll
2014-05-09 05:15:48 32768 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\objectps.dll
2014-05-09 05:15:48 225280 ----a-w- c:\programmi\file comuni\installshield\iscript\iscript.dll
2014-05-09 05:15:48 176128 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\iuser.dll
2014-05-09 05:15:44 610436 ----a-w- c:\programmi\file comuni\installshield\engine\6\intel 32\IKernel.exe
2014-05-09 05:14:57 81920 ----a-r- c:\windows\system32\sm56co.dll
2014-05-09 05:14:53 53248 ----a-r- c:\windows\sm56jpn.dll
2014-05-09 05:14:53 1095936 ----a-w- c:\windows\system32\drivers\smserial.sys
2014-05-09 05:14:52 69632 ----a-r- c:\windows\sm56eng.dll
2014-05-09 05:14:52 61440 ----a-r- c:\windows\sm56ger.dll
2014-05-09 05:14:52 61440 ----a-r- c:\windows\sm56fra.dll
2014-05-09 05:14:52 49152 ----a-r- c:\windows\sm56cht.dll
2014-05-09 05:14:51 69632 ----a-r- c:\windows\sm56brz.dll
2014-05-09 05:14:51 49152 ----a-r- c:\windows\sm56chs.dll
2014-05-09 05:11:42 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Intel
2014-05-09 05:07:19 130432 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys
2014-05-09 05:06:57 73728 ----a-w- c:\windows\system32\ISUSPM.cpl
2014-05-09 05:06:57 385024 ----a-w- c:\programmi\file comuni\installshield\updateservice\_ispmres.dll
2014-05-09 05:06:57 221184 ----a-w- c:\programmi\file comuni\installshield\updateservice\ISUSPM.exe
2014-05-09 05:06:56 81920 ----a-w- c:\programmi\file comuni\installshield\updateservice\issch.exe
2014-05-09 05:06:56 368640 ----a-w- c:\programmi\file comuni\installshield\updateservice\_isusres.dll
2014-05-09 05:06:55 581632 ----a-w- c:\programmi\file comuni\installshield\updateservice\agent.exe
2014-05-09 05:06:55 278528 ----a-w- c:\programmi\file comuni\installshield\updateservice\ISDM.exe
2014-05-09 05:05:59 40960 ------r- c:\windows\system32\ChCfg.exe
2014-05-09 05:05:18 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2014-05-09 05:05:17 1523416 ----a-w- c:\windows\RtlUpd.exe
2014-05-09 05:05:14 891976 ----a-w- c:\windows\system32\RTSndMgr.CPL
2014-05-09 05:05:14 5582552 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2014-05-09 05:05:09 9721960 ----a-w- c:\windows\RTLCPL.EXE
2014-05-09 04:35:58 27232 ----a-w- c:\windows\system32\drivers\rspSanity32XP.sys
2014-05-09 04:35:57 -------- d-----w- c:\programmi\SanityCheck
2014-05-09 04:34:53 -------- d-----w- c:\programmi\WhoCrashed
2014-05-09 04:11:47 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Malwarebytes
2014-05-09 04:11:36 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Malwarebytes
2014-05-09 03:58:42 44544 ----a-w- c:\windows\system32\msxml4a.dll
2014-05-09 03:58:37 37920 ----a-w- c:\windows\system32\CleanMFT32.exe
2014-05-09 03:58:37 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx
2014-05-09 03:58:37 1101824 ----a-w- c:\windows\system32\UniBox210.ocx
2014-05-09 03:58:36 880640 ----a-w- c:\windows\system32\UniBox10.ocx
2014-05-09 03:58:36 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX
2014-05-09 03:57:58 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Symantec
2014-05-09 03:57:57 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Product_NU16
2014-05-09 03:52:34 -------- d-----w- c:\programmi\Boredom Software
2014-05-09 03:51:10 -------- d-----w- c:\programmi\Core Temp
2014-05-09 03:48:32 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Free Download Manager
2014-05-09 03:48:27 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Free Download Manager
2014-05-09 03:48:16 -------- d-----w- c:\programmi\Free Download Manager
2014-05-09 03:40:01 1268560 ----a-w- c:\programmi\uTorrent.exe
2014-05-09 03:39:04 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\uTorrent
2014-05-09 03:37:53 -------- d-----w- c:\programmi\CCleaner
2014-05-09 03:33:03 25704 ----a-w- c:\windows\system32\drivers\WsAudio_DeviceS(5).sys
2014-05-09 03:31:58 25704 ----a-w- c:\windows\system32\drivers\WsAudio_DeviceS(1).sys
2014-05-09 03:31:44 892928 ----a-w- c:\windows\system32\iconv.dll
2014-05-09 03:31:44 675840 ----a-w- c:\windows\system32\ac3filter.ax
2014-05-09 03:31:44 496640 ----a-w- c:\windows\system32\xvid.ax
2014-05-09 03:31:41 153600 ----a-w- c:\windows\system32\WS_ATLMovie.dll
2014-05-09 03:31:36 -------- d-----w- c:\programmi\iSkysoft
2014-05-09 03:29:27 -------- d-----w- c:\programmi\Defraggler
2014-05-09 03:28:50 -------- d-----w- c:\programmi\OverDrive Media Console
2014-05-09 03:25:19 -------- d-----w- c:\programmi\VideoLAN
2014-05-09 03:23:12 -------- d-----w- c:\programmi\Speccy
2014-05-09 03:13:39 272768 -c--a-w- c:\windows\system32\dllcache\bthport.sys
2014-05-09 03:13:39 272768 ------w- c:\windows\system32\drivers\bthport.sys
2014-05-09 03:13:23 14976 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2014-05-09 03:12:05 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-05-09 03:12:05 13312 ------w- c:\windows\system32\xp_eos.exe
2014-05-09 03:04:08 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Mozilla
2014-05-09 02:59:46 12928 -c--a-w- c:\windows\system32\dllcache\usb8023x.sys
2014-05-09 02:50:43 2197248 -c--a-w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-05-09 02:50:42 2073856 -c--a-w- c:\windows\system32\dllcache\ntkrnlpa.exe
2014-05-09 02:50:18 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-05-09 02:50:18 3072 ------w- c:\windows\system32\iacenc.dll
2014-05-09 02:41:12 -------- d-----w- c:\programmi\Software Informer
2014-05-09 02:41:12 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\Software Informer
2014-05-09 02:39:36 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Help
2014-05-09 02:37:43 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Skype
2014-05-09 02:36:58 -------- d-----r- c:\programmi\Skype
2014-05-09 02:25:49 -------- d-sh--w- c:\documents and settings\sergiopasini.spasini-s-place\UserData
2014-05-09 02:24:19 18968 ----a-w- c:\windows\system32\sdnclean.exe
2014-05-09 02:24:15 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Spybot - Search & Destroy
2014-05-09 02:24:03 -------- d-----w- c:\programmi\Spybot - Search & Destroy 2
2014-05-09 00:46:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Temp
2014-05-09 00:39:25 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\Claro Internet
2014-05-09 00:38:49 16928 ------w- c:\windows\system32\spmsgXP_2k3.dll
2014-05-09 00:38:46 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2014-05-09 00:38:38 1112288 ----a-w- c:\windows\system32\wdfcoinstaller01007.dll
2014-05-09 00:38:38 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-05-09 00:36:57 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\DatacardService
2014-05-09 00:36:43 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2014-05-09 00:36:39 32384 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2014-05-09 00:36:39 32384 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-05-09 00:35:53 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\dati applicazioni\AVAST Software
2014-05-09 00:34:01 -------- d-----w- c:\documents and settings\sergiopasini.spasini-s-place\impostazioni locali\dati applicazioni\Google
2014-05-09 00:33:44 180632 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-05-09 00:33:43 777488 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2014-05-09 00:33:43 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-05-09 00:33:43 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-05-09 00:33:42 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-05-09 00:33:36 43152 ----a-w- c:\windows\avastSS.scr
2014-05-09 00:32:56 -------- d-----w- c:\programmi\AVAST Software
2014-05-09 00:31:46 -------- d-----w- c:\documents and settings\all users.windows\dati applicazioni\AVAST Software
2014-05-09 00:16:03 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
2014-05-09 00:16:03 31360 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys
2014-05-09 00:16:01 9216 -c--a-w- c:\windows\system32\dllcache\wamps51.dll
2014-05-09 00:16:01 78336 -c--a-w- c:\windows\system32\dllcache\wam51.dll
2014-05-09 00:16:01 53248 -c--a-w- c:\windows\system32\dllcache\wamreg51.dll
2014-05-09 00:16:00 74240 -c--a-w- c:\windows\system32\dllcache\w3ext.dll
2014-05-09 00:16:00 5632 -c--a-w- c:\windows\system32\dllcache\w3svapi.dll
2014-05-09 00:16:00 4608 -c--a-w- c:\windows\system32\dllcache\w3ctrs51.dll
2014-05-09 00:16:00 369152 -c--a-w- c:\windows\system32\dllcache\w3svc.dll
2014-05-09 00:14:58 229439 -c--a-w- c:\windows\system32\dllcache\multibox.dll
2014-05-09 00:13:58 10096640 -c--a-w- c:\windows\system32\dllcache\hwxcht.dll
2014-05-09 00:12:59 7168 -c--a-w- c:\windows\system32\dllcache\wamregps.dll
2014-05-09 00:10:38 -------- d-sh--w- c:\documents and settings\all users.windows\DRM
2014-05-09 00:10:03 -------- d--h--w- c:\programmi\WindowsUpdate
2014-05-09 00:08:59 6144 -c--a-w- c:\windows\system32\dllcache\wmm2res2.dll
2014-05-09 00:05:59 85504 -c--a-w- c:\windows\system32\dllcache\catsrvps.dll
2014-05-08 21:01:20 3072 -c--a-w- c:\windows\system32\dllcache\audstub.sys
2014-05-08 21:01:20 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2014-05-08 21:00:38 58368 -c--a-w- c:\windows\system32\dllcache\redbook.sys
2014-05-08 21:00:38 58368 ----a-w- c:\windows\system32\drivers\redbook.sys
2014-05-08 21:00:08 6400 -c--a-w- c:\windows\system32\dllcache\enum1394.sys
2014-05-08 21:00:08 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
2014-05-08 21:00:03 20992 -c--a-w- c:\windows\system32\dllcache\rtl8139.sys
2014-05-08 21:00:03 20992 ----a-w- c:\windows\system32\drivers\RTL8139.sys
2014-05-08 20:59:43 10240 -c--a-w- c:\windows\system32\dllcache\compbatt.sys
2014-05-08 20:59:43 10240 ----a-w- c:\windows\system32\drivers\compbatt.sys
2014-05-08 20:59:42 14208 -c--a-w- c:\windows\system32\dllcache\battc.sys
2014-05-08 20:59:42 14208 ----a-w- c:\windows\system32\drivers\battc.sys
2014-05-08 20:59:42 13952 -c--a-w- c:\windows\system32\dllcache\cmbatt.sys
2014-05-08 20:59:42 13952 ----a-w- c:\windows\system32\drivers\CmBatt.sys
2014-05-08 20:59:27 76800 -c--a-w- c:\windows\system32\dllcache\usbui.dll
2014-05-08 20:59:27 76800 ----a-w- c:\windows\system32\usbui.dll
2014-05-08 20:59:22 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2014-05-08 20:59:22 8832 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2014-05-08 20:56:55 -------- d--h--w- c:\documents and settings\all users.windows\Modelli
2014-05-08 20:56:55 -------- d-----w- c:\documents and settings\all users.windows\Preferiti
2014-05-08 20:56:55 -------- d-----r- c:\documents and settings\all users.windows\Menu Avvio
2014-05-08 20:56:55 -------- d-----r- c:\documents and settings\all users.windows\Documenti
2014-05-08 20:56:33 -------- d--h--r- c:\documents and settings\all users.windows\Dati applicazioni
2014-05-06 19:47:59 -------- d-----w- C:\TDSSKiller_Quarantine
2014-05-06 15:46:42 -------- d-----w- C:\f10e561f9673ea07a872
2014-05-06 04:00:46 -------- d-----w- C:\$WIN_NT$.~BT
2014-05-06 00:31:49 -------- d-----w- c:\windows\system32\Cache
2014-05-05 23:48:53 -------- d-----w- c:\windows\setup.pss
2014-05-04 00:46:28 -------- dc-h--w- c:\windows\ie8
2014-05-03 23:39:05 -------- d-----w- c:\windows\system32\msmq
2014-05-03 23:14:31 -------- d-----w- c:\windows\IIS Temporary Compressed Files
2014-05-03 23:04:42 -------- d-----w- c:\windows\system32\appmgmt
2014-05-02 15:29:40 -------- d-----w- c:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-05-01 16:05:22 -------- d-----w- C:\Temp
2014-04-30 21:13:06 -------- d-----w- c:\windows\system32\winrm
2014-04-30 21:12:58 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2014-04-30 16:44:24 -------- d-----w- c:\windows\system32\XPSViewer
2014-04-30 16:33:20 -------- d--h--w- c:\windows\system32\GroupPolicy
2014-04-30 16:29:34 -------- d-----w- c:\windows\system32\URTTemp
2014-04-29 16:46:32 -------- d-----w- c:\windows\ie8updates
2014-04-29 00:29:47 -------- d-----w- c:\windows\system32\NtmsData
2014-04-28 05:36:59 -------- d-----w- c:\windows\system32\LogFiles
2014-04-27 14:17:31 -------- d-----w- c:\windows\system32\MRT
2014-04-27 13:31:08 -------- d-----w- c:\windows\system32\PreInstall
2014-04-27 13:31:05 -------- d--h--w- c:\windows\$hf_mig$
2014-04-27 13:25:07 -------- d-----w- c:\windows\system32\SoftwareDistribution
.
==================== Find6M ====================
.
2014-05-14 17:16:51 42144 ----a-w- c:\windows\system32\drivers\o2sd.sys
2014-05-14 17:01:36 20145368 ----a-w- c:\windows\RTHDCPL.EXE
2014-05-14 17:01:30 2180712 ----a-w- c:\windows\MicCal.exe
2014-05-14 17:01:28 64104 ----a-w- c:\windows\ALCMTR.EXE
2014-05-14 17:01:28 2815592 ----a-w- c:\windows\ALCWZRD.EXE
2014-05-14 17:01:27 285288 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2014-05-09 00:33:37 776976 ----a-w- c:\windows\system32\drivers\aswsnx.sys.1400200525468
2014-05-09 00:33:37 54832 ----a-w- c:\windows\system32\drivers\aswrdr.sys.1400200525468
2014-03-06 17:58:54 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:58:54 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-03-06 17:58:54 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-06 17:58:53 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-07 06:36:38 1879040 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 08:55:01 563712 ----a-w- c:\windows\system32\qedit.dll
2014-01-04 03:12:52 420864 ----a-w- c:\windows\system32\vbscript.dll
.
============= FINISH: 18.27.03,23 ===============

SPasini · Jun 6, 2014

Perhaps I posted some half more than once but I hope those will be enough and I'll be waiting for your verdict..! Tks a lot again! Regards SPasini

Broni · Jun 6, 2014

I still need to see Attach.txt log from DDS.

SPasini · Jun 7, 2014

Att.:Broni / I'm sorry I forgot this one! Tks Regards SPasini
PS.Let me help you with the translation of some feaures because they are written in italian for example when you read "aggiornamento della protezione" means Security update or Protection update.This is an easy one.Of course.Tks.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 08/05/2014 21.16.22
System Uptime: 07/06/2014 13.02.14 (1 hours ago)
.
Motherboard: By O.E.M | | F11Y
Processor: Intel(R) Core(TM) Duo CPU U2400 @ 1.06GHz | CPU 1 | 1063/133mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 149 GiB total, 21,387 GiB free.
D: is CDROM ()
E: is CDROM (CDFS)
F: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP90: 03/06/2014 19.38.38 - Punto di arresto del sistema
RP91: 05/06/2014 0.40.45 - Punto di arresto del sistema
RP92: 05/06/2014 0.57.20 - AA11
RP93: 05/06/2014 18.39.21 - Created by Norton Utilities
RP94: 05/06/2014 18.44.10 - Created by Norton Utilities
.
==== Installed Programs ======================
.
AdAwareInstaller
AdAwareUpdater
Adobe AIR
Adobe Dreamweaver CS6
Adobe Flash Player 13 Plugin
Adobe Help Manager
Adobe Reader XI (11.0.07)
Adobe Widget Browser
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2510531)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2909210)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2936068)
Aggiornamento della protezione per Windows Internet Explorer 8 (KB2964358)
Aggiornamento della protezione per Windows Media Player (KB2378111)
Aggiornamento della protezione per Windows Media Player (KB2803821-v2)
Aggiornamento della protezione per Windows Media Player (KB2834904-v2)
Aggiornamento della protezione per Windows Media Player (KB952069)
Aggiornamento della protezione per Windows Media Player (KB954155)
Aggiornamento della protezione per Windows Media Player (KB973540)
Aggiornamento della protezione per Windows Media Player (KB975558)
Aggiornamento della protezione per Windows Media Player (KB978695)
Aggiornamento della protezione per Windows Media Player 11 (KB954154)
Aggiornamento della protezione per Windows XP (KB2115168)
Aggiornamento della protezione per Windows XP (KB2229593)
Aggiornamento della protezione per Windows XP (KB2296011)
Aggiornamento della protezione per Windows XP (KB2347290)
Aggiornamento della protezione per Windows XP (KB2387149)
Aggiornamento della protezione per Windows XP (KB2393802)
Aggiornamento della protezione per Windows XP (KB2419632)
Aggiornamento della protezione per Windows XP (KB2423089)
Aggiornamento della protezione per Windows XP (KB2443105)
Aggiornamento della protezione per Windows XP (KB2478960)
Aggiornamento della protezione per Windows XP (KB2478971)
Aggiornamento della protezione per Windows XP (KB2479943)
Aggiornamento della protezione per Windows XP (KB2481109)
Aggiornamento della protezione per Windows XP (KB2483185)
Aggiornamento della protezione per Windows XP (KB2485663)
Aggiornamento della protezione per Windows XP (KB2506212)
Aggiornamento della protezione per Windows XP (KB2507938)
Aggiornamento della protezione per Windows XP (KB2508429)
Aggiornamento della protezione per Windows XP (KB2509553)
Aggiornamento della protezione per Windows XP (KB2510581)
Aggiornamento della protezione per Windows XP (KB2535512)
Aggiornamento della protezione per Windows XP (KB2536276-v2)
Aggiornamento della protezione per Windows XP (KB2544893-v2)
Aggiornamento della protezione per Windows XP (KB2566454)
Aggiornamento della protezione per Windows XP (KB2570947)
Aggiornamento della protezione per Windows XP (KB2584146)
Aggiornamento della protezione per Windows XP (KB2585542)
Aggiornamento della protezione per Windows XP (KB2592799)
Aggiornamento della protezione per Windows XP (KB2598479)
Aggiornamento della protezione per Windows XP (KB2603381)
Aggiornamento della protezione per Windows XP (KB2619339)
Aggiornamento della protezione per Windows XP (KB2620712)
Aggiornamento della protezione per Windows XP (KB2631813)
Aggiornamento della protezione per Windows XP (KB2653956)
Aggiornamento della protezione per Windows XP (KB2655992)
Aggiornamento della protezione per Windows XP (KB2659262)
Aggiornamento della protezione per Windows XP (KB2661637)
Aggiornamento della protezione per Windows XP (KB2676562)
Aggiornamento della protezione per Windows XP (KB2686509)
Aggiornamento della protezione per Windows XP (KB2691442)
Aggiornamento della protezione per Windows XP (KB2698365)
Aggiornamento della protezione per Windows XP (KB2705219-v2)
Aggiornamento della protezione per Windows XP (KB2712808)
Aggiornamento della protezione per Windows XP (KB2719985)
Aggiornamento della protezione per Windows XP (KB2723135-v2)
Aggiornamento della protezione per Windows XP (KB2727528)
Aggiornamento della protezione per Windows XP (KB2757638)
Aggiornamento della protezione per Windows XP (KB2770660)
Aggiornamento della protezione per Windows XP (KB2780091)
Aggiornamento della protezione per Windows XP (KB2802968)
Aggiornamento della protezione per Windows XP (KB2807986)
Aggiornamento della protezione per Windows XP (KB2813345)
Aggiornamento della protezione per Windows XP (KB2820917)
Aggiornamento della protezione per Windows XP (KB2834886)
Aggiornamento della protezione per Windows XP (KB2847311)
Aggiornamento della protezione per Windows XP (KB2850869)
Aggiornamento della protezione per Windows XP (KB2859537)
Aggiornamento della protezione per Windows XP (KB2862152)
Aggiornamento della protezione per Windows XP (KB2862330)
Aggiornamento della protezione per Windows XP (KB2862335)
Aggiornamento della protezione per Windows XP (KB2864063)
Aggiornamento della protezione per Windows XP (KB2868626)
Aggiornamento della protezione per Windows XP (KB2876217)
Aggiornamento della protezione per Windows XP (KB2876331)
Aggiornamento della protezione per Windows XP (KB2892075)
Aggiornamento della protezione per Windows XP (KB2893294)
Aggiornamento della protezione per Windows XP (KB2898715)
Aggiornamento della protezione per Windows XP (KB2900986)
Aggiornamento della protezione per Windows XP (KB2909212)
Aggiornamento della protezione per Windows XP (KB2914368)
Aggiornamento della protezione per Windows XP (KB2916036)
Aggiornamento della protezione per Windows XP (KB2922229)
Aggiornamento della protezione per Windows XP (KB2929961)
Aggiornamento della protezione per Windows XP (KB2930275)
Aggiornamento della protezione per Windows XP (KB2936068)
Aggiornamento della protezione per Windows XP (KB2964358)
Aggiornamento della protezione per Windows XP (KB923561)
Aggiornamento della protezione per Windows XP (KB923789)
Aggiornamento della protezione per Windows XP (KB941569)
Aggiornamento della protezione per Windows XP (KB946648)
Aggiornamento della protezione per Windows XP (KB950762)
Aggiornamento della protezione per Windows XP (KB950974)
Aggiornamento della protezione per Windows XP (KB951376-v2)
Aggiornamento della protezione per Windows XP (KB952004)
Aggiornamento della protezione per Windows XP (KB952954)
Aggiornamento della protezione per Windows XP (KB956572)
Aggiornamento della protezione per Windows XP (KB956844)
Aggiornamento della protezione per Windows XP (KB959426)
Aggiornamento della protezione per Windows XP (KB960803)
Aggiornamento della protezione per Windows XP (KB960859)
Aggiornamento della protezione per Windows XP (KB969059)
Aggiornamento della protezione per Windows XP (KB970430)
Aggiornamento della protezione per Windows XP (KB971657)
Aggiornamento della protezione per Windows XP (KB972270)
Aggiornamento della protezione per Windows XP (KB973507)
Aggiornamento della protezione per Windows XP (KB973869)
Aggiornamento della protezione per Windows XP (KB973904)
Aggiornamento della protezione per Windows XP (KB974112)
Aggiornamento della protezione per Windows XP (KB974318)
Aggiornamento della protezione per Windows XP (KB974392)
Aggiornamento della protezione per Windows XP (KB974571)
Aggiornamento della protezione per Windows XP (KB975025)
Aggiornamento della protezione per Windows XP (KB975467)
Aggiornamento della protezione per Windows XP (KB975560)
Aggiornamento della protezione per Windows XP (KB975713)
Aggiornamento della protezione per Windows XP (KB977816)
Aggiornamento della protezione per Windows XP (KB977914)
Aggiornamento della protezione per Windows XP (KB978338)
Aggiornamento della protezione per Windows XP (KB978542)
Aggiornamento della protezione per Windows XP (KB978706)
Aggiornamento della protezione per Windows XP (KB979309)
Aggiornamento della protezione per Windows XP (KB979482)
Aggiornamento della protezione per Windows XP (KB979687)
Aggiornamento della protezione per Windows XP (KB981997)
Aggiornamento della protezione per Windows XP (KB982132)
Aggiornamento della protezione per Windows XP (KB982665)
Aggiornamento della sicurezza per Microsoft Windows (KB2564958)
Aggiornamento per Windows Internet Explorer 8 (KB2598845)
Aggiornamento per Windows Internet Explorer 8 (KB2632503)
Aggiornamento per Windows XP (KB2345886)
Aggiornamento per Windows XP (KB2492386)
Aggiornamento per Windows XP (KB2749655)
Aggiornamento per Windows XP (KB2808679)
Aggiornamento per Windows XP (KB2904266)
Aggiornamento per Windows XP (KB2934207)
Aggiornamento per Windows XP (KB898461)
Aggiornamento per Windows XP (KB951978)
Aggiornamento per Windows XP (KB955759)
Aggiornamento per Windows XP (KB968389)
Aggiornamento per Windows XP (KB971029)
Aggiornamento per Windows XP (KB973815)
Aggiornamento rapido per Windows Media Player 11 (KB939683)
Aggiornamento rapido per Windows XP (KB942288-v3)
Aggiornamento rapido per Windows XP (KB952287)
Aggiornamento rapido per Windows XP (KB961118)
AntimalwareEngine
µTorrent
avast! Free Antivirus
BitTorrent
CCleaner
Cheat Engine 6.3
Claro Internet
Commview for Wifi
Core Temp version 0.99.8
Defraggler
DriverIdentifier 4.2.7
DriverScanner
Free Download Manager 3.9.4
Google Chrome
Google Earth
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB954550-v5)
Intel(R) Graphics Media Accelerator Driver
iSkysoft DRM Removal(Build 1.0.4.0)
Java 7 Update 55
Java Auto Updater
Malwarebytes Anti-Malware version 2.0.2.1012
mCore
mDriver
mDrWiFi
mEoU
mGina
mHelp
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Italian Language Pack
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
mIWA
mLogView
mMHouse
Motorola Device Manager
Motorola Device Software Update
Motorola Mobile Drivers Installation 6.3.0
Motorola SM56 Speakerphone Modem
Mozilla Firefox 29.0.1 (x86 en-US)
Mozilla Maintenance Service
mPfMgr
mPfWiz
mProSafe
mSSO
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2758694)
mToolkit
mWlsSafe
mWMI
mXML
mZConfig
Norton Utilities 16
O2Micro Flash Memory Card Windows Driver V1.9
OverDrive Media Console
Pacchetto provider Microsoft servizio crittografia smart card di base
PFConfig 1.0.296
PFPortChecker 1.0.40
REALTEK GbE & FE Ethernet NIC Driver
Realtek High Definition Audio Driver
Recuva
SanityCheck 3.00
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Windows Search 4 - KB963093
Skype™ 6.14
Software Informer 1.3.1079.0
Software Intel(R) PROSet/Wireless
Speccy
Spybot - Search & Destroy
SUPERAntiSpyware
Synaptics Pointing Device Driver
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
VLC media player 2.1.3
VT Hash Check 1.41
WebFldrs XP
WhoCrashed 5.01
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0
WinRAR 5.01 (32-bit)
.
==== End Of File ===========================

Broni · Jun 7, 2014

Download RogueKiller from one of the following links and save it to your Desktop:

Link 1
Link 2

Close all the running programs
Windows Vista/7/8 users: right click on RogueKiller.exe, click Run as Administrator
Otherwise just double-click on RogueKiller.exe
Pre-scan will start. Let it finish.
Click on SCAN button.
Wait until the Status box shows Scan Finished
Click on Delete.
Wait until the Status box shows Deleting Finished.
Click on Report and copy/paste the content of the Notepad into your next reply.
RKreport.txt could also be found on your desktop.
If more than one log is produced post all logs.
If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Create new restore point before proceeding with the next step....
How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

Unzip downloaded file.
Open the folder where the contents were unzipped and run mbar.exe
Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
Click on the Cleanup button to remove any threats and reboot if prompted to do so.
Wait while the system shuts down and the cleanup process is performed.
Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

SPasini · Jun 9, 2014

Att.:Broni
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : SergioPasini [Admin rights]
Mode : Scan -- Date : 06/09/2014 19:09:59
| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] ouc.exe -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe [7] -> Chiuso [TermProc]

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) FUJITSU MHZ2160BH G2 +++++
--- User ---
[MBR] a717d7ef07fbee741cf549097ac6bde5
[BSP] 709d96ce5b9368214caaf3be347d884e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) HUAWEI SD Storage USB Device +++++
Error reading User MBR! ([0x15] Periferica non pronta. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Richiesta non supportata. )

Finished : << RKreport[0]_S_06092014_190959.txt >>

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.07.0.1008

(c) Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.063000 GHz
Memory total: 1064611840, free: 80363520

Downloaded database version: v2014.05.04.04
Downloaded database version: v2014.03.27.01
=======================================
Initializing...
------------ Kernel report ------------
05/04/2014 10:43:05
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
ohci1394.sys
\WINDOWS\system32\DRIVERS\1394BUS.SYS
compbatt.sys
\WINDOWS\system32\DRIVERS\BATTC.SYS
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
dmload.sys
dmio.sys
ACPIEC.sys
\WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
PartMgr.sys
VolSnap.sys
atapi.sys
o2sd.sys
\WINDOWS\system32\DRIVERS\SCSIPORT.SYS
o2media.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltMgr.sys
sr.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
aswNdis2.sys
aswNdis.sys
Mup.sys
aswVmm.sys
aswRvrt.sys
\SystemRoot\system32\DRIVERS\tunmp.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\ialmnt5.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\w39n51.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\nic1394.sys
\SystemRoot\system32\DRIVERS\Rtnicxp.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\drivers\aswKbd.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\drivers\WsAudio_DeviceS(1).sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\WsAudio_DeviceS(2).sys
\SystemRoot\system32\drivers\WsAudio_DeviceS(3).sys
\SystemRoot\system32\drivers\WsAudio_DeviceS(4).sys
\SystemRoot\system32\drivers\WsAudio_DeviceS(5).sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\rdpdr.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\ew_jubusenum.sys
\SystemRoot\system32\DRIVERS\WDFLDR.SYS
\SystemRoot\System32\Drivers\wdf01000.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\RtkHDAud.sys
\SystemRoot\system32\DRIVERS\smserial.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\system32\drivers\aswTdi.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\tcpip6.sys
\SystemRoot\system32\DRIVERS\arp1394.sys
\SystemRoot\system32\drivers\aswRdr.sys
\SystemRoot\system32\DRIVERS\Ip6Fw.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\ew_usbenumfilter.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\system32\DRIVERS\ew_jucdcacm.sys
\SystemRoot\system32\DRIVERS\ew_jucdcecm.sys
\SystemRoot\system32\DRIVERS\ew_juextctrl.sys
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\ialmdnt5.dll
\SystemRoot\System32\ialmrnt5.dll
\SystemRoot\System32\ialmdev5.DLL
\SystemRoot\System32\ialmdd5.DLL
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\aswMonFlt.sys
\??\C:\WINDOWS\system32\drivers\mbam.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\drivers\aswHwid.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\srv.sys
\??\C:\WINDOWS\system32\drivers\mqac.sys
\??\C:\WINDOWS\system32\drivers\RMCast.sys
\SystemRoot\system32\DRIVERS\ipfltdrv.sys
\??\C:\DOCUME~1\SERGIO~1.SPA\IMPOST~1\Temp\ALSysIO.sys
\SystemRoot\system32\drivers\kmixer.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR2
Upper Device Object: 0xffffffff85c29728
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\000000a0\
Lower Device Object: 0xffffffff85c25ea0
Lower Device Driver Name: \Driver\usbstor\
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff86577ab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8657ed98
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86577ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff865b06f8, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86577ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff8657e9c8, DeviceName: \Device\00000085\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8657ed98, DeviceName: \Device\Ide\IdeDeviceP0T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 2E002E

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 63 Numsec = 312560577
Partition file system is NTFS
Partition is bootable

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 160041885696 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-312561808-312581808)...
Done!
Physical Sector Size: 0
Drive: 1, DevicePointer: 0xffffffff85c29728, DeviceName: \Device\Harddisk1\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff85bcd030, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff85c29728, DeviceName: \Device\Harddisk1\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff85c25ea0, DeviceName: \Device\000000a0\, DriverName: \Driver\usbstor\
------------ End ----------
Scan finished
=======================================
Malwarebytes Anti-Rootkit BETA 1.07.0.1008
www.malwarebytes.org

Database version: v2014.06.08.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
SergioPasini :: SPASINI-S-PLACE [administrator]

08/06/2014 20.33.00
mbar-log-2014-06-08 (20-33-00).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 674996
Time elapsed: 36 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

More RK logs

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : SergioPasini [Admin rights]
Mode : Remove -- Date : 06/09/2014 19:10:27
| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] ouc.exe -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe [7] -> Chiuso [TermProc]

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) FUJITSU MHZ2160BH G2 +++++
--- User ---
[MBR] a717d7ef07fbee741cf549097ac6bde5
[BSP] 709d96ce5b9368214caaf3be347d884e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ USB) HUAWEI SD Storage USB Device +++++
Error reading User MBR! ([0x15] Periferica non pronta. )
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Richiesta non supportata. )

Finished : << RKreport[0]_D_06092014_191027.txt >>
RKreport[0]_S_06092014_190959.txt

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : SergioPasini [Admin rights]
Mode : HOSTSFix -- Date : 06/09/2014 19:12:37
| ARK || FAK || MBR |

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] ouc.exe -- C:\Documents and Settings\All Users.WINDOWS\Dati applicazioni\Claro Internet\OnlineUpdate\ouc.exe [7] -> Chiuso [TermProc]

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]

¤¤¤ Reset HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[0]_H_06092014_191237.txt >>
RKreport[0]_D_06092014_191027.txt;RKreport[0]_S_06092014_190959.txt

Broni · Jun 9, 2014

Please download ComboFix from Here, Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**

Never rename Combofix unless instructed.
Close any open browsers.
Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
Close any open browsers.
WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
If the connection is not there use restore point you created prior to running Combofix.
Double click on combofix.exe & follow the prompts.

NOTE1. If Combofix asks you to install Recovery Console, please allow it.
NOTE 2. If Combofix asks you to update the program, always do so.

When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt"

**Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
**Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
Use AppRemover to uninstall it: https://www.techspot.com/downloads/5514-appremover.html
We can reinstall it when we're done with CF.
**Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
**Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.

Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try the following...

Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.
Download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

Restart computer in safe mode

Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7 right-click on it and choose Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
If not, delete the file, then download and use the one provided in Link 2.
Do not reboot until instructed.
If the tool does not run from any of the links provided, please let me know.

When the scan is done Notepad will open with rKill.txt log.
NOTE. rKill.txt log will also be present on your desktop.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.

SPasini · Jun 11, 2014

Att.: Broni: I started Combofix three times so far and each one I had to install the recovery console I don't know why it got deleted and the app runs Ok or seems to run alright for several hours but never thoroughly meaning there is no reboot and also there are not those fifty needed stages..! And I know I did it alright because a while ago I used to run Combofix once in a while with some luck or looked that way but despite the fact this time I followed your steps each one carefully the outcome is negative and there isn't a log to post and sooner or later I need to use my notebook for personal purposes then I don't know if it's my mistake or I'm missing something I don't know about..! Tks Regards SPasini

Broni · Jun 11, 2014

Please download AdwCleaner by Xplode onto your desktop.

Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Scan button.
When the scan has finished click on Clean button.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.

SPasini · Jun 13, 2014

Att. Broni: All logs you asked for.Tks.Regards.SPasini

# AdwCleaner v3.212 - Rapporto creato 13/06/2014 in 01:13:53
# Aggiornato 05/06/2014 di Xplode
# Sistema operativo : Microsoft Windows XP Service Pack 3 (32 bits)
# Nome utente : SergioPasini - SPASINI-S-PLACE
# In esecuzione da : C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads\adwcleaner_3.212.exe
# Opzione : Scansiona

***** [ Servizi ] *****

***** [ File / Cartelle ] *****

Cartella Trovato : C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue
Cartella Trovato : C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue\DriverScanner
Cartella Trovato : C:\Programmi\Uniblue
Cartella Trovato : C:\Programmi\Uniblue\DriverScanner
File Trovato : C:\Documents and Settings\All Users.WINDOWS\Desktop\driverscanner.lnk
File Trovato : C:\Programmi\Mozilla Firefox\browser\searchplugins\adawaretb.xml
File Trovato : C:\WINDOWS\Tasks\dsmonitor.job

***** [ Collegamenti ] *****

***** [ Registro ] *****

Chiave Trovati : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Chiave Trovati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Chiave Trovati : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Chiave Trovati : HKLM\SOFTWARE\Classes\driverscanner
Chiave Trovati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Chiave Trovati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
Chiave Trovati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\adawaretb
Chiave Trovati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
Chiave Trovati : HKLM\Software\Toolbar Cleaner
Chiave Trovati : HKLM\Software\Uniblue
Chiave Trovati : HKLM\Software\Uniblue\DriverScanner
Valore Trovati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]

***** [ Browser ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v29.0.1 (en-US)

-\\ Google Chrome v35.0.1916.114

*************************

AdwCleaner[R0].txt - [2262 octets] - [13/06/2014 01:13:53]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2322 octets] ##########
# AdwCleaner v3.212 - Rapporto creato 13/06/2014 in 01:22:22
# Aggiornato 05/06/2014 di Xplode
# Sistema operativo : Microsoft Windows XP Service Pack 3 (32 bits)
# Nome utente : SergioPasini - SPASINI-S-PLACE
# In esecuzione da : C:\Documents and Settings\SergioPasini.SPASINI-S-PLACE\Documenti\Downloads\adwcleaner_3.212.exe
# Opzione : Pulisci

***** [ Servizi ] *****

***** [ File / Cartelle ] *****

[x] Non Eliminato : C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue
[x] Non Eliminato : C:\Documents and Settings\All Users.WINDOWS\Menu Avvio\Programmi\Uniblue\DriverScanner
[x] Non Eliminato : C:\Programmi\Uniblue
[x] Non Eliminato : C:\Programmi\Uniblue\DriverScanner
[x] Non Eliminato : C:\Documents and Settings\All Users.WINDOWS\Desktop\driverscanner.lnk
File Eliminato : C:\Programmi\Mozilla Firefox\browser\searchplugins\adawaretb.xml
File Eliminato : C:\WINDOWS\Tasks\dsmonitor.job

***** [ Collegamenti ] *****

***** [ Registro ] *****

[x] Non Eliminato : HKLM\SOFTWARE\Classes\driverscanner
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Chiave Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Chiave Eliminati : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Valore Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]
Chiave Eliminati : HKLM\Software\Toolbar Cleaner
[x] Non Eliminato : HKLM\Software\Uniblue
[x] Non Eliminato : HKLM\Software\Uniblue\DriverScanner
[x] Non Eliminato : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
[x] Non Eliminato : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
[x] Non Eliminato : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\adawaretb

***** [ Browser ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v29.0.1 (en-US)

-\\ Google Chrome v35.0.1916.114

*************************

AdwCleaner[R0].txt - [2402 octets] - [13/06/2014 01:13:53]
AdwCleaner[S0].txt - [2363 octets] - [13/06/2014 01:22:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2423 octets] ##########

Solved Unable to run -thoroughly- Combo fix_am I hacked?

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Attachments

Posts: 56,041 +516

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Posts: 56,041 +516

Posts: 50 +0

Similar threads