Valutazione 4.87/ 5 (100.00%) 5838 voti

Condividi:        

Sto per formattare... fermatemi se potete!!!

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: kadosh, Luke57

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 11:57

Ok, per non sbagliare eseguo tutto nell'ordine che mi hai dato.
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Sponsor
 

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 12:32

Nel frattempo che faccio il resto che mi hai detto, ti posto il log di Hitman Pro.

Codice: Seleziona tutto
[code]
HitmanPro 3.6.2.171
www.hitmanpro.com

   Computer name . . . . : NOTEBOOK
   Windows . . . . . . . : 6.1.1.7601.X86/2
   User name . . . . . . : NOTEBOOK\Primiano
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (26 days left)

   Scan date . . . . . . : 2012-10-14 12:59:48
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 5m 29s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 0

   Objects scanned . . . : 1.706.720
   Files scanned . . . . : 35.649
   Remnants scanned  . . : 555.082 files / 1.115.989 keys

Miniport ____________________________________________________________________

   Primary
      DriverObject . . . : 85F79EB8
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 85EF91F8 +0
   Solution
      DriverObject . . . : 85F79EB8
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 8930844E \SystemRoot\system32\drivers\ataport.SYS+25678


[/code]
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 12:42

Queste due cartelle non riesco a trovarle... :(

c:\users\Primiano\AppData\Roaming\LavasoftStatistics

c:\users\Primiano\AppData\Roaming\BSHOOTER.com


in realtà la mia ricerca si ferma a C:\users\Primiano\ Appdata\roaming\nome programma non ci sono, o non li trovo...
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 14/10/12 13:05

Prova a cercare le cartelle con la funzione Cerca di Windows, inserendo, appunto:
LavasoftStatistics
BSHOOTER.com
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 13:56

Ho già provato a fare la ricerca, ma gli unici due file che mi trova, stranamente sono i log di combofix e hijack... :eeh: probabilmente perchè trova le due voci solo lì... :neutral:
Proseguo ignorando i due file?

PS ora a parte ziinga, cachejs e youtube, mi si è aggiunta questa finestra a rompere le pa**e... :evil:

http://www.moviehuts.com/vid/geo/397/
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 18:17

Fatto tutto... :)

Dunque, riguardo a questi file nessun problema:
c:\program files\AutoRun.exe
c:\program files\Setup.exe
c:\program files\AdminSetup.exe
c:\program files\temp995.bat

Ti allego i log di TDSSkiller che ho dovuto dividere in due parti perchè il messaggio altrimenti supera i 60.000 caratteri.
Parte 1
Codice: Seleziona tutto
19:03:16.0923 5428  TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
19:03:17.0079 5428  ============================================================
19:03:17.0079 5428  Current date / time: 2012/10/14 19:03:17.0079
19:03:17.0079 5428  SystemInfo:
19:03:17.0079 5428 
19:03:17.0079 5428  OS Version: 6.1.7601 ServicePack: 1.0
19:03:17.0079 5428  Product type: Workstation
19:03:17.0079 5428  ComputerName: NOTEBOOK
19:03:17.0079 5428  UserName: Primiano
19:03:17.0079 5428  Windows directory: C:\Windows
19:03:17.0079 5428  System windows directory: C:\Windows
19:03:17.0079 5428  Processor architecture: Intel x86
19:03:17.0079 5428  Number of processors: 2
19:03:17.0079 5428  Page size: 0x1000
19:03:17.0079 5428  Boot type: Normal boot
19:03:17.0079 5428  ============================================================
19:03:18.0655 5428  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:03:18.0670 5428  ============================================================
19:03:18.0670 5428  \Device\Harddisk0\DR0:
19:03:18.0686 5428  MBR partitions:
19:03:18.0686 5428  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x8B4A800
19:03:18.0686 5428  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9ED3000, BlocksNum 0x8B46000
19:03:18.0686 5428  ============================================================
19:03:18.0701 5428  C: <-> \Device\Harddisk0\DR0\Partition1
19:03:18.0748 5428  D: <-> \Device\Harddisk0\DR0\Partition2
19:03:18.0748 5428  ============================================================
19:03:18.0748 5428  Initialize success
19:03:18.0748 5428  ============================================================
19:03:41.0555 2224  ============================================================
19:03:41.0555 2224  Scan started
19:03:41.0555 2224  Mode: Manual;
19:03:41.0555 2224  ============================================================
19:03:43.0287 2224  ================ Scan system memory ========================
19:03:43.0287 2224  System memory - ok
19:03:43.0287 2224  ================ Scan services =============================
19:03:43.0630 2224  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:03:43.0646 2224  1394ohci - ok
19:03:43.0802 2224  [ 3FFCF179CB499676EC5CFE8337710716 ] ABBYY.Licensing.FineReader.Corporate.11.0 C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
19:03:43.0817 2224  ABBYY.Licensing.FineReader.Corporate.11.0 - ok
19:03:43.0911 2224  [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
19:03:43.0927 2224  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
19:03:43.0973 2224  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:03:43.0989 2224  ACPI - ok
19:03:44.0020 2224  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:03:44.0020 2224  AcpiPmi - ok
19:03:44.0083 2224  [ 6D7F09CD92A9FEF3A8EFCE66231FDD79 ] adfs            C:\Windows\system32\drivers\adfs.sys
19:03:44.0083 2224  adfs - ok
19:03:44.0207 2224  [ 57A3B9A69F14414ACE12AFD6BA701773 ] Adobe Version Cue CS4 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
19:03:44.0223 2224  Adobe Version Cue CS4 - ok
19:03:44.0332 2224  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:03:44.0332 2224  AdobeFlashPlayerUpdateSvc - ok
19:03:44.0410 2224  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:03:44.0426 2224  adp94xx - ok
19:03:44.0473 2224  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:03:44.0473 2224  adpahci - ok
19:03:44.0488 2224  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:03:44.0488 2224  adpu320 - ok
19:03:44.0535 2224  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:03:44.0535 2224  AeLookupSvc - ok
19:03:44.0582 2224  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
19:03:44.0582 2224  AFD - ok
19:03:44.0660 2224  [ 7E10E3BB9B258AD8A9300F91214D67B9 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
19:03:44.0691 2224  AgereSoftModem - ok
19:03:44.0707 2224  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
19:03:44.0707 2224  agp440 - ok
19:03:44.0753 2224  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
19:03:44.0753 2224  aic78xx - ok
19:03:44.0831 2224  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
19:03:44.0831 2224  ALG - ok
19:03:44.0878 2224  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:03:44.0878 2224  aliide - ok
19:03:44.0894 2224  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:03:44.0894 2224  amdagp - ok
19:03:44.0925 2224  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:03:44.0925 2224  amdide - ok
19:03:44.0972 2224  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:03:44.0972 2224  AmdK8 - ok
19:03:45.0019 2224  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:03:45.0019 2224  AmdPPM - ok
19:03:45.0050 2224  [ E7F4D42D8076EC60E21715CD11743A0D ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:03:45.0050 2224  amdsata - ok
19:03:45.0065 2224  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:03:45.0081 2224  amdsbs - ok
19:03:45.0097 2224  [ 146459D2B08BFDCBFA856D9947043C81 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:03:45.0097 2224  amdxata - ok
19:03:45.0159 2224  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
19:03:45.0159 2224  AppID - ok
19:03:45.0206 2224  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:03:45.0206 2224  AppIDSvc - ok
19:03:45.0268 2224  [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo         C:\Windows\System32\appinfo.dll
19:03:45.0268 2224  Appinfo - ok
19:03:45.0315 2224  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt         C:\Windows\System32\appmgmts.dll
19:03:45.0331 2224  AppMgmt - ok
19:03:45.0362 2224  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:03:45.0377 2224  arc - ok
19:03:45.0393 2224  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:03:45.0409 2224  arcsas - ok
19:03:45.0502 2224  [ 39CDCB109BF200CC8A05B9C7E6272D11 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:03:45.0502 2224  aspnet_state - ok
19:03:45.0549 2224  [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
19:03:45.0549 2224  aswFsBlk - ok
19:03:45.0627 2224  [ 31E0D16EB06D09A248AFF20C76F9091B ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
19:03:45.0627 2224  aswKbd - ok
19:03:45.0674 2224  [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
19:03:45.0674 2224  aswMonFlt - ok
19:03:45.0736 2224  [ 924819669AFD0EDF5C067193D371FAB0 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
19:03:45.0736 2224  aswRdr - ok
19:03:45.0845 2224  [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
19:03:45.0861 2224  aswSnx - ok
19:03:45.0908 2224  [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
19:03:45.0923 2224  aswSP - ok
19:03:45.0970 2224  [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
19:03:45.0970 2224  aswTdi - ok
19:03:46.0017 2224  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:03:46.0017 2224  AsyncMac - ok
19:03:46.0064 2224  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
19:03:46.0064 2224  atapi - ok
19:03:46.0189 2224  [ D59E7A5DAA08C91172E95B4F1CA6D8C3 ] athr            C:\Windows\system32\DRIVERS\athr.sys
19:03:46.0220 2224  athr - ok
19:03:46.0298 2224  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:03:46.0313 2224  AudioEndpointBuilder - ok
19:03:46.0329 2224  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:03:46.0345 2224  Audiosrv - ok
19:03:46.0438 2224  [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
19:03:46.0454 2224  avast! Antivirus - ok
19:03:46.0516 2224  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:03:46.0516 2224  AxInstSV - ok
19:03:46.0579 2224  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
19:03:46.0594 2224  b06bdrv - ok
19:03:46.0641 2224  [ 3D3F40545C81032297625655CAD40963 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
19:03:46.0657 2224  b57nd60x - ok
19:03:46.0735 2224  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:03:46.0735 2224  BDESVC - ok
19:03:46.0781 2224  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:03:46.0781 2224  Beep - ok
19:03:46.0844 2224  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
19:03:46.0859 2224  BFE - ok
19:03:46.0922 2224  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\system32\qmgr.dll
19:03:46.0937 2224  BITS - ok
19:03:46.0984 2224  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:03:46.0984 2224  blbdrive - ok
19:03:47.0093 2224  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:03:47.0093 2224  Bonjour Service - ok
19:03:47.0140 2224  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:03:47.0140 2224  bowser - ok
19:03:47.0187 2224  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:03:47.0187 2224  BrFiltLo - ok
19:03:47.0234 2224  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:03:47.0234 2224  BrFiltUp - ok
19:03:47.0327 2224  [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
19:03:47.0327 2224  BridgeMP - ok
19:03:47.0405 2224  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
19:03:47.0405 2224  Browser - ok
19:03:47.0468 2224  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:03:47.0468 2224  Brserid - ok
19:03:47.0499 2224  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:03:47.0499 2224  BrSerWdm - ok
19:03:47.0515 2224  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:03:47.0515 2224  BrUsbMdm - ok
19:03:47.0530 2224  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:03:47.0530 2224  BrUsbSer - ok
19:03:47.0577 2224  [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
19:03:47.0577 2224  BthEnum - ok
19:03:47.0593 2224  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:03:47.0593 2224  BTHMODEM - ok
19:03:47.0624 2224  [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
19:03:47.0639 2224  BthPan - ok
19:03:47.0686 2224  [ C2FBF6D271D9A94D839C416BF186EAD9 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
19:03:47.0686 2224  BTHPORT - ok
19:03:47.0749 2224  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
19:03:47.0749 2224  bthserv - ok
19:03:47.0764 2224  [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
19:03:47.0764 2224  BTHUSB - ok
19:03:47.0827 2224  [ 032D5459BB8AF9266CE95B18F9CD59B2 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
19:03:47.0827 2224  btwavdt - ok
19:03:47.0967 2224  catchme - ok
19:03:47.0998 2224  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:03:48.0014 2224  cdfs - ok
19:03:48.0076 2224  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:03:48.0076 2224  cdrom - ok
19:03:48.0139 2224  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:03:48.0139 2224  CertPropSvc - ok
19:03:48.0232 2224  [ 1CE0621B591913C12BECAA5B50E88BB2 ] Chiavetta Internet E353 21.6. RunOuc C:\Program Files\Chiavetta Internet E353 21.6\UpdateDog\ouc.exe
19:03:48.0232 2224  Chiavetta Internet E353 21.6. RunOuc - ok
19:03:48.0295 2224  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:03:48.0295 2224  circlass - ok
19:03:48.0341 2224  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
19:03:48.0357 2224  CLFS - ok
19:03:48.0404 2224  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:03:48.0404 2224  clr_optimization_v2.0.50727_32 - ok
19:03:48.0482 2224  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:03:48.0513 2224  clr_optimization_v4.0.30319_32 - ok
19:03:48.0575 2224  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:03:48.0575 2224  CmBatt - ok
19:03:48.0607 2224  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:03:48.0607 2224  cmdide - ok
19:03:48.0669 2224  [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG             C:\Windows\system32\Drivers\cng.sys
19:03:48.0685 2224  CNG - ok
19:03:48.0716 2224  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:03:48.0716 2224  Compbatt - ok
19:03:48.0763 2224  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:03:48.0763 2224  CompositeBus - ok
19:03:48.0794 2224  COMSysApp - ok
19:03:48.0856 2224  cpuz132 - ok
19:03:48.0903 2224  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:03:48.0903 2224  crcdisk - ok
19:03:48.0950 2224  [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
19:03:48.0965 2224  Creative ALchemy AL6 Licensing Service - ok
19:03:48.0997 2224  [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
19:03:49.0012 2224  Creative Audio Engine Licensing Service - ok
19:03:49.0059 2224  [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:03:49.0075 2224  CryptSvc - ok
19:03:49.0137 2224  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC             C:\Windows\system32\drivers\csc.sys
19:03:49.0153 2224  CSC - ok
19:03:49.0184 2224  [ 15F93B37F6801943360D9EB42485D5D3 ] CscService      C:\Windows\System32\cscsvc.dll
19:03:49.0184 2224  CscService - ok
19:03:49.0293 2224  [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
19:03:49.0309 2224  CTAudSvcService - ok
19:03:49.0355 2224  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:03:49.0371 2224  DcomLaunch - ok
19:03:49.0418 2224  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:03:49.0418 2224  defragsvc - ok
19:03:49.0496 2224  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:03:49.0496 2224  DfsC - ok
19:03:49.0543 2224  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:03:49.0558 2224  Dhcp - ok
19:03:49.0574 2224  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
19:03:49.0574 2224  discache - ok
19:03:49.0621 2224  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:03:49.0621 2224  Disk - ok
19:03:49.0667 2224  [ 73BAF270D24FE726B9CD7F80BB17A23D ] DKbFltr         C:\Windows\system32\DRIVERS\DKbFltr.sys
19:03:49.0667 2224  DKbFltr - ok
19:03:49.0699 2224  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:03:49.0714 2224  Dnscache - ok
19:03:49.0761 2224  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:03:49.0777 2224  dot3svc - ok
19:03:49.0823 2224  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
19:03:49.0839 2224  DPS - ok
19:03:49.0886 2224  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:03:49.0886 2224  drmkaud - ok
19:03:49.0948 2224  [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:03:49.0964 2224  DXGKrnl - ok
19:03:50.0011 2224  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
19:03:50.0011 2224  EapHost - ok
19:03:50.0182 2224  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
19:03:50.0276 2224  ebdrv - ok
19:03:50.0369 2224  [ F54907AA07F60AFF81E1E09E97AF98B0 ] eDataSecurity Service C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
19:03:50.0369 2224  eDataSecurity Service - ok
19:03:50.0447 2224  [ 47CE4E650D91DC095A2FDDB15631A78A ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
19:03:50.0447 2224  eeCtrl - ok
19:03:50.0494 2224  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
19:03:50.0510 2224  EFS - ok
19:03:50.0603 2224  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:03:50.0619 2224  ehRecvr - ok
19:03:50.0666 2224  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
19:03:50.0666 2224  ehSched - ok
19:03:50.0728 2224  [ E28516FED46251119ADDAF4CF33BA401 ] eLockService    C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
19:03:50.0728 2224  eLockService - ok
19:03:50.0775 2224  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:03:50.0791 2224  elxstor - ok
19:03:50.0837 2224  [ 6FBD3EC576083A4971B6AEB7BA9380EE ] eNet Service    C:\Acer\Empowering Technology\eNet\eNet Service.exe
19:03:50.0837 2224  eNet Service - ok
19:03:50.0915 2224  [ 59FCCAF915BA89DD98CADF08DA91AFEE ] eRecoveryService C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
19:03:50.0915 2224  eRecoveryService - ok
19:03:50.0962 2224  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:03:50.0978 2224  ErrDev - ok
19:03:51.0040 2224  [ 24075F034A8B10718190CB39424D40DF ] eSettingsService C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
19:03:51.0040 2224  eSettingsService - ok
19:03:51.0118 2224  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
19:03:51.0118 2224  EventSystem - ok
19:03:51.0227 2224  [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev     C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
19:03:51.0227 2224  ew_hwusbdev - ok
19:03:51.0290 2224  [ 61A973F60E94A551BA7B15F3460444FB ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys
19:03:51.0305 2224  ew_usbenumfilter - ok
19:03:51.0321 2224  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
19:03:51.0337 2224  exfat - ok
19:03:51.0383 2224  [ 73E701E0FA4D2FC7D22EFCEFF276C50A ] ezplay          C:\Windows\system32\Drivers\ezplay.sys
19:03:51.0383 2224  ezplay - ok
19:03:51.0399 2224  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:03:51.0415 2224  fastfat - ok
19:03:51.0493 2224  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
19:03:51.0508 2224  Fax - ok
19:03:51.0539 2224  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:03:51.0555 2224  fdc - ok
19:03:51.0586 2224  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
19:03:51.0602 2224  fdPHost - ok
19:03:51.0617 2224  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
19:03:51.0633 2224  FDResPub - ok
19:03:51.0649 2224  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:03:51.0649 2224  FileInfo - ok
19:03:51.0664 2224  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:03:51.0664 2224  Filetrace - ok
19:03:51.0742 2224  [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:03:51.0758 2224  FLEXnet Licensing Service - ok
19:03:51.0773 2224  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:03:51.0789 2224  flpydisk - ok
19:03:51.0820 2224  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:03:51.0820 2224  FltMgr - ok
19:03:51.0883 2224  [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache       C:\Windows\system32\FntCache.dll
19:03:51.0898 2224  FontCache - ok
19:03:51.0976 2224  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:03:51.0976 2224  FontCache3.0.0.0 - ok
19:03:52.0039 2224  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:03:52.0039 2224  FsDepends - ok
19:03:52.0070 2224  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:03:52.0085 2224  Fs_Rec - ok
19:03:52.0132 2224  [ 8A73E79089B282100B9393B644CB853B ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:03:52.0148 2224  fvevol - ok
19:03:52.0179 2224  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:03:52.0179 2224  gagp30kx - ok
19:03:52.0241 2224  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:03:52.0257 2224  gpsvc - ok
19:03:52.0413 2224  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:03:52.0413 2224  gupdate - ok
19:03:52.0444 2224  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:03:52.0444 2224  gupdatem - ok
19:03:52.0507 2224  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:03:52.0507 2224  hcw85cir - ok
19:03:52.0538 2224  [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:03:52.0553 2224  HdAudAddService - ok
19:03:52.0569 2224  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:03:52.0585 2224  HDAudBus - ok
19:03:52.0600 2224  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:03:52.0600 2224  HidBatt - ok
19:03:52.0616 2224  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:03:52.0616 2224  HidBth - ok
19:03:52.0678 2224  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:03:52.0678 2224  HidIr - ok
19:03:52.0709 2224  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\System32\hidserv.dll
19:03:52.0725 2224  hidserv - ok
19:03:52.0772 2224  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:03:52.0772 2224  HidUsb - ok
19:03:52.0834 2224  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:03:52.0850 2224  hkmsvc - ok
19:03:52.0897 2224  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:03:52.0897 2224  HomeGroupListener - ok
19:03:52.0943 2224  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:03:52.0959 2224  HomeGroupProvider - ok
19:03:52.0990 2224  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:03:52.0990 2224  HpSAMD - ok
19:03:53.0053 2224  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:03:53.0068 2224  HTTP - ok
19:03:53.0115 2224  [ 3170044AA8090F80839D3D4330BF733A ] huawei_cdcacm   C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
19:03:53.0131 2224  huawei_cdcacm - ok
19:03:53.0146 2224  [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
19:03:53.0162 2224  huawei_enumerator - ok
19:03:53.0177 2224  [ 69A103138B77AC0950EC3846E2E6F655 ] huawei_ext_ctrl C:\Windows\system32\DRIVERS\ew_juextctrl.sys
19:03:53.0193 2224  huawei_ext_ctrl - ok
19:03:53.0224 2224  [ 7DE001BAB4056257E1792AF1FCFA489F ] huawei_wwanecm  C:\Windows\system32\DRIVERS\ew_juwwanecm.sys
19:03:53.0240 2224  huawei_wwanecm - ok
19:03:53.0318 2224  [ B50E1D8627354BA8E4DF83470F1272C8 ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:03:53.0333 2224  hwdatacard - ok
19:03:53.0443 2224  [ 5EF3427AE503B5C03A48F7C9FF458B69 ] HWDeviceService.exe C:\ProgramData\DatacardService\HWDeviceService.exe
19:03:53.0443 2224  HWDeviceService.exe - ok
19:03:53.0474 2224  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:03:53.0489 2224  hwpolicy - ok
19:03:53.0521 2224  hwusbdev - ok
19:03:53.0567 2224  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:03:53.0583 2224  i8042prt - ok
19:03:53.0661 2224  [ 204A73A56751C68C6031E9D5D611EC98 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
19:03:53.0677 2224  IAANTMON - ok
19:03:53.0723 2224  [ A3CAE5D281DB4CFF7CFF8233507EE5AD ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:03:53.0723 2224  iaStorV - ok
19:03:53.0848 2224  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:03:53.0848 2224  IDriverT - ok
19:03:53.0942 2224  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:03:53.0957 2224  idsvc - ok
19:03:54.0145 2224  [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
19:03:54.0301 2224  igfx - ok
19:03:54.0363 2224  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:03:54.0363 2224  iirsp - ok
19:03:54.0441 2224  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:03:54.0472 2224  IKEEXT - ok
19:03:54.0519 2224  [ C6E5276C00EBDEB096BB5EF4B797D1B6 ] int15           C:\Windows\system32\drivers\int15.sys
19:03:54.0519 2224  int15 - ok
19:03:54.0675 2224  [ C877ECC52D2279818CFB0A7DD3DCB906 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:03:54.0800 2224  IntcAzAudAddService - ok
19:03:54.0831 2224  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:03:54.0831 2224  intelide - ok
19:03:54.0878 2224  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:03:54.0878 2224  intelppm - ok
19:03:54.0925 2224  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:03:54.0940 2224  IPBusEnum - ok
19:03:54.0971 2224  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:03:54.0987 2224  IpFilterDriver - ok
19:03:55.0049 2224  [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:03:55.0065 2224  iphlpsvc - ok
19:03:55.0096 2224  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:03:55.0112 2224  IPMIDRV - ok
19:03:55.0159 2224  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:03:55.0159 2224  IPNAT - ok
19:03:55.0190 2224  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:03:55.0190 2224  IRENUM - ok
19:03:55.0221 2224  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:03:55.0221 2224  isapnp - ok
19:03:55.0252 2224  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:03:55.0268 2224  iScsiPrt - ok
19:03:55.0299 2224  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:03:55.0299 2224  kbdclass - ok
19:03:55.0330 2224  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
19:03:55.0346 2224  kbdhid - ok
19:03:55.0346 2224  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
19:03:55.0361 2224  KeyIso - ok
19:03:55.0424 2224  [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
19:03:55.0424 2224  KMWDFILTER - ok
19:03:55.0502 2224  [ 6AB4D416508D613887BDA30F9A7891C5 ] ksaud           C:\Windows\system32\drivers\ksaud.sys
19:03:55.0517 2224  ksaud - ok
19:03:55.0564 2224  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:03:55.0564 2224  KSecDD - ok
19:03:55.0580 2224  [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:03:55.0595 2224  KSecPkg - ok
19:03:55.0642 2224  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:03:55.0673 2224  KtmRm - ok
19:03:55.0736 2224  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\System32\srvsvc.dll
19:03:55.0751 2224  LanmanServer - ok
19:03:55.0798 2224  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:03:55.0798 2224  LanmanWorkstation - ok
19:03:55.0861 2224  [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:03:55.0861 2224  LightScribeService - ok
19:03:55.0939 2224  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:03:55.0939 2224  lltdio - ok
19:03:55.0985 2224  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:03:56.0001 2224  lltdsvc - ok
19:03:56.0032 2224  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:03:56.0032 2224  lmhosts - ok
19:03:56.0079 2224  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:03:56.0079 2224  LSI_FC - ok
19:03:56.0110 2224  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:03:56.0110 2224  LSI_SAS - ok
19:03:56.0157 2224  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:03:56.0173 2224  LSI_SAS2 - ok
19:03:56.0188 2224  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:03:56.0188 2224  LSI_SCSI - ok
19:03:56.0235 2224  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
19:03:56.0235 2224  luafv - ok
19:03:56.0282 2224  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:03:56.0297 2224  Mcx2Svc - ok
19:03:56.0329 2224  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:03:56.0329 2224  megasas - ok
19:03:56.0375 2224  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:03:56.0375 2224  MegaSR - ok
19:03:56.0453 2224  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:03:56.0469 2224  Microsoft Office Groove Audit Service - ok
19:03:56.0516 2224  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
19:03:56.0531 2224  MMCSS - ok
19:03:56.0563 2224  MobilityService - ok
19:03:56.0594 2224  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
19:03:56.0594 2224  Modem - ok
19:03:56.0641 2224  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:03:56.0641 2224  monitor - ok
19:03:56.0687 2224  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:03:56.0687 2224  mouclass - ok
19:03:56.0719 2224  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:03:56.0719 2224  mouhid - ok
19:03:56.0765 2224  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:03:56.0781 2224  mountmgr - ok
19:03:56.0812 2224  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:03:56.0812 2224  mpio - ok
19:03:56.0859 2224  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:03:56.0859 2224  mpsdrv - ok
19:03:56.0937 2224  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:03:56.0968 2224  MpsSvc - ok
19:03:56.0999 2224  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:03:57.0015 2224  MRxDAV - ok
19:03:57.0062 2224  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:03:57.0062 2224  mrxsmb - ok
19:03:57.0093 2224  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:03:57.0109 2224  mrxsmb10 - ok
19:03:57.0124 2224  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:03:57.0124 2224  mrxsmb20 - ok
19:03:57.0155 2224  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
19:03:57.0155 2224  msahci - ok
19:03:57.0171 2224  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:03:57.0187 2224  msdsm - ok
19:03:57.0202 2224  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
19:03:57.0202 2224  MSDTC - ok
19:03:57.0265 2224  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:03:57.0265 2224  Msfs - ok
19:03:57.0280 2224  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:03:57.0296 2224  mshidkmdf - ok
19:03:57.0296 2224  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:03:57.0311 2224  msisadrv - ok
19:03:57.0358 2224  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:03:57.0374 2224  MSiSCSI - ok
19:03:57.0374 2224  msiserver - ok
19:03:57.0405 2224  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:03:57.0405 2224  MSKSSRV - ok
19:03:57.0436 2224  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:03:57.0436 2224  MSPCLOCK - ok
19:03:57.0452 2224  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 14/10/12 18:18

Parte 2

Codice: Seleziona tutto
19:03:57.0452 2224  MSPQM - ok
19:03:57.0483 2224  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:03:57.0483 2224  MsRPC - ok
19:03:57.0514 2224  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:03:57.0514 2224  mssmbios - ok
19:03:57.0530 2224  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:03:57.0530 2224  MSTEE - ok
19:03:57.0545 2224  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:03:57.0545 2224  MTConfig - ok
19:03:57.0561 2224  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:03:57.0561 2224  Mup - ok
19:03:57.0623 2224  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
19:03:57.0639 2224  napagent - ok
19:03:57.0701 2224  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:03:57.0717 2224  NativeWifiP - ok
19:03:57.0842 2224  [ B498A14133BD09AD0817590ACE4470AD ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
19:03:57.0857 2224  NBService - ok
19:03:57.0935 2224  [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:03:57.0951 2224  NDIS - ok
19:03:58.0029 2224  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:03:58.0029 2224  NdisCap - ok
19:03:58.0060 2224  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:03:58.0060 2224  NdisTapi - ok
19:03:58.0107 2224  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:03:58.0107 2224  Ndisuio - ok
19:03:58.0154 2224  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:03:58.0169 2224  NdisWan - ok
19:03:58.0216 2224  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:03:58.0216 2224  NDProxy - ok
19:03:58.0279 2224  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:03:58.0279 2224  NetBIOS - ok
19:03:58.0325 2224  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:03:58.0341 2224  NetBT - ok
19:03:58.0357 2224  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
19:03:58.0372 2224  Netlogon - ok
19:03:58.0435 2224  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
19:03:58.0450 2224  Netman - ok
19:03:58.0497 2224  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
19:03:58.0513 2224  netprofm - ok
19:03:58.0544 2224  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:03:58.0559 2224  NetTcpPortSharing - ok
19:03:58.0606 2224  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:03:58.0622 2224  nfrd960 - ok
19:03:58.0715 2224  [ 30E2B4F5137EF0DA2427A616CCDE6FBD ] NitroReaderDriverReadSpool2 C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
19:03:58.0715 2224  NitroReaderDriverReadSpool2 - ok
19:03:58.0778 2224  [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:03:58.0793 2224  NlaSvc - ok
19:03:58.0871 2224  [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
19:03:58.0887 2224  NMIndexingService - ok
19:03:58.0934 2224  [ F6C40E0A565EE3CE5AEEB325E10054F2 ] nmwcd           C:\Windows\system32\drivers\ccdcmb.sys
19:03:58.0934 2224  nmwcd - ok
19:03:58.0981 2224  [ 2A394E9E1FA3565E4B2FEA470FFE4D6B ] nmwcdc          C:\Windows\system32\drivers\ccdcmbo.sys
19:03:58.0981 2224  nmwcdc - ok
19:03:58.0996 2224  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:03:59.0012 2224  Npfs - ok
19:03:59.0059 2224  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
19:03:59.0059 2224  nsi - ok
19:03:59.0121 2224  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:03:59.0121 2224  nsiproxy - ok
19:03:59.0215 2224  [ 33C3093D09017CFE2E219F2472BFF6EB ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:03:59.0246 2224  Ntfs - ok
19:03:59.0277 2224  [ 7F1C1F78D709C4A54CBB46EDE7E0B48D ] NTIDrvr         C:\Windows\system32\DRIVERS\NTIDrvr.sys
19:03:59.0277 2224  NTIDrvr - ok
19:03:59.0324 2224  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
19:03:59.0324 2224  Null - ok
19:03:59.0355 2224  [ AF2EEC9580C1D32FB7EAF105D9784061 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:03:59.0355 2224  nvraid - ok
19:03:59.0386 2224  [ 9283C58EBAA2618F93482EB5DABCEC82 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:03:59.0386 2224  nvstor - ok
19:03:59.0417 2224  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:03:59.0417 2224  nv_agp - ok
19:03:59.0511 2224  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:03:59.0527 2224  odserv - ok
19:03:59.0573 2224  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:03:59.0573 2224  ohci1394 - ok
19:03:59.0605 2224  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:03:59.0620 2224  ose - ok
19:03:59.0667 2224  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:03:59.0683 2224  p2pimsvc - ok
19:03:59.0714 2224  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:03:59.0714 2224  p2psvc - ok
19:03:59.0776 2224  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:03:59.0776 2224  Parport - ok
19:03:59.0823 2224  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:03:59.0823 2224  partmgr - ok
19:03:59.0839 2224  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
19:03:59.0854 2224  Parvdm - ok
19:03:59.0885 2224  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:03:59.0917 2224  PcaSvc - ok
19:03:59.0963 2224  [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfd.sys
19:03:59.0963 2224  pccsmcfd - ok
19:03:59.0995 2224  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
19:04:00.0010 2224  pci - ok
19:04:00.0026 2224  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
19:04:00.0026 2224  pciide - ok
19:04:00.0088 2224  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:04:00.0088 2224  pcmcia - ok
19:04:00.0119 2224  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
19:04:00.0119 2224  pcw - ok
19:04:00.0151 2224  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:04:00.0166 2224  PEAUTH - ok
19:04:00.0260 2224  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
19:04:00.0291 2224  PeerDistSvc - ok
19:04:00.0400 2224  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
19:04:00.0431 2224  pla - ok
19:04:00.0478 2224  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:04:00.0494 2224  PlugPlay - ok
19:04:00.0509 2224  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:04:00.0525 2224  PNRPAutoReg - ok
19:04:00.0556 2224  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:04:00.0556 2224  PNRPsvc - ok
19:04:00.0619 2224  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:04:00.0634 2224  PolicyAgent - ok
19:04:00.0697 2224  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
19:04:00.0697 2224  Power - ok
19:04:00.0743 2224  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:04:00.0743 2224  PptpMiniport - ok
19:04:00.0759 2224  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:04:00.0759 2224  Processor - ok
19:04:00.0790 2224  [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:04:00.0806 2224  ProfSvc - ok
19:04:00.0837 2224  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:04:00.0837 2224  ProtectedStorage - ok
19:04:00.0868 2224  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:04:00.0884 2224  Psched - ok
19:04:00.0931 2224  [ E801D5CC24E1CF18FA87D24D7074B876 ] PSDFilter       C:\Windows\system32\DRIVERS\psdfilter.sys
19:04:00.0931 2224  PSDFilter - ok
19:04:00.0962 2224  [ 24B5E3429F7F0E779FC2E6E36A0A5F73 ] PSDNServ        C:\Windows\system32\drivers\PSDNServ.sys
19:04:00.0962 2224  PSDNServ - ok
19:04:00.0993 2224  [ 01CBFD08C0E8A6106BB26FCDA297154E ] psdvdisk        C:\Windows\system32\drivers\psdvdisk.sys
19:04:00.0993 2224  psdvdisk - ok
19:04:01.0055 2224  [ D970470F8F39470BDAE94D313A1CCDCE ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
19:04:01.0055 2224  PxHelp20 - ok
19:04:01.0133 2224  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:04:01.0165 2224  ql2300 - ok
19:04:01.0211 2224  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:04:01.0211 2224  ql40xx - ok
19:04:01.0274 2224  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
19:04:01.0289 2224  QWAVE - ok
19:04:01.0305 2224  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:04:01.0321 2224  QWAVEdrv - ok
19:04:01.0336 2224  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:04:01.0336 2224  RasAcd - ok
19:04:01.0414 2224  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:04:01.0414 2224  RasAgileVpn - ok
19:04:01.0430 2224  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
19:04:01.0430 2224  RasAuto - ok
19:04:01.0477 2224  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:04:01.0492 2224  Rasl2tp - ok
19:04:01.0555 2224  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
19:04:01.0570 2224  RasMan - ok
19:04:01.0586 2224  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:04:01.0601 2224  RasPppoe - ok
19:04:01.0633 2224  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:04:01.0633 2224  RasSstp - ok
19:04:01.0664 2224  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:04:01.0664 2224  rdbss - ok
19:04:01.0711 2224  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:04:01.0711 2224  rdpbus - ok
19:04:01.0757 2224  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:04:01.0757 2224  RDPCDD - ok
19:04:01.0804 2224  [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
19:04:01.0804 2224  RDPDR - ok
19:04:01.0835 2224  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:04:01.0835 2224  RDPENCDD - ok
19:04:01.0851 2224  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:04:01.0851 2224  RDPREFMP - ok
19:04:01.0929 2224  [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:04:01.0929 2224  RdpVideoMiniport - ok
19:04:01.0976 2224  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:04:01.0991 2224  RDPWD - ok
19:04:02.0038 2224  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:04:02.0054 2224  rdyboost - ok
19:04:02.0101 2224  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:04:02.0101 2224  RemoteAccess - ok
19:04:02.0147 2224  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:04:02.0163 2224  RemoteRegistry - ok
19:04:02.0210 2224  [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
19:04:02.0210 2224  RFCOMM - ok
19:04:02.0319 2224  [ 7728B6AEDC83BC0DEFD0A53371D4613B ] RichVideo       C:\Program Files\CyberLink\Shared Files\RichVideo.exe
19:04:02.0319 2224  RichVideo - ok
19:04:02.0381 2224  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:04:02.0397 2224  RpcEptMapper - ok
19:04:02.0444 2224  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
19:04:02.0459 2224  RpcLocator - ok
19:04:02.0522 2224  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
19:04:02.0537 2224  RpcSs - ok
19:04:02.0584 2224  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:04:02.0584 2224  rspndr - ok
19:04:02.0631 2224  [ F1ED9FFA59C369E72BC53A7631346F61 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:04:02.0631 2224  RSUSBSTOR - ok
19:04:02.0678 2224  [ 4F31CFDEBD0A5BC27D45E7EBFEFAAF6F ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS
19:04:02.0678 2224  RTSTOR - ok
19:04:02.0709 2224  [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
19:04:02.0709 2224  s3cap - ok
19:04:02.0725 2224  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
19:04:02.0740 2224  SamSs - ok
19:04:02.0787 2224  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:04:02.0803 2224  sbp2port - ok
19:04:02.0834 2224  SBRE - ok
19:04:02.0881 2224  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:04:02.0912 2224  SCardSvr - ok
19:04:02.0959 2224  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:04:02.0959 2224  scfilter - ok
19:04:03.0037 2224  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
19:04:03.0052 2224  Schedule - ok
19:04:03.0099 2224  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:04:03.0099 2224  SCPolicySvc - ok
19:04:03.0146 2224  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:04:03.0161 2224  SDRSVC - ok
19:04:03.0193 2224  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:04:03.0193 2224  secdrv - ok
19:04:03.0239 2224  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
19:04:03.0255 2224  seclogon - ok
19:04:03.0302 2224  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\system32\sens.dll
19:04:03.0302 2224  SENS - ok
19:04:03.0349 2224  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:04:03.0364 2224  SensrSvc - ok
19:04:03.0380 2224  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:04:03.0380 2224  Serenum - ok
19:04:03.0395 2224  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:04:03.0395 2224  Serial - ok
19:04:03.0411 2224  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
19:04:03.0411 2224  sermouse - ok
19:04:03.0520 2224  [ E90CE237E99C5D26CB3872318A7799D0 ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:04:03.0536 2224  ServiceLayer - ok
19:04:03.0598 2224  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:04:03.0598 2224  SessionEnv - ok
19:04:03.0629 2224  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:04:03.0645 2224  sffdisk - ok
19:04:03.0645 2224  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:04:03.0645 2224  sffp_mmc - ok
19:04:03.0661 2224  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:04:03.0661 2224  sffp_sd - ok
19:04:03.0707 2224  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:04:03.0707 2224  sfloppy - ok
19:04:03.0770 2224  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:04:03.0785 2224  SharedAccess - ok
19:04:03.0832 2224  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:04:03.0848 2224  ShellHWDetection - ok
19:04:03.0879 2224  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
19:04:03.0879 2224  sisagp - ok
19:04:03.0941 2224  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:04:03.0941 2224  SiSRaid2 - ok
19:04:03.0941 2224  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
19:04:03.0957 2224  SiSRaid4 - ok
19:04:04.0129 2224  [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:04:04.0160 2224  Skype C2C Service - ok
19:04:04.0269 2224  [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
19:04:04.0269 2224  SkypeUpdate - ok
19:04:04.0300 2224  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:04:04.0316 2224  Smb - ok
19:04:04.0394 2224  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:04:04.0409 2224  SNMPTRAP - ok
19:04:04.0519 2224  [ EF1F141A83C61503333569D2862F3999 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
19:04:04.0565 2224  SNP2UVC - ok
19:04:04.0612 2224  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:04:04.0612 2224  spldr - ok
19:04:04.0659 2224  [ 866A43013535DC8587C258E43579C764 ] Spooler         C:\Windows\System32\spoolsv.exe
19:04:04.0675 2224  Spooler - ok
19:04:04.0799 2224  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
19:04:04.0940 2224  sppsvc - ok
19:04:04.0987 2224  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:04:04.0987 2224  sppuinotify - ok
19:04:05.0065 2224  [ A199171385BE17973FD800FA91F8F78A ] sptd            C:\Windows\system32\Drivers\sptd.sys
19:04:05.0065 2224  Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: A199171385BE17973FD800FA91F8F78A
19:04:05.0080 2224  sptd ( LockedFile.Multi.Generic ) - warning
19:04:05.0080 2224  sptd - detected LockedFile.Multi.Generic (1)
19:04:05.0127 2224  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:04:05.0127 2224  srv - ok
19:04:05.0158 2224  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:04:05.0158 2224  srv2 - ok
19:04:05.0189 2224  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:04:05.0189 2224  srvnet - ok
19:04:05.0221 2224  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:04:05.0252 2224  SSDPSRV - ok
19:04:05.0267 2224  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:04:05.0283 2224  SstpSvc - ok
19:04:05.0345 2224  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
19:04:05.0345 2224  stexstor - ok
19:04:05.0408 2224  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
19:04:05.0439 2224  StiSvc - ok
19:04:05.0455 2224  [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
19:04:05.0470 2224  storflt - ok
19:04:05.0501 2224  [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
19:04:05.0501 2224  storvsc - ok
19:04:05.0517 2224  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:04:05.0517 2224  swenum - ok
19:04:05.0564 2224  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
19:04:05.0595 2224  swprv - ok
19:04:05.0611 2224  Synth3dVsc - ok
19:04:05.0673 2224  [ C5F25D490D0915732508FD421BF76D93 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:04:05.0673 2224  SynTP - ok
19:04:05.0751 2224  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
19:04:05.0782 2224  SysMain - ok
19:04:05.0829 2224  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:04:05.0860 2224  TabletInputService - ok
19:04:05.0907 2224  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:04:05.0923 2224  TapiSrv - ok
19:04:05.0969 2224  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
19:04:05.0985 2224  TBS - ok
19:04:06.0079 2224  [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:04:06.0110 2224  Tcpip - ok
19:04:06.0157 2224  [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:04:06.0172 2224  TCPIP6 - ok
19:04:06.0203 2224  [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:04:06.0219 2224  tcpipreg - ok
19:04:06.0266 2224  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:04:06.0266 2224  TDPIPE - ok
19:04:06.0313 2224  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:04:06.0313 2224  TDTCP - ok
19:04:06.0375 2224  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:04:06.0375 2224  tdx - ok
19:04:06.0406 2224  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:04:06.0422 2224  TermDD - ok
19:04:06.0469 2224  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
19:04:06.0484 2224  TermService - ok
19:04:06.0531 2224  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
19:04:06.0531 2224  Themes - ok
19:04:06.0547 2224  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
19:04:06.0547 2224  THREADORDER - ok
19:04:06.0593 2224  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
19:04:06.0593 2224  TrkWks - ok
19:04:06.0671 2224  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:04:06.0671 2224  TrustedInstaller - ok
19:04:06.0734 2224  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:04:06.0734 2224  tssecsrv - ok
19:04:06.0781 2224  [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:04:06.0796 2224  TsUsbFlt - ok
19:04:06.0796 2224  tsusbhub - ok
19:04:06.0890 2224  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:04:06.0890 2224  tunnel - ok
19:04:06.0937 2224  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
19:04:06.0937 2224  uagp35 - ok
19:04:06.0968 2224  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:04:06.0983 2224  udfs - ok
19:04:07.0030 2224  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:04:07.0030 2224  UI0Detect - ok
19:04:07.0077 2224  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:04:07.0077 2224  uliagpkx - ok
19:04:07.0108 2224  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\drivers\umbus.sys
19:04:07.0108 2224  umbus - ok
19:04:07.0171 2224  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
19:04:07.0171 2224  UmPass - ok
19:04:07.0233 2224  [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService    C:\Windows\System32\umrdp.dll
19:04:07.0249 2224  UmRdpService - ok
19:04:07.0311 2224  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
19:04:07.0327 2224  upnphost - ok
19:04:07.0389 2224  [ 47F5F9D837D80FFD5882A14DB9DA0A67 ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
19:04:07.0389 2224  upperdev - ok
19:04:07.0436 2224  [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
19:04:07.0436 2224  USBAAPL - ok
19:04:07.0483 2224  [ 7E72E7D7E0757D59481D530FD2B0BFAE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:04:07.0483 2224  usbccgp - ok
19:04:07.0514 2224  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:04:07.0514 2224  usbcir - ok
19:04:07.0529 2224  [ CFBCE999C057D78979A181C9C60F208E ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:04:07.0529 2224  usbehci - ok
19:04:07.0576 2224  [ 9D22AAD9AC6A07C691A1113E5F860868 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
19:04:07.0576 2224  usbhub - ok
19:04:07.0623 2224  [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
19:04:07.0623 2224  usbohci - ok
19:04:07.0654 2224  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:04:07.0654 2224  usbprint - ok
19:04:07.0717 2224  [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:04:07.0717 2224  usbscan - ok
19:04:07.0763 2224  [ 31181DE6190B39FC8007DFFD1A48FFD6 ] usbser          C:\Windows\system32\drivers\usbser.sys
19:04:07.0763 2224  usbser - ok
19:04:07.0795 2224  [ E44F0D17BE0908B58DCC99CCB99C6C32 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
19:04:07.0795 2224  UsbserFilt - ok
19:04:07.0841 2224  [ BF63EBFC6979FEFB2BC03DF7989A0C1A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:04:07.0841 2224  USBSTOR - ok
19:04:07.0873 2224  [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:04:07.0873 2224  usbuhci - ok
19:04:07.0919 2224  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
19:04:07.0935 2224  UxSms - ok
19:04:07.0935 2224  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
19:04:07.0951 2224  VaultSvc - ok
19:04:07.0966 2224  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:04:07.0966 2224  vdrvroot - ok
19:04:08.0013 2224  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
19:04:08.0029 2224  vds - ok
19:04:08.0091 2224  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:04:08.0091 2224  vga - ok
19:04:08.0107 2224  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:04:08.0107 2224  VgaSave - ok
19:04:08.0122 2224  VGPU - ok
19:04:08.0153 2224  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:04:08.0153 2224  vhdmp - ok
19:04:08.0200 2224  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
19:04:08.0200 2224  viaagp - ok
19:04:08.0231 2224  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
19:04:08.0231 2224  ViaC7 - ok
19:04:08.0263 2224  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
19:04:08.0263 2224  viaide - ok
19:04:08.0294 2224  [ C2F2911156FDC7817C52829C86DA494E ] vmbus           C:\Windows\system32\drivers\vmbus.sys
19:04:08.0294 2224  vmbus - ok
19:04:08.0309 2224  [ D4D77455211E204F370D08F4963063CE ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
19:04:08.0309 2224  VMBusHID - ok
19:04:08.0325 2224  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:04:08.0325 2224  volmgr - ok
19:04:08.0387 2224  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:04:08.0403 2224  volmgrx - ok
19:04:08.0434 2224  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:04:08.0434 2224  volsnap - ok
19:04:08.0465 2224  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
19:04:08.0481 2224  vsmraid - ok
19:04:08.0559 2224  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
19:04:08.0590 2224  VSS - ok
19:04:08.0637 2224  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:04:08.0637 2224  vwifibus - ok
19:04:08.0684 2224  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:04:08.0684 2224  vwififlt - ok
19:04:08.0731 2224  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
19:04:08.0762 2224  W32Time - ok
19:04:08.0777 2224  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
19:04:08.0793 2224  WacomPen - ok
19:04:08.0824 2224  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:04:08.0824 2224  WANARP - ok
19:04:08.0840 2224  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:04:08.0840 2224  Wanarpv6 - ok
19:04:08.0933 2224  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:04:08.0965 2224  WatAdminSvc - ok
19:04:09.0043 2224  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
19:04:09.0074 2224  wbengine - ok
19:04:09.0121 2224  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:04:09.0136 2224  WbioSrvc - ok
19:04:09.0183 2224  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:04:09.0199 2224  wcncsvc - ok
19:04:09.0230 2224  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:04:09.0245 2224  WcsPlugInService - ok
19:04:09.0277 2224  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
19:04:09.0277 2224  Wd - ok
19:04:09.0308 2224  [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:04:09.0323 2224  Wdf01000 - ok
19:04:09.0355 2224  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:04:09.0370 2224  WdiServiceHost - ok
19:04:09.0370 2224  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:04:09.0386 2224  WdiSystemHost - ok
19:04:09.0448 2224  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
19:04:09.0464 2224  WebClient - ok
19:04:09.0479 2224  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:04:09.0495 2224  Wecsvc - ok
19:04:09.0511 2224  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:04:09.0526 2224  wercplsupport - ok
19:04:09.0557 2224  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:04:09.0557 2224  WerSvc - ok
19:04:09.0604 2224  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:04:09.0604 2224  WfpLwf - ok
19:04:09.0620 2224  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:04:09.0635 2224  WIMMount - ok
19:04:09.0729 2224  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
19:04:09.0745 2224  WinDefend - ok
19:04:09.0776 2224  WinHttpAutoProxySvc - ok
19:04:09.0854 2224  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:04:09.0869 2224  Winmgmt - ok
19:04:09.0947 2224  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
19:04:09.0979 2224  WinRM - ok
19:04:10.0025 2224  [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:04:10.0025 2224  WinUsb - ok
19:04:10.0088 2224  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:04:10.0103 2224  Wlansvc - ok
19:04:10.0150 2224  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:04:10.0150 2224  WmiAcpi - ok
19:04:10.0213 2224  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:04:10.0213 2224  wmiApSrv - ok
19:04:10.0306 2224  [ F778EE748D7D88FEAF528EF89C589BAE ] WMIService      C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
19:04:10.0306 2224  WMIService - ok
19:04:10.0447 2224  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
19:04:10.0478 2224  WMPNetworkSvc - ok
19:04:10.0525 2224  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:04:10.0540 2224  WPCSvc - ok
19:04:10.0603 2224  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:04:10.0618 2224  WPDBusEnum - ok
19:04:10.0665 2224  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:04:10.0665 2224  ws2ifsl - ok
19:04:10.0696 2224  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\system32\wscsvc.dll
19:04:10.0696 2224  wscsvc - ok
19:04:10.0712 2224  WSearch - ok
19:04:10.0821 2224  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
19:04:10.0852 2224  wuauserv - ok
19:04:10.0915 2224  [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:04:10.0915 2224  WudfPf - ok
19:04:10.0961 2224  [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:04:10.0961 2224  WUDFRd - ok
19:04:11.0008 2224  [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:04:11.0039 2224  wudfsvc - ok
19:04:11.0086 2224  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:04:11.0117 2224  WwanSvc - ok
19:04:11.0227 2224  [ 8903C6979EA677A9AF3D36E0D3709203 ] {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} C:\Program Files\Acer Arcade Deluxe\Play Movie\000.fcl
19:04:11.0227 2224  {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
19:04:11.0305 2224  ================ Scan global ===============================
19:04:11.0336 2224  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
19:04:11.0367 2224  [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
19:04:11.0398 2224  [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
19:04:11.0445 2224  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
19:04:11.0507 2224  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
19:04:11.0539 2224  [Global] - ok
19:04:11.0539 2224  ================ Scan MBR ==================================
19:04:11.0554 2224  [ E90AA6BE22E8268A3764331202F9CFB0 ] \Device\Harddisk0\DR0
19:04:14.0659 2224  \Device\Harddisk0\DR0 - ok
19:04:14.0659 2224  ================ Scan VBR ==================================
19:04:14.0659 2224  [ CE249894491A430FED058DC7119F3DAE ] \Device\Harddisk0\DR0\Partition1
19:04:14.0659 2224  \Device\Harddisk0\DR0\Partition1 - ok
19:04:14.0674 2224  [ CE62C254904CAB7757E868390DE8ABD9 ] \Device\Harddisk0\DR0\Partition2
19:04:14.0674 2224  \Device\Harddisk0\DR0\Partition2 - ok
19:04:14.0674 2224  ============================================================
19:04:14.0674 2224  Scan finished
19:04:14.0674 2224  ============================================================
19:04:14.0705 4652  Detected object count: 1
19:04:14.0705 4652  Actual detected object count: 1
19:04:46.0654 4652  sptd ( LockedFile.Multi.Generic ) - skipped by user
19:04:46.0654 4652  sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:06:56.0571 5256  Deinitialize success
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 15/10/12 10:08

Il log è pulito.
Se mi confermi che quelli eseguibili sono ok, dimmi con che browser navighi e si aprono le pagine pubblicitarie.

Francesco
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 15/10/12 11:08

Ciao Francesco ti confermo che gli eseguibili, a detta del sito virustotal, sono ok. :)

Per navigare utilizzo Internet Explorer da sempre... :-? questione di abitudine... :neutral:
Le pagine mi si aprono ogni qualvolta io clicchi col mouse in un combo per scriverci dentro. Per esempio mi si apre quando clicco nel combo della pagina di google per fare una ricerca, mi si aprono quando clicco per fare un login per leggere la posta e mi si aprono anche quando mi loggo qui... :D
Stamane ho provato a non chiudere le pagine "parassite" per vedere cosa succedeva, ho pensato che dopo due o tre non me ne sarebbero più aperte, invece dopo 20 minuti di navigazione, mi sono ritrovato con 12 pagine indesiderate... :evil: oltretutto si aprono e si parcheggiano in modo del tutto anonimo... :evil: con la conseguenza che ti rallentano la navigazione. :cry:

Per la lentezza dei video di youtube è una questione di aggiornamento? :?:

NB Grazie per tutto l'aiuto che mi hai dato e che ancora mi stai dando, evitandomi di formattare mi hai fatto davvero un grandissimo regalo. :)
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 15/10/12 13:27

Reimposta i valori originali dei Browser

Per reimpostare Internet Explorer:

● apri il Pannello di controllo
● clicca sull'icona Opzioni Internet
● individua ed apri il tab Avanzate
● clicca, in basso, sul pulsante Reimposta...
● conferma cliccando su Reimposta

Per youtube, hai l'ultimo flash player rilasciato? (12 se non vado errato)
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 15/10/12 18:34

Ho fatto ciò che mi hai detto, ma purtroppo le pagine continuano ad apparire... :evil:
Per quanto riguarda la versione di flash player ho la 11.402.872 e pare essere l'ultima... :roll: ho controllato sul sito adobe. :mmmh:
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 16/10/12 13:06

Scarica ed installa HitmanPro: http://www.surfright.nl/en/downloads
● scegli la versione adatta al tuo Sistema Operativo (32Bit o 64Bit)
● una volta lanciato, nella finestra principale clicca su Impostazioni
● clicca su Licenza ed attiva la licenza
● clicca su scansione di default (consigliato)
● al termine della scansione ti verrà mostrato un riepilogo: nella finestra di riepilogo, in basso a sinistra, avrai modo di salvare il Report generato che dovrai allegare
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 16/10/12 14:36

Eccolo!
Codice: Seleziona tutto
[code]
HitmanPro 3.6.2.171
www.hitmanpro.com

   Computer name . . . . : NOTEBOOK
   Windows . . . . . . . : 6.1.1.7601.X86/2
   User name . . . . . . : NOTEBOOK\Primiano
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (24 days left)

   Scan date . . . . . . : 2012-10-16 15:25:02
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 5m 12s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 0

   Objects scanned . . . : 1.729.496
   Files scanned . . . . : 40.991
   Remnants scanned  . . : 570.566 files / 1.117.939 keys

Miniport ____________________________________________________________________

   Primary
      DriverObject . . . : 85F71670
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 8525A1F8 +0
   Solution
      DriverObject . . . : 85F71670
      DriverName . . . . : \Driver\atapi
      DriverPath . . . . : \SystemRoot\system32\drivers\atapi.sys
      StartIo  . . . . . : 00000000 +0
      IRP_MJ_SCSI  . . . : 8933344E \SystemRoot\system32\drivers\ataport.SYS+25678


[/code]
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 16/10/12 15:03

Sembrerebbe tutto a posto.
Prova a cambiare Browser, con Firefox ricevi gli stessi problemi?

Allega un log aggiornato di Hijackthis.
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 16/10/12 20:14

Sinceramente non ho mai usato firefox, ma ora lo scarico e proverò a utilizzarlo, così potremo appurare se si comporta allo stesso modo. :mmmh:
Intanto ti allego l'ultimo log di hijackthis
Codice: Seleziona tutto
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21.10.25, on 16/10/2012
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://it.rd.yahoo.com/customize/ycomp/defaults/su/*http://it.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: PDF Suite Helper - {1AD61D5B-58A3-4592-9B34-DC84688FF805} - C:\Program Files\PDF Suite\PDFIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: AddLyrics - {B40720CF-4DDD-40DC-86EA-26404E77C1E8} - C:\Program Files\AddLyrics\AddLyrics.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: PDF Suite Toolbar - {261F6A8B-7AAF-4BF5-8552-6610F4D67819} - C:\Program Files\PDF Suite\PDFIEPlugin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\Windows\system32\Msdxm6.ocx
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [HW_OPENEYE_OUC_Chiavetta Internet E353 21.6] "C:\Program Files\Chiavetta Internet E353 21.6\UpdateDog\ouc.exe"
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.lafilatelia.it
O17 - HKLM\System\CCS\Services\Tcpip\..\{EA8DABAB-FEBF-44AF-B332-B92ECBA02DD9}: NameServer = 62.13.173.92 62.13.173.93
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ABBYY FineReader 11 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.11.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service:  Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Chiavetta Internet E353 21.6. OUC (Chiavetta Internet E353 21.6. RunOuc) - Unknown owner - C:\Program Files\Chiavetta Internet E353 21.6\UpdateDog\ouc.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe

--
End of file - 8617 bytes
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 17/10/12 13:04

Esegui la procedura descritta, rigorosamente nel suo ordine, al fine di:
guadagnare spazio su disco
ottimizzare le prestazioni del sistema
mantenere il corretto funzionamento di Windows

Ottimizzazione - post rimozione malware

Il mio consiglio è quello di stampare questa procedura, perché tornerà senz'altro utile in futuro, a te ed ai tuoi conoscenti: condividila pure con loro, non ha controindicazioni di alcun genere ed andrebbe eseguita dopo aver rimosso tutte le infezione presenti nel sistema.
Queste operazioni infatti, andrebbero eseguite almeno una volta al mese (per utilizzatori di Computer assidui il tempo è ridotto a due settimane, eccetto per lo Scandisk, punto 13. della procedura).

Tieni presente che la maggior parte delle chiavi di registro corrotte e danneggiate non si possono ripristinare e riparare correttamente, e l'installazione e la disinstallazione continua dei programmi può causare crash di sistema e fastidiose schermate blu.

Una formattazione consente di ottenere dei massimi benefici, in termini di velocità, stabilità e prestazioni: questa procedura si avvicina maggiormente ai risultati ottenuti tramite una formattazione del disco fisso.

1. Rimuovi le voci di avvio non necessarie

Questa procedura è puramente facoltativa: questi sono programmi che si avviano quando accendi il computer, ma puoi eseguirli una volta caricato il sistema operativo.
Togliendo questi software dall'esecuzione automatica, l'avvio sarà più veloce ed il computer funzionerà meglio.

Avvia HiJackThis e:
● clicca sul pulsante Do a system scan only/Scan
metti la spunta accanto ad ogni singola voce indicata sotto
● spuntate le voci, termina tutti i programmi attivi, comprese le pagine Internet
● clicca, in basso a sinistra, sul pulsante Fix checked; potrebbe comparire un'ulteriore finestra durante il fix delle voci: clicca su
Queste sono le voci da fixare:

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://it.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O15 - Trusted Zone: http://*.lafilatelia.it
O17 - HKLM\System\CCS\Services\Tcpip\..\{EA8DABAB-FEBF-44AF-B332-B92ECBA02DD9}: NameServer = 62.13.173.92 62.13.173.93

Nota: per lanciare HiJackThis su Windows Vista e Windows 7, clicca con il tasto destro del mouse sulla icona di HiJackThis (rappresentata da un omino vestito di rosso con una lente di ingrandimento, nota il file eseguibile in grassetto sotto) e, dal menù contestuale, scegli la voce Esegui come Amministratore: conferma la richiesta proposta

Il percorso da seguire per trovare l'eseguibile del programma è: Start/ Computer/ Programmi/ Trend Micro/ HiJackThis/ HiJackThis.exe

******************************

2. Disinstalla i programmi inutilizzati, e tutte le Toolbar

Procedura per Windows XP:
● clicca sul pulsante Start
● apri il Pannello di controllo
● clicca su Installazione applicazioni
● seleziona il programma da disinstallare, e clicca sul tasto Cambia/Rimuovi: partirà la procedura di disinstallazione

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● apri il Pannello di controllo
● clicca su Programmi, e su Programmi e funzionalità
● seleziona il programma da disinstallare, e clicca sul tasto Cambia/Disinstalla: partirà la procedura di disinstallazione

******************************

3. Disinstalla dal Pannello di controllo, in particolare, le seguenti applicazioni:
Adobe Flash Player
Adobe Reader
Java (tutte le versioni installate)

Scarica ed installa, dai siti proposti, le versioni aggiornate dei programmi appena disinstallati:
Adobe Flash Player: http://get.adobe.com/it/flashplayer
Adobe Reader : http://get.adobe.com/it/reader
Java: http://java.com/it/download/index.jsp

Note - riguardo alla procedura:
non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce
● alternativamente ad Abobe Reader, software pesante e soprattutto soggetto a vulnerabilità sfruttabili dai malware presenti nella rete per infettare il sistema, puoi scaricare il veloce e leggerissimo Sumatra PDF Reader, che nulla ha da invidiare al prodotto di casa Adobe: http://blog.kowalczyk.info/software/sum ... eader.html

******************************

4. Disattiva il Ripristino Configurazione di Sistema

Procedura per Windows XP:
● clicca sul pulsante Start
● tasto destro del mouse sull'icona Risorse del computer
● seleziona, dal menù a tendina, la voce Proprietà
● apri la scheda Ripristino configurazione di sistema
● metti la spunta alla voce Disattiva Ripristino configurazione di sistema su tutte le unità
● conferma la modifica, con Applica e OK
riavvia il sistema

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● tasto destro del mouse sull'icona Computer
● seleziona, dal menù a tendina, la voce Proprietà
● clicca, nel menù a sinistra, su Protezione sistema; compare un avviso relativo al Controllo Account Utente: clicca su Continua
● deseleziona la casella di controllo visualizzata accanto al Disco Locale C:
● clicca sul pulsante OK
● conferma la modifica apportata, cliccando sul pulsante Applica e OK
riavvia il sistema

******************************

5. Svuota del suo contenuto la cartella Prefetch

Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Risorse del computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella Prefetch
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● clicca su Computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella Prefetch
elimina tutte le voci conservate al suo interno, tranne il file Layout.ini: fai attenzione però, a non eliminare la cartella

Nota - riguardo alla procedura:
● la cartella Prefetch contiene i file che il sistema operativo esegue; un'operazione di prefetch consiste nel rendere immediatamente disponibili, nella memoria cache, i file utilizzati più spesso e quelli necessari per il processo di avvio del personal computer.
Il riavvio successivo sarà un po' lento, ma quelli seguenti saranno senza dubbio più veloci

******************************

6. Svuota del suo contenuto la cartella Download

Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Risorse del computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella SoftwareDistribution
● individua ed apri la cartella Download
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● clicca su Computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella SoftwareDistribution
● individua ed apri la cartella Download
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Nota - riguardo alla procedura:
● la cartella Download contiene i file di installazione degli aggiornamenti di Windows, che possono essere eliminati senza problemi per recuperare spazio su disco e risolvere fastidiosi problemi di aggiornamenti

******************************

7. Scarica TFC by OldTimer: http://oldtimer.geekstogo.com/TFC.exe
● posiziona il tool sul Desktop
termina tutti i programmi attivi, comprese le pagine Internet
● avvia il tool con un doppio click
● clicca, in basso a sinistra, sul pulsante Start
scomparirà, per qualche istante, il Desktop: nulla di cui preoccuparsi
● attendi pazientemente il termine delle operazioni
● clicca, in basso a destra, sul pulsante Exit
● una volta terminate le operazioni, chiudi il programma

Nota: per eseguire correttamente TFC by OldTimer su Windows Vista e Windows Seven, clicca con il tasto destro del mouse sull'icona del programma e, dal menù contestuale, scegli la voce Esegui come Amministratore: conferma la richiesta proposta

******************************

8. Scarica ed installa CCleaner: http://www.piriform.com/ccleaner/download
Nota - durante l'installazione: non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce

Una volta installato ed avviato, esegui queste operazioni:
● nel menù di sinistra, clicca su Opzioni
● nella finestra successiva, clicca su Impostazioni
● spunta la voce Tipo cancellazione: Sicura (lenta) e nel menù a tendina seleziona la voce DOD 5220.22-M (3 passaggi)
● clicca su Avanzate
● togli la spunta alla voce Cancella file in Windows Temp solo se più vecchi di 24 ore e alla voce Chiedi se salvare un backup dei problemi del registro
● clicca, nel menù a sinistra, su Pulizia: nella sezione Avanzate, metti la spunta alle voci Vecchi dati Prefetch, Disinstallatori Aggiornamenti di Windows e File Log IIS
● apri, in alto, il tab Applicazioni: spunta tutte le voci presenti
termina tutti i programmi attivi, comprese le pagine Internet
● clicca, in basso a sinistra, sul bottone Analizza, per cercare i file temporanei
● clicca, in basso a destra, sul bottone Avvia Pulizia, per avviare la pulizia dei file temporanei
● nella finestra che compare, metti la spunta alla voce Non mostrare più questo messaggio, e conferma cliccando sul pulsante OK
● terminata la pulizia, nel menù a sinistra, clicca sulla voce Registro
● clicca sul bottone Trova Problemi, per avviare la ricerca delle voci di registro corrotte e danneggiate
● clicca sul bottone Ripara selezionati... e prosegui con la riparazione: la pulizia del registro ripetila più volte, fino a quando non verranno più rilevati problemi da correggere
● una volta terminate le operazioni, chiudi il programma

Nota: in Windows Seven, manca la voce Disinstallatori Aggiornamenti di Windows, e la voce Tipo cancellazione: Sicura (lenta) DOD 5220.22-M (3 passaggi) è stata sostituita dalla dicitura Sovrascrittura avanzata 83 passaggi

******************************

9. Lancia Hijackthis e pulisci gli ADS (esclusivamente su partizioni formattate in NTFS):
● clicca sulla voce Open the Misc Tools section
● clicca su Open ADS Spy..., nel tab System tools
● in alto, togli la spunta alla voce Quick scan (Windows base folder only)
● clicca, in basso, sul pulsante Scan
● attendi pazientemente il termine della scansione
● se venissero rilevati molti ADS, clicca con il tasto destro sulla prima casellina, e scegli la voce Select all
● clicca, in basso, sul pulsante Remove selected: conferma con
● una volta terminate le operazioni, chiudi il programma

Nota - riguardo al programma:
● in caso avessi un sistema operativo a 64 Bit, tralascia la procedura. Fai click qui per scoprire se il tuo sistema operativo è a 32 o 64 Bit: http://support.microsoft.com/kb/827218/it

******************************

10. Scarica OTC by OldTimer: http://oldtimer.geekstogo.com/OTC.exe
● posiziona il tool sul Desktop
● chiudi tutti i programmi attivi
● avvia il tool con un doppio click
● clicca sul pulsante CleanUp!
● il programma chiede di riavviare il sistema: consenti, cliccando su Yes per due volte

Note - riguardo al programma:
OTC by OldTimer va eseguito solamente nel caso tu abbia utilizzato in precedenza particolari programmi che richiedono una particolare procedura di disinstallazione, come ComboFix, FindAWF, GMER, RSIT e TDSS Killer.
● per eseguire correttamente OTC by OldTimer su Windows Vista e Windows Seven, clicca con il tasto destro del mouse sull'icona del programma e, dal menù contestuale, scegli la voce Esegui come Amministratore: conferma la richiesta proposta

******************************

11. Riabilita il Ripristino Configurazione di Sistema, seguendo la procedura inversa al punto 4

******************************

12. Scarica ed installa Defraggler: http://www.piriform.com/defraggler/download

Nota - durante l'installazione:
non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce

Una volta installato, esegui queste operazioni:
● avvia il programma con un doppio click
● seleziona con il tasto sinistro del mouse l'unità Disco Locale C:
● clicca, in basso a sinistra, sul bottone Deframmenta
● attendi pazientemente il termine delle operazioni

******************************

13. Controlla l'Hard Disk per eventuali errori


Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Esegui
● nello spazio bianco, copia ed incolla questa riga:
cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
● clicca sul pulsante OK
● attendi pazientemente il termine delle operazioni
● una finestra DOS vuota si aprirà sul Desktop, per poi chiudersi automaticamente: nulla di cui preoccuparsi
● allega il file checkhd.txt presente sul Desktop per un controllo

Procedura per Windows Vista e Windows Seven:


● clicca sul pulsante Start
● scegli la voce Tutti i programmi
● clicca su Accessori
● clicca con il tasto destro sull'icona Prompt dei comandi, e scegli la voce Esegui come amministratore
● nello spazio nero, copia ed incolla questa riga:
cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
● clicca sul pulsante OK
● attendi pazientemente il termine delle operazioni; digita ora exit, sempre nello spazio nero, per uscire dal Prompt dei comandi, e quindi premi il pulsante Invio
● una finestra DOS vuota potrebbe aprirsi sul Desktop, per poi chiudersi automaticamente: nulla di cui preoccuparsi
● allega il file checkhd.txt presente sul Desktop per un controllo

******************************

Note - al termine della procedura:
riavvia il sistema
allega un nuovo log di HijackThis
● comunica come funziona il sistema, e quali problemi riscontri attualmente
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Sto per formattare... fermatemi se potete!!!

Postdi strofe » 23/10/12 10:10

Ciao Francesco, scusami ma sono andato via qualche giorno e non ti ho più risposto.
Dunque, ora il pc corre come una lippa e usando firefox non mi si apre nessuna pagina pubblicitaria... :D :D
Semplicemente fantastico!!! :) Mi hai evitato di formattare... grazie! :)
Ho salvato in txt il tuo ultimo post su come pulire bene il computer, in modo da poter intervenire in caso avessi ancora bisogno di dare una sferzata di energia al mio pc... :D :D
Consiglio, a chiunque riscontri questo tipo di problema, di rileggersi questo post e di agire come ha insegnato Francesco. ;)

Grazie ancora e alla prossima... :)
strofe
Utente Junior
 
Post: 63
Iscritto il: 30/07/12 09:17

Re: Sto per formattare... fermatemi se potete!!!

Postdi FrancescoFDAC » 23/10/12 13:06

Di nulla.
Francesco
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Precedente

Torna a Sicurezza e Privacy


Topic correlati a "Sto per formattare... fermatemi se potete!!!":


Chi c’è in linea

Visitano il forum: Nessuno e 2 ospiti