comparsa messaggi errore,apertura improvvisa di siti strani

di **personalcompiuter** » 21/03/08 21:29

salve a tutti da poco ho cominciato a riscontrare una serie di anomalie dovute a virus o malware o non so che. Dunque devo dire innanzitutto che ho dovuto abbandonare 1 mesetto fa il mio norton internet security 2005 datomi in dotazione col portatile per licenza scaduta e ho installato avast home edition. Avast ce l'ho sempre attivo e non lo interrompo mai.

tuttavia hanno cominciato ad aprirsi di tanto in tanto delle pagine di explorer che mi portano a siti di giochi e scommesse online o magari in quelle pagine che raccomandano di scaricare dei pseudoantivirus in quanto ha rilevato che il pc è infetto. (chessò mentre apro risorse del computer, mentre inserisco una usbpen o a caso aprendo delle cartelle in contemporanea mi parte la pagina di explorer e in particolare il sito "virusdifesa.com").

inoltre anche mentre il pc è acceso ma non in uso compare una finestra improvvisa di questo tipo:

________________________________________________________________
Generic Host Process for Win32 Services
________________________________________________________________

Si è verificato un errore in Generic Host Process for
Win32 Services. L'applicazione verrà chiusa.
________________________________________________________________

Se si sta eseguendo un operazione, è possibile perdere i dati
su cui si sta lavorando

_____ _____________________ ___________
Debug Invia segnalazione errori Non inviare
_____ _____________________ ___________

ho eseguito delle scansioni (sia in modalità normale che in provvisoria) con avast ed eliminato vari file sospetti che rilevava (ma non ricordo quali, mi pare tra gli altri ci fosse un trojan), la stessa cosa ho fatto con ad-aware 2007 e ho eliminato un trojan... tuttavia continuano a verificarsi tutte le cose che ho spiegato all'inizio.

di **personalcompiuter** » 21/03/08 21:31

vi posto per maggiori dettagli un log di hijack:

Logfile of HijackThis v1.99.1
Scan saved at 17.49.51, on 21/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
C:\MATLAB6p5\webserver\bin\win32\matlabserver.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
C:\Programmi\ASUS\NB Probe\SPM\spmgr.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\FILECO~1\Stardock\SDMCP.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programmi\Wireless Console 2\wcourier.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe
C:\Programmi\ASUS\Splendid\ACMON.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe
C:\Programmi\QuickTime\qttask.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Programmi\LClock\lclock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmi\Stardock\ObjectDock\ObjectDock.exe
C:\Programmi\No-IP\DUC20.exe
C:\Programmi\eMule\emule.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\lallebu\Desktop\software\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tiscali.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {65551A37-8442-45B1-AF6E-BA47541E8FBB} - C:\WINDOWS\system32\kbdfij.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar2.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [Wireless Console 2] C:\Programmi\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [RemoteControl] C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Programmi\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ACMON] C:\Programmi\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [EOUApp] "C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Explorer] C:\WINDOWS\iexplorer.exe
O4 - HKLM\..\Run: [WindowsHive] C:\WINDOWS\system32\rpcc.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LClock] C:\Programmi\LClock\lclock.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmi\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Startup: Stardock ObjectDock.lnk = C:\Programmi\Stardock\ObjectDock\ObjectDock.exe
O4 - Startup: Ritaglio schermata e avvio di OneNote 2007.lnk = C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: No-IP DUC.lnk = C:\Programmi\No-IP\DUC20.exe
O4 - Global Startup: Tasto di scelta rapida per l'avvio di AutoCAD.lnk = C:\Programmi\File comuni\Autodesk Shared\acstart17.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe (file missing)
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 5246434890
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-57b866d0fab5df89.spaces.live ... nPUpld.cab
O16 - DPF: {82FFA573-38AA-482A-99AD-91F697B91631} (Installer.InstallControl) - http://www.file2you.net/dl_applet.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{854C5190-9EA8-4532-B209-5878E7F781BD}: NameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{90FE5F99-F497-41A1-BC87-9420842D16DA}: NameServer = 192.168.0.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Programmi\File comuni\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FILECO~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\FILECO~1\Stardock\mcpstub.dll
O20 - Winlogon Notify: WLCtrl32 - C:\WINDOWS\SYSTEM32\WLCtrl32.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Programmi\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Programmi\File comuni\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLAB6p5\webserver\bin\win32\matlabserver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: spmgr - Unknown owner - C:\Programmi\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe

di **personalcompiuter** » 21/03/08 21:36

vi posto anche il log di ad-aware 2007, di spyboot search and destroy e di avast:(considerate però che avevo già fatto delle scansioni i giorni precedenti e cancellato tutto ciò che trovavano i programmi senza salvare i log, perciò potrebbero mancare in questi log che posto quei virus/trojan/spyware/malware che ho già rilevato)

LOG SPYBOT SEARCH & DESTROY (PARTE 1)

--- Search result list ---
Ardamax: [SBI $ED26550B] Cartella Dati applicazioni (Cartella, nothing done)
C:\WINDOWS\system32\Sys\

SCKeylogger: [SBI $11D18DED] Impostazioni di avvio automatico (WindowsHive) (Valore di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WindowsHive

SCKeylogger: [SBI $11D18DED] File di programma (File, nothing done)
C:\WINDOWS\system32\rpcc.exe

Smitfraud-C.: [SBI $2E72FBCD] Impostazioni (Chiave di registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WinOpts

Microsoft.WindowsSecurityCenter.AntiVirusOverride: [SBI $3604910C] Impostazioni (Modifica al registro, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusOverride

Smitfraud-C.generic: [SBI $DD263D45] Eseguibile (File, nothing done)
C:\WINDOWS\iexplorer.exe

Tradedoubler: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

DoubleClick: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Internet Explorer: lallebu) (Cookie, nothing done)

DoubleClick: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Tradedoubler: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

Vario.AntiVirus: Cookie tracciante (Firefox: default) (Cookie, nothing done)

--- Spybot - Search & Destroy version: 1.5 (build: 20070830) ---

2008-03-21 unins000.exe (51.46.0.0)
2007-08-31 blindman.exe (1.0.0.6)
2007-08-31 SDMain.exe (1.0.0.4)
2007-08-31 SDUpdate.exe (1.0.6.4)
2007-08-31 SDWinSec.exe (1.0.0.

2007-08-31 SpybotSD.exe (1.5.1.15)
2007-08-31 TeaTimer.exe (1.5.0.9)
2007-08-31 Update.exe (1.4.0.5)
2007-08-31 advcheck.dll (1.5.3.0)
2007-04-02 aports.dll (2.1.0.0)
2007-04-02 DelZip179.dll (1.79.5.3)
2007-08-31 SDHelper.dll (1.5.0.

2007-08-31 Tools.dll (2.1.2.0)
2008-03-19 Includes\Revision.sbi (*)
2008-03-19 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2008-03-19 Includes\HeavyDuty.sbi (*)
2008-03-19 Includes\Hijackers.sbi (*)
2008-02-27 Includes\Keyloggers.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-03-12 Includes\Malware.sbi (*)
2008-02-20 Includes\PUPS.sbi (*)
2008-01-09 Includes\Security.sbi (*)
2008-03-19 Includes\Spybots.sbi (*)
2007-11-06 Includes\Tracks.uti
2008-03-19 Includes\Trojans.sbi (*)
2008-03-19 Includes\DialerC.sbi (*)
2008-03-19 Includes\HijackersC.sbi (*)
2008-03-19 Includes\KeyloggersC.sbi (*)
2008-03-19 Includes\MalwareC.sbi (*)
2008-03-19 Includes\PUPSC.sbi (*)
2008-03-19 Includes\SecurityC.sbi (*)
2008-03-19 Includes\SpybotsC.sbi (*)
2008-03-19 Includes\TrojansC.sbi (*)
2008-12-24 Plugins\TCPIPAddress.dll

--- System information ---
Windows XP (Build: 2600) Service Pack 2 (5.1.2600)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ Media Center 2005 / SP3: Windows XP Media Center Edition 2005 KB888316
/ Media Center 2005 / SP3: Windows XP Media Center Edition 2005 KB890629
/ Media Center 2005 / SP3: Windows XP Media Center Edition 2005 KB895198
/ Media Center 2005 / SP3: Windows XP Media Center Edition 2005 KB895678
/ Media Center 2005 / SP3: Aggiornamento cumulativo 1 per Windows XP Media Center Edition 2005 (KB873369)
/ Media Center 2005 / SP4: Aggiornamento cumulativo 2 per Windows XP Media Center Edition 2005
/ Step By Step Interactive Training / SP2: Aggiornamento della protezione per Step by Step Interactive Training (KB898458)
/ Windows Media Player 10: Aggiornamento per Windows Media Player 10 (KB913800)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB834707
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB867282
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB873333
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB873339
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB883939)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB885250
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB885835
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB885836
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB887472
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB888113
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB888302
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB888795)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB890046)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB890047
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB890175
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB890546
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB890859
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB890923
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB891593)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB891781
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB892627
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB893056
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB893066)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB893086
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB893357)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Aggiornamento per Windows XP (KB894391)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP - KB896178
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB896256)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB896358)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB896422)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB896423)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB896428)
/ Windows XP / SP3: Aggiornamento per Windows XP (KB896727)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB899337)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB899510)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB899587)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB899588)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB899591)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB901190)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB901214)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB902841)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB903235)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB904706)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB905915)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB908519)
/ Windows XP / SP3: Aggiornamento per Windows XP (KB910437)
/ Windows XP / SP3: Aggiornamento per Windows XP (KB911164)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB911927)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB912024)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB912919)
/ Windows XP / SP3: Aggiornamento per Windows XP (KB912945)
/ Windows XP / SP3: Aggiornamento della protezione per Windows XP (KB913446)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB918005)
/ Windows XP / SP3: Aggiornamento rapido per Windows XP (KB921411)

--- Startup entries list ---
Located: HK_LM:Run, ABLKSR
command: C:\WINDOWS\ABLKSR\ABLKSR.exe
file: C:\WINDOWS\ABLKSR\ABLKSR.exe
size: 61440
MD5: 0163D3A8C53DCB4644A900D3B04053D0

Located: HK_LM:Run, ACMON
command: C:\Programmi\ASUS\Splendid\ACMON.exe
file: C:\Programmi\ASUS\Splendid\ACMON.exe
size: 17920
MD5: E415C39D00056FF3F47E9ABB9A77F9AE

Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
file: C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe
size: 39792
MD5: E28D00EC675F5F5A5A0555E7A4523A6E

Located: HK_LM:Run, Alcmtr
command: ALCMTR.EXE
file: C:\WINDOWS\ALCMTR.EXE
size: 69632
MD5: 8B4CBBA1EA526830C7F97E7822E2493A

Located: HK_LM:Run, avast!
command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
size: 79224
MD5: 88D86112DD9F2BB6A603674706C7E846

Located: HK_LM:Run, BluetoothAuthenticationAgent
command: rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, ehTray
command: C:\WINDOWS\ehome\ehtray.exe
file: C:\WINDOWS\ehome\ehtray.exe
size: 64512
MD5: F7A3E4AA3DBBD73A9C2957D67EA1361F

Located: HK_LM:Run, EOUApp
command: "C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe"
file: C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe
size: 569413
MD5: 89435B5BB17CBF9C136858E8B1D8F293

Located: HK_LM:Run, Explorer
command: C:\WINDOWS\iexplorer.exe
file: C:\WINDOWS\iexplorer.exe
size: 34150
MD5: 0598C168AECC5978797B0A4CA0E925A4

Located: HK_LM:Run, GrooveMonitor
command: "C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe"
file: C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe
size: 31016
MD5: 38D198A2DD54A67120040566A38103BA

Located: HK_LM:Run, HControl
command: C:\WINDOWS\ATK0100\HControl.exe
file: C:\WINDOWS\ATK0100\HControl.exe
size: 110592
MD5: C93858230EF7F3538AD9B28BCF7F1026

Located: HK_LM:Run, IntelWireless
command: "C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
file: C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
size: 602182
MD5: B2C7424892DDC8A53B3F13AECA268BD2

Located: HK_LM:Run, IntelZeroConfig
command: "C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe"
file: C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
size: 667718
MD5: 8F396853BB7BD7FE341AF40C01DFEDFE

Located: HK_LM:Run, NB Probe
command:
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, NvCplDaemon
command: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, NvMediaCenter
command: RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, NWEReboot
command:
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, nwiz
command: nwiz.exe /install
file: C:\WINDOWS\system32\nwiz.exe
size: 1519616
MD5: 26E351E84C6611C780DC8603DDE75225

Located: HK_LM:Run, Power_Gear
command: C:\Programmi\ASUS\Power4 Gear\BatteryLife.exe 1
file: C:\Programmi\ASUS\Power4 Gear\BatteryLife.exe
size: 90112
MD5: 76E1605F9C40718A6217B783E7F36258

Located: HK_LM:Run, QuickTime Task
command: "C:\Programmi\QuickTime\qttask.exe" -atboottime
file: C:\Programmi\QuickTime\qttask.exe
size: 282624
MD5: 7FBE43046EFDF24FC9375024E4D02AC9

Located: HK_LM:Run, RemoteControl
command: C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe
file: C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe
size: 32768
MD5: 8FB740D758B14B1BC950CC347C21E461

Located: HK_LM:Run, RTHDCPL
command: RTHDCPL.EXE
file: C:\WINDOWS\RTHDCPL.EXE
size: 16206848
MD5: 937CDFBAD945A72C0C36C40F8EA83183

Located: HK_LM:Run, SSBkgdUpdate
command: C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot
file: C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
size: 155648
MD5: 1C3CA3E7807F915933BB4E08E599DDAB

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe"
file: C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe
size: 132496
MD5: D4F0F7437327DBAA264338BAAFB5E5AF

Located: HK_LM:Run, SynTPEnh
command: C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
file: C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
size: 761945
MD5: EFC3319E5BC0FD6A992840E8EBD98BA3

Located: HK_LM:Run, WindowsHive
command: C:\WINDOWS\system32\rpcc.exe
file: C:\WINDOWS\system32\rpcc.exe
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_LM:Run, Wireless Console 2
command: C:\Programmi\Wireless Console 2\wcourier.exe
file: C:\Programmi\Wireless Console 2\wcourier.exe
size: 987136
MD5: 5419D37517E5AA8037A22BBFF44B46F9

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-19...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 33F14C55448FFA3E9DAE4854CC632D33

Located: HK_CU:Run, CTFMON.EXE
where: S-1-5-20...
command: C:\WINDOWS\system32\CTFMON.EXE
file: C:\WINDOWS\system32\CTFMON.EXE
size: 15360
MD5: 33F14C55448FFA3E9DAE4854CC632D33

Located: HK_CU:Run, ctfmon.exe
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 33F14C55448FFA3E9DAE4854CC632D33

Located: HK_CU:Run, LClock
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command: C:\Programmi\LClock\lclock.exe
file: C:\Programmi\LClock\lclock.exe
size: 65536
MD5: 38CC541D105DCBA3D3768D6B191D9505

Located: HK_CU:Run, MSMSGS
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command: "C:\Programmi\Messenger\msmsgs.exe" /background
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: HK_CU:Run, MsnMsgr
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command: "C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe" /background
file: C:\Programmi\Windows Live\Messenger\MsnMsgr.Exe
size: 5724184
MD5: 2B9CB6DABF3614F720109337779973A4

Located: HK_CU:Run, swg
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command: C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
file: C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
size: 68856
MD5: E616A6A6E91B0A86F2F6217CDE835FFE

Located: HK_CU:Run, YouRipper
where: S-1-5-21-1650566676-678547564-2835253270-1005...
command:
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: Esecuzione automatica (comune), EPSON Status Monitor 3 Environment Check 2.lnk
where: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica...
command: C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
file: C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
size: 135680
MD5: 4508D0DA06456FFF34DEF785BA2E4D1E

Located: Esecuzione automatica (comune), Tasto di scelta rapida per l'avvio di AutoCAD.lnk
where: C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica...
command: C:\Programmi\File comuni\Autodesk Shared\acstart17.exe
file: C:\Programmi\File comuni\Autodesk Shared\acstart17.exe
size: 11000
MD5: AD61C37E1D1E56FAFC5FF7E3CB2D3EFA

Located: Esecuzione automatica (utente), No-IP DUC.lnk
where: C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica...
command: C:\Programmi\No-IP\DUC20.exe
file: C:\Programmi\No-IP\DUC20.exe
size: 1172992
MD5: 74D679B8F4331E453431EFB423AECECE

Located: Esecuzione automatica (utente), Ritaglio schermata e avvio di OneNote 2007.lnk
where: C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica...
command: C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
file: C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE
size: 98632
MD5: D91AFB6D2A0DA7539B74FB5838775D94

Located: Esecuzione automatica (utente), Stardock ObjectDock.lnk
where: C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica...
command: C:\Programmi\Stardock\ObjectDock\ObjectDock.exe
file: C:\Programmi\Stardock\ObjectDock\ObjectDock.exe
size: 2860792
MD5: BCBCF9440E03A0DB71B77982273D5A52

Located: Esecuzione automatica (disattivata), Adobe Reader Speed Launch (DISABLED)
command: C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
file:
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: Esecuzione automatica (disattivata), Bluetooth Manager (DISABLED)
command: C:\PROGRA~1\Toshiba\BLUETO~1\TOSBTM~1.EXE
file: C:\PROGRA~1\Toshiba\BLUETO~1\TOSBTM~1.EXE
size: 49152
MD5: 7BB625CFE318AD06770218625FBDAE6C

Located: Esecuzione automatica (disattivata), PrintKey-Pro (DISABLED)
command: C:\PROGRA~1\WARECE~1\PRINTK~1\PKey_Pro.exe
file: C:\PROGRA~1\WARECE~1\PRINTK~1\PKey_Pro.exe
size: 1637888
MD5: 626A4DBA1C6C8E47DF97E4183803C39D

Located: Esecuzione automatica (disattivata), Adobe Gamma (DISABLED)
command: C:\PROGRA~1\FILECO~1\Adobe\CALIBR~1\ADOBEG~1.EXE
file: C:\PROGRA~1\FILECO~1\Adobe\CALIBR~1\ADOBEG~1.EXE
size: 113664
MD5: C2FF17734176CD15221C10044EF0BA1A

Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, MCPClient
command: C:\PROGRA~1\FILECO~1\Stardock\mcpstub.dll
file: C:\PROGRA~1\FILECO~1\Stardock\mcpstub.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: WinLogon, WLCtrl32
command: WLCtrl32.dll
file: WLCtrl32.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

di **personalcompiuter** » 21/03/08 21:44

LOG AD-AWARE 2007 (PARTE 1)

Ad-Aware 2007 Build
Log File Created on: 2008-03-21 19:18:37
Using Definitions File: C:\Documents and Settings\All Users\Dati applicazioni\Lavasoft\Ad-Aware 2007\core.aawdef
Computer name: VALE
Name of user performing scan: SYSTEM

System information
===========================
Number of processors: 2
Processor type: Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz
Memory Available: 59%
Total Physical Memory: 2146742272 Bytes
Available Physical Memory: 1246269440 Bytes
Total Page File Size: 4131528704 Bytes
Available On Page File: 3030405120 Bytes
Total Virtual Memory: 2147352576 Bytes
Available Virtual Memory: 1861332992 Bytes
OS: Microsoft Windows XP Service Pack 2 (Build 2600)

Ad-Aware 2007 Settings
===========================
Skipping files larger than 1048576 kB
Ignoring infections with lower TAI than: 3

Extended Ad-Aware 2007 Settings
===========================
Unloading known modules during scan
Ignoring spanned files when scanning cab archives
Scanning registry for all users
Using permanent archive caching
Reanalyzing results after scanning before displaying results
Trying to unload modules prior to removal
Let Windows remove files currently in use at next reboot
Removing quarantined objects after restore
Logging Ad-Aware events
Blocking Pop-Ups aggressively
Deactivating Ad-Watch during scans
Writeprotecting system files after repairs
Including Ad-aware command line parameters in log file
Include info about ignored objects in log file
Including basic settings in log file
Including advanced settings in log file
Including user and computer name in log file
Include reference summary in log file
Creating log file for removal operations
Including module info in log file
Include Alternate Data Stream details in log file
Create and save WebUpdate log file

Databaseinfo
===========================
Version number: 63
Build Number: 0
Build Date and Time: 2008/03/19 12:55:36

Scan Statistics
===========================
Method: Full
Scan tracking cookies.............................: On
Scan ADS filestreams..............................: Off

Item Scanned: 556027
Infections Detected: 16
Infections Ignored: 0

Scan detailed statistics
===========================
Type Critical Total
Process Scan....: 0 0
Registry Scan...: 0 0
Registry PE Scan: 0 0
Hosts File Scan.: 0 0
File Scan.......: 0 0
Folder Scan.....: 0 0
LSP Scan........: 0 0
ADS Scan........: 0 0
Cookie Scan.....: 14 14
File Hash Scan..: 0 0
Infections Found
===========================
Family Id: 725 Name: Tracking Cookie Category: DataMiner TAI:3
Item Id: 600000179 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\lallebu\Cookies\index.dat atdmt.com AA002 /
Item Id: 600000234 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\lallebu\Cookies\index.dat tradedoubler.com TD_UNIQUE_IMP /
Item Id: 600000234 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\lallebu\Cookies\index.dat tradedoubler.com TD_PIC /
Item Id: 600000179 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt atdmt.com AA002 /
Item Id: 600000144 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt doubleclick.net id /
Item Id: 600000142 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt www5.addfreestats.com NC1U /cgi-bin
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com ih /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com fl_inst /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com uid /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com bh /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com vuday1 /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt ad.yieldmanager.com liday1 /
Item Id: 600000101 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt overture.com CMUserData /
Item Id: 600000234 Value: Browser: Firefox Cookie: C:\Documents and Settings\lallebu\Dati applicazioni\Mozilla\Firefox\Profiles/aq246bqk.default\cookies.txt tradedoubler.com TD_PIC /
Family Id: 9999 Name: MRU Object Category: MRU Object TAI:0
Item Id: 1 Value: MRU Path: C:\Documents and Settings\lallebu\Recent Count: 15
Item Id: 3 Value: MRU Registry Key: S-1-5-21-1650566676-678547564-2835253270-1005\Software\Microsoft\Internet Explorer\TypedURLs Count: 1

Items Ignored During Scan
===========================

di **personalcompiuter** » 21/03/08 21:48

LOG AD-AWARE 2007 (PARTE 2)

Listing of running processes

C:\WINDOWS\SYSTEM32\SMSS.EXE
c:\windows\system32\smss.exe

c:\windows\system32\ntdll.dll

C:\WINDOWS\SYSTEM32\CSRSS.EXE
c:\windows\system32\csrss.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\csrsrv.dll

c:\windows\system32\basesrv.dll

c:\windows\system32\winsrv.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\version.dll

C:\WINDOWS\SYSTEM32\WINLOGON.EXE
c:\windows\system32\winlogon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\authz.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\nddeapi.dll

c:\windows\system32\profmap.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\regapi.dll

c:\windows\system32\secur32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\version.dll

c:\windows\system32\winsta.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\msgina.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\ole32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\cscdll.dll

c:\progra~1\fileco~1\stardock\mcpstub.dll

c:\windows\system32\wlnotify.dll

c:\windows\system32\winmm.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mpr.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\samlib.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\cscui.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\xpsp2res.dll

c:\windows\system32\comres.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wlctrl32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

C:\WINDOWS\SYSTEM32\SERVICES.EXE
c:\windows\system32\services.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\scesrv.dll

c:\windows\system32\authz.dll

c:\windows\system32\umpnpmgr.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\eventlog.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\apphelp.dll

C:\WINDOWS\SYSTEM32\LSASS.EXE
c:\windows\system32\lsass.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\lsasrv.dll

c:\windows\system32\mpr.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\samsrv.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msprivs.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\netlogon.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\schannel.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\wdigest.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\scecli.dll

c:\windows\system32\ipsecsvc.dll

c:\windows\system32\authz.dll

c:\windows\system32\oakley.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\pstorsvc.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\psbase.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dssenh.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\userenv.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\termsrv.dll

c:\windows\system32\icaapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\mstlsapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\regapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\userenv.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\secur32.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\wmi.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\esent.dll

c:\windows\system32\atl.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rastls.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wininet.dll

c:\windows\system32\version.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\schannel.dll

c:\windows\system32\userenv.dll

c:\windows\system32\winscard.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\raschap.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\schedsvc.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\msidle.dll

c:\windows\system32\audiosrv.dll

c:\windows\system32\wkssvc.dll

c:\windows\system32\qmgr.dll

c:\windows\system32\mpr.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\cryptsvc.dll

c:\windows\system32\certcli.dll

c:\windows\system32\dmserver.dll

c:\windows\system32\ersvc.dll

c:\windows\system32\es.dll

c:\windows\pchealth\helpctr\binaries\pchsvc.dll

c:\windows\system32\srvsvc.dll

c:\windows\system32\netman.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\seclogon.dll

c:\windows\system32\sens.dll

c:\windows\system32\srsvc.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\trkwks.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\wbem\wmisvc.dll

c:\windows\system32\vssapi.dll

c:\windows\system32\wuauserv.dll

c:\windows\system32\browser.dll

c:\windows\system32\wuaueng.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cabinet.dll

c:\windows\system32\mspatcha.dll

c:\windows\system32\ipnathlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\wscsvc.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemcore.dll

c:\windows\system32\wbem\esscli.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\colbact.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\repdrvfs.dll

c:\windows\system32\wbem\wmiprvsd.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\wbem\wbemess.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\netcfgx.dll

c:\windows\system32\wbem\ncprov.dll

c:\windows\system32\upnp.dll

c:\windows\system32\ssdpapi.dll

c:\windows\system32\rasmans.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\tapisrv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\rastapi.dll

c:\windows\system32\unimdm.tsp

c:\windows\system32\uniplat.dll

c:\windows\system32\unimdmat.dll

c:\windows\system32\modemui.dll

c:\windows\system32\kmddsp.tsp

c:\windows\system32\ndptsp.tsp

c:\windows\system32\ipconf.tsp

c:\windows\system32\h323.tsp

c:\windows\system32\hidphone.tsp

c:\windows\system32\hid.dll

c:\windows\system32\rasppp.dll

c:\windows\system32\ntlsapi.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\EVTENG.EXE
c:\programmi\intel\wireless\bin\evteng.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\windows\system32\atl.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\programmi\file comuni\system\ado\msado15.dll

c:\windows\system32\msdart.dll

c:\programmi\file comuni\system\ole db\oledb32.dll

c:\programmi\file comuni\system\ole db\oledb32r.dll

c:\programmi\file comuni\system\ole db\msdasql.dll

c:\programmi\file comuni\system\ole db\msdatl3.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\odbcint.dll

c:\programmi\file comuni\system\ole db\msdasqlr.dll

c:\windows\system32\mswstr10.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\colbact.dll

c:\windows\system32\secur32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\userenv.dll

c:\windows\system32\odbcjt32.dll

c:\windows\system32\msjet40.dll

c:\windows\system32\odbcji32.dll

c:\windows\system32\msjter40.dll

c:\windows\system32\msjint40.dll

c:\windows\system32\odbccp32.dll

c:\programmi\file comuni\system\msadc\msadce.dll

c:\programmi\file comuni\system\msadc\msadcer.dll

c:\windows\system32\uxtheme.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\S24EVMON.EXE
c:\programmi\intel\wireless\bin\s24evmon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\atl.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\netapi32.dll

c:\programmi\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

c:\programmi\intel\wireless\bin\intstngs.dll

c:\windows\system32\secur32.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\version.dll

c:\programmi\intel\wireless\bin\iwmsprov.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\netcfgx.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\dnsrslvr.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\lmhsvc.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\webclnt.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\version.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\regsvc.dll

C:\PROGRAMMI\ALWIL SOFTWARE\AVAST4\ASWUPDSV.EXE
c:\programmi\alwil software\avast4\aswupdsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\alwil software\avast4\aswcmns.dll

c:\programmi\alwil software\avast4\aswcmnos.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\programmi\alwil software\avast4\aswcmnb.dll

C:\PROGRAMMI\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
c:\programmi\alwil software\avast4\ashserv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\advapi32.dll

c:\programmi\alwil software\avast4\aswaux.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\msvcr71.dll

c:\programmi\alwil software\avast4\aswcmnb.dll

c:\programmi\alwil software\avast4\aswcmnos.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\programmi\alwil software\avast4\aswengin.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\programmi\alwil software\avast4\aswscan.dll

c:\programmi\alwil software\avast4\aswcmns.dll

c:\windows\system32\oleaut32.dll

c:\programmi\alwil software\avast4\ashbase.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\programmi\alwil software\avast4\ashtask.dll

c:\programmi\alwil software\avast4\aswinteg.dll

c:\programmi\alwil software\avast4\aswidle.dll

c:\programmi\alwil software\avast4\aavm4h.dll

c:\windows\system32\dbghelp.dll

c:\programmi\alwil software\avast4\italian\base.dll

c:\programmi\alwil software\avast4\unacev2.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\programmi\alwil software\avast4\ahresmai.dll

c:\programmi\alwil software\avast4\ahresmes.dll

c:\programmi\alwil software\avast4\ahresns.dll

c:\programmi\alwil software\avast4\ahresout.dll

c:\programmi\alwil software\avast4\ahresp2p.dll

c:\programmi\alwil software\avast4\ahresstd.dll

c:\programmi\alwil software\avast4\ahresws.dll

c:\programmi\alwil software\avast4\ashssqlt.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\perfos.dll

C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
c:\windows\system32\spoolsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\spoolss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\localspl.dll

c:\windows\system32\secur32.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\winspool.drv

c:\windows\system32\netapi32.dll

c:\windows\system32\cnbjmon.dll

c:\windows\system32\ebpmon2.dll

c:\windows\system32\mdimon.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\windows\system32\msi.dll

c:\windows\system32\pdf995mon.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\pjlmon.dll

c:\windows\system32\msonpmon.dll

c:\windows\system32\tcpmon.dll

c:\windows\system32\tbtmon.dll

c:\windows\system32\tosbthcrpapi.dll

c:\windows\system32\tosbtapi.dll

c:\windows\system32\tosbdapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\tbtmon98language.dll

c:\windows\system32\usbmon.dll

c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll

c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\win32spl.dll

c:\windows\system32\netrap.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\inetpp.dll

C:\PROGRAMMI\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE
c:\programmi\lavasoft\ad-aware 2007\aawservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\lavasoft\ad-aware 2007\ceapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\programmi\lavasoft\ad-aware 2007\pkarchive84cb.dll

c:\windows\system32\shell32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\oleaut32.dll

c:\programmi\lavasoft\ad-aware 2007\update.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\secur32.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\bthserv.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

C:\WINDOWS\EHOME\EHRECVR.EXE
c:\windows\ehome\ehrecvr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\faultrep.dll

c:\windows\system32\version.dll

c:\windows\system32\userenv.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\psapi.dll

c:\windows\ehome\ehtrace.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\sbe.dll

c:\windows\system32\winmm.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\msvidctl.dll

c:\windows\system32\quartz.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\devenum.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msdmo.dll

C:\WINDOWS\EHOME\EHSCHED.EXE
c:\windows\ehome\ehsched.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\ehome\ehproxy.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\tapi3.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\rtutils.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\secur32.dll

c:\windows\system32\wavemsp.dll

c:\windows\system32\termmgr.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\confmsp.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\h323msp.dll

c:\windows\system32\iphlpapi.dll

C:\PROGRAMMI\FILE COMUNI\EPSON\EBAPI\SAGENT2.EXE
c:\programmi\file comuni\epson\ebapi\sagent2.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\ebapi2.dll

c:\windows\system32\mpr.dll

c:\windows\system32\comctl32.dll

c:\programmi\file comuni\epson\ebapi\ebplpt.dll

c:\windows\system32\version.dll

C:\MATLAB6P5\WEBSERVER\BIN\WIN32\MATLABSERVER.EXE
c:\matlab6p5\webserver\bin\win32\matlabserver.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\matlab6p5\bin\win32\libeng.dll

c:\windows\system32\ole32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\matlab6p5\bin\win32\libut.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imagehlp.dll

c:\matlab6p5\bin\win32\libmx.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\netapi32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\matlab6p5\bin\win32\mwoles05.dll

c:\matlab6p5\bin\win32\libmex.dll

c:\matlab6p5\bin\win32\libmwservices.dll

c:\matlab6p5\bin\win32\mpath.dll

c:\matlab6p5\bin\win32\m_interpreter.dll

c:\matlab6p5\bin\win32\libmat.dll

c:\matlab6p5\bin\win32\mlib.dll

c:\matlab6p5\bin\win32\m_pcodeio.dll

c:\matlab6p5\bin\win32\m_ir.dll

c:\matlab6p5\bin\win32\m_parser.dll

c:\matlab6p5\bin\win32\m_pcodegen.dll

c:\matlab6p5\bin\win32\m_dispatcher.dll

c:\matlab6p5\bin\win32\hg.dll

c:\matlab6p5\bin\win32\numerics.dll

c:\matlab6p5\bin\win32\libmwlapack.dll

c:\matlab6p5\bin\win32\libmwfftw.dll

c:\matlab6p5\bin\win32\libmwumfpack.dll

c:\matlab6p5\bin\win32\udd.dll

c:\matlab6p5\bin\win32\uiw.dll

c:\windows\system32\winspool.drv

c:\matlab6p5\bin\win32\matlab.exe

c:\matlab6p5\bin\win32\dastudio.dll

c:\matlab6p5\bin\win32\glee.dll

c:\matlab6p5\bin\win32\jmi.dll

c:\matlab6p5\bin\win32\simulink.dll

c:\windows\system32\imm32.dll

c:\matlab6p5\bin\win32\libmwbuiltins.dll

c:\matlab6p5\bin\win32\cg_ir.dll

c:\matlab6p5\bin\win32\libfixedpoint.dll

c:\matlab6p5\bin\win32\hardcopy.dll

c:\matlab6p5\bin\win32\gui.dll

c:\matlab6p5\bin\win32\sl_solver.dll

c:\matlab6p5\bin\win32\mfc42.dll

c:\matlab6p5\bin\win32\udd_mi.dll

c:\matlab6p5\bin\win32\comcli.dll

c:\matlab6p5\bin\win32\mclcom.dll

c:\matlab6p5\bin\win32\atlas_piii.dll

c:\matlab6p5\bin\win32\lapack.dll

c:\matlab6p5\bin\win32\dforrt.dll

c:\windows\system32\mfc42loc.dll

C:\PROGRAMMI\FILE COMUNI\MICROSOFT SHARED\VS7DEBUG\MDM.EXE
c:\programmi\file comuni\microsoft shared\vs7debug\mdm.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\system32\shlwapi.dll

c:\programmi\file comuni\microsoft shared\vs7debug\1040\mdmui.dll

c:\windows\system32\psapi.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

C:\WINDOWS\SYSTEM32\NVSVC32.EXE
c:\windows\system32\nvsvc32.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\userenv.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\samlib.dll

C:\MATLAB6P5\BIN\WIN32\MATLAB.EXE
c:\matlab6p5\bin\win32\matlab.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\version.dll

c:\matlab6p5\bin\win32\mwoles05.dll

c:\windows\system32\oleaut32.dll

c:\matlab6p5\bin\win32\libut.dll

c:\windows\system32\imagehlp.dll

c:\matlab6p5\bin\win32\libmx.dll

c:\matlab6p5\bin\win32\libmex.dll

c:\matlab6p5\bin\win32\libmwservices.dll

c:\matlab6p5\bin\win32\mpath.dll

c:\matlab6p5\bin\win32\m_interpreter.dll

c:\matlab6p5\bin\win32\libmat.dll

c:\matlab6p5\bin\win32\mlib.dll

c:\matlab6p5\bin\win32\m_pcodeio.dll

c:\matlab6p5\bin\win32\m_ir.dll

c:\matlab6p5\bin\win32\m_parser.dll

c:\matlab6p5\bin\win32\m_pcodegen.dll

c:\matlab6p5\bin\win32\m_dispatcher.dll

c:\matlab6p5\bin\win32\hg.dll

c:\matlab6p5\bin\win32\numerics.dll

c:\matlab6p5\bin\win32\libmwlapack.dll

c:\matlab6p5\bin\win32\libmwfftw.dll

c:\matlab6p5\bin\win32\libmwumfpack.dll

c:\matlab6p5\bin\win32\udd.dll

c:\matlab6p5\bin\win32\uiw.dll

c:\windows\system32\winspool.drv

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\matlab6p5\bin\win32\gui.dll

c:\matlab6p5\bin\win32\simulink.dll

c:\windows\system32\imm32.dll

c:\matlab6p5\bin\win32\libmwbuiltins.dll

c:\matlab6p5\bin\win32\cg_ir.dll

c:\matlab6p5\bin\win32\libfixedpoint.dll

c:\matlab6p5\bin\win32\glee.dll

c:\matlab6p5\bin\win32\jmi.dll

c:\matlab6p5\bin\win32\dastudio.dll

c:\matlab6p5\bin\win32\hardcopy.dll

c:\matlab6p5\bin\win32\sl_solver.dll

c:\matlab6p5\bin\win32\mfc42.dll

c:\matlab6p5\bin\win32\mclcom.dll

c:\matlab6p5\bin\win32\udd_mi.dll

c:\matlab6p5\bin\win32\comcli.dll

c:\windows\system32\netapi32.dll

c:\matlab6p5\bin\win32\atlas_piii.dll

c:\matlab6p5\bin\win32\lapack.dll

c:\matlab6p5\bin\win32\dforrt.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\hotspot\jvm.dll

c:\windows\system32\winmm.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\hpi.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\verify.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\java.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\zip.dll

c:\windows\system32\secur32.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\awt.dll

c:\matlab6p5\sys\java\jre\win32\jre\bin\fontmanager.dll

c:\windows\system32\nvoglnt.dll

c:\matlab6p5\bin\win32\nativejava.dll

c:\matlab6p5\bin\win32\glren.dll

c:\windows\system32\opengl32.dll

c:\windows\system32\glu32.dll

c:\windows\system32\ddraw.dll

c:\windows\system32\dciman32.dll

c:\windows\system32\sxs.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\REGSRVC.EXE
c:\programmi\intel\wireless\bin\regsrvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\atl.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

C:\PROGRAMMI\ASUS\NB PROBE\SPM\SPMGR.EXE
c:\programmi\asus\nb probe\spm\spmgr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\programmi\asus\nb probe\spm\spdiskex.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\secur32.dll

c:\programmi\asus\nb probe\spm\spos.dll

c:\windows\system32\uxtheme.dll

c:\programmi\asus\nb probe\spm\spnbacpi.dll

c:\windows\system32\powrprof.dll

c:\programmi\asus\nb probe\spm\spdmi.dll

c:\programmi\asus\nb probe\spm\ghadmi.dll

c:\programmi\asus\nb probe\spm\spmemory.dll

c:\windows\system32\pdh.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\odbcbcp.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\odbcint.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\ssdpsrv.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\secur32.dll

C:\PROGRAMMI\ALCOHOL SOFT\ALCOHOL 120\STARWIND\STARWINDSERVICE.EXE
c:\programmi\alcohol soft\alcohol 120\starwind\starwindservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\wiaservc.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\mscms.dll

c:\windows\system32\winspool.drv

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wiavusd.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\actxprxy.dll

c:\windows\system32\sti.dll

C:\WINDOWS\EHOME\MCRDSVC.EXE
c:\windows\ehome\mcrdsvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\ssdpapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\ehome\ehtrace.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\PROGRAMMI\ALWIL SOFTWARE\AVAST4\ASHWEBSV.EXE
c:\programmi\alwil software\avast4\ashwebsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\programmi\alwil software\avast4\ashbase.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\version.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\msvcr71.dll

c:\programmi\alwil software\avast4\aswcmnos.dll

c:\programmi\alwil software\avast4\aswcmnb.dll

c:\programmi\alwil software\avast4\aswcmns.dll

c:\windows\system32\comctl32.dll

c:\programmi\alwil software\avast4\aavm4h.dll

c:\programmi\alwil software\avast4\ashtask.dll

c:\programmi\alwil software\avast4\aswaux.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\dbghelp.dll

c:\programmi\alwil software\avast4\italian\base.dll

c:\windows\system32\psapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\security.dll

c:\windows\system32\secur32.dll

c:\programmi\alwil software\avast4\ashwsftr.dll

c:\programmi\alwil software\avast4\aswscan.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\progra~1\alwils~1\avast4\ahresws.dll

c:\programmi\alwil software\avast4\aswengin.dll

C:\PROGRA~1\FILECO~1\STARDOCK\SDMCP.EXE
c:\progra~1\fileco~1\stardock\sdmcp.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msimg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\SYSTEM32\ALG.EXE
c:\windows\system32\alg.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\EXPLORER.EXE
c:\windows\explorer.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\browseui.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\version.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\userenv.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\acsignicon.dll

c:\windows\system32\winspool.drv

c:\progra~1\micros~2\office12\gra8e1~1.dll

c:\progra~1\micros~2\office12\grooveutil.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\progra~1\micros~2\office12\groovenew.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\themeui.dll

c:\windows\system32\secur32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\samlib.dll

c:\progra~1\micros~2\office12\gr99d3~1.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\winhttp.dll

c:\programmi\file comuni\autodesk shared\acsigncore16.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\setupapi.dll

c:\progra~1\fileco~1\stardock\mcpcore.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winsta.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\stobject.dll

c:\windows\system32\batmeter.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msi.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\midimap.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\drprov.dll

c:\windows\system32\ntlanman.dll

c:\windows\system32\netui0.dll

c:\windows\system32\netui1.dll

c:\windows\system32\netrap.dll

c:\windows\system32\davclnt.dll

c:\programmi\lclock\lc.dll

c:\progra~1\micros~2\office12\gr326c~1.dll

c:\windows\system32\msctf.dll

c:\windows\system32\wzcdlg.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\sxs.dll

c:\windows\system32\browselc.dll

di **personalcompiuter** » 21/03/08 21:49

LOG AD-AWARE 2007 (PARTE 3)

c:\programmi\microsoft office\office12\1040\grooveintlresource.dll

c:\windows\system32\msftedit.dll

c:\windows\system32\imm32.dll

c:\windows\system32\duser.dll

c:\programmi\file comuni\adobe\acrobat\activex\pdfshell.ita

c:\programmi\file comuni\ahead\lib\nerodigitalext.dll

c:\programmi\file comuni\ahead\lib\mfc71.dll

c:\programmi\file comuni\ahead\lib\msvcr71.dll

c:\programmi\file comuni\ahead\lib\msvcp71.dll

c:\programmi\file comuni\adobe\acrobat\activex\pdfshell.dll

c:\windows\system32\shimgvw.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\actxprxy.dll

c:\windows\system32\mscms.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

C:\WINDOWS\SYSTEM32\DLLHOST.EXE
c:\windows\system32\dllhost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\colbact.dll

c:\windows\system32\secur32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\es.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\sxs.dll

c:\windows\system32\txflog.dll

C:\WINDOWS\ATK0100\HCONTROL.EXE
c:\windows\atk0100\hcontrol.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\atk0100\cmssc.dll

c:\windows\system32\setupapi.dll

c:\windows\atk0100\inter_f2.dll

c:\windows\atk0100\atkwlioc.dll

c:\windows\atk0100\sispkt.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc42loc.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\programmi\intel\wireless\bin\murocapi.dll

c:\programmi\intel\wireless\bin\s24mudll.dll

c:\windows\system32\version.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\oleaut32.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\windows\system32\atl.dll

c:\windows\system32\secur32.dll

c:\programmi\intel\wireless\bin\intstngs.dll

c:\programmi\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\syncom.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\EHOME\EHTRAY.EXE
c:\windows\ehome\ehtray.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\atl.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\hid.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\ehome\ehproxy.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\EHOME\EHMSAS.EXE
c:\windows\ehome\ehmsas.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\RTHDCPL.EXE
c:\windows\rthdcpl.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\hhctrl.ocx

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\dsound.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\winspool.drv

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mui\0010\hhctrlui.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\ksuser.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\WIRELESS CONSOLE 2\WCOURIER.EXE
c:\programmi\wireless console 2\wcourier.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\programmi\wireless console 2\msimg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\programmi\wireless console 2\msvcr71.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\SYNAPTICS\SYNTP\SYNTPENH.EXE
c:\programmi\synaptics\syntp\syntpenh.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\system32\winmm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\syncom.dll

c:\windows\system32\syntpapi.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\ASUSTEK\ASUSDVD\PDVDSERV.EXE
c:\programmi\asustek\asusdvd\pdvdserv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\programmi\asustek\asusdvd\clrcengine2.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\ASUS\SPLENDID\ACMON.EXE
c:\programmi\asus\splendid\acmon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\asus\splendid\glcddll.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\programmi\asus\splendid\chameleon.dll

c:\windows\system32\ole32.dll

c:\programmi\asus\splendid\msvcr71.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\ATK0100\ATKOSD.EXE
c:\windows\atk0100\atkosd.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\ZCFGSVC.EXE
c:\programmi\intel\wireless\bin\zcfgsvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\intel\wireless\bin\pfmgrapi.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\atl.dll

c:\windows\system32\secur32.dll

c:\windows\system32\version.dll

c:\programmi\intel\wireless\bin\dbengine.dll

c:\programmi\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\programmi\intel\wireless\bin\intstngs.dll

c:\windows\system32\mfc42.dll

c:\programmi\intel\wireless\bin\murocapi.dll

c:\programmi\intel\wireless\bin\s24mudll.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\olepro32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\uxtheme.dll

c:\programmi\intel\wireless\bin\zcsvcita.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\IFRMEWRK.EXE
c:\programmi\intel\wireless\bin\ifrmewrk.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\programmi\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\winmm.dll

c:\programmi\intel\wireless\bin\intstngs.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\windows\system32\atl.dll

c:\windows\system32\secur32.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\olepro32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\uxtheme.dll

c:\programmi\intel\wireless\bin\frwrkita.dll

c:\windows\system32\rsaenh.dll

c:\programmi\intel\wireless\bin\frameworkplugins\connmgr.dll

c:\programmi\intel\wireless\bin\murocapi.dll

c:\programmi\intel\wireless\bin\s24mudll.dll

c:\programmi\intel\wireless\bin\pfmgrapi.dll

c:\programmi\intel\wireless\bin\dbengine.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\imagehlp.dll

c:\programmi\intel\wireless\bin\intwaita.dll

c:\windows\system32\userenv.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\programmi\file comuni\system\ado\msado15.dll

c:\windows\system32\msdart.dll

c:\programmi\file comuni\system\ole db\oledb32.dll

c:\programmi\file comuni\system\ole db\oledb32r.dll

c:\programmi\file comuni\system\ole db\msdasql.dll

c:\programmi\file comuni\system\ole db\msdatl3.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\odbcint.dll

c:\programmi\file comuni\system\ole db\msdasqlr.dll

c:\windows\system32\mswstr10.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\colbact.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\odbcjt32.dll

c:\windows\system32\msjet40.dll

c:\windows\system32\odbcji32.dll

c:\windows\system32\msjter40.dll

c:\windows\system32\msjint40.dll

c:\windows\system32\odbccp32.dll

c:\programmi\file comuni\system\msadc\msadce.dll

c:\programmi\file comuni\system\msadc\msadcer.dll

c:\windows\system32\msctf.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

C:\PROGRAMMI\INTEL\WIRELESS\BIN\EOUWIZ.EXE
c:\programmi\intel\wireless\bin\eouwiz.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\intel\wireless\bin\psregapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\programmi\intel\wireless\bin\murocapi.dll

c:\programmi\intel\wireless\bin\s24mudll.dll

c:\windows\system32\version.dll

c:\programmi\intel\wireless\bin\traceapi.dll

c:\windows\system32\atl.dll

c:\windows\system32\secur32.dll

c:\programmi\intel\wireless\bin\intstngs.dll

c:\windows\system32\mfc42.dll

c:\programmi\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\programmi\intel\wireless\bin\pfmgrapi.dll

c:\programmi\intel\wireless\bin\dbengine.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\olepro32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\uxtheme.dll

c:\programmi\intel\wireless\bin\eouwzita.dll

c:\windows\system32\userenv.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\SYSTEM32\ACENGSVR.EXE
c:\windows\system32\acengsvr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\mscms.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ddraw.dll

c:\windows\system32\dciman32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\icm32.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\bthprops.cpl

c:\windows\system32\devmgr.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wmi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\MICROSOFT OFFICE\OFFICE12\GROOVEMONITOR.EXE
c:\programmi\microsoft office\office12\groovemonitor.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\programmi\microsoft office\office12\grooveutil.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\programmi\microsoft office\office12\groovenew.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

c:\windows\system32\comctl32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\progra~1\micros~2\office12\gra8e1~1.dll

c:\windows\system32\msimg32.dll

c:\progra~1\micros~2\office12\gr99d3~1.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\msctf.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\winhttp.dll

C:\PROGRAMMI\JAVA\JRE1.6.0_03\BIN\JUSCHED.EXE
c:\programmi\java\jre1.6.0_03\bin\jusched.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

C:\PROGRAMMI\QUICKTIME\QTTASK.EXE
c:\programmi\quicktime\qttask.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\version.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\dsound.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\msctf.dll

C:\PROGRA~1\ALWILS~1\AVAST4\ASHDISP.EXE
c:\progra~1\alwils~1\avast4\ashdisp.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\advapi32.dll

c:\progra~1\alwils~1\avast4\aswcmnos.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\progra~1\alwils~1\avast4\ashbase.dll

c:\windows\system32\version.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\progra~1\alwils~1\avast4\aswcmnb.dll

c:\progra~1\alwils~1\avast4\aswcmns.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\shlwapi.dll

c:\progra~1\alwils~1\avast4\ashtask.dll

c:\progra~1\alwils~1\avast4\aswaux.dll

c:\windows\system32\shell32.dll

c:\progra~1\alwils~1\avast4\aavm4h.dll

c:\windows\system32\dbghelp.dll

c:\programmi\alwil software\avast4\italian\base.dll

c:\programmi\alwil software\avast4\italian\lang.dll

c:\windows\system32\mfc71.dll

c:\progra~1\alwils~1\avast4\aavmrpch.dll

c:\programmi\alwil software\avast4\ahruimai.dll

c:\progra~1\alwils~1\avast4\ashuint.dll

c:\progra~1\alwils~1\avast4\xt1922.dll

c:\programmi\alwil software\avast4\ahruimes.dll

c:\programmi\alwil software\avast4\ahruins.dll

c:\programmi\alwil software\avast4\ahruiout.dll

c:\windows\system32\mapi32.dll

c:\programmi\alwil software\avast4\ahruip2p.dll

c:\programmi\alwil software\avast4\ahruistd.dll

c:\programmi\alwil software\avast4\ahruiws.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\WINDOWS LIVE\MESSENGER\MSNMSGR.EXE
c:\programmi\windows live\messenger\msnmsgr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\programmi\windows live\messenger\msimg32.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\programmi\windows live\messenger\msncore.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\msacm32.dll

c:\programmi\windows live\messenger\msidcrl40.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\programmi\windows live\messenger\contactsux.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\cryptnet.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\userenv.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msimg32.dll

c:\programmi\messenger plus! live\msgpluslive.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\programmi\messenger plus! live\detoured.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\samlib.dll

c:\programmi\windows live\messenger\msgslang.8.5.1302.1018.dll

c:\programmi\windows live\messenger\msgsres.dll

c:\windows\system32\riched20.dll

c:\windows\system32\msftedit.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\msxml3.dll

c:\programmi\messenger plus! live\msgplusliveres.dll

c:\windows\system32\msctf.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\inetcomm.dll

c:\windows\system32\msoert2.dll

c:\windows\system32\inetres.dll

c:\windows\system32\mlang.dll

c:\windows\system32\es.dll

c:\programmi\windows live\messenger\lcapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\dsound.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\msdmo.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\programmi\windows live\messenger\lcres.dll

c:\programmi\windows live\messenger\rtmpltfm.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\midimap.dll

c:\windows\system32\devenum.dll

c:\windows\system32\quartz.dll

c:\windows\system32\ddraw.dll

c:\windows\system32\dciman32.dll

c:\windows\system32\d3dim700.dll

c:\windows\system32\dpnhupnp.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\schannel.dll

c:\windows\system32\sxs.dll

c:\programmi\windows live\messenger\msgswcam.dll

c:\windows\system32\sirenacm.dll

c:\windows\system32\ksproxy.ax

c:\windows\system32\ksuser.dll

c:\windows\system32\kswdmcap.ax

c:\windows\system32\mfc42.dll

c:\windows\system32\mfc42loc.dll

c:\windows\system32\synprop.ax

c:\windows\system32\dshowext.ax

c:\windows\system32\jscript.dll

c:\programmi\windows live\messenger\lmcdata.dll

c:\programmi\windows live\messenger\contact.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\dssenh.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msls31.dll

c:\programmi\windows live\messenger\custsat.dll

c:\programmi\windows live\messenger\abssm.dll

c:\windows\system32\msi.dll

c:\windows\system32\netshell.dll

c:\windows\system32\atl.dll

c:\windows\system32\credui.dll

c:\windows\system32\wmvcore.dll

c:\windows\system32\wmasf.dll

c:\windows\system32\wmadmod.dll

C:\PROGRA~1\INTEL\WIRELESS\BIN\DOT1XCFG.EXE
c:\progra~1\intel\wireless\bin\dot1xcfg.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\progra~1\intel\wireless\bin\acauth.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ole32.dll

c:\progra~1\intel\wireless\bin\c1xstngs.dll

c:\progra~1\intel\wireless\bin\psregapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\oleaut32.dll

c:\windows\system32\psapi.dll

c:\progra~1\intel\wireless\bin\intstngs.dll

c:\progra~1\intel\wireless\bin\traceapi.dll

c:\windows\system32\atl.dll

c:\windows\system32\secur32.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\olepro32.dll

c:\progra~1\intel\wireless\bin\iwmsprov.dll

c:\windows\system32\userenv.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mfc42loc.dll

c:\programmi\intel\wireless\bin\c8021ita.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\progra~1\intel\wireless\bin\lsawrapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\progra~1\intel\wireless\bin\pfmgrapi.dll

c:\progra~1\intel\wireless\bin\dbengine.dll

c:\progra~1\intel\wireless\bin\libeay32.dll

c:\windows\system32\wsock32.dll

C:\PROGRAMMI\LCLOCK\LCLOCK.EXE
c:\programmi\lclock\lclock.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\programmi\lclock\lc.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\programmi\lclock\calendar.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\msctf.dll

C:\WINDOWS\SYSTEM32\CTFMON.EXE
c:\windows\system32\ctfmon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msutb.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

C:\PROGRAMMI\GOOGLE\GOOGLETOOLBARNOTIFIER\GOOGLETOOLBARNOTIFIER.EXE
c:\programmi\google\googletoolbarnotifier\googletoolbarnotifier.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\programmi\google\googletoolbarnotifier\2.0.301.7164\gtn.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\psapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shell32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msv1_0.dll

c:\programmi\google\googletoolbarnotifier\2.0.301.7164\res_it.dll

c:\programmi\google\googletoolbarnotifier\2.0.301.7164\swg.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msctf.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\atl.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

C:\PROGRAMMI\STARDOCK\OBJECTDOCK\OBJECTDOCK.EXE
c:\programmi\stardock\objectdock\objectdock.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\msvcrt.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\programmi\stardock\objectdock\crashrpt.dll

c:\programmi\stardock\objectdock\dbghelp.dll

c:\windows\system32\oleaut32.dll

c:\programmi\stardock\objectdock\zlib.dll

c:\windows\system32\crtdll.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\acsignicon.dll

c:\windows\system32\winspool.drv

c:\progra~1\micros~2\office12\gra8e1~1.dll

c:\progra~1\micros~2\office12\grooveutil.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\progra~1\micros~2\office12\groovenew.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\programmi\file comuni\stardock\odimg.dll

c:\programmi\stardock\objectdock\msvcr70.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\mscms.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\setupapi.dll

c:\programmi\stardock\objectdock\docklets\calendar\calendar.dll

c:\programmi\stardock\objectdock\docklets\clock\clock.dll

c:\windows\system32\psapi.dll

C:\PROGRAMMI\NO-IP\DUC20.EXE
c:\programmi\no-ip\duc20.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\wship6.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\secur32.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\PROGRAMMI\EMULE\EMULE.EXE
c:\programmi\emule\emule.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\winspool.drv

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\uxtheme.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\msctf.dll

c:\windows\system32\riched20.dll

c:\programmi\emule\lang\it_it.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\icmp.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\asycfilt.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\acsignicon.dll

c:\progra~1\micros~2\office12\gra8e1~1.dll

c:\progra~1\micros~2\office12\grooveutil.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\progra~1\micros~2\office12\groovenew.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\version.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\sensapi.dll

C:\PROGRAMMI\MOZILLA FIREFOX\FIREFOX.EXE
c:\programmi\mozilla firefox\firefox.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\programmi\mozilla firefox\js3250.dll

c:\programmi\mozilla firefox\nspr4.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\winmm.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\programmi\mozilla firefox\xpcom_core.dll

c:\programmi\mozilla firefox\plc4.dll

c:\programmi\mozilla firefox\plds4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\programmi\mozilla firefox\smime3.dll

c:\programmi\mozilla firefox\nss3.dll

c:\programmi\mozilla firefox\softokn3.dll

c:\programmi\mozilla firefox\ssl3.dll

c:\programmi\mozilla firefox\xpcom_compat.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\msctf.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\programmi\mozilla firefox\components\myspell.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\iphlpapi.dll

c:\programmi\mozilla firefox\components\jar50.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\msimtf.dll

c:\windows\system32\xpsp2res.dll

c:\programmi\mozilla firefox\freebl3.dll

c:\programmi\mozilla firefox\nssckbi.dll

c:\programmi\mozilla firefox\components\spellchk.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\imm32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\mlang.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\secur32.dll

c:\windows\system32\schannel.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

C:\WINDOWS\SYSTEM32\NOTEPAD.EXE
c:\windows\system32\notepad.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\msctf.dll

C:\PROGRAMMI\LAVASOFT\AD-AWARE 2007\AD-AWARE2007.EXE
c:\programmi\lavasoft\ad-aware 2007\ad-aware2007.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\system32\mpr.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll

c:\windows\system32\serwvdrv.dll

c:\windows\system32\umdmxfrm.dll

c:\windows\system32\uxtheme.dll

c:\programmi\stardock\objectdock\dockshellhook.dll

c:\windows\system32\msctf.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\acsignicon.dll

c:\windows\system32\winspool.drv

c:\progra~1\micros~2\office12\gra8e1~1.dll

c:\progra~1\micros~2\office12\grooveutil.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll

c:\progra~1\micros~2\office12\groovenew.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\olepro32.dll

c:\windows\system32\secur32.dll

End of Scan Section
===================================================================================================

di **personalcompiuter** » 21/03/08 21:50

---------------------------------------------------------LOG DI AVAST HOME----------------------------------------------------------

non rileva nessun virus, segnala soltanto alcuni file zip o rar danneggiati o protetti da password che non riesce a controllare (i file con password sono ok lo posso dire con certezza)
--------------------------------------------------------------------------------------------------------------------------------------------

spero possiate aiutarmi!!! grazie attendo notizie... ciao!

di **Luke57** » 22/03/08 00:06

cIAO, scarica combofix sul desktop
ComboFix
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Disconettiti da internet
disattiva l'antivirus

Avvia il file ComboFix.exe
Digita 1 per avviare il tool (non fare altre manovre durante la scansione che è piuttosto lenta, se scompaioo le icone dal desktop è normale)
Segui le istruzioni e alla fine verrà generato un log (C:\combofix.txt).

Riavvia il pc, copia e incolla il contenuto del report.

di **personalcompiuter** » 22/03/08 11:49

ComboFix 08-03-21.2 - lallebu 2008-03-22 11.38.14.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.1147 [GMT 1:00]
Eseguito da: C:\Documents and Settings\lallebu\Desktop\ComboFix.exe
* Creato nuovo punto di ripristino

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Creati Da 2008-02-22 al 2008-03-22 )))))))))))))))))))))))))))))))))))
.

2008-03-21 18:59 . 2008-03-21 18:59 87 --a------ C:\WINDOWS\wininit.ini
2008-03-21 18:24 . 2008-03-21 18:24 <DIR> d-------- C:\Programmi\Spybot - Search & Destroy
2008-03-21 18:24 . 2008-03-21 18:24 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2008-03-21 16:24 . 2008-03-21 16:24 11,776 --a------ C:\WINDOWS\system32\WLCtrl32.dl_
2008-03-17 12:05 . 26,624 C:\WINDOWS\system32\drivers\Cjq76.sys
2008-03-17 12:05 . 2008-03-21 00:02 11,776 --a------ C:\WINDOWS\system32\WLCtrl32.dll
2008-03-17 12:04 . 2006-04-10 14:00 88,064 --a------ C:\WINDOWS\system32\kbdfij.dll
2008-03-16 20:48 . 2008-03-16 20:49 <DIR> d-------- C:\Programmi\Mp3 File Editor
2008-03-04 12:06 . 2008-03-04 12:06 <DIR> d--hs---- C:\FOUND.003
2008-03-04 10:07 . 2008-03-04 10:07 <DIR> dr-h----- C:\Documents and Settings\lallebu\Dati applicazioni\SecuROM
2008-03-02 18:30 . 2008-03-02 18:30 <DIR> d-------- C:\Programmi\Microsoft SQL Server Compact Edition
2008-02-29 20:25 . 2008-02-29 20:25 <DIR> d-------- C:\Programmi\Real
2008-02-29 20:25 . 2008-02-29 20:25 <DIR> d-------- C:\Programmi\File comuni\Real
2008-02-24 16:15 . 2008-02-24 16:15 <DIR> d-------- C:\Programmi\TVAnts
2008-02-24 00:21 . 2008-02-24 00:21 <DIR> d-------- C:\Programmi\dog
2008-02-22 18:54 . 2008-02-22 18:54 1,142 --a------ C:\WINDOWS\mozver.dat

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-16 20:07 164,864 ----a-w C:\WINDOWS\system32\SpoonUninstall.exe
2008-02-17 14:07 --------- d-----w C:\Programmi\Norton Internet Security
2008-02-17 12:46 --------- d-----w C:\Programmi\Alwil Software
2008-02-17 12:11 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\TEMP
2008-01-25 10:17 249,344 ----a-w C:\WINDOWS\dog.scr
2008-01-25 10:17 1,683,896 ----a-w C:\WINDOWS\dog.bin
2008-01-25 10:17 1,010,460 ----a-w C:\WINDOWS\creamplayer.exe
2008-01-02 17:47 92,064 ----a-w C:\Documents and Settings\lallebu\mqdmmdm.sys
2008-01-02 17:47 9,232 ----a-w C:\Documents and Settings\lallebu\mqdmmdfl.sys
2008-01-02 17:47 79,328 ----a-w C:\Documents and Settings\lallebu\mqdmserd.sys
2008-01-02 17:47 66,656 ----a-w C:\Documents and Settings\lallebu\mqdmbus.sys
2008-01-02 17:47 6,208 ----a-w C:\Documents and Settings\lallebu\mqdmcmnt.sys
2008-01-02 17:47 5,936 ----a-w C:\Documents and Settings\lallebu\mqdmwhnt.sys
2008-01-02 17:47 4,048 ----a-w C:\Documents and Settings\lallebu\mqdmcr.sys
2008-01-02 17:47 25,600 ----a-w C:\Documents and Settings\lallebu\usbsermptxp.sys
2008-01-02 17:47 22,768 ----a-w C:\Documents and Settings\lallebu\usbsermpt.sys
2001-10-23 15:19 28,672 ----a-w C:\WINDOWS\Fonts\CopiaFonts.exe
.

------- Sigcheck -------

2006-04-10 14:00 14336 30b08704e17975eab783752b86b528b8 C:\WINDOWS\system32\svchost.exe

2005-03-02 20:10 578048 14b5d6b20467dba209853d65d1f6a124 C:\WINDOWS\system32\user32.dll
2005-03-02 20:20 578048 488019bfe2b0f9f8cd8394276d5b664a C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll

2006-04-10 14:00 82944 8a31728eee6c24eea44c1eae45af890e C:\WINDOWS\system32\ws2_32.dll

2006-01-09 19:59 664576 b404779b16eb2cd8c574fb343d277521 C:\WINDOWS\system32\wininet.dll
2004-09-29 20:45 659456 5e44c65a8fdf34e023467b13c0305196 C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\wininet.dll
2005-01-27 19:12 660480 934b43c987c2d3ba72ca0a2ce3e83064 C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\wininet.dll
2005-03-10 09:48 660480 c3bcd4313f62f6f22f06899fec77d725 C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\wininet.dll
2005-05-02 22:57 661504 d38eb275c3a1585b188792d6c4a26a58 C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\wininet.dll
2005-07-03 04:10 662016 70133360c8bd14d3c8345f5ee54bac5b C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\wininet.dll
2005-10-21 05:39 664064 b94abc767831f875e95f7f23bd9db85d C:\WINDOWS\$hf_mig$\KB905915\SP2QFE\wininet.dll

2006-01-13 04:28 359808 583e063fdc888ca30d05c2724b0d7ef4 C:\WINDOWS\system32\drivers\tcpip.sys
2005-05-25 21:07 359936 63fdfea54eb53de2d863ee454937ce1e C:\WINDOWS\$hf_mig$\KB893066\SP2QFE\tcpip.sys
2006-01-13 19:07 360448 5562cc0a47b2aef06d3417b733f3c195 C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\tcpip.sys

2006-04-10 14:00 504832 bd11ece6a5bd592fddcf9545b4296d17 C:\WINDOWS\system32\winlogon.exe

2006-04-10 14:00 182912 558635d3af1c7546d26067d5d9b6959e C:\WINDOWS\system32\drivers\ndis.sys

2006-04-10 14:00 29056 4448006b6bc60e6c027932cfc38d6855 C:\WINDOWS\system32\drivers\ip6fw.sys

2005-09-29 20:28 2019328 adfceef3fee09b2c0ffc8c8bfefe6d13 C:\WINDOWS\system32\ntkrnlpa.exe
2005-09-29 20:27 2061184 29b9f6899f2ed3c1f16d23e135c583f1 C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
2005-03-02 10:12 2060672 de16030e8209fd96eeb06d9e3d8c84a8 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe

2005-09-29 20:27 2139648 20006884c3930819db5fa8766135eca1 C:\WINDOWS\system32\ntoskrnl.exe
2005-09-29 20:28 2183936 d60fa5a6ae23ae2493f19de9ae9294e1 C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
2005-03-02 20:12 2183296 c120a33c71e706545cf26d6276bc0344 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe

2006-04-10 14:00 1034752 d009e427de2e129ff87b03d87f349c73 C:\WINDOWS\explorer.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Nota* i valori vuoti & legittimi/default non sono visualizzati.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{65551A37-8442-45B1-AF6E-BA47541E8FBB}]
2006-04-10 14:00 88064 --a------ C:\WINDOWS\system32\kbdfij.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Programmi\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"LClock"="C:\Programmi\LClock\lclock.exe" [2004-09-19 19:27 65536]
"YouRipper"="" []
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-04-10 14:00 15360]
"MSMSGS"="C:\Programmi\Messenger\msmsgs.exe" [ ]
"swg"="C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-21 10:34 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HControl"="C:\WINDOWS\ATK0100\HControl.exe" [2006-04-17 02:24 110592]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-03-16 22:16 7561216]
"nwiz"="nwiz.exe" [2006-03-16 22:16 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-03-16 22:16 86016]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-17 22:40 64512]
"RTHDCPL"="RTHDCPL.EXE" [2006-05-04 00:59 16206848 C:\WINDOWS\RTHDCPL.exe]
"Wireless Console 2"="C:\Programmi\Wireless Console 2\wcourier.exe" [2005-10-17 17:09 987136]
"SynTPEnh"="C:\Programmi\Synaptics\SynTP\SynTPEnh.exe" [2005-10-20 23:26 761945]
"ABLKSR"="C:\WINDOWS\ABLKSR\ABLKSR.exe" [2006-01-02 19:14 61440]
"RemoteControl"="C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe" [2004-11-02 20:24 32768]
"Power_Gear"="C:\Programmi\ASUS\Power4 Gear\BatteryLife.exe" [2006-03-14 17:46 90112]
"ACMON"="C:\Programmi\ASUS\Splendid\ACMON.exe" [2006-02-21 19:36 17920]
"IntelZeroConfig"="C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe" [2006-04-14 11:51 667718]
"IntelWireless"="C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe" [2006-04-14 11:52 602182]
"EOUApp"="C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe" [2006-04-14 11:56 569413]
"NWEReboot"="" []
"SSBkgdUpdate"="C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 16:00 155648]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2006-04-10 14:00 110592 C:\WINDOWS\system32\bthprops.cpl]
"GrooveMonitor"="C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47 31016]
"SunJavaUpdateSched"="C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"NB Probe"="" []
"QuickTime Task"="C:\Programmi\QuickTime\qttask.exe" [2007-06-17 20:01 282624]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica\
Stardock ObjectDock.lnk - C:\Programmi\Stardock\ObjectDock\ObjectDock.exe [2007-04-09 00:16:49 2860792]
Ritaglio schermata e avvio di OneNote 2007.lnk - C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 20:24:54 98632]
No-IP DUC.lnk - C:\Programmi\No-IP\DUC20.exe [2007-12-24 19:12:30 1172992]

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Tasto di scelta rapida per l'avvio di AutoCAD.lnk - C:\Programmi\File comuni\Autodesk Shared\acstart17.exe [2006-03-05 11:43:54 11000]
EPSON Status Monitor 3 Environment Check 2.lnk - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE [2007-06-04 20:31:07 135680]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]
"6G98D2X74V"= C:\WINDOWS\service32.exe
"Service"= C:\WINDOWS\winlogon32.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient]
C:\PROGRA~1\FILECO~1\Stardock\mcpstub.dll 2005-01-31 14:13 49152 C:\PROGRA~1\FILECO~1\Stardock\MCPStub.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WLCtrl32]
WLCtrl32.dll 2008-03-21 00:02 11776 C:\WINDOWS\system32\WLCtrl32.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Bluetooth Manager.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Bluetooth Manager.lnk
backup=C:\WINDOWS\pss\Bluetooth Manager.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^PrintKey-Pro.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\PrintKey-Pro.lnk
backup=C:\WINDOWS\pss\PrintKey-Pro.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^lallebu^Menu Avvio^Programmi^Esecuzione automatica^Adobe Gamma.lnk]
path=C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica\Adobe Gamma.lnk
backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2007-10-10 19:51 39792 C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Live Update]
--a------ 2006-02-21 15:20 180224 C:\Programmi\ASUS\ASUS Live Update\ALU.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
--a------ 2006-02-15 10:38 49152 C:\Programmi\ASUS\ATK Media\DMEDIA.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NB Probe]
--a------ 2007-01-05 16:01 806912 C:\Programmi\ASUS\NB Probe\NBProbe.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-06-17 20:01 282624 C:\Programmi\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
-ra------ 2007-09-13 13:31 22880040 C:\Programmi\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
--a------ 2006-03-21 07:54 544768 C:\WINDOWS\sm56hlpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-07-21 10:34 68856 C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Programmi\\Skype\\Phone\\Skype.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4662:TCP"= 4662:TCP:emule tcp
"4672:UDP"= 4672:UDP:emule udp

R0 Cjq76;Cjq76;C:\WINDOWS\system32\Drivers\Cjq76.sys []
R3 SynMini;ASUS WebCam, 1.3M, USB2.0, FF;C:\WINDOWS\system32\Drivers\SynMini.sys [2006-01-20 01:59]
R3 SynScan;ASUS WebCam Still Image;C:\WINDOWS\system32\Drivers\SynScan.sys [2006-01-02 03:02]
S0 awvwpgxa;awvwpgxa;C:\WINDOWS\system32\drivers\pxbchkqv.dat []
S3 usbscan;Driver scanner USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
S3 USBSTOR;Driver archiviazione di massa USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-22 11:40:41
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scansione processi nascosti ...

? [12268]
? [11472]
? [22256]
? [21744]
? [23652]
? [23676]
scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\awvwpgxa]
"ImagePath"="system32\drivers\pxbchkqv.dat"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\system32\winlogon.exe
-> C:\WINDOWS\system32\WLCtrl32.dll

PROCESS: C:\WINDOWS\explorer.exe
-> C:\Programmi\Stardock\ObjectDock\DockShellHook.dll
-> C:\Programmi\LClock\LC.dll
.
Ora fine scansione: 2008-03-22 11.41.30
ComboFix-quarantined-files.txt 2008-03-22 10:41:30

di **Luke57** » 22/03/08 16:01

Ciao, copia questo codice:

file::
C:\WINDOWS\system32\WLCtrl32.dll
C:\WINDOWS\system32\drivers\Cjq76.sys
C:\WINDOWS\system32\kbdfij.dll
C:\WINDOWS\service32.exe
C:\WINDOWS\winlogon32.exe

registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{65551A37-8442-45B1-AF6E-BA47541E8FBB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]
"6G98D2X74V"=-
"Service"= -
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WLCtrl32]
[-HKEY_LOCAL_MACHINE\system\CurrentControlSet\services\Cjq76]
[-HKEY_LOCAL_MACHINE\system\CurrentControlSet\services\awvwpgxa]

incollalo in un file di testo (star>esegui>notepad.exe>OK), salva il file di testo obbligatoriamente con il nome CFScript.txt trascinalo con il puntatore del mouse sull'icona di combofix per una nuova scansione ed eventuale riavvio.

di **personalcompiuter** » 22/03/08 23:37

ok provo a fare questo... comunque ho notato che l'errore di "generic host" mi viene causato da una o più applicazioni dwwwin.exe che mi trovo aperte nella finestra del task manager nella sezione "processi" ... un altro errore che mi dice una cosa del tipo "la memoria non poteva essere di tipo written ... e una serie di errori con dei codici numerici strani" causata invece da dei processi svchost.exe...

di **personalcompiuter** » 22/03/08 23:49

ecco l'ultimo log di combofix fatto trascinando quel file txt generato con quel codice:

ComboFix 08-03-21.2 - lallebu 2008-03-22 23.39.08.2 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.1426 [GMT 1:00]
Eseguito da: C:\Documents and Settings\lallebu\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\lallebu\Desktop\CFScript.txt
* Creato nuovo punto di ripristino

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

FILE ::
C:\WINDOWS\service32.exe
C:\WINDOWS\system32\drivers\Cjq76.sys
C:\WINDOWS\system32\kbdfij.dll
C:\WINDOWS\system32\WLCtrl32.dll
C:\WINDOWS\winlogon32.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\drivers\Cjq76.sys
C:\WINDOWS\system32\kbdfij.dll
C:\WINDOWS\system32\WLCtrl32.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_Cjq76
-------\Cjq76

((((((((((((((((((((((((( Files Created from 2008-02-22 to 2008-03-22 )))))))))))))))))))))))))))))))
.

2008-03-22 23:35 . 2008-03-22 23:41 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-03-22 23:35 . 2008-03-22 23:41 1,409 --a------ C:\WINDOWS\QTFont.for
2008-03-21 18:59 . 2008-03-21 18:59 87 --a------ C:\WINDOWS\wininit.ini
2008-03-21 18:24 . 2008-03-21 18:24 <DIR> d-------- C:\Programmi\Spybot - Search & Destroy
2008-03-21 18:24 . 2008-03-21 18:24 <DIR> d-------- C:\Documents and Settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2008-03-16 20:48 . 2008-03-16 20:49 <DIR> d-------- C:\Programmi\Mp3 File Editor
2008-03-04 12:06 . 2008-03-04 12:06 <DIR> d--hs---- C:\FOUND.003
2008-03-04 10:07 . 2008-03-04 10:07 <DIR> dr-h----- C:\Documents and Settings\lallebu\Dati applicazioni\SecuROM
2008-03-02 18:30 . 2008-03-02 18:30 <DIR> d-------- C:\Programmi\Microsoft SQL Server Compact Edition
2008-02-29 20:25 . 2008-02-29 20:25 <DIR> d-------- C:\Programmi\Real
2008-02-29 20:25 . 2008-02-29 20:25 <DIR> d-------- C:\Programmi\File comuni\Real
2008-02-24 16:15 . 2008-02-24 16:15 <DIR> d-------- C:\Programmi\TVAnts
2008-02-24 00:21 . 2008-02-24 00:21 <DIR> d-------- C:\Programmi\dog
2008-02-22 18:54 . 2008-02-22 18:54 1,142 --a------ C:\WINDOWS\mozver.dat

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-22 22:32 11,776 ----a-w C:\WINDOWS\system32\WLCtrl32.dll
2008-03-16 20:07 164,864 ----a-w C:\WINDOWS\system32\SpoonUninstall.exe
2008-02-17 14:07 --------- d-----w C:\Programmi\Norton Internet Security
2008-02-17 12:46 --------- d-----w C:\Programmi\Alwil Software
2008-02-17 12:11 --------- d-----w C:\Documents and Settings\All Users\Dati applicazioni\TEMP
2008-01-25 10:17 249,344 ----a-w C:\WINDOWS\dog.scr
2008-01-25 10:17 1,683,896 ----a-w C:\WINDOWS\dog.bin
2008-01-25 10:17 1,010,460 ----a-w C:\WINDOWS\creamplayer.exe
2008-01-02 17:47 92,064 ----a-w C:\Documents and Settings\lallebu\mqdmmdm.sys
2008-01-02 17:47 9,232 ----a-w C:\Documents and Settings\lallebu\mqdmmdfl.sys
2008-01-02 17:47 79,328 ----a-w C:\Documents and Settings\lallebu\mqdmserd.sys
2008-01-02 17:47 66,656 ----a-w C:\Documents and Settings\lallebu\mqdmbus.sys
2008-01-02 17:47 6,208 ----a-w C:\Documents and Settings\lallebu\mqdmcmnt.sys
2008-01-02 17:47 5,936 ----a-w C:\Documents and Settings\lallebu\mqdmwhnt.sys
2008-01-02 17:47 4,048 ----a-w C:\Documents and Settings\lallebu\mqdmcr.sys
2008-01-02 17:47 25,600 ----a-w C:\Documents and Settings\lallebu\usbsermptxp.sys
2008-01-02 17:47 22,768 ----a-w C:\Documents and Settings\lallebu\usbsermpt.sys
2001-10-23 15:19 28,672 ----a-w C:\WINDOWS\Fonts\CopiaFonts.exe
.

------- Sigcheck -------

2006-04-10 14:00 14336 30b08704e17975eab783752b86b528b8 C:\WINDOWS\system32\svchost.exe

2005-03-02 20:10 578048 14b5d6b20467dba209853d65d1f6a124 C:\WINDOWS\system32\user32.dll
2005-03-02 20:20 578048 488019bfe2b0f9f8cd8394276d5b664a C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll

2006-04-10 14:00 82944 8a31728eee6c24eea44c1eae45af890e C:\WINDOWS\system32\ws2_32.dll

2006-01-09 19:59 664576 b404779b16eb2cd8c574fb343d277521 C:\WINDOWS\system32\wininet.dll
2004-09-29 20:45 659456 5e44c65a8fdf34e023467b13c0305196 C:\WINDOWS\$hf_mig$\KB834707\SP2QFE\wininet.dll
2005-01-27 19:12 660480 934b43c987c2d3ba72ca0a2ce3e83064 C:\WINDOWS\$hf_mig$\KB867282\SP2QFE\wininet.dll
2005-03-10 09:48 660480 c3bcd4313f62f6f22f06899fec77d725 C:\WINDOWS\$hf_mig$\KB890923\SP2QFE\wininet.dll
2005-05-02 22:57 661504 d38eb275c3a1585b188792d6c4a26a58 C:\WINDOWS\$hf_mig$\KB883939\SP2QFE\wininet.dll
2005-07-03 04:10 662016 70133360c8bd14d3c8345f5ee54bac5b C:\WINDOWS\$hf_mig$\KB896727\SP2QFE\wininet.dll
2005-10-21 05:39 664064 b94abc767831f875e95f7f23bd9db85d C:\WINDOWS\$hf_mig$\KB905915\SP2QFE\wininet.dll

2006-01-13 04:28 359808 583e063fdc888ca30d05c2724b0d7ef4 C:\WINDOWS\system32\drivers\tcpip.sys
2005-05-25 21:07 359936 63fdfea54eb53de2d863ee454937ce1e C:\WINDOWS\$hf_mig$\KB893066\SP2QFE\tcpip.sys
2006-01-13 19:07 360448 5562cc0a47b2aef06d3417b733f3c195 C:\WINDOWS\$hf_mig$\KB913446\SP2QFE\tcpip.sys

2006-04-10 14:00 504832 bd11ece6a5bd592fddcf9545b4296d17 C:\WINDOWS\system32\winlogon.exe

2006-04-10 14:00 182912 558635d3af1c7546d26067d5d9b6959e C:\WINDOWS\system32\drivers\ndis.sys

2006-04-10 14:00 29056 4448006b6bc60e6c027932cfc38d6855 C:\WINDOWS\system32\drivers\ip6fw.sys

2005-09-29 20:28 2019328 adfceef3fee09b2c0ffc8c8bfefe6d13 C:\WINDOWS\system32\ntkrnlpa.exe
2005-09-29 20:27 2061184 29b9f6899f2ed3c1f16d23e135c583f1 C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
2005-03-02 10:12 2060672 de16030e8209fd96eeb06d9e3d8c84a8 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe

2005-09-29 20:27 2139648 20006884c3930819db5fa8766135eca1 C:\WINDOWS\system32\ntoskrnl.exe
2005-09-29 20:28 2183936 d60fa5a6ae23ae2493f19de9ae9294e1 C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
2005-03-02 20:12 2183296 c120a33c71e706545cf26d6276bc0344 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe

2006-04-10 14:00 1034752 d009e427de2e129ff87b03d87f349c73 C:\WINDOWS\explorer.exe
.
((((((((((((((((((((((((((((( snapshot@2008-03-22_11.41.23,67 )))))))))))))))))))))))))))))))))))))))))
.
+ 2000-08-31 07:00:00 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE
- 2008-03-22 10:36:18 16,384 ------w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-03-22 22:33:18 16,384 ------w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-03-22 10:36:18 32,768 ------w C:\WINDOWS\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
+ 2008-03-22 22:33:18 32,768 ------w C:\WINDOWS\system32\config\systemprofile\Impostazioni locali\Cronologia\History.IE5\index.dat
- 2007-09-24 21:30:28 135,168 ----a-w C:\WINDOWS\system32\java.exe
+ 2008-02-22 00:23:36 135,168 ----a-w C:\WINDOWS\system32\java.exe
- 2007-09-24 21:30:30 135,168 ----a-w C:\WINDOWS\system32\javaw.exe
+ 2008-02-22 00:23:40 135,168 ----a-w C:\WINDOWS\system32\javaw.exe
- 2007-09-24 22:31:42 139,264 ----a-w C:\WINDOWS\system32\javaws.exe
+ 2008-02-22 01:33:32 139,264 ----a-w C:\WINDOWS\system32\javaws.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Programmi\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 11:34 5724184]
"LClock"="C:\Programmi\LClock\lclock.exe" [2004-09-19 19:27 65536]
"YouRipper"="" []
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-04-10 14:00 15360]
"MSMSGS"="C:\Programmi\Messenger\msmsgs.exe" [ ]
"swg"="C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-21 10:34 68856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HControl"="C:\WINDOWS\ATK0100\HControl.exe" [2006-04-17 02:24 110592]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-03-16 22:16 7561216]
"nwiz"="nwiz.exe" [2006-03-16 22:16 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-03-16 22:16 86016]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-17 22:40 64512]
"RTHDCPL"="RTHDCPL.EXE" [2006-05-04 00:59 16206848 C:\WINDOWS\RTHDCPL.exe]
"Wireless Console 2"="C:\Programmi\Wireless Console 2\wcourier.exe" [2005-10-17 17:09 987136]
"SynTPEnh"="C:\Programmi\Synaptics\SynTP\SynTPEnh.exe" [2005-10-20 23:26 761945]
"ABLKSR"="C:\WINDOWS\ABLKSR\ABLKSR.exe" [2006-01-02 19:14 61440]
"RemoteControl"="C:\Programmi\ASUSTeK\ASUSDVD\PDVDServ.exe" [2004-11-02 20:24 32768]
"Power_Gear"="C:\Programmi\ASUS\Power4 Gear\BatteryLife.exe" [2006-03-14 17:46 90112]
"ACMON"="C:\Programmi\ASUS\Splendid\ACMON.exe" [2006-02-21 19:36 17920]
"IntelZeroConfig"="C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe" [2006-04-14 11:51 667718]
"IntelWireless"="C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe" [2006-04-14 11:52 602182]
"EOUApp"="C:\Programmi\Intel\Wireless\Bin\EOUWiz.exe" [2006-04-14 11:56 569413]
"NWEReboot"="" []
"SSBkgdUpdate"="C:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 16:00 155648]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2006-04-10 14:00 110592 C:\WINDOWS\system32\bthprops.cpl]
"GrooveMonitor"="C:\Programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 00:47 31016]
"SunJavaUpdateSched"="C:\Programmi\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"NB Probe"="" []
"QuickTime Task"="C:\Programmi\QuickTime\qttask.exe" [2007-06-17 20:01 282624]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 14:00 79224]

C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica\
Stardock ObjectDock.lnk - C:\Programmi\Stardock\ObjectDock\ObjectDock.exe [2007-04-09 00:16:49 2860792]
Ritaglio schermata e avvio di OneNote 2007.lnk - C:\Programmi\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 20:24:54 98632]
No-IP DUC.lnk - C:\Programmi\No-IP\DUC20.exe [2007-12-24 19:12:30 1172992]

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Tasto di scelta rapida per l'avvio di AutoCAD.lnk - C:\Programmi\File comuni\Autodesk Shared\acstart17.exe [2006-03-05 11:43:54 11000]
EPSON Status Monitor 3 Environment Check 2.lnk - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE [2007-06-04 20:31:07 135680]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\MCPClient]
C:\PROGRA~1\FILECO~1\Stardock\mcpstub.dll 2005-01-31 14:13 49152 C:\PROGRA~1\FILECO~1\Stardock\MCPStub.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^Bluetooth Manager.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\Bluetooth Manager.lnk
backup=C:\WINDOWS\pss\Bluetooth Manager.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Avvio^Programmi^Esecuzione automatica^PrintKey-Pro.lnk]
path=C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\PrintKey-Pro.lnk
backup=C:\WINDOWS\pss\PrintKey-Pro.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^lallebu^Menu Avvio^Programmi^Esecuzione automatica^Adobe Gamma.lnk]
path=C:\Documents and Settings\lallebu\Menu Avvio\Programmi\Esecuzione automatica\Adobe Gamma.lnk
backup=C:\WINDOWS\pss\Adobe Gamma.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2007-10-10 19:51 39792 C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Live Update]
--a------ 2006-02-21 15:20 180224 C:\Programmi\ASUS\ASUS Live Update\ALU.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATKMEDIA]
--a------ 2006-02-15 10:38 49152 C:\Programmi\ASUS\ATK Media\DMEDIA.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NB Probe]
--a------ 2007-01-05 16:01 806912 C:\Programmi\ASUS\NB Probe\NBProbe.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2007-06-17 20:01 282624 C:\Programmi\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
-ra------ 2007-09-13 13:31 22880040 C:\Programmi\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
--a------ 2006-03-21 07:54 544768 C:\WINDOWS\sm56hlpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
--a------ 2007-07-21 10:34 68856 C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Programmi\\Skype\\Phone\\Skype.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Programmi\\eMule\\emule.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4662:TCP"= 4662:TCP:emule tcp
"4672:UDP"= 4672:UDP:emule udp

R3 SynMini;ASUS WebCam, 1.3M, USB2.0, FF;C:\WINDOWS\system32\Drivers\SynMini.sys [2006-01-20 01:59]
R3 SynScan;ASUS WebCam Still Image;C:\WINDOWS\system32\Drivers\SynScan.sys [2006-01-02 03:02]
S3 usbscan;Driver scanner USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
S3 USBSTOR;Driver archiviazione di massa USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-22 23:43:57
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\explorer.exe
-> C:\Programmi\WinRAR\rarext.dll
.
------------------------ Other Running Processes ------------------------
.
C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
C:\PROGRA~1\FILECO~1\Stardock\SDMCP.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\Programmi\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
C:\MATLAB6p5\webserver\bin\win32\matlabserver.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\matlab6p5\bin\win32\matlab.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
C:\Programmi\ASUS\NB Probe\SPM\spmgr.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
.
**************************************************************************
.
Completion time: 2008-03-22 23:47:50 - machine was rebooted
ComboFix-quarantined-files.txt 2008-03-22 22:47:48
ComboFix2.txt 2008-03-22 10:41:32

di **personalcompiuter** » 22/03/08 23:50

personalcompiuter ha scritto:ok provo a fare questo... comunque ho notato che l'errore di "generic host" mi viene causato da una o più applicazioni dwwin.exe che mi trovo aperte nella finestra del task manager nella sezione "processi" ... un altro errore che mi dice una cosa del tipo "la memoria non poteva essere di tipo written ... e una serie di errori con dei codici numerici strani" causata invece da dei processi svchost.exe...

ho provato a cercare dwwin.exe e sono dei ifle in windows/system32 o in windows/i386 ... boh che p***e

comparsa messaggi errore,apertura improvvisa di siti strani

comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Re: comparsa messaggi errore,apertura improvvisa di siti strani

Topic correlati a "comparsa messaggi errore,apertura improvvisa di siti strani":

Chi c’è in linea