I have a problem with a computer of my friend... it was full of virus, troyan, ecc.ecc.
I have used KAV Antivirus Personal, Spybot S&D, Ad-Aware SE Personal... and more virus & C. are destroid!!!!
....but some still remain!!!
I have used Ewido and Hijackthis and these are the logs.....
Thanks for your help!
---------------------------------------------------------
ewido anti-malware - Rapporto Scansione
---------------------------------------------------------
+ Creato il: 16.37.58, 10/05/2006
+ Report-Checksum: D0264F82
+ Risultati scansione:
[636] C:\WINDOWS\system32\jtmd400.dll -> Adware.Look2Me : Errore durante la pulizia
[764] C:\WINDOWS\system32\jtmd400.dll -> Adware.Look2Me : Errore durante la pulizia
C:\Documents and Settings\michele\Cookies\michele@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Pulito con Backup
C:\Documents and Settings\michele\Cookies\michele@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Pulito con Backup
C:\Documents and Settings\michele\Desktop\WinAntiVirusPro2006Installer.exe -> Not-A-Virus.Downloader.Win32.WinFixer.c : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0080757.exe -> Trojan.Fakealert : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0087421.exe -> Trojan.Fakealert : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094218.exe -> Downloader.Small : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094219.exe -> Downloader.Small : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094220.exe -> Downloader.Small : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094221.exe -> Downloader.Small : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094222.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094223.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094224.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094225.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094226.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094227.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094228.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094229.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094230.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094231.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094232.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094233.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094234.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094235.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094236.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094237.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094238.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094239.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094240.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094241.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094242.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094243.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094244.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094245.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094246.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094247.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094248.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094249.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094250.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094251.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094252.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094253.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094254.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094255.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094256.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094257.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094258.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094259.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094260.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094261.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094262.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094263.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094264.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094265.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094266.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094267.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094268.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094269.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094270.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094271.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094272.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094273.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094274.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094275.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094276.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094277.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094278.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094279.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094280.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094281.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094282.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094283.DLL -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094284.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094285.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094286.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094290.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0094310.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0095310.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0095637.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0095641.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096320.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096324.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096331.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096335.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096364.exe -> Trojan.Fakealert : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096471.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096475.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096560.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP33\A0096564.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP34\A0096790.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP34\A0097100.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP34\A0097102.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP34\A0098102.dll -> Adware.Look2Me : Pulito con Backup
C:\System Volume Information\_restore{F3481446-7D34-44F1-923C-7B0BABD06632}\RP34\A0098114.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\config\systemprofile\Impostazioni locali\Temporary Internet Files\Content.IE5\JSLITSU3\drsmartload_js[1].htm -> Downloader.IstBar.j : Pulito con Backup
C:\WINDOWS\system32\en26l1fs1.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\h60qlgd5160.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\k4no0e53eh.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\lvnm0951e.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\o648lghu1648.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\sgarddlg.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\sjsbkup.dll -> Adware.Look2Me : Pulito con Backup
C:\WINDOWS\system32\wwhip6.dll -> Adware.Look2Me : Pulito con Backup
::Fine Rapporto
Logfile of HijackThis v1.99.1
Scan saved at 16.45.01, on 10/05/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\LTSMMSG.exe
C:\Progra~1\Launch Manager\LaunchAp.exe
C:\Progra~1\Launch Manager\PowerKey.exe
C:\Progra~1\Launch Manager\HotkeyApp.exe
C:\Progra~1\Launch Manager\CtrlVol.exe
C:\Progra~1\Launch Manager\Wbutton.exe
C:\Programmi\Java\jre1.5.0_04\bin\jusched.exe
C:\Programmi\QuickTime\qttask.exe
C:\WINDOWS\system32\dumprep.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wuauclt.exe
C:\hijackthis_199\HijackThis.exe
C:\WINDOWS\System32\dwwin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.acer.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LaunchApp] LaunApp
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [SynTPLpr] C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [LaunchAp] C:\Progra~1\Launch Manager\LaunchAp.exe
O4 - HKLM\..\Run: [PowerKey] "C:\Progra~1\Launch Manager\PowerKey.exe"
O4 - HKLM\..\Run: [HotkeyApp] C:\Progra~1\Launch Manager\HotkeyApp.exe
O4 - HKLM\..\Run: [CtrlVol] C:\Progra~1\Launch Manager\CtrlVol.exe
O4 - HKLM\..\Run: [Wbutton] "C:\Progra~1\Launch Manager\Wbutton.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SpybotSnD] "C:\Programmi\Spybot - Search & Destroy\SpybotSD.exe" /autocheck /autofix
O4 - HKLM\..\Run: [THGuard] "C:\Programmi\TrojanHunter 4.5\THGuard.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\RunServices: [MS Windows System Alert] MSWSA32.exe
O4 - HKLM\..\RunServices: [Microsoft CSRSS Service] csrssX.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Programmi\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MS Windows System Alert] MSWSA32.exe
O4 - HKCU\..\Run: [Microsoft CSRSS Service] csrssX.exe
O4 - HKCU\..\RunServices: [Microsoft CSRSS Service] csrssX.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Google Search - res://c:\programmi\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\programmi\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\programmi\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\programmi\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\programmi\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\programmi\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .spop: C:\Programmi\Internet Explorer\Plugins\NPDocBox.dll
O15 - ProtocolDefaults: 'http' protocol is in My Computer Zone, should be Internet Zone
O16 - DPF: {00134F72-5284-44F7-95A8-52A619F70751} (ObjWinNTCheck Class) - http://serverprimario/officescan/consol ... nNTChk.cab
O16 - DPF: {08D75BB0-D2B5-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment SetupINICtrl Class) - http://serverprimario/officescan/consol ... tupini.cab
O16 - DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment SetupCtrl Class) - http://serverprimario/officescan/consol ... /setup.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/ka ... nicode.cab
O16 - DPF: {35C3D91E-401A-4E45-88A5-F3B32CD72DF4} (Encrypt Class) - http://serverprimario/officescan/consol ... AtxEnc.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: {5EFE8CB1-D095-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment ObjRemoveCtrl Class) - http://serverprimario/officescan/consol ... veCtrl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 6214574466
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://eu-housecall.trendmicro-europe.c ... hcImpl.cab
O16 - DPF: {8990AFAD-D352-42AC-A72F-A660BBF6E209} (OfficeScan Management Console) - http://serverprimario/officescan/consol ... onsole.cab
O16 - DPF: {94EB57FE-2720-496C-B33F-D9353C6E23F7} (F-Secure Online Scanner 2.1) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {9E30754B-29A9-41CE-8892-70E9E07D15DC} - http://activex.microsoft.com/objects/ocget.dll
O20 - Winlogon Notify: ModuleUsage - C:\WINDOWS\system32\j0n2la5o1d.dll
O23 - Service: ewido security suite control - ewido networks - C:\Programmi\ewido anti-malware\ewidoctrl.exe
O23 - Service: Kaspersky Anti-Virus Service (kavsvc) - Kaspersky Lab - C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ScriptBlocking Service (SBService) - Unknown owner - C:\PROGRA~1\FILECO~1\SYMANT~1\SCRIPT~1\SBServ.exe (file missing)
END OF MESSAGE