da LucaPR » lun mag 26, 2008 7:24 pm
Allora, sono riuscito a eliminare i file grazie alla vecchia versione di avenger, di cui posto il log:
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\frbptyyh
*******************
Script file located at: \??\C:\Program Files\yllcglkq.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
File C:\WINDOWS\system32\drivers\srosa.sys deleted successfully.
File C:\WINDOWS\system32\wintems.exe not found!
Deletion of file C:\WINDOWS\system32\wintems.exe failed!
Could not process line:
C:\WINDOWS\system32\wintems.exe
Status: 0xc0000034
File C:\windows\system32\drivers\hldrrr.exe deleted successfully.
File C:\WINDOWS\system32\mdelk.exe not found!
Deletion of file C:\WINDOWS\system32\mdelk.exe failed!
Could not process line:
C:\WINDOWS\system32\mdelk.exe
Status: 0xc0000034
File C:\WINDOWS\system32\drivers\mdelk.exe deleted successfully.
File C:\Documents and Settings\lucas\Documenti\scaricati firefox\scion-tc.zip deleted successfully.
File C:\Programmi\eMule\Incoming\Easy_Calendar_Maker_1.33_Key+Serial.zip deleted successfully.
File C:\Programmi\eMule\Incoming\Easy Calendar Maker 2.0.zip deleted successfully.
File C:\Programmi\eMule\Incoming\PDF Password Recovery 3.0.zip deleted successfully.
File C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe deleted successfully.
File C:\Programmi\SlySoft\AnyDVD\AnyDVDtray.exe deleted successfully.
Folder C:\WINDOWS\system32\drivers\downld deleted successfully.
Folder C:\Muestras deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Services\srosa deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA deleted successfully.
Completed script processing.
*******************
Finished! Terminate.
Ps.: ho ancora sul desktop il finto programma "Easy Calendar Maker" che tra l'altro antivir non mi ha rilevato virus (lo avevo scansionato prima di eseguirlo) lo devo eliminare manualmente??
Grazie del vostro presioso aiuto
Luca