da alexmaudit » mar dic 02, 2008 5:03 pm
----------------- FindyKill V4.706 ------------------
* User: Standard - ACER-A0BAD218BD
* Executed from : C:\Programmi\FindyKill
* Update on 27/11/08 by Chiquitine29
* Start at 16:55:43 the 02/12/2008
* Windows XP - Internet Explorer 7.0.5730.11
((((((((((((((((( *** Searching *** ))))))))))))))))))
--------------- [ Active Processes ] ----------------
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe
C:\Acer\eManager\anbmServ.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\libusbd-nt.exe
C:\Programmi\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\Programmi\Raxco\PerfectDisk2008\PD91Agent.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Programmi\File comuni\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\svchost.exe
--------------- [ Infected files / folders ] ----------------
»»»» Presence Files in C:
»»»» Presence Files in C:\WINDOWS
»»»» Presence Files in C:\WINDOWS\Prefetch
»»»» Presence Files in C:\WINDOWS\system32
Found ! [02/12/2008 12.54] - C:\WINDOWS\system32\mdelk.exe
Found ! [02/12/2008 12.54] - C:\WINDOWS\system32\wintems.exe
Found ! [02/12/2008 15.59] - C:\WINDOWS\system32\ban_list.txt
»»»» Presence Files in C:\WINDOWS\system32\drivers
Found ! [02/12/2008 12.53] - C:\WINDOWS\system32\drivers\srosa.sys
Found ! [02/12/2008 12.53] - C:\WINDOWS\system32\drivers\srosa2.sys
Found ! [02/07/2006 06.09] - C:\WINDOWS\system32\drivers\winfilse.exe
Found ! [01/12/2008 17.06] - "C:\WINDOWS\system32\drivers\downld"
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\112078.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\123328.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\124671.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\176750.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\223250.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\224968.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\229562.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\272140.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\287062.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\233656.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\242421.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\253328.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\255437.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\263734.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\335515.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\397812.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\399750.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\407484.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\465843.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\484218.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\57781.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\77296.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\80406.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\93953.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\102171.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\117078.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\164750.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\249968.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\270093.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\271390.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\276546.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\319593.exe
Found ! [01/12/2008 17.06] - C:\WINDOWS\system32\drivers\downld\337703.exe
»»»» Presence Files in C:\Documents and Settings\Standard\Dati applicazioni
Found ! [02/12/2008 12.56] - "C:\Documents and Settings\Standard\Dati applicazioni\m\flec006.exe"
Found ! [02/12/2008 12.56] - "C:\Documents and Settings\Standard\Dati applicazioni\m\list.oct"
Found ! [02/12/2008 12.57] - "C:\Documents and Settings\Standard\Dati applicazioni\m\data.oct"
Found ! [02/12/2008 12.57] - "C:\Documents and Settings\Standard\Dati applicazioni\m\srvlist.oct"
Found ! [02/12/2008 09.03] - "C:\Documents and Settings\Standard\Dati applicazioni\m\shared"
Found ! [02/12/2008 09.03] - "C:\Documents and Settings\Standard\Dati applicazioni\m"
»»»» Presence Files in C:\DOCUME~1\Standard\IMPOST~1\Temp
»»»» Presence Files in C:\Documents and Settings\Standard\Local Settings\Temporary Internet Files\Content.IE5
Found ! [28/03/2008 18.01] - C:\Documents and Settings\All Users\Dati applicazioni\Skype\Plugins\Local Cache\D3987B641C134048B815DB578D607F42_more.jpg
Found ! [02/12/2008 12.53] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\SZN9IMXI\b64_2[1].jpg
Found ! [02/12/2008 12.53] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\QHVWWXAX\b64_3[1].jpg
Found ! [02/12/2008 12.54] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\T8LX1EDM\b64[1].jpg
Found ! [02/12/2008 12.55] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\WSHTP7Z1\b64_2[1].jpg
Found ! [02/12/2008 12.56] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\XA02ALD3\b64[1].jpg
Found ! [02/12/2008 12.54] - C:\Documents and Settings\Standard\Impostazioni locali\Temporary Internet Files\Content.IE5\4TIAMJGL\b64_3[1].jpg
Found ! [08/02/2007 11.48] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{8AE8D5AC-D56D-4453-9AC1-B64A661EEA50}.jpg
Found ! [27/03/2007 17.28] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{DB6468AD-C8EB-44CD-9692-84CB74B5762E}.jpg
Found ! [31/03/2007 19.01] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{B88E74EF-3959-4B64-B9DF-332F8A44E5E2}.jpg
Found ! [12/04/2007 18.03] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{3F35B2DD-5F65-4297-99F8-B643BEE8C094}.jpg
Found ! [20/04/2007 12.56] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{4A14BA20-369D-42B1-B641-B1085DDCF951}.jpg
Found ! [07/05/2007 17.14] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{DC3F7350-CAA7-4522-AF09-74EDFBFB64FB}.jpg
Found ! [10/05/2007 10.23] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{9949AB7C-BC33-42AC-BC5B-05864C5B6463}.jpg
Found ! [14/05/2007 12.48] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{3FFE5FF2-F97F-4A8E-B64D-627C90746E94}.jpg
Found ! [14/05/2007 15.14] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{6D937275-693B-4B64-A9CF-1A74E18A1180}.jpg
Found ! [19/05/2007 16.44] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{1448DBD8-FA40-4B64-A5D4-B98AD50CBA0E}.jpg
Found ! [21/05/2007 16.58] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{FE32E712-8077-41D0-B64A-AC0AB5C9ED5D}.jpg
Found ! [08/10/2007 08.53] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{02B62C46-A73E-437B-9690-8D163143CB64}.jpg
Found ! [08/10/2007 08.53] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{266F49FC-87C5-40D6-B64D-495BA040D7CA}.jpg
Found ! [21/01/2008 09.14] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{4232E2C5-D6F7-4A7B-852E-F1068F18B649}.jpg
Found ! [15/02/2008 18.34] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{689D4870-DB64-43B9-9C37-386BB0374165}.jpg
Found ! [09/04/2008 18.30] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{F41B64A0-A42F-40BA-989E-73A4EBB2B838}.jpg
Found ! [02/05/2008 11.11] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{F3FB6474-E40A-4BDD-B9B8-704C4C3A19D9}.jpg
Found ! [03/05/2008 11.36] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{DE4060D6-FFB1-4D48-92E1-12F9F64B64D4}.jpg
Found ! [03/05/2008 11.43] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{08FE048A-86FE-4212-B647-69F116F079AB}.jpg
Found ! [03/05/2008 11.47] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{851EB646-65AD-4FA3-B9C2-D128B0463DE1}.jpg
Found ! [03/05/2008 11.47] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{35BB6473-855C-4468-B564-5A0A6840A506}.jpg
Found ! [23/05/2008 10.00] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{3D19B640-E510-4F84-9789-569FB8DA599E}.jpg
Found ! [22/06/2008 18.58] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{D292746B-6BA1-4315-8B64-B8DB8BDC14F3}.jpg
Found ! [25/09/2008 16.16] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{2ECC1093-B646-488C-8F93-961BC370354D}.jpg
Found ! [26/09/2008 15.46] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{B41BEF08-6366-4095-8C42-43E177B64DA2}.jpg
Found ! [10/05/2008 18.50] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{18D8BD23-6B64-40B3-BE2C-3AAAF4FD8137}.jpg
Found ! [01/11/2008 11.28] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{8CD3F0D8-F1D6-43E8-8EAC-839B648974FB}.jpg
Found ! [10/05/2008 18.50] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{09A1374C-B644-4BE0-8FA5-6206657DFDB4}.jpg
Found ! [14/11/2008 16.26] - C:\Documents and Settings\Standard\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\Cache copertina\LocalMLS\{63B64DA4-1CF3-4CE9-A0F7-AA6414BBDF6C}.jpg
Found ! [24/10/2008 16.16] - C:\Documents and Settings\Standard\Documenti\File ricevuti\AlbumArt_{76B1BF7F-8B64-4581-A9C8-4B555D5BD50F}_Large.jpg
Found ! [24/10/2008 16.16] - C:\Documents and Settings\Standard\Documenti\File ricevuti\AlbumArt_{76B1BF7F-8B64-4581-A9C8-4B555D5BD50F}_Small.jpg
Found ! [24/10/2008 16.16] - C:\Programmi\eMule\Incoming\AlbumArt_{76B1BF7F-8B64-4581-A9C8-4B555D5BD50F}_Small.jpg
Found ! [24/10/2008 16.16] - C:\Programmi\eMule\Incoming\AlbumArt_{76B1BF7F-8B64-4581-A9C8-4B555D5BD50F}_Large.jpg
Found ! [29/08/2008 10.33] - C:\Programmi\eMule\Incoming\AlbumArt_{9863CB64-AE2A-4D74-BCF0-BF8C5FE241D2}_Small.jpg
Found ! [29/08/2008 10.34] - C:\Programmi\eMule\Incoming\AlbumArt_{9863CB64-AE2A-4D74-BCF0-BF8C5FE241D2}_Large.jpg
--------------- [ Registry / Startup ] ----------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
SmartRAM="C:\Programmi\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
SynTPEnh=C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
[HKEY_CURRENT_USER\software\local appwizard-generated applications\avgnt]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hpqptc08]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\run]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winfilse]
--------------- [ Registry / Infected keys ] ----------------
Found ! - HKEY_USERS\S-1-5-21-1685289761-279550940-2157359121-1005\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_USERS\S-1-5-21-1685289761-279550940-2157359121-1005\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-1685289761-279550940-2157359121-1005\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-1685289761-279550940-2157359121-1005\Software\FirtR
Found ! - HKEY_USERS\S-1-5-21-1685289761-279550940-2157359121-1005\Software\MuleAppData
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winfilse
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_SK9OU0S
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sK9Ou0s
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sK9Ou0s
--------------- [ States / Services ] ----------------
Missing key : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot
- boot mode not available !!
Missing key : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal
- boot mode not available !!
Missing key : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network
- boot mode not available !!
+- Services : [ Auto=2 / Request=3 / Disable=4 ]
/!\ Ndisuio - Type of startup = 4
/!\ Ip6Fw - Type of startup = 4
/!\ SharedAccess - Type of startup = 4
/!\ wuauserv - Type of startup = 4
/!\ wscsvc - Type of startup = 4
--------------- [ Searching in removable drives ] ----------------
+- Informations :
C: - Unit… fissa
D: - Unit… fissa
+- Presence of files :
--------------- [ Registry / Mountpoint2 ] ----------------
-> Not found !
------------------- ! End of report ! --------------------
fatti non foste a viver come bruti, ma per seguir virtute e canoscenza!