da gabryc89 » dom apr 12, 2009 9:07 pm
ecco di seguito il file log di Findykill:
----------------- FindyKill V4.707 ------------------
* User : HP_Proprietario - NOME-80B5784770
* executed from : C:\Programmi\FindyKill
* Update on 06/12/08 par Chiquitine29
* Start at 22:01:13 the 13/04/2009
* Windows XP - Internet Explorer 6.0.2900.5512
((((((((((((((( *** deleting *** ))))))))))))))))))
--------------- [ Active Processes ] ----------------
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\userinit.exe
--------------- [ Infected files / folders ] ----------------
»»»» Supression files in C:
»»»» Supression files in C:\WINDOWS
»»»» Supression files in C:\WINDOWS\Prefetch
»»»» Supression files in C:\WINDOWS\system32
»»»» Supression files in C:\WINDOWS\system32\drivers
»»»» Supression files in C:\Documents and Settings\HP_Proprietario\Dati applicazioni
»»»» Supression files in C:\DOCUME~1\HP_PRO~1\IMPOST~1\Temp
»»»» Supression files in C:\Documents and Settings\HP_Proprietario\Local Settings\Temporary Internet Files\Content.IE5
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\hip hop,ita ecc\AlbumArt_{12BB764B-C788-441F-838A-0B649E2AF714}_Large.jpg
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\hip hop,ita ecc\AlbumArt_{12BB764B-C788-441F-838A-0B649E2AF714}_Small.jpg
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\metal\simphony X\simphoni x2\Album sconosciuto (21-11-2005 18.24.07)\AlbumArt_{3CD0AF26-886E-4259-BCF5-9746CE9CB647}_Large.jpg
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\metal\simphony X\simphoni x2\Album sconosciuto (21-11-2005 18.24.07)\AlbumArt_{3CD0AF26-886E-4259-BCF5-9746CE9CB647}_Small.jpg
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\sigle\COLONNE SONORE FILM E PUBBLICITA' - VARIE -\AlbumArt_{48790A84-AC89-46B3-B648-18544200E380}_Large.jpg
Deleted ! - C:\Documents and Settings\HP_Proprietario\Documenti\Musica\sigle\COLONNE SONORE FILM E PUBBLICITA' - VARIE -\AlbumArt_{48790A84-AC89-46B3-B648-18544200E380}_Small.jpg
--------------- [ Registry / Infected keys ] ----------------
Deleted ! - HKEY_USERS\S-1-5-21-3042224672-2563900748-1485817555-1008\Software\Ubisoft
--------------- [ States / Restarting of services ] ----------------
+- Services : [ Auto=2 / Request=3 / Disable=4 ]
Ndisuio - Type of startup = 3
EapHost - Type of startup = 2
Ip6Fw - Type of startup = 2
SharedAccess - Type of startup = 2
wuauserv - Type of startup = 2
wscsvc - Type of startup = 2
--------------- [ Cleaning removable drives ] ----------------
+- Informations :
C: - Unit… fissa
D: - Unit… fissa
H: - Unit… CD-ROM
I: - Unit… CD-ROM
+- deleting files :
Deleted ! - D:\info.exe
Not deleted !! - H:\autorun.inf
Not deleted !! - I:\autorun.inf
--------------- [ Registry / Mountpoint2 ] ----------------
-> Not found !
--------------- [ Searching Cracks / Keygen ] ----------------
---------------- ! End of report ! ------------------