############################## | FindyKill V5.021 |
# User : User (Administrators) # USER-2E1322D0B5
# Update on 10/12/2009 by Chiquitine29
# Start at: 13.08.45 | 13/01/2010
# Website :
http://pagesperso-orange.fr/NosTools/index.html# Contact :
FindyKill.Contact@gmail.com# AMD Athlon(tm) 64 Processor 3400+
# Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
# AV : AntiVir Desktop 9.0.1.32 [ Enabled | Updated ]
# AV : AntiVir Desktop 9.0.1.32 [ (!) Disabled | Updated ]
# AV : Sistema Antivirus NOD32 2.70 2.70 [ Enabled | Updated ]
# A:\ # Disco floppy, 3,5 pollici
# C:\ # Disco rigido locale # 58,92 Go (23,19 Go free) # NTFS
# D:\ # Disco rigido locale # 93,75 Go (93,67 Go free) # NTFS
# E:\ # Disco rigido locale # 233,75 Go (217,08 Go free) # NTFS
# G:\ # Disco rimovibile
# H:\ # Disco rimovibile
# I:\ # Disco CD-ROM
# J:\ # Disco rimovibile
# K:\ # Disco rimovibile
############################## | Active Processes |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Programmi\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Programmi\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\File comuni\Ahead\Lib\NMBgMonitor.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\documents and settings\user\impostazioni locali\dati applicazioni\jfacitxa.exe
C:\DOCUME~1\User\IMPOST~1\Temp\twunk_32x.exe
C:\Programmi\File comuni\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmi\File comuni\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Adobe\Acrobat 8.0\Acrobat\Acrobat.exe
C:\Programmi\File comuni\Adobe\Updater5\AdobeUpdater.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\taskmgr.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | C: |
################## | C:\WINDOWS |
Found ! C:\WINDOWS\Prefetch\4867.EXE-2759691D.pf
################## | C:\WINDOWS\system32 |
################## | C:\WINDOWS\system32\drivers |
################## | C:\Documents and Settings\User\Dati applicazioni |
################## | Temporary Internet Files |
################## | Registry / Infected keys |
Found ! [HKLM\software\microsoft\security center] "AntiVirusDisableNotify"
Found ! [HKLM\software\microsoft\security center] "AntiVirusOverride"
Found ! [HKLM\software\microsoft\security center] "FirewallDisableNotify"
Found ! [HKLM\software\microsoft\security center] "FirewallOverride"
Found ! [HKLM\software\microsoft\security center] "UpdatesDisableNotify"
################## | State / Service / Information |
# Showing of hidden files : OK
# Safe boot mode : OK
# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 3 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# (!) wscsvc -> Start = 4 ( Good = 2 | Bad = 4 )
################## | Cracks / Keygens / Serials |
################## | End of Report # FindyKill V5.021 ! |