Esegui ogni volta che accendo il pc mi compare l'avviso e poi mi esce una finestra con su scritto "continuare a usare gli script nella pagina?" e le opzioni si o no
qualcuno è in grado di consigliarmi cm toglierlo sto virus?
-
- Annuncio Pubblicitario
nn riesco a togliere un virus
3 messaggi
• Pagina 1 di 1
nn riesco a togliere un virus
da inesperto » ven mag 13, 2005 12:04 pm
ogni volta che accendo il pc mi compare l'avviso e poi mi esce una finestra con su scritto "continuare a usare gli script nella pagina?" e le opzioni si o no
qualcuno è in grado di consigliarmi cm toglierlo sto virus?
-
inesperto - Senior Member
- Messaggi: 313
- Iscritto il: dom apr 10, 2005 4:10 pm
da inesperto » ven mag 13, 2005 12:06 pm
QUESTO è AUTORUNS
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
+ C:\WINDOWS\system32\userinit.exe Applicazione accesso Userinit Microsoft Windows Publisher c:\windows\system32\userinit.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
+ Explorer.exe Esplora risorse Microsoft Windows Publisher c:\windows\explorer.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ AGRSMMSG SoftModem Messaging Applet Microsoft Windows Hardware Compatibility Publisher c:\windows\agrsmmsg.exe
+ Apoint Alps Pointing-device Driver Microsoft Windows Hardware Compatibility Publisher c:\programmi\apoint2k\apoint.exe
+ ATIModeChange ATI 2D Mode component Microsoft Windows Hardware Compatibility Publisher c:\windows\system32\ati2mdxx.exe
+ ATIPTA ATI Desktop Control Panel (Not verified) ATI Technologies, Inc. c:\programmi\ati technologies\ati control panel\atiptaxx.exe
+ AVGCtrl AntiVir Guard/XP Control Program (Not verified) H+BEDV Datentechnik GmbH c:\programmi\avpersonal\avgnt.exe
+ AVSCHED32 AVSched32 (Not verified) H+BEDV Datentechnik GmbH c:\programmi\avpersonal\avsched32.exe
+ CamMonitor HpqCmon MFC Application c:\programmi\hp\digital imaging\unload\hpqcmon.exe
+ Cpqset c:\programmi\hpq\default settings\cpqset.exe
+ eabconfg.cpl Quick Launch Buttons (Not verified) Hewlett-Packard c:\programmi\hpq\quick launch buttons\eabservr.exe
+ HP Software Update hpwuSchd (Not verified) Hewlett-Packard Company c:\programmi\hewlett-packard\hp software update\hpwuschd2.exe
+ HPHmon05 HPHmon05 (Not verified) Hewlett-Packard c:\windows\system32\hphmon05.exe
+ HPHUPD05 File not found: c:\Programmi\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
+ iTunesHelper Modulo iTunesHelper (Not verified) Apple Computer, Inc. c:\programmi\itunes\ituneshelper.exe
+ Lexmark X1100 Series Lexmark X1100 Series Button Manager (Not verified) Lexmark International, Inc. c:\programmi\lexmark x1100 series\lxbkbmgr.exe
+ Microsoft Works Update Detection Rilevamento aggiornamenti di Microsoft® Works (Not verified) Microsoft® Corporation c:\programmi\file comuni\microsoft shared\works shared\wkufind.exe
+ msnappau MSN Updater (Not verified) Microsoft Corporation c:\programmi\msn apps\updater\01.02.3000.1001\it\msnappau.exe
+ QuickTime Task (Not verified) Apple Computer, Inc. c:\programmi\quicktime\qttask.exe
+ Share-to-Web Namespace Daemon hpgs2wnd (Not verified) Hewlett-Packard c:\programmi\hp\hp share-to-web\hpgs2wnd.exe
+ smapp SoundMAX System Tray (Not verified) Analog Devices, Inc. c:\programmi\analog devices\soundmax\smtray.exe
+ SunJavaUpdateSched c:\programmi\java\j2re1.4.2_03\bin\jusched.exe
+ UpdateManager Sonic Update Manager (Not verified) Sonic Solutions c:\programmi\file comuni\sonic\update manager\sgtray.exe
+ WinampAgent c:\programmi\winamp\winampa.exe
C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica
+ HP Digital Imaging Monitor.lnk HP Digital Imaging Monitor (CUE) (Not verified) Hewlett-Packard Co. c:\programmi\hp\digital imaging\bin\hpqtra08.exe
+ Microsoft Office.lnk Microsoft Office XP component Microsoft Corporation c:\programmi\microsoft office\office10\osa.exe
+ Windows Update.hta c:\documents and settings\all users\menu avvio\programmi\esecuzione automatica\windows update.hta
C:\Documents and Settings\Mauro Scisciolo\Menu Avvio\Programmi\Esecuzione automatica
+ WKCALREM.LNK Microsoft® Works Calendar Reminder Service (Not verified) Microsoft® Corporation c:\programmi\file comuni\microsoft shared\works shared\wkcalrem.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
+ BackupNotify Backup Notifier (Not verified) Hewlett-Packard Company c:\programmi\hp\digital imaging\bin\backupnotify.exe
+ CTFMON.EXE CTF Loader Microsoft Windows Publisher c:\windows\system32\ctfmon.exe
+ MsnMsgr MSN Messenger (Not verified) Microsoft Corporation c:\programmi\msn messenger\msnmsgr.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit
+ C:\WINDOWS\system32\userinit.exe Applicazione accesso Userinit Microsoft Windows Publisher c:\windows\system32\userinit.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
+ Explorer.exe Esplora risorse Microsoft Windows Publisher c:\windows\explorer.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ AGRSMMSG SoftModem Messaging Applet Microsoft Windows Hardware Compatibility Publisher c:\windows\agrsmmsg.exe
+ Apoint Alps Pointing-device Driver Microsoft Windows Hardware Compatibility Publisher c:\programmi\apoint2k\apoint.exe
+ ATIModeChange ATI 2D Mode component Microsoft Windows Hardware Compatibility Publisher c:\windows\system32\ati2mdxx.exe
+ ATIPTA ATI Desktop Control Panel (Not verified) ATI Technologies, Inc. c:\programmi\ati technologies\ati control panel\atiptaxx.exe
+ AVGCtrl AntiVir Guard/XP Control Program (Not verified) H+BEDV Datentechnik GmbH c:\programmi\avpersonal\avgnt.exe
+ AVSCHED32 AVSched32 (Not verified) H+BEDV Datentechnik GmbH c:\programmi\avpersonal\avsched32.exe
+ CamMonitor HpqCmon MFC Application c:\programmi\hp\digital imaging\unload\hpqcmon.exe
+ Cpqset c:\programmi\hpq\default settings\cpqset.exe
+ eabconfg.cpl Quick Launch Buttons (Not verified) Hewlett-Packard c:\programmi\hpq\quick launch buttons\eabservr.exe
+ HP Software Update hpwuSchd (Not verified) Hewlett-Packard Company c:\programmi\hewlett-packard\hp software update\hpwuschd2.exe
+ HPHmon05 HPHmon05 (Not verified) Hewlett-Packard c:\windows\system32\hphmon05.exe
+ HPHUPD05 File not found: c:\Programmi\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
+ iTunesHelper Modulo iTunesHelper (Not verified) Apple Computer, Inc. c:\programmi\itunes\ituneshelper.exe
+ Lexmark X1100 Series Lexmark X1100 Series Button Manager (Not verified) Lexmark International, Inc. c:\programmi\lexmark x1100 series\lxbkbmgr.exe
+ Microsoft Works Update Detection Rilevamento aggiornamenti di Microsoft® Works (Not verified) Microsoft® Corporation c:\programmi\file comuni\microsoft shared\works shared\wkufind.exe
+ msnappau MSN Updater (Not verified) Microsoft Corporation c:\programmi\msn apps\updater\01.02.3000.1001\it\msnappau.exe
+ QuickTime Task (Not verified) Apple Computer, Inc. c:\programmi\quicktime\qttask.exe
+ Share-to-Web Namespace Daemon hpgs2wnd (Not verified) Hewlett-Packard c:\programmi\hp\hp share-to-web\hpgs2wnd.exe
+ smapp SoundMAX System Tray (Not verified) Analog Devices, Inc. c:\programmi\analog devices\soundmax\smtray.exe
+ SunJavaUpdateSched c:\programmi\java\j2re1.4.2_03\bin\jusched.exe
+ UpdateManager Sonic Update Manager (Not verified) Sonic Solutions c:\programmi\file comuni\sonic\update manager\sgtray.exe
+ WinampAgent c:\programmi\winamp\winampa.exe
C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica
+ HP Digital Imaging Monitor.lnk HP Digital Imaging Monitor (CUE) (Not verified) Hewlett-Packard Co. c:\programmi\hp\digital imaging\bin\hpqtra08.exe
+ Microsoft Office.lnk Microsoft Office XP component Microsoft Corporation c:\programmi\microsoft office\office10\osa.exe
+ Windows Update.hta c:\documents and settings\all users\menu avvio\programmi\esecuzione automatica\windows update.hta
C:\Documents and Settings\Mauro Scisciolo\Menu Avvio\Programmi\Esecuzione automatica
+ WKCALREM.LNK Microsoft® Works Calendar Reminder Service (Not verified) Microsoft® Corporation c:\programmi\file comuni\microsoft shared\works shared\wkcalrem.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
+ BackupNotify Backup Notifier (Not verified) Hewlett-Packard Company c:\programmi\hp\digital imaging\bin\backupnotify.exe
+ CTFMON.EXE CTF Loader Microsoft Windows Publisher c:\windows\system32\ctfmon.exe
+ MsnMsgr MSN Messenger (Not verified) Microsoft Corporation c:\programmi\msn messenger\msnmsgr.exe
-
inesperto - Senior Member
- Messaggi: 313
- Iscritto il: dom apr 10, 2005 4:10 pm
da crazy.cat » ven mag 13, 2005 12:16 pm
Il colpevole dovrebbe essere questo file update.hta e questa riga.
+ Windows Update.hta c:\documents and settings\all users\menu
avvio\programmi\esecuzione automatica\windows update.hta
Prova a cancellare prima la riga e poi riavvii il pc in modalità provvisoria e cancelli il file update.hta vediamo se basta questo.
come si chima il virus?
+ Windows Update.hta c:\documents and settings\all users\menu
avvio\programmi\esecuzione automatica\windows update.hta
Prova a cancellare prima la riga e poi riavvii il pc in modalità provvisoria e cancelli il file update.hta vediamo se basta questo.
come si chima il virus?
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
-
crazy.cat - MLI Hero
- Messaggi: 30959
- Iscritto il: lun gen 12, 2004 1:38 pm
- Località: Mestre
3 messaggi
• Pagina 1 di 1
Chi c’è in linea
Visitano il forum: Nessuno e 5 ospiti
megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising