Help :log Spyware Terminator 1

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

Codice:

Logfile of Spyware Terminator v2.8.2.192 (db:5.004.027.000)
Scan Time: 27/04/2011 12:55:13  length: 4509 s
Platform: W7 (6.1.0.7600)
User: Admin
Boot Mode: Normal
Scan type: Full_Virus__Spyware_Scan
Scanned Objects: 83573 (Critical:36)
Filter: No System items, No Safe items, No Invalid items

Running Processes
smss.exe [Microsoft Corporation] : C:\Windows\sysnative\smss.exe
csrss.exe [Microsoft Corporation] : C:\Windows\sysnative\csrss.exe
csrss.exe [Microsoft Corporation] : C:\Windows\sysnative\csrss.exe
services.exe [Microsoft Corporation] : C:\Windows\sysnative\services.exe
winlogon.exe [Microsoft Corporation] : C:\Windows\sysnative\winlogon.exe
lsm.exe [Microsoft Corporation] : C:\Windows\sysnative\lsm.exe
nvvsvc.exe [NVIDIA Corporation] : C:\Windows\sysnative\nvvsvc.exe
nvvsvc.exe [NVIDIA Corporation] : C:\Windows\sysnative\nvvsvc.exe
FBAgent.exe [ASUSTeK Computer Inc.] : C:\Windows\sysnative\FBAgent.exe
AsLdrSrv.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
GFNEXSrv.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
AvastSvc.exe [AVAST Software] : C:\Program Files\AVAST Software\Avast\AvastSvc.exe
spoolsv.exe [Microsoft Corporation] : C:\Windows\sysnative\spoolsv.exe
AppleMobileDeviceService.exe [Apple Inc.] : C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
LMS.exe [Intel Corporation] : C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SeaPort.exe [Microsoft Corporation] : C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
sftvsa.exe [Microsoft Corporation] : C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
TuneUpUtilitiesService64.exe [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
WLIDSVC.EXE [Microsoft Corp.] : C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
sftlist.exe [Microsoft Corporation] : C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
WLIDSVCM.EXE [Microsoft Corp.] : C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
TuneUpUtilitiesApp64.exe [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
dwm.exe [Microsoft Corporation] : C:\Windows\sysnative\dwm.exe
taskhost.exe [Microsoft Corporation] : C:\Windows\sysnative\taskhost.exe
wcourier.exe : C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
ControlDeckStartUp.exe : C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
sensorsrv.exe [ASUS] : C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
BatteryLife.exe [ATK] : C:\Program Files\P4G\BatteryLife.exe
ASPG.exe [ASUS] : C:\Program Files (x86)\ASUS\ASUS CopyProtect\ASPG.exe
ALU.exe : C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
ACMON.exe [ATK] : C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
ACEngSvr.exe [ASUSTeK] : C:\Windows\SysWOW64\ACEngSvr.exe
CVHSVC.EXE [Microsoft Corporation] : C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
AsusWSService.exe : C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
AmIcoSinglun64.exe [AlcorMicro Co., Ltd.] : C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
igfxtray.exe [Intel Corporation] : C:\Windows\sysnative\igfxtray.exe
hkcmd.exe [Intel Corporation] : C:\Windows\sysnative\hkcmd.exe
igfxpers.exe [Intel Corporation] : C:\Windows\sysnative\igfxpers.exe
ETDCtrl.exe [ELAN Microelectronic Corp.] : C:\Program Files\Elantech\ETDCtrl.exe
sidebar.exe [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
HControl.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
ATKOSD.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
KBFiltr.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
PDVD9Serv.exe [CyberLink Corp.] : C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
WDC.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
Boingo Wi-Fi.exe [Boingo Wireless, Inc.] : C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
ATKOSD2.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
DMedia.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
HControlUser.exe [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
nusb3mon.exe [NEC Electronics Corporation] : C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
AvastUI.exe [AVAST Software] : C:\Program Files\AVAST Software\Avast\AvastUI.exe
SweetIM.exe [SweetIM Technologies Ltd.] : C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
GoogleToolbarUser_32.exe [Google Inc.] : C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
SCServer.exe [Microsoft Corporation] : C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
ADSMSrv.exe [ASUSTek Computer Inc.] : C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
ADSMTray.exe [ASUSTek Computer Inc.] : C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
RichVideo.exe : C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
AsScrPro.exe [ASUS] : C:\Windows\AsScrPro.exe
CLMLSvc.exe [CyberLink] : C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
RAVCpl64.exe [Realtek Semiconductor] : C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
UNS.exe [Intel Corporation] : C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
wmpnetwk.exe [Microsoft Corporation] : C:\Program Files\Windows Media Player\wmpnetwk.exe
registrybooster.exe [Uniblue Systems Limited] : C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe
rbmonitor.exe [Uniblue Systems Limited] : C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
VSSVC.exe [Microsoft Corporation] : C:\Windows\sysnative\VSSVC.exe

Internet Settings
R - HKCU\Software\Microsoft\Internet Explorer\Main, Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60347
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://home.sweetim.com
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain = 
R - HKLM\Software\Microsoft\Internet Explorer\Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157   (64-bit)
R - HKLM\Software\Microsoft\Internet Explorer\Search, SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm   (64-bit)
R - HKLM\Software\Microsoft\Internet Explorer\Search, CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm   (64-bit)
R - HKLM\System\CurrentControlSet\Services\Tcpip\Parameters, Domain =    (64-bit)
R - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony, DomainName =    (64-bit)

BHO
02 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -  [Microsoft Corporation] : C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
02 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
02 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -  [Google Inc.] : C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
02 - BHO: SweetIM Toolbar Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} -  [SweetIM Technologies Ltd.] : C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
02 - BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll   (64-bit)
02 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} -  [Microsoft Corp.] : C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll   (64-bit)
02 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -  [Google Inc.] : C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll   (64-bit)
02 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -  [Google Inc.] : C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg64.dll   (64-bit)

Toolbars
03 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
03 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} -  [SweetIM Technologies Ltd.] : C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
03 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -  [Google Inc.] : C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
03 - Toolbar: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll   (64-bit)
03 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -  [Google Inc.] : C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll   (64-bit)

StartUps
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Sidebar :  [Microsoft Corporation] : C:\Program Files\Windows Sidebar\sidebar.exe
04 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, UniblueRegistryBooster :  [Uniblue Systems Limited] : C:\Program Files (x86)\UNIBLUE\REGISTRYBOOSTER\LAUNCHER.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, MDS_Menu :  [CyberLink Corp.] : C:\Program Files (x86)\CYBERLINK\MEDIASHOWESPRESSO\MUITRANSFER\MUISTARTMENU.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, RemoteControl9 :  [CyberLink Corp.] : C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, PDVD9LanguageShortcut :  [CyberLink Corp.] : C:\Program Files (x86)\CYBERLINK\POWERDVD9\LANGUAGE\LANGUAGE.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, UpdatePSTShortCut :  [CyberLink Corp.] : C:\Program Files (x86)\CYBERLINK\DVD SUITE\MUITRANSFER\MUISTARTMENU.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, UpdateP2GoShortCut :  [CyberLink Corp.] : C:\Program Files (x86)\CYBERLINK\POWER2GO\MUITRANSFER\MUISTARTMENU.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Boingo Wi-Fi :  : C:\Program Files (x86)\BOINGO\BOINGO WI-FI\BOINGO.LNK
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ATKOSD2 :  [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ATKMEDIA :  [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HControlUser :  [ASUS] : C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, NUSB3MON :  [NEC Electronics Corporation] : C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SwitchBoard :  [Adobe Systems Incorporated] : C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, AdobeCS5ServiceManager :  [Adobe Systems Incorporated] : C:\Program Files (x86)\Common Files\ADOBE\CS5SERVICEMANAGER\CS5SERVICEMANAGER.EXE
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, avast :  [AVAST Software] : C:\Program Files\AVAST Software\Avast\AvastUI.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, SweetIM :  [SweetIM Technologies Ltd.] : C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, AppleSyncNotifier :  [Apple Inc.] : C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ASUS WebStorage :  : C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, AmIcoSinglun64 :  [AlcorMicro Co., Ltd.] : C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, IgfxTray :  [Intel Corporation] : C:\Windows\sysnative\igfxtray.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, HotKeysCmds :  [Intel Corporation] : C:\Windows\sysnative\hkcmd.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, Persistence :  [Intel Corporation] : C:\Windows\sysnative\igfxpers.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, ETDWare :  [ELAN Microelectronic Corp.] : C:\Program Files\Elantech\ETDCtrl.exe   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run, AdobeAAMUpdater-1.0 :  [Adobe Systems Incorporated] : C:\Program Files (x86)\Common Files\ADOBE\OOBE\PDAPP\UWA\UPDATERSTARTUPUTILITY.EXE   (64-bit)
04 - HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows, AppInit_DLLs :  [NVIDIA Corporation] : C:\Windows\SysWOW64\nvinit.dll

Shell Extensions
 - {06A2568A-CED6-4187-BB20-400B8C02BE5A} -  [Microsoft Corporation] : C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
Windows Live Photo Gallery Viewer Autoplay Shim - {00F33137-EE26-412F-8D71-F84E4C2C6625} -  [Microsoft Corporation] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Autoplay Drop Target - {2BE99FD4-A181-4996-BFA9-58C5FFD11F6C} -  [Microsoft Corporation] : C:\Program Files (x86)\WINDOWS LIVE\PHOTO GALLERY\WLXPHOTOGALLERY.EXE
Windows Live Photo Gallery Editor Drop Target - {00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C} -  [Microsoft Corporation] : C:\Program Files (x86)\WINDOWS LIVE\PHOTO GALLERY\WLXPHOTOGALLERY.EXE
Windows Live Photo Gallery Viewer Drop Target - {00F374B7-B390-4884-B372-2FC349F2172B} -  [Microsoft Corporation] : C:\Program Files (x86)\WINDOWS LIVE\PHOTO GALLERY\WLXPHOTOGALLERY.EXE
Windows Live Photo Gallery Viewer Shim - {00F346CB-35A4-465B-8B8F-65A29DBAB1F6} -  [Microsoft Corporation] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Editor Shim - {00F3712A-CA79-45B4-9E4D-D7891E7F8B9D} -  [Microsoft Corporation] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
Windows Live Photo Gallery Viewer Autoplay Shim - {00F30F90-3E96-453B-AFCD-D71989ECC2C7} -  [Microsoft Corporation] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
avast - {472083B0-C522-11CF-8763-00608CC02F24} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\ashShell.dll
TuneUp Shredder Shell Extension - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} -  [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\SDShelEx-win32.dll
TuneUp Disk Space Explorer Shell Extension - {4838CD50-7E5D-4811-9B17-C47A85539F28} -  [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\DseShExt-x86.dll
DesktopContext Class - {A70C977A-BF00-412C-90B7-034C51DA2439} -  [NVIDIA Corporation] : C:\Windows\sysnative\nvcpl.dll   (64-bit)
NVIDIA CPL Extension - {FFB699E0-306A-11d3-8BD1-00104B6F7516} -  [NVIDIA Corporation] : C:\Windows\sysnative\nvcpl.dll   (64-bit)
NVIDIA CPL Context Menu Extension - {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} -  [NVIDIA Corporation] : C:\Windows\sysnative\nvshext.dll   (64-bit)
NvAppShExt Class - {A929C4CE-FD36-4270-B4F5-34ECAC5BD63C} -  [NVIDIA Corporation] : C:\Windows\sysnative\nv3dappshext.dll   (64-bit)
OpenGLShExt Class - {E97DEC16-A50D-49bb-AE24-CF682282E08D} -  [NVIDIA Corporation] : C:\Windows\sysnative\nv3dappshext.dll   (64-bit)
Microsoft OneNote Namespace Extension for Windows Desktop Search - {0875DCB6-C686-4243-9432-ADCCF0B9F2D7} -  [Microsoft Corporation] : C:\Program Files\Microsoft Office\Office14\ONFILTER.DLL   (64-bit)
avast - {472083B0-C522-11CF-8763-00608CC02F24} -  [AVAST Software] : C:\Program Files\AVAST Software\Avast\ashShA64.dll   (64-bit)
TuneUp Theme Extension - {44440D00-FF19-4AFC-B765-9A0970567D97} -  [TuneUp Software] : C:\Windows\system32\uxtuneup.dll   (64-bit)
TuneUp Shredder Shell Extension - {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} -  [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\SDShelEx-x64.dll   (64-bit)
TuneUp Disk Space Explorer Shell Extension - {4838CD50-7E5D-4811-9B17-C47A85539F28} -  [TuneUp Software] : C:\Program Files (x86)\TuneUp Utilities 2011\DseShExt-x64.dll   (64-bit)
iTunes - {B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} -  [Apple Inc.] : C:\Program Files\iTunes\iTunesMiniPlayer.dll   (64-bit)

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

Threat

Codice:

Files
<Fakesec-317> [Conduit Ltd.] : C:\Program Files (x86)\Conduit\Community Alerts\Alert0.dll
<Trojan.Fakesec-317> [Conduit Ltd.] : C:\Program Files (x86)\Conduit\Community Alerts\Alert0.dll
<GenericFF-1> : C:\eSupport\eDriver\Software\ASUS\WIRELESSDISPLAY\32\SETUP.EXE
<Trojan.GenericFF-1> : C:\eSupport\eDriver\Software\ASUS\WIRELESSDISPLAY\32\SETUP.EXE
<GenericFF-1> : C:\eSupport\eDriver\Software\ASUS\WIRELESSDISPLAY\64\SETUP.EXE
<Trojan.GenericFF-1> : C:\eSupport\eDriver\Software\ASUS\WIRELESSDISPLAY\64\SETUP.EXE
<Heuristics.Broken.Executable> : C:\eSupport\eDriver\Software\CARDREADER\ALCOR\PROGRAM FILES\AMICOSINGLUN\GAMICON.ICL
<Heuristics.Broken.Executable> : C:\eSupport\eDriver\Software\CARDREADER\ALCOR\PROGRAM FILES\AMICOSINGLUN\GAMICON.ICL
<Fakesec-310> : C:\Program Files\Adobe\Adobe Premiere Pro CS5\libxml2-2.dll
<Trojan.Fakesec-310> : C:\Program Files\Adobe\Adobe Premiere Pro CS5\libxml2-2.dll
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt5464.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt5464.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt5857.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt5857.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt7629.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\htt7629.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httB5E8.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httB5E8.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httDE2.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httDE2.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httDF36.tmp
<Heuristics.Broken.Executable> : C:\Program Files\Trend Micro\Internet Security\TmpxTmp\httDF36.tmp
<Heuristics.Broken.Executable> : C:\Program Files (x86)\AmIcoSingLun\gamicon.icl
<Heuristics.Broken.Executable> : C:\Program Files (x86)\AmIcoSingLun\gamicon.icl
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\e85d9ad21cbe6f004\WLXSuite.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\e85d9ad21cbe6f004\WLXSuite.msi
<GenericFF-1> : C:\Program Files (x86)\Common Files\Windows Live\.cache\e9b010671cbe6f005\crt90.msi
<Trojan.GenericFF-1> : C:\Program Files (x86)\Common Files\Windows Live\.cache\e9b010671cbe6f005\crt90.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ea17d46c1cbe6f006\d3dx10-x86.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ea17d46c1cbe6f006\d3dx10-x86.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ec6f61c31cbe6f00a\Contacts.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ec6f61c31cbe6f00a\Contacts.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ee4895811cbe6f00c\pimt.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Common Files\Windows Live\.cache\ee4895811cbe6f00c\pimt.msi
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Softonic-IT\tbSof1.dll
<Heuristics.Broken.Executable> : C:\Program Files (x86)\Softonic-IT\tbSof1.dll
<Heuristics.Broken.Executable> : C:\Users\Filo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ISAODLW\SpywareTerminatorSetup[1].exe
<Heuristics.Broken.Executable> : C:\Users\Filo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ISAODLW\SpywareTerminatorSetup[1].exe
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\Microsoft_VC80_MFCLOC_x86\Microsoft_VC80_MFCLOC_x86.msi
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\Microsoft_VC80_MFCLOC_x86\Microsoft_VC80_MFCLOC_x86.msi
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\Microsoft_VC80_MFCLOC_x86_x64\Microsoft_VC80_MFCLOC_x86_x64.msi
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\Microsoft_VC80_MFCLOC_x86_x64\Microsoft_VC80_MFCLOC_x86_x64.msi
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\ph\ph.msi
<Heuristics.Broken.Executable> : C:\Users\Filo\Desktop\Adobe CS5\payloads\ph\ph.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1ba.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1ba.msi
<GenericFF-1> : C:\Windows\Installer\58ff1d1.msi
<Trojan.GenericFF-1> : C:\Windows\Installer\58ff1d1.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1de.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1de.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1f0.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1f0.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1ff.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\58ff1ff.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad3b7.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad3b7.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad3e1.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad3e1.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad42b.msi
<Heuristics.Broken.Executable> : C:\Windows\Installer\94ad42b.msi
<Heuristics.Broken.Executable> : C:\Windows\SoftwareDistribution\Download\cebd843912f9517dbb8e129aaa4b541af05f4047
<Heuristics.Broken.Executable> : C:\Windows\SoftwareDistribution\Download\cebd843912f9517dbb8e129aaa4b541af05f4047
<GenericFF-1> : C:\Windows\winsxs\x86_microsoft.vc90.openmp_1fc8b3b9a1e18e3b_9.0.21022.8_none_ecdf8c290e547f39\vcomp90.dll

Codice:

<Trojan.GenericFF-1> : C:\Windows\winsxs\x86_microsoft.vc90.openmp_1fc8b3b9a1e18e3b_9.0.21022.8_none_ecdf8c290e547f39\vcomp90.dll
<GenericFF-1> : C:\Windows\winsxs\x86_microsoft.vc90.openmp_1fc8b3b9a1e18e3b_9.0.30729.5570_none_80bb811d1e9a4ed2\vcomp90.dll
<Trojan.GenericFF-1> : C:\Windows\winsxs\x86_microsoft.vc90.openmp_1fc8b3b9a1e18e3b_9.0.30729.5570_none_80bb811d1e9a4ed2\vcomp90.dll
.......

help cosa faccio ??

RikyToro · **Inviato:** mer apr 27, 2011 11:07 pm

Fagli eliminare i file infetti.

Poi fai una scansione con il tuo Avast.

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

il punto è questo che non me li elimina mi dice che non posso toccarle e... non so cosa fare ...
non son o un grande esperto

RikyToro · **Inviato:** gio apr 28, 2011 9:43 am

fai una scansione con Avast.

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

fatto non trova niente.... e mi si blocca il pc a volte

RikyToro · **Inviato:** gio apr 28, 2011 11:01 am

Spywareterminator ti ha trovato solo 3 file infetti che però controllando sul web ho scoperto essere 3 file appartenenti a Microsoft Visual Studio 2008.
Vogliono farti paura e farti comprare la versione a pagamento.

Spybot non fa testo, trova spesso delle cavolate come Cookie e dice che sono file infetti. E' obsoleto.

Avast non trova a niente.
Combofix non trova niente.
Malwarebytes non trova niente.

Io quindi starei tranquillo.
Il tuo pc non ha infezioni.

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

grande

grazie.. allora sto tranquillo ... siiete grandi .... e grazie ancora per la pazienza

RikyToro · **Inviato:** gio apr 28, 2011 12:29 pm

Figurati

Se avrai ancora bisogno noi siamo qui.

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

ragione .... allora ... bordelo io non capisco .... è sempre infetto da qualche cosa sto pc ... prima funzionava poi... ha cominciato a bloaccrsi poi ho messo a posto ... e adesso ogni tanto si blocca mi dice che non ha virus o cazzate e poi tutto d un tratto firefox mi va piu veloce ma ha ricominciato a bloccarsi e poi non so mi trova uno spywear (spywear terminator) che mi avevano detto qua nel forum che era una pressione fatta da windows per farmi comprare non ho capito bene cosa, non era uno spywear ma ho un macello di problemi.... help

Samuamu · **Inviato:** lun mag 02, 2011 7:09 pm

FiloPSy devi star tranquillo, non scrivere la tua frustrazione sul Forum, utilizza un linguaggio comprensibile, niente ca***te, bordello, utilizza termini più consoni, ci sono anche altri utenti e visitatori che cercano risoluzioni per il loro pc, magari simili al tuo.
TUTTO SI RISOLVE, NOI CERCHEREMO DI AIUTARTI.
Per cominciare:

- Utilizza CCleaner: esegui una pulizia completa, risolvi i problemi, elimina le voci in avvio di sistema che non servono (in avvio il pc ha bisogno solo dell'essenziale)
- Esegui una pulitura disco (utilità di sistema): esegui la pulizia e la compressione dei file obsoleti
- Esegui una deframmentazione: utilizza programmi come Defraggler oppure Auslogic Disk Defrag (quella di win non è granchè)
- Utilizza Malwarebytes' Anti-Malware:aggiornalo ed esegui una scansione completa
- Tuo antivirus: aggiornalo ed esegui una scansione completa (mi sembra di aver capito che hai Avast, personalmente preferisco Antivir)
Posta un log tramite Hijackthis.

Aspettiamo tuoi aggiornamenti

ninog · **Inviato:** mar mag 03, 2011 7:00 am

Ciao, stranamente anche io ho adottato sul mio piccolo portatile Spyware Terminator e Avast.

Ogni tanto, proprio quando mi sembra che esso "giri" come si deve creo dei PUNTI DI RIPRISTINO. Vedi sotto il menù "opzioni" del tuo S.T. se nelle Opzioni di scansione hai impostato utilizza il ripristino del sistema. Se così fosse, nel menù strumenti
trovi elencati i punti di ripristino.
Nel far tornare il pc ad un p.d.r. si perdono naturalmente dei dati, ma è sempre meglio che dover affrontare problemi più gravi.
Per perdere meno dati possibile crea regolarmente dei p.d.r.

Cerca nei programmi installati un p.d.r. (mi sembra che alcuni di essi ne creino in automatico).

Anzichè CCCleaner io ho adottato Advanced System Care perchè CCCleaner mi ha dato problemi e se il buongiorno si vede dal mattino...
Ho pagato una sciocchezza per la versione PRO di A.S.C. ma ne è valsa la pena.
Questo programma, nelle impostazioni permette di creare e richiamare Punti di Ripristino.

Inoltre, ti suggerisco anche, se vuoi, di attivare (in Spyware terminator) la protezione HIPS.

Altro suggerimento per S.T. è quello di togliere la impostazione del download degli aggiornamenti in p.t.p.; il programma cercherà da solo, comunque gli aggiornamenti, chiedendoti l'autorizzazione per il download ed evitando rallentamenti.

Scusa se ho usato termini non consoni ma ho il mio "piccolino" da poco tempo e di conseguenza le mie competenze, anche "gergali" sono veramente da novizio.

Ah, se lo ritieni opportuno, ti suggerisco anche Microsoft Essentials.

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

hai ragione riguardo al linguaggio e ti chiedo scusa

,
ma è meglio se mi spiego bene:
praticamente, ho fatto puliture con cCleaner, ho fatto scansioni con malwears byte, con avast, insomma, è piu di una settimana che il pc lo sto pulendo per bene,veramente a fondo, elimino file che non utilizzo, disinstallo programmi che non servono a niente, coockie e cache internet pulite
disco super clean, veramente tanto sono andato a scovare praticamente quasi tutto, per quanto uno come me possa scovare,

, poi qui mi hanno consigliato di disinstallare spybot (obsoleto ormai e mi dava sempre 3 chiavi di registro infette e bloccate ) ho installato Spy Terminator,
e adesso i le Chiavi sono 4. non so Help...

grazie e scusa ancora per il linguaggio

FiloPSy · **Iscritto il:** mar apr 26, 2011 9:26 am **Messaggi:** 20

Codice:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:17:09, on 03.05.2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60347
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [SpywareTerminatorUpdate] "C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe"
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - (no file)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service:  Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
O23 - Service: TurboBoost - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7459 bytes

Dacar 99 · **Inviato:** mar mag 03, 2011 4:40 pm

Hai messo il log sotto codice come si dovrebbe fare, bravo

Fixa queste

Codice:

O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - (no file)
O3 - Toolbar: (no name) - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - (no file)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60347
O8 - Extra context menu item: Crawler Search - tbr:iemenu

Sei infetto da Crawler toolbar che cerca di venderti prodotti malware e ti ha cambiato home page

Help :log Spyware Terminator 1

Chi c’è in linea