Fra23

Utente

Iscritto
4 Ottobre 201311 anni
Ultima visita
23 Febbraio 20241 anno

Visualizza profilo Vedi la sua attività

Combofix: anti-malware universale
Combofix: anti-malware universale

Fra23 ha risposto a StandardBus nella messaggio in una discussione Software

si. aiutatemi!!!
- 4 Ottobre 201311 anni
- 35 risposte
- - adware
  - antivirus
  - combofix
  - malware
  - virus
Combofix: anti-malware universale
Combofix: anti-malware universale

Fra23 ha risposto a StandardBus nella messaggio in una discussione Software

Help! Ho seguito tutte le istruzioni ma mi è rimasto il maledetto virus della polizia penitenziaria. Che posso fare? Ecco il report di ComboFix. P.S.: di computer ci capisco poco, quindi se qualcuno è gentile ad aiutarmi dovrebbe portarmi passo passo. Grazia fin da ora. ComboFix 13-10-04.02 - SYSTEM 04/10/2013 14.34.06.5.2 - x86 MINIMAL Microsoft® Windows Vista™ Business 6.0.6001.1.1252.39.1040.18.1790.1229 [GMT 2:00] Eseguito da: c:\windows\system32\config\systemprofile\Desktop\ComboFix.exe SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Creato nuovo punto di ripristino . . ((((((((((((((((((((((((((((((((((((( Altre eliminazioni ))))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Studente\AppData\Local\Google\Chrome\User Data\Default\Preferences . . ((((((((((((((((((((((((( Files Creati Da 2013-09-04 al 2013-10-04 ))))))))))))))))))))))))))))))))))) . . 2013-10-04 12:39 . 2013-10-04 12:39 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2013-10-04 12:39 . 2013-10-04 12:39 -------- d-----w- c:\users\Studente\AppData\Local\temp 2013-10-04 12:39 . 2013-10-04 12:39 -------- d-----w- c:\users\Public\AppData\Local\temp 2013-10-04 12:39 . 2013-10-04 12:39 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-10-04 11:35 . 2013-10-04 11:35 -------- d-----w- C:\combofix13-09-26.03 2013-10-04 09:09 . 2013-10-04 09:09 231424 ----a-w- c:\users\Studente\AppData\Local\Q6dQAjy.exe 2013-10-04 08:01 . 2013-09-05 05:02 7328304 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0D60CE3C-F1D1-4581-85F5-45A782AAF6D6}\mpengine.dll . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-07 02:22 . 2009-11-05 19:57 238872 ------w- c:\windows\system32\MpSigStub.exe 2012-11-01 19:29 . 2012-11-01 19:29 33546240 ----a-w- c:\program files\GUT16FD.tmp . . ((((((((((((((((((((((((((((((((((((( Punti Reg Caricati )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* i valori vuoti & legittimi/default non sono visualizzati. REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Jl3JcfDkW"="c:\users\Studente\AppData\Local\Q6dQAjy.exe" [2013-10-04 231424] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup backupExtension=.CommonStartup . [HKLM\~\startupfolder\C:^Users^Studente^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk] path=c:\users\Studente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk backup=c:\windows\pss\OpenOffice.org 3.3.lnk.Startup backupExtension=.Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2013-04-04 21:06 958576 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PrivitizeVPN] 2013-05-23 10:16 196784 ----a-w- c:\program files\PrivitizeVPN\PrivitizeVPN.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl] 2008-07-03 09:27 6266880 ----a-w- c:\windows\RtHDVCpl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2008-01-21 02:23 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel] 2008-06-25 11:49 1826816 ----a-w- c:\windows\SkyTel.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2010-05-14 09:44 248552 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] 2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Xerox PanelMgr] 2007-06-13 07:26 524288 ----a-w- c:\windows\Xerox\PanelMgr\SSMMgr.exe . --- Altri Servizi/Drivers In Memoria --- . *NewlyCreated* - ECACHE . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-09-19 13:58 1177552 ----a-w- c:\program files\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe . Contenuto della cartella 'Scheduled Tasks' . 2013-10-04 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-06 15:03] . 2013-10-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-03-18 13:38] . 2013-10-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2013-03-18 13:38] . 2013-10-03 c:\windows\Tasks\User_Feed_Synchronization-{97E31D75-BAF5-4703-B3B8-C037D81DEEA4}.job - c:\windows\system32\msfeedssync.exe [2008-01-21 02:25] . . ------- Scansione supplementare ------- . TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2013-10-04 14:39 Windows 6.0.6001 Service Pack 1 NTFS . scansione processi nascosti ... . scansione entrate autostart nascoste ... . Scansione files nascosti ... . Scansione completata con successo Files nascosti: 0 . ************************************************************************** . Ora fine scansione: 2013-10-04 14:40:50 ComboFix-quarantined-files.txt 2013-10-04 12:40 ComboFix2.txt 2013-10-04 12:14 ComboFix3.txt 2013-10-04 11:27 ComboFix4.txt 2013-09-13 14:14 ComboFix5.txt 2013-10-04 12:33 . Pre-Run: 73.643.552.768 byte disponibili Post-Run: 73.611.620.352 byte disponibili . - - End Of File - - FA81D9B87094567B3F438F1215EF075B 5C616939100B85E558DA92B899A0FC36
- 4 Ottobre 201311 anni
- 35 risposte
- - adware
  - antivirus
  - combofix
  - malware
  - virus

Accedi

Fra23

Iscritto

Ultima visita

Newbie

Badge recenti

Numero contenuti

Reputazione Forum

Combofix: anti-malware universale

Combofix: anti-malware universale

Account

Navigation

Cerca