Questo è il log di avenger:

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Service s\grwlpcbm

*******************

Script file located at: \??\C:\WINDOWS\system32\atdacugw.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:



File C:\WINDOWS\system32\drivers\hidr.exe not found!
Deletion of file C:\WINDOWS\system32\drivers\hidr.exe failed!

Could not process line:
C:\WINDOWS\system32\drivers\hidr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\hidrrr.exe not found!
Deletion of file C:\WINDOWS\system32\drivers\hidrrr.exe failed!

Could not process line:
C:\WINDOWS\system32\drivers\hidrrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\hldrrr.ex_ not found!
Deletion of file C:\WINDOWS\system32\drivers\hldrrr.ex_ failed!

Could not process line:
C:\WINDOWS\system32\drivers\hldrrr.ex_
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\hldrrr.exe not found!
Deletion of file C:\WINDOWS\system32\drivers\hldrrr.exe failed!

Could not process line:
C:\WINDOWS\system32\drivers\hldrrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\srosa.sys not found!
Deletion of file C:\WINDOWS\system32\drivers\srosa.sys failed!

Could not process line:
C:\WINDOWS\system32\drivers\srosa.sys
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\klif.sys not found!
Deletion of file C:\WINDOWS\system32\drivers\klif.sys failed!

Could not process line:
C:\WINDOWS\system32\drivers\klif.sys
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\pci32.sys not found!
Deletion of file C:\WINDOWS\system32\drivers\pci32.sys failed!

Could not process line:
C:\WINDOWS\system32\drivers\pci32.sys
Status: 0xc0000034



File C:\WINDOWS\system32\wintems.exe not found!
Deletion of file C:\WINDOWS\system32\wintems.exe failed!

Could not process line:
C:\WINDOWS\system32\wintems.exe
Status: 0xc0000034



File c:\WINDOWS\system32\hlpuybtr.exe not found!
Deletion of file c:\WINDOWS\system32\hlpuybtr.exe failed!

Could not process line:
c:\WINDOWS\system32\hlpuybtr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\hldrrr.exe not found!
Deletion of file C:\WINDOWS\system32\hldrrr.exe failed!

Could not process line:
C:\WINDOWS\system32\hldrrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\trusted.exe not found!
Deletion of file C:\WINDOWS\system32\trusted.exe failed!

Could not process line:
C:\WINDOWS\system32\trusted.exe
Status: 0xc0000034



File C:\WINDOWS\system32\mdelk.exe not found!
Deletion of file C:\WINDOWS\system32\mdelk.exe failed!

Could not process line:
C:\WINDOWS\system32\mdelk.exe
Status: 0xc0000034



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\m_hook.sys for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\m_hook.sys failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidires\m_hook.sys
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\hidr.exe for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\hidr.exe failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidires\hidr.exe
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\srosa.sys for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\hidires\srosa.sys failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidires\srosa.sys
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hidn2.exe for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hidn2.exe failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hidn2.exe
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hldrrr.exe for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hldrrr.exe failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidn\hldrrr.exe
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\m\data.oct for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\m\data.oct failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\m\data.oct
Status: 0xc000003a



Could not open file c:\Documents and Settings\Futurella\Dati applicazioni\m\flec006.exe for deletion
Deletion of file c:\Documents and Settings\Futurella\Dati applicazioni\m\flec006.exe failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\m\flec006.exe
Status: 0xc000003a



Folder c:\WINDOWS\exefld not found!
Deletion of folder c:\WINDOWS\exefld failed!

Could not process line:
c:\WINDOWS\exefld
Status: 0xc0000034



Folder c:\WINDOWS\exefnd not found!
Deletion of folder c:\WINDOWS\exefnd failed!

Could not process line:
c:\WINDOWS\exefnd
Status: 0xc0000034



Folder C:\WINDOWS\exefqd not found!
Deletion of folder C:\WINDOWS\exefqd failed!

Could not process line:
C:\WINDOWS\exefqd
Status: 0xc0000034

Folder C:\WINDOWS\system32\drivers\down deleted successfully.


Folder c:\Documents and Settings\Futurella\Dati applicazioni\hidires not found!
Deletion of folder c:\Documents and Settings\Futurella\Dati applicazioni\hidires failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidires
Status: 0xc0000034



Folder c:\Documents and Settings\Futurella\Dati applicazioni\hidn not found!
Deletion of folder c:\Documents and Settings\Futurella\Dati applicazioni\hidn failed!

Could not process line:
c:\Documents and Settings\Futurella\Dati applicazioni\hidn
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\m_hook not found!
Deletion of registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\m_hook failed!

Could not process line:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\m_hook
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\m _hook not found!
Deletion of registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\m _hook failed!

Could not process line:
HKEY_LOCAL_MACHINE\system\ControlSet001\Services\m _hook
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\system\ControlSet002\Services\m _hook not found!
Deletion of registry key HKEY_LOCAL_MACHINE\system\ControlSet002\Services\m _hook failed!

Could not process line:
HKEY_LOCAL_MACHINE\system\ControlSet002\Services\m _hook
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\pci32 not found!
Deletion of registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\pci32 failed!

Could not process line:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\pci32
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\p ci32 not found!
Deletion of registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\p ci32 failed!

Could not process line:
HKEY_LOCAL_MACHINE\system\ControlSet001\Services\p ci32
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\system\ControlSet002\Services\p ci32 not found!
Deletion of registry key HKEY_LOCAL_MACHINE\system\ControlSet002\Services\p ci32 failed!

Could not process line:
HKEY_LOCAL_MACHINE\system\ControlSet002\Services\p ci32
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\srosa not found!
Deletion of registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\srosa failed!

Could not process line:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\srosa
Status: 0xc0000034



Registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\s rosa not found!
Deletion of registry key HKEY_LOCAL_MACHINE\system\ControlSet001\Services\s rosa failed!

Could not process line:
HKEY_LOCAL_MACHINE\system\ControlSet001\Services\s rosa
Status: 0xc0000034

Registry key HKEY_LOCAL_MACHINE\system\ControlSet002\Services\s rosa deleted successfully.


Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_M_HOOK not found!
Deletion of registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_M_HOOK failed!

Could not process line:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_M_HOOK
Status: 0xc0000034

Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_SROSA deleted successfully.


Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_PCI32 not found!
Deletion of registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_PCI32 failed!

Could not process line:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\R oot\LEGACY_PCI32
Status: 0xc0000034

Registry value HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs replaced with dummy successfully.

Completed script processing.

*******************

Finished! Terminate.