ciao
ho problemi con favorit e vorrei riuscire ad eliminarlo
ho letto le istruzioni di deifobe e ho disattivato l uac e installato navilog ma vorrei dato che ne capisco proprio poco delle istruzioni un po piu semplici
allego lascansione di navilog
Search Navipromo version 3.7.1 began on 18/01/2009 at 12.39.23.43
!!! Warning, this report may include legitimate files/programs !!!
!!! Post this report on the forum you are being helped !!!
!!! Don't continue with removal unless instructed by an authorized helper !!!
Fix running from C:\Program Files\navilog1
Updated on 02.01.2009 at 19h00 by IL-MAFIOSO
Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2250 @ 1.73GHz )
BIOS : Phoenix NoteBIOS 4.0 Release 6.1
USER : Aldo ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 7.0.1.325 (Activated)
C:\ (Local Disk) - NTFS - Total:83 Go (Free:23 Go)
D:\ (USB)
E:\ (USB) - FAT - Total:120 Mo (Free:0 Go)
F:\ (CD or DVD)
Search done in normal mode
*** Searching for installed Software ***
*** Search folders in "C:\Windows" ***
*** Search folders in "C:\Program Files" ***
...\WebMediaPlayer found !
*** Search folders in "c:\progra~2\micros~1\windows\startm~1\program s" ***
...\WebMediaPlayer found !
*** Search folders in "c:\progra~2\micros~1\windows\startm~1" ***
*** Search folders in "C:\ProgramData" ***
*** Search folders in "c:\users\aldo\appdata\roaming\micros~1\windows\st artm~1\programs" ***
*** Search folders in "C:\Users\Aldo\AppData\Local\virtualstore\Prog ram Files" ***
*** Search folders in "C:\Users\Aldo\AppData\Local" ***
*** Search folders in "C:\Users\Aldo\AppData\Roaming" ***
*** Search with Catchme-rootkit/stealth malware detector by gmer ***
for more info : http://www.gmer.net
*** Search with GenericNaviSearch ***
!!! Possibility of legitimate files in the result !!!
!!! Must always be checked before manually deleting !!!
* Scan in "C:\Windows\system32" *
* Scan in "C:\Users\Aldo\AppData\Local\Microsoft" *
* Scan in "C:\Users\Aldo\AppData\Local\virtualstore\windows\ system32" *
* Scan in "C:\Users\Aldo\AppData\Local" *
*** Search files ***
c:\users\public\desktop\WebMediaPlayer.lnk found !
*** Search specific Registry keys ***
!! Following keys are not certainly all infected !!
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"amwag"="\"c:\\users\\aldo\\appdata\\local\\amwag. exe\" amwag"
*** Complementary Search ***
(Search specific files)
1)Search new Instant Access files :
2)Heuristic Search :
* In "C:\Windows\system32" :
* In "C:\Users\Aldo\AppData\Local\Microsoft" :
* In "C:\Users\Aldo\AppData\Local\virtualstore\windows\ system32" :
* In "C:\Users\Aldo\AppData\Local" :
amwag.exe found !
amwag.dat found !
amwag_nav.dat found !
amwag_navps.dat found !
3)Certificates Search :
Egroup certificate found !
Electronic-Group certificate found !
Montorgueil certificate not found !
OOO-Favorit certificate found !
Sunny-Day-Design-Ltd certificate not found !
4)Search others known folders and files :
*** Search completed on 18/01/2009 at 12.57.23.48 ***
Rispondi quotando
