Search Navipromo version 3.7.6 began on 18/04/2009 at 13.36.49,21
!!! Warning, this report may include legitimate files/programs !!!
!!! Post this report on the forum you are being helped !!!
!!! Don't continue with removal unless instructed by an authorized helper !!!
Fix running from C:\Programmi\navilog1
Updated on 14.03.2009 at 18h00 by IL-MAFIOSO
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : BIOS Date: 07/26/2006 Ver: 08.00.12
USER : HP_Proprietario ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 15.0.0.58 (Activated)
Firewall : Norton AntiVirus 15.0.0.58 (Activated)
C:\ (Local Disk) - NTFS - Total:180 Go (Free:103 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
Search done in normal mode
*** Search folders in "C:\WINDOWS" ***
*** Search folders in "C:\Programmi" ***
...\Live-Player found !
*** Search folders in "C:\Documents and Settings\All Users\menuav~1\progra~1" ***
...\Live-Player found !
*** Search folders in "C:\Documents and Settings\All Users\menuav~1" ***
*** Search folders in "c:\docume~1\alluse~1\datiap~1" ***
*** Search folders in "C:\Documents and Settings\HP_Proprietario\datiap~1" ***
...\Live-Player found !
*** Search folders in "C:\DOCUME~1\ADMINI~1\datiap~1" ***
*** Search folders in "C:\Documents and Settings\HP_Proprietario\impost~1\datiap~1" ***
*** Search folders in "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" ***
*** Search folders in "C:\Documents and Settings\HP_Proprietario\menuav~1\progra~1" ***
*** Search folders in "C:\DOCUME~1\ADMINI~1\menuav~1\progra~1" ***
*** Search with Catchme-rootkit/stealth malware detector by gmer ***
for more info : http://www.gmer.net
*** Search with GenericNaviSearch ***
!!! Possibility of legitimate files in the result !!!
!!! Must always be checked before manually deleting !!!
* Scan in "C:\WINDOWS\system32" *
* Scan in "C:\Documents and Settings\HP_Proprietario\impost~1\datiap~1" *
* Scan in "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" *
*** Search files ***
c:\docume~1\alluse~1\desktop\Live-Player.lnk found !
*** Search specific Registry keys ***
!! Following keys are not certainly all infected !!
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"eomuucc"="\"c:\\documents and settings\\hp_proprietario\\impostazioni locali\\dati applicazioni\\eomuucc.exe\" eomuucc"
*** Complementary Search ***
(Search specific files)
1)Search new Instant Access files :
2)Heuristic Search :
* In "C:\WINDOWS\system32" :
* In "C:\Documents and Settings\HP_Proprietario\impost~1\datiap~1" :
eomuucc.exe found !
eomuucc.dat found !
eomuucc_nav.dat found !
eomuucc_navps.dat found !
* In "C:\DOCUME~1\ADMINI~1\impost~1\datiap~1" :
3)Certificates Search :
Egroup certificate not found !
Electronic-Group certificate not found !
Montorgueil certificate not found !
OOO-Favorit certificate not found !
Sunny-Day-Design-Ltd certificate not found !
4)Search others known folders and files :
*** Search completed on 18/04/2009 at 13.42.42,79 ***