Condividi:        

AIUTO DEVO CONCLUDERE LA TESI E HO DEI VIRUS IMPOSSIBILI

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

AIUTO DEVO CONCLUDERE LA TESI E HO DEI VIRUS IMPOSSIBILI

Postdi janis79 » 11/02/07 16:41

pREMETTO CHE SONO xxxxxxxx CON IL COMPUTER QUINDI SE POTETE SIATE MOLTO CHIARI E DETTAGLIATI PER AIUTARMI A ELIMINARE QUESTI VIRUS.

I VIRUS SI CHIAMANO:

Win32/TrojanClicker.Agent.HZ Cavallo di Troia
Win32/Rustock.NAX Cavallo di Troia

AIUTATEMIIIIIIIIIII !!!!!!!!!!!!!!!!!!!!!!!
VI PREGO
janis79
Newbie
 
Post: 3
Iscritto il: 11/02/07 16:32

Sponsor
 

Postdi Luke57 » 11/02/07 17:01

Ciao, allora due considerazioni preliminari:
1) non scrivere in stampatello, equivale a urlare;
2)Non usare termini inadeguati e anche un pò stupidi per una elementare norma di rispetto nei confronti di chi i problemi ce li ha per davvero.
Detto ciò, per consentire una tesi tranquilla, scarica Gmer da qui: http://www.majorgeeks.com/GMER_d5198.html
scompatta il file .zip e avvia gmer.exe, con tutte le altre applicazioni chiuse.
Per entrare in Avanzate premi il tab>>>>. Poi scegli il tab Rootkit, spunta la casella ADS e la casella files , fai uno Scan completo. Al termine clicca Copy e incolla il report in un file di testo.
Ritorna su Gmer, premi il tab Autostart (non spuntare la casella show all) e premi Scan. Al termine click su Copy e incolla il report nel medesimo foglio di testo.
Poi, copia e incolla i due report in un post nel forum.
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10

Postdi andorra24 » 11/02/07 17:28

janis79 ho editato parzialmente il tuo messaggio eliminando un termine che non va usato. Cerca gentilmente di fare più attenzione alle parole che usi e scrivi in minuscolo. Grazie!
andorra24
Utente Senior
 
Post: 2742
Iscritto il: 21/05/06 15:44
Località: Palermo

Risultato dei test che mi avete consigliato x i virus

Postdi janis79 » 11/02/07 21:49

Innanzitutto scusate per il termine di prima. il mio è stato un involontario modo di dire. lungi da me offendere una qualsiasi persona al mondo.
Una delle mie più care amiche ha un handicap e quindi sono l'ultima persona al mondo che potrei prendere poco sul serio l'argomento.

Dal test che ho fatto voi riuscite a capirci qualcosa??



GMER 1.0.12.12027 - http://www.gmer.net
Rootkit scan 2007-02-11 21:44:16
Windows 5.1.2600 Service Pack 1


---- Kernel code sections - GMER 1.0.12 ----

.text ntoskrnl.exe!KeInitializeInterrupt + B67 804DA23C 1 Byte [ 06 ]
.text ntdll.dll!NtClose 77F658AA 5 Bytes JMP 7203407A
.text ntdll.dll!NtCreateProcess 77F659F4 5 Bytes JMP 72034205
.text ntdll.dll!NtCreateProcessEx 77F65A03 5 Bytes JMP 720340E9
.text ntdll.dll!NtCreateSection 77F65A21 5 Bytes JMP 72034098
.text ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF72893
.text ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, CD ]
.text ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, CD ]
.text ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]

---- User code sections - GMER 1.0.12 ----

.text C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe[136] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF83D93
.text C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe[136] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 01E234ED; RET
.text C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe[136] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01E23650; RET
.text C:\Programmi\Netropa\Multimedia Keyboard\MMKeybd.exe[276] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF78D93
.text C:\Programmi\Netropa\Multimedia Keyboard\MMKeybd.exe[276] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 013234ED; RET
.text C:\Programmi\Netropa\Multimedia Keyboard\MMKeybd.exe[276] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01323650; RET
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF73193
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, D6 ]
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, D6 ]
.text C:\Programmi\FlyNet\CnxDslTb.exe[284] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF74693
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, EB ]
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, EB ]
.text C:\Programmi\ESET\nod32kui.exe[304] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF6E893
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, 8D ]
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, 8D ]
.text C:\Programmi\Winamp\winampa.exe[372] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe[388] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF81593
.text C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe[388] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 01BA34ED; RET
.text C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe[388] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01BA3650; RET
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF6E993
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, 8E ]
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, 8E ]
.text C:\WINDOWS\system32\ctfmon.exe[424] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe[436] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF7D593
.text C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe[436] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 017A34ED; RET
.text C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe[436] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 017A3650; RET
.text C:\Programmi\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe[452] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF76293
.text C:\Programmi\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe[452] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 010734ED; RET
.text C:\Programmi\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe[452] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01073650; RET
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF71A93
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, BF ]
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, BF ]
.text C:\Programmi\Netropa\Onscreen Display\OSD.exe[808] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\Netropa\Inetkb\iNetKb.exe[880] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF76193
.text C:\Programmi\Netropa\Inetkb\iNetKb.exe[880] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 010634ED; RET
.text C:\Programmi\Netropa\Inetkb\iNetKb.exe[880] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01063650; RET
.text C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE[1172] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF7F193
.text C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE[1172] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 019634ED; RET
.text C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE[1172] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 01963650; RET
.text C:\PROGRA~1\FILECO~1\Nokia\MPAPI\MPAPI3s.exe[1452] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF77993
.text C:\PROGRA~1\FILECO~1\Nokia\MPAPI\MPAPI3s.exe[1452] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 011E34ED; RET
.text C:\PROGRA~1\FILECO~1\Nokia\MPAPI\MPAPI3s.exe[1452] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 011E3650; RET
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF74793
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, EC ]
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, EC ]
.text C:\WINDOWS\explorer.exe[1680] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF72893
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, CD ]
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, CD ]
.text C:\Documents and Settings\Roberta\Desktop\gmer\gmer.exe[1824] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF73693
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, DB ]
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, DB ]
.text C:\WINDOWS\system32\atiptaxx.exe[1968] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtEnumerateKey 77F65B5C 4 Bytes JMP 3AF73393
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtEnumerateKey + 5 77F65B61 1 Byte [ C3 ]
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtEnumerateValueKey 77F65B7A 4 Bytes [ 68, ED, 34, D8 ]
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtEnumerateValueKey + 5 77F65B7F 1 Byte [ C3 ]
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtQuerySystemInformation 77F66152 4 Bytes [ 68, 50, 36, D8 ]
.text C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE[2032] ntdll.dll!NtQuerySystemInformation + 5 77F66157 1 Byte [ C3 ]
.text C:\Programmi\Internet Explorer\IEXPLORE.EXE[2104] ntdll.dll!NtEnumerateKey 77F65B5C 6 Bytes JMP 3AF86793
.text C:\Programmi\Internet Explorer\IEXPLORE.EXE[2104] ntdll.dll!NtEnumerateValueKey 77F65B7A 6 Bytes PUSH 020C34ED; RET
.text C:\Programmi\Internet Explorer\IEXPLORE.EXE[2104] ntdll.dll!NtQuerySystemInformation 77F66152 6 Bytes PUSH 020C3650; RET

---- Devices - GMER 1.0.12 ----

Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_NAMED_PIPE 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSE 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_READ 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_EA 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_EA 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DIRECTORY_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FILE_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_LOCK_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLEANUP 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_MAILSLOT 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CHANGE 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP 816F7008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_PNP 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_PNP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-4 IRP_MJ_PNP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP0T1L0-c IRP_MJ_PNP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-18 IRP_MJ_PNP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_CREATE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_CREATE_NAMED_PIPE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_CLOSE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_READ 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_WRITE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_QUERY_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SET_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_QUERY_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SET_EA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_FLUSH_BUFFERS 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_QUERY_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SET_VOLUME_INFORMATION 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_DIRECTORY_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_FILE_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_INTERNAL_DEVICE_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SHUTDOWN 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_LOCK_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_CLEANUP 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_CREATE_MAILSLOT 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_QUERY_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SET_SECURITY 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_POWER 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SYSTEM_CONTROL 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_DEVICE_CHANGE 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_QUERY_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_SET_QUOTA 818F4790
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-20 IRP_MJ_PNP 818F4790
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_NAMED_PIPE 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLOSE 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_READ 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_WRITE 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_EA 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_EA 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FLUSH_BUFFERS 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DIRECTORY_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FILE_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_INTERNAL_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SHUTDOWN 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_LOCK_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLEANUP 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_MAILSLOT 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CHANGE 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE_NAMED_PIPE 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CLOSE 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_READ 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_WRITE 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_EA 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_EA 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_FLUSH_BUFFERS 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_VOLUME_INFORMATION 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DIRECTORY_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_FILE_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_INTERNAL_DEVICE_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SHUTDOWN 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_LOCK_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CLEANUP 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE_MAILSLOT 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_SECURITY 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_POWER 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SYSTEM_CONTROL 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DEVICE_CHANGE 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_QUOTA 816F7008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_PNP 816F7008
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_CREATE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_CREATE_NAMED_PIPE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_CLOSE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_READ 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_WRITE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_QUERY_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SET_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_QUERY_EA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SET_EA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_FLUSH_BUFFERS 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_QUERY_VOLUME_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SET_VOLUME_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_DIRECTORY_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_FILE_SYSTEM_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_DEVICE_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_INTERNAL_DEVICE_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SHUTDOWN 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_LOCK_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_CLEANUP 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_CREATE_MAILSLOT 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_QUERY_SECURITY 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SET_SECURITY 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_POWER 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SYSTEM_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_DEVICE_CHANGE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_QUERY_QUOTA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_SET_QUOTA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1 IRP_MJ_PNP 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_CREATE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_CREATE_NAMED_PIPE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_CLOSE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_READ 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_WRITE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_QUERY_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SET_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_QUERY_EA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SET_EA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_FLUSH_BUFFERS 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_QUERY_VOLUME_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SET_VOLUME_INFORMATION 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_DIRECTORY_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_FILE_SYSTEM_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_DEVICE_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SHUTDOWN 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_LOCK_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_CLEANUP 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_CREATE_MAILSLOT 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_QUERY_SECURITY 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SET_SECURITY 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_POWER 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SYSTEM_CONTROL 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_DEVICE_CHANGE 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_QUERY_QUOTA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_SET_QUOTA 819696E0
Device \Driver\sojuscsi \Device\Scsi\sojuscsi1Port2Path0Target0Lun0 IRP_MJ_PNP 819696E0

---- Modules - GMER 1.0.12 ----

Module _________ F996D000

---- Processes - GMER 1.0.12 ----

Process C:\WINDOWS\winhp32.exe (*** hidden *** ) 1924

---- Registry - GMER 1.0.12 ----

Reg \Registry\MACHINE\SOFTWARE\LDN5MD03NE
Reg \Registry\MACHINE\SOFTWARE\LDN5MD03NE@LDN5MD03NE 0x01 0x00 0x00 0x00 ...
Reg \Registry\MACHINE\SOFTWARE\LDN5MD03NE@LDN5MD03NE 0x01 0x00 0x00 0x00 ...

---- EOF - GMER 1.0.12 ----


GMER 1.0.12.12027 - http://www.gmer.net
Autostart scan 2007-02-11 21:43:18
Windows 5.1.2600 Service Pack 1


HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems@Windows = %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon@Userinit = C:\WINDOWS\system32\userinit.exe,

HKLM\SYSTEM\CurrentControlSet\Services\ >>>
EPSONStatusAgent2 /*EPSON Printer Status Agent2*/@ = C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
nhksrv /*Netropa NHK Server*/@ = C:\Programmi\Netropa\Multimedia Keyboard\nhksrv.exe
NOD32krn /*NOD32 Kernel Service*/@ = "C:\Programmi\Eset\nod32krn.exe"
Spooler /*Spooler di stampa*/@ = %SystemRoot%\system32\spoolsv.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>>
@SoltekC:\WINDOWS\System32\autorun.exe = C:\WINDOWS\System32\autorun.exe
@AtiPTAatiptaxx.exe = atiptaxx.exe
@HydarVisionDesktopManager /*file not found*/ = /*file not found*/
@EPSON Stylus CX3200 (Copia 1)C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P29 "EPSON Stylus CX3200 (Copia 1)" /O6 "USB001" /M "Stylus CX3200" = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P29 "EPSON Stylus CX3200 (Copia 1)" /O6 "USB001" /M "Stylus CX3200"
@EPSON Stylus CX3200C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200"
@MULTIMEDIA KEYBOARDC:\Programmi\Netropa\Multimedia Keyboard\MMKeybd.exe = C:\Programmi\Netropa\Multimedia Keyboard\MMKeybd.exe
@CnxDslTaskBar"C:\Programmi\FlyNet\CnxDslTb.exe" = "C:\Programmi\FlyNet\CnxDslTb.exe"
@nod32kui"C:\Programmi\Eset\nod32kui.exe" /WAITSERVICE = "C:\Programmi\Eset\nod32kui.exe" /WAITSERVICE
@NeroFilterCheckC:\WINDOWS\system32\NeroCheck.exe = C:\WINDOWS\system32\NeroCheck.exe
@WinampAgentC:\Programmi\Winamp\winampa.exe = C:\Programmi\Winamp\winampa.exe
@DataLayerC:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe = C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe
@PCSuiteTrayApplicationC:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray /*file not found*/ = C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray /*file not found*/
@Windows Registry Repair ProC:\Programmi\3B Software\Windows Registry Repair Pro\Windows Registry Repair Pro.exe -X /*file not found*/ = C:\Programmi\3B Software\Windows Registry Repair Pro\Windows Registry Repair Pro.exe -X /*file not found*/

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run@1 = C:\WINDOWS\winhp32.exe

HKCU\Software\Microsoft\Windows\CurrentVersion\Run >>>
@CTFMON.EXEC:\WINDOWS\System32\ctfmon.exe = C:\WINDOWS\System32\ctfmon.exe
@PcSyncC:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog /*file not found*/ = C:\Programmi\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog /*file not found*/
@swgC:\Programmi\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe = C:\Programmi\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
@MsnMsgr"C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background /*file not found*/ = "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background /*file not found*/

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved >>>
@{42071714-76d4-11d1-8b24-00a0c9068ff3} /*Estensione panoramica video del Pannello di controllo*/(null) =
@{5F327514-6C5E-4d60-8F16-D07FA08A78ED} /*Estensione finestra proprietà di aggiornamento automatico*/C:\WINDOWS\System32\wuaueng.dll = C:\WINDOWS\System32\wuaueng.dll
@{BDEADF00-C265-11D0-BCED-00A0C90AB50F} /*Cartelle Web*/C:\PROGRA~1\FILECO~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL = C:\PROGRA~1\FILECO~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
@{0006F045-0000-0000-C000-000000000046} /*Microsoft Outlook Custom Icon Handler*/C:\Programmi\Microsoft Office\Office10\OLKFSTUB.DLL = C:\Programmi\Microsoft Office\Office10\OLKFSTUB.DLL
@{42042206-2D85-11D3-8CFF-005004838597} /*Microsoft Office HTML Icon Handler*/C:\Programmi\Microsoft Office\Office10\msohev.dll = C:\Programmi\Microsoft Office\Office10\msohev.dll
@{B089FE88-FB52-11D3-BDF1-0050DA34150D} /*NOD32 Context Menu Shell Extension*/C:\Programmi\Eset\nodshex.dll = C:\Programmi\Eset\nodshex.dll
@{B41DB860-8EE4-11D2-9906-E49FADC173CA} /*WinRAR shell extension*/C:\Programmi\WinRAR\rarext.dll = C:\Programmi\WinRAR\rarext.dll
@{416651E4-9C3C-11D9-8BDE-F66BAD1E3F3A} /*PhoneBrowser*/C:\Programmi\Nokia\Nokia PC Suite 6\PhoneBrowser.dll = C:\Programmi\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
@{FBFE7864-D495-41f0-B7DC-4BB601CC295E} /*Contact View*/C:\Programmi\Nokia\Nokia PC Suite 6\ContactView.dll = C:\Programmi\Nokia\Nokia PC Suite 6\ContactView.dll
@{C0C4375A-5B72-4efe-929D-3B848C3A1E91} /*Message View*/C:\Programmi\Nokia\Nokia PC Suite 6\MessageView.dll = C:\Programmi\Nokia\Nokia PC Suite 6\MessageView.dll
@{32020A01-506E-484D-A2A8-BE3CF17601C3} /*AlcoholShellEx*/C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll = C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll
@{e82a2d71-5b2f-43a0-97b8-81be15854de8} /*She
janis79
Newbie
 
Post: 3
Iscritto il: 11/02/07 16:32

Postdi Luke57 » 12/02/07 09:12

Ciao, scarica avenger sul desktop
http://swandog46.geekstogo.com/avenger.zip
scompatta il file.zip , estraendo avenger.exe
Avvia il file avenger.exe
Seleziona l'opzione "Input Script Manually"
Clicca sulla lente di ingrandimento

Ti si apre una finestra "View/edit script"
All'interno del box bianco,copia e incolla le scritte in neretto:


Registry values to replace with dummy:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs


registry values to delete:
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run | 1


Files to delete:
C:\WINDOWS\winhp32.exe
C:\WINDOWS\ svhost.dll.
C:\WINDOWS\ msnhp32.dll.
C:\WINDOWS\ctfmon32.dll
C:\WINDOWS\iexplorer32.dll
C:\WINDOWS\iexplorre32.dll
C:\WINDOWS\lsas32.dll
C:\WINDOWS\mdm32.dll
C:\WINDOWS\omsnlog.dll
C:\WINDOWS\scrss32.dll
C:\WINDOWS\spoolvs32.dll
C:\WINDOWS\sys32exploer.dll
C:\WINDOWS\syshost.dll
C:\WINDOWS\syst32.dll
C:\WINDOWS\winsmgr32.dll




Clicca sul pulsante Done
Clicca sull'icona del semaforo verde
Rispondi due volte Yes o Sì
Il pc dovrebbe riavviarsi da solo,se così non fosse riavvialo manualmente


Posta il log di Avenger (C:/avenger.txt) con l´esito dello script

Apri il registro di sistema
(start>esegui>regedit (lo digiti nello spazio)>OK
Aperto l’editor , cliccando sl segno + accanto alle singole voci segui questo percorso:

HKEY_LOCAL_MACHINE\SOFTWARE\5T29L1D34B, se individui quest’ultima chave, clcik tasto dx e scegli Elimina.
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10

Postdi Luke57 » 12/02/07 09:16

Ciao, mi correggo, script corretto da inserire in Avenger (non è detto che i file infetti siano tutti presenti):

Registry values to replace with dummy:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs

registry values to delete:
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run | 1

Files to delete:
C:\WINDOWS\winhp32.exe
C:\WINDOWS\svhost.dll.
C:\WINDOWS\msnhp32.dll.
C:\WINDOWS\ctfmon32.dll
C:\WINDOWS\iexplorer32.dll
C:\WINDOWS\iexplorre32.dll
C:\WINDOWS\lsas32.dll
C:\WINDOWS\mdm32.dll
C:\WINDOWS\omsnlog.dll
C:\WINDOWS\scrss32.dll
C:\WINDOWS\spoolvs32.dll
C:\WINDOWS\sys32exploer.dll
C:\WINDOWS\syshost.dll
C:\WINDOWS\syst32.dll
C:\WINDOWS\winsmgr32.dll
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10

Non trovo 5T29L1D34B Che vuol dire?

Postdi janis79 » 12/02/07 12:30

dopo che ho fatto tutto quello che mi hai detto sul Blocco note c'era scritto questo:

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\wvfafaox

*******************

Script file located at: \??\C:\WINDOWS\btwdvdhn.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\WINDOWS\winhp32.exe deleted successfully.


File C:\WINDOWS\svhost.dll. not found!
Deletion of file C:\WINDOWS\svhost.dll. failed!

Could not process line:
C:\WINDOWS\svhost.dll.
Status: 0xc0000034



File C:\WINDOWS\msnhp32.dll. not found!
Deletion of file C:\WINDOWS\msnhp32.dll. failed!

Could not process line:
C:\WINDOWS\msnhp32.dll.
Status: 0xc0000034



File C:\WINDOWS\ctfmon32.dll not found!
Deletion of file C:\WINDOWS\ctfmon32.dll failed!

Could not process line:
C:\WINDOWS\ctfmon32.dll
Status: 0xc0000034



File C:\WINDOWS\iexplorer32.dll not found!
Deletion of file C:\WINDOWS\iexplorer32.dll failed!

Could not process line:
C:\WINDOWS\iexplorer32.dll
Status: 0xc0000034



File C:\WINDOWS\iexplorre32.dll not found!
Deletion of file C:\WINDOWS\iexplorre32.dll failed!

Could not process line:
C:\WINDOWS\iexplorre32.dll
Status: 0xc0000034



File C:\WINDOWS\lsas32.dll not found!
Deletion of file C:\WINDOWS\lsas32.dll failed!

Could not process line:
C:\WINDOWS\lsas32.dll
Status: 0xc0000034



File C:\WINDOWS\mdm32.dll not found!
Deletion of file C:\WINDOWS\mdm32.dll failed!

Could not process line:
C:\WINDOWS\mdm32.dll
Status: 0xc0000034



File C:\WINDOWS\omsnlog.dll not found!
Deletion of file C:\WINDOWS\omsnlog.dll failed!

Could not process line:
C:\WINDOWS\omsnlog.dll
Status: 0xc0000034



File C:\WINDOWS\scrss32.dll not found!
Deletion of file C:\WINDOWS\scrss32.dll failed!

Could not process line:
C:\WINDOWS\scrss32.dll
Status: 0xc0000034



File C:\WINDOWS\spoolvs32.dll not found!
Deletion of file C:\WINDOWS\spoolvs32.dll failed!

Could not process line:
C:\WINDOWS\spoolvs32.dll
Status: 0xc0000034



File C:\WINDOWS\sys32exploer.dll not found!
Deletion of file C:\WINDOWS\sys32exploer.dll failed!

Could not process line:
C:\WINDOWS\sys32exploer.dll
Status: 0xc0000034



File C:\WINDOWS\syshost.dll not found!
Deletion of file C:\WINDOWS\syshost.dll failed!

Could not process line:
C:\WINDOWS\syshost.dll
Status: 0xc0000034



File C:\WINDOWS\syst32.dll not found!
Deletion of file C:\WINDOWS\syst32.dll failed!

Could not process line:
C:\WINDOWS\syst32.dll
Status: 0xc0000034



File C:\WINDOWS\winsmgr32.dll not found!
Deletion of file C:\WINDOWS\winsmgr32.dll failed!

Could not process line:
C:\WINDOWS\winsmgr32.dll
Status: 0xc0000034

Registry value HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs replaced with dummy successfully.
Registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|1 deleted successfully.

Completed script processing.

*******************

Finished! Terminate.


Che mi dici è grave????
janis79
Newbie
 
Post: 3
Iscritto il: 11/02/07 16:32

Postdi Luke57 » 12/02/07 12:40

Ciao, cera solo un file e la sua voce di registro corrispondente, eliminati da Avenger. Fai sapere se il tuo antivirus li rileva sempre.
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10


Torna a Sicurezza e Privacy


Topic correlati a "AIUTO DEVO CONCLUDERE LA TESI E HO DEI VIRUS IMPOSSIBILI":

aiuto windows 10
Autore: mod360
Forum: Software Windows
Risposte: 1
aiuto installazione
Autore: mod360
Forum: Software Windows
Risposte: 3

Chi c’è in linea

Visitano il forum: Nessuno e 7 ospiti

cron