Posta tutto il report di rogue killer con tutte le voci non solo quelle eliminate....
Poi fai la scansione con frst....e posta sempre i report frst.txt e addition.txt
RogueKiller V12.11.32.0 (x64) [Jan 8 2018] (Gratuito) di Adlice Software
posta :
http://www.adlice.com/contact/
Commenti :
https://forum.adlice.com
Sito Web :
http://www.adlice.com/download/roguekiller/
Discussione :
http://www.adlice.com
Sistema Operativo : Windows 10 (10.0.16299) 64 bits version
Iniziato in : Modalità Normale
Utente : Mattia [Amministratore]
Iniziato da : C:\Users\Mattia\Downloads\Programs\RogueKiller_portable64.exe
Modalità : Cancella -- Data : 01/08/2018 14:34:55 (Durata : 00:34:32)
¤¤¤ Processi : 0 ¤¤¤
¤¤¤ Registro : 4 ¤¤¤
[PUP.HackTool|VT.Detected] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {BCB1222B-1E59-4730-9076-7E1ED81948E7} : v2.27|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|LPort=1688|App=C:\Windows\KMS-R@1n.exe|Name=KMS-R@1n| [-] -> Cancellato
[PUP.HackTool|VT.Detected] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules | {9F63501B-9133-4FCD-85BB-6016C1BB1D46} : v2.27|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=1688|App=C:\Windows\KMS-R@1n.exe|Name=KMS-R@1n| [-] -> Cancellato
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non selezionato
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Non selezionato
¤¤¤ Attività : 1 ¤¤¤
[Hj.Shortcut] \{01AFA881-8596-4AF7-9DB6-16067F51794C} -- "c:\program files (x86)\google\chrome\application\chrome.exe" (
https://www.skype.com/go/downloading?source=lightinstaller&ver=7.40.0.103&LastError=12002) -> Cancellato
¤¤¤ Archivi : 5 ¤¤¤
[PUP.Gen1][Cartella] C:\ProgramData\simplitec -> Non selezionato
[PUP.uTorrentAds][Archivio] C:\Users\Mattia\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe -> Non selezionato
[PUP.uTorrentAds][Archivio] C:\Users\Mattia\AppData\Roaming\uTorrent\updates\3.5.0_44294\utorrentie.exe -> Non selezionato
[PUP.uTorrentAds][Archivio] C:\Users\Mattia\AppData\Roaming\uTorrent\updates\3.5.1_44332\utorrentie.exe -> Non selezionato
[PUP.Gen1][Cartella] C:\ProgramData\simplitec -> Non selezionato
¤¤¤ WMI : 0 ¤¤¤
¤¤¤ Archivio Hosts : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Caricato) ¤¤¤
¤¤¤ Web Browser : 1 ¤¤¤
[PUP.Gen0][Chrome:Addon] Default : Honey [bmnlcjabgnpnenekpadlanbbkooimhnj] -> Non selezionato
¤¤¤ Controllo MBR : ¤¤¤
+++++ PhysicalDrive0: WDC WD10EZEX-08WN4A0 +++++
--- User ---
[MBR] 6c809c3b8829fa308a7008fe709a449a
[BSP] 4b83de59ee9c555b1f2cea9f7608493a : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 500 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 1026048 | Size: 952894 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
2 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 1952555008 | Size: 471 MB
User = LL1 ... OK
User = LL2 ... OK