Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

soluzione worm bagle

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Rispondi al messaggio

Messaggioda mitrandir » gio gen 17, 2008 12:23 pm

Avast, Spy boot e zone alarm non si aprono.
a questo punto non so che pesci pigliare.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda ste_95 » gio gen 17, 2008 12:24 pm

Naturalmente li devi reinstallare.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am
Top

Messaggioda mitrandir » gio gen 17, 2008 12:29 pm

sono andato in istallazioni applicazioni, ho disinstallato i programmi e li ho reistallati uno alla volta nel seguente ordine:
Avast e poi spy boot. Niente: dice che nontrova gli exe.
ho disintallato avast ed ho intallato zone alarm. Niente non lo può attivare perché non riesce ad intallare l'esecutivo vsmon.exe.
la speranza è l'ultima a morire.Grazie.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top
Top

Messaggioda ste_95 » gio gen 17, 2008 12:29 pm

Nuova scansione con kaspersky...? [V]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am
Top

Messaggioda mitrandir » gio gen 17, 2008 12:33 pm

é possibile che io esegua un'altra scansione, però quale risultato otteniamo visto che sarebbe la terza e la seconda l'ho terminata venti minuti fa?
teniamo presente che il ripristino è disattivato.
Non demordiamo:uccidiamo il baco!
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda ste_95 » gio gen 17, 2008 12:34 pm

Se ancora il bagle è da te, deve essersi ricreato, di conseguenza ne vedremmo i nuovi file.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am
Top

Messaggioda mitrandir » gio gen 17, 2008 12:41 pm

Come estirparne il ceppo?
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda ste_95 » gio gen 17, 2008 12:43 pm

Sapendone i file, è più facile... [std]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am
Top

Messaggioda mitrandir » gio gen 17, 2008 12:59 pm

Il modo per saperli è un'altra scansione con kaspersky?
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda ste_95 » gio gen 17, 2008 1:00 pm

Si [:)]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am
Top

Messaggioda mitrandir » gio gen 17, 2008 1:04 pm

rifacciamo la scansione.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda mitrandir » ven gen 18, 2008 9:07 am

E' appena terminata la scansione e questo è il risultato:
:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/100781.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/112703.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/112859.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/14664140.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/14713781.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/14747578.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/14900562.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/14937468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/237546.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/269062.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/46843.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/48468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/49562.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/49828.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/50828.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/50906.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/51359.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/52406.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/54640.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/56062.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/56500.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/57062.exe Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/57531.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/58671.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/58703.exe Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/61000.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/73921.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/80203.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/81109.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/82671.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/84203.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/84718.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/92640.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/95484.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/down/98343.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip/avenger/wintems.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-10.37.16,43.zip ZIP: infected - 38 skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/down/46843.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/down/55703.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/down/81046.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/down/89234.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/down/90234.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/hldrrr.exe-ren-226 Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/srosa.sys-ren-220 Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/wintems.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip/avenger/wintems.exe-ren-223 Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-12.01.2008-19.52.20,21.zip ZIP: infected - 11 skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/116265.exe Infected: Trojan-Downloader.Win32.Bagle.gi skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/116531.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/357625.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/43343.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/55093.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/down/90140.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip/avenger/wintems.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-13.01.2008-11.59.53,81.zip ZIP: infected - 9 skipped
C:\avenger\backup-14.01.2008-22.04.52,51.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-14.01.2008-22.04.52,51.zip/avenger/wintems.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-14.01.2008-22.04.52,51.zip ZIP: infected - 2 skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_1[4].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_1[5].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_1[6].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[3].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[4].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[5].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[6].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[8].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_2[9].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[10].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[11].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[12].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[4].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[5].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[6].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[7].jpg Infected: Trojan-Downloader.Win32.Bagle.gi skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[8].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/49Q7K1AN/b64_3[9].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_1[3].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_1[4].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_2[3].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_2[4].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_2[5].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4EF5OOXC/b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_1[3].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[5].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[6].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[7].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/4H2VW9YR/b64_3[8].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8DM7K52F/mun1_26_11_070[1].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8DM7K52F/mun1_26_11_070[2].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8DM7K52F/n2_21_09_07_0[1].exe Infected: Trojan.Win32.Agent.bsg skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[3].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[5].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[6].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_1[8].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[3].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[4].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[5].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_2[6].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[10].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[11].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[5].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[6].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[7].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[8].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/8LYVCHUV/b64_3[9].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14654750.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14668437.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14668718.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14668750.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14684515.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14741078.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14749593.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14752953.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14771218.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/14780359.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/29489031.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/29509703.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/29516859.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/29535703.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/44261265.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/44317515.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/44320437.exe Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/47062.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/47078.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/48173359.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/65734.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/84000.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/85796.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/89968.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/down/99656.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/mun1_26_11_070[1].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/wintems.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/Free Parental Control 2.05.zip/Free Parental Control 2.05.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip/avenger/Free Parental Control 2.05.zip Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup-15.01.2008-13.06.39,32.zip ZIP: infected - 107 skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/49Q7K1AN/b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/4EF5OOXC/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup.zip/avenger/4EF5OOXC/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/4EF5OOXC/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/4EF5OOXC/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_2[3].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_2[4].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/4H2VW9YR/b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/8LYVCHUV/b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\avenger\backup.zip/avenger/8LYVCHUV/b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\avenger\backup.zip/avenger/8LYVCHUV/b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/8LYVCHUV/b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/8LYVCHUV/b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/100781.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/120781.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/135875.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/147234.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/48140.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/48265.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/54750.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/57203.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/66953.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/80531.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/85359.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/85968.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/87468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/down/88015.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/hldrrr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup.zip/avenger/hldrrr.exe-ren-221 Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\avenger\backup.zip/avenger/srosa.sys Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup.zip/avenger/srosa.sys-ren-216 Infected: Trojan-Downloader.Win32.Bagle.hs skipped
C:\avenger\backup.zip/avenger/wintems.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip/avenger/wintems.exe-ren-218 Infected: Email-Worm.Win32.Bagle.of skipped
C:\avenger\backup.zip ZIP: infected - 42 skipped
C:\Documents and Settings\Adm\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Microsoft\Modelli\Normal.dot Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Microsoft\Outlook\Outlook.srs Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\cert8.db Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\formhistory.dat Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\history.dat Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\key3.db Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\parent.lock Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\search.sqlite Object is locked skipped
C:\Documents and Settings\Adm\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Microsoft\Outlook\archive.pst Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Microsoft\Outlook\Outlook.pst Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Dati applicazioni\Mozilla\Firefox\Profiles\6tn6nqmc.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temp\~DFE354.tmp Object is locked skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[5].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN\b64_3[6].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC\b64_3[4].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4H2VW9YR\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4H2VW9YR\b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4H2VW9YR\b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4H2VW9YR\b64_3[3].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\8LYVCHUV\b64_3[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\8LYVCHUV\b64_3[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Adm\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Adm\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[1].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[2].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[3].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[4].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[5].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[6].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[7].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[8].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[9].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\LRPYCSKK\mun1_26_11_070[1].exe Infected: Backdoor.Win32.Agent.dbo skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Programmi\Intel\NCS\PROSet\PRONoMgr.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Installer\{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}\PQBoot.exe Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\down\100625.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\14635187.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\14684593.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\14703390.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\14742078.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\45500.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\45562.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\48031.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\54109.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\63562.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\63593.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\69531.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\80140.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\82468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\83531.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\86312.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\91593.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\93468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\drivers\down\94468.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\mdelk.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
D:\emule completi\audio 2\Alagna\Credo Roberto Alagna.zip/Setup.exe Infected: not-a-virus:AdWare.Win32.Agent.zk skipped
D:\emule completi\audio 2\Alagna\Credo Roberto Alagna.zip ZIP: infected - 1 skipped
D:\emule completi\Free Parental Control 2.05.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
H:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP211\A0698475.exe/WISE0024.BIN Infected: not-a-virus:AdTool.Win32.WhenU.a skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP211\A0698475.exe WiseSFX: infected - 1 skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP211\A0698475.exe WiseSFXDropper: infected - 1 skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP216\A0713334.exe/WISE0024.BIN Infected: not-a-virus:AdTool.Win32.WhenU.a skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP216\A0713334.exe WiseSFX: infected - 1 skipped
H:\System Volume Information\_restore{E73F5012-941F-40E5-9A08-7975B70723CC}\RP216\A0713334.exe WiseSFXDropper: infected - 1 skipped
Scan process completed.
Vediamo cosa possiamo fare.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda crazy.cat » ven gen 18, 2008 10:43 am

Perche questi due file risultano come deleted
mitrandir ha scritto:File D:\emule completi\audio 2\Alagna\Credo Roberto Alagna.zip deleted successfully.
File D:\emule completi\Free Parental Control 2.05.exe deleted successfully.

e poi ricompaiono sempre nella scansione successiva?
D:\emule completi\audio 2\Alagna\Credo Roberto Alagna.zip ZIP: infected - 1 skipped
D:\emule completi\Free Parental Control 2.05.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped

Li riscarichi per caso?
Hai dei backup nascosti e li riutilizzi?
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre
Top

Messaggioda mitrandir » ven gen 18, 2008 10:53 am

Effettivamentre è vero. Ora gli ho eliminati per sicurezza. Il tuo commento ha richiamato alla mia memoria che i problemi sono iniziati quando ho scaricato il set up di un programma di controllo parentale.
Comunque non avevo niente che li ricaricasse; infatti roberto alagna è un tenore e qunidi i file dovevano essere musicali mentre l'altro doveva essere il set up precedentemente descritto.
guardiamo set togliamo il worm.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top

Messaggioda crazy.cat » ven gen 18, 2008 10:58 am

Cancella intanto la cartella c:\avenger con tutto il suo contenuto e intanto ti preparo il resto dello script
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre
Top

Messaggioda crazy.cat » ven gen 18, 2008 11:07 am

Disattiva il ripristino della configurazione su tutti i tuoi dischi fissi poi riavvia il pc
http://www.MegaLab.it/2330

Dopo applica questo script e speriamo che sia l'ultima volta.

Codice: Seleziona tutto
Files to delete:
C:\WINDOWS\system32\drivers\hidr.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\hldrrr.exe
C:\WINDOWS\system32\trusted.exe
C:\WINDOWS\system32\drivers\pci32.sys
C:\windows\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\hldrrr.ex_
C:\WINDOWS\system32\mdelk.exe
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\C52J89QB\mun1_26_11_070[9].exe
C:\Documents and Settings\NetworkService\Impostazioni locali\Temporary Internet Files\Content.IE5\LRPYCSKK\mun1_26_11_070[1].exe
C:\Programmi\Intel\NCS\PROSet\PRONoMgr.exe
D:\emule completi\audio 2\Alagna\Credo Roberto Alagna.zip
D:\emule completi\Free Parental Control 2.05.exe

folders to delete:
C:\WINDOWS\exefnd
C:\WINDOWS\exefld
C:\WINDOWS\system32\drivers\down
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\8LYVCHUV
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4H2VW9YR
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\4EF5OOXC
C:\Documents and Settings\Adm\Impostazioni locali\Temporary Internet Files\Content.IE5\49Q7K1AN

registry keys to delete:
HKLM\SYSTEM\CurrentControlSet\Services\srosa
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
HKLM\SYSTEM\CurrentControlSet\Services\pci32
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32


Poi reinstalli l'antivirus e cancelli di nuovo la cartella c:\avenger.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre
Top

Messaggioda mitrandir » ven gen 18, 2008 4:31 pm

molte grazie crazy cat; lo script da te preparato ha finalmente debellato lo worm.
Gli antivirus avast e zone alarm funzionano( ovviamente ne ho intallato solo uno e cioè zone alarm).
Ho eseguito la scansione con zone alarm mi ha trovato alcuni file infettati e li ha eleiminati.
Credo che siamo arrivati al termine, speriamo.Comunque ti sono molto grato di avermi aiutato.

Vorrei sapere da te come consideri la nuova versione di zone alarm security suite. grazie tante.
Avatar utente
mitrandir
Senior Member
Senior Member
 
Messaggi: 187
Iscritto il: dom gen 13, 2008 12:10 pm
Località: Livorno
Top
Precedente
Rispondi al messaggio

Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 3 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising