da qualche tempo ho problemi col pc... Avast aveva individuato un dialer ma non ho risolto nulla: pagine di i.e. che si chiudono da sole, file strani in TEMP...Cosi ho fatto scansioni quà e là. ecco i log, magari potreste aiutarmi ad eliminare un po' di roba!
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Tuesday, February 05, 2008 2:43:50 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 5/02/2008
Kaspersky Anti-Virus database records: 549466
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - Critical Areas:
C:\windows
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\
Scan Statistics:
Total number of scanned objects: 13639
Number of viruses found: 2
Number of infected objects: 6
Number of suspicious objects: 0
Duration of the scan process: 00:13:19
Infected Object Name / Virus Name / Last Action
C:\windows\Debug\PASSWD.LOG Object is locked skipped
C:\windows\SchedLgU.Txt Object is locked skipped
C:\windows\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\windows\Sti_Trace.log Object is locked skipped
C:\windows\system32\CatRoot2\edb.log Object is locked skipped
C:\windows\system32\CatRoot2\tmp.edb Object is locked skipped
C:\windows\system32\config\Antivirus.Evt Object is locked skipped
C:\windows\system32\config\AppEvent.Evt Object is locked skipped
C:\windows\system32\config\default Object is locked skipped
C:\windows\system32\config\default.LOG Object is locked skipped
C:\windows\system32\config\Internet.evt Object is locked skipped
C:\windows\system32\config\sam Object is locked skipped
C:\windows\system32\config\SAM.LOG Object is locked skipped
C:\windows\system32\config\SecEvent.Evt Object is locked skipped
C:\windows\system32\config\security Object is locked skipped
C:\windows\system32\config\SECURITY.LOG Object is locked skipped
C:\windows\system32\config\software Object is locked skipped
C:\windows\system32\config\software.LOG Object is locked skipped
C:\windows\system32\config\SysEvent.Evt Object is locked skipped
C:\windows\system32\config\system Object is locked skipped
C:\windows\system32\config\system.LOG Object is locked skipped
C:\windows\system32\h323log.txt Object is locked skipped
C:\windows\system32\NeroCheck.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\windows\system32\PSDrvCheck.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\windows\system32\spool\drivers\w32x86\3\E_S10IC2.EXE Infected: Trojan.Win32.Agent.dxh skipped
C:\windows\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\windows\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\windows\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\windows\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\windows\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\windows\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\windows\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\windows\Temp\Perflib_Perfdata_5f8.dat Object is locked skipped
C:\windows\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\windows\UpdReg.EXE Infected: Trojan.Win32.Agent.dxh skipped
C:\windows\wiadebug.log Object is locked skipped
C:\windows\wiaservc.log Object is locked skipped
C:\windows\WindowsUpdate.log Object is locked skipped
C:\windows\{00000000-00000000-00000013-00001102-00000002-100A1102}.CDF Object is locked skipped
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\1189970556.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\2170761234.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\~DF87AC.tmp Object is locked skipped
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\~DFCC5E.tmp Object is locked skipped
C:\DOCUME~1\UTENTE\IMPOST~1\Temp\~WRF0000.tmp Object is locked skipped
Scan process completed.
POI:
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Tuesday, February 05, 2008 2:47:53 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 5/02/2008
Kaspersky Anti-Virus database records: 549466
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - Memory:
Scan Statistics:
Total number of scanned objects: 2635
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 00:02:03
Infected Object Name / Virus Name / Last Action
[4040] NeroCheck.exe => C:\WINDOWS\system32\NeroCheck.exe Infected: Trojan.Win32.Agent.dxh skipped
Scan process completed.
ANCORA;
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Tuesday, February 05, 2008 5:23:46 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 5/02/2008
Kaspersky Anti-Virus database records: 549466
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - Folders:
C:\System Volume Information\
F:\System Volume Information\
Scan Statistics:
Total number of scanned objects: 1315
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 00:02:56
Infected Object Name / Virus Name / Last Action
C:\System Volume Information\_restore{EC67284D-C325-426E-AE7A-E9D399C6851C}\RP11\change.log Object is locked skipped
F:\System Volume Information\_restore{EC67284D-C325-426E-AE7A-E9D399C6851C}\RP11\change.log Object is locked skipped
F:\System Volume Information\_restore{EC67284D-C325-426E-AE7A-E9D399C6851C}\RP3\A0000288.rbf Infected: Trojan.Win32.Agent.dxh skipped
Scan process completed.
INFINE
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\UTENTE\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Cronologia\History.IE5\MSHist012008020520080206\index.dat Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\ApplicationHistory\ENCWCSVR.EXE.26bfe7ac.ini.inuse Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Temp\1189970556.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Temp\2170761234.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\Documents and Settings\UTENTE\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\UTENTE\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\UTENTE\ntuser.dat.LOG Object is locked skipped
C:\found.000\dir0001.chk\Disinstalla Finson Superenalotto 3.lnk Object is locked skipped
C:\found.000\dir0001.chk\Finson Live Update.lnk Object is locked skipped
C:\found.000\dir0001.chk\Finson Superenalotto 3.lnk Object is locked skipped
C:\found.000\dir0001.chk\Invio Suggerimento.lnk Object is locked skipped
C:\found.000\dir0001.chk\Registra Finson Superenalotto 3.lnk Object is locked skipped
C:\found.000\dir0001.chk\Richiesta Assistenza.lnk Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Programmi\Alwil Software\Avast4\DATA\report\Protezione residente.txt Object is locked skipped
C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\Programmi\CyberLink\PowerDVD\PDVDServ.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\Programmi\InstallShield Installation Information\{77F09242-A107-4CB6-A295-D8656C2C3795}\Setup.ilg Object is locked skipped
C:\Programmi\InstallShield Installation Information\{A8BB9906-E618-406A-B161-7383AFF46C39}\Setup.ilg Object is locked skipped
C:\Programmi\InstallShield Installation Information\{D48C9BFC-FBCF-4F29-B97D-822ED6D497FE}\Setup.ilg Object is locked skipped
C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\Programmi\Maxtor\OneTouch Status\maxmenumgr.exe Object is locked skipped
C:\Programmi\Microsoft Encarta\Microsoft Encarta Enciclopedia DVD - 2006\EDICT.EXE Infected: Trojan.Win32.Agent.dxh skipped
C:\RECYCLER\S-1-5-21-1060284298-1417001333-725345543-1003\Dc7.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\RECYCLER\S-1-5-21-1060284298-1417001333-725345543-1003\Dc8.exe Infected: Trojan.Win32.Dialer.abi skipped
C:\System Volume Information\_restore{EC67284D-C325-426E-AE7A-E9D399C6851C}\RP11\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\sam Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\security Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\NeroCheck.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\WINDOWS\system32\PSDrvCheck.exe Infected: Trojan.Win32.Agent.dxh skipped
C:\WINDOWS\system32\spool\drivers\w32x86\3\E_S10IC2.EXE Infected: Trojan.Win32.Agent.dxh skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_5f8.dat Object is locked skipped
C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\WINDOWS\UpdReg.EXE Infected: Trojan.Win32.Agent.dxh skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
C:\WINDOWS\{00000000-00000000-00000013-00001102-00000002-100A1102}.CDF Object is locked skipped
Scan process completed.
Attendo vostre risposte.... sono in particolare due trojan che mi preoccupano, ma non ho idea di come eliminarli!