Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

AIUTOOO NON RIESCO A ISTALLARE NESSUN ANTIVIRUS

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

AIUTOOO NON RIESCO A ISTALLARE NESSUN ANTIVIRUS

Messaggioda ALEXG3 » ven apr 04, 2008 1:25 pm

skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.afj skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream/data0006 Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe NSIS: infected - 3


COME FACCIOOOO? VI PREGO AIUTOOOOOOOOO
ER NEGRO
Avatar utente
ALEXG3
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: gio apr 03, 2008 6:36 pm
Località: ITALY

Messaggioda ste_95 » ven apr 04, 2008 1:41 pm

E' difficile dedurre qualcosa dalla scansione che hai postato, devi copiarla tutta.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

AIUTOOO NON RIESCO A ISTALLARE NESSUN ANTIVIRUS

Messaggioda ALEXG3 » ven apr 04, 2008 3:37 pm

Number of viruses found 4
Number of infected objects 13
Number of suspicious objects 0
Duration of the scan process 05:42:39

Infected Object Name Virus Name Last Action
C:\Boot\BCD Object is locked skipped

C:\Boot\BCD.LOG Object is locked skipped

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe Infected: Worm.Win32.AutoRun.dev skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\37215168d6f4ad33756241f09aafc2bc_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5afa371798e6f750226595c20658f15e_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\8174ac16dfc39ac893d1bdbf13a680f9_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\829d65625942aa98971c41fb93c0c736_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\abf818c0912c53633771b7700d6e3596_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d428ffc1078b21d71964ec74088bd362_e3d319ff-1fe1-4b90-bc5f-cb801e355a89 Object is locked skipped

C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped

C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.140.Crwl Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.140.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010001.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010004.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010010.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010011.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010012.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010014.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010038.ci Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010038.wid Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010038.wsb Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\INDEX.000 Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000 Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\Used0000.000 Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000 Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk1.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk2.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Crwl15.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Ntfy50.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Ntfy51.gthr Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\Ntf8E1B.tmp Object is locked skipped

C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\Ntf8E1C.tmp Object is locked skipped

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

C:\System Volume Information\SystemRestore\FRStaging\Windows\bthservsdp.dat Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\CardSpace\CardSpace.db Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1 Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2 Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat{f13569b2-e6b2-11dc-bffb-001b24965221}.TM.blf Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat{f13569b2-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Users\ALEX\AppData\Local\Microsoft\Windows\UsrClass.dat{f13569b2-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Users\ALEX\AppData\Local\Temp\~ROMFN_000008F8 Object is locked skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\RO1KIEAA.NQF Infected: not-a-virus:AdWare.Win32.Agent.ed skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\SPOQPVAA.NQF/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.afj skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\SPOQPVAA.NQF/stream/data0006 Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\SPOQPVAA.NQF/stream Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\SPOQPVAA.NQF NSIS: infected - 3 skipped

C:\Users\ALEX\AppData\Local\VirtualStore\Program Files\Eset\infected\SPOQPVAA.NQF PE-Crypt.XorPE: infected - 3 skipped

C:\Users\ALEX\AppData\Roaming\Microsoft\Windows\Cookies\index.dat Object is locked skipped

C:\Users\ALEX\ntuser.dat Object is locked skipped

C:\Users\ALEX\ntuser.dat.LOG1 Object is locked skipped

C:\Users\ALEX\ntuser.dat.LOG2 Object is locked skipped

C:\Users\ALEX\ntuser.dat{f13569b0-e6b2-11dc-bffb-001b24965221}.TM.blf Object is locked skipped

C:\Users\ALEX\ntuser.dat{f13569b0-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Users\ALEX\ntuser.dat{f13569b0-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream/data0005 Infected: not-a-virus:AdWare.Win32.BHO.afj skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream/data0006 Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe/stream Infected: not-a-virus:AdWare.Win32.BHO.afi skipped

C:\Users\MIKY\AppData\Local\Temp\aupd.exe NSIS: infected - 3 skipped

C:\Windows\bthservsdp.dat Object is locked skipped

C:\Windows\Debug\PASSWD.LOG Object is locked skipped

C:\Windows\Debug\sam.log Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1 Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2 Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat{f13569ae-e6b2-11dc-bffb-001b24965221}.TM.blf Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat{f13569ae-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Windows\ServiceProfiles\LocalService\ntuser.dat{f13569ae-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1 Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG2 Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{f13569ac-e6b2-11dc-bffb-001b24965221}.TM.blf Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{f13569ac-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Windows\ServiceProfiles\NetworkService\ntuser.dat{f13569ac-e6b2-11dc-bffb-001b24965221}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped

C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped

C:\Windows\System32\catroot2\edb.log Object is locked skipped

C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb Object is locked skipped

C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb Object is locked skipped

C:\Windows\System32\config\components Object is locked skipped

C:\Windows\System32\config\COMPONENTS.LOG1 Object is locked skipped

C:\Windows\System32\config\COMPONENTS.LOG2 Object is locked skipped

C:\Windows\System32\config\default Object is locked skipped

C:\Windows\System32\config\DEFAULT.LOG1 Object is locked skipped

C:\Windows\System32\config\DEFAULT.LOG2 Object is locked skipped

C:\Windows\System32\config\RegBack\COMPONENTS Object is locked skipped

C:\Windows\System32\config\RegBack\DEFAULT Object is locked skipped

C:\Windows\System32\config\RegBack\SAM Object is locked skipped

C:\Windows\System32\config\RegBack\SECURITY Object is locked skipped

C:\Windows\System32\config\RegBack\SOFTWARE Object is locked skipped

C:\Windows\System32\config\RegBack\SYSTEM Object is locked skipped

C:\Windows\System32\config\sam Object is locked skipped

C:\Windows\System32\config\SAM.LOG1 Object is locked skipped

C:\Windows\System32\config\SAM.LOG2 Object is locked skipped

C:\Windows\System32\config\security Object is locked skipped

C:\Windows\System32\config\SECURITY.LOG1 Object is locked skipped

C:\Windows\System32\config\SECURITY.LOG2 Object is locked skipped

C:\Windows\System32\config\software Object is locked skipped

C:\Windows\System32\config\SOFTWARE.LOG1 Object is locked skipped

C:\Windows\System32\config\SOFTWARE.LOG2 Object is locked skipped

C:\Windows\System32\config\system Object is locked skipped

C:\Windows\System32\config\SYSTEM.LOG1 Object is locked skipped

C:\Windows\System32\config\SYSTEM.LOG2 Object is locked skipped

C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TM.blf Object is locked skipped

C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped

C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped

C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000003.regtrans-ms Object is locked skipped

C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000004.regtrans-ms Object is locked skipped

C:\Windows\System32\DriverStore\FileRepository\klim6.inf_fc4602a5\klim6.sys Object is locked skipped

C:\Windows\System32\LogFiles\Scm\SCM.EVM Object is locked skipped

C:\Windows\System32\LogFiles\WindowsMobile\WcesLog.etl.004 Object is locked skipped

C:\Windows\System32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped

C:\Windows\System32\msmq\storage\QMLog Object is locked skipped

C:\Windows\System32\spool\SpoolerETW.etl Object is locked skipped

C:\Windows\System32\wbem\Logs\WMITracing.log Object is locked skipped

C:\Windows\System32\wbem\repository\INDEX.BTR Object is locked skipped

C:\Windows\System32\wbem\repository\MAPPING1.MAP Object is locked skipped

C:\Windows\System32\wbem\repository\MAPPING2.MAP Object is locked skipped

C:\Windows\System32\wbem\repository\OBJECTS.DATA Object is locked skipped

C:\Windows\System32\WDI\LogFiles\WdiContextLog.etl.003 Object is locked skipped

C:\Windows\System32\wfp\wfpdiag.etl Object is locked skipped

C:\Windows\System32\winevt\Logs\Application.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\DFS Replication.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\HardwareEvents.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Internet Explorer.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Key Management Service.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Media Center.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\Security.evtx Object is locked skipped

C:\Windows\System32\winevt\Logs\System.evtx Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16386_none_69f99fa4b7380194\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16514_none_6a435250b701059d\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16551_none_6a1511c2b724295c\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16575_none_6a037312b730c69a\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16584_none_69f7a2dcb739c934\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20629_none_6ac720a1d022400b\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20670_none_6a880e6bd052e7b1\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20697_none_6a797099d05cd0f4\ntkrnlpa.exe Object is locked skipped

C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.20707_none_6adac1cbd013d2a2\ntkrnlpa.exe Object is locked skipped

D:\ADUNANZA\KJam 0.31.zip/KJam 0.31.exe Infected: Worm.Win32.AutoRun.dev skipped

D:\ADUNANZA\KJam 0.31.zip ZIP: infected - 1 skipped

Scan process completed.
ER NEGRO
Avatar utente
ALEXG3
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: gio apr 03, 2008 6:36 pm
Località: ITALY


Messaggioda H.J » ven apr 04, 2008 5:06 pm

Scarica Combofix
http://subs.geekstogo.com/ComboFix.exe
Salvalo sul desktop.
- Doppio click su combofix.exe, comparirà la seguente videata:
http://img293.imageshack.us/img293/8500 ... fn6zj1.jpg

- Digita 1, premi Invio e segui le indicazioni.
- Al termine, verrà creato un file log chiamato C:\ComboFix.txt.
- Posta il log creato

Scarica ELIBAGLA
http://www.zonavirus.com/datos/descarga ... ibagla.asp
Assicurati che la casella Eliminar Ficheros Automaticamente sia spuntata e clicca su Explorar
Posta il log C:\InfoSat.txt
Avatar utente
H.J
Aficionado
Aficionado
 
Messaggi: 73
Iscritto il: lun feb 05, 2007 5:03 pm

AIUTOOO NON RIESCO A ISTALLARE NESSUN ANTIVIRUS

Messaggioda ALEXG3 » ven apr 04, 2008 7:17 pm

ComboFix 08-04-03.5 - ALEX 2008-04-04 20.02.27.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1040.18.778 [GMT 2:00]
Eseguito da: C:\Users\ALEX\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SMLJWT0C\ComboFix[1].exe
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\.protected
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\.protected
C:\Users\ALEX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\.protected
C:\Users\ALEX\Desktopblackbird.jpg
C:\Users\ALEX\DesktopEditorFKWP1.5.exe
C:\Users\ALEX\DesktopEditorFKWP2.0.exe
C:\Users\ALEX\Desktopfilemanagerclient.exe
C:\Users\ALEX\Desktopfkwp1.5.exe
C:\Users\ALEX\Desktopfkwp2.0.exe
C:\Users\ALEX\Desktopfwebd.exe
C:\Users\ALEX\DesktopFWebdEditor.exe
C:\Users\ALEX\DesktopTrojan.Win32.BlackBird.exe
C:\Users\ALEX\Desktopvirii
C:\Users\MIKY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\.protected
C:\Windows\setup.exe
C:\Windows\system32\adssite-remove.exe
C:\Windows\system32\drivers\hldrrr.exe
C:\Windows\system32\drivers\srosa.sys
C:\Windows\system32\rightonadz-uninst.exe
C:\Windows\system32\x64

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SROSA
ER NEGRO
Avatar utente
ALEXG3
Neo Iscritto
Neo Iscritto
 
Messaggi: 3
Iscritto il: gio apr 03, 2008 6:36 pm
Località: ITALY

Messaggioda ste_95 » ven apr 04, 2008 7:53 pm

perché non posti per intero i log?

Disabilita il ripristino configurazione di sistema.

Scarica Avenger
Estrailo in una cartella a tua scelta
Esegui il file avenger.exe con la figura di una spada
Ora incolla queste righe nella box bianca che si è aperta:

Codice: Seleziona tutto
Files to delete:
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\windows\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\mdelk.exe
C:\WINDOWS\system32\1.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

Folders to delete:
C:\WINDOWS\system32\drivers\down

Registry keys to delete:
HKLM\SYSTEM\CurrentControlSet\Services\srosa
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA


Togli il segno di spunta dalla voce Scan for Rootkits
Premi il pulsante Execute
Rispondi di Si alle due richieste di Avenger
Adesso il tuo computer dovrebbe riavviarsi, nel caso non succedesse, riavvialo tu manualmente
Al riavvio del computer, copia e incolla qui il contenuto del blocco note che apparirà.

Riscarica gli installer dei programmi di sicurezza e prova a reinstallare un antivirus.

Controlliamo se il rootkit è ancora attivo. Scarica GMER, poi segui i seguenti passaggi:

--- 1° passaggio ---
Avviamo gmer
clicchiamo su > > >
Clicchiamo su Autostart
mettiamo il segno di spunta a Show All
clicchiamo su Scan
al termine della scansione, clicchiamo su Copy
Apriamo il blocco note e premiamo CTRL+V (oppure clicchiamo su Modifica e poi su Incolla).
Salviamo il file e carichiamolo su FreeFileHosting
Postiamo qui il link che ci viene assegnato.

--- 2° passaggio ---
Sempre nel programma appena scaricato (gmer),
clicchiamo su Rootkit
clicchiamo su Scan
al termine della scansione, clicchiamo su Copy
Apriamo il blocco note e premiamo CTRL+V (oppure clicchiamo su Modifica e poi su Incolla).
Salviamo il file e carichiamolo su FreeFileHosting
Postiamo qui il link che ci viene assegnato.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 28 ospiti

cron
Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising