Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Avenger per Windows Vista? problema Beagle_YM

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Avenger per Windows Vista? problema Beagle_YM

Messaggioda PinkGlitter » gio gen 10, 2008 12:16 am

Ciao volevo sapere se c'è un programma alternativo a The avenger per risolvere il problema di Beagle YM.
Ho vista e sto impazzendo... sto effettuando uno scanner con kaspersky posterò domani (sperando finisca è già da 3 ore che va avanti ma sono solo al 17% )
intanto se qualcuno potesse chiarirmi questo dubbio su avenger gliene sarei grata, per il resto ovviamente aspetto di postare i risultati di kaspersky sperando qualcuno riesca a consigliarmi il da farsi, ho letto e riletto post del forum ma si parla spesso di win XP, con Vista avenger sembra non andare e mi chiedo come procedere una volta terminato lo scanner con kaspersky?
vi prego di essere chiari e usare parole semplici perché sono una raga che non si intende granchè di queste cose.
ciao ciao a tutti e grazie anticipatamente [cry+] [cry+] [cry+]
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda ste_95 » gio gen 10, 2008 6:59 am

Alla fine dello scanner postane il log...

Per Avenger, no, non funziona su Vista. Per la rimozione dei files puoi aiutarti con Unlocker [;)]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda PinkGlitter » gio gen 10, 2008 11:12 am

Dopo ben oltre 13 ore kaspersky ha finito la scannere del mio pc....i risultati sono un po' preoccupanti dato che ho 6 virus e 30 file infetti [cry+] comunque vi posto quanto dice kaspersky in formato html come richiesto.
Ricordo che ho Vista, e sono terra terra per quanto riguarda l'informatica, quindi vi ringrazio anticipatamente per la semplicità con cui risponderete.


Thursday, January 10, 2008 11:12:04 AM
Operating System: Microsoft Windows Vista Home Edition, (Build 6000)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 9/01/2008
Kaspersky Anti-Virus database records: 504887
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
C:\
D:\
E:\
F:\
G:\
H:\
I:\
J:\
Scan Statistics
Total number of scanned objects 91807
Number of viruses found 6
Number of infected objects 30
Number of suspicious objects 0
Duration of the scan process 14:02:07

Infected Object Name Virus Name Last Action
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$R5C0S1F.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RC5TCZZ.keygen\Avast!.Professional.Edition.4.7.892.ita.+.keygen.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RC5TCZZ.keygen\RtHDVCpl.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RQG4TYU.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\Boot\BCD Object is locked skipped
C:\Boot\BCD.LOG Object is locked skipped
C:\Program Files\eMule\emule.exe -AutoStart Infected: Trojan-Downloader.Win32.Bagle.hh skipped
C:\Program Files\Jasc Software Inc\Animation Shop 3\register.exe Object is locked skipped
C:\Program Files\mIRC\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Program Files\Nero\Nero8\Nero BackItUp\BIU4E6D.txt Object is locked skipped
C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.73.Crwl Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex\SystemIndex.73.gthr Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSStmp.log Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010001.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010002.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.ci Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010003.wsb Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010004.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010005.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010006.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010007.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010008.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010009.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000A.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000B.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000C.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000D.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000E.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001000F.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010010.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010011.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010012.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010013.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010014.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010015.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010016.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010017.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010019.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001B.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001C.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001D.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\0001001F.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010020.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010021.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\00010022.wid Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\Indexer\CiFiles\INDEX.000 Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000 Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\Used0000.000 Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000 Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk1.gthr Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.chk2.gthr Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SystemIndex.Ntfy1259.gthr Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\Ntf5C23.tmp Object is locked skipped
C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc\Ntf5C24.tmp Object is locked skipped
C:\ProgramData\Nero\Nero8\Nero BackItUp\Cache\NeroBackItUpScheduler3.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbc2e.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbdam Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbdao Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbeam Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbeao Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbm Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbu2d.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbvm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\dbvmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\fii.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\fiih.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\hp Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\hpt2i.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\rpm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\rpm1m.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\rpm1mh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\rpmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-black-enchashm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-black-enchashmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-black-urlm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-black-urlmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-malware-domainm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-malware-domainmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-white-domainm.cf1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Google\Google Desktop\a858f737d435\safeweb\goog-white-domainmh.ht1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0AX957S7\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27EA3900\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[2].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[3].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1 Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2 Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat{6de2e154-4b12-11dc-8a3a-0013a9f0adfc}.TM.blf Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat{6de2e154-4b12-11dc-8a3a-0013a9f0adfc}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\UsrClass.dat{6de2e154-4b12-11dc-8a3a-0013a9f0adfc}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Users\Ivana\AppData\Local\Mozilla\Firefox\Profiles\eg7ov5c2.default\Cache\_CACHE_001_ Object is locked skipped
C:\Users\Ivana\AppData\Local\Mozilla\Firefox\Profiles\eg7ov5c2.default\Cache\_CACHE_002_ Object is locked skipped
C:\Users\Ivana\AppData\Local\Mozilla\Firefox\Profiles\eg7ov5c2.default\Cache\_CACHE_003_ Object is locked skipped
C:\Users\Ivana\AppData\Local\Mozilla\Firefox\Profiles\eg7ov5c2.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe NSIS: infected - 2 skipped
C:\Users\Ivana\AppData\Local\Temp\~DF44BA.tmp Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Cookies\index.dat Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\cert8.db Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\formhistory.dat Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\history.dat Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\key3.db Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\parent.lock Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\search.sqlite Object is locked skipped
C:\Users\Ivana\AppData\Roaming\Mozilla\Firefox\Profiles\eg7ov5c2.default\urlclassifier2.sqlite Object is locked skipped
C:\Users\Ivana\Desktop\Download\Avast!.Professional.Edition.4.7.892.ita.+.keygen.zip/Avast!.Professional.Edition.4.7.892.ita.+.keygen.exe Infected: Trojan-Downloader.Win32.Bagle.hr skipped
C:\Users\Ivana\Desktop\Download\Avast!.Professional.Edition.4.7.892.ita.+.keygen.zip ZIP: infected - 1 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe NSIS: infected - 4 skipped
C:\Users\Ivana\NTUSER.DAT Object is locked skipped
C:\Users\Ivana\ntuser.dat.LOG1 Object is locked skipped
C:\Users\Ivana\ntuser.dat.LOG2 Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\assembly\GAC_32\mcupdate\6.0.6000.0__31bf3856ad364e35\mcupdate.exe Object is locked skipped
C:\Windows\Debug\PASSWD.LOG Object is locked skipped
C:\Windows\Debug\sam.log Object is locked skipped
C:\Windows\Debug\WIA\wiatrace.log Object is locked skipped
C:\Windows\ehome\mcupdate.exe Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1 Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2 Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT{3a539869-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1 Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG2 Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{3a539865-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 Object is locked skipped
C:\Windows\System32\catroot2\edb.log Object is locked skipped
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb Object is locked skipped
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb Object is locked skipped
C:\Windows\System32\config\COMPONENTS Object is locked skipped
C:\Windows\System32\config\COMPONENTS.LOG1 Object is locked skipped
C:\Windows\System32\config\COMPONENTS.LOG2 Object is locked skipped
C:\Windows\System32\config\DEFAULT Object is locked skipped
C:\Windows\System32\config\DEFAULT.LOG1 Object is locked skipped
C:\Windows\System32\config\DEFAULT.LOG2 Object is locked skipped
C:\Windows\System32\config\RegBack\COMPONENTS Object is locked skipped
C:\Windows\System32\config\RegBack\DEFAULT Object is locked skipped
C:\Windows\System32\config\RegBack\SAM Object is locked skipped
C:\Windows\System32\config\RegBack\SECURITY Object is locked skipped
C:\Windows\System32\config\RegBack\SOFTWARE Object is locked skipped
C:\Windows\System32\config\RegBack\SYSTEM Object is locked skipped
C:\Windows\System32\config\SAM Object is locked skipped
C:\Windows\System32\config\SAM.LOG1 Object is locked skipped
C:\Windows\System32\config\SAM.LOG2 Object is locked skipped
C:\Windows\System32\config\SECURITY Object is locked skipped
C:\Windows\System32\config\SECURITY.LOG1 Object is locked skipped
C:\Windows\System32\config\SECURITY.LOG2 Object is locked skipped
C:\Windows\System32\config\SOFTWARE Object is locked skipped
C:\Windows\System32\config\SOFTWARE.LOG1 Object is locked skipped
C:\Windows\System32\config\SOFTWARE.LOG2 Object is locked skipped
C:\Windows\System32\config\SYSTEM Object is locked skipped
C:\Windows\System32\config\SYSTEM.LOG1 Object is locked skipped
C:\Windows\System32\config\SYSTEM.LOG2 Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TM.blf Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Windows\System32\config\TxR\{250834B7-750C-494d-BDC3-DA86B6E2101B}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\System32\drivers\down\14614906.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Windows\System32\drivers\down\29236802.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Windows\System32\drivers\down\33009.exe Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Windows\System32\drivers\sptd.sys Object is locked skipped
C:\Windows\System32\ivireg.ivr Object is locked skipped
C:\Windows\System32\LogFiles\HTTPERR\httperr1.log Object is locked skipped
C:\Windows\System32\LogFiles\Scm\SCM.EVM Object is locked skipped
C:\Windows\System32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\Windows\System32\Msdtc\KtmRmTm.blf Object is locked skipped
C:\Windows\System32\Msdtc\KtmRmTmContainer00000000000000000001 Object is locked skipped
C:\Windows\System32\Msdtc\KtmRmTmContainer00000000000000000002 Object is locked skipped
C:\Windows\System32\spool\SpoolerETW.etl Object is locked skipped
C:\Windows\System32\wbem\Logs\WMITracing.log Object is locked skipped
C:\Windows\System32\wbem\Repository\INDEX.BTR Object is locked skipped
C:\Windows\System32\wbem\Repository\MAPPING1.MAP Object is locked skipped
C:\Windows\System32\wbem\Repository\MAPPING2.MAP Object is locked skipped
C:\Windows\System32\wbem\Repository\OBJECTS.DATA Object is locked skipped
C:\Windows\System32\WDI\LogFiles\WdiContextLog.etl.002 Object is locked skipped
C:\Windows\System32\wfp\wfpdiag.etl Object is locked skipped
C:\Windows\System32\winevt\Logs\Application.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\DFS Replication.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Key Management Service.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Media Center.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-LanguagePackSetup%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak-Diagnostic%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\ODiag.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\OSession.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Security.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\System.evtx Object is locked skipped
C:\Windows\Tasks\SCHEDLGU.TXT Object is locked skipped
C:\Windows\winsxs\x86_mcupdate_31bf3856ad364e35_6.0.6000.16386_none_c6660fc3aee34dc4\mcupdate.exe Object is locked skipped
Scan process completed.



aspetto vostri suggerimenti [;)] Grazie anticipatamente
p.s. non potendo usare The Avenger devo scaricare Unlocker? da dove posso?
p.p.s. colgo l'occasione per chiedervi, effettuando adesso i dischi di ripristino, rischio di salvare anche Beagle e infettare nuovamente tutto qualora li utilizzassi?
ciao ciao [boh]
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm


Messaggioda crazy.cat » gio gen 10, 2008 11:38 am

PinkGlitter ha scritto:p.p.s. colgo l'occasione per chiedervi, effettuando adesso i dischi di ripristino, rischio di salvare anche Beagle e infettare nuovamente tutto qualora li utilizzassi?

E' meglio fare pulizia d tutti i "vermicelli" prima di crearti qualsiasi cosa.

Lasciami provare una soluzione alternativa al tuo problema.
Provo a risponderti tra poco e vediamo se mi riesce.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » gio gen 10, 2008 11:46 am

ok grazie anticipatamente , aspetto la tua risposta allora per eliminare beagle. ps sono connessa...quindi scrivimi quando vuoi
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda crazy.cat » gio gen 10, 2008 12:17 pm

Svuota il cestino di vista prima di tutto.

Poi ti scarichi l'allegato a questo post, lo estrai in una cartella qualsiasi sul tuo disco fisso e poi avvii il file rimuovi.cmd, ci fai un doppio click sopra per lanciarlo.

E' la prima volta che provo a farlo su Vista, quindi non sono sicuro che funzioni contro questo virus.
Ma mi piacerebbe saperlo e quindi prova a farlo.

Ti apparirà una schermata nera e una fila di comandi dos dove avvengono delle operazioni in automatico, alla fine la schermata si ferma in attesa che tu prema un tasto, ma non farlo ancora.

Avrei bisogno di una foto di questa schermata, qui è spiegato come farla
http://www.MegaLab.it/2995
E qui ti dice come caricarla sul sito per farmela poi vedere
http://www.MegaLab.it/2995/2

Sarebbe molto importante per capire come aiutare altre persone in futuro con Vista e questo virus.

Dopo riavvia il pc e prova a reinstallare l'antivirus.

Dovrai reinstallare emule dopo le pulizie visto che il file principale è infetto.

Prova a fare questo, intanto io vado a mangiare e torno verso l'una, se le cose sono andate male passiamo alla seconda fase con unlocker.
Ultima modifica di crazy.cat il gio gen 10, 2008 1:20 pm, modificato 1 volta in totale.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » gio gen 10, 2008 12:52 pm

Ho fatto quello che mi hai detto fino alla foto della schermata nera, che ti posto qui di seguito

Immagine

Sono ferma qui, posso schiacciare un qualunque tasto per continuare? Mi sono fermata qui perché volevo sapere...ho l'antivirus infetto, forse prima di riavviare il pc conviene scaricarne un altro? se si quale?
Se devo scaricare qualcosa è meglio prima perché questo virus mi disattiva il servizio wireless e ogni volta che riavvio un parametro che si trova in:

Esegui --> Regedit --> HKEY_LOCAL_MACHINE --> SYSTEM --> CurrentControlSet --> Ndisuio --> Start
da 4 lo devo impostare a 3

Riavviare e solo allora mi si connette in wireless.
Prima se ricordi ho fatto la scansione online con kaspersky ma non so se si è salvato sul pc, che anntivirus metto :( ...aspetto tue direttive prima di fare qualunque cosa.
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda crazy.cat » gio gen 10, 2008 1:25 pm

Grave errore mio, avevo allegato il file sbagliato, ritorna nella discussione di prima e usa il nuovo allegato, stessa procedura di prima.
La finestra dos la puoi chiudere, mi serve la foto anche di questa nuova.

Per la rete wireless è spiegato in questo articolo come ripristinarla
http://www.MegaLab.it/2657/4
però bisogna togliere il virus prima di tutto.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » gio gen 10, 2008 2:45 pm

posto qui la nuova immagine ottenuta con il corretto file allegato che hai postato prima

Immagine

rinnovo le domande di prima (leggi sopra please)
se riesci a rispondere subito perché poi devo assentarmi tutto il pome :/ in caso rispondi appena puoi fornendomi quante + informazioni riesci così che una volta tornata a casa mi porto avanti con questo lavoro :(
grazie. Ivana
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda ste_95 » gio gen 10, 2008 3:12 pm

Dovresti fare uno screen anche della parte più sopra [^]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda PinkGlitter » gio gen 10, 2008 3:37 pm

Ecco le parti mancanti :

Immagine

Immagine

Ora sto uscendo, ma spero di trovare qualche risposta non appena sarò di ritorno.
Grazie ancora
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda ste_95 » gio gen 10, 2008 3:42 pm

Non direi sia andato a buon fine... [V]
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda crazy.cat » gio gen 10, 2008 4:03 pm

ste_95 ha scritto:Non direi sia andato a buon fine... [V]

non del tutto, ma non mi aspettavo riuscisse al primo colpo.


Con unlocker, selezioni e cancelli i file che elenco più sotto
http://www.MegaLab.it/2581/3

C:\WINDOWS\system32\drivers\hidr.exe
C:\WINDOWS\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\hldrrr.exe
C:\WINDOWS\system32\trusted.exe
C:\WINDOWS\system32\drivers\pci32.sys

Potresti trovare solo quei tre indicati in rosso, se gli altri non ci sono meglio così.

Per questi file puoi usare ccleaner http://www.ccleaner.com/, lo installi e ripulisce tutto quello che trova.
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0AX957S7\b64_1[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27EA3900\b64_1[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[2].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[2].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[3].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_3[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[1].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[2].jpg
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[1].jpg

Per questi basta svuotare il cestino
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$R5C0S1F.exe
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RC5TCZZ.keygen\Avast!.Professional.Edition.4.7.892.ita.+.keygen.exe
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RC5TCZZ.keygen\RtHDVCpl.exe
C:\$Recycle.Bin\S-1-5-21-561238563-112280083-2533844411-1000\$RQG4TYU.exe

Questi file dovrebbe averli già cancellati quella cosa che ti ho fatto fare in precedenza, verifica se ci sono ancora e casomai usi ancora unlocker.
C:\Users\Ivana\Desktop\Download\Avast!.Professional.Edition.4.7.892.ita.+.keygen.zip
C:\Program Files\eMule\emule.exe
C:\Windows\System32\drivers\down\14614906.exe
C:\Windows\System32\drivers\down\29236802.exe
C:\Windows\System32\drivers\down\33009.exe

questa cartella Down è da svuotare e cancellare.
C:\WINDOWS\system32\drivers\down\

Dopo le pulizie usi ancora quel file MegaLab.reg che era in quel file che hai scaricato prima, clicchi due volte sopra il file reg e confermi due volte quando te lo chiede.

Per l'antivirus puoi usare questo a gratis per sei mesi
http://www.MegaLab.it/1740
ne vale la pena.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » gio gen 10, 2008 8:07 pm

Ho svuotato il cestino, eliminato la cartella C:\\WINDOWS\Sistem32\down, ma non riesco a eseguire CCleaner, si installa correttamente ma poi spunta la schermata del programma e poi scompare.

inoltre non riesco a trovare questi files:

C:\WINDOWS\system32\drivers\hidr.exe
C:\WINDOWS\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\hldrrr.exe
C:\WINDOWS\system32\trusted.exe
C:\WINDOWS\system32\drivers\pci32.sys

non capisco perché, seguo il percorso, la cartella drivers era nascosta, l'ho sbloccata dal pannello di controllo ma quesi file non li trovo proprio,

Terzo problema , ho provato a installare l'antivirus che mi avete segnalato ma ahime mi è apparso un messaggio di errore....che ci sia ancora il "caro" Bagle a mettermi i bastoni tra le ruote? come lo devo eliminare, aiuto!
faccio di nuovo lo scanner?
grazie. ciao :( [cry+] [cry+] [cry+]
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda crazy.cat » ven gen 11, 2008 9:30 am

PinkGlitter ha scritto:faccio di nuovo lo scanner?

Prova a farlo solo del disco c:
quando arrivi alla schermata delle scelte, selezioni Folders e scegli solo il disco c: in modo da velocizzare la cosa.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » ven gen 11, 2008 1:53 pm

OK, lo sto rifacendo... così spero di capire un po' che fine hanno fatto quei file... ma è normale tutto cio'? [cry]
comunque a mio parere ista è da eliminare... [:p]
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda crazy.cat » ven gen 11, 2008 1:58 pm

PinkGlitter ha scritto:comunque a mio parere ista è da eliminare... [:p]

Non solo tuo.

Mi hanno passato il virus, domani dovrei riuscire ad infettare un c con vista per capire come rimuoverlo meglio.
Vedremo.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda PinkGlitter » ven gen 11, 2008 2:32 pm

Magari...se ci riesci mi faresti proprio un gran favore... comunque poi ti posto il log di kaspersky (anche se dopo 1 ora è ancora al 6 % nonostante lo abbia "limitato al disco C:

ciao ciao
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda PinkGlitter » sab gen 12, 2008 12:50 pm

dopo il secondo scan con kaspersky questo è il risultato:

Saturday, January 12, 2008 12:50:57 PM
Operating System: Microsoft Windows Vista Home Edition, (Build 6000)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 11/01/2008
Kaspersky Anti-Virus database records: 507602
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target Folders
C:\
Scan Statistics
Total number of scanned objects 90817
Number of viruses found 4
Number of infected objects 27
Number of suspicious objects 0
Duration of the scan process 13:47:47

Infected Object Name Virus Name Last Action
C:\Boot\BCD Object is locked skipped
C:\Boot\BCD.LOG Object is locked skipped
C:\Program Files\Jasc Software Inc\Animation Shop 3\register.exe Object is locked skipped
C:\Program Files\mIRC\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Program Files\Nero\Nero8\Nero BackItUp\BIU57C0.txt Object is locked skipped
C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\ProgramData\Nero\Nero8\Nero BackItUp\Cache\NeroBackItUpScheduler3.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0AX957S7\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\27EA3900\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2JFQ8SUX\b64_3[2].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2THBIF25\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2THBIF25\b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2THBIF25\b64_1[3].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2THBIF25\b64_1[4].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPF7UTZQ\b64_3[1].jpg Infected: Trojan-Downloader.Win32.Bagle.ho skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RK8AO56X\b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[3].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VYY0LQ9Q\b64_2[4].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\AppData\Local\Temp\mirc63.exe NSIS: infected - 2 skipped
C:\Users\Ivana\AppData\Roaming\Microsoft\Windows\Cookies\index.dat Object is locked skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001/stream/data0014 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream/data0001 Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe/stream Infected: not-a-virus:Client-IRC.Win32.mIRC.63 skipped
C:\Users\Ivana\Documents\File ricevuti\mirc63.exe NSIS: infected - 4 skipped
C:\Users\Ivana\NTUSER.DAT Object is locked skipped
C:\Users\Ivana\ntuser.dat.LOG1 Object is locked skipped
C:\Users\Ivana\ntuser.dat.LOG2 Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms Object is locked skipped
C:\Users\Ivana\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms Object is locked skipped
C:\Windows\assembly\GAC_32\mcupdate\6.0.6000.0__31bf3856ad364e35\mcupdate.exe Object is locked skipped
C:\Windows\Debug\PASSWD.LOG Object is locked skipped
C:\Windows\Debug\sam.log Object is locked skipped
C:\Windows\Debug\WIA\wiatrace.log Object is locked skipped
C:\Windows\ehome\mcupdate.exe Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG1 Object is locked skipped
C:\Windows\ServiceProfiles\LocalService\ntuser.dat.LOG2 Object is locked skipped
C:\Windows\System32\wfp\wfpdiag.etl Object is locked skipped
C:\Windows\System32\winevt\Logs\Application.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\DFS Replication.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\HardwareEvents.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Internet Explorer.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Key Management Service.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Media Center.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-International%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkAccessProtection%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-ReliabilityAnalysisComponent%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Resolver%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Leak-Diagnostic%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Microsoft-Windows-WLAN-AutoConfig%4Operational.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\ODiag.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\OSession.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\Security.evtx Object is locked skipped
C:\Windows\System32\winevt\Logs\System.evtx Object is locked skipped
C:\Windows\Tasks\SCHEDLGU.TXT Object is locked skipped
C:\Windows\winsxs\x86_mcupdate_31bf3856ad364e35_6.0.6000.16386_none_c6660fc3aee34dc4\mcupdate.exe Object is locked skipped
Scan process completed.


Aspetto proposte su come procedere.
ciao ciao [cry] [cry] [cry]
PinkGlitter
Avatar utente
PinkGlitter
Aficionado
Aficionado
 
Messaggi: 30
Iscritto il: mer gen 09, 2008 4:47 pm

Messaggioda crazy.cat » sab gen 12, 2008 1:50 pm

Mi piacerebbe dartene, ma per il momento sta vincendo il virus.
Non ho ancora trovato il modo di fregarlo.
Tutta colpa di Vista il sistema operativo più sicuro e a prova di virus come recitava qualcuno quando lo promuovevano [:p]
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Prossimo

Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 3 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising