Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Bagle

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Bagle

Messaggioda *LasVegas* » ven gen 11, 2008 9:19 pm

Sono stata anch'io infettata dal virus Bagle.
Ad ogni modo, sto eseguendo la scansione con Kaspersky online, ma è già passata un'ora e 32 min. ed è solo al 5%; ho visto le altre discussioni e più o meno la durata è di 50 min. . é normale che ci metta così tanto?
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm

Messaggioda ste_95 » ven gen 11, 2008 9:32 pm

La scansione con kaspersky impiega sempre molto tempo.

Abbi pazienza.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda *LasVegas* » sab gen 12, 2008 1:49 pm

Dopo la bellezza di quasi 15 ore la scansione è finita!

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, January 12, 2008 1:47:37 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 11/01/2008
Kaspersky Anti-Virus database records: 507664
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
H:\
I:\
J:\

Scan Statistics:
Total number of scanned objects: 121049
Number of viruses found: 24
Number of infected objects: 67
Number of suspicious objects: 0
Duration of the scan process: 14:55:29

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\User\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\ipfilter.cache Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8737.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8738.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8739.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8740.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8741.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8742.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8743.tmp Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Azureus\tmp\AZU8744.tmp Object is locked skipped
C:\Documents and Settings\User\Documenti\Azureus Downloads\ADOBE CS3 ITA\ADBEDRWVCS3_I.exe Object is locked skipped
C:\Documents and Settings\User\Documenti\Azureus Downloads\ADOBE CS3 ITA\ADBEFLPRCS3_I.exe Object is locked skipped
C:\Documents and Settings\User\Documenti\Azureus Downloads\ADOBE CS3 ITA\ADBEFWKSCS3_I.exe Object is locked skipped
C:\Documents and Settings\User\Documenti\Azureus Downloads\ADOBE CS3 ITA\ADBEIDSNCS3_I.exe Object is locked skipped
C:\Documents and Settings\User\Documenti\Azureus Downloads\ADOBE CS3 ITA\ADBEILSTCS3_I.exe Object is locked skipped
C:\Documents and Settings\User\Documenti\BearShareV6it.exe/WISE0106.BIN/stream/data0022 Infected: not-a-virus:AdWare.Win32.Agent.dd skipped
C:\Documents and Settings\User\Documenti\BearShareV6it.exe/WISE0106.BIN/stream Infected: not-a-virus:AdWare.Win32.Agent.dd skipped
C:\Documents and Settings\User\Documenti\BearShareV6it.exe/WISE0106.BIN Infected: not-a-virus:AdWare.Win32.Agent.dd skipped
C:\Documents and Settings\User\Documenti\BearShareV6it.exe WiseSFX: infected - 3 skipped
C:\Documents and Settings\User\Documenti\BearShareV6it.exe WiseSFXDropper: infected - 3 skipped
C:\Documents and Settings\User\Documenti\Downloads\Lussuria.Seduzione.E.Tradimento.2007.iTALiAN.LD.DVDRip.XviD-SiLENT\Lussuria.Seduzione.E.Tradimento.2007.iTALiAN.LD.DVDRip.XviD-SiLENT.CD1.avi Object is locked skipped
C:\Documents and Settings\User\Documenti\messengerskinner.exe Infected: Trojan-Dropper.Win32.Agent.cca skipped
C:\Documents and Settings\User\Documenti\music_it.exe Infected: not-a-virus:AdWare.Win32.Comet.bp skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe/data0000.bin/stream/data0005 Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe/data0000.bin/stream Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe/data0000.bin Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe EmbeddedEXE: infected - 3 skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe UPX: infected - 3 skipped
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe PE_Patch.UPX: infected - 3 skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe/data0000.bin/stream/data0006 Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe/data0000.bin/stream Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe/data0000.bin Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe EmbeddedEXE: infected - 3 skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe UPX: infected - 3 skipped
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe PE_Patch.UPX: infected - 3 skipped
C:\Documents and Settings\User\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Cronologia\History.IE5\MSHist012008011120080112\index.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbc2e.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbdam Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbdao Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbeam Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbeao Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbm Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbu2d.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbvm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\dbvmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\fii.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\fiih.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\hp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\hpt2i.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\rpm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\rpm1m.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\rpm1mh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\rpmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-black-enchashm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-black-enchashmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-black-urlm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-black-urlmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-malware-domainm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-malware-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-white-domainm.cf1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Google\Google Desktop\8132469d1022\safeweb\goog-white-domainmh.ht1 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\gos6F.tmp Infected: Trojan.Win32.Dialer.qn skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\hsperfdata_User\4608 Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\NSIS_Install_WMP.exe/stream/data0006 Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\NSIS_Install_WMP.exe/stream Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\NSIS_Install_WMP.exe NSIS: infected - 2 skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF8B77.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF8B92.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DFBAC9.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\ANN4MN9W\ggdll[1] Infected: not-a-virus:AdWare.Win32.Virtumonde.bjl skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\BI3CE2EN\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\BI3CE2EN\swfFond2[1].swf Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[1].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[2].jpg Infected: Trojan-PSW.Win32.LdPinch.ewq skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[1].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[2].jpg Infected: Trojan.Win32.Pakes.bwy skipped
C:\Documents and Settings\User\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\User\ntuser.dat.LOG Object is locked skipped
C:\Programmi\Alice ti aiuta\log\mpbtn.log Object is locked skipped
C:\Programmi\Alice ti aiuta\SmartBridge\AlertFilter.log Object is locked skipped
C:\Programmi\Alice ti aiuta\SmartBridge\log\httpclient.log Object is locked skipped
C:\Programmi\Alice ti aiuta\SmartBridge\SmartBridge.log Object is locked skipped
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe Infected: Trojan-Downloader.Win32.Bagle.hn skipped
C:\Programmi\Internet Explorer\msimg32.dll Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\Mozilla Firefox\plugins\NPMyWebS.dll Infected: not-a-virus:AdTool.Win32.MyWebSearch.i skipped
C:\Programmi\MSN Messenger\riched20.dll Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3BROVLY.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.at skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3DTACTL.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.bc skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3HISTSW.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3HTMLMU.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.l skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3HTTPCT.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.af skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3IMSTUB.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3POPSWT.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3PSSAVR.SCR Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3REPROX.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3RESTUB.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3SCHMON.EXE Infected: not-a-virus:AdTool.Win32.MyWebSearch.a skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3SCRCTR.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.an skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3SHLLVW.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.aq skipped
C:\Programmi\MyWebSearch\bar\1.bin\F3WPHOOK.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.bh skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3HTML.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.bc skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3IDLE.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.ax skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3MSG.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.bc skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3OUTLCN.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3PLUGIN.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.as skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3SKIN.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.ad skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3SLSRCH.EXE Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\M3SRCHMN.EXE Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\MWSBAR.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.bc skipped
C:\Programmi\MyWebSearch\bar\1.bin\MWSOEMON.EXE Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\MWSOEPLG.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.au skipped
C:\Programmi\MyWebSearch\bar\1.bin\MWSOESTB.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\Programmi\MyWebSearch\bar\1.bin\NPMYWEBS.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.i skipped
C:\Programmi\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL Infected: not-a-virus:AdTool.Win32.MyWebSearch.as skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Registration\{02D4B3F1-FD88-11D1-960D-00805FC79235}.{F54C3DCD-00BB-473E-A54B-89DA7F86DC92}.crmlog Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\Antiviru.evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\DEFAULT Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\Media Ce.evt Object is locked skipped
C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped
C:\WINDOWS\system32\config\OSession.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\SOFTWARE Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SYSTEM Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\f3PSSavr.scr Infected: not-a-virus:AdTool.Win32.MyWebSearch skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl Object is locked skipped
C:\WINDOWS\system32\nsinet.exe Infected: not-a-virus:Porn-Dialer.Win32.EgroupDial.af skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\system32\winosz32.dll Infected: Trojan.Win32.Dialer.qn skipped
C:\WINDOWS\Temp\NSIS_SpywareSecure_trial_setup.exe/stream/data0005 Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\WINDOWS\Temp\NSIS_SpywareSecure_trial_setup.exe/stream Infected: not-a-virus:AdWare.Win32.NaviPromo.bv skipped
C:\WINDOWS\Temp\NSIS_SpywareSecure_trial_setup.exe NSIS: infected - 2 skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

Scan process completed.
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm


Messaggioda crazy.cat » sab gen 12, 2008 2:00 pm

Questo è il tuo script, se dopo il riavvio reinstalli l'antivirus, installa anche un buon programma antispyware, come superantispyware o a2 squared e fai un giro di pulizia anche con uno di questi perché sei pieno di adware di vario tipo.
facci sapere

Codice: Seleziona tutto
Files to delete:
C:\WINDOWS\system32\drivers\hidr.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\hldrrr.exe
C:\WINDOWS\system32\trusted.exe
C:\WINDOWS\system32\drivers\pci32.sys
C:\windows\system32\drivers\hldrrr.exe
C:\WINDOWS\system32\drivers\hldrrr.ex_
C:\Documents and Settings\User\Documenti\BearShareV6it.exe
C:\Documents and Settings\User\Documenti\messengerskinner.exe
C:\Documents and Settings\User\Documenti\music_it.exe
C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe
C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe
C:\Documents and Settings\User\Impostazioni locali\Temp\gos6F.tmp
C:\Documents and Settings\User\Impostazioni locali\Temp\NSIS_Install_WMP.exe
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\ANN4MN9W\ggdll[1]
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\BI3CE2EN\b64_1[1].jpg
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[1].jpg
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[2].jpg
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[1].jpg
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[2].jpg
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmi\Internet Explorer\msimg32.dll
C:\Programmi\Mozilla Firefox\plugins\NPMyWebS.dll
C:\Programmi\MSN Messenger\riched20.dll
C:\WINDOWS\system32\f3PSSavr.scr
C:\WINDOWS\system32\nsinet.exe
C:\WINDOWS\system32\winosz32.dll
C:\WINDOWS\Temp\NSIS_SpywareSecure_trial_setup.exe

folders to delete:
C:\WINDOWS\exefnd
C:\WINDOWS\exefld
C:\WINDOWS\system32\drivers\down
C:\Programmi\MyWebSearch

registry keys to delete:
HKLM\SYSTEM\CurrentControlSet\Services\srosa
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
HKLM\SYSTEM\CurrentControlSet\Services\pci32
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Messaggioda *LasVegas* » sab gen 12, 2008 2:06 pm

Ecco cosa succede ad usare norton...
Grazie!
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm

Messaggioda *LasVegas* » sab gen 12, 2008 2:32 pm

Ecco qui:

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\ntyvpuul

*******************

Script file located at: \??\C:\WINDOWS\system32\qaykkncx.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:



File C:\WINDOWS\system32\drivers\hidr.exe not found!
Deletion of file C:\WINDOWS\system32\drivers\hidr.exe failed!

Could not process line:
C:\WINDOWS\system32\drivers\hidr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\drivers\srosa.sys deleted successfully.
File C:\WINDOWS\system32\wintems.exe deleted successfully.


File C:\WINDOWS\system32\hldrrr.exe not found!
Deletion of file C:\WINDOWS\system32\hldrrr.exe failed!

Could not process line:
C:\WINDOWS\system32\hldrrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\trusted.exe not found!
Deletion of file C:\WINDOWS\system32\trusted.exe failed!

Could not process line:
C:\WINDOWS\system32\trusted.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\pci32.sys not found!
Deletion of file C:\WINDOWS\system32\drivers\pci32.sys failed!

Could not process line:
C:\WINDOWS\system32\drivers\pci32.sys
Status: 0xc0000034

File C:\windows\system32\drivers\hldrrr.exe deleted successfully.


File C:\WINDOWS\system32\drivers\hldrrr.ex_ not found!
Deletion of file C:\WINDOWS\system32\drivers\hldrrr.ex_ failed!

Could not process line:
C:\WINDOWS\system32\drivers\hldrrr.ex_
Status: 0xc0000034

File C:\Documents and Settings\User\Documenti\BearShareV6it.exe deleted successfully.
File C:\Documents and Settings\User\Documenti\messengerskinner.exe deleted successfully.
File C:\Documents and Settings\User\Documenti\music_it.exe deleted successfully.
File C:\Documents and Settings\User\Documenti\SpywareSecure_trial_setup.exe deleted successfully.
File C:\Documents and Settings\User\Documenti\webmediaplayer_setup.exe deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temp\gos6F.tmp deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temp\NSIS_Install_WMP.exe deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\ANN4MN9W\ggdll[1] deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\BI3CE2EN\b64_1[1].jpg deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[1].jpg deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_1[2].jpg deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[1].jpg deleted successfully.
File C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\P3MVURUZ\b64_2[2].jpg deleted successfully.
File C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe deleted successfully.
File C:\Programmi\Internet Explorer\msimg32.dll deleted successfully.
File C:\Programmi\Mozilla Firefox\plugins\NPMyWebS.dll deleted successfully.
File C:\Programmi\MSN Messenger\riched20.dll deleted successfully.
File C:\WINDOWS\system32\f3PSSavr.scr deleted successfully.
File C:\WINDOWS\system32\nsinet.exe deleted successfully.
File C:\WINDOWS\system32\winosz32.dll deleted successfully.
File C:\WINDOWS\Temp\NSIS_SpywareSecure_trial_setup.exe deleted successfully.


Folder C:\WINDOWS\exefnd not found!
Deletion of folder C:\WINDOWS\exefnd failed!

Could not process line:
C:\WINDOWS\exefnd
Status: 0xc0000034



Folder C:\WINDOWS\exefld not found!
Deletion of folder C:\WINDOWS\exefld failed!

Could not process line:
C:\WINDOWS\exefld
Status: 0xc0000034

Folder C:\WINDOWS\system32\drivers\down deleted successfully.
Folder C:\Programmi\MyWebSearch deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Services\srosa deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA deleted successfully.


Registry key HKLM\SYSTEM\CurrentControlSet\Services\pci32 not found!
Deletion of registry key HKLM\SYSTEM\CurrentControlSet\Services\pci32 failed!

Could not process line:
HKLM\SYSTEM\CurrentControlSet\Services\pci32
Status: 0xc0000034



Registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32 not found!
Deletion of registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32 failed!

Could not process line:
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32
Status: 0xc0000034


Completed script processing.

*******************

Finished! Terminate.
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm

Messaggioda ste_95 » sab gen 12, 2008 2:34 pm

Dovrebbe essere tutto a posto.

Hai provato a reinstallare l'antivirus?
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda *LasVegas* » sab gen 12, 2008 2:34 pm

Mi sono dimenticata...posso rimettere il ripristino delle configurazione di sistema?
E lo spyware lo posso installare adesso o è meglio che prima risolvi i bagle?
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm

Messaggioda ste_95 » sab gen 12, 2008 2:35 pm

Il bagle è stato eliminato, esegui i consigli di crazy.cat ed equipaggiati con un buon antivirus, come Avira Antivir.
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda *LasVegas* » sab gen 12, 2008 2:49 pm

C'è un problema...
Ho cercato di installare Kspersky, ma non ci sono riuscita perché mi dice che ho installato già Avast.
Sono andata sul pannello di controllo>>installazione apllicazioni, ho provato anche con Ccleaner, ma ogni volta che cerco di disinstallare Avast si apre la pag. dell'installazione, provo a installarlo ma mi da un problema di setup.
Che faccio?
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm

Messaggioda ste_95 » sab gen 12, 2008 2:50 pm

Problema di setup cosa vorrebbe dire? Da errore?
«A volte è meglio tacere e sembrare stupidi che aprir bocca e togliere ogni dubbio.» Oscar Wilde
Avatar utente
ste_95
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 17271
Iscritto il: lun ago 06, 2007 11:19 am

Messaggioda Pct » sab gen 12, 2008 2:52 pm

Prova a eliminare avast con questo strumento di rimozione:

http://files.avast.com/files/eng/aswclear.exe

dovresti riuscire a toglierlo. Facci sapere.
Avatar utente
Pct
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 1933
Iscritto il: dom set 09, 2007 4:38 pm

Messaggioda *LasVegas* » sab gen 12, 2008 3:29 pm

Sono riuscita a togliere avast e a mettere l'antivirus.
Bè, anche se non basta minimamente, grazie! Grazie mille per la disponibilità!
Avatar utente
*LasVegas*
Aficionado
Aficionado
 
Messaggi: 37
Iscritto il: ven gen 11, 2008 4:50 pm


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 1 ospite

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising