Utility
Home Messaggi odierni FAQ Ricerca avanzata Lo staff del forum Regolamento Utenti Archivio
Pagina 1 di 2 1 2 ultimoultimo
Visualizzazione dei risultati da 1 a 10 su 18
  1. 21-07-2006, 17:08 #1
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13

    Internet Explorer lentissimo

    sono nuovo

    volevo chiedervi se riuscivate a risolvermi il problema cha da un pò mi assilla..
    IE è lentissimo, per aprire una pagina ci mette minuti e minuti, mentre firefox viaggia spedito Il mio browser predefinito è mozilla firefox ma per utilizzare i servizi rossoalice mi serve x forza IE.

    quindi presumo che non sia problema di rete, ed infatti eseguendo le vostri istruzioni http://forum.html.it/forum/showthrea...hreadid=811189 tranne le scansioni on line perchè non me le fa fare

    tra tutti solo Emido mi ha trovato qualcosa che io credo dannoso e non poco, che possa aver a che fare con il mio problema.....
    esattamente mi ha trovato
    Backdoor.Virkeal.a

    che ho letto che ha come
    Effetti secondari:
    • Blocca l'accesso a siti web di sicurezza
    • Disattiva le applicazioni di sicurezza
    • Clona un file “maligno”
    • Abbassa le impostazioni di sicurezza
    • Modifica del registro
    • Sottrae informazioni
    • Accesso e controllo del computer da parte di terzi

    Emido me lo ha cancellato, ma credo che in realtà la faccenda sia più grave del previsto

    x ora post il log di hjackthis
    Logfile of HijackThis v1.99.1
    Scan saved at 17.05.02, on 21/07/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
    C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
    C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe
    C:\Programmi\File comuni\Symantec Shared\SNDSrvc.exe
    C:\Programmi\File comuni\Symantec Shared\SPBBC\SPBBCSvc.exe
    C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
    C:\Programmi\Alwil Software\Avast4\ashServ.exe
    C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
    C:\Programmi\Norton AntiVirus\navapsvc.exe
    C:\Programmi\Norton AntiVirus\IWP\NPFMntor.exe
    C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
    C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Programmi\File comuni\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
    C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Programmi\Intel\Wireless\Bin\ZcfgSvc.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Programmi\HPQ\IAM\bin\asghost.exe
    C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
    C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe
    C:\Programmi\Analog Devices\SoundMAX\Smax4.exe
    C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe
    C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\WINDOWS\system32\dla\tfswctrl.exe
    C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
    C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
    C:\Programmi\HPQ\Quick Launch Buttons\EabServr.exe
    C:\Programmi\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
    C:\Programmi\File comuni\Symantec Shared\ccApp.exe
    C:\Programmi\QuickTime\qttask.exe
    C:\Programmi\File comuni\Real\Update_OB\realsched.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Programmi\MessengerPlus! 3\MsgPlus.exe
    C:\WINDOWS\vsnpstd.exe
    C:\Programmi\HPQ\SHARED\HPQWMI.exe
    C:\Programmi\D-Tools\daemon.exe
    C:\Programmi\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
    C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
    C:\Programmi\Skype\Phone\Skype.exe
    C:\Programmi\WIDCOMM\Software Bluetooth\BTTray.exe
    C:\Programmi\Nikon\PictureProject\NkbMonitor.exe
    C:\Programmi\Messenger\msmsgs.exe
    C:\Programmi\MSN Messenger\msnmsgr.exe
    C:\Programmi\ewido anti-spyware 4.0\guard.exe
    C:\Programmi\Mozilla Firefox\firefox.exe
    C:\Programmi\Microsoft Office\Office10\OUTLOOK.EXE
    C:\Programmi\Microsoft Office\Office10\WINWORD.EXE
    C:\Documents and Settings\utente\Desktop\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.hp.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmi\Norton AntiVirus\NavShExt.dll
    O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Programmi\HPQ\IAM\Bin\ItIeAddIN.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmi\Norton AntiVirus\NavShExt.dll
    O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe
    O4 - HKLM\..\Run: [SoundMAX] "C:\Programmi\Analog Devices\SoundMAX\Smax4.exe" /tray
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [ATIPTA] C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [UpdateManager] "C:\Programmi\File comuni\Sonic\Update Manager\sgtray.exe" /r
    O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
    O4 - HKLM\..\Run: [SynTPLpr] C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [eabconfg.cpl] C:\Programmi\HPQ\Quick Launch Buttons\EabServr.exe /Start
    O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
    O4 - HKLM\..\Run: [Cpqset] C:\Programmi\HPQ\Default Settings\cpqset.exe
    O4 - HKLM\..\Run: [hpWirelessAssistant] "%ProgramFiles%\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe"
    O4 - HKLM\..\Run: [ccApp] "C:\Programmi\File comuni\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [CnxTrApp] rundll32.exe "C:\Programmi\Pirelli\Access Gateway USB Network\CnxTrApp.dll",AppEntry -REG "Pirelli\Access Gateway USB"
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [IntelZeroConfig] C:\Programmi\Intel\Wireless\bin\ZCfgSvc.exe
    O4 - HKLM\..\Run: [IntelWireless] C:\Programmi\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
    O4 - HKLM\..\Run: [REGSHAVE] C:\Programmi\REGSHAVE\REGSHAVE.EXE /AUTORUN
    O4 - HKLM\..\Run: [DSLSTATEXE] C:\Programmi\IPM\Adsl\DataWay\dslstat.exe icon
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Programmi\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
    O4 - HKLM\..\Run: [Festoon] C:\Programmi\Santa Cruz Networks\Festoon\Festoon.exe /BOOT
    O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmi\D-Tools\daemon.exe" -lang 1040 -lock
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmi\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [!ewido] "C:\Programmi\ewido anti-spyware 4.0\ewido.exe" /minimized
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Programmi\MessengerPlus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [RealPlayer] "C:\Programmi\Real\RealPlayer\realplay.exe" /RunUPGToolCommandReBoot
    O4 - HKCU\..\Run: [Free Download Manager] C:\Programmi\Free Download Manager\fdm.exe -autorun
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [Skype] "C:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - Startup: Adobe Gamma.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office10\OSA.EXE
    O4 - Global Startup: NkbMonitor.exe.lnk = C:\Programmi\Nikon\PictureProject\NkbMonitor.exe
    O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Invia a &Bluetooth - C:\Programmi\WIDCOMM\Software Bluetooth\btsendto_ie_ctx.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
    O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com

    .....continua
    Rispondi quotando Rispondi quotando
  2. 21-07-2006, 17:09 #2
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.beta.mcafee.com/molb...1/mcinsctl.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1119350521687
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
    O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/...ampx_en_dl.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{C9C7C154-E82A-469C-AB31-3D2DE12D7018}: NameServer = 192.168.0.1,212.216.112.112
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F19B53D7-FFE6-4B89-94E3-D5333FC78678}: NameServer = 85.37.17.12 85.38.28.79
    O18 - Protocol: Festoon - (no CLSID) - (no file)
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
    O20 - Winlogon Notify: IntelWireless - C:\Programmi\Intel\Wireless\Bin\LgNotify.dll
    O20 - Winlogon Notify: OneCard - C:\Programmi\HPQ\IAM\Bin\AsWlnPkg.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Programmi\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe
    O23 - Service: EvtEng - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Programmi\ewido anti-spyware 4.0\guard.exe
    O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Programmi\HPQ\SHARED\HPQWMI.exe
    O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Programmi\iPod\bin\iPodService.exe
    O23 - Service: Servizio Auto-Protect di Norton AntiVirus (navapsvc) - Symantec Corporation - C:\Programmi\Norton AntiVirus\navapsvc.exe
    O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Programmi\Norton AntiVirus\IWP\NPFMntor.exe
    O23 - Service: RegSrvc - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Programmi\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: SAVScan - Symantec Corporation - C:\Programmi\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FILECO~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\SNDSrvc.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\SPBBC\SPBBCSvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\CCPD-LC\symlcsvc.exe



    ah tra le altre cose ho letto che virkel crea un file smss.exe, ed infatti nel task manager sotto applicazioni c'è...ma non me lo fa terminare perchè fa parte del sistema

    mi potere aiutare?grazie
    Rispondi quotando Rispondi quotando
  3. 21-07-2006, 20:21 #3
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    ma nessuno può aiutarmi :master:
    Rispondi quotando Rispondi quotando
  4. 22-07-2006, 23:59 #4
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    continuo a portare la discussione in alto...spero che qualcuno mi aiuti
    Rispondi quotando Rispondi quotando
  5. 24-07-2006, 11:38 #5
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    ma perchè solo a questa discussione nessuna risposta
    Rispondi quotando Rispondi quotando
  6. 24-07-2006, 11:44 #6
    TheHack
    TheHack non è in linea
    Utente di HTML.it L'avatar di TheHack
    Registrato dal
    Jul 2006
    Messaggi
    121
    io ti consiglio di usare mozilla firefox www.mozillaitalia.org
    Rispondi quotando Rispondi quotando
  7. 24-07-2006, 13:06 #7
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    evidentemente non hai letto il mio primo post

    io uso mozilla di default
    ma x usare rossoalice(video, film, tv streaming) mi serve x forza Internet Explorer.......
    Rispondi quotando Rispondi quotando
  8. 24-07-2006, 14:03 #8
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    posto la scansione online di kaspersky
    se può essere utile...
    ha trovato molti file infetti ma sono tutti locked......
    spero possiate aiutarmi
    Scan Settings:
    Scan using the following antivirus database: standard
    Scan Archives: true
    Scan Mail Bases: true

    Scan Target - My Computer:
    C:\
    D:\
    F:\

    Scan Statistics:
    Total number of scanned objects: 100270
    Number of viruses found: 13
    Number of infected objects: 53 / 0
    Number of suspicious objects: 2
    Duration of the scan process: 02:28:55

    Infected Object Name / Virus Name / Last Action
    C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.da t Object is locked skipped
    C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.da t Object is locked skipped
    C:\Documents and Settings\All Users\Dati applicazioni\Symantec\Common Client\settings.dat Object is locked skipped
    C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
    C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
    C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
    C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
    C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
    C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
    C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
    C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
    C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
    C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
    C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
    C:\Documents and Settings\utente\Cookies\index.dat Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\cert8.db Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\flashgot.log Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\formhistory.dat Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\history.dat Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\key3.db Object is locked skipped
    C:\Documents and Settings\utente\Dati applicazioni\Mozilla\Firefox\Profiles\8k0rce48.tiz iano\parent.lock Object is locked skipped
    C:\Documents and Settings\utente\Desktop\Orfy\Kerio Personal Firewall v4.3.268.1.rar/Setup.exe Infected: Backdoor.Win32.IRCBot.dd skipped
    C:\Documents and Settings\utente\Desktop\Orfy\Kerio Personal Firewall v4.3.268.1.rar ZIP: infected - 1 skipped
    C:\Documents and Settings\utente\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
    C:\Documents and Settings\utente\Impostazioni locali\Cronologia\History.IE5\MSHist01200607242006 0725\index.dat Object is locked skipped
    C:\Documents and Settings\utente\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
    C:\Documents and Settings\utente\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
    C:\Documents and Settings\utente\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
    C:\Documents and Settings\utente\ntuser.dat Object is locked skipped
    C:\Documents and Settings\utente\ntuser.dat.LOG Object is locked skipped
    C:\Documents and Settings\utente\Shared\fuga da monkey island.zip/setup.exe/stream Infected: Trojan-Downloader.Win32.IstBar.no skipped
    C:\Documents and Settings\utente\Shared\fuga da monkey island.zip/setup.exe Infected: Trojan-Downloader.Win32.IstBar.no skipped
    C:\Documents and Settings\utente\Shared\fuga da monkey island.zip ZIP: infected - 2 skipped
    C:\Documents and Settings\utente\UserData\index.dat Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
    C:\Programmi\Alwil Software\Avast4\DATA\report\Protezione residente.txt Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\CCPD-LC\symlcrst.dll Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDALRT.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDCON.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDDBG.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDFW.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDIDS.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SNDSYS.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SPPolicy.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SPStart.log Object is locked skipped
    C:\Programmi\File comuni\Symantec Shared\SPStop.log Object is locked skipped
    C:\Programmi\Norton AntiVirus\AVApp.log Object is locked skipped
    C:\Programmi\Norton AntiVirus\AVError.log Object is locked skipped
    C:\Programmi\Norton AntiVirus\AVVirus.log Object is locked skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip/GetAccess.class Infected: Trojan.Java.ClassLoader.c skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip/InsecureClassLoader.class Infected: Exploit.Java.ByteVerify skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip/Dummy.class Infected: Trojan.Java.ClassLoader.Dummy.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.v skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip ZIP: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\09414B50.zip CryptFF: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\13274E74.exe Infected: Virus.Win32.Tenga.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\13C56734.exe Infected: Virus.Win32.Tenga.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip/GetAccess.class Infected: Trojan.Java.ClassLoader.c skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip/InsecureClassLoader.class Infected: Exploit.Java.ByteVerify skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip/Dummy.class Infected: Trojan.Java.ClassLoader.Dummy.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.v skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip ZIP: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\1A014D8B.zip CryptFF: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\230A6BD9.exe Infected: Virus.Win32.Tenga.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\24430277 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\244A566F Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\244D006C Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\24502A68 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\24535465 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\2A655452.exe Infected: Virus.Win32.Tenga.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\439F1C3D.exe Infected: Virus.Win32.Tenga.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\44502804 Infected: Exploit.HTML.Mht skipped
    C:\Programmi\Norton AntiVirus\Quarantine\4CA31809 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\4CA64205 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip/GetAccess.class Infected: Trojan.Java.ClassLoader.c skipped
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip/InsecureClassLoader.class Infected: Exploit.Java.ByteVerify skipped
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip/Dummy.class Infected: Trojan.Java.ClassLoader.Dummy.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.v skipped
    Rispondi quotando Rispondi quotando
  9. 24-07-2006, 14:03 #9
    fuffiopg
    fuffiopg non è in linea
    Utente di HTML.it
    Registrato dal
    Jul 2006
    Messaggi
    13
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip ZIP: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\576E27B3.zip CryptFF: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\5E6C5F99.tmp Suspicious: Type_Win32 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\5E723391.tmp Suspicious: Type_Win32 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\60D66223.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
    C:\Programmi\Norton AntiVirus\Quarantine\612B25C6.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
    C:\Programmi\Norton AntiVirus\Quarantine\614B49A2.wma Infected: Trojan-Downloader.WMA.Wimad.d skipped
    C:\Programmi\Norton AntiVirus\Quarantine\6FBA4C18 Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\783A0E2B Infected: Worm.Win32.VB.an skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip/GetAccess.class Infected: Trojan.Java.ClassLoader.c skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip/InsecureClassLoader.class Infected: Exploit.Java.ByteVerify skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip/Dummy.class Infected: Trojan.Java.ClassLoader.Dummy.a skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip/Installer.class Infected: Trojan-Downloader.Java.OpenConnection.v skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip ZIP: infected - 4 skipped
    C:\Programmi\Norton AntiVirus\Quarantine\7F9E5C84.zip CryptFF: infected - 4 skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\debug.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\debug.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\error.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\error.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\hips.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\hips.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\ids.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\ids.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\network.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\network.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\system.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\system.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\warning.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\warning.log.idx Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\web.log Object is locked skipped
    C:\Programmi\Sunbelt Software\Personal Firewall\logs\web.log.idx Object is locked skipped
    C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP292\A0091733.exe Infected: Backdoor.Win32.Medbot.bb skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP293\A0091784.exe Infected: Backdoor.Win32.Medbot.bb skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP293\A0092772.exe Infected: Backdoor.Win32.Medbot.bb skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP296\A0094803.exe Infected: Backdoor.Win32.Medbot.bb skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP305\A0096605.exe Infected: Backdoor.Win32.Medbot.bb skipped
    C:\System Volume Information\_restore{8B7A22D4-A76E-4996-8147-5F0473E9EDE1}\RP307\change.log Object is locked skipped
    C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
    C:\WINDOWS\SchedLgU.Txt Object is locked skipped
    C:\WINDOWS\SoftwareDistribution\EventCache\{001DEF 70-E4E6-408B-AE14-CBF87E99F94F}.bin Object is locked skipped
    C:\WINDOWS\SoftwareDistribution\ReportingEvents.lo g Object is locked skipped
    C:\WINDOWS\Sti_Trace.log Object is locked skipped
    C:\WINDOWS\system32\atlacypt.exe Infected: Trojan.Win32.Crypt.t skipped
    C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
    C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
    C:\WINDOWS\system32\config\Credenti.evt Object is locked skipped
    C:\WINDOWS\system32\config\default Object is locked skipped
    C:\WINDOWS\system32\config\default.LOG Object is locked skipped
    C:\WINDOWS\system32\config\SAM Object is locked skipped
    C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
    C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
    C:\WINDOWS\system32\config\SECURITY Object is locked skipped
    C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
    C:\WINDOWS\system32\config\software Object is locked skipped
    C:\WINDOWS\system32\config\software.LOG Object is locked skipped
    C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
    C:\WINDOWS\system32\config\system Object is locked skipped
    C:\WINDOWS\system32\config\system.LOG Object is locked skipped
    C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
    C:\WINDOWS\system32\drivers\sptd8829.sys Object is locked skipped
    C:\WINDOWS\system32\h323log.txt Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MA P Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MA P Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DAT A Object is locked skipped
    C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
    C:\WINDOWS\Temp\Perflib_Perfdata_d0.dat Object is locked skipped
    C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped
    C:\WINDOWS\wiadebug.log Object is locked skipped
    C:\WINDOWS\wiaservc.log Object is locked skipped
    C:\WINDOWS\WindowsUpdate.log Object is locked skipped

    Scan process completed.



    ecco questo è tutto
    Rispondi quotando Rispondi quotando
  10. 24-07-2006, 14:19 #10
    BilloKenobi
    BilloKenobi non è in linea
    Utente di HTML.it L'avatar di BilloKenobi
    Registrato dal
    Jul 2006
    Messaggi
    354
    hai già aperto una discussione uguale su un altro forum. possibilie che non ti bastino le istruzioni là?

    http://forum.swzone.it/showthread.php?t=73704
    Begun the Clone War has

    Sì sì, mi hanno fatto redattore --- SuspectFile
    Rispondi quotando Rispondi quotando
« Discussione precedente | Prossima discussione »

Permessi di invio

  • Non puoi inserire discussioni
  • Non puoi inserire repliche
  • Non puoi inserire allegati
  • Non puoi modificare i tuoi messaggi
  •  

Regole del Forum

Powered by vBulletin® Version 4.2.1
Copyright © 2026 vBulletin Solutions, Inc. All rights reserved.