|
|
Rank: Member
Iscritto dal : 7/28/2007
Posts: 0
|
E' un Trojan...
Ne avete mai sentito parlare? Come lo elimino?
|
|
|
|
|
|
Rank: AiutAmico
Iscritto dal : 6/2/2005
Posts: 7,332
|
Posta un log.
|
|
Rank: Member
Iscritto dal : 7/28/2007
Posts: 0
|
AntiVir PersonalEdition Classic
Report file date: giovedì 4 ottobre 2007 14:08
Scanning for 835736 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: np
Computer name: NP-D170B0F1B505
Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 12:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 11:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 14:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 11:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 13:27:15
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 13:26:55
ANTIVIR2.VDF : 7.0.0.1 2048 Bytes 13/09/2007 13:27:04
ANTIVIR3.VDF : 7.0.0.2 2048 Bytes 13/09/2007 13:27:13
AVEWIN32.DLL : 7.6.0.15 2806272 Bytes 17/09/2007 16:43:56
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 06:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/08/2007 07:46:00
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 06:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 11:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 06:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 11:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 11:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 08:37:21
Configuration settings for the scan:
Jobname..........................: Local Drives
Configuration file...............: c:\programmi\avira\antivir personaledition classic\alldrives.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: E:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: giovedì 4 ottobre 2007 14:08
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'TFService.exe' - '1' Module(s) have been scanned
Scan process 'TFTray.exe' - '1' Module(s) have been scanned
Scan process 'msiexec.exe' - '1' Module(s) have been scanned
Scan process 'ImApp.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'WZQKPICK.EXE' - '1' Module(s) have been scanned
Scan process 'VisualTaskTips.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'winampa.exe' - '1' Module(s) have been scanned
Scan process 'PDVDServ.exe' - '1' Module(s) have been scanned
Scan process 'SMTray.exe' - '1' Module(s) have been scanned
Scan process 'atiptaxx.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SMAgent.exe' - '1' Module(s) have been scanned
Scan process 'MDM.EXE' - '1' Module(s) have been scanned
Scan process 'CDAC11BA.EXE' - '1' Module(s) have been scanned
Scan process 'avgemc.exe' - '1' Module(s) have been scanned
Scan process 'avgupsvc.exe' - '1' Module(s) have been scanned
Scan process 'avgamsvr.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
43 processes with 43 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'A:\'
[NOTE] In the drive 'A:\' no data medium is inserted!
Starting to scan the registry.
The registry was scanned ( '44' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\np\Desktop\7 Wonders Of The Ancient World v1.0 Cracked-F4cg.rar
[0] Archive type: RAR
--> 7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG.rar
[1] Archive type: RAR
--> crack.zip
[2] Archive type: ZIP
--> 7wondersres.dll
[DETECTION] Is the Trojan horse TR/PSW.Online.BX.15
--> 7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\7wondersres.dll
[DETECTION] Is the Trojan horse TR/PSW.Online.BX.15
--> 7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG\F4CG\crack.zip
[1] Archive type: ZIP
--> 7wondersres.dll
[DETECTION] Is the Trojan horse TR/PSW.Online.BX.15
[INFO] The file was moved to '475be270.qua'!
C:\Documents and Settings\np\Desktop\foto in barca\7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG.zip
[0] Archive type: ZIP
--> 7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG/F4CG/7wondersres.dll
[DETECTION] Is the Trojan horse TR/PSW.Online.BX.15
--> 7.Wonders.of.the.Ancient.World.v1.0.Cracked-F4CG/F4CG/crack.zip
[1] Archive type: ZIP
--> 7wondersres.dll
[DETECTION] Is the Trojan horse TR/PSW.Online.BX.15
[INFO] The file was moved to '475be631.qua'!
C:\NICOLA\software\free-new-year-screensaver.exe
[WARNING] The file could not be opened!
C:\NICOLA\software\FSViewerSetup28.exe
[WARNING] The file could not be opened!
C:\NICOLA\software\fz306.exe
[WARNING] The file could not be opened!
Begin scan in 'A:\'
Search path A:\ could not be opened!
Periferica non pronta.
Begin scan in 'E:\'
Search path E:\ could not be opened!
Periferica non pronta.
End of the scan: giovedì 4 ottobre 2007 20:02
Used time: 5:54:06 min
The scan has been done completely.
6166 Scanning directories
663972 Files were scanned
5 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
2 files were moved to quarantine
0 files were renamed
5 Files cannot be scanned
663967 Files not concerned
3212 Archives were scanned
10 Warnings
31 Notes
<b></b><b></b><b></b><u></u>
|
|
Rank: AiutAmico
Iscritto dal : 6/2/2005
Posts: 7,332
|
Scusa, intendevo un log di HijackThis.
|
|
|
Guest |
