| Precedente :: Successivo |
| Autore |
Messaggio |
nadia81
Comune mortale
Registrato: 05/02/08 00:24
Messaggi: 3
|
 Inviato: 05 Feb 2008 00:33 Oggetto: Virus doginhispen |
 |
|
Vi prego aiutatemi, non capisco molto di virus, nè di computer!!
Quando mi collego ad internet mi si apre questo sito maledetto.
Ho scoperto che è un virus, ma ho fatto una scansione col mio antivirus (avast) e non ho trovato nulla.
Che cosa devo fare????
Spiegatemelo con termini facili!!!!!! |
|
| Top |
|
 |
nadia81
Comune mortale
Registrato: 05/02/08 00:24
Messaggi: 3
|
| Inviato: 05 Feb 2008 00:59 Oggetto: |
|
|
Ho usato avanger:
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\btdftygp
*******************
Script file located at: \??\C:\WINDOWS\jqsyoqvh.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
File C:\WINDOWS\SiSUSBrg.exe not found!
Deletion of file C:\WINDOWS\SiSUSBrg.exe failed!
Could not process line:
C:\WINDOWS\SiSUSBrg.exe
Status: 0xc0000034
Could not open file C:\Programmi\Microsoft IntelliType Pro\itype.exe for deletion
Deletion of file C:\Programmi\Microsoft IntelliType Pro\itype.exe failed!
Could not process line:
C:\Programmi\Microsoft IntelliType Pro\itype.exe
Status: 0xc000003a
Could not open file C:\Programmi\Microsoft IntelliPoint\ipoint.exe for deletion
Deletion of file C:\Programmi\Microsoft IntelliPoint\ipoint.exe failed!
Could not process line:
C:\Programmi\Microsoft IntelliPoint\ipoint.exe
Status: 0xc000003a
File C:\Programmi\QuickTime\qttask.exe deleted successfully.
File C:\WINDOWS\system32\keyhook.exe not found!
Deletion of file C:\WINDOWS\system32\keyhook.exe failed!
Could not process line:
C:\WINDOWS\system32\keyhook.exe
Status: 0xc0000034
File C:\WINDOWS\system32\NeroCheck.exe deleted successfully.
Could not open file C:\Programmi\Analog Devices\SoundMAX\SMTray.exe for deletion
Deletion of file C:\Programmi\Analog Devices\SoundMAX\SMTray.exe failed!
Could not process line:
C:\Programmi\Analog Devices\SoundMAX\SMTray.exe
Status: 0xc000003a
Could not open file C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe for deletion
Deletion of file C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe failed!
Could not process line:
C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe
Status: 0xc000003a
Could not open file C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe for deletion
Deletion of file C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe failed!
Could not process line:
C:\Programmi\Java\jre1.6.0_03\bin\jusched.exe
Status: 0xc000003a
Could not open file C:\WINDOWS\bak\SiSUSBrg.exe for move operation
File move operation C:\WINDOWS\bak\SiSUSBrg.exe|C:\WINDOWS\SiSUSBrg.exe failed!
Could not process line:
C:\WINDOWS\bak\SiSUSBrg.exe|C:\WINDOWS\SiSUSBrg.exe
Status: 0xc000003a
Could not open file C:\Programmi\Microsoft IntelliType Pro\bak\itype.exe for move operation
File move operation C:\Programmi\Microsoft IntelliType Pro\bak\itype.exe|C:\Programmi\Microsoft IntelliType Pro\itype.exe failed!
Could not process line:
C:\Programmi\Microsoft IntelliType Pro\bak\itype.exe|C:\Programmi\Microsoft IntelliType Pro\itype.exe
Status: 0xc000003a
Could not open file C:\Programmi\Microsoft IntelliPoint\bak\ipoint.exe for move operation
File move operation C:\Programmi\Microsoft IntelliPoint\bak\ipoint.exe|C:\Programmi\Microsoft IntelliPoint\ipoint.exe failed!
Could not process line:
C:\Programmi\Microsoft IntelliPoint\bak\ipoint.exe|C:\Programmi\Microsoft IntelliPoint\ipoint.exe
Status: 0xc000003a
File move operation C:\Programmi\QuickTime\bak\qttask.exe|C:\Programmi\QuickTime\qttask.exe completed successfully.
File C:\WINDOWS\system32\bak\keyhook.exe not found!
File move operation C:\WINDOWS\system32\bak\keyhook.exe|C:\WINDOWS\system32\keyhook.exe failed!
Could not process line:
C:\WINDOWS\system32\bak\keyhook.exe|C:\WINDOWS\system32\keyhook.exe
Status: 0xc0000034
File move operation C:\WINDOWS\system32\bak\NeroCheck.exe|C:\WINDOWS\system32\NeroCheck.exe completed successfully.
Could not open file C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe for move operation
File move operation C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe|C:\Programmi\Analog Devices\SoundMAX\SMTray.exe failed!
Could not process line:
C:\Programmi\Analog Devices\SoundMAX\bak\SMTray.exe|C:\Programmi\Analog Devices\SoundMAX\SMTray.exe
Status: 0xc000003a
Could not open file C:\Programmi\Adobe\Reader 8.0\Reader\bak\Reader_sl.exe for move operation
File move operation C:\Programmi\Adobe\Reader 8.0\Reader\bak\Reader_sl.exe|C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe failed!
Could not process line:
C:\Programmi\Adobe\Reader 8.0\Reader\bak\Reader_sl.exe|C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe
Status: 0xc000003a
Could not open file C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe for move operation
File move operation C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe|C:\Programmi\Java\jre1.6.0_03\bin\jus failed!
Could not process line:
C:\Programmi\Java\jre1.6.0_03\bin\bak\jusched.exe|C:\Programmi\Java\jre1.6.0_03\bin\jus
Status: 0xc000003a
Completed script processing.
*******************
Finished! Terminate. |
|
| Top |
|
|
ste_95
Dio maturo
Registrato: 03/08/07 14:41
Messaggi: 1920
Residenza: Italy
|
|
| Top |
|
|
bdoriano
Amministratore
Registrato: 02/04/07 12:05
Messaggi: 14391
Residenza: 3° pianeta del sistema solare...
|
| Inviato: 05 Feb 2008 10:10 Oggetto: |
|
|
Ciao nadia81, 
segui le indicazioni di ste_95.
Perché hai usato avenger? 
Per cortesia, non aprire nuovi thread (non usare il tasto  ).
Per continuare la discussione, usa il tasto  .
PS: se vuoi, puoi presentarti qui |
|
| Top |
|
|
nadia81
Comune mortale
Registrato: 05/02/08 00:24
Messaggi: 3
|
| Inviato: 05 Feb 2008 23:31 Oggetto: ho usato hijackthis |
|
|
questo è il log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22.27.58, on 05/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\File comuni\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Programmi\Google\GoogleToolbarNotifier\bak\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\prova\Impostazioni locali\Temporary Internet Files\Content.IE5\UPPIBIHC\HiJackThis[1].exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Windows Live Toolbar\msn_sl.exe |
|
| Top |
|
|
ste_95
Dio maturo
Registrato: 03/08/07 14:41
Messaggi: 1920
Residenza: Italy
|
| Inviato: 06 Feb 2008 09:45 Oggetto: |
 |
|
| Devi eseguire le istruzioni per FindAWF. |
|
| Top |
|
|
|
FAQ
Cerca
Lista utenti
Gruppi
Registrati
Profilo
Messaggi privati
Log in
