Valutazione 4.87/ 5 (100.00%) 5838 voti

Condividi:        

Help me!!! Hacktool.rootkit che disastro

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: kadosh, Luke57

Help me!!! Hacktool.rootkit che disastro

Postdi Marco83 » 19/09/06 08:42

Ciao a tutti, nel mio PC, Norton ha rilevato un Hacktool.rootkit dando il messaggio "norton non può riaparare questa minaccia". Il computer in mod. normale mi si è piantato completamente, non va più avanti, è fermo. Allora seguendo alcuni consigli, in modalità provvisoria ho fatto un pò di pulizia con norton aggiornato manualmente, antivir, spybot, adware(ho trovato all'incirca 256 cavalli di troia...).Ho seguito anche le indicazioni di norton, ossia quelle di ripulire da mod. provvisoria, per poi eliminare alcuni registri da mod. normale, ma nulla, non trovo quelli indicati. Poi per aprire regedit ci metterà all'incirca 15 min. Inoltre Norton mi da un errore nella sua interfaccia nella finestra mail e mi da Auto-Protect disattivata senza la possibiltà di attivarla. Come posso fare? Devo formattare? Se inserisco il Cd di win XP e reinstallo il SO senza formattare posso risolvere qualcosa? Grazie mille per chi mi può aiutare
Marco83
Marco83
Utente Senior
 
Post: 166
Iscritto il: 12/09/06 16:32

Sponsor
 

Postdi Luke57 » 19/09/06 08:51

Ciao, per rendersi conto della gravità delle infezioni, scarica hiajckthis da qui:
http://www.pc-facile.com/HijackThis_s267/
scompatti il file .zip, mettendo l'eseguibile (.exe) in una cartella permanente del disco fisso appositamente creata, tipo C:\HJT.
A questo punto, doppio click sull'eseguibile, premi "do a systmem scan and save a log file", attendi che si apra un file di blocco note al cui interno viene elaborato un log.
Selezoni e copi il log da Modifica, lo incolli in un post nel forum.
Potremo verificare se si può intervenire in qualche modo.
Luke57
Moderatore
 
Post: 6410
Iscritto il: 11/08/05 19:10

Postdi Marco83 » 19/09/06 09:10

Ho fatto come mi hai detto, ho molti elementi sospetti, come devo procedere?
Ti mando una copia
Grazie mille


Logfile of HijackThis v1.99.1
Scan saved at 10.01.40, on 19/09/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\WINZIP\winzip32.exe
C:\Documents and Settings\standard\Desktop\HJT\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmi\Norton AntiVirus\NavShExt.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmi\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [Smapp] Smtray.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Programmi\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Programmi\File comuni\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [RealTray] C:\Programmi\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [RemoteControl] "C:\Programmi\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [InCD] C:\Programmi\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [EPSON Stylus Photo R220 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAIE.EXE /P30 "EPSON Stylus Photo R220 Series" /O6 "USB002" /M "Stylus Photo R220"
O4 - HKLM\..\Run: [avgnt] "C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [CnxDslTaskBar] "C:\Programmi\I-Storm USB ADSL Modem\CnxDslTb.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Programmi\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Cinetray.lnk = ?
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Programmi\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Programmi\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Programmi\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O12 - Plugin for .spop: C:\Programmi\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} (HidInputMonitorX Control) - file://D:\components\hidinputmonitorx.ocx
O16 - DPF: {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} (A9Helper.A9) - file://D:\components\A9.ocx
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O18 - Protocol: bw+0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Programmi\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {F572524D-FD11-49A3-83AB-B52498FF7C79} - C:\Programmi\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Programmi\Ahead\InCD\InCDsrv.exe
O23 - Service: Servizio Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Programmi\Norton AntiVirus\navapsvc.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FILECO~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\Security Center\SymWSC.exe
Marco83
Utente Senior
 
Post: 166
Iscritto il: 12/09/06 16:32

Postdi Luke57 » 19/09/06 09:53

Ciao, io non vedo malware caricati nel log. Le numerose voci 018 si riferiscono a prodotti Logitech, hai due antivirus in realtime (Antivir e Norton) che ti impallano il computer, uno dei due lo devi disattivare e usarlo solo per le scansioni.
Luke57
Moderatore
 
Post: 6410
Iscritto il: 11/08/05 19:10


Torna a Sicurezza e Privacy


Topic correlati a "Help me!!! Hacktool.rootkit che disastro":


Chi c’è in linea

Visitano il forum: Nessuno e 6 ospiti