Valutazione 4.87/ 5 (100.00%) 5838 voti

Condividi:        

Aiuto!!! Trojan irremovibile!!!!

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: kadosh, Luke57

Aiuto!!! Trojan irremovibile!!!!

Postdi soil » 10/11/06 18:45

Arisalve a tutti...avevo gia inserito un altro topic ma non ho avuto risposte e quindi ci riprovo...allora il mio problema è questo, il mio computer era super incasinato, tra virus e quant' altro...poi installando l' antivirus AVG è ritornato tutto alla normalità...tranne una cosa: ogni volta che apro ad esempio la cartella documenti oppure risorse del computer ecc. mi avvisa di un virus che non puo "guarire"...questo è il messaggio preciso: "While opening file: C/windows/egsak1.dll
Trojan horseLop.AH".
Ho provato con Ad Aware ma niente di fatto. Qualcuno saprebbe dirmi qualcosa?Scusate il mio linguaggio poco professionale ma sono un po ignorante in fatto di pc...grazie a tutti anticipatamente
soil
Newbie
 
Post: 3
Iscritto il: 10/11/06 12:19
Località: caserta

Sponsor
 

Postdi Luke57 » 10/11/06 20:04

Ciao, prova a scaricare questi due tools:
La prevx ha rilasciato un tool di rimozione per il malware linkoptimizer/gromozon:

http://www.prevx.com/gromozon.asp
disattiva l'antivirus durante la scansione. Il programma fa riavviare il computer e al riavvio termina la scansione. Rilascia un report che trovi in C:\Gromzon_Removal.log.

Scarica anche il tool della symantec

http://smallbiz.symantec.com/security_r ... 16-4153-99

lo scan va eseguito dalla modalità provvisoria (riavvii il computer, premi il tasto F8 ripetutamente all'accensione del computer e prima che si carichi windows, nella schermata che appare scegli modalità provvisoria spostandoti con le freccette e confermi la scelta premendo invio. Segui poi le istruzioni a schermo).

Posta i due report.

In caso di difficoltà nell'esecuzione dei tools rinominali con nome a casaccio (lasciando ovviamente inalterata l'estensione) e poi eseguili.
Luke57
Moderatore
 
Post: 6410
Iscritto il: 11/08/05 19:10

Postdi soil » 11/11/06 10:11

Grazie credevo che non avrei avuto mai piu una risposta....comunque ho fatto tutto quello che mi hai detto e questi sono i risultati:

Removal tool loaded into memory
------------------------------------
Executing rootkit removal engine....
------------------------------------
Disabling rootkit file: \\?\C:\WINDOWS\system32\lpt2.zzk
\\?\C:\WINDOWS\system32\lpt2.zzk
Resetting file permissions...
Clearing attributes...
Accesso negato - C:\_cleaned.tmp
Removing file...
Rootkit removed! Cleaning up...

Removing temp files...
Scanning: C:\WINDOWS
Scanning: C:\Programmi\File comuni
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\AEY.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Ail.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\aQi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\AVIe.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\BbJ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\BcE.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\bEz.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\bfBkCO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\BFkHrD.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\bpY.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\CdjBkO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\cfK.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\CHTOMp.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\CiO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ckiz.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\CldhQi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\CLO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\crdI.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ctKABM.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\cUAGZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\dDaSE.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\dEi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\DHG.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\dWy.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\dzC.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\eaH.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\EdN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\EDyI.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\EfHo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\EhEELu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ekg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ENX.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\EQxxNo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\eVog.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\eXI.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\eydpg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fAc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\FdpI.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\FKnwu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fmuug.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fPh.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\FPw.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fxK.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fZP.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\fzV.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\gfUh.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\GMfO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\GQT.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\GWEy.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\gwo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\HOE.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Hpr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\hWp.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\HYYA.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\HZS.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\IiynP.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ikhVok.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\iUg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\iwnPKO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\iwR.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\IWXPV.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\jbGh.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\JcGGQU.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\jEx.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\JjT.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\JlZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Jpi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\jtbdJS.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\kbjg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\kUo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\KXhVd.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\lcDGIr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\lgy.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\llPGr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\lOv.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\lTYyS.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\LUN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\lvu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\LvZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\mAIbp.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\mEO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\mOxL.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Mpn.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\MQT.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Mrr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\nCD.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\NJMU.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\nqoc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Nsn.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\OaFX.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\oEG.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\olA.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\OLZC.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ome.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ONP.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\OXmoya.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\PNN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\PSPQL.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\pVCa.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\PVq.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\qBT.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\qHMyaD.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\qJBHg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\qmd.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\QPvDq.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Qva.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\QYl.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\qzm.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\RbZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\rfv.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\RmD.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\RumK.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sBN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sdC.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sFlph.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\SJT.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sku.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\skxThQ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\smE.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sOO.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sPVAv.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sQl.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Sqw.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sSV.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sYRo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\SYZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\szDIcG.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\sZxCvN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\tBc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TCZ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\THUQ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TjRnMG.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\tlu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TMRPQV.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\toNXW.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\tOuAjr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TPin.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TqOis.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\twdQ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\tyK.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\tyM.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\TZbULc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Tzm.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\UEW.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\UGA.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\UhJipF.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\uhoa.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\uIDog.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Ujs.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\umS.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Utl.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\UXM.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\vcl.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Vgz.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Vhc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Vhzg.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\vVE.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\vWX.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\waPJu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wedSj.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wjqLPa.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\WkX.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\WmvQ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wPz.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wricw.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wuiwi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wXs.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\WYCNFc.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\WYN.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wze.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\WZEr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\wzjYz.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\xdWJfu.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\XelMEL.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\XFFUp.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\XPK.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\xqFzB.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\xqJ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\xZMl.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\Ydi.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\YDYlJ.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\YnnDwr.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\yoB.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\YZLMjt.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\zEKo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\zioBkI.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ZLC.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ZrM.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\zsgNS.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\zwNo.exe
Removing protected file: C:\Programmi\File comuni\Microsoft Shared\ZwQGtK.exe


Trojan.Gromozon Removed!


Symantec Trojan.Linkoptimizer Removal Tool 1.0.8
Restored SeDebugPrivilege to Administrators group

C:\WINDOWS\egsak1.dll: (deleted)

Trojan.Linkoptimizer has been successfully removed from your computer!

Here is the report:

The total number of the scanned files: 63471
The number of deleted threat files: 1
The number of threat processes terminated: 0
The number of threat threads terminated: 0
The number of registry entries fixed: 0

The tool initiated a system reboot.

registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (cleared)

A presto e grazie
soil
Newbie
 
Post: 3
Iscritto il: 10/11/06 12:19
Località: caserta


Torna a Sicurezza e Privacy


Topic correlati a "Aiuto!!! Trojan irremovibile!!!!":

Aiuto urgente!!!
Autore: templare77
Forum: Software Windows
Risposte: 1

Chi c’è in linea

Visitano il forum: Nessuno e 6 ospiti