Strumento di rimozione malware di Windows mi segnala "win32/bagle e Win32/bagle .genC " rimossi parzialmente, mi chiedo : possibile che Norton 2008 non me lli abbia bloccati mentre arrivavano?'
Comunque ho fatto una scansione con Kaspersky e vi allego il risultato.
Cosa devo fare adesso con Avenger?
grazie per eventuale aiuto
- Codice: Seleziona tutto
-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Monday, March 31, 2008 11:33:33 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 31/03/2008
Kaspersky Anti-Virus database records: 674580
-------------------------------------------------------------------------------
Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true
Scan Target - My Computer:
A:\
C:\
D:\
E:\
G:\
H:\
Scan Statistics:
Total number of scanned objects: 150434
Number of viruses found: 3
Number of infected objects: 14
Number of suspicious objects: 0
Duration of the scan process: 03:43:09
Infected Object Name / Virus Name / Last Action
C:\0f5366217dc5062f57be5f43c69acecc\msxml4-KB927978-enu.log Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\0742896bec4a516b1974862df9bf536d_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\4b8ec040b91cfe6be6147efd6d462674_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\6c5a3677a2b607bae8e32b84626c8a12_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\6d47c258c66529a39f24f0a09143525e_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\93dcf873c89a9b0b6847be0ec7a1bfa0_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\946223e5f34b97ee779d20d24c0adfbd_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\9729ac477d7a68939c129efad19323fa_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\b0ed3037f385c9c0b791406930d1ffd3_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\b300b46ce546787f9d10e49a83b3e2d3_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\dd5917a53ec13ba631740d08501a0e14_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Crypto\RSA\MachineKeys\ef94c8dea5ed927a7655f8b0802ab621_384266a4-2c0d-4054-b70d-cd24e2a0ed31 Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Nero\Nero8\Nero BackItUp\Cache\NeroBackItUpScheduler3.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\Common Client\ccSubSDK\submissions.idx Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\Common Client\settings.DAT Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\Common Client\volatile.DAT Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\LiveUpdate\2008-03-31_Log.ALUSchedulerSvc.LiveUpdate Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBConfig.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBDebug.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBDetect.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBNotify.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBRefr.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBSetCfg.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBSetCfg2.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBSetDev.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBSetLoc.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBSetUsr.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBStHash.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\BBValid.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\Shl_{D2D0E11D-EBA5-4D26-9BA7-89D6DB1B7076}.ldb Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\Shl_{D2D0E11D-EBA5-4D26-9BA7-89D6DB1B7076}.sds Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\SPPolicy.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\SPStart.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SPBBC\SPStop.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtErEvt.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtETmp\38635EE4.TMP Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtMoEvt.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtNvEvt.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtScEvt.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtTxFEvt.log Object is locked skipped
C:\Documents and Settings\All Users.WINDOWS.0\Dati applicazioni\Symantec\SRTSP\SrtViEvt.log Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService.NT AUTHORITY\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Documenti\ELISTARA.25012008.EXE Infected: Trojan-Downloader.Win32.IstBar.qr skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Ahead\Nero Home\bl.db Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Ahead\Nero Home\is2.db Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Identities\{8E549894-1CEA-4B2E-A374-51CE2C716830}\Microsoft\Outlook Express\Folders.dbx Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Identities\{8E549894-1CEA-4B2E-A374-51CE2C716830}\Microsoft\Outlook Express\Offline.dbx Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Identities\{8E549894-1CEA-4B2E-A374-51CE2C716830}\Microsoft\Outlook Express\Pop3uidl.dbx Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Identities\{8E549894-1CEA-4B2E-A374-51CE2C716830}\Microsoft\Outlook Express\Posta in arrivo.dbx Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Temp\Perflib_Perfdata_600.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Manlio.PC-HOME\NTUSER.DAT.LOG Object is locked skipped
C:\Documents and Settings\NetworkService.NT AUTHORITY\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService.NT AUTHORITY\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService.NT AUTHORITY\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService.NT AUTHORITY\ntuser.dat.LOG Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\CCPD-LC\symlcrst.dll Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\EENGINE\EPERSIST.DAT Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\NFWEVT.LOG Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDALRT.log Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDCON.log Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDDBG.log Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDFW.log Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDIDS.log Object is locked skipped
C:\Programmi\File comuni\Symantec Shared\SNDSYS.log Object is locked skipped
C:\Programmi\Nero\Nero8\Nero BackItUp\BIU1.txt Object is locked skipped
C:\Programmi\Norton AntiVirus\AVApp.log Object is locked skipped
C:\Programmi\Norton AntiVirus\AVError.log Object is locked skipped
C:\Programmi\Norton AntiVirus\AVVirus.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{569506C7-0CCA-4E53-B424-3F3F0740B376}\RP38\change.log Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\callcont.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\gdi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323.tsp Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323msp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\helpctr.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mf3216.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msasn1.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msgina.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mst120.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\netapi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\nmcom.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\schannel.dll Object is locked skipped
C:\WINDOWS.0\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS.0\SchedLgU.Txt Object is locked skipped
C:\WINDOWS.0\SoftwareDistribution\EventCache\{3B22FF26-5C5F-4BF8-8540-253F96A8D0F4}.bin Object is locked skipped
C:\WINDOWS.0\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS.0\Sti_Trace.log Object is locked skipped
C:\WINDOWS.0\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS.0\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS.0\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS.0\system32\config\default Object is locked skipped
C:\WINDOWS.0\system32\config\default.LOG Object is locked skipped
C:\WINDOWS.0\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS.0\system32\config\SAM Object is locked skipped
C:\WINDOWS.0\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS.0\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS.0\system32\config\SECURITY Object is locked skipped
C:\WINDOWS.0\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS.0\system32\config\software Object is locked skipped
C:\WINDOWS.0\system32\config\software.LOG Object is locked skipped
C:\WINDOWS.0\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS.0\system32\config\system Object is locked skipped
C:\WINDOWS.0\system32\config\system.LOG Object is locked skipped
C:\WINDOWS.0\system32\config\systemprofile\Impostazioni locali\Temp\JETC582.tmp Object is locked skipped
C:\WINDOWS.0\system32\h323log.txt Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS.0\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS.0\wiadebug.log Object is locked skipped
C:\WINDOWS.0\wiaservc.log Object is locked skipped
C:\WINDOWS.0\WindowsUpdate.log Object is locked skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
D:\System Volume Information\_restore{569506C7-0CCA-4E53-B424-3F3F0740B376}\RP38\change.log Object is locked skipped
E:\documentiback\DPE\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
E:\documentiback\DPE\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe 7-Zip: infected - 1 skipped
E:\documentiback\ELISTARA.25012008.EXE Infected: Trojan-Downloader.Win32.IstBar.qr skipped
E:\documentiback\Mirc v6.16 + crack.zip/Mirc v6.16 + crack/mirc616.exe/data0001.bin Infected: not-a-virus:Client-IRC.Win32.mIRC.616 skipped
E:\documentiback\Mirc v6.16 + crack.zip/Mirc v6.16 + crack/mirc616.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.616 skipped
E:\documentiback\Mirc v6.16 + crack.zip ZIP: infected - 2 skipped
E:\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
E:\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe 7-Zip: infected - 1 skipped
E:\Nuova cartella\Mirc v6.16 + crack.zip/Mirc v6.16 + crack/mirc616.exe/data0001.bin Infected: not-a-virus:Client-IRC.Win32.mIRC.616 skipped
E:\Nuova cartella\Mirc v6.16 + crack.zip/Mirc v6.16 + crack/mirc616.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.616 skipped
E:\Nuova cartella\Mirc v6.16 + crack.zip ZIP: infected - 2 skipped
E:\Nuova cartella\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
E:\Nuova cartella\Nero 8.1.1.0b ITA + MultiLang Incl. Keygen by Controller Programmi\Nero-8.1.1.0b_ita_trial.exe 7-Zip: infected - 1 skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
E:\System Volume Information\_restore{569506C7-0CCA-4E53-B424-3F3F0740B376}\RP38\change.log Object is locked skipped
Scan process completed.