Home News Guide Hardware Download Forum Glossario

Condividi:        

Luke57 ti prego aiutami tu!!!!

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

Regole del forum
Rispondi al post

Luke57 ti prego aiutami tu!!!!

Postdi violavvs » 28/02/08 13:19

Ciao a tutti in particolare a Luke 57
sono Veronica e sono nuova del forum. Sono giunta a questo (forum) dopo aver cercato invano soluzioni al mio problema: Worm:Win32/Bagle.gen!C !!!!!!!!!!!!
Credo di essermi presa il virus da un programma scaricato da emule e da quel momento gli antivirus mi informavano che: erano un'applicazione di win 32 non valida!!! e anche word mi diceva la stessa cosa... così ho cercato suggerimenti nel web e ho provato lo STRUMENTO DI RIMOZIONE MALWARE della microsoft ma questo quando effetttuo una scansione approfondita si blocca, poi ho provato spyware figther un antivirus online....alla fine ho trovato un topic in questo forum (worm bagle duro a morire di bioxxx il 11/02/08 19:58) in cui veniva descritto (più o meno) quello che era successo a me ed allora ho seguito i consigli di Luke 57: fare uno scan on line con kaspersky....e il risultato è questo:

Thursday, February 28, 2008 12:22:59 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 27/02/2008
Kaspersky Anti-Virus database records: 584325
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
C:\
D:\
Scan Statistics
Total number of scanned objects 82146
Number of viruses found 7
Number of infected objects 28
Number of suspicious objects 0
Duration of the scan process 14:26:05

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\User\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Babylon\log_file.txt Object is locked skipped
C:\Documents and Settings\User\Dati applicazioni\Microsoft\MSNLiveFav\LiveFavorites.xml Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Cronologia\History.IE5\MSHist012008022720080228\index.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\Logs\Dfsr00005.log Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\pending.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\Working\database_5E54_5127_5451_367\dfsr.db Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\Working\database_5E54_5127_5451_367\fsr.log Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\Working\database_5E54_5127_5451_367\fsrtmp.log Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Messenger\violavs@hotmail.it\SharingMetadata\Working\database_5E54_5127_5451_367\tmp.edb Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows Live Contacts\violavs@hotmail.it\real\members.stg Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Dati applicazioni\Microsoft\Windows Live Contacts\violavs@hotmail.it\shadow\members.stg Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF1A19.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF1B0.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF1B18.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF1BB.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF533E.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF5FA6.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF66FE.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF70C9.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF70D4.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF9772.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temp\~DF98BB.tmp Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\5LUEA3T3\b64_1[1].jpg Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\5LUEA3T3\b64_31[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\5LUEA3T3\b64_31[2].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\9B00GFET\b64_31[1].jpg Infected: Email-Worm.Win32.Bagle.of skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\E3PTGESK\b64_1[1].jpg Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\HOAGGLDD\b64_1[1].jpg Infected: Trojan-PSW.Win32.Agent.xd skipped
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\User\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\User\ntuser.dat.LOG Object is locked skipped
C:\Programmi\ESET\infected\HET2EBDA.NQF Infected: not-a-virus:FraudTool.Win32.XPAntivirus.x skipped
C:\Programmi\ESET\infected\M4IIDCDA.NQF Infected: Email-Worm.Win32.Brontok.q skipped
C:\Programmi\SPYWAREfighter\scimoreDB\dbevents.log Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\spf\spdir_20.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\spf\spfile_22.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\syscatalogs.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\syscolumns.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysindexes.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysinstances.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysprocdql.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysprocedures.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysredo.log Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\systables.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\systemp.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysudimodules.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysundo.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\scimoreDB\sysxact.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\spf.dat Object is locked skipped
C:\Programmi\SPYWAREfighter\spf.log Object is locked skipped
C:\Programmi\Toshiba\TOSCDSPD\TOSCDSPD.exe Infected: Trojan-Downloader.Win32.Bagle.kf skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP69\A0011442.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP70\A0011460.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP72\A0011513.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP72\A0011543.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP72\A0011558.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP72\A0011662.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP72\A0011679.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0011831.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0011847.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0011863.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012257.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012258.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012431.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012462.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012485.sys Infected: Trojan-Downloader.Win32.Bagle.kh skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012606.exe Infected: Worm.Win32.AutoRun.aul skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012607.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\A0012608.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\System Volume Information\_restore{B5D84D74-1FE7-4DBF-89BF-34A77346AF82}\RP73\change.log Object is locked skipped
C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\$hf_mig$\KB931784\SP2QFE\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB890859$\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB931784$\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\dllcache\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\mdelk.exe Infected: Email-Worm.Win32.Bagle.of skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\hlktmp Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_960.dat Object is locked skipped
C:\WINDOWS\Temp\~DFAF2E.tmp Object is locked skipped
Scan process completed.

MA ORA CHE COSA DEVO FARE????? COSA DEVO CANCELLARE E COME???? Ti prego aiutami!!!
Ringrazio il forum per il supporto che dà ai naviganti in panne...vi prego aiutate anche me
violavvs
Newbie
 
Post: 6
Iscritto il: 28/02/08 12:42
Top
Sponsor
 

Re: Luke57 ti prego aiutami tu!!!!

Postdi Luke57 » 28/02/08 19:12

Ciao, disattiva il ripsitino configurazione di sistema (click tasto dx su risorse del computer>proprietà>ripristinio configurazione di sistema , metti la spunta a "disattiva.....">OK
Poi scarica avenger sul desktop
http://swandog46.geekstogo.com/avenger.zip
Decomprimi l'archivio
Avvia il file avenger.exe
Seleziona l'opzione "Input Script Manually"
Clicca sulla lente di ingrandimento

Ti si apre una finestra "View/edit script"
All'interno del box bianco,copia e incolla le scritte seguenti:

Files to delete:
C:\WINDOWS\system32\drivers\hidr.exe
C:\WINDOWS\system32\drivers\srosa.sys
C:\WINDOWS\system32\wintems.exe
C:\WINDOWS\system32\hldrrr.exe
C:\WINDOWS\system32\trusted.exe
C:\WINDOWS\system32\drivers\pci32.sys
C:\WINDOWS\system32\drivers\hldrrr.exe
C:\Programmi\ESET\infected\HET2EBDA.NQF
C:\Programmi\ESET\infected\M4IIDCDA.NQF
C:\Programmi\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\WINDOWS\system32\mdelk.exe

folders to delete:
C:\WINDOWS\exefnd
C:\WINDOWS\exefld
C:\WINDOWS\system32\drivers\down
C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5
C:\Documents and Settings\User\Impostazioni locali\Temp
C:\windows\tasks
C:\WINDOWS\Temp

registry keys to delete:
HKLM\SYSTEM\CurrentControlSet\Services\srosa
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
HKLM\SYSTEM\CurrentControlSet\Services\pci32
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32

Registry values to replace with dummy:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs


Clicca sul pulsante Done
Clicca sull'icona del semaforo verde
Rispondi ok e poi yes.
Il pc dovrebbe riavviarsi da solo, se così non fosse riavvialo manualmente.
Allega poi il log generato da avenger, lo trovi in C:\avenger.txt è un file di testo.

P:S: se non ti riuscisse scaricare avwenger, fallo da qui:
scaricalo da qui:
http://www.wikifortio.com/630243/AntiBagle.zip
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi violavvs » 28/02/08 19:41

ciao luke
grazie immensamente per il tuo aiuto.
Ho fatto come mi hai detto, ma quando ho messo (dopo averlo diszippato) avenger sul desktop e l'ho aperto è comparsa la solita scritta: non è un'applicazione di win32 valida... così l'ho scaricato dal link che mi hai dato e ho avviato il programma da dentro la finestra. Ho seguito la procedura e il pc si è riavviato da solo...ma dopo il riavvio è comparsa una finestra nera (scusa per il linguaggio non proprio adeguato, ma non ne capisco molto) dove diceva che avenger aveva finito (o cose simili)....ora ho trovato il testo in C:\avenger.txt ma dove lo devo mettere?
Ti ringrazio ancora per l'attenzione e per l'aiuto
:)
violavvs
Newbie
 
Post: 6
Iscritto il: 28/02/08 12:42
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi Luke57 » 28/02/08 19:43

Copia e incolla il contenuto del file in un post
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi violavvs » 28/02/08 19:53

scusa luke non vorrei approfittare della tua gentilezza oltretutto con domande "stupide" ma ho veramente bisogno di risolvere il tutto al più presto...in che senso un post?
violavvs
Newbie
 
Post: 6
Iscritto il: 28/02/08 12:42
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi Luke57 » 28/02/08 19:55

Apri con doppio clik il file C:\avenger.txt, copi il contenuto del file, vieni sul forum alla tua discussione, la continui incollando il contenuto in una tua risposta ;)
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi violavvs » 28/02/08 19:59

scusa ancora per l'ignoranza...
questo è il testo:
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\ykhvyxsx

*******************

Script file located at: \??\C:\Program Files\hcdhukry.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:



File C:\WINDOWS\system32\drivers\hidr.exe not found!
Deletion of file C:\WINDOWS\system32\drivers\hidr.exe failed!

Could not process line:
C:\WINDOWS\system32\drivers\hidr.exe
Status: 0xc0000034

File C:\WINDOWS\system32\drivers\srosa.sys deleted successfully.
File C:\WINDOWS\system32\wintems.exe deleted successfully.


File C:\WINDOWS\system32\hldrrr.exe not found!
Deletion of file C:\WINDOWS\system32\hldrrr.exe failed!

Could not process line:
C:\WINDOWS\system32\hldrrr.exe
Status: 0xc0000034



File C:\WINDOWS\system32\trusted.exe not found!
Deletion of file C:\WINDOWS\system32\trusted.exe failed!

Could not process line:
C:\WINDOWS\system32\trusted.exe
Status: 0xc0000034



File C:\WINDOWS\system32\drivers\pci32.sys not found!
Deletion of file C:\WINDOWS\system32\drivers\pci32.sys failed!

Could not process line:
C:\WINDOWS\system32\drivers\pci32.sys
Status: 0xc0000034

File C:\WINDOWS\system32\drivers\hldrrr.exe deleted successfully.
File C:\Programmi\ESET\infected\HET2EBDA.NQF deleted successfully.
File C:\Programmi\ESET\infected\M4IIDCDA.NQF deleted successfully.
File C:\Programmi\Toshiba\TOSCDSPD\TOSCDSPD.exe deleted successfully.
File C:\WINDOWS\system32\mdelk.exe deleted successfully.


Folder C:\WINDOWS\exefnd not found!
Deletion of folder C:\WINDOWS\exefnd failed!

Could not process line:
C:\WINDOWS\exefnd
Status: 0xc0000034



Folder C:\WINDOWS\exefld not found!
Deletion of folder C:\WINDOWS\exefld failed!

Could not process line:
C:\WINDOWS\exefld
Status: 0xc0000034

Folder C:\WINDOWS\system32\drivers\down deleted successfully.
Folder C:\Documents and Settings\User\Impostazioni locali\Temporary Internet Files\Content.IE5 deleted successfully.
Folder C:\Documents and Settings\User\Impostazioni locali\Temp deleted successfully.
Folder C:\windows\tasks deleted successfully.
Folder C:\WINDOWS\Temp deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Services\srosa deleted successfully.
Registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA deleted successfully.


Registry key HKLM\SYSTEM\CurrentControlSet\Services\pci32 not found!
Deletion of registry key HKLM\SYSTEM\CurrentControlSet\Services\pci32 failed!

Could not process line:
HKLM\SYSTEM\CurrentControlSet\Services\pci32
Status: 0xc0000034



Registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32 not found!
Deletion of registry key HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32 failed!

Could not process line:
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCI32
Status: 0xc0000034

Registry value HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs replaced with dummy successfully.

Completed script processing.

*******************

Finished! Terminate.


e ora?
violavvs
Newbie
 
Post: 6
Iscritto il: 28/02/08 12:42
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi Luke57 » 28/02/08 20:01

Tutto ok, prova a utilizzare o a reistallare i programmi per la sicurezza.
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi violavvs » 28/02/08 20:14

ultima domanda:
visto che ho dovuto disintallare il norton e non riesco a reinstallarlo puoi suggerirmi un altro antivirus o puoi cercare di spiegarmi come riinstallarlo? grazie ancora :)
violavvs
Newbie
 
Post: 6
Iscritto il: 28/02/08 12:42
Top

Re: Luke57 ti prego aiutami tu!!!!

Postdi Luke57 » 28/02/08 21:05

Ciao, per reistallarlo devi avere il cd, come mai non ti riesce? Comunque puoi utilizzare antivir free, leggero e potente:
http://www.pc-facile.com/download/anti- ... ic/298.htm
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10
Top
Rispondi al post

Torna a Sicurezza e Privacy


Topic correlati a "Luke57 ti prego aiutami tu!!!!":

SCELTA RAM , vi prego aiutatemi.
Autore: maurostar93 		Forum: Consigli per gli acquisti
Risposte: 1
pc lento anche dopo formattazione vi prego aiuto .
Autore: JoeSidda 		Forum: Assistenza Hardware
Risposte: 5
vi prego aiutatemi scheda video vi prego perche non risponde
Autore: superkamo87 		Forum: Consigli per gli acquisti
Risposte: 4
aiuto vi prego sono disperato
Autore: superkamo87 		Forum: Assistenza Hardware
Risposte: 3
aiutami
Autore: ultimo30 		Forum: Sistemi Operativi Windows
Risposte: 7

Chi c’è in linea

Visitano il forum: Nessuno e 12 ospiti