AIUTO PER INFEZIONE DA BAGLE

[Jinxxx]

AIUTO....HO BAGLE NEL PC...
ho fatto la scnsione con combofix come riportato nell'altro post e il log è il seguente:








ComboFix 09-03-04.01 - Michele 2009-03-06 17:12:25.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1040.18.895.667 [GMT 1:00]
Eseguito da: c:\documents and settings\Michele\Desktop\abc.exe
AV: Avira AntiVir PersonalEdition *On-access scanning disabled* (Outdated)
* Creato nuovo punto di ripristino
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Michele\Dati applicazioni\drivers\downld
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\102921.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\120750.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\123125.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\134640.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\135171.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\135234.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\148265.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\149234.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\149687.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\182718.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\183031.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\183109.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18831781.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18831843.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18831937.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18905265.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18905843.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18906406.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18919687.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18920328.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18920984.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\18944515.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\189843.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19015281.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19015359.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19015421.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\190203.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19045875.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19046343.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19046671.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19054375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19054437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19054531.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19059406.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19059437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19059468.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19080546.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19084984.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19086296.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19105078.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19115156.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19117234.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19117890.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19189546.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19197093.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19201671.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19257312.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19257375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19257437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19329750.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19330156.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19330390.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19344593.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19344859.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19345109.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19347593.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\193500.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19352765.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19353453.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\19353718.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\195312.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\195968.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\219390.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\220046.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\220218.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\225750.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\226281.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\226500.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\229171.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\229875.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\229968.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\247437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\249718.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\250937.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\254078.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\256765.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\261093.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\261437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\284250.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\286593.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\286765.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\287921.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\287953.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\288000.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\306890.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\308703.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\309250.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\310750.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\311015.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\387531.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\388171.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\388375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\398078.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\398593.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\398843.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\406671.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\407468.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\407671.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\423375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\42390.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\424359.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\424921.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4266562.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4286015.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4289859.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4290609.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\42953.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\42968.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4321734.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4323312.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4324000.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4326031.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4326281.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4326375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\437812.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\439640.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4403203.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4403828.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\440390.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4404015.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4416031.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4417218.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4417437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4424140.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4428437.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4429265.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\4429468.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\469250.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\53718.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\537187.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\537562.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\54687.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\55156.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\629140.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\629875.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\629953.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\633375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\634515.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\634531.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\647921.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\650250.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\651375.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\660703.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\69328.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\72093.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\downld\72593.exe
c:\documents and settings\Michele\Dati applicazioni\drivers\srosa2.sys
c:\documents and settings\Michele\Dati applicazioni\drivers\wfsintwq.sys
c:\documents and settings\Michele\Dati applicazioni\drivers\winupgro.exe
c:\documents and settings\Michele\Dati applicazioni\m
c:\documents and settings\Michele\Dati applicazioni\m\flec006.exe
c:\documents and settings\Michele\Dati applicazioni\m\list.oct
c:\documents and settings\Michele\Dati applicazioni\m\shared\22Pixels Flock 1.02.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\3D Clouds 2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Access Password Recovery Master 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Advanced Localizer 1.5.1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Agogo Video to MP3 Converter 7.21.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\AgPad 0.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Altdo Video to MP4 Converter 1.4.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Aplus Video to Xbox 8.28 Cracked.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\ASPFileSaver 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\ASProtect 1.23.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Atkins Diet 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Atmosphere Lite 6.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Atomic Email Logger 4.04.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\AtomicRobot Spelling Checker 2.0 [Key+Serial].zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Atoms, Bonding and Structure 2.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\AxessPW 1.0c (Serial).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Babylon Pro 7.0.3 (r26).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Barcode Prime Image Generator for Code128 Version A B C 1.1 Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Batch & Print Pro 3.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Battlefield 1942 - Unlimited mod.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Becky! Internet Mail 2.46.00.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Birthday Organizer 5.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\CATVids 7.11.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\CheatHedge 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Christmas Playtime Demo Screensaver 1.0 [With Crack].zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Coin Collection Wizard 1.05.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\ColorPix 1.5.17 Cracked.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\CVP optimizer 1.0.6.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\D'Accord Easy Tuner 3.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Daily Horoscope 1.0.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Diagram Designer 1.19.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Dirtbox 2.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Divxplayer s60 3Rd Symbian-Mobile Org.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Double Pipe Heat Exchanger Design 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\eData Unerase Personal 3.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\EMCO MSI Package Builder Professional 4.0.3.2481.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\EnsembleTune 2.6 2.602.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Extreme Password Generator Pro 1.5.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\FancySnow Screensaver 1.0 Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Flower Pots Screensaver 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Galactix 3D screensaver 1.2 Key+Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Garage Organizer Solution 7.5.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Glitter Text Maker 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\GPS2GoogleEarth 1.0.0.1 With Crack.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\HandWallet for Nokia Communicator 4.07.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\HHD Hex Editor Neo 4.33.01.1458.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Hydra 1.2 (KeyGen).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Icennel Innovation 8.0 KeyGen.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\IDAutomation Barcode Label Software 2006 R2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\iMapBuilder 1.28.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Jayzen Whistle Sample Instrument 1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\JDialUp API 2.5 [With Crack].zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Jessica Simpson Player toolbar for Firefox 1.5.0.5.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\JPEG Optimizer 3.15 [Crack].zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Junk Mail Remover 1.2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\KDT Site Blocker 2.1 Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\KidzBlog 1.3 (Patch).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Kitties Screen Saver 2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Lattice Screensaver 10.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Les Champignons 2004.04.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\liveDJpro Opal Edition 1.4.595 (Serial).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Local Pinger 1.03.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Lyrics Search 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Magicbit DVD Direct to PSP Power Pack 1.4.33.102.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Man In Black -Nokia 5310 Xpressmusic.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\MEDI PLUS 9.5.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\MediaCoder 0.6.0.3855.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\MediaRescue Pro 4.5.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Microsoft System Center Essentials 2007 Evaluation Edition.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Miranda Password Recovery 1.0.210.2006 [Serial].zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\MMTTY 1.66G.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Navi Search 2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Noah's Adventures 3.7.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Nod32 2.000.6 Win98 exe cracked GryfX.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Nokia N-Gage Game Final Fantasy The Battle(1).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Nokia N 70 Tom Tom 5.6.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\OEM Logo Manager 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Operation Flashpoint Cold War Crisis - Absprung map.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Oront Burning Kit 2 Basic 2.6.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Outlook Transfer 1.0.0.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Packet Sender 1.0.3.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Passion Clock ScreenSaver 2.3.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Password Generator 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Password Reset Manager 3.1.020 (Serial).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Performance Tools Kit 4.1.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Personal Testing System (Self-Tester) 2.20 (Cracked).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Plantasia Home Edition 2007.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Pop-Uptime 1.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Productive Clip 1.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Professional Template Pack - Spanish 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Progress Bar 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\QB Rating Calculator 1.02 build 0.630.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\QipTechMedia Live 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Rename the Recycle Bin 2.0.0.2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Ribbon Clicker.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Roommate 1.2 (Cracked).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\SeaMonkey 1.1.4.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Selten Rock Pools Wallpaper 1.00 Key+Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Sex in the City Screensaver 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Softabar Command Line Email Client 1.5 With Crack.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Sullis Barbecue 1.5 Beta 1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Sunset Screen Saver 2.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Symantec.AntiVirus.Corporate.Edition.v10.1.5.5000.Win64.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\TextPipe Standard 7.9.4 (KeyGen).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\The Curse of Monkey Island demo.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\The Three Missing Words - Puzzles 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Thumb-Bar 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Tidal Prediction Programme 2.32.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Touch It 1.2.7.0 (Key).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Ultra DVD Creator 1.7.9 (Key).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Unreal Tournament 2003 - Facing Worlds v3.02 map.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Ver.avast.PANDA TITANIUM ANTIVIRUS PLUS ANTISPYWARE 2006 MULTILANGUAGE.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Video Poker Pro 2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\VideoCTRL 1.2.3.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\WeatherSaver 1.7.0.0 Key+Serial.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Web Cafe 1.2.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Windows Live Movie Maker Beta 15.0.5026.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Winter Gold Mine 3D Screensaver 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Winter Thaw Screensaver 1.0.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\WorldClock 4.1.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Write Again! Professional 1.3.2.2 Key.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\XMultimediaDiary 1.2 build 1223.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Yahoo Music Jukebox 2.0.0.131.zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\YAMP 2.3 (Serial).zip
c:\documents and settings\Michele\Dati applicazioni\m\shared\Zip Project Plugin.zip
c:\documents and settings\Michele\Dati applicazioni\m\srvlist.oct
c:\programmi\Windows Live\Messenger\msnmsgr.exe
c:\windows\system32\ban_list.txt
c:\windows\system32\drivers\down
c:\windows\system32\drivers\down\293609.exe
c:\windows\system32\drivers\down\704359.exe
c:\windows\system32\mdelk.exe
c:\windows\system32\wintems.exe

.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_SROSA
-------\Legacy_SROSA
-------\Legacy_SK9OU0S
-------\Service_sK9Ou0s


((((((((((((((((((((((((( Files Creati Da 2009-02-06 al 2009-03-06 )))))))))))))))))))))))))))))))))))
.

2009-03-06 16:41 . 2009-03-06 16:48 <DIR> d-------- c:\programmi\EsetOnlineScanner
2009-03-05 17:29 . 2009-03-06 17:14 <DIR> d--h----- c:\documents and settings\Michele\Dati applicazioni\drivers
2009-02-27 19:00 . 2009-02-27 19:00 <DIR> d-------- c:\documents and settings\Michele\Documenti
2009-02-23 19:21 . 2004-08-03 23:10 38,016 --a------ c:\windows\system32\drivers\bthmodem.sys
2009-02-23 19:21 . 2004-08-03 23:10 38,016 --a--c--- c:\windows\system32\dllcache\bthmodem.sys
2009-02-23 15:03 . 2009-02-26 17:05 69 --a------ c:\windows\NeroDigital.ini
2009-02-15 20:17 . 2009-02-15 20:18 <DIR> d-------- c:\programmi\Google
2009-02-15 19:49 . 2009-02-15 19:50 <DIR> d-------- c:\windows\system32\it-it
2009-02-15 19:42 . 2008-12-20 23:30 6,066,688 -----c--- c:\windows\system32\dllcache\ieframe.dll
2009-02-15 19:42 . 2007-04-17 10:32 2,455,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dat
2009-02-15 19:42 . 2007-03-08 06:11 1,032,192 -----c--- c:\windows\system32\dllcache\ieframe.dll.mui
2009-02-15 19:42 . 2008-12-20 23:30 459,264 -----c--- c:\windows\system32\dllcache\msfeeds.dll
2009-02-15 19:42 . 2008-12-20 23:30 383,488 -----c--- c:\windows\system32\dllcache\ieapfltr.dll
2009-02-15 19:42 . 2008-12-20 23:30 267,776 -----c--- c:\windows\system32\dllcache\iertutil.dll
2009-02-15 19:42 . 2008-12-20 23:30 63,488 -----c--- c:\windows\system32\dllcache\icardie.dll
2009-02-15 19:42 . 2008-12-20 23:30 52,224 -----c--- c:\windows\system32\dllcache\msfeedsbs.dll
2009-02-15 19:42 . 2008-12-19 10:10 13,824 -----c--- c:\windows\system32\dllcache\ieudinit.exe
2009-02-15 10:35 . 2009-02-26 11:46 <DIR> d-------- c:\documents and settings\Michele\Dati applicazioni\vlc
2009-02-08 19:19 . 2009-02-24 14:09 <DIR> d-------- c:\programmi\PokerStars.NET
2009-02-06 20:01 . 2009-02-06 20:01 308,088 --a------ c:\windows\WLXPGSS.SCR
2009-02-06 18:52 . 2009-02-06 18:52 49,504 --a------ c:\windows\system32\sirenacm.dll
2009-02-06 15:10 . 2009-02-06 15:10 <DIR> d--hs---- c:\documents and settings\Michele\UserData

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-05 22:19 --------- d-----w c:\programmi\Windows Live
2009-03-05 22:18 --------- d-----w c:\documents and settings\Michele\Dati applicazioni\uTorrent
2009-03-05 16:26 --------- d-----w c:\programmi\eMule
2009-02-08 18:06 --------- d-----w c:\programmi\PokerStars
2009-02-05 15:18 --------- d-----w c:\programmi\Microsoft SQL Server Compact Edition
2009-02-05 15:17 --------- d-----w c:\programmi\Windows Live SkyDrive
2009-02-05 15:17 --------- d-----w c:\programmi\Microsoft
2009-02-05 15:09 --------- d-----w c:\programmi\File comuni\Windows Live
2009-01-30 10:03 27,262,976 ----a-w C:\VIRTPART.DAT
2009-01-30 10:00 --------- d-----w c:\programmi\Avira
2009-01-30 10:00 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Avira
2009-01-30 09:55 --------- d-----w c:\documents and settings\Michele\Dati applicazioni\Hewlett-Packard
2009-01-30 09:54 82,380 ----a-w c:\windows\system32\drivers\AFS2K.SYS
2009-01-30 09:54 --------- d-----w c:\programmi\Hewlett-Packard
2009-01-30 09:51 --------- d-----w c:\programmi\File comuni\Hewlett-Packard
2009-01-30 09:46 --------- d-----w c:\programmi\Bit Che
2009-01-30 09:46 --------- d-----w c:\documents and settings\Michele\Dati applicazioni\Convivea
2009-01-30 09:44 --------- d-----w c:\programmi\uTorrent
2009-01-29 16:28 --------- d-----w c:\programmi\Free PDF to Word Doc Converter
2009-01-29 16:24 --------- d-----w c:\programmi\Symantec
2009-01-29 16:24 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Symantec
2009-01-29 16:23 --------- d-----w c:\programmi\File comuni\Symantec Shared
2009-01-29 16:23 --------- d-----w c:\documents and settings\Michele\Dati applicazioni\Symantec
2009-01-29 16:05 --------- d-----w c:\programmi\Elaborate Bytes
2009-01-29 16:01 --------- d-----w c:\programmi\LHSP
2009-01-29 15:58 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\Microsoft Help
2009-01-29 15:58 --------- d-----w c:\documents and settings\All Users\Dati applicazioni\CyberLink
2009-01-29 15:56 --------- d-----w c:\programmi\MSBuild
2009-01-29 15:56 --------- d-----w c:\programmi\Microsoft Works
2009-01-29 15:54 --------- d-----w c:\programmi\Microsoft.NET
2009-01-29 15:51 --------- d-----w c:\programmi\Microsoft Visual Studio 8
2009-01-29 15:48 --------- d-----w c:\programmi\Ahead
2009-01-29 14:34 --------- d-----w c:\programmi\File comuni\Ahead
2009-01-29 14:30 --------- d-----w c:\programmi\File comuni\Adobe
2009-01-29 14:27 --------- d-----w c:\programmi\VideoLAN
2009-01-29 14:27 --------- d-----w c:\programmi\PDFCreator
2009-01-29 14:26 --------- d-----w c:\programmi\Illustrate
2009-01-29 13:57 --------- d--h--w c:\programmi\InstallShield Installation Information
2009-01-29 13:57 --------- d-----w c:\programmi\CyberLink
2009-01-29 13:52 --------- d-----w c:\programmi\File comuni\InstallShield
2009-01-24 15:30 315,392 ----a-w c:\windows\HideWin.exe
2009-01-24 15:30 --------- d-----w c:\programmi\Realtek
2009-01-24 15:19 --------- d-----w c:\programmi\DIFX
2009-01-24 15:02 --------- d-----w c:\programmi\microsoft frontpage
2009-01-24 15:01 --------- d-----w c:\programmi\Servizi in linea
.

------- Sigcheck -------

2008-04-14 03:14 510464 9259170d29b5a256735fcb8b80280857 c:\windows\SoftwareDistribution\Download\a43a40dec52d2202c514fab10b5b4eb2\winlogon.exe
2009-01-29 15:32 504832 1dbd3966123ac2f6ade783f7f17f8c7f c:\windows\system32\winlogon.exe
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-19 15360]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-15 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="c:\programmi\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 32768]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"InCD"="c:\programmi\Ahead\InCD\InCD.exe" [2004-04-06 1298542]
"GrooveMonitor"="c:\programmi\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"avgnt"="c:\programmi\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2009-03-06 266497]
"RTHDCPL"="RTHDCPL.EXE" [2007-07-05 c:\windows\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2007-06-15 c:\windows\SkyTel.exe]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-19 c:\windows\system32\bthprops.cpl]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-19 15360]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
hp psc 1000 series.lnk - c:\programmi\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2003-04-06 147456]
hpoddt01.exe.lnk - c:\programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-04-06 28672]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Programmi\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Programmi\\eMule\\emule.exe"=
"c:\\Programmi\\uTorrent\\uTorrent.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\Windows Live\\Sync\\WindowsLiveSync.exe"=

R1 GhPciScan;GhostPciScanner;c:\programmi\Symantec\Norton Ghost 2003\GhPciScan.sys [2003-12-17 5632]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\l151x86.sys [2009-01-29 36864]
.
Contenuto della cartella 'Scheduled Tasks'

2009-03-05 c:\windows\Tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1233309291.job
- c:\programmi\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-06 00:52]
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKCU-Run-MsnMsgr - c:\programmi\Windows Live\Messenger\msnmsgr.exe


.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-06 17:16:51
Windows 5.1.2600 Service Pack 2 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'winlogon.exe'(744)
c:\windows\system32\Ati2evxx.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\Ahead\InCD\incdsrv.exe
c:\windows\system32\rundll32.exe
c:\programmi\Symantec\Norton Ghost 2003\GhostStartService.exe
c:\programmi\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\HPZipm12.exe
c:\windows\system32\wscntfy.exe
c:\programmi\Hewlett-Packard\Digital Imaging\bin\hposts08.exe
.
**************************************************************************
.
Ora fine scansione: 2009-03-06 17:20:06 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2009-03-06 16:20:04

Pre-Run: 66,260,783,104 byte disponibili
Post-Run: 66,853,732,352 byte disponibili

WindowsXP-KB310994-SP2-Pro-BootDisk-ITA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer

467 --- E O F --- 2009-01-30 09:40:08




KE VUOL DIRE???SONO ROVINATO??? ho trovato da poco questo sito...e tra tanti ho scelto questo...spero sia la scelta giusta....
cmq piacere di conoscervi

[shel]

eeehh la peppa....ti ha tolto moltissime infezioni

scarica questo programmino... il download lo trovi in fondo alla pagina http://www.zonavirus.com/datos/descarga ... ibagla.asp

lancia il programma e spunta '' ELIMINAR FICHEROS AUTOMATICAMENTE''

clicca su EXPLORAR per avviare la scansione


quando avra' finito troverai il log in C:\InfoSat.txt. - copiali in blocco note e postalo nel forum

[Jinxxx]

mi avverte lui quando finisce?xk nn va più avanti scusa il disturbo

[Jinxxx]

Fri Mar 06 17:39:38 2009
EliBagle v12.30 (c)2009 S.G.H. / Satinfo S.L. (Actualizado el 5 de Marzo del 2009)
----------------------------------------------
Lista de Acciones (por Acción Directa):
Eliminada Carpeta "%AppData%\Drivers"

Fri Mar 06 17:40:17 2009
EliBagle v12.30 (c)2009 S.G.H. / Satinfo S.L. (Actualizado el 5 de Marzo del 2009)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando "C:\"
C:\Programmi\eMule\Incoming\Translator Nokia(traduttore)(1)\SETUP.EXE --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\SROSA2.SYS.VIR --> Eliminado Bagle(rootkit)
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\WINUPGRO.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\102921.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\18944515.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\19105078.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\19347593.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\254078.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\4424140.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\469250.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\drivers\downld\660703.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\Documents and Settings\Michele\Dati applicazioni\m\FLEC006.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\Programmi\Windows Live\Messenger\MSNMSGR.EXE.VIR --> Eliminado Bagle.dldr
C:\Qoobox\Quarantine\C\WINDOWS\system32\MDELK.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\WINDOWS\system32\WINTEMS.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\down\293609.EXE.VIR --> Eliminado Bagle
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\down\704359.EXE.VIR --> Eliminado Bagle

Nº Total de Directorios: 2972
Nº Total de Ficheros: 32463
Nº de Ficheros Analizados: 9580
Nº de Ficheros Infectados: 17
Nº de Ficheros Limpiados: 17





è questo per caso????

[Luke57]

Ciao, combofix ti ha eliminato il bagle dal pc, elibagla ha solamente eliminato i file infetti inseriti da combofix nella sua cartella C:\Qoobox.
Adesso elimina combofix.exe e la sua cartella C:\Qoobox.
reinstalla, poi, l'antivirus e altri programmi di sicurezza, generalmente dopo che sono stati disattivati non funzionano più.

[Jinxxx]

dopo è fatta^?

[Jinxxx]

ragazziiiiiiiiiiiiiiiiiiii ho ftt cm avete dtt ma facendo la scansione cn il kaspersky appena comprato mi trova dei bagle...aiuttooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

[Jinxxx]

mi dice impossibile disinfettare ma me li ha fatti eliminare tutti

[shel]

se hai eliminato combofix e la sua cartella, prova ad usare findkill


disattiva il tuo antivirus e scarica da qui il programma

http://dc108.4shared.com/download/75022 ... 1-de3379fb


Doppio click sull'icona Findykill per avviare l'installazione:
Inserisci la prima spunta per accettare la licenza e prosegui > Suivant
Clicca su "Si" per destinare una cartella al programma
Clicca su Dèmarrer > Quitter per terminare l'installazione.
Cerca l'icona del programma sul desktop o in programmi ed eseguilo
Dovrai usare prima il tasto 1 (invio) per la ricerca e successivamente il tanto 2 (invio) per la pulizia.
Il report delle operazioni effettuate lo trovarai in C:\FindyKill.txt
Allega il rapporto nella tua risposta.

[Jinxxx]

come si disattivano gli antivirus?cmq kispersky ha eliminato tutti i file e con essi tutti i bagle...devo fare lo stesso questo?

[Luke57]

Ciao, ti chiedo per piacere di modificare il tono drammatico dei tuoi post e di non scrivere in stile sms, è fastidioso e non consentito. Se kaspersky ha eliminato i file sei a posto. Il fatto che l'antivirus funzioni significa che il bagle è eliminato.

[shel]

[quote] come si disattivano gli antivirus?cmq kispersky ha eliminato tutti i file e con essi tutti i bagle...devo fare lo stesso questo? uote]


dovrebbe esserci l'icona nella tray bar cliccaci col tasto destro e lo disattivi momentaneamente- durante l'operazione della scansione con findkill ti consiglio di staccarti da internet

[Jinxxx]

uno mi dice ke devo farla e un altro di no...cosa devo fare????serve questo passaggio anke se il nuovo antivirus ha funzionato ha eliminato tutti i file cn virus?