|
| HOMEPAGE | INDICE FORUM | REGOLAMENTO | ::. | NEI PREFERITI | .:: | RSS Forum | RSS News | NEWS web | NEWS software | |
| PUBBLICITA' | | | ARTICOLI | WIN XP | VISTA | WIN 7 | REGISTRI | SOFTWARE | MANUALI | RECENSIONI | LINUX | HUMOR | HARDWARE | DOWNLOAD | | | CERCA nel FORUM » | |
16-05-2004, 14.44.38 | #1 |
Junior Member
Registrato: 30-10-2002
Messaggi: 64
|
AIUTO STO IMPAZZENDO
ho tutto aggiornato sia windows che antivirus cosa può essere? |
16-05-2004, 14.54.39 | #2 |
Gold Member
Top Poster
Registrato: 20-08-2002
Loc.: Mestre
Messaggi: 3.563
|
HijackThis direct download: http://209.133.47.200/~merijn/files/HijackThis.exe
Di hijackthis puoi salvarti il log e postalo qui (non cancellare tutto quello che ti trova alcune cose sono giuste) così vediamo cosa stà girando sul tuo pc (probabile virus comunque). Mi dici che windows hai e che antivirus?
___________________________________
Solo gli operai sanno quanto vale il tempo; se lo fanno sempre pagare. |
16-05-2004, 20.26.52 | #3 |
Junior Member
Registrato: 30-10-2002
Messaggi: 64
|
xp + nav
|
16-05-2004, 20.35.28 | #4 |
Junior Member
Registrato: 30-10-2002
Messaggi: 64
|
Logfile of HijackThis v1.97.7
Scan saved at 19.32.55, on 16/05/2004 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Programmi\GIGA-TMS\WinSecurity\WinSecurity.exe C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe C:\Programmi\Analog Devices\SoundMAX\Smax4.exe C:\Programmi\Network Associates\Common Framework\UpdaterUI.exe C:\Programmi\D-Tools\daemon.exe C:\Programmi\Java\j2re1.4.2_01\bin\jusched.exe C:\Programmi\File comuni\Real\Update_OB\realsched.exe C:\WINDOWS\System32\RUNDLL32.EXE C:\Programmi\File comuni\Symantec Shared\ccApp.exe C:\Programmi\MSN Messenger\MsnMsgr.Exe C:\Programmi\TECOM\Bluetooth Software\BTTray.exe C:\Programmi\NEOTION\NEOTION Video Link\Bin\ASLaunch.exe C:\Programmi\Broadband4PC\bin\Server4PC.exe C:\Programmi\U.S. Robotics 802.11g WLAN\USRWLANG.exe C:\Programmi\TECOM\Bluetooth Software\BTStackServer.exe C:\Programmi\Norton AntiVirus\navapsvc.exe C:\Programmi\No-IP\DUC20.exe C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.EXE C:\WINDOWS\System32\nvsvc32.exe C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE C:\WINDOWS\System32\svchost.exe C:\Programmi\mIRC\mirc.exe C:\Programmi\Serv-U\ServUAdmin.exe C:\Programmi\ICQ\Icq.exe C:\Programmi\FlashFXP\FlashFXP.exe C:\Documents and Settings\daffy\Desktop\FxBeagle.exe C:\WINDOWS\explorer.exe C:\Documents and Settings\daffy\Documenti\File ricevuti\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Programmi\Norton AntiVirus\NavShExt.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\MSDXM.OCX O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programmi\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [WinSecurity] C:\Programmi\GIGA-TMS\WinSecurity\WinSecurity.exe O4 - HKLM\..\Run: [SoundMAXPnP] C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe O4 - HKLM\..\Run: [SoundMAX] "C:\Programmi\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Programmi\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Programmi\D-Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\j2re1.4.2_01\bin\jusched.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [ccApp] "C:\Programmi\File comuni\Symantec Shared\ccApp.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Programmi\Microsoft ActiveSync\WCESCOMM.EXE" O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: NEOTION Video Link.lnk = ? O4 - Global Startup: Server4PC.lnk = C:\Programmi\Broadband4PC\bin\Server4PC.exe O4 - Global Startup: U.S. Robotics 802.11g Wireless Network Utility.lnk = ? O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &Google Search - res://c:\programmi\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Backward &Links - res://c:\programmi\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cac&hed Snapshot of Page - res://c:\programmi\google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Si&milar Pages - res://c:\programmi\google\GoogleToolbar1.dll/cmsimilar.html O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM) O9 - Extra button: Crea preferiti portatile (HKLM) O9 - Extra 'Tools' menuitem: Crea preferiti portatile... (HKLM) O9 - Extra button: ICQ Pro (HKLM) O9 - Extra 'Tools' menuitem: ICQ (HKLM) O9 - Extra button: Ricerche (HKLM) O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTS...nknown&unknown O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} - http://download.microsoft.com/downlo...22/wmv9VCM.CAB O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/0972a6a5d8b0a5a...dxIE601_it.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab O16 - DPF: {82774781-8F4E-11D1-AB1C-0000F8773BF0} (DLC Class) - http://transfers.one.microsoft.com/F...ansferCtrl.cab O16 - DPF: {83B67220-025C-416C-8049-398E12764B36} (Flo2_L2 Control) - http://www.nokiagame.com/games/2K1E4...as/flo2_l2.cab O16 - DPF: {8BC4B4C3-2CA2-44B0-9A36-495EF3946E22} (Flo2_L1 Control) - http://www.nokiagame.com/games/1fpO9...fl/flo2_l1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...tatsClient.cab O16 - DPF: {8FA9D107-547B-4DBC-9D88-FABD891EDB0A} (shizmoo Class) - http://arcade.icq.com/multiplayer/odyssey_web8.cab O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.co...918.6240277778 O16 - DPF: {A8658086-E6AC-4957-BC8E-7D54A7E8A78E} (SassCln Object) - http://www.microsoft.com/security/co...20/SassCln.CAB O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/s...sh/swflash.cab O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://register3.valueactive.com/20...CX/FlashAX.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{77B39B9D-049D-4485-95D2-BAF5A329B775}: NameServer = 62.211.69.150 212.48.4.15 |
16-05-2004, 21.20.22 | #5 |
Gold Member
Top Poster
Registrato: 20-08-2002
Loc.: Mestre
Messaggi: 3.563
|
Hai provato anche il mc.afee 7 enterprise vedo questo ti è rimasto in memoria e lo puoi anche eliminare
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Programmi\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey Questo non so cosa sia O4 - HKLM\..\Run: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode avevi paura di questo virus per caso C:\Documents and Settings\daffy\Desktop\FxBeagle.exe Scarica lo stinger da qui e fallo girare in modalità provvisoria http://vil.nai.com/vil/averttools.asp Da qui spybot e adware per dare una pulita agli spyware http://www.safer-networking.org/inde...&page=download http://lavasoft.element5.com/italian/support/download/ Ho visto che hai molti programmi particolari in esecuzione automatica, non è che possa essere uno di quelli a creare problemi. In quanto al Nav non sarebbe la prima volta che viene sfondato sopratutto da trojan virus. Fai sapere come va, rispondo domani in mattinata.
___________________________________
Solo gli operai sanno quanto vale il tempo; se lo fanno sempre pagare. |
16-05-2004, 22.49.28 | #6 |
Junior Member
Registrato: 30-10-2002
Messaggi: 64
|
adaware non ha rilevato niente...come lo stinger!
|
19-05-2004, 02.21.22 | #7 |
Senior Member
Registrato: 18-10-2000
Loc.: Milano
Messaggi: 495
|
Prova a vedere a questo indirizzo se c'è la soluzione al tuo problema. Fammi sapere
http://service1.symantec.com/SUPPORT...c=it_sg&csm=no
___________________________________
(Y) Abit KV8 Pro, AMD64 3000+, 1GB ddr 3200, GeForce TI4200, SB Live, 2 X 120 Maxtor 7200 |
19-05-2004, 11.27.56 | #8 |
Junior Member
Registrato: 30-10-2002
Messaggi: 64
|
nav ora si avvia bene, ma ie mi si chiude sempre...
sto utilizzando mozilla firefox. |
Utenti attualmente attivi che stanno leggendo questa discussione: 1 (0 utenti e 1 ospiti) | |
Strumenti discussione | |
|
|
Discussioni simili | ||||
Discussione | Autore discussione | Forum | Risposte | Ultimo messaggio |
Aiuto sto impazzendo!!! | Capr | Hardware e Overclock | 3 | 12-04-2007 12.08.22 |
AIUTO !! TCP ermetici !! AIUTO !! | aloamauro | Internet e Reti locali | 9 | 22-01-2007 18.07.14 |
Aiuto....sto impazzendo | Giunpy | Windows 7/Vista/XP/ 2003 | 3 | 21-09-2005 21.00.30 |
Aiuto Aiuto xp non funziona.. | rarr64 | Windows 7/Vista/XP/ 2003 | 6 | 27-11-2004 20.06.26 |
sto impazzendo con la service pack2 aiuto | claudia1974 | Windows 7/Vista/XP/ 2003 | 3 | 05-09-2004 23.44.57 |