Indice del forum Olimpo Informatico
I Forum di Zeus News
Leggi la newsletter gratuita - Attiva il Menu compatto
 
 FAQFAQ   CercaCerca   Lista utentiLista utenti   GruppiGruppi   RegistratiRegistrati 
 ProfiloProfilo   Messaggi privatiMessaggi privati   Log inLog in 

    Newsletter RSS Facebook Twitter Contatti Ricerca
BHO.DLL NON TROVATO ALL'ACCENSIONE
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus
Precedente :: Successivo  
Autore Messaggio
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 11:51    Oggetto: BHO.DLL NON TROVATO ALL'ACCENSIONE Rispondi citando

S.O. VISTA ANTIVIRUS AVG + PANDA CLOUD + SCANSIONE MALWAREBYTES + PANDA USB VACCINE Evil or Very Mad NONOSTANTE LE VARIE SCANSIONI CONTINUO AD AVERE LO STESSO PROBLEMA AIUTATEMI
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 11:58    Oggetto: HO ESEGUITO IL Logfile of Trend Micro HijackThis v2.0.4 Rispondi citando

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11.29.06, on 22/05/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Alice ti aiuta\McciTrayApp.exe
C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe
C:\Windows\system32\conime.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Hijack\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=it_it&c=91&bd=Pavilion&pf=cnnb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=it_it&c=91&bd=Pavilion&pf=cnnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/webscout/{014EAFFE-3B59-4405-BC6A-FE2FBB4690F7}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHelper Class - {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - C:\Program Files\SGPSA\mtwb3sh.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files\SGPSA\SearchAssistant.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.4723.1820\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll (file missing)
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: Fast Browser Search Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [DVDAgent] "C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"
O4 - HKLM\..\Run: [TSMAgent] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"
O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Hewlett-Packard\Media\Webcam" update "Software\Hewlett-Packard\Media\Webcam"
O4 - HKLM\..\Run: [SmartMenu] %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [UpdatePDIRShortCut] "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [AliceRV_McciTrayApp] C:\Program Files\Alice ti aiuta\McciTrayApp.exe
O4 - HKLM\..\Run: [TVAgent] "C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [PSUNMain] "C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe" /Traybar
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [EPSON BX300F Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEJE.EXE /FU "C:\Windows\TEMP\E_S51CE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [yseysee] "c:\users\dario\appdata\local\yseysee.exe" yseysee
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO DI RETE')
O4 - Global Startup: McAfee Security Scan.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: (no name) - {09E90109-A9AA-4980-BCEF-76F8D924E902} - (no file)
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: PokerStars.it - {C4046502-6524-4d87-896C-878F57D1FF07} - C:\Program Files\PokerStars.IT\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {09E90109-A9AA-4980-BCEF-76F8D924E902} - (no file) (HKCU)
O16 - DPF: {4819DFDF-ABC4-488C-A323-919848C51175} (Conviva LivePass) -
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldit-it.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{28DBB6BB-DC31-471F-BF9B-BFA84D3D7F9E}: NameServer = 208.67.222.222 208.67.220.220
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\aestsrv.exe
O23 - Service: ASKService - Unknown owner - C:\Program Files\AskBarDis\bar\bin\AskService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NanoServiceMain - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\STacSV.exe
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) - Unknown owner - C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe

--
End of file - 15758 bytes


E ORA?
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 13:43    Oggetto: Rispondi citando

Ciao, e benvenuto. Ciao
Segui le istruzioni di questo topic per usare Combofix:
http://forum.zeusnews.com/viewtopic.php?t=45224

Carica il log cosi:
Collegati ad internet e vai alla pagina WikiSend: http://www.wikisend.com/
Clicca sul bottone "Sfoglia"
Seleziona il file appena salvato
Clicca su Upload file
Dopo qualche secondo, vieni spostato su una nuova pagina con il link in diversi formati:
Download Link / Forum Link
Seleziona Forum Link, copialo e incollalo in un nuovo messaggio per il forum.
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 14:05    Oggetto: scansione con antispyware Rispondi citando

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/22/2010 at 01:41 PM

Application Version : 4.37.1000

Core Rules Database Version : 4945
Trace Rules Database Version: 2757

Scan type : Complete Scan
Total Scan Time : 01:40:36

Memory items scanned : 971
Memory threats detected : 0
Registry items scanned : 9482
Registry threats detected : 0
File items scanned : 39011
File threats detected : 57

Adware.Tracking Cookie
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\dario@atdmt[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@mediaplex[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@weborama[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@serving-sys[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@ad.yieldmanager[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@media6degrees[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@ad.yieldmanager[3].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@stats.paypal[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@doubleclick[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@2o7[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@doubleclick[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@liveperson[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@liveperson[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@www.googleadservices[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@www.googleadservices[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@tradefx.advertserve[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@liveperson[4].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@teletu.solution.weborama[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@www.addfreestats[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@server.iad.liveperson[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@static.freewebs.getclicky[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@static.freewebs.getclicky[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@advertiser.edintorni[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@myroitracking[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@imrworldwide[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@www.mediashopping[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@adv.nexta[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@apmebf[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@myroitracking[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@content.yieldmanager[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@ads.rcs[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@data.coremetrics[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@atdmt[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@invitemedia[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@mediashopping[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@tradedoubler[3].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@tradedoubler[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@247realmedia[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@content.yieldmanager[5].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@content.yieldmanager[3].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@99counters[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@content.yieldmanager[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@richmedia.yahoo[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@bs.serving-sys[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@partypoker[3].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@partypoker[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@banner.tio[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@xiti[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@rts.pgmediaserve[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@ad.zanox[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@paypal.112.2o7[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@99counters[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@clicksor[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@clicksor[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@statse.webtrendslive[2].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@adtech[1].txt
C:\Users\dario\AppData\Roaming\Microsoft\Windows\Cookies\Low\dario@rts.pgmediaserve[2].txt
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 14:13    Oggetto: Rispondi citando

Ciao.
Non ho chiesto una scansione con Superantispyware.
Se vuoi risolvere, segui le indicazioni che ti ho postato.
Disistalla il programma Ask, (compresa la sua toolbar)
E, disistalla gli antivirus che hai installato.
Ne serve 1 solo.
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 14:22    Oggetto: ecco i file Rispondi citando

http://www.wikisend.com/
SUPERAntiSpyware Scan Log - 05-22-2010 - 13-41-04.log
SUPERAntiSpyware Scan Log - 05-22-2010 - 13-41-04.log
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 14:33    Oggetto: Rispondi citando

fatto ho disistallato gli antivirus tranne avg
ora che ti serve sapere?
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 14:36    Oggetto: Rispondi citando

Come cosa mi serve..... Confused
Il log di Combofix.
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 15:03    Oggetto: file combofix Rispondi citando

log combofix.txt
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 15:16    Oggetto: Rispondi citando

Il problema principale, dovrebbe essere risolto.
Giusto?
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 15:24    Oggetto: Rispondi citando

sembra proprio di si, ti ringrazio
ma in buona sostanza mi spieghi questo combofix come funziona?
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 15:35    Oggetto: Rispondi citando

In sostanza, non è un software da lasciare installato sul pc.
Questo perchè, viene aggiornato molto spesso, per cui serve sempre una nuova installazione. (non si aggiorna automaticamente, nè manualmente)
Sempre in buona sostanza, è un software, da lasciare usare, a chi lo conosce bene.
In mano inesperte, può provvocare danni irreversibili.

Segui le istruzioni di questo topic per rimuovere combofix:

http://forum.zeusnews.com/viewtopic.php?t=47670

Pulisci i files temporanei con CCleaner (registro compreso)
http://forum.zeusnews.com/viewtopic.php?p=282670#282670

Disattiva il ripristino configurazione di sistema.
http://forum.zeusnews.com/viewtopic.php?t=22084

Spegni il pc.
Avvia il pc.

Riattiva il ripristino configurazione di sistema e, se tutto è a posto, creane uno nuovo.

Ciao.
Top
Profilo Invia messaggio privato
TECNO07
Mortale devoto
Mortale devoto


Registrato: 22/05/10 11:44
Messaggi: 11

MessaggioInviato: 22 Mag 2010 15:57    Oggetto: Rispondi citando

tutto ok. ti ringrazio per l'aiuto. ma queste procedure valgono per eliminare tutti i tipi di virus?
Top
Profilo Invia messaggio privato
R16
Dio maturo
Dio maturo


Registrato: 07/03/08 22:58
Messaggi: 10129

MessaggioInviato: 22 Mag 2010 20:11    Oggetto: Rispondi

TECNO07 ha scritto:
tutto ok. ti ringrazio per l'aiuto. ma queste procedure valgono per eliminare tutti i tipi di virus?

No.
Ogni infezione, ha una sua procedura.
In generale, questa procedura, funziona contro infezioni generiche.
Ma, per altre infezioni, (più specifiche) servono altre procedure.
Ciao.
Top
Profilo Invia messaggio privato
Mostra prima i messaggi di:   
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus Tutti i fusi orari sono GMT + 2 ore
Pagina 1 di 1

 
Vai a:  
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi