 |
| Autore |
Messaggio |
polla
Nuovo utente
Registrato: 06/10/10 17:34
Messaggi: 5
|
 Inviato:
Gio Ott 07, 2010 9:30 pm |
  |
Salve, SONO UNA Nuova Utente Proprio inesperta ......... C'E 'qualche Esperto Che darebbe gentilmente Occhiata un tutti' Hijack Che allegorie per segnalarmi se C'E 'qualche Anomalia o qualche voce da fixare ... .?
INOLTRE UNA eseguento scansione con l 'antivirus NOD 32, e' risultata la seguente infezione:
http / / 92.241.164/cp.jar Java / TrojanDownloader.Open: stram.NAS
http / /> 92.241.164/cp.jar> ZIP> CPAK> / Crimepack.class Java / TrojanDownloader.Open: stram.NAS
Messa per ORA ....... in quarantena Cosa devo tariffa?
Ringrazio fin da ORA chi vorra mi 'Aiutare. Grazie
Allego qui di Seguito l 'Hijack:
Logfile di Trend Micro HijackThis v2.0.2
Scansione salvato in 19.10.31, su 2010/06/10
Piattaforma: Windows XP SP3 (WinNT 2600/05/01)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Modalità di avvio: Normale
I processi in esecuzione:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ ibmpmsvc.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Programmi \ IBM \ Software Bluetooth \ bin \ btwdins.exe
C: \ Programmi \ Java \ jre6 \ bin \ jqs.exe
C: \ Programmi \ Eset \ nod32krn.exe
C: \ Programmi \ Microsoft \ Search Enhancement Pack \ Seaport \ SeaPort.exe
C: \ Devices Programmi \ Analog \ SoundMAX \ SMAgent.exe
C: \ WINDOWS \ system32 \ WBEM \ wmiapsrv.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Devices Programmi \ Analog \ SoundMAX \ SMax4PNP.exe
C: \ WINDOWS \ system32 \ RunDll32.exe
C: \ WINDOWS \ system32 \ rundll32.exe
C: \ WINDOWS \ system32 \ TpShocks.exe
C: \ PROGRA ~ 1 \ ThinkPad \ Pkgmgr \ HOTKEY \ TPHKMGR.exe
C: \ WINDOWS \ system32 \ rundll32.exe
C: \ Programmi \ Synaptics \ SynTP \ SynTPLpr.exe
C: \ Programmi \ Synaptics \ SynTP \ Syntpenh.exe
C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb10.exe
C: \ Programmi \ HP \ hpcoretech \ hpcmpmgr.exe
C: \ Programmi \ Eset \ nod32kui.exe
C: \ Programmi \ ThinkPad \ Pkgmgr \ HOTKEY \ TPONSCR.exe
C: \ Programmi \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe
C: \ Programmi \ ThinkPad \ Pkgmgr \ HOTKEY_1 \ TpScrex.exe
C: \ Programmi \ Analog Devices \ SoundMAX \ smax4.exe
C: \ Programmi Software \ Hewlett-Packard \ HP Update \ HPWuSchd2.exe
C: \ Programmi \ File Comuni \ Java \ Java Update \ jusched.exe
C: \ Programmi \ Windows Live \ Messenger \ msnmsgr.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Programmi \ uTorrent \ uTorrent.exe
C: \ Programmi \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Programmi \ Skype \ Phone \ skype.exe
C: \ Programmi \ IBM \ Bluetooth Software \ BTTray.exe
C: \ Programmi Line \ Digital Rileva \ DLG.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Programmi \ Skype \ Plugin Manager \ skypePM.exe
C: \ Programmi \ File Comuni \ Adobe \ ARM \ 1.0 \ AdobeARM.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Programmi \ Trend Micro \ HijackThis \ HijackThis.exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://search.live.com/sphome.aspx
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://search.live.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.it/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://search.live.com/sphome.aspx
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName = COLLEGAMENTI
R3 - URLSearchHook: Inizio Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Programmi \ Inizio \ Companion \ Installa \ CPN \ yt.dll
O2 - BHO: & Yahoo! Toolbar Helper - (02478D38-C3F9-4efb-9B51-7695ECA05670) - C: \ Programmi \ Inizio \ Companion \ Installa \ CPN \ yt.dll
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Programmi \ File Comuni \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Helper ricerca - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Helper Programmi \ Enhancement Microsoft \ Search Pack \ Search \ SEPsearchhelperie.dll
O2 - BHO: Guida per l'acces un Windows Live - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Programmi \ File Comuni \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8.333-CF10577473F7) - C: \ Toolbar Programmi \ Google \ Google \ GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C: \ Programmi \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Programmi \ Google \ GoogleToolbarNotifier \ 5.6.5612.1312 \ swg.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Programmi \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - (E15A8DC0-8.516-42A1-81EA-DC94EC1ACF10) - C: \ Programmi \ Windows Live \ Toolbar \ wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Programmi \ Java \ jre6 \ lib \ deploy \ JQS \ cioè \ jqs_plugin.dll
O2 - BHO: Class SingleInstance - (FDAD4DA1-61A2-4FD8-9C17-86F7AC245081) - C: \ Programmi \ Inizio \ Companion \ Installa \ CPN \ YTSingleInstance.dll
O3 - Toolbar: Inizio Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Programmi \ Inizio \ Companion \ Installa \ CPN \ yt.dll
O3 - Toolbar: & Windows Live Toolbar - (21FA44EF-376D-4D53-9B0F-8A89D3229068) - C: \ Programmi \ Windows Live \ Toolbar \ wltcore.dll
Toolbar - O3: Google Toolbar - (2318C2B1-4965-11d4-9B18-009027A5CD4F) - C: \ Toolbar Programmi \ Google \ Google \ GoogleToolbar_32.dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] C: \ Devices Programmi \ Analog \ SoundMAX \ SMax4PNP.exe
O4 - HKLM \ .. \ Run: [BMMGAG] RunDll32 C: \ PROGRA ~ 1 \ ThinkPad \ Utilit ~ 1 \ pwrmonit.dll, StartPwrMonitor
O4 - HKLM \ .. \ Run: [BMMLREF] C: \ Programmi \ ThinkPad \ Utilities \ BMMLREF.EXE
O4 - HKLM \ .. \ Run: [BMMMONWND] rundll32.exe C: \ PROGRA ~ 1 \ ThinkPad \ Utilit ~ 1 \ BatInfEx.dll, BMMAutonomicMonitor
O4 - HKLM \ .. \ Run: [ATIPTA] C: \ Programmi \ ATI Technologies \ ATI Control Panel \ atiptaxx.exe
O4 - HKLM \ .. \ Run: [TpShocks] TpShocks.exe
O4 - HKLM \ .. \ Run: [TPHOTKEY] C: \ PROGRA ~ 1 \ ThinkPad \ Pkgmgr \ HOTKEY \ TPHKMGR.exe
O4 - HKLM \ .. \ Run: [BluetoothAuthenticationAgent] bthprops.cpl rundll32.exe,, BluetoothAuthenticationAgent
O4 - HKLM \ .. \ Run: [SynTPLpr] C: \ Programmi \ Synaptics \ SynTP \ SynTPLpr.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Programmi \ Synaptics \ SynTP \ Syntpenh.exe
O4 - HKLM \ .. \ Run: [HPDJ Taskbar Utility] C: \ WINDOWS \ system32 \ spool \ drivers \ w32x86 \ 3 \ hpztsb10.exe
O4 - HKLM \ .. \ Run: [HP Component Manager] "C: \ Programmi \ HP \ hpcoretech \ hpcmpmgr.exe"
O4 - HKLM \ .. \ Run: [nod32kui] "C: \ Programmi \ Eset \ nod32kui.exe" / WAITSERVICE
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Adobe Photo Downloader] "C: \ Programmi \ Adobe \ Photoshop Album Starter Edition \ 3.0 \ Apps \ apdproxy.exe"
O4 - HKLM \ .. \ Run: [SoundMax] "C: \ Programmi \ Analog Devices \ SoundMAX \ smax4.exe" / vassoio
O4 - HKLM \ .. \ Run: [HP Software Update] C: \ Software Programmi \ Hewlett-Packard \ HP Update \ HPWuSchd2.exe
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Programmi \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [Adobe ARM] "C: \ Programmi \ File Comuni \ Adobe \ ARM \ 1.0 \ AdobeARM.exe"
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Programmi \ File Comuni \ Java \ Java Update \ jusched.exe"
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Programmi \ Windows Live \ Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [updateMgr] C: \ Programmi \ Adobe \ Acrobat 7.0 \ Reader \ AdobeUpdateManager.exe AcRdB7_0_5
O4 - HKCU \ .. \ Run: [RegistryBooster Uniblue 2009] C: \ Programmi \ Uniblue \ RegistryBooster \ RegistryBooster.exe / S
O4 - HKCU \ .. \ Run: [uTorrent] "C: uTorrent \ Programmi \ \ uTorrent.exe"
O4 - HKCU \ .. \ Run: [swg] C: Programmi \ \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe "
O4 - HKCU \ .. \ Run: [Skype] "C: \ Programmi \ Skype \ Phone \ skype.exe" / nosplash / ridotto al minimo
O4 - HKCU \ .. \ Run: [Google Update] "C: \ Documents and Settings \ Utente \ Impostazioni Locali \ Dati Applicazioni \ Google \ Update \ GoogleUpdate.exe" / c
O4 - HKUS \ S-1-5-19 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User 'SYSTEM')
O4 - HKUS \ DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE ('utente predefinito' utente).
O4 - Global Startup: BTTray.lnk =?
O4 - Global Startup: Detect.lnk linea digitale =?
O8 - Extra voce di menu contestuale: E & sporta in Microsoft Excel - res: / / C:\ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra voce di menu contestuale: Google Sidewiki ... - res: / / C:\ \ Google \ Google Toolbar Programmi \ componenti \ GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O8 - Extra voce di menu contestuale: Invia a & Bluetooth - C: \ Programmi \ IBM \ Bluetooth Software \ btsendto_ie_ctx.htm
O9 - Extra button: INSERISCI blog - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Programmi \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: INSERISCI & blog in Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Programmi \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Skype add-on per Internet Explorer - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C: \ Programmi \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on per Internet Explorer - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C: \ Programmi \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4.134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @ xpsp3res.dll, -20.001 - (e2e2dd38-d088-4.134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Programmi \ Messenger \ msmsgs.exe
O9 - Extra 'Strumenti' menuitem: Messenger Windows - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Programmi \ Messenger \ msmsgs.exe
O11 - Opzioni di gruppo: [JAVA_IBM] Java (IBM)
O16 - DPF: (56762DEC-6B0D-4AB4-A8AD-989993B5D08B) - http://www.eset.eu/OnlineScanner.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1196693629411
O18 - Protocol: skype-ie-addon-data - (91.774.881-D725-4E58-B298-07617B9B86A8) - C: \ Programmi \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9.458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ FILECO ~ 1 \ Skype \ SKYPE4 ~ 1.dll
O23 - Service: Ati HotKey Poller - ALWIL Software - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C: \ Programmi \ IBM \ Software Bluetooth \ bin \ btwdins.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C: \ Programmi \ Google \ Update \ GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Programmi \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: IBM PM Service (IBMPMSVC) - ALWIL Software - C: \ WINDOWS \ system32 \ ibmpmsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C: \ Programmi \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C: \ Programmi \ Eset \ nod32krn.exe
O23 - Service: Online Armor Helper Service (OAcat) - ALWIL Software - C: \ Programmi \ Tall Emu \ Online Armor \ oacat.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C: \ Programmi \ Analog Devices \ SoundMAX \ SMAgent.exe
Polla |
|
|
  |
|
polla
Nuovo utente
Registrato: 06/10/10 17:34
Messaggi: 5
|
| Inviato:
Lun Ott 11, 2010 7:42 pm |
|
.... scusate..... c'era il traduttore attivato, per cui ha ritradotto nell' Italiano "ridicolo" che leggete.... please help me.. !  |
|
|
|
|
marcos
Utente grado 6
Registrato: 15/12/06 20:03
Messaggi: 1006
Residenza: COM II
|
| Inviato:
Lun Ott 11, 2010 9:07 pm |
|
| polla ha scritto: | | .... scusate..... c'era il traduttore attivato, per cui ha ritradotto nell' Italiano "ridicolo" che leggete.... please help me.. ! |
  |
_________________
 .....  |
|
|
|
|
|
|
Successivo
Precedente
Non puoi inserire nuovi Argomenti
Non puoi rispondere a nessun Argomento
Non puoi modificare i tuoi Messaggi
Non puoi cancellare i tuoi Messaggi
Non puoi votare nei Sondaggi
|
| |
