AESSENET.ORG - Forum Forum di aessenet

exception etc. etc.

  • Messaggi
  • OFFLINE
    riricata
    Post: 5
    Utente Junior
    00 23/04/2010 19:06
    Anch'io sono assillato dallo stesso problema



    Logfile of Trend Micro HijackThis v2.0.3 (BETA)
    Scan saved at 19.09.32, on 23/04/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
    Boot mode: Normal

    Running processes:
    H:\WINDOWS\System32\smss.exe
    H:\WINDOWS\system32\winlogon.exe
    H:\WINDOWS\system32\services.exe
    H:\WINDOWS\system32\lsass.exe
    H:\WINDOWS\system32\svchost.exe
    H:\WINDOWS\System32\svchost.exe
    H:\WINDOWS\Explorer.EXE
    H:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
    H:\Programmi\Alwil Software\Avast4\ashServ.exe
    H:\WINDOWS\system32\rundll32.exe
    H:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    H:\WINDOWS\vsnpstd.exe
    H:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe
    H:\WINDOWS\SOUNDMAN.EXE
    H:\Programmi\Analog Devices\SoundMAX\SMTray.exe
    H:\WINDOWS\system32\ctfmon.exe
    H:\Programmi\Skype\Phone\Skype.exe
    H:\Programmi\File comuni\Nikon\Monitor\NkMonitor.exe
    C:\Programmi\OpenOffice.org 2.2\program\soffice.exe
    C:\Programmi\OpenOffice.org 2.2\program\soffice.BIN
    H:\WINDOWS\system32\brsvc01a.exe
    H:\WINDOWS\system32\spoolsv.exe
    H:\WINDOWS\system32\brss01a.exe
    H:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
    H:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
    H:\WINDOWS\system32\svchost.exe
    H:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
    H:\Programmi\Alwil Software\Avast4\ashWebSv.exe
    H:\Programmi\Skype\Plugin Manager\skypePM.exe
    H:\Programmi\Mozilla Firefox\firefox.exe
    H:\Programmi\TrendMicro\HiJackThis\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.libero.it/
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - H:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O3 - Toolbar: PHPNukeIT Toolbar - {2c965f3f-8efd-4bfc-a2c5-1672845fdbbf} - (no file)
    O3 - Toolbar: PagineGialle VisualToolbar - {382BE5E1-D321-42ED-8820-CBAF85280AFB} - H:\Programmi\PagineGialle Visual Toolbar\PagineGialle VisualToolbar\visual.dll
    O4 - HKLM\..\Run: [SSBkgdUpdate] "H:\Programmi\File comuni\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
    O4 - HKLM\..\Run: [IndexSearch] H:\Programmi\ScanSoft\PaperPort\IndexSearch.exe
    O4 - HKLM\..\Run: [AdslTaskBar] rundll32.exe stmctrl.dll,TaskBar
    O4 - HKLM\..\Run: [avast!] H:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [snpstd] H:\WINDOWS\vsnpstd.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] H:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Programmi\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "H:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Smapp] H:\Programmi\Analog Devices\SoundMAX\SMTray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Skype] "H:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: OpenOffice.org 2.2.lnk = C:\Programmi\OpenOffice.org 2.2\program\quickstart.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = H:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Nikon Monitor.lnk = H:\Programmi\File comuni\Nikon\Monitor\NkMonitor.exe
    O8 - Extra context menu item: E&sporta in Microsoft Excel - res://H:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Programmi\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Programmi\Messenger\msmsgs.exe
    O16 - DPF: {3553FF81-A19A-4486-873E-3105287E6975} (BackupPlayer Control) - file://I:\WebPlayer.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{09E1E1D5-CF77-40F3-843C-A51EE71DC20B}: NameServer = 85.37.17.39 85.38.28.71
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
    O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - H:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - H:\Programmi\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - H:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - H:\Programmi\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - H:\WINDOWS\system32\brsvc01a.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - H:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - H:\Programmi\Analog Devices\SoundMAX\SMAgent.exe

    --
    End of file - 5908 bytes
  • OFFLINE
    Arkantos01
    Post: 8.227
    Maestro
    Moderatore
    00 23/04/2010 20:30
    È il terzo topic che apri per il medesimo problema. Se lo accorpiamo a tutti gli altri (lasciando l'ombra del vecchio per farlo ritrovare) un motivo c'è, e non è quello di fartene aprire un altro.

    Ti invito a proseguire nel topic unico senza inserire i log di hijackthis se non richiesto e dopo aver eseguito quanto scritto nel tutorial (che ho appena aggiornato).
    Grazie.
    [Modificato da Arkantos01 23/04/2010 20:30]
    "Mi berrò un cicchetto con il diavolo, ma non passerò dalla sua parte" (Bono, U2)
    "Le opinioni, si sà, sono come i coglioni... Ognuno ha i suoi" (Giorgio Gaber)
    «Ogni tanto mi chiedo cosa stiamo aspettando...»
    Silenzio.
    «Che sia troppo tardi, madame.»
    (A. Baricco, Oceano Mare)
Sicurezza & Reti
Passa alla versione desktop

  • Anteprima