PDA

View Full Version : Non parte task manager né regedit qualche virus?

gionnico
20-09-2005, 18:19
Se è un virus questo è sc**o!
Ho formattato 10 minuti fa, mi sono connesso ad internet (SP1 e nessuna patch) ed ha dato un errore su lsass.exe (sasser?) e diceva di riavviare entro un minuto.
Io sono andato su cmd ed ho fatto: shutdown -a
e l'ho fermato.
Però non partiva più nulla.
Ho riavviato qualche volta, ma nulla.
Ah: se uso explorer è lento cliccando OK, fino a bloccarsi del tutto dopo 15 secondi...

Ah, ho una valanga di connessioni in apertura:

TIME_WAIT
TCP casa:1671 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1678 host8-215.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1685 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1698 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1703 82-39-127-1.cable.ubr04.newy.blueyonder.co.uk:ep
map TIME_WAIT
TCP casa:1750 lns-vlq-8-tou-82-251-230-146.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:1782 host169-13.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:1784 82.137.166.204:epmap TIME_WAIT
TCP casa:1790 host21-132.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1790 82.137.166.204:epmap TIME_WAIT
TCP casa:1793 host21-132.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1794 host111-3.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:1796 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1801 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1804 82-45-48-108.cable.ubr04.wolv.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:1805 host111-3.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1811 host21-132.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1826 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1829 host111-3.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1901 82-113-55-213.addr.air-net.cz:epmap ESTABLISHED

TCP casa:1923 host27-139.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1930 host27-139.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1932 host60-189.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1963 host8-0.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:1967 host8-0.pool8259.interbusiness.it:epmap TIME_WA
IT
TCP casa:1967 host60-189.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1990 host8-0.pool8259.interbusiness.it:epmap TIME_WA
IT
TCP casa:2013 host87-117.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2025 host87-117.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2107 4va54-3-82-234-146-195.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2113 4va54-3-82-234-146-195.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2145 host205-201.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2191 66.35.253.32:http ESTABLISHED
TCP casa:2195 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2196 host72-144.pool8257.interbusiness.it:epmap TIME
_WAIT
TCP casa:2198 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2224 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2226 66.35.253.32:http ESTABLISHED
TCP casa:2236 host125-77.pool8251.interbusiness.it:epmap TIME
_WAIT
TCP casa:2256 host116-63.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2261 host116-63.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2272 host116-63.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2280 host20-141.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2284 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2292 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2297 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2305 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2315 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2321 vn658.pool.pro-lan.net:epmap TIME_WAIT
TCP casa:2344 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2346 host83-74.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:2370 host83-74.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:2402 host151-148.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2403 host125-77.pool8251.interbusiness.it:epmap TIME
_WAIT
TCP casa:2406 host151-148.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:2447 218.38.18.26:8080 ESTABLISHED
TCP casa:2452 host28-163.pool8254.interbusiness.it:epmap TIME
_WAIT
TCP casa:2503 boi59-3-82-233-183-171.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2508 host244-17.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2515 boi59-3-82-233-183-171.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2562 82.99.203.106:epmap TIME_WAIT
TCP casa:2614 host243-163.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2617 host243-163.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:2626 82.99.203.106:epmap TIME_WAIT
TCP casa:2645 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p TIME_WAIT
TCP casa:2656 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p TIME_WAIT
TCP casa:2676 82.248.40.184:epmap TIME_WAIT
TCP casa:2682 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p ESTABLISHED
TCP casa:2686 82.248.40.184:epmap TIME_WAIT
TCP casa:2722 82.248.40.184:epmap TIME_WAIT
TCP casa:2731 host76-227.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2733 host106-62.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2735 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2744 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2747 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2767 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2776 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2780 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2792 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2793 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2798 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2801 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2815 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2837 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2866 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2869 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2884 host75-52.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:2894 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2930 host248-179.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2937 host248-179.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3037 lns-vlq-10-rou-82-65-153-121.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3077 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3080 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3097 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3099 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3120 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3136 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3150 host253-113.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:3158 host253-113.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3199 host59-177.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3209 host59-177.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3223 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3232 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3252 lns-bzn-10-nan-82-251-53-140.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3255 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3256 lns-bzn-10-nan-82-251-53-140.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3268 mon75-4-82-224-28-55.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:3276 mon75-4-82-224-28-55.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:3311 82.248.174.122:epmap TIME_WAIT
TCP casa:3324 82.248.174.122:epmap TIME_WAIT
TCP casa:3340 fr141-1-82-237-217-98.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3352 82.248.54.50:epmap TIME_WAIT
TCP casa:3362 82.248.54.50:epmap TIME_WAIT
TCP casa:3372 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3380 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3398 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3412 host154-104.pool8254.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3423 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3425 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3484 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3508 host154-104.pool8254.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3534 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3541 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3560 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3580 host42-174.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:3584 82.118.195.13:epmap SYN_SENT
TCP casa:3585 82.65.237.38:epmap SYN_SENT
TCP casa:3586 cs181013175.pp.htv.fi:epmap SYN_SENT
TCP casa:3587 dsl82-163-59-204.as15444.net:epmap SYN_SENT
TCP casa:3588 cpc2-harg2-3-0-cust99.leed.cable.ntl.com:epmap
SYN_SENT
TCP casa:3590 host122-159.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3591 host254-169.pool82106.interbusiness.it:epmap SY
N_SENT
TCP casa:3592 82.114.221.196:epmap SYN_SENT
TCP casa:3593 host33-137.pool8259.interbusiness.it:microsoft-d
s SYN_SENT
TCP casa:3594 82.102.209.148:epmap SYN_SENT
TCP casa:3595 cust-226-174.dsl.versateladsl.be:epmap SYN_SENT

TCP casa:3596 bzq-82-80-159-12.red.bezeqint.net:epmap SYN_SEN
T
TCP casa:3598 82.142.137.48:epmap SYN_SENT
TCP casa:3599 pla13-2-82-237-114-161.fbx.proxad.net:epmap SYN
_SENT
TCP casa:3601 host215-241.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3602 host108-151.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3603 spc2-wear3-5-1-cust215.seac.broadband.ntl.com:ep
map SYN_SENT
TCP casa:3604 AGrenoble-152-1-31-42.w82-122.abo.wanadoo.fr:epm
ap SYN_SENT
TCP casa:3605 host211-112.pool8260.interbusiness.it:epmap SYN
_SENT
TCP casa:3606 cc528816-a.hgv1.dr.home.nl:epmap SYN_SENT
TCP casa:3607 104.35.artcoms.ru:epmap SYN_SENT
TCP casa:3608 host152-78.pool8259.interbusiness.it:microsoft-d
s SYN_SENT
TCP casa:3609 lns-th2-10-rei-82-249-68-90.adsl.proxad.net:epma
p SYN_SENT
TCP casa:3610 a82-93-35-51.adsl.xs4all.nl:epmap SYN_SENT
TCP casa:3611 82-34-155-147.cable.ubr01.maid.blueyonder.co.uk:
epmap SYN_SENT
TCP casa:3612 host190-36.pool82185.interbusiness.it:epmap SYN
_SENT
TCP casa:3613 c529c9892.cable.wanadoo.nl:epmap SYN_SENT
TCP casa:3614 tss37-2-82-239-105-117.fbx.proxad.net:epmap SYN
_SENT
TCP casa:3615 82-166-190-174.barak.net.il:epmap SYN_SENT
TCP casa:3616 82-33-58-52.cable.ubr06.stav.blueyonder.co.uk:ep
map SYN_SENT
TCP casa:3617 82.147.105.216:epmap SYN_SENT
TCP casa:3618 muedsl-82-207-224-165.citykom.de:epmap SYN_SENT

TCP casa:3619 host46-22.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:3619 host180-9.pool82191.interbusiness.it:epmap SYN_
SENT
TCP casa:3620 ns1.team-krause.de:epmap SYN_SENT
TCP casa:3621 82.79.176.27:epmap SYN_SENT
TCP casa:3622 host247-8.pool8259.interbusiness.it:microsoft-ds
SYN_SENT
TCP casa:3623 82.95.156.182:epmap SYN_SENT
TCP casa:3625 ip-229.net-82-216-79.rev.numericable.fr:epmap S
YN_SENT
^C
D:\Documents and Settings\Nicola>
lognomo33
20-09-2005, 18:30
Se è un virus questo è sc**o!
Ho formattato 10 minuti fa, mi sono connesso ad internet (SP1 e nessuna patch) ed ha dato un errore su lsass.exe (sasser?) e diceva di riavviare entro un minuto.
Io sono andato su cmd ed ho fatto: shutdown -a
e l'ho fermato.
Però non partiva più nulla.
Ho riavviato qualche volta, ma nulla.
Ah: se uso explorer è lento cliccando OK, fino a bloccarsi del tutto dopo 15 secondi...

Ah, ho una valanga di connessioni in apertura:

TIME_WAIT
TCP casa:1671 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1678 host8-215.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1685 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1698 host91-67.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:1703 82-39-127-1.cable.ubr04.newy.blueyonder.co.uk:ep
map TIME_WAIT
TCP casa:1750 lns-vlq-8-tou-82-251-230-146.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:1782 host169-13.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:1784 82.137.166.204:epmap TIME_WAIT
TCP casa:1790 host21-132.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1790 82.137.166.204:epmap TIME_WAIT
TCP casa:1793 host21-132.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1794 host111-3.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:1796 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1801 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1804 82-45-48-108.cable.ubr04.wolv.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:1805 host111-3.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1811 host21-132.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1826 spr69-2-82-241-30-64.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:1829 host111-3.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:1901 82-113-55-213.addr.air-net.cz:epmap ESTABLISHED

TCP casa:1923 host27-139.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1930 host27-139.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1932 host60-189.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:1963 host8-0.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:1967 host8-0.pool8259.interbusiness.it:epmap TIME_WA
IT
TCP casa:1967 host60-189.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:1990 host8-0.pool8259.interbusiness.it:epmap TIME_WA
IT
TCP casa:2013 host87-117.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2025 host87-117.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2107 4va54-3-82-234-146-195.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2113 4va54-3-82-234-146-195.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2145 host205-201.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2191 66.35.253.32:http ESTABLISHED
TCP casa:2195 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2196 host72-144.pool8257.interbusiness.it:epmap TIME
_WAIT
TCP casa:2198 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2224 lns-vlq-24-lyo-82-255-139-122.adsl.proxad.net:ep
map TIME_WAIT
TCP casa:2226 66.35.253.32:http ESTABLISHED
TCP casa:2236 host125-77.pool8251.interbusiness.it:epmap TIME
_WAIT
TCP casa:2256 host116-63.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2261 host116-63.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2272 host116-63.pool8259.interbusiness.it:epmap TIME
_WAIT
TCP casa:2280 host20-141.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2284 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2292 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2297 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2305 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2315 rob92-5-82-227-227-206.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2321 vn658.pool.pro-lan.net:epmap TIME_WAIT
TCP casa:2344 dsl-082-083-181-144.arcor-ip.net:epmap TIME_WAI
T
TCP casa:2346 host83-74.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:2370 host83-74.pool8259.interbusiness.it:epmap TIME_
WAIT
TCP casa:2402 host151-148.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2403 host125-77.pool8251.interbusiness.it:epmap TIME
_WAIT
TCP casa:2406 host151-148.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:2447 218.38.18.26:8080 ESTABLISHED
TCP casa:2452 host28-163.pool8254.interbusiness.it:epmap TIME
_WAIT
TCP casa:2503 boi59-3-82-233-183-171.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2508 host244-17.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2515 boi59-3-82-233-183-171.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2562 82.99.203.106:epmap TIME_WAIT
TCP casa:2614 host243-163.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2617 host243-163.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:2626 82.99.203.106:epmap TIME_WAIT
TCP casa:2645 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p TIME_WAIT
TCP casa:2656 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p TIME_WAIT
TCP casa:2676 82.248.40.184:epmap TIME_WAIT
TCP casa:2682 lns-vlq-6-str-82-249-175-90.adsl.proxad.net:epma
p ESTABLISHED
TCP casa:2686 82.248.40.184:epmap TIME_WAIT
TCP casa:2722 82.248.40.184:epmap TIME_WAIT
TCP casa:2731 host76-227.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2733 host106-62.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:2735 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2744 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2747 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2767 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2776 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2780 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2792 cxr69-8-82-240-20-11.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:2793 82-41-216-99.cable.ubr13.edin.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2798 host59-86.pool8256.interbusiness.it:epmap TIME_
WAIT
TCP casa:2801 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2815 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2837 sfo69-1-82-235-153-202.fbx.proxad.net:epmap TIM
E_WAIT
TCP casa:2866 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2869 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2884 host75-52.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:2894 82-47-20-115.cable.ubr03.sand.blueyonder.co.uk:e
pmap TIME_WAIT
TCP casa:2930 host248-179.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:2937 host248-179.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3037 lns-vlq-10-rou-82-65-153-121.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3077 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3080 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3097 ip-238.net-82-216-190.caen.rev.numericable.fr:ep
map TIME_WAIT
TCP casa:3099 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3120 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3136 82-168-73-222-bbxl.xdsl.tiscali.nl:epmap TIME_W
AIT
TCP casa:3150 host253-113.pool8259.interbusiness.it:microsoft-
ds TIME_WAIT
TCP casa:3158 host253-113.pool8259.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3199 host59-177.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3209 host59-177.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3223 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3232 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3252 lns-bzn-10-nan-82-251-53-140.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3255 82-43-187-233.cable.ubr07.newm.blueyonder.co.uk:
epmap TIME_WAIT
TCP casa:3256 lns-bzn-10-nan-82-251-53-140.adsl.proxad.net:epm
ap TIME_WAIT
TCP casa:3268 mon75-4-82-224-28-55.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:3276 mon75-4-82-224-28-55.fbx.proxad.net:epmap TIME_
WAIT
TCP casa:3311 82.248.174.122:epmap TIME_WAIT
TCP casa:3324 82.248.174.122:epmap TIME_WAIT
TCP casa:3340 fr141-1-82-237-217-98.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3352 82.248.54.50:epmap TIME_WAIT
TCP casa:3362 82.248.54.50:epmap TIME_WAIT
TCP casa:3372 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3380 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3398 vol75-5-82-226-125-83.fbx.proxad.net:epmap TIME
_WAIT
TCP casa:3412 host154-104.pool8254.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3423 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3425 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3484 host212-73.pool8256.interbusiness.it:epmap TIME
_WAIT
TCP casa:3508 host154-104.pool8254.interbusiness.it:epmap TIM
E_WAIT
TCP casa:3534 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3541 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3560 host72-21.pool8253.interbusiness.it:epmap TIME_
WAIT
TCP casa:3580 host42-174.pool8259.interbusiness.it:microsoft-d
s TIME_WAIT
TCP casa:3584 82.118.195.13:epmap SYN_SENT
TCP casa:3585 82.65.237.38:epmap SYN_SENT
TCP casa:3586 cs181013175.pp.htv.fi:epmap SYN_SENT
TCP casa:3587 dsl82-163-59-204.as15444.net:epmap SYN_SENT
TCP casa:3588 cpc2-harg2-3-0-cust99.leed.cable.ntl.com:epmap
SYN_SENT
TCP casa:3590 host122-159.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3591 host254-169.pool82106.interbusiness.it:epmap SY
N_SENT
TCP casa:3592 82.114.221.196:epmap SYN_SENT
TCP casa:3593 host33-137.pool8259.interbusiness.it:microsoft-d
s SYN_SENT
TCP casa:3594 82.102.209.148:epmap SYN_SENT
TCP casa:3595 cust-226-174.dsl.versateladsl.be:epmap SYN_SENT

TCP casa:3596 bzq-82-80-159-12.red.bezeqint.net:epmap SYN_SEN
T
TCP casa:3598 82.142.137.48:epmap SYN_SENT
TCP casa:3599 pla13-2-82-237-114-161.fbx.proxad.net:epmap SYN
_SENT
TCP casa:3601 host215-241.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3602 host108-151.pool8259.interbusiness.it:microsoft-
ds SYN_SENT
TCP casa:3603 spc2-wear3-5-1-cust215.seac.broadband.ntl.com:ep
map SYN_SENT
TCP casa:3604 AGrenoble-152-1-31-42.w82-122.abo.wanadoo.fr:epm
ap SYN_SENT
TCP casa:3605 host211-112.pool8260.interbusiness.it:epmap SYN
_SENT
TCP casa:3606 cc528816-a.hgv1.dr.home.nl:epmap SYN_SENT
TCP casa:3607 104.35.artcoms.ru:epmap SYN_SENT
TCP casa:3608 host152-78.pool8259.interbusiness.it:microsoft-d
s SYN_SENT
TCP casa:3609 lns-th2-10-rei-82-249-68-90.adsl.proxad.net:epma
p SYN_SENT
TCP casa:3610 a82-93-35-51.adsl.xs4all.nl:epmap SYN_SENT
TCP casa:3611 82-34-155-147.cable.ubr01.maid.blueyonder.co.uk:
epmap SYN_SENT
TCP casa:3612 host190-36.pool82185.interbusiness.it:epmap SYN
_SENT
TCP casa:3613 c529c9892.cable.wanadoo.nl:epmap SYN_SENT
TCP casa:3614 tss37-2-82-239-105-117.fbx.proxad.net:epmap SYN
_SENT
TCP casa:3615 82-166-190-174.barak.net.il:epmap SYN_SENT
TCP casa:3616 82-33-58-52.cable.ubr06.stav.blueyonder.co.uk:ep
map SYN_SENT
TCP casa:3617 82.147.105.216:epmap SYN_SENT
TCP casa:3618 muedsl-82-207-224-165.citykom.de:epmap SYN_SENT

TCP casa:3619 host46-22.pool8259.interbusiness.it:microsoft-ds
TIME_WAIT
TCP casa:3619 host180-9.pool82191.interbusiness.it:epmap SYN_
SENT
TCP casa:3620 ns1.team-krause.de:epmap SYN_SENT
TCP casa:3621 82.79.176.27:epmap SYN_SENT
TCP casa:3622 host247-8.pool8259.interbusiness.it:microsoft-ds
SYN_SENT
TCP casa:3623 82.95.156.182:epmap SYN_SENT
TCP casa:3625 ip-229.net-82-216-79.rev.numericable.fr:epmap S
YN_SENT
^C
D:\Documents and Settings\Nicola>


Scarica il sp2 e risolvi tutto.io la patch per questo prob ce l'avevo pure..la trovi anche sul sito microsoft..
gionnico
20-09-2005, 18:39
Vorrei trovare la patch come si chiama? Ma allora è un virus?
lognomo33
20-09-2005, 18:43
Vorrei trovare la patch come si chiama? Ma allora è un virus?
e sasser.praticamente è gia presente in win xp..
eccola qui!
http://www.microsoft.com/downloads/details.aspx?FamilyID=3549ea9e-da3f-43b9-a4f1-af243b6168f3&displaylang=it
gionnico
20-09-2005, 19:02
Secondo me è un trojan.

Se installo l'SP2 estrae tutto, poi chiude l'installer, lo stesso per la patch che mi hai indicato... :cry:
BravoGT83
20-09-2005, 19:11
allora per fare l"update di windows prima devi far partire wwdc.exe lo trovi in rete che serve per chiudere un paio di porte.

poi dopo devi mettere tutte le patch che trovi insieme al sp2.

poi dopo pensiamo a risolvere il problema
gionnico
20-09-2005, 20:25
Grazie di tutto! ;)
Visto che avevo una partizione con quasi tutti i documenti, ho formattato.
Quello s****zo mi impediva anche di creare nuove cartelle, e non mi faceva copiare i documenti nell'altro disco...
Ora sto navigando con il firewall di xp sp1 semplice. :stordita:
Speriamo che il tempo di scaricarmi Sygate non becco un altro worm o simili oppure veramente :ncomment:
YMen
21-09-2005, 15:03
metti sp2 ;)