View Full Version : problema con strana cartella: desktop???
red@lert
11-06-2005, 13:26
Ciao a tutti,
mi sono iscritto ieri sperando che qualcuno mi possa aiutare a risolvere un problema credo abbastanza strano. Ho installato Windows XP SP2 e cliccando su Risorse del Computer tra le altre mi appare una cartella senza alcun nome. Cliccandoci con il sinistro non si apre, si sente solamente il suono di quando questo dovrebbe accadere, niente di più. Quando invece ci clicco con il destro si apre un menù con le sole voci Apri, Esplora, Scan directory with eTrust Pest Patrol e Crea collegamento : Cliccando su Apri non succede nulla escludendo il suono suddetto, su Esplora invece si apre Desktop, Su Scan... mi viene restituito un log di Pest Patrol che non sono ancoras riuscito ad interpretare, infine su Crea collegamento "Impossibile creare il collegamento. Controllare se ci sia spazio sufficiente su disco"
:help:
Grazie mille a chi potesse esseremi d'aiuto
luismichela
11-06-2005, 20:05
probabilmante è uno spy scansiona il pc con HijackThis.exe incola il file txt sul forum poi vediamo cosa è
red@lert
12-06-2005, 02:50
Logfile of HijackThis v1.99.1
Scan saved at 3.49.48, on 12/06/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\cisvc.exe
C:\Programmi\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Programmi\Logitech\iTouch\iTouch.exe
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\WINDOWS\vsnpstd.exe
C:\Programmi\iTunes\iTunesHelper.exe
C:\Programmi\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Programmi\Musicmatch\Musicmatch Jukebox\mmtask.exe
C:\Programmi\Java\jre1.5.0_03\bin\jusched.exe
C:\Programmi\MSI\Live Update 3\LMonitor.exe
C:\Programmi\PestPatrol\PPControl.exe
C:\Programmi\PestPatrol\PPMemCheck.exe
C:\Programmi\PestPatrol\CookiePatrol.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\System32\snmp.exe
C:\Programmi\PeerGuardian2\pg2.exe
C:\Programmi\Skype\Phone\Skype.exe
C:\Programmi\Logitech\MouseWare\system\em_exec.exe
C:\Programmi\BHODemon 2\BHODemon.exe
C:\Programmi\Trillian\trillian.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\Kerio\Personal Firewall 4\kpf4gui.exe
C:\PROGRA~1\EUROBA~1\erobar.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\MOZILL~2\THUNDE~1.EXE
C:\Programmi\Winamp\Winamp.exe
C:\Programmi\Eseguibili\Sunbird-0.2-win32-it-IT\sunbird\sunbird.exe
C:\Programmi\FreePOPs\freepopsd.exe
C:\Programmi\MSI\Core Center\CoreCenter.exe
C:\Programmi\MSI\DigiCell\DigiCell.exe
C:\Programmi\MSI\i-Speeder\i-Speeder.exe
C:\WINDOWS\explorer.exe
C:\Programmi\eMule\emule.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Eseguibili\sicurezza&tweaking\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O1 - Hosts: 209.123.109.175 www.dslreports.com
O1 - Hosts: 62.101.69.45 105.net
O1 - Hosts: 62.101.69.45 www.105.net
O1 - Hosts: 216.73.87.20 ad.doubleclick.net
O1 - Hosts: 195.154.195.154 ad.it.doubleclick.net
O1 - Hosts: 209.67.78.3 view.atdmt.com
O1 - Hosts: 212.239.39.148 www.win.it
O1 - Hosts: 212.239.39.146 www.publiweb.com
O1 - Hosts: 212.239.39.152 web.publiweb.com
O1 - Hosts: 213.92.17.218 www.deejay.it
O1 - Hosts: 217.169.111.66 www.robertaweb.it
O1 - Hosts: 62.101.69.41 forum.105.net
O1 - Hosts: 217.64.200.6 www.spritz.it
O1 - Hosts: 193.70.192.4 spazioinwind.libero.it
O1 - Hosts: 83.103.76.156 www.cavazza.it
O1 - Hosts: 212.0.109.138 www.vnunet.it
O1 - Hosts: 207.234.146.80 forum.redangel.it
O1 - Hosts: 216.239.59.104 www.google.it
O1 - Hosts: 62.149.130.153 www.stealthalliance.it
O1 - Hosts: 62.208.122.57 www.usenext.de
O1 - Hosts: 82.179.162.34 crackspider.net
O1 - Hosts: 62.212.84.33 www.crackdb.com
O1 - Hosts: 128.242.106.66 www.kerio.com
O1 - Hosts: 212.90.198.180 www.speedtest.ch
O1 - Hosts: 212.90.199.13 support.cybernet.ch
O1 - Hosts: 195.225.168.172 www.wireless-italia.com
O1 - Hosts: 205.178.131.152 www.dynalink.co.nz
O1 - Hosts: 62.149.140.31 www.hwtweakers.net
O1 - Hosts: 81.223.254.39 www.suinternet.it
O1 - Hosts: 62.149.130.152 www.emule.it
O1 - Hosts: 62.149.233.117 www.beblogging.com
O1 - Hosts: 62.26.220.2 as1.falkag.de
O1 - Hosts: 195.32.69.32 www.dinoxpc.com
O1 - Hosts: 195.85.228.61 www.comprabanner.it
O1 - Hosts: 207.58.146.18 forum.webmasterpoint.net
O1 - Hosts: 212.66.228.40 www.nwi.it
O1 - Hosts: 209.197.112.220 www.macitynet.it
O1 - Hosts: 209.197.73.236 www.driverforum.com
O1 - Hosts: 213.115.211.8 www.ehpc2003.com
O1 - Hosts: 64.49.252.102 members.driverguide.com
O1 - Hosts: 217.194.35.45 communications.siemens.com
O1 - Hosts: 217.168.228.19 prm.seven.it
O1 - Hosts: 151.1.141.79 centralino-asterisk.htmx.it
O1 - Hosts: 151.1.141.79 www.htmx.it
O1 - Hosts: 195.47.199.26 voip.netcat.cc
O1 - Hosts: 195.47.199.26 www.netcat.cc
O1 - Hosts: 217.220.32.32 www.ilsoftware.it
O1 - Hosts: 195.113.150.6 c2.zedo.com
O1 - Hosts: 69.16.138.164 www.digium.com
O1 - Hosts: 216.92.198.27 www.masternewmedia.org
O1 - Hosts: 195.110.131.199 forum.tomshw.it
O1 - Hosts: 216.40.250.220 newsgroup.techeye.it
O1 - Hosts: 62.101.68.232 www.techeye.it
O1 - Hosts: 217.212.240.172 impit.tradedoubler.com
O1 - Hosts: 212.110.12.64 vetrine.bow.it
O1 - Hosts: 216.86.143.19 forums.netstumbler.com
O1 - Hosts: 66.240.166.108 www.netfamilies.net
O1 - Hosts: 151.1.141.52 www.sandrodiremigio.com
O1 - Hosts: 64.27.69.243 www.cynegi.net
O1 - Hosts: 64.246.1.174 linkto.org
O1 - Hosts: 195.210.91.57 www.wind.it
O1 - Hosts: 195.113.150.5 www.ericsson.com
O1 - Hosts: 194.177.64.83 lists.pluto.it
O1 - Hosts: 70.84.196.98 www.scoprilapolonia.it
O1 - Hosts: 62.149.230.152 www.pagineversilia.it
O1 - Hosts: 217.146.107.18 www.virus.org
O1 - Hosts: 63.251.83.148 www.governmentsecurity.org
O1 - Hosts: 205.180.86.14 media.fastclick.net
O1 - Hosts: 217.114.172.206 tech-mad.org
O1 - Hosts: 212.48.10.43 newsgroup.cellulari.virgilio.it
O1 - Hosts: 213.140.23.35 www.kuht.it
O1 - Hosts: 66.150.15.150 www.livejournal.com
O1 - Hosts: 69.46.24.108 www.usenetarchive.org
O1 - Hosts: 66.98.218.80 www6.paypopup.com
O1 - Hosts: 216.86.143.19 netstumbler.org
O1 - Hosts: 216.86.143.19 www.netstumbler.org
O1 - Hosts: 212.27.40.166 lugdunum2k.free.fr
O1 - Hosts: 66.240.161.67 it.metengine.com
O1 - Hosts: 62.207.132.200 www.informaticaprogetti.it
O1 - Hosts: 67.15.72.73 www.wmlscript.it
O1 - Hosts: 212.29.131.69 freetel.picus.it
O1 - Hosts: 212.29.131.64 mytel.ecs.net
O1 - Hosts: 195.113.150.7 www.trendmicro.com
O1 - Hosts: 62.149.130.123 www.romanelmondo.com
O1 - Hosts: 62.109.130.174 be2.it
O1 - Hosts: 212.78.202.252 mobile.lycos.it
O1 - Hosts: 212.78.203.163 secure.mobile.lycos.it
O1 - Hosts: 194.144.56.1 www.ogvodafone.is
O1 - Hosts: 194.9.95.6 www.loppis.se
O1 - Hosts: 217.212.240.172 impse.tradedoubler.com
O1 - Hosts: 62.149.227.193 www.ferrarabooking.it
O1 - Hosts: 151.39.82.13 www.chocophone.it
O1 - Hosts: 151.39.82.13 www.chocophone.com
O1 - Hosts: 195.130.241.73 fax.tiscali.it
O1 - Hosts: 64.151.87.121 tw.msi.com.tw
O1 - Hosts: 216.239.59.147 www.google.com
O1 - Hosts: 216.228.113.32 www.nvidia.com
O1 - Hosts: 66.102.11.99 pagead2.googlesyndication.com
O2 - BHO: (no name) - {02DCA195-602B-4B1F-83FF-381B7E804BDB} - C:\WINDOWS\system32\HDBHO.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\WINDOWS\Resources\Themes\DameK UltraBlue\Desktop Sidebar\sbhelp.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Programmi\Yahoo!\Common\yiesrvc.dll
O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Programmi\Yahoo!\Common\YIeTagBm.dll
O2 - BHO: TweakMASTER PRO Component - {7DAAC7DE-9EF0-4FF0-BFA5-AFF3E899054C} - C:\Programmi\TweakMASTER\TweakBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar1.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Programmi\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [TweakMASTER] C:\Programmi\TweakMASTER\TMTray.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Programmi\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MMTray] "C:\Programmi\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [mmtask] "C:\Programmi\Musicmatch\Musicmatch Jukebox\mmtask.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [LiveMonitor] C:\Programmi\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [PestPatrol Control Center] C:\Programmi\PestPatrol\PPControl.exe
O4 - HKLM\..\Run: [PPMemCheck] C:\Programmi\PestPatrol\PPMemCheck.exe
O4 - HKLM\..\Run: [CookiePatrol] C:\Programmi\PestPatrol\CookiePatrol.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [StarSkin] C:\PROGRAMMI\ROCKET DIVISION SOFTWARE\STARSKIN\STARSKIN.EXE -H
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [NBJ] "C:\Programmi\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [PeerGuardian] C:\Programmi\PeerGuardian2\pg2.exe
O4 - HKCU\..\Run: [Skype] "C:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Google Desktop Search] "C:\Programmi\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKCU\..\Run: [LarrysGmailIndexer] "C:\Programmi\Larry's GDS Plugins\Larry's Gmail Indexer\LarrysGmailIndexer.exe"
O4 - HKCU\..\Run: [FAST Defrag] C:\PROGRA~1\FASTDE~1\FAST2.EXE -tray
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Programmi\Yahoo!\Messenger\ypager.exe" -quiet
O4 - Startup: BHODemon 2.0.lnk = C:\Programmi\BHODemon 2\BHODemon.exe
O4 - Startup: Eurobarre.lnk = C:\Programmi\eurobarre\eb.exe
O4 - Startup: Konfabulator.lnk = C:\Programmi\Pixoria\Konfabulator\Konfabulator.exe
O4 - Startup: NetPhone.lnk = C:\Programmi\Eseguibili\NetPhone\netphone.hta
O4 - Startup: Trillian.lnk = C:\Programmi\Trillian\trillian.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Programmi\WinZip\WZQKPICK.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Cerca con Google - res://C:\Programmi\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Traduci parola in italiano - res://C:\Programmi\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Programmi\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Add to &LinkFox - res://C:\PROGRA~1\TWEAKM~1\TweakBHO.dll/IESCRIPT
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Programmi\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Link a ritroso - res://C:\Programmi\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Open Link Target in Firefox - file://C:\Documents and Settings\redalert\Dati applicazioni\Mozilla\Firefox\Profiles\g7enum9b.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewlink.html
O8 - Extra context menu item: Pagine simili - res://C:\Programmi\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Subscribe in Desktop Sidebar - res://C:\WINDOWS\Resources\Themes\DameK UltraBlue\Desktop Sidebar\sbhelp.dll/menuhandler.html
O8 - Extra context menu item: Versione cache della pagina - res://C:\Programmi\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: View This Page in Firefox - file://C:\Documents and Settings\redalert\Dati applicazioni\Mozilla\Firefox\Profiles\g7enum9b.default\extensions\{5D558C43-550F-4b12-84AB-0D8ABDA9F975}\firefoxviewpage.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Programmi\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Programmi\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Programmi\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINDOWS\Resources\Themes\DameK UltraBlue\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\WINDOWS\Resources\Themes\DameK UltraBlue\Desktop Sidebar\sbhelp.dll
O9 - Extra button: (no name) - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Programmi\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O14 - IERESET.INF: START_PAGE_URL=http://www.tiscali.it
O16 - DPF: ppctlcab - http://ppupdates.ca.com/downloads/scanner/ppctlcab.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {2FC9A21E-2069-4E47-8235-36318989DB13} (PPSDKActiveXScanner.MainScreen) - http://ppupdates.ca.com/downloads/scanner/axscanner.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Programmi\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_1_0_0_44.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1111329513266
O16 - DPF: {7F8B2500-3B5D-474C-B828-C766ECE3AB3C} (ATLmosquito1 Class) - http://fax.tiscali.it/netphone/ocx/mosquito.cab
O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.4.1_02) -
O16 - DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{82EFD941-ADEA-4883-AF21-7F6F146C7EF1}: NameServer = 213.205.32.70,213.205.36.70
O17 - HKLM\System\CCS\Services\Tcpip\..\{9618AD85-976C-4A6B-85FA-B5B36A613B75}: NameServer = 213.205.32.70,213.205.36.70
O23 - Service: Adobe LM Service - Adobe Systems - C:\Programmi\File comuni\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: FreePOPs - Unknown owner - C:\Programmi\FreePOPs\freepopsservice.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Programmi\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
CONFITEOR
13-06-2005, 05:49
Ciao a tutti,
mi sono iscritto ieri sperando che qualcuno mi possa aiutare a risolvere un problema credo abbastanza strano. Ho installato Windows XP SP2 e cliccando su Risorse del Computer tra le altre mi appare una cartella senza alcun nome. Cliccandoci con il sinistro non si apre, si sente solamente il suono di quando questo dovrebbe accadere, niente di più. Quando invece ci clicco con il destro si apre un menù con le sole voci Apri, Esplora, Scan directory with eTrust Pest Patrol e Crea collegamento : Cliccando su Apri non succede nulla escludendo il suono suddetto, su Esplora invece si apre Desktop, Su Scan... mi viene restituito un log di Pest Patrol che non sono ancoras riuscito ad interpretare, infine su Crea collegamento "Impossibile creare il collegamento. Controllare se ci sia spazio sufficiente su disco"
:help:
Grazie mille a chi potesse esseremi d'aiuto
Guarda anche le proprietà della cartella e in che data è stata creata,
dove è quella cartella?
prova a cancellarla,
se non riesci
apri il task manager e il prompt dei comandi
vai all'unità o cartella che contiene quella cartella
nel task manager termina explorer.exe
nel prompt scrivi: del nomecartella
nel taskmanager riavvia explorer.exe
red@lert
13-06-2005, 07:51
Guarda anche le proprietà della cartella e in che data è stata creata,
dove è quella cartella?
prova a cancellarla,
se non riesci
apri il task manager e il prompt dei comandi
vai all'unità o cartella che contiene quella cartella
nel task manager termina explorer.exe
nel prompt scrivi: del nomecartella
nel taskmanager riavvia explorer.exe
La cartella la vedo in Risorse del Computer. Come faccio a visualizzare le proprietà visto che il menù che appare con il tasto destro non comprende la voce Proprietà? Come avevo già scritto purtroppo questa cartella non ha nome. Visualizzando in dettagli si vede solo che è una cartella di sistema
:confused: .
CONFITEOR
13-06-2005, 11:36
La cartella la vedo in Risorse del Computer. Come faccio a visualizzare le proprietà visto che il menù che appare con il tasto destro non comprende la voce Proprietà? Come avevo già scritto purtroppo questa cartella non ha nome. Visualizzando in dettagli si vede solo che è una cartella di sistema
:confused: .
bè, prova a selezionarla e usare IL TASTO proprietà nella toolbar...
e mi pare strano che xp permetta di creare una cartella di sistema a un altro programma.
red@lert
13-06-2005, 14:00
bè, prova a selezionarla e usare IL TASTO proprietà nella toolbar...
e mi pare strano che xp permetta di creare una cartella di sistema a un altro programma.
:rolleyes: Veramente non vedo il tasto proprietà nella toolbar...
CONFITEOR
13-06-2005, 15:41
click destro sulla barra strumenti di windows explorer, personalizza, inserisci la toolbar..
red@lert
17-06-2005, 12:34
Fatto ma senza nessun risultato purtroppo :mc:
ooooooooooooooo
17-06-2005, 12:45
prova a passare un antispyware...prova xoftspy o adaware se personal
Devi fixare tutte queste linee con Hijackthis:
O1 - Hosts: 209.123.109.175 www.dslreports.com
O1 - Hosts: 62.101.69.45 105.net
O1 - Hosts: 62.101.69.45 www.105.net
O1 - Hosts: 216.73.87.20 ad.doubleclick.net
O1 - Hosts: 195.154.195.154 ad.it.doubleclick.net
O1 - Hosts: 209.67.78.3 view.atdmt.com
O1 - Hosts: 212.239.39.148 www.win.it
O1 - Hosts: 212.239.39.146 www.publiweb.com
O1 - Hosts: 212.239.39.152 web.publiweb.com
O1 - Hosts: 213.92.17.218 www.deejay.it
O1 - Hosts: 217.169.111.66 www.robertaweb.it
O1 - Hosts: 62.101.69.41 forum.105.net
O1 - Hosts: 217.64.200.6 www.spritz.it
O1 - Hosts: 193.70.192.4 spazioinwind.libero.it
O1 - Hosts: 83.103.76.156 www.cavazza.it
O1 - Hosts: 212.0.109.138 www.vnunet.it
O1 - Hosts: 207.234.146.80 forum.redangel.it
O1 - Hosts: 216.239.59.104 www.google.it
O1 - Hosts: 62.149.130.153 www.stealthalliance.it
O1 - Hosts: 62.208.122.57 www.usenext.de
O1 - Hosts: 82.179.162.34 crackspider.net
O1 - Hosts: 62.212.84.33 www.crackdb.com
O1 - Hosts: 128.242.106.66 www.kerio.com
O1 - Hosts: 212.90.198.180 www.speedtest.ch
O1 - Hosts: 212.90.199.13 support.cybernet.ch
O1 - Hosts: 195.225.168.172 www.wireless-italia.com
O1 - Hosts: 205.178.131.152 www.dynalink.co.nz
O1 - Hosts: 62.149.140.31 www.hwtweakers.net
O1 - Hosts: 81.223.254.39 www.suinternet.it
O1 - Hosts: 62.149.130.152 www.emule.it
O1 - Hosts: 62.149.233.117 www.beblogging.com
O1 - Hosts: 62.26.220.2 as1.falkag.de
O1 - Hosts: 195.32.69.32 www.dinoxpc.com
O1 - Hosts: 195.85.228.61 www.comprabanner.it
O1 - Hosts: 207.58.146.18 forum.webmasterpoint.net
O1 - Hosts: 212.66.228.40 www.nwi.it
O1 - Hosts: 209.197.112.220 www.macitynet.it
O1 - Hosts: 209.197.73.236 www.driverforum.com
O1 - Hosts: 213.115.211.8 www.ehpc2003.com
O1 - Hosts: 64.49.252.102 members.driverguide.com
O1 - Hosts: 217.194.35.45 communications.siemens.com
O1 - Hosts: 217.168.228.19 prm.seven.it
O1 - Hosts: 151.1.141.79 centralino-asterisk.htmx.it
O1 - Hosts: 151.1.141.79 www.htmx.it
O1 - Hosts: 195.47.199.26 voip.netcat.cc
O1 - Hosts: 195.47.199.26 www.netcat.cc
O1 - Hosts: 217.220.32.32 www.ilsoftware.it
O1 - Hosts: 195.113.150.6 c2.zedo.com
O1 - Hosts: 69.16.138.164 www.digium.com
O1 - Hosts: 216.92.198.27 www.masternewmedia.org
O1 - Hosts: 195.110.131.199 forum.tomshw.it
O1 - Hosts: 216.40.250.220 newsgroup.techeye.it
O1 - Hosts: 62.101.68.232 www.techeye.it
O1 - Hosts: 217.212.240.172 impit.tradedoubler.com
O1 - Hosts: 212.110.12.64 vetrine.bow.it
O1 - Hosts: 216.86.143.19 forums.netstumbler.com
O1 - Hosts: 66.240.166.108 www.netfamilies.net
O1 - Hosts: 151.1.141.52 www.sandrodiremigio.com
O1 - Hosts: 64.27.69.243 www.cynegi.net
O1 - Hosts: 64.246.1.174 linkto.org
O1 - Hosts: 195.210.91.57 www.wind.it
O1 - Hosts: 195.113.150.5 www.ericsson.com
O1 - Hosts: 194.177.64.83 lists.pluto.it
O1 - Hosts: 70.84.196.98 www.scoprilapolonia.it
O1 - Hosts: 62.149.230.152 www.pagineversilia.it
O1 - Hosts: 217.146.107.18 www.virus.org
O1 - Hosts: 63.251.83.148 www.governmentsecurity.org
O1 - Hosts: 205.180.86.14 media.fastclick.net
O1 - Hosts: 217.114.172.206 tech-mad.org
O1 - Hosts: 212.48.10.43 newsgroup.cellulari.virgilio.it
O1 - Hosts: 213.140.23.35 www.kuht.it
O1 - Hosts: 66.150.15.150 www.livejournal.com
O1 - Hosts: 69.46.24.108 www.usenetarchive.org
O1 - Hosts: 66.98.218.80 www6.paypopup.com
O1 - Hosts: 216.86.143.19 netstumbler.org
O1 - Hosts: 216.86.143.19 www.netstumbler.org
O1 - Hosts: 212.27.40.166 lugdunum2k.free.fr
O1 - Hosts: 66.240.161.67 it.metengine.com
O1 - Hosts: 62.207.132.200 www.informaticaprogetti.it
O1 - Hosts: 67.15.72.73 www.wmlscript.it
O1 - Hosts: 212.29.131.69 freetel.picus.it
O1 - Hosts: 212.29.131.64 mytel.ecs.net
O1 - Hosts: 195.113.150.7 www.trendmicro.com
O1 - Hosts: 62.149.130.123 www.romanelmondo.com
O1 - Hosts: 62.109.130.174 be2.it
O1 - Hosts: 212.78.202.252 mobile.lycos.it
O1 - Hosts: 212.78.203.163 secure.mobile.lycos.it
O1 - Hosts: 194.144.56.1 www.ogvodafone.is
O1 - Hosts: 194.9.95.6 www.loppis.se
O1 - Hosts: 217.212.240.172 impse.tradedoubler.com
O1 - Hosts: 62.149.227.193 www.ferrarabooking.it
O1 - Hosts: 151.39.82.13 www.chocophone.it
O1 - Hosts: 151.39.82.13 www.chocophone.com
O1 - Hosts: 195.130.241.73 fax.tiscali.it
O1 - Hosts: 64.151.87.121 tw.msi.com.tw
O1 - Hosts: 216.239.59.147 www.google.com
O1 - Hosts: 216.228.113.32 www.nvidia.com
O1 - Hosts: 66.102.11.99 pagead2.googlesyndication.com
O16 - DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} -
red@lert
17-06-2005, 14:53
prova a passare un antispyware...prova xoftspy o adaware se personal
Fatto anche con Pest Patrol e SpybotS&D ma niente ancora
red@lert
17-06-2005, 14:55
Devi fixare tutte queste linee con Hijackthis:
O1 - Hosts: 209.123.109.175 www.dslreports.com
O1 - Hosts: 62.101.69.45 105.net
O1 - Hosts: 62.101.69.45 www.105.net
O1 - Hosts: 216.73.87.20 ad.doubleclick.net
O1 - Hosts: 195.154.195.154 ad.it.doubleclick.net
O1 - Hosts: 209.67.78.3 view.atdmt.com
O1 - Hosts: 212.239.39.148 www.win.it
O1 - Hosts: 212.239.39.146 www.publiweb.com
O1 - Hosts: 212.239.39.152 web.publiweb.com
O1 - Hosts: 213.92.17.218 www.deejay.it
O1 - Hosts: 217.169.111.66 www.robertaweb.it
O1 - Hosts: 62.101.69.41 forum.105.net
O1 - Hosts: 217.64.200.6 www.spritz.it
O1 - Hosts: 193.70.192.4 spazioinwind.libero.it
O1 - Hosts: 83.103.76.156 www.cavazza.it
O1 - Hosts: 212.0.109.138 www.vnunet.it
O1 - Hosts: 207.234.146.80 forum.redangel.it
O1 - Hosts: 216.239.59.104 www.google.it
O1 - Hosts: 62.149.130.153 www.stealthalliance.it
O1 - Hosts: 62.208.122.57 www.usenext.de
O1 - Hosts: 82.179.162.34 crackspider.net
O1 - Hosts: 62.212.84.33 www.crackdb.com
O1 - Hosts: 128.242.106.66 www.kerio.com
O1 - Hosts: 212.90.198.180 www.speedtest.ch
O1 - Hosts: 212.90.199.13 support.cybernet.ch
O1 - Hosts: 195.225.168.172 www.wireless-italia.com
O1 - Hosts: 205.178.131.152 www.dynalink.co.nz
O1 - Hosts: 62.149.140.31 www.hwtweakers.net
O1 - Hosts: 81.223.254.39 www.suinternet.it
O1 - Hosts: 62.149.130.152 www.emule.it
O1 - Hosts: 62.149.233.117 www.beblogging.com
O1 - Hosts: 62.26.220.2 as1.falkag.de
O1 - Hosts: 195.32.69.32 www.dinoxpc.com
O1 - Hosts: 195.85.228.61 www.comprabanner.it
O1 - Hosts: 207.58.146.18 forum.webmasterpoint.net
O1 - Hosts: 212.66.228.40 www.nwi.it
O1 - Hosts: 209.197.112.220 www.macitynet.it
O1 - Hosts: 209.197.73.236 www.driverforum.com
O1 - Hosts: 213.115.211.8 www.ehpc2003.com
O1 - Hosts: 64.49.252.102 members.driverguide.com
O1 - Hosts: 217.194.35.45 communications.siemens.com
O1 - Hosts: 217.168.228.19 prm.seven.it
O1 - Hosts: 151.1.141.79 centralino-asterisk.htmx.it
O1 - Hosts: 151.1.141.79 www.htmx.it
O1 - Hosts: 195.47.199.26 voip.netcat.cc
O1 - Hosts: 195.47.199.26 www.netcat.cc
O1 - Hosts: 217.220.32.32 www.ilsoftware.it
O1 - Hosts: 195.113.150.6 c2.zedo.com
O1 - Hosts: 69.16.138.164 www.digium.com
O1 - Hosts: 216.92.198.27 www.masternewmedia.org
O1 - Hosts: 195.110.131.199 forum.tomshw.it
O1 - Hosts: 216.40.250.220 newsgroup.techeye.it
O1 - Hosts: 62.101.68.232 www.techeye.it
O1 - Hosts: 217.212.240.172 impit.tradedoubler.com
O1 - Hosts: 212.110.12.64 vetrine.bow.it
O1 - Hosts: 216.86.143.19 forums.netstumbler.com
O1 - Hosts: 66.240.166.108 www.netfamilies.net
O1 - Hosts: 151.1.141.52 www.sandrodiremigio.com
O1 - Hosts: 64.27.69.243 www.cynegi.net
O1 - Hosts: 64.246.1.174 linkto.org
O1 - Hosts: 195.210.91.57 www.wind.it
O1 - Hosts: 195.113.150.5 www.ericsson.com
O1 - Hosts: 194.177.64.83 lists.pluto.it
O1 - Hosts: 70.84.196.98 www.scoprilapolonia.it
O1 - Hosts: 62.149.230.152 www.pagineversilia.it
O1 - Hosts: 217.146.107.18 www.virus.org
O1 - Hosts: 63.251.83.148 www.governmentsecurity.org
O1 - Hosts: 205.180.86.14 media.fastclick.net
O1 - Hosts: 217.114.172.206 tech-mad.org
O1 - Hosts: 212.48.10.43 newsgroup.cellulari.virgilio.it
O1 - Hosts: 213.140.23.35 www.kuht.it
O1 - Hosts: 66.150.15.150 www.livejournal.com
O1 - Hosts: 69.46.24.108 www.usenetarchive.org
O1 - Hosts: 66.98.218.80 www6.paypopup.com
O1 - Hosts: 216.86.143.19 netstumbler.org
O1 - Hosts: 216.86.143.19 www.netstumbler.org
O1 - Hosts: 212.27.40.166 lugdunum2k.free.fr
O1 - Hosts: 66.240.161.67 it.metengine.com
O1 - Hosts: 62.207.132.200 www.informaticaprogetti.it
O1 - Hosts: 67.15.72.73 www.wmlscript.it
O1 - Hosts: 212.29.131.69 freetel.picus.it
O1 - Hosts: 212.29.131.64 mytel.ecs.net
O1 - Hosts: 195.113.150.7 www.trendmicro.com
O1 - Hosts: 62.149.130.123 www.romanelmondo.com
O1 - Hosts: 62.109.130.174 be2.it
O1 - Hosts: 212.78.202.252 mobile.lycos.it
O1 - Hosts: 212.78.203.163 secure.mobile.lycos.it
O1 - Hosts: 194.144.56.1 www.ogvodafone.is
O1 - Hosts: 194.9.95.6 www.loppis.se
O1 - Hosts: 217.212.240.172 impse.tradedoubler.com
O1 - Hosts: 62.149.227.193 www.ferrarabooking.it
O1 - Hosts: 151.39.82.13 www.chocophone.it
O1 - Hosts: 151.39.82.13 www.chocophone.com
O1 - Hosts: 195.130.241.73 fax.tiscali.it
O1 - Hosts: 64.151.87.121 tw.msi.com.tw
O1 - Hosts: 216.239.59.147 www.google.com
O1 - Hosts: 216.228.113.32 www.nvidia.com
O1 - Hosts: 66.102.11.99 pagead2.googlesyndication.com
O16 - DPF: {CAFEEFAC-0014-0001-0007-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} -
Ho rimossso tutto ma questo a cosa serve?Non per la cartella credo visto che c'è ancora :muro:
Non sarà per rimuovere la cartella, però erano delle schifezze che avevi sul pc.
Per rimuovere la cartella usa killbox con l'opzione "Delete on reboot"
red@lert
17-06-2005, 16:42
Grazie comunque per il fix con HijackThis, ho apprezzato l'aiuto ma ero preoccupato più per la cartella.
Ho provato con Pocket Killbox ma nell' albero delle cartelle non si vede il nome della directory in questione. Nel path, dopo averla selezionata il percorso che appare è:
::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{F97C0CE3-7F52-11D5-928B-0000E23842C1}. :rolleyes:
Possso cancellarla tranquillamente?
Ho provato con killbox ma nell' albero delle cartelle non si vede il nome della directory in questione. Nel path, dopo averla selezionata il percorso che appare è:
::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{F97C0CE3-7F52-11D5-928B-0000E23842C1}. :rolleyes:
Possso cancellarla tranquillamente?
Allora, i due CLSID dovrebbero essere:
{20D04FE0-3AEA-1069-A2D8-08002B30309D}: il desktop
{F97C0CE3-7F52-11D5-928B-0000E23842C1} : dovrebbe riferirsi a: winShadow Neighborhood (che considerato un RAT)
Io la cancellerei.
Siti controlalti:
http://bb.omnicomtech.com/omnicombb/viewtopic.php?t=77&sid=c5f6e3772941653faddcddef9521d1e3
http://www3.ca.com/securityadvisor/pest/pest.aspx?id=453060036
ciao
red@lert
18-06-2005, 10:06
Purtroppo nemmeno killbox aveva risolto. La cartella appariva ancora nell'albero :muro: Ma per fortuna ho sistemato tutto seguendo
http://bb.omnicomtech.com/omnicombb/viewtopic.php?t=77&sid=c5f6e3772941653faddcddef9521d1e3 :D :p ;)
Grazie mille a tutti :cincin:
vBulletin® v3.6.4, Copyright ©2000-2025, Jelsoft Enterprises Ltd.