Chi mi da un'okkiata al LOG ???

trevi63 · 08-07-2005, 15:19

Qualche okkio in piu' non guasta.
Qualche anima pia mi puo' riferire sul mio log.??? gliene sarei grato

eccolo:

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\Soft4Ever\looknstop\looknstop.exe
C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe
C:\WINDOWS\System32\nvsvc32.exe
D:\Programmi\Java\j2re1.4.2_04\bin\jusched.exe
C:\WINDOWS\system32\wdfmgr.exe
D:\PROGRA~2\BILLPS~1\WINPAT~1\WinPatrol.exe
D:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe
C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\SpyBlocker Software\spyblocker.exe
D:\Programmi\RtCC v2.5\RtCC.exe
C:\Programmi\FirstCap\CapHk.exe
C:\Programmi\a2\a2guard.exe
C:\Program Files\InterMute\SpySubtract\SpySub.exe
C:\WINDOWS\system32\msiexec.exe
D:\Programmi\Executive Software\Diskeeper\DkService.exe
C:\Documents and Settings\Desktop\SPYWARE\hijackthis_199\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar2.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SBAutoUpdate] "C:\Programmi\SpywareBlaster\sbautoupdate.exe"
O4 - HKLM\..\Run: [Look 'n' Stop] "d:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [PLUtil] C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe
O4 - HKLM\..\Run: [KAVPersonal50] "d:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - HKLM\..\Run: [RegFirewall] d:\Programmi\Registry Firewall\RegFirewall.exe -A
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programmi\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [WinPatrol] "d:\PROGRA~2\BILLPS~1\WINPAT~1\WinPatrol.exe"
O4 - HKLM\..\Run: [Acronis*True*Image Monitor] "D:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SpyBlocker] C:\Programmi\SpyBlocker Software\spyblocker.exe
O4 - HKLM\..\Run: [RealTime Cookie Cleaner] D:\Programmi\RtCC v2.5\RtCC.exe
O4 - HKCU\..\Run: [FirstCap] C:\Programmi\FirstCap\CapHk.exe C:\Programmi\FirstCap
O4 - HKCU\..\Run: [a-squared] "C:\Programmi\a2\a2guard.exe"
O4 - Global Startup: SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\SpySub.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programmi\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programmi\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?link...67&clcid=0x409
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner) - http://download.zonelabs.com/bin/pro...tor/WebAAS.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) -
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - D:\Programmi\Executive Software\Diskeeper\DkService.exe
O23 - Service: kavsvc - Kaspersky Lab - d:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: mcupdmgr.exe - Unknown owner - (no file)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

trevi63 · 09-07-2005, 07:40

Strano che nessuno mi risponde.!

Ragazzi e ragazze dove siete?? mi sa che siete tutti al mare

vabbe.
ciao

YMen · 09-07-2005, 08:01

Queste sono inutili e fixabili:
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing)

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)

O23 - Service: mcupdmgr.exe - Unknown owner - (no file)

A meno che tu non sia sicuro che i servizi siano attivi visto che a volte hjt si sbaglia riguardo queste cose ma come mai hai postato il log hai problemi?

halduemilauno · 09-07-2005, 08:01

C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe

D:\Programmi\RtCC v2.5\RtCC.exe

C:\Programmi\FirstCap\CapHk.exe

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing)

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing)

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -

O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) -

O23 - Service: mcupdmgr.exe - Unknown owner - (no file)

ecco questi sono tra l'inutile e il pericoloso.

YMen · 09-07-2005, 08:09

Quote:

Originariamente inviato da halduemilauno

C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe

D:\Programmi\RtCC v2.5\RtCC.exe

C:\Programmi\FirstCap\CapHk.exe

ecco questi sono tra l'inutile e il pericoloso.

Il primo riguarda un utility per le usb il secondo un cleaner per i coockie e l'ultimo mi pare riguardi un prog per tenere le contabilità o qualcosa del genere scusate se sbaglio

trevi63 · 30-07-2005, 20:58

Anche se in ritardo: RINGRAZIO per le risposte.

Stavolta ero andato io in vacanza..... oggi sono tornato

saluti

nV 25 · 30-07-2005, 21:29

Quote:

Originariamente inviato da trevi63

Strano che nessuno mi risponde.!

Ragazzi e ragazze dove siete?? mi sa che siete tutti al mare

vabbe.
ciao

il sabato si fa bisboccia, caro Trevi, e al Pc ci si pensa gli altri gg della settimana...

vai che sei in una botte di ferro con i programmi che usi.

non dimenticare la discriminante fondamentale per un Pc veramente sicuro, cioè la testa, e per il resto goditi il sabato e la mogliettina

bie bie

PS: opssss: mi sono accorto ora che avevi postato quasi 20 giorni fa...io avevo capito oggi!
chiedo venia

juninho85 · 31-07-2005, 01:02

ammazza che mattone

08-07-2005, 15:19	#1
trevi63 Senior Member Iscritto dal: Feb 2005 Città: Europa meridionale Messaggi: 656	Chi mi da un'okkiata al LOG ??? Qualche okkio in piu' non guasta. Qualche anima pia mi puo' riferire sul mio log.??? gliene sarei grato eccolo: Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe C:\WINDOWS\system32\svchost.exe D:\Program Files\Soft4Ever\looknstop\looknstop.exe C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe C:\WINDOWS\System32\nvsvc32.exe D:\Programmi\Java\j2re1.4.2_04\bin\jusched.exe C:\WINDOWS\system32\wdfmgr.exe D:\PROGRA~2\BILLPS~1\WINPAT~1\WinPatrol.exe D:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe C:\WINDOWS\system32\rundll32.exe C:\Programmi\SpyBlocker Software\spyblocker.exe D:\Programmi\RtCC v2.5\RtCC.exe C:\Programmi\FirstCap\CapHk.exe C:\Programmi\a2\a2guard.exe C:\Program Files\InterMute\SpySubtract\SpySub.exe C:\WINDOWS\system32\msiexec.exe D:\Programmi\Executive Software\Diskeeper\DkService.exe C:\Documents and Settings\Desktop\SPYWARE\hijackthis_199\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing) O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar2.dll O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [SBAutoUpdate] "C:\Programmi\SpywareBlaster\sbautoupdate.exe" O4 - HKLM\..\Run: [Look 'n' Stop] "d:\Program Files\Soft4Ever\looknstop\looknstop.exe" -auto O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [PLUtil] C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe O4 - HKLM\..\Run: [KAVPersonal50] "d:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize O4 - HKLM\..\Run: [RegFirewall] d:\Programmi\Registry Firewall\RegFirewall.exe -A O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Programmi\Java\j2re1.4.2_04\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [WinPatrol] "d:\PROGRA~2\BILLPS~1\WINPAT~1\WinPatrol.exe" O4 - HKLM\..\Run: [AcronisTrueImage Monitor] "D:\Programmi\Acronis\TrueImage\TrueImageMonitor.exe" O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe" O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [SpyBlocker] C:\Programmi\SpyBlocker Software\spyblocker.exe O4 - HKLM\..\Run: [RealTime Cookie Cleaner] D:\Programmi\RtCC v2.5\RtCC.exe O4 - HKCU\..\Run: [FirstCap] C:\Programmi\FirstCap\CapHk.exe C:\Programmi\FirstCap O4 - HKCU\..\Run: [a-squared] "C:\Programmi\a2\a2guard.exe" O4 - Global Startup: SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\SpySub.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programmi\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Programmi\Java\jre1.5.0_02\bin\npjpi150_02.dll O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?link...67&clcid=0x409 O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner) - http://download.zonelabs.com/bin/pro...tor/WebAAS.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe O23 - Service: Diskeeper - Executive Software International, Inc. - D:\Programmi\Executive Software\Diskeeper\DkService.exe O23 - Service: kavsvc - Kaspersky Lab - d:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe O23 - Service: mcupdmgr.exe - Unknown owner - (no file) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

09-07-2005, 08:01	#3
YMen Senior Member Iscritto dal: May 2005 Città: Bari (ma vorrei vivere a Parigi...) Messaggi: 821	Queste sono inutili e fixabili: O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing) O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O23 - Service: mcupdmgr.exe - Unknown owner - (no file) A meno che tu non sia sicuro che i servizi siano attivi visto che a volte hjt si sbaglia riguardo queste cose ma come mai hai postato il log hai problemi? __________________ Io faccio amicizia solo con gente amichevole e simpatica se non lo siete clik qui ma visitate Il Mio Sito

09-07-2005, 08:01	#4
halduemilauno Senior Member Iscritto dal: Feb 2002 Città: Discovery Messaggi: 34710	C:\Programmi\Prolific\USB Flash Disk Utility\PLBkMon.exe D:\Programmi\RtCC v2.5\RtCC.exe C:\Programmi\FirstCap\CapHk.exe O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - D:\PROGRA~2\SPYWAR~1\tools\iesdsg.dll (file missing) O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~2\SPYWAR~1\tools\iesdpb.dll (file missing) O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - O23 - Service: mcupdmgr.exe - Unknown owner - (no file) ecco questi sono tra l'inutile e il pericoloso. __________________ Good afternoon, gentlemen, I'm a H.A.L. computer.

09-07-2005, 07:40	#2
trevi63 Senior Member Iscritto dal: Feb 2005 Città: Europa meridionale Messaggi: 656	Strano che nessuno mi risponde.! Ragazzi e ragazze dove siete?? mi sa che siete tutti al mare vabbe. ciao

30-07-2005, 20:58	#6
trevi63 Senior Member Iscritto dal: Feb 2005 Città: Europa meridionale Messaggi: 656	Anche se in ritardo: RINGRAZIO per le risposte. Stavolta ero andato io in vacanza..... oggi sono tornato saluti

31-07-2005, 01:02	#8
juninho85 Bannato Iscritto dal: Mar 2004 Città: Galapagos Attenzione:utente flautolente,tienilo a mente Messaggi: 28978	ammazza che mattone

Strumenti
Mostra una versione stampabile Invia questa pagina per email