Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Controllo log HiJackThis

Controllo log HiJackThis Opzioni
Topic Precedente · Topic Sucessivo
gfh725
Inviato: Tuesday, June 01, 2010 2:12:28 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
Un registro Parte Il vorrei chiedere Il Motivo ANCHE PER IL Pasquale Riesco tranquillamente ad utilizzare HijackThis in Modalità provvisoria mentre invece in normalizzati all'avvio CONDIZIONI C'E semper Che la Schermata l'indica l'impossibilità di accedere al file hosts.
Grazie

Logfile di Trend Micro HijackThis v2.0.4
Scansione salvato 20:42:05, sulla 31/05/2010
Piattaforma: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot Mode: modalità provvisoria

processi in esecuzione:
C: \ Windows \ Explorer.EXE
C: \ Windows \ system32 \ ctfmon.exe
C: \ Programmi \ Lavasoft \ AAWTray.exe \ Ad-Aware
C: \ Programmi \ Malwarebytes 'Anti-Malware mbam.exe \
C: \ Programmi \ File Glary Utilities \ Integrator.exe \
C: \ Programmi \ Trend Micro \ HiJackThis \ HiJackThis.exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.alice.it/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - \ Software HKLM \ Search \ Microsoft \ Internet Explorer, SearchAssistant =
R0 - \ Software HKLM \ Search \ Microsoft \ Internet Explorer, CustomizeSearch =
R0 - \ HKCU Software \ Microsoft \ Internet Explorer Main, Local Page =
R0 - \ Software HKCU \ Toolbar \ Microsoft \ Internet Explorer, LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Programmi \ Yahoo! \ Companion \ installa \ cpn0 \ yt.dll
O2 - BHO: & Yahoo! Toolbar Helper - (02478D38-C3F9-4efb-9B51-7695ECA05670) - C: \ Programmi \ Yahoo! \ Companion \ installa \ cpn0 \ yt.dll
O2 - BHO: HP Print Enhancer - (0347C33E-8.762-4.905-BF09-768834316C61) - C: \ Program Files \ HP \ Digital Imaging \ Smart Web Printing hpswp_printenhancer.dll \
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4.283-A596-FA578C2EBDC3) - C: \ Programmi \ File comuni \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: Spybot-S & D di protezione di IE - (53707962-6F74-2D53-2644-206D7942484F) - C: \ progra ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
O2 - BHO: Symantec NCO BHO - (602ADB0E-4AFF-4217-8AA1-95DAC4DFA408) - C: \ Programmi \ Norton Internet Security \ Engine \ 17.7.0.12 \ coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - (6D53EC84-6AAE-4.787-aeee-F4628F01010C) - C: \ Programmi \ Norton Internet Security \ Engine \ 17.7.0.12 \ IPSBHO.DLL
O2 - BHO: Helper ricerca - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Programmi \ Microsoft \ Enhancement Pack Search \ Helper SEPsearchhelperie.dll Search \
O2 - BHO: Guida per l'acces un Windows Live ID - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Programmi \ File comuni \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8.333-CF10577473F7) - C: \ Programmi \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4.638-B6FA-CE66B5AD205D) - C: \ Programmi \ Google \ GoogleToolbarNotifier \ 5.5.5126.1836 \ swg.dll
O2 - BHO: Bing Bar BHO - (d2ce3e00-f94a-988e-4.740-03dc2f38c34f) - C: \ Program Files \ MSN Toolbar \ Platform \ 6.0.2156.0 \ npwinext.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: (no name) - (E15A8DC0-8.516-42A1-81EA-DC94EC1ACF10) - (no file)
O2 - BHO: singleInstance Class - (FDAD4DA1-61A2-9C17-4FD8-86F7AC245081) - C: \ Programmi \ Yahoo! \ Companion \ installa \ cpn0 \ YTSingleInstance.dll
O2 - BHO: HP Smart Class BHO - (FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856) - C: \ Program Files \ HP \ Digital Imaging \ Smart Web Printing hpswp_BHO.dll \
O3 - Toolbar: Norton Toolbar - (7FEBEFE3-6B19-98D2-4.349-FFB09D4B49CA) - C: \ Programmi \ Norton Internet Security \ Engine \ 17.7.0.12 \ coIEPlg.dll
O3 - Toolbar: (no name) - (21FA44EF-376D-4D53-9B0F-8A89D3229068) - (no file)
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Programmi \ Yahoo! \ Companion \ installa \ cpn0 \ yt.dll
O3 - Toolbar: @ C: \ Program Files \ MSN Toolbar \ Platform \ 6.0.2156.0 \ npwinext.dll, -100 - (8dcb7100-df86-4.384-8.842-8fa844297b3f) - C: \ Program Files \ MSN Toolbar \ Platform \ 6.0.2156.0 npwinext.dll \
O3 - Toolbar: Google Toolbar - (2318C2B1-4.965-11D4-9B18-009027A5CD4F) - C: \ Programmi \ Google \ Google Toolbar \ GoogleToolbar_32.dll
O4 - HKLM \ .. Run \: [] RtHDVCpl C: \ Programmi \ Realtek \ Audio \ HDA \ RtHDVCpl.exe
O4 - HKLM \ .. \ Run: [MSSE] "c: \ Program Files \ Microsoft Security Essentials msseces.exe \"-hide-runkey
O4 - HKLM \ .. Run \: [] UnlockerAssistant "C: \ Programmi \ Unlocker \ UnlockerAssistant.exe"
O4 - HKLM \ .. \ Run: [Malwarebytes 'Anti-Malware] "C: \ Programmi \ Malwarebytes' Anti-Malware mbamgui.exe \" / starttray
O4 - HKCU \ .. Run \: [] SWG "C: \ Programmi \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe"
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar Sidebar.exe \ / autorun
O4 - HKUS \ S-1-5-19 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / autorun (User 'SERVIZIO LOCALE')
O4 - HKUS \ S-1-5-\ .. \ RunOnce 19: [mctadmin] C: \ Windows \ System32 mctadmin.exe \ (User 'SERVIZIO LOCALE')
O4 - HKUS \ S-1-5-20 \ .. \ Run: [Sidebar]% ProgramFiles% \ Windows Sidebar \ Sidebar.exe / autorun (User 'SERVIZIO DI RETE')
O4 - HKUS \ S-1-5-\ .. \ RunOnce 20: [mctadmin] C: \ Windows \ System32 mctadmin.exe \ (User 'SERVIZIO DI RETE')
O8 - elemento di contesto extra menu: E & sporta in Microsoft Excel - res: / / C: \ PROGRA ~ 1 \ MIF5BA ~ 1 \ Office12 \ EXCEL.EXE/3000
O8 - elemento di contesto extra menu: Google Sidewiki ... - Res: / / C: \ Programmi \ Google \ Google Toolbar Component \ GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html \
O9 - Pulsante extra: blog Inserisci - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci & Blog di Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra pulsante: Invia uno OneNote - (2670000A-7.350-8.081-4f3c-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MIF5BA ~ 1 \ Office12 \ ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I & nvia uno OneNote - (2670000A-7.350-8.081-4f3c-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MIF5BA ~ 1 \ Office12 \ ONBttnIE.dll
O9 - Pulsante extra: Skype add-on per Internet Explorer - (898EA8C8-E7FF-479b-8935-AEC46303B9E5) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer skypeieplugin.dll \
O9 - Extra 'Tools' menuitem: Skype add-on per Internet Explorer - (898EA8C8-E7FF-479b-8935-AEC46303B9E5) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer skypeieplugin.dll \
O9 - Pulsante extra: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MIF5BA ~ 1 \ Office12 \ REFIEBAR.DLL
O9 - Pulsante extra: Visualizza o nasconde HP Smart Web Printing - (DDE87865-83C5-48c4-8357-2F5B1AA84522) - C: \ Program Files \ HP \ Digital Imaging \ Smart Web Printing hpswp_BHO.dll \
O9 - Pulsante extra: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O9 - Pulsante extra: LightShot - (000D21C0-9D53-4E88-923D-B38D3A1B631E) - C: \ Users \ Gianfranco \ AppData \ Local \ Skillbrains \ lightshot-ie \ 1.3.0.20 \ LightShot.dll (HKCU)
O10 - Unknown file in Winsock LSP: c: \ programmi \ File comuni \ Microsoft Shared \ windows live wlidnsp.dll \
O10 - Unknown file in Winsock LSP: c: \ programmi \ File comuni \ Microsoft Shared \ windows live wlidnsp.dll \
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (assistenza per l'installazione) - C: \ Programmi \ Yahoo! \ Common \ Yinsthelper.dll
O16 - DPF: (E2883E8F-472F-4FB0-9.522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer skypeieplugin.dll \
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9.458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Skype \ SKYPE4 ~ 1.dll
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C: \ Programmi \ Google \ Update \ GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Programmi \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
Servizio O23 -: Lavasoft Ad-Aware Service - Lavasoft - C: \ Programmi \ Lavasoft \ AAWService.exe \ Ad-Aware
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C: \ Programmi \ File comuni \ LogiShrd \ Bluetooth lbtserv.exe \
Servizio O23 -: Monitor di processo (LVPrcSrv) - Logitech Inc. - C: \ Programmi \ File comuni \ LogiShrd \ LVMVFM \ LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C: \ Programmi \ Malwarebytes 'Anti-Malware mbamservice.exe \
Servizio O23 -: McciCMService - Motive Communications, Inc. - C: \ Programmi \ File comuni \ Motive \ McciCMService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C: \ Programmi \ Norton Internet Security \ Engine \ 17.7.0.12 \ ccSvcHst.exe
O23 - Service: NMSAccess - proprietario Unknown - C: \ Program Files \ CDBurnerXP \ NMSAccessU.exe
Servizio O23 -: SBSD Centro Servizi di sicurezza (SBSDWSCService) - Safer Networking Ltd. - C: \ Programmi \ Spybot - Search & Destroy \ SDWinSec.exe
Servizio O23 -: WD Drive Manager SmartWare (WDDMService) - WDC - C: \ Programmi \ Western \ Digital di WD SmartWare \ Manager di WD WDDMService.exe Drive \
Servizio O23 -: WD SmartWare servizio in background (WDSmartWareBackgroundService) - Memeo - C: \ Programmi \ Western \ Digital WD SmartWare \ Parlor WDSmartWareBackgroundService.exe Front \
Servizio O23 -: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C: \ Programmi \ Yahoo \! \ Softwareupdate \ YahooAUService.exe
Torna in alto
 
Sponsor
Inviato: Tuesday, June 01, 2010 2:12:28 PM

 
Torna in alto
 
pidue
Inviato: Tuesday, June 01, 2010 2:32:01 PM

Rank: AiutAmico

Iscritto dal : 6/2/2005
Posts: 7,332
gfh725 ha scritto:
Un registro Parte Il vorrei chiedere Il Motivo ANCHE PER IL Pasquale Riesco tranquillamente ad utilizzare HijackThis in Modalità provvisoria mentre invece in normalizzati all'avvio CONDIZIONI C'E semper Che la Schermata l'indica l'impossibilità di accedere al file hosts.
Grazie


che lingua è? Giuro che non ho capito niente.

gfh725 ha scritto:
Boot Mode: modalità provvisoria

la scansione non va fatta in modalità provvisoria.
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 2:35:02 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
ma infatti non capisco perchè io scrivo un a cosa e poi ne leggo un'altra! puoi aiutarmi anche in questo grazie
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 2:35:39 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
anche le vostre risposte sono in questa lingua
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 2:37:25 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
ho risolto era il traduttore automatico di google che interferiva. ti mando il log di nuovo grazie
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 2:38:39 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:42:05, on 31/05/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Safe mode

Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\ctfmon.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Glary Utilities\Integrator.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.alice.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\IPSBHO.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: (no name) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - (no file)
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\coIEPlg.dll
O3 - Toolbar: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVIZIO DI RETE')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
O9 - Extra button: Inserisci blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: Inserisci &blog in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: Visualizza o nasconde HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: LightShot - {000D21C0-9D53-4E88-923D-B38D3A1B631E} - C:\Users\Gianfranco\AppData\Local\Skillbrains\lightshot-ie\1.3.0.20\LightShot.dll (HKCU)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\ccSvcHst.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 9824 bytes
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 2:57:39 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
c'è qualcuno?
Torna in alto
 
gfh725
Inviato: Tuesday, June 01, 2010 3:14:47 PM
Rank: AiutAmico

Iscritto dal : 5/31/2010
Posts: 30
perchè a me compare BOOT MODE : safe mode
Torna in alto
 
fdaccc
Inviato: Wednesday, June 02, 2010 12:20:21 PM

Rank: AiutAmico

Iscritto dal : 12/12/2009
Posts: 2,114
aspetta r16, avrà avuto un contrattempo o si è dimenticato di te.
Torna in alto
 
Utenti presenti in questo topic
Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Controllo log HiJackThis


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.