Dexaki
-
Posts
6 -
Joined
-
Last visited
Content Type
Profiles
Forums
Events
Posts posted by Dexaki
-
-
Innanzitutto ti ringrazio vivamente per tutto l'impegno che ci stai mettendo per aiutarmi a risolvere questo mio grandissimo problema
In secondo luogo però, ti dico che purtroppo sono riuscito a scaricare solo gmer perché non trova connessione ai server riguardo gli altri link
-
Scusate, qualcuno mi potrebbe aiutare?
-
Puoi anche non credermi, ma ho appena finito di scaricarli entrambi. a-squared Free mi dà come errore che non mi posso collegare al server per gli aggiornamenti, mentre l'altro mi dice che non trova il MSVBVM60.DLL e consiglia una nuova installazione (ne ho già fatte 3, il problema non dipende più da questo penso)
-
Si, più che parecchi erano decisamente troppi xD
Purtroppo però ancora non mi fa accedere a Microsoft e agli altri siti di Antivirus dicendo di non trovare il sito ufficiale della microsoft. Tra l'altro con questo problema non posso nemmeno aggiornare gli antvirus come avast e avira, che di conseguenza mi risultano inutili. Vi prego, aiutatemi ç_ç
-
Scusate, sono nuovo e vorrei chiedervi aiuto perché anche io ho dei problemi per entrare nel sito della Microsoft ed anche in quelli di alcuni antivirus. Detto questo, seguendo le indicazioni che avete dato ad altri utenti, ho scaricato Combofix e l'ho utilizzato. Dopo di che mi è uscito un file in blocco note chiamato log. Lo copio sotto perché non riesco a metterlo come allegato
ComboFix 10-05-11.05 - admin 12/05/2010 13.42.21.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.39.1040.18.511.139 [GMT 2:00]
Eseguito da: c:documents and settingsadminDesktopComboFix.exe
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {00000000-0000-0114-4CEF-120045000043}
AV: Avira AntiVir PersonalEdition *On-access scanning enabled* (Updated) {0012EF24-F0B8-0012-18EE-917C3807927C}
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
c:docume~1adminIMPOST~1Tempinstall_flash_player.exe
c:documents and settingsadminampccqhd.exe
c:documents and settingsadminusqlhfy.exe
c:documents and settingsadmincqhchfqa.exe
c:documents and settingsadmindwzfrxka.exe
c:documents and settingsadmineccsrcbd.exe
c:documents and settingsadminewhkjhor.exe
c:documents and settingsadminfuvxbtsm.exe
c:documents and settingsadminhpugghsh.exe
c:documents and settingsadminifqbngxw.exe
c:documents and settingsadminImpostazioni localiDati applicazioniaoemgoy.dat
c:documents and settingsadminImpostazioni localiDati applicazioniaoemgoy_nav.dat
c:documents and settingsadminImpostazioni localiDati applicazioniaoemgoy_navps.dat
c:documents and settingsadminImpostazioni localiDati applicazionioowhgo.dat
c:documents and settingsadminImpostazioni localiDati applicazionioowhgo.exe
c:documents and settingsadminImpostazioni localiDati applicazionioowhgo_nav.dat
c:documents and settingsadminImpostazioni localiDati applicazionioowhgo_navps.dat
c:documents and settingsadminivbuluaf.exe
c:documents and settingsadminiymtamsk.exe
c:documents and settingsadminjkdctsmv.exe
c:documents and settingsadminjolqebsq.exe
c:documents and settingsadminjrhizbqh.exe
c:documents and settingsadminjtggmaiv.exe
c:documents and settingsadminjtritjkj.exe
c:documents and settingsadminjzdnyqzt.exe
c:documents and settingsadminkcefqxdi.exe
c:documents and settingsadminksrghqnr.exe
c:documents and settingsadminkyrgjhxe.exe
c:documents and settingsadminMenu AvvioProgrammiVideos.url
c:documents and settingsadminmihkoikf.exe
c:documents and settingsadminmnesgrld.exe
c:documents and settingsadminmvwgjjvt.exe
c:documents and settingsadmin lmobqdb.exe
c:documents and settingsadmin yokifli.exe
c:documents and settingsadminokkgenmd.exe
c:documents and settingsadminoulsnyws.exe
c:documents and settingsadminPreferitiVideos.url
c:documents and settingsadminqsujdjwx.exe
c:documents and settingsadmin chdxmbx.exe
c:documents and settingsadmin cyaxeew.exe
c:documents and settingsadmin uuysemk.exe
c:documents and settingsadmin cbhzllq.exe
c:documents and settingsadmin sirobye.exe
c:documents and settingsadminujzhvoea.exe
c:documents and settingsadminushniqnp.exe
c:documents and settingsadminutnhkvtm.exe
c:documents and settingsadminverfozfl.exe
c:documents and settingsadminvfwlzazl.exe
c:documents and settingsadminvghxatnw.exe
c:documents and settingsadminwcsnqdlp.exe
c:documents and settingsadminwljdxtnn.exe
c:documents and settingsadminyjjehyfw.exe
c:documents and settingsadminyssvizyh.exe
c:programmiGamesBarobERontb.dll
c:windowsetb
c:windowsetbetb.ini
c:windowsetbpokapoka79.exe
c:windowsetbxmladult.tbr
c:windowsetbxmldefault.tbr
c:windowsetbxmlsearch.mnu
c:windowssystem326x0VQuvY.exe.a_a
c:windowssystem32Thumbs.db
----- File Replicators -----
c:documents and settingsadminampccqhd.exe
c:documents and settingsadminusqlhfy.exe
c:documents and settingsadmincqhchfqa.exe
c:documents and settingsadmindwzfrxka.exe
c:documents and settingsadmineccsrcbd.exe
c:documents and settingsadminfuvxbtsm.exe
c:documents and settingsadminhpugghsh.exe
c:documents and settingsadminifqbngxw.exe
c:documents and settingsadminivbuluaf.exe
c:documents and settingsadminiymtamsk.exe
c:documents and settingsadminjolqebsq.exe
c:documents and settingsadminjrhizbqh.exe
c:documents and settingsadminjtggmaiv.exe
c:documents and settingsadminjtritjkj.exe
c:documents and settingsadminjzdnyqzt.exe
c:documents and settingsadminksrghqnr.exe
c:documents and settingsadminkyrgjhxe.exe
c:documents and settingsadminmihkoikf.exe
c:documents and settingsadminmnesgrld.exe
c:documents and settingsadminmvwgjjvt.exe
c:documents and settingsadmin yokifli.exe
c:documents and settingsadminokkgenmd.exe
c:documents and settingsadminoulsnyws.exe
c:documents and settingsadminqsujdjwx.exe
c:documents and settingsadmin chdxmbx.exe
c:documents and settingsadmin cyaxeew.exe
c:documents and settingsadmin uuysemk.exe
c:documents and settingsadmin cbhzllq.exe
c:documents and settingsadmin sirobye.exe
c:documents and settingsadminujzhvoea.exe
c:documents and settingsadminushniqnp.exe
c:documents and settingsadminutnhkvtm.exe
c:documents and settingsadminverfozfl.exe
c:documents and settingsadminvfwlzazl.exe
c:documents and settingsadminvghxatnw.exe
c:documents and settingsadminwcsnqdlp.exe
c:documents and settingsadminwljdxtnn.exe
c:documents and settingsadminyjjehyfw.exe
.
.
((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------Legacy_NETSERVICE
-------Service_NetService
((((((((((((((((((((((((( Files Creati Da 2010-04-12 al 2010-05-12 )))))))))))))))))))))))))))))))))))
.
2010-05-12 11:22 . 2010-05-12 11:17 397824 ----a-w- c:windowssystem32CF5333.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-12 11:52 . 2009-02-08 11:54 -------- d-----w- c:programmiGamesBar
2010-05-03 16:23 . 2009-01-07 14:36 -------- d-----w- c:programmicFosSpeed
2010-03-28 07:28 . 2004-08-30 20:00 76550 ----a-w- c:windowssystem32perfc010.dat
2010-03-28 07:28 . 2004-08-30 20:00 453758 ----a-w- c:windowssystem32perfh010.dat
2007-12-14 21:56 . 2007-12-14 21:54 15180000 ----a-w- c:programmigimp-2.4.2-i686-setup.exe
2007-10-13 22:48 . 2007-10-13 22:48 706008 ----a-w- c:programmiinstaller-12118-34-Windows-Live-Messenger-8-1-0178-Italian.exe
2007-10-13 16:47 . 2007-10-13 16:47 2456104 ----a-w- c:programmieMule_AdunanzA_3-14_Installer.exe
2007-10-13 16:43 . 2007-10-13 16:43 5809080 ----a-w- c:programmiFirefox Setup 2.0.0.7.exe
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:programmimozilla firefoxpluginslibdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:programmimozilla firefoxpluginsssldivx.dll
2007-04-16 15:54 . 2004-08-30 20:00 157789 --sha-r- c:windowssystem32 hlpt.dll
2009-03-05 17:16 . 2009-03-05 17:16 92160 --sha-r- c:windowssystem32xjzximgn.dll
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerURLSearchHooks]
"{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}"= "c:programmiPHPNukeIT bPHP1.dll" [2010-01-01 2166296]
[HKEY_CLASSES_ROOTclsid{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]
[HKEY_LOCAL_MACHINE~Browser Helper Objects{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]
2010-01-01 23:49 2166296 ----a-w- c:programmiPHPNukeIT bPHP1.dll
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar]
"{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}"= "c:programmiPHPNukeIT bPHP1.dll" [2010-01-01 2166296]
[HKEY_CLASSES_ROOTclsid{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]
[HKEY_CURRENT_USERSoftwareMicrosoftInternet ExplorerToolbarWebbrowser]
"{2C965F3F-8EFD-4BFC-A2C5-1672845FDBBF}"= "c:programmiPHPNukeIT bPHP1.dll" [2010-01-01 2166296]
[HKEY_CLASSES_ROOTclsid{2c965f3f-8efd-4bfc-a2c5-1672845fdbbf}]
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRun]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:programmiFile comuniAheadlibNMBgMonitor.exe" [2005-11-24 94208]
"MsnMsgr"="c:programmiWindows LiveMessengerMsnMsgr.Exe" [2008-12-02 3882312]
"Google Update"="c:documents and settingsadminImpostazioni localiDati applicazioniGoogleUpdateGoogleUpdate.exe" [2008-09-03 133104]
"Veoh"="c:programmiVeoh NetworksVeohVeohClient.exe" [2008-09-26 3660848]
"VeohPlugin"="c:programmiVeoh NetworksVeohWebPlayerveohwebplayer.exe" [2009-05-19 3561720]
"ctfmon.exe"="c:windowssystem32ctfmon.exe" [2004-08-30 15360]
[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionRunOnce]
"Shockwave Updater"="c:windowssystem32AdobeShockwave 11SwHelper_1151601.exe" [2009-07-21 468408]
[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun]
"SkyTel"="SkyTel.EXE" [2007-05-07 1826816]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-10 16342528]
"NeroFilterCheck"="c:windowssystem32NeroCheck.exe" [2001-07-09 155648]
"DAEMON Tools"="c:programmiDAEMON Toolsdaemon.exe" [2005-11-08 128920]
"Hard Disk Sentinel"="c:programmiHard Disk SentinelHDSentinel.exe" [2008-04-02 3254272]
"SunJavaUpdateSched"="c:programmiJavajre6injusched.exe" [2008-12-03 136600]
"Adobe Reader Speed Launcher"="c:programmiAdobeReader 8.0ReaderReader_sl.exe" [2008-10-15 39792]
[HKEY_USERS.DEFAULTSoftwareMicrosoftWindowsCurrentVersionRun]
"CTFMON.EXE"="c:windowssystem32CTFMON.EXE" [2004-08-30 15360]
c:documents and settingsAll UsersMenu AvvioProgrammiEsecuzione automatica
Microsoft Office.lnk - c:programmiMicrosoft OfficeOffice10OSA.EXE [2001-2-13 83360]
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileAuthorizedApplicationsList]
"%windir%\system32\sessmgr.exe"=
"c:\Programmi\Messenger\msmsgs.exe"=
"c:\Programmi\Metin2_Italiano\metin2.bin"=
"c:\Programmi\Bonjour\mDNSResponder.exe"=
"c:\Programmi\Veoh Networks\Veoh\VeohClient.exe"=
"c:\Programmi\Windows Live\Messenger\msnmsgr.exe"=
"c:\Programmi\eMule AdunanzA\eMule_AdnzA.exe"=
"c:\Programmi\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"=
[HKLM~servicessharedaccessparametersfirewallpolicystandardprofileGloballyOpenPortsList]
"7578:TCP"= 7578:TCP:grylgpu
R0 sptd;sptd;c:windowssystem32driverssptd.sys [18/12/2007 0.15.04 685816]
R2 IBService;IBService;c:programmiInvisible BrowsingserversIBService.exe [11/12/2008 0.41.30 45056]
S2 uwqrfxfe;Helper Shell;c:windowssystem32svchost.exe -k netsvcs [30/08/2004 22.00.00 14336]
HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionSvchost - NetSvcs
uwqrfxfe
.
Contenuto della cartella 'Scheduled Tasks'
2010-05-12 c:windowsTasksGoogleUpdateTaskUserS-1-5-21-1292428093-261478967-682003330-1003Core.job
- c:documents and settingsadminImpostazioni localiDati applicazioniGoogleUpdateGoogleUpdate.exe [2008-09-03 01:02]
2010-05-12 c:windowsTasksGoogleUpdateTaskUserS-1-5-21-1292428093-261478967-682003330-1003UA.job
- c:documents and settingsadminImpostazioni localiDati applicazioniGoogleUpdateGoogleUpdate.exe [2008-09-03 01:02]
2009-08-26 c:windowsTasksNSSstub.job
- c:windowssystem32AdobeShockwave 11 ssstub.exe [2009-08-26 11:28]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://start.gamenext.com
IE: Add to AMV Converter... - c:programmiMP3 Player Utilities 4.09AMVConvertergrab.html
IE: E&sporta in Microsoft Excel - c:progra~1MICROS~2Office10EXCEL.EXE/3000
IE: MediaManager tool grab multimedia file - c:programmiMP3 Player Utilities 4.09MediaManagergrab.html
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
URLSearchHooks-{F4F10C1D-87C7-404A-B4B3-000000000000} - c:progra~1DAPSBSearch.dll
HKCU-Run-DAEMON Tools Pro Agent - c:programmiDAEMON Tools ProDTProAgent.exe
HKCU-Run-Netlog Music Tool - c:programmiNetlog Music ToolNetlogMusicTool.exe
HKCU-Run-oowhgo - c:documents and settingsadminimpostazioni localidati applicazionioowhgo.exe
HKLM-Run-NWEReboot - (no file)
HKLM-Run-Client Server Runtime Process - c:windowssystem32smmss.exe
HKLM-Run-I downloaded pirated Software from P2P and now I post my Hijack log whining - c:windowssystem32Fable The Lost Chapters crack.exe
HKLM-Run-System service63 - c:windowsetbpokapoka79.exe
HKLM-Run-InvisibleBrowsing - (no file)
Notify-WgaLogon - (no file)
AddRemove-oowhgo - c:documents and settingsadminimpostazioni localidati applicazionioowhgo.exe
AddRemove-MP4 Video Converter_is1 - c:programmiWinAVI MP4 Converterunins000.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-05-12 13:56
Windows 5.1.2600 Service Pack 2 NTFS
scansione processi nascosti ...
scansione entrate autostart nascoste ...
Scansione files nascosti ...
Scansione completata con successo
Files nascosti: 0
**************************************************************************
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover
device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x825D61E8]
kernel: MBR read successfully
detected MBR rootkit hooks:
DriverDisk -> CLASSPNP.SYS @ 0xf86a9fc3
DriverACPI -> ACPI.sys @ 0xf843acb8
Driveratapi -> 0x825d61e8
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x8058241c
ParseProcedure -> ntkrnlpa.exe @ 0x8058155c
DeviceHarddisk0DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x8058241c
ParseProcedure -> ntkrnlpa.exe @ 0x8058155c
NDIS: Realtek RTL8139/810x Family Fast Ethernet NIC -> SendCompleteHandler -> NDIS.sys @ 0xf82d9bc3
PacketIndicateHandler -> NDIS.sys @ 0xf82e5b21
SendHandler -> NDIS.sys @ 0xf82d9d33
Warning: possible MBR rootkit infection !
user & kernel MBR OK
**************************************************************************
[HKEY_LOCAL_MACHINESystemControlSet001Servicesuwqrfxfe]
"ServiceDll"="c:windowssystem32 hlpt.dll"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------
- - - - - - - > 'winlogon.exe'(624)
c:windowssystem32Ati2evxx.dll
- - - - - - - > 'explorer.exe'(320)
c:programmiFile comuniAheadLibNeroDigitalExt.dll
c:programmiFile comuniAdobeAcrobatActiveXPDFShell.dll
c:programmiFile comuniAdobeAcrobatActiveXPDFShell.ITA
.
------------------------ Altri processi in esecuzione ------------------------
.
c:windowssystem32Ati2evxx.exe
c:windowssystem32Ati2evxx.exe
c:programmiBonjourmDNSResponder.exe
c:programmiJavajre6injqs.exe
c:programmiInvisible BrowsingserversSocksIBSocksManager.exe
c:programmiInvisible BrowsingserversSocksIBSocks.exe
c:programmiFile comuniMicrosoft SharedVS7Debugmdm.exe
c:windowssystem32PnkBstrA.exe
c:programmiInvisible BrowsingserversHttpibhttp.exe
c:windowsRTHDCPL.EXE
.
**************************************************************************
.
Ora fine scansione: 2010-05-12 14:05:06 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2010-05-12 12:05
Pre-Run: 11.794.583.552 byte disponibili
Post-Run: 15.679.029.248 byte disponibili
- - End Of File - - CAC7ED2DC36CA0824F009F9FA0301AE7
Virus che blocca alcuni siti (microsoft.com)
in Reti e Modem
Posted
Scusate, qualcuno ha una possibile soluzione oppure mi consegnate di rassegnarmi e mandare il pc da un tecnico?