Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

wireless connesso ... non navigo ... mi controllate ...

Malfunzionamenti della LAN, suggerimenti sulla condivisione e altro legato alle reti.

wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mar mar 10, 2009 7:10 pm

problema comune a tanti .... ma aiutatemi ... ho un router wireless G ADSL2+ D-LINK DSL-G624T
mi dice che sono connesso, ma non apro le pagine internet explorer, per dire meglio qualche volta riesco
a connettermi, e qualche volta no.
al router sono connesso con un altro pc portatile con s.o. windows xp e navigo senza problemi.
vi allego il file HijackThis .... aiutatemi !

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17.56.23, on 10/03/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\sony\ISB Utility\ISBMgr.exe
C:\Program Files\sony\Marketing Tools\MarketingTools.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Users\Shury\AppData\Local\bcwrm.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Shury\AppData\Local\Temp\Temp1_HiJackThis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-vaio.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - HKCU\..\Run: [bcwrm] "c:\users\shury\appdata\local\bcwrm.exe" bcwrm
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Invia immagine alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Invia pagina alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Statistiche sulla protezione del traffico Web - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9857 bytes
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Fred » mar mar 10, 2009 7:47 pm

C:\Users\Shury\AppData\Local\bcwrm.exe
O4 - HKCU\..\Run: [bcwrm] "c:\users\shury\appdata\local\bcwrm.exe" bcwrm
C:\Program Files\sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe

Io non ho un pc vaio perciò posso pensare siano legittimi i processi nella cartella sony. Per quanto riguarda marketingtools.exe su internet leggo che è legittimo (ma non so cosa sia ed il nome, a dirla tutta, non mi convince). Invece su bcwrm.exe google dice poco o niente ma decisamente non mi piace, io lo rimuoverei.
Spero di esserti stato utile.
[ciao]
Asus M3N78SE;AMD Athlon 64X2 5200+@5400;2 GB DDR2;NVIDIA GeForce 9500GT;Windows 7 Pro 64bit;
AcerASPIRE5230;Windows 7 Pro 64bit
Skype: nellopc90
Avatar utente
Fred
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 3623
Iscritto il: mer apr 27, 2005 4:13 pm
Località: Urbe

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » mar mar 10, 2009 9:57 pm

Fred ha scritto: Invece su bcwrm.exe google dice poco o niente ma decisamente non mi piace, io lo rimuoverei.

Non trovi nulla perché questo malware usa i nomi random per i propri file... comunque si tratta di questo http://www.MegaLab.it/2876/diffidiamo-d ... er-skinner

@ daniloluc

Presumo che oltre a questo, possa esserci dell'altro e quindi è meglio fare una scansione un po' più approfondita.
Scarica ComboFix , salvandolo sul desktop con un nome di fantasia, ed esegui la scansione seguendo queste istruzioni (giù in fondo). Al termine della scansione verrà creato il file di report C:\combofix.txt, copia qui il suo contenuto inserendolo tra i tag LOG, in questo modo:
Codice: Seleziona tutto
[LOG]qui va inserito il log[/LOG]
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo


Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mer mar 11, 2009 6:45 am

ok, grazie, oggi provo, ma siccome non sono un esperto vi dico quello che faro':
1) dovrei fixare i punti che mi ha detto Fred.
2) fare i procedimenti che mi ha esposto amantide, copiando tra i log quanto mi dirà "combofix " ripostando il tutto
... giusto ?
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » mer mar 11, 2009 1:14 pm

daniloluc ha scritto:ok, grazie, oggi provo, ma siccome non sono un esperto vi dico quello che faro':
1) dovrei fixare i punti che mi ha detto Fred.
2) fare i procedimenti che mi ha esposto amantide, copiando tra i log quanto mi dirà "combofix " ripostando il tutto
... giusto ?

1) Se sei sicuro che quel processi di Sony in avvio automatico non sono indispensabili per te, allora si.
2) Si.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » sab mar 14, 2009 12:26 pm

Amantide, ecco il log della scansione con combofix ....

ComboFix 09-03-13.02 - Shury 2009-03-14 12.16.51.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1040.18.3068.1933 [GMT 1:00]
Eseguito da: c:\users\Shury\Desktop\scansione-140309.exe
AV: Kaspersky Anti-Virus *On-access scanning enabled* (Updated)
* Creato nuovo punto di ripristino
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Shury\AppData\Local\mowkyaq.dat
c:\users\Shury\AppData\Local\mowkyaq.exe
c:\users\Shury\AppData\Local\mowkyaq_nav.dat
c:\users\Shury\AppData\Local\mowkyaq_navps.dat

.
((((((((((((((((((((((((( Files Creati Da 2009-02-14 al 2009-03-14 )))))))))))))))))))))))))))))))))))
.

2009-03-13 20:12 . 2008-12-16 04:29 8,147,456 --a------ c:\windows\System32\wmploc.DLL
2009-03-13 20:12 . 2009-02-09 04:10 2,033,152 --a------ c:\windows\System32\win32k.sys
2009-03-13 20:12 . 2008-11-27 05:43 268,288 --a------ c:\windows\System32\schannel.dll
2009-03-13 20:12 . 2008-12-16 06:31 7,680 --a------ c:\windows\System32\spwmp.dll
2009-03-13 20:12 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\msdxm.ocx
2009-03-13 20:12 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\dxmasf.dll
2009-03-09 18:14 . 2009-03-09 18:20 <DIR> d-------- c:\users\Shury\AppData\Roaming\Digital Support
2009-03-09 18:13 . 2009-03-09 18:19 <DIR> d-------- c:\program files\Digital Support
2009-03-08 09:57 . 2009-03-08 10:22 101,287 --a------ c:\windows\System32\drivers\klin.dat
2009-03-08 09:57 . 2009-03-08 10:22 89,601 --a------ c:\windows\System32\drivers\klick.dat
2009-03-08 09:56 . 2009-03-14 11:50 <DIR> d-------- c:\users\All Users\Kaspersky Lab
2009-03-08 09:56 . 2009-03-14 11:50 <DIR> d-------- c:\programdata\Kaspersky Lab
2009-03-08 09:56 . 2009-03-14 12:18 1,673,760 --ahs---- c:\windows\System32\drivers\fidbox.dat
2009-03-08 09:56 . 2009-03-13 20:50 278,560 --ahs---- c:\windows\System32\drivers\fidbox2.dat
2009-03-08 09:56 . 2009-03-14 12:09 14,156 --ahs---- c:\windows\System32\drivers\fidbox.idx
2009-03-08 09:56 . 2009-03-13 20:50 2,032 --ahs---- c:\windows\System32\drivers\fidbox2.idx
2009-03-07 14:27 . 2009-03-10 18:07 <DIR> d-------- C:\BACKUP_CC-CLEANER
2009-03-07 14:26 . 2009-03-07 14:26 <DIR> d-------- c:\program files\CCleaner
2009-03-07 14:24 . 2009-03-09 22:38 <DIR> d-------- C:\SOFTWARE
2009-02-28 17:03 . 2009-02-28 17:03 <DIR> d-------- c:\program files\Microsoft.NET
2009-02-28 17:00 . 2009-02-28 17:00 <DIR> dr-h----- C:\MSOCache
2009-02-26 23:08 . 2009-02-26 23:08 <DIR> d-------- c:\program files\PeerGuardian2
2009-02-26 23:00 . 2009-02-26 23:00 <DIR> d-------- c:\program files\VideoLAN
2009-02-25 10:21 . 2009-02-25 10:21 <DIR> d-------- c:\users\All Users\Messenger Plus!
2009-02-25 10:21 . 2009-02-25 10:21 <DIR> d-------- c:\programdata\Messenger Plus!
2009-02-24 18:30 . 2009-02-24 18:30 <DIR> d-------- c:\program files\Messenger Plus! Live
2009-02-23 22:02 . 2009-02-23 22:02 <DIR> d-------- c:\program files\Kaspersky Lab
2009-02-22 12:32 . 2009-02-22 12:32 <DIR> d-------- c:\users\All Users\Office Genuine Advantage
2009-02-22 12:32 . 2009-02-22 12:32 <DIR> d-------- c:\programdata\Office Genuine Advantage
2009-02-22 12:27 . 2009-03-13 20:48 <DIR> d-------- c:\users\Shury\Tracing
2009-02-22 12:26 . 2009-02-22 12:26 <DIR> d-------- c:\program files\Microsoft
2009-02-22 12:25 . 2009-02-22 12:25 <DIR> d-------- c:\program files\Windows Live SkyDrive
2009-02-22 12:25 . 2009-02-22 12:26 <DIR> d-------- c:\program files\Windows Live
2009-02-22 12:24 . 2008-06-20 02:14 781,344 --a------ c:\windows\System32\PresentationNative_v0300.dll
2009-02-22 12:24 . 2008-06-20 02:14 622,080 --a------ c:\windows\System32\icardagt.exe
2009-02-22 12:24 . 2008-06-20 02:14 326,160 --a------ c:\windows\System32\PresentationHost.exe
2009-02-22 12:24 . 2008-06-20 02:14 105,016 --a------ c:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-02-22 12:24 . 2008-06-20 02:14 97,800 --a------ c:\windows\System32\infocardapi.dll
2009-02-22 12:24 . 2008-06-20 02:14 43,544 --a------ c:\windows\System32\PresentationHostProxy.dll
2009-02-22 12:24 . 2008-06-20 02:14 37,384 --a------ c:\windows\System32\infocardcpl.cpl
2009-02-22 12:24 . 2008-06-20 02:14 11,264 --a------ c:\windows\System32\icardres.dll
2009-02-22 12:18 . 2008-07-27 19:03 282,112 --a------ c:\windows\System32\mscoree.dll
2009-02-22 12:18 . 2008-07-27 19:03 158,720 --a------ c:\windows\System32\mscorier.dll
2009-02-22 12:18 . 2008-07-27 19:03 96,760 --a------ c:\windows\System32\dfshim.dll
2009-02-22 12:18 . 2008-07-27 19:03 83,968 --a------ c:\windows\System32\mscories.dll
2009-02-22 12:18 . 2008-07-27 19:03 41,984 --a------ c:\windows\System32\netfxperf.dll
2009-02-22 12:17 . 2009-02-22 12:17 <DIR> d-------- c:\program files\Common Files\Windows Live
2009-02-22 12:06 . 2008-10-22 02:22 2,048 --a------ c:\windows\System32\tzres.dll
2009-02-22 12:03 . 2009-02-22 12:03 <DIR> d-------- c:\program files\MSXML 4.0
2009-02-22 12:02 . 2008-12-05 05:32 428,544 --a------ c:\windows\System32\EncDec.dll
2009-02-22 12:02 . 2008-12-05 05:32 293,376 --a------ c:\windows\System32\psisdecd.dll
2009-02-22 12:02 . 2008-12-05 05:31 217,088 --a------ c:\windows\System32\psisrndr.ax
2009-02-22 12:02 . 2008-12-05 05:31 177,664 --a------ c:\windows\System32\mpg2splt.ax
2009-02-22 12:02 . 2008-12-05 05:31 80,896 --a------ c:\windows\System32\MSNP.ax
2009-02-22 12:01 . 2008-11-01 02:21 4,240,384 --a------ c:\windows\System32\GameUXLegacyGDFs.dll
2009-02-22 12:01 . 2009-01-15 04:36 1,383,424 --a------ c:\windows\System32\mshtml.tlb
2009-02-22 12:01 . 2009-01-15 07:11 827,392 --a------ c:\windows\System32\wininet.dll
2009-02-22 12:01 . 2008-10-22 04:57 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
2009-02-22 12:01 . 2008-11-01 04:44 28,672 --a------ c:\windows\System32\Apphlpdm.dll
2009-02-22 11:59 . 2008-10-29 07:29 2,927,104 --a------ c:\windows\explorer.exe
2009-02-22 11:59 . 2008-09-05 06:14 1,191,936 --a------ c:\windows\System32\msxml3.dll
2009-02-22 11:59 . 2008-10-21 06:25 296,960 --a------ c:\windows\System32\gdi32.dll
2009-02-22 11:59 . 2008-08-27 02:05 212,480 --a------ c:\windows\System32\drivers\mrxsmb10.sys
2009-02-22 11:36 . 2008-10-16 22:13 1,809,944 --a------ c:\windows\System32\wuaueng.dll
2009-02-22 11:36 . 2008-10-16 21:56 1,524,736 --a------ c:\windows\System32\wucltux.dll
2009-02-22 11:36 . 2008-10-16 22:12 561,688 --a------ c:\windows\System32\wuapi.dll
2009-02-22 11:36 . 2008-10-16 14:08 162,064 --a------ c:\windows\System32\wuwebv.dll
2009-02-22 11:36 . 2008-10-16 21:55 83,456 --a------ c:\windows\System32\wudriver.dll
2009-02-22 11:36 . 2008-10-16 22:09 51,224 --a------ c:\windows\System32\wuauclt.exe
2009-02-22 11:36 . 2008-10-16 22:09 43,544 --a------ c:\windows\System32\wups2.dll
2009-02-22 11:36 . 2008-10-16 22:08 34,328 --a------ c:\windows\System32\wups.dll
2009-02-22 11:36 . 2008-10-16 13:56 31,232 --a------ c:\windows\System32\wuapp.exe
2009-02-21 22:36 . 2009-02-21 22:36 <DIR> d-------- c:\users\All Users\FLEXnet
2009-02-21 22:36 . 2009-02-21 22:36 <DIR> d-------- c:\programdata\FLEXnet
2009-02-21 22:08 . 2009-02-21 22:08 0 -rah----- c:\windows\System32\drivers\104D_Sony_VGN-CS21SP.mrk
2009-02-21 22:07 . 2007-01-12 16:20 <DIR> dr------- c:\users\Shury\Videos
2009-02-21 22:07 . 2009-02-21 22:08 <DIR> dr------- c:\users\Shury\Searches
2009-02-21 22:07 . 2009-03-13 20:19 <DIR> dr------- c:\users\Shury\Saved Games
2009-02-21 22:07 . 2007-01-12 16:53 <DIR> d-------- c:\users\Shury\Roaming
2009-02-21 22:07 . 2009-02-21 22:07 <DIR> dr------- c:\users\Shury\Pictures
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> dr------- c:\users\Shury\Music
2009-02-21 22:07 . 2009-02-21 22:08 <DIR> dr------- c:\users\Shury\Links
2009-02-21 22:07 . 2009-02-25 14:00 <DIR> dr------- c:\users\Shury\Downloads
2009-02-21 22:07 . 2009-02-24 19:40 <DIR> dr------- c:\users\Shury\Documents
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> dr------- c:\users\Shury\Contacts
2009-02-21 22:07 . 2007-01-12 16:57 <DIR> d-------- c:\users\Shury\AppData\Roaming\Sony Corporation
2009-02-21 22:07 . 2006-11-02 13:37 <DIR> d-------- c:\users\Shury\AppData\Roaming\Media Center Programs
2009-02-21 22:07 . 2007-01-12 16:53 <DIR> d-------- c:\users\Shury\AppData\Roaming\Intel
2009-02-21 22:07 . 2007-01-12 16:11 <DIR> d-------- c:\users\Shury\AppData\Roaming\InstallShield
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> d--h----- c:\users\Shury\AppData
2009-02-21 22:07 . 2009-03-08 09:57 <DIR> d-------- c:\users\Shury
2009-02-21 22:06 . 2009-02-21 22:06 <DIR> dr------- c:\windows\System32\config\systemprofile\Contacts

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-14 10:50 49,775 ----a-w c:\users\All Users\nvModes.dat
2009-03-14 10:50 49,775 ----a-w c:\programdata\nvModes.dat
2009-03-14 10:45 --------- d-----w c:\program files\Windows Mail
2009-03-08 09:22 33,808 ----a-w c:\windows\system32\drivers\klbg.sys
2009-03-07 13:43 --------- d-----w c:\programdata\Microsoft Help
2009-02-28 16:04 --------- d-----w c:\program files\Microsoft Works
2009-02-23 17:37 --------- d-----w c:\programdata\McAfee
2009-02-22 10:12 --------- d-----w c:\program files\Google
2009-02-21 21:06 --------- d-sh--w c:\programdata\Preferiti
2009-02-21 21:06 --------- d-sh--w c:\programdata\Modelli
2009-02-21 21:06 --------- d-sh--w c:\programdata\Menu Avvio
2009-02-21 21:06 --------- d-sh--w c:\programdata\Documenti
2009-02-21 21:06 --------- d-sh--w c:\programdata\Dati applicazioni
2009-02-21 21:06 --------- d-sh--w c:\program files\File comuni
2009-02-06 17:52 49,504 ----a-w c:\windows\System32\sirenacm.dll
2008-12-31 16:04 691,560 ----a-w c:\windows\System32\OGACheckControl.dll
2008-12-31 16:04 528,744 ----a-w c:\windows\System32\OGAVerify.exe
2008-12-31 16:04 502,120 ----a-w c:\windows\System32\OGAAddin.dll
2008-01-21 02:43 174 --sha-w c:\program files\desktop.ini
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NSUFloatingUI"="c:\program files\Sony\Network Utility\LANUtil.exe" [2008-12-05 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-11-05 13556256]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-11-05 92704]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-19 1348904]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2008-11-20 30192]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2008-04-03 317280]
"MarketingTools"="c:\program files\Sony\Marketing Tools\MarketingTools.exe" [2007-01-12 24576]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2009-03-08 201992]
"RtHDVCpl"="RtHDVCpl.exe" [2008-09-16 c:\windows\RtHDVCpl.exe]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-10-14 776744]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-11-05 18:32 98304 c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GOEC62~1.DLL c:\progra~1\KASPER~1\KASPER~1\mzvkbd.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.dvsd"= c:\program files\Common Files\Sony Shared\VideoLib\sonydv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{076B6EFF-55FA-4550-B2E0-6D9687EC7833}"= Disabled:UDP:c:\program files\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"{0766F989-2E63-4EE4-99CA-4EF4D086B2EA}"= Disabled:TCP:c:\program files\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"{0651FBE9-57ED-4FF8-AB69-2B0E9CCD0806}"= UDP:c:\program files\Google\Google Talk\googletalk.exe:Google Talk
"{73BAE9E7-0B01-40B7-9BC1-EEC07EF73590}"= TCP:c:\program files\Google\Google Talk\googletalk.exe:Google Talk
"{80AFFE68-1F7B-4B8C-B21D-B64EFA96E642}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{DC6CE0A2-D98D-4225-BD87-B2ED92B7AB63}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{99E3BB34-9485-4864-A27F-ECECDC035E1D}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{398156DD-7EDF-437E-BE90-1584819D46CA}f:\\setup.exe"= UDP:F:\setup.exe:Kaspersky Anti-Virus 2009 Setup
"UDP Query User{B4ADF3CC-81B3-41B0-8796-9733C5A80AE9}f:\\setup.exe"= TCP:F:\setup.exe:Kaspersky Anti-Virus 2009 Setup

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [2008-01-29 33808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [2008-03-26 20496]
R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6;c:\program files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832]
R2 NSUService;NSUService;c:\program files\sony\Network Utility\NSUService.exe [2007-01-12 303104]
R2 regi;regi;c:\windows\System32\drivers\regi.sys [2007-04-17 11032]
R2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2007-01-12 104960]
R2 VAIO Power Management;VAIO Power Management;c:\program files\sony\VAIO Power Management\SPMService.exe [2008-11-20 415584]
R2 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2008-09-11 446464]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\System32\drivers\ArcSoftKsUFilter.sys [2007-01-12 17920]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\System32\drivers\btwl2cap.sys [2008-11-20 29736]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [2008-08-28 3664384]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\System32\drivers\SFEP.sys [2008-11-20 9344]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-20 30192]
S3 SOHCImp;VAIO Media plus Content Importer;c:\program files\sony\VAIO Media plus\SOHCImp.exe [2007-01-12 103712]
S3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\sony\VAIO Media plus\SOHDms.exe [2007-01-12 353568]
S3 SOHDs;VAIO Media plus Device Searcher;c:\program files\sony\VAIO Media plus\SOHDs.exe [2007-01-12 62752]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2007-01-12 369952]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2007-01-12 83232]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8478d037-005a-11de-a194-806e6f6e6963}]
\shell\AutoRun\command - F:\setup.exe
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKCU-Run-mowkyaq - c:\users\shury\appdata\local\mowkyaq.exe


.
------- Scansione supplementare -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
uStart Page = hxxp://www.club-vaio.com/
IE: Invia immagine alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Invia pagina alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-14 12:19:06
Windows 6.0.6001 Service Pack 1 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
Ora fine scansione: 2009-03-14 12.21.10
ComboFix-quarantined-files.txt 2009-03-14 11:21:07

Pre-Run: 246.449.676.288 byte disponibili
Post-Run: 246,411,517,952 byte disponibili

218 --- E O F --- 2009-03-13 19:49:58
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » sab mar 14, 2009 12:36 pm

ti mando anche il log di hijackthis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12.38.50, on 14/03/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\sony\ISB Utility\ISBMgr.exe
C:\Program Files\sony\Marketing Tools\MarketingTools.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\Explorer.exe
C:\SOFTWARE\Hijackthis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-vaio.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Invia immagine alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Invia pagina alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Statistiche sulla protezione del traffico Web - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9012 bytes
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » sab mar 14, 2009 12:46 pm

Per fortuna era presente solo il Messenger Skinner, solo che da una scansione ad altra ha cambiato il nome del suo eseguibile.
Hai controllato se dopo il riavvio del pc la connessione ha ripreso a funzionare?

P.S. Per favore correggi tutti i log inseriti usando il tag LOG, come ti avevo suggerito prima.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » sab mar 14, 2009 2:56 pm

Amantide ha scritto:Per fortuna era presente solo il Messenger Skinner, solo che da una scansione ad altra ha cambiato il nome del suo eseguibile.
Hai controllato se dopo il riavvio del pc la connessione ha ripreso a funzionare?.
... purtroppo no, non funziona non navigo [V]


Amantide ha scritto:P.S. Per favore correggi tutti i log inseriti usando il tag LOG, come ti avevo suggerito prima.
... non credo di aver capito .... adesso mi applico ....
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » sab mar 14, 2009 5:04 pm

Mi sta sorgendo il dubbio che tra una e l'altra scansione il Messenger Skinner non è che ha cambiato il nome dei file ma ha creato un'infezione parallella [uhm]

Copia ed incolla il seguente testo su blocconote e salva il file su desktop con il nome CFScript.txt.
Codice: Seleziona tutto
File::
C:\Users\Shury\AppData\Local\bcwrm.exe
C:\Users\Shury\AppData\Local\bcwrm.dat
C:\Users\Shury\AppData\Local\_nav.dat
C:\Users\Shury\AppData\Local\_navps.dat

Ora trascina il file CFScript.txt sull'icona di ComboFix. Aspetta il termine della scansione e posta il nuovo log di Combofix.

Ti consiglio pure di fare la scansione completa con Malwarebytes' Anti-Malware aggiornato e postare qui anche il suo report della scansione.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » dom mar 15, 2009 10:41 am

ciao Amantide, buongiorno, allora adesso sono collegato con il pc che non mi si collega,,,,, a questo punto che mi si collega saltuariamente [uhm] , ho fatto eseguire " rileva problemi di connessione " dalla pagina bianca che mi si apre quando non si connette e ... mi dice problema risolto, in effetti sono collegato.
però adesso ho il terrore di spegnere e riaccendere in quanto probabilmente non mi si collega .... quindi punto delle situazione: adesso ti allego il log che mi hai detto di fare (Copia ed incolla il seguente testo su blocconote e salva il file su desktop con il nome CFScript.txt. ) e il log eseguito con malaware... poi mi scollego da internet e rifaccio il log con hijack .... che in teoria è il log con pc collegato .... spero di essere stato chiaro ... ciao a risentirci ... dimenticavo: grazie !
- combofix:

ComboFix 09-03-13.02 - Shury 2009-03-15 7.58.38.4 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1040.18.3068.1912 [GMT 1:00]
Eseguito da: c:\users\Shury\Desktop\COMBO-AZZU.exe
Opzioni usate :: c:\users\Shury\Documents\Cartella Scambio Bluetooth\CFScript.txt
AV: Kaspersky Anti-Virus *On-access scanning disabled* (Updated)
* Creato nuovo punto di ripristino
.

((((((((((((((((((((((((( Files Creati Da 2009-02-15 al 2009-03-15 )))))))))))))))))))))))))))))))))))
.

2009-03-14 16:57 . 2009-03-15 06:39 <DIR> d-------- c:\users\All Users\eMule
2009-03-14 16:57 . 2009-03-15 06:39 <DIR> d-------- c:\programdata\eMule
2009-03-14 16:29 . 2009-03-15 06:39 <DIR> d-------- c:\program files\eMule
2009-03-14 16:20 . 2009-03-14 16:20 <DIR> d-------- c:\program files\Microsoft Silverlight
2009-03-14 16:20 . 2009-03-14 16:20 0 --ah----- c:\windows\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
2009-03-14 12:15 . 2009-03-14 12:21 <DIR> d-------- C:\scansione-140309
2009-03-13 20:12 . 2008-12-16 04:29 8,147,456 --a------ c:\windows\System32\wmploc.DLL
2009-03-13 20:12 . 2009-02-09 04:10 2,033,152 --a------ c:\windows\System32\win32k.sys
2009-03-13 20:12 . 2008-11-27 05:43 268,288 --a------ c:\windows\System32\schannel.dll
2009-03-13 20:12 . 2008-12-16 06:31 7,680 --a------ c:\windows\System32\spwmp.dll
2009-03-13 20:12 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\msdxm.ocx
2009-03-13 20:12 . 2008-12-16 06:31 4,096 --a------ c:\windows\System32\dxmasf.dll
2009-03-09 18:14 . 2009-03-09 18:20 <DIR> d-------- c:\users\Shury\AppData\Roaming\Digital Support
2009-03-09 18:13 . 2009-03-09 18:19 <DIR> d-------- c:\program files\Digital Support
2009-03-08 09:57 . 2009-03-08 10:22 101,287 --a------ c:\windows\System32\drivers\klin.dat
2009-03-08 09:57 . 2009-03-08 10:22 89,601 --a------ c:\windows\System32\drivers\klick.dat
2009-03-08 09:56 . 2009-03-15 07:09 <DIR> d-------- c:\users\All Users\Kaspersky Lab
2009-03-08 09:56 . 2009-03-15 07:09 <DIR> d-------- c:\programdata\Kaspersky Lab
2009-03-08 09:56 . 2009-03-15 07:04 2,136,096 --ahs---- c:\windows\System32\drivers\fidbox.dat
2009-03-08 09:56 . 2009-03-15 07:04 294,944 --ahs---- c:\windows\System32\drivers\fidbox2.dat
2009-03-08 09:56 . 2009-03-15 07:04 17,768 --ahs---- c:\windows\System32\drivers\fidbox.idx
2009-03-08 09:56 . 2009-03-15 07:04 2,088 --ahs---- c:\windows\System32\drivers\fidbox2.idx
2009-03-07 14:27 . 2009-03-14 18:44 <DIR> d-------- C:\BACKUP_CC-CLEANER
2009-03-07 14:26 . 2009-03-07 14:26 <DIR> d-------- c:\program files\CCleaner
2009-03-07 14:24 . 2009-03-15 07:42 <DIR> d-------- C:\SOFTWARE
2009-02-28 17:03 . 2009-02-28 17:03 <DIR> d-------- c:\program files\Microsoft.NET
2009-02-28 17:00 . 2009-02-28 17:00 <DIR> dr-h----- C:\MSOCache
2009-02-26 23:00 . 2009-02-26 23:00 <DIR> d-------- c:\program files\VideoLAN
2009-02-25 10:21 . 2009-02-25 10:21 <DIR> d-------- c:\users\All Users\Messenger Plus!
2009-02-25 10:21 . 2009-02-25 10:21 <DIR> d-------- c:\programdata\Messenger Plus!
2009-02-24 18:30 . 2009-02-24 18:30 <DIR> d-------- c:\program files\Messenger Plus! Live
2009-02-23 22:02 . 2009-02-23 22:02 <DIR> d-------- c:\program files\Kaspersky Lab
2009-02-22 12:32 . 2009-02-22 12:32 <DIR> d-------- c:\users\All Users\Office Genuine Advantage
2009-02-22 12:32 . 2009-02-22 12:32 <DIR> d-------- c:\programdata\Office Genuine Advantage
2009-02-22 12:27 . 2009-03-14 18:20 <DIR> d-------- c:\users\Shury\Tracing
2009-02-22 12:26 . 2009-03-14 16:20 <DIR> d-------- c:\program files\Microsoft
2009-02-22 12:25 . 2009-02-22 12:25 <DIR> d-------- c:\program files\Windows Live SkyDrive
2009-02-22 12:25 . 2009-02-22 12:26 <DIR> d-------- c:\program files\Windows Live
2009-02-22 12:24 . 2008-06-20 02:14 781,344 --a------ c:\windows\System32\PresentationNative_v0300.dll
2009-02-22 12:24 . 2008-06-20 02:14 622,080 --a------ c:\windows\System32\icardagt.exe
2009-02-22 12:24 . 2008-06-20 02:14 326,160 --a------ c:\windows\System32\PresentationHost.exe
2009-02-22 12:24 . 2008-06-20 02:14 105,016 --a------ c:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-02-22 12:24 . 2008-06-20 02:14 97,800 --a------ c:\windows\System32\infocardapi.dll
2009-02-22 12:24 . 2008-06-20 02:14 43,544 --a------ c:\windows\System32\PresentationHostProxy.dll
2009-02-22 12:24 . 2008-06-20 02:14 37,384 --a------ c:\windows\System32\infocardcpl.cpl
2009-02-22 12:24 . 2008-06-20 02:14 11,264 --a------ c:\windows\System32\icardres.dll
2009-02-22 12:18 . 2008-07-27 19:03 282,112 --a------ c:\windows\System32\mscoree.dll
2009-02-22 12:18 . 2008-07-27 19:03 158,720 --a------ c:\windows\System32\mscorier.dll
2009-02-22 12:18 . 2008-07-27 19:03 96,760 --a------ c:\windows\System32\dfshim.dll
2009-02-22 12:18 . 2008-07-27 19:03 83,968 --a------ c:\windows\System32\mscories.dll
2009-02-22 12:18 . 2008-07-27 19:03 41,984 --a------ c:\windows\System32\netfxperf.dll
2009-02-22 12:17 . 2009-02-22 12:17 <DIR> d-------- c:\program files\Common Files\Windows Live
2009-02-22 12:06 . 2008-10-22 02:22 2,048 --a------ c:\windows\System32\tzres.dll
2009-02-22 12:03 . 2009-02-22 12:03 <DIR> d-------- c:\program files\MSXML 4.0
2009-02-22 12:02 . 2008-12-05 05:32 428,544 --a------ c:\windows\System32\EncDec.dll
2009-02-22 12:02 . 2008-12-05 05:32 293,376 --a------ c:\windows\System32\psisdecd.dll
2009-02-22 12:02 . 2008-12-05 05:31 217,088 --a------ c:\windows\System32\psisrndr.ax
2009-02-22 12:02 . 2008-12-05 05:31 177,664 --a------ c:\windows\System32\mpg2splt.ax
2009-02-22 12:02 . 2008-12-05 05:31 80,896 --a------ c:\windows\System32\MSNP.ax
2009-02-22 12:01 . 2008-11-01 02:21 4,240,384 --a------ c:\windows\System32\GameUXLegacyGDFs.dll
2009-02-22 12:01 . 2008-10-22 04:57 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
2009-02-22 12:01 . 2008-11-01 04:44 28,672 --a------ c:\windows\System32\Apphlpdm.dll
2009-02-22 11:59 . 2008-10-29 07:29 2,927,104 --a------ c:\windows\explorer.exe
2009-02-22 11:59 . 2008-09-05 06:14 1,191,936 --a------ c:\windows\System32\msxml3.dll
2009-02-22 11:59 . 2008-10-21 06:25 296,960 --a------ c:\windows\System32\gdi32.dll
2009-02-22 11:59 . 2008-08-27 02:05 212,480 --a------ c:\windows\System32\drivers\mrxsmb10.sys
2009-02-22 11:36 . 2008-10-16 22:13 1,809,944 --a------ c:\windows\System32\wuaueng.dll
2009-02-22 11:36 . 2008-10-16 21:56 1,524,736 --a------ c:\windows\System32\wucltux.dll
2009-02-22 11:36 . 2008-10-16 22:12 561,688 --a------ c:\windows\System32\wuapi.dll
2009-02-22 11:36 . 2008-10-16 14:08 162,064 --a------ c:\windows\System32\wuwebv.dll
2009-02-22 11:36 . 2008-10-16 21:55 83,456 --a------ c:\windows\System32\wudriver.dll
2009-02-22 11:36 . 2008-10-16 22:09 51,224 --a------ c:\windows\System32\wuauclt.exe
2009-02-22 11:36 . 2008-10-16 22:09 43,544 --a------ c:\windows\System32\wups2.dll
2009-02-22 11:36 . 2008-10-16 22:08 34,328 --a------ c:\windows\System32\wups.dll
2009-02-22 11:36 . 2008-10-16 13:56 31,232 --a------ c:\windows\System32\wuapp.exe
2009-02-21 22:36 . 2009-02-21 22:36 <DIR> d-------- c:\users\All Users\FLEXnet
2009-02-21 22:36 . 2009-02-21 22:36 <DIR> d-------- c:\programdata\FLEXnet
2009-02-21 22:08 . 2009-02-21 22:08 0 -rah----- c:\windows\System32\drivers\104D_Sony_VGN-CS21SP.mrk
2009-02-21 22:07 . 2007-01-12 16:20 <DIR> dr------- c:\users\Shury\Videos
2009-02-21 22:07 . 2009-02-21 22:08 <DIR> dr------- c:\users\Shury\Searches
2009-02-21 22:07 . 2009-03-13 20:19 <DIR> dr------- c:\users\Shury\Saved Games
2009-02-21 22:07 . 2007-01-12 16:53 <DIR> d-------- c:\users\Shury\Roaming
2009-02-21 22:07 . 2009-02-21 22:07 <DIR> dr------- c:\users\Shury\Pictures
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> dr------- c:\users\Shury\Music
2009-02-21 22:07 . 2009-02-21 22:08 <DIR> dr------- c:\users\Shury\Links
2009-02-21 22:07 . 2009-02-25 14:00 <DIR> dr------- c:\users\Shury\Downloads
2009-02-21 22:07 . 2009-03-14 17:20 <DIR> dr------- c:\users\Shury\Documents
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> dr------- c:\users\Shury\Contacts
2009-02-21 22:07 . 2007-01-12 16:57 <DIR> d-------- c:\users\Shury\AppData\Roaming\Sony Corporation
2009-02-21 22:07 . 2006-11-02 13:37 <DIR> d-------- c:\users\Shury\AppData\Roaming\Media Center Programs
2009-02-21 22:07 . 2007-01-12 16:53 <DIR> d-------- c:\users\Shury\AppData\Roaming\Intel
2009-02-21 22:07 . 2007-01-12 16:11 <DIR> d-------- c:\users\Shury\AppData\Roaming\InstallShield
2009-02-21 22:07 . 2008-01-21 02:43 <DIR> d--h----- c:\users\Shury\AppData
2009-02-21 22:07 . 2009-03-14 16:20 <DIR> d-------- c:\users\Shury
2009-02-21 22:06 . 2009-02-21 22:06 <DIR> dr------- c:\windows\System32\config\systemprofile\Contacts

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-14 17:37 49,775 ----a-w c:\users\All Users\nvModes.dat
2009-03-14 17:37 49,775 ----a-w c:\programdata\nvModes.dat
2009-03-14 10:45 --------- d-----w c:\program files\Windows Mail
2009-03-08 09:22 33,808 ----a-w c:\windows\system32\drivers\klbg.sys
2009-03-07 13:43 --------- d-----w c:\programdata\Microsoft Help
2009-02-28 16:04 --------- d-----w c:\program files\Microsoft Works
2009-02-23 17:37 --------- d-----w c:\programdata\McAfee
2009-02-22 10:12 --------- d-----w c:\program files\Google
2009-02-21 21:06 --------- d-sh--w c:\programdata\Preferiti
2009-02-21 21:06 --------- d-sh--w c:\programdata\Modelli
2009-02-21 21:06 --------- d-sh--w c:\programdata\Menu Avvio
2009-02-21 21:06 --------- d-sh--w c:\programdata\Documenti
2009-02-21 21:06 --------- d-sh--w c:\programdata\Dati applicazioni
2009-02-21 21:06 --------- d-sh--w c:\program files\File comuni
2009-02-06 17:52 49,504 ----a-w c:\windows\System32\sirenacm.dll
2009-01-15 10:05 911,872 ----a-w c:\windows\System32\wininet.dll
2009-01-15 10:05 43,008 ----a-w c:\windows\System32\licmgr10.dll
2009-01-15 10:04 18,944 ----a-w c:\windows\System32\corpol.dll
2009-01-15 10:04 132,096 ----a-w c:\windows\System32\ieUnatt.exe
2009-01-15 10:04 109,568 ----a-w c:\windows\System32\PDMSetup.exe
2009-01-15 10:04 109,056 ----a-w c:\windows\System32\iesysprep.dll
2009-01-15 10:04 107,520 ----a-w c:\windows\System32\RegisterIEPKEYs.exe
2009-01-15 10:04 107,008 ----a-w c:\windows\System32\SetIEInstalledDate.exe
2009-01-15 10:04 103,936 ----a-w c:\windows\System32\SetDepNx.exe
2009-01-15 10:03 72,704 ----a-w c:\windows\System32\admparse.dll
2009-01-15 10:03 71,680 ----a-w c:\windows\System32\iesetup.dll
2009-01-15 10:03 66,560 ----a-w c:\windows\System32\wextract.exe
2009-01-15 10:03 420,352 ----a-w c:\windows\System32\vbscript.dll
2009-01-15 10:02 169,472 ----a-w c:\windows\System32\iexpress.exe
2009-01-15 10:01 34,304 ----a-w c:\windows\System32\imgutil.dll
2009-01-15 10:00 48,128 ----a-w c:\windows\System32\mshtmler.dll
2009-01-15 10:00 45,568 ----a-w c:\windows\System32\mshta.exe
2009-01-15 09:50 156,160 ----a-w c:\windows\System32\msls31.dll
2008-12-31 16:04 691,560 ----a-w c:\windows\System32\OGACheckControl.dll
2008-12-31 16:04 528,744 ----a-w c:\windows\System32\OGAVerify.exe
2008-12-31 16:04 502,120 ----a-w c:\windows\System32\OGAAddin.dll
2008-01-21 02:43 174 --sha-w c:\program files\desktop.ini
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NSUFloatingUI"="c:\program files\Sony\Network Utility\LANUtil.exe" [2008-12-05 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-11-05 13556256]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-11-05 92704]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-19 1348904]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2008-11-20 30192]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2008-04-03 317280]
"MarketingTools"="c:\program files\Sony\Marketing Tools\MarketingTools.exe" [2007-01-12 24576]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe" [2009-03-08 201992]
"RtHDVCpl"="RtHDVCpl.exe" [2008-09-16 c:\windows\RtHDVCpl.exe]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-10-14 776744]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-11-05 18:32 98304 c:\windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GOEC62~1.DLL c:\progra~1\KASPER~1\KASPER~1\mzvkbd.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.dvsd"= c:\program files\Common Files\Sony Shared\VideoLib\sonydv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{076B6EFF-55FA-4550-B2E0-6D9687EC7833}"= Disabled:UDP:c:\program files\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"{0766F989-2E63-4EE4-99CA-4EF4D086B2EA}"= Disabled:TCP:c:\program files\Adobe\Photoshop Elements 6.0\AdobePhotoshopElementsMediaServer.exe:Adobe Photoshop Elements Media Server
"{0651FBE9-57ED-4FF8-AB69-2B0E9CCD0806}"= UDP:c:\program files\Google\Google Talk\googletalk.exe:Google Talk
"{73BAE9E7-0B01-40B7-9BC1-EEC07EF73590}"= TCP:c:\program files\Google\Google Talk\googletalk.exe:Google Talk
"{80AFFE68-1F7B-4B8C-B21D-B64EFA96E642}"= c:\program files\Skype\Phone\Skype.exe:Skype
"{DC6CE0A2-D98D-4225-BD87-B2ED92B7AB63}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{99E3BB34-9485-4864-A27F-ECECDC035E1D}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{398156DD-7EDF-437E-BE90-1584819D46CA}f:\\setup.exe"= UDP:F:\setup.exe:Kaspersky Anti-Virus 2009 Setup
"UDP Query User{B4ADF3CC-81B3-41B0-8796-9733C5A80AE9}f:\\setup.exe"= TCP:F:\setup.exe:Kaspersky Anti-Virus 2009 Setup

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\System32\drivers\klbg.sys [2008-01-29 33808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\System32\drivers\klim6.sys [2008-03-26 20496]
R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6;c:\program files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832]
R2 NSUService;NSUService;c:\program files\sony\Network Utility\NSUService.exe [2007-01-12 303104]
R2 regi;regi;c:\windows\System32\drivers\regi.sys [2007-04-17 11032]
R2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2007-01-12 104960]
R2 VAIO Power Management;VAIO Power Management;c:\program files\sony\VAIO Power Management\SPMService.exe [2008-11-20 415584]
R2 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2008-09-11 446464]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\System32\drivers\ArcSoftKsUFilter.sys [2007-01-12 17920]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\System32\drivers\btwl2cap.sys [2008-11-20 29736]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [2008-08-28 3664384]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\System32\drivers\SFEP.sys [2008-11-20 9344]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-20 30192]
S3 SOHCImp;VAIO Media plus Content Importer;c:\program files\sony\VAIO Media plus\SOHCImp.exe [2007-01-12 103712]
S3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\sony\VAIO Media plus\SOHDms.exe [2007-01-12 353568]
S3 SOHDs;VAIO Media plus Device Searcher;c:\program files\sony\VAIO Media plus\SOHDs.exe [2007-01-12 62752]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2007-01-12 369952]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2007-01-12 83232]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8478d037-005a-11de-a194-806e6f6e6963}]
\shell\AutoRun\command - F:\setup.exe

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contenuto della cartella 'Scheduled Tasks'

2009-03-15 c:\windows\Tasks\User_Feed_Synchronization-{103B65BD-4798-4CA0-9487-EB211B637804}.job
- c:\windows\system32\msfeedssync.exe [2009-01-15 11:01]
.
.
------- Scansione supplementare -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
uStart Page = hxxp://news.google.it/nwshp?hl=it&tab=wn
IE: Invia immagine alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Invia pagina alla periferica &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-15 08:00:28
Windows 6.0.6001 Service Pack 1 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'Explorer.exe'(4888)
c:\windows\system32\btmmhook.dll
.
Ora fine scansione: 2009-03-15 8.02.47
ComboFix-quarantined-files.txt 2009-03-15 07:02:41
ComboFix2.txt 2009-03-15 06:55:51
ComboFix3.txt 2009-03-15 06:49:41
ComboFix4.txt 2009-03-14 11:21:11

Pre-Run: 238.745.354.240 byte disponibili
Post-Run: 237,974,233,088 byte disponibili

Current=1 Default=1 Failed=0 LastKnownGood=6 Sets=1,2,3,4,5,6
245 --- E O F --- 2009-03-14 15:20:31

malaware:

Malwarebytes' Anti-Malware 1.34
Versione del database: 1749
Windows 6.0.6001 Service Pack 1

15/03/2009 10.13.45
mbam-log-2009-03-15 (10-13-45).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi scansionati: 178675
Tempo trascorso: 1 hour(s), 59 minute(s), 2 second(s)

Processi delle memoria infetti: 0
Moduli della memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Elementi dato del registro infetti: 0
Cartelle infette: 0
File infetti: 0

Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)

Moduli della memoria infetti:
(Nessun elemento malevolo rilevato)

Chiavi di registro infette:
(Nessun elemento malevolo rilevato)

Valori di registro infetti:
(Nessun elemento malevolo rilevato)

Elementi dato del registro infetti:
(Nessun elemento malevolo rilevato)

Cartelle infette:
(Nessun elemento malevolo rilevato)

File infetti:
(Nessun elemento malevolo rilevato)
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » dom mar 15, 2009 10:48 am

... come da messaggio precedente invio il log hijack con pc connesso:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10.49.55, on 15/03/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\sony\ISB Utility\ISBMgr.exe
C:\Program Files\sony\Marketing Tools\MarketingTools.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\system32\rundll32.exe
C:\SOFTWARE\Hijackthis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://news.google.it/nwshp?hl=it&tab=wn
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe"
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Invia immagine alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Invia pagina alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Statistiche sulla protezione del traffico Web - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9048 bytes
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » dom mar 15, 2009 1:46 pm

Tutti i log sono puliti e non si vede nulla di strano. Direi che puoi tranquillamente riavviare il pc senza aver paura di perdere la connessione.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mar mar 17, 2009 9:13 am

Amantide ha scritto:Tutti i log sono puliti e non si vede nulla di strano. Direi che puoi tranquillamente riavviare il pc senza aver paura di perdere la connessione.
... [cry+] neanche per idea !!! alla fine smanettando quà e là riesco a collegarmi .... ma mica ogni volta che voglio entrare in internet devo fare : diagnostica .... (qualche volta si mette a posto e qualche volta no, quindi non è che per prassi faccio la diagnostica e si risolve il problema), oppure ccleaner, etc etc !!! eppure come hai visto te tutti i log sono puliti e a posto .... che posso fare ? se ti puo' essere utile ho notato che aprendo le connessioni wireles vedo (sono in ambiente windows vista) vede le icone del mio pc ------ una linea che collega il pc al router ------ una linea che collega il router all'icona del planisfero (internet) ed è qui che quando non sono collegato questa linea è interrotta da una bella " X " rossa ... [devil];
grazie Amantide per la tua disponibilità.
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda LaFouineFARC-EP » mar mar 17, 2009 11:07 am

mi piacerebbe tanto sapere questo tipo ma anche pampas e pellaccia come fanno a prendere megavirsu del genere [rotolo]
richkary nactallay
Avatar utente
LaFouineFARC-EP
Senior Member
Senior Member
 
Messaggi: 214
Iscritto il: mar giu 06, 2006 5:23 pm
Località: etruria

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mar mar 17, 2009 12:30 pm

LaFouineFARC-EP ha scritto:mi piacerebbe tanto sapere questo tipo ma anche pampas e pellaccia come fanno a prendere megavirsu del genere [rotolo]
... cioè ??? [...]
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Amantide » mar mar 17, 2009 12:47 pm

LaFouineFARC-EP ha scritto:mi piacerebbe tanto sapere questo tipo ma anche pampas e pellaccia come fanno a prendere megavirsu del genere [rotolo]

LaFouineFARC-EP, ti pregherei tanto di smettere a spammare, che negli ultimi giorni vedo che ti sei dato alla pazza gioia. Ora basta. [grazie]
daniloluc ha scritto:se ti puo' essere utile ho notato che aprendo le connessioni wireles vedo (sono in ambiente windows vista) vede le icone del mio pc ------ una linea che collega il pc al router ------ una linea che collega il router all'icona del planisfero (internet) ed è qui che quando non sono collegato questa linea è interrotta da una bella " X " rossa ... ;


Purtroppo non ho Vista a portata di mano e quindi mi risulta un po' difficile a fare delle prove ed i controlli.
Prova a fare queste due cose:
1) riconfigura completamente daccapo la connessione;
2) configura manualmente nelle impostazioni di rete i parametri DNS del tuo provider internet ed indirizzo IP.

P.S. Ora che ci penso, per caso riesci a navigare solo quando l'altro portatile è spento? Accedi nelle impostazione del router e vedi se DHCP sia abilitato.
...per volare alto, bisogna saper cadere...
Avatar utente
Amantide
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 8126
Iscritto il: lun feb 06, 2006 4:13 pm
Località: Abruzzo

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda Uriele » mar mar 17, 2009 4:05 pm

Ciao,

a quanto ho capito hai un router.

Come ha detto amantide, hai controllato di avere il DHCP abilitato? o in caso sia disabilitato di aver assegnato gli indirizzi manualmente?

Nella scheda di rete del pc in questione hai l'opzione per far si che prenda indirizzo e dns automaticamente o hai assegnato un indirizzo?

Ti sembrano disconnessioni di rete locale o disconnessioni di banda internet?
W. H. Auden ha scritto:
"Il male non e’ mai straordinario, ed e’ sempre umano, divide il letto con noi e siede alla nostra tavola."
Avatar utente
Uriele
Aficionado
Aficionado
 
Messaggi: 75
Iscritto il: dom feb 19, 2006 7:31 pm
Località: Firenze

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mar mar 17, 2009 9:38 pm

Uriele ha scritto: o in caso sia disabilitato di aver assegnato gli indirizzi manualmente??
... come faccio ad assegnare manualmente gli indirizzi ? ... che vergogna [:-H] sono proprio un neofita.... se non chiedo molto ... me lo spiegate ? altrimenti mi applico e provo da solo.


Uriele ha scritto:Nella scheda di rete del pc in questione hai l'opzione per far si che prenda indirizzo e dns automaticamente o hai assegnato un indirizzo?
... ora provo a vedere.


Uriele ha scritto:Ti sembrano disconnessioni di rete locale o disconnessioni di banda internet?

.... credo di banda internet ...
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Re: wireless connesso ... non navigo ... mi controllate ...

Messaggioda daniloluc » mar mar 17, 2009 9:42 pm

Amantide ha scritto:1) riconfigura completamente daccapo la connessione;.

cioè la elimino e riaccendo il pc, trovo il dispositivo wireless ... etc etc ?
Amantide ha scritto:2) configura manualmente nelle impostazioni di rete i parametri DNS del tuo provider internet ed indirizzo IP.;
... i parametri dns del mio provider (alice adsl flato) dove li trovo ?


Amantide ha scritto:P.S. Ora che ci penso, per caso riesci a navigare solo quando l'altro portatile è spento? Accedi nelle impostazione del router e vedi se DHCP sia abilitato.
... no, posso navigare anche con l'altro pc acceso !
Avatar utente
daniloluc
Aficionado
Aficionado
 
Messaggi: 100
Iscritto il: lun ott 10, 2005 7:16 pm
Località: narni

Prossimo

Torna a Reti e Internet

Chi c’è in linea

Visitano il forum: Nessuno e 0 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising