Punto informatico Network
Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

Log Combofix

Un virus si è intromesso nel tuo computer? Vuoi navigare in tutta sicurezza? Sono sicure le transazione online? Come impedire a malintenzionati di intromettersi nel tuo pc? Come proteggere i tuoi dati? Qui trovi le risposte a queste ed altre domande

Log Combofix

Messaggioda CRYPAX » lun lug 26, 2010 5:14 pm

ComboFix 10-07-24.06 - user 26/07/2010 17:53:07.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.39.1040.18.3067.2197 [GMT 2:00]
Eseguito da: c:\users\user\Downloads\ComboFix.exe
* Creato nuovo punto di ripristino
* Resident AV is active

.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\vbzlib1.dll

.
((((((((((((((((((((((((( Files Creati Da 2010-06-26 al 2010-07-26 )))))))))))))))))))))))))))))))))))
.

2010-07-26 15:59 . 2010-07-26 15:59 -------- d-----w- c:\users\user\AppData\Local\temp
2010-07-26 15:48 . 2010-07-26 15:49 -------- d-----w- C:\32788R22FWJFW
2010-07-26 15:43 . 2010-07-26 15:43 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-07-26 15:26 . 2010-07-26 15:43 16968 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-07-26 15:23 . 2010-07-26 15:43 -------- d-----w- c:\programdata\Hitman Pro
2010-07-26 15:23 . 2010-07-26 15:23 -------- d-----w- c:\program files\Hitman Pro 3.5
2010-07-25 17:17 . 2010-07-25 17:17 -------- d-----w- c:\program files\IObit
2010-07-25 13:59 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-07-25 13:59 . 2010-07-25 13:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-07-25 13:59 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-07-23 10:38 . 2010-07-23 10:38 -------- d-----w- c:\program files\Winamp Detect
2010-07-22 21:27 . 2010-07-22 21:27 -------- d-----w- c:\program files\Sandboxie
2010-07-21 15:02 . 2010-07-21 15:02 -------- d-----w- c:\users\user\AppData\Local\Sunbelt Software
2010-07-19 07:31 . 2010-07-19 07:31 -------- d-----w- c:\program files\Conduit
2010-07-19 07:31 . 2010-04-21 10:07 52224 ----a-w- c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\FFExternalAlert.dll
2010-07-19 07:31 . 2010-04-21 10:07 101376 ----a-w- c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\RadioWMPCore.dll
2010-07-13 18:57 . 2010-07-13 18:57 -------- d-----r- C:\Sandbox
2010-07-13 18:44 . 2010-07-20 18:20 71112 ----a-w- c:\programdata\Immunet\banner.dll
2010-07-13 18:44 . 2010-07-13 18:49 -------- d-----w- c:\users\user\AppData\Local\Immunet
2010-07-13 18:44 . 2010-07-13 18:44 -------- d-----w- c:\programdata\Immunet
2010-07-13 18:42 . 2010-07-21 15:17 -------- d-----w- c:\program files\Immunet Protect
2010-07-13 16:21 . 2010-07-13 16:23 -------- d-----w- c:\users\user\AppData\Roaming\QuickScan
2010-07-12 16:00 . 2010-07-12 16:00 -------- d-----w- c:\programdata\Kaspersky Lab Setup Files
2010-07-10 17:22 . 2010-07-10 17:22 -------- d-----w- c:\program files\ESET
2010-07-10 11:49 . 2010-07-10 11:49 10134 ----a-r- c:\users\user\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2010-07-10 11:49 . 2010-07-10 11:49 -------- d-----w- c:\program files\Microsoft WSE
2010-07-10 11:37 . 2010-07-10 11:37 -------- d-----w- c:\program files\Electronic Arts
2010-07-04 17:42 . 2010-07-04 17:51 -------- d-----w- c:\program files\Google
2010-07-04 16:56 . 2010-07-04 16:56 -------- d-----w- c:\users\user\DoctorWeb
2010-07-04 13:55 . 2010-07-04 13:55 -------- d-----w- c:\program files\VS Revo Group
2010-07-04 13:38 . 2010-07-04 14:09 -------- d-----w- c:\users\user\AppData\Local\Lphant
2010-06-27 13:05 . 2010-06-27 13:06 -------- d-----w- c:\users\user\AppData\Roaming\calibre
2010-06-27 13:04 . 2010-06-27 13:05 -------- d-----w- c:\program files\Calibre2

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-26 08:07 . 2010-02-17 19:48 701426 ----a-w- c:\windows\system32\perfh010.dat
2010-07-26 08:07 . 2010-02-17 19:48 128740 ----a-w- c:\windows\system32\perfc010.dat
2010-07-26 08:02 . 2010-04-02 20:24 -------- d-----w- c:\users\user\AppData\Roaming\BitTorrent
2010-07-25 13:58 . 2010-04-25 22:28 -------- d-----w- c:\programdata\Lavasoft
2010-07-25 08:39 . 2010-04-06 08:37 -------- d-----w- c:\users\user\AppData\Roaming\vlc
2010-07-24 19:08 . 2010-06-22 15:29 -------- d-----w- c:\program files\Minilyrics
2010-07-23 19:09 . 2010-04-16 22:29 -------- d-----w- c:\programdata\Kaspersky Lab
2010-07-23 10:56 . 2010-04-02 20:33 -------- d-----w- c:\users\user\AppData\Roaming\Winamp
2010-07-23 10:38 . 2010-04-02 20:33 -------- d-----w- c:\program files\Winamp
2010-07-19 07:31 . 2010-04-02 20:03 -------- d-----w- c:\program files\Messenger Plus! Live
2010-07-17 12:22 . 2010-04-02 08:33 -------- d-----w- c:\programdata\Microsoft Help
2010-07-10 11:37 . 2010-04-02 15:29 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-07-04 11:01 . 2010-04-03 21:26 -------- d-----w- c:\programdata\G DATA
2010-07-04 10:59 . 2010-04-03 21:26 -------- d-----w- c:\program files\Common Files\G DATA
2010-07-04 10:13 . 2010-04-03 21:45 29992 ----a-w- c:\windows\system32\drivers\GRD.sys
2010-07-04 10:08 . 2010-04-03 21:28 61512 ----a-w- c:\windows\system32\drivers\MiniIcpt.sys
2010-07-04 10:08 . 2010-04-03 21:28 33480 ----a-w- c:\windows\system32\drivers\GDBehave.sys
2010-07-04 10:08 . 2010-04-03 21:27 40904 ----a-w- c:\windows\system32\drivers\gdwfpcd32.sys
2010-06-24 21:40 . 2010-04-08 19:33 -------- d-----w- c:\program files\Microsoft.NET
2010-06-22 14:17 . 2010-04-02 20:14 -------- d-----w- c:\program files\Songr
2010-06-22 13:00 . 2010-06-22 13:00 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2010-06-22 11:28 . 2010-06-22 11:28 -------- d-----w- c:\program files\SEGA
2010-06-21 21:16 . 2010-06-21 21:16 -------- d-----w- c:\programdata\Alwil Software
2010-06-19 07:05 . 2010-06-18 16:40 -------- d-----w- c:\users\user\AppData\Roaming\Teleca
2010-06-06 15:32 . 2010-06-06 15:32 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-03 02:41 . 2010-06-03 02:41 3600384 ----a-w- c:\windows\system32\GPhotos.scr
2010-05-29 21:40 . 2010-05-29 21:40 -------- d-----w- c:\program files\DsNET Corp
2010-05-29 11:48 . 2010-04-02 15:29 -------- d-----w- c:\program files\Acer
2010-05-29 08:26 . 2010-05-29 08:18 -------- d--h--w- c:\program files\Zero G Registry
2010-05-29 08:18 . 2010-05-29 08:18 -------- d-----w- c:\program files\Sports Interactive
2010-05-27 07:24 . 2010-06-09 06:01 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-05-27 03:49 . 2010-06-09 06:01 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-05-21 12:14 . 2010-04-02 08:09 221568 ------w- c:\windows\system32\MpSigStub.exe
2010-05-21 05:18 . 2010-06-09 06:01 977920 ----a-w- c:\windows\system32\wininet.dll
2010-05-20 16:00 . 2010-05-20 16:00 68256 ----a-w- c:\programdata\Kaspersky Lab Setup Files\Kaspersky Internet Security 2011 11.0.0.232\Italian\setup.exe
2010-05-09 09:14 . 2010-06-23 04:03 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-05-09 09:14 . 2010-06-23 04:03 417792 ----a-w- c:\windows\system32\msdri.dll
2010-05-01 14:49 . 2010-06-09 06:02 2326528 ----a-w- c:\windows\system32\win32k.sys
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2010-07-04 398568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-04-02 200704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-28 13797920]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Servizio di Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 136176]
R3 EraserUtilDrvI9;EraserUtilDrvI9;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilDrvI9.sys [x]
R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-30 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-04-24 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
S1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [2010-04-25 95024]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-12-18 38240]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464]
S3 k57nd60x;Gigabit Ethernet Broadcom NetXtreme - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2009-05-01 64032]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]

.
Contenuto della cartella 'Scheduled Tasks'

2010-07-26 c:\windows\Tasks\AWC Startup.job
- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2010-07-25 15:33]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 17:42]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-04 17:42]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-633374088-4001182803-702579871-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-26 20:12]

2010-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-633374088-4001182803-702579871-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2010-04-26 20:12]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://search.conduit.com?SearchSource= ... =CT2567691
uInternet Settings,ProxyOverride = local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: 0716E646F627F6 = 8.8.8.8,4.4.4.4
TCP: 4505D2C494E4B4F5346464438303 = 8.8.8.8,4.4.4.4
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.co ... 1.71.0.cab
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Messenger Plus Live Italy Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.it/firefox?client=fir ... t:official
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 2567691&q=
FF - component: c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\FFExternalAlert.dll
FF - component: c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\calghnzh.default\extensions\{08d495ab-a86c-47b0-82ef-da87bf92f730}\components\RadioWMPCore.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Picasa3\npPicasa3.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\npdeployJava1.dll
FF - plugin: c:\program files\Java\jre6\bin\npjpi160_20.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: c:\users\user\AppData\Local\Google\Update\1.2.183.29\npGoogleOneClick8.dll

---- FIREFOX POLICIES ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

URLSearchHooks-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
BHO-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
Toolbar-{08d495ab-a86c-47b0-82ef-da87bf92f730} - (no file)
AddRemove-Messenger_Plus_Live_Italy Toolbar - c:\progra~1\MESSEN~2\UNWISE.EXE


.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2010-07-26 18:01:37
ComboFix-quarantined-files.txt 2010-07-26 16:01

Pre-Run: 171.250.290.688 byte disponibili
Post-Run: 171.195.187.200 byte disponibili

- - End Of File - - 171AB6BDE78965EF4AC4AE7AC457A99B
mi analizzate xfavore questa log?? cè qualcosa che nn va? è un po' lunghetto, ma spero nel vostro aiuto [^]
[grazie]
[ciao]
Ogni uomo vive governato dalle proprie opinioni cui dà il nome fallace di realtà.
Avatar utente
CRYPAX
Bronze Member
Bronze Member
 
Messaggi: 994
Iscritto il: sab lug 24, 2010 5:01 pm
Località: K-PAX

Re: Log Combofix

Messaggioda crazy.cat » lun lug 26, 2010 5:48 pm

E' stata rimossa una dll vbzlib1.dll che non è chiarissimo di cosa sia, sembra un rogue,.
Che problemi hai di preciso?
Una scansione con malwarebytes non fa mai male.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: Log Combofix

Messaggioda CRYPAX » lun lug 26, 2010 6:10 pm

innanzitutto permettimi di complimentarmi con te per il megatest degli antivirus, grandioso
comunque nessun problema di preciso
volevo analizzare x sicurezza il pc ed ho usato combofix
quindi sembra tt ok ?

grazie XD
Ogni uomo vive governato dalle proprie opinioni cui dà il nome fallace di realtà.
Avatar utente
CRYPAX
Bronze Member
Bronze Member
 
Messaggi: 994
Iscritto il: sab lug 24, 2010 5:01 pm
Località: K-PAX


Re: Log Combofix

Messaggioda crazy.cat » lun lug 26, 2010 6:22 pm

CRY >< PAX ha scritto:innanzitutto permettimi di complimentarmi con te per il megatest degli antivirus, grandioso

L'ultimo test non l'avevo fatto io ma fabrix.

C'è solo quella dll che è stata eliminata ma non si capisce bene a cosa appartenesse. Niente di buono ma non saprei di cosa si trattava.
Usa malwarebytes.
Quando i molti governano, pensano solo a contentar sé stessi, si ha allora la tirannia più balorda e più odiosa: la tirannia mascherata da libertà.
Avatar utente
crazy.cat
MLI Hero
MLI Hero
 
Messaggi: 30959
Iscritto il: lun gen 12, 2004 1:38 pm
Località: Mestre

Re: Log Combofix

Messaggioda gio! » lun lug 26, 2010 6:58 pm

L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.
Avatar utente
gio!
Senior Member
Senior Member
 
Messaggi: 275
Iscritto il: sab gen 19, 2008 3:13 pm

Re: Log Combofix

Messaggioda CRYPAX » lun lug 26, 2010 7:04 pm

L'ultimo test non l'avevo fatto io ma fabrix

allora chiedo scusa a fabrix [:)]
fatto una scansione completa con Malwarebytes e nn ha rilevato nulla
quindi credo di essere a posto [8D]
[grazie] per il tempo dedicatomi
[ciao]
Ogni uomo vive governato dalle proprie opinioni cui dà il nome fallace di realtà.
Avatar utente
CRYPAX
Bronze Member
Bronze Member
 
Messaggi: 994
Iscritto il: sab lug 24, 2010 5:01 pm
Località: K-PAX

Re: Log Combofix

Messaggioda CRYPAX » lun lug 26, 2010 7:08 pm

L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.


mi ero dimentico di dirvi che avevo fatto una scansione con hijackthis
mi segnava in rosso proprio qll voce, ed io l'ho eliminata [^]
comunque era di internet explorer... browser che nn mi sognerei mai di usare [;)]
Ogni uomo vive governato dalle proprie opinioni cui dà il nome fallace di realtà.
Avatar utente
CRYPAX
Bronze Member
Bronze Member
 
Messaggi: 994
Iscritto il: sab lug 24, 2010 5:01 pm
Località: K-PAX

Re: Log Combofix

Messaggioda gio! » lun lug 26, 2010 7:25 pm

CRY >< PAX ha scritto:
L'hai decisa tu questa come pagina iniziale e di ricerca ? http://search.conduit.com?SearchSource= ... =CT2567691

Forse hai installato il programma sponsor di Messenger Plus! Posta anche il log hijackthis.


mi ero dimentico di dirvi che avevo fatto una scansione con hijackthis
mi segnava in rosso proprio qll voce, ed io l'ho eliminata [^]
comunque era di internet explorer... browser che non mi sognerei mai di usare [;)]

Si infatti ti avevo chiesto il log hijackthis proprio per fixarla da lì [;)]
Avatar utente
gio!
Senior Member
Senior Member
 
Messaggi: 275
Iscritto il: sab gen 19, 2008 3:13 pm

Re: Log Combofix

Messaggioda CRYPAX » lun lug 26, 2010 7:36 pm

gio! ha scritto :
Si infatti ti avevo chiesto il log hijackthis proprio per fixarla da lì

[grazie] per la segnalazione [^]
Ogni uomo vive governato dalle proprie opinioni cui dà il nome fallace di realtà.
Avatar utente
CRYPAX
Bronze Member
Bronze Member
 
Messaggi: 994
Iscritto il: sab lug 24, 2010 5:01 pm
Località: K-PAX


Torna a Sicurezza

Chi c’è in linea

Visitano il forum: Nessuno e 1 ospite

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising