Login Esegui login | Non sei registrato? Iscriviti ora (è gratuito!)
Username: Password:
  • Annuncio Pubblicitario

errore internet explorer

Problemi con i sistemi operativi di casa Microsoft? Questa è la sezione che fa per te!

errore internet explorer

Messaggioda Ed22 » ven ott 22, 2010 10:49 am

buongiorno.
io ho windows xp service pack 3 installato su un hp con 2 giga di ram.
io avrei questo problema. in pratica con la connessione internet attiva e con aperta la ricerca di alcuni file(nel mentre ascolto anche musica con winamp), mi appare ad un certo punto un mess di errore internet explorer(dopo circa 15 min).

da eventvwr vedo questi errori:
WINLOGON: La shell si è arrestata in maniera non prevista. Explorer.exe è stato riavviato.
Il servizio Servizio COM di masterizzazione CD IMAPI è ora in modalità arrestato.

questo invece è un log di DrWtsn32

Microsoft (R) DrWtsn32
Copyright (C) 1985-2001 Microsoft Corp. Tutti i diritti riservati.



Exception dell'applicazione:
App: C:\WINDOWS\Explorer.EXE (pid=2496)
Ora: 22/10/2010 @ 11:37:39.718
Numero exception: c0000005 (access violation)

*----> System Information <----*
Nome computer: YOUR-6CAA4FBA36
Nome utente: proprietario
Id sessione terminal: 0
Numero processori: 2
Tipo processore: x86 Family 6 Model 15 Stepping 6
Versione di Windows: 5.1
Build corrente: 2600
Service Pack: 3
Tipo corrente: Multiprocessor Free
Organizzazione registrata:
Proprietario autorizzato: proprietario

*----> Elenco Task <----*
0 System Process
4 System
900 smss.exe
976 csrss.exe
1008 winlogon.exe
1052 services.exe
1064 lsass.exe
1244 svchost.exe
1312 svchost.exe
1352 svchost.exe
1392 svchost.exe
1444 svchost.exe
1540 svchost.exe
1824 spoolsv.exe
1872 sched.exe
592 msdtc.exe
656 a2service.exe
680 avguard.exe
760 bgsvcgen.exe
876 LSSrvc.exe
1464 nvsvc32.exe
1524 SeaPort.exe
1604 sp_rsser.exe
1716 svchost.exe
1380 alg.exe
2496 Explorer.EXE
2912 svchost.exe
2960 HP Wireless Assistant.exe
2980 avgnt.exe
3088 wmiprvse.exe
3116 ninja.exe
3500 svchost.exe
2896 winamp.exe
2996 drwtsn32.exe

*----> Elenco moduli <----*
(0000000000400000 - 0000000000409000: C:\WINDOWS\system32\Normaliz.dll
(0000000000970000 - 0000000000988000: C:\Programmi\Malwarebytes' Anti-Malware\mbamext.dll
(0000000000f10000 - 0000000000f4b000: C:\Programmi\Emsisoft Anti-Malware\a2contmenu.dll
(0000000001000000 - 00000000010ff000: C:\WINDOWS\Explorer.EXE
(00000000039b0000 - 0000000003c85000: C:\WINDOWS\system32\xpsp2res.dll
(0000000004010000 - 0000000004451000: C:\WINDOWS\system32\msi.dll
(00000000046f0000 - 00000000046ff000: C:\Programmi\SUPERAntiSpyware\SASCTXMN.DLL
(0000000004700000 - 000000000472e000: C:\Programmi\WinRAR\rarext.dll
(0000000004770000 - 00000000047ad000: C:\WINDOWS\system32\webcheck.dll
(0000000004f70000 - 0000000004f9e000: C:\Programmi\Spyware Terminator\sptcontmenu.dll
(0000000004fb0000 - 0000000004fc7000: C:\Programmi\Notepad++\NppShell_01.dll
(0000000005130000 - 00000000051ca000: C:\Programmi\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
(00000000053d0000 - 00000000054b3000: C:\Programmi\Nokia\Nokia PC Suite 7\NGSCM.DLL
(0000000005600000 - 0000000005609000: C:\Programmi\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ita.nlr
(0000000005610000 - 000000000569e000: C:\Programmi\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
(0000000005f60000 - 0000000005fac000: C:\Programmi\Avira\AntiVir Desktop\shlext.dll
(00000000060f0000 - 000000000614b000: C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\PDFShell.dll
(0000000006150000 - 000000000619c000: C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\PDFShell.ITA
(0000000006fd0000 - 0000000006fe4000: C:\Programmi\SUPERAntiSpyware\SASSEH.DLL
(0000000007290000 - 000000000729c000: C:\Programmi\Windows Plus\Audio Converter\ACShellExt3.dll
(00000000072d0000 - 0000000007314000: C:\WINDOWS\system32\NVRSIT.DLL
(0000000007c50000 - 0000000007c96000: C:\WINDOWS\system32\Audiodev.dll
(0000000007cd0000 - 000000000841d000: C:\WINDOWS\system32\nvcpl.dll
(0000000008420000 - 0000000008493000: C:\WINDOWS\system32\nvshell.dll
(0000000010000000 - 0000000010006000: C:\Programmi\Unlocker\UnlockerCOM.dll
(0000000010930000 - 0000000010979000: C:\WINDOWS\system32\PortableDeviceApi.dll
(00000000109c0000 - 00000000109ec000: C:\WINDOWS\system32\PortableDeviceTypes.dll
(0000000011c70000 - 0000000011ca9000: C:\WINDOWS\system32\WMASF.DLL
(0000000015140000 - 000000001539a000: C:\WINDOWS\system32\wmvcore.dll
(0000000015f90000 - 000000001620b000: C:\WINDOWS\system32\wpdshext.dll
(00000000164d0000 - 00000000164f3000: C:\WINDOWS\system32\WPDShServiceObj.dll
(000000001f840000 - 000000001f858000: C:\WINDOWS\system32\odbcint.dll
(000000003f910000 - 000000003f9c4000: C:\WINDOWS\system32\jscript.dll
(000000003f9d0000 - 000000003fab6000: C:\WINDOWS\system32\WININET.dll
(0000000040070000 - 0000000040258000: C:\WINDOWS\system32\iertutil.dll
(0000000040260000 - 0000000040cf5000: C:\WINDOWS\system32\ieframe.dll
(0000000045010000 - 0000000045143000: C:\WINDOWS\system32\urlmon.dll
(000000004d530000 - 000000004d589000: C:\WINDOWS\system32\WINHTTP.dll
(000000004ebd0000 - 000000004ed7b000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\gdiplus.dll
(000000004ee60000 - 000000004eef3000: C:\WINDOWS\system32\wiashext.dll
(000000004f4b0000 - 000000004f511000: C:\WINDOWS\system32\wzcdlg.dll
(00000000592c0000 - 00000000592d4000: C:\WINDOWS\system32\wmpshell.dll
(00000000596b0000 - 000000005987a000: C:\WINDOWS\AppPatch\AcGenral.DLL
(000000005ad00000 - 000000005ad28000: C:\WINDOWS\system32\OneX.DLL
(000000005b180000 - 000000005b1b8000: C:\WINDOWS\system32\UxTheme.dll
(000000005ba40000 - 000000005bab2000: C:\WINDOWS\system32\themeui.dll
(000000005bc70000 - 000000005bcc5000: C:\WINDOWS\system32\NETAPI32.dll
(000000005cef0000 - 000000005cf18000: C:\WINDOWS\system32\shmedia.dll
(000000005cf90000 - 000000005cfb6000: C:\WINDOWS\system32\ShimEng.dll
(000000005d1e0000 - 000000005d1f0000: C:\WINDOWS\system32\sendmail.dll
(000000005d4d0000 - 000000005d56a000: C:\WINDOWS\system32\comctl32.dll
(000000005f210000 - 000000005f227000: C:\WINDOWS\system32\OLEPRO32.DLL
(0000000060340000 - 0000000060348000: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\culture.dll
(0000000060610000 - 0000000060616000: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Fusion.dll
(0000000061e00000 - 0000000061e0e000: C:\WINDOWS\system32\MFC42LOC.DLL
(00000000641f0000 - 000000006420e000: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Shfusion.dll
(0000000064220000 - 0000000064238000: c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\it\ShFusRes.dll
(0000000068000000 - 0000000068036000: C:\WINDOWS\system32\rsaenh.dll
(0000000071600000 - 0000000071613000: C:\WINDOWS\system32\browselc.dll
(0000000071680000 - 00000000716a2000: C:\WINDOWS\system32\eappcfg.dll
(0000000071800000 - 000000007188c000: C:\WINDOWS\system32\shdoclc.dll
(0000000071a20000 - 0000000071a28000: C:\WINDOWS\system32\WS2HELP.dll
(0000000071a30000 - 0000000071a47000: C:\WINDOWS\system32\WS2_32.dll
(0000000071aa0000 - 0000000071ab2000: C:\WINDOWS\system32\MPR.dll
(0000000071b80000 - 0000000071b93000: C:\WINDOWS\system32\SAMLIB.dll
(0000000071ba0000 - 0000000071bae000: C:\WINDOWS\System32\ntlanman.dll
(0000000071c10000 - 0000000071c17000: C:\WINDOWS\System32\NETRAP.dll
(0000000071c20000 - 0000000071c60000: C:\WINDOWS\System32\NETUI1.dll
(0000000071c60000 - 0000000071c77000: C:\WINDOWS\System32\NETUI0.dll
(0000000071cd0000 - 0000000071ceb000: C:\WINDOWS\system32\actxprxy.dll
(00000000723a0000 - 00000000723ba000: C:\WINDOWS\system32\mydocs.dll
(00000000727a0000 - 0000000072892000: C:\WINDOWS\system32\MFC42u.DLL
(0000000072960000 - 000000007296a000: C:\WINDOWS\system32\dot3api.dll
(0000000072c60000 - 0000000072c67000: C:\WINDOWS\system32\msadp32.acm
(0000000072c80000 - 0000000072c88000: C:\WINDOWS\system32\msacm32.drv
(0000000072c90000 - 0000000072c99000: C:\WINDOWS\system32\wdmaud.drv
(0000000072f70000 - 0000000072f96000: C:\WINDOWS\system32\WINSPOOL.DRV
(0000000072fa0000 - 0000000072fb0000: C:\WINDOWS\system32\WZCSAPI.DLL
(00000000732f0000 - 0000000073347000: C:\WINDOWS\system32\zipfldr.dll
(0000000073540000 - 0000000073587000: C:\WINDOWS\system32\mstask.dll
(0000000073640000 - 0000000073646000: C:\WINDOWS\system32\dot3dlg.dll
(0000000073ac0000 - 0000000073ad7000: C:\WINDOWS\system32\AVIFIL32.dll
(0000000073b10000 - 0000000073b24000: C:\WINDOWS\system32\sti.dll
(0000000073b40000 - 0000000073b4e000: C:\WINDOWS\system32\eappprxy.dll
(0000000073ce0000 - 0000000073cf3000: C:\WINDOWS\system32\shgina.dll
(00000000745e0000 - 000000007461d000: C:\WINDOWS\system32\ODBC32.dll
(0000000074910000 - 0000000074a33000: C:\WINDOWS\system32\msxml3.dll
(0000000074a60000 - 0000000074a68000: C:\WINDOWS\system32\POWRPROF.dll
(0000000074a70000 - 0000000074a77000: C:\WINDOWS\system32\CFGMGR32.dll
(0000000074a80000 - 0000000074a8a000: C:\WINDOWS\system32\BatMeter.dll
(0000000074c10000 - 0000000074c3c000: C:\WINDOWS\system32\OLEACC.dll
(00000000752e0000 - 000000007530e000: C:\WINDOWS\system32\msctfime.ime
(0000000075920000 - 0000000075a19000: C:\WINDOWS\system32\MSGINA.dll
(0000000075d50000 - 0000000075de1000: C:\WINDOWS\system32\MLANG.dll
(0000000075df0000 - 0000000075e11000: C:\WINDOWS\system32\MSVFW32.dll
(0000000075f10000 - 0000000075f17000: C:\WINDOWS\System32\drprov.dll
(0000000075f20000 - 0000000075f2a000: C:\WINDOWS\System32\davclnt.dll
(0000000075f30000 - 000000007602d000: C:\WINDOWS\system32\BROWSEUI.dll
(0000000076030000 - 0000000076095000: C:\WINDOWS\system32\MSVCP60.dll
(00000000761e0000 - 0000000076201000: C:\WINDOWS\system32\stobject.dll
(0000000076310000 - 0000000076320000: C:\WINDOWS\system32\WINSTA.dll
(0000000076330000 - 0000000076335000: C:\WINDOWS\system32\MSIMG32.dll
(0000000076340000 - 000000007635d000: C:\WINDOWS\system32\IMM32.DLL
(0000000076360000 - 00000000763aa000: C:\WINDOWS\system32\comdlg32.dll
(00000000763b0000 - 0000000076558000: C:\WINDOWS\system32\NETSHELL.dll
(00000000765b0000 - 00000000765cd000: C:\WINDOWS\System32\CSCDLL.dll
(0000000076740000 - 0000000076749000: C:\WINDOWS\system32\SHFolder.dll
(0000000076760000 - 0000000076773000: C:\WINDOWS\system32\NTDSAPI.dll
(0000000076890000 - 0000000076913000: C:\WINDOWS\system32\CRYPTUI.dll
(0000000076940000 - 0000000076948000: C:\WINDOWS\system32\LINKINFO.dll
(0000000076950000 - 0000000076976000: C:\WINDOWS\system32\ntshrui.dll
(0000000076980000 - 0000000076a35000: C:\WINDOWS\system32\USERENV.dll
(0000000076ae0000 - 0000000076af1000: C:\WINDOWS\system32\ATL.DLL
(0000000076b00000 - 0000000076b2e000: C:\WINDOWS\system32\WINMM.dll
(0000000076bc0000 - 0000000076bee000: C:\WINDOWS\system32\credui.dll
(0000000076bf0000 - 0000000076c1e000: C:\WINDOWS\system32\WINTRUST.dll
(0000000076c50000 - 0000000076c78000: C:\WINDOWS\system32\IMAGEHLP.dll
(0000000076d20000 - 0000000076d39000: C:\WINDOWS\system32\iphlpapi.dll
(0000000076e40000 - 0000000076e4e000: C:\WINDOWS\system32\rtutils.dll
(0000000076ee0000 - 0000000076f07000: C:\WINDOWS\system32\DNSAPI.dll
(0000000076f10000 - 0000000076f18000: C:\WINDOWS\system32\WTSAPI32.dll
(0000000076f20000 - 0000000076f4d000: C:\WINDOWS\system32\WLDAP32.dll
(0000000076f90000 - 000000007700f000: C:\WINDOWS\system32\CLBCATQ.DLL
(0000000077010000 - 00000000770e2000: C:\WINDOWS\system32\COMRes.dll
(00000000770f0000 - 000000007717b000: C:\WINDOWS\system32\OLEAUT32.dll
(00000000773a0000 - 00000000774a3000: C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
(00000000774b0000 - 00000000775ee000: C:\WINDOWS\system32\ole32.dll
(0000000077660000 - 0000000077681000: C:\WINDOWS\system32\NTMARTA.DLL
(00000000778f0000 - 00000000779e7000: C:\WINDOWS\system32\SETUPAPI.dll
(00000000779f0000 - 0000000077a45000: C:\WINDOWS\System32\cscui.dll
(0000000077a50000 - 0000000077ae6000: C:\WINDOWS\system32\CRYPT32.dll
(0000000077af0000 - 0000000077b02000: C:\WINDOWS\system32\MSASN1.dll
(0000000077b10000 - 0000000077b32000: C:\WINDOWS\system32\apphelp.dll
(0000000077ba0000 - 0000000077ba7000: C:\WINDOWS\system32\midimap.dll
(0000000077bb0000 - 0000000077bc5000: C:\WINDOWS\system32\MSACM32.dll
(0000000077bd0000 - 0000000077bd8000: C:\WINDOWS\system32\VERSION.dll
(0000000077be0000 - 0000000077c38000: C:\WINDOWS\system32\msvcrt.dll
(0000000077da0000 - 0000000077e33000: C:\WINDOWS\system32\RPCRT4.dll
(0000000077e40000 - 0000000077e89000: C:\WINDOWS\system32\GDI32.dll
(0000000077e90000 - 0000000077f06000: C:\WINDOWS\system32\SHLWAPI.dll
(0000000077f10000 - 0000000077f21000: C:\WINDOWS\system32\Secur32.dll
(0000000077f40000 - 0000000077feb000: C:\WINDOWS\system32\ADVAPI32.dll
(0000000078130000 - 00000000781cb000: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
(0000000079000000 - 000000007904a000: c:\WINDOWS\system32\mscoree.dll
(000000007c420000 - 000000007c4a7000: C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCP80.dll
(000000007c800000 - 000000007c901000: C:\WINDOWS\system32\kernel32.dll
(000000007c910000 - 000000007c9c8000: C:\WINDOWS\system32\ntdll.dll
(000000007c9d0000 - 000000007d1ee000: C:\WINDOWS\system32\SHELL32.dll
(000000007e210000 - 000000007e383000: C:\WINDOWS\system32\SHDOCVW.dll
(000000007e390000 - 000000007e421000: C:\WINDOWS\system32\USER32.dll
(000000007e6a0000 - 000000007e750000: C:\WINDOWS\system32\SXS.DLL

*----> Scarico dello stato per l'id del thread 0xdf0 <----*

eax=0000006d ebx=00000001 ecx=0037a1e0 edx=0037a204 esi=061c8fff edi=00000000
eip=1523d9bd esp=06e3d214 ebp=06e3d220 iopl=0 nv up ei pl nz na pe nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000202

*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\wmvcore.dll -
funzione: wmvcore
1523d9a6 ffff ???
1523d9a8 83c414 add esp,0x14
1523d9ab 8bc6 mov eax,esi
1523d9ad eb37 jmp wmvcore+0xfd9e6 (1523d9e6)
1523d9af 8b7510 mov esi,[ebp+0x10]
1523d9b2 3bf7 cmp esi,edi
1523d9b4 7505 jnz wmvcore+0xfd9bb (1523d9bb)
1523d9b6 668939 mov [ecx],di
1523d9b9 ebd9 jmp wmvcore+0xfd994 (1523d994)
1523d9bb 8bd1 mov edx,ecx
FAULT ->1523d9bd 0fb706 movzx eax,word ptr [esi] ds:0023:061c8fff=????
1523d9c0 668902 mov [edx],ax
1523d9c3 42 inc edx
1523d9c4 42 inc edx
1523d9c5 46 inc esi
1523d9c6 46 inc esi
1523d9c7 663bc7 cmp ax,di
1523d9ca 7403 jz wmvcore+0xfd9cf (1523d9cf)
1523d9cc 4b dec ebx
1523d9cd 75ee jnz wmvcore+0xfd9bd (1523d9bd)
1523d9cf 3bdf cmp ebx,edi

*----> Back Trace dello stack <----*
WARNING: Stack unwind information not available. Following frames may be wrong.
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\shmedia.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\SHELL32.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\BROWSEUI.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\SHLWAPI.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\ntdll.dll -
*** ERROR: Symbol file could not be found. Defaulted to export symbols for C:\WINDOWS\system32\kernel32.dll -
ChildEBP RetAddr Args to Child
06e3d220 15212270 0037a1e0 00000013 061c8fdb wmvcore+0xfd9bd
06e3d240 15212606 00000001 061c8fd9 00000026 wmvcore!WMCreateProfileManager+0x12d5e
06e3d268 15213413 00000000 00000001 06e3d3fc wmvcore!WMCreateProfileManager+0x130f4
06e3d2a4 152145b0 06e3d2cc 06e3d3fc 0037a1e0 wmvcore!WMCreateProfileManager+0x13f01
06e3d358 15214a3c 061c14a0 06e3d3fc 061c8fd8 wmvcore!WMCreateProfileManager+0x1509e
06e3d3bc 15214e62 061b5fe8 00000000 06e3d404 wmvcore!WMCreateProfileManager+0x1552a
06e3d460 15221aba 00030200 061bf440 00000000 wmvcore!WMCreateProfileManager+0x15950
06e3d488 15216977 00030200 061bf440 0000001e wmvcore!WMCreateEditor+0x5c7c
06e3d4b4 152229f7 061b9cc4 061cf350 061b9c90 wmvcore!WMCreateProfileManager+0x17465
06e3d500 1521e50d 00000cd4 061b9c90 7c809be7 wmvcore!WMCreateEditor+0x6bb9
06e3d518 1521bb49 061b9cc4 073e12a0 00000000 wmvcore!WMCreateEditor+0x26cf
06e3d54c 1521bd6e 073e12a0 00000001 80000000 wmvcore!WMCreateProfileManager+0x1c637
06e3d564 5cef7b0e 061b9c90 073e12a0 80000000 wmvcore!WMCreateProfileManager+0x1c85c
06e3d588 5cef8aea 061b9c90 061b9c90 073e1290 shmedia+0x7b0e
06e3e5c8 5cef7bc6 073e1290 5cef5e04 00000000 shmedia+0x8aea
06e3e5e4 7ca12f6e 073e1290 06e3e610 00000000 shmedia+0x7bc6
06e3e81c 7ca13241 07554c91 03f6a140 00000020 SHELL32!SHMapIDListToImageListIndexAsync+0x1fa
06e3ead4 7ca1d749 07554c91 00000020 7c9dd758 SHELL32!SHMapIDListToImageListIndexAsync+0x4cd
06e3ed34 7c9fdac2 05b14d20 07554c91 7c9d7238 SHELL32!ILLoadFromStream+0x3ca
06e3ed5c 7ca46ffb 00000000 07554c91 05b14d20 SHELL32!ILFindLastID+0xc96
06e3ed78 7ca473d9 05a42ce0 07554c91 05b14d20 SHELL32!Ordinal65+0x20d2
06e3f21c 7ca4721d 06e3f2ac 00000020 00000020 SHELL32!Ordinal691+0x135
06e3f260 7ca47572 05b14d20 06e3f2ac 06e3f29c SHELL32!Ordinal65+0x22f4
06e3f890 7ca45742 059bcfc0 00000008 06e3fd54 SHELL32!Ordinal691+0x2ce
06e3fd1c 7ca45a67 059c1a68 059bcfc0 00000010 SHELL32!Ordinal65+0x819
06e3fd3c 7ca47037 00000010 06e3fd50 052b6158 SHELL32!Ordinal65+0xb3e
06e3fe68 7ca03225 052b6150 059cde10 05841f88 SHELL32!Ordinal65+0x210e
06e3fe84 75f31b9a 052b6150 75f31b18 75f30000 SHELL32!Ordinal128+0x98c
06e3fee0 77e99598 073e4fc0 03f35fc0 77e9957b BROWSEUI!Ordinal113+0x1b9a
06e3fef8 7c937ac2 03f35fc0 7c98e440 05a9a440 SHLWAPI!Ordinal120+0xbf
06e3ff40 7c937b03 77e9957b 03f35fc0 00000000 ntdll!RtlSetEnvironmentVariable+0x30a
06e3ff60 7c937bc5 00000000 03f35fc0 05a9a440 ntdll!RtlSetEnvironmentVariable+0x34b
06e3ff74 7c937b9c 7c937ae9 00000000 03f35fc0 ntdll!RtlSetEnvironmentVariable+0x40d
06e3ffb4 7c80b729 00000000 0654d494 0654d494 ntdll!RtlSetEnvironmentVariable+0x3e4
06e3ffec 00000000 7c920250 00000000 00000000 kernel32!GetModuleFileNameA+0x1ba

*----> Scarico Raw Stack <----*
0000000006e3d214 d9 8f 1c 06 ff fe 00 00 - 26 00 00 00 40 d2 e3 06 ........&...@...
0000000006e3d224 70 22 21 15 e0 a1 37 00 - 13 00 00 00 db 8f 1c 06 p"!...7.........
0000000006e3d234 d9 8f 1c 06 26 00 00 00 - 26 00 00 00 68 d2 e3 06 ....&...&...h...
0000000006e3d244 06 26 21 15 01 00 00 00 - d9 8f 1c 06 26 00 00 00 .&!.........&...
0000000006e3d254 e0 a1 37 00 13 00 00 00 - fc d3 e3 06 cc d2 e3 06 ..7.............
0000000006e3d264 e0 a1 37 00 a4 d2 e3 06 - 13 34 21 15 00 00 00 00 ..7......4!.....
0000000006e3d274 01 00 00 00 fc d3 e3 06 - e0 a1 37 00 00 d3 e3 06 ..........7.....
0000000006e3d284 e0 a1 37 00 00 00 00 00 - 78 b2 37 00 00 d3 e3 06 ..7.....x.7.....
0000000006e3d294 00 00 00 00 54 43 4f 4e - 00 c3 bf 77 a0 34 e3 06 ....TCON...w.4..
0000000006e3d2a4 58 d3 e3 06 b0 45 21 15 - cc d2 e3 06 fc d3 e3 06 X....E!.........
0000000006e3d2b4 e0 a1 37 00 00 d3 e3 06 - 00 00 00 00 00 00 00 00 ..7.............
0000000006e3d2c4 e8 5f 1b 06 a0 14 1c 06 - 4e 4f 43 54 27 00 00 00 ._......NOCT'...
0000000006e3d2d4 00 00 00 00 d8 8f 1c 06 - 00 00 00 00 05 00 00 00 ................
0000000006e3d2e4 00 00 00 00 a0 14 1c 06 - d8 8f 1c 06 90 d3 e3 06 ................
0000000006e3d2f4 a0 14 1c 06 00 00 00 00 - 0c d4 e3 06 26 00 00 00 ............&...
0000000006e3d304 fc d3 e3 06 48 d3 e3 06 - 20 e9 91 7c e0 01 92 7c ....H... ..|...|
0000000006e3d314 ff ff ff ff db 01 92 7c - c9 c3 bf 77 00 00 37 00 .......|...w..7.
0000000006e3d324 09 00 00 00 09 00 00 00 - ac d3 e3 06 54 d3 e3 06 ............T...
0000000006e3d334 f8 57 21 15 a0 14 1c 06 - 09 00 00 00 54 43 4f 4e .W!.........TCON
0000000006e3d344 00 00 00 00 e8 5f 1b 06 - a0 14 1c 06 00 00 00 00 ....._..........


fidatevi il problema non è dovuto ad un virus perché vi seguo sempre nei vostri aggiornamenti in merito alla sicurezza.

quindi da cosa può dipendere questo errore???
grazie!
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda Ed22 » ven ott 22, 2010 10:54 am

avevo già rifatto presente il problema tempo fa.

viewtopic.php?t=63253
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 1:22 pm

c'è qualcuno che mi può dare una mano???
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm


Re: errore internet explorer

Messaggioda FDAC » mer ott 27, 2010 1:47 pm

- Scarica ed installa Hijackthis dal link sottostante:
http://www.hijackthis.de/downloads/HJTInstall.exe
- lancia Hijackthis
- clicca su Do a system scan and save a logfile
- al termine della scansione verrà rilasciato un file di testo: salvalo sul Desktop perché lo dovrai inviare qui
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 2:07 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15.15.06, on 27/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\Programmi\Emsisoft Anti-Malware\a2service.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Programmi\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\Programmi\Ninja\ninja.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Mozilla Firefox\plugin-container.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.it
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programmi\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ninja.lnk = C:\Programmi\Ninja\ninja.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=64&bd=pavilion&pf=laptop
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmi\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Emsisoft Anti-Malware 5.0 - Service (a2AntiMalware) - Emsi Software GmbH - C:\Programmi\Emsisoft Anti-Malware\a2service.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Programmi\Spyware Terminator\sp_rsser.exe

--
End of file - 6964 bytes
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda FDAC » mer ott 27, 2010 2:19 pm

Disinstalla (Pannello di Controllo/Installazione Applicazioni):
- Spybot S&D
- Advanced Systemcare 3
- Spyware Terminator
- Emsisoft Anti-Malware
- Search Helper
- Skype Toolbars

Rilancia Hijackthis:
- Do a System Scan Only
- spunta la casellina fianco di ogni singola voce che ti indicherò sotto
- una volta spuntate le voci:
- chiudi tutte le applicazioni aperte
- chiudi tutte le pagine del browser aperte
- in Hijackthis fixa le voci cliccando su Fix checked

Queste le voci da fixare:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Programmi\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programmi\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=64&bd=pavilion&pf=laptop

POI

Scarica ed installa MalwareBytes:
http://www.aiutamici.com/software?id=80346
Prima di fare la scansione aggiornalo -clicca su Aggiornamento in alto-
Esegui una scansione completa del sistema.
Elimina tutto ciò che trova.
Invia il log.
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 3:06 pm

perora ho disinstallato solo Skype Toolbars. non trovo la voce Search Helper...dove è???
ma perché devo installare anche queste altre voci(Spybot S&D, Advanced Systemcare 3, Spyware Terminator, Emsisoft Anti-Malware)? dici che ci sono incompatibilità?
grazie comunque!
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda FDAC » mer ott 27, 2010 4:37 pm

Ho detto che devi disinstallarli, quei programmi, non installarli.
Sono tutti superflui e rallentano il PC.
Senza contare che funzionano male, in quanto NON ci sono all'avvio del PC, ne Spybot ne Spyware Terminator.
Disinstallali.
Poi fixa con Hijackthis le voci sopraindicate.
Poi scansione con Malwarebytes come sopraindicato.
Attendo due log:
- Hijackthis
- Malwarebytes

Ciao :)
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 6:56 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20.03.47, on 27/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Ninja\ninja.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Mozilla Firefox\plugin-container.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.it
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ninja.lnk = C:\Programmi\Ninja\ninja.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmi\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 4898 bytes
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 7:03 pm

ho notato subito dei cambiamenti...l'avvio è ancora più veloce!!!grande!
l'unica cosa che non ho fatto è stata la disinstallazione di Advanced Systemcare 3, a cui sono affezionatissimo. e poi lo reputo un ottimo programma!
fra un'oretta ti passo anche il log di malwarebytes!
a dopo!
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda Ed22 » mer ott 27, 2010 8:22 pm

Ed22 ha scritto:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20.03.47, on 27/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Ninja\ninja.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\Programmi\Mozilla Firefox\plugin-container.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ninja.lnk = C:\Programmi\Ninja\ninja.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programmi\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 4898 bytes



Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Versione database: 4966

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

27/10/2010 21.11.17
mbam-log-2010-10-27 (21-11-17).txt

Tipo di scansione: Scansione completa (C:\|D:\|E:\|)
Elementi esaminati: 241510
Tempo trascorso: 1 ore, 5 minuti, 26 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Voci infette nei dati di registro: 0
Cartelle infette: 0
File infetti: 0

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
(Non sono stati rilevati elementi nocivi)

Valori di registro infetti:
(Non sono stati rilevati elementi nocivi)

Voci infette nei dati di registro:
(Non sono stati rilevati elementi nocivi)

Cartelle infette:
(Non sono stati rilevati elementi nocivi)

File infetti:
(Non sono stati rilevati elementi nocivi)
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda FDAC » gio ott 28, 2010 12:21 pm

Rilancia Hijackthis:
- Do a System Scan Only
- spunta la casellina fianco di ogni singola voce che ti indicherò sotto
- una volta spuntate le voci:
- chiudi tutte le applicazioni aperte
- chiudi tutte le pagine del browser aperte
- in Hijackthis fixa le voci cliccando su Fix checked

Queste le voci da fixare:
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll (file missing)

Ripeto:
Disinstalla SuperAntiSpyware!

Noti problemi con il PC?
Carica questo file su Virustotal e dimmi l'esito.
C:\WINDOWS\system32\bgsvcgen.exe
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Al3x » gio ott 28, 2010 12:41 pm

@FDAC
questo è il pannello di controllo della scheda video NVIDIA
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

devi spiegare il perché andrebbe cancellato e che funzione svolge, l'utente potrebbe averne bisogno e con l'operazione che suggerisci scomparirebbe. Ti ho già avvisato parecchie volte di applicare una metodologia più rispettosa di quelle che potrebbero essere le esigenze (che a priori non puoi conoscere) dell'utente che chiede aiuto.
è primavera finalmente! [:)]
Avatar utente
Al3x
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 7411
Iscritto il: sab gen 10, 2009 12:51 pm
Località: http://127.0.0.1/

Re: errore internet explorer

Messaggioda Ed22 » gio ott 28, 2010 1:11 pm

ma se disinstallo anche superantispyware, come faccio a rimuovere gli spyware?...che programmi mi consigli di utilizzare? ad ora rimarrei con avira e malwarebytes
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda FDAC » gio ott 28, 2010 1:25 pm

Avira e Malwarebytes sono sufficientemente sufficienti.
http://forums.guru3d.com/showthread.php?t=184662
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Ed22 » gio ott 28, 2010 3:20 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16.25.55, on 28/10/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Programmi\Avira\AntiVir Desktop\avgnt.exe
C:\Programmi\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Programmi\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Programmi\Ninja\ninja.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe
C:\Programmi\Mozilla Firefox\firefox.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.it
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Programmi\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKCU\..\Run: [avgnt] "C:\Programmi\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: ninja.lnk = C:\Programmi\Ninja\ninja.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O10 - Unknown file in Winsock LSP: c:\programmi\iobit\advanced systemcare 3\spictrl.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O23 - Service: Avira AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Programmi\Avira\AntiVir Desktop\avguard.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Programmi\File comuni\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 4402 bytes


ho notato una cosa..io fixo questa voce O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
ma con il riavvio del pc faccio di nuovo lo scan con hijackthis e mi riappare
comunque dimmi te se devo fare altro...che faccio a questo punto disinstallo anche spywareblaster?
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Re: errore internet explorer

Messaggioda Uomo_Senza_Sonno » gio ott 28, 2010 3:30 pm

Al3x ha scritto:questo è il pannello di controllo della scheda video NVIDIA
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

Vista la funzione che ricopre, come ha sottolineato Al3x, non andrebbe eliminata.
Grazie per tutto Zane

conosciamo l'1% delle leggi che governano l'universo, le altre non le abbiamo ancora comprese a fondo o addirittura nemmeno intuite
Avatar utente
Uomo_Senza_Sonno
Membro Ufficiale (Gold)
Membro Ufficiale (Gold)
 
Messaggi: 3255
Iscritto il: gio feb 07, 2008 9:00 am
Località: http://turbolab.it

Re: errore internet explorer

Messaggioda aferrotti » gio ott 28, 2010 3:35 pm

ciao o passato i tuoi log su http://www.hijackthis.de/it questo e il risultato:
http://awesomescreenshot.com/0da2wt3d3
prova comunque a sentire altre risposte.
...il miglior lavoro del mondo deve essere l'ingeniero degli ovetti kider!!!...
Avatar utente
aferrotti
Senior Member
Senior Member
 
Messaggi: 220
Iscritto il: dom dic 20, 2009 4:57 pm

Re: errore internet explorer

Messaggioda FDAC » gio ott 28, 2010 3:50 pm

Si, disinstalla anche SpywareBlaster. Troppi programmi non vanno bene.
Invece, per favore, mi analizzi su Virustotal questo File? E sospetto.
C:\WINDOWS\system32\bgsvcgen.exe
Avatar utente
FDAC
Rompiballe
Rompiballe
 
Messaggi: 750
Iscritto il: dom set 05, 2010 1:00 pm

Re: errore internet explorer

Messaggioda Ed22 » gio ott 28, 2010 4:00 pm

grazie ragazzi, ma advanced systemcare 3 lo conosco come programma e lo reputo molto efficace...anzi invito anche questo stesso sito a prenderlo in considerazione e farci magari una recensione. per valutare se è effettivamente valido.

per quanto riguarda questo file C:\WINDOWS\system32\bgsvcgen.exe non trova niente virustotal e in tutti i result c'è questo segno "-". sembra non essere nocivo...se vuoi te lo invio

File already submitted: The file sent has already been analysed by VirusTotal in the past. This is same basic info regarding the sample itself and its last analysis:
MD5: 82fb6a01d1205eb770e80c4cf8d9bd18
Date first seen: 2009-12-28 21:36:03 (UTC)
Date last seen: 2010-06-17 03:47:25 (UTC)
Detection ratio: 0/40

What do you wish to do?




0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is goodware. 0 VT Community user(s) with a total of 0 reputation credit(s) say(s) this sample is malware.
File name:
0E4F9453005CCC15D0B30139770C03009CE5550F.exe
Submission date:
2010-06-17 03:47:25 (UTC)
Current status:
finished
Result:
0 /40 (0.0%)


Additional information
Show all
MD5 : 82fb6a01d1205eb770e80c4cf8d9bd18
SHA1 : 52121b8a712a4dfd95f42109aeb447d70b50cb98
SHA256: 0e1a8d7a2152032b734b462398863e96ab0d2e298dfac412f9ac8a5746baf188
ssdeep: 1536:6UKBES61+g5p8SKAZsLkdjpcTpefp1Fibi32HgW+I62jDC2WFEDCajFth2z8Z:6UK21B8v
ACLAV4vbGw6Z2WFNajFth2QZ
File size : 118784 bytes
First seen: 2009-12-28 21:36:03
Last seen : 2010-06-17 03:47:25
Magic: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
TrID:
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
sigcheck:
publisher....: B.H.A Corporation
copyright....: Copyright(c) 2006 B.H.A Corporation All rights reserved.
product......: B_s Recorder GOLD9
description..: B_s Recorder GOLD Service Library
original name: bgsvcgen.exe
internal name: BgSvcgen
file version.: 2, 0, 1, 4
comments.....: LibGen
signers......: -
signing date.: -
verified.....: Unsigned
PEiD: -
PEInfo: PE structure information

[[ basic data ]]
entrypointaddress: 0xA796
timedatestamp....: 0x4513CAF8 (Fri Sep 22 11:37:28 2006)
machinetype......: 0x14C (Intel I386)

[[ 4 section(s) ]]
name, viradd, virsiz, rawdsiz, ntropy, md5
.text, 0x1000, 0x13F67, 0x14000, 6.58, 46f110cc57387de5848fa07f9d568189
.rdata, 0x15000, 0x4726, 0x5000, 4.77, 5188f1f82dfb8661e4184c76a66f7342
.data, 0x1A000, 0x3704, 0x2000, 1.84, bb31209c223184c274df14abcfae8a55
.rsrc, 0x1E000, 0xAE4, 0x1000, 4.59, 32e2e842a7737e7d9ee6652f0e7d9ffb

[[ 6 import(s) ]]
advapi32.dll: RegisterServiceCtrlHandlerW, RegEnumKeyExW, ControlService, DeleteService, CreateServiceW, ChangeServiceConfig2W, RegQueryInfoKeyW, RegSetValueExW, RegQueryValueExW, RegOpenKeyExW, RegCreateKeyExW, RegCloseKey, RegDeleteValueW, RegDeleteKeyW, RegisterEventSourceW, ReportEventW, DeregisterEventSource, SetServiceStatus, OpenSCManagerW, OpenServiceW, CloseServiceHandle, InitializeSecurityDescriptor, SetSecurityDescriptorDacl, StartServiceCtrlDispatcherW
kernel32.dll: GetCurrentThreadId, FreeLibrary, MultiByteToWideChar, LoadLibraryExW, GetModuleHandleW, Sleep, MapViewOfFile, OpenFileMappingW, InterlockedIncrement, InterlockedDecrement, UnregisterWaitEx, SetEvent, SetLastError, RegisterWaitForSingleObject, OpenEventW, SuspendThread, ResumeThread, GetModuleFileNameW, GetQueuedCompletionStatus, GetCommandLineW, GlobalFree, GlobalAlloc, WideCharToMultiByte, DeviceIoControl, CreateFileW, WriteConsoleW, GetConsoleOutputCP, WriteConsoleA, SetStdHandle, FlushFileBuffers, LCMapStringW, LCMapStringA, GetStringTypeW, GetStringTypeA, WaitForMultipleObjects, lstrcmpiW, FindResourceExW, FindResourceW, LoadResource, LockResource, SizeofResource, DeleteCriticalSection, InitializeCriticalSection, CreateEventW, WriteFile, WaitForSingleObject, ResetEvent, RaiseException, ReadFile, CreateNamedPipeW, CreateIoCompletionPort, ConnectNamedPipe, GetLastError, EnterCriticalSection, LeaveCriticalSection, lstrlenW, UnmapViewOfFile, PostQueuedCompletionStatus, CloseHandle, CreateFileA, GetConsoleMode, GetConsoleCP, SetFilePointer, GetOEMCP, GetCPInfo, LoadLibraryA, InterlockedExchange, GetACP, GetLocaleInfoA, GetThreadLocale, GetVersionExA, HeapDestroy, HeapAlloc, HeapFree, HeapReAlloc, HeapSize, GetProcessHeap, RtlUnwind, TerminateProcess, GetCurrentProcess, UnhandledExceptionFilter, SetUnhandledExceptionFilter, IsDebuggerPresent, ExitThread, CreateThread, GetStartupInfoW, VirtualFree, VirtualAlloc, HeapCreate, GetProcAddress, GetModuleHandleA, ExitProcess, GetStdHandle, GetModuleFileNameA, TlsGetValue, TlsAlloc, TlsSetValue, TlsFree, FreeEnvironmentStringsA, GetEnvironmentStrings, FreeEnvironmentStringsW, GetEnvironmentStringsW, GetCommandLineA, SetHandleCount, GetFileType, GetStartupInfoA, QueryPerformanceCounter, GetTickCount, GetCurrentProcessId, GetSystemTimeAsFileTime
ole32.dll: CoTaskMemFree, CoTaskMemRealloc, CoTaskMemAlloc, CoCreateInstance
oleaut32.dll: -
setupapi.dll: SetupDiDeleteDeviceInfo, SetupDiSetClassInstallParamsW, SetupDiEnumDeviceInfo, SetupDiGetDeviceRegistryPropertyW, SetupDiGetClassDevsW, SetupDiClassGuidsFromNameW, SetupDiDestroyDeviceInfoList, SetupDiChangeState
user32.dll: PostThreadMessageW, MessageBoxW, CharUpperW, CharNextW, GetMessageW, DispatchMessageW, TranslateMessage, LoadStringW, wsprintfW, UnregisterClassA
Avatar utente
Ed22
Aficionado
Aficionado
 
Messaggi: 36
Iscritto il: sab mar 21, 2009 2:59 pm

Prossimo

Torna a Sistema Operativo

Chi c’è in linea

Visitano il forum: Nessuno e 3 ospiti

Powered by phpBB © 2002, 2005, 2007, 2008 phpBB Group
Traduzione Italiana phpBB.it

megalab.it: testata telematica quotidiana registrata al Tribunale di Cosenza n. 22/09 del 13.08.2009, editore Master New Media S.r.l.; © Copyright 2008 Master New Media S.r.l. a socio unico - P.I. 02947530784. GRUPPO EDIZIONI MASTER Spa Tutti i diritti sono riservati. Per la pubblicità: Master Advertising