Home News Guide Hardware Download Forum Glossario

Condividi:        

dialer.idialer

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

Regole del forum
Rispondi al post

Postdi lillo6 » 14/08/06 15:01

ok,capito ;)
lillo6
Utente Junior
 
Post: 89
Iscritto il: 13/08/06 21:04
Top
Sponsor
 

Postdi grattaevinci » 16/08/06 11:03

per favore aiutate anche me...
ho lo stesso problema
prima la connessione era i-dialer ora è 0202
Process list saved on 12.03.36, on 16/08/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)

[pid] [full path to filename] [file version] [company name]
676 C:\WINDOWS\System32\smss.exe 5.1.2600.1106 Microsoft Corporation
788 C:\WINDOWS\system32\winlogon.exe 5.1.2600.1557 Microsoft Corporation
836 C:\WINDOWS\system32\services.exe 5.1.2600.0 Microsoft Corporation
848 C:\WINDOWS\system32\lsass.exe 5.1.2600.1106 Microsoft Corporation
1004 C:\WINDOWS\System32\Ati2evxx.exe 6.14.10.4117 ATI Technologies Inc.
1044 C:\WINDOWS\system32\svchost.exe 5.1.2600.0 Microsoft Corporation
1072 C:\WINDOWS\System32\svchost.exe 5.1.2600.0 Microsoft Corporation
1384 C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe 103.0.4.3 Symantec Corporation
1400 C:\Programmi\File comuni\Symantec Shared\SNDSrvc.exe 5.5.1.6 Symantec Corporation
1448 C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe 103.0.4.3 Symantec Corporation
1552 C:\WINDOWS\system32\Ati2evxx.exe 6.14.10.4117 ATI Technologies Inc.
1628 C:\WINDOWS\Explorer.EXE 6.0.2800.1106 Microsoft Corporation
1808 C:\WINDOWS\system32\spoolsv.exe 5.1.2600.0 Microsoft Corporation
1904 C:\Programmi\AntiVir PersonalEdition Classic\sched.exe 7.0.0.17 Avira GmbH
1952 C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe 7.0.0.29 AVIRA GmbH
2044 C:\WINDOWS\System32\drivers\CDAC11BA.EXE 4.20.20.0 Macrovision
188 C:\Programmi\File comuni\Symantec Shared\ccProxy.exe 2.1.6.3 Symantec Corporation
240 C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe 6.14.10.5046 ATI Technologies, Inc.
268 C:\WINDOWS\System32\CTHELPER.EXE 1.1.0.2 Creative Technology Ltd
352 C:\Programmi\Java\jre1.5.0_04\bin\jusched.exe 5.0.40.5 Sun Microsystems, Inc.
364 C:\Programmi\File comuni\Symantec Shared\ccApp.exe 103.0.4.3 Symantec Corporation
524 C:\Programmi\IPM\Adsl\DataWay\dslstat.exe 4.0.3.0 GlobespanVirata, Inc.
552 C:\WINDOWS\System32\dslagent.exe
560 C:\WINDOWS\system32\cisvc.exe 5.1.2600.0 Microsoft Corporation
568 C:\Programmi\File comuni\Real\Update_OB\realsched.exe 0.1.0.3275 RealNetworks, Inc.
584 C:\Programmi\ScanSoft\OmniPageSE\opware32.exe 11.0.0.1 ScanSoft, Inc
624 C:\WINDOWS\Temp\tvff1.exe
632 C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe 7.0.0.10 Avira GmbH
656 C:\Programmi\Gadwin Systems\PrintScreen\PrintScreen.exe 3.5.0.0 Gadwin Systems, Inc.
696 C:\WINDOWS\System32\CTsvcCDA.exe 1.0.1.0 Creative Technology Ltd
1504 C:\WINDOWS\System32\svchost.exe 5.1.2600.0 Microsoft Corporation
2164 C:\WINDOWS\System32\MsPMSPSv.exe 7.0.0.1954 Microsoft Corporation
3076 C:\Programmi\Internet Explorer\iexplore.exe 6.0.2800.1106 Microsoft Corporation
3416 C:\WINDOWS\System32\wuauclt.exe 5.8.0.2469 Microsoft Corporation
4064 C:\WINDOWS\system32\cidaemon.exe 5.1.2600.0 Microsoft Corporation
2220 C:\Programmi\Outlook Express\msimn.exe 6.0.2800.1106 Microsoft Corporation
2776 C:\WINDOWS\TEMP\win286.tmp.exe 1.0.0.1
2940 C:\Documents and Settings\master.SELVITELLI\Documenti\hijackthis_199\HijackThis.exe 1.99.0.1 Soeperman Enterprises Ltd.
grattaevinci
Newbie
 
Post: 2
Iscritto il: 16/08/06 11:00
Top

Postdi grattaevinci » 16/08/06 11:26

[quote="grattaevinci"]per favore aiutate anche me...
ho lo stesso problema
prima la connessione era i-dialer ora è 0202
quote]

Logfile of HijackThis v1.99.1
Scan saved at 12.26.35, on 16/08/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe
C:\Programmi\File comuni\Symantec Shared\SNDSrvc.exe
C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\AntiVir PersonalEdition Classic\sched.exe
C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Programmi\File comuni\Symantec Shared\ccProxy.exe
C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\System32\CTHELPER.EXE
C:\Programmi\Java\jre1.5.0_04\bin\jusched.exe
C:\Programmi\File comuni\Symantec Shared\ccApp.exe
C:\Programmi\IPM\Adsl\DataWay\dslstat.exe
C:\WINDOWS\System32\dslagent.exe
C:\WINDOWS\system32\cisvc.exe
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\Programmi\ScanSoft\OmniPageSE\opware32.exe
C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe
C:\Programmi\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\WINDOWS\TEMP\win30D.tmp.exe
C:\Documents and Settings\master.SELVITELLI\Documenti\hijackthis_199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.virgilio.it/oggi/index.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - Default URLSearchHook is missing
O1 - Hosts: 217.15.106.34 http://www.aldocoppolacasino.com
O1 - Hosts: 217.15.106.34 http://www.ntg-gaming.com
O1 - Hosts: 217.15.106.34 http://www.torogaming.com
O1 - Hosts: 217.15.106.34 http://www.maltagames.com
O1 - Hosts: 217.15.106.34 http://www.maltagaming.com
O1 - Hosts: 217.15.106.34 http://www.nationalplaygaming.com
O1 - Hosts: 217.15.106.34 http://www.casinolastminute.com
O1 - Hosts: 217.15.106.34 http://www.gamenetworkcasino.com
O1 - Hosts: 217.15.106.34 http://www.lasvegaspula.com
O1 - Hosts: 217.15.106.34 http://www.winnerlandcasino.com
O2 - BHO: Class - {7862B750-0F53-65A0-A118-E0437D8C2B9E} - C:\WINDOWS\tqdbc1.dll (file missing)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Programmi\File comuni\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [ATIPTA] C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Jet Detection] C:\Programmi\Creative\SBLive\PROGRAM\ADGJDet.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Programmi\File comuni\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programmi\File comuni\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [Security Patch] scmss.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [DSLSTATEXE] C:\Programmi\IPM\Adsl\DataWay\dslstat.exe icon
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Omnipage] C:\Programmi\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [tvff1.exe] C:\WINDOWS\Temp\tvff1.exe
O4 - HKLM\..\Run: [avgnt] "C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunServices: [Windows Update Host] hoster.exe
O4 - HKLM\..\RunServices: [Security Patch] scmss.exe
O4 - HKCU\..\Run: [Gadwin PrintScreen 3.5] C:\Programmi\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - Global Startup: Microsoft Office.lnk = C:\Programmi\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Scarica &tutto con Mass Downloader - C:\Programmi\Mass Downloader\Add_All.htm
O8 - Extra context menu item: Scarica con &Mass Downloader - C:\Programmi\Mass Downloader\Add_Url.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_04\bin\npjpi150_04.dll
O16 - DPF: {00000000-0000-0000-0000-100005000004} - http://code.trasferimento.biz/l/0b084fc ... 5e5_35.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage) - http://go.microsoft.com/fwlink/?linkid= ... lcid=0x409
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/it/it/importe ... loader.cab
O16 - DPF: {27B84445-9953-4E9B-B01C-73D734A57DEA} (Big Race Control) - file://C:\EurobetRaceInstallation\BigRaceControl.ocx
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} - http://www.pixaco.it/static/download/pi ... upload.cab
O16 - DPF: {38AC73DF-F9EF-4530-AD58-BD993761EF85} (TurboUploader Pixbuster) - http://www.pixbuster.com/printinglab/ca ... buster.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v ... 7628418390
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/softwar ... launch.cab
O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} - http://82.106.164.211//activex/AMC.cab
O16 - DPF: {8D68BB78-2B9C-4CED-8E23-15BECB870DC7} (CoralGreyhoundsViewerBig Control) - file://C:\CoralGreyhoundInstallation\GreyhoundsViewerBig.ocx
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://floridakeysmedia.tv/axiscam/Code ... ontrol.ocx
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.wisup.net/_plateforme/Upload ... ader35.cab
O16 - DPF: {AA44D0B1-B2B4-4BCC-B710-CB45C6C2C270} - http://games1.eurobet.com/GreyhoundsViewer.ocx
O16 - DPF: {AB294EC6-7ADA-11D4-9D5F-00B0D04BBD07} (msichat50 Client Control) - http://chat1.kataweb.it:4080/chat/data/ ... sichat.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: {BF985246-09BF-11D2-BE62-006097DF57F6} (SimCityX Control) - http://simcity.ea.com/play/classic/SimCityX.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://scaricagratis.tiscali.it/online2 ... player.cab
O16 - DPF: {C1B7E532-3ECB-4E9E-BB3A-2951FFE67C61} (DownloaderActiveX Control) - http://atlantide.virgilio.it/c6/downloa ... ctiveX.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697519} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_aac.cab
O16 - DPF: {C7CF4846-0324-4B83-B810-C4BF61029E02} (Pro_Web04.ProWeb604) - http://67.15.5.151/ProWeb604.CAB
O16 - DPF: {DA511858-B44C-439E-A0EA-704ED20035E7} (EphoxEditLive4.EditLive) - http://www.beepworld.de/hp/activexeditor/editlive4.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {F5BC716E-2650-4B08-9235-C110CF95017F} (Connessione Tiscali) - https://selfcare.tiscali.it/scripts/one ... iscali.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
O16 - DPF: {FFCEABDA-C04E-7F4A-E9B6-DFA72B2F49FB} - http://195.225.169.17/access/dia/adult.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{ABD3E168-D233-4DB9-A8F1-0454D6B916EB}: NameServer = 85.37.17.9 85.38.28.75
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: wintuh32 - C:\WINDOWS\SYSTEM32\wintuh32.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Boonty Games - BOONTY - C:\Programmi\File comuni\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\ccSetMgr.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Programmi\File comuni\Symantec Shared\Security Center\SymWSC.exe
grattaevinci
Newbie
 
Post: 2
Iscritto il: 16/08/06 11:00
Top

0202 i-Dialer

Postdi ednasciment » 27/08/06 17:03

ciao! avevo lo stesso problema, ho appena risolto con "SUPERAntiSpyware Free Edition"
http://www.superantispyware.com
in bocca al luppo!
ednasciment
Newbie
 
Post: 1
Iscritto il: 27/08/06 16:53
Top

viva il forum, abbasso i-dialer (...)

Postdi wideview » 28/08/06 15:27

un vivo ringraziamento a ednasciment

matto sono diventato! matto!
avevo appena messo su un bel HD da 200G, caricato XP, fatti gli update....
come un pvllo, mi sono beccato il trojan da uno pseudosito di keygen (...)

confermo che l'unico SW in grado di beccare 'sto fituso è stato SUPERANTISPYWARE

consiglio, comunque, di levare il ripristino automatico, prendere possesso di System Volume Info e cancellare tutto, prima dell'antivirus.
wideview
Newbie
 
Post: 1
Iscritto il: 28/08/06 15:20
Top
Precedente
Rispondi al post

Torna a Sicurezza e Privacy


Topic correlati a "dialer.idialer":

Dialer, virus vari
Autore: zena 		Forum: Sicurezza e Privacy
Risposte: 4
TR/Dialer.VXS.1 - cos'è?
Autore: catone il censore 		Forum: Sicurezza e Privacy
Risposte: 1
X LUKE 57-TROJAN WIN32.DIALER.GEN
Autore: thethunder 		Forum: Sicurezza e Privacy
Risposte: 2
Probabile dialer
Autore: prof2000 		Forum: Sicurezza e Privacy
Risposte: 5
Problema con WIN 32:Dialer-gen
Autore: inidab71 		Forum: Sicurezza e Privacy
Risposte: 2

Chi c’è in linea

Visitano il forum: Nessuno e 21 ospiti