Condividi:        

Aggiornamento antivirus

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

Aggiornamento antivirus

Postdi marcoparisi » 07/09/09 16:50

Salve a tutti.
Da qualche giorno non riesco piu' ad aggiornare avast,ne spybot,ne qualsiasi programma di rimozione virus,maleware,ecc.
Inoltre per connettermi a internet devo disattivare l'antivirus altrimenti compare la schermata che mi dice che il collegamento non è possibile.
Ho provato a far girare avast non aggiornato e altri antivirus online ma non segnalano nulla di rilevante,cosi' come spybot e malwarebyte.
Ho provato anche a lanciare hijackThis e controllare il log in automatico ma non sembrerebbe esserci nulla di particolare.
Le mie conoscenze informatiche sono decisamente scarse,ho seguito i suggerimenti che avete postato a chi aveva dei problemi simili ai miei,ma non sono riuscito a venirne a capo.
Se qualcuno avesse voglia di darmi una mano vi allego il log di combofix.
Codice: Seleziona tutto
ComboFix 09-09-05.02 - aginformpc.com 07/09/2009 15.14.20.1.1 - NTFSx86
Microsoft Windows XP Home Edition  5.1.2600.3.1252.39.1040.18.511.264 [GMT 2:00]
Eseguito da: c:\documents and settings\aginformpc.com\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1351 [VPS 090817-0] *On-access scanning disabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
 * Creato nuovo punto di ripristino

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

(((((((((((((((((((((((((((((((((((((   Altre eliminazioni   )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programmi\Microsoft Common
c:\programmi\Microsoft Common\svchost.exe
c:\windows\atualmenteo.dll
c:\windows\Downloaded Program Files\wetf
c:\windows\Installer\1a5a4cb.msi
c:\windows\Installer\1a5a4e3.msi
c:\windows\Installer\5ad0e6.msi
c:\windows\msmmesagem.dll
c:\windows\system32\lowsec
c:\windows\system32\lowsec\local.ds
c:\windows\system32\lowsec\user.ds
c:\windows\system32\lowsec\user.ds.lll
c:\windows\system32\sdra64.exe

.
(((((((((((((((((((((((((   Files Creati Da 2009-08-07 al 2009-09-07  )))))))))))))))))))))))))))))))))))
.

2009-08-27 00:51 . 2009-08-27 00:51   --------   d-----w-   c:\documents and settings\aginformpc.com\Dati applicazioni\Malwarebytes
2009-08-27 00:51 . 2009-08-03 11:36   38160   ----a-w-   c:\windows\system32\drivers\mbamswissarmy.sys
2009-08-27 00:51 . 2009-08-27 00:51   --------   d-----w-   c:\programmi\Malwarebytes' Anti-Malware
2009-08-27 00:51 . 2009-08-27 00:51   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2009-08-27 00:51 . 2009-08-03 11:36   19096   ----a-w-   c:\windows\system32\drivers\mbam.sys
2009-08-26 23:42 . 2009-08-17 16:04   23152   ----a-w-   c:\windows\system32\drivers\aswRdr.sys
2009-08-26 23:42 . 2009-08-17 16:04   51376   ----a-w-   c:\windows\system32\drivers\aswTdi.sys
2009-08-26 23:42 . 2009-08-17 16:03   26944   ----a-w-   c:\windows\system32\drivers\aavmker4.sys
2009-08-26 23:42 . 2009-08-17 16:06   93392   ----a-w-   c:\windows\system32\drivers\aswmon.sys
2009-08-26 23:42 . 2009-08-17 16:06   94160   ----a-w-   c:\windows\system32\drivers\aswmon2.sys
2009-08-26 23:42 . 2009-08-17 16:05   114768   ----a-w-   c:\windows\system32\drivers\aswSP.sys
2009-08-26 23:42 . 2009-08-17 16:05   20560   ----a-w-   c:\windows\system32\drivers\aswFsBlk.sys
2009-08-26 23:42 . 2009-08-17 16:02   97480   ----a-w-   c:\windows\system32\AvastSS.scr
2009-08-26 23:42 . 2009-08-17 16:10   1279456   ----a-w-   c:\windows\system32\aswBoot.exe
2009-08-26 22:23 . 2009-08-26 22:23   --------   d-----w-   c:\programmi\Trend Micro
2009-08-26 12:55 . 2009-08-26 13:09   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\Yahoo! Companion
2009-08-26 12:54 . 2009-08-26 12:55   --------   d-----w-   c:\programmi\CCleaner
2009-08-26 11:18 . 2009-08-26 11:22   --------   d--h--w-   C:\$AVG8.VAULT$
2009-08-26 01:48 . 2009-08-26 12:30   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\avg8
2009-08-13 10:19 . 2009-07-10 13:26   1315328   -c----w-   c:\windows\system32\dllcache\msoe.dll
2009-08-12 02:11 . 2009-08-12 09:01   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\NOS
2009-08-12 02:11 . 2009-08-12 09:01   --------   d-----w-   c:\programmi\NOS

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-26 23:31 . 2007-12-29 23:11   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\Spybot - Search & Destroy
2009-08-26 22:04 . 2007-12-06 17:38   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\Kaspersky Lab
2009-08-26 12:55 . 2006-06-07 23:13   --------   d--h--r-   c:\documents and settings\aginformpc.com\Dati applicazioni\yahoo!
2009-08-26 12:55 . 2006-05-19 23:19   --------   d-----w-   c:\programmi\Yahoo!
2009-08-26 01:44 . 2003-10-03 14:53   --------   d-----w-   c:\programmi\Symantec
2009-08-18 00:46 . 2007-10-09 10:07   4018   ----a-w-   c:\windows\mozver.dat
2009-08-05 08:59 . 2003-09-28 23:42   205312   ----a-w-   c:\windows\system32\mswebdvd.dll
2009-08-02 13:34 . 2007-12-29 23:11   --------   d-----w-   c:\programmi\Spybot - Search & Destroy
2009-08-02 12:21 . 2003-10-03 14:53   --------   d-----w-   c:\programmi\File comuni\Symantec Shared
2009-08-02 12:17 . 2003-10-03 14:53   --------   d-----w-   c:\documents and settings\All Users\Dati applicazioni\Symantec
2009-07-17 19:01 . 2002-09-10 12:00   58880   ----a-w-   c:\windows\system32\atl.dll
2009-07-13 21:43 . 2003-09-28 22:54   286208   ----a-w-   c:\windows\system32\wmpdxm.dll
2009-06-29 15:55 . 2004-02-06 16:08   827392   ----a-w-   c:\windows\system32\wininet.dll
2009-06-29 15:55 . 2004-08-19 22:39   78336   ----a-w-   c:\windows\system32\ieencode.dll
2009-06-29 15:54 . 2002-09-10 12:00   17408   ----a-w-   c:\windows\system32\corpol.dll
2009-06-25 08:25 . 2002-09-10 12:00   735744   ----a-w-   c:\windows\system32\lsasrv.dll
2009-06-25 08:25 . 2002-09-10 12:00   56832   ----a-w-   c:\windows\system32\secur32.dll
2009-06-25 08:25 . 2002-09-10 12:00   54272   ----a-w-   c:\windows\system32\wdigest.dll
2009-06-25 08:25 . 2002-09-10 12:00   301568   ----a-w-   c:\windows\system32\kerberos.dll
2009-06-25 08:25 . 2002-09-10 12:00   147456   ----a-w-   c:\windows\system32\schannel.dll
2009-06-25 08:25 . 2002-09-10 12:00   136192   ----a-w-   c:\windows\system32\msv1_0.dll
2009-06-24 11:18 . 2002-09-10 12:00   92928   ----a-w-   c:\windows\system32\drivers\ksecdd.sys
2009-06-16 14:36 . 2002-09-10 12:00   81920   ----a-w-   c:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2002-09-10 12:00   119808   ----a-w-   c:\windows\system32\t2embed.dll
2009-06-15 10:43 . 2002-09-10 12:00   78336   ----a-w-   c:\windows\system32\telnet.exe
2009-06-10 14:13 . 2002-09-10 12:00   85504   ----a-w-   c:\windows\system32\avifil32.dll
2009-06-10 07:19 . 2003-06-27 16:15   2066432   ----a-w-   c:\windows\system32\mstscax.dll
2009-06-10 06:14 . 2002-09-10 12:00   132096   ----a-w-   c:\windows\system32\wkssvc.dll
2007-12-30 02:23 . 2007-12-30 02:23   730180   ----a-w-   c:\programmi\Manuale%20EasyCleaner%20italiano.pdf
2009-09-04 00:37 . 2007-12-30 16:07   67688   ----a-w-   c:\programmi\mozilla firefox\components\jar50.dll
2009-09-04 00:37 . 2007-12-30 16:07   54368   ----a-w-   c:\programmi\mozilla firefox\components\jsd3250.dll
2009-09-04 00:37 . 2007-12-30 16:07   34944   ----a-w-   c:\programmi\mozilla firefox\components\myspell.dll
2009-09-04 00:37 . 2007-12-30 16:07   46712   ----a-w-   c:\programmi\mozilla firefox\components\spellchk.dll
2009-09-04 00:37 . 2007-12-30 16:07   172136   ----a-w-   c:\programmi\mozilla firefox\components\xpinstal.dll
.

(((((((((((((((((((((((((((((((((((((   Punti Reg Caricati   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATI Launchpad"="c:\programmi\ATI Technologies\main\launchPd.EXE" [2002-05-02 98304]
"swg"="c:\programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-11-10 68856]
"SpybotSD TeaTimer"="c:\programmi\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Smapp"="c:\programmi\Analog Devices\SoundMAX\Smtray.exe" [2002-06-26 90112]
"ATIPTA"="c:\programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-01-24 315392]
"QuickTime Task"="c:\programmi\QuickTime\qttask.exe" [2004-02-01 98304]
"REGSHAVE"="c:\programmi\REGSHAVE\REGSHAVE.EXE" [2002-02-04 53248]
"Adobe Photo Downloader"="c:\programmi\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-07-07 57344]
"DSLSTATEXE"="c:\program files\Conexant\Adsl\dslstat.exe" [2005-02-28 376832]
"DSLAGENTEXE"="c:\program files\Conexant\Adsl\dslagent.exe" [2005-02-28 90112]
"TkBellExe"="c:\programmi\File comuni\Real\Update_OB\realsched.exe" [2007-10-17 185632]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SRUUninstall"="c:\windows\System32\msiexec.exe" [2008-04-14 78848]

c:\documents and settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Avvio veloce di Adobe Reader.lnk - c:\programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
Exif Launcher.lnk - c:\program files\FinePixViewer\QuickDCF.exe [2006-5-13 282624]
InterVideo WinCinema Manager.lnk - c:\programmi\InterVideo\Common\Bin\WinCinemaMgr.exe [2006-9-14 278528]
WinZip Quick Pick.lnk - c:\programmi\WinZip\WZQKPICK.EXE [2003-10-3 106560]

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Messenger\\msmsgs.exe"=
"c:\\Programmi\\NetMeeting\\conf.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Programmi\\MSN Messenger\\msnmsgr.exe"=
"c:\\Programmi\\MSN Messenger\\livecall.exe"=
"c:\\Programmi\\Alwil Software\\Avast4\\ashAvast.exe"=
"c:\\Programmi\\K-Lite Codec Pack\\Filters\\ac3config.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [27/08/2009 1.42.52 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27/08/2009 1.42.52 20560]
R3 ovt530;Webcam Deluxe;c:\windows\system32\drivers\ov530vid.sys [30/03/2008 4.04.10 161792]
.
Contenuto della cartella 'Scheduled Tasks'

2009-09-07 c:\windows\Tasks\Verifica aggiornamenti per Windows Live Toolbar.job
- c:\programmi\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 10:20]
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

HKCU-Run-MsnMsgr - c:\programmi\Windows Live\Messenger\msnmsgr.exe
HKCU-Run-Uniblue RegistryBooster 2 - c:\programmi\Uniblue\RegistryBooster 2\RegistryBooster.exe


.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = local
uInternet Settings,ProxyServer = 127.0.0.1:9666
uSearchURL,(Default) = hxxp://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR
IE: &Windows Live Search - c:\programmi\Windows Live Toolbar\msntb.dll/search.htm
IE: Download with Go!Zilla - file://c:\programmi\Go!Zilla\download-with-gozilla.html
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: Yahoo! Chat - hxxp://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
FF - ProfilePath - c:\documents and settings\aginformpc.com\Dati applicazioni\Mozilla\Firefox\Profiles\4s5j1kre.default\
FF - component: c:\programmi\Mozilla Firefox\components\xpinstal.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-07 15:27
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(3044)
c:\windows\system32\WININET.dll
c:\windows\system32\WPDShServiceObj.dll
c:\programmi\Hercules\WebCam Station\PhotoImpression\share\pihook.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\Alwil Software\Avast4\aswUpdSv.exe
c:\programmi\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\ati2evxx.exe
c:\programmi\File comuni\EPSON\EBAPI\SAgent2.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\Analog Devices\SoundMAX\SMAgent.exe
c:\programmi\Alwil Software\Avast4\ashMaiSv.exe
c:\programmi\Alwil Software\Avast4\ashWebSv.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\wmiapsrv.exe
.
**************************************************************************
.
Ora fine scansione: 2009-09-07 15.33.50 - Il pc è stato riavviato
ComboFix-quarantined-files.txt  2009-09-07 13:33

Pre-Run: 9.156.698.112 byte disponibili
Post-Run: 9.234.161.664 byte disponibili

196   --- E O F ---   2009-08-27 01:44

Grazie mille
marcoparisi
Newbie
 
Post: 3
Iscritto il: 07/09/09 16:36

Sponsor
 

Re: Aggiornamento antivirus

Postdi marcoparisi » 07/09/09 16:55

aggiungo per completezza anche il log di hijackthis
Codice: Seleziona tutto
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17.53.48, on 07/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
C:\Programmi\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Programmi\Analog Devices\SoundMAX\Smtray.exe
C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Programmi\QuickTime\qttask.exe
C:\Programmi\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Conexant\Adsl\dslstat.exe
C:\Program Files\Conexant\Adsl\dslagent.exe
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\Programmi\Java\jre6\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\FinePixViewer\QuickDCF.exe
C:\Programmi\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Programmi\WinZip\WZQKPICK.EXE
C:\WINDOWS\explorer.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\MSN Messenger\usnsvc.exe
C:\Programmi\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:9666
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programmi\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmi\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Programmi\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar4.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Programmi\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmi\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Smapp] C:\Programmi\Analog Devices\SoundMAX\Smtray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [REGSHAVE] C:\Programmi\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programmi\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [DSLSTATEXE] C:\Program Files\Conexant\Adsl\dslstat.exe icon
O4 - HKLM\..\Run: [DSLAGENTEXE] C:\Program Files\Conexant\Adsl\dslagent.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ATI Launchpad] "C:\Programmi\ATI Technologies\main\launchPd.EXE"
O4 - HKCU\..\Run: [swg] C:\Programmi\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programmi\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SRUUninstall] "C:\WINDOWS\System32\msiexec.exe" /x {6AF90EF6-F7F9-466C-99F4-1774826FBB40} /qn REBOOT=ReallySuppress (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SRUUninstall] "C:\WINDOWS\System32\msiexec.exe" /x {6AF90EF6-F7F9-466C-99F4-1774826FBB40} /qn REBOOT=ReallySuppress (User 'Default user')
O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Exif Launcher.lnk = ?
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Programmi\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Programmi\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Programmi\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Programmi\Go!Zilla\download-with-gozilla.html
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.tiscali.it
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/SSC/SharedContent/common/bin/cabsa.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/SymAData.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/techsupp/activedata/ActiveData.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6FAD59E6-6038-421F-B372-D371BC591224}: NameServer = 213.205.36.70 213.205.32.70
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Programmi\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Programmi\File comuni\EPSON\EBAPI\SAgent2.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 10290 bytes
marcoparisi
Newbie
 
Post: 3
Iscritto il: 07/09/09 16:36

Re: Aggiornamento antivirus

Postdi Luke57 » 08/09/09 07:10

Ciao, anche nel report di combofix pare che non ci siano minacce, hai sempre problemi?
Luke57
Moderatore
 
Post: 6413
Iscritto il: 11/08/05 19:10

Re: Aggiornamento antivirus

Postdi marcoparisi » 08/09/09 11:20

Purtroppo no.Avast quando provo ad aggiornarlo mi risponde che non riesce a connettersi al server.ho provato a reinstallarlo,ma da sempre lo stesso problema.Ho provato a cambiare antivirus ma Avg non me lo fa proprio installare,Kaspersky non me lo fa aggiornare.Anche malwarebytes non me lo fa aggiornare,risponde con un errore 703.Per connettermi a interner con explorer devo disattivare l'antivirus,con firefox non riesco proprio.
In pratica è un casino :cry:
marcoparisi
Newbie
 
Post: 3
Iscritto il: 07/09/09 16:36


Torna a Sicurezza e Privacy


Topic correlati a "Aggiornamento antivirus":


Chi c’è in linea

Visitano il forum: Nessuno e 44 ospiti