Vai al contenuto

  • Connettiti con Facebook Log In with Google      Connettiti   
  • Registrati

rttp

Registrazione 28 gen 2008
Offline Ultima Attività gen 30 2008 01:19
-----

Discussioni che ho iniziato

Problemi Win Vista

28 gennaio 2008 - 05:41

Salve a tutti, ho un problema, anzi più di uno...
Premetto che ho eseguito alla lettera tutte le istruzioni prima di aprire questa discussione e ho pure dato uno sguardo alle altre in cui si parlava di problemi simili, ma non sono riuscito a risolvere. Utilizzo Windows Vista Home Premium e:

-non riesco a installare nessun antivirus (compreso Norton Internet Security 2007)
-ho dei problemi con il servizio connessione wireless di Windows: siccome non riuscivo ad attivarlo (non so perchè si sia disattivato) ho controllato sul forum e ho trovato questa soluzione:

Prova ad aprire regedit
HKEY_LOCAL_MACHINE / SYSTEM / CurrentControlSet / Services / Ndisuio
se la voce "Start" è impostata a "4" ... modificala a "3"
riavvia

che funziona. però dopo che riavvio il valore della voce start viene cambiato nuovamente a 4 (il servizio però viene attivato e la rete funziona, almeno fino a che non riavvio). inoltre, nonostante ogni volta cambi le impostazioni, i servizi:
Windows defender, Winows Update, Windows Firewall e altri, vengono disabilitati...

Ewido anti spyware non riesce a terminare la scansione, si ferma senza aver terminato (quindi non posso rimuovere le minacce). CSI funziona, ma non sono riuscito a rimuovere le minacce che ha trovato perchè a quanto pare dovrei acquistarlo, ma ecco il LOG:

revx CSI Build: (v1.2.101.109)
Prevx Computer Security Investigator Output Log
System analyzed at: 01/28/08 at 17:00:11

C:\Windows\system32\ntdll.dll
Loaded into: C:\Windows\System32\smss.exe
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\wininit.exe
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\services.exe
Loaded into: C:\Windows\system32\lsass.exe
Loaded into: C:\Windows\system32\lsm.exe
Loaded into: C:\Windows\system32\winlogon.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\System32\svchost.exe
Loaded into: C:\Windows\System32\svchost.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\system32\SLsvc.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\System32\spoolsv.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\system32\Dwm.exe
Loaded into: C:\Windows\Explorer.EXE
Loaded into: C:\Windows\RtHDVCpl.exe
Loaded into: C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
Loaded into: C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
Loaded into: C:\Windows\System32\hkcmd.exe
Loaded into: C:\Windows\System32\igfxpers.exe
Loaded into: C:\Program Files\Windows Sidebar\sidebar.exe
Loaded into: C:\Windows\ehome\ehtray.exe
Loaded into: C:\Program Files\DNA\btdna.exe
Loaded into: C:\Program Files\Windows Media Player\wmpnscfg.exe
Loaded into: C:\Windows\system32\igfxsrvc.exe
Loaded into: C:\Program Files\Windows Live\Messenger\msnmsgr.exe
Loaded into: C:\Windows\ehome\ehmsas.exe
Loaded into: C:\Windows\system32\dllhost.exe
Loaded into: C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
Loaded into: C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\system32\svchost.exe
Loaded into: C:\Windows\System32\svchost.exe
Loaded into: C:\Windows\system32\SearchIndexer.exe
Loaded into: C:\Program Files\Windows Media Player\wmpnetwk.exe
Loaded into: C:\Windows\system32\DllHost.exe
Loaded into: C:\Windows\system32\taskeng.exe
Loaded into: C:\Windows\system32\taskeng.exe
Loaded into: C:\Program Files\Internet Explorer\iexplore.exe
Loaded into: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
Loaded into: C:\Program Files\Windows Live\Messenger\usnsvc.exe
Loaded into: C:\Users\Utente\Desktop\ewido_micro.exe
Loaded into: C:\Users\Utente\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\C7LZDB1W\PREVXCSIFREE[1].EXE
Loaded into: C:\Windows\system32\SearchProtocolHost.exe
Loaded into: C:\Windows\system32\SearchFilterHost.exe
PX5: CA4CEB37A00F9295BDD3114A1AEB5F0006FF9F53
MD5: 04e4c2069d7254e3fbb90d5b519ab53c
Determination: GOOD

C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\csrss.exe
PX5: CD521BC300F18B891E1F008AF724B800D6ADB44C
MD5: 117b7c8a8b026a5dce5e3180ed05e823
Determination: GOOD

C:\Windows\system32\CSRSRV.dll
Loaded into: C:\Windows\system32\csrss.exe
Loaded into: C:\Windows\system32\csrss.exe
PX5: CFC821670015113EC214004BAB7A3200969C8D73
MD5: 2f8a776ff2087357ddeb9992e06eecaa
Determination: GOOD

C:\Windows\system32\basesrv.dll



Questo invece è il LOG di hijackthis:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17.16.35, on 28/01/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Utente\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LQYURW8W\HiJackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVIZIO DI RETE')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O13 - Gopher Prefix:
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx...owserPlugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe


HELP!!!!!!Qualcuno sa aiutarmi???

Sto cercand di eseguire la scansione con Kaspersky, ma, arrivato a un certo punto anche questo si blocca... non so che fare....