Ciao a tutti
ho bisogno del vostro aiuto!
da oggi non riesco a navigare nè con IE nè con Firefox...
ho creato il log di hijack this che fa veramente paura di quanto è lungo!
Grazie a chi mi vorrà aiutare...
Alien

eccolo di seguito:

Logfile of HijackThis v1.99.1
Scan saved at 18.10.00, on 03/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Programmi\Sitecom\Software Bluetooth\bin\btwdins.exe
E:\PROGRA~1\KenCast\Fazzt\bin\FazztSrv.exe
E:\WINDOWS\System32\mgabg.exe
E:\Programmi\Eset\nod32krn.exe
E:\Programmi\No-IP\DUC20.exe
E:\WINDOWS\system32\r_server.exe
E:\Programmi\Serv-U\ServUDaemon.exe
E:\WINDOWS\services.exe
E:\WINDOWS\System32\svchost.exe
E:\Programmi\TightVNC\WinVNC.exe
E:\WINDOWS\Explorer.EXE
E:\Programmi\File comuni\Real\Update_OB\realsched.exe
E:\Programmi\QuickTime\qttask.exe
E:\Programmi\Unlocker\UnlockerAssistant.exe
E:\Programmi\Eset\nod32kui.exe
E:\Programmi\Globe7\Globe7.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Programmi\SkypeLink\SkypeLink.exe
E:\Programmi\Skype\Phone\Skype.exe
E:\Programmi\Serv-U\ServUTray.exe
E:\Programmi\Microsoft ActiveSync\wcescomm.exe
e:\progra~1\intern~1\iexplore.exe
E:\WINDOWS\system32\CAPRPCSK.EXE
E:\Programmi\Sitecom\Software Bluetooth\BTTray.exe
E:\Programmi\Logitech\MouseWare\system\em_exec.exe
E:\Programmi\DU Meter\DUMeter.exe
E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
E:\PROGRA~1\MICROS~3\rapimgr.exe
E:\Programmi\Trillian Pro 3\trillian.exe
E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\wscntfy.exe
E:\WINDOWS\system32\wuauclt.exe
E:\Programmi\Outlook Express\msimn.exe
E:\WINDOWS\system32\taskmgr.exe
G:\Hijack this\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O1 - Hosts: 213.159.117.217 www.0190-dialer.com
O1 - Hosts: 213.159.117.217 www.22469.com
O1 - Hosts: 213.159.117.217 www.3wisp.com
O1 - Hosts: 213.159.117.217 www.adult-cinema.org
O1 - Hosts: 213.159.117.217 www.adultfreehosting.com
O1 - Hosts: 213.159.117.217 www.adulthosting.com
O1 - Hosts: 213.159.117.217 www.adultlinks1.com
O1 - Hosts: 213.159.117.217 www.adultmegamovies.com
O1 - Hosts: 213.159.117.217 www.adultsexmovie.net
O1 - Hosts: 213.159.117.217 www.adultwall.com
O1 - Hosts: 213.159.117.217 www.afro-sex.com
O1 - Hosts: 213.159.117.217 www.agreathost.net
O1 - Hosts: 213.159.117.217 www.alehina.com
O1 - Hosts: 213.159.117.217 www.allnichestgp.com
O1 - Hosts: 213.159.117.217 www.allowednet.com
O1 - Hosts: 213.159.117.217 www.amateurlips.com
O1 - Hosts: 213.159.117.217 www.amateurnudephoto.com
O1 - Hosts: 213.159.117.217 www.amateursgonebad.com
O1 - Hosts: 213.159.117.217 www.ambersamateurhardcore.com
O1 - Hosts: 213.159.117.217 www.anyamateur.com
O1 - Hosts: 213.159.117.217 www.apornhost.com
O1 - Hosts: 213.159.117.217 www.findmodels.com
O1 - Hosts: 213.159.117.217 www.asianscum.com
O1 - Hosts: 213.159.117.217 www.awethumbs.com
O1 - Hosts: 213.159.117.217 www.badassxxx.com
O1 - Hosts: 213.159.117.217 www.badbimbo.com
O1 - Hosts: 213.159.117.217 www.beautifulbondage.com
O1 - Hosts: 213.159.117.217 www.bestpornhost.com
O1 - Hosts: 213.159.117.217 www.biggestdickinporn.net
O1 - Hosts: 213.159.117.217 www1.3wisp.com
O1 - Hosts: 213.159.117.217 www1.kinghost.com
O1 - Hosts: 213.159.117.217 www1.ndhosting.com
O1 - Hosts: 213.159.117.217 www1.sexls.com
O1 - Hosts: 213.159.117.217 www1.smutserver.com
O1 - Hosts: 213.159.117.217 www1.toptgphost.com
O1 - Hosts: 213.159.117.217 www1.xfreehosting.com
O1 - Hosts: 213.159.117.217 www10.kinghost.com
O1 - Hosts: 213.159.117.217 www10.smutserver.com
O1 - Hosts: 213.159.117.217 www11.kinghost.com
O1 - Hosts: 213.159.117.217 www11.smutserver.com
O1 - Hosts: 213.159.117.217 www12.kinghost.com
O1 - Hosts: 213.159.117.217 www12.smutserver.com
O1 - Hosts: 213.159.117.217 www13.smutserver.com
O1 - Hosts: 213.159.117.217 www14.smutserver.com
O1 - Hosts: 213.159.117.217 www15.smutserver.com
O1 - Hosts: 213.159.117.217 www16.smutserver.com
O1 - Hosts: 213.159.117.217 www17.smutserver.com
O1 - Hosts: 213.159.117.217 www18.smutserver.com
O1 - Hosts: 213.159.117.217 www19.smutserver.com
O1 - Hosts: 213.159.117.217 www2.3wisp.com
O1 - Hosts: 213.159.117.217 www2.kinghost.com
O1 - Hosts: 213.159.117.217 www2.ndhosting.com
O1 - Hosts: 213.159.117.217 www2.smutserver.com
O1 - Hosts: 213.159.117.217 www2.toptgphost.com
O1 - Hosts: 213.159.117.217 www2.xfreehosting.com
O1 - Hosts: 213.159.117.217 www2.zpornstars.com
O1 - Hosts: 213.159.117.217 www20.smutserver.com
O1 - Hosts: 213.159.117.217 www21.smutserver.com
O1 - Hosts: 213.159.117.217 www22.smutserver.com
O1 - Hosts: 213.159.117.217 www23.smutserver.com
O1 - Hosts: 213.159.117.217 www24.smutserver.com
O1 - Hosts: 213.159.117.217 www25.smutserver.com
O1 - Hosts: 213.159.117.217 www26.smutserver.com
O1 - Hosts: 213.159.117.217 www27.smutserver.com
O1 - Hosts: 213.159.117.217 www28.smutserver.com
O1 - Hosts: 213.159.117.217 www29.smutserver.com
O1 - Hosts: 213.159.117.217 www3.kinghost.com
O1 - Hosts: 213.159.117.217 www3.ndhosting.com
O1 - Hosts: 213.159.117.217 www3.smutserver.com
O1 - Hosts: 213.159.117.217 www3.xfreehosting.com
O1 - Hosts: 213.159.117.217 www3.zpornstars.com
O1 - Hosts: 213.159.117.217 www30.smutserver.com
O1 - Hosts: 213.159.117.217 www31.smutserver.com
O1 - Hosts: 213.159.117.217 www32.smutserver.com
O1 - Hosts: 213.159.117.217 www4.kinghost.com
O1 - Hosts: 213.159.117.217 www4.smutserver.com
O1 - Hosts: 213.159.117.217 www4.xfreehosting.com
O1 - Hosts: 213.159.117.217 www4.zpornstars.com
O1 - Hosts: 213.159.117.217 www5.kinghost.com
O1 - Hosts: 213.159.117.217 www5.smutserver.com
O1 - Hosts: 213.159.117.217 www6.kinghost.com
O1 - Hosts: 213.159.117.217 www6.smutserver.com
O1 - Hosts: 213.159.117.217 www7.kinghost.com
O1 - Hosts: 213.159.117.217 www7.smutserver.com
O1 - Hosts: 213.159.117.217 www8.kinghost.com
O1 - Hosts: 213.159.117.217 www8.smutserver.com
O1 - Hosts: 213.159.117.217 www9.kinghost.com
O1 - Hosts: 213.159.117.217 www9.smutserver.com
O1 - Hosts: 213.159.117.217 www.bigmovies.com
O1 - Hosts: 213.159.117.217 www.bigpornvideos.com
O1 - Hosts: 213.159.117.217 www.big-xxx-movies.com
O1 - Hosts: 213.159.117.217 www.samplehosting.com
O1 - Hosts: 213.159.117.217 www.blinghosting.com
O1 - Hosts: 213.159.117.217 www.blitz-hosting.com
O1 - Hosts: 213.159.117.217 www.boyanxxx.com
O1 - Hosts: 213.159.117.217 www.bustyx.com
O1 - Hosts: 213.159.117.217 www.cleanadulthost.com
O1 - Hosts: 213.159.117.217 www.cleanpornhost.com
O1 - Hosts: 213.159.117.217 www.cyberxxxhost.com
O1 - Hosts: 213.159.117.217 www.dialcom.com
O1 - Hosts: 213.159.117.217 www.eldererotica.tv
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Programmi\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programmi\Java\jre1.5.0_04\bin\ssv.dll (file missing)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - g:\FlashFXP\IEFlash.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - HKLM\..\Run: [Real Player] realsched.exe
O4 - HKLM\..\Run: [navapp] E:\Programmi\NavExcel\NavHelper\v2.0.4d\navapp.exe
O4 - HKLM\..\Run: [CAPON] E:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] E:\Programmi\File comuni\Real\Update_OB\realsched.exe -osboot
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [PSDrvCheck] E:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UnlockerAssistant] E:\Programmi\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Run: [WinVNC] "E:\Programmi\TightVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [nod32kui] "E:\Programmi\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [EQOClient] E:\Programmi\EQO\EQO.exe
O4 - HKLM\..\Run: [Globe7] "E:\Programmi\Globe7\Globe7.exe" /hide
O4 - HKLM\..\RunServices: [Real Player] realsched.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Real Player] realsched.exe
O4 - HKCU\..\Run: [SkypeLink] E:\Programmi\SkypeLink\SkypeLink.exe
O4 - HKCU\..\Run: [Mercora] "E:\Programmi\Mercora\MercoraClient.exe" -min
O4 - HKCU\..\Run: [Skype] "E:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [VoipStunt] "E:\Programmi\VoipStunt.com\VoipStunt\VoipStunt.exe" -nosplash -minimized
O4 - HKCU\..\Run: [PnPUI Registrator] E:\Programmi\Common Files\Sitecom Shared\PnP Universal Installer\PnPUIReg.exe -s
O4 - HKCU\..\Run: [ServUTrayIcon] E:\Programmi\Serv-U\ServUTray.exe
O4 - HKCU\..\Run: [KNOB FILE] E:\DOCUME~1\Dave\DATIAP~1\TrustUp\bendbleh.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "E:\Programmi\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: Trillian.lnk = E:\Programmi\Trillian Pro 3\trillian.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = E:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: DU Meter.lnk = E:\Programmi\DU Meter\DUMeter.exe
O4 - Global Startup: Finestra di stato di Canon LBP-800.LNK = E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
O4 - Global Startup: Microsoft Office.lnk = E:\Programmi\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Get It With Kontiki - res://E:\Programmi\Kontiki\bin\bh309190.dll/201
O8 - Extra context menu item: Invia a &Bluetooth - E:\Programmi\Sitecom\Software Bluetooth\btsendto_ie_ctx.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Crea preferito portatile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmi\Messenger\msmsgs.exe
O9 - Extra button: Ebates - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://E:\Programmi\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/20021126/qtinstall.info.apple.com/sikes/it/win/QuickTimeInstaller.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1157152020849
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab
O16 - DPF: {AE609930-A6EB-4A78-B7DA-B3200705FEBD} (Mophun Control) - http://www.sonyericsson.com/entertainment/it/gaming/mophungames/mophun.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B0688F7D-05D0-42BF-B290-48F88F98F632}: NameServer = 151.99.125.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D9E2F81F-8022-442B-A428-7EA7E9D3E07B}: NameServer = 192.168.0.1,151.99.250.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "E:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - E:\WINDOWS\system32\btxppanel.dll
O20 - AppInit_DLLs: MsgPlusLoader.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - E:\Programmi\Sitecom\Software Bluetooth\bin\btwdins.exe
O23 - Service: Fazzt - KenCast, Inc. - E:\PROGRA~1\KenCast\Fazzt\bin\FazztSrv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Programmi\File comuni\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - E:\Programmi\iPod\bin\iPodService.exe
O23 - Service: MGABGEXE - Matrox Graphics Inc. - E:\WINDOWS\System32\mgabg.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - E:\Programmi\Eset\nod32krn.exe
O23 - Service: NoIPDUCService - Vitalwerks LLC - E:\Programmi\No-IP\DUC20.exe
O23 - Service: Remote Control Server (RCSERVER) - Unknown owner - E:\Programmi\Remote Control\RCServer.exe" -service (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Serv-U FTP Server (Serv-U) - Unknown owner - E:\Programmi\Serv-U\ServUDaemon.exe
O23 - Service: services - Unknown owner - E:\WINDOWS\services.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - E:\Programmi\File comuni\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)

Ma cosa ci fai con quel pc?!? Scherzo cmq penso che queste le puoi eliminare tranquillamente:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
Tutte le voci che iniziano con "O1"
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - Global Startup: BTTray.lnk = ?
Tutte le voci che iniziano con "O16"
Tutte le voci che iniziano con "O18"
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)


Poi se EON non lo usi fixa anche queste:
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html

Se non usi Star Downloader fixa queste:
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm

Cmq fai una bella scansione con l'antivirus e con un buon antispyware (tipo Spybot)...perchè o navighi di brutto in siti p***o oppure hai un virus o un dialer....fammi sapere se hai ancora problemi....

Ma cosa ci fai con quel pc?!? Scherzo cmq penso che queste le puoi eliminare tranquillamente:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
Tutte le voci che iniziano con "O1"
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - Global Startup: BTTray.lnk = ?
Tutte le voci che iniziano con "O16"
Tutte le voci che iniziano con "O18"
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)


Poi se EON non lo usi fixa anche queste:
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html

Se non usi Star Downloader fixa queste:
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm

Cmq fai una bella scansione con l'antivirus e con un buon antispyware (tipo Spybot)...perchè o navighi di brutto in siti p***o oppure hai un virus o un dialer....fammi sapere se hai ancora problemi....

i log di hijackthis andrebbero postati nell'apposito 3d :mad:

Sono d'accordo bisogna postare nei thread ufficiali :D
Riguardo al log se ricordo bene gli 01 sono codici maligni ma vorrei conferma da un utente più esperto di me :D

P.S. Secondo me il tuo pc è infettato da virus e spyware. Ho notato anche che gli 01 sono tutte cose pornografiche e credo siano zeppe di virus trojan :D

analisi automatica
http://www.hijackthis.de/logfiles/c7ad880ca1bd5030f56112e4b9a139e1.html
fate voi

mamma mia che "casino" che hai nel tuo pc!!!! :D :D :D

:eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek:
Guarda il log analizzalo tu perchè è pieno di skifezze!!
Collegamenti a siti porno ed addirittura al famoso ***.0190-dialer.com :sbavvv: :sbavvv:

:eek: :eek: :eek: :eek: :eek: :eek: :eek: :eek:
Guarda il log analizzalo tu perchè è pieno di skifezze!!
Collegamenti a siti porno ed addirittura al famoso ***.0190-dialer.com :sbavvv: :sbavvv:

lascia stare, facendo l'analisi automatica, risultano almeno una 30 di voci da eliminare!!!! ma che cavolo fai con quel pc!!! posta nei 3d ufficiali :mad::mad:

Ciao,

i log di HJT, solo nell'apposito thread ;)