|
|||||||
|
|
|
 |
|
|
Strumenti |
07-02-2006, 12:43
|
#1 |
|
Senior Member
Iscritto dal: May 2001
Città: MILANESE, ma trapiantato in prov. di MN Squadra: MILAN, la più titolata al MONDO
Messaggi: 4561
|
Logfile of HijackThis: beh, aiutate anche me!
Logfile of HijackThis v1.98.0
Scan saved at 13.41.01, on 07/02/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5296.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Ahead\InCD\InCDsrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Avast4\aswUpdSv.exe C:\Avast4\ashServ.exe C:\Ewido anti-malware\ewidoctrl.exe C:\Ewido anti-malware\ewidoguard.exe C:\Programmi\File comuni\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\ups.exe C:\ScanSoft\OmniPageSE\opware32.exe C:\Classic PhoneTools\CapFax.EXE C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe C:\Ahead\InCD\InCD.exe C:\Programmi\Libero 6x\SlipStream Web Accelerator\slipcore.exe C:\Avast4\ashDisp.exe C:\SPAMfighter\SFAgent.exe C:\Programmi\File comuni\Real\Update_OB\realsched.exe C:\WINDOWS\system32\ctfmon.exe C:\3M\PSNLite\PsnLite.exe C:\3M\PSNLite\PSNGive.exe C:\Avast4\ashMaiSv.exe C:\Avast4\ashWebSv.exe C:\Microsoft\Office\Office10\WINWORD.EXE C:\Avast4\ashSimpl.exe C:\WINDOWS\system32\slrundll.exe C:\Programmi\Mozilla Firefox\firefox.exe C:\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://arianna.libero.it R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID} R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fornito da Libero R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Preferiti O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\GetRight\xx2gr.dll O2 - BHO: PBlockHelper Class - {4115122B-85FF-4DD3-9515-F075BEDE5EB5} - C:\Programmi\Libero 6x\SlipStream Web Accelerator\PBHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Programmi\Siber Systems\AI RoboForm\roboform.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Burn4Free Toolbar Helper - {F8E5CA21-C27B-43e7-B2BE-4CA93C9F9A1F} - C:\Programmi\Burn4Free Toolbar\v2.0.0.3\Burn4Free_Toolbar.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: SlipStream Web Accelerator - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - C:\Programmi\Libero 6x\SlipStream Web Accelerator\Toolband.dll O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Programmi\Siber Systems\AI RoboForm\roboform.dll O3 - Toolbar: Burn4Free Toolbar - {70DE7956-479D-4eb7-8641-2B45774C350E} - C:\Programmi\Burn4Free Toolbar\v2.0.0.3\Burn4Free_Toolbar.dll O4 - HKLM\..\Run: [Omnipage] C:\ScanSoft\OmniPageSE\opware32.exe O4 - HKLM\..\Run: [CapFax] C:\Classic PhoneTools\CapFax.EXE O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [InCD] C:\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Programmi\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [SlipStream] "C:\Programmi\Libero 6x\SlipStream Web Accelerator\slipcore.exe" O4 - HKLM\..\Run: [avast!] C:\Avast4\ashDisp.exe O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\SPAMfighter\SFAgent.exe" update delay 60 O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NBJ] "C:\Ahead\Nero BackItUp\NBJ.exe" O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Microsoft Office.lnk = C:\Microsoft\Office\Office10\OSA.EXE O4 - Global Startup: Post-it® Software Notes Lite.lnk = C:\3M\PSNLite\PsnLite.exe O8 - Extra context menu item: Aggiungi all'elenco di stampa Easy-WebPrint - res://C:\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Anteprima Easy-WebPrint - res://C:\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O8 - Extra context menu item: Customize Menu - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html O8 - Extra context menu item: Download with GetRight - C:\GetRight\GRdownload.htm O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\MICROS~1\Office\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Fill Forms - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComFillForms.html O8 - Extra context menu item: Open with GetRight Browser - C:\GetRight\GRbrowse.htm O8 - Extra context menu item: RoboForm Toolbar - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O8 - Extra context menu item: Save Forms - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComSavePass.html O8 - Extra context menu item: Stampa ad alta velocità Easy-WebPrint - res://C:\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Stampa Easy-WebPrint - res://C:\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\HTTrack\WinHTTrackIEBar.dll O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\HTTrack\WinHTTrackIEBar.dll O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Programmi\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O11 - Options group: [INTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://www.libero.it O15 - Trusted Zone: www.skymasters.biz O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O17 - HKLM\System\CCS\Services\Tcpip\..\{F6F6BE88-5EF2-4CD9-A826-C4DF5AEE0997}: NameServer = 195.62.227.3 195.62.224.30 Grazie infinite. |
|
|
|
07-02-2006, 12:59
|
#2 |
|
Senior Member
Iscritto dal: Sep 2004
Città: Prov. Novara/Palmdale
Messaggi: 5228
|
C'è sopra il thread ufficiale
 Io fixerei subito questa...per il resto non mi sembra ci siano problemi: "O15 - Trusted Zone: www.skymasters.biz" Ciao |
|
|
|
|
07-02-2006, 13:04
|
#3 |
|
Senior Member
Iscritto dal: May 2001
Città: MILANESE, ma trapiantato in prov. di MN Squadra: MILAN, la più titolata al MONDO
Messaggi: 4561
|
Grazie.
|
|
|
|
|
07-02-2006, 13:27
|
#4 |
|
Senior Member
Iscritto dal: Nov 2002
Città: Firenze
Messaggi: 4027
|
...ma guarda che puoi anche fare da solo...ci sono dei siti che ospitano l'analizzatore di HijackThis
 http://www.ilsoftware.it/hijackthis.asp basta che fai copia incolla con il log e poi lo incolli nello spazio apposito sulla pagina web...le voci in giallo sarebbe bene controllarle(san google in questi casi fa miracoli), quelle in rosso invece sono problemi...ma basta che clicchi sulle stellette sotto ed hai anche la soluzione per la rimozione...un po' colorita ma è lei 
Ultima modifica di Ciaba : 07-02-2006 alle 13:33. |
|
|
|
|
07-02-2006, 13:30
|
#5 |
|
Senior Member
Iscritto dal: Sep 2005
Città: Opinions are like assholes: anybody has one...
Messaggi: 34290
|
è indicativo e basta: meglio andorra
__________________
Ну давай !! . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Cina, bugiardo - stolen conto: non paghi . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . NON CERCO PIU' UN ALIMENTATORE DECENTE ----------------> LINK |
|
|
|
|
07-02-2006, 13:37
|
#6 | |
|
Senior Member
Iscritto dal: May 2001
Città: MILANESE, ma trapiantato in prov. di MN Squadra: MILAN, la più titolata al MONDO
Messaggi: 4561
|
Quote:
|
|
|
|
|
|
07-02-2006, 13:38
|
#7 | |
|
Senior Member
Iscritto dal: May 2001
Città: MILANESE, ma trapiantato in prov. di MN Squadra: MILAN, la più titolata al MONDO
Messaggi: 4561
|
Quote:
|
|
|
|
|
|
07-02-2006, 13:42
|
#8 |
|
Senior Member
Iscritto dal: Sep 2005
Città: Opinions are like assholes: anybody has one...
Messaggi: 34290
|
__________________
Ну давай !! . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Cina, bugiardo - stolen conto: non paghi . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . NON CERCO PIU' UN ALIMENTATORE DECENTE ----------------> LINK |
|
|
|
|
07-02-2006, 13:45
|
#9 | |
|
Senior Member
Iscritto dal: May 2001
Città: MILANESE, ma trapiantato in prov. di MN Squadra: MILAN, la più titolata al MONDO
Messaggi: 4561
|
Quote:
|
|
|
|
|
|
|
| Strumenti | |
|
|
Tutti gli orari sono GMT +1. Ora sono le: 04:43.
