Non riesco a navigare con IE e Firefox!

[alienoide]

Ciao a tutti
ho bisogno del vostro aiuto!
da oggi non riesco a navigare nè con IE nè con Firefox...
ho creato il log di hijack this che fa veramente paura di quanto è lungo!
Grazie a chi mi vorrà aiutare...
Alien

eccolo di seguito:

Logfile of HijackThis v1.99.1
Scan saved at 18.10.00, on 03/01/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Programmi\Sitecom\Software Bluetooth\bin\btwdins.exe
E:\PROGRA~1\KenCast\Fazzt\bin\FazztSrv.exe
E:\WINDOWS\System32\mgabg.exe
E:\Programmi\Eset\nod32krn.exe
E:\Programmi\No-IP\DUC20.exe
E:\WINDOWS\system32\r_server.exe
E:\Programmi\Serv-U\ServUDaemon.exe
E:\WINDOWS\services.exe
E:\WINDOWS\System32\svchost.exe
E:\Programmi\TightVNC\WinVNC.exe
E:\WINDOWS\Explorer.EXE
E:\Programmi\File comuni\Real\Update_OB\realsched.exe
E:\Programmi\QuickTime\qttask.exe
E:\Programmi\Unlocker\UnlockerAssistant.exe
E:\Programmi\Eset\nod32kui.exe
E:\Programmi\Globe7\Globe7.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Programmi\SkypeLink\SkypeLink.exe
E:\Programmi\Skype\Phone\Skype.exe
E:\Programmi\Serv-U\ServUTray.exe
E:\Programmi\Microsoft ActiveSync\wcescomm.exe
e:\progra~1\intern~1\iexplore.exe
E:\WINDOWS\system32\CAPRPCSK.EXE
E:\Programmi\Sitecom\Software Bluetooth\BTTray.exe
E:\Programmi\Logitech\MouseWare\system\em_exec.exe
E:\Programmi\DU Meter\DUMeter.exe
E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
E:\PROGRA~1\MICROS~3\rapimgr.exe
E:\Programmi\Trillian Pro 3\trillian.exe
E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\wscntfy.exe
E:\WINDOWS\system32\wuauclt.exe
E:\Programmi\Outlook Express\msimn.exe
E:\WINDOWS\system32\taskmgr.exe
G:\Hijack this\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O1 - Hosts: 213.159.117.217 www.0190-dialer.com
O1 - Hosts: 213.159.117.217 www.22469.com
O1 - Hosts: 213.159.117.217 www.3wisp.com
O1 - Hosts: 213.159.117.217 www.adult-cinema.org
O1 - Hosts: 213.159.117.217 www.adultfreehosting.com
O1 - Hosts: 213.159.117.217 www.adulthosting.com
O1 - Hosts: 213.159.117.217 www.adultlinks1.com
O1 - Hosts: 213.159.117.217 www.adultmegamovies.com
O1 - Hosts: 213.159.117.217 www.adultsexmovie.net
O1 - Hosts: 213.159.117.217 www.adultwall.com
O1 - Hosts: 213.159.117.217 www.afro-sex.com
O1 - Hosts: 213.159.117.217 www.agreathost.net
O1 - Hosts: 213.159.117.217 www.alehina.com
O1 - Hosts: 213.159.117.217 www.allnichestgp.com
O1 - Hosts: 213.159.117.217 www.allowednet.com
O1 - Hosts: 213.159.117.217 www.amateurlips.com
O1 - Hosts: 213.159.117.217 www.amateurnudephoto.com
O1 - Hosts: 213.159.117.217 www.amateursgonebad.com
O1 - Hosts: 213.159.117.217 www.ambersamateurhardcore.com
O1 - Hosts: 213.159.117.217 www.anyamateur.com
O1 - Hosts: 213.159.117.217 www.apornhost.com
O1 - Hosts: 213.159.117.217 www.findmodels.com
O1 - Hosts: 213.159.117.217 www.asianscum.com
O1 - Hosts: 213.159.117.217 www.awethumbs.com
O1 - Hosts: 213.159.117.217 www.badassxxx.com
O1 - Hosts: 213.159.117.217 www.badbimbo.com
O1 - Hosts: 213.159.117.217 www.beautifulbondage.com
O1 - Hosts: 213.159.117.217 www.bestpornhost.com
O1 - Hosts: 213.159.117.217 www.biggestdickinporn.net
O1 - Hosts: 213.159.117.217 www1.3wisp.com
O1 - Hosts: 213.159.117.217 www1.kinghost.com
O1 - Hosts: 213.159.117.217 www1.ndhosting.com
O1 - Hosts: 213.159.117.217 www1.sexls.com
O1 - Hosts: 213.159.117.217 www1.smutserver.com
O1 - Hosts: 213.159.117.217 www1.toptgphost.com
O1 - Hosts: 213.159.117.217 www1.xfreehosting.com
O1 - Hosts: 213.159.117.217 www10.kinghost.com
O1 - Hosts: 213.159.117.217 www10.smutserver.com
O1 - Hosts: 213.159.117.217 www11.kinghost.com
O1 - Hosts: 213.159.117.217 www11.smutserver.com
O1 - Hosts: 213.159.117.217 www12.kinghost.com
O1 - Hosts: 213.159.117.217 www12.smutserver.com
O1 - Hosts: 213.159.117.217 www13.smutserver.com
O1 - Hosts: 213.159.117.217 www14.smutserver.com
O1 - Hosts: 213.159.117.217 www15.smutserver.com
O1 - Hosts: 213.159.117.217 www16.smutserver.com
O1 - Hosts: 213.159.117.217 www17.smutserver.com
O1 - Hosts: 213.159.117.217 www18.smutserver.com
O1 - Hosts: 213.159.117.217 www19.smutserver.com
O1 - Hosts: 213.159.117.217 www2.3wisp.com
O1 - Hosts: 213.159.117.217 www2.kinghost.com
O1 - Hosts: 213.159.117.217 www2.ndhosting.com
O1 - Hosts: 213.159.117.217 www2.smutserver.com
O1 - Hosts: 213.159.117.217 www2.toptgphost.com
O1 - Hosts: 213.159.117.217 www2.xfreehosting.com
O1 - Hosts: 213.159.117.217 www2.zpornstars.com
O1 - Hosts: 213.159.117.217 www20.smutserver.com
O1 - Hosts: 213.159.117.217 www21.smutserver.com
O1 - Hosts: 213.159.117.217 www22.smutserver.com
O1 - Hosts: 213.159.117.217 www23.smutserver.com
O1 - Hosts: 213.159.117.217 www24.smutserver.com
O1 - Hosts: 213.159.117.217 www25.smutserver.com
O1 - Hosts: 213.159.117.217 www26.smutserver.com
O1 - Hosts: 213.159.117.217 www27.smutserver.com
O1 - Hosts: 213.159.117.217 www28.smutserver.com
O1 - Hosts: 213.159.117.217 www29.smutserver.com
O1 - Hosts: 213.159.117.217 www3.kinghost.com
O1 - Hosts: 213.159.117.217 www3.ndhosting.com
O1 - Hosts: 213.159.117.217 www3.smutserver.com
O1 - Hosts: 213.159.117.217 www3.xfreehosting.com
O1 - Hosts: 213.159.117.217 www3.zpornstars.com
O1 - Hosts: 213.159.117.217 www30.smutserver.com
O1 - Hosts: 213.159.117.217 www31.smutserver.com
O1 - Hosts: 213.159.117.217 www32.smutserver.com
O1 - Hosts: 213.159.117.217 www4.kinghost.com
O1 - Hosts: 213.159.117.217 www4.smutserver.com
O1 - Hosts: 213.159.117.217 www4.xfreehosting.com
O1 - Hosts: 213.159.117.217 www4.zpornstars.com
O1 - Hosts: 213.159.117.217 www5.kinghost.com
O1 - Hosts: 213.159.117.217 www5.smutserver.com
O1 - Hosts: 213.159.117.217 www6.kinghost.com
O1 - Hosts: 213.159.117.217 www6.smutserver.com
O1 - Hosts: 213.159.117.217 www7.kinghost.com
O1 - Hosts: 213.159.117.217 www7.smutserver.com
O1 - Hosts: 213.159.117.217 www8.kinghost.com
O1 - Hosts: 213.159.117.217 www8.smutserver.com
O1 - Hosts: 213.159.117.217 www9.kinghost.com
O1 - Hosts: 213.159.117.217 www9.smutserver.com
O1 - Hosts: 213.159.117.217 www.bigmovies.com
O1 - Hosts: 213.159.117.217 www.bigpornvideos.com
O1 - Hosts: 213.159.117.217 www.big-xxx-movies.com
O1 - Hosts: 213.159.117.217 www.samplehosting.com
O1 - Hosts: 213.159.117.217 www.blinghosting.com
O1 - Hosts: 213.159.117.217 www.blitz-hosting.com
O1 - Hosts: 213.159.117.217 www.boyanxxx.com
O1 - Hosts: 213.159.117.217 www.bustyx.com
O1 - Hosts: 213.159.117.217 www.cleanadulthost.com
O1 - Hosts: 213.159.117.217 www.cleanpornhost.com
O1 - Hosts: 213.159.117.217 www.cyberxxxhost.com
O1 - Hosts: 213.159.117.217 www.dialcom.com
O1 - Hosts: 213.159.117.217 www.eldererotica.tv
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Programmi\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Programmi\Java\jre1.5.0_04\bin\ssv.dll (file missing)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - g:\FlashFXP\IEFlash.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - HKLM\..\Run: [Real Player] realsched.exe
O4 - HKLM\..\Run: [navapp] E:\Programmi\NavExcel\NavHelper\v2.0.4d\navapp.exe
O4 - HKLM\..\Run: [CAPON] E:\WINDOWS\system32\Spool\Drivers\w32x86\3\CAPONN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] E:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] E:\Programmi\File comuni\Real\Update_OB\realsched.exe -osboot
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [PSDrvCheck] E:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UnlockerAssistant] E:\Programmi\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Run: [WinVNC] "E:\Programmi\TightVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [nod32kui] "E:\Programmi\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [EQOClient] E:\Programmi\EQO\EQO.exe
O4 - HKLM\..\Run: [Globe7] "E:\Programmi\Globe7\Globe7.exe" /hide
O4 - HKLM\..\RunServices: [Real Player] realsched.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Real Player] realsched.exe
O4 - HKCU\..\Run: [SkypeLink] E:\Programmi\SkypeLink\SkypeLink.exe
O4 - HKCU\..\Run: [Mercora] "E:\Programmi\Mercora\MercoraClient.exe" -min
O4 - HKCU\..\Run: [Skype] "E:\Programmi\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [VoipStunt] "E:\Programmi\VoipStunt.com\VoipStunt\VoipStunt.exe" -nosplash -minimized
O4 - HKCU\..\Run: [PnPUI Registrator] E:\Programmi\Common Files\Sitecom Shared\PnP Universal Installer\PnPUIReg.exe -s
O4 - HKCU\..\Run: [ServUTrayIcon] E:\Programmi\Serv-U\ServUTray.exe
O4 - HKCU\..\Run: [KNOB FILE] E:\DOCUME~1\Dave\DATIAP~1\TrustUp\bendbleh.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "E:\Programmi\Microsoft ActiveSync\wcescomm.exe"
O4 - Startup: Trillian.lnk = E:\Programmi\Trillian Pro 3\trillian.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = E:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: DU Meter.lnk = E:\Programmi\DU Meter\DUMeter.exe
O4 - Global Startup: Finestra di stato di Canon LBP-800.LNK = E:\WINDOWS\system32\spool\drivers\w32x86\3\CAPPSWK.EXE
O4 - Global Startup: Microsoft Office.lnk = E:\Programmi\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Get It With Kontiki - res://E:\Programmi\Kontiki\bin\bh309190.dll/201
O8 - Extra context menu item: Invia a &Bluetooth - E:\Programmi\Sitecom\Software Bluetooth\btsendto_ie_ctx.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Crea preferito portatile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Programmi\Messenger\msmsgs.exe
O9 - Extra button: Ebates - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://E:\Programmi\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1157152020849
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...tatsClient.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab
O16 - DPF: {AE609930-A6EB-4A78-B7DA-B3200705FEBD} (Mophun Control) - http://www.sonyericsson.com/entertai...mes/mophun.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B0688F7D-05D0-42BF-B290-48F88F98F632}: NameServer = 151.99.125.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D9E2F81F-8022-442B-A428-7EA7E9D3E07B}: NameServer = 192.168.0.1,151.99.250.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "E:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - E:\WINDOWS\system32\btxppanel.dll
O20 - AppInit_DLLs: MsgPlusLoader.dll
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - E:\Programmi\Sitecom\Software Bluetooth\bin\btwdins.exe
O23 - Service: Fazzt - KenCast, Inc. - E:\PROGRA~1\KenCast\Fazzt\bin\FazztSrv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Programmi\File comuni\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - E:\Programmi\iPod\bin\iPodService.exe
O23 - Service: MGABGEXE - Matrox Graphics Inc. - E:\WINDOWS\System32\mgabg.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - E:\Programmi\Eset\nod32krn.exe
O23 - Service: NoIPDUCService - Vitalwerks LLC - E:\Programmi\No-IP\DUC20.exe
O23 - Service: Remote Control Server (RCSERVER) - Unknown owner - E:\Programmi\Remote Control\RCServer.exe" -service (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Serv-U FTP Server (Serv-U) - Unknown owner - E:\Programmi\Serv-U\ServUDaemon.exe
O23 - Service: services - Unknown owner - E:\WINDOWS\services.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - E:\Programmi\File comuni\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)

[lord mathayus]

Ma cosa ci fai con quel pc?!? Scherzo cmq penso che queste le puoi eliminare tranquillamente:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
Tutte le voci che iniziano con "O1"
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - Global Startup: BTTray.lnk = ?
Tutte le voci che iniziano con "O16"
Tutte le voci che iniziano con "O18"
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)


Poi se EON non lo usi fixa anche queste:
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html

Se non usi Star Downloader fixa queste:
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm

Cmq fai una bella scansione con l'antivirus e con un buon antispyware (tipo Spybot)...perchè o navighi di brutto in siti p***o oppure hai un virus o un dialer....fammi sapere se hai ancora problemi....

[black92]

Quote:

Originariamente inviato da lord mathayus

Ma cosa ci fai con quel pc?!? Scherzo cmq penso che queste le puoi eliminare tranquillamente:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://opti.riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://riviera.cc (obfuscated)
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://opti.riviera.cc (obfuscated)
Tutte le voci che iniziano con "O1"
O2 - BHO: ZIBho Class - {029CA12C-89C1-46a7-A3C7-82F2F98635CB} - E:\Programmi\Kontiki\bin\bh309190.dll
O2 - BHO: Owlforce - {37E1A9E5-00D4-4203-8E58-B91F383A3809} - (no file)
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - E:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - Global Startup: BTTray.lnk = ?
Tutte le voci che iniziano con "O16"
Tutte le voci che iniziano con "O18"
O23 - Service: Remote Administrator Service (r_server) - Unknown owner - E:\WINDOWS\system32\r_server.exe" /service (file missing)
O23 - Service: Microsoft Windows Spool Service (Windows Spool Service) - Unknown owner - E:\WINDOWS\wdfmgr.exe (file missing)
O23 - Service: VNC Server (winvnc) - Unknown owner - E:\Programmi\TightVNC\WinVNC.exe" -service (file missing)


Poi se EON non lo usi fixa anche queste:
O8 - Extra context menu item: Download all with EON - E:\Programmi\EON File Fetch Manager\eoncatchall.html
O8 - Extra context menu item: Download with EON - E:\Programmi\EON File Fetch Manager\eoncatch.html

Se non usi Star Downloader fixa queste:
O8 - Extra context menu item: Download with Star Downloader - E:\Programmi\Star Downloader\sdie.htm
O8 - Extra context menu item: Scarica con Star Downloader - E:\Programmi\Star Downloader\sdie.htm

Cmq fai una bella scansione con l'antivirus e con un buon antispyware (tipo Spybot)...perchè o navighi di brutto in siti p***o oppure hai un virus o un dialer....fammi sapere se hai ancora problemi....

i log di hijackthis andrebbero postati nell'apposito 3d

[raffree]

Sono d'accordo bisogna postare nei thread ufficiali
Riguardo al log se ricordo bene gli 01 sono codici maligni ma vorrei conferma da un utente più esperto di me

P.S. Secondo me il tuo pc è infettato da virus e spyware. Ho notato anche che gli 01 sono tutte cose pornografiche e credo siano zeppe di virus trojan

[wizard1993]

analisi automatica
http://www.hijackthis.de/logfiles/c7...4b9a139e1.html
fate voi

[c.m.g]

mamma mia che "casino" che hai nel tuo pc!!!!

[Gianky....! :D :)]

Guarda il log analizzalo tu perchè è pieno di skifezze!!
Collegamenti a siti porno ed addirittura al famoso ***.0190-dialer.com

[black92]

Quote:

Originariamente inviato da Gianky....! :D :)

Guarda il log analizzalo tu perchè è pieno di skifezze!!
Collegamenti a siti porno ed addirittura al famoso ***.0190-dialer.com

lascia stare, facendo l'analisi automatica, risultano almeno una 30 di voci da eliminare!!!! ma che cavolo fai con quel pc!!! posta nei 3d ufficiali

[wgator]

Ciao,

i log di HJT, solo nell'apposito thread