|
|
|
![]() |
|
Strumenti |
![]() |
#1 |
Junior Member
Iscritto dal: Oct 2004
Messaggi: 6
|
Vi prego, barre assassine...
Potete aiutarmi?
da qualche giorno quando lancio explorer mi si apre una barra in alto rispetto alla barra di start di colore blu con 6 tasti di nome "make money" "music" "casino" "travel" "mortage" "investing" e uno spazio per la ricerca subito li di fianco... Questa maledetta barra rompe abbastanza perchè se ne sta li fino a quando non la chiudi e non va in sfondo ma rimane sempre in primo piano... ...non so cosa mel'ha portata nel computer ma voglio potarla!!!!!1 ho installato anche BHOdemon e spybot ma a scan finito e rimossi i "troiai" (hehehe) quella è l'unica fastidiosissima cosa che permane... vi prego: sono in un "cul de sàc..." grazie |
![]() |
![]() |
#2 |
Senior Member
Iscritto dal: Mar 2004
Città: Rimini
Messaggi: 10296
|
Ciao,
stessa risposta che ho dato altre volte: se hai tentato con tutti i mezzi classici (ad-aware, spybot, spysweeper) insomma con l'armamentario che la rete mette a disposizione gratis ![]()
__________________
sometimes they come back *** Life Happens! - (Professionista I.T. - Tecnico Telecomunicazioni) Latitude E6420 I7 2760QM SSD Crucial M4-512GB --- Tecra R840 I5 2520M SSD Samsung 830-256GB --- Macbook Pro 13,3" I5 2435M SSD Samsung 830-256GB |
![]() |
![]() |
#3 |
Junior Member
Iscritto dal: Oct 2004
Messaggi: 6
|
ECCO IL LOG...
Logfile of HijackThis v1.98.2 Scan saved at 12.24.40, on 09/10/2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Wintab32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\Ahead\InCD\InCDsrv.exe C:\Programmi\Panda Software\Panda Antivirus Platinum\Firewall\PavFires.exe C:\Programmi\Panda Software\Panda Antivirus Platinum\pavsrv51.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\Panda Software\Panda Antivirus Platinum\AVENGINE.EXE C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\RunDll32.exe C:\Programmi\Ahead\InCD\InCD.exe C:\Programmi\Trust\302KS\Mouse\mouse32a.exe C:\Programmi\Messenger Plus! 3\MsgPlus.exe C:\Programmi\Internet Explorer\iexplore.exe C:\Programmi\VIA\RAID\raid_tool.exe c:\progra~1\intern~1\iexplore.exe C:\WINDOWS\system32\spoolsv.exe C:\Programmi\Messenger\msmsgs.exe C:\Programmi\MSN Messenger\msnmsgr.exe C:\Documents and Settings\Utente\Desktop\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programmi\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {98166A16-9809-5CB6-B200-485AB2A295B2} - C:\Programmi\inside dvd\Dale Type.exe (disabled by BHODemon) O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [InCD] C:\Programmi\Ahead\InCD\InCD.exe O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg O4 - HKLM\..\Run: [FLMBROWSEMOUSE] C:\Programmi\Trust\302KS\Mouse\mouse32a.exe O4 - HKLM\..\Run: [HP Software Update] C:\Programmi\Hewlett-Packard\HP Software Update\HPWuSchd.exe O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb08.exe O4 - HKLM\..\Run: [DeviceDiscovery] C:\Programmi\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe O4 - HKLM\..\Run: [ATIPTA] C:\PROGRAMMI\ATI TECHNOLOGIES\ATI CONTROL PANEL\ATIPTAXX.EXE O4 - HKLM\..\Run: [ZPOINT32] C:\WINDOWS\System32\ZPOINT32.exe O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Programmi\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [SCANINICIO] "C:\Programmi\Panda Software\Panda Antivirus Platinum\Inicio.exe" O4 - HKLM\..\Run: [APVXDWIN] "C:\Programmi\Panda Software\Panda Antivirus Platinum\APVXDWIN.EXE" /s O4 - HKLM\..\Run: [MessengerPlus3] "C:\Programmi\Messenger Plus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [copy atom burn load] C:\Documents and Settings\All Users\Dati applicazioni\idle bore copy atom\CopyAcid.exe O4 - HKLM\..\Run: [mail free] C:\PROGRA~1\RDRBRO~1\Option Warn Amen.exe O4 - HKLM\..\RunServices: [Microsoft Update Machine] winininxs.exe O4 - HKCU\..\Run: [MessengerPlus3] "C:\Programmi\Messenger Plus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [msnmsgr] "C:\Programmi\MSN Messenger\msnmsgr.exe" /background O4 - Startup: BHODemon 2.0.lnk = C:\Programmi\BHODemon 2\BHODemon.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: MuchTV Remote.lnk = ? O4 - Global Startup: VIA RAID TOOL.lnk = C:\Programmi\VIA\RAID\raid_tool.exe O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{2CFE3E44-D74E-4A28-8298-D3C72B915DC9}: NameServer = 80.17.209.204 151.99.125.1 |
![]() |
![]() |
#4 |
Senior Member
Iscritto dal: Mar 2004
Città: Rimini
Messaggi: 10296
|
Ciao,
dopo il classico lavoretto, ovvero, visualizzazione di file e cartelle nascosti, cancellazione del contenuto di tutte le cartelle temporanee, dei file temporanei di internet e, per precauzione, la disattivazione del ripristino della configurazione del sistema, devi localizzare l'eseguibile "winininxs.exe" ed eliminarlo, eventualmente dopo averlo terminato col task manager oppure da modalità provvisoria poi metti la spunta (con hijackthis) su: O4 - HKLM\..\RunServices: [Microsoft Update Machine] winininxs.exe e premi "FIX" Con questo dovresti risolvere ____________________________________________ Un paio di osservazioni: sai cos'è questo? O4 - HKLM\..\Run: [mail free] C:\PROGRA~1\RDRBRO~1\Option Warn Amen.exe Io non lo conosco, perciò cerca di capire se è roba che hai installato tu, in caso contrario elimina Altra cosa che non c'entra col tuo problema: in molti usate messenger plus. La mia domanda è la seguente: sapete dirmi se quel programma contiene spyware? A me risulta di si...
__________________
sometimes they come back *** Life Happens! - (Professionista I.T. - Tecnico Telecomunicazioni) Latitude E6420 I7 2760QM SSD Crucial M4-512GB --- Tecra R840 I5 2520M SSD Samsung 830-256GB --- Macbook Pro 13,3" I5 2435M SSD Samsung 830-256GB |
![]() |
![]() |
#5 |
Member
Iscritto dal: Jan 2004
Messaggi: 251
|
Messenger Plus è pieno di Spyware.
![]() Provato personalmente e disinstallato a tempo di record. ![]() Ciao. |
![]() |
![]() |
#6 | |
Senior Member
Iscritto dal: Mar 2004
Città: Rimini
Messaggi: 10296
|
Quote:
![]() Grazie
__________________
sometimes they come back *** Life Happens! - (Professionista I.T. - Tecnico Telecomunicazioni) Latitude E6420 I7 2760QM SSD Crucial M4-512GB --- Tecra R840 I5 2520M SSD Samsung 830-256GB --- Macbook Pro 13,3" I5 2435M SSD Samsung 830-256GB |
|
![]() |
![]() |
#7 |
Junior Member
Iscritto dal: Oct 2004
Messaggi: 6
|
GRAZIE GRAZIE GRAZIE GRAZIE GRAZIE GRAZIE
Tutto ok adesso!!!!!!!!!
siete mitici, ne sapete a pacchi, non ce la facevo più... GRAZIE 1000 ...ho anche disinstallato Messenger+... e ho potato anche Option Warn Amen.exe ...che è meglio... Grazie ancora |
![]() |
![]() |
#8 | |
Senior Member
Iscritto dal: Apr 2003
Città: Prov.L'Aquila! -Email: djvin81@gmail.com
Messaggi: 1564
|
Quote:
lo si puo installare anche senza spie |
|
![]() |
![]() |
#9 | |
Member
Iscritto dal: Jan 2004
Messaggi: 251
|
Quote:
Ciao. |
|
![]() |
![]() |
#10 |
Junior Member
Iscritto dal: Sep 2006
Messaggi: 3
|
barre assassine 2
anche i ho lo stessoproblema...
potete aiutarmi?? grazie! Logfile of HijackThis v1.99.1 Scan saved at 12.57.45, on 27/09/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5700.0006) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Programmi\AntiVir PersonalEdition Classic\sched.exe C:\WINDOWS\Explorer.EXE C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\cisvc.exe C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE D:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\ATK0100\Hcontrol.exe C:\WINDOWS\SOUNDMAN.EXE C:\Progra~1\ASUS\Power4 Gear\BatteryLife.exe C:\WINDOWS\ATK0100\ATKOSD.exe C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Programmi\Synaptics\SynTP\SynTPLpr.exe C:\Programmi\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ASUS\WLAN Card Utilities\Center.exe C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe C:\WINDOWS\vsnpstd.exe C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe C:\Programmi\Mouse Driver\MouseDrv.exe C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe C:\PROGRA~1\FILECO~1\PCSuite\Services\SERVIC~1.EXE C:\Programmi\Internet Explorer\IEXPLORE.EXE C:\Programmi\iTunes\iTunesHelper.exe C:\Programmi\Asus\Asus ChkMail\ChkMail.exe C:\WINDOWS\System32\svchost.exe C:\Programmi\iPod\bin\iPodService.exe C:\Programmi\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\cidaemon.exe C:\Programmi\eMule\emule.exe C:\Programmi\iTunes\iTunes.exe C:\Programmi\MSN Messenger\msnmsgr.exe C:\Programmi\Internet Explorer\iexplore.exe C:\Programmi\WinRAR\WinRAR.exe C:\DOCUME~1\Utente\IMPOST~1\Temp\Rar$EX00.719\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID} R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fornito da Alice R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti O1 - Hosts: 205.238.40.2 www.winmx.com O1 - Hosts: 205.238.40.2 err.winmx.com O1 - Hosts: 205.238.40.2 c3310.z1301.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1301.winmx.com O1 - Hosts: 82.43.224.20 c3312.z1301.winmx.com O1 - Hosts: 209.67.209.50 c3313.z1301.winmx.com O1 - Hosts: 212.227.64.159 c3314.z1301.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1301.winmx.com O1 - Hosts: 67.18.233.36 c3316.z1301.winmx.com O1 - Hosts: 82.43.224.20 c3317.z1301.winmx.com O1 - Hosts: 209.67.209.50 c3318.z1301.winmx.com O1 - Hosts: 212.227.64.159 c3319.z1301.winmx.com O1 - Hosts: 205.238.40.2 c3310.z1302.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1302.winmx.com O1 - Hosts: 82.43.224.20 c3312.z1302.winmx.com O1 - Hosts: 209.67.209.50 c3313.z1302.winmx.com O1 - Hosts: 212.227.64.159 c3314.z1302.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1302.winmx.com O1 - Hosts: 67.18.233.36 c3316.z1302.winmx.com O1 - Hosts: 82.43.224.20 c3317.z1302.winmx.com O1 - Hosts: 209.67.209.50 c3318.z1302.winmx.com O1 - Hosts: 212.227.64.159 c3319.z1302.winmx.com O1 - Hosts: 82.43.224.20 c3310.z1303.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3312.z1303.winmx.com O1 - Hosts: 82.43.224.20 c3313.z1303.winmx.com O1 - Hosts: 67.18.233.36 c3314.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1303.winmx.com O1 - Hosts: 82.43.224.20 c3316.z1303.winmx.com O1 - Hosts: 67.18.233.36 c3317.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3318.z1303.winmx.com O1 - Hosts: 82.43.224.20 c3319.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3310.z1304.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1304.winmx.com O1 - Hosts: 82.43.224.20 c3312.z1304.winmx.com O1 - Hosts: 209.67.209.50 c3313.z1304.winmx.com O1 - Hosts: 212.227.64.159 c3314.z1304.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1304.winmx.com O1 - Hosts: 67.18.233.36 c3316.z1304.winmx.com O1 - Hosts: 82.43.224.20 c3317.z1304.winmx.com O1 - Hosts: 209.67.209.50 c3318.z1304.winmx.com O1 - Hosts: 212.227.64.159 c3319.z1304.winmx.com O1 - Hosts: 205.238.40.2 c3310.z1305.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1305.winmx.com O1 - Hosts: 82.43.224.20 c3312.z1305.winmx.com O1 - Hosts: 209.67.209.50 c3313.z1305.winmx.com O1 - Hosts: 212.227.64.159 c3314.z1305.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1305.winmx.com O1 - Hosts: 67.18.233.36 c3316.z1305.winmx.com O1 - Hosts: 82.43.224.20 c3317.z1305.winmx.com O1 - Hosts: 209.67.209.50 c3318.z1305.winmx.com O1 - Hosts: 212.227.64.159 c3319.z1305.winmx.com O1 - Hosts: 205.238.40.2 c3310.z1306.winmx.com O1 - Hosts: 67.18.233.36 c3311.z1306.winmx.com O1 - Hosts: 82.43.224.20 c3312.z1306.winmx.com O1 - Hosts: 209.67.209.50 c3313.z1306.winmx.com O1 - Hosts: 212.227.64.159 c3314.z1306.winmx.com O1 - Hosts: 205.238.40.2 c3315.z1306.winmx.com O1 - Hosts: 67.18.233.36 c3316.z1306.winmx.com O1 - Hosts: 82.43.224.20 c3317.z1306.winmx.com O1 - Hosts: 209.67.209.50 c3318.z1306.winmx.com O1 - Hosts: 212.227.64.159 c3319.z1306.winmx.com O1 - Hosts: 205.238.40.2 c3520.z1301.winmx.com O1 - Hosts: 67.18.233.36 c3521.z1301.winmx.com O1 - Hosts: 82.43.224.20 c3522.z1301.winmx.com O1 - Hosts: 209.67.209.50 c3523.z1301.winmx.com O1 - Hosts: 212.227.64.159 c3524.z1301.winmx.com O1 - Hosts: 205.238.40.2 c3525.z1301.winmx.com O1 - Hosts: 67.18.233.36 c3526.z1301.winmx.com O1 - Hosts: 82.43.224.20 c3527.z1301.winmx.com O1 - Hosts: 209.67.209.50 c3528.z1301.winmx.com O1 - Hosts: 212.227.64.159 c3529.z1301.winmx.com O1 - Hosts: 205.238.40.2 c3520.z1302.winmx.com O1 - Hosts: 67.18.233.36 c3521.z1302.winmx.com O1 - Hosts: 82.43.224.20 c3522.z1302.winmx.com O1 - Hosts: 209.67.209.50 c3523.z1302.winmx.com O1 - Hosts: 212.227.64.159 c3524.z1302.winmx.com O1 - Hosts: 205.238.40.2 c3525.z1302.winmx.com O1 - Hosts: 67.18.233.36 c3526.z1302.winmx.com O1 - Hosts: 82.43.224.20 c3527.z1302.winmx.com O1 - Hosts: 209.67.209.50 c3528.z1302.winmx.com O1 - Hosts: 212.227.64.159 c3529.z1302.winmx.com O1 - Hosts: 205.238.40.2 c3520.z1303.winmx.com O1 - Hosts: 67.18.233.36 c3521.z1303.winmx.com O1 - Hosts: 82.43.224.20 c3522.z1303.winmx.com O1 - Hosts: 209.67.209.50 c3523.z1303.winmx.com O1 - Hosts: 212.227.64.159 c3524.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3525.z1303.winmx.com O1 - Hosts: 67.18.233.36 c3526.z1303.winmx.com O1 - Hosts: 82.43.224.20 c3527.z1303.winmx.com O1 - Hosts: 209.67.209.50 c3528.z1303.winmx.com O1 - Hosts: 212.227.64.159 c3529.z1303.winmx.com O1 - Hosts: 205.238.40.2 c3520.z1304.winmx.com O1 - Hosts: 67.18.233.36 c3521.z1304.winmx.com O1 - Hosts: 82.43.224.20 c3522.z1304.winmx.com O1 - Hosts: 209.67.209.50 c3523.z1304.winmx.com O1 - Hosts: 212.227.64.159 c3524.z1304.winmx.com O1 - Hosts: 205.238.40.2 c3525.z1304.winmx.com O1 - Hosts: 67.18.233.36 c3526.z1304.winmx.com O1 - Hosts: 82.43.224.20 c3527.z1304.winmx.com O1 - Hosts: 209.67.209.50 c3528.z1304.winmx.com O2 - BHO: (no name) - {00654F7A-E36B-482E-E75D-5DEAA4CD3BB8} - C:\DOCUME~1\Utente\DATIAP~1\DELETE~1\Long Balm.exe (file missing) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\programmi\google\googletoolbar1.dll O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Programmi\Xi\NetTransport 2\NTIEHelper.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programmi\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll O4 - HKLM\..\Run: [Hcontrol] C:\WINDOWS\ATK0100\Hcontrol.exe O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [Power_Gear] C:\Progra~1\ASUS\Power4 Gear\BatteryLife.exe 1 O4 - HKLM\..\Run: [ATIPTA] C:\Progra~1\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [SynTPLpr] C:\Programmi\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Control Center] C:\Program Files\ASUS\WLAN Card Utilities\Center.exe O4 - HKLM\..\Run: [REGSHAVE] C:\Programmi\REGSHAVE\REGSHAVE.EXE /AUTORUN O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray O4 - HKLM\..\Run: [DataLayer] C:\Programmi\File comuni\PCSuite\DataLayer\DataLayer.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [CloneCDTray] "C:\Programmi\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programmi\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [CreativeMouse ] C:\Programmi\Mouse Driver\MouseDrv.exe O4 - HKLM\..\Run: [MSKDetectorExe] C:\Programmi\McAfee\SpamKiller\MSKDetct.exe /uninstall O4 - HKLM\..\Run: [avgnt] "C:\Programmi\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [pop less media multi] C:\Documents and Settings\All Users\Dati applicazioni\REALDATAPOPLESS\delete 64.exe O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programmi\DAEMON Tools\daemon.exe" -lang 1033 -noicon O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Programmi\iTunes\iTunesHelper.exe" O4 - HKLM\..\RunServices: [xp] p2pnetworking.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Norton SystemWorks] C:\Programmi\File comuni\Symantec Shared\CfgWiz.exe /GUID {DA9935BA-22F7-44ee-BD12-BD8B87700BEA} O4 - HKCU\..\Run: [Aimmapi] C:\DOCUME~1\Utente\DATIAP~1\OPENME~1\Window joy chic.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programmi\File comuni\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c O4 - Global Startup: ASUS ChkMail.lnk = C:\Programmi\Asus\Asus ChkMail\ChkMail.exe O4 - Global Startup: Avvio veloce di Adobe Reader.lnk = C:\Programmi\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Hotkey.lnk = C:\Programmi\Asus\ASUS Hotkey\Hotkey.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &Cerca con Google - res://C:\Programmi\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNYYYYYYCL O8 - Extra context menu item: &Traduci parola in italiano - res://C:\Programmi\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Aggiungi a &Windows Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Link a ritroso - res://C:\Programmi\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pagine simili - res://C:\Programmi\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Save Flash - res://C:\Programmi\UnH Solutions\Flash Saving Plugin\FlashSButton.dll/210 O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm O8 - Extra context menu item: Scarica selezionati da Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm O8 - Extra context menu item: Scarica sito web con Free Download Manager - file://C:\Programmi\Free Download Manager\dlpage.htm O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm O8 - Extra context menu item: Versione cache della pagina - res://C:\Programmi\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programmi\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programmi\ICQLite\ICQLite.exe (file missing) O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programmi\ICQLite\ICQLite.exe (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe O9 - Extra button: Alice - {0BEBF659-B540-4C02-9F8E-A2BCCD4A829B} - http://gw.aliceadsl.it/alice (file missing) (HKCU) O9 - Extra button: Flash - {43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} - C:\Programmi\UnH Solutions\Flash Saving Plugin\FlashSButton.dll (file missing) (HKCU) O11 - Options group: [INTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://gw.aliceadsl.it/home O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com...45/yacscom.cab O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab O16 - DPF: {30CADB40-6FD7-433F-BF0D-4827CA7B5BDF} (FavImport Class) - https://favorites.live.com/cab/ImportAx.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://sicofanti.spaces.live.com//Ph...d/MsnPUpld.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1139302546406 O16 - DPF: {745395C8-D0E1-4227-8586-624CA9A10A8D} - http://camera.buffalotrace.com/activex/AMC.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.filelodge.com/ImageUploader3.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://ak.imgag.com/imgag/cp/install/Crusher.cab O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IncrediMail) - http://www2.incredimail.com/contents...1/imloader.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{B4F26DD1-C958-400D-AED2-E4DBA26083C7}: NameServer = 85.37.17.13 85.38.28.81 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: Applets - C:\WINDOWS\ O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} - (no file) O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programmi\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programmi\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Programmi\iPod\bin\iPodService.exe O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\NPROTECT.EXE O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~2\SPEEDD~1\NOPDB.EXE O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - D:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe |
![]() |
![]() |
#11 |
Junior Member
Iscritto dal: Sep 2006
Messaggi: 3
|
Vi prego aiutatemi!!!
|
![]() |
![]() |
#12 |
Bannato
Iscritto dal: Mar 2004
Città: Galapagos Attenzione:utente flautolente,tienilo a mente
Messaggi: 28978
|
c'è il thread ufficiale per i log di HJT
![]() |
![]() |
![]() |
#13 | |
Senior Member
Iscritto dal: Nov 2001
Città: Bastia Umbra (PG)
Messaggi: 6395
|
Quote:
![]() ![]()
__________________
:: Il miglior argomento contro la democrazia è una conversazione di cinque minuti con l'elettore medio :: |
|
![]() |
![]() |
Strumenti | |
|
|
Tutti gli orari sono GMT +1. Ora sono le: 10:42.