problema con le finestre popup urgentissimo

problema con le finestre popup urgentissimo

buongiorno,

io ho un problema con Internet explorer 7 sul mio computer. Ogni volta che mi connetto ad internet mi appaiono alcune finestre popup provenienti da un certo sito "fp.pc-on-internet" o "en.pc-on-internet". E' da 2-3 giorni che accade questo "fenomeno" , ho fatto una sacnsione con il mio software antivirus (trend micro 12) e con lo spybot, ma niente. Come posso risolverlo?

N.B. queste finestre sono di solito pubblicitarie, ma certe volte raffigurano delle schermate di errore, come il BSOD di windows rapressentato nella finestra o altre robe fastidiose. Aiutatami, on so più dove sbattere la testa.

grazie

scusate comunque se ho sbagliato sezione

cusa non ho capito perchè nn sono un esperto

Il log di hijackthis,serve a individuare appunto dove sone le pagine che tu vuoi eliminare,scarica il programma avvialo e posta qui' un suo log.

link: http://www.angololibero.it/software/download/sicurezza/varie/hijackthis.html

ecco qui

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15.04.32, on 24/07/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

CrogrammiBonjourmDNSResponder.exe

C:WINDOWSsystem32cisvc.exe

CrogrammiFile comuniMicrosoft SharedVS7DEBUGMDM.EXE

CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSExplorer.EXE

CrogrammiTrend MicroInternet Security 12pccguide.exe

C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE

CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE

C:WINDOWSsystem32ctfmon.exe

C:WINDOWSsystem32sistray.exe

CrogrammiInternet ExplorerIEXPLORE.EXE

C:WINDOWSsystem32wuauclt.exe

CrogrammiFile comuniMicrosoft SharedWindows LiveWLLoginProxy.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

C:WINDOWSsystem32cidaemon.exe

CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

CROGRA~1TRENDM~1INTERN~1tmproxy.exe

CrogrammiWindows DefenderMsMpEng.exe

CrogrammiWindows DefenderMSASCui.exe

CrogrammiWindows LiveMessengermsnmsgr.exe

CROGRA~1TRENDM~1INTERN~1PCCMAIN.EXE

C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe

CROGRA~1WINZIPwinzip32.exe

Cocuments and SettingsDIEGOImpostazioni localiTempHijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.live.com/results.aspx?mkt=it-it&q=

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.msn.it/

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti

O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CrogrammiFile comuniAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - CROGRA~1SPYBOT~1SDHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - CrogrammiFile comuniMicrosoft SharedWindows LiveWindowsLiveLogin.dll

O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O4 - HKLM..Run: [pccguide.exe] "CrogrammiTrend MicroInternet Security 12pccguide.exe"

O4 - HKLM..Run: [EPSON Stylus DX4800 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"

O4 - HKLM..Run: [QuickTime Task] "CrogrammiQuickTimeqttask.exe" -atboottime

O4 - HKLM..Run: [Camera Detector] CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE -autorun

O4 - HKLM..Run: [Adobe Reader Speed Launcher] "CrogrammiAdobeReader 8.0ReaderReader_sl.exe"

O4 - HKLM..Run: [iTunesHelper] "CrogrammiiTunesiTunesHelper.exe"

O4 - HKLM..Run: [Windows Defender] "CrogrammiWindows DefenderMSASCui.exe" -hide

O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO LOCALE')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO DI RETE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Global Startup: Utility Tray.lnk = C:WINDOWSsystem32sistray.exe

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present

O8 - Extra context menu item: E&sporta in Microsoft Excel - res://CROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - CROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Organizzatore ricerche - {9455301C-CF6B-11D3-A266-00C04F689C50} - CrogrammiFile comuniMicrosoft SharedEncarta ResearcherEROPROJ.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/IT-IT/a-UNO1/GAME_UNO1.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O17 - HKLMSystemCCSServicesTcpip..{E0D5D9E3-1546-4DF7-A71D-A898C32759F6}: NameServer = 212.216.112.112

O23 - Service: Apple Mobile Device - Apple, Inc. - CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - CrogrammiBonjourmDNSResponder.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - CrogrammiFile comuniInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - CrogrammiiPodbiniPodService.exe

O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1TmPfw.exe

O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1tmproxy.exe

--

End of file - 7455 bytes

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15.04.32, on 24/07/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

CrogrammiBonjourmDNSResponder.exe

C:WINDOWSsystem32cisvc.exe

CrogrammiFile comuniMicrosoft SharedVS7DEBUGMDM.EXE

CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSExplorer.EXE

CrogrammiTrend MicroInternet Security 12pccguide.exe

C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE

CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE

C:WINDOWSsystem32ctfmon.exe

C:WINDOWSsystem32sistray.exe

CrogrammiInternet ExplorerIEXPLORE.EXE

C:WINDOWSsystem32wuauclt.exe

CrogrammiFile comuniMicrosoft SharedWindows LiveWLLoginProxy.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

C:WINDOWSsystem32cidaemon.exe

CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

CROGRA~1TRENDM~1INTERN~1tmproxy.exe

CrogrammiWindows DefenderMsMpEng.exe

CrogrammiWindows DefenderMSASCui.exe

CrogrammiWindows LiveMessengermsnmsgr.exe

CROGRA~1TRENDM~1INTERN~1PCCMAIN.EXE

C:WINDOWSMicrosoft.NETFrameworkv3.0Windows Communication Foundationinfocard.exe

CROGRA~1WINZIPwinzip32.exe

Cocuments and SettingsDIEGOImpostazioni localiTempHijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.live.com/results.aspx?mkt=it-it&q=

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.msn.it/

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti

O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CrogrammiFile comuniAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - CROGRA~1SPYBOT~1SDHelper.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - CrogrammiFile comuniMicrosoft SharedWindows LiveWindowsLiveLogin.dll

O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O4 - HKLM..Run: [pccguide.exe] "CrogrammiTrend MicroInternet Security 12pccguide.exe"

O4 - HKLM..Run: [EPSON Stylus DX4800 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"

O4 - HKLM..Run: [QuickTime Task] "CrogrammiQuickTimeqttask.exe" -atboottime

O4 - HKLM..Run: [Camera Detector] CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE -autorun

O4 - HKLM..Run: [Adobe Reader Speed Launcher] "CrogrammiAdobeReader 8.0ReaderReader_sl.exe"

O4 - HKLM..Run: [iTunesHelper] "CrogrammiiTunesiTunesHelper.exe"

O4 - HKLM..Run: [Windows Defender] "CrogrammiWindows DefenderMSASCui.exe" -hide

O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO LOCALE')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO DI RETE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Global Startup: Utility Tray.lnk = C:WINDOWSsystem32sistray.exe

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present

O8 - Extra context menu item: E&sporta in Microsoft Excel - res://CROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - CROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Organizzatore ricerche - {9455301C-CF6B-11D3-A266-00C04F689C50} - CrogrammiFile comuniMicrosoft SharedEncarta ResearcherEROPROJ.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/IT-IT/a-UNO1/GAME_UNO1.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O17 - HKLMSystemCCSServicesTcpip..{E0D5D9E3-1546-4DF7-A71D-A898C32759F6}: NameServer = 212.216.112.112

O23 - Service: Apple Mobile Device - Apple, Inc. - CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - CrogrammiBonjourmDNSResponder.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - CrogrammiFile comuniInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - CrogrammiiPodbiniPodService.exe

O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1TmPfw.exe

O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1tmproxy.exe

--

End of file - 7455 bytes

Metti la spunta su queste due voci,e premi il pulsante fix

vediamo se le cancella.

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)



O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

fatto ed adesso?

fatto, ma non è successo granchè. Comunque, nel caso che non abbia fatto niente cosa devo fare?

[quote name='leo4555']fatto, ma non è successo granchè. Comunque, nel caso che non abbia fatto niente cosa devo fare?[/quote]

Le finestre popup si aprono anc'ora?

risposta

si, anche se credevo non più

[quote name='leo4555']si, anche se credevo non più[/quote]

Rifai il log adesso e postalo.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17.49.16, on 24/07/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSSystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

CrogrammiBonjourmDNSResponder.exe

C:WINDOWSsystem32cisvc.exe

CrogrammiFile comuniMicrosoft SharedVS7DEBUGMDM.EXE

CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSExplorer.EXE

CrogrammiTrend MicroInternet Security 12pccguide.exe

C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE

CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE

C:WINDOWSsystem32ctfmon.exe

C:WINDOWSsystem32sistray.exe

CrogrammiInternet ExplorerIEXPLORE.EXE

C:WINDOWSsystem32wuauclt.exe

C:WINDOWSsystem32cidaemon.exe

CrogrammiWindows DefenderMsMpEng.exe

CrogrammiWindows DefenderMSASCui.exe

CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

CrogrammiWindows LiveMessengerusnsvc.exe

CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

CROGRA~1TRENDM~1INTERN~1tmproxy.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiFile comuniMicrosoft SharedWindows LiveWLLoginProxy.exe

Cocuments and SettingsDIEGOImpostazioni localiTempHijackThis.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.live.com/results.aspx?mkt=it-it&q=

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.msn.it/

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti

O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CrogrammiFile comuniAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - CROGRA~1SPYBOT~1SDHelper.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - CrogrammiFile comuniMicrosoft SharedWindows LiveWindowsLiveLogin.dll

O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - CrogrammiEPSONEPSON Web-To-PageEPSON Web-To-Page.dll

O4 - HKLM..Run: [pccguide.exe] "CrogrammiTrend MicroInternet Security 12pccguide.exe"

O4 - HKLM..Run: [EPSON Stylus DX4800 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_FATIADE.EXE /P26 "EPSON Stylus DX4800 Series" /O6 "USB001" /M "Stylus DX4800"

O4 - HKLM..Run: [QuickTime Task] "CrogrammiQuickTimeqttask.exe" -atboottime

O4 - HKLM..Run: [Camera Detector] CROGRA~1ACDSYS~1DEVDET~1DEVDET~1.EXE -autorun

O4 - HKLM..Run: [Adobe Reader Speed Launcher] "CrogrammiAdobeReader 8.0ReaderReader_sl.exe"

O4 - HKLM..Run: [iTunesHelper] "CrogrammiiTunesiTunesHelper.exe"

O4 - HKLM..Run: [Windows Defender] "CrogrammiWindows DefenderMSASCui.exe" -hide

O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO LOCALE')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO DI RETE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Global Startup: Utility Tray.lnk = C:WINDOWSsystem32sistray.exe

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present

O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present

O8 - Extra context menu item: E&sporta in Microsoft Excel - res://CROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - CROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: Organizzatore ricerche - {9455301C-CF6B-11D3-A266-00C04F689C50} - CrogrammiFile comuniMicrosoft SharedEncarta ResearcherEROPROJ.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/IT-IT/a-UNO1/GAME_UNO1.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O17 - HKLMSystemCCSServicesTcpip..{E0D5D9E3-1546-4DF7-A71D-A898C32759F6}: NameServer = 212.216.112.112

O23 - Service: Apple Mobile Device - Apple, Inc. - CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - CrogrammiBonjourmDNSResponder.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - CrogrammiFile comuniInstallShieldDriver11Intel 32IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - CrogrammiiPodbiniPodService.exe

O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1PcCtlCom.exe

O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - CROGRA~1TRENDM~1INTERN~1Tmntsrv.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1TmPfw.exe

O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - CROGRA~1TRENDM~1INTERN~1tmproxy.exe

--

End of file - 7217 bytes

Guarda,io non vedo niente di pericoloso,

dai una occhiata anche tu con il suo analizzatore: http://www.hijackthis.de/it#anl

e vedi se trovi cose che nel tuo PC non centrano niente,e eliminale.

Il sito che mi hai suggerito non ha registrto nulla di anomalo.non è che potresti suggerirmi qualche programmache blocca le finestr popup. Ho inoltre visto su google che se scrivi in.pc.on-internet, il sito che viene, è correlato ad una minaccia informatica. Mi puoi aiutare?

en.pc.on-internet o simile

Prova con questo. In fondo alla pagina il download.

http://www.africatwinclub.it/download/nopopup/killad.html





Prova anche quest'altro, male non gli fà.

http://www.pc-facile.com/download/utility/popup_killer/



Suggerirei anche una scansione con Norman Malware eseguita dalla modalità provvisoria:

http://www.softpedia.com/get/Antivirus/Norman-Malware-Cleaner.shtml

re

il sito di hijackthis. comunque non ho risolto niente aiutatemi

re

no, ne stò facendo una con Norton Malware Cleaner