Cid

Cid

ragazzi scusate un piccolo problema fastidioso: continuano ad aprirsi le pagine di pubblicità cid che nn sn riuscita ad eliminare in nessuna maniera, forse perché non capisco molto del computer e dopo aver fatto la scansione con hijackthis non sono sicura delle voci che devo eliminare.

quindi posto qua il logfile e se riuscite a darmi una mano vi offro un gelato



baci







Running processes:

C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32csrss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32svchost.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007pavsrv51.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007AVENGINE.EXE

C:WINDOWSsystem32logonui.exe

C:WINDOWSsystem32svchost.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007TPSrv.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

crogrammifile comunilogitechlvmvfmLVPrcSrv.exe

Crogrammia-squared Freea2service.exe

CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

CrogrammiBonjourmDNSResponder.exe

C:WINDOWSsystem32cisvc.exe

CrogrammiNeroNero8Nero BackItUpNBService.exe

C:WINDOWSsystem32nvsvc32.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsCtrls.EXE

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PavFnSvr.exe

crogrammipanda softwarepanda antivirus + firewall 2007firewallPSHOST.EXE

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsImSvc.exe

CrogrammiCyberLinkShared FilesRichVideo.exe

CrogrammiSpyware DoctorpctsAuxs.exe

CrogrammiSpyware DoctorpctsSvc.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSExplorer.EXE

CrogrammiAnalog DevicesCoresmax4pnp.exe

CrogrammiAnalog DevicesSoundMAXSmax4.exe

C:WINDOWSsystem32RUNDLL32.EXE

CrogrammiCyberLinkPowerDVDPDVDServ.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007APVXDWIN.EXE

CrogrammiHPHP Software UpdateHPWuSchd2.exe

CROGRA~1ALICET~1SMARTB~1MotiveSB.exe

CrogrammiLogitechQuickCam10QuickCam10.exe

CrogrammiFile comuniLogitechLComMgrLVComSX.exe

CrogrammiFile comuniRealUpdate_OBrealsched.exe

CrogrammiJavajre1.6.0_07binjusched.exe

CrogrammiSpyware DoctorpctsTray.exe

CrogrammiFile comuniLogitechLComMgrCommunications_Helper.exe

C:WINDOWSsystem32ctfmon.exe

CrogrammiSpybot - Search & DestroyTeaTimer.exe

CrogrammiHPDigital Imagingbinhpqtra08.exe

CrogrammiSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe

COCUME~1userIMPOST~1Tempbwgo0002d547.exe

CrogrammiAlice ti aiutabinmpbtn.exe

CrogrammiHPDigital ImagingbinhpqSTE08.exe

CrogrammiOpenOffice.org 2.4programsoffice.exe

CrogrammiOpenOffice.org 2.4programsoffice.BIN

C:WINDOWSsystem32cidaemon.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007WebProxy.exe

CrogrammiWindows LiveMessengermsnmsgr.exe

CrogrammiWindows LiveMessengerusnsvc.exe

CrogrammiWindows LiveMessengermsnmsgr.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiInternet Exploreriexplore.exe

C:WINDOWSsystem32wuauclt.exe

CrogrammiTrend MicroHijackThisHijackThis.exe

C:WINDOWSsystem32wbemwmiprvse.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.live.com/results.aspx?mkt=it-it&q=

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.it/

R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://home.sweetim.com

R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = 127.0.0.1;*.local

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti

O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CrogrammiFile comuniAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - CrogrammiRealRealPlayerrpbrowserrecordplugin.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - CROGRA~1SPYBOT~1SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - CrogrammiJavajre1.6.0_07binssv.dll

O2 - BHO: Windows Live Call HoverToCall class - {7E853D72-626A-48EC-A868-BA8D5E23E045} - CrogrammiWindows LiveMessengerHTC.DLL

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - crogrammigooglegoogletoolbar2.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - CrogrammiWindows Live Toolbarmsntb.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - CrogrammiWindows Live Toolbarmsntb.dll

O3 - Toolbar: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)

O3 - Toolbar: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - (no file)

O3 - Toolbar: (no name) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - crogrammigooglegoogletoolbar2.dll

O4 - HKLM..Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe

O4 - HKLM..Run: [SoundMAXPnP] CrogrammiAnalog DevicesCoresmax4pnp.exe

O4 - HKLM..Run: [SoundMAX] "CrogrammiAnalog DevicesSoundMAXSmax4.exe" /tray

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [nwiz] nwiz.exe /install

O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit

O4 - HKLM..Run: [RemoteControl] CrogrammiCyberLinkPowerDVDPDVDServ.exe

O4 - HKLM..Run: [LanguageShortcut] CrogrammiCyberLinkPowerDVDLanguageLanguage.exe

O4 - HKLM..Run: [APVXDWIN] "CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007APVXDWIN.EXE" /s

O4 - HKLM..Run: [HP Software Update] CrogrammiHPHP Software UpdateHPWuSchd2.exe

O4 - HKLM..Run: [Motive SmartBridge] CROGRA~1ALICET~1SMARTB~1MotiveSB.exe

O4 - HKLM..Run: [LogitechQuickCamRibbon] "CrogrammiLogitechQuickCam10QuickCam10.exe" /hide

O4 - HKLM..Run: [LVCOMSX] "CrogrammiFile comuniLogitechLComMgrLVComSX.exe"

O4 - HKLM..Run: [TkBellExe] "CrogrammiFile comuniRealUpdate_OBrealsched.exe" -osboot

O4 - HKLM..Run: [SunJavaUpdateSched] "CrogrammiJavajre1.6.0_07binjusched.exe"

O4 - HKLM..Run: [ISTray] "CrogrammiSpyware DoctorpctsTray.exe"

O4 - HKLM..Run: [NBKeyScan] "CrogrammiNeroNero8Nero BackItUpNBKeyScan.exe"

O4 - HKLM..Run: [LogitechCommunicationsManager] "CrogrammiFile comuniLogitechLComMgrCommunications_Helper.exe"

O4 - HKLM..Run: [Frag Ooze Cash Scr] Cocuments and SettingsAll UsersDati applicazioniclose poke frag oozeAtom Camp.exe

O4 - HKLM..Run: [AppleSyncNotifier] CrogrammiFile comuniAppleMobile Device SupportbinAppleSyncNotifier.exe

O4 - HKLM..Run: [QuickTime Task] "CrogrammiQuickTimeqttask.exe" -atboottime

O4 - HKLM..Run: [iTunesHelper] "CrogrammiiTunesiTunesHelper.exe"

O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe

O4 - HKCU..Run: [LDM] CrogrammiLogitechDesktop Messenger8876480ProgramLogitechDesktopMessenger.exe

O4 - HKCU..Run: [SpybotSD TeaTimer] CrogrammiSpybot - Search & DestroyTeaTimer.exe

O4 - HKCU..Run: [SPAM KNOB] COCUME~1userDATIAP~11warneqmoreextrahide.exe

O4 - HKCU..Run: [Uniblue RegistryBooster 2] CrogrammiUniblueRegistryBooster 2RegistryBooster.exe /S

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO LOCALE')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO DI RETE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Startup: OpenOffice.org 2.4.lnk = CrogrammiOpenOffice.org 2.4programquickstart.exe

O4 - Startup: Utilità controllo supporti di Picture Motion Browser.lnk = CrogrammiSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe

O4 - Global Startup: Alice ti aiuta.lnk = CrogrammiAlice ti aiutabinmatcli.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = CrogrammiHPDigital Imagingbinhpqtra08.exe

O8 - Extra context menu item: &Point&&Go - CrogrammiFile comuniExpert SystemPGPlatformPGPlatform.htm

O8 - Extra context menu item: &Windows Live Search - res://CrogrammiWindows Live Toolbarmsntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Apri in nuova scheda in primo piano - res://CrogrammiWindows Live ToolbarComponentsit-itmsntabres.dll.mui/230?7a8b10699ddf49d598565b3ef6de78e1

O8 - Extra context menu item: Apri in nuova scheda in secondo piano - res://CrogrammiWindows Live ToolbarComponentsit-itmsntabres.dll.mui/229?7a8b10699ddf49d598565b3ef6de78e1

O8 - Extra context menu item: E&sporta in Microsoft Excel - res://CROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - CrogrammiJavajre1.6.0_07binssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - CrogrammiJavajre1.6.0_07binssv.dll

O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - CROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - CrogrammiYahoo!Commonyinsthelper.dll

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1183629262296

O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-57c2c68b365e1697.spaces.live.com/PhotoUpload/MsnPUpld.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - CrogrammiLogitechDesktop Messenger8876480ProgramGAPlugProtocol-8876480.dll

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - Crogrammia-squared Freea2service.exe

O23 - Service: Adobe LM Service - Adobe Systems - CrogrammiFile comuniAdobe Systems SharedServiceAdobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple Inc. - CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - CrogrammiBonjourmDNSResponder.exe

O23 - Service: Google Updater Service (gusvc) - Google - CrogrammiGoogleCommonGoogle UpdaterGoogleUpdaterService.exe

O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - CrogrammiiPodbiniPodService.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - crogrammifile comunilogitechlvmvfmLVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - CrogrammiFile comuniLogitechSrvLnchSrvLnch.exe

O23 - Service: NBService - Unknown owner - CrogrammiNeroNero 7Nero BackItUpNBService.exe (file missing)

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - CrogrammiNeroNero8Nero BackItUpNBService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Panda Software Controller - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsCtrls.EXE

O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PavFnSvr.exe

O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007pavsrv51.exe

O23 - Service: Pml Driver HPZ12 - HP - C:WINDOWSsystem32HPZipm12.exe

O23 - Service: Panda Host Service (PSHost) - Panda Software International - crogrammipanda softwarepanda antivirus + firewall 2007firewallPSHOST.EXE

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsImSvc.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - CrogrammiCyberLinkShared FilesRichVideo.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - CrogrammiSpyware DoctorpctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - CrogrammiSpyware DoctorpctsSvc.exe

O23 - Service: ServiceLayer - Nokia. - CrogrammiPC Connectivity SolutionServiceLayer.exe

O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007TPSrv.exe

O24 - Desktop Component 0: (no name) - http://www.lannaronca.it/Sfondi 6/cartoni_animati208.jpg

no solo con spyware doctor e smart pc professional!

fixa queste voci:



R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://home.sweetim.com



O4 - HKLM..Run: [Frag Ooze Cash Scr] Cocuments and SettingsAll UsersDati applicazioniclose poke frag oozeAtom Camp.exe



O4 - HKCU..Run: [SPAM KNOB] COCUME~1userDATIAP~11warneqmoreextrahide.ex e



O3 - Toolbar: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)



O3 - Toolbar: (no name) - {cd36797a-70f3-4acd-8825-623d3b896881} - (no file)



O3 - Toolbar: (no name) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)





O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - CrogrammiYahoo!Commonyinsthelper.dll

Controllate se conoscete il sito web altrimenti eliminatelo (Fix). Oggetti ActiveX sconosciuti oppure oggetti ActiveX provenienti da siti web sconosciuti devono sempre essere eliminati. Se il nome dell'oggetto ActiveX o dell'indirizzo (URL) contiene le parole 'dialer', 'casino', 'free plugin' ecc, deve essere immediatamente cancellato (pulsante Fix di HijackThis)!



O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://cid-57c2c68b365e1697.spaces.l...d/MsnPUpld.cab

Controllate se conoscete il sito web altrimenti eliminatelo (Fix). Oggetti ActiveX sconosciuti oppure oggetti ActiveX provenienti da siti web sconosciuti devono sempre essere eliminati. Se il nome dell'oggetto ActiveX o dell'indirizzo (URL) contiene le parole 'dialer', 'casino', 'free plugin' ecc, deve essere immediatamente cancellato (pulsante Fix di HijackThis)!



O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab56907.cab

Controllate se conoscete il sito web altrimenti eliminatelo (Fix). Oggetti ActiveX sconosciuti oppure oggetti ActiveX provenienti da siti web sconosciuti devono sempre essere eliminati. Se il nome dell'oggetto ActiveX o dell'indirizzo (URL) contiene le parole 'dialer', 'casino', 'free plugin' ecc, deve essere immediatamente cancellato (pulsante Fix di HijackThis)!



Dopo aver fixato le voci spstette scarica e lancia ATF cleaner dopodiche rifai la scansione con HiJackThis con relativo log:

http://www.scanwith.com/download/ATF_Cleaner.htm





In avvio ci sono molte voci inutili che eliminerai togliendo il segno di "spunta" da: Start - Esegui, scrivi: msconfig - Ok. Liguetta avvio.

Qui lascerai soltanto cio che riguarda l'antivirus poichè le voci che elimini si possono ripristinare con la stessa procedura.

jena ho fatto come hai detto, ma le pagine continuano lo stesso a riaprirsi!!!!

riposta un log di hijackthis e vediamo cosa è rimasto. Hai tantissima roba in avvio.

Inoltre, hai tolto il supefluo da msconfig ??

ECCOLO DI NUOVO....L'ALTRA DOMANDA INVECE NN L'HO CAPITA...SAPPI CHE NN SN MOLTO BRAVA CON I COMPUTER!!!!







C:WINDOWSSystem32smss.exe

C:WINDOWSsystem32csrss.exe

C:WINDOWSsystem32winlogon.exe

C:WINDOWSsystem32services.exe

C:WINDOWSsystem32lsass.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32svchost.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007pavsrv51.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007AVENGINE.EXE

C:WINDOWSsystem32svchost.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007TPSrv.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32svchost.exe

C:WINDOWSsystem32spoolsv.exe

crogrammifile comunilogitechlvmvfmLVPrcSrv.exe

Crogrammia-squared Freea2service.exe

CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

CrogrammiBonjourmDNSResponder.exe

C:WINDOWSsystem32cisvc.exe

CrogrammiNeroNero8Nero BackItUpNBService.exe

C:WINDOWSsystem32nvsvc32.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsCtrls.EXE

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PavFnSvr.exe

C:WINDOWSExplorer.EXE

crogrammipanda softwarepanda antivirus + firewall 2007firewallPSHOST.EXE

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsImSvc.exe

CrogrammiCyberLinkShared FilesRichVideo.exe

CrogrammiSpyware DoctorpctsAuxs.exe

CrogrammiSpyware DoctorpctsSvc.exe

C:WINDOWSsystem32svchost.exe

CrogrammiSpyware DoctorpctsTray.exe

CrogrammiAnalog DevicesCoresmax4pnp.exe

CrogrammiAnalog DevicesSoundMAXSmax4.exe

C:WINDOWSsystem32RUNDLL32.EXE

CrogrammiCyberLinkPowerDVDPDVDServ.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007APVXDWIN.EXE

CrogrammiHPHP Software UpdateHPWuSchd2.exe

CROGRA~1ALICET~1SMARTB~1MotiveSB.exe

CrogrammiLogitechQuickCam10QuickCam10.exe

CrogrammiFile comuniLogitechLComMgrLVComSX.exe

CrogrammiFile comuniRealUpdate_OBrealsched.exe

CrogrammiJavajre1.6.0_07binjusched.exe

CrogrammiFile comuniLogitechLComMgrCommunications_Helper.exe

CrogrammiiTunesiTunesHelper.exe

C:WINDOWSsystem32ctfmon.exe

CrogrammiSpybot - Search & DestroyTeaTimer.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiHPDigital Imagingbinhpqtra08.exe

CrogrammiSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe

COCUME~1userIMPOST~1Tempbwgo00019209.exe

CrogrammiOpenOffice.org 2.4programsoffice.exe

CrogrammiAlice ti aiutabinmpbtn.exe

CrogrammiOpenOffice.org 2.4programsoffice.BIN

CrogrammiHPDigital ImagingbinhpqSTE08.exe

CrogrammiSpyware DoctorpctsTray.exe

CrogrammiiPodbiniPodService.exe

C:WINDOWSsystem32WgaTray.exe

C:WINDOWSSystem32alg.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007WebProxy.exe

CrogrammiInternet Exploreriexplore.exe

C:WINDOWSsystem32cidaemon.exe

CrogrammiRealRealPlayerRecordingManager.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiWindows LiveMessengermsnmsgr.exe

CrogrammiWindows LiveMessengerusnsvc.exe

CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007avciman.exe

CrogrammiInternet Exploreriexplore.exe

CrogrammiWindows Live Toolbarmsn_sl.exe

C:WINDOWSsystem32wuauclt.exe

CrogrammiTrend MicroHijackThisHijackThis.exe

C:WINDOWSsystem32wbemwmiprvse.exe

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar = http://search.live.com/results.aspx?mkt=it-it&q=

R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.it/

R1 - HKCUSoftwareMicrosoftInternet ExplorerSearchURL,(Default) = http://g.msn.it/0SEITIT/SAOS01?FORM=TOOLBR

R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = 127.0.0.1;*.local

R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti

O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CrogrammiFile comuniAdobeAcrobatActiveXAcroIEHelper.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - CrogrammiRealRealPlayerrpbrowserrecordplugin.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - CROGRA~1SPYBOT~1SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - CrogrammiJavajre1.6.0_07binssv.dll

O2 - BHO: Windows Live Call HoverToCall class - {7E853D72-626A-48EC-A868-BA8D5E23E045} - CrogrammiWindows LiveMessengerHTC.DLL

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - crogrammigooglegoogletoolbar2.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - CrogrammiWindows Live Toolbarmsntb.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - CrogrammiWindows Live Toolbarmsntb.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - crogrammigooglegoogletoolbar2.dll

O4 - HKLM..Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe

O4 - HKLM..Run: [SoundMAXPnP] CrogrammiAnalog DevicesCoresmax4pnp.exe

O4 - HKLM..Run: [SoundMAX] "CrogrammiAnalog DevicesSoundMAXSmax4.exe" /tray

O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup

O4 - HKLM..Run: [nwiz] nwiz.exe /install

O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit

O4 - HKLM..Run: [RemoteControl] CrogrammiCyberLinkPowerDVDPDVDServ.exe

O4 - HKLM..Run: [LanguageShortcut] CrogrammiCyberLinkPowerDVDLanguageLanguage.exe

O4 - HKLM..Run: [APVXDWIN] "CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007APVXDWIN.EXE" /s

O4 - HKLM..Run: [HP Software Update] CrogrammiHPHP Software UpdateHPWuSchd2.exe

O4 - HKLM..Run: [Motive SmartBridge] CROGRA~1ALICET~1SMARTB~1MotiveSB.exe

O4 - HKLM..Run: [LogitechQuickCamRibbon] "CrogrammiLogitechQuickCam10QuickCam10.exe" /hide

O4 - HKLM..Run: [LVCOMSX] "CrogrammiFile comuniLogitechLComMgrLVComSX.exe"

O4 - HKLM..Run: [TkBellExe] "CrogrammiFile comuniRealUpdate_OBrealsched.exe" -osboot

O4 - HKLM..Run: [SunJavaUpdateSched] "CrogrammiJavajre1.6.0_07binjusched.exe"

O4 - HKLM..Run: [ISTray] "CrogrammiSpyware DoctorpctsTray.exe"

O4 - HKLM..Run: [NBKeyScan] "CrogrammiNeroNero8Nero BackItUpNBKeyScan.exe"

O4 - HKLM..Run: [LogitechCommunicationsManager] "CrogrammiFile comuniLogitechLComMgrCommunications_Helper.exe"

O4 - HKLM..Run: [AppleSyncNotifier] CrogrammiFile comuniAppleMobile Device SupportbinAppleSyncNotifier.exe

O4 - HKLM..Run: [QuickTime Task] "CrogrammiQuickTimeqttask.exe" -atboottime

O4 - HKLM..Run: [iTunesHelper] "CrogrammiiTunesiTunesHelper.exe"

O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe

O4 - HKCU..Run: [LDM] CrogrammiLogitechDesktop Messenger8876480ProgramLogitechDesktopMessenger.exe

O4 - HKCU..Run: [SpybotSD TeaTimer] CrogrammiSpybot - Search & DestroyTeaTimer.exe

O4 - HKCU..Run: [Uniblue RegistryBooster 2] CrogrammiUniblueRegistryBooster 2RegistryBooster.exe /S

O4 - HKCU..Run: [SPAM KNOB] COCUME~1userDATIAP~11warneqmoreextrahide.exe

O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO LOCALE')

O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVIZIO DI RETE')

O4 - HKUSS-1-5-18..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SYSTEM')

O4 - HKUS.DEFAULT..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'Default user')

O4 - Startup: OpenOffice.org 2.4.lnk = CrogrammiOpenOffice.org 2.4programquickstart.exe

O4 - Startup: Utilità controllo supporti di Picture Motion Browser.lnk = CrogrammiSonySony Picture UtilityVolumeWatcherSPUVolumeWatcher.exe

O4 - Global Startup: Alice ti aiuta.lnk = CrogrammiAlice ti aiutabinmatcli.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = CrogrammiHPDigital Imagingbinhpqtra08.exe

O8 - Extra context menu item: &Point&&Go - CrogrammiFile comuniExpert SystemPGPlatformPGPlatform.htm

O8 - Extra context menu item: &Windows Live Search - res://CrogrammiWindows Live Toolbarmsntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Apri in nuova scheda in primo piano - res://CrogrammiWindows Live ToolbarComponentsit-itmsntabres.dll.mui/230?7a8b10699ddf49d598565b3ef6de78e1

O8 - Extra context menu item: Apri in nuova scheda in secondo piano - res://CrogrammiWindows Live ToolbarComponentsit-itmsntabres.dll.mui/229?7a8b10699ddf49d598565b3ef6de78e1

O8 - Extra context menu item: E&sporta in Microsoft Excel - res://CROGRA~1MICROS~2OFFICE11EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - CrogrammiJavajre1.6.0_07binssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - CrogrammiJavajre1.6.0_07binssv.dll

O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - CROGRA~1MICROS~2OFFICE11REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - CROGRA~1SPYBOT~1SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CrogrammiMessengermsmsgs.exe

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1183629262296

O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - CrogrammiLogitechDesktop Messenger8876480ProgramGAPlugProtocol-8876480.dll

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - Crogrammia-squared Freea2service.exe

O23 - Service: Adobe LM Service - Adobe Systems - CrogrammiFile comuniAdobe Systems SharedServiceAdobelmsvc.exe

O23 - Service: Apple Mobile Device - Apple Inc. - CrogrammiFile comuniAppleMobile Device SupportbinAppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - CrogrammiBonjourmDNSResponder.exe

O23 - Service: Google Updater Service (gusvc) - Google - CrogrammiGoogleCommonGoogle UpdaterGoogleUpdaterService.exe

O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - CrogrammiiPodbiniPodService.exe

O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - crogrammifile comunilogitechlvmvfmLVPrcSrv.exe

O23 - Service: LVSrvLauncher - Logitech Inc. - CrogrammiFile comuniLogitechSrvLnchSrvLnch.exe

O23 - Service: NBService - Unknown owner - CrogrammiNeroNero 7Nero BackItUpNBService.exe (file missing)

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - CrogrammiNeroNero8Nero BackItUpNBService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32nvsvc32.exe

O23 - Service: Panda Software Controller - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsCtrls.EXE

O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PavFnSvr.exe

O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007pavsrv51.exe

O23 - Service: Pml Driver HPZ12 - HP - C:WINDOWSsystem32HPZipm12.exe

O23 - Service: Panda Host Service (PSHost) - Panda Software International - crogrammipanda softwarepanda antivirus + firewall 2007firewallPSHOST.EXE

O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007PsImSvc.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - CrogrammiCyberLinkShared FilesRichVideo.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - CrogrammiSpyware DoctorpctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - CrogrammiSpyware DoctorpctsSvc.exe

O23 - Service: ServiceLayer - Nokia. - CrogrammiPC Connectivity SolutionServiceLayer.exe

O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - CrogrammiPanda SoftwarePanda Antivirus + Firewall 2007TPSrv.exe

O24 - Desktop Component 0: (no name) - http://www.lannaronca.it/Sfondi 6/cartoni_animati208.jpg

Vorrei aiutarti anche io,ma non ti conosco,non ho visto le tue presentazioni nell'apposita sezione,se non ti disturba e se lo fai,

lo gradirei.



cobra

non ho capito cosa intendi per presentazioni....se intendi la domanda, il mio problema, allora c'è ma avevo messo insieme anche il logfile già la prima volta quindi si trovano tutte e due insieme....

[quote name='daniela']non ho capito cosa intendi per presentazioni....se intendi la domanda, il mio problema, allora c'è ma avevo messo insieme anche il logfile già la prima volta quindi si trovano tutte e due insieme....[/quote]

O4 - HKCU..Run: [SPAM KNOB] COCUME~1userDATIAP~11warneqmoreextrahide.ex e

O24 - Desktop Component 0: (no name) - http://www.lannaronca.it/Sfondi%206/...animati208.jpg

Spunta queste 2 voci e premi il pulsante fix.

Per l'altra mia richiesta: http://www.techforum.it/f55/ qui' ti ti presenti





cobra.

Effettivamnete una voce era erroneamente identica all'altra,

ora sono corrette,se non sei certa del sito: O24 - Desktop Component 0: (no name) - http://www.lannaronca.it/Sfondi%206/...animati208.jpg



spunta e fixa le due voci.



cobra