alexvallini Posted October 17, 2007 Share Posted October 17, 2007 DOPO UN PO CHE NAVIGO IL PROCIO VA AL 80,90% e non capisco percHE. con HIJAC THIS o trovato un certo BHO?? vi invio il file rilevato se potete dirmi Qualcosa vi sarei grato Logfile of HijackThis v1.99.1 Scan saved at 21.49.04, on 17/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:ProgrammiFile comuniSymantec SharedccSetMgr.exe C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe C:WINDOWSsystem32spoolsv.exe C:ProgrammiFile comuniLogiShrdLVMVFMLVPrcSrv.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32RUNDLL32.EXE C:ProgrammiFile comuniSymantec SharedccApp.exe C:PROGRA~1SYMANT~1VPTray.exe C:ProgrammiMicrosoft IntelliPointpoint32.exe C:ProgrammiAnalog DevicesCoresmax4pnp.exe C:ProgrammiAnalog DevicesSoundMAXSmax4.exe C:ProgrammiLogitechQuickCamQuickcam.exe C:ProgrammiFile comuniLogiShrdLComMgrCommunications_Helper.exe C:ProgrammiTopDesk Trial opdesk.exe C:ProgrammiGrisoftAVG Anti-Spyware 7.5avgas.exe C:WINDOWSsystem32ctfmon.exe C:ProgrammiFile comuniAheadLibNMBgMonitor.exe C:ProgrammiVisualTaskTipsVisualTaskTips.exe C:ProgrammiGrisoftAVG Anti-Spyware 7.5guard.exe C:ProgrammiSymantec AntiVirusDefWatch.exe C:ProgrammiDiskeeper CorporationDiskeeperDkService.exe C:ProgrammiFile comuniLightScribeLSSrvc.exe C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe C:WINDOWSsystem32 vsvc32.exe C:WINDOWSsystem32HPZipm12.exe C:ProgrammiPhotodexProShowGoldScsiAccess.exe C:ProgrammiAlcohol SoftAlcohol 120StarWindStarWindService.exe C:ProgrammiSymantec AntiVirusRtvscan.exe C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcAppFlt.exe C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcIp.exe C:ProgrammiFile comuniAheadLibNMIndexingService.exe C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe C:ProgrammiFile comuniAheadLibNMIndexStoreSvr.exe C:ProgrammiFile comuniLogishrdLQCVFXCOCIManager.exe C:Documents and SettingsalexDesktopHijackThis.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = Benvenuti su MSN.it R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com O1 - Hosts: 127.255.255.255 Alcohol Software Product homepage - Alcohol 120% and Alcohol 52% O1 - Hosts: 127.255.255.255 images.alcohol-soft.com O2 - BHO: (no name) - {6601A21B-BEC6-4A5E-8F83-4E987E29D9D8} - C:WINDOWSsystem32wowfax32.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup O4 - HKLM..Run: [nwiz] nwiz.exe /install O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit O4 - HKLM..Run: [ccApp] "C:ProgrammiFile comuniSymantec SharedccApp.exe" O4 - HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe O4 - HKLM..Run: [intelliPoint] "C:ProgrammiMicrosoft IntelliPointpoint32.exe" O4 - HKLM..Run: [soundMAXPnP] C:ProgrammiAnalog DevicesCoresmax4pnp.exe O4 - HKLM..Run: [soundMAX] "C:ProgrammiAnalog DevicesSoundMAXSmax4.exe" /tray O4 - HKLM..Run: [LogitechQuickCamRibbon] "C:ProgrammiLogitechQuickCamQuickcam.exe" /hide O4 - HKLM..Run: [LogitechCommunicationsManager] "C:ProgrammiFile comuniLogiShrdLComMgrCommunications_Helper.exe" O4 - HKLM..Run: [DiskeeperSystray] "C:ProgrammiDiskeeper CorporationDiskeeperDkIcon.exe" O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k O4 - HKLM..Run: [TopDesk] C:ProgrammiTopDesk Trial opdesk.exe O4 - HKLM..Run: [!AVG Anti-Spyware] "C:ProgrammiGrisoftAVG Anti-Spyware 7.5avgas.exe" /minimized O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:ProgrammiFile comuniAheadLibNMBgMonitor.exe" O4 - HKCU..Run: [VisualTaskTips] C:ProgrammiVisualTaskTipsVisualTaskTips.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe O10 - Unknown file in Winsock LSP: c:programmionjourmdnsnsp.dll O10 - Unknown file in Winsock LSP: c:windowssystem32 vappfilter.dll O10 - Unknown file in Winsock LSP: c:windowssystem32 vappfilter.dll O11 - Options group: [iNTERNATIONAL] International* O17 - HKLMSystemCCSServicesTcpip..{606A116B-7645-49AB-8446-C7CB4542BC49}: NameServer = 85.37.17.55 85.38.28.93 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:PROGRA~1MSNMES~1MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:PROGRA~1MSNMES~1MSGRAP~1.DLL O20 - Winlogon Notify: NavLogon - C:WINDOWSsystem32NavLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:WINDOWSsystem32WPDShServiceObj.dll O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:ProgrammiGrisoftAVG Anti-Spyware 7.5guard.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccSetMgr.exe O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:ProgrammiSymantec AntiVirusDefWatch.exe O23 - Service: Diskeeper - Diskeeper Corporation - C:ProgrammiDiskeeper CorporationDiskeeperDkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgrammiFile comuniMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcAppFlt.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:ProgrammiFile comuniLightScribeLSSrvc.exe O23 - Service: LVCOMSer - Logitech Inc. - C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:ProgrammiFile comuniLogiShrdLVMVFMLVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:ProgrammiFile comuniLogiShrdSrvLnchSrvLnch.exe O23 - Service: NBService - Nero AG - C:ProgrammiNeroNero 7Nero BackItUpNBService.exe O23 - Service: NMIndexingService - Nero AG - C:ProgrammiFile comuniAheadLibNMIndexingService.exe O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcIp.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32 vsvc32.exe O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:WINDOWSsystem32driverspclepci.sys O23 - Service: Pml Driver HPZ12 - HP - C:WINDOWSsystem32HPZipm12.exe O23 - Service: SAVRoam (SavRoam) - symantec - C:ProgrammiSymantec AntiVirusSavRoam.exe O23 - Service: ScsiAccess - Unknown owner - C:ProgrammiPhotodexProShowGoldScsiAccess.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgrammiAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: Symantec AntiVirus - Symantec Corporation - C:ProgrammiSymantec AntiVirusRtvscan.exe Quote Link to comment Share on other sites More sharing options...
MM Posted October 17, 2007 Share Posted October 17, 2007 Meglio se lo riporti sul sito ufficiale e ti fai fare la scansione del log P.S.: IE 6 lo detestavo, ma la versione 7 la odio proprio... Quote Link to comment Share on other sites More sharing options...
Le085 Posted October 17, 2007 Share Posted October 17, 2007 abbandonato da molto anche io:fiufiu: Quote Link to comment Share on other sites More sharing options...
alexvallini Posted October 17, 2007 Author Share Posted October 17, 2007 anche io ora uso firefox che è molto meglio come sicurezza e velocita ma comuncue volevo capire che succede è sempre stato tutto ok..... scusate il sito ufficiale è xtremehardware.com? Quote Link to comment Share on other sites More sharing options...
megthebest Posted October 17, 2007 Share Posted October 17, 2007 hai tutte le patch security di windows? hai scansionato con i vari spybot,adaware ? ma che hai 2 antivirus? norton e avg? Quote Link to comment Share on other sites More sharing options...
alexvallini Posted October 18, 2007 Author Share Posted October 18, 2007 avg è un antispyware comunque con virit mi segnala un virus BHO AGENT EV solo che non lo elimina vedi un po te ok Scan saved at 22.34.36, on 18/10/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:WINDOWSSystem32smss.exe C:WINDOWSsystem32csrss.exe C:WINDOWSsystem32winlogon.exe C:WINDOWSsystem32services.exe C:WINDOWSsystem32lsass.exe C:WINDOWSsystem32svchost.exe C:WINDOWSsystem32svchost.exe C:WINDOWSSystem32svchost.exe C:WINDOWSsystem32svchost.exe C:WINDOWSsystem32svchost.exe C:ProgrammiFile comuniSymantec SharedccSetMgr.exe C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe C:WINDOWSsystem32spoolsv.exe C:ProgrammiFile comuniLogiShrdLVMVFMLVPrcSrv.exe C:WINDOWSExplorer.EXE C:WINDOWSsystem32RUNDLL32.EXE C:ProgrammiFile comuniSymantec SharedccApp.exe C:PROGRA~1SYMANT~1VPTray.exe C:ProgrammiMicrosoft IntelliPointpoint32.exe C:ProgrammiAnalog DevicesCoresmax4pnp.exe C:ProgrammiAnalog DevicesSoundMAXSmax4.exe C:ProgrammiLogitechQuickCamQuickcam.exe C:ProgrammiFile comuniLogiShrdLComMgrCommunications_Helper.exe C:ProgrammiTopDesk Trial opdesk.exe C:ProgrammiGrisoftAVG Anti-Spyware 7.5avgas.exe C:WINDOWSsystem32ctfmon.exe C:ProgrammiFile comuniAheadLibNMBgMonitor.exe C:ProgrammiVisualTaskTipsVisualTaskTips.exe C:ProgrammiSpyware Doctorswdoctor.exe C:ProgrammiGrisoftAVG Anti-Spyware 7.5guard.exe C:ProgrammiSymantec AntiVirusDefWatch.exe C:ProgrammiDiskeeper CorporationDiskeeperDkService.exe C:ProgrammiFile comuniLightScribeLSSrvc.exe C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe C:WINDOWSsystem32 vsvc32.exe C:WINDOWSsystem32HPZipm12.exe C:ProgrammiPhotodexProShowGoldScsiAccess.exe C:ProgrammiSpyware Doctorsdhelp.exe C:ProgrammiAlcohol SoftAlcohol 120StarWindStarWindService.exe C:ProgrammiSymantec AntiVirusRtvscan.exe C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcAppFlt.exe C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcIp.exe C:ProgrammiFile comuniAheadLibNMIndexingService.exe C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe C:ProgrammiFile comuniAheadLibNMIndexStoreSvr.exe C:WINDOWSSystem32alg.exe C:ProgrammiFile comuniLogishrdLQCVFXCOCIManager.exe C:ProgrammieMuleemule.exe C:ProgrammiMozilla Firefoxfirefox.exe C:WINDOWSsystem32wbemwmiprvse.exe C:Documents and SettingsalexDesktopHijackThis.exe R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = Google R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = 127.0.0.1;*.local R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com O1 - Hosts: 127.255.255.255 Alcohol Software Product homepage - Alcohol 120% and Alcohol 52% O1 - Hosts: 127.255.255.255 images.alcohol-soft.com O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:PROGRA~1SPYWAR~1 oolsiesdsg.dll O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:PROGRA~1SPYWAR~1 oolsiesdpb.dll O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSsystem32NvCpl.dll,NvStartup O4 - HKLM..Run: [nwiz] nwiz.exe /install O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSsystem32NvMcTray.dll,NvTaskbarInit O4 - HKLM..Run: [ccApp] "C:ProgrammiFile comuniSymantec SharedccApp.exe" O4 - HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe O4 - HKLM..Run: [intelliPoint] "C:ProgrammiMicrosoft IntelliPointpoint32.exe" O4 - HKLM..Run: [soundMAXPnP] C:ProgrammiAnalog DevicesCoresmax4pnp.exe O4 - HKLM..Run: [soundMAX] "C:ProgrammiAnalog DevicesSoundMAXSmax4.exe" /tray O4 - HKLM..Run: [LogitechQuickCamRibbon] "C:ProgrammiLogitechQuickCamQuickcam.exe" /hide O4 - HKLM..Run: [LogitechCommunicationsManager] "C:ProgrammiFile comuniLogiShrdLComMgrCommunications_Helper.exe" O4 - HKLM..Run: [DiskeeperSystray] "C:ProgrammiDiskeeper CorporationDiskeeperDkIcon.exe" O4 - HKLM..Run: [KernelFaultCheck] %systemroot%system32dumprep 0 -k O4 - HKLM..Run: [TopDesk] C:ProgrammiTopDesk Trial opdesk.exe O4 - HKLM..Run: [!AVG Anti-Spyware] "C:ProgrammiGrisoftAVG Anti-Spyware 7.5avgas.exe" /minimized O4 - HKCU..Run: [CTFMON.EXE] C:WINDOWSsystem32ctfmon.exe O4 - HKCU..Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:ProgrammiFile comuniAheadLibNMBgMonitor.exe" O4 - HKCU..Run: [VisualTaskTips] C:ProgrammiVisualTaskTipsVisualTaskTips.exe O4 - HKCU..Run: [spyware Doctor] "C:ProgrammiSpyware Doctorswdoctor.exe" /Q O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:PROGRA~1SPYWAR~1 oolsiesdpb.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:ProgrammiMessengermsmsgs.exe O10 - Unknown file in Winsock LSP: c:programmionjourmdnsnsp.dll O10 - Unknown file in Winsock LSP: c:windowssystem32 vappfilter.dll O10 - Unknown file in Winsock LSP: c:windowssystem32 vappfilter.dll O11 - Options group: [iNTERNATIONAL] International* O17 - HKLMSystemCCSServicesTcpip..{606A116B-7645-49AB-8446-C7CB4542BC49}: NameServer = 85.37.17.55 85.38.28.93 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:PROGRA~1MSNMES~1MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:PROGRA~1MSNMES~1MSGRAP~1.DLL O20 - Winlogon Notify: NavLogon - C:WINDOWSsystem32NavLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:WINDOWSsystem32WPDShServiceObj.dll O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:ProgrammiGrisoftAVG Anti-Spyware 7.5guard.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedccSetMgr.exe O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:ProgrammiSymantec AntiVirusDefWatch.exe O23 - Service: Diskeeper - Diskeeper Corporation - C:ProgrammiDiskeeper CorporationDiskeeperDkService.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:ProgrammiFile comuniMacrovision SharedFLEXnet PublisherFNPLicensingService.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcAppFlt.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:ProgrammiFile comuniLightScribeLSSrvc.exe O23 - Service: LVCOMSer - Logitech Inc. - C:ProgrammiFile comuniLogiShrdLVCOMSERLVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:ProgrammiFile comuniLogiShrdLVMVFMLVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:ProgrammiFile comuniLogiShrdSrvLnchSrvLnch.exe O23 - Service: NBService - Nero AG - C:ProgrammiNeroNero 7Nero BackItUpNBService.exe O23 - Service: NMIndexingService - Nero AG - C:ProgrammiFile comuniAheadLibNMIndexingService.exe O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:ProgrammiNVIDIA CorporationNetworkAccessManagerin SvcIp.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSsystem32 vsvc32.exe O23 - Service: PCLEPCI - Pinnacle Systems GmbH - C:WINDOWSsystem32driverspclepci.sys O23 - Service: Pml Driver HPZ12 - HP - C:WINDOWSsystem32HPZipm12.exe O23 - Service: SAVRoam (SavRoam) - symantec - C:ProgrammiSymantec AntiVirusSavRoam.exe O23 - Service: ScsiAccess - Unknown owner - C:ProgrammiPhotodexProShowGoldScsiAccess.exe O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:ProgrammiSpyware Doctorsdhelp.exe O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:ProgrammiFile comuniSymantec SharedSNDSrvc.exe O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:ProgrammiAlcohol SoftAlcohol 120StarWindStarWindService.exe O23 - Service: Symantec AntiVirus - Symantec Corporation - C:ProgrammiSymantec AntiVirusRtvscan.exe Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.