Utility
Home Messaggi odierni FAQ Ricerca avanzata Lo staff del forum Regolamento Utenti Archivio
Visualizzazione dei risultati da 1 a 3 su 3
  1. 02-09-2006, 10:54 #1
    arlong r
    arlong r non è in linea
    Utente di HTML.it
    Registrato dal
    Sep 2006
    Messaggi
    3

    Problema linkoptimizer!! avenger nn funziona help !

    Ciao a tutti è da un po di tempo ke sono affetto dal trojan/dialer Linkoptimizer.
    seguendo varie guide sul web riguardanti la rimozione dello stesso virus mi è sorto un problema: ho scaricato GMER fatto il log di autostart e rootkit, ho scompattato avenger sul desktop ma nn ha intenzione di partire.
    Allora ho provato con una versione modificata di avenger ma nulla da fare....
    Poi dopo vari msg postati anke su altri forum mi è stato consigliato l' utilizzo di icesword, programmino simile ad avenger in funzioni.
    Il problema è ke nn essendo molto pratico di computer, scompattato icesword nn so come procedere e quali file o voci eliminare col suddetto programma
    mi rivolgo a voi sperando ke qualcuno possa darmi delle dritte su come usare il programma
    procedo col postare i 2 log
    Grazie in anticipo
    Rispondi quotando Rispondi quotando
  2. 02-09-2006, 10:57 #2
    arlong r
    arlong r non è in linea
    Utente di HTML.it
    Registrato dal
    Sep 2006
    Messaggi
    3
    ecco il primo log



    GMER 1.0.10.10122 - http://www.gmer.net
    Rootkit 2006-08-29 20:26:11
    Windows 5.1.2600 Service Pack 1


    ---- System - GMER 1.0.10 ----

    SSDT \SystemRoot\System32\drivers\klif.sys ZwClose
    SSDT a347bus.sys ZwCreateKey
    SSDT a347bus.sys ZwCreatePagingFile
    SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateProcess
    SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateProcessEx
    SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateSection
    SSDT \SystemRoot\System32\drivers\klif.sys ZwCreateThread
    SSDT a347bus.sys ZwEnumerateKey
    SSDT a347bus.sys ZwEnumerateValueKey
    SSDT kl1.sys ZwOpenFile
    SSDT a347bus.sys ZwOpenKey
    SSDT \SystemRoot\System32\drivers\klif.sys ZwOpenProcess
    SSDT \SystemRoot\System32\drivers\klif.sys ZwQueryInformationFile
    SSDT a347bus.sys ZwQueryKey
    SSDT \SystemRoot\System32\drivers\klif.sys ZwQuerySystemInformation
    SSDT a347bus.sys ZwQueryValueKey
    SSDT \SystemRoot\System32\drivers\klif.sys ZwResumeThread
    SSDT \SystemRoot\System32\drivers\klif.sys ZwSetInformationProcess
    SSDT a347bus.sys ZwSetSystemPowerState
    SSDT \SystemRoot\System32\drivers\klif.sys ZwSuspendThread
    SSDT \SystemRoot\System32\drivers\klif.sys ZwTerminateProcess
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[284]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[285]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[286]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[287]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[288]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[289]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[290]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[291]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[292]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[293]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[294]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[295]
    SSDT \SystemRoot\System32\drivers\klif.sys SSDT[296]

    ---- Devices - GMER 1.0.10 ----

    Device \Driver\Tcpip \Device\Ip IRP_MJ_SHUTDOWN [F7D48BF6] klmc.sys
    Device \Driver\Tcpip \Device\Tcp IRP_MJ_SHUTDOWN [F7D48BF6] klmc.sys
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_NAMED_PIPE 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSEIRP_MJ_READ 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_EA 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_EA 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_VOLUME_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_VOLUME_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DIRECTORY_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FILE_SYSTEM_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_LOCK_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLEANUP 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_MAILSLOT 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_SECURITY 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_SECURITY 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CHANGE 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_QUOTA 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_QUOTA 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP 85530008
    Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP_POWER 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_NAMED_PIPE 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLOSEIRP_MJ_READ 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_WRITE 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_EA 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_EA 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FLUSH_BUFFERS 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_VOLUME_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_VOLUME_INFORMATION 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DIRECTORY_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FILE_SYSTEM_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_INTERNAL_DEVICE_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SHUTDOWN 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_LOCK_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLEANUP 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_MAILSLOT 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_SECURITY 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_SECURITY 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SYSTEM_CONTROL 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CHANGE 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_QUOTA 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_QUOTA 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP 85530008
    Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP_POWER 85530008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE_NAMED_PIPE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CLOSEIRP_MJ_READ 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_WRITE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_EA 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_EA 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_FLUSH_BUFFERS 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_VOLUME_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_VOLUME_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DIRECTORY_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_FILE_SYSTEM_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DEVICE_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_INTERNAL_DEVICE_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SHUTDOWN 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_LOCK_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CLEANUP 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE_MAILSLOT 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_SECURITY 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_SECURITY 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_POWER 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SYSTEM_CONTROL 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DEVICE_CHANGE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_QUOTA 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_QUOTA 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_PNP 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_PNP_POWER 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE_NAMED_PIPE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CLOSEIRP_MJ_READ 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_WRITE 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_INFORMATION 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_EA 85554008
    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_EA 85554008

    Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 Device \Driver\Tcpip \Device\Udp IRP_MJ_SHUTDOWN [F7D48BF6] klmc.sys
    Device \Driver\Tcpip \Device\RawIp IRP_MJ_SHUTDOWN [F7D48BF6] klmc.sys
    Rispondi quotando Rispondi quotando
  3. 02-09-2006, 10:58 #3
    arlong r
    arlong r non è in linea
    Utente di HTML.it
    Registrato dal
    Sep 2006
    Messaggi
    3
    ecco l 'altro



    GMER 1.0.10.10122 - http://www.gmer.net
    Autostart 2006-08-29 20:26:54
    Windows 5.1.2600 Service Pack 1

    Winlogon@Userinit = C:\WINDOWS\system32\userinit.exe,
    Windows@AppInit_DLLs = \\?\C:\WINDOWS\System32\aux.inq

    HKLM\SYSTEM\CurrentControlSet\Services\ >>>
    CPUCooLServer /*CPUCooLServer Service*/@ = C:\Programmi\CPUCooL\CooLSrv.exe
    kavsvc /*kavsvc*/@ = "C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe"
    NetMdu /*NetMdu*/@ = "C:\Programmi\File comuni\System\RDf.exe"
    NVSvc /*NVIDIA Display Driver Service*/@ = %SystemRoot%\System32\nvsvc32.exe
    SDhelper /*PC Tools Spyware Doctor*/@ = C:\Programmi\Spyware Doctor\sdhelp.exe
    SoundMAX Agent Service (default) /*SoundMAX Agent Service*/@ = C:\Programmi\Analog Devices\SoundMAX\SMAgent.exe
    Spooler /*Spooler di stampa*/@ = %SystemRoot%\system32\spoolsv.exe
    UMWdf /*Windows User Mode Driver Framework*/@ = C:\WINDOWS\System32\wdfmgr.exe

    HKLM\Software\Microsoft\Windows\CurrentVersion\Run >>>
    @Ptipbmfrundll32.exe ptipbmf.dll,SetWriteCacheMode = rundll32.exe ptipbmf.dll,SetWriteCacheMode
    @SoundMAXPnPC:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe = C:\Programmi\Analog Devices\SoundMAX\SMax4PNP.exe
    @NvCplDaemonRUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup = RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    @nwiznwiz.exe /install = nwiz.exe /install
    @NvMediaCenterRunDLL32.exe NvMCTray.dll,NvTaskbarInit = RunDLL32.exe NvMCTray.dll,NvTaskbarInit
    @KAVPersonal50"C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize = "C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize
    @NeroFilterCheckC:\WINDOWS\system32\NeroCheck.exe = C:\WINDOWS\system32\NeroCheck.exe
    @iTunesHelper"C:\Programmi\iTunes\iTunesHelper.exe " = "C:\Programmi\iTunes\iTunesHelper.exe"

    HKCU\Software\Microsoft\Windows\CurrentVersion\Run >>>
    @CTFMON.EXEC:\WINDOWS\System32\ctfmon.exe = C:\WINDOWS\System32\ctfmon.exe
    @H/PC Connection Agent"C:\Programmi\Microsoft ActiveSync\WCESCOMM.EXE" = "C:\Programmi\Microsoft ActiveSync\WCESCOMM.EXE"
    @updateMgr"C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1 = "C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1

    HKLM\Software\Classes\.hta@ = NOTEPAD.EXE %1

    HKLM\Software\Microsoft\Windows\CurrentVersion\She ll Extensions\Approved >>>
    @{42071714-76d4-11d1-8b24-00a0c9068ff3} /*Estensione panoramica video del Pannello di controllo*/deskpan.dll /*file not found*/ = deskpan.dll /*file not found*/
    @{B41DB860-8EE4-11D2-9906-E49FADC173CA} /*WinRAR shell extension*/C:\Programmi\WinRAR\rarext.dll = C:\Programmi\WinRAR\rarext.dll
    @{E0D79304-84BE-11CE-9641-444553540000} /*WinZip*/C:\PROGRA~1\WINZIP\WZSHLSTB.DLL = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL
    @{E0D79305-84BE-11CE-9641-444553540000} /*WinZip*/C:\PROGRA~1\WINZIP\WZSHLSTB.DLL = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL
    @{E0D79306-84BE-11CE-9641-444553540000} /*WinZip*/C:\PROGRA~1\WINZIP\WZSHLSTB.DLL = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL
    @{E0D79307-84BE-11CE-9641-444553540000} /*WinZip*/C:\PROGRA~1\WINZIP\WZSHLSTB.DLL = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL
    @{A70C977A-BF00-412C-90B7-034C51DA2439} /*NvCpl DesktopContext Class*/C:\WINDOWS\System32\nvcpl.dll = C:\WINDOWS\System32\nvcpl.dll
    @{FFB699E0-306A-11d3-8BD1-00104B6F7516} /*Play on my TV helper*/C:\WINDOWS\System32\nvcpl.dll = C:\WINDOWS\System32\nvcpl.dll
    @{1CDB2949-8F65-4355-8456-263E7C208A5D} /*Desktop Explorer*/C:\WINDOWS\System32\nvshell.dll = C:\WINDOWS\System32\nvshell.dll
    @{1E9B04FB-F9E5-4718-997B-B8DA88302A47} /*Desktop Explorer Menu*/C:\WINDOWS\System32\nvshell.dll = C:\WINDOWS\System32\nvshell.dll
    @{1E9B04FB-F9E5-4718-997B-B8DA88302A48} /*nView Desktop Context Menu*/C:\WINDOWS\System32\nvshell.dll = C:\WINDOWS\System32\nvshell.dll
    @{32020A01-506E-484D-A2A8-BE3CF17601C3} /*AlcoholShellEx*/C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll = C:\PROGRA~1\ALCOHO~1\ALCOHO~1\AXShlEx.dll
    @{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} /*iTunes*/C:\Programmi\iTunes\iTunesMiniPlayer.dll = C:\Programmi\iTunes\iTunesMiniPlayer.dll
    @{52B87208-9CCF-42C9-B88E-069281105805} /*Trojan Remover Shell Extension*/C:\PROGRA~1\TROJAN~1\Trshlex.dll /*file not found*/ = C:\PROGRA~1\TROJAN~1\Trshlex.dll /*file not found*/

    HKLM\Software\Classes\*\shellex\ContextMenuHandler s\ >>>
    Kaspersky Anti-Virus@{dd230880-495a-11d1-b064-008048ec2fc5} = C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\shellex.dll
    Trojan Remover@{52B87208-9CCF-42C9-B88E-069281105805} = C:\PROGRA~1\TROJAN~1\Trshlex.dll /*file not found*/
    WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll
    WinZip@{E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL

    HKLM\Software\Classes\Directory\shellex\ContextMen uHandlers\ >>>
    WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll
    WinZip@{E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL

    HKLM\Software\Classes\Folder\shellex\ContextMenuHa ndlers\ >>>
    Kaspersky Anti-Virus@{dd230880-495a-11d1-b064-008048ec2fc5} = C:\Programmi\Kaspersky Lab\Kaspersky Anti-Virus Personal\shellex.dll
    Trojan Remover@{52B87208-9CCF-42C9-B88E-069281105805} = C:\PROGRA~1\TROJAN~1\Trshlex.dll /*file not found*/
    WinRAR@{B41DB860-8EE4-11D2-9906-E49FADC173CA} = C:\Programmi\WinRAR\rarext.dll
    WinZip@{E0D79304-84BE-11CE-9641-444553540000} = C:\PROGRA~1\WINZIP\WZSHLSTB.DLL

    HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects >>>
    @{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll = C:\Programmi\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    @{F675EF46-FEA6-A971-F2DD-8112F7ED4B40}C:\WINDOWS\cjvda1.dll = C:\WINDOWS\cjvda1.dll

    HKCU\Control Panel\Desktop@SCRNSAVE.EXE = C:\WINDOWS\System32\ssmypics.scr

    HKLM\Software\Microsoft\Internet Explorer\Main >>>
    @Default_Page_URLhttp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome = http://www.microsoft.com/isapi/redir...r=6&ar=msnhome
    @Start Pagehttp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SU B_PVER}&ar=home = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=hom e

    HKCU\Software\Microsoft\Internet Explorer\Main@Start Page = http://www.google.it/

    HKLM\Software\Classes\PROTOCOLS\Handler\ >>>
    dvd@CLSID = C:\WINDOWS\System32\msvidctl.dll
    its@CLSID = C:\WINDOWS\System32\itss.dll
    mctp@CLSID = C:\Programmi\Microsoft ActiveSync\aatp.dll
    mhtml@CLSID = %SystemRoot%\System32\inetcomm.dll
    ms-its@CLSID = C:\WINDOWS\System32\itss.dll
    msnim@CLSID = "C:\PROGRA~1\MSNMES~1\msgrapp.dll"
    tv@CLSID = C:\WINDOWS\System32\msvidctl.dll
    vnd.ms.radio@CLSID = C:\WINDOWS\System32\msdxm.ocx

    HKLM\Software\Classes\PROTOCOLS\Handler\wia@CLSID = C:\WINDOWS\System32\wiascr.dll

    ---- EOF - GMER 1.0.10 ----
    Rispondi quotando Rispondi quotando
« Discussione precedente | Prossima discussione »

Permessi di invio

  • Non puoi inserire discussioni
  • Non puoi inserire repliche
  • Non puoi inserire allegati
  • Non puoi modificare i tuoi messaggi
  •  

Regole del Forum

Powered by vBulletin® Version 4.2.1
Copyright © 2025 vBulletin Solutions, Inc. All rights reserved.