Ecco il log di HijackThis..
Logfile of HijackThis v1.99.1
Scan saved at 7.36.07, on 18/10/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Programmi\AVPersonal\AVGUARD.EXE
F:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
F:\Programmi\Alwil Software\Avast4\ashServ.exe
F:\Programmi\AVPersonal\AVWUPSRV.EXE
F:\WINDOWS\System32\nbthlp.exe
F:\WINDOWS\System32\nvsvc32.exe
F:\WINDOWS\smsc.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\System32\GSICON.EXE
F:\WINDOWS\System32\dslagent.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Programmi\Microsoft IntelliPoint\point32.exe
F:\Programmi\Microsoft IntelliType Pro\type32.exe
F:\Programmi\QuickTime\qttask.exe
F:\WINDOWS\System32\crease.exe
F:\Programmi\Alwil Software\Avast4\ashMaiSv.exe
F:\Programmi\Alwil Software\Avast4\ashWebSv.exe
F:\WINDOWS\System32\devldr32.exe
F:\WINDOWS\System32\wuauclt.exe
F:\Programmi\eMule\emule.exe
F:\Programmi\Mozilla Firefox\firefox.exe
F:\Programmi\Outlook Express\msimn.exe
F:\Programmi\Messenger\msmsgs.exe
F:\Documents and Settings\neobeppe\Desktop\Anti Virus&Spyware\HijackThis.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [IntelliPoint] "F:\Programmi\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [type32] "F:\Programmi\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [QuickTime Task] "F:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Windows Media Updater] crease.exe
O4 - HKLM\..\RunServices: [Windows Media Updater] crease.exe
O4 - HKCU\..\Run: [Windows Media Updater] crease.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://F:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1129152433168
O17 - HKLM\System\CCS\Services\Tcpip\..\{9D7B2637-0299-4525-ACD6-A4127A9BFE90}: NameServer = 85.37.17.52 151.99.125.1
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - F:\Programmi\AVPersonal\AVGUARD.EXE
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - F:\Programmi\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Automatic Update Service (Automatic Update) - Unknown owner - F:\WINDOWS\System32\wuapi.exe (file missing)
O23 - Service: avast! Antivirus - Unknown owner - F:\Programmi\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - F:\Programmi\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - F:\Programmi\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - F:\Programmi\AVPersonal\AVWUPSRV.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Programmi\File comuni\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - F:\Programmi\iPod\bin\iPodService.exe
O23 - Service: NetBIOS Helper Service (NetBIOS Helper) - Unknown owner - F:\WINDOWS\System32\nbthlp.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\System32\nvsvc32.exe
O23 - Service: System Manager Service (SMSC) - Unknown owner - F:\WINDOWS\smsc.exe
Non riesco a eliminare i "crease.exe" e i "smsc.exe" e poi non so se c'è altro.. help please..
Rispondi quotando
