Logfile of HijackThis v1.98.0
Scan saved at 15.29.42, on 28/07/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
D:WINDOWSSystem32smss.exe
D:WINDOWSsystem32winlogon.exe
D:WINDOWSsystem32services.exe
D:WINDOWSsystem32lsass.exe
D:WINDOWSsystem32svchost.exe
D:WINDOWSSystem32svchost.exe
D:ProgrammiFile comuniSymantec SharedccSetMgr.exe
D:ProgrammiFile comuniSymantec SharedccEvtMgr.exe
D:WINDOWSsystem32spoolsv.exe
D:ProgrammiNorton AntiVirus
avapsvc.exe
D:WINDOWSsystem32oneLabsvsmon.exe
D:WINDOWSSystem32WFXSVC.EXE
C:ProgrammiFAXWFXMOD32.EXE
D:WINDOWSExplorer.EXE
D:ProgrammiMicrosoft IntelliPointpoint32.exe
D:ProgrammiATI TechnologiesATI Control Panelatiptaxx.exe
D:ProgrammiFile comuniSymantec SharedccApp.exe
D:WINDOWSSystem32spooldriversw32x863hpztsb07.exe
D:ProgrammiFile comuniRealUpdate_OB ealsched.exe
D:WINDOWSSystem32wfxsnt40.exe
D:PROGRA~1BILLPS~1WINPAT~1WinPatrol.exe
D:ProgrammiMessengermsmsgs.exe
D:PROGRA~1PANICW~1POP-UP~1PSFree.exe
C:ProgrammiFAXWFXCTL32.EXE
D:ProgrammiNorton AntiVirusSAVScan.exe
D:ProgrammiDigisoft AntiDialerAntiDialer.exe
D:Programmione LabsoneAlarmzonealarm.exe
D:WINDOWSSystem32svchost.exe
D:ProgrammiFile comuniRealUpdate_OB nathchk.exe
D:ProgrammiInternet ExplorerIEXPLORE.EXE
D:ProgrammiInternet ExplorerIEXPLORE.EXE
D:DOCUME~1martianIMPOST~1TempHijackThis.exe
D:ProgrammiMicrosoft OfficeOfficeWINWORD.EXE
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.tiscali.it
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.it/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.tiscali.it
R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyServer = http://
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:ProgrammiAdobeAcrobat 6.0ReaderActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - D:ProgrammiNorton AntiVirusNavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:WINDOWSSystem32msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - D:ProgrammiNorton AntiVirusNavShExt.dll
O4 - HKLM..Run: [IntelliPoint] "D:ProgrammiMicrosoft IntelliPointpoint32.exe"
O4 - HKLM..Run: [ATIPTA] D:ProgrammiATI TechnologiesATI Control Panelatiptaxx.exe
O4 - HKLM..Run: [ccApp] "D:ProgrammiFile comuniSymantec SharedccApp.exe"
O4 - HKLM..Run: [HPDJ Taskbar Utility] D:WINDOWSSystem32spooldriversw32x863hpztsb07.exe
O4 - HKLM..Run: [NeroFilterCheck] D:WINDOWSsystem32NeroCheck.exe
O4 - HKLM..Run: [TkBellExe] D:ProgrammiFile comuniRealUpdate_OB ealsched.exe -osboot
O4 - HKLM..Run: [PopupAgent] D:ProgrammiSpytech SoftwareSpytech PopupAgentPopupAgent.exe
O4 - HKLM..Run: [WinFaxAppPortStarter] wfxsnt40.exe
O4 - HKLM..Run: [WinPatrol] "D:PROGRA~1BILLPS~1WINPAT~1WinPatrol.exe"
O4 - HKLM..Run: [MSConfig] D:WINDOWSPCHealthHelpCtrBinariesMSConfig.exe /auto
O4 - HKCU..Run: [MSMSGS] "D:ProgrammiMessengermsmsgs.exe" /background
O4 - HKCU..Run: [PopUpStopperFreeEdition] D:PROGRA~1PANICW~1POP-UP~1PSFree.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = D:ProgrammiFile comuniAdobeCalibrationAdobe Gamma Loader.exe
O4 - Global Startup: Controller.LNK = C:ProgrammiFAXWFXCTL32.EXE
O4 - Global Startup: Digisoft AntiDialer.lnk = D:ProgrammiDigisoft AntiDialerAntiDialer.exe
O4 - Global Startup: Microsoft Office.lnk = D:ProgrammiMicrosoft OfficeOfficeOSA9.EXE
O4 - Global Startup: ZoneAlarm.lnk = D:Programmione LabsoneAlarmzonealarm.exe
O12 - Plugin for .mp3: D:ProgrammiInternet ExplorerPLUGINS
pqtplugin3.dll
O12 - Plugin for .mpeg: D:ProgrammiInternet ExplorerPLUGINS
pqtplugin3.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.tiscali.it
O17 - HKLMSystemCCSServicesTcpip..{E57EAF2E-D58D-4B27-8B4B-766262F15D84}: NameServer = 195.130.224.18 195.130.225.129
<font size="1"><font color="red">By Ices_Eyes: Non postare 1000 discussioni uguali, l'altra l'ho cancelata. Inoltre ho messo un titolo un po' più significativo...</font id="red"></font id="size1">