ce una guida che indica i file infetti
Logfile of HijackThis v1.98.0
Scan saved at 11.19.24, on 16/08/2004
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:WINNTSystem32smss.exe
C:WINNTsystem32winlogon.exe
C:WINNTsystem32services.exe
C:WINNTsystem32lsass.exe
C:WINNTsystem32svchost.exe
C:ProgrammiFile comuniSymantec SharedccEvtMgr.exe
C:WINNTsystem32spoolsv.exe
C:WINNTsystem32driversCDAC11BA.EXE
C:ProgrammiCPUCooLCooLSrv.exe
C:ProgrammiFile comuniEPSONEBAPISAgent2.exe
C:WINNTSystem32svchost.exe
C:WINNTSystem32
vsvc32.exe
C:WINNTsystem32 egsvc.exe
C:WINNTsystem32MSTask.exe
C:WINNTsystem32stisvc.exe
C:WINNTSystem32WBEMWinMgmt.exe
C:WINNTSystem32mspmspsv.exe
C:WINNTsystem32svchost.exe
C:WINNTExplorer.EXE
C:ProgrammiUSB Flash Disk UtilityUFD UtilityUSBTD.exe
C:ProgrammiUSB Flash Disk UtilityUFD UtilityAlcrMon.exe
C:ProgrammiFile comuniSymantec SharedccApp.exe
C:ProgrammiRAM Idle StandardRAM_2K.exe
C:ProgrammiMicrosoft OfficeOfficeOSA.EXE
C:ProgrammiDigisoft AntiDialerAntiDialer.exe
C:ProgrammiMicrosoft OfficeOfficeMSOFFICE.EXE
C:WINNTSystem32svchost.exe
C:ProgrammiIDAida.exe
C:ProgrammiNorton AntiVirus
avapsvc.exe
C:ProgrammiInternet Exploreriexplore.exe
C:Documents and SettingsFrancescoDocumentipc al meglioHijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.it/
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Collegamenti
O2 - BHO: twaintecObj Class - {000020DD-C72E-4113-AF77-DD56626C6C42} - C:WINNT waintec.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:ProgrammiAdobeAcrobat 5.0AcrobatActiveXAcroIEHelper.ocx
O2 - BHO: IE 4.x-6.x BHO for Internet Download Accelerator - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - C:ProgrammiIDAidaiehlp.dll
O2 - BHO: NavErrRedir Class - {5D60FF48-95BE-4956-B4C6-6BB168A70310} - C:PROGRA~1INCRED~1BHOINCFIN~1.DLL
O2 - BHO: jimmyhelp.CBrowserHelper - {863D63F6-1493-4DEF-A5E8-374109E0B8B7} - C:WINNTw42k8p7jA.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:ProgrammiNorton AntiVirusNavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:ProgrammiNorton AntiVirusNavShExt.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINNTsystem32MSDXM.OCX
O3 - Toolbar: (no name) - {0E1230F8-EA50-42A9-983C-D22ABC2EED3B} - (no file)
O4 - HKLM..Run: [UFD Utility] C:ProgrammiUSB Flash Disk UtilityUFD UtilityUSBTD.exe
O4 - HKLM..Run: [UFD Monitor] C:ProgrammiUSB Flash Disk UtilityUFD UtilityAlcrMon.exe
O4 - HKLM..Run: [SpeedTouch USB Diagnostics] "C:ProgrammiAlcatelSpeedTouch USBDragdiag.exe" /icon
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINNTSystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [NeroCheck] C:WINNTsystem32NeroCheck.exe
O4 - HKLM..Run: [ccRegVfy] "C:ProgrammiFile comuniSymantec SharedccRegVfy.exe"
O4 - HKLM..Run: [ccApp] "C:ProgrammiFile comuniSymantec SharedccApp.exe"
O4 - HKLM..Run: [alchem] C:WINNTalchem.exe
O4 - HKLM..Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM..Run: [RAM Idle] C:ProgrammiRAM Idle StandardRAM_2K.exe
O4 - HKCU..Run: [Internet Download Accelerator] C:ProgrammiIDAida.exe -autorun
O4 - Startup: Barra degli strumenti Microsoft Office.Lnk = C:ProgrammiMicrosoft OfficeOfficeMSOFFICE.EXE
O4 - Global Startup: Avvio Office.lnk = C:ProgrammiMicrosoft OfficeOfficeOSA.EXE
O4 - Global Startup: Digisoft AntiDialer.lnk = C:ProgrammiDigisoft AntiDialerAntiDialer.exe
O8 - Extra context menu item: Download ALL with IDA - C:ProgrammiIDAidaieall.htm
O8 - Extra context menu item: Download with IDA - C:ProgrammiIDAidaie.htm
O9 - Extra button: Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:ProgrammiIDAida.exe
O9 - Extra 'Tools' menuitem: &Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:ProgrammiIDAida.exe
O17 - HKLMSystemCCSServicesTcpip..{4F916BEC-44D4-4B88-9771-B065D0778C3E}: NameServer = 62.211.69.150 212.48.4.15
Smith