Dialer

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

Allora, vi spiego il fatto....navigavo su un sito e ad un certo punto mi apre la casella del download di firefox :eek:

scarica 3 file adobe reader che nn vedo e mi apre adobe.....1° cosa che faccio, pulisco il pc e scansione....Ad-Aware mi trova 3 o + dialer...li cancello e rifaccio...tutto ok, niente + virus....sl che ogni volta che vado su quel sito, mi ri fa la stessa cosa del download...e di nuovo i dialer :crybaby:

è possibile?? Io so che nei router wirelles nn possono entrare dialer...o mi sbaglio....

Cmq, cosa devo fare?

MAMBO · **Inviato:** sab nov 22, 2008 10:27 am

Cosa devi fare??? Non devi andare più su quel sito semplice no?Una curiosità di che sito si tratta?

RikyToro · **Inviato:** sab nov 22, 2008 12:29 pm

Di che sito si tratta ?

Cmq fai una pulizia con CCleaner e ATF-Cleaner ( www.atribune.org ).

Una scansione con il tuo antivirus aggiornato e una scansione completa con MalwareBytes dopo averlo scaricato, installato e aggiornato ( http://www.download.com/Malwarebytes-An ... tag=button )

Posta anche un log di Hijackthis.

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

allora risp a tutti....il sito è

Codice:

www.softarchive.net

Vi aggiorno...allora...AVG nn mi funziona...mi si disattiva appena provo a scansionare il pc....

Ho gia fatto la pulizia e tutto...

ATF-Cleaner ( www.atribune.org ) <----- non posso andare nel sito....questa spece di dialer o virus mi blocca tutti i siti di antivirus es: norton, ad-aware, avg...ecc

Non posso fare + nulla...nn ci sto capendo + niente...

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

qualche mod mi da il suo numero di cell, o altro....nn ci capsco nulla...ho bisogno di parlare con qualcuno.....

nn mi installa nessun antivirus, nn mi funziona il ripristino del sistema :crybaby:

che cavolo sta succedendo????!!!! :crybaby:

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

Codice:

Logfile of HijackThis v1.99.1
Scan saved at 17.05.42, on 22/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\a-squared Anti-Dialer\a2service.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\PSIService.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\igfxsrvc.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\winxp\Desktop\mbam-setup.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.it
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programmi\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\Programmi\AVG\AVG8\avgtoolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [a-squared] "C:\Programmi\a-squared Anti-Dialer\a2adguard.exe"
O4 - HKLM\..\Run: [a-squared Anti-Dialer] "C:\Programmi\a-squared Anti-Dialer\a2adguard.exe" /d=60
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Stop Dialers.lnk = C:\Programmi\StopDialers\StopDialers.exe
O8 - Extra context menu item: &Clean Traces - C:\Programmi\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Programmi\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Programmi\DAP\dapextie2.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\programmi\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=www.google.it
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1213392619531
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1220461073484
O17 - HKLM\System\CCS\Services\Tcpip\..\{9CAE7497-32FD-4777-A6B9-FFAC90CD0875}: NameServer = 192.168.16.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programmi\AVG\AVG8\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FILECO~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Anti-Dialer Service (a2AntiDialer) - Emsi Software GmbH - C:\Programmi\a-squared Anti-Dialer\a2service.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Programmi\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Programmi\Java\jre6\bin\jqs.exe" -service -config "C:\Programmi\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe

steven75 · **Inviato:** sab nov 22, 2008 6:44 pm

ciao

forse hai il bagle, non ho tempo per guardare il log, ma esegui findykill come spiegato qui
http://www.steven.altervista.org/files/findykill.html

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

Niente, il problema nn va via...altre idee?? :crybaby:

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

nn vorrei che l'unica soluzione è formattare :crybaby:

steven75 · **Inviato:** sab nov 22, 2008 11:17 pm

Stanicry ha scritto:

Niente, il problema nn va via...altre idee?? :crybaby:

si ma fin quando ti limiterai a dire "il problema non và via" sarà difficile aiutarti...

hai usato findkill? con quale opzioni? cosa dice il log? se ti ho chiesto di postarlo forse c'é un motivo non credi?

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

Codice:

----------------- FindyKill V4.705 ------------------

* User : winxp - XPPRO2
* executed from : C:\Programmi\FindyKill
* Update on 17/11/08 par Chiquitine29
* Start at 18:41:45 the 22/11/2008
* Windows XP - Internet Explorer 7.0.5730.13
 
 
((((((((((((((( *** deleting *** ))))))))))))))))))  
 
 
--------------- [ Active Processes ] ----------------  
 

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\PSIService.exe
C:\Programmi\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\userinit.exe
 
--------------- [ Infected files / folders ] ----------------  
 
 
»»»» Supression files in C: 
 
 
»»»» Supression files in C:\WINDOWS 
 
 
»»»» Supression files in C:\WINDOWS\Prefetch 
 
 
»»»» Supression files in C:\WINDOWS\system32 
 
 
»»»» Supression files in C:\WINDOWS\system32\drivers 
 
 
»»»» Supression files in C:\Documents and Settings\winxp\Dati applicazioni 
 
 
»»»» Supression files in C:\DOCUME~1\winxp\IMPOST~1\Temp 
 
 
»»»» Supression files in C:\Documents and Settings\winxp\Local Settings\Temporary Internet Files\Content.IE5 
 
Deleted ! - C:\Documents and Settings\All Users\Dati applicazioni\Skype\Plugins\Local Cache\D3987B641C134048B815DB578D607F42_more.jpg    
 
--------------- [  Registry / Infected keys ] ---------------- 
 
Deleted ! - HKEY_CURRENT_CONFIG\System\CurrentControlSet\Enum\ROOT\LEGACY_SROSA   
 
--------------- [ States / Restarting of services ] ---------------- 
 


+- Services : [ Auto=2 / Request=3 / Disable=4 ] 

 Ndisuio - Type of startup  = 3 
 
 EapHost - Type of startup  = 2 
 
 Ip6Fw - Type of startup  = 2 
 
 SharedAccess - Type of startup  = 2 
 
 wuauserv - Type of startup  = 2 
 
 wscsvc - Type of startup  = 2 
 
 
---------------   [ Cleaning removable drives ] ----------------  
 
+- Informations : 

C: - Unit… fissa

 
+- deleting files : 
 
 
--------------- [ Registry / Mountpoint2 ] ----------------  
 
 
 -> Not found ! 
 
 
--------------- [ Searching Cracks / Keygen ] ----------------  
 
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Bitween.Photo.Editor.v._1.0cracked..zip
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\.message
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\b-bwlnmm.zip
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\blzpda.nfo
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\bowling2003_p800.sis
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\file_id.diz
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Digital.Red.Bowling2003.v1.00 + Incl.Keygen\[STJ] - ( 0M 1F - COMPLETE ) - [STJ]
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\Photowiewer\resco_1_.photo.viewer.v4.10.px00.uiq.cracked_ximpda.zip
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\skyforce\Sky Force 1.00 Keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\Motorola A1000 Programmi Utili\SmartMOvie\keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\PopOnTop Keyboard 1.01\PopOnTop.v.1.0.1.Crack.sis
C:\Documents and Settings\winxp\Desktop\Cartella personale\Altre cose\Tutto per il motorola A1000\quickoffice 2.5 for motorola a1000\Quickoffice_keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\(DnGnMsTr).nfo
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 12.0 KeyGen Activation NEW.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Desktop.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\DnGnMsTr-User.gif
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\INC1200_Corel_ALL_Full_ESD.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Thumbs.db
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x0407.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x0409.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x040a.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x040c.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x0410.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\0x0413.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1031.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1033.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1034.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1036.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1040.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\1043.mst
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\Data1.cab
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\installer.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\Installer.lang
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\installer.xml
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\msi31.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\psppx2.msi
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\setup.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Corel Paint Shop Pro Photo X2 v.12.0 Multilenguaje + KeyGen + Corel Incentives_DnGnMsTr\Corel Paint Shop Pro Photo X2 - Installation Files\Setup.ini
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Nero-7.9.6.0 Multi language\Keygen
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Nero-7.9.6.0 Multi language\Keygen\keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\Nero-7.9.6.0 Multi language\Keygen\nero keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\The Sims 2\The Sims 2 Patch - Key Gen\The sims 2 Freetime Key + crack
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\The Sims 2\The Sims 2 Patch - Key Gen\The sims 2 Freetime Key + crack\keygen.exe
C:\Documents and Settings\winxp\Desktop\Cartella personale\Programmi\The Sims 2\The Sims 2 Patch - Key Gen\The sims 2 Freetime Key + crack\Sims2EP7.exe
C:\Documents and Settings\winxp\Impostazioni locali\Dati applicazioni\ApplicationHistory\VGHDKeygen.exe.88723cec.ini
 
 
---------------- ! End of report ! ------------------  

Allora, forse ci sn riuscito...dato che nn mi faceva aprire i siti di antivirus, ho scoperto che il sito della msn ha uno scanner on line su virus, spyware e worm..... Windows OnaCare Safety Scanner...appena ha iniziato mi ha trovato subito il virus

ora devo solo aspettare che finisce la scansione on-line e sperare che quel virus sia quello che mi sta dando problemi....vi faccio sapere appena finisce.... grz cmq a tutti per l'aiuto....scusa se ho risp un pò nervoso ma odio i virus....è il primo che prendo nel nuovo pc e nn volevo che già si rovinasse :crybaby:

purtroppo li becco sempre tutti io sti virus odiosi.....una volta anke quello della schermata blu

RikyToro · **Inviato:** dom nov 23, 2008 12:05 am

il log di hijackthis è ok....

c'è solo da fixare questo:

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Programmi\Java\jre6\bin\jqs.exe" -service -config "C:\Programmi\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)

ora aspettiamo Steve per il log di FindyKill...

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

RikyToro ha scritto:

il log di hijackthis è ok....

c'è solo da fixare questo:

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Programmi\Java\jre6\bin\jqs.exe" -service -config "C:\Programmi\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)

ora aspettiamo Steve per il log di FindyKill...

Ok, cmq quel servizio da fixare non lo fixa...ci provo sempre ma anke dopo che lo fixo rimane sempre li...

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

allora, ha trovato 2 virus, nn mi ha detto cosa erano, e adesso provo a riavviare il pc e vedere se mi collega ai siti di antivirus...se si, lo abbiamo levato

speriamo

Stanicry · **Iscritto il:** sab apr 12, 2008 7:11 am **Messaggi:** 191

nulla....anke se ha eliminato 2 virus continua a non farmi collegare hai siti degli antivirus....ora riprovo con FindyKill e riposto un log nuovo...speriamo di riuscire a uscirne da sto problema...

Dialer

Chi c’è in linea