Precedente :: Successivo |
Autore |
Messaggio |
Orange Dio maturo
Registrato: 18/02/07 12:20 Messaggi: 2224 Residenza: Roma
|
Inviato: 20 Mag 2007 11:00 Oggetto: |
|
|
prova anche questo tool di Symantec. |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 21 Mag 2007 18:02 Oggetto: |
|
|
Non riesco a fare la scansione cn bitdefender,non riesco a scaricarmi il programma... poi ho notato ke si sono inseriti dei link strani in preferiti e non si possono cancellare...come posso toglierli? |
|
Top |
|
|
Orange Dio maturo
Registrato: 18/02/07 12:20 Messaggi: 2224 Residenza: Roma
|
Inviato: 21 Mag 2007 18:58 Oggetto: |
|
|
vediamo di capire bene: per fare la scansione con BDefender stai usando Explorer, vero? perchè funziona solo con quello...dov'è che si blocca?
quando cerchi di scaricare il tool che succede? messaggi d'errore? tool non funzionante?
cerca di spiegarti meglio, altrimenti diventa difficile capire dove sta il problema...
Citazione: | ho notato ke si sono inseriti dei link strani in preferiti e non si possono cancellare...come posso toglierli? |
per eliminarli prova ad usare CCleaner e/o ATF Cleaner |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 21 Mag 2007 21:03 Oggetto: |
|
|
si scusami andavo di fretta. Allora,ho fatto la scansione cn il tool di symantec e non mi ha trovato nulla,l'ho rifatto con il vundofix e mi ha trovato qualcosa. Non riesco a fare la scansione con bit defender, se non ho capito male dovrei farla online,ma non riesco a farla. Per quanto riguarda i link che si sono inseriti da soli in preferiti ora provo ad utilizzare ccleaner... |
|
Top |
|
|
bdoriano Amministratore
Registrato: 02/04/07 11:05 Messaggi: 14296 Residenza: 3° pianeta del sistema solare...
|
Inviato: 21 Mag 2007 21:14 Oggetto: |
|
|
Nana_Osaki ha scritto: | Non riesco a fare la scansione con bit defender, se non ho capito male dovrei farla online,ma non riesco a farla. |
Si, devi farla online.
Ti segnala qualche messaggio d'errore?
Puoi provare a fare un giro anche con questi altri?
Edit: usa Internet Explorer |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 23 Mag 2007 06:39 Oggetto: |
|
|
ok,farò la scansione con il symantec... kaspersky va in contrasto con un altro antivirus installato,forse ccleaner??? appena finito posterò i risultati,qui le cose peggiorano |
|
Top |
|
|
bdoriano Amministratore
Registrato: 02/04/07 11:05 Messaggi: 14296 Residenza: 3° pianeta del sistema solare...
|
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 24 Mag 2007 06:52 Oggetto: |
|
|
Ho provato il nuovo aggiornamento, mi ha tolto metà dei file infetti. Adesso sto riprovando con kaspersky,appena finito posto il risultato... quei link sn ancora in preferiti e non vogliono saperne di andarsene. |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 24 Mag 2007 07:46 Oggetto: |
|
|
Ecco il risultato di kaspersky
KASPERSKY ONLINE SCANNER REPORT
Thursday, May 24, 2007 8:42:57 AM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 24/05/2007
Kaspersky Anti-Virus database records: 308059
Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
A:\
C:\
D:\
Scan Statistics
Total number of scanned objects 40737
Number of viruses found 1
Number of infected objects 3 / 0
Number of suspicious objects 0
Duration of the scan process 00:44:09
Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Dati applicazioni\pop book dead rect\ACIDLITE.exe Infected: Trojan.Win32.Obfuscated.en skipped
C:\Documents and Settings\All Users\Dati applicazioni\pop book dead rect\bat heart way Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Stefania\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Stefania\Dati applicazioni\antipile\Dvd Okay Four Audio.exe Infected: Trojan.Win32.Obfuscated.en skipped
C:\Documents and Settings\Stefania\Dati applicazioni\antipile\vnzmhfgq.exe Infected: Trojan.Win32.Obfuscated.en skipped
C:\Documents and Settings\Stefania\Dati applicazioni\Morpheus\log000.txt Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\001.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\002.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\003.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\004.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\005.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\006.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\007.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\008.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\009.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\010.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\011.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\012.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\013.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\014.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\015.part Object is locked skipped
C:\Documents and Settings\Stefania\Desktop\eMule\Temp\016.part Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Cronologia\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Cronologia\History.IE5\MSHist012007052420070525\index.dat Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Dati applicazioni\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Dati applicazioni\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Temp\BIT1.tmp Object is locked skipped
C:\Documents and Settings\Stefania\Impostazioni locali\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Stefania\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Stefania\ntuser.dat.LOG Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
Scan was interrupted by user! |
|
Top |
|
|
Orange Dio maturo
Registrato: 18/02/07 12:20 Messaggi: 2224 Residenza: Roma
|
Inviato: 24 Mag 2007 08:05 Oggetto: |
|
|
Nana_Osaki ha scritto: | Ecco il risultato di kaspersky
Scan was interrupted by user! | perche hai interrotto lo scan??
avevo consigliato BitDefender proprio perche rimuove le infezioni.
hai per caso problemi con CiD?
ripostaci il log di Hijack, vediamo cos'altro c'è. |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 24 Mag 2007 18:40 Oggetto: |
|
|
si ho problemi con il CID ke stress... ecco hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 19.39.30, on 24/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\Programmi\QuickTime\qttask.exe
C:\Programmi\Winamp\winampa.exe
C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Programmi\MSN Messenger\MsnMsgr.Exe
C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Documents and Settings\Stefania\Desktop\eMule\emule.exe
C:\Programmi\Morpheus\Morpheus.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\MSN Messenger\usnsvc.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Documents and Settings\Stefania\Desktop\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.google.it/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] C:\Programmi\Winamp\winampa.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Deadrectliveokay] C:\Documents and Settings\All Users\Dati applicazioni\pop book dead rect\ACIDLITE.exe
O4 - HKLM\..\RunOnce: [HDReg] c:\Apps\HDReg\HDRegApp.exe -r
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: Morpheus.lnk = C:\Programmi\Morpheus\Morpheus.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\it.htm
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://nothingisimpossible1985.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A0CFB0DF-DE07-4E8D-929C-68F3A67282AC}: NameServer = 213.230.155.94 213.230.130.222
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe
potresti postarmi direttamente il link della scansione di bitdefender?da sola non riesco a trovarlo... grazie mille |
|
Top |
|
|
bdoriano Amministratore
Registrato: 02/04/07 11:05 Messaggi: 14296 Residenza: 3° pianeta del sistema solare...
|
Inviato: 24 Mag 2007 19:23 Oggetto: |
|
|
link
Non ti conviene evitare che Morpheus parta in automatico? |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 27 Mag 2007 18:28 Oggetto: |
|
|
niente non riesco mi appare una scritta
Could not load the Online Scanner!
Service Pack 2 was detected on this computer.
Click on the information bar and select "Install ActiveX Control...".
il controllo activex l'ho attivato... ma niente...non riesce a fare la scansione |
|
Top |
|
|
Orange Dio maturo
Registrato: 18/02/07 12:20 Messaggi: 2224 Residenza: Roma
|
Inviato: 28 Mag 2007 07:48 Oggetto: |
|
|
vabbè, pazienza...
dal tuo ultimo log risulta solo il CiD...
disattiva il ripristino e in modalità provvisoria fissa questa voce:
O4 - HKLM\..\Run: [Deadrectliveokay] C:\Documents and Settings\All Users\Dati applicazioni\pop book dead rect\ACIDLITE.exe
trova e cancella ACIDLITE.exe in C:\Documents and Settings..
Nana, ma dov'è il tuo antivirus??
dovresti anche mettere un firewall al più presto (specie se usi P2P)
consiglio: Active Virus Shield (antivirus)
PC Tools Firewall Plus (firewall) |
|
Top |
|
|
Nana_Osaki Eroe
Registrato: 27/02/07 23:31 Messaggi: 53
|
Inviato: 28 Mag 2007 17:33 Oggetto: |
|
|
fatto, il cid non mi rompe più, però ho ancora il trojan, non capisco come mai... adesso vi posto il risultato di hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 18.33.11, on 28/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\File comuni\Real\Update_OB\realsched.exe
C:\Programmi\QuickTime\qttask.exe
C:\Programmi\Winamp\winampa.exe
C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Programmi\MSN Messenger\MsnMsgr.Exe
C:\Programmi\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Documents and Settings\Stefania\Desktop\eMule\emule.exe
C:\Programmi\Morpheus\Morpheus.exe
C:\WINDOWS\system32\rundll32.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Documents and Settings\Stefania\Desktop\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.google.it/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programmi\google\googletoolbar1.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Programmi\File comuni\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programmi\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] C:\Programmi\Winamp\winampa.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Programmi\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Programmi\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [PrevxRootkitRemovalTool] "C:\Documents and Settings\Stefania\Documenti\File di backup\925EE36.exe" -scan
O4 - HKLM\..\Run: [setup] rundll32.exe "C:\WINDOWS\system32\owpgfaop.dll",realset
O4 - HKLM\..\RunOnce: [HDReg] c:\Apps\HDReg\HDRegApp.exe -r
O4 - HKCU\..\Run: [MsnMsgr] "C:\Programmi\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: Morpheus.lnk = C:\Programmi\Morpheus\Morpheus.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Programmi\File comuni\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\it.htm
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://nothingisimpossible1985.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A0CFB0DF-DE07-4E8D-929C-68F3A67282AC}: NameServer = 213.230.130.222 213.230.155.94
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Programmi\WIDCOMM\Software Bluetooth\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programmi\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Programmi\PC Connectivity Solution\ServiceLayer.exe |
|
Top |
|
|
|