Benvenuto Ospite

Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Problema chrome LOG OTL

Problema chrome LOG OTL

Opzioni

Topic Precedente · Topic Sucessivo

fabbg83

Inviato: Monday, September 02, 2013 4:44:42 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

Ciao a tutti, ho un grave problema con google chrome, adesso sto scrivendo con firefox perchè chrome è morto, non dà più nessun segno di vita, ho fatto una ricerca su google per vedere se qualcuno aveva lo stesso mio problema e ho trovato una marea di persone che hanno avuto qualche mese fà questo problema e gente che attualmente non riesce a venirne fuori.
Stavo navigando e di punto in bianco si è chiuso, se clicco l'icona non da segno di vita.

Se per favore potete controllarmi, grazie.

http://wikisend.com/download/435930/OTL.Txt

http://wikisend.com/download/872326/Extras.Txt

Sponsor

Inviato: Monday, September 02, 2013 4:44:42 PM

fabbg83

Inviato: Monday, September 02, 2013 4:52:24 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

Non so se può esser utile, ho fatto una scansione anche con AdwCleaner

# Running from : C:\Documents and Settings\Fabio\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\searchplugins\Search_Results.xml
File Found : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\user.js
File Found : C:\Programmi\Mozilla Firefox\searchplugins\Search_Results.xml
Folder Found C:\Documents and Settings\All Users\Dati applicazioni\boost_interprocess
Folder Found C:\Documents and Settings\Fabio\Dati applicazioni\searchquband

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]

-\\ Mozilla Firefox v7.0.1 (it)

[ File : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\prefs.js ]

-\\ Google Chrome v

[ File : C:\Documents and Settings\Fabio\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\preferences ]

r16

Inviato: Tuesday, September 03, 2013 6:52:25 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Ciao.

Elimina quello che ha trovato AdwCleaner cliccando il pulsante "Clean"

Poi:

Avvia OTL.

Sotto "Custom Scans\Fixes" copia-incolla questo codice:

Code:

:OTL
CHR - homepage: http://www.searchnu.com/410
O2 - BHO: (Octh Class) - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Programmi\Orbitdownloader\orbitcth.dll (Orbitdownloader.com)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll File not found
O3 - HKLM\..\Toolbar: (Searchqu Toolbar) - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll File not found
O3 - HKLM\..\Toolbar: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programmi\Orbitdownloader\GrabPro.dll ()
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKU\S-1-5-21-1292428093-790525478-1801674531-1003\..\Toolbar\WebBrowser: (Grab Pro) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Programmi\Orbitdownloader\GrabPro.dll ()
O4 - HKLM..\Run: [Adobe ARM] "C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe" File not found
O4 - HKLM..\Run: [conhost] C:\Documents and Settings\Fabio\Dati applicazioni\Microsoft\conhost.exe File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Programmi\File comuni\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\.DEFAULT..\Run: [userinit] C:\WINDOWS\system32\ntos.exe File not found
O4 - HKU\S-1-5-18..\Run: [userinit] C:\WINDOWS\system32\ntos.exe File not found
O4 - HKU\S-1-5-21-1292428093-790525478-1801674531-1003..\Run: [{CC2ABD7E-11B6-1698-93AC-8EC68EECDAE9}] "C:\Documents and Settings\Fabio\Dati applicazioni\Vei\vimoiqb.exe" File not found
O4 - HKU\S-1-5-21-1292428093-790525478-1801674531-1003..\Run: [FreeCall] "C:\Programmi\FreeCall.com\FreeCall\FreeCall.exe" -nosplash -minimized File not found
F3 - HKU\S-1-5-21-1292428093-790525478-1801674531-1003 WinNT: Load - (C:\DOCUME~1\Fabio\IMPOST~1\Temp\csrss.exe) - File not found
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_3_1_13-windows-i586.cab (Java Plug-in 1.3.1_13)
O16 - DPF: {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_14-windows-i586.cab (Java Plug-in 1.5.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O20 - HKU\S-1-5-21-1292428093-790525478-1801674531-1003 Winlogon: Shell - (C:\Documents and Settings\Fabio\Dati applicazioni\dwm.exe) - File not found
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O33 - MountPoints2\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{1afa3c56-016a-11e1-b68c-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{1afa3c56-016a-11e1-b68c-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{26f96d6c-9a06-11e1-b738-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{26f96d6c-9a06-11e1-b738-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{26f96d6e-9a06-11e1-b738-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{26f96d6e-9a06-11e1-b738-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{3faf61be-945b-11e1-b72f-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{3faf61be-945b-11e1-b72f-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{784665b6-008d-11e1-b68a-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{784665b6-008d-11e1-b68a-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{aa73c8bc-4030-11e0-b588-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{aa73c8bc-4030-11e0-b588-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{c3201292-9a04-11e1-b737-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{c3201292-9a04-11e1-b737-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{c3201294-9a04-11e1-b737-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{c3201294-9a04-11e1-b737-00138fe963dc}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2010/05/09 13.48.36 | 000,126,976 | R--- | M] ()
O33 - MountPoints2\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\Shell - "" = AutoRun
O33 - MountPoints2\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\Shell\AutoRun\command - "" = F:\laucher.exe
[2012/11/19 14.54.16 | 095,023,320 | ---- | C] () -- C:\Documents and Settings\All Users\Dati applicazioni\0tbpw.pad
[2011/01/24 06.53.44 | 000,026,506 | ---- | C] () -- C:\Documents and Settings\Fabio\Dati applicazioni\062E.5A4
[2007/04/07 11.15.11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!
[2012/06/03 15.43.57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabio\Dati applicazioni\searchquband
[2011/11/12 12.32.50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabio\Dati applicazioni\Vei
[2011/01/19 17.27.21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Fabio\Dati applicazioni\VUPlayer

:Files
ipconfig /flushdns /c

:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command]
""=""%1" %*"

:commands
[purity]
[emptytemp]
[Emptyjava]
[RESETHOSTS]
[EMPTYFLASH]
[start explorer]
[Reboot]

Clicca sul pulsante RUN FIX.
Lascia fare la scansione senza interferire.
Posta il log.

fabbg83

Inviato: Wednesday, September 04, 2013 5:31:55 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

Ciao, grazie per l'aiuto, ho fatto passo passo come hai detto te, ti allego adesso il txt di AdwCleaner

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Dati applicazioni\boost_interprocess
Folder Deleted : C:\Documents and Settings\Fabio\Dati applicazioni\searchquband
File Deleted : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\searchplugins\Search_Results.xml
File Deleted : C:\Programmi\Mozilla Firefox\searchplugins\Search_Results.xml
File Deleted : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\user.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Key Deleted : HKCU\Software\DataMngr

-\\ Mozilla Firefox v7.0.1 (it)

[ File : C:\Documents and Settings\Fabio\Dati applicazioni\Mozilla\Firefox\Profiles\lq0c0nao.default\prefs.js ]

-\\ Google Chrome v

[ File : C:\Documents and Settings\Fabio\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

fabbg83

Inviato: Wednesday, September 04, 2013 5:37:24 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

questo invece è il txt che mi è uscito sul desktop (si è riavviato da solo il pc) dopo aver fatto il fixes con OTL

Code:

All processes killed
========== OTL ==========
Use Chrome's Settings page to change the HomePage.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214}\ deleted successfully.
C:\Programmi\Orbitdownloader\orbitcth.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7E853D72-626A-48EC-A868-BA8D5E23E045}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{99079a25-328f-4bd4-be04-00955acaa0a7} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}\ deleted successfully.
C:\Programmi\Orbitdownloader\GrabPro.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1292428093-790525478-1801674531-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}\ not found.
File C:\Programmi\Orbitdownloader\GrabPro.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\conhost deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck deleted successfully.
C:\WINDOWS\system32\NeroCheck.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
C:\Programmi\File comuni\Java\Java Update\jusched.exe moved successfully.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run\\userinit deleted successfully.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\userinit not found.
Registry value HKEY_USERS\S-1-5-21-1292428093-790525478-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run\\{CC2ABD7E-11B6-1698-93AC-8EC68EECDAE9} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CC2ABD7E-11B6-1698-93AC-8EC68EECDAE9}\ not found.
Registry value HKEY_USERS\S-1-5-21-1292428093-790525478-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Run\\FreeCall deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1292428093-790525478-1801674531-1003\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\Load:C:\DOCUME~1\Fabio\IMPOST~1\Temp\csrss.exe deleted successfully.
Starting removal of ActiveX control {17492023-C23A-453E-A040-C7C580BBF700}
C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{17492023-C23A-453E-A040-C7C580BBF700}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{17492023-C23A-453E-A040-C7C580BBF700}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{17492023-C23A-453E-A040-C7C580BBF700}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{17492023-C23A-453E-A040-C7C580BBF700}\ not found.
Starting removal of ActiveX control {33564D57-0000-0010-8000-00AA00389B71}
C:\WINDOWS\Downloaded Program Files\WMV9VCM.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{33564D57-0000-0010-8000-00AA00389B71}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33564D57-0000-0010-8000-00AA00389B71}\ not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}
c:\winnt\Downloaded Program Files\jinstall_1_3_1_13.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0014-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {D27CDB6E-AE6D-11CF-96B8-444553540000}
C:\WINDOWS\Downloaded Program Files\swflash.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D27CDB6E-AE6D-11CF-96B8-444553540000}\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1292428093-790525478-1801674531-1003\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Documents and Settings\Fabio\Dati applicazioni\dwm.exe deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ff0bafb-9c2f-11e1-b73d-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1afa3c56-016a-11e1-b68c-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1afa3c56-016a-11e1-b68c-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1afa3c56-016a-11e1-b68c-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1afa3c56-016a-11e1-b68c-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{26f96d6c-9a06-11e1-b738-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26f96d6c-9a06-11e1-b738-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{26f96d6c-9a06-11e1-b738-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26f96d6c-9a06-11e1-b738-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{26f96d6e-9a06-11e1-b738-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26f96d6e-9a06-11e1-b738-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{26f96d6e-9a06-11e1-b738-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{26f96d6e-9a06-11e1-b738-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{316ddcfe-b8ae-11e0-b62e-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3faf61be-945b-11e1-b72f-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3faf61be-945b-11e1-b72f-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3faf61be-945b-11e1-b72f-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3faf61be-945b-11e1-b72f-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f86e9c8-3b64-11e0-b57f-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4f86e9cb-3b64-11e0-b57f-00138fe963dc}\ not found.
File G:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{784665b6-008d-11e1-b68a-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{784665b6-008d-11e1-b68a-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{784665b6-008d-11e1-b68a-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{784665b6-008d-11e1-b68a-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{94b0754c-04b6-11e2-b7a1-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa73c8bc-4030-11e0-b588-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa73c8bc-4030-11e0-b588-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aa73c8bc-4030-11e0-b588-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{aa73c8bc-4030-11e0-b588-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3201292-9a04-11e1-b737-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c3201292-9a04-11e1-b737-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3201292-9a04-11e1-b737-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c3201292-9a04-11e1-b737-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3201294-9a04-11e1-b737-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c3201294-9a04-11e1-b737-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c3201294-9a04-11e1-b737-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c3201294-9a04-11e1-b737-00138fe963dc}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{eec22ea0-e83c-11e0-b66e-00138fe963dc}\ not found.
File F:\laucher.exe not found.
C:\Documents and Settings\All Users\Dati applicazioni\0tbpw.pad moved successfully.
C:\Documents and Settings\Fabio\Dati applicazioni\062E.5A4 moved successfully.
C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus!\Custom Sounds folder moved successfully.
C:\Documents and Settings\All Users\Dati applicazioni\Messenger Plus! folder moved successfully.
Folder C:\Documents and Settings\Fabio\Dati applicazioni\searchquband\ not found.
C:\Documents and Settings\Fabio\Dati applicazioni\Vei folder moved successfully.
C:\Documents and Settings\Fabio\Dati applicazioni\VUPlayer folder moved successfully.
========== FILES ==========
[color=#A23BEC]< ipconfig /flushdns /c >[/color]
Configurazione IP di Windows
Svuotata la cache del resolver DNS.
C:\Documents and Settings\Fabio\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\Fabio\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command\\""|""%1" %*" /E : value set successfully!
========== COMMANDS ==========

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114303 bytes
%systemroot%\System32 .tmp files removed: 3771205 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1205134 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1.106,00 mb

[EMPTYJAVA]

->Java cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Java Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: All Users

User: Default User

User: Fabio
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 09042013_145517

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

fabbg83

Inviato: Wednesday, September 04, 2013 5:45:30 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

una volta che si è riavviato dopo aver fatto "pulizia" con OTL sono cambiate diverse cose, non escono più 2 delle 3 finestre di avviso che comparivano ad ogni avvio di windows, solo una è rimasta, erano fastidiose, è rimasta questa:

ho provato a cliccare sull'icona di chrome ma non ne vuol sapere nulla.
Il problema che è comparso adesso (sto navigando con firefox) è che non mi fà vedere più nessun video su youtube, da che può dipendere?
Ho provato ad aprire internet explorer e idem, anche lì non carica, mi dice di adobe flash player....
Per adesso altri problemi non li ho riscontrati, l'audio e i video funzionano (non da internet) , attendo tua risposta e nel frattempo ti ringrazio.

r16

Inviato: Wednesday, September 04, 2013 6:48:34 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Ciao.

Commenta:

ho provato a cliccare sull'icona di chrome ma non ne vuol sapere nulla.

Consiglio di disistallarlo.
Lo potrai reistallare a fine bonifica.
Dopo la disistallazione fai una pulizia con CCleaner (registro compreso)

Poi:
Scarica Combofix

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Salvalo sul desktop. (è obbligatorio)

Importante: Disabilita il tuo antivirus e chiudi TUTTI i programmi aperti,(Firewall compreso) e dopo aver scaricato COMBOFIX, chiudi la connessione.

Doppio click su combofix.exe (se usi Vista o Seven: tasto destro su Combofix.exe e clicca su: "Esegui come Amministratore" )

Se ti verrà chiesto se vuoi Installare LA CONSOLE DI RIPRISTINO DI EMERGENZA, clicca NO.

E' probabile che ti siano inviati messaggi dall'antivirus,(o dallo stesso Combofix) tu ignorali, e prosegui con la scansione.

Durante l'operazione di scansione è importante non usare il PC (neanche il mouse) e attendere pazientemente la fine delle operazioni.
Al termine, verrà creato un file log sul Desktop, chiamato C:\ComboFix.txt.
Postalo qui.

Ti prego di postare il log di Combofix così:
Collegati ad internet e vai alla pagina WikiSend: http://www.wikisend.com/
Clicca sul bottone "Sfoglia"
Seleziona il file appena salvato
Clicca su Upload file
Dopo qualche secondo, vieni spostato su una nuova pagina con il link in diversi formati:
Download Link / Forum Link
Seleziona Forum Link, copialo e incollalo in un nuovo messaggio per il forum.

fabbg83

Inviato: Wednesday, September 04, 2013 8:12:05 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

grazie per la risposta, aggiornamento delle ore 20, non va più neanche il programma f24 on line ( JAVA da problemi)

adesso provo a fare passo passo come hai detto te Pray

Pray

Angel

p.s. da ignorante, mi son fatto una domanda, avendo salvato i log prima di aver cancellato e dopo cancellato, se fosse il problema di adobe flash player una chiave di registro è possibile rimetterla al suo posto riprendendola dal log fatto prima di aver cancellato??

r16

Inviato: Wednesday, September 04, 2013 9:12:32 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Ciao.
Puoi disistallare sia Java che adobe flash player.
Sono tutti programmi che si possono reistallare successivamente.
Probabilmente sono versione obsolete, che il virus ha attaccato.
Intanto vedi se riesce la scansione con Combofix.

fabbg83

Inviato: Saturday, September 07, 2013 4:57:34 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

scansione combofix

log combofix del 04 09 2013.txt

una domanda, ma quando si lancia la scansione con questo programma automaticamente cancella quello che lui prevede oppure sta a me poi cancellarli (nello stile di programmi del tipo hijackthis, spybot search & destroy???)
Lo vedo diverso come programma, mi ha dato l'idea che sia più "spazzino" degli altri, mi sbaglio???

r16

Inviato: Sunday, September 08, 2013 1:52:48 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

fabbg83 ha scritto:

scansione combofix
una domanda, ma quando si lancia la scansione con questo programma automaticamente cancella quello che lui prevede oppure sta a me poi cancellarli

Tutte e 2 le opzioni che hai citato.
Combofix elimina gli eventuali virus che risultano nel suo database, inoltre ti offre la possibilità di eliminare gli altri (manualmente) tramite uno script personalizzato da parte di chi ti aiuta. (sempre che conosca questo programma)

Commenta:

Lo vedo diverso come programma, mi ha dato l'idea che sia più "spazzino" degli altri, mi sbaglio???

E' molto potente, molto invasivo, e di conseguenza molto pericoloso se usato da mani inesperte.
Il mio consiglio è quello di NON usarlo se non prescritto da un esperto.

Adesso vorrei che eseguissi una scansione con OTL per vedre se tutto è a posto.
Dimmi anche se e quali problemi riscontri.

fabbg83

Inviato: Monday, September 09, 2013 1:32:39 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

grazie per i consigli che mi dai e per l'assistenza, i problemi sono diversi, tutti i programmi che coaudivano con adobe flash player (e mozilla firefox per quanto riguarda youtube) non funziona nulla, stesso discorso per JAVA, non ho più l'autoplay di 3 hardisk esterni, quando metto la chiavetta non la vede in automatico, google chrome non ne vuole sapere di andare, idem safari....altro non mi viene in mente...
adesso faccio OTL

ma da comofix che cosa hai trovato di interessante??il pc era attaccato esternamente da qualcuno che voleva entrarmi?? vorrei anche sapere se hanno provato a rubare informazioni, password, se mi puoi aiutare a capire che tipo di attacco ho avuto, grazie

speriamo bene Pray

Pray

r16

Inviato: Monday, September 09, 2013 6:23:03 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Hai grossi problemi.
La via più "spiccia" e più sicura, sarebbe la formattazione e poi la reistallazione del Sistema Operativo.
Io posso anche tentare di sistemartelo, ma questo richiede tempo, e non posso garantirti al 100% l'esito positivo.
Dimmi cosa vuoi fare.

r16

Inviato: Tuesday, September 10, 2013 7:29:46 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Ciao.
Ho risposto al tuo MP.
Vedi se ti può servire questo link per ripristinare i browser.
http://www.navigaweb.net/2011/04/reset-del-browser-per-ripristinare.html
Leggilo attentamente.
Se hai domande, chiedi pure qui.

fabbg83

Inviato: Thursday, September 12, 2013 5:56:36 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

scansione fatta oggi

OTL.Txt

fabbg83

Inviato: Thursday, September 12, 2013 5:58:18 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

extras

Extras.Txt

fabbg83

Inviato: Thursday, September 12, 2013 6:22:00 PM

Rank: Member

Iscritto dal : 9/2/2013
Posts: 12

hai un PM

r16

Inviato: Thursday, September 12, 2013 8:20:27 PM

Rank: AiutAmico

Iscritto dal : 8/7/2007
Posts: 11,016

Il log è pulito.
Per le informazioni richieste è meglio che ti rivolga nella sezione più adatta:
http://forum.aiutamici.com/yaf_topics8_Problemi-Informatici.aspx

In ogni caso, se hai deciso di formattare, allora vuol dire che i file importanti che avevi, li hai salvati. (o no? )
In questo caso, se l'alternativa è la formattazione si può tentare di sistemare il pc con eliminazioni drastiche. (tipo i browser e altro)
Io non potevo muovermi come volevo, appunto perchè i dati importanti andavano persi.

Utenti presenti in questo topic

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Problema chrome LOG OTL

Salta al Forum

Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS :

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.

Invia topic via Email

RSS Feed

Watch this topic

Stampa topic

Normale

Threaded