|
|
Rank: AiutAmico
Iscritto dal : 6/3/2005
Posts: 129
|
Ciao a tutti, sono certo di avere nel pc questo virus o quelle che è chiamato ELECTROLYRICS... ho cercato su internet ma non mi fido, mi fido di questo forum e basta!
Come devo muovermi per rimuoverlo?? ho il pc rallentato, mi si aprono mille pop up di electrolyrics su ogni pagina internet. la pagina iniziale di google crome che è appunto google, non mi carica diciamo le "minipaginette" ... se mi date una mano a ripristinar eil tutto..
Grazie AIUTAMICI
|
|
|
|
|
|
Rank: Newbie
Iscritto dal : 1/28/2014
Posts: -3
|
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
|
|
Rank: AiutAmico
Iscritto dal : 6/3/2005
Posts: 129
|
purtroppo il log EXTRAS.txt non c'è e non perchè, comunque riscontro ancora la presenza di electrolyrics, con i vari pop up.... di seguito vi posto i log. malware bytes: Malware bytes LOG.txtADW : .txt]AdwCleaner[S1].txtJRT: JRT log.txtOTL: OTL.Txt
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Ciao. Avvia OTL. Sotto " Custom Scans\Fixes" copia-incolla questo codice: Code::OTL
SRV - (McComponentHostService) -- C:\Programmi\McAfee Security Scan\3.8.130\McCHSvc.exe (McAfee, Inc.)
CHR - Extension: ElectroLyrics-16 = C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\crossrider
CHR - Extension: ElectroLyrics-16 = C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\
CHR - Extension: FVD Downloader = C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\
CHR - Extension: FVD Downloader = C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\modules\clickberry\_
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Programmi\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
:Files
C:\Programmi\McAfee Security Scan
ipconfig /flushdns /c
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command]
""=""%1" %*"
:commands
[purity]
[emptytemp]
[Emptyjava]
[RESETHOSTS]
[EMPTYFLASH]
[start explorer]
[Reboot]
Clicca sul pulsante RUN FIX. Lascia fare la scansione senza interferire. Posta il log.
|
|
Rank: AiutAmico
Iscritto dal : 6/3/2005
Posts: 129
|
All processes killed
========== OTL ==========
Service McComponentHostService stopped successfully!
Service McComponentHostService deleted successfully!
C:\Programmi\McAfee Security Scan\3.8.130\McCHSvc.exe moved successfully.
File C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\crossrider not found.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\js\lib\popupResource folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\js\lib folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\js\api folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\js folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\icons\actions folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\icons folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\extensionData\userCode folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\extensionData\plugins folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0\extensionData folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hemfpepmlfpoeaopamikcgielgbdfndp\1.26.34_0 folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\_locales\en folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\_locales folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\welcome-pages\images\update folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\welcome-pages\images\install folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\welcome-pages\images folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\welcome-pages\css folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\welcome-pages folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\modules\clickberry\srv folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\modules\clickberry folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\modules folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\_external folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\popup folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\options folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\internals folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\hooks folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\contentScripts folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\background\Media folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js\background folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\js folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\images\slide folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\images\options folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\images\help folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\images\formats folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\images folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\data folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\css folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\additional folder moved successfully.
C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0 folder moved successfully.
File C:\Users\Marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfmhcpmkbdkbgbmkjoiopeeegenkdikp\5.6.6_0\modules\clickberry\_ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0E8A89AD-95D7-40EB-8D9D-083EF7066A01}\ deleted successfully.
C:\Programmi\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll moved successfully.
========== FILES ==========
File\Folder C:\Programmi\McAfee Security Scan not found.
< ipconfig /flushdns /c >
Configurazione IP di Windows
Cache del resolver DNS svuotata.
C:\Users\Marco\Desktop\cmd.bat deleted successfully.
C:\Users\Marco\Desktop\cmd.txt deleted successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\exefile\shell\open\command\\""|""%1" %*" /E : value set successfully!
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Marco
->Temp folder emptied: 10773783 bytes
->Temporary Internet Files folder emptied: 20666008 bytes
->Java cache emptied: 48012 bytes
->Google Chrome cache emptied: 416089028 bytes
->Flash cache emptied: 492 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 15128820 bytes
RecycleBin emptied: 34217353 bytes
Total Files Cleaned = 474,00 mb
[EMPTYJAVA]
User: All Users
User: Default
User: Default User
User: Marco
->Java cache emptied: 0 bytes
User: Public
Total Java Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Marco
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 02012014_160948
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
Rank: AiutAmico
Iscritto dal : 8/7/2007
Posts: 11,016
|
Rifai una nuova scansione con OTL.
Posta il log con Wikisend.
Riscontri ancora il problema Electrolyrics ?
|
|
|
Guest |
