Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Aiuto per favore..

2 pages: [1] 2
Aiuto per favore.. Opzioni
Topic Precedente · Topic Sucessivo
valeciaciadiddl
Inviato: Monday, October 24, 2011 5:22:21 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
negli ultimi giorni ho notato che il gadget misuratore cpu, soprattutto il secondo è alto, infatti cpu ora è 27% e la ram 84% si blocca facilmente cosa che non accadeva quasi mai, anzi era molto veloce. ho disinstallato tutto ciò che non mi interessava ho fatto scansione con malwarebytes e ho eliminato un file infetto, ccleaner, e ho fatto scansione con hijackthis e questo è il log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:13:23, on 23/10/2011
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Alice ti aiuta\McciTrayApp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\PC Tools Security\BDT\FGuard.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\Logitech\ImageStudio\LowLight.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\sa\AppData\Local\Temp\Rar$EX05.320\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://it.msn.com/?ocid=OIE9HP
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?ocid=OIE9HP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornito da MSN and Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O3 - Toolbar: aTube Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O4 - HKLM\..\Run: [AliceRV_McciTrayApp] C:\Program Files\Alice ti aiuta\McciTrayApp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [QCDriverInstaller] C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\sa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Browser Defender Update Service - Threat Expert Ltd. - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

--
End of file - 7030 bytes
Torna in alto
 
Sponsor
Inviato: Monday, October 24, 2011 5:22:21 PM

 
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 5:51:37 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Usa Revo Uninstaler e disinstalla i programmi Toolbar Zynga e Ask poi cancella queste voci da Hijack


O2 - BHO: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
-
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
-
O3 - Toolbar: Zynga Toolbar - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyng.dll
O3 - Toolbar: aTube Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll


Che programma Antivirus e Firefall utilizzi ?


alfonso_aiutamici@hotmail.it
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 5:54:56 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
sto disinstallando... comunque uso microsoft essential security e windows firewall
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 6:09:03 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
disinstallato zynga e ask quando sono andata a fare la scansione con Hijack non c erano più quelle voci:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:09:31, on 24/10/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Alice ti aiuta\McciTrayApp.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\PC Tools Security\BDT\FGuard.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\Logitech\ImageStudio\LowLight.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://it.msn.com/?ocid=OIE9HP
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?ocid=OIE9HP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornito da MSN and Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O4 - HKLM\..\Run: [AliceRV_McciTrayApp] C:\Program Files\Alice ti aiuta\McciTrayApp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [QCDriverInstaller] C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\sa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

--
End of file - 6547 bytes

la ram rimane sempre "alta" 71% posso fare qualche altra cosa? antivirus e firewall vanno bene o puoi consigliarmene qualcun altro?
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 6:27:30 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Uso anch'io MSE e firewall di windows

usa CCleaner, vai in Strumenti - Avvio, e qui disattiva Google Update e Java update per iniziare, fammi sapere di altri programmi che sono presenti




alfonso_aiutamici@hotmail.it
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 6:29:32 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Puoi disinstallare con Revo anche PC Tools Security


alfonso_aiutamici@hotmail.it
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 6:33:23 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Rimuovi anche queste righe da Hijack


O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\sa\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

O16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx

O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe



alfonso_aiutamici@hotmail.it
Torna in alto
 
shapiro
Inviato: Monday, October 24, 2011 6:34:08 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
Commenta:
Uso anch'io MSE e firewall di windows


la strada piu' breve per il format Drool
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 6:38:07 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
su avvio ccleaner c è questo Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run AliceRV_McciTrayApp C:\Program Files\Alice ti aiuta\McciTrayApp.exe
No HKLM:Run B2C_AGENT C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
No HKLM:Run Hiyo C:\Program Files\HiYo\bin\HiYo.exe /RunFromStartup
Yes HKLM:Run KiesHelper C:\Program Files\Samsung\Kies\KiesHelper.exe /s
Yes HKCU:Run KiesPDLR C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
Yes HKLM:Run KiesTrayAgent C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
Yes Startup Common Logitech Desktop Messenger.lnk C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Yes HKLM:Run LogitechGalleryRepair C:\Program Files\Logitech\ImageStudio\ISStart.exe
Yes HKLM:Run LogitechImageStudioTray C:\Program Files\Logitech\ImageStudio\LogiTray.exe
Yes HKLM:Run LVCOMS C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
Yes HKLM:Run Malwarebytes' Anti-Malware "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
Yes HKLM:Run Malwarebytes' Anti-Malware (reboot) "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
No HKLM:Run MSC "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
Yes HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Yes HKLM:Run PCTools FGuard C:\Program Files\PC Tools Security\BDT\FGuard.exe
Yes HKLM:Run QCDriverInstaller C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
Yes HKLM:Run RealTray C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
No HKLM:Run SearchSettings "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
Yes HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 6:38:53 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
pc tool security non cè più su revo disinstallato già credo
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 6:53:11 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
non elimina
O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe

O16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx

O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe

clicco fix checked e mi chiede di riavviare, l ho fatto, sono ritornata alla scansione e ci sono ancora, mi richiede ogni volta che clicco di riavviare
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 6:57:32 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Yes HKLM:Run AliceRV_McciTrayApp C:\Program Files\Alice ti aiuta\McciTrayApp.exe
Disattiva

No HKLM:Run B2C_AGENT C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe

No HKLM:Run Hiyo C:\Program Files\HiYo\bin\HiYo.exe /RunFromStartup
Sconosciuto - Disattiva se non lo conosci

Yes HKLM:Run KiesHelper C:\Program Files\Samsung\Kies\KiesHelper.exe /s
Disattiva

Yes HKCU:Run KiesPDLR C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
Disattiva

Yes HKLM:Run KiesTrayAgent C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
Disattiva

Yes Startup Common Logitech Desktop Messenger.lnk C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Disattiva

Yes HKLM:Run LogitechGalleryRepair C:\Program Files\Logitech\ImageStudio\ISStart.exe
Disattiva se non utilizzi

Yes HKLM:Run LogitechImageStudioTray C:\Program Files\Logitech\ImageStudio\LogiTray.exe
Disattiva se non utilizzi

Yes HKLM:Run LVCOMS C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE

Yes HKLM:Run Malwarebytes' Anti-Malware "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
Yes HKLM:Run Malwarebytes' Anti-Malware (reboot) "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
Se non utilizzi la versione commerciale, Disinstalla MalwareBytes e reinstalla la versione Freeware

No HKLM:Run MSC "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey

Yes HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Togli la spunta nelle opzioni del Live Messenger per non farlo caricare insieme a windows

Yes HKLM:Run PCTools FGuard C:\Program Files\PC Tools Security\BDT\FGuard.exe
Rimuovi la voce da Hijack ed elimina la cartella del programma

Yes HKLM:Run QCDriverInstaller C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart

Yes HKLM:Run RealTray C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER

No HKLM:Run SearchSettings "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
Disattiva

Yes HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Disattiva


alfonso_aiutamici@hotmail.it
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 6:58:37 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Da Hijack devi eliminare le righe in modalità provvisoria.


alfonso_aiutamici@hotmail.it
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 7:09:28 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
fatto tutto tranne Yes HKLM:Run PCTools FGuard C:\Program Files\PC Tools Security\BDT\FGuard.exe
Rimuovi la voce da Hijack ed elimina la cartella del programma

su hijack clicco fix checked, rifaccio la scansione e non va, provo a cancellare la cartella e mi dice "impossibile completare l operazione perchè la cartella o un file all interno di essa è aperto in un altro programma" nonostante non sia aperto nulla, neanke hijack quando lo faccio

Yes HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
Togli la spunta nelle opzioni del Live Messenger per non farlo caricare insieme a windows

cosa intendi qui? scusami per tutto questo disturbo ma non ho capito
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 7:10:04 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
ok ora riprova in modalità provvisoria
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 7:23:30 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
PCTools non puoi eliminare la cartella se il programma è in esecuzione, eliminalo in modalità provvisoria

Apri Live messenger, premi ALT vai a STRUIMENTI - OPZIONI - ACCEDI e togli la spunta per non farlo avviare con windows, ovviamente se non lo utilizzi spesso, lo puoi lanciare manualmente quando ti serve.


alfonso_aiutamici@hotmail.it
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 7:34:10 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
pctools eliminato hijack:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:32:43, on 24/10/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Real\RealPlayer\realplay.exe
C:\Program Files\Common Files\Logitech\QCDriver2\LVComS.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Logitech\ImageStudio\LowLight.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://it.msn.com/?ocid=OIE9HP
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?ocid=OIE9HP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornito da MSN and Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (file missing)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [QCDriverInstaller] C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

sistemato anche live messenger, si non lo uso molto mi collego meglio da hotmail
Torna in alto
 
a.roselli
Inviato: Monday, October 24, 2011 8:39:27 PM

Rank: Admin

Iscritto dal : 10/4/2000
Posts: 19,056
Elimina questa riga

O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (file missing)

Dal log messenger è ancora attivo, disattivalo da CCleaner.


alfonso_aiutamici@hotmail.it
Torna in alto
 
valeciaciadiddl
Inviato: Monday, October 24, 2011 9:03:49 PM
Rank: Member

Iscritto dal : 10/24/2011
Posts: 13
su ccleaner non lo vedo:
No HKCU:Run Sidebar C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
No HKCU:Run KiesPDLR C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
Si HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Si HKLM:Run Malwarebytes' Anti-Malware (reboot) "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
Si HKLM:Run RealTray C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
Si HKLM:Run LVCOMS C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
Si HKLM:Run QCDriverInstaller C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
Si HKLM:Run LogitechGalleryRepair C:\Program Files\Logitech\ImageStudio\ISStart.exe
Si HKLM:Run LogitechImageStudioTray C:\Program Files\Logitech\ImageStudio\LogiTray.exe
Si HKLM:Run Malwarebytes' Anti-Malware "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
No HKLM:Run AliceRV_McciTrayApp C:\Program Files\Alice ti aiuta\McciTrayApp.exe
No HKLM:Run B2C_AGENT C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
No HKLM:Run Hiyo C:\Program Files\HiYo\bin\HiYo.exe /RunFromStartup
No HKLM:Run KiesHelper C:\Program Files\Samsung\Kies\KiesHelper.exe /s
No HKLM:Run KiesTrayAgent C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
No HKLM:Run MSC "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
No HKLM:Run SearchSettings "C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe"
No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
No Startup Common Logitech Desktop Messenger.lnk C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe




con Malwarebytes' Anti-Malware ho trovato 3file infetti:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Versione database: 8011

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

24/10/2011 20:48:07
mbam-log-2011-10-24 (20-48-01).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi esaminati: 474748
Tempo impiegato: 1 ore, 7 minuti, 6 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 0
Valori di registro infetti: 0
Voci infette nei dati di registro: 0
Cartelle infette: 0
File infetti: 3

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
(Non sono stati rilevati elementi nocivi)

Valori di registro infetti:
(Non sono stati rilevati elementi nocivi)

Voci infette nei dati di registro:
(Non sono stati rilevati elementi nocivi)

Cartelle infette:
(Non sono stati rilevati elementi nocivi)

File infetti:
c:\Users\utente\AppData\LocalLow\Sun\Java\deployment\cache\6.0\27\7ad0f85b-7104b83c (Trojan.Downloader.adb) -> No action taken.
c:\Users\utente\foxtab3gpconverter\uninstall\uninstall.exe (Adware.InstallCore) -> No action taken.
c:\program files\common files\Spigot\wtxpcom\components\widgitoolbarff.dll.5 (Adware.WidgiToolbar) -> No action taken.



hijack:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:03:26, on 24/10/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Real\RealPlayer\realplay.exe
C:\Program Files\Common Files\Logitech\QCDriver2\LVComS.exe
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Logitech\ImageStudio\LowLight.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://it.msn.com/?ocid=OIE9HP
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?ocid=OIE9HP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fornito da MSN and Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS.EXE
O4 - HKLM\..\Run: [QCDriverInstaller] C:\PROGRA~1\COMMON~1\Logitech\QCDRIV~1\Lqdsw.exe /addrun /l 1040 /LaunchAtStart
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\Windows\system32\Shdocvw.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

--
End of file - 4630 bytes
Torna in alto
 
Utenti presenti in questo topic
Guest

2 pages: [1] 2

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Aiuto per favore..


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.