PcPrimiPassi.it - informatica facile per tutti, home page
PcPrimiPassi.it - informatica facile per tutti, home page


  Topic AttiviTopic Attivi  Visualizza lista dei Membri del ForumLista Membri  CalendarioCalendario  Ricerca nel ForumCerca  AiutoAiuto    RegistratiRegistrati  LoginLogin

Problemi Software

 PcPrimiPassi.it FORUMPROBLEMI HARDWARE & SOFTWAREProblemi Software


Icona di Messaggio

Topic: errore qualsiasi applicazione!




bulmix
Senior Senior
bulmix
Senior Senior
bulmix
Senior
Senior

Avatar


Iscritto dal : 09/Giugno/2005
Status: Offline
Posts: 459
Riporta il testo di: bulmix Rispondibullet Topic: Post n° 100.731 - Postato: 29/Settembre/2012 alle 14:33


Salve a tutti,
sto cercando di riparare il pc di un'amica....
il pc era in pessime condizioni, antivirus scaduto, nessun antimalware installato....alla fine non la faceva più neanche navigare in rete e per cui si è decisa a fare un pò di pulizia!
Dunque premetto che nonostante abbia fatto un'accurata scansione con avast, con superantispyware, ccleaner, wise registry e combofix....il problema di fondo....è rimasto!
Ora riesco a navigare, solo che nel momento in cui apro qualsiasi browser (mozilla firefox, internet explorer, chrome) si apre una finestra con su scritto errore applicazione 0x....... la memoria non poteva essere read/write.
ho fatto le varie scansioni anche in modalità provvisoria e ho salvato i log di hijack e di combofix.

ogfile of Trend Micro HijackThis v2.0.4
Scan saved at 14.21.36, on 29/09/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Canon\IJPLM\IJPLMSVC.EXE
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe
C:\PROGRA~1\SPEEDB~2\VideoAcceleratorEngine.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\Programmi\Canon\MyPrinter\BJMyPrt.exe
C:\Programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Programmi\AVAST Software\Avast\avastUI.exe
C:\Programmi\Software Informer\softinfo.exe
C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programmi\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\STK02H\STK02HM.exe
C:\WINDOWS\STK02N\STK02NM.exe
C:\Programmi\File comuni\Logitech\khalshared\KHALMNPR.EXE
F:\HiJackThis-2.0.4.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.searchcompletion.com/?si=10207&home=1
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2851640
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDYAPRIL&co=IT&userid=7dcdfd98-6dda-4445-9b2f-70a5bae0b920&affid=110774&searchtype=ds&babsrc=lnkry&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDYAPRIL&co=IT&userid=7dcdfd98-6dda-4445-9b2f-70a5bae0b920&affid=110774&searchtype=ds&babsrc=lnkry&q={searchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programmi\ConduitEngine\ConduitEngine.dll
O2 - BHO: Cerca Italia Toolbar - {45dd02aa-87d3-441a-9e77-068f8fa93fc8} - C:\Programmi\Cerca_Italia\tbCer2.dll
O2 - BHO: uTorrentBar_IT - {4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1} - C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programmi\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programmi\Free Download Manager\iefdm2.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmi\Ask.com\GenericAskToolbar.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Programmi\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Cerca Italia Toolbar - {45dd02aa-87d3-441a-9e77-068f8fa93fc8} - C:\Programmi\Cerca_Italia\tbCer2.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll
O3 - Toolbar: uTorrentBar_IT Toolbar - {4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1} - C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programmi\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Programmi\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [OpwareSE2] "C:\Programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [OPSE reminder] "C:\Programmi\ScanSoft\OmniPageSE2.0\EregIta\Ereg.exe" -r "C:\Programmi\ScanSoft\OmniPageSE2.0\EregIta\ereg.ini"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avast] "C:\Programmi\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Software Informer] "C:\Programmi\Software Informer\softinfo.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: STK02H 2.3 PNP Monitor.lnk = ?
O4 - Global Startup: STK02N 2.4 PNP Monitor.lnk = ?
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Programmi\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FreshDownload - {BAE1DCC0-85B8-49B4-9497-9B889CDCC284} - C:\Programmi\FreshDevices\FreshDownload\fd.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{C3BED2B5-7549-4837-9C34-6583463FBB2B}: NameServer = 213.205.36.70,213.205.32.70
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Programmi\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Programmi\AVAST Software\Avast\AvastSvc.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Programmi\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe

--
End of file - 8792 bytes


ComboFix 12-09-27.03 - Alessandro 29/09/2012 12.04.40.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1982.1210 [GMT 2:00]
Eseguito da: F:\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}


(((((((((((((((((((((((((((((((((((((   Altre eliminazioni   )))))))))))))))))))))))))))))))))))))))))))))))))))


C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\dzdtj.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\dzdtj_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\dzdtj_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\garkew.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\garkew_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\garkew_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gffvv.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gffvv_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gffvv_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gnnuud.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gnnuud_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\gnnuud_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\owgem.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\owgem_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\pxradc.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\pxradc_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\pxradc_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\tifsqddq.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\tifsqddq.exe
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\tifsqddq_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\tifsqddq_navps.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\znsfjgcv.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\znsfjgcv_nav.dat
C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\znsfjgcv_navps.dat
C:\Documents and Settings\All Users\Dati applicazioni\17751844
C:\Documents and Settings\All Users\Dati applicazioni\Seekdns
C:\Documents and Settings\All Users\Dati applicazioni\TEMP
C:\Programmi\Complitly
C:\Programmi\Complitly\chrome\ComplitlyChrome.crx
C:\Programmi\Complitly\ChromeSetSearchInBrowser.exe
C:\Programmi\Complitly\FireFoxExtension.exe
C:\Programmi\Complitly\InstTracker.exe
C:\Programmi\Complitly\support@Complitly.com\chrome.manifest
C:\Programmi\Complitly\support@Complitly.com\chrome\content\appIcon.png
C:\Programmi\Complitly\support@Complitly.com\chrome\content\browserOverlay.xul
C:\Programmi\Complitly\support@Complitly.com\chrome\content\options.js
C:\Programmi\Complitly\support@Complitly.com\chrome\content\options.xul
C:\Programmi\Complitly\support@Complitly.com\chrome\content\utils.js
C:\Programmi\Complitly\support@Complitly.com\defaults\preferences\predictad.js
C:\Programmi\Complitly\support@Complitly.com\install.rdf
C:\Programmi\Complitly\unins000.dat
C:\Programmi\Complitly\unins000.exe
C:\Programmi\Dealio Toolbar
C:\Programmi\Dealio Toolbar\Res\amazon.gif
C:\Programmi\Dealio Toolbar\Res\apple.gif
C:\Programmi\Dealio Toolbar\Res\barnes.gif
C:\Programmi\Dealio Toolbar\Res\bestbuy.gif
C:\Programmi\Dealio Toolbar\Res\dealio_logo.gif
C:\Programmi\Dealio Toolbar\Res\dealio_logo_hover.gif
C:\Programmi\Dealio Toolbar\Res\ebay.gif
C:\Programmi\Dealio Toolbar\Res\icon_settings.gif
C:\Programmi\Dealio Toolbar\Res\macys.gif
C:\Programmi\Dealio Toolbar\Res\newegg.gif
C:\Programmi\Dealio Toolbar\Res\overstock.gif
C:\Programmi\Dealio Toolbar\Res\search-button-hover.gif
C:\Programmi\Dealio Toolbar\Res\search-button.gif
C:\Programmi\Dealio Toolbar\Res\search-chevron-hover.gif
C:\Programmi\Dealio Toolbar\Res\search-chevron.gif
C:\Programmi\Dealio Toolbar\Res\search_amazon.gif
C:\Programmi\Dealio Toolbar\Res\search_dealio.gif
C:\Programmi\Dealio Toolbar\Res\search_ebay.gif
C:\Programmi\Dealio Toolbar\Res\search_yahoo.gif
C:\Programmi\Dealio Toolbar\Res\separator.gif
C:\Programmi\Dealio Toolbar\Res\target.gif
C:\Programmi\Dealio Toolbar\Res\walmart.gif
C:\Programmi\Dealio Toolbar\Res\widgets.xml
C:\Programmi\RelevantKnowledge
C:\Programmi\RelevantKnowledge\asmcf.dat
C:\Programmi\RelevantKnowledge\chrome.manifest
C:\Programmi\RelevantKnowledge\install.rdf
C:\Programmi\RelevantKnowledge\MSVCP71.DLL
C:\Programmi\RelevantKnowledge\MSVCR71.DLL
C:\Programmi\RelevantKnowledge\ncncf.dat
C:\Programmi\RelevantKnowledge\nscf.dat
C:\Programmi\RelevantKnowledge\rlcm.txt
C:\Programmi\RelevantKnowledge\rloci.bin
C:\Programmi\Seekdns
C:\Programmi\Seekdns\uninstall.exe
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\Cache\05a3a7e36361d4ca.fb
C:\WINDOWS\system32\Cache\272512937d9e61a4.fb
C:\WINDOWS\system32\Cache\287204568329e189.fb
C:\WINDOWS\system32\Cache\28bc8f716fd76a47.fb
C:\WINDOWS\system32\Cache\2c53092c95605355.fb
C:\WINDOWS\system32\Cache\31a0997e9a5b5eb3.fb
C:\WINDOWS\system32\Cache\32c84fe32bb74d60.fb
C:\WINDOWS\system32\Cache\3917078cb68ec657.fb
C:\WINDOWS\system32\Cache\3d88260c31cdfeb6.fb
C:\WINDOWS\system32\Cache\590ba23ce359fd0c.fb
C:\WINDOWS\system32\Cache\610289e025a3ee9a.fb
C:\WINDOWS\system32\Cache\651c5d3cdbfb8bd1.fb
C:\WINDOWS\system32\Cache\68481925ee17298f.fb
C:\WINDOWS\system32\Cache\6c59ac5e7e7a3ad0.fb
C:\WINDOWS\system32\Cache\6d03dad1035885d3.fb
C:\WINDOWS\system32\Cache\97032896c3aa5e8b.fb
C:\WINDOWS\system32\Cache\a8556537add6dfc5.fb
C:\WINDOWS\system32\Cache\a9ecff11407c3373.fb
C:\WINDOWS\system32\Cache\ad10a52aff5e038d.fb
C:\WINDOWS\system32\Cache\c1fa887b03019701.fb
C:\WINDOWS\system32\Cache\c4d28dca2e7648be.fb
C:\WINDOWS\system32\Cache\d201ef9910cd39de.fb
C:\WINDOWS\system32\Cache\d2e94710a5708128.fb
C:\WINDOWS\system32\Cache\d79b9dfe81484ec4.fb
C:\WINDOWS\system32\Cache\dd94476eaec0a7e5.fb
C:\WINDOWS\system32\Cache\e0de16f883bea794.fb
C:\WINDOWS\system32\Cache\f998975c9cc711ee.fb
C:\WINDOWS\system32\dllcache\dlimport.exe
C:\WINDOWS\system32\SET25.tmp
C:\WINDOWS\system32\SET294.tmp
C:\WINDOWS\system32\SET296.tmp
C:\WINDOWS\system32\SET299.tmp
C:\WINDOWS\system32\SET29A.tmp
C:\WINDOWS\system32\SET29B.tmp
C:\WINDOWS\system32\SET29D.tmp
C:\WINDOWS\system32\SET29E.tmp
C:\WINDOWS\system32\SET3C.tmp
C:\WINDOWS\system32\SET3D.tmp
C:\WINDOWS\system32\SET49.tmp
C:\WINDOWS\system32\SET4D.tmp
C:\WINDOWS\system32\SET55.tmp
C:\WINDOWS\system32\sqlite3.dll


(((((((((((((((((((((((((((((((((((((((   Driver/Servizi   )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_SEEKDNS_SERVICE


(((((((((((((((((((((((((   Files Creati Da 2012-08-28 al 2012-09-29 )))))))))))))))))))))))))))))))))))


2012-09-29 09:33:05 . 2012-09-29 09:33:16     --------     d-----w-     C:\Documents and Settings\Administrator.XXX-8EA97DCF7CA
2012-09-28 17:04:47 . 2012-09-28 19:57:52     --------     d-----w-     C:\Documents and Settings\Alessandro\Dati applicazioni\EmoticoonsToolbar
2012-09-28 17:04:43 . 2012-09-28 17:04:43     --------     d-----w-     C:\Programmi\MyPcCleaner
2012-09-28 17:04:43 . 2012-09-28 17:04:43     --------     d-----w-     C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\SoftwareUpdater
2012-09-28 17:04:22 . 2012-09-28 17:04:26     --------     d-----w-     C:\Programmi\Mozilla Maintenance Service
2012-09-28 12:50:44 . 2012-08-21 09:13:15     355632     ----a-w-     C:\WINDOWS\system32\drivers\aswSP.sys
2012-09-28 12:50:44 . 2012-08-21 09:13:13     21256     ----a-w-     C:\WINDOWS\system32\drivers\aswFsBlk.sys
2012-09-28 12:50:39 . 2012-08-21 09:13:14     35928     ----a-w-     C:\WINDOWS\system32\drivers\aswRdr.sys
2012-09-28 12:50:38 . 2012-08-21 09:13:15     54232     ----a-w-     C:\WINDOWS\system32\drivers\aswTdi.sys
2012-09-28 12:50:37 . 2012-08-21 09:13:15     729752     ----a-w-     C:\WINDOWS\system32\drivers\aswSnx.sys
2012-09-28 12:50:35 . 2012-08-21 09:13:14     97608     ----a-w-     C:\WINDOWS\system32\drivers\aswmon2.sys
2012-09-28 12:50:35 . 2012-08-21 09:13:14     89624     ----a-w-     C:\WINDOWS\system32\drivers\aswmon.sys
2012-09-28 12:50:34 . 2012-08-21 09:13:13     25256     ----a-w-     C:\WINDOWS\system32\drivers\aavmker4.sys
2012-09-28 12:49:46 . 2012-08-21 09:12:33     41224     ----a-w-     C:\WINDOWS\avastSS.scr
2012-09-28 12:49:45 . 2012-08-21 09:12:23     227648     ----a-w-     C:\WINDOWS\system32\aswBoot.exe
2012-09-28 12:49:29 . 2012-09-28 12:49:29     --------     d-----w-     C:\Programmi\AVAST Software
2012-09-28 12:49:29 . 2012-09-28 12:49:29     --------     d-----w-     C:\Documents and Settings\All Users\Dati applicazioni\AVAST Software
2012-09-28 12:48:30 . 2012-09-28 12:48:32     --------     d-----w-     C:\Programmi\CCleaner
2012-09-28 09:13:29 . 2012-09-28 09:18:54     --------     d-----w-     C:\Documents and Settings\Alessandro\Dati applicazioni\Wise Registry Cleaner
2012-09-28 09:13:03 . 2012-09-28 09:13:03     --------     d-----w-     C:\Programmi\Wise
2012-09-28 09:11:13 . 2012-09-28 09:11:13     --------     d-----w-     C:\Documents and Settings\Alessandro\Dati applicazioni\SUPERAntiSpyware.com
2012-09-28 09:10:49 . 2012-09-28 09:20:52     --------     d-----w-     C:\Programmi\SUPERAntiSpyware
2012-09-28 09:10:49 . 2012-09-28 09:10:49     --------     d-----w-     C:\Documents and Settings\All Users\Dati applicazioni\SUPERAntiSpyware.com
2012-09-28 09:07:35 . 2008-04-14 01:13:40     21504     -c--a-w-     C:\WINDOWS\system32\dllcache\hidserv.dll
2012-09-28 09:07:35 . 2008-04-14 01:13:40     21504     ----a-w-     C:\WINDOWS\system32\hidserv.dll
2012-09-28 09:07:30 . 2008-04-14 00:53:18     14720     -c--a-w-     C:\WINDOWS\system32\dllcache\kbdhid.sys
2012-09-28 09:07:30 . 2008-04-14 00:53:18     14720     ----a-w-     C:\WINDOWS\system32\drivers\kbdhid.sys
2012-09-23 22:10:37 . 2012-09-23 22:10:55     --------     d-----w-     C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\Deployment
2012-09-15 16:24:37 . 2012-09-15 16:24:37     --------     d-----w-     C:\WINDOWS\system32\wbem\Repository
.


((((((((((((((((((((((((((((((((((((((((   Find3M Report   )))))))))))))))))))))))))))))))))))))))))))))))))))

2012-09-24 18:07:41 . 2012-08-27 19:07:41     696240     ----a-w-     C:\WINDOWS\system32\FlashPlayerApp.exe
2012-09-24 18:07:41 . 2011-12-04 18:15:48     73136     ----a-w-     C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2012-08-25 19:38:52 . 2011-09-16 07:14:49     1324     ----a-w-     C:\Documents and Settings\Guest\Impostazioni locali\Dati applicazioni\d3d9caps.tmp
2012-07-04 03:48:38 . 2012-07-04 03:48:38     3861472     ----a-w-     C:\chatzum.exe
2012-09-06 01:26:03 . 2012-09-28 17:04:19     266720     ----a-w-     C:\Programmi\mozilla firefox\components\browsercomps.dll


------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.

[7] 2008-07-07 20:31:06 . A0BACAB8AC1749987550D5C7F6E8D323 . 253952 . . [2001.12.4414.320] . . C:\WINDOWS\$NtServicePackUninstall$\es.dll
[7] 2008-07-07 20:27:44 . 8360CB9756E598A5C6214EACFB3677C3 . 253952 . . [2001.12.4414.706] . . C:\WINDOWS\$hf_mig$\KB950974\SP3GDR\es.dll
[7] 2008-07-07 20:27:44 . 8360CB9756E598A5C6214EACFB3677C3 . 253952 . . [2001.12.4414.706] . . C:\WINDOWS\system32\dllcache\es.dll
[7] 2008-07-07 20:24:01 . EA518D0002F4338DB0E7D83370D61845 . 253952 . . [2001.12.4414.706] . . C:\WINDOWS\$hf_mig$\KB950974\SP3QFE\es.dll
[7] 2008-07-07 20:17:59 . F50ACDBA24EBBE21F8C0671367F36291 . 253952 . . [2001.12.4414.320] . . C:\WINDOWS\$hf_mig$\KB950974\SP2QFE\es.dll
[7] 2008-04-14 02:13:39 . FF8566499E5A781DA69342D3D76FF246 . 246272 . . [2001.12.4414.701] . . C:\WINDOWS\ServicePackFiles\i386\es.dll
[7] 2008-04-14 02:13:39 . FF8566499E5A781DA69342D3D76FF246 . 246272 . . [2001.12.4414.701] . . C:\WINDOWS\SoftwareDistribution\Download\8dab4f2c899f11c2863dff51dfb836e7\es.dll
[7] 2004-08-30 20:00:00 . 16A4DE76313DD3ABF7635565BAAF1512 . 243200 . . [2001.12.4414.258] . . C:\WINDOWS\$NtUninstallKB950974_0$\es.dll

C:\WINDOWS\System32\es.dll ... è mancante !!

(((((((((((((((((((((((((((((((((((((   Punti Reg Caricati   ))))))))))))))))))))))))))))))))))))))))))))))))))


*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-18 10:26:36     3908192     ----a-w-     C:\Programmi\ConduitEngine\ConduitEngine.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45dd02aa-87d3-441a-9e77-068f8fa93fc8}]
2010-10-18 10:26:36     3908192     ----a-w-     C:\Programmi\Cerca_Italia\tbCer2.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}]
2011-05-09 09:49:38     176936     ----a-w-     C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
2011-05-09 09:49:38     176936     ----a-w-     C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33:34     1519304     ----a-w-     C:\Programmi\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{45dd02aa-87d3-441a-9e77-068f8fa93fc8}"= "C:\Programmi\Cerca_Italia\tbCer2.dll" [2010-10-18 10:26:36 3908192]
"{872b5b88-9db5-4310-bdd0-ac189557e5f5}"= "C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll" [2011-05-09 09:49:38 176936]
"{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}"= "C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll" [2011-05-09 09:49:38 176936]

[HKEY_CLASSES_ROOT\clsid\{45dd02aa-87d3-441a-9e77-068f8fa93fc8}]

[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

[HKEY_CLASSES_ROOT\clsid\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{45DD02AA-87D3-441A-9E77-068F8FA93FC8}"= "C:\Programmi\Cerca_Italia\tbCer2.dll" [2010-10-18 10:26:36 3908192]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "C:\Programmi\Ask.com\GenericAskToolbar.dll" [2012-06-06 19:33:34 1519304]
"{872B5B88-9DB5-4310-BDD0-AC189557E5F5}"= "C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll" [2011-05-09 09:49:38 176936]
"{4AE0C3D6-F713-4EED-BC65-25DC3FFDAAC1}"= "C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll" [2011-05-09 09:49:38 176936]

[HKEY_CLASSES_ROOT\clsid\{45dd02aa-87d3-441a-9e77-068f8fa93fc8}]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CLASSES_ROOT\clsid\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]

[HKEY_CLASSES_ROOT\clsid\{4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1}]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12:09     121528     ----a-w-     C:\Programmi\AVAST Software\Avast\ashShell.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Software Informer"="C:\Programmi\Software Informer\softinfo.exe" [2009-11-25 17:50:10 2011205]
"SUPERAntiSpyware"="C:\Programmi\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-09-28 09:17:03 4780928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-11-16 21:42:52 577536]
"VTTimer"="VTTimer.exe" [2005-03-07 19:33:28 53248]
"VTTrayp"="VTtrayp.exe" [2006-03-23 08:02:32 176128]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50:42 155648]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 14:44:00 101136]
"CanonMyPrinter"="C:\Programmi\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 16:50:00 1603152]
"OpwareSE2"="C:\Programmi\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 09:00:58 49152]
"OPSE reminder"="C:\Programmi\ScanSoft\OmniPageSE2.0\EregIta\Ereg.exe" [2003-07-07 07:30:24 729088]
"Adobe Reader Speed Launcher"="C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-08-31 01:57:22 40368]
"avast"="C:\Programmi\AVAST Software\Avast\avastUI.exe" [2012-08-21 09:12:26 4282728]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 02:14:03 15360]

C:\Documents and Settings\All Users\Menu Avvio\Programmi\Esecuzione automatica\
Logitech SetPoint.lnk - C:\Programmi\Logitech\SetPoint\SetPoint.exe [2008-12-10 688128]
STK02H 2.3 PNP Monitor.lnk - C:\WINDOWS\STK02H\STK02HM.exe [2010-12-19 163840]
STK02N 2.4 PNP Monitor.lnk - C:\WINDOWS\STK02N\STK02NM.exe [2010-12-19 163840]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Programmi\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 00:02:18 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^Alessandro^Menu Avvio^Programmi^Esecuzione automatica^ZooskMessenger.lnk]
path=C:\Documents and Settings\Alessandro\Menu Avvio\Programmi\Esecuzione automatica\ZooskMessenger.lnk
backup=C:\WINDOWS\pss\ZooskMessenger.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-03-29 19:59:06     937920     ----a-r-     C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
2012-06-06 19:33:42     1564872     ----a-w-     C:\Programmi\Ask.com\Updater\Updater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2007-05-14 16:01:00     644696     ----a-w-     C:\Programmi\Canon\SolutionMenu\CNSLMAIN.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 02:14:13     1695232     ----a-w-     C:\Programmi\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
2005-04-08 17:43:22     1953792     -c----w-     C:\Programmi\Ahead\Nero BackItUp\NBJ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 15:38:18     421888     ----a-w-     C:\Programmi\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedBitVideoAccelerator]
2010-04-03 19:16:56     1611368     ----a-w-     C:\Programmi\SpeedBit Video Accelerator\VideoAccelerator.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2012-09-17 16:47:57     896912     ----a-w-     C:\Documents and Settings\Alessandro\Desktop\uTorrent-3.2.27886.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\wlcsdk.exe"=
"C:\\Programmi\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Programmi\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Programmi\\DsNET Corp\\aTube Catcher 2.0\\yct.exe"=
"C:\\Downloads\\Software\\utorrent.exe"=
"C:\\Programmi\\Free Download Manager\\fdm.exe"=
"C:\\Documents and Settings\\Alessandro\\Desktop\\uTorrent-3.2.27886.exe"=

R1 aswSnx;aswSnx;C:\WINDOWS\system32\drivers\aswSnx.sys [28/09/2012 14.50.37 729752]
R1 aswSP;aswSP;C:\WINDOWS\system32\drivers\aswSP.sys [28/09/2012 14.50.44 355632]
R1 SASDIFSV;SASDIFSV;C:\Programmi\SUPERAntiSpyware\sasdifsv.sys [22/07/2011 18.27.02 12880]
R1 SASKUTIL;SASKUTIL;C:\Programmi\SUPERAntiSpyware\SASKUTIL.SYS [12/07/2011 23.55.22 67664]
R2 !SASCORE;SAS Core Service;C:\Programmi\SUPERAntiSpyware\SASCORE.EXE [12/08/2011 1.38.07 116608]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\drivers\aswFsBlk.sys [28/09/2012 14.50.44 21256]
R2 VideoAcceleratorService;VideoAcceleratorService;C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe -start -scm --> C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe -start -scm [?]
R3 ZD1211BU(Atheros);Atheros ZD1211B IEEE 802.11 Wireless LAN Driver (USB)(Atheros);C:\WINDOWS\system32\drivers\ZD1211BU.sys [18/06/2010 10.14.24 735232]
S2 klvxknk;System Image;C:\WINDOWS\system32\svchost.exe -k netsvcs [30/08/2004 22.00.00 14336]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [27/08/2012 21.07.41 250288]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe [28/09/2012 19.04.22 114144]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
klvxknk

Contenuto della cartella 'Scheduled Tasks'

2012-09-29 C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-27 19:07:41 . 2012-09-24 18:07:42]

2012-09-28 C:\WINDOWS\Tasks\avast! Emergency Update.job
- C:\Programmi\AVAST Software\Avast\AvastEmUpdate.exe [2012-09-28 12:49:42 . 2012-08-21 09:12:25]

2012-09-29 C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
- C:\Programmi\Ask.com\UpdateTask.exe [2012-06-06 19:33:38 . 2012-06-06 19:33:38]

2012-09-29 C:\WINDOWS\Tasks\User_Feed_Synchronization-{D507A040-6DBD-4D22-B09B-A1E9D238E6DC}.job
- C:\WINDOWS\system32\msfeedssync.exe [2009-03-08 03:31:54 . 2009-03-08 03:31:54]


------- Scansione supplementare -------

uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2851640
uSearchMigratedDefaultUrl = hxxp://www.mywebsearch.com/jsp/cfg_redir2.jsp?id=ZUxdm569YYIT&fl=0&ptb=_3ubzFxDj6.ZUqiYG.U8Bw&url=http://search.mywebsearch.com/mywebsearch/dft_redir.jhtml&st=sb&searchfor={searchTerms}&si=10111
uDefault_Search_URL = hxxp://search.searchcompletion.com/?si=10207&home=1
mStart Page = hxxp://search.chatzum.com/
uSearchAssistant = hxxp://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDYAPRIL&co=IT&userid=7dcdfd98-6dda-4445-9b2f-70a5bae0b920&affid=110774&searchtype=ds&babsrc=lnkry&q={searchTerms}
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&sporta in Microsoft Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm
IE: Scarica i video con Free Download Manager - file://C:\Programmi\Free Download Manager\dlfvideo.htm
IE: Scarica selezionati con Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm
IE: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm
IE: {{BAE1DCC0-85B8-49B4-9497-9B889CDCC284} - C:\Programmi\FreshDevices\FreshDownload\fd.exe
LSP: C:\PROGRA~1\SPEEDB~2\sblsp.dll
TCP: DhcpNameServer = 78.46.86.74 212.117.175.185
TCP: Interfaces\{C3BED2B5-7549-4837-9C34-6583463FBB2B}: NameServer = 213.205.36.70,213.205.32.70
FF - ProfilePath - C:\Documents and Settings\Alessandro\Dati applicazioni\Mozilla\Firefox\Profiles\sq8pbzeh.default\

- - - - CHIAVI ORFANE RIMOSSE - - - -

WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
MSConfigStartUp-Google Update - C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe
MSConfigStartUp-tifsqddq - c:\documents and settings\alessandro\impostazioni locali\dati applicazioni\tifsqddq.exe
AddRemove-Complitly_is1 - C:\Programmi\Complitly\unins000.exe
AddRemove-tifsqddq - c:\documents and settings\alessandro\impostazioni locali\dati applicazioni\tifsqddq.exe

Potreste, gentilmente, darmi una mano?
Grazie in anticipo!


Dexter
Esperto Esperto
Dexter
Esperto Esperto
Dexter
Esperto
Esperto

Avatar


Iscritto dal : 04/Luglio/2005
Da: Italy
Status: Offline
Posts: 2.303
Riporta il testo di: Dexter Rispondibullet Topic: Post n° 100.734 - Postato: 29/Settembre/2012 alle 16:35


Ciao bulmix, io al posto tuo avrei formattato per il semplice motivo che ci saranno diversi file danneggiati e ripristinarli è un lavoraccio, comunque se vuoi tentare :P ti invito a controllare dal Pannello di controllo/Installazioni Applicazioni ed eventualmente procedere alla disinstallazione di tutte le Toolbar (che difficilmente vengono usate e si installano da "sole"), poi togli pure Speedbit (un download accelerator che serve a poco secondo me).
Poi scarica e aggiorna Malwarebytes e fagli fare una scansione completa.

Da fixxare (prima però fai quello che ti ho detto prima, molte di queste voci dovrebbero sparire facendo ciò che ti ho scritto):

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.searchcompletion.com/?si=10207&home=1
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2851640
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDYAPRIL&co=IT&userid=7dcdfd98-6dda-4445-9b2f-70a5bae0b920&affid=110774&searchtype=ds&babsrc=lnkry&q={searchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDYAPRIL&co=IT&userid=7dcdfd98-6dda-4445-9b2f-70a5bae0b920&affid=110774&searchtype=ds&babsrc=lnkry&q={searchTerms}
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programmi\ConduitEngine\ConduitEngine.dll
O2 - BHO: Cerca Italia Toolbar - {45dd02aa-87d3-441a-9e77-068f8fa93fc8} - C:\Programmi\Cerca_Italia\tbCer2.dll
O2 - BHO: uTorrentBar_IT - {4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1} - C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Programmi\Free Download Manager\iefdm2.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Programmi\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Cerca Italia Toolbar - {45dd02aa-87d3-441a-9e77-068f8fa93fc8} - C:\Programmi\Cerca_Italia\tbCer2.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Programmi\DVDVideoSoftTB\prxtbDVD0.dll
O3 - Toolbar: uTorrentBar_IT Toolbar - {4ae0c3d6-f713-4eed-bc65-25dc3ffdaac1} - C:\Programmi\uTorrentBar_IT\prxtbuTo1.dll
O4 - HKCU\..\Run: [Software Informer] "C:\Programmi\Software Informer\softinfo.exe" -autorun
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Alessandro\Impostazioni locali\Dati applicazioni\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: Scarica con Free Download Manager - file://C:\Programmi\Free Download Manager\dllink.htm
O8 - Extra context menu item: Scarica i video con Free Download Manager - file://C:\Programmi\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Scarica selezionati con Free Download Manager - file://C:\Programmi\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Scarica tutto con Free Download Manager - file://C:\Programmi\Free Download Manager\dlall.htm
O9 - Extra button: FreshDownload - {BAE1DCC0-85B8-49B4-9497-9B889CDCC284} - C:\Programmi\FreshDevices\FreshDownload\fd.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O10 - Unknown file in Winsock LSP: c:\progra~1\speedb~2\sblsp.dll
O23 - Service: VideoAcceleratorService - Speedbit Ltd. - C:\PROGRA~1\SPEEDB~2\VideoAcceleratorService.exe

Poi il messaggio te lo dà con qualsiasi applicazione tu apra o solo i browser???


bulmix
Senior Senior
bulmix
Senior Senior
bulmix
Senior
Senior

Avatar


Iscritto dal : 09/Giugno/2005
Status: Offline
Posts: 459
Riporta il testo di: bulmix Rispondibullet Topic: Post n° 100.760 - Postato: 29/Settembre/2012 alle 22:40


Ho disinstallato tutte le toolbar, fatto scansione con Malwarebytes ma il problema non è stato risolto.
All'apertura dei browers, ma anche con qualche altro programma, visualizzazione delle foto, compare errore svchost.exe.
Che faccio?


RAVEN
Moderatore Moderatore
RAVEN
Moderatore Moderatore
RAVEN
Moderatore
Moderatore

Avatar


Iscritto dal : 04/Settembre/2001
Da: Italy
Status: Offline
Posts: 16.234
Riporta il testo di: RAVEN Rispondibullet Topic: Post n° 100.761 - Postato: 30/Settembre/2012 alle 09:43


Prova cosi.

Inserisci il CD di Windows XP nel lettore, quindi vai su start-->esegui e digita il comando seguente:

sfc /scannow

e premi invio (rispetta gli spazi nel comando)

Parte un controllo per la verifica dell'integrità/presenza delle librerie del sistema operativo...se manca qualcosa o è danneggiata il comando ripristina tutto in automatico....



Stefano Ravagni - 'tanto prima o poi ti buco!'...disse il baco alla noce

SOSTIENICI





Rispondi con Editor completo Nuova Discussione

Versione stampabile Versione stampabile


TI E' PIACIUTO QUESTO CONTENUTO ?
Suggerisci questa pagina
Suggerisci questa pagina
Supporta il nostro lavoro
Supporta il nostro lavoro
<b>Non perderti nessuno dei nostri contenuti!</b><br><br>Iscriviti alle Newsletters di aggiornamento periodico.
Iscriviti ora alla newsletter!


Vai al Forum
Non puoi postare nuovi topic in questo forum
Non puoi rispondere ai topic in questo forum
Non puoi cancellare i tuoi post in questo forum
Non puoi modificare i tuoi post in questo forum
Non puoi creare sondaggi in questo forum
Non puoi votare i sondaggi in questo forum

Bulletin Board Software by Web Wiz Forums version PcPrimiPassi
Copyright ©2001-2006 Web Wiz Guide

Questa pagina è stata generata in 0,055 secondi.

Sostienici

Versione 5.7 Sviluppata da Stefano Ravagni