Risultati da 1 a 11 di 11
  1. #1
    L'avatar di vivapiero
    Specifiche del sistema

    Data Registrazione
    20-10-12
    Messaggi
    8
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito pagine pubblicità che si aprono da solo (su chrome e IE9)

    Salve,
    mio papà dev'essersi cucato qualche bestiaccia sul PC (Windows7).
    Quando naviga con IE9 e Chrome si aprono pagine di pubblicità in automatico.
    - in precedenza ho fatto una scansione con il suo Kaspersky (2012) da modalità provvisoria ma non ha rilevato niente.
    - ho aggiunto delle liste di monitoraggio su IE9
    - ho aggiornato con Windos Update
    Niente da fare, stesso problema!
    Poi ho visto su questo forum che siete in grado di aiutarci a risolvere il problema.
    Ho scaricato:
    - combofix (posizionato sul desktop)
    - adwcleaner (idem)
    - hijackthis (idem)
    Come devo procedere?
    Quali log devo produrre ed inviare?


    Grazie
    Roberto

  2.  
    Stanco della Pubblicità? Registrati

  3. #2
    L'avatar di tecnico24
    Specifiche del sistema

    Data Registrazione
    26-05-07
    Messaggi
    9,432
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Allega il rapporto di combofix e adwcleaner.

  4. #3
    L'avatar di vivapiero
    Specifiche del sistema

    Data Registrazione
    20-10-12
    Messaggi
    8
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Ciao,
    non capisco come aggiungere allegati (vedo link-URL, immagini e video).
    ComboFix non produce alcun output dopo la scansione (non si apre la finestra con sfondo blu)
    L'Output di adw (ho fatto solo la ricerca) è il seguente:

    # AdwCleaner v2.005 - Logfile creato il 22/10/2012 alle 18:48:59
    # Aggiornamento 14/10/2012 by Xplode
    # Sistema Operativo : Windows 7 Professional (64 bits)
    # Utente : Proprietario - PROPRIETARIO-PC
    # Modalità Avvio : Modalità Normale
    # Eseguito da : C:\Users\Proprietario\Desktop\adwcleaner.exe
    # Opzioni [Cerca]

    ***** [Servizi] *****
    Trovato : IBUpdaterService
    ***** [File / Cartelle] *****
    Cartella Trovato : C:\ProgramData\Babylon
    Cartella Trovato : C:\ProgramData\boost_interprocess
    Cartella Trovato : C:\ProgramData\Tarma Installer
    Cartella Trovato : C:\Users\Proprietario\AppData\Local\Google\Chrome\ User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhh ajpdfd
    Cartella Trovato : C:\Users\Proprietario\AppData\Local\lollipop
    Cartella Trovato : C:\Users\Proprietario\AppData\LocalLow\BabylonTool bar
    Cartella Trovato : C:\Users\Proprietario\AppData\Roaming\Babylon
    File Trovato : C:\user.js
    ***** [Registro] *****
    Chiave Trovata : HKCU\Software\AppDataLow\Software\Crossrider
    Chiave Trovata : HKCU\Software\bProtector
    Chiave Trovata : HKCU\Software\DataMngr
    Chiave Trovata : HKCU\Software\IM
    Chiave Trovata : HKCU\Software\ImInstaller
    Chiave Trovata : HKCU\Software\lollipop
    Chiave Trovata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \bProtectSettings
    Chiave Trovata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Stats\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Trovata : HKCU\Software\Softonic
    Chiave Trovata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Trovata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
    Chiave Trovata : HKLM\Software\Babylon
    Chiave Trovata : HKLM\Software\bProtector
    Chiave Trovata : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
    Chiave Trovata : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
    Chiave Trovata : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Chiave Trovata : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
    Chiave Trovata : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObj ect
    Chiave Trovata : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObj ect.1
    Chiave Trovata : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
    Chiave Trovata : HKLM\Software\DataMngr
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_ RASAPI32
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_ RASMANCS
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext \PreApproved\{11111111-1111-1111-1111-110011501160}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A3686 7C6-302D-49FC-9D8E-1EB037B5F1AB}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions \dlnembnfbcpjnepmfjmngjenhhajpdfd
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curren tVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Trovata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curren tVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
    Chiave Trovata : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Trovata : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
    Chiave Trovata : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcp jnepmfjmngjenhhajpdfd
    Chiave Trovata : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcp jnepmfjmngjenhhajpdfd
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Trovata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
    Chiave Trovata : HKLM\SOFTWARE\Tarma Installer
    Chiave Trovata : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Trovata : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Trovata : HKU\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Trovata : HKU\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
    Valore Trovata : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
    Valore Trovata : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
    Valore Trovata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
    ***** [Browser Internet] *****
    -\\ Internet Explorer v9.0.8112.16421
    [OK] Registro Pulito.
    -\\ Google Chrome v [Impossibile rilevare la versione]
    File : C:\Users\Proprietario\AppData\Local\Google\Chrome\ User Data\Default\Preferences
    [OK] File Pulito.
    *************************
    AdwCleaner[R1].txt - [5528 octets] - [22/10/2012 18:48:59]
    ########## EOF - C:\AdwCleaner[R1].txt - [5588 octets] ##########

  5. #4
    L'avatar di tecnico24
    Specifiche del sistema

    Data Registrazione
    26-05-07
    Messaggi
    9,432
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Avvia Adwcleaner e clicca su Elimina.
    Il pc si riavvierà , al ritorno posta il log.
    Per Combofix , tasto destro-> esegui come amministratore.

  6. #5
    L'avatar di vivapiero
    Specifiche del sistema

    Data Registrazione
    20-10-12
    Messaggi
    8
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Grazie tecnico42,
    Tex ti si addice :-)

    Allora ho fatto come mi hai detto, ti invio in cascata i due log perchè non ho ancora capito come allegare (porta pazienza).

    # AdwCleaner v2.005 - Logfile creato il 22/10/2012 alle 20:56:03
    # Aggiornamento 14/10/2012 by Xplode
    # Sistema Operativo : Windows 7 Professional (64 bits)
    # Utente : Proprietario - PROPRIETARIO-PC
    # Modalità Avvio : Modalità Normale
    # Eseguito da : C:\Users\Proprietario\Desktop\adwcleaner.exe
    # Opzioni [Elimina]

    ***** [Servizi] *****
    Fermato & Eliminato : IBUpdaterService
    ***** [File / Cartelle] *****
    Cartella Eliminato : C:\ProgramData\Babylon
    Cartella Eliminato : C:\ProgramData\boost_interprocess
    Cartella Eliminato : C:\ProgramData\Tarma Installer
    Cartella Eliminato : C:\Users\Proprietario\AppData\Local\Google\Chrome\ User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhh ajpdfd
    Cartella Eliminato : C:\Users\Proprietario\AppData\Local\lollipop
    Cartella Eliminato : C:\Users\Proprietario\AppData\LocalLow\BabylonTool bar
    Cartella Eliminato : C:\Users\Proprietario\AppData\Roaming\Babylon
    File Eliminato : C:\user.js
    ***** [Registro] *****
    Chiave Eliminata : HKCU\Software\AppDataLow\Software\Crossrider
    Chiave Eliminata : HKCU\Software\bProtector
    Chiave Eliminata : HKCU\Software\DataMngr
    Chiave Eliminata : HKCU\Software\IM
    Chiave Eliminata : HKCU\Software\ImInstaller
    Chiave Eliminata : HKCU\Software\lollipop
    Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \bProtectSettings
    Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext \Stats\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Eliminata : HKCU\Software\Softonic
    Chiave Eliminata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Eliminata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
    Chiave Eliminata : HKLM\Software\Babylon
    Chiave Eliminata : HKLM\Software\bProtector
    Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
    Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
    Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
    Chiave Eliminata : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObj ect
    Chiave Eliminata : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObj ect.1
    Chiave Eliminata : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
    Chiave Eliminata : HKLM\Software\DataMngr
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_ RASAPI32
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_ RASMANCS
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext \PreApproved\{11111111-1111-1111-1111-110011501160}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A3686 7C6-302D-49FC-9D8E-1EB037B5F1AB}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions \dlnembnfbcpjnepmfjmngjenhhajpdfd
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011501160}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curren tVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Curren tVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
    Chiave Eliminata : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Eliminata : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
    Chiave Eliminata : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcp jnepmfjmngjenhhajpdfd
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
    Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uni nstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
    Chiave Eliminata : HKLM\SOFTWARE\Tarma Installer
    Chiave Eliminata : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Eliminata : HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Chiave Eliminata : HKU\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Valore Eliminata : HKCU\Software\Mozilla\Firefox\Extensions [{b64982b1-d112-42b5-b1e4-d3867c4533f8}]
    Valore Eliminata : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
    Valore Eliminata : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
    ***** [Browser Internet] *****
    -\\ Internet Explorer v9.0.8112.16421
    [OK] Registro Pulito.
    -\\ Google Chrome v [Impossibile rilevare la versione]
    File : C:\Users\Proprietario\AppData\Local\Google\Chrome\ User Data\Default\Preferences
    [OK] File Pulito.
    *************************
    AdwCleaner[R1].txt - [5637 octets] - [22/10/2012 18:48:59]
    AdwCleaner[S1].txt - [5459 octets] - [22/10/2012 20:56:03]
    ########## EOF - C:\AdwCleaner[S1].txt - [5519 octets] ##########


    ComboFix 12-10-22.02 - Proprietario 22/10/2012 21:15:16.1.4 - x64
    Microsoft Windows 7 Professional 6.1.7600.0.1252.39.1040.18.4086.2746 [GMT 2:00]
    Eseguito da: c:\users\Proprietario\Desktop\ComboFix.exe
    AV: Kaspersky Anti-Virus *Disabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
    SP: Kaspersky Anti-Virus *Disabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Creato nuovo punto di ripristino
    .
    .
    ((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))) )
    .
    .
    C:\Install.exe
    .
    .
    ((((((((((((((((((((((((( Files Creati Da 2012-09-22 al 2012-10-22 )))))))))))))))))))))))))))))))))))
    .
    .
    2012-10-22 19:21 . 2012-10-22 19:21 -------- d-----w- c:\users\Default\AppData\Local\temp
    2012-10-19 07:13 . 2012-10-12 07:19 9291768 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F26F305A-C09A-4AD1-976C-18E551CE311F}\mpengine.dll
    2012-10-18 18:00 . 2012-10-18 18:00 -------- d-----w- c:\users\Proprietario\AppData\Local\ElevatedDiagno stics
    2012-10-18 13:28 . 2012-10-18 13:28 -------- d-----w- c:\users\Proprietario\AppData\Local\Mozilla
    2012-10-14 17:40 . 2012-10-14 18:46 -------- d-----w- c:\windows\SysWow64\WNLT
    2012-10-14 17:40 . 2012-10-14 17:40 -------- d-----w- c:\windows\system32\ARFC
    2012-10-14 17:40 . 2012-10-02 15:20 1261936 ----a-w- c:\windows\system32\dmwu.exe
    2012-10-14 17:40 . 2012-10-02 15:19 35328 ----a-w- c:\windows\system32\ImHttpComm.dll
    2012-10-14 17:40 . 2011-06-10 23:15 829264 ----a-w- c:\windows\system32\msvcr100.dll
    2012-10-14 17:40 . 2011-06-10 23:15 608080 ----a-w- c:\windows\system32\msvcp100.dll
    2012-10-14 17:40 . 2012-10-14 17:40 -------- d-----w- c:\program files\IB Updater
    2012-10-12 15:54 . 2012-10-12 15:54 -------- d-----w- c:\users\Proprietario\AppData\Local\Apps
    2012-10-12 15:54 . 2012-10-18 12:45 -------- d-----w- c:\users\Proprietario\AppData\Local\Deployment
    2012-10-10 09:12 . 2012-08-31 18:02 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
    2012-10-10 09:10 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
    2012-10-10 09:10 . 2012-08-24 17:10 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
    2012-10-10 09:09 . 2012-09-14 19:23 2048 ----a-w- c:\windows\system32\tzres.dll
    2012-10-10 09:09 . 2012-09-14 18:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
    2012-10-10 09:09 . 2012-08-11 00:53 714752 ----a-w- c:\windows\system32\kerberos.dll
    2012-10-10 09:09 . 2012-08-10 23:54 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
    2012-10-10 09:09 . 2012-06-02 05:25 182272 ----a-w- c:\windows\system32\cryptsvc.dll
    2012-10-10 09:09 . 2012-06-02 05:25 1462784 ----a-w- c:\windows\system32\crypt32.dll
    2012-10-10 09:09 . 2012-06-02 05:25 140288 ----a-w- c:\windows\system32\cryptnet.dll
    2012-10-10 09:09 . 2012-06-02 04:45 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
    2012-10-10 09:09 . 2012-06-02 04:45 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
    2012-10-10 09:09 . 2012-06-02 04:45 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) )
    .
    2012-10-22 19:21 . 2012-10-22 19:21 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F26F305A-C09A-4AD1-976C-18E551CE311F}\offreg.dll
    2012-10-10 09:33 . 2012-04-18 11:40 65309168 ----a-w- c:\windows\system32\MRT.exe
    2012-10-09 09:11 . 2012-04-18 16:02 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-10-09 09:11 . 2012-04-18 16:02 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-08-24 11:15 . 2012-09-22 09:02 17810944 ----a-w- c:\windows\system32\mshtml.dll
    2012-08-24 10:39 . 2012-09-22 09:02 10925568 ----a-w- c:\windows\system32\ieframe.dll
    2012-08-24 10:31 . 2012-09-22 09:02 2312704 ----a-w- c:\windows\system32\jscript9.dll
    2012-08-24 10:22 . 2012-09-22 09:02 1346048 ----a-w- c:\windows\system32\urlmon.dll
    2012-08-24 10:21 . 2012-09-22 09:02 1392128 ----a-w- c:\windows\system32\wininet.dll
    2012-08-24 10:20 . 2012-09-22 09:02 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
    2012-08-24 10:18 . 2012-09-22 09:02 237056 ----a-w- c:\windows\system32\url.dll
    2012-08-24 10:17 . 2012-09-22 09:02 85504 ----a-w- c:\windows\system32\jsproxy.dll
    2012-08-24 10:14 . 2012-09-22 09:02 173056 ----a-w- c:\windows\system32\ieUnatt.exe
    2012-08-24 10:14 . 2012-09-22 09:02 816640 ----a-w- c:\windows\system32\jscript.dll
    2012-08-24 10:13 . 2012-09-22 09:02 599040 ----a-w- c:\windows\system32\vbscript.dll
    2012-08-24 10:12 . 2012-09-22 09:02 2144768 ----a-w- c:\windows\system32\iertutil.dll
    2012-08-24 10:11 . 2012-09-22 09:02 729088 ----a-w- c:\windows\system32\msfeeds.dll
    2012-08-24 10:10 . 2012-09-22 09:03 96768 ----a-w- c:\windows\system32\mshtmled.dll
    2012-08-24 10:09 . 2012-09-22 09:03 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-08-24 10:04 . 2012-09-22 09:02 248320 ----a-w- c:\windows\system32\ieui.dll
    2012-08-24 06:59 . 2012-09-22 09:02 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
    2012-08-24 06:51 . 2012-09-22 09:02 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
    2012-08-24 06:51 . 2012-09-22 09:02 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
    2012-08-24 06:47 . 2012-09-22 09:02 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
    2012-08-24 06:47 . 2012-09-22 09:03 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
    2012-08-24 06:43 . 2012-09-22 09:03 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-08-21 19:53 . 2012-08-21 19:53 3993600 ----a-w- c:\program files (x86)\GUT4441.tmp
    2012-08-18 11:19 . 2012-10-10 09:11 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2012-08-02 17:55 . 2012-09-12 09:33 574464 ----a-w- c:\windows\system32\d3d10level9.dll
    2012-08-02 17:05 . 2012-09-12 09:33 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* i valori vuoti & legittimi/default non sono visualizzati.
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
    "ChromeFrameHelper"="c:\users\Proprietario\AppData \Local\Google\Chrome\Application\22.0.1229.94\chro me_frame_helper.exe" [2012-10-10 81432]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\ Windows\CurrentVersion\Run]
    "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
    "AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\ windows nt\currentversion\windows]
    "LoadAppInit_DLLs"=1 (0x1)
    "AppInit_DLLs"=c:\progra~3\VIDEOP~1\22580~1.185\{1 6CDF~1\videomngr.dll
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
    "DisableMonitoring"=dword:00000001
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Servizio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 116648]
    R2 ServUpdater;Serv Updater;c:\users\Proprietario\AppData\Local\ServUp dater\ServiceUpd.exe [2011-12-16 156160]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
    R2 SoftwareUpd;Software Upd;c:\users\Proprietario\AppData\Local\SoftwareUp dater\SoftwareUpdService.exe [2012-04-23 161280]
    R2 Video Performer Manager;Video Performer Manager;c:\programdata\Video Performer Manager\2.2.580.185\{16cdff19-861d-48e3-a751-d99a27784753}\videomngr.exe [2012-08-21 1695776]
    R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPl ayerUpdateService.exe [2012-10-09 250808]
    R3 gupdatem;Servizio Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 116648]
    R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.e xe [2012-04-18 1255736]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
    S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
    S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
    S2 IB Updater Updater;IB Updater Updater;c:\program files\IB Updater\ExtensionUpdaterService.exe [2012-10-03 188760]
    S2 InstallBrainService;InstallBrain Updater Service;c:\programdata\InstallBrainService\ibsvc.e xe [2012-08-21 616448]
    S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-06-22 273072]
    S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
    S3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
    S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
    S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
    .
    .
    Contenuto della cartella 'Scheduled Tasks'
    .
    2012-10-22 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe [2012-04-18 09:11]
    .
    2012-10-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2076213359-179557179-2161459143-1000Core.job
    - c:\users\Proprietario\AppData\Local\Google\Update\ GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2076213359-179557179-2161459143-1000UA.job
    - c:\users\Proprietario\AppData\Local\Google\Update\ GoogleUpdate.exe [2012-10-18 12:41]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
    "CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]
    "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2008-03-17 2114376]
    .
    ------- Scansione supplementare -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.it/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: E&sporta in Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 85.37.17.44 85.38.28.90
    TCP: Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: NameServer = 176.31.229.24,176.31.229.25
    TCP: Interfaces\{A1DCFA95-FE18-4ED6-B748-5C47D8B75495}: NameServer = 176.31.229.24,176.31.229.25
    .
    - - - - CHIAVI ORFANE RIMOSSE - - - -
    .
    Wow6432Node-HKCU-Run-qdwhsn - c:\users\proprietario\appdata\local\lollipop\qdwhs n.exe
    AddRemove-qdwhsn - c:\users\proprietario\appdata\local\lollipop\lolli pop.bat
    .
    .
    .
    --------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
    .
    [HKEY_USERS\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.eml\UserChoice] @DenieD: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.Email.1"
    .
    [HKEY_USERS\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.vcf\UserChoice] @DenieD: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.VCard.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macrome d\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUt il64_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macrome d\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUt il32_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @DenieD: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @DenieD: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PC W\Security] @DenieD: (Full) (Everyone)
    .
    Ora fine scansione: 2012-10-22 21:23:28
    ComboFix-quarantined-files.txt 2012-10-22 19:23
    .
    Pre-Run: 454.674.124.800 byte disponibili
    Post-Run: 456.396.218.368 byte disponibili
    .
    - - End Of File - - 4E70508331D342688FA64E056ED58CBB

    - - - Updated - - -

    Beh tecnico24,
    io torno a casa dai miei pargoli.
    Domani pomeriggio vengo qui da mio papà (verso le 16) e avrò più tempo per seguire le tue istruzioni.
    Intanto grazie per tutto l'aiuto.
    Roberto

  7. #6
    L'avatar di tecnico24
    Specifiche del sistema

    Data Registrazione
    26-05-07
    Messaggi
    9,432
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Scarica Hijackthis
    IlSoftware.it - HijackThis 2.0.4
    sul desktop.
    Tasto destro su di esso->esegui come amministratore.
    dal main menu clicca su Do a system scan only
    Seleziona a sinistra le righe 017 aventi questi indirizzi DNS
    176.31.229.24,176.31.229.25
    clicca in basso su fix checked.

    Scarica il file CFScript.txt qui in basso sul desktop
    trascinalo con il tasto sinistro del mouse sull'icona di combofix rossa sul desktop
    attendi le operazioni e il riavvio , al ritorno posta il log.

    File Allegati File Allegati

  8. #7
    L'avatar di vivapiero
    Specifiche del sistema

    Data Registrazione
    20-10-12
    Messaggi
    8
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Non riesco più a rispondere ..

    - - - Updated - - -

    Va beh, ci riprovo ..
    con HijackThis ho eseguito le istruzioni, finito il fix checked l'ho chiuso senza fare altre azioni.
    Con il ComboFix ho fatto quello che hai detto ma prima ne ho impostato le proprietà in modo sia sempre eseguito come amministratore (tasto dx>compatibilità>esegui sempre come amministratore). A seguire il report.
    Aggiungo che dopo AdwCleaner le pagine di pubblicità sono scomparse.
    Ringrazio anticipatamente ma attendo tue ulteriori indicazioni anche per il futuro.

    ComboFix 12-10-22.02 - Proprietario 23/10/2012 16:56:17.2.4 - x64
    Microsoft Windows 7 Professional 6.1.7600.0.1252.39.1040.18.4086.2624 [GMT 2:00]
    Eseguito da: c:\users\Proprietario\Desktop\ComboFix.exe
    Opzioni usate :: c:\users\Proprietario\Desktop\CFScript.txt
    AV: Kaspersky Anti-Virus *Enabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}
    SP: Kaspersky Anti-Virus *Enabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))) )
    .
    .
    c:\users\Proprietario\AppData\Local\ServUpdater
    c:\users\Proprietario\AppData\Local\ServUpdater\7z .dll
    c:\users\Proprietario\AppData\Local\ServUpdater\Ap pLib.Zip.dll
    c:\users\Proprietario\AppData\Local\ServUpdater\Se rviceUpd.exe
    c:\users\Proprietario\AppData\Local\ServUpdater\Se rviceUpd.InstallLog
    c:\users\Proprietario\AppData\Local\ServUpdater\Se rviceUpd.InstallState
    c:\users\Proprietario\AppData\Local\ServUpdater\se ttings.ini
    c:\users\Proprietario\AppData\Local\ServUpdater\se ttings\settings.ini
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r\settings.ini
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r\settings\settings.ini
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r\SoftwareUpdService.exe
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r\SoftwareUpdService.InstallLog
    c:\users\Proprietario\AppData\Local\SoftwareUpdate r\SoftwareUpdService.InstallState
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Driver/Servizi )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    -------\Service_ServUpdater
    -------\Service_SoftwareUpd
    .
    .
    ((((((((((((((((((((((((( Files Creati Da 2012-09-23 al 2012-10-23 )))))))))))))))))))))))))))))))))))
    .
    .
    2012-10-23 15:01 . 2012-10-23 15:01 -------- d-----w- c:\users\Default\AppData\Local\temp
    2012-10-18 18:00 . 2012-10-18 18:00 -------- d-----w- c:\users\Proprietario\AppData\Local\ElevatedDiagno stics
    2012-10-18 13:28 . 2012-10-18 13:28 -------- d-----w- c:\users\Proprietario\AppData\Local\Mozilla
    2012-10-14 17:40 . 2012-10-14 18:46 -------- d-----w- c:\windows\SysWow64\WNLT
    2012-10-14 17:40 . 2012-10-14 17:40 -------- d-----w- c:\windows\system32\ARFC
    2012-10-14 17:40 . 2012-10-02 15:20 1261936 ----a-w- c:\windows\system32\dmwu.exe
    2012-10-14 17:40 . 2012-10-02 15:19 35328 ----a-w- c:\windows\system32\ImHttpComm.dll
    2012-10-14 17:40 . 2011-06-10 23:15 829264 ----a-w- c:\windows\system32\msvcr100.dll
    2012-10-14 17:40 . 2011-06-10 23:15 608080 ----a-w- c:\windows\system32\msvcp100.dll
    2012-10-14 17:40 . 2012-10-14 17:40 -------- d-----w- c:\program files\IB Updater
    2012-10-12 15:54 . 2012-10-12 15:54 -------- d-----w- c:\users\Proprietario\AppData\Local\Apps
    2012-10-12 15:54 . 2012-10-18 12:45 -------- d-----w- c:\users\Proprietario\AppData\Local\Deployment
    2012-10-10 09:12 . 2012-08-31 18:02 1656688 ----a-w- c:\windows\system32\drivers\ntfs.sys
    2012-10-10 09:10 . 2012-08-24 18:05 220160 ----a-w- c:\windows\system32\wintrust.dll
    2012-10-10 09:10 . 2012-08-24 17:10 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
    2012-10-10 09:09 . 2012-09-14 19:23 2048 ----a-w- c:\windows\system32\tzres.dll
    2012-10-10 09:09 . 2012-09-14 18:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
    2012-10-10 09:09 . 2012-08-11 00:53 714752 ----a-w- c:\windows\system32\kerberos.dll
    2012-10-10 09:09 . 2012-08-10 23:54 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
    2012-10-10 09:09 . 2012-06-02 05:25 182272 ----a-w- c:\windows\system32\cryptsvc.dll
    2012-10-10 09:09 . 2012-06-02 05:25 1462784 ----a-w- c:\windows\system32\crypt32.dll
    2012-10-10 09:09 . 2012-06-02 05:25 140288 ----a-w- c:\windows\system32\cryptnet.dll
    2012-10-10 09:09 . 2012-06-02 04:45 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
    2012-10-10 09:09 . 2012-06-02 04:45 1157632 ----a-w- c:\windows\SysWow64\crypt32.dll
    2012-10-10 09:09 . 2012-06-02 04:45 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) )
    .
    2012-10-12 07:19 . 2012-10-19 07:13 9291768 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F26F305A-C09A-4AD1-976C-18E551CE311F}\mpengine.dll
    2012-10-10 09:33 . 2012-04-18 11:40 65309168 ----a-w- c:\windows\system32\MRT.exe
    2012-10-09 09:11 . 2012-04-18 16:02 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-10-09 09:11 . 2012-04-18 16:02 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-08-24 11:15 . 2012-09-22 09:02 17810944 ----a-w- c:\windows\system32\mshtml.dll
    2012-08-24 10:39 . 2012-09-22 09:02 10925568 ----a-w- c:\windows\system32\ieframe.dll
    2012-08-24 10:31 . 2012-09-22 09:02 2312704 ----a-w- c:\windows\system32\jscript9.dll
    2012-08-24 10:22 . 2012-09-22 09:02 1346048 ----a-w- c:\windows\system32\urlmon.dll
    2012-08-24 10:21 . 2012-09-22 09:02 1392128 ----a-w- c:\windows\system32\wininet.dll
    2012-08-24 10:20 . 2012-09-22 09:02 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
    2012-08-24 10:18 . 2012-09-22 09:02 237056 ----a-w- c:\windows\system32\url.dll
    2012-08-24 10:17 . 2012-09-22 09:02 85504 ----a-w- c:\windows\system32\jsproxy.dll
    2012-08-24 10:14 . 2012-09-22 09:02 173056 ----a-w- c:\windows\system32\ieUnatt.exe
    2012-08-24 10:14 . 2012-09-22 09:02 816640 ----a-w- c:\windows\system32\jscript.dll
    2012-08-24 10:13 . 2012-09-22 09:02 599040 ----a-w- c:\windows\system32\vbscript.dll
    2012-08-24 10:12 . 2012-09-22 09:02 2144768 ----a-w- c:\windows\system32\iertutil.dll
    2012-08-24 10:11 . 2012-09-22 09:02 729088 ----a-w- c:\windows\system32\msfeeds.dll
    2012-08-24 10:10 . 2012-09-22 09:03 96768 ----a-w- c:\windows\system32\mshtmled.dll
    2012-08-24 10:09 . 2012-09-22 09:03 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-08-24 10:04 . 2012-09-22 09:02 248320 ----a-w- c:\windows\system32\ieui.dll
    2012-08-24 06:59 . 2012-09-22 09:02 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
    2012-08-24 06:51 . 2012-09-22 09:02 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
    2012-08-24 06:51 . 2012-09-22 09:02 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
    2012-08-24 06:47 . 2012-09-22 09:02 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
    2012-08-24 06:47 . 2012-09-22 09:03 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
    2012-08-24 06:43 . 2012-09-22 09:03 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-08-21 19:53 . 2012-08-21 19:53 3993600 ----a-w- c:\program files (x86)\GUT4441.tmp
    2012-08-18 11:19 . 2012-10-10 09:11 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2012-08-02 17:55 . 2012-09-12 09:33 574464 ----a-w- c:\windows\system32\d3d10level9.dll
    2012-08-02 17:05 . 2012-09-12 09:33 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* i valori vuoti & legittimi/default non sono visualizzati.
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
    "ChromeFrameHelper"="c:\users\Proprietario\AppData \Local\Google\Chrome\Application\22.0.1229.94\chro me_frame_helper.exe" [2012-10-10 81432]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\ Windows\CurrentVersion\Run]
    "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
    "AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" [2011-04-24 202296]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\ windows nt\currentversion\windows]
    "LoadAppInit_DLLs"=1 (0x1)
    "AppInit_DLLs"=c:\progra~3\VIDEOP~1\22580~1.185\{1 6CDF~1\videomngr.dll
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
    "DisableMonitoring"=dword:00000001
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Servizio Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 116648]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
    R2 Video Performer Manager;Video Performer Manager;c:\programdata\Video Performer Manager\2.2.580.185\{16cdff19-861d-48e3-a751-d99a27784753}\videomngr.exe [2012-08-21 1695776]
    R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPl ayerUpdateService.exe [2012-10-09 250808]
    R3 gupdatem;Servizio Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 116648]
    R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.e xe [2012-04-18 1255736]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
    S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
    S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
    S2 IB Updater Updater;IB Updater Updater;c:\program files\IB Updater\ExtensionUpdaterService.exe [2012-10-03 188760]
    S2 InstallBrainService;InstallBrain Updater Service;c:\programdata\InstallBrainService\ibsvc.e xe [2012-08-21 616448]
    S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-06-22 273072]
    S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
    S3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
    S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
    S3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
    .
    .
    Contenuto della cartella 'Scheduled Tasks'
    .
    2012-10-23 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe [2012-04-18 09:11]
    .
    2012-10-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2076213359-179557179-2161459143-1000Core.job
    - c:\users\Proprietario\AppData\Local\Google\Update\ GoogleUpdate.exe [2012-10-18 12:41]
    .
    2012-10-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2076213359-179557179-2161459143-1000UA.job
    - c:\users\Proprietario\AppData\Local\Google\Update\ GoogleUpdate.exe [2012-10-18 12:41]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
    "CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-10 689488]
    "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2008-03-17 2114376]
    .
    ------- Scansione supplementare -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.it/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: E&sporta in Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 85.37.17.44 85.38.28.90
    TCP: Interfaces\{A1DCFA95-FE18-4ED6-B748-5C47D8B75495}: DhcpNameServer = 85.37.17.44 85.38.28.90
    .
    .
    --------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
    .
    [HKEY_USERS\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.eml\UserChoice] @DenieD: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.Email.1"
    .
    [HKEY_USERS\S-1-5-21-2076213359-179557179-2161459143-1000\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.vcf\UserChoice] @DenieD: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.VCard.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macrome d\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUt il64_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA 0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE 38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macrome d\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUt il32_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @DenieD: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @DenieD: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32 _11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @DenieD: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\In terface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PC W\Security] @DenieD: (Full) (Everyone)
    .
    ------------------------ Altri processi in esecuzione ------------------------
    .
    c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
    c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
    c:\windows\SysWOW64\IoctlSvc.exe
    .
    ************************************************** ************************
    .
    Ora fine scansione: 2012-10-23 17:09:28 - Il pc è stato riavviato
    ComboFix-quarantined-files.txt 2012-10-23 15:09
    ComboFix2.txt 2012-10-22 19:23
    .
    Pre-Run: 455.768.305.664 byte disponibili
    Post-Run: 455.528.710.144 byte disponibili
    .
    - - End Of File - - F3F2B089C4E345169B7BABC6AD09A16F

  9. #8
    L'avatar di tecnico24
    Specifiche del sistema

    Data Registrazione
    26-05-07
    Messaggi
    9,432
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Scarica OTC:
    http://oldtimer.geekstogo.com/OTC.exe
    Clicca su cleanup ed attendi il riavvio per la rimozione dei tool utilizzati.

    Dai un passata con Ccleaner poi direi che abbiamo finito.

  10. #9
    L'avatar di sstephan
    Specifiche del sistema

    Data Registrazione
    23-10-12
    Messaggi
    13
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Magari aggiorna java e flash per evitare che ti ricapiti ancora.

  11. #10
    L'avatar di vivapiero
    Specifiche del sistema

    Data Registrazione
    20-10-12
    Messaggi
    8
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Ciao Tecnico24,
    infelicemente sembra che abbiamo fatto tutto per niente.
    Da ieri mattina mio papà mi dice che windows continua a buttar fuori finestre del tipo "fai un backup che hai il disco danneggiato", le ho viste anch'io.
    Ha salvato le sue amate fotografie, poi gli ho fatto un checkdisk (con le 2 opzioni solite flaggate) ma il problema persiste così abbiamo portato il PC dal negoziante della zona per fare un'analisi del disco rigido.
    Non avevo ancora eseguito l'OTC.exe ma se gli cambiano il disco perchè è scassato ... non lo potro più fare ovviamente.
    Non è che la pulizia fatta in qualche modo abbia potuto "confondere le idee" a Windows7?
    La coincidenza è grande.
    Comunque grazie, è stato interessante collaborare con te e apprezzo il servizio che fai per la comunità.
    Con stima e riconoscenza,
    Roberto

  12. #11
    L'avatar di tecnico24
    Specifiche del sistema

    Data Registrazione
    26-05-07
    Messaggi
    9,432
    Menzioni / Tag / Citazioni
    Problemi e Risposte

    Predefinito Re: pagine pubblicità che si aprono da solo (su chrome e IE9)

    Citazione Originariamente Scritto da vivapiero Visualizza Messaggio
    Ciao Tecnico24,
    infelicemente sembra che abbiamo fatto tutto per niente.
    Da ieri mattina mio papà mi dice che windows continua a buttar fuori finestre del tipo "fai un backup che hai il disco danneggiato", le ho viste anch'io.
    Ha salvato le sue amate fotografie, poi gli ho fatto un checkdisk (con le 2 opzioni solite flaggate) ma il problema persiste così abbiamo portato il PC dal negoziante della zona per fare un'analisi del disco rigido.
    Non avevo ancora eseguito l'OTC.exe ma se gli cambiano il disco perchè è scassato ... non lo potro più fare ovviamente.
    Non è che la pulizia fatta in qualche modo abbia potuto "confondere le idee" a Windows7?
    La coincidenza è grande.
    Comunque grazie, è stato interessante collaborare con te e apprezzo il servizio che fai per la comunità.
    Con stima e riconoscenza,
    Roberto
    Assolutamente no.
    Abbiamo rimossi i servizi che causavano espansione della pubblicità e fastidi nella navigazione.
    Peccato che l'hai portato , potevamo eseguire una formattazione a basso livello per riportarlo alle condizioni di fabbrica
    ciao.

  13.  
    Stanco della Pubblicità? Registrati

 

Tag per Questa Discussione

Permessi di Scrittura

  • Tu non puoi inviare nuove discussioni
  • Tu non puoi inviare risposte
  • Tu non puoi inviare allegati
  • Tu non puoi modificare i tuoi messaggi
  •  
Segui Tom's Hardware!
Informazioni su Tom's Hardware
powered by
Powerd by Aruba Cloud Powerd by Intel Powerd by Dell

Copyright © 2014 A Purch Company. Tutti i diritti riservati.
P.Iva 04146420965 - Testata registrata presso il Tribunale di Milano, nr. 285 del 9/9/2013
Torna Su