apertura pagine pubblicitarie

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Ciao a tutti!
Come consigliatomi da tecnico24 apro una nuova discussione.
Vorrei disabilitare avast free versione 6.0.1289 (su Windows 7 Professional x64) per poter usare il tool di rimozione Combofix come consigliatomi da tecnico24. Ma non riesco a disabilitarlo, nemmeno rimuovendo il processo come amministratore da task manager.
Qualcuno può aiutarmi?
Grazie mille:ok:
 

tecnico24

Utente Èlite
10,706
1,072
Perchè non riesci a disabilitarlo ? Hai provato dalla system tray ? che errore preciso ti dà?
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional

tecnico24

Utente Èlite
10,706
1,072
Prova a disabilitarlo da services.msc
Start
Nella casella di ricerca scrivi services.msc e avvialo
Trova il servizio di Avast , tasto destro e clicca su Disabilita.

Se persiste , prova dalla modalità provvisoria.(F8 all'avvio di Windows).
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Ho provato da services.msc e ho disabilitato il servizio di avast ma rimane sempre il processo su task manager.
Non si disabilita nemmeno in modalità provvisoria.

Nemmeno la disinstallazione (che avevo già provato tempo fa) elimina completamente avast dal disco dato che rimane qualcosa nel registro e installando un'altro antivirus c'è conflitto tra i due e questo porta a dover formattare il pc dato che rende completamente inutilizzabile il so.
Ora come ora non voglio formattare il pc perchè aspetto lo farò a breve quando renderò un ssd per il so e terrò l'hdd che uso ora come deposito.

Ti è mai capitato un caso come il mio? Cosa faresti?
 

R16

Utente Èlite
2,307
425
CPU
boh
Scheda Madre
boh
HDD
boh
RAM
boh
GPU
boh
Audio
boh
Monitor
boh
PSU
boh
Case
boh
OS
boh
Vorrei disabilitare avast free versione 6.0.1289 (su Windows 7 Professional x64) per poter usare il tool di rimozione Combofix come consigliatomi da tecnico24.
Puoi anche ignorare gli avvisi, sia di Combofix che di Avast! e proseguire tranquillamente con la scansione.
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Procedi così :

Installa nuovamente Avast:
avast! Free Antivirus | Scarica il software di protezione antivirus
Quando ti chiede il percorso di dove installare , scegli la cartella che hai utilizzato per installare Avast stesso in modo tale da sovrascriverlo.


Scarica AswClear
e salvalo sul desktop.
Riavvia il computer in modalità provvisoria.
Avvia l'utility salvata e clicca su REMOVE.
Attendi il lavoro e riavvia il pc.
Ok, ora provo, grazie! Soprattutto perchè vorrei sbarazzarmi di avast e instalare un'altro antivirus (sempre gratuito).
Grazie ancora!

---------- Post added at 17:42 ---------- Previous post was at 17:39 ----------

Puoi anche ignorare gli avvisi, sia di Combofix che di Avast! e proseguire tranquillamente con la scansione.

Grazie, per ora farò la scansione con combofix ma poi seguirò il consiglio del mod per disinstallare avast cambiare amtivirus.
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Ciao tecnico!
scusa avevo dimenticato di postare il log di combofix. Eccolo:
ComboFix 12-03-06.01 - Francesco 07/03/2012 12:09:08.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.39.1040.18.6038.4358 [GMT 1:00]
Eseguito da: c:\users\Francesco\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\OfferBox
c:\program files (x86)\OfferBox\language.xml
c:\programdata\Roaming
c:\users\Francesco\AppData\Roaming\OfferBox
c:\users\Francesco\AppData\Roaming\OfferBox\config.dat
c:\users\Francesco\AppData\Roaming\OfferBox\config.xml
c:\users\Francesco\AppData\Roaming\OfferBox\run.log
.
.
((((((((((((((((((((((((( Files Creati Da 2012-02-07 al 2012-03-07 )))))))))))))))))))))))))))))))))))
.
.
2012-03-07 11:12 . 2012-03-07 11:12 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-03-07 11:12 . 2012-03-07 11:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-07 10:26 . 2012-03-07 10:26 -------- d-----w- c:\users\Francesco\AppData\Roaming\BinarySense
2012-03-07 10:26 . 2012-03-07 10:26 -------- d-----w- c:\program files (x86)\Common Files\BinarySense
2012-03-07 10:26 . 2012-03-07 10:26 -------- d-----w- c:\program files (x86)\BinarySense
2012-03-06 20:19 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-03-06 19:45 . 2012-03-01 12:21 8643640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{DE65C730-E82F-4EFB-A1C0-E55F04F08264}\mpengine.dll
2012-03-06 19:45 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-03-06 19:45 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-03-06 19:45 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2012-03-06 19:45 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2012-03-06 19:43 . 2012-01-14 04:06 3145728 ----a-w- c:\windows\system32\win32k.sys
2012-03-06 19:43 . 2011-12-28 03:59 498688 ----a-w- c:\windows\system32\drivers\afd.sys
2012-03-06 19:42 . 2011-12-16 08:46 634880 ----a-w- c:\windows\system32\msvcrt.dll
2012-03-06 19:42 . 2011-12-16 07:52 690688 ----a-w- c:\windows\SysWow64\msvcrt.dll
2012-03-06 17:43 . 2012-03-06 19:35 -------- d-----w- c:\users\Francesco\AppData\Roaming\vlc
2012-03-06 17:39 . 2012-03-06 17:39 -------- d-----w- c:\program files (x86)\VideoLAN
2012-03-06 16:57 . 2012-03-06 19:35 -------- d-----w- c:\program files (x86)\I Want This
2012-03-06 16:57 . 2012-03-06 16:57 -------- d-----w- c:\users\Francesco\AppData\Local\I Want This
2012-03-06 16:57 . 2012-03-06 20:12 -------- d-----w- c:\program files\Core Temp
2012-03-06 15:18 . 2012-03-06 15:18 -------- d-----w- c:\program files\CPUID
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-23 08:18 . 2010-11-21 03:27 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-02-18 16:13 . 2012-02-01 20:14 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-02-18 16:13 . 2012-02-01 20:14 375632 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-02-05 22:47 . 2012-02-05 22:47 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-02-05 22:47 . 2012-02-05 22:47 375632 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-01-30 10:52 . 2012-01-30 10:52 31344 ----a-w- c:\windows\system32\drivers\cnnctfy2.sys
2012-01-30 10:25 . 2012-01-30 10:25 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-28 15:17 . 2012-01-28 15:17 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-01-28 15:17 . 2012-01-28 15:17 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-01-28 15:17 . 2012-01-28 15:17 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-01-28 15:17 . 2012-01-28 15:17 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-01-28 15:17 . 2012-01-28 15:17 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-01-28 15:17 . 2012-01-28 15:17 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-01-28 15:17 . 2012-01-28 15:17 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-01-28 15:17 . 2012-01-28 15:17 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-01-28 15:17 . 2012-01-28 15:17 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-01-28 15:17 . 2012-01-28 15:17 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-01-28 15:17 . 2012-01-28 15:17 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-01-28 15:17 . 2012-01-28 15:17 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-01-28 15:17 . 2012-01-28 15:17 448512 ----a-w- c:\windows\system32\html.iec
2012-01-28 15:17 . 2012-01-28 15:17 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-01-28 15:17 . 2012-01-28 15:17 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-01-28 15:17 . 2012-01-28 15:17 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-01-28 15:17 . 2012-01-28 15:17 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-01-28 15:17 . 2012-01-28 15:17 222208 ----a-w- c:\windows\system32\msls31.dll
2012-01-28 15:17 . 2012-01-28 15:17 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-01-28 15:17 . 2012-01-28 15:17 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-01-28 15:17 . 2012-01-28 15:17 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-01-28 15:17 . 2012-01-28 15:17 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-01-28 15:17 . 2012-01-28 15:17 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-01-28 15:17 . 2012-01-28 15:17 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-01-28 15:17 . 2012-01-28 15:17 12288 ----a-w- c:\windows\system32\mshta.exe
2012-01-28 15:17 . 2012-01-28 15:17 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-01-28 15:17 . 2012-01-28 15:17 114176 ----a-w- c:\windows\system32\admparse.dll
2012-01-28 15:17 . 2012-01-28 15:17 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-01-28 15:17 . 2012-01-28 15:17 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-01-28 15:17 . 2012-01-28 15:17 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-01-28 15:17 . 2012-01-28 15:17 603648 ----a-w- c:\windows\system32\vbscript.dll
2012-01-28 15:17 . 2012-01-28 15:17 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-01-28 15:17 . 2012-01-28 15:17 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-01-28 15:17 . 2012-01-28 15:17 160256 ----a-w- c:\windows\system32\wextract.exe
2012-01-20 12:38 . 2012-01-20 12:39 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-01-19 21:22 . 2012-01-19 21:22 521448 ----a-w- c:\windows\system32\deployJava1.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
.
c:\users\Francesco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
HDDlife.lnk - c:\program files (x86)\BinarySense\HDDlife 4\HDDlifePro.exe [2012-3-5 3290952]
Monitoraggio della tecnologia Intel® Turbo Boost 2.0.lnk - c:\program files\Intel\TurboBoost\SignalIslandUi.exe [2010-11-29 204288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
2;2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 ALSysIO;ALSysIO;c:\users\FRANCE~1\AppData\Local\Temp\ALSysIO64.sys [x]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240]
R3 netr7364;Driver scheda LAN wireless USB RT73 per Vista;c:\windows\system32\DRIVERS\netr7364.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-17 98208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell);c:\program files (x86)\QUALCOMM\QDLService2k\QDLService2kDell.exe [2010-06-25 331512]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
S3 IntcDAud;Audio schermo Intel(R);c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Driver scheda Intel(R) Wireless WiFi Link 5000 Series per Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [x]
.
.
--- Altri Servizi/Drivers In Memoria ---
.
*NewlyCreated* - WS2IFSL
.
Contenuto della cartella 'Scheduled Tasks'
.
2012-03-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3833985070-1245779140-1432110990-1000Core.job
- c:\users\Francesco\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-20 13:30]
.
2012-03-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3833985070-1245779140-1432110990-1000UA.job
- c:\users\Francesco\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-20 13:30]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2011-01-25 4479648]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-12-14 6561384]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-12-10 2186856]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-18 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-18 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-18 417304]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2011-10-15 539456]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Scansione supplementare -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.it/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: I&nvia a OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
.
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\program files (x86)\Common Files\BinarySense\hldasvc.exe
c:\program files (x86)\Common Files\BinarySense\hldasvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Ora fine scansione: 2012-03-07 12:17:06 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2012-03-07 11:17
.
Pre-Run: 352.247.017.472 byte disponibili
Post-Run: 352.179.187.712 byte disponibili
.
- - End Of File - - 60B5E25FF10C478F5E5006D5691ECA0A
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Dunque le pagine pubblicitarie non si aprono più a meno che non vada su siti di file sharing ancora aperti come wupload o simili.
Browser uso o chrome17 (l'ultima) o IE9.
Ma combofix ha rilevato e cancellato minacce dal mio pc?
 

tecnico24

Utente Èlite
10,706
1,072
Combofix ha cancellato il programma incriminato che forse contribuiva ad aprirti pagine pubblicitarie.

Certo che se navighi in parecchi siti è normale , quelli sono normali popup , il problema era serio se le pagine erano continue in ogni frazione di secondo o intervallo di tempo.
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional
Perfetto! Grazie del consiglio!:ok:

Anche se sono popup normali sono comunque fastidiosi, non trovi? Per fortuna ora non si aprono più di continuo!
Per le pubblicità popup un extention come adblock aiuta?

Grazie ancora
 

tecnico24

Utente Èlite
10,706
1,072
Adblock è molto utile nei siti pieni di pubblicità.
Se ne frequenti molti , puoi utilizzarlo e settarlo tranquillamente.
 

Chiccolino

UTENTE LEGGENDARIO
Utente Èlite
19,353
5,261
CPU
i7 4770k delidded
Dissipatore
EK Supremacy
Scheda Madre
Gigabyte Z87X-OC
HDD
Samsung 830 pro 256
RAM
2x4GB Samsung ultra low voltage
GPU
Gigabyte GTX 780Ti Windforce rev.1.0
Audio
Integrata
Monitor
BenQ XL2420T
PSU
XFX Pro Series 750W BE Silver
Case
Banchetto in plexi con liquido su CPU
OS
Windows 10 x64 Professional

Ci sono discussioni simili a riguardo, dai un'occhiata!

Entra

oppure Accedi utilizzando
Discord Ufficiale Entra ora!

Discussioni Simili