PROBLEMA problema connessione

Ivy · 22 Ottobre 2014

Spero di aver fatto tutta la procedura in modo corretto. Questo è il log di FRST
FRST.txt

tecnico24 · 22 Ottobre 2014

Credevo che il problema sembrasse di "rete" , ma in realtà il pc presenta delle infezioni.
Scarica fixlist.txt in allegato e salvalo nella cartella dove è salvato FRST.
Avvia FRST e clicca sul pulsante fix.Posta il resoconto e verifica se la connessione nei prossimi giorni presenta problemi.

Ivy · 22 Ottobre 2014

Mi sono accorto adesso che ho avviato FRST senza che mi comparisse Ripristina il computer, ho schiacciato F8, ma non c'era come opzione. Così ho avviato FRST normalmente. Però se faccio così anche per il fixaggio mi dice

Content of fixlist:
*****************
LastRegBack: 2014-09-17 13:45
*****************

Error: The restore operation should be done in the recovery mode.

==== End of Fixlog ====

Immagino che sia perchè non l'ho avviato con la modalità provvisoria, il problema è che con F8 vengono fuori solo diverse opzioni per il "boot device" e basta.

tecnico24 · 22 Ottobre 2014

Procurati un cd di windows 7 o crea un dvd con la .iso scaricabile dalla sezione windows.
Cosi accedi alle operazioni da recovery.

Ivy · 23 Ottobre 2014

Ho rifatto la scansione con FRST da recovery. Questo è il log.
FRST.txt

tecnico24 · 23 Ottobre 2014

Riesegui il fix con il file in allegato.
Esegui una scansione con tdsskiller come descritto e posta il responso.
Seguono ulteriori operazioni.

Ivy · 25 Ottobre 2014

Ho fatto entrambi, i log sono i seguenti:

Fixlog.txt

TDSSKiller.3.0.0.40_25.10.2014_08.29.23_log.txt

tecnico24 · 25 Ottobre 2014

Adesso riesegui questo fix con FRST però in modalità normale.
Nota bene , il fixlist deve essere collocato nella cartella di FRST.
Posta il fixlog , controlla il pc periodicamente questi giorni e facci sapere.

Ivy · 25 Ottobre 2014

Ecco il fixlog

Fixlog.txt

Ti tengo informato

Grazie mille

Ivy · 26 Ottobre 2014

Ho notato che dopoil fix, il problema è "diminuito". Nel senso che, ho dei problemi nell'accensione, per farlo connettere devo riavviare il pc più volte, però una volta connesso non si disconnette più. Prima invece mi si disconnetteva ogni tanto a pc acceso.

tecnico24 · 26 Ottobre 2014

Scarica Tweaking.com - Windows Repair sul desktop.
Vai nella scheda Repairs , poi su Open Repairs.
Assicurati che ci sia la spunta su automatically do a registry backup.
Spunta solo queste:

Reset Registry Permissions
Reset File Permissions
Reset service permissions
Register System Files
Repair MDAC & MS Jet
Repair Hosts File
Remove Policies Set By Infections
Restore important Windows Services
Set Windows services to a default startup
Repair Winsock & DNS Cache
Remove Temp Files
Repair Proxy Settings

spunta su restart/shutdwon system when finished
spunta restart system
clicca su start repairs.Aspetta il lavoro senza interferire e il riavvio del pc.
Testa nuovamente la connessione e fammi sapere.

Ivy · 26 Ottobre 2014

Ho usato il software ma al riavvio non era connesso.

tecnico24 · 26 Ottobre 2014

Usa adwcleaner come spiegato
Rimozione delle pagine pubblicitarie
posta il log dopo l'eliminazione.
Esegui rogueKiller
aspetta il caricamento dei servizi
premi su scansiona , posta il report.

Ivy · 26 Ottobre 2014

Ne con wikisend e ne con wikifortio riesco ad uploadare i due log. Li metto qui di seguito. Il primo è Adwcleaner il secondo RogueKiller

AdwCleaner v4.001 - Rapporto creato 26/10/2014 in 21:13:10
# DB v2014-10-26.2
# Aggiornato 20/10/2014 di Xplode
# Sistema operativo : Windows 7 Ultimate Service Pack 1 (64 bits)
# Nome utente : Giuseppe - GIUSEPPE-PC
# In esecuzione da : C:\Users\Giuseppe\Desktop\download browser\AdwCleaner.exe
# Opzione : Pulisci

***** [ Servizi ] *****

[#] Servizio Eliminato : KMService

***** [ File / Cartelle ] *****

Cartella Eliminato : C:\ProgramData\Babylon
Cartella Eliminato : C:\Users\Administrator\AppData\Local\Chromatic Browser
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\Chromatic Browser
Cartella Eliminato : C:\Users\Guest\AppData\Local\Chromatic Browser
Cartella Eliminato : C:\Users\HomeGroupUser$\AppData\Local\Chromatic Browser
Cartella Eliminato : C:\Users\Giuseppe\AppData\LocalLow\Conduit
Cartella Eliminato : C:\Program Files (x86)\diamondata
Cartella Eliminato : C:\Users\Giuseppe\AppData\Roaming\EZDownloader
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\genienext
Cartella Eliminato : C:\Program Files (x86)\GreenTree Applications
Cartella Eliminato : C:\Users\Giuseppe\AppData\LocalLow\Minibar
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\Mobogenie
Cartella Eliminato : C:\Users\Giuseppe\Documents\Mobogenie
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\PackageAware
Cartella Eliminato : C:\ProgramData\QuickSet
Cartella Eliminato : C:\Users\Giuseppe\AppData\Roaming\SimpleFiles
Cartella Eliminato : C:\Program Files (x86)\SimpleSpeedy
Cartella Eliminato : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkypEmoticons
Cartella Eliminato : C:\Users\Giuseppe\AppData\Roaming\SkypEmoticons
Cartella Eliminato : C:\ProgramData\SoftSafe
Cartella Eliminato : C:\Program Files (x86)\SquirrelWeb
Cartella Eliminato : C:\ProgramData\StarApp
Cartella Eliminato : C:\Users\Giuseppe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
Cartella Eliminato : C:\Users\Administrator\AppData\Local\torch
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\torch
Cartella Eliminato : C:\Users\Guest\AppData\Local\torch
Cartella Eliminato : C:\Users\HomeGroupUser$\AppData\Local\torch
Cartella Eliminato : C:\ProgramData\Trusted Publisher
Cartella Eliminato : C:\Users\Giuseppe\AppData\Roaming\YourFileDownloader
Cartella Eliminato : C:\Program Files (x86)\Sk.Enhancer
Cartella Eliminato : C:\ProgramData\DownSoave
Cartella Eliminato : C:\Program Files (x86)\DownSoave
Cartella Eliminato : C:\ProgramData\GeoSaave
Cartella Eliminato : C:\ProgramData\YuoutuubeAdBlocke
Cartella Eliminato : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkcbebbklfkjeocpmoamnopdllfekind
Cartella Eliminato : C:\Users\Giuseppe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcidejejpblipcjpnkfkddlkmgndblch
File Eliminato : C:\Users\Giuseppe\daemonprocess.txt
File Eliminato : C:\END
File Eliminato : C:\Users\Giuseppe\AppData\Roaming\Mozilla\Firefox\Profiles\7msa0mp4.default\user.js

***** [ Compiti ] *****

Compito Eliminati : YourFile Update

***** [ Collegamenti ] *****

***** [ Registro ] *****

Chiave Eliminati : HKLM\SOFTWARE\Google\Chrome\Extensions\gkcbebbklfkjeocpmoamnopdllfekind
Chiave Eliminati : HKLM\SOFTWARE\Google\Chrome\Extensions\pcidejejpblipcjpnkfkddlkmgndblch
Chiave Eliminati : HKCU\Software\Classes\Applications\lollipop.exe
Chiave Eliminati : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Chiave Eliminati : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\Prod.cap
Valore Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\APN_ATU3__RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\LatestDLMgr_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\Lollipop_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\Mobogenie_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Chiave Eliminati : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_all2wav-recorder_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_all2wav-recorder_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_apowersoft-free-audio-recorder_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_apowersoft-free-audio-recorder_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_daemon-tools_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_daemon-tools_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_easycapture_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_easycapture_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_free-3gp-video-converter_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_free-3gp-video-converter_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_free-audio-extractor_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_free-audio-extractor_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_iq-cracked-screen_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_iq-cracked-screen_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_manga-studio-debut_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_manga-studio-debut_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_minitab_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_minitab_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_sculptris_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_sculptris_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_spyware-terminator_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_spyware-terminator_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_sweet-home-3d_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_sweet-home-3d_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_the-matrix-screensaver_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_the-matrix-screensaver_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_wings-of-prey_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_wings-of-prey_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_wondershare-pdf-converter_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_wondershare-pdf-converter_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_xp-tcp-ip-repair_RASAPI32
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_xp-tcp-ip-repair_RASMANCS
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{77777777-7777-7777-7777-770077227758}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{58BB7423-A9E3-47E0-9742-61E3BC3D5A18}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{77777777-7777-7777-7777-770077227758}
Chiave Eliminati : HKCU\Software\APN PIP
Chiave Eliminati : HKCU\Software\ExpressFiles
Chiave Eliminati : HKCU\Software\lollipop
Chiave Eliminati : HKCU\Software\RegisteredApplicationsEx
Chiave Eliminati : HKCU\Software\SimpleFiles
Chiave Eliminati : HKCU\Software\Softonic
Chiave Eliminati : HKCU\Software\AppDataLow\Toolbar
Chiave Eliminati : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Chiave Eliminati : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B}
Chiave Eliminati : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252}
Chiave Eliminati : HKLM\SOFTWARE\Babylon
Chiave Eliminati : HKLM\SOFTWARE\ExpressFiles
Chiave Eliminati : HKLM\SOFTWARE\MediaPlayerV1
Chiave Eliminati : HKLM\SOFTWARE\PIP
Chiave Eliminati : HKLM\SOFTWARE\SimpleFiles
Chiave Eliminati : HKLM\SOFTWARE\SP Global
Chiave Eliminati : HKLM\SOFTWARE\SProtector
Chiave Eliminati : HKLM\SOFTWARE\systweak
Chiave Eliminati : HKLM\SOFTWARE\Uniblue
Chiave Eliminati : HKLM\SOFTWARE\YourFileDownloader
Chiave Eliminati : HKLM\SOFTWARE\SK.Enhancer
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SkypEmoticons_is1
Chiave Eliminati : [x64] HKLM\SOFTWARE\Speedchecker Limited
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\649A52D257CA5DB4EAAE8BA9EB23E467
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\GoogleUpdate.exe

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16421

-\\ Mozilla Firefox v32.0.3 (x86 it)

-\\ Google Chrome v37.0.2062.120

*************************

AdwCleaner[R0].txt - [15130 octets] - [26/10/2014 21:06:41]
AdwCleaner[S0].txt - [14818 octets] - [26/10/2014 21:13:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14879 octets] ##########

- - - Updated - - -

E questo è Roguekiller

RogueKiller V10.0.3.0 [Oct 22 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Giuseppe [Administrator]
Mode : Delete -- Date : 10/26/2014 21:32:44

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 31 ¤¤¤
[PUM.HomePage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Internet Explorer\Main | Start Page : www.google.com -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Internet Explorer\Main | Start Page : www.google.com -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Start Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome -> Replaced (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.SearchPage] (X64) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.SearchPage] (X86) HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main | Search Page : http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> Replaced (http://go.microsoft.com/fwlink/?LinkId=54896)
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{580D2233-9A3A-4206-AE66-C9C689BBAFF9} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{F16886E3-9608-4CF3-BCFE-38CF51B307FE} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{580D2233-9A3A-4206-AE66-C9C689BBAFF9} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{F16886E3-9608-4CF3-BCFE-38CF51B307FE} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{580D2233-9A3A-4206-AE66-C9C689BBAFF9} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{F16886E3-9608-4CF3-BCFE-38CF51B307FE} | DhcpNameServer : 62.101.93.101 83.103.25.250 -> Replaced ()
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Replaced (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Replaced (2)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X64) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)
[PUM.DesktopIcons] (X86) HKEY_USERS\S-1-5-21-3331310940-446377842-665615614-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> Replaced (0)

¤¤¤ Tasks : 3 ¤¤¤
[Suspicious.Path] \\{09032ABF-6666-4E81-A168-C95369A5DBF5} -- C:\Users\Giuseppe\Desktop\capture\CAPTURE.EXE -> Deleted
[Suspicious.Path] \\{1B40BA3E-E4F6-437C-8839-4579CAE1DF18} -- C:\Users\Giuseppe\Desktop\capture\CAPTURE.EXE -> Deleted
[Suspicious.Path] \\{2B6084A9-A9E4-4C07-99A7-DC4F7393B616} -- C:\Users\Giuseppe\Desktop\capture\CAPTURE.EXE -> Deleted

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 1 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 5 ¤¤¤
[FIREFX:Addon] 6gq6sd15.default : Firebug [firebug@software.joehewitt.com] -> Deleted
[FIREFX:Addon] 6gq6sd15.default : ColorZilla [{6AC85730-7D0F-4de0-B3FA-21142DD85326}] -> Deleted
[FIREFX:Addon] 6gq6sd15.default : General Downloader plugin [@generaldownloader.com] -> Deleted
[FIREFX:Addon] 6gq6sd15.default : Skype Click to Call [{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}] -> Deleted
[FIREFX:Addon] 6gq6sd15.default : Avira Browser Safety [abs@avira.com] -> Deleted

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST500DM002-1BC142 ATA Device +++++
--- User ---
[MBR] 51cf93767cbdd53b03f5b4598833329f
[BSP] 05e24e6b79fcb32153e4bfdf2b03d5f1 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: ST500DM002-1BC142 ATA Device +++++
--- User ---
[MBR] 275a1c70999875ffc453c123304c847a
[BSP] 3406327ea5cd60c761d9cb94e5baadc7 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 122900 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 251906048 | Size: 353937 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: Generic- SD/MMC USB Device +++++
Error reading User MBR! ([15] Dispositivo non pronto. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Richiesta non supportata. )

+++++ PhysicalDrive3: Generic- Compact Flash USB Device +++++
Error reading User MBR! ([15] Dispositivo non pronto. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Richiesta non supportata. )

+++++ PhysicalDrive4: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR! ([15] Dispositivo non pronto. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Richiesta non supportata. )

+++++ PhysicalDrive5: Generic- MS/MS-Pro USB Device +++++
Error reading User MBR! ([15] Dispositivo non pronto. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] Richiesta non supportata. )

============================================
RKreport_SCN_10262014_213010.log

tecnico24 · 26 Ottobre 2014

Vedi adesso se la connessione dà problemi.

PROBLEMA problema connessione

Ivy

Nuovo Utente

tecnico24

Allegati

Ivy

Nuovo Utente

tecnico24

Ivy

Nuovo Utente

tecnico24

Allegati

Ivy

Nuovo Utente

tecnico24

Allegati

Ivy

Nuovo Utente

Ivy

Nuovo Utente

tecnico24

Ivy

Nuovo Utente

tecnico24

Ivy

Nuovo Utente

tecnico24