Problema snervante aiuto!

[Borgork]

Ciao a tutti. Da oggi usando il pc (sono un utilizzatore di chrome ma ho provato anche con explorer) non riesco ad accedere ne a facebook ne a u tube. Semlicemente se provo ad accedervi dice " la pagina web non è disponibile". Verso il primo pomeriggio era così anche per l'app wp8 di u tube, ma non per quella di fb.
Usando il pc su chrome appare spesso una finestrella simile a quella riportata in questa discussione--> http://www.tomshw.it/forum/sicurezza/397253-problema-virus-con-youtube.html solo che al posto di la pg di you tube dice" ho " la pg di facebook dice" e al posto di flash player dice internet explorer...
verso le 22, riprovando per l'ennesima volta l'accesso al sito you tube, mi appare una cosa simile a quest'altro post: http://www.tomshw.it/forum/sicurezza/398142-problema-internet-explorer.html
ovviamente mi sembra strano ma (preso da un attacco di stupidità), decido di scaricare il file richiesto (si, sono un ********). Cliccando sul file per avviarlo, il pc mi avverte che potrebbe essere dannoso e quindi chiudo. mezz'oretta dopo, avendo riprovato per l'ennesima volta ad accedere a u tube, decido di provare ad installare il programma (ripensandoci mi sento molto come un bimbo che accetta la caramella dallo sconosciuto :asd:). Ho anche notato che questo, dovrebbe venire da qui http://www.youtube.com/setup.exe (io non cliccherei fossi in voi), intendo dire che nella pag di download di chrome il link sotto il file è questo.
Appena avviato, windows defender ( ho la versione di w8.0) rivela un malware poi un altro e dopo circa 3-4 sec si riavvia. Quando si è riacceso ho subito notato una scritta nel desktop in basso a destra "modalità test// windows 8 pro// build 9200" (// sta indica che la frase va a capo).
La vera tragedia è che ora windows defender si è disattivato e se clicco su avvia appare una finestra che dice " impossibile avviare il servizio //Il servizio specificato non esiste come servizio installato".
ho anche provato ad installare avg free ma anche questo va in palla a quanto sembra...


Sto sclerando ç.ç
Ps: non so se sia importante ma io ho una licenza originale per windows non una craccata.

Grazie mille in anticipo!:)

 

[Camy63]

prova con AdwCleaner - Download ..

 

[Borgork]

Beh che dire, mi hai fatto installare una toolbar -.-
comunque ho provato con il programma a ricercare gli errori nella voce services, finito ciò ho fatto clear e mi ha chiesto di riavviare.
al riavvio è vnuto fuori questo :
# AdwCleaner v3.023 - Report created 04/04/2014 at 15:23:44
# Updated 01/04/2014 by Xplode
# Operating System : Windows 8 Pro (64 bits)
# Username : Gianni - BORGORK
# Running from : C:\Users\Gianni\Downloads\adwcleaner-3-0-23-es-en-br-fr-de-win.exe
# Option : Clean


***** [ Services ] *****


Service Deleted : MgAssistService
Service Deleted : WajamUpdaterV3


***** [ Files / Folders ] *****


Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\Mysearchdial
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\Users\Gianni\AppData\Local\CrashRpt
Folder Deleted : C:\Users\Gianni\AppData\Local\lollipop
Folder Deleted : C:\Users\Gianni\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Gianni\AppData\Local\Wajam
Folder Deleted : C:\Users\Gianni\AppData\Local\Temp\lollipop
Folder Deleted : C:\Users\Gianni\AppData\Roaming\Mysearchdial
Folder Deleted : C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\Users\Gianni\Documents\Mobogenie
Folder Deleted : C:\Users\Gianni\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Folder Deleted : C:\Users\Gianni\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
File Deleted : C:\Users\Gianni\Desktop\Mobogenie.lnk
File Deleted : C:\Users\Gianni\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
File Deleted : C:\Users\Gianni\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pflphaooapbgpeakohlggbpidpppgdff_0.localstorage
File Deleted : C:\Windows\Tasks\MySearchDial.job
File Deleted : C:\Windows\System32\Tasks\MySearchDial


***** [ Shortcuts ] *****


Shortcut Disinfected : C:\Users\Gianni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\Gianni\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk


***** [ Registry ] *****


Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc
Key Deleted : HKLM\SOFTWARE\Classes\esrv.mysearchdialesrvc.1
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialappCore.1
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialdskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr
Key Deleted : HKLM\SOFTWARE\Classes\mysearchdial.mysearchdialHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3004627E-F8E9-4E8B-909D-316753CBA923}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4ED063C9-4A0B-4B44-A9DC-23AFF424A0D3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C358B3D0-B911-41E3-A276-E7D43A6BA56D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{219046AE-358F-4CF1-B1FD-2B4DE83642A8}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3004627E-F8E9-4E8B-909D-316753CBA923}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\lollipop
Key Deleted : HKCU\Software\mysearchdial
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKLM\Software\aartemisSoftware
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mysearchdial
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam


***** [ Browsers ] *****


-\\ Internet Explorer v10.0.9200.16843


Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]


-\\ Google Chrome v33.0.1750.154


[ File : C:\Users\Gianni\AppData\Local\Google\Chrome\User Data\Default\preferences ]




[ File : C:\Users\Eugenio\AppData\Local\Google\Chrome\User Data\Default\preferences ]


Deleted : homepage


*************************


AdwCleaner[R0].txt - [11801 octets] - [04/04/2014 15:23:14]
AdwCleaner[S0].txt - [9267 octets] - [04/04/2014 15:23:44]


########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9327 octets] ##########


e ho scoperto di avere un chrome senza il mio vecchio tema e che ricerca non più su google ma su Mysearchdial... il peggio è che ora non riesco più a trovare il programmino (adw) perchè se vado nei documenti, nella sua cartella (che ho trovato in risorse recenti) vi è una cartella che si chiama quarantine e due file del blocco note. La cartella quarantine la posso trovare anche in risorse recenti...

- - - Updated - - -

nessuno che mi aiuta? :c

 

[Borgork]

Allora?