Indice del forum Olimpo Informatico
I Forum di Zeus News
Leggi la newsletter gratuita - Attiva il Menu compatto
 
 FAQFAQ   CercaCerca   Lista utentiLista utenti   GruppiGruppi   RegistratiRegistrati 
 ProfiloProfilo   Messaggi privatiMessaggi privati   Log inLog in 

    Newsletter RSS Facebook Twitter Contatti Ricerca
windows 10 infettato- windows defender disabilitato
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus
Precedente :: Successivo  
Autore Messaggio
firdis
Comune mortale
Comune mortale


Registrato: 09/12/12 18:46
Messaggi: 2
MessaggioInviato: 28 Mag 2016 17:37    Oggetto: windows 10 infettato- windows defender disabilitato Rispondi citando
Salve ragazzi,
ho da qualche giorno problemi sul mio pc . Aggiornato a Windows 10 da un mesetto.. Scaricato Torrent recentemente e da una settimana programmi con scritte cinesi impossibili da terminare. (credo il programma si chiami QQPCMGR) Windows defender è stato disabilitato e non c'è verso di riattivarlo. Ho scaricato adware ma nonostante faccia la scansione e trovi dei problemi non riesce a cancellare nulla E VA IN BLOCCO.
Vi metto intato il log d di malwarebytes
Malwarebytes Anti-Malware
www.malwarebytes.org

Data scansione: 28/05/2016
Ora scansione: 19:05
File di log: malwarebyteslog.txt
Amministratore: Sì

Versione: 2.2.1.1043
Database malware: v2016.05.28.05
Database rootkit: v2016.05.27.01
Licenza: Gratuito
Protezione da malware: Disattivata
Protezione da siti web nocivi: Disattivata
Auto-protezione: Disattivata

SO: Windows 10
CPU: x64
File system: NTFS
Utente: Amministratore

Tipo di scansione: Ricerca elementi nocivi
Risultati: Completata
Elementi analizzati: 393414
Tempo impiegato: 1 ore, 0 min, 39 sec

Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Attivata
Euristiche: Attivata
PUP: Attivata
PUM: Attivata

Processi: 3
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe, 2860, , [91b423b804950234bb551b73669bdc24]
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray.exe, 4048, , [ec595685aced49edff113658778a53ad]
PUP.Optional.YesSearches, C:\Program Files (x86)\Thalepharck\trzD8E2.tmp, 11236, , [2d18c615f4a546f0c9429b3323de06fa]

Moduli: 32
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\WinService.dll, , [2124508bcdccc67022eea3eb728ff60a],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, , [ed5817c4b4e53105d739fd91748d7090],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, , [ed5817c4b4e53105d739fd91748d7090],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, , [82c3b625d3c6dd59d63a3c52ca377987],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, , [82c3b625d3c6dd59d63a3c52ca377987],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, , [6adb726904950a2c3ad6880669980cf4],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, , [6adb726904950a2c3ad6880669980cf4],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XBus.dll, , [96affbe04851cd693dd3deb0d8294fb1],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\TrayFrame.dll, , [51f4ddfe74256acc00108d0124dd49b7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Monitor.dll, , [91b4b823009970c6b45c2a64ec15cc34],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Database.dll, , [14318c4f415822145db3f49a936e01ff],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LogReport.dll, , [48fddb002277c2749878543a5ea329d7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\BrowserPlugIn.dll, , [b78ef2e938617bbbfd13d9b5936e59a7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Cleaner.dll, , [e85df8e3e1b8ec4aab65494519e88977],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeProtect.dll, , [4401b9221881b1851ef21e7005fc748c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Update.dll, , [ab9a5f7c25747cba7c94117dc43dab55],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Web.dll, , [54f10ccfddbcff37d23e92fc47ba26da],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi.dll, , [2a1b6a71633671c543cd3559679a9a66],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi.dll, , [2a1b6a71633671c543cd3559679a9a66],
PUP.Optional.Linkury, C:\ProgramData\Lamzap\Latqvotech.dll, , [a69f5289b7e24ee81d42fcb6d52c7c84],

Chiavi di registro: 11
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCProtectService, , [91b423b804950234bb551b73669bdc24],
PUP.Optional.YesSearches, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Thlrprservice, , [0045aa31f9a0e74f818a1cb25ea324dc],
PUP.Optional.YesSearches, HKU\S-1-5-18\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}, , [02435c7fc0d926103fdf9ebaca38c937],
PUP.Optional.YesSearches, HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}, , [f84d8655b7e2f442c65887d1ba48ad53],
PUP.Optional.IDSCProduct, HKLM\SOFTWARE\MICROSOFT\TRACING\idscservice_RASAPI32, , [d27358834e4b71c5bd85ab37a3601ce4],
PUP.Optional.IDSCProduct, HKLM\SOFTWARE\MICROSOFT\TRACING\idscservice_RASMANCS, , [a1a45e7d2f6a5bdb4ff323bf798afc04],
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\mtLamzap, , [92b3b92203960036b83acc1614ef20e0],
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SILENTPROCESSEXIT\Lamzap.exe, , [271eca117b1efd392cc51bc79172ca36],
PUP.Optional.MorePowerfulCleaner, HKLM\SOFTWARE\WOW6432NODE\MPC, , [2a1bf1eaeaaf56e0714a36a1f1125aa6],
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCKPT, , [86bfd6058c0dcd69ffbd4493739059a7],
PUP.Optional.Linkury.ACMB1, HKU\S-1-5-21-3821974292-2939635832-2010893007-1000\SOFTWARE\mtLamzap, , [67de9b4082170b2b5797588afa096997],

Valori di registro: 8
Adware.EoRezo, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|sun21, , [c97cc11a970270c6095ddaffd52e03fd],
PUP.Optional.MorePowerfulCleaner, HKLM\SOFTWARE\WOW6432NODE\MPC|Location, C:\Program Files (x86)\MPC Cleaner, , [2a1bf1eaeaaf56e0714a36a1f1125aa6]
Hijack.AutoConfigURL.PrxySvrRST, HKLM\SYSTEM\CONTROLSET001\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, 0http://unstops.biz/wpad.dat?ff5885682fdef94e081a944c1994381d10447415, , [05409e3db6e30036f1686c778b781fe1]
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCKPT|Description, MPC Driver, , [86bfd6058c0dcd69ffbd4493739059a7]
PUP.Optional.MorePowerfulCleaner, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MPCPROTECTSERVICE|ImagePath, "C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe", , [2c1900dbb1e85adc63346d6b8c7738c8]
Hijack.AutoConfigURL.PrxySvrRST, HKU\S-1-5-21-3821974292-2939635832-2010893007-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|AutoConfigUrl, http://unstops.biz/wpad.dat?ff5885682fdef94e081a944c1994381d10447415, , [9fa61fbc029763d375e3a73c877c55ab]
PUP.Optional.MediaDrug, HKU\S-1-5-21-3821974292-2939635832-2010893007-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MediaDrug, "C:\MediaDrug\MediaDrug.exe" -autostart, , [91b45a8178214cea9f71c4f753b0e020]
Backdoor.Bot, HKU\S-1-5-21-3821974292-2939635832-2010893007-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|svchost0, C:\Program Files (x86)\UCBrowser\Application\UUC0789.exe, , [7ec7f3e8980187affa0e32b66f93d729]

Dati di registro: 4
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\ProgramData\Lamzap\Latqvotech.dll, Buono: (), Nocivo (C:\ProgramData\Lamzap\Latqvotech.dll),,[a69f5289b7e24ee81d42fcb6d52c7c84]
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\ProgramData\Lamzap\Biosantech.dll, Buono: (), Nocivo (C:\ProgramData\Lamzap\Biosantech.dll),,[3510e3f88a0f94a225c8c41e29da19e7]
PUP.Optional.Linkury, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {ielnksrch}, Buono: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Nocivo ({ielnksrch}),,[172e22b945542214b2bc8bcd9e6624dc]
PUP.Optional.Linkury, HKU\S-1-5-21-3821974292-2939635832-2010893007-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {ielnksrch}, Buono: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Nocivo ({ielnksrch}),,[6ed77f5c7e1b46f00b6222363ec60ff1]

Cartelle: 7
PUP.Optional.Linkury, C:\Windows\Temp\Smartbar, , [0540c7148712310591ef08d2b74c24dc],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\ondemand, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\temp, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.MediaDrug, C:\Users\Amministratore\Music\MediaDrug, , [70d5a7346f2aab8bd26fbae53cc6d828],
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Vaiait, , [380d6e6d48518fa7a9cb5425798baf51],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzaps, , [93b2f6e5e9b0d2641e7e9cddca3ab848],

File: 118
PUP.Optional.MorePowerfulCleaner, C:\WINDOWS\SYSTEM32\drivers\MPCKpt.sys, , [b66a551d00e41d5416f4cb5497926238],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MpcSafeDll.dll, , [a5a08b504f4a56e0c44ce0ae14ed649c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCProtectService.exe, , [91b423b804950234bb551b73669bdc24],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\WinService.dll, , [2124508bcdccc67022eea3eb728ff60a],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LpcManager.dll, , [ed5817c4b4e53105d739fd91748d7090],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XProcessBus.dll, , [82c3b625d3c6dd59d63a3c52ca377987],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Report.dll, , [6adb726904950a2c3ad6880669980cf4],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\MPCTray.exe, , [ec595685aced49edff113658778a53ad],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\XBus.dll, , [96affbe04851cd693dd3deb0d8294fb1],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\TrayFrame.dll, , [51f4ddfe74256acc00108d0124dd49b7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Monitor.dll, , [91b4b823009970c6b45c2a64ec15cc34],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Database.dll, , [14318c4f415822145db3f49a936e01ff],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\LogReport.dll, , [48fddb002277c2749878543a5ea329d7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\BrowserPlugIn.dll, , [b78ef2e938617bbbfd13d9b5936e59a7],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Cleaner.dll, , [e85df8e3e1b8ec4aab65494519e88977],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeProtect.dll, , [4401b9221881b1851ef21e7005fc748c],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Update.dll, , [ab9a5f7c25747cba7c94117dc43dab55],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\Web.dll, , [54f10ccfddbcff37d23e92fc47ba26da],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi.dll, , [2a1b6a71633671c543cd3559679a9a66],
PUP.Optional.Linkury, C:\ProgramData\Lamzap\Latqvotech.dll, , [a69f5289b7e24ee81d42fcb6d52c7c84],
PUP.Optional.YesSearches, C:\Program Files (x86)\Thalepharck\trzD8E2.tmp, , [2d18c615f4a546f0c9429b3323de06fa],
PUP.Optional.YesSearches, C:\Program Files (x86)\Thalepharck\Thlrprservice.exe, , [0045aa31f9a0e74f818a1cb25ea324dc],
PUP.Optional.Linkury, C:\ProgramData\Lamzap\Biglex.exe, , [6adb7c5fdfbad85e8d19e89eb24f8878],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\GrooveDomlam.bin, , [3213716a70293bfbb0d391ab41c3c53b],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\Insing.exe, , [55f0ebf0d1c80135859c1f2e12f201ff],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\Tripplephase.exe, , [56efa833d8c1a39342df46078480619f],
PUP.Optional.MorePowerfulCleaner, C:\Program Files (x86)\MPC Cleaner\SafeNavi64.dll, , [c382b922fb9ec571749cf39b46bb847c],
PUP.Optional.Elex, C:\Program Files (x86)\Reipotion\ihpul.exe, , [7acb09d24a4f55e1e46ca336946d916f],
PUP.Optional.TechAgent, C:\Program Files (x86)\TechAgent\TechMonitor.exe, , [92b347940891e84ef0de8554b24f6a96],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\149B.tmp.exe, , [143169722178b383da98fb5d28d8738d],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\amisetup0934__19334_il1.exe, , [6fd6b823465336006f23fcdb05fcbb45],
PUP.Optional.TechAgent, C:\Users\Amministratore\AppData\Local\Temp\3LmR3VUr1Z.exe, , [1a2b6f6c8514ee48b11d944509f8d62a],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\49A9.tmp.exe, , [bd8828b3f3a6a294e68ccc8c21df936d],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\5156.tmp.exe, , [59ec29b2cbceb482db97f6625ea23fc1],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\529B.tmp.exe, , [d86dd308f9a089adbbb75ff99967bc44],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\FDEB.tmp.exe, , [8fb6fddeb8e1ec4a4f23b6a2e31dc040],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\C7F2.tmp.exe, , [1c29cb102f6a013591e165f31ee2fc04],
PUP.Optional.Tuto4PC, C:\Users\Amministratore\AppData\Local\Temp\S4RXRwJG3F.exe, , [93b28457d8c1b383c4b46572af523fc1],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\8972.tmp.exe, , [4bfa9d3ef9a080b60969d2862cd4bb45],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\9368.tmp.exe, , [d76ea932c9d085b1bdb5ec6c40c0cd33],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\9FA2.tmp.exe, , [8cb99f3cb2e711258be76fe9946c27d9],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\sdf57EF.exe, , [6fd6ba21b0e9c76fd9f1f5d3a061d32d],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\sdf5E87.exe, , [ae9738a3bfda1b1bd2f88246cb363dc3],
PUP.Optional.IDSCProduct, C:\Users\Amministratore\AppData\Local\Temp\FHDXHUMB3E.exe, , [62e39e3d28710d299c2410369173b24e],
PUP.Optional.MorePowerfulCleaner, C:\Users\Amministratore\AppData\Local\Temp\kesT8wWewz.exe, , [ae9747945f3a1e1869a78c025ea3a65a],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\E680.tmp.exe, , [69dcd209fa9f0432e0928ecaff0137c9],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\E725.tmp.exe, , [94b15487badfc76f7ff3e67246bac739],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\E857.tmp.exe, , [c77e6378c9d00b2b0270f56306fa17e9],
PUP.Optional.EasyHotSpot, C:\Users\Amministratore\AppData\Local\Temp\UV5F48WNOH.exe, , [a2a36774980140f6a4944b82b64b1ee2],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\672F.tmp.exe, , [e65f18c341580234fc76e6729f616997],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\awh6828.tmp, , [034222b91c7dda5cd8ba399edf2204fc],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\BB61.tmp.exe, , [0342ba216039d75f5022f76129d78779],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\AppData\Local\Temp\C172.tmp.exe, , [99ac82595148e155cfa38ecaa9570ef2],
PUP.Optional.Tuto4PC, C:\Users\Amministratore\AppData\Local\Temp\SSYD9W1ZDS.exe, , [f2532ab1178239fd23554592f20f02fe],
PUP.Optional.Tuto4PC, C:\Users\Amministratore\AppData\Local\Temp\D6ZYDKGU2\QV6CLJNV1.exe, , [ec59dcffefaab87efb7dd502a9586e92],
PUP.Optional.QuickSearch, C:\Users\Amministratore\AppData\Local\Temp\KD8I46BFZ\fastsearch.exe, , [86bffedd4b4e65d16155a62ae120e41c],
PUP.Optional.MediaDrug, C:\Users\Amministratore\AppData\Local\Temp\ijtmp_BF2B2E53-FC40-4792-9888-D84782F830A7\installkit.exe, , [093c3d9ea1f8cf6773951c0c728fd32d],
PUP.Optional.Tuto4PC, C:\Users\Amministratore\AppData\Local\Temp\WNB659X7O1\testversion.exe, , [98ade7f4cccdf83e4b2db0273ec3c937],
PUP.Optional.WizzCaster, C:\Users\Amministratore\AppData\Local\Temp\YIRPDZA26\YIRPDZA26.exe, , [261f4299a0f944f242298ce6bf458977],
PUP.Optional.AdLoad, C:\Users\Amministratore\AppData\Local\Temp\ZCBJHQ6MA\ZCBJHQ6MA.exe, , [fd48ddfed5c462d486efdef90cf5ba46],
PUP.Optional.AdLoad, C:\Users\Amministratore\AppData\Local\Temp\2CPKBTJBZ\2CPKBTJBZ.exe, , [2e174794079256e0195ca82f956cfa06],
PUP.Optional.WizzCaster, C:\Users\Amministratore\AppData\Local\Temp\N1TSP1LZF\N1TSP1LZF.exe, , [c1845487c2d7dd592e3d4e24af55b749],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\R7EHR8B44\Bundle_NetworkManager.exe, , [6adbbe1d3564e551e6ac4097d42d25db],
PUP.Optional.Tuto4PC, C:\Users\Amministratore\AppData\Local\Temp\RCWGF3FBX\RCWGF3FBX.exe, , [0441f6e57326a591562266712ad7f709],
PUP.Optional.CheckOffer, C:\Users\Amministratore\AppData\Local\Temp\is-CS08G.tmp\windows_utilities.exe, , [fd480ccf61388ea859430403eb1622de],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\J46LOT873\Bundle_NetworkManager.exe, , [c085cc0fb0e94de92c665b7cf8091fe1],
PUP.Optional.EoRezo.Generic, C:\Users\Amministratore\AppData\Local\Temp\JXEF7ZO5U\JXEF7ZO5U.exe, , [e560508b465324129dcd6a564bb6e11f],
PUP.Optional.EoRezo.Generic, C:\Users\Amministratore\AppData\Local\Temp\69NQXNBQO\69NQXNBQO.exe, , [a2a386557029e25443275f6138c903fd],
PUP.Optional.QuickSearch, C:\Users\Amministratore\AppData\Local\Temp\PTUKN03QG\fastsearch.exe, , [2d18a3384554c96df3c30ec2fc0506fa],
PUP.Optional.BundleInstaller, C:\Users\Amministratore\Downloads\FlashVideoPlayer.exe, , [ff467368e3b6082edeab87d3b54bed13],
PUP.Optional.SafeFinder, C:\Users\Amministratore\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.safefinder.com_0.localstorage, , [ec59edee188165d1e89cddde6999f50b],
PUP.Optional.SafeFinder, C:\Users\Amministratore\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.safefinder.com_0.localstorage-journal, , [1a2b2bb0cacf63d3dea6407bb05205fb],
Trojan.FakeAlert, C:\Users\Amministratore\AppData\Local\Temp\WNB659X7O1\testversion.exe, , [f25320bbadecde5882c9616ebe45df21],
PUP.Optional.Komodia, C:\Windows\Temp\ziengine.ini.log, , [004507d422773afcb9bd9b39f90a926e],
PUP.Optional.Komodia, C:\Windows\Temp\zdengine.log, , [ef566a7199001e18beb9e1f3f2111de3],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\ApplicationHosting.dat, , [cf76c615a6f349ed4f6383522bd816ea],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\md.xml, , [70d55586ebae3ef8545f7c5911f211ef],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\noah.dat, , [9aab5e7dd1c8280ee6cea431ca396f91],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\uninstall_temp.ico, , [a79e5982cccd0531bdf803d29c679c64],
PUP.Optional.Linkury, C:\Users\Amministratore\AppData\Roaming\lobby.dat, , [21247368574251e57cc68a4cc83b2fd1],
PUP.Optional.Linkury, C:\Windows\Temp\Smartbar\Strongla.ico, , [0540c7148712310591ef08d2b74c24dc],
PUP.Optional.Linkury, C:\Windows\Temp\Smartbar\Xxx-Cof.ico, , [0540c7148712310591ef08d2b74c24dc],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Airin.dat, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Biglex.exe.config, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Bigtop.dat, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Biosantech.dll, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\conf.config, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Config.xml, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Danplus.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Lamzap.d.dat, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Lamzap.dat, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Lamzap.exe.lnk, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\md.xml, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Nimfind.exe, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Nimfind.exe.config, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Opejob.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Openfind.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\RoundTintone.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Silit.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Stantip.exe, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Stantip.exe.config, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Tontam.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\uninstall.dat, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzap\Zumit.bin, , [3510e3f88a0f94a225c8c41e29da19e7],
PUP.Optional.Linkury.Gen, C:\Users\Amministratore\AppData\Roaming\Insing.tst, , [57ee21ba2673ac8a2a7c1ac92cd79e62],
PUP.Optional.Linkury.Gen, C:\Users\Amministratore\AppData\Roaming\Tripplephase.tst, , [ac99f8e33e5b13231b8ba241c340758b],
PUP.Optional.MediaDrug, C:\Users\Amministratore\Music\MediaDrug\default.mdp, , [70d5a7346f2aab8bd26fbae53cc6d828],
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Vaiait\InstallationConfiguration.xml, , [380d6e6d48518fa7a9cb5425798baf51],
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Vaiait\uninstall.dat, , [380d6e6d48518fa7a9cb5425798baf51],
PUP.Optional.Linkury.ACMB1, C:\Program Files (x86)\Common Files\Vaiait\uninstall.ico, , [380d6e6d48518fa7a9cb5425798baf51],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzaps\ff.HP, , [93b2f6e5e9b0d2641e7e9cddca3ab848],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzaps\ff.NT, , [93b2f6e5e9b0d2641e7e9cddca3ab848],
PUP.Optional.Linkury.ACMB1, C:\ProgramData\Lamzaps\snp.sc, , [93b2f6e5e9b0d2641e7e9cddca3ab848],
PUP.Optional.Amonetize, C:\Users\Amministratore\AppData\Local\Temp\amipixel.cfg, , [1a2ba4376a2f191dc85d5227659fd42c],
PUP.Optional.Linkury.ACMB1, C:\Users\Amministratore\AppData\Roaming\Config.xml, , [1530fbe0e2b758de4423a2d7c93b5ba5],
PUP.Optional.Linkury.ACMB1, C:\Users\Amministratore\AppData\Roaming\InstallationConfiguration.xml, , [a4a18d4ecbceaa8cd3953e3b47bd34cc],
PUP.Optional.Trovi, C:\Users\Amministratore\AppData\Roaming\Mozilla\Firefox\Profiles\c82751gp.default\prefs.js, Buono: (), Nocivo (user_pref("browser.search.selectedEngine", "Trovi")Wink, ,[3312b2293762b77f936def8725dfbf41]
PUP.Optional.Linkury.ACMB1, C:\Users\Amministratore\AppData\Roaming\Mozilla\Firefox\Profiles\c82751gp.default\prefs.js, Buono: (), Nocivo (user_pref("browser.newtab.url", "C:\\ProgramData\\Lamzaps\\ff.NT")Wink, ,[4df8fedd7a1f10266dcd7bffef158779]

Settori fisici: 0
(Nessun elemento nocivo rilevato)

Grazie grazie per i vostri eventuali suggerimenti
L.

(scusato ho messo anche qui il msg.. credo sia il posto giusto)
Top
Profilo Invia messaggio privato
bdoriano
Amministratore
Amministratore


Registrato: 02/04/07 11:05
Messaggi: 14300
Residenza: 3° pianeta del sistema solare...
MessaggioInviato: 29 Mag 2016 10:15    Oggetto: Rispondi
Ciao firdis, Ciao

dal log che hai postato, vedo che non hai fatto rimuovere tutti i PUP (Potentially Unwanted Programs) di cui sei pieno. Think

Ti conviene impostare le opzioni corrette di MBAM e rifare la scansione:
  • Opzioni / Settings
  • Opzioni generali / General settings
    Lingua / Language: Italiano
  • Rilevamento e protezione / Detection and Protection
    in Opzioni rilevamento / Detection options, metti il segno di spunta alle seguenti voci:
    • Usa il motore di euristica avanzata (Shuriken) / Use Advanced Heuristic Engine (Shuriken)
    • Ricerca rootkit / Scan for rootkits
    • Analizza gli archivi compressi / Scan within archives

    in Protezione da 'non-malware' / Non-Malware Protection:
    • Rilevamenti PUP (programmi potenzialmente indesiderati) / PUP (Potentially Unwanted Programs) detections
      Gestisci i rilevamenti come malware / Treat detection as malware
    • Rilevamenti PUM (modifiche potenzialmente indesiderate) / PUM (Potentially Unwanted Modification) detections
      Gestisci i rilevamenti come malware / Treat detection as malware

Al termine della scansione, fai fare la rimozione di tutti gli elementi rilevati.

Per i logs, conviene caricarli su uno dei servizi di hosting indicati in questa discussione.
Top
Profilo Invia messaggio privato
Mostra prima i messaggi di:   
Nuovo argomento   Rispondi    Indice del forum -> Pronto Soccorso Virus Tutti i fusi orari sono GMT + 1 ora
Pagina 1 di 1

 
Vai a:  
Non puoi inserire nuovi argomenti
Non puoi rispondere a nessun argomento
Non puoi modificare i tuoi messaggi
Non puoi cancellare i tuoi messaggi
Non puoi votare nei sondaggi