Pagina 1 di 2 1 2 ultimoultimo
Visualizzazione dei risultati da 1 a 10 su 18
  1. #1

    Problema Connessione sito microsoft

    Salve, sta mattina mentre cercavo di entrare sul sito della microsoft mi è venuta fuori questa https://drive.google.com/file/d/0B9n...it?usp=sharing leggendo la discussione ho provato a fare una scansione con il mio antivirus (che è stata inutile ) poi ho usato malwarebytes che mi ha trovato 8 problemi (risolti) ed infine ho provato a fare una scansione online, il problema rimane e non so come farlo sparire il log di hijackthis è il seguente :

    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 22:49:27, on 28/12/2013
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v11.0 (11.00.9600.16428)




    Boot mode: Normal


    Running processes:
    C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    C:\Users\Gabriel\AppData\Local\Akamai\netsession_w in.exe
    C:\Users\Gabriel\AppData\Local\Akamai\netsession_w in.exe
    C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
    C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    C:\Users\Gabriel\Desktop\Nuova cartella\HijackThis.exe


    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
    O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll
    O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
    O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
    O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
    O4 - HKLM\..\Run: [NI Background Service] D:\Scuola\Multisim\Shared\Update Service\niupdate.exe
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Gabriel\AppData\Local\Akamai\netsession_ win.exe"
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\DAEMON Tools Lite\DTLite.exe" -autorun
    O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Office\Office14\MSOSYNC.EXE"
    O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
    O4 - Global Startup: SRS Premium Sound.lnk = ?
    O8 - Extra context menu item: E&sporta in Microsoft Excel - res://D:\Office\Office14\EXCEL.EXE/3000
    O8 - Extra context menu item: I&nvia a OneNote - res://D:\Office\Office14\ONBttnIE.dll/105
    O8 - Extra context menu item: Nuova Nota - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.htm l
    O8 - Extra context menu item: Ritaglia immagine - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?c lipAction=4
    O8 - Extra context menu item: Ritaglia questa pagina - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?c lipAction=1
    O8 - Extra context menu item: Ritaglia selezionato - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?c lipAction=3
    O8 - Extra context menu item: Ritaglio URL - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?c lipAction=0
    O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    O9 - Extra button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra 'Tools' menuitem: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.htm l
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\\EvernoteIERes\AddNote.htm l
    O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
    O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpda teService.exe
    O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
    O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
    O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
    O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe
    O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - D:\Scuola\Multisim\Shared\Security\nidmsrv.exe
    O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\Windows\SysWOW64\nisvcloc.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


    --
    End of file - 10935 bytes

  2. #2
    Utente di HTML.it L'avatar di menatwork
    Registrato dal
    May 2009
    Messaggi
    4,330
    da hijackthis una grossa infezione difficilmente riesci a vederla

    riesci ad entrare QUI?

    puoi allegare il log della scansione fatta con malwarebytes?
    i log delle scansioni caricali = > QUI

    oppure = > QUI

  3. #3
    Ciao si riesco tranquillamente ad entrare li l'unico problema sembra essere il sito della microsoft il log della scansione con malwarebytes non posso allegarlo perché come un idiota l'ho cancellato poco dopo averlo fatto per sbaglio rifaccio la scansione domani mattina e lo allego Grazie mille dell'interesse.

  4. #4
    Utente di HTML.it L'avatar di menatwork
    Registrato dal
    May 2009
    Messaggi
    4,330
    il log di malwarebytes puoi recuperarlo aprendo il programma e andando nel tabellino ''log'' da li' apri quello che fa riferimento alla scansione, lo vedi dalla data

    dovresti farmi anche una scansione con combofix, probabilmente qualche malware che malwarebytes non ha intercettato potrebbe essere ancora nella macchina
    i log delle scansioni caricali = > QUI

    oppure = > QUI

  5. #5
    Ecco il log :
    2013/12/28 16:03:10 +0100 ASUS Gabriel MESSAGE Executing scheduled update: Daily
    2013/12/28 16:03:14 +0100 ASUS Gabriel MESSAGE Starting protection
    2013/12/28 16:03:14 +0100 ASUS Gabriel MESSAGE Protection started successfully
    2013/12/28 16:03:14 +0100 ASUS Gabriel MESSAGE Starting IP protection
    2013/12/28 16:03:35 +0100 ASUS Gabriel MESSAGE IP Protection started successfully
    2013/12/28 16:03:50 +0100 ASUS Gabriel MESSAGE Starting database refresh
    2013/12/28 16:03:50 +0100 ASUS Gabriel MESSAGE Stopping IP protection
    2013/12/28 16:03:52 +0100 ASUS Gabriel MESSAGE IP Protection stopped successfully
    2013/12/28 16:03:55 +0100 ASUS Gabriel MESSAGE Database refreshed successfully
    2013/12/28 16:03:55 +0100 ASUS Gabriel MESSAGE Starting IP protection
    2013/12/28 16:03:59 +0100 ASUS Gabriel MESSAGE IP Protection started successfully
    2013/12/28 16:03:59 +0100 ASUS Gabriel MESSAGE Starting database refresh
    2013/12/28 16:03:59 +0100 ASUS Gabriel MESSAGE Scheduled update executed successfully: database updated from version v2013.04.04.07 to version v2013.12.28.05
    2013/12/28 16:03:59 +0100 ASUS Gabriel MESSAGE Stopping IP protection
    2013/12/28 16:04:00 +0100 ASUS Gabriel MESSAGE IP Protection stopped successfully
    2013/12/28 16:04:02 +0100 ASUS Gabriel MESSAGE Database refreshed successfully
    2013/12/28 16:04:02 +0100 ASUS Gabriel MESSAGE Starting IP protection
    2013/12/28 16:04:05 +0100 ASUS Gabriel MESSAGE IP Protection started successfully
    2013/12/28 16:05:39 +0100 ASUS (null) MESSAGE Starting protection
    2013/12/28 16:05:39 +0100 ASUS (null) MESSAGE Protection started successfully
    2013/12/28 16:05:39 +0100 ASUS (null) MESSAGE Starting IP protection
    2013/12/28 16:05:43 +0100 ASUS (null) MESSAGE IP Protection started successfully
    2013/12/28 16:43:26 +0100 ASUS (null) MESSAGE Starting protection
    2013/12/28 16:43:26 +0100 ASUS (null) MESSAGE Protection started successfully
    2013/12/28 16:43:26 +0100 ASUS (null) MESSAGE Starting IP protection
    2013/12/28 16:43:30 +0100 ASUS Gabriel MESSAGE IP Protection started successfully
    2013/12/28 18:42:54 +0100 ASUS (null) MESSAGE Starting protection
    2013/12/28 18:42:54 +0100 ASUS (null) MESSAGE Protection started successfully
    2013/12/28 18:42:54 +0100 ASUS (null) MESSAGE Starting IP protection
    2013/12/28 18:42:58 +0100 ASUS (null) MESSAGE IP Protection started successfully
    2013/12/28 19:11:19 +0100 ASUS Gabriel IP-BLOCK 74.81.183.83 (Type: outgoing, Port: 50426, Process: chrome.exe)
    2013/12/28 19:11:19 +0100 ASUS Gabriel IP-BLOCK 74.81.183.81 (Type: outgoing, Port: 50427, Process: chrome.exe)
    2013/12/28 19:11:19 +0100 ASUS Gabriel IP-BLOCK 74.81.183.84 (Type: outgoing, Port: 50428, Process: chrome.exe)
    2013/12/28 19:11:19 +0100 ASUS Gabriel IP-BLOCK 74.81.183.82 (Type: outgoing, Port: 50429, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50664, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50665, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50666, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50670, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50671, Process: chrome.exe)
    2013/12/28 19:15:44 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50674, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50728, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50730, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50732, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50735, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50737, Process: chrome.exe)
    2013/12/28 19:15:53 +0100 ASUS Gabriel IP-BLOCK 88.208.33.4 (Type: outgoing, Port: 50739, Process: chrome.exe)
    2013/12/28 19:46:46 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51178, Process: chrome.exe)
    2013/12/28 19:46:46 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51180, Process: chrome.exe)
    2013/12/28 19:46:46 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51182, Process: chrome.exe)
    2013/12/28 19:46:46 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51185, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51224, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51228, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51229, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 217.23.9.122 (Type: outgoing, Port: 51231, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51233, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51235, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51237, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51239, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51241, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51243, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 94.242.214.106 (Type: outgoing, Port: 51245, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51246, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51248, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51250, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 67.212.88.146 (Type: outgoing, Port: 51252, Process: chrome.exe)
    2013/12/28 19:47:10 +0100 ASUS Gabriel IP-BLOCK 109.163.226.148 (Type: outgoing, Port: 51258, Process: chrome.exe)
    88.208.33.4
    2013/12/28 22:48:27 +0100 ASUS Gabriel MESSAGE Stopping protection
    2013/12/28 22:48:27 +0100 ASUS Gabriel MESSAGE Protection stopped successfully
    2013/12/28 22:48:27 +0100 ASUS Gabriel MESSAGE Stopping IP protection
    2013/12/28 22:48:28 +0100 ASUS Gabriel MESSAGE IP Protection stopped successfully
    2013/12/28 22:48:28 +0100 ASUS Gabriel MESSAGE Protection stopped

    Si alle 22.48 sono stato io spegnerlo

  6. #6
    Utente di HTML.it L'avatar di menatwork
    Registrato dal
    May 2009
    Messaggi
    4,330
    Si alle 22.48 sono stato io spegnerlo
    perdonami ma non capisco, quello non e' il log di malwarebytes
    i log delle scansioni caricali = > QUI

    oppure = > QUI

  7. #7
    L'ho presso dalla finestra log di malwarebytes ce ne uno solo e quando lo apro si apre quello do mattina comunque rieseguo la scansione anche per vedere se trova qualcos'altro.

  8. #8
    Utente di HTML.it L'avatar di menatwork
    Registrato dal
    May 2009
    Messaggi
    4,330
    prima di ripetere la scansione controlla anche nei servizi se il Servizio trasferimento intelligente in background” e' avviato

    da start esegui scrivi services.msc e dai ok vai nella lista servizi e da li' lo controlli
    i log delle scansioni caricali = > QUI

    oppure = > QUI

  9. #9
    Ecco il log di malwarebytes
    Malwarebytes Anti-Malware (Prova) 1.75.0.1300www.malwarebytes.org


    Versione database: v2013.12.28.05


    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 11.0.9600.16476
    Gabriel :: ASUS [amministratore]


    Protezione: Attivata


    29/12/2013 12:21:23
    mbam-log-2013-12-29 (12-21-23).txt


    Tipo di scansione: Scansione completa (C:\|D:\|)
    Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM | P2P
    Opzioni di scansione disattivate:
    Elementi esaminati: 353579
    Tempo impiegato: 50 minuti, 38 secondi


    Processi rilevati in memoria: 0
    (non sono stati rilevati elementi nocivi)


    Moduli di memoria rilevati: 0
    (non sono stati rilevati elementi nocivi)


    Chiavi di registro rilevate: 0
    (non sono stati rilevati elementi nocivi)


    Valori di registro rilevati: 0
    (non sono stati rilevati elementi nocivi)


    Voci rilevate nei dati di registro: 0
    (non sono stati rilevati elementi nocivi)


    Cartelle rilevate: 0
    (non sono stati rilevati elementi nocivi)


    File rilevati: 0
    (non sono stati rilevati elementi nocivi)


    (fine)

    Il Servizio trasferimento intelligente in background è attivo ora installo anche combofix e provo.

  10. #10
    Ecco combofix che li mortacci sua mi ha reso il computer non usabile mandandomi in crash tutto (anche dopo riavviato)
    http://wikisend.com/download/207882/ComboFix.txt

Permessi di invio

  • Non puoi inserire discussioni
  • Non puoi inserire repliche
  • Non puoi inserire allegati
  • Non puoi modificare i tuoi messaggi
  •  
Powered by vBulletin® Version 4.2.1
Copyright © 2021 vBulletin Solutions, Inc. All rights reserved.