SchermataBlu: mara-think browser posseduto

Soliti sintomi:
motore di ricerca del browser stravolto etc...

risolto con adwcleaner che risulta essere la medicina più rapida ed efficace per questi sintomi

di seguito riporto il log:

# AdwCleaner v3.208 - Rapporto creato 15/05/2014 in 14:07:16
# Aggiornato 11/05/2014 di Xplode
# Sistema operativo : Windows 7 Professional Service Pack 1 (64 bits)
# Nome utente : Mara - MARA-THINK
# In esecuzione da : C:\Users\Mara\Downloads\AdwCleaner.exe
# Opzione : Pulisci

***** [ Servizi ] *****

[#] Servizio Eliminato : globalUpdate
[#] Servizio Eliminato : Partner Service
Servizio Eliminato : SProtection

***** [ File / Cartelle ] *****

Cartella Eliminato : C:\ProgramData\AVG SafeGuard toolbar
Cartella Eliminato : C:\ProgramData\AVG Secure Search
Cartella Eliminato : C:\ProgramData\AVG Security Toolbar
Cartella Eliminato : C:\ProgramData\Partner
Cartella Eliminato : C:\Program Files (x86)\AVG SafeGuard toolbar
Cartella Eliminato : C:\Program Files (x86)\Crawler
Cartella Eliminato : C:\Program Files (x86)\globalUpdate
Cartella Eliminato : C:\Program Files (x86)\Iminent
Cartella Eliminato : C:\Program Files (x86)\Common Files\AVG Secure Search
Cartella Eliminato : C:\Program Files (x86)\Common Files\Umbrella
[!] Cartella Eliminato : C:\Users\Mara\AppData\Local\AV
G SafeGuard toolbar
Cartella Eliminato : C:\Users\Mara\AppData\Local\globalUpdate
Cartella Eliminato : C:\Users\Mara\AppData\Local\Temp\Iminent
Cartella Eliminato : C:\Users\Mara\AppData\Local\Temp\mt_ffx
Cartella Eliminato : C:\Users\Mara\AppData\LocalLow\AVG SafeGuard toolbar
Cartella Eliminato : C:\Users\Mara\AppData\Roaming\igdhbblpcellaljokkpfhcjlagemhgjl
Cartella Eliminato : C:\Users\Mara\AppData\Roaming\IminentToolbar
Cartella Eliminato : C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
File Eliminato : C:\Users\Mara\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
File Eliminato : C:\Windows\Tasks\fdcb7971-5693-42a6-bfa6-6a95f1a810f6-4.job
File Eliminato : C:\Windows\System32\Tasks\fdcb7971-5693-42a6-bfa6-6a95f1a810f6-4
File Eliminato : C:\Windows\Tasks\fdcb7971-5693-42a6-bfa6-6a95f1a810f6-5.job
File Eliminato : C:\Windows\System32\Tasks\fdcb7971-5693-42a6-bfa6-6a95f1a810f6-5

***** [ Collegamenti ] *****

Collegamento Disinfetatti : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolbar Crawler\Aiuto Toolbar.lnk

***** [ Registro ] *****

Valore Eliminati : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Chiave Eliminati : HKLM\SOFTWARE\Google\Chrome\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl
Chiave Eliminati : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Crawler Search
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Chiave Eliminati : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI
Chiave Eliminati : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.BrowserWndAPI.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj
Chiave Eliminati : HKLM\SOFTWARE\Classes\AVG SafeGuard toolbar.PugiObj.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\ctbcommon.Buttons
Chiave Eliminati : HKLM\SOFTWARE\Classes\ctbr.R404Pro
Chiave Eliminati : HKLM\SOFTWARE\Classes\CToolbar.TB4Client
Chiave Eliminati : HKLM\SOFTWARE\Classes\CToolbar.TB4Script
Chiave Eliminati : HKLM\SOFTWARE\Classes\CToolbar.TB4Server
Chiave Eliminati : HKLM\SOFTWARE\Classes\Iminent
Chiave Eliminati : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Chiave Eliminati : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Chiave Eliminati : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Chiave Eliminati : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Chiave Eliminati : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\tbr
Chiave Eliminati : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Chiave Eliminati : HKLM\SOFTWARE\Classes\S
Chiave Eliminati : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Chiave Eliminati : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Chiave Eliminati : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Chiave Eliminati : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\Crawler
Valore Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Chiave Eliminati : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Chiave Eliminati : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Chiave Eliminati : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Chiave Eliminati : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{1DDA201E-5B42-4352-933E-21A92B297E3B}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{4D25FB7A-8902-4291-960E-9ADA051CFBBF}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{DBDB6FAA-1F5F-4A18-B60B-7A905C7FF83F}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chiave Eliminati : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Chiave Eliminati : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{04006843-5199-4CE4-B3CD-8092CC91706E}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Chiave Eliminati : HKLM\SOFTWARE\Classes\TypeLib\{E79BB61D-7F1A-41DF-8AD0-402795E3B566}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chiave Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chiave Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Chiave Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Chiave Eliminati : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7459F1D0-9FB6-4D71-AA7B-9DECB34EB704}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FBF1B8D2-9A06-4174-A8B5-E38606DDB92B}
Chiave Eliminati : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Chiave Eliminati : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB}
Chiave Eliminati : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Valore Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Valore Eliminati : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Valore Eliminati : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
Valore Eliminati : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{84FF7BD6-B47F-46F8-9130-01B2696B36CB}]
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{460C3D19-B3D4-4964-A550-77D263B0CCCB}
Chiave Eliminati : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chiave Eliminati : HKCU\Software\AVG SafeGuard toolbar
Chiave Eliminati : HKCU\Software\CToolbar
Chiave Eliminati : HKCU\Software\Iminent
Chiave Eliminati : HKCU\Software\IminentToolbar
Chiave Eliminati : HKCU\Software\installedbrowserextensions
Chiave Eliminati : HKCU\Software\Softonic
Chiave Eliminati : HKLM\Software\AVG SafeGuard toolbar
Chiave Eliminati : HKLM\Software\AVG Security Toolbar
Chiave Eliminati : HKLM\Software\CToolbar
Chiave Eliminati : HKLM\Software\Iminent
Chiave Eliminati : HKLM\Software\installedbrowserextensions
Chiave Eliminati : HKLM\Software\Umbrella
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG SafeGuard toolbar
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CToolbar_UNINSTALL
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Chiave Eliminati : [x64] HKLM\SOFTWARE\Iminent
Chiave Eliminati : [x64] HKLM\SOFTWARE\installedbrowserextensions
Chiave Eliminati : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\DatamngrCoordinator.exe

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041

Impostazioni Ripristinato : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Impostazioni Ripristinato : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Impostazioni Ripristinato : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [SearchAssistant]
Impostazioni Ripristinato : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [CustomizeSearch]
Impostazioni Ripristinato : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [SearchAssistant]
Impostazioni Ripristinato : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [CustomizeSearch]

-\\ Google Chrome v34.0.1847.137

*************************

AdwCleaner[R0].txt - [16954 octets] - [15/05/2014 14:06:27]
AdwCleaner[S0].txt - [15725 octets] - [15/05/2014 14:07:16]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15786 octets] ##########

SchermataBlu

giovedì 15 maggio 2014

mara-think browser posseduto

Nessun commento:

Posta un commento