Condividi:        

Sempre su Dialer Local Internet

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: m.paolo, kadosh, Luke57

Sempre su Dialer Local Internet

Postdi maxbridge » 14/10/07 14:20

Ti ringrazio. Ecco il log di systemscan dopo aver deselezionato la voce:

http://www.sendmefile.com/00588526
maxbridge
Utente Junior
 
Post: 36
Iscritto il: 04/08/06 10:28

Sponsor
 

Postdi Luke57 » 14/10/07 14:43

Ciao,, scarica deldomains da qui:
http://www.mvps.org/winhelp2002/DelDomains.inf
lo metti sul desktop.

Disistalla, da pannello di controllo, la jre versione antidiluviana che hai nel computer, eliminadno la relativa cartella.

scarica avenger sul desktop
http://swandog46.geekstogo.com/avenger.zip
Decomprimi l'archivio
Avvia il file avenger.exe
Seleziona l'opzione "Input Script Manually"
Clicca sulla lente di ingrandimento

Ti si apre una finestra "View/edit script"
All'interno del box bianco,copia e incolla le scritte in neretto:

folders to delete:
C:\DOCUME~1\Massi\IMPOST~1\Temp
C:\Windows\temp


files to move:
C:\Program Files\Launch Manager\bak\Wbutton.exe | C:\Program Files\Launch Manager\Wbutton.exe
C:\Program Files\Launch Manager\bak\CtrlVol.exe | C:\Program Files\Launch Manager\CtrlVol.exe
C:\Program Files\Launch Manager\bak\OSDCtrl.exe | C:\Program Files\Launch Manager\OSDCtrl.exe
C:\Program Files\Launch Manager\bak\HotkeyApp.exe | C:\Program Files\Launch Manager\HotkeyApp.exe
C:\Program Files\Launch Manager\bak\PowerKey.exe | C:\Program Files\Launch Manager\PowerKey.exe
C:\Program Files\Launch Manager\bak\LaunchAp.exe | C:\Program Files\Launch Manager\LaunchAp.exe
C:\Sysinfo\CyberLink\PowerDVD\bak\PDVDServ.exe | C:\Sysinfo\CyberLink\PowerDVD\PDVDServ.exe
C:\Programmi\ltmoh\bak\Ltmoh.exe | C:\Programmi\ltmoh\Ltmoh.exe
C:\Programmi\Acer\Notebook Manager\bak\almxptray.exe | C:\Programmi\Acer\Notebook Manager\almxptray.exe
C:\Programmi\Adobe\Acrobat 7.0\Reader\bak\AdobeUpdateManager.exe | C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe
C:\Programmi\Synaptics\SynTP\bak\SynTPEnh.exe | C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\Programmi\Synaptics\SynTP\bak\SynTPLpr.exe | C:\Programmi\Synaptics\SynTP\SynTPLpr.exe
C:\WINDOWS\ime\imjp8_1\bak\IMJPMIG.EXE | C:\WINDOWS\ime\imjp8_1\IMJPMIG.EXE
C:\WINDOWS\system32\IME\TINTLGNT\bak\TINTSETP.EXE | C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
C:\WINDOWS\system32\IME\PINTLGNT\bak\ImScInst.exe | C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe
C:\WINDOWS\system32\bak\ctfmon.exe | C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\bak\RUNXMLPL.exe | C:\WINDOWS\RUNXMLPL.exe


registry values to delete:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run | WindowsServicesStartup
HKLM\Software\Microsoft\Windows\CurrentVersion\Run | crtfmon

Registry values to replace with dummy:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows | AppInit_DLLs


Clicca sul pulsante Done
Clicca sull'icona del semaforo verde
Rispondi due volte Yes
Il pc dovrebbe riavviarsi da solo, se così non fosse riavvialo manualmente.
Posta anche il log generato da avenger, lo trovi in C:\ è un file di testo

Poi, c lick tasto dx sul file deldomains.inf e scegli Installa (fa tutto da sè)
Luke57
Moderatore
 
Post: 6415
Iscritto il: 11/08/05 19:10

Postdi maxbridge » 14/10/07 15:13

fatto.
ecco il log di avenger:

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\ypsvvreq

*******************

Script file located at: \??\C:\cbrchjeu.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Folder C:\DOCUME~1\Massi\IMPOST~1\Temp deleted successfully.
Folder C:\Windows\temp deleted successfully.
File move operation C:\Program Files\Launch Manager\bak\Wbutton.exe|C:\Program Files\Launch Manager\Wbutton.exe completed successfully.
File move operation C:\Program Files\Launch Manager\bak\CtrlVol.exe|C:\Program Files\Launch Manager\CtrlVol.exe completed successfully.
File move operation C:\Program Files\Launch Manager\bak\OSDCtrl.exe|C:\Program Files\Launch Manager\OSDCtrl.exe completed successfully.
File move operation C:\Program Files\Launch Manager\bak\HotkeyApp.exe|C:\Program Files\Launch Manager\HotkeyApp.exe completed successfully.
File move operation C:\Program Files\Launch Manager\bak\PowerKey.exe|C:\Program Files\Launch Manager\PowerKey.exe completed successfully.
File move operation C:\Program Files\Launch Manager\bak\LaunchAp.exe|C:\Program Files\Launch Manager\LaunchAp.exe completed successfully.
File move operation C:\Sysinfo\CyberLink\PowerDVD\bak\PDVDServ.exe|C:\Sysinfo\CyberLink\PowerDVD\PDVDServ.exe completed successfully.
File move operation C:\Programmi\ltmoh\bak\Ltmoh.exe|C:\Programmi\ltmoh\Ltmoh.exe completed successfully.
File move operation C:\Programmi\Acer\Notebook Manager\bak\almxptray.exe|C:\Programmi\Acer\Notebook Manager\almxptray.exe completed successfully.
File move operation C:\Programmi\Adobe\Acrobat 7.0\Reader\bak\AdobeUpdateManager.exe|C:\Programmi\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe completed successfully.
File move operation C:\Programmi\Synaptics\SynTP\bak\SynTPEnh.exe|C:\Programmi\Synaptics\SynTP\SynTPEnh.exe completed successfully.
File move operation C:\Programmi\Synaptics\SynTP\bak\SynTPLpr.exe|C:\Programmi\Synaptics\SynTP\SynTPLpr.exe completed successfully.
File move operation C:\WINDOWS\ime\imjp8_1\bak\IMJPMIG.EXE|C:\WINDOWS\ime\imjp8_1\IMJPMIG.EXE completed successfully.
File move operation C:\WINDOWS\system32\IME\TINTLGNT\bak\TINTSETP.EXE|C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE completed successfully.
File move operation C:\WINDOWS\system32\IME\PINTLGNT\bak\ImScInst.exe|C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe completed successfully.
File move operation C:\WINDOWS\system32\bak\ctfmon.exe|C:\WINDOWS\system32\ctfmon.exe completed successfully.
File move operation C:\WINDOWS\bak\RUNXMLPL.exe|C:\WINDOWS\RUNXMLPL.exe completed successfully.
Registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|WindowsServicesStartup deleted successfully.
Registry value HKLM\Software\Microsoft\Windows\CurrentVersion\Run|crtfmon deleted successfully.
Registry value HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows|AppInit_DLLs replaced with dummy successfully.

Completed script processing.

*******************

Finished! Terminate.
maxbridge
Utente Junior
 
Post: 36
Iscritto il: 04/08/06 10:28

Postdi edo_aol » 14/10/07 20:58

tutto e' andato a buon fine.
Avatar utente
edo_aol
Utente Senior
 
Post: 415
Iscritto il: 13/04/07 14:26


Torna a Sicurezza e Privacy


Topic correlati a "Sempre su Dialer Local Internet":


Chi c’è in linea

Visitano il forum: Nessuno e 35 ospiti