Copia il contenuto del testo in basso nel box bianco di OTL e clicca sul pulsante RUN FIX.
Codice:
:OTL
F3 - HKU\user_ON_C WinNT: Load - (C:\DOCUME~1\user\IMPOST~1\Temp\36A10CA564C3AF8C16 9C.exe) - C:\Documents and Settings\user\Impostazioni locali\temp\36A10CA564C3AF8C169C.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableRegedit = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System: DisableTaskMgr = 1
O7 - HKU\user_ON_C\SOFTWARE\Microsoft\Windows\CurrentVe rsion\policies\System: DisableRegistryTools = 1
O7 - HKU\user_ON_C\SOFTWARE\Microsoft\Windows\CurrentVe rsion\policies\System: DisableRegedit = 1
O27 - HKLM IFEO\msconfig.exe: Debugger - P9KDMF.EXE File not found
O27 - HKLM IFEO\regedit.exe: Debugger - P9KDMF.EXE File not found
O27 - HKLM IFEO\taskmgr.exe: Debugger - P9KDMF.EXE File not found
[2012/04/27 10:51:01 | 000,052,224 | -H-- | M] () -- C:\WINDOWS\System32\79FF3BC364C3AF8C0C33.exe
[2012/04/09 12:51:12 | 000,960,056 | ---- | M] () -- C:\WINDOWS\System32\winsh324
[2012/04/09 12:50:38 | 000,960,056 | ---- | M] () -- C:\WINDOWS\System32\winsh323
[2012/04/09 12:50:16 | 000,960,056 | ---- | M] () -- C:\WINDOWS\System32\winsh322
[2012/04/09 12:50:02 | 000,960,056 | ---- | M] () -- C:\WINDOWS\System32\winsh321
[2012/04/09 12:49:06 | 000,960,056 | ---- | M] () -- C:\WINDOWS\System32\winsh320
[2012/03/19 05:42:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\Afgy
[2012/03/22 19:46:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\AVG Secure Search
[2012/03/20 14:18:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\Naug
[2012/03/20 15:45:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\OpenCandy
[2012/03/12 14:43:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\Razor
[2012/03/20 07:56:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\user\Dati applicazioni\Zeahefe
:reg
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
Segnalibri