Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » log compact 6720s

log compact 6720s Opzioni
Topic Precedente · Topic Sucessivo
black02
Inviato: Friday, June 08, 2012 4:41:13 PM

Rank: AiutAmico

Iscritto dal : 8/23/2007
Posts: 1,626
Mi controllate per cortesia questo log del portatile di mia figlia

GRAZIE


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16.39.06, on 08/06/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19222)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Utente\Downloads\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=IT_IT&c=74&bd=smb&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - (no file)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: Controllo/blocco dispositivi HP ProtectTools (FLCDLOCK) - Hewlett-Packard Ltd - C:\Windows\system32\flcdlock.exe
O23 - Service: Servizio di Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) - Unknown owner - C:\Program Files\Macrium\Reflect\ReflectService.exe
O23 - Service: Utilità di pianificazione di LiveUpdate automatico - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe

--
End of file - 6579 bytes
Torna in alto
 
Sponsor
Inviato: Friday, June 08, 2012 4:41:13 PM

 
Torna in alto
 
cbbusto
Inviato: Friday, June 08, 2012 11:26:54 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ciao black, il log è a posto, puoi fixare ed eliminare questa voce:

O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - (no file)

Non hai detto se il pc ha qualche problema, comunque installa Malwarebytes, su aiutamici, prima lo aggiorni e poi fai una scansione COMPLETA, non rapida, elimina quello che trova.
Tieni pulito il pc con Ccleaner e fai fare una deframmentazione un paio di volte al mese.
Un saluto. Speak to the hand
Torna in alto
 
black02
Inviato: Saturday, June 09, 2012 9:28:20 AM

Rank: AiutAmico

Iscritto dal : 8/23/2007
Posts: 1,626
ciao cbbusto,

il problema, e quasi sempre impallato, ho dato un'occhio con revo e ci sono 88 programmi, tra l'altro, magari mi sbaglio ma mi sembra ci siano dei doppioni.

ho cercato di fare tramite paint la foto ma sembra non funzionare il tasto stamp-paint incolla per postarti l'immagine, esiste un'altro sistema??


adesso stò facendo la scansione con malw., poi installo ASC che fa anche la deframmentazione


grazie per adesso

questi sono i programmi dentro

Activation Assistant for the 2007 Microsoft Office suites Microsoft Corporation 29/02/2008 14,0MB
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 03/05/2012 11.2.202.235
AGEIA PhysX v7.03.21 AGEIA Technologies, Inc. 10/12/2008 63,4MB 7.03.21
Agere Systems HDA Modem Agere Systems 13/12/2007
Application Installer 4.00.B14 Hewlett-Packard Company 29/02/2008 0,89MB 4.00.B14
Assistente per l'accesso a Windows Live Microsoft Corporation 05/03/2009 1,93MB 5.000.818.6
BIOS Configuration for HP ProtectTools Hewlett-Packard 13/12/2007 2,63MB 3.00 F1
Broadcom 802.11 Wireless LAN Adapter Broadcom Corporation 29/02/2008 8,10MB 4.170.25.4
BurnAware Free 3.3 Burnaware Technologies 24/07/2011 21,6MB
Business Contact Manager per Outlook 2007 SP2 Microsoft Corporation 03/10/2009 31,5MB 3.0.8619.1
Camera RAW Plug-In for EPSON Creativity Suite SEIKO EPSON CORPORATION 19/03/2009 13,3MB 2.3.0.0
CCleaner Piriform 22/05/2012 0,96MB 3.19
Codice Fiscale 25/03/2008 1,34MB
Componenti di connettività di Microsoft Office Small Business Microsoft Corporation 13/12/2007 0,15MB 2.0.7024.0
Device Access Manager for HP ProtectTools Nome società 13/12/2007 17,4MB 2.0.0.0
EASEUS Partition Master 9.1.0 Home Edition EASEUS 09/02/2012 38,1MB
Empire Earth III Sierra Entertainment 10/12/2008 5.299MB 1.00.0000
EPSON Attach To Email SEIKO EPSON 19/03/2009 0,88MB 1.01.0000
Epson Easy Photo Print 2 SEIKO EPSON CORPORATION 25/07/2011 98,9MB 2.1.0.0
EPSON File Manager 19/03/2009 28,4MB 1.3.1.0
EPSON Scan Assistant 19/03/2009 3,78MB 1.10.00
EPSON Stylus S20 Series Printer Uninstall SEIKO EPSON Corporation 19/03/2009 4,33MB
EPSON Stylus S20_T10_T20 Manuale 19/03/2009 4,33MB
ESU for Microsoft Vista Hewlett-Packard 13/12/2007 11,9MB 1.0.20.1
Facebook Plug-In Facebook, Inc. 07/02/2010 6,26MB
File di supporto dell'installazione di Microsoft SQL Server (Italiano) Microsoft Corporation 08/12/2008 23,3MB 9.00.3042.00
Google Toolbar for Internet Explorer Google Inc. 17/05/2012 7,34MB 7.3.2710.138
HP Customer Experience Enhancements Hewlett-Packard 13/12/2007 0,98MB 5.3.0.2325
HP Easy Setup - Frontend Hewlett-Packard 13/12/2007 1,59MB 5.3.0.2325
HP Help and Support Hewlett-Packard 13/12/2007 45,3MB 1.2.2
HP Notebook Accessories Product Tour Hewlett-Packard 13/12/2007 10,1MB 13.0.0
HP ProtectTools Security Manager Hewlett-Packard 13/12/2007 7,10MB 3.00 A10
HP Quick Launch Buttons 6.20 G2 Hewlett-Packard 13/12/2007 24,0MB 6.20 G2
HP Update Hewlett-Packard 30/12/2008 3,76MB 4.000.012.001
HP Wireless Assistant Hewlett-Packard 13/12/2007 3,94MB 3.00 G1
Installer HP Backup & Recovery Manager Hewlett-Packard Company 13/12/2007 7.422MB 4.0.19
Intel(R) Graphics Media Accelerator Driver 13/12/2007
Intel(R) PRO Network Connections Drivers 13/12/2007
Java(TM) 6 Update 30 Sun Microsystems, Inc. 16/12/2008 94,4MB 6.0.300
Java(TM) 6 Update 5 Sun Microsystems, Inc. 27/04/2008 136,2MB 1.6.0.50
Java(TM) 6 Update 7 Sun Microsystems, Inc. 18/07/2008 136,2MB 1.6.0.70
Java(TM) SE Runtime Environment 6 Update 1 Sun Microsystems, Inc. 13/12/2007 167,3MB 1.6.0.10
Kung Fu Panda(TM) Demo Activision 03/09/2008 582MB 1.00.0000
LiveUpdate 3.2 (Symantec Corporation) Symantec Corporation 24/03/2008 19,4MB 3.2.0.68
Macrium Reflect Free Edition Paramount Software (UK) Ltd. 09/02/2012 5.0.4118
Malwarebytes Anti-Malware versione 1.61.0.1400 Malwarebytes Corporation 07/06/2012 6,71MB 1.61.0.1400
McDonald's Dragons Name of your company 31/05/2008 48,4MB
Microsoft .NET Framework 1.1 26/03/2008
Microsoft .NET Framework 1.1 Italian Language Pack Microsoft 13/12/2007 3,03MB 1.1.4322
Microsoft .NET Framework 3.5 - Language Pack SP1 (italiano) Microsoft Corporation 15/08/2009 37,0MB
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 20/03/2009 37,0MB
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 22/02/2011 120,3MB 4.0.30319
Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) Microsoft Corporation 22/02/2011 10,5MB 4.0.30319
Microsoft Office 2007 Primary Interop Assemblies Microsoft Corporation 12/12/2011 12.0.4518.1014
Microsoft Office Enterprise 2007 Microsoft Corporation 08/02/2012 630MB 12.0.6612.1000
Microsoft Office File Validation Add-In Microsoft Corporation 13/09/2011 7,92MB 14.0.5130.5003
Microsoft Silverlight Microsoft Corporation 07/06/2012 4.1.10329.0
Microsoft SQL Server 2005 Microsoft Corporation 14/12/2007 42,7MB
Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 07/12/2008 1,74MB 3.1.0000
Microsoft SQL Server Native Client Microsoft Corporation 08/12/2008 2,62MB 9.00.3042.00
Microsoft SQL Server VSS Writer Microsoft Corporation 08/12/2008 0,69MB 9.00.3042.00
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 29/07/2009 0,25MB 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 16/06/2011 0,29MB 8.0.61001
MSXML 4.0 SP2 (KB936181) Microsoft Corporation 26/03/2008 1,27MB 4.20.9848.0
MSXML 4.0 SP2 (KB941833) Microsoft Corporation 28/03/2008 1,27MB 4.20.9849.0
MSXML 4.0 SP2 (KB954430) Microsoft Corporation 11/11/2008 1,28MB 4.20.9870.0
MSXML 4.0 SP2 (KB973688) Microsoft Corporation 28/11/2009 1,34MB 4.20.9876.0
PDF-Viewer Tracker Software Products Ltd 24/07/2011 23,5MB 2.0.55.0
PDFCreator Frank Heindörfer, Philip Chinery 26/07/2011 30,1MB 1.2.1
Raccolta foto di Windows Live Microsoft Corporation 08/12/2008 20,7MB 12.0.1329.0201
Serious Sam: The First Encounter 01/06/2009 1,25MB
Spelling Dictionaries Support For Adobe Reader 8 Adobe Systems 25/11/2008 32,5MB 8.0.0
SUPERAntiSpyware SUPERAntiSpyware.com 26/07/2011 17,8MB 4.55.1000
Synaptics Pointing Device Driver Synaptics 14/12/2007 12,8MB 9.1.11.3
Unlocker 1.8.7 Cedrick Collomb 28/12/2009 0,23MB 1.8.7
Vista Default Settings Hewlett-Packard 13/12/2007 0,27MB 1.00 C2
VLC media player 1.1.11 VideoLAN 09/02/2012 49,9MB 1.1.11
VSO Image Resizer 4.0.0.42 VSO-Software 26/07/2011 28,5MB 4.0.0.42
Windows Live Mail Microsoft Corporation 07/12/2008 19,8MB 12.0.1606.1023
Windows Live Writer Microsoft Corporation 08/12/2008 12.0.1370.0325
WinRAR gestione archivi 25/03/2008 3,38MB
Torna in alto
 
cbbusto
Inviato: Saturday, June 09, 2012 11:53:53 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Effettivamente di programmi ne hai parecchi, qualcuno inutile.
Comunque con chiusi i programmi e disconnesso apri HJT e fixa ed eliminare questi:

O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start

O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

Come sw hai diverse vs di Java obsolete, disinstallale tutte poi vai QUI e scarica
l'ultima versione che dovrebbe essere la 7 update 4.
Elimina anche questi Net Famework inutili:
Microsoft .NET Framework 1.1 Italian Language Pack Microsoft 13/12/2007 3,03MB 1.1.4322
Microsoft .NET Framework 3.5 SP1 Microsoft Corporation 20/03/2009 37,0MB
Fai una pulizia con Ccleaner oppure se preferisci con ASC con questo stai attento cosa elimini, poi deframmenta.
Fai anche uno scandisk.
Ciao
Torna in alto
 
Utenti presenti in questo topic
Guest

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » log compact 6720s


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.