Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Avvio rallentato

3 pages: 1 [2] 3
Avvio rallentato Opzioni
Topic Precedente · Topic Sucessivo
lui49
Inviato: Monday, September 07, 2020 12:29:30 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
Allora
il pc è nato con w10 ma ha subito un paio di upgrade fino alla 1803 (ed ogni volta ho perso funzionalità in vari programmi, non più nella mia disponibilità, che giravano per il rotto della cuffia). Con wub ho fermato gli upgrade e non vorrei correre il rischio, passando alla 1809, di perderne altri. Vorrei quindi provare a rianimare la macchina, che funzionava alla grande fino ad un ripristino ad una configurazione precedente costretto a fare un mese fa per blocco del pc, in questa configurazione, sempre se possibile. Ti metto il log..

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform: x64 Windows 10 (Home), 10.0.17134.1246 (ReleaseId: 1803), Service Pack: 0
Time: 07.09.2020 - 12:17 (UTC+02:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Elevated: Yes
Ran by: Pietro (group: Administrator) on LAPTOP-M6PTJ2RK, FirstRun: yes

Chrome: 75.0.3770.100
Edge: 11.0.17134.1130
Internet Explorer: 11.0.17134.1
Default: "C:\Programmi Portable\FirefoxPortable\App\firefox64\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
1 C:\Program Files (x86)\Common Files\microsoft shared\VS7Debug\MDM.EXE
1 C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe


Ora windows updater mi avvisa che il mio pc non è ancora pronto per il passaggio alla 1903 ....e va a finire che io riblocco tutto e mi tengo la 1803 completamente aggiornata.
1 C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
1 C:\Program Files (x86)\Firetrust\MailWasher\MailWasher.exe
1 C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
1 C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
1 C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
1 C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
1 C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1 C:\Program Files (x86)\Multimedia Mouse Driver\MouseDrv.exe
1 C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
1 C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
1 C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
1 C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
1 C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
1 C:\Program Files\HPCommRecovery\HPCommRecovery.exe
1 C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
2 C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\NortonSecurity.exe
1 C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\nsWscSvc.exe
2 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
1 C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
1 C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
1 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
7 C:\Programmi Portable\FirefoxPortable\App\firefox64\firefox.exe
1 C:\Programmi Portable\FirefoxPortable\FirefoxPortable.exe
1 C:\Programmi Portable\HiJackThis\HiJackThis.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\RtkBtManServ.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHDCPSvc.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHeciSvc.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxCUIService.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxEM.exe
1 C:\Windows\System32\Intel\DPTF\esif_uf.exe
3 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SettingSyncHost.exe
1 C:\Windows\System32\SgrmBroker.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
59 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\vds.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wlanext.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\Temp\DPTF\esif_assist_64.exe
1 C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://it.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [SuggestionsURL,SuggestionsURLFallback] = http://ie8.ebay.com/open-search/output-xml.php?q={searchTerms}&c=0 - eBay
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [SuggestionsURL_JSON] = http://sug.ebay.com/?q={searchTerms}&c=0 - eBay
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [URL] = http://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms} - eBay
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [SuggestionsURL,SuggestionsURLFallback] = http://it.wikipedia.org/w/api.php?action=opensearch&format=xml&search={searchTerms}&namespace=0 - Wikipedia (it)
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [SuggestionsURL_JSON] = http://it.wikipedia.org/w/api.php?action=opensearch&search={searchTerms}&namespace=0 - Wikipedia (it)
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [URL] = http://it.wikipedia.org/w/index.php?title=Speciale:Ricerca&search={searchTerms} - Wikipedia (it)
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{651BFC9C-67B6-4823-905A-D80BBB001E28}: [URL] = http://www.google.it/#hl=it&source=hp&q={searchTerms}&aq=f&aqi=g10&aql=&oq=&gs_rfai=&fp=9fca69c98b5d77d7 - Google Italia
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5FC35F2-A13B-44EF-990D-175776059018}: [SuggestionsURL,SuggestionsURLFallback] = http://ie.search.yahoo.com/os?appid=ie8&command={SearchTerms} - Yahoo!
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5FC35F2-A13B-44EF-990D-175776059018}: [URL] = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8 - Yahoo!
R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [SuggestionsURL] = http://asp.assoc-amazon.co.uk/suggestions?q={searchTerms}&t=hp-uk1-vsb-21 - Amazon (UK) Search Suggestions
R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [SuggestionsURL_JSON] = http://completion.amazon.co.uk/search/complete?method=completion&q={searchTerms}&search-alias=aps&client=amzn-search-suggestions/9fe582406fb5106f343a84083d78795713c12d68&mkt=3 - Amazon (UK) Search Suggestions
R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [URL] = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} - Amazon (UK) Search Suggestions
O2 - HKLM\..\BHO: (no name) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - (no file)
O2 - HKLM\..\BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll
O2 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll
O2 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\coIEPlg.dll
O2-32 - HKLM\..\BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O2-32 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2-32 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll
O3 - HKLM\..\Toolbar: (no name) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - (no file)
O3 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\coIEPlg.dll
O3-32 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll
O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000000] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-243 245 247 Series" (2019/05/11)
O4 - HKCU\..\StartupApproved\Run: [FBackup 5 Tray Agent] = C:\Program Files (x86)\Softland\FBackup 5\bTray.exe (2019/06/02)
O4 - HKCU\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2019/06/02)
O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
O4 - HKLM\..\Run: [RtHDVBg_Session] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SESSION
O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\autochk.exe /k:C *
O4 - HKLM\..\StartupApproved\Run32: [Adobe ARM] = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (2017/08/14)
O4 - HKLM\..\StartupApproved\Run32: [Bit4id Notifications] = C:\WINDOWS\system32\b4notify.exe (file missing) (2019/06/03)
O4 - HKLM\..\StartupApproved\Run32: [HPMessageService] = C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (2020/04/30)
O4 - HKLM\..\StartupApproved\Run32: [bit4id csp store register (M)] = C:\WINDOWS\SysWOW64\RUNDLL32.EXE "C:\WINDOWS\system32\bit4upki-store.dll",RunImportServer (2019/06/03)
O4 - HKLM\..\StartupApproved\Run: [BtServer] = C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe (2019/11/30)
O4 - HKLM\..\StartupApproved\Run: [SecurityHealth] = C:\Program Files\Windows Defender\MSASCuiL.exe (Microsoft) (2020/04/30)
O4 - HKLM\..\StartupApproved\Run: [bit4id csp store register (M x64)] = C:\WINDOWS\system32\RUNDLL32.EXE "C:\WINDOWS\system32\bit4upki-store.dll",RunImportServer (2019/06/03)
O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk -> c:\windows\Installer\{B90CB0DE-2E60-41C4-9857-466EB98192BF}\HPlogo_blue.ico (1601/01/01)
O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4-32 - HKLM\..\Run: [sqtmultimediamouseRun] = C:\Program Files (x86)\Multimedia Mouse Driver\startautorun.exe MouseDrv.exe
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O9 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: Viene lanciato HP Network Check, che aiuta a risolvere i problemi di connessione - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: HP Network Check (Controllo rete HP) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: Viene lanciato HP Network Check, che aiuta a risolvere i problemi di connessione - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: HP Network Check (Controllo rete HP) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive1: (no name) - {BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive2: (no name) - {5AB7172C-9C11-405C-8DD5-AF20F3606282} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive3: (no name) - {A78ED123-AB77-406B-9962-2A5D9D2F7F30} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive4: (no name) - {F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive5: (no name) - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive6: (no name) - {9AA2F32D-362A-42D9-9328-24A483E2CCC3} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OneDrive7: (no name) - {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} - (no file)
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Gestore icona firma digitale di AutoCAD: AcSignIcon - {36A21736-36C2-4C11-8ACB-D4136F2B57BD} - C:\windows\SysWOW64\AcSignIcon.dll
O22 - Task (.job): (Not scheduled) EPSON XP-243 245 247 Series Update {BF107768-ECDC-4163-8060-166CD7BDE32D}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{BF107768-ECDC-4163-8060-166CD7BDE32D}" /F:"Update"
O22 - Task (.job): (disabled) (Not scheduled) CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
O22 - Task (.job): EPSON XP-243 245 247 Series Update {616EB2E6-4B05-4852-97FA-40D167A1E205}.job - C:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{616EB2E6-4B05-4852-97FA-40D167A1E205}" /F:"Update"
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /AllUsersRun (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /CalendarRun (Microsoft)
O22 - Task: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /WakeupRun (Microsoft)
O22 - Task: (disabled) EPSON XP-243 245 247 Series Update {616EB2E6-4B05-4852-97FA-40D167A1E205} - C:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{616EB2E6-4B05-4852-97FA-40D167A1E205}" /F:"Update"
O22 - Task: (disabled) \Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA
O22 - Task: (disabled) \S-1-5-21-1577328101-253777362-2241576782-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: Adobe Flash Player NPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe -check plugin
O22 - Task: Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe -check pepperplugin
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: EPSON XP-243 245 247 Series Update {BF107768-ECDC-4163-8060-166CD7BDE32D} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{BF107768-ECDC-4163-8060-166CD7BDE32D}" /F:"Update"
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: HPAudioSwitch - C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
O22 - Task: HPEA3JOBS - C:\Program Files\HP\HP ePrint\hpeprint.exe /CheckJobs (file missing)
O22 - Task: HPJumpStartProvider - C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartProvider.exe (file missing)
O22 - Task: Norton Security Scan for Pietro - C:\PROGRA~2\NORTON~2\Engine\461~1.179\Nss.exe /scan-quick /scheduled
O22 - Task: Norton WSC Integration - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\WSCStub.exe /taskschd
O22 - Task: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Assistant printer driver installation - C:\WINDOWS\TEMP\sp82019.exe (file missing)
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r
O22 - Task: \Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
O22 - Task: \Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6
O22 - Task: \Norton 360\Norton 360 Autofix - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /ui
O22 - Task: \Norton 360\Norton 360 Error Analyzer - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /analyze
O22 - Task: \Norton 360\Norton 360 Error Processor - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /submit
O22 - Task: \Norton Security\Norton Security Autofix - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /ui (file missing)
O22 - Task: \Norton Security\Norton Security Error Analyzer - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /analyze (file missing)
O22 - Task: \Norton Security\Norton Security Error Processor - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /submit (file missing)
O22 - Task: \Remediation\AntimalwareMigrationTask - C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe /upgrade /user_logon
O22 - Task: \WiseCleaner\WRCSkipUAC - C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe $UAC
O23 - Service R2: "Realtek Bluetooth Device Manager Service" ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: BTDevManager - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service R2: ESIF Upper Framework Service - (esifsvc) - C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe
O23 - Service R2: HP Comm Recovery - (HP Comm Recover) - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service R2: HP JumpStart Bridge - (HPJumpStartBridge) - C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service R2: HP Support Solutions Framework Service - (HPSupportSolutionsFrameworkService) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service R2: HPWMISVC - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: MyEpson Portal Service - C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
O23 - Service R2: MySQL - C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe --defaults-file="C:\Program Files\MySQL\MySQL Server 5.5\my.ini" MySQL
O23 - Service R2: Norton Security - (NortonSecurity) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\NortonSecurity.exe /s "NortonSecurity" /m "C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\diMaster.dll" /prefetch:1
O23 - Service R2: Norton WSC Service - (nsWscSvc) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\nsWscSvc.exe
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: Servizio EaseUS Agent - (EaseUS Agent) - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHeciSvc.exe
O23 - Service S2: Intel(R) Audio Service - (IntelAudioService) - C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: AMD External Events Utility - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service S3: Autodesk Licensing Service - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service S3: Cyberlink RichVideo64 Service(CRVS) - (RichVideo64) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service S3: Epson Scanner Service - (EpsonScanSvc) - C:\WINDOWS\system32\EscSvc64.exe
O23 - Service S3: FBackup 5 Service - (FBackup5Srv) - C:\Program Files (x86)\Softland\FBackup 5\bService.exe -name:"FBackup5Srv" -disp:"FBackup 5 Service"
O23 - Service S3: HP CASL Framework Service - (hpqcaslwmiex) - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc


--
End of file - Time spent: 25,3 sec. - 55186 bytes, CRC32: FFFFFFFF. Sign: 볳呟
Torna in alto
 
sabbb
Inviato: Monday, September 07, 2020 2:07:26 PM
Rank: AiutAmico

Iscritto dal : 9/12/2009
Posts: 6,632
(Se ti può essere di aiuto la 1803 è la più ostica riguardo all'incompatibilità dei programmi. io stesso ebbi non poche difficoltà,sparite poi con l'upgrade alla 1909. Intanto scrivo dalla 2004 e non ho mai avuto noie,tranne che per la stampante. E' un classico di Windows che dopo gli aggiornamenti ,queste non funzionano più in maniera corretta) Giusto per tentare un aiuto,altrimenti cestina pure il mio messaggio.
Torna in alto
 
cbbusto
Inviato: Monday, September 07, 2020 6:18:03 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
sabbb ha scritto:
(Se ti può essere di aiuto la 1803 è la più ostica riguardo all'incompatibilità dei programmi. io stesso ebbi non poche difficoltà,sparite poi con l'upgrade alla 1909. Intanto scrivo dalla 2004 e non ho mai avuto noie,tranne che per la stampante. E' un classico di Windows che dopo gli aggiornamenti ,queste non funzionano più in maniera corretta) Giusto per tentare un aiuto,altrimenti cestina pure il mio messaggio.


Esatto quello che dici, infatti la vs 1803 è stata aggiornata poco dopo. La 2004 io preferisco non scaricarla, attendo il nuovo aggiornamente che dovrebbe arrivare entro fine anno. Ciao
Torna in alto
 
cbbusto
Inviato: Monday, September 07, 2020 6:30:55 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Caro amico vedo che di problemi ne hai già avuti diversi, se continui a rimanere von la vecchia vs 1803 ne avrai altri e il pc sarà sempre impallato. Tu devi passare alla vs 1909, non da problemi e non ti blocca niente, quindi togli il blocco che hai messo e fai la ricerca di aggiornamenti da windows update, altrimenti non si va più avanti.
Dal log noto che che in Avvio automatico hai Defender e non c'è Norton.
Se vuoi iniziare a fare una pulizia devi disattivare tutti i programmi che ci sono in avvio tranne defender, il pc potrebbe velocizzarsi. ciao
Torna in alto
 
lui49
Inviato: Monday, September 07, 2020 7:48:08 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
Vedi, il fatto è che in avvio automatico (da impostazioni-->app-->avvio) ho, e ho sempre avuto solo questi:

- Microsoft windows autorun
- Gestione Audio realtek HD
- HD audio background process
- Java update scheduler
- Windows defender notification icon

probabilmente sono i servizi che sono sfuggiti di mano e sono da imbrigliare.
Torna in alto
 
sabbb
Inviato: Monday, September 07, 2020 8:31:19 PM
Rank: AiutAmico

Iscritto dal : 9/12/2009
Posts: 6,632
L'osservazione di cbbusto è corretta.
Tuttavia anche io dal PC con Windows (ma anche col portatile che avevo prima,dove GData era installato ed ora ho passato la licenza a questo) l'antivirus da avvio non c'è.

https://postimg.cc/kB4v8yGy

Misteri di Windows.
Torna in alto
 
cbbusto
Inviato: Monday, September 07, 2020 10:41:38 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
lui49 ha scritto:
Vedi, il fatto è che in avvio automatico (da impostazioni-->app-->avvio) ho, e ho sempre avuto solo questi:

- Microsoft windows autorun
- Gestione Audio realtek HD
- HD audio background process
- Java update scheduler
- Windows defender notification icon

probabilmente sono i servizi che sono sfuggiti di mano e sono da imbrigliare.


Dal log programmi in avvio ne risultano ben 16.
Usa Ccleaner lo apri vai in Strumenti/Avvio e vedi tutti i programmi che ci sono, fai doppio clic su ognuno e vengono disattivati, devi lasciare solo Defender. Poi devi fare gli aggiornamenti non contiuare a tergiversare.
Torna in alto
 
lui49
Inviato: Monday, September 07, 2020 11:12:11 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
In qualunque posto guardi, e in qualunque modo, quelli sono e quelli restano + wdefender.
Torna in alto
 
lui49
Inviato: Wednesday, September 09, 2020 8:28:34 AM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
Bien, ho fatto quattro ore di aggiornamenti....ed ho sempre la 1803. Windows Update mi dice che non ci sono altri aggiornamenti ma che la 1803 è da aggiornare. Cane che si morde la coda?
Torna in alto
 
sabbb
Inviato: Wednesday, September 09, 2020 9:38:12 AM
Rank: AiutAmico

Iscritto dal : 9/12/2009
Posts: 6,632
Intanto o col tasto dx sulla barra applicazioni e poi avvio ,per togliere i programmi in avvio automatico o con CCleaner ,come già detto da cbbusto.
Per l'aggiornamento che non va a dovere (probabile il WU che hai impostato tu) scarica la iso 1909 https://tb.rg-adguard.net/public.php
successivamente doppio clic sulla iso,farà tutto da solo. Attenzione all'architettura 32 bit 0 64 ,quella che hai adesso va scaricata. Exnovo invece accetta il cambiamento purchè della stessa edizione / Home Pro ecc (a titolo informativo)
Semplice.

Edit: e per fare meglio possibile disinstallerei anche Norton.
Dopo l'upgrade fai la reinstallazione. Se ti è possibile ,altrimenti tenta con l'AV installato.
Torna in alto
 
lui49
Inviato: Wednesday, September 09, 2020 11:09:13 AM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
Come già detto in avvio automatico ho due robe e il Norton non ha mai interferito col sistema. Windows update è a posto, non ha restrizioni, non ha limiti e vorrei che l'aggiornamento, eventuale, lo facesse lui per avere certezza sulla compatibiltà col mio hardware. Ha tentato di installare la 1903 fallendo, ho seguito tutte le procedure del caso, ho messo a posto tutto ma non la ripropone.
Torna in alto
 
cbbusto
Inviato: Wednesday, September 09, 2020 12:15:42 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Se il pc va bene allora prosegui così, tutto quello che ti succede è anormale, dovresti ritornare alle impostazioni di fabbrica.
Proviamo a fixare ed eliminare le voci inutili dal log. Chiudi tutti i programmi e disconnesso da internet lancia HJT,
inserisci il segno di spunta nel quadratino davanti alle righe sotto elencate, una volta selezionate clicca il tasto Fix checked per procedere all'eliminazione, comparirà una finestra clicca su SI per accettare e l'operazione è conclusa.
Riavviare il pc.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = https://it.yahoo.com/

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [SuggestionsURL,SuggestionsURLFallback] = http://ie8.ebay.com/open-search/output-xml.php?q={searchTerms}&c=0 - eBay

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [SuggestionsURL_JSON] = http://sug.ebay.com/?q={searchTerms}&c=0 - eBay

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4E0AF9C2-325B-4C6F-AECD-DA9877C70D8A}: [URL] = http://rover.ebay.com/rover/1/711-43047-14818-1/4?satitle={searchTerms} - eBay

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [SuggestionsURL,SuggestionsURLFallback] = http://it.wikipedia.org/w/api.php?action=opensearch&format=xml&search={searchTerms}&namespace=0 - Wikipedia (it)

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [SuggestionsURL_JSON] = http://it.wikipedia.org/w/api.php?action=opensearch&search={searchTerms}&namespace=0 - Wikipedia (it)

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{52FFFCDC-FEAA-4342-9696-770574D7230A}: [URL] = http://it.wikipedia.org/w/index.php?title=Speciale:Ricerca&search={searchTerms} - Wikipedia (it)

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5FC35F2-A13B-44EF-990D-175776059018}: [SuggestionsURL,SuggestionsURLFallback] = http://ie.search.yahoo.com/os?appid=ie8&command={SearchTerms} - Yahoo!

R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5FC35F2-A13B-44EF-990D-175776059018}: [URL] = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8 - Yahoo!

R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [SuggestionsURL] = http://asp.assoc-amazon.co.uk/suggestions?q={searchTerms}&t=hp-uk1-vsb-21 - Amazon (UK) Search Suggestions

R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [SuggestionsURL_JSON] = http://completion.amazon.co.uk/search/complete?method=completion&q={searchTerms}&search-alias=aps&client=amzn-search-suggestions/9fe582406fb5106f343a84083d78795713c12d68&mkt=3 - Amazon (UK) Search Suggestions

R4 - SearchScopes: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{C8FDC7C0-82EE-4E0B-BE36-FA3C29B561F7}: [URL] = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} - Amazon (UK) Search Suggestions

O2 - HKLM\..\BHO: (no name) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - (no file)
O2 - HKLM\..\BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll
O2 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll
O2 - HKLM\..\BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll
O2 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\coIEPlg.dll
O2-32 - HKLM\..\BHO: Adblock Plus for IE Browser Helper Object - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O2-32 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2-32 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll

O3 - HKLM\..\Toolbar: (no name) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - (no file)
O3 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\coIEPlg.dll
O3-32 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll (Le toolbar mai installarle)

O4 - HKCU\..\StartupApproved\Run: [EPLTarget\P0000000000000000] = C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-243 245 247 Series" (2019/05/11)

O4 - HKCU\..\StartupApproved\Run: [FBackup 5 Tray Agent] = C:\Program Files (x86)\Softland\FBackup 5\bTray.exe (2019/06/02)

O4 - HKCU\..\StartupApproved\Run: [OneDriveSetup] = C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (2019/06/02)

O4 - HKLM\..\Run: [RTHDVCPL] = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s

O4 - HKLM\..\Run: [RtHDVBg_Session] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SESSION

O4 - HKLM\..\Session Manager: [BootExecute] = C:\WINDOWS\system32\autochk.exe /k:C *

O4 - HKLM\..\StartupApproved\Run32: [Adobe ARM] = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (2017/08/14)

O4 - HKLM\..\StartupApproved\Run32: [Bit4id Notifications] = C:\WINDOWS\system32\b4notify.exe (file missing) (2019/06/03)

O4 - HKLM\..\StartupApproved\Run32: [HPMessageService] = C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe (2020/04/30)

O4 - HKLM\..\StartupApproved\Run32: [bit4id csp store register (M)] = C:\WINDOWS\SysWOW64\RUNDLL32.EXE "C:\WINDOWS\system32\bit4upki-store.dll",RunImportServer (2019/06/03)

O4 - HKLM\..\StartupApproved\Run: [BtServer] = C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe (2019/11/30)

O4 - HKLM\..\StartupApproved\Run: [bit4id csp store register (M x64)] = C:\WINDOWS\system32\RUNDLL32.EXE "C:\WINDOWS\system32\bit4upki-store.dll",RunImportServer (2019/06/03)

O4 - HKLM\..\StartupApproved\StartupFolder: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk -> c:\windows\Installer\{B90CB0DE-2E60-41C4-9857-466EB98192BF}\HPlogo_blue.ico (1601/01/01)

O4-32 - HKLM\..\Run: [SunJavaUpdateSched] = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

O4-32 - HKLM\..\Run: [sqtmultimediamouseRun] = C:\Program Files (x86)\Multimedia Mouse Driver\startautorun.exe MouseDrv.exe
N.B. le voci 04 sopra sono tutti i programmi che ci sono in Avvio Automatico, disattivandole i programmi non vengono toccati


O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll

O22 - Task: Adobe Flash Player NPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_Plugin.exe -check plugin
O22 - Task: Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_414_pepper.exe -check pepperplugin
O22 - Task: Norton Security Scan for Luigi - C:\PROGRA~2\NORTON~2\Engine\461~1.179\Nss.exe /scan-quick /scheduled
O22 - Task: Norton WSC Integration - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\WSCStub.exe /taskschd
O22 - Task: \Norton 360\Norton 360 Autofix - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /ui
O22 - Task: \Norton 360\Norton 360 Error Analyzer - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /analyze
O22 - Task: \Norton 360\Norton 360 Error Processor - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /submit
O22 - Task: \Norton Security\Norton Security Autofix - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /ui (file missing)
O22 - Task: \Norton Security\Norton Security Error Analyzer - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /analyze (file missing)
O22 - Task: \Norton Security\Norton Security Error Processor - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.4.57\SymErr.exe /submit (file missing)
O22 - Task: \Remediation\AntimalwareMigrationTask - C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe /upgrade /user_logon

O23 - Service R2: Norton Security - (NortonSecurity) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\NortonSecurity.exe /s "NortonSecurity" /m "C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\diMaster.dll" /prefetch:1
O23 - Service R2: Norton WSC Service - (nsWscSvc) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\nsWscSvc.exe

Una volta finito riavvia il pc e fai una pulizia del Registro con seguente sw:
Eusing Free Registry Cleaner sw da usare saltuariamente, lo scarichi da qui: http://www.eusing.com/free_registry_cleaner/registry_cleaner.htm
clic su Download Site1, una volta lanciato appare una finestra che chiede il codice, clic su ignora e procedi, poi in alto a sinistra clic su Analizza Registro, lascia fare fino alla fine non ti preoccupare se trova molte voci, poi clicca su Ripara Registro, il sw è sicuro comunque crea un punto di ripristino e fa anche il backup dei file eliminati infatti in alto sotto ripara registro si trova la voce Ripristina Registro.
Per fare questa pulizia meglio chiudere tutti i programmi e disconnesso.
Il programma è compatibile con tutti i S.O. windows compreso win 10.
 Fatto tutto rifai una scansione con HJT e posta il nuovo log, vedo cosa è rimasto. Dimmi se tutto funziona bene. Ciao
Torna in alto
 
lui49
Inviato: Wednesday, September 09, 2020 12:26:18 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845

questi sono i programmi in avvio automatico e non è installata alcuna toolbar, nemmeno quella del Norton.
Procedo col resto....
Torna in alto
 
lui49
Inviato: Wednesday, September 09, 2020 1:23:52 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
Ho cancellato anche in più del consigliato e qualcosa avrò saltato della kilometrica lista. Per il momento ho ignorato il Norton e alcune voci che avevo cancellato si sono rigenerate.

Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26

Platform: x64 Windows 10 (Home), 10.0.17134.1345 (ReleaseId: 1803), Service Pack: 0
Time: 09.09.2020 - 13:20 (UTC+02:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Elevated: Yes
Ran by: Pietro (group: Administrator) on LAPTOP-M6PTJ2RK, FirstRun: yes

Chrome: 75.0.3770.100
Edge: 11.0.17134.1345
Internet Explorer: 11.0.17134.1
Default: "C:\Programmi Portable\FirefoxPortable\App\firefox64\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\Common Files\microsoft shared\VS7Debug\MDM.EXE
1 C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
1 C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
1 C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
1 C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
1 C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
1 C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1 C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
1 C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
1 C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
1 C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
1 C:\Program Files\HPCommRecovery\HPCommRecovery.exe
1 C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe
2 C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\NortonSecurity.exe
1 C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\nsWscSvc.exe
1 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
1 C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1 C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
1 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
1 C:\Program Files\Windows Defender\MSASCuiL.exe
1 C:\Program Files\rempl\sedsvc.exe
7 C:\Programmi Portable\FirefoxPortable\App\firefox64\firefox.exe
1 C:\Programmi Portable\FirefoxPortable\FirefoxPortable.exe
1 C:\Programmi Portable\HiJackThis\HiJackThis.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\RtkBtManServ.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHDCPSvc.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHeciSvc.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxCUIService.exe
1 C:\Windows\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxEM.exe
1 C:\Windows\System32\Intel\DPTF\esif_uf.exe
3 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SettingSyncHost.exe
1 C:\Windows\System32\SgrmBroker.exe
2 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dasHost.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
66 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\vds.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wlanext.exe
1 C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 C:\Windows\Temp\DPTF\esif_assist_64.exe
1 C:\Windows\explorer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKLM\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://hp17win10.msn.com/?pc=HCTE
R0 - HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://hp17win10.msn.com/?pc=HCTE
R4 - SearchScopes: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{651BFC9C-67B6-4823-905A-D80BBB001E28}: [URL] = http://www.google.it/#hl=it&source=hp&q={searchTerms}&aq=f&aqi=g10&aql=&oq=&gs_rfai=&fp=9fca69c98b5d77d7 - Google Italia
O2-32 - HKLM\..\BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2-32 - HKLM\..\BHO: Norton Password Manager - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll
O3-32 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\E&xport to Microsoft Excel: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE (file missing)
O8 - Context menu item: HKCU\..\Internet Explorer\MenuExt\Se&nd to OneNote: (default) = C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll (file missing)
O9 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Button: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: Viene lanciato HP Network Check, che aiuta a risolvere i problemi di connessione - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9-32 - Tools menu item: HKLM\..\{25510184-5A38-4A99-B273-DCA8EEF6CD08}: HP Network Check (Controllo rete HP) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayExcluded: OverlayExcluded Class - {4433A54A-1AC8-432F-90FC-85F045CF383C} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayPending: OverlayPending Class - {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\ OverlayProtected: OverlayProtected Class - {476D0EA3-80F9-48B5-B70B-05E677C9C148} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\buShell.dll
O21-32 - HKLM\..\ShellIconOverlayIdentifiers\Gestore icona firma digitale di AutoCAD: AcSignIcon - {36A21736-36C2-4C11-8ACB-D4136F2B57BD} - C:\windows\SysWOW64\AcSignIcon.dll
O22 - Task (.job): (Not scheduled) EPSON XP-243 245 247 Series Update {BF107768-ECDC-4163-8060-166CD7BDE32D}.job - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{BF107768-ECDC-4163-8060-166CD7BDE32D}" /F:"Update"
O22 - Task (.job): EPSON XP-243 245 247 Series Update {616EB2E6-4B05-4852-97FA-40D167A1E205}.job - C:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{616EB2E6-4B05-4852-97FA-40D167A1E205}" /F:"Update"
O22 - Task: (disabled) EPSON XP-243 245 247 Series Update {616EB2E6-4B05-4852-97FA-40D167A1E205} - C:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{616EB2E6-4B05-4852-97FA-40D167A1E205}" /F:"Update"
O22 - Task: (disabled) \Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA
O22 - Task: (disabled) \S-1-5-21-1577328101-253777362-2241576782-1001\DataSenseLiveTileTask - C:\WINDOWS\System32\DataUsageLiveTileTask.exe
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /AllUsersRun (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /CalendarRun (Microsoft)
O22 - Task: (update) \Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun - C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe /ClientID Win10Upgrade:VNL:NHV19:{} /WakeupRun (Microsoft)
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: EPSON XP-243 245 247 Series Update {BF107768-ECDC-4163-8060-166CD7BDE32D} - C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE /EXE:"{BF107768-ECDC-4163-8060-166CD7BDE32D}" /F:"Update"
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: HPAudioSwitch - C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
O22 - Task: Norton Security Scan for Luigi - C:\PROGRA~2\NORTON~2\Engine\461~1.179\Nss.exe /scan-quick /scheduled
O22 - Task: Norton WSC Integration - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\WSCStub.exe /taskschd
O22 - Task: StartCN - C:\Program Files\AMD\CNext\CNext\cncmd.exe startwithdelay
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r /m
O22 - Task: \Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /r
O22 - Task: \Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
O22 - Task: \Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
O22 - Task: \Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe /DeviceScanR6
O22 - Task: \Norton 360\Norton 360 Autofix - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /ui
O22 - Task: \Norton 360\Norton 360 Error Analyzer - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /analyze
O22 - Task: \Norton 360\Norton 360 Error Processor - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\SymErr.exe /submit
O22 - Task: \Remediation\AntimalwareMigrationTask - C:\Program Files\Common Files\AV\Norton 360\Upgrade.exe /upgrade /user_logon
O22 - Task: \WiseCleaner\WRCSkipUAC - C:\Program Files (x86)\Wise\Wise Registry Cleaner\WiseRegCleaner.exe $UAC
O23 - Service R2: "Realtek Bluetooth Device Manager Service" ;RtkServ - (RtkBtManServ) - C:\WINDOWS\RtkBtManServ.exe
O23 - Service R2: BTDevManager - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service R2: ESIF Upper Framework Service - (esifsvc) - C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe
O23 - Service R2: HP Comm Recovery - (HP Comm Recover) - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service R2: HP JumpStart Bridge - (HPJumpStartBridge) - C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service R2: HP Support Solutions Framework Service - (HPSupportSolutionsFrameworkService) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service R2: HPWMISVC - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service R2: Intel(R) Content Protection HDCP Service - (cplspcon) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHDCPSvc.exe
O23 - Service R2: Intel(R) Dynamic Application Loader Host Interface Service - (jhi_service) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService2.0.0.0) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\igfxCUIService.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: MyEpson Portal Service - C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
O23 - Service R2: MySQL - C:\Program Files\MySQL\MySQL Server 5.5\bin\mysqld.exe --defaults-file="C:\Program Files\MySQL\MySQL Server 5.5\my.ini" MySQL
O23 - Service R2: Norton Security - (NortonSecurity) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\NortonSecurity.exe /s "NortonSecurity" /m "C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\diMaster.dll" /prefetch:1
O23 - Service R2: Norton WSC Service - (nsWscSvc) - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine\22.20.5.39\nsWscSvc.exe
O23 - Service R2: Realtek Audio Service - (RtkAudioService) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service R2: Servizio EaseUS Agent - (EaseUS Agent) - C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
O23 - Service R2: SynTPEnh Caller Service - (SynTPEnhService) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service R3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\System32\DriverStore\FileRepository\ki126951.inf_amd64_94804e3918169543\IntelCpHeciSvc.exe
O23 - Service S2: Intel(R) Audio Service - (IntelAudioService) - C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
O23 - Service S2: Intel(R) TPM Provisioning Service - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: AMD External Events Utility - C:\WINDOWS\system32\atiesrxx.exe
O23 - Service S3: Autodesk Licensing Service - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service S3: Cyberlink RichVideo64 Service(CRVS) - (RichVideo64) - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service S3: Epson Scanner Service - (EpsonScanSvc) - C:\WINDOWS\system32\EscSvc64.exe
O23 - Service S3: FBackup 5 Service - (FBackup5Srv) - C:\Program Files (x86)\Softland\FBackup 5\bService.exe -name:"FBackup5Srv" -disp:"FBackup 5 Service"
O23 - Service S3: HP CASL Framework Service - (hpqcaslwmiex) - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service S3: Intel(R) Capability Licensing Service TCP IP Interface - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc


--
End of file - Time spent: 24,7 sec. - 36340 bytes, CRC32: FFFFFFFF. Sign: 奋
Torna in alto
 
cbbusto
Inviato: Wednesday, September 09, 2020 10:03:58 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
lui49 ha scritto:

questi sono i programmi in avvio automatico e non è installata alcuna toolbar, nemmeno quella del Norton.
Procedo col resto....


Leggi bene, non ho detto che ci sono toolbar in avvio.
Torna in alto
 
cbbusto
Inviato: Wednesday, September 09, 2020 10:11:00 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Vedo che sei fissato con Norton, tienilo pure. Le voci in Avvio non ci sono più, Il resto va bene.
Torna in alto
 
cbbusto
Inviato: Wednesday, September 09, 2020 10:14:54 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Tieni Norton però la toolbar va eliminata, le toolbar non servono a niente e causano rallentamenti inutili.
Però se non si riesce ad aggiornare il Sistema operativo avrai sempre problemi.
Sarebbe opportuno fare un ripristino mantenendo programmi e i dati personali è una deisione tua.
Hai fatto la pulizia del Registro che ti ho consigliato? Non mi hai detto come va il pc
Torna in alto
 
lui49
Inviato: Wednesday, September 09, 2020 11:44:25 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845


O3-32 - HKLM\..\Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\{B132CF63-59CD-49A8-AED8-66EAE3064740}\Engine32\22.20.5.39\coIEPlg.dll (Le toolbar mai installarle)

Non ho toolbar installate. Ogni tanto Norton mi chiede di attivarla su Internet Explorer....che ho persino dimenticato che esistesse. Però se la fixo su Hjiack me la ritrovo di nuovo nel log.
Ho fatto la pulizia del registro. Il pc va benissimo, solo un pò lento in avvio (2 minuti e mezzo) ma sapendolo lo accendo prima Whistle
Vediamo se riesco ad avere l'aggiornamento alla 1903...anche se trovo strana questa reticenza e non capisco da cosa possa dipendere.
Torna in alto
 
ciocca956
Inviato: Thursday, September 10, 2020 9:40:56 AM
Rank: AiutAmico

Iscritto dal : 1/5/2012
Posts: 4,102
lui49 ha scritto:
...............................................................................
Ho fatto la pulizia del registro. Il pc va benissimo, solo un pò lento in avvio (2 minuti e mezzo) ma sapendolo lo accendo prima Whistle

Una lumaca altro che un po' lento.


lui49 ha scritto:
Vediamo se riesco ad avere l'aggiornamento alla 1903...anche se trovo strana questa reticenza e non capisco da cosa possa dipendere.


La 1903 non è più disponibile che io sappia.
Si può aggiornare solo alla 1909.
Se non riesce è colpa della 1803.
Ti consigli " l'intallazione in Place" mantenendo dati e impostazioni. Na Norton assolutamente lo devi togliere e così elimini la toolbarr!
Torna in alto
 
lui49
Inviato: Thursday, September 10, 2020 2:59:54 PM
Rank: AiutAmico

Iscritto dal : 5/4/2003
Posts: 2,845
NON HO TOOLBAR INSTALLATE Brick wall Brick wall

Io uso Firefox (portable), Chrome (portable), Palemonn (portable) e su nessuno è attiva una qualsivoglia toolbar.
Norton chiede, ogni tanto, di attivarla su Internet Explorer e che mi guardo bene dal fare, che è installato su questa macchina ma che non ho mai usato.

Detto questo dico anche che non posso, qualsiasi operazione di ripristino faccia, reinstallare poi dei programmi per me basilari che, diciamo così, ho avuto solo in prestito e che non potrei più riavere, sempre in prestito s'intende. Shhh

Norton poi se la intende a meraviglia col centro sicurezza del pc senza alcun conflitto. Dopo oltre 10 anni di utilizzo ho imparato a conoscerlo e resta, mia opinione come sempre, il numero uno.

Va a finire che se non ottengo la 1903 mi tengo la 1803 completamente aggiornata, seppur limitatamente alla release, e perfettamente funzionante...a parte il lumacoso avvio. Silenced
Torna in alto
 
Utenti presenti in questo topic
Guest

3 pages: 1 [2] 3

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Avvio rallentato


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.