Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:22:56, on 23/03/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\PROGRAM FILES\PANDA SECURITY\PANDA INTERNET SECURITY 2012\WebProxy.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Panda Security\Panda Internet Security 2012\ApVxdWin.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Panda Security\Panda Internet Security 2012\PavBckPT.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2012\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2012\Inicio.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: iolo System Service (ioloSystemService) - iolo technologies, LLC - C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2012\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files\Panda Security\Panda Internet Security 2012\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2012\pavsrvx86.exe
O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files\panda security\panda internet security 2012\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Internet Security 2012\PsImSvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2012\PskSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2012\TPSrv.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 5636 bytes

Per ontrollare la temperatura usa Speccy , è uno standalone che si attiva cliccandoci su.


Il log è pulito.


Si tolto di mezzo lo scanner della Symantec
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage


Ma altre voci che dovevano fixarsi sono rimaste, ora te le indico di nuovo.

Chiudere tutti i programmi
Disconnetti il pc da Internet
Apri HJT e clicca su: Do a system scan only
Inserisci la spunta nella casella delle voci sottostanti voci
Poi, premere Fix checked.


O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')


Fai pulizia con Ccleaner.

- EventData

Checking file system on C: The type of the file system is NTFS. A disk check has been scheduled. Windows will now check the disk. CHKDSK is verifying files (stage 1 of 5)... 302080 file records processed. File verification completed. 574 large file records processed. 0 bad file records processed. 2 EA records processed. 31 reparse records processed. CHKDSK is verifying indexes (stage 2 of 5)... 373002 index entries processed. Index verification completed. CHKDSK is scanning unindexed files for reconnect to their original directory. 1 unindexed files scanned. Recovering orphaned file 9EA7F5~1 (13311) into directory file 156820. Recovering orphaned file 9ea7f58b-86d7-446e-a1be-5c71ed9ba7f4 (13311) into directory file 156820. 0 unindexed files recovered. CHKDSK is verifying security descriptors (stage 3 of 5)... 302080 file SDs/SIDs processed. Cleaning up 92 unused index entries from index $SII of file 0x9. Cleaning up 92 unused index entries from index $SDH of file 0x9. Cleaning up 92 unused security descriptors. Security descriptor verification completed. 35462 data files processed. CHKDSK is verifying Usn Journal... 36449320 USN bytes processed. Usn Journal verification completed. CHKDSK is verifying file data (stage 4 of 5)... Read failure with status 0xc000009c at offset 0xe4267000 for 0x10000 bytes. Read failure with status 0xc000009c at offset 0xe4273000 for 0x1000 bytes. Windows replaced bad clusters in file 235240 of name \Users\dario\Desktop\NUOVAC~1\DESKTO~1\LINKDE~1\baritoni\DOCMUS~1\ENCICL~1.RAR. 302064 files processed. File data verification completed. CHKDSK is verifying free space (stage 5 of 5)... 9051345 free clusters processed. Free space verification is complete. Adding 1 bad clusters to the Bad Clusters File. Correcting errors in the Volume Bitmap. Windows has made corrections to the file system. 150866383 KB total disk space. 114167092 KB in 136052 files. 84068 KB in 35463 indexes. 4 KB in bad sectors. 409839 KB in use by the system. 65536 KB occupied by the log file. 36205380 KB available on disk. 4096 bytes in each allocation unit. 37716595 total allocation units on disk. 9051345 allocation units available on disk. Internal Info: 00 9c 04 00 06 9e 02 00 83 aa 04 00 00 00 00 00 ................ c1 1f 00 00 1f 00 00 00 00 00 00 00 00 00 00 00 ................ 58 8b 2d 00 50 01 2c 00 e0 18 2c 00 00 00 2c 00 X.-.P.,...,...,. Windows has finished checking your disk. Please wait while your computer restarts.

Da quando ti è iniziato il surriscaldamento? Perchè all'inizio del topic non ne hai parlato.


Questo fenomeno può dipendere da varie cose.

Prima di tutto bisogna controllare quale parte si surriscalda, con Speccy potrai verificare se si tratta del processore (CPU) e/o del disco fisso.

La causa di solito si cerca nel mal funzionamento delle ventoline di raffredamento di uno dei componenti, scheda madre, processore, ecc . Se così, assicurarsi che i condotti non siano ostruiti. Inizialmente si può provare un buo aspiratore per risucchiare fuori eventuali polveri, altrimenti bisogna andare all'interno e provvedere manualmente.


Un secondo motivo può essere che ci sia una sollecitazione da parte di un "programma" che sovra-impegna le risorse del computer in maniera anomala. Controllare in Task manager(Gestione attività) - Processi , se qualche processo assorbe parecchie risorse.

Vintisiete, avevi parlato del problema del re-inderizzamento della pagina Internet con la scritta about: blank, adesso come va?




Altra cosa, quando hai avviato lo scandisk hai messo le 2 spunte come nell'immagine?

Non dovevi toccare nulla !!!


Apri il Task manager - scheda Applicazioni - Nuova attività - copia e incolla explorer.exe - dai OK - riavvia il computer

lho fatto, ma come faccio ad allegarti lo screenshot del task mnager?

edit, si... ma nn c'è un allega o inserisci immagine?!!?!? se faccio copia incolla nn va...

Vintisiete,

controlla la temperatura con Speccy!

la temperatura dischi (l unica in rosso 57° al limite insomma)