Potete analizzarmi il log grazie
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.26
Platform: x32 Windows XP (Professional), 5.1.2600.0, Service Pack: 3
Time: 07.05.2021 - 19:51 (UTC+02:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Ran by: Gp (group: Administrator) on PETER, FirstRun: no
Chrome: 49.0.2623.112
Firefox: 52.9.0.6746
Internet Explorer: 8.0.6001.18702
Default: "C:\Programmi\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)
Boot mode: Normal
Running processes:
Number | Path
1 C:\Documents and Settings\Gp\Desktop\Utiliy\HiJackThis.exe
1 C:\Programmi\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
1 C:\Programmi\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
1 C:\Programmi\Acronis\TrueImageHome\TrueImageMonitor.exe
1 C:\Programmi\CCleaner\CCleaner.exe
1 C:\Programmi\CyberLink\Power2Go\CLMLSvc.exe
1 C:\Programmi\CyberLink\PowerDVD8\PDVD8Serv.exe
1 C:\Programmi\CyberLink\Shared files\RichVideo.exe
1 C:\Programmi\ESET\ESET NOD32 Antivirus\egui.exe
1 C:\Programmi\ESET\ESET NOD32 Antivirus\ekrn.exe
1 C:\Programmi\File comuni\Acronis\CDP\afcdpsrv.exe
1 C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe
1 C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
1 C:\Programmi\File comuni\LightScribe\LSSrvc.exe
1 C:\Programmi\Google\Update\GoogleUpdate.exe
1 C:\Programmi\Messenger\msmsgs.exe
1 C:\Programmi\NETGEAR Genie\bin\NETGEARGenie.exe
1 C:\Programmi\NETGEAR Genie\bin\genie2_tray.exe
1 C:\Programmi\Steganos Password Manager 7\SPM7.exe
1 C:\Programmi\UPSMON\UPSInt2.exe
1 C:\Programmi\UPSMON\UPSMON.exe
1 C:\Programmi\UPSMON\UPSMON_Service.Exe
1 C:\Programmi\VIA\VIAudioi\HDADeck\HDeck.exe
1 C:\WINDOWS\Explorer.EXE
1 C:\WINDOWS\System32\alg.exe
1 C:\WINDOWS\System32\smss.exe
7 C:\WINDOWS\System32\svchost.exe
1 C:\WINDOWS\system32\RUNDLL32.EXE
1 C:\WINDOWS\system32\csrss.exe
1 C:\WINDOWS\system32\ctfmon.exe
1 C:\WINDOWS\system32\lsass.exe
1 C:\WINDOWS\system32\nvsvc32.exe
1 C:\WINDOWS\system32\services.exe
1 C:\WINDOWS\system32\spoolsv.exe
1 C:\WINDOWS\system32\winlogon.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] =
http://www.google.it/R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar: [LinksFolderName] = Collegamenti
O2 - HKLM\..\BHO: Supporto di collegamento per Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Programmi\CCleaner\CCleaner.exe /MONITOR
O4 - HKCU\..\Run: [MSMSGS] = C:\Programmi\Messenger\msmsgs.exe /background
O4 - HKCU\..\Run: [NETGEARGenie] = C:\Programmi\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect
O4 - HKCU\..\Run: [SPM7] = C:\Programmi\Steganos Password Manager 7\SPM7.exe -boot
O4 - HKLM\..\Run: [36X Raid Configurer] = C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [Adobe ARM] = C:\Programmi\File comuni\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [CLMLServer] = C:\Programmi\CyberLink\Power2Go\CLMLSvc.exe
O4 - HKLM\..\Run: [CanonMyPrinter] = C:\Programmi\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenu] = C:\Programmi\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [HDAudDeck] = C:\Programmi\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [JMB36X IDE Setup] = C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [NvCplDaemon] = C:\WINDOWS\system32\NvCpl.dll C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] = C:\WINDOWS\system32\NvMcTray.dll C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] = C:\Programmi\CyberLink\PowerDVD8\Language\Language.exe
O4 - HKLM\..\Run: [RemoteControl8] = C:\Programmi\CyberLink\PowerDVD8\PDVD8Serv.exe
O4 - HKLM\..\Run: [SAOB Monitor] = C:\Programmi\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
O4 - HKLM\..\Run: [Servizio Acronis Scheduler2] = C:\Programmi\File comuni\Acronis\Schedule2\schedhlp.exe
O4 - HKLM\..\Run: [Six Engine] = C:\Programmi\ASUS\EPU-6 Engine\SixEngine.exe -b
O4 - HKLM\..\Run: [TrueImageMonitor.exe] = C:\Programmi\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [UCam_Menu] = C:\Programmi\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe "C:\Programmi\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
O4 - HKLM\..\Run: [UPSMON] = C:\Programmi\UPSMON\UPSMON.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] = C:\Programmi\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe "C:\Programmi\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] = C:\Programmi\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe "C:\Programmi\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [UpdatePPShortCut] = C:\Programmi\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe "C:\Programmi\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
O4 - HKLM\..\Run: [UpdatePSTShortCut] = C:\Programmi\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe "C:\Programmi\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [nwiz] = C:\Programmi\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKU\.DEFAULT\..\RunOnce: [SPM7] = C:\Programmi\Steganos Password Manager 7\spm7.exe -firstboot
O4 - HKU\S-1-5-19\..\RunOnce: [SPM7] = C:\Programmi\Steganos Password Manager 7\spm7.exe -firstboot
O4 - HKU\S-1-5-20\..\RunOnce: [SPM7] = C:\Programmi\Steganos Password Manager 7\spm7.exe -firstboot
O5 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Control Panel\don't load: [nvcpl.cpl] (file missing)
O12 - HKLM\..\Internet Explorer\Plugins\Extension\.spop: [Location] = C:\Programmi\Internet Explorer\Plugins\NPDocBox.dll
O12 - HKLM\..\Internet Explorer\Plugins\MIME\application/intertrust-spop: [Location] = (no file)
O15 - Trusted Zone:
http://help.eset.comO15 - Trusted Zone:
https://www.eni.comO15 - Trusted Zone:
https://www.google.itO17 - DHCP DNS 1: 192.168.178.1
O22 - ScheduledTask: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O22 - ScheduledTask: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - Task (.job): (Ready) CCleaner Update.job - C:\CCUpdate.exe (file missing)
O22 - Task (.job): (disabled) (Ready) GoogleUpdateTaskMachineCore.job - C:\Programmi\Google\Update\GoogleUpdate.exe /c
O22 - Task (.job): (disabled) (Ready) GoogleUpdateTaskMachineUA.job - C:\Programmi\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O23 - Service R2: ASUS System Control Service - (AsSysCtrlService) - C:\Programmi\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service R2: Cyberlink RichVideo Service(CRVS) - (RichVideo) - C:\Programmi\CyberLink\Shared files\RichVideo.exe
O23 - Service R2: ESET Service - (ekrn) - C:\Programmi\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service R2: LightScribeService Direct Disc Labeling Service - (LightScribeService) - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service R2: NVIDIA Display Driver Service - (nvsvc) - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service R2: Servizio Acronis Nonstop Backup - (afcdpsrv) - C:\Programmi\File comuni\Acronis\CDP\afcdpsrv.exe
O23 - Service R2: Servizio Acronis Scheduler2 - (AcrSch2Svc) - C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
O23 - Service R2: UPSMONService - C:\Programmi\UPSMON\UPSMON_Service.Exe
O23 - Service R3: SSL HTTP - (HTTPFilter) - C:\WINDOWS\System32\svchost.exe -k HTTPFilter; "ServiceDll" = C:\WINDOWS\System32\w3ssl.dll
O23 - Service S2: Microsoft .NET Framework NGEN v4.0.30319_X86 - (clr_optimization_v4.0.30319_32) - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Programmi\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: .NET Runtime Optimization Service v2.0.50727_X86 - (clr_optimization_v2.0.50727_32) - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Programmi\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: NETGEARGenieDaemon - C:\Programmi\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
O23 - Service S3: Office Source Engine - (ose) - C:\Programmi\File comuni\Microsoft Shared\Source Engine\OSE.EXE
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Programmi\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Windows CardSpace - (idsvc) - C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
O23 - Service S3: Windows Presentation Foundation Font Cache 3.0.0.0 - (FontCache3.0.0.0) - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
Debug information:
- 07.05.2021 19:51:13 - IsWinServiceFileName - #457 (This key is already associated with an element of this collection) LastDllError = 0 File: C:\Programmi\File comuni\Acronis\Schedule2\schedul2.exe
--
End of file - Time spent: 1 sec. - 18818 bytes, CRC32: FFFFFFFF. Sign: 쇱庁