Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Risultato hiack Opzioni
libero1962
Inviato: Tuesday, March 17, 2020 7:20:41 PM

Rank: AiutAmico

Iscritto dal : 1/26/2009
Posts: 570
Logfile of HiJackThis Fork by Alex Dragokas v.2.9.0.18

Platform: x32 Windows 7 (Ultimate), 6.1.7601.0, Service Pack: 1
Time: 17.03.2020 - 19:18 (UTC+01:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Elevated: Yes
Ran by: Sergio (group: Administrator) on SERGIO-PC, FirstRun: yes

Chrome: 80.0.3987.132
Internet Explorer: 8.0.7601.17514
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
2 C:\Program Files\AVAST Software\Avast\AvastUI.exe
1 C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
1 C:\Program Files\AVAST Software\Avast\aswidsagent.exe
1 C:\Program Files\Glary Utilities 5\Integrator.exe
1 C:\Program Files\Intel\AMT\LMS.exe
1 C:\Program Files\Intel\AMT\UNS.exe
1 C:\Program Files\Intel\AMT\atchk.exe
1 C:\Program Files\Intel\AMT\atchksrv.exe
1 C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
1 C:\Program Files\Windows Media Player\wmpnetwk.exe
1 C:\Users\Sergio\Desktop\HiJackThis.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\WUDFHost.exe
1 C:\Windows\System32\audiodg.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\hkcmd.exe
1 C:\Windows\System32\igfxpers.exe
1 C:\Windows\System32\igfxsrvc.exe
1 C:\Windows\System32\igfxtray.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\lsm.exe
1 C:\Windows\System32\rundll32.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
1 C:\Windows\System32\sppsvc.exe
11 C:\Windows\System32\svchost.exe
1 C:\Windows\System32\taskhost.exe
1 C:\Windows\System32\wbem\WmiApSrv.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wbem\unsecapp.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wuauclt.exe
1 C:\Windows\explorer.exe

O2 - HKLM\..\BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - HKLM\..\Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - HKCU\..\Run: [GUDelayStartup] = C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun
O4 - HKLM\..\Run: [AvastUI.exe] = C:\Program Files\AVAST Software\Avast\AvLaunch.exe /gui
O4 - HKLM\..\Run: [HotKeysCmds] = C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] = C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] = C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [atchk] = C:\Program Files\Intel\AMT\atchk.exe
O4 - HKLM\..\Session Manager: [BootExecute] = C:\Windows\system32\autochk.exe *
O4 - HKU\.DEFAULT\..\RunOnce: [SPReview] = C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
O17 - DHCP DNS 1: 192.168.1.1
O21 - HKLM\..\ShellIconOverlayIdentifiers\00asw: avast - {472083B0-C522-11CF-8763-00608CC02F24} - C:\Program Files\AVAST Software\Avast\ashShell.dll
O22 - Task (.job): (disabled) (Not scheduled) Driver Booster SkipUAC (Sergio).job - C:\Program Files\IObit\Driver Booster\4.0.4\DriverBooster.exe (file missing) /skipuac
O22 - Task (.job): (disabled) (Not scheduled) RunAsStdUser Task.job - C:\Program Files\IObit\Driver Booster\4.0.4\NoteIcon.exe (file missing) "C:\Program Files\IObit\Driver Booster\4.0.4\DriverBooster.exe" taskmode
O23 - Service R2: Avast Antivirus - (avast! Antivirus) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service R2: Intel(R) Active Management Technology Local Management Service - (LMS) - C:\Program Files\Intel\AMT\LMS.exe
O23 - Service R2: Intel(R) Active Management Technology System Status Service - (atchksrv) - C:\Program Files\Intel\AMT\atchksrv.exe
O23 - Service R2: Intel(R) Active Management Technology User Notification Service - (UNS) - C:\Program Files\Intel\AMT\UNS.exe
O23 - Service R3: aswbIDSAgent - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: Adobe Flash Player Update Service - (AdobeFlashPlayerUpdateSvc) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service S3: Google Chrome Elevation Service - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\80.0.3987.132\elevation_service.exe
O23 - Service S3: Google Software Updater - (gusvc) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc

Ho scaricato dal vostro sito la versione Exe 32/64 bit non so se vabene
--
End of file - Time spent: 23,9 sec. - 10678 bytes, CRC32: FFFFFFFF. Sign: 钉擭
Sponsor
Inviato: Tuesday, March 17, 2020 7:20:41 PM

 
wolfestein
Inviato: Tuesday, March 17, 2020 10:28:42 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 15,954
Il log mettilo su sucurezza virus.
cbbusto
Inviato: Wednesday, March 18, 2020 12:41:44 AM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,964
Ti rispondo da qui. Il log non presenta grossi problemi, c'è Avast che è molto pesante, e voci in Avvio inutili.
Apri HJT fixa ed elimina le seguenti voci:

O2 - HKLM\..\BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - HKLM\..\Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - Global User Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v3 Smart Wizard.lnk -> C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
O4 - HKCU\..\Run: [GUDelayStartup] = C:\Program Files\Glary Utilities 5\StartupManager.exe -delayrun
O4 - HKLM\..\Run: [HotKeysCmds] = C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [IgfxTray] = C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] = C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [atchk] = C:\Program Files\Intel\AMT\atchk.exe
O4 - HKLM\..\Session Manager: [BootExecute] = C:\Windows\system32\autochk.exe *
O4 - HKU\.DEFAULT\..\RunOnce: [SPReview] = C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601

Poi fai una pulizia del Registro.

Per una pulizia profonda del registro, usa Eusing Free Registry Cleaner sw da usare saltuariamente, lo scarichi da qui: http://www.eusing.com/free_registry_cleaner/registry_cleaner.htm
clic su Download Site1, una volta lanciato appare una finestra che chiede il codice, clic su ignora e procedi, poi in alto a sinistra clic su Analizza Registro, lascia fare fino alla fine non ti preoccupare se trova molte voci, poi clicca su Ripara Registro, il sw è sicuro comunque crea un punto di ripristino e fa anche il backup dei file eliminati infatti in alto sotto ripara registro si trova la voce Ripristina Registro.
Per fare questa pulizia meglio chiudere tutti i programmi e disconnesso.
Il programma è compatibile con tutti i S.O. windows compreso win 10 e XP.

Fai sapere se ci sono delle migliorie-
Se vuoi sostituire Avast un antivirus leggero è Panda, lo trovi su aiutamici sezione software con la spiegazione di Alfonso.
Utenti presenti in questo topic
Guest


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.