Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Virus rilevati Opzioni
sodomino
Inviato: Sunday, March 03, 2019 12:57:54 PM
Rank: AiutAmico

Iscritto dal : 7/17/2008
Posts: 96
Buongiorno a tutti ragazzi mi ritrovo di nuovo a chiedervi aiuto.
Ho il pc che è diventato lentissimo.
Ho effettuato varie scansioni vi posto i log.

Log malwarebytes. Dopo scansione ho messo in quarantena ed eliminato tutto quello che ha trovato

Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data scansione: 03/03/19
Ora scansione: 11:43
File di log: 28619260-3da1-11e9-add3-40167e869ee3.json

-Informazioni software-
Versione: 3.7.1.2839
Versione componenti: 1.0.538
Aggiorna versione pacchetto: 1.0.9518
Licenza: Trial

-Informazioni sistema-
SO: Windows 10 (Build 17134.137)
CPU: x64
File system: NTFS
Utente: franco\francoengel

-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Scansione avviata da: Manuale
Risultati: Completata
Elementi analizzati: 350359
Minacce rilevate: 119
Minacce messe in quarantena: 0
Tempo impiegato: 5 min, 30 sec

-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Disattivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare

-Dettagli scansione-
Processo: 0
(Nessun elemento nocivo rilevato)

Modulo: 0
(Nessun elemento nocivo rilevato)

Chiave di registro: 0
(Nessun elemento nocivo rilevato)

Valore di registro: 3
PUP.Optional.PConverter, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|mpkhmmacbjndakceaikggpnnnddijeen, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|hhjnhpofkbonfdlgpgicdhddoagmipbi, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.SearchAlgo, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|jehfkemccjknagjgcbfccjajkgnbffpj, Nessuna azione intrapresa, [352], [454816],1.0.9518

Dati di registro: 0
(Nessun elemento nocivo rilevato)

Flusso di dati: 0
(Nessun elemento nocivo rilevato)

Cartella: 19
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales\en, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_metadata, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\config, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\EXTENSIONS\mpkhmmacbjndakceaikggpnnnddijeen, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales\en, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_metadata, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\config, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HHJNHPOFKBONFDLGPGICDHDDOAGMIPBI, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj, Nessuna azione intrapresa, [352], [454816],1.0.9518

File: 97
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\config\config.json, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon128.png, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon16.png, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon19disabled.png, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon19on.png, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon48.png, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\meta.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\ajax.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babAPI.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babClickHandler.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babContentScript.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babContentScriptAPI.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\background.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\browserUtils.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\chrome.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\contentScriptConnectionManager.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dateTimeUtils.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dlp.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dlpHelper.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\extensionDetect.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\index.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\localStorageContentScript.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\logger.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\offerService.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\pageUtils.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\PartnerId.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\polyfill.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\product.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\remoteConfigLoader.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\splashPageLocalStorageSetter.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\splashPageRedirectHandler.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\storageUtils.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\TemplateParser.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\ul.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\urlFragmentActions.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\urlUtils.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\util.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\webtooltabAPI.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\webTooltabAPIProxy.js, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales\en\messages.json, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_metadata\verified_contents.json, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\manifest.json, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\newtabproduct.html, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Nessuna azione intrapresa, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HHJNHPOFKBONFDLGPGICDHDDOAGMIPBI\13.855.14.50568_0\MANIFEST.JSON, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\config\config.json, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon128.png, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon16.png, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon19disabled.png, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon19on.png, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon48.png, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\meta.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\ajax.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babAPI.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babClickHandler.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babContentScript.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babContentScriptAPI.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\background.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\browserUtils.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\chrome.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\contentScriptConnectionManager.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dateTimeUtils.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dlp.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dlpHelper.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\extensionDetect.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\index.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\localStorageContentScript.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\logger.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\offerService.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\pageUtils.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\PartnerId.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\polyfill.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\product.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\remoteConfigLoader.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\splashPageLocalStorageSetter.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\splashPageRedirectHandler.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\storageUtils.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\TemplateParser.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\ul.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\urlFragmentActions.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\urlUtils.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\util.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\webtooltabAPI.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\webTooltabAPIProxy.js, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales\en\messages.json, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_metadata\verified_contents.json, Nessuna azione intrapresa, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\newtabproduct.html, Nessuna azione intrapresa, [1729], [443121],1.0.9518
Generic.Malware/Suspicious, C:\USERS\FRANCOENGEL\DOWNLOADS\MUSDCOIN-0.8.7.4-WIN32-SETUP.EXE, Nessuna azione intrapresa, [0], [392686],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata\computed_hashes.json, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata\verified_contents.json, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nessuna azione intrapresa, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Nessuna azione intrapresa, [352], [454816],1.0.9518

Settore fisico: 0
(Nessun elemento nocivo rilevato)

WMI: 0
(Nessun elemento nocivo rilevato)


(end)


Log adwarecleaner eliminato tutto quello rilevato

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-28.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 03-03-2019
# Duration: 00:00:16
# OS: Windows 10 Home
# Scanned: 31852
# Detected: 1


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy MSN Homepage & Bing Search Engine

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1363 octets] - [22/09/2018 19:37:41]
AdwCleaner[C00].txt - [1493 octets] - [22/09/2018 19:38:14]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########


e infine vi posto il log di hijackthis

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 12:49:02, on 03/03/2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Users\francoengel\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com/?pc=ASJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: I&nvia a OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync - Chiamata con un clic - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - Chiamata con un clic - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AnyDesk Service (AnyDesk) - Unknown owner - C:\Program Files (x86)\AnyDesk\AnyDesk.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Servizio %1!s! Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Servizio %1!s! Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Unknown owner - C:\WINDOWS\system32\DptfParticipantProcessorService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_CONFIGTDP_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Config TDP Service Application (DptfPolicyConfigTDPService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyCriticalService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyLpmService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\elevation_service.exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Program Files\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 13774 bytes


Premetto che il pc dopo le varie scansioni è ancora lento quindi vi chiedo se c'è qualche processo o file in avvio che posso eliminare per velocizzarlo un po

Grazie in anticipo a chiunque voglia aiutarmi buon weekend a tutti
Sponsor
Inviato: Sunday, March 03, 2019 12:57:54 PM

 
cbbusto
Inviato: Monday, March 04, 2019 10:41:40 AM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,248
Dal log non appare niente di particolare, secondo me il problema potrebbe dipendere da Avast che è un mattone pesantissimo e con win 10 non non è ben tollerato.
Non so se lo hai messo tu o, come penso, te lo sei ritrovato installato, questo accade quando si aggiorna ccleaner senza togliere la spunta.
Io ti consiglio di rimuovere Avast e attivare Defender che a mio avviso è molto meglio, vedo che è attivo nei servizi.
La rimozione di Avast non è semplice, ti consiglio di avviare in modalità provvisoria e rimuovere tutto quello che riguarda avast.
Poi fai anche queste pulizie:
Scarica Junkware Removal Tool sul desktop.
http://junkware-removal-tool.it.uptodown.com/download
Il download dovrebbe partire entro 5 secondi
Disattiva temporaneamente l'antivirus per evitare potenziali conflitti.
Doppio click su JRT
Lo strumento si aprirà e avvierà la scansione del sistema.
Devi avere pazienza in quanto questo tool può richiedere del tempo per completare la scansione .
Al termine, un log (JRT.txt) viene salvato sul desktop e si aprirà automaticamente.
Postalo qui.
Per una pulizia profonda del registro, usa Eusing Free Registry Cleaner sw da usare saltuariamente, lo scarichi da qui: http://www.eusing.com/free_registry_cleaner/registry_cleaner.htm
clic su Download Site1, una volta lanciato appare una finestra che chiede il codice, clic su ignora e procedi, poi in alto a sinistra clic su Analizza Registro, lascia fare fino alla fine non ti preoccupare se trova molte voci, poi clicca su Ripara Registro, il sw è sicuro comunque crea un punto di ripristino e fa anche il backup dei file eliminati infatti in alto sotto ripara registro si trova la voce Ripristina Registro.
Per fare questa pulizia meglio chiudere tutti i programmi e disconnesso.
Il programma è compatibile con tutti i S.O. windows compreso win 10.
Hai detto di aver messo in quarantena quello che ha trovato Malwarebytes ma nel log vedo: nessuna azione intrapresa.
Fai sapere se ci sono migliorie. Ciao

sodomino
Inviato: Saturday, March 09, 2019 1:21:36 PM
Rank: AiutAmico

Iscritto dal : 7/17/2008
Posts: 96
ciao cbbusto e grazie per la risposta. Mi scuso ma son stato via per lavoro.
Riguardo ad avast lo ho intallato io molto tempo fa ma progettavo di toglierlo e ne ho approfittato. Sono entrato in modalità provvisoria ed ho eliminato avast. L'unico problema è che mi è rimasta una cartella che non mi fa rimuovere mi dice che è aperta in un altro programma ma io ho eliminato avast come è possibile?
ho effettuato la pulizia con jrt questo è il log

Operating System: Windows 10 Home x64
Ran by francoengel (Administrator) on 09/03/2019 at 13:06:14,27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/03/2019 at 13:12:41,20
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

free registry cleaner lo avevo gia utilizzato prima.
Riguardo a malwarbytes non vedi le azioni intraprese perchè quel log è di prima di farle. Ora ti posto il log dopo aver eliminato le minacce

Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data scansione: 03/03/19
Ora scansione: 11:43
File di log: 28619260-3da1-11e9-add3-40167e869ee3.json

-Informazioni software-
Versione: 3.7.1.2839
Versione componenti: 1.0.538
Aggiorna versione pacchetto: 1.0.9518
Licenza: Trial

-Informazioni sistema-
SO: Windows 10 (Build 17134.137)
CPU: x64
File system: NTFS
Utente: franco\francoengel

-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Scansione avviata da: Manuale
Risultati: Completata
Elementi analizzati: 350359
Minacce rilevate: 119
Minacce messe in quarantena: 119
Tempo impiegato: 5 min, 30 sec

-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Disattivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare

-Dettagli scansione-
Processo: 0
(Nessun elemento nocivo rilevato)

Modulo: 0
(Nessun elemento nocivo rilevato)

Chiave di registro: 0
(Nessun elemento nocivo rilevato)

Valore di registro: 3
PUP.Optional.PConverter, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|mpkhmmacbjndakceaikggpnnnddijeen, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|hhjnhpofkbonfdlgpgicdhddoagmipbi, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.SearchAlgo, HKU\S-1-5-21-3585044668-2905814563-1091673647-1001\SOFTWARE\GOOGLE\CHROME\PREFERENCEMACS\Default\extensions.settings|jehfkemccjknagjgcbfccjajkgnbffpj, In quarantena, [352], [454816],1.0.9518

Dati di registro: 0
(Nessun elemento nocivo rilevato)

Flusso di dati: 0
(Nessun elemento nocivo rilevato)

Cartella: 19
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales\en, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_metadata, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\config, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\EXTENSIONS\mpkhmmacbjndakceaikggpnnnddijeen, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales\en, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_metadata, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\config, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HHJNHPOFKBONFDLGPGICDHDDOAGMIPBI, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata, In quarantena, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0, In quarantena, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj, In quarantena, [352], [454816],1.0.9518

File: 97
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\config\config.json, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon128.png, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon16.png, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon19disabled.png, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon19on.png, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\icons\icon48.png, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\meta.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\ajax.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babAPI.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babClickHandler.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babContentScript.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\babContentScriptAPI.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\background.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\browserUtils.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\chrome.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\contentScriptConnectionManager.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dateTimeUtils.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dlp.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\dlpHelper.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\extensionDetect.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\index.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\localStorageContentScript.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\logger.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\offerService.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\pageUtils.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\PartnerId.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\polyfill.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\product.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\remoteConfigLoader.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\splashPageLocalStorageSetter.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\splashPageRedirectHandler.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\storageUtils.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\TemplateParser.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\ul.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\urlFragmentActions.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\urlUtils.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\util.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\webtooltabAPI.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\js\webTooltabAPIProxy.js, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_locales\en\messages.json, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\_metadata\verified_contents.json, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\manifest.json, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpkhmmacbjndakceaikggpnnnddijeen\13.855.14.52941_0\newtabproduct.html, In quarantena, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sostituito, [1750], [480921],1.0.9518
PUP.Optional.PConverter, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sostituito, [1750], [480921],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sostituito, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sostituito, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HHJNHPOFKBONFDLGPGICDHDDOAGMIPBI\13.855.14.50568_0\MANIFEST.JSON, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\config\config.json, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon128.png, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon16.png, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon19disabled.png, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon19on.png, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\icons\icon48.png, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\meta.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\ajax.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babAPI.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babClickHandler.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babContentScript.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\babContentScriptAPI.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\background.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\browserUtils.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\chrome.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\contentScriptConnectionManager.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dateTimeUtils.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dlp.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\dlpHelper.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\extensionDetect.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\index.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\localStorageContentScript.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\logger.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\offerService.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\pageUtils.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\PartnerId.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\polyfill.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\product.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\remoteConfigLoader.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\splashPageLocalStorageSetter.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\splashPageRedirectHandler.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\storageUtils.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\TemplateParser.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\ul.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\urlFragmentActions.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\urlUtils.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\util.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\webtooltabAPI.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\js\webTooltabAPIProxy.js, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_locales\en\messages.json, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\_metadata\verified_contents.json, In quarantena, [1729], [443121],1.0.9518
PUP.Optional.MindSpark.Generic, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhjnhpofkbonfdlgpgicdhddoagmipbi\13.855.14.50568_0\newtabproduct.html, In quarantena, [1729], [443121],1.0.9518
Generic.Malware/Suspicious, C:\USERS\FRANCOENGEL\DOWNLOADS\MUSDCOIN-0.8.7.4-WIN32-SETUP.EXE, In quarantena, [0], [392686],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata\computed_hashes.json, In quarantena, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\Users\francoengel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jehfkemccjknagjgcbfccjajkgnbffpj\1.0.3_0\_metadata\verified_contents.json, In quarantena, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sostituito, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Sostituito, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sostituito, [352], [454816],1.0.9518
PUP.Optional.SearchAlgo, C:\USERS\FRANCOENGEL\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Sostituito, [352], [454816],1.0.9518

Settore fisico: 0
(Nessun elemento nocivo rilevato)

WMI: 0
(Nessun elemento nocivo rilevato)


(end)

in avvio non c'è nulla che posso togliere? processi che magari sono avviati ma che non servono? grazie mille in anticipo
sodomino
Inviato: Saturday, March 09, 2019 1:46:52 PM
Rank: AiutAmico

Iscritto dal : 7/17/2008
Posts: 96
Allora sono riuscito ad eliminare la cartella arrestando il processo di avast browser update anche se non capisco come mai avendolo eliminato lo avevo tra i processi attivi...
ti posto un log di hijackthis cosi da farti capire ora come son messo comunque il pc sembra migliorato molto apparte in avvio che mi risulta ancora un po lentino

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 13:46:37, on 09/03/2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\francoengel\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com/?pc=ASJB
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'SERVIZIO DI RETE')
O4 - HKUS\S-1-5-18\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\Program Files\Microsoft Office\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: I&nvia a OneNote - res://C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll/105
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync - Chiamata con un clic - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync - Chiamata con un clic - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AnyDesk Service (AnyDesk) - Unknown owner - C:\Program Files (x86)\AnyDesk\AnyDesk.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Asus WebStorage Windows Service - ASUS Cloud Corporation - C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Servizio %1!s! Update (avast) (avast) - Unknown owner - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (file missing)
O23 - Service: Servizio %1!s! Update (avastm) (avastm) - Unknown owner - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (file missing)
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) - Unknown owner - C:\Program Files (x86)\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe (file missing)
O23 - Service: AvastWscReporter - Unknown owner - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_PARTICIPANT_PROC_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Processor Participant Service Application (DptfParticipantProcessorService) - Unknown owner - C:\WINDOWS\system32\DptfParticipantProcessorService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_CONFIGTDP_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Config TDP Service Application (DptfPolicyConfigTDPService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_CRITICAL_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Critical Service Application (DptfPolicyCriticalService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyCriticalService.exe (file missing)
O23 - Service: @oem3.inf,%WIN32_DPTF_POLICY_LPM_SERVICE_DISPLAY_NAME%;Intel(R) Dynamic Platform and Thermal Framework Low Power Mode Service Application (DptfPolicyLpmService) - Unknown owner - C:\WINDOWS\system32\DptfPolicyLpmService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppIntegrationService - WildTangent - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.119\elevation_service.exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

--
End of file - 13364 bytes
wolfestein
Inviato: Saturday, March 09, 2019 4:36:15 PM

Rank: AiutAmico

Iscritto dal : 2/15/2009
Posts: 13,049
Per disinstallare Avast hai usato il suo apposito programma?
https://www.avast.com/it-it/uninstall-utility

cbbusto
Inviato: Saturday, March 09, 2019 11:01:46 PM

Rank: AiutAmico

Iscritto dal : 11/8/2008
Posts: 13,248
I processi di avast che vedi sono file inesistenti.
In avvio c'è poco comunque apri ccleaner vai in strumenti Avvio e disattiva tutte le voci tranne l'antivirus.
Il resto sembra a posto.
Utenti presenti in questo topic
Guest


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.