Problema con windows 10

D

dnilob

Digital-Forum New User
Registrato
21 Ottobre 2022
Messaggi
10
Ciao a tutti, dopo essere stato bannato da facebook e instagram senza motivo ho iniziato a fare tutte le scansioni possibili ed ho scoperto qualche virus nel mio pc, sembrerebbe che sia ormai sia tutto a posto ma ho una finestra prompt che si apre frequentemente per una frazione di secondo con il titolo "C:\User\danib\Roaming\gtwafbe" qualcuno riesce a capire cosa sia? grazie a chi mi risponderà
MEFWY22
 
Hai provato a pulire cookie e cache del browser?

Hai utilizzato anche altri browser, se si il problema persiste?
 
Hai per caso connesso o installato qualche app o programma che ti si connette con il tuo smartphone?
 
dnilob ha scritto:
Ciao a tutti, dopo essere stato bannato da facebook e instagram senza motivo ho iniziato a fare tutte le scansioni possibili ed ho scoperto qualche virus nel mio pc, sembrerebbe che sia ormai sia tutto a posto ma ho una finestra prompt che si apre frequentemente per una frazione di secondo con il titolo "C:\User\danib\Roaming\gtwafbe" qualcuno riesce a capire cosa sia? grazie a chi mi risponderà
MEFWY22
Clicca per espandere...

Usa questo programmino e metti il log qui

https://www.digital-forum.it/showth...ijackThis-(Versione-2-10-0-23)-del-03-09-2022
 
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.23

Platform: x64 Windows 10 (Home), 10.0.19044.2130 (ReleaseId: 2009, 21H2), Service Pack: 0
Time: 25.10.2022 - 14:27 (UTC+02:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Memory: 1574 MiB Free (80 %). CPU Loading: (35 %)
Elevated: Yes
Ran by: danib (group: Administrators) on DESKTOP-R8BR26E, FirstRun: yes

Chrome: 106.0.5249.119
Firefox: 92.0.0.7916
Internet Explorer: 11.0.19041.1566
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
2 C:\Program Files (x86)\AnyDesk\AnyDesk.exe
1 C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
1 C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
1 C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
1 C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
1 C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
1 C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
1 C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
1 C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
1 C:\Program Files (x86)\Browny02\BrYNSvc.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
1 C:\Program Files (x86)\Wondershare\Dr.Fone\WsidService.exe
1 C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareService.exe
1 C:\Program Files\adaware\adaware antivirus\elam\3.0.0.0\AdAwareWSCService.exe
1 C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
1 C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
1 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
29 C:\Program Files\Google\Chrome\Application\chrome.exe
1 C:\Program Files\LightBurn\LightBurn.exe
1 C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
1 C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
1 C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe
1 C:\Program Files\Tablet\Wacom\WacomHost.exe
1 C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
1 C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
1 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.22041.10091.0_x64__8wekyb3d8bbwe\Video.UI.exe
7 C:\ProgramData\danib\WhatsApp\app-2.2240.7\WhatsApp.exe
1 C:\ProgramData\Wondershare\Service\InstallAssistService.exe
1 C:\Users\danib\AppData\Local\Microsoft\OneDrive\22.207.1002.0003\FileCoAuth.exe
1 C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1 C:\Users\danib\OneDrive\Desktop\HiJackThis\HiJackThis.exe
1 C:\Windows\explorer.exe
1 C:\Windows\ImmersiveControlPanel\SystemSettings.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\audiodg.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
2 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\igfxCUIService.exe
1 C:\Windows\System32\igfxEM.exe
1 C:\Windows\System32\igfxHK.exe
1 C:\Windows\System32\igfxTray.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\oobe\UserOOBEBroker.exe
10 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SecurityHealthSystray.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\SgrmBroker.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
81 C:\Windows\System32\svchost.exe
3 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wbem\unsecapp.exe
1 C:\Windows\System32\wbem\WMIADAP.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\WUDFHost.exe
2 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 D:\inkscape\bin\gdbus.exe
8 D:\inkscape\bin\inkscape.exe

O4 - HKCU\..\Run: [OneDrive] = C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2022/06/13)
O4 - HKCU\..\StartupApproved\Run: [GoogleChromeAutoLaunch_DDCD80460B6BA5859C183779CD79B5D1] = C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5 (2022/06/13)
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_F69FE395FC93567DED0F3CAB194A0919] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start /prefetch:5 (2022/10/20)
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\StartupApproved\Run: [AdAwareTray] = C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareTray.exe (2022/10/21)
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control
O4-32 - HKLM\..\Run: [BrotherSoftwareUpdateNotification] = C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe /Autorun
O4-32 - HKLM\..\Run: [BrStsMon00] = C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7949634d-71cd-4c5b-8055-3b77b2da08d7}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7949634d-71cd-4c5b-8055-3b77b2da08d7}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2DCD40E3-95DF-409B-BE77-8663A7105B38} - (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2DCD40E3-95DF-409B-BE77-8663A7105B38} - \svcupdater (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot Identity Monitor (empty)
O22 - Tasks: (damaged) Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe CrashCollector (user missing)
O22 - Tasks: (damaged) Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe ServiceWatchdog (user missing)
O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC Reboot (Microsoft)
O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery Reboot (Microsoft)
O22 - Tasks: (disabled) \Agent Activation Runtime\S-1-5-21-445791029-955948344-402616347-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Tasks: \Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler - C:\Program Files\RUXIM\PLUGscheduler.exe (Microsoft)
O22 - Tasks: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
O22 - Tasks: AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled
O22 - Tasks: Avira_FallbackUpdater - C:\WINDOWS\system32\sc.exe start AviraFallbackUpdater Delayed=false
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe CrashCollector
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe FallbackTelemetry
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe ServiceWatchdog
O22 - Tasks: Avira_Security_Service_SCM_Watchdog - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe HandleServiceControlManagerEvent 7000
O22 - Tasks: Avira_Security_Systray - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
O22 - Tasks: Avira_Security_Update - C:\WINDOWS\system32\net.exe start AviraSecurityUpdater
O22 - Tasks: AviraSystemSpeedupVerify - C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe /VERIFY /VERYSILENT /NOSTART /NODOTNET /NORESTART
O22 - Tasks: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Tasks: CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d558b057-9391-4e45-a820-02ea3f9efed0" --version "6.04.10044" --silent
O22 - Tasks: CCleanerSkipUAC - danib - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Tasks: CorelUpdateHelperTask-3ED1EB0FAD2CE386782749C2F8AEC125 - C:\Program Files (x86)\Corel\CUH\v2\CUH.exe -resume (file missing)
O22 - Tasks: EOSv3 Scheduler onLogOn - C:\Users\danib\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Tasks: EOSv3 Scheduler onTime - C:\Users\danib\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Tasks: Firefox Default Browser Agent E7C3B1BADD6DC6FB - C:\Users\danib\AppData\Roaming\gtwafbe
O22 - Tasks: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Tasks: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-445791029-955948344-402616347-1001 - C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting
O23 - Service R2: adaware antivirus service - (adawareantivirusservice) - C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareService.exe
O23 - Service R2: adaware antivirus wsc service - (adawareantiviruswscservice) - C:\Program Files\adaware\adaware antivirus\elam\3.0.0.0\AdAwareWSCService.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service
O23 - Service R2: Avira Optimizer Host - (AviraOptimizerHost) - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service R2: Avira Phantom VPN - (AviraPhantomVPN) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service R2: Avira Security - (AviraSecurity) - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service R2: Brother USB Application Controller - (USBAppControl) - C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
O23 - Service R2: Brother Workflow Application Controller - (WorkflowAppControl) - C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
O23 - Service R2: Endpoint Protection Service - (EndpointProtectionService) - C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe Files\Avira\Endpoint Protection SDK\endpointprotection.exe start EndpointProtectionService
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Wacom Professional Service - (WTabletServicePro) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
O23 - Service R2: Wondershare Install Assist Service - (Wondershare InstallAssist) - C:\ProgramData\Wondershare\Service\InstallAssistService.exe
O23 - Service R2: Wondershare WSID help - (DFWSIDService) - C:\Program Files (x86)\Wondershare\Dr.Fone\WsidService.exe
O23 - Service R3: BrYNSvc - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service S2: Avira Fallback Updater - (AviraFallbackUpdater) - C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe FallbackUpdater=true
O23 - Service S2: Avira Security Updater - (AviraSecurityUpdater) - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: TeamViewer - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S3: Endpoint Protection Secondary Service - (EndpointProtectionService2) - C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe Files\Avira\Endpoint Protection SDK\endpointprotection.exe start EndpointProtectionService2
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc


--
End of file - Time spent: 12,2 sec. - 32286 bytes, CRC32: FFFFFFFF. Sign: 꾶੖
 
dnilob ha scritto:
Logfile of HiJackThis Fork by Alex Dragokas v.2.10.0.23

Platform: x64 Windows 10 (Home), 10.0.19044.2130 (ReleaseId: 2009, 21H2), Service Pack: 0
Time: 25.10.2022 - 14:27 (UTC+02:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Memory: 1574 MiB Free (80 %). CPU Loading: (35 %)
Elevated: Yes
Ran by: danib (group: Administrators) on DESKTOP-R8BR26E, FirstRun: yes

Chrome: 106.0.5249.119
Firefox: 92.0.0.7916
Internet Explorer: 11.0.19041.1566
Default: "C:\Program Files\Google\Chrome\Application\chrome.exe" --single-argument %1 (Google Chrome)

Boot mode: Normal

Running processes:
Number | Path
2 C:\Program Files (x86)\AnyDesk\AnyDesk.exe
1 C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
1 C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
1 C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
1 C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
1 C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
1 C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
1 C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
1 C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
1 C:\Program Files (x86)\Browny02\BrYNSvc.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
1 C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
1 C:\Program Files (x86)\Wondershare\Dr.Fone\WsidService.exe
1 C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareService.exe
1 C:\Program Files\adaware\adaware antivirus\elam\3.0.0.0\AdAwareWSCService.exe
1 C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
1 C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
1 C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
29 C:\Program Files\Google\Chrome\Application\chrome.exe
1 C:\Program Files\LightBurn\LightBurn.exe
1 C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
1 C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
1 C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
1 C:\Program Files\Tablet\Wacom\Wacom_UpdateUtil.exe
1 C:\Program Files\Tablet\Wacom\WacomHost.exe
1 C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
1 C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
1 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2022.30070.26007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
1 C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
1 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.117.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
1 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.22041.10091.0_x64__8wekyb3d8bbwe\Video.UI.exe
7 C:\ProgramData\danib\WhatsApp\app-2.2240.7\WhatsApp.exe
1 C:\ProgramData\Wondershare\Service\InstallAssistService.exe
1 C:\Users\danib\AppData\Local\Microsoft\OneDrive\22.207.1002.0003\FileCoAuth.exe
1 C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDrive.exe
1 C:\Users\danib\OneDrive\Desktop\HiJackThis\HiJackThis.exe
1 C:\Windows\explorer.exe
1 C:\Windows\ImmersiveControlPanel\SystemSettings.exe
1 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1 C:\Windows\System32\ApplicationFrameHost.exe
1 C:\Windows\System32\audiodg.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\ctfmon.exe
1 C:\Windows\System32\dasHost.exe
2 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
2 C:\Windows\System32\fontdrvhost.exe
1 C:\Windows\System32\igfxCUIService.exe
1 C:\Windows\System32\igfxEM.exe
1 C:\Windows\System32\igfxHK.exe
1 C:\Windows\System32\igfxTray.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\oobe\UserOOBEBroker.exe
10 C:\Windows\System32\RuntimeBroker.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\SecurityHealthService.exe
1 C:\Windows\System32\SecurityHealthSystray.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\SgrmBroker.exe
1 C:\Windows\System32\sihost.exe
1 C:\Windows\System32\smartscreen.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
81 C:\Windows\System32\svchost.exe
3 C:\Windows\System32\taskhostw.exe
1 C:\Windows\System32\wbem\unsecapp.exe
1 C:\Windows\System32\wbem\WMIADAP.exe
1 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\WUDFHost.exe
2 C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
1 C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
1 C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe
1 C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
1 D:\inkscape\bin\gdbus.exe
8 D:\inkscape\bin\inkscape.exe

O4 - HKCU\..\Run: [OneDrive] = C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDrive.exe /background (Microsoft)
O4 - HKCU\..\StartupApproved\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (2022/06/13)
O4 - HKCU\..\StartupApproved\Run: [GoogleChromeAutoLaunch_DDCD80460B6BA5859C183779CD79B5D1] = C:\Program Files\Google\Chrome\Application\chrome.exe --no-startup-window /prefetch:5 (2022/06/13)
O4 - HKCU\..\StartupApproved\Run: [MicrosoftEdgeAutoLaunch_F69FE395FC93567DED0F3CAB194A0919] = C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --no-startup-window --win-session-start /prefetch:5 (2022/10/20)
O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
O4 - HKLM\..\StartupApproved\Run: [AdAwareTray] = C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareTray.exe (2022/10/21)
O4 - Startup Global: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe --control
O4-32 - HKLM\..\Run: [BrotherSoftwareUpdateNotification] = C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe /Autorun
O4-32 - HKLM\..\Run: [BrStsMon00] = C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O17 - DHCP DNS 1: 8.8.8.8 (Well-known DNS: Google)
O17 - DHCP DNS 2: 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7949634d-71cd-4c5b-8055-3b77b2da08d7}: [NameServer] = 8.8.4.4 (Well-known DNS: Google)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7949634d-71cd-4c5b-8055-3b77b2da08d7}: [NameServer] = 8.8.8.8 (Well-known DNS: Google)
O22 - Task (.job): CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2DCD40E3-95DF-409B-BE77-8663A7105B38} - (no key)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2DCD40E3-95DF-409B-BE77-8663A7105B38} - \svcupdater (no xml)
O22 - Task: (damaged) HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking\Spybot Identity Monitor (empty)
O22 - Tasks: (damaged) Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe CrashCollector (user missing)
O22 - Tasks: (damaged) Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe ServiceWatchdog (user missing)
O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_AC - C:\WINDOWS\system32\MusNotification.exe /RunOnAC Reboot (Microsoft)
O22 - Tasks: (disabled) (update) \Microsoft\Windows\UpdateOrchestrator\Reboot_Battery - C:\WINDOWS\system32\MusNotification.exe /RunOnBattery Reboot (Microsoft)
O22 - Tasks: (disabled) \Agent Activation Runtime\S-1-5-21-445791029-955948344-402616347-1001 - C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\DetectHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},DetectHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Autopilot\RemediateHardwareChange - {62B2DD2C-F129-42EE-BF59-55D3FD21C215},RemediateHardwareChange - C:\WINDOWS\System32\Autopilot.dll (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\Retry - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ProvRetryTask (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\Management\Provisioning\RunOnReboot - C:\WINDOWS\system32\ProvTool.exe /turn 5 /source ContinueSessionTask (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Maintenance Work - C:\WINDOWS\system32\usoclient.exe StartMaintenanceWork (Microsoft)
O22 - Tasks: (disabled) \Microsoft\Windows\UpdateOrchestrator\Schedule Wake To Work - C:\WINDOWS\system32\usoclient.exe StartWork (Microsoft)
O22 - Tasks: (telemetry) \Microsoft\Windows\Application Experience\PcaPatchDbTask - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\PcaSvc.dll,PcaPatchSdbTask (Microsoft)
O22 - Tasks: \Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler - C:\Program Files\RUXIM\PLUGscheduler.exe (Microsoft)
O22 - Tasks: \Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB - C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
O22 - Tasks: AdobeGCInvoker-1.0 - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe -mode=scheduled
O22 - Tasks: Avira_FallbackUpdater - C:\WINDOWS\system32\sc.exe start AviraFallbackUpdater Delayed=false
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe CrashCollector
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe FallbackTelemetry
O22 - Tasks: Avira_Security_Maintenance - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe ServiceWatchdog
O22 - Tasks: Avira_Security_Service_SCM_Watchdog - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe HandleServiceControlManagerEvent 7000
O22 - Tasks: Avira_Security_Systray - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
O22 - Tasks: Avira_Security_Update - C:\WINDOWS\system32\net.exe start AviraSecurityUpdater
O22 - Tasks: AviraSystemSpeedupVerify - C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe /VERIFY /VERYSILENT /NOSTART /NODOTNET /NORESTART
O22 - Tasks: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Tasks: CCleanerCrashReporting - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d558b057-9391-4e45-a820-02ea3f9efed0" --version "6.04.10044" --silent
O22 - Tasks: CCleanerSkipUAC - danib - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Tasks: CorelUpdateHelperTask-3ED1EB0FAD2CE386782749C2F8AEC125 - C:\Program Files (x86)\Corel\CUH\v2\CUH.exe -resume (file missing)
O22 - Tasks: EOSv3 Scheduler onLogOn - C:\Users\danib\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe LOGON
O22 - Tasks: EOSv3 Scheduler onTime - C:\Users\danib\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe SCHED
O22 - Tasks: Firefox Default Browser Agent E7C3B1BADD6DC6FB - C:\Users\danib\AppData\Roaming\gtwafbe
O22 - Tasks: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Tasks: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Tasks: OneDrive Reporting Task-S-1-5-21-445791029-955948344-402616347-1001 - C:\Users\danib\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting
O23 - Service R2: adaware antivirus service - (adawareantivirusservice) - C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.10.234.0\AdAwareService.exe
O23 - Service R2: adaware antivirus wsc service - (adawareantiviruswscservice) - C:\Program Files\adaware\adaware antivirus\elam\3.0.0.0\AdAwareWSCService.exe
O23 - Service R2: Adobe Genuine Monitor Service - (AGMService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service R2: Adobe Genuine Software Integrity Service - (AGSService) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service R2: AnyDesk Service - (AnyDesk) - C:\Program Files (x86)\AnyDesk\AnyDesk.exe --service
O23 - Service R2: Avira Optimizer Host - (AviraOptimizerHost) - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service R2: Avira Phantom VPN - (AviraPhantomVPN) - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service R2: Avira Security - (AviraSecurity) - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service R2: Brother USB Application Controller - (USBAppControl) - C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
O23 - Service R2: Brother Workflow Application Controller - (WorkflowAppControl) - C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
O23 - Service R2: Endpoint Protection Service - (EndpointProtectionService) - C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe Files\Avira\Endpoint Protection SDK\endpointprotection.exe start EndpointProtectionService
O23 - Service R2: Intel(R) HD Graphics Control Panel Service - (igfxCUIService1.0.0.0) - C:\WINDOWS\system32\igfxCUIService.exe
O23 - Service R2: Wacom Professional Service - (WTabletServicePro) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
O23 - Service R2: Wondershare Install Assist Service - (Wondershare InstallAssist) - C:\ProgramData\Wondershare\Service\InstallAssistService.exe
O23 - Service R2: Wondershare WSID help - (DFWSIDService) - C:\Program Files (x86)\Wondershare\Dr.Fone\WsidService.exe
O23 - Service R3: BrYNSvc - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service S2: Avira Fallback Updater - (AviraFallbackUpdater) - C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe FallbackUpdater=true
O23 - Service S2: Avira Security Updater - (AviraSecurityUpdater) - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S2: TeamViewer - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service S3: Endpoint Protection Secondary Service - (EndpointProtectionService2) - C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe Files\Avira\Endpoint Protection SDK\endpointprotection.exe start EndpointProtectionService2
O23 - Service S3: Google Chrome Elevation Service (GoogleChromeElevationService) - (GoogleChromeElevationService) - C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
O23 - Service S3: Intel(R) Content Protection HECI Service - (cphs) - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc


--
End of file - Time spent: 12,2 sec. - 32286 bytes, CRC32: FFFFFFFF. Sign: 꾶੖
Clicca per espandere...
Devi postarlo qui: https://www.digital-forum.it/showth...ijackThis-(Versione-2-10-0-23)-del-03-09-2022 ;)
 
Forse qui
O22 - Tasks: Firefox Default Browser Agent E7C3B1BADD6DC6FB - C:\Users\danib\AppData\Roaming\gtwafbe
:eusa_think:
 
Fixato...a prima vista la finestra sembra sparita, vi aggiorno e intanto vi ringrazio
 
Devi accedere o registrarti per poter rispondere.
Indietro
Alto Basso