Ultima modifica:
ciao a tutti vorrei sapere se questo processo è pulito oppure no, e come si fa per disattivare la connessione stabilità da questo processo? (il pid ho notato che cambia ogni tanto)
20.54.37.73:443 ESTABLISHED 1248
c'è anche un'altro processo identico: 0.0.0.0:0 LISTENING 1248
solo che è in listening
Vedi: https://pastebin.com/rfasWusy
è il link di hijackthis, ho fatto una scansione, grazie per l'eventuale aiuto ._.
Vedi: https://pastebin.com/YC4iZhH4
il link del log di process-explorer
e questo è l'indirizzo incriminato che proviene dall'irlanda ._.
volevo chiedervi se è possibile rimuovere queste cose:
20.54.37.73:443 ESTABLISHED 1248
Messaggio unito automaticamente:
c'è anche un'altro processo identico: 0.0.0.0:0 LISTENING 1248
solo che è in listening
Messaggio unito automaticamente:
Vedi: https://pastebin.com/rfasWusy
è il link di hijackthis, ho fatto una scansione, grazie per l'eventuale aiuto ._.
Messaggio unito automaticamente:
Vedi: https://pastebin.com/YC4iZhH4
il link del log di process-explorer
Messaggio unito automaticamente:
e questo è l'indirizzo incriminato che proviene dall'irlanda ._.
20.54.37.73 | Microsoft Corporation | AbuseIPDB
www.abuseipdb.com
Messaggio unito automaticamente:
volevo chiedervi se è possibile rimuovere queste cose:
- R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://www.google.it/
- O1 - Hosts: Reset contents to default
- O1 - Hosts: 0.0.0.0 analytics.ff.avast.com
- O1 - Hosts: 0.0.0.0 analytics.ns1.ff.avast.com
- O1 - Hosts: 0.0.0.0 v7event.stats.avcdn.net
- O1 - Hosts: 0.0.0.0 v7.stats.avcdn.net
- O1 - Hosts: 0.0.0.0 flow.lavasoft.com
- O1 - Hosts: 0.0.0.0 telemetry.malwarebytes.com
- O1 - Hosts: 0.0.0.0 ws.mcafee.com
- O1 - Hosts: 0.0.0.0 analytics.ccs.mcafee.com
- O1 - Hosts: 0.0.0.0 analyticsdcs.ccs.mcafee.com
- O1 - Hosts: 0.0.0.0 carcharodon.trendmicro.com
- O1 - Hosts: 0.0.0.0 a.ads1.msn.com
- O1 - Hosts: 0.0.0.0 a.ads2.msads.net
- O1 - Hosts: 0.0.0.0 a.ads2.msn.com
- O1 - Hosts: 0.0.0.0 a.rad.msn.com
- O1 - Hosts: 0.0.0.0 a-0001.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0002.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0003.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0004.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0005.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0006.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0007.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0008.a-msedge.net
- O1 - Hosts: 0.0.0.0 a-0009.a-msedge.net
- O1 - Hosts: 0.0.0.0 ac3.msn.com
- O1 - Hosts: 0.0.0.0 ad.doubleclick.net
- O1 - Hosts: 0.0.0.0 adnexus.net
- O1 - Hosts: 0.0.0.0 adnxs.com
- O1 - Hosts: 0.0.0.0 ads.msn.com
- O1 - Hosts: 0.0.0.0 ads1.msads.net
- O1 - Hosts: 0.0.0.0 ads1.msn.com
- O1 - Hosts: 0.0.0.0 aidps.atdmt.com
- O1 - Hosts: 0.0.0.0 aka-cdn-ns.adtech.de
- O1 - Hosts: 0.0.0.0 a-msedge.net
- O1 - Hosts: 0.0.0.0 apps.skype.com
- O1 - Hosts: 0.0.0.0 az361816.vo.msecnd.net
- O1 - Hosts: 0.0.0.0 az512334.vo.msecnd.net
- O1 - Hosts: 0.0.0.0 b.ads1.msn.com
- O1 - Hosts: 0.0.0.0 b.ads2.msads.net
- O1 - Hosts: 0.0.0.0 b.rad.msn.com
- O1 - Hosts: 0.0.0.0 bs.serving-sys.com
- O1 - Hosts: 0.0.0.0 c.atdmt.com
- O1 - Hosts: 0.0.0.0 c.msn.com
- O1 - Hosts: 0.0.0.0 cdn.atdmt.com
- O1 - Hosts: 0.0.0.0 cds26.ams9.msecn.net
- O1 - Hosts: 0.0.0.0 compatexchange.cloudapp.net
- O1 - Hosts: 0.0.0.0 corpext.msitadfs.glbdns2.microsoft.com
- O1 - Hosts: 0.0.0.0 cs1.wpc.v0cdn.net
- O1 - Hosts: 0.0.0.0 db3aqu.atdmt.com
- O1 - Hosts: 0.0.0.0 ec.atdmt.com
- O1 - Hosts: 0.0.0.0 fe2.update.microsoft.com.akadns.net
- O1 - Hosts: 0.0.0.0 feedback.microsoft-hohm.com
- O1 - Hosts: 0.0.0.0 flex.msn.com
- O1 - Hosts: 0.0.0.0 g.msn.com
- O1 - Hosts: 0.0.0.0 h1.msn.com
- O1 - Hosts: 0.0.0.0 lb1.www.ms.akadns.net
- O1 - Hosts: 0.0.0.0 live.rads.msn.com
- O1 - Hosts: 0.0.0.0 m.adnxs.com
- O1 - Hosts: 0.0.0.0 m.hotmail.com
- O1 - Hosts: 0.0.0.0 msedge.net
- O1 - Hosts: 0.0.0.0 msftncsi.com
- O1 - Hosts: 0.0.0.0 msnbot-65-55-108-23.search.msn.com
- O1 - Hosts: 0.0.0.0 msntest.serving-sys.com
- O1 - Hosts: 0.0.0.0 pre.footprintpredict.com
- O1 - Hosts: 0.0.0.0 preview.msn.com
- O1 - Hosts: 0.0.0.0 pricelist.skype.com
- O1 - Hosts: 0.0.0.0 rad.live.com
- O1 - Hosts: 0.0.0.0 rad.msn.com
- O1 - Hosts: 0.0.0.0 s.gateway.messenger.live.com
- O1 - Hosts: 0.0.0.0 s0.2mdn.net
- O1 - Hosts: 0.0.0.0 schemas.microsoft.akadns.net
- O1 - Hosts: 0.0.0.0 secure.adnxs.com
- O1 - Hosts: 0.0.0.0 secure.flashtalking.com
- O1 - Hosts: 0.0.0.0 sls.update.microsoft.com.akadns.net
- O1 - Hosts: 0.0.0.0 static.2mdn.net
- O1 - Hosts: 0.0.0.0 statsfe1.ws.microsoft.com
- O1 - Hosts: 0.0.0.0 statsfe2.update.microsoft.com.akadns.net
- O1 - Hosts: 0.0.0.0 statsfe2.ws.microsoft.com
- O1 - Hosts: 0.0.0.0 survey.watson.microsoft.com
- O1 - Hosts: 0.0.0.0 view.atdmt.com
- O1 - Hosts: 0.0.0.0 www.msftncsi.com
- O1 - Hosts: 0.0.0.0 choice.microsoft.com
- O1 - Hosts: 0.0.0.0 choice.microsoft.com.nstac.net
- O1 - Hosts: 0.0.0.0 df.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 oca.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 oca.telemetry.microsoft.com.nsatc.net
- O1 - Hosts: 0.0.0.0 redir.metaservices.microsoft.com
- O1 - Hosts: 0.0.0.0 reports.wes.df.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 services.wes.df.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 settings-sandbox.data.microsoft.com
- O1 - Hosts: 0.0.0.0 settings-win.data.microsoft.com
- O1 - Hosts: 0.0.0.0 sqm.df.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 sqm.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 sqm.telemetry.microsoft.com.nsatc.net
- O1 - Hosts: 0.0.0.0 telecommand.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 telecommand.telemetry.microsoft.com.nsatc.net
- O1 - Hosts: 0.0.0.0 telemetry.appex.bing.net
- O1 - Hosts: 0.0.0.0 telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 telemetry.urs.microsoft.com
- O1 - Hosts: 0.0.0.0 vortex-sandbox.data.microsoft.com
- O1 - Hosts: 0.0.0.0 vortex-win.data.microsoft.com
- O1 - Hosts: 0.0.0.0 vortex.data.microsoft.com
- O1 - Hosts: 0.0.0.0 watson.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 watson.telemetry.microsoft.com.nsatc.net
- O1 - Hosts: 0.0.0.0 watson.ppe.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 wes.df.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 vortex-bn2.metron.live.com.nsatc.net
- O1 - Hosts: 0.0.0.0 vortex-cy2.metron.live.com.nsatc.net
- O1 - Hosts: 0.0.0.0 watson.live.com
- O1 - Hosts: 0.0.0.0 watson.microsoft.com
- O1 - Hosts: 0.0.0.0 feedback.search.microsoft.com
- O1 - Hosts: 0.0.0.0 feedback.windows.com
- O1 - Hosts: 0.0.0.0 corp.sts.microsoft.com
- O1 - Hosts: 0.0.0.0 diagnostics.support.microsoft.com
- O1 - Hosts: 0.0.0.0 i1.services.social.microsoft.com
- O1 - Hosts: 0.0.0.0 i1.services.social.microsoft.com.nsatc.net
- O1 - Hosts: 0.0.0.0 vortex-bn2.metron.live.com.nsatc.net
- O1 - Hosts: 0.0.0.0 vortex-cy2.metron.live.com.nsatc.net
- O1 - Hosts: 0.0.0.0 ca.telemetry.microsoft.com
- O1 - Hosts: 0.0.0.0 cache.datamart.windows.com
- O1 - Hosts: 0.0.0.0 diagnostics.support.microsoft.com
- O1 - Hosts: 0.0.0.0 spynet2.microsoft.com
- O1 - Hosts: 0.0.0.0 spynetalt.microsoft.com
- O4 - HKLM\..\Run: [RtkAudUService] = CWindows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_3d345565ec73a109\RtkAudUService64.exe -