ciao ragazzi, mi servirebbe aiuto per questo rudere:
Pc: Intel Pentium 4 cpu 3.00 ghz, 1.5 gb ram, Radeon x300 series - windows xp sp3
ha un passato molto travagliato, un amico e' riuscito a rimetterlo in funzione dopo che si era piantato completamente.
Ora, dopo un po' che pareva funzionare bene, presenta i seguenti... ehm "sintomi".
In partenza cerca costantemente il driver di un mouse ps/2 microsoft (gia' provato di tutto, disinstallarlo, reinstallarlo, caricare manualmente il driver, etc. ma il mouse funziona)
Non e' possibile fare un windows update. Ogni volta dice che c'e' stato un problema nell'installazione.
Ogni volta che tento una scansione completa (provati tutti gli antivirus free esistenti) il pc si riavvia da solo. (sulla scansione rapida dice non ci sono problemi.)
aiutatemi per favore
grazie

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0.50.31, on 08/07/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Programmi\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Wise\Wise Care 365\WiseTray.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\system32\svchost.exe
C:\Programmi\Bonjour\mDNSResponder.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\Programmi\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\Programmi\File comuni\InstallShield\UpdateService\issch.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\ALCWZRD.EXE
C:\Programmi\Microsoft IntelliPoint\ipoint.exe
C:\programmi\real\realplayer\update\realsched.exe
C:\Programmi\Microsoft Security Client\msseces.exe
C:\VEXPLite\viritsvc.exe
C:\Programmi\AVAST Software\Avast\avastUI.exe
C:\Programmi\HP\Digital Imaging\bin\hpqtra08.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\eMule\emule.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\WinTV\TVServer\HauppaugeTVServer.exe
C:\Programmi\iTunes\iTunes.exe
C:\Programmi\iPod\bin\iPodService.exe
C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Programmi\File comuni\Apple\Apple Application Support\distnoted.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Google\Chrome\Application\chrome.exe
C:\Programmi\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com/?babsrc=HP_ss&mntrId=48780011D83BAD7E&affID=119357&tsp=4932
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Dati applicazioni\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programmi\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\PROGRA~1\AVASTS~1\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Vista HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Programmi\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\PROGRA~1\AVASTS~1\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Programmi\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FILECO~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Programmi\File comuni\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Programmi\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [IntelliPoint] "C:\Programmi\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Programmi\File comuni\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\programmi\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSC] "C:\Programmi\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [avast] "C:\Programmi\AVAST Software\Avast\avastUI.exe" /nogui
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Programmi\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1371576035203
O17 - HKLM\System\CCS\Services\Tcpip\..\{BFB7EAEA-1C4A-46F8-9606-B3CA5CB33409}: NameServer = 192.168.2.1,8.8.8.8
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Programmi\File comuni\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Programmi\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Programmi\Bonjour\mDNSResponder.exe
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Programmi\Google\Update\GoogleUpdate.exe
O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\Programmi\WinTV\TVServer\HauppaugeTVServer.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Programmi\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Programmi\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Programmi\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: VirIT eXplorer Lite (viritsvclite) - TG Soft Sas www.tgsoft.it - C:\VEXPLite\viritsvc.exe
O23 - Service: Wise Boot Assistant (WiseBootAssistant) - WiseCleaner.com - C:\Programmi\Wise\Wise Care 365\BootTime.exe

--
End of file - 8621 bytes

anzitutto ti ringrazio davvero.
adwcleaner:
# AdwCleaner v2.304 - Logfile creato il 08/07/2013 alle 14:31:32
# Aggiornamento 03/07/2013 by Xplode
# Sistema Operativo : Microsoft Windows XP Service Pack 3 (32 bits)
# Utente : HP_Proprietario - NOME-C80FB6EC72
# Modalità Avvio : Modalità Normale
# Eseguito da : C:\Documents and Settings\HP_Proprietario\Desktop\adwcleaner.exe
# Opzioni [Elimina]


***** [Servizi] *****


***** [File / Cartelle] *****

Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\Babylon
Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\Browser Manager
Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\BrowserDefender
Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\FreeRIP
Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\InstallMate
Cartella Eliminato : C:\Documents and Settings\All Users\Dati applicazioni\Trymedia
Cartella Eliminato : C:\Documents and Settings\All Users\Menu Avvio\Programmi\FreeRIP3
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Dati applicazioni\BabSolution
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Babylon
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Dati applicazioni\DriverCure
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Dati applicazioni\DSite
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\BrowserDefender
Cartella Eliminato : C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\FreeRIP
Cartella Eliminato : C:\Documents and Settings\NetworkService\Impostazioni locali\Dati applicazioni\IncrediMail_MediaBar_2
Cartella Eliminato : C:\Programmi\1ClickDownload
Cartella Eliminato : C:\Programmi\Conduit
Cartella Eliminato : C:\Programmi\EasyLife
Cartella Eliminato : C:\Programmi\File comuni\DVDVideoSoft\TB
Cartella Eliminato : C:\Programmi\Fluendo
Cartella Eliminato : C:\Programmi\FreeRIP
Cartella Eliminato : C:\Programmi\FreeRIP3
Cartella Eliminato : C:\Programmi\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Cartella Eliminato : C:\Programmi\Web Assistant
File Eliminato : C:\Documents and Settings\HP_Proprietario\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\bProtector Web Data
File Eliminato : C:\Documents and Settings\HP_Proprietario\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\bprotectorpreferences
File Eliminato : C:\Programmi\Mozilla FireFox\Components\AskSearch.js
File Eliminato : C:\WINDOWS\Tasks\EPUpdater.job

***** [Registro] *****

Chiave Eliminata : HKCU\Software\5fed9d1b13ebe10
Chiave Eliminata : HKCU\Software\APN PIP
Chiave Eliminata : HKCU\Software\BabSolution
Chiave Eliminata : HKCU\Software\InstallCore
Chiave Eliminata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}
Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Chiave Eliminata : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Chiave Eliminata : HKCU\Software\Softonic
Chiave Eliminata : HKLM\SOFTWARE\5fed9d1b13ebe10
Chiave Eliminata : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Chiave Eliminata : HKLM\SOFTWARE\Classes\Prod.cap
Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Chiave Eliminata : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Chiave Eliminata : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Chiave Eliminata : HKLM\Software\PIP
Valore Eliminata : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Valore Eliminata : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]

***** [Browser Internet] *****

-\\ Internet Explorer v8.0.6001.18702

Sostituito : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=48780011D83BAD7E&affID=119357&tsp=4932 --> hxxp://www.google.com
Sostituito : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - bProtectTabs] = hxxp://www.delta-search.com/?babsrc=NT_ss&mntrId=48780011D83BAD7E&affID=119357&tsp=4932 --> hxxp://www.google.com

-\\ Google Chrome v27.0.1453.116

File : C:\Documents and Settings\HP_Proprietario\Impostazioni locali\Dati applicazioni\Google\Chrome\User Data\Default\Preferences

Eliminata [l.37] : icon_url = "hxxp://www.delta-search.com/favicon.ico",
Eliminata [l.40] : keyword = "delta-search.com",
Eliminata [l.44] : search_url = "hxxp://www.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=48780011D83BAD[...]
Eliminata [l.2350] : homepage = "hxxp://www.delta-search.com/?babsrc=HP_ss&mntrId=48780011D83BAD7E&affID=119357&tsp=4[...]

*************************

AdwCleaner[S1].txt - [5264 octets] - [08/07/2013 14:31:32]

########## EOF - C:\AdwCleaner[S1].txt - [5324 octets] ##########

ADW ha fatto una bella pulizia, Delta Search eliminato.
Chiudi tutti i programmi e disconnesso lanci HJT e clicca sul secondo pulsante: Do a system scan only poi metti la spunta alle voci che ti indico e alla fine clic su Fix checked:

O3 - Toolbar: Vista HP - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Programmi\HP\Digital Imaging\bin\HPDTLK02.dll

O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe

O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HPHUPD06] c:\Programmi\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe

O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe

O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE

O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FILECO~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

O4 - HKLM\..\Run: [ISUSScheduler] "C:\Programmi\File comuni\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE

O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent

O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [APSDaemon] "C:\Programmi\File comuni\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\programmi\real\realplayer\update\realsched.exe" -osboot

Poi vai in installazioni applicazioni e rimuovi Java completamente.

Poi fai una pulizia con Ccleaner compreso il Registro, per il Registro spunta tutte le voci acconsenti al backup quando richiesto, sempre in Ccleaner vai in Strumenti Ripristino Sistema seleziona tutte le voci tranne l'ultima che non è selezionabile e rimane per sicurezza, poi clic su Rimuovi.

Scarica l'ultima vs di Java http://www.java.com/it/download/QUI
Dovresti essere a posto, fammi sapere come va il pc. Ciao

Ho rilanciato l'installazione da desktop e sembrava tutto liscio, fino quando alla fine e' arrivato un avviso : getdefaultbrowsererror:2

ciao!
anzitutto le buone notizie. di sicuro il pc va piu' veloce e finalmente tramite il MSE sono riuscito a fare una scansione completa senza che si riavviasse, alla fine della quale (17 ore! :) ) ha trovato un virus che si chiama piu' o meno cosi': virtool:ceeinject.gen!GD.
i due problemi che rimangono sono la ricerca del mouse microsoft ps/2 intellipoint anche se e' gia' installato e funzionante e il fatto che non mi fa il windows update.
Un ultima cosa: che antivirus mi consigli di tenere? il MSE oppure Kaspersky, Avg?
grazie ancora tantissimo