ciao cbusto grazie tante pe l'aiuto che mi dai, pero sono tanti i passaggi che devo fare , che io credo che non ci riusciro a fare, ma ci provo, poi ti faccio sapere. volevo anche chiederti se formatando non cancello tutto anche i virus oppure qualcosa di nocivo resta ancora.ciao e buona giornata

ciao giza hai ragione ma sono imbranato di natura , e qui mi e stato dato tanto aiuto tutto quello che riesco a fare con il computer me lo avete insegnato voi amici grazie ciao buona giornata.

ciao giza ho fatto le operazioni che mi ha detto cbbusto adesso va bene ,pero quando accendo il portatile mi si presenta sempre la finestra di windows media player non riesco a risolvere questo fastidio. ho provato anche a disattivare tutti i programmi all'avio ma niente. comunque tante grazie a te e cbbusto che mi aiutate tanto.ciao e buona giornata

ciao giza ho istallato vlc come mi hai cosigliato e ho risolto tante grazie. pero volevo chiederti ho scaricato hijackthis ma non riesco ad aprirlo mi potresti dire i passaggi da fare .ciao

ciao wolfestein tante grazie con il tuo aiuto sono riuscito a istallarlo buona serata.

of HiJackThis Fork (Beta) by Alex Dragokas v.2.8.0.4

Platform: x64 Windows 7 (Home Premium), 6.1.7601.24241, Service Pack: 1
Time: 04.11.2018 - 14:21 (UTC+01:00)
Language: OS: Italian (0x410). Display: Italian (0x410). Non-Unicode: Italian (0x410)
Elevated: Yes
Ran by: tommy (group: Administrator) on CASA, FirstRun: no

Chrome: 70.0.3538.77
Firefox: 63.0.0.6865
Internet Explorer: 11.0.9600.17840
Default: "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -osint -url "%1" (Firefox)

Boot mode: Normal

Running processes:
Number | Path
1 C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
1 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
1 C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
1 C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
1 C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1 C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
1 C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1 C:\Program Files (x86)\Launch Manager\dsiwmis.exe
1 C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
1 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
1 C:\Program Files\Acer\Acer Updater\UpdaterService.exe
1 C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
1 C:\Program Files\CCleaner\CCleaner64.exe
1 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
1 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
1 C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
1 C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
1 C:\Program Files\Microsoft Security Client\MsMpEng.exe
1 C:\Program Files\Microsoft Security Client\NisSrv.exe
1 C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
1 C:\Program Files\Sandboxie\SbieCtrl.exe
1 C:\Program Files\Sandboxie\SbieSvc.exe
1 C:\Program Files\Windows Media Player\wmpnetwk.exe
1 C:\Users\tommy\Desktop\HijackThis_Portable\HijackThisPortable\App\HijackThis\HijackThis.exe
1 C:\Users\tommy\Desktop\HijackThis_Portable\HijackThisPortable\HijackThisPortable.exe
1 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
1 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
2 C:\Windows\System32\CompatTelRunner.exe
1 C:\Windows\System32\SearchFilterHost.exe
1 C:\Windows\System32\SearchIndexer.exe
1 C:\Windows\System32\SearchProtocolHost.exe
1 C:\Windows\System32\audiodg.exe
1 C:\Windows\System32\conhost.exe
2 C:\Windows\System32\csrss.exe
1 C:\Windows\System32\dllhost.exe
1 C:\Windows\System32\dwm.exe
1 C:\Windows\System32\lsass.exe
1 C:\Windows\System32\lsm.exe
2 C:\Windows\System32\nvvsvc.exe
1 C:\Windows\System32\rundll32.exe
1 C:\Windows\System32\services.exe
1 C:\Windows\System32\smss.exe
1 C:\Windows\System32\spoolsv.exe
1 C:\Windows\System32\sppsvc.exe
13 C:\Windows\System32\svchost.exe
2 C:\Windows\System32\taskeng.exe
2 C:\Windows\System32\taskhost.exe
2 C:\Windows\System32\wbem\WmiPrvSE.exe
1 C:\Windows\System32\wininit.exe
1 C:\Windows\System32\winlogon.exe
1 C:\Windows\System32\wuauclt.exe
1 C:\Windows\explorer.exe
1 C:\Windows\servicing\TrustedInstaller.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://acer.msn.com
R0 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer.msn.com
R0 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://acer.msn.com
R3 - HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141453804: Default URLSearchHook is missing
O2 - HKLM\..\BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2-32 - HKLM\..\BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2-32 - HKLM\..\BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR
O4 - HKCU\..\Run: [SandboxieControl] = C:\Program Files\Sandboxie\SbieCtrl.exe
O4 - HKU\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid}
O4 - HKU\.DEFAULT\..\RunOnce: [SPReview] = C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
O4 - HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141453804\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid} (User 'unknown')
O4 - HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141453804\..\RunOnce: [SPReview] = C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'unknown')
O4 - HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid} (User 'unknown')
O4 - HKU\S-1-5-19\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid}
O4 - HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid} (User 'unknown')
O4 - HKU\S-1-5-20\..\RunOnce: [IsMyWinLockerReboot] = C:\Windows\system32\msiexec.exe /qn /x{voidguid}
O4 - HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328\..\RunOnce: [ScrSav] = C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default (User 'unknown')
O4 - HKU\S-1-5-21-3060160013-4240042673-288627293-1000\..\RunOnce: [ScrSav] = C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe /default (User 'UpdatusUser')
O4 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\..\Run: [CCleaner Smart Cleaning] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (User 'unknown')
O4 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\..\Run: [SandboxieControl] = C:\Program Files\Sandboxie\SbieCtrl.exe (User 'unknown')
O4 - MSConfig\startupreg: Acer ePower Management [command] = C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: Adobe Reader Speed Launcher [command] = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: ArcadeMovieService [command] = C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: BackupManagerTray [command] = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe -h -k (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: CCleaner Smart Cleaning [command] = C:\Program Files\CCleaner\CCleaner64.exe /MONITOR (HKCU) (2018/11/01)
O4 - MSConfig\startupreg: EgisTecPMMUpdate [command] = C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: EgisUpdate [command] = C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe -d (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: HotKeysCmds [command] = C:\Windows\system32\hkcmd.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: IAStorIcon [command] = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: IgfxTray [command] = C:\Windows\system32\igfxtray.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: IntelTBRunOnce [command] = C:\Windows\system32\wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: LManager [command] = C:\Program Files (x86)\Launch Manager\LManager.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: MDS_Menu [command] = C:\Program Files (x86)\Acer\clear.fi\MediaEspresso\MUITransfer\MUIStartMenu.exe "C:\Program Files (x86)\Acer\clear.fi\MediaEspresso" UpdateWithCreateOnce "Software\CyberLink\MediaEspresso\6.1" (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: MSC [command] = c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: NUSB3MON [command] = C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: Persistence [command] = C:\Windows\system32\igfxpers.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: RtHDVBg [command] = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE4 (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: RtHDVCpl [command] = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: SuiteTray [command] = C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (HKLM) (2018/11/01)
O4 - MSConfig\startupreg: SynTPEnh [command] = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (HKLM) (2018/11/01)
O9-32 - Button: HKLM\..\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Inserisci blog - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9-32 - Tools menu item: HKLM\..\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Pubblica su un &blog in Windows Live Writer - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [@ivt] protocol is in Unknown Zone, should be Intranet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [file] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [ftp] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [http] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [https] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141456565 - [shell] protocol is in Unknown Zone, should be My Computer Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [@ivt] protocol is in Unknown Zone, should be Intranet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [file] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [ftp] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [http] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [https] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141501626 - [shell] protocol is in Unknown Zone, should be My Computer Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [@ivt] protocol is in Unknown Zone, should be Intranet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [file] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [ftp] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [http] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [https] protocol is in Unknown Zone, should be Internet Zone(User: 'unknown')
O15 - ProtocolDefaults: HKU\S-1-5-21-3060160013-4240042673-288627293-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141503328 - [shell] protocol is in Unknown Zone, should be My Computer Zone(User: 'unknown')
O17 - DHCP DNS 1: 192.168.42.129
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - HKLM\..\Windows: [AppInit_DLLs] = C:\Windows\system32\nvinitx.dll
O20-32 - HKLM\..\Windows: [AppInit_DLLs] = C:\Windows\SysWOW64\nvinit.dll
O22 - Task: (activation) \Microsoft\Windows\Windows Activation Technologies\ValidationTask - C:\Windows\system32\Wat\WatAdminSvc.exe /run (Microsoft)
O22 - Task: (activation) \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - C:\Windows\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\CompatTelRunner.exe (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - C:\Windows\system32\compattel\DiagTrackRunner.exe /UploadEtlFilesOnly (Microsoft)
O22 - Task: (telemetry) \Microsoft\Windows\Application Experience\ProgramDataUpdater - C:\Windows\system32\compattelrunner.exe -maintenance (Microsoft)
O22 - Task: CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
O22 - Task: CCleanerSkipUAC - C:\Program Files\CCleaner\CCleaner.exe $(Arg0)
O22 - Task: DMREngine - C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
O22 - Task: GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
O22 - Task: GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
O22 - Task: \Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges (Microsoft)
O22 - Task: \Microsoft\Microsoft Antimalware\MpIdleTask - c:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask (Microsoft)
O22 - Task: \Microsoft\Windows Live\SOXE\Extractor Definitions Update Task - {3519154C-227E-47F3-9CC9-12C3F05817F1} - (no file)
O22 - Task: clear.fi - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe PreLaunch
O22 - Task: clear.fiAgent - C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
O23 - Service R2: Acer ePower Service - (ePowerSvc) - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service R2: Dritek WMI Service - (DsiWMIService) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service R2: GREGService - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service R2: Intel(R) Management and Security Application Local Management Service - (LMS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service R2: Intel(R) Management and Security Application User Notification Service - (UNS) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service R2: Intel(R) Rapid Storage Technology - (IAStorDataMgrSvc) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service R2: Malwarebytes Service - (MBAMService) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service R2: Microsoft Antimalware Service - (MsMpSvc) - c:\Program Files\Microsoft Security Client\MsMpEng.exe
O23 - Service R2: NTI IScheduleSvc - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service R2: NVIDIA Driver Helper Service - (NVSvc) - C:\Windows\system32\nvvsvc.exe
O23 - Service R2: NVIDIA Update Service Daemon - (nvUpdatusService) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service R2: Sandboxie Service - (SbieSvc) - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service R2: Updater Service - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service R2: Windows Live ID Sign-in Assistant - (wlidsvc) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
O23 - Service R3: Microsoft Network Inspection - (NisSrv) - c:\Program Files\Microsoft Security Client\NisSrv.exe
O23 - Service S2: Servizio Google Update (gupdate) - (gupdate) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /svc
O23 - Service S3: EgisTec Ticket Service - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service S3: FLEXnet Licensing Service - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service S3: Intel(R) Turbo Boost Technology Monitor 2.0 - (TurboBoost) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service S3: Mozilla Maintenance Service - (MozillaMaintenance) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service S3: Servizio Google Update (gupdatem) - (gupdatem) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /medsvc
O23 - Service S3: Windows Defender - (WinDefend) - C:\Windows\System32\svchost.exe -k secsvcs; "ServiceDll" = C:\Program Files\Windows Defender\mpsvc.dll


--
End of file - Time spent: 9 sec. - 37286 bytes, CRC32: FFFFFFFF. Sign: �䆺

Si va bene, oggi ero fuori e sono rientrato ora, domani lo controllo bene, ti dico subito che hai un mucchio di programmi in avvio automatico, tutti inutili devi lasciare solo l'antivirus, per forza il pc è lento.
Visto che hai Ccleaner puoi usare il sw per disattivare le voci in Avvio, lo apri vai in strumenti<Avvio- clicca 2 volte su ogni voce, una alla volta, e così vengono disattivati dall'avvio automatico, lasci solo l'antivirus che è Microsoft Security Client\msseces.exe, ok chiudi.
Domani ti dico se c'è altro. Ciao

Dopo aver disattivati i programmi in Avvio Automatico, come spiegato nel mio post di ieri sera, ci sono altre righe da fixare.

Chiudi tutti i programmi e disconnesso da internet,
Lancia HijackThis e clicca sul secondo pulsante Do a system scan only
inserisci il segno di spunta nel quadratino davanti alle righe sotto elencate, una volta selezionate clicca il tasto Fix checked per procedere all'eliminazione, comparirà una finestra clicca su SI per accettare e l'operazione è conclusa.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer.msn.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://acer.msn.com

R0 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\Software\Microsoft\Internet Explorer\Main: [Default_Page_URL] = http://acer.msn.com

R0 - HKU\S-1-5-21-3060160013-4240042673-288627293-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141504483\Software\Microsoft\Internet Explorer\Main: [Start Page] = http://acer.msn.com

R3 - HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11042018141453804: Default URLSearchHook is missing

Quando hai fatto tutto rifai una scansione con HJT e posta il nuovo log che rilascia, voglio vedere se è stato eliminato quanto ti ho detto.

Poi faremo un'altra pulizia, una cosa alla volta.

ciao cbbusto questo e quello che ho fatto dopo la scansione ciao