Da qualche giorno quando accendo il pc e apro chrome appare una videata con una scritta che riporta la parola devunity.org

Io chiudo la videata e inizio a navigare regolarmente



Qualcuno sa dirmi se si tratta di un virus e in tal caso se e come  è possibile eliminarlo?



non riesco ad allegare il log hijackthis per cui lo copio sotto:
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 10:39:53, on 27/01/2018 sabato
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0015)

FIREFOX: 45.0 (x86 it)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
C:\Program Files\WindowsApps\9E2F88E3.Twitter_5.8.1.0_x86__wgeqdkkx372wm\Twitter.Windows.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Users\gipan\Desktop\PROGRAMMI installati\SICUREZZA\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://search.avira.com/#/?show_is=1&source=art
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://search.avira.com/#/?show_is=1&source=art
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
O4 - HKCU\..\Run: [Advanced SystemCare 11] "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
O4 - HKCU\..\Run: [Google Update] C:\Users\gipan\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
O4 - HKCU\..\Run: [iCloudServices] "C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BootRacer] "C:\Program Files (x86)\BootRacer\Bootrace.exe" /2
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'SERVIZIO DI RETE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 11 (AdvancedSystemCareService11) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BootRacerServ - Greatis Software, LLC - C:\Program Files (x86)\BootRacer\BootRacerServ.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Servizio Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Servizio Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem9.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
O23 - Service: iFunSoft Updater (iFunSoftUpdaterSvc) - iFunSoft - C:\Program Files (x86)\iFunSoft\iFunSoft Updater\iFunSoftUpdater.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: IObit Uninstaller Service (IObitUnSvr) - IObit - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 8431 bytes



grazie

Salve
Tutti a sbafare eh?
Ti porto avanti coi lavori, così appena si collega un "fisso partecipante " ti risponde prima.
http://forum.aiutamici.com/yaf_postst96025_ELIMINARE-PAGINE-PUBBLICITARIE-E-PORCHERIE-VARIE-E-PULIRE-SISTEMA.aspx
Per i log fai il copia incolla , come sopra.
Il tuo antivirus cosa ti dice?
Certi prog in avvio non servono gli 04( te lo ripeteranno).
Le pulizie si fanno prima di spegnere il PC, non all'accensione
che ritardano il tutto e se c'è qualche schifezza è già partita con Windows
prima ancora dell'antivirus e prog di sicurezza vari attivi.
Saluti

Ho eseguito le tue istruzioni e spero che ora sia tutto risolto
Per quanto riguarda l'antivirus uso Defender, in passato utilizzavo avira, probabilmente dopo averlo disinstallato è rimasto qualcosa.
Vorrei allegare i log ma non so come fare per cui ti copio i log:

====================================================

Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data scansione: 27/01/18
Ora scansione: 16:25
File di log: 55533f6e-0376-11e8-8427-b8aeed7d59fd.json
Amministratore: Sì

-Informazioni software-
Versione: 3.3.1.2183
Versione componenti: 1.0.262
Aggiorna versione pacchetto: 1.0.3797
Licenza: Trial

-Informazioni sistema-
SO: Windows 10 (Build 16299.192)
CPU: x64
File system: NTFS
Utente: DESKTOP-R9H00RN\gipan

-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Risultati: Completata
Elementi analizzati: 362416
Minacce rilevate: 73
Minacce messe in quarantena: 0
(Nessun elemento nocivo rilevato)
Tempo impiegato: 1 ore, 42 min, 17 sec

-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Attivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare

-Dettagli scansione-
Processo: 3
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797

Modulo: 6
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797

Chiave di registro: 8
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC11_PerformanceMonitor, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FE7D0FD2-A29D-4064-B3DD-2C4ADD85416B}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{FE7D0FD2-A29D-4064-B3DD-2C4ADD85416B}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC11_SkipUac_gipan, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CF2694C2-2310-4787-BD7E-A7F4AAD31805}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{CF2694C2-2310-4787-BD7E-A7F4AAD31805}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.InstallCore, HKU\S-1-5-21-874398403-923202251-1869831456-1001\SOFTWARE\csastats, Nessuna azione intrapresa, [2], [260986],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\AdvancedSystemCareService11, Nessuna azione intrapresa, [1138], [380352],1.0.3797

Valore di registro: 3
PUP.Optional.AdvancedSystemCare, HKU\S-1-5-21-874398403-923202251-1869831456-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ADVANCED SYSTEMCARE 11, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Nessuna azione intrapresa, [207], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Nessuna azione intrapresa, [207], [-1],0.0.0

Dati di registro: 0
(Nessun elemento nocivo rilevato)

Flusso di dati: 0
(Nessun elemento nocivo rilevato)

Cartella: 4
PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\LOCAL\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\USERS\GIPAN\APPDATA\LOCAL\SPOILAGEPRECOLLEGE, Nessuna azione intrapresa, [8098], [431028],1.0.3797

File: 49
PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\dora, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\hdat1, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\hdat2, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\linodo, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\USERS\GIPAN\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\USER PINNED\TASKBAR\Advanced SystemCare 11.lnk, Nessuna azione intrapresa, [1138], [380340],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\MD.XML, Nessuna azione intrapresa, [1798], [405192],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\Triszunity.tst, Nessuna azione intrapresa, [1798], [405188],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\NOAH.DAT, Nessuna azione intrapresa, [1798], [405194],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\AGENT.DAT, Nessuna azione intrapresa, [1798], [405184],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\TASKS\ASC11_PerformanceMonitor, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\TASKS\ASC11_SkipUac_gipan, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\MAIN.DAT, Nessuna azione intrapresa, [1798], [442901],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\LOCAL\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HOWTOREMOVE\HOWTOREMOVE.HTML, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\chromium-min.jpg, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\control panel-min-min.JPG, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\down.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\ff menu.JPG, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\ff search engine-min.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\hp-min ff.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\hp-min ie.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\search engine.gif, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\setup pages.gif, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\sp-min.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\start-min.jpg, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\up.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\bapi.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\cori, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\info.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\redo, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\siri, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\uninst.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.MyStartTB.ShrtCln, C:\USERS\GIPAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\8RY7GUDR.DEFAULT\PREFS.JS, Nessuna azione intrapresa, [10373], [301376],1.0.3797
PUP.Optional.Linkury.ACMB1, C:\USERS\GIPAN\APPDATA\ROAMING\INSTALLATIONCONFIGURATION.XML, Nessuna azione intrapresa, [207], [302554],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\8RY7GUDR.DEFAULT\SEARCHPLUGINS\YAHOO! POWERED.XML, Nessuna azione intrapresa, [56], [302726],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\CONFIG.XML, Nessuna azione intrapresa, [1798], [405168],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\USERS\GIPAN\APPDATA\LOCAL\SPOILAGEPRECOLLEGE\RKEY.DAT, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Aliexpress.smenu.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Aliexpress.tbar.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Booking.smenu.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Booking.tbar.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\SodasAnisic.dat, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASC.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAMDATA\IOBIT\IOBIT UNINSTALLER\DOWNLOADER\UN7\ADVANCED SYSTEMCARE_IU.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\REGISTRYDEFRAGBOOTTIME.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
Adware.FusionCore, C:\USERS\GIPAN\DESKTOP\PROGRAMMI INSTALLATI\EMULE0.60V2.EXE, Nessuna azione intrapresa, [164], [320181],1.0.3797

Settore fisico: 0
(Nessun elemento nocivo rilevato)


(end)
=========================================================

Malwarebytes
www.malwarebytes.com

-Dettagli log-
Data scansione: 27/01/18
Ora scansione: 16:25
File di log: 55533f6e-0376-11e8-8427-b8aeed7d59fd.json
Amministratore: Sì

-Informazioni software-
Versione: 3.3.1.2183
Versione componenti: 1.0.262
Aggiorna versione pacchetto: 1.0.3797
Licenza: Trial

-Informazioni sistema-
SO: Windows 10 (Build 16299.192)
CPU: x64
File system: NTFS
Utente: DESKTOP-R9H00RN\gipan

-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Risultati: Completata
Elementi analizzati: 362416
Minacce rilevate: 73
Minacce messe in quarantena: 0
(Nessun elemento nocivo rilevato)
Tempo impiegato: 1 ore, 42 min, 17 sec

-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Attivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare

-Dettagli scansione-
Processo: 3
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797

Modulo: 6
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797

Chiave di registro: 8
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC11_PerformanceMonitor, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FE7D0FD2-A29D-4064-B3DD-2C4ADD85416B}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{FE7D0FD2-A29D-4064-B3DD-2C4ADD85416B}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ASC11_SkipUac_gipan, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{CF2694C2-2310-4787-BD7E-A7F4AAD31805}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{CF2694C2-2310-4787-BD7E-A7F4AAD31805}, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.InstallCore, HKU\S-1-5-21-874398403-923202251-1869831456-1001\SOFTWARE\csastats, Nessuna azione intrapresa, [2], [260986],1.0.3797
PUP.Optional.AdvancedSystemCare, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\AdvancedSystemCareService11, Nessuna azione intrapresa, [1138], [380352],1.0.3797

Valore di registro: 3
PUP.Optional.AdvancedSystemCare, HKU\S-1-5-21-874398403-923202251-1869831456-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|ADVANCED SYSTEMCARE 11, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Nessuna azione intrapresa, [207], [-1],0.0.0
PUP.Optional.Linkury.ACMB1, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|APPINIT_DLLS, Nessuna azione intrapresa, [207], [-1],0.0.0

Dati di registro: 0
(Nessun elemento nocivo rilevato)

Flusso di dati: 0
(Nessun elemento nocivo rilevato)

Cartella: 4
PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\LOCAL\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\USERS\GIPAN\APPDATA\LOCAL\SPOILAGEPRECOLLEGE, Nessuna azione intrapresa, [8098], [431028],1.0.3797

File: 49
PUP.Optional.WinYahoo.Generic, C:\PROGRAMDATA\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\dora, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\hdat1, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\hdat2, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.WinYahoo.Generic, C:\ProgramData\{3E81FBE2-B4C3-7124-3205-EF66A84764A8}\linodo, Nessuna azione intrapresa, [1122], [343986],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\USERS\GIPAN\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\USER PINNED\TASKBAR\Advanced SystemCare 11.lnk, Nessuna azione intrapresa, [1138], [380340],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\MD.XML, Nessuna azione intrapresa, [1798], [405192],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\Triszunity.tst, Nessuna azione intrapresa, [1798], [405188],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\NOAH.DAT, Nessuna azione intrapresa, [1798], [405194],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\AGENT.DAT, Nessuna azione intrapresa, [1798], [405184],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\TASKS\ASC11_PerformanceMonitor, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\TASKS\ASC11_SkipUac_gipan, Nessuna azione intrapresa, [1138], [380341],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\MONITOR.EXE, Nessuna azione intrapresa, [1138], [398206],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\MAIN.DAT, Nessuna azione intrapresa, [1798], [442901],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCTRAY.EXE, Nessuna azione intrapresa, [1138], [380353],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASCSERVICE.EXE, Nessuna azione intrapresa, [1138], [380352],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\LOCAL\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HOWTOREMOVE\HOWTOREMOVE.HTML, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\chromium-min.jpg, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\control panel-min-min.JPG, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\down.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\ff menu.JPG, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\ff search engine-min.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\hp-min ff.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\hp-min ie.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\search engine.gif, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\setup pages.gif, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\sp-min.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\start-min.jpg, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\HowToRemove\up.png, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\bapi.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\cori, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\info.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\redo, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\siri, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.WinYahoo, C:\Users\gipan\AppData\Local\{57C3619F-736B-0D27-1EF3-28CF3A9BD457}\uninst.dat, Nessuna azione intrapresa, [56], [302717],1.0.3797
PUP.Optional.MyStartTB.ShrtCln, C:\USERS\GIPAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\8RY7GUDR.DEFAULT\PREFS.JS, Nessuna azione intrapresa, [10373], [301376],1.0.3797
PUP.Optional.Linkury.ACMB1, C:\USERS\GIPAN\APPDATA\ROAMING\INSTALLATIONCONFIGURATION.XML, Nessuna azione intrapresa, [207], [302554],1.0.3797
PUP.Optional.WinYahoo, C:\USERS\GIPAN\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\8RY7GUDR.DEFAULT\SEARCHPLUGINS\YAHOO! POWERED.XML, Nessuna azione intrapresa, [56], [302726],1.0.3797
Adware.Linkury.Generic, C:\USERS\GIPAN\APPDATA\ROAMING\CONFIG.XML, Nessuna azione intrapresa, [1798], [405168],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\USERS\GIPAN\APPDATA\LOCAL\SPOILAGEPRECOLLEGE\RKEY.DAT, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Aliexpress.smenu.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Aliexpress.tbar.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Booking.smenu.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\Booking.tbar.URL, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.PriceFountain.TskLnk, C:\Users\gipan\AppData\Local\SpoilagePrecollege\SodasAnisic.dat, Nessuna azione intrapresa, [8098], [431028],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\OFCOMMON.DLL, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAM FILES (X86)\IOBIT\ADVANCED SYSTEMCARE\ASC.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\PROGRAMDATA\IOBIT\IOBIT UNINSTALLER\DOWNLOADER\UN7\ADVANCED SYSTEMCARE_IU.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
PUP.Optional.AdvancedSystemCare, C:\WINDOWS\SYSTEM32\REGISTRYDEFRAGBOOTTIME.EXE, Nessuna azione intrapresa, [1138], [396386],1.0.3797
Adware.FusionCore, C:\USERS\GIPAN\DESKTOP\PROGRAMMI INSTALLATI\EMULE0.60V2.EXE, Nessuna azione intrapresa, [164], [320181],1.0.3797

Settore fisico: 0
(Nessun elemento nocivo rilevato)


(end)
==================================================================

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.8 (09.20.2016)
Operating System: Windows 10 Home x64
Ran by gipan (Administrator) on 27/01/2018 sab at 18:58:47.82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 9

Successfully deleted: C:\ProgramData\iobit\driver booster (Folder)
Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\Users\gipan\AppData\Roaming\iobit\driver booster (Folder)
Successfully deleted: C:\Users\gipan\AppData\Roaming\Mozilla\Firefox\Profiles\8ry7gudr.default\user.js (File)
Successfully deleted: C:\Users\gipan\AppData\Roaming\productdata (Folder)
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (gipan) (Task)
Successfully deleted: C:\WINDOWS\Tasks\Uninstaller_SkipUac_gipan.job (Task)
Successfully deleted: C:\Program Files (x86)\iobit\driver booster (Folder)
Successfully deleted: C:\WINDOWS\prefetch\FREEMAKEVC.EXE-BF7FE79F.pf (File)

Deleted the following from C:\Users\gipan\AppData\Roaming\Mozilla\Firefox\Profiles\8ry7gudr.default\prefs.js
user_pref(extensions.xpiState, {\app-profile\:{\abs@avira.com\:{\d\:\C:\\\\Users\\\\gipan\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\8ry7gudr.default



Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/01/2018 sab at 19:06:51.57
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

grazie dei consigli

Scusa ma ho già messo in quarantena gli elementi nocivi che ha trovato malwarebytes
Non è già a posto?

Dal log che hai postato è scritto: Nessuna azione intrapresa, se lo hai fatto dopo va bene.