dopo ti posto il resto.. per ora fai questo..
ciao

scarica ComboFix sul desktop

apri il blocco note e copiaci dentro questo:

KillAll::
File::
C:\WINDOWS\system32\drivers\clbdriver.sys
C:\WINDOWS\system32\drivers\Ucbg21.sys
C:\WINDOWS\system32\drivers\Dlt86.sys
C:\WINDOWS\system32\clbdll.dll
C:\WINDOWS\system32\clbinit.dll
C:\WINDOWS\BM4f463c56.xml
C:\WINDOWS\pskt.ini
C:\WINDOWS\BM4f463c56.txt
C:\WINDOWS\system32\WinNt32.dll
C:\WINDOWS\system32\awtutTlL.dll
C:\WINDOWS\system32\WinNt32(13).dll
C:\WINDOWS\system32\WinNt32.dl_
C:\WINDOWS\system32\ayauqhqd.tmp
C:\WINDOWS\system32\efcAPjhF.dll
C:\WINDOWS\system32\WinNt32(12).dll
C:\WINDOWS\system32\WinNt32(11).dll
C:\WINDOWS\system32\WinNt32(10).dll
C:\WINDOWS\system32\WinNt32(9).dll
C:\WINDOWS\system32\WinNt32(8).dll
C:\WINDOWS\system32\WinNt32(7).dll
C:\WINDOWS\system32\WinNt32(6).dll
C:\WINDOWS\system32\WinNt32(5).dll
C:\WINDOWS\system32\WinNt32(4).dll
C:\WINDOWS\system32\WinNt32(3).dll
C:\WINDOWS\system32\WinNt32(2).dll
C:\WINDOWS\system32\WinNt32(22).dll
C:\WINDOWS\system32\WinNt32(21).dll
C:\WINDOWS\system32\WinNt32(20).dll
C:\WINDOWS\system32\WinNt32(19).dll
C:\WINDOWS\system32\avgrsstx(2)(2).dll
C:\WINDOWS\system32\WinNt32(18).dll
C:\WINDOWS\system32\WinNt32(17).dll
C:\WINDOWS\system32\WinNt32(16).dll
C:\WINDOWS\system32\WinNt32(15).dll
C:\WINDOWS\system32\WinNt32(14).dll
C:\WINDOWS\system32\YcfhkUtv.ini2
C:\WINDOWS\system32\qwbmrglo.dll
C:\WINDOWS\system32\hgocmmgi.dll
C:\WINDOWS\system32\bxuyiemp.dll
C:\WINDOWS\system32\igmmcogh.ini
C:\WINDOWS\system32\gxnmihvy.ini
C:\WINDOWS\system32\ntllqdut.dll
C:\WINDOWS\system32\vxnpqrjg.dll
C:\WINDOWS\system32\utxdvylr.ini
C:\WINDOWS\system32\smgndfit.dll
C:\WINDOWS\system32\WinNt32.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\tifdngms.ini
C:\WINDOWS\system32\clkcnt.txt
C:\WINDOWS\system32\pdpmhpjg.dll
C:\WINDOWS\system32\faevlwmp.dll
C:\WINDOWS\system32\albqssue.dll
C:\WINDOWS\system32\pmwlveaf.ini
C:\WINDOWS\system32\FhjPAcfe.ini2
C:\WINDOWS\system32\FhjPAcfe.ini
C:\WINDOWS\system32\bzsqlpa.sys
C:\WINDOWS\temp\AE8AB41F91F72503.tmp
C:\WINDOWS\temp\7CF28762C38CA0D4.tmp
C:\WINDOWS\temp\8AF12AB59DCE7145.tmp
C:\WINDOWS\temp\745C6E9ECB8F4863.tmp

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\ucbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\Services\u cbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\u cbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\enum\r oot\legacy_ucbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\enum\root\ legacy_ucbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\enum\root\ legacy_ucbg21]
[-HKEY_LOCAL_MACHINE\SYSTEM\currentControlSet\Servic es\bzsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\Services\b zsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\b zsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\enum\r oot\legacy_bzsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\enum\root\ legacy_bzsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset002\enum\root\ legacy_bzsqlpa]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\Services\c lbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset002\Services\c lbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\clbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\enum\r oot\legacy_clbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\enum\root\ legacy_clbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset002\enum\root\ legacy_clbdriver]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\clbdriver.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Network\clbdriver.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset002\Control\Sa feBoot\Minimal\clbdriver.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset002\Control\Sa feBoot\Network\clbdriver.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\Control\Sa feBoot\Minimal\clbdriver.sys]
[-HKEY_LOCAL_MACHINE\SYSTEM\controlset001\Control\Sa feBoot\Network\clbdriver.sys]
[-HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\awtutTlL]
[-HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WinNt32]
[-HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{67325122-fbae-4111-8d85-31e0e93e36a2}]
[-HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{73673dc5-4289-4123-904b-22597f32f1ed}]
[-HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{a0b4ffea-d466-49a8-9bb0-b7bbd2fcb449}]
[-HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\Browser Helper Objects\{d1a54a61-bf56-4fc9-99eb-97a62d33d5ed}]
[-HKCR\CLSID\{d1a54a61-bf56-4fc9-99eb-97a62d33d5ed}]
[-HKCR\CLSID\{67325122-fbae-4111-8d85-31e0e93e36a2}]
[-HKCR\CLSID\{73673dc5-4289-4123-904b-22597f32f1ed}]
[-HKCR\CLSID\{a0b4ffea-d466-49a8-9bb0-b7bbd2fcb449}]

[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]
"WintelUpdate"=-

[HKLM\Software\Microsoft\Windows\CurrentVersion\Exp lorer\ShellExecuteHooks]
"{A0B4FFEA-D466-49A8-9BB0-B7BBD2FCB449}"=-

[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
"BM4f463c56"=-
"4c750fca"=-

Driver::
clbdriver
bzsqlpa
ucbg21

DirLook::
C:\WINDOWS\system32\Avg(2)
C:\WINDOWS\system32\Avg(3)
salvalo sul desktop con il nome CFScript.txt
Chiudi il file

disconnetti il pc da internet, chiudi tutti i programmi e disattiva l'antivirus (è importante!)

Trascina il file sull'icona rossa di combofix (poi non toccare nulla, come prima)

NON toccare assolutamente il pc mentre combofix sta scansionando.
se vedi che ci mette tempo non preoccuparti, attendi...

Quando finisce, riattiva l'antivirus e posta il log combofix C:\ComboFix.txt e un nuovo systemscan