Ecco fatto. E ora?
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.orgVersione database: 4092
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
12/05/2010 14:31:40
mbam-log-2010-05-12 (14-31-40).txt
Tipo di scansione: Scansione completa (C:\|)
Elementi esaminati: 192129
Tempo trascorso: 30 minuti, 39 secondi
Processi infetti in memoria: 0
Moduli di memoria infetti: 2
Chiavi di registro infette: 4
Valori di registro infetti: 0
Voci infette nei dati di registro: 2
Cartelle infette: 2
File infetti: 63
Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)
Moduli di memoria infetti:
C:\Windows\System32\dfdts32.dll (Trojan.Tracur) -> Delete on reboot.
C:\ProgramData\correngine32.dll (Trojan.Tracur) -> Delete on reboot.
Chiavi di registro infette:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{17c74af3-6bfb-49bc-8a33-5716cdbcb2cf} (Trojan.BHO.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{17c74af3-6bfb-49bc-8a33-5716cdbcb2cf} (Trojan.BHO.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{17c74af3-6bfb-49bc-8a33-5716cdbcb2cf} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.Tracur) -> Quarantined and deleted successfully.
Valori di registro infetti:
(Non sono stati rilevati elementi nocivi)
Voci infette nei dati di registro:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\dfdts32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\dfdts32.dll -> Quarantined and deleted successfully.
Cartelle infette:
C:\ProgramData\909430090 (Rogue.WindowsSmartSecurity) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Roaming\SystemProc (Trojan.Agent) -> Quarantined and deleted successfully.
File infetti:
C:\ProgramData\correngine32.dll (Trojan.BHO.H) -> Quarantined and deleted successfully.
C:\Windows\System32\dfdts32.dll (Trojan.Tracur) -> Delete on reboot.
C:\Users\ELE.AP\AppData\Local\Temp\AD1B.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\ELE.AP\AppData\Local\Temp\B928.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\ELE.AP\AppData\Local\Temp\CD1A.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\ELE.AP\AppData\Local\Temp\E8E0.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\ELE.AP\AppData\Roaming\8D.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\1.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\1C28.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\1F6C.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\2A32.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\4161.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\41F9.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\428C.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\45D0.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\4605.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\46F5.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\4B2.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\52A2.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\52C1.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\5322.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\54A3.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\6712.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\672B.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\6C50.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\76C6.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\76F7.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\8556.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\B440.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\D3A7.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\D40C.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\D4CC.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\DAF4.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\DBFD.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\E24E.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\E5A4.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\EC36.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\FEB3.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Local\Temp\98B6.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Users\EleAp\AppData\Roaming\SystemProc\lsass.exe (Trojan.Tracur) -> Delete on reboot.
C:\$RECYCLE.BIN\S-1-5-21-3553604259-2151522640-836713269-1001\$RFOGBRH.tmp (Worm.Prolaco.M) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-3553604259-2151522640-836713269-1001\$RFTDCWX.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-3553604259-2151522640-836713269-1001\$RYRX967.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\$RECYCLE.BIN\S-1-5-21-3553604259-2151522640-836713269-1001\$RZ5NG0O.tmp (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\cofiredm32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\colorui32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\cryptbase32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\cryptui32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\dispex32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\dmloader32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\dmscript32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\dot3api32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\ctl3dv232.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\d3d10level932.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\d3dim70032.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\defragproxy32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\DeviceCenter32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\DevicePairingFolder32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\DeviceUxRes32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\dbgeng32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\System32\dfshim32.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\Temp\TMP0000032FBB441585C3D953BA (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\ProgramData\909430090\new.i0 (Rogue.WindowsSmartSecurity) -> Quarantined and deleted successfully.