Allora ho fatto la scansione di nuovo con Malwarebytes e mentre ieri erano 25 i file infetti, oggi sono 42, sempre della famiglia Vundo, cmq ho rimosso tutto come mi avevi detto e questo è il log dopo la rimozione:

Malwarebytes' Anti-Malware 1.33
Versione del database: 1665
Windows 5.1.2600 Service Pack 3

18/01/2009 12.51.16
mbam-log-2009-01-18 (12-51-16).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi scansionati: 115765
Tempo trascorso: 44 minute(s), 37 second(s)

Processi delle memoria infetti: 0
Moduli della memoria infetti: 7
Chiavi di registro infette: 15
Valori di registro infetti: 2
Elementi dato del registro infetti: 2
Cartelle infette: 0
File infetti: 16

Processi delle memoria infetti:
(Nessun elemento malevolo rilevato)

Moduli della memoria infetti:
C:\WINDOWS\system32\cthcenbk.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ntrgvvab.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\tuvSjGYP.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\tcghbq.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\fccdbcDv.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\lkidwjlq.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\yeqiqs.dll (Trojan.Vundo.H) -> Delete on reboot.

Chiavi di registro infette:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{24040704-def4-409f-ab53-8fa5980ed95f} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{24040704-def4-409f-ab53-8fa5980ed95f} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\fccdbcdv (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{e8321333-d12c-4e73-b67e-ccd2e8dd885f} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e8321333-d12c-4e73-b67e-ccd2e8dd885f} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Ext\Stats\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Valori di registro infetti:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run\d4db5751 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks\{6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} (Trojan.Vundo) -> Delete on reboot.

Elementi dato del registro infetti:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\tuvsjgyp -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\LSA\Authentication Packages (Trojan.Vundo) -> Data: c:\windows\system32\tuvsjgyp -> Delete on reboot.

Cartelle infette:
(Nessun elemento malevolo rilevato)

File infetti:
C:\WINDOWS\system32\tuvSjGYP.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\PYGjSvut.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\PYGjSvut.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fccdbcDv.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\yeqiqs.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\cthcenbk.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\kbnechtc.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ntrgvvab.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bavvgrtn.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tcghbq.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\lkidwjlq.dll (Trojan.Vundo.H) -> Delete on reboot.

Inoltre ho fatto la scansione con SystemScan e ho caricato il report sul sito che mi hai dato:

http://freefilehosting.net/download/44593 è il link del report

yoshy87