Desktop security 2010 agent

**bencri** · 27-04-2010, 21:10

ecco il risultato ...

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Versione database: 4043

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

27/04/2010 21.04.51
mbam-log-2010-04-27 (21-04-51).txt

Tipo di scansione: Scansione veloce
Elementi esaminati: 109602
Tempo trascorso: 9 minuti, 29 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 19
Valori di registro infetti: 4
Voci infette nei dati di registro: 2
Cartelle infette: 16
File infetti: 68

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
HKEY_CLASSES_ROOT\CLSID\{ef34404a-747c-81d8-843a-d938e181273d} (Adware.BHO.FL) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Ext\Stats\{35069396-3567-9d8b-86e5-b3d3b89dd644} (Adware.BrowsingEnhancer) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\flv direct player (Adware.BHO.FL) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\expertenhancer (Adware.BrowsingEnhancer) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\playmp3 (Adware.PLayMP3z) -> No action taken.
HKEY_CURRENT_USER\Software\Desktop Security 2010 (Rogue.DesktopSecurity2010) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DRM\amty (Worm.Autorun) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\ExpertEnhancer (Adware.ExpertEnhancer) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\MediaHoldings (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Mirar (Adware.Mirar) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\PlayMP3 (Adware.PLayMP3z) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\fbrowsingadvisor_is1 (Trojan.FBrowsingAdvisor) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\AppDataLow\HavingFunOnl ine (Adware.BHO.FL) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{0a4d4622-5ab1-00c0-a4a1-c19829cac608} (Adware.AdRotator) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{0a4d4622-5ab1-00c0-a4a1-c19829cac608} (Adware.AdRotator) -> No action taken.

Valori di registro infetti:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\xhyccdc (Trojan.Agent.H) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\desktop security 2010 (Rogue.DesktopSecurity2010) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Policies\Explorer\Run\csrcs (Trojan.Agent) -> No action taken.
HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run\securitycenter (Rogue.DesktopSecurity) -> No action taken.

Voci infette nei dati di registro:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (Explorer.exe csrcs.exe) Good: (Explorer.exe) -> No action taken.

Cartelle infette:
C:\Programmi\FLV Direct Player (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\ComboBox (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window (Adware.BHO.FL) -> No action taken.
C:\Programmi\ExpertEnhancer (Adware.BrowsingEnhancer) -> No action taken.
C:\Programmi\FBrowserAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\PlayMP3z (Adware.PLayMP3z) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\PlayMP3z (Adware.PLayMP3z) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010 (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\All Users\Menu Avvio\Programmi\FLV Direct Player (Adware.FLVPlayer) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010 (Rogue.DesktopSecurity2010) -> No action taken.

File infetti:
C:\Documents and Settings\HP_Proprietario\FLVDirect.exe (Adware.MediaPass) -> No action taken.
C:\Programmi\FLV Direct Player\downloading.swf (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\dskinliteu.dll (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\FLVPlayer.exe (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\player.dat (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\preload.swf (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\uninstall.exe (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin.xml (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button\button_default.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button\button_disable.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button\button_down.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button\button_hot.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Button\button_normal.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\ComboBox\combobox_button Down.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\ComboBox\combobox_button Hot.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\ComboBox\combobox_button Nor.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\ComboBox\edit_back.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu\menubg.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu\menuItem_arrow.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu\menuItem_check.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu\menuitem_select.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Menu\menuItem_seperator. bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_close_down .bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_close_hot. bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_close_nor. bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_max_down.b mp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_max_hot.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_max_nor.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_min_down.b mp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_min_hot.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_min_nor.bm p (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_restore_do wn.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_restore_ho t.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\SysButton\sys_restore_no r.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\BottomBorder.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\downarrow.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\LeftBorder.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\Logo.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\main.ico (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\RightBorder.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\FLV Direct Player\SkinDirectFLV\skin\Window\TitlePattern.bmp (Adware.BHO.FL) -> No action taken.
C:\Programmi\ExpertEnhancer\ExpertEnhancer.dat (Adware.BrowsingEnhancer) -> No action taken.
C:\Programmi\ExpertEnhancer\pcre3.dll (Adware.BrowsingEnhancer) -> No action taken.
C:\Programmi\ExpertEnhancer\uninstall.exe (Adware.BrowsingEnhancer) -> No action taken.
C:\Programmi\FBrowsingAdvisor\IXPCOMEvents.xpt (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\FBrowsingAdvisor\Logo.png (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\FBrowsingAdvisor\main.db (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\FBrowsingAdvisor\unins000.dat (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\FBrowsingAdvisor\unins000.exe (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Programmi\PlayMP3z\uninstall.exe (Adware.PLayMP3z) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010\Activate Desktop Security 2010.lnk (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010\Desktop Security 2010.lnk (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010\Help Desktop Security 2010.lnk (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010\How to Activate Desktop Security 2010.lnk (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\All Users\Menu Avvio\Programmi\FLV Direct Player\FLV Direct Player.lnk (Adware.FLVPlayer) -> No action taken.
C:\Documents and Settings\All Users\Menu Avvio\Programmi\FLV Direct Player\Uninstall FLV Direct Player.lnk (Adware.FLVPlayer) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010\mfc71.dll (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010\MFC71ENU.DLL (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010\msvcp71.dll (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010\msvcr71.dll (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Desktop Security 2010\taskmgr.dll (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Menu Avvio\Programmi\Desktop Security 2010.LNK (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\Microsoft\Internet Explorer\Quick Launch\Desktop Security 2010.LNK (Rogue.DesktopSecurity2010) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Impostazioni locali\Temp\wrfwe_di.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Impostazioni locali\Temp\test.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\HP_Proprietario\Dati applicazioni\avdrn.dat (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\config\systemprofile\Dati applicazioni\fvgqad.dat (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\301_z-x3A.dll (Adware.AdRotator) -> No action taken.

Discussione: Desktop security 2010 agent

Strumenti discussione

Ricerca discussione

Visualizza

Visualizzazione discussione

Permessi di invio