Тормозит компьютер

Printable View

04.08.2010, 09:02
IvanR

Тормозит компьютер

Стал сильно тормозить компьютер. При попытке открыть диспечер задач, пишет, что отключено администратором.
04.08.2010, 09:34
polword

1. Профиксите в HijackThis [URL="http://virusinfo.info/showthread.php?t=4491"]как "профиксить в HiJackThis"[/URL]
[CODE]
O1 - Hosts: 85.12.46.140 odnoklassniki.ru
O1 - Hosts: 85.12.46.140 www.odnoklassniki.ru
O1 - Hosts: 85.12.46.140 vkontakte.ru
O1 - Hosts: 85.12.46.140 www.vkontakte.ru
O1 - Hosts: 85.12.46.140 vk.com
O1 - Hosts: 85.12.46.140 www.vk.com
O4 - HKLM\..\Run: [userini] C:\WINDOWS\explorer.exe:userini.exe
O4 - HKCU\..\Run: [userini] C:\WINDOWS\explorer.exe:userini.exe
O4 - HKLM\..\Policies\Explorer\Run: [userini] C:\WINDOWS\explorer.exe:userini.exe
O4 - HKCU\..\Policies\Explorer\Run: [userini] C:\WINDOWS\explorer.exe:userini.exe
[/CODE]
2.[URL="http://virusinfo.info/showthread.php?t=7239"]Выполните скрипт в AVZ[/URL]
[CODE]
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
RegKeyStrParamWrite('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon','UserInit', GetEnvironmentVariable ('WinDir')+'\System32\userinit.exe,');
QuarantineFile('C:\WINDOWS\system32\pjmsDnD.exe','');
QuarantineFile('C:\WINDOWS\Temp\espE197.tmp','');
QuarantineFile('\\?\globalroot\systemroot\system32\YA2LaAF.exe','');
QuarantineFile('\\?\globalroot\systemroot\system32\7gTzlTa.exe','');
QuarantineFile('C:\WINDOWS\system32\cnwgli.exe','');
QuarantineFile('C:\WINDOWS\system32\ca11d6ef.exe','');
DeleteFile('C:\WINDOWS\system32\ca11d6ef.exe');
DeleteFile('C:\WINDOWS\system32\cnwgli.exe');
DeleteFile('\\?\globalroot\systemroot\system32\7gTzlTa.exe');
DeleteFile('\\?\globalroot\systemroot\system32\YA2LaAF.exe');
ClearHostsFile;
DeleteFile('C:\WINDOWS\Temp\espE197.tmp');
DeleteFile('C:\WINDOWS\system32\pjmsDnD.exe');
QuarantineFile('C:\WINDOWS\explorer.exe:userini.exe','');
DeleteFile('C:\WINDOWS\explorer.exe:userini.exe');
BC_ImportAll;
ExecuteSysClean;
ExecuteRepair(17);
ExecuteRepair(11);
ExecuteWizard('TSW', 2, 2, true);
ExecuteWizard('SCU', 2, 2, true);
BC_Activate;
RebootWindows(true);
end.[/CODE]

После перезагрузки:
- выполните такой скрипт
[CODE]begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.[/CODE]
- Файл [B][COLOR="Red"]quarantine.zip[/COLOR][/B] из папки AVZ загрузите по ссылке [B][COLOR="Red"]Прислать запрошенный карантин[/COLOR][/B] вверху темы
- Сделайте повторные логи по [URL="http://virusinfo.info/pravila_old.html"]правилам[/URL] п.2 и 3 раздела Диагностика.(virusinfo_syscheck.zip; hijackthis.log)
- Скачайте RSIT [URL="http://images.malwareremoval.com/random/RSIT.exe"]тут[/URL]. Запустите, выберите проверку файлов за последние три месяца и нажмите продолжить. Должны открыться два отчета log.txt и info.txt. Прикрепите их к следующему сообщению. Если вы их закрыли, то логи по умолчанию сохраняются в одноименной папке (RSIT) в корне системного диска.
04.08.2010, 11:17
IvanR

Карантин загрузил. Вот логи.
04.08.2010, 11:29
polword

- [URL="http://virusinfo.info/showthread.php?t=7239"]Выполните скрипт в AVZ[/URL]
[CODE]
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
DeleteFileMask(GetAVZDirectory + 'Quarantine', '*.*', true);
DeleteFile('H:\autorun.inf');
QuarantineFile('C:\Program Files\Common Files\keylog.txt','');
QuarantineFile('C:\WINDOWS\system32\dgjevyk.exe','');
QuarantineFile('C:\WINDOWS\system32\qssffwi.exe','');
QuarantineFile('C:\WINDOWS\system32\sseaxri.exe','');
QuarantineFile('C:\WINDOWS\system32\sowwbj.exe','');
QuarantineFile('C:\WINDOWS\system32\qmzvbbw.exe','');
QuarantineFile('C:\WINDOWS\system32\c7OxDPE.exe','');
QuarantineFile('C:\WINDOWS\system32\NFGaQ7t.exe','');
QuarantineFile('C:\WINDOWS\system32\fksufen.exe','');
QuarantineFile('C:\WINDOWS\system32\pzdmvc.exe','');
QuarantineFile('C:\WINDOWS\system32\LAWA9mM.exe','');
QuarantineFile('C:\WINDOWS\system32\IPOQVdm.exe','');
QuarantineFile('C:\WINDOWS\system32\9kqaLFt.exe','');
QuarantineFile('C:\WINDOWS\system32\LYf0ESJ.exe','');
QuarantineFile('C:\WINDOWS\system32\ylyirl.exe','');
QuarantineFile('C:\WINDOWS\system32\WJHoGlv.exe','');
QuarantineFile('C:\WINDOWS\system32\74gbl0d.exe','');
QuarantineFile('C:\WINDOWS\system32\pOmoS7m.exe','');
QuarantineFile('C:\WINDOWS\system32\MEY6S6U.exe','');
QuarantineFile('C:\WINDOWS\system32\qHjq4XM.exe','');
QuarantineFile('C:\WINDOWS\system32\R9B1b3J.exe','');
QuarantineFile('C:\WINDOWS\system32\1FnAObm.exe','');
QuarantineFile('C:\WINDOWS\system32\PTxciH0.exe','');
QuarantineFile('C:\WINDOWS\system32\CBNs0hR.exe','');
QuarantineFile('C:\WINDOWS\system32\xxIkjdu.exe','');
QuarantineFile('C:\WINDOWS\system32\E3fnAPk.exe','');
QuarantineFile('C:\WINDOWS\system32\KWTagkf.exe','');
QuarantineFile('C:\WINDOWS\system32\iBmdpdp.exe','');
QuarantineFile('C:\WINDOWS\system32\h53yCRf.exe','');
QuarantineFile('C:\WINDOWS\system32\PdXq2iC.exe','');
QuarantineFile('C:\WINDOWS\system32\khxyriR.exe','');
QuarantineFile('C:\WINDOWS\system32\W5EY4e7.exe','');
QuarantineFile('C:\WINDOWS\system32\LnqpSMP.exe','');
QuarantineFile('C:\WINDOWS\system32\nsbpJNF.exe','');
QuarantineFile('C:\WINDOWS\system32\hj5RB3M.exe','');
QuarantineFile('C:\WINDOWS\system32\kusXnog.exe','');
QuarantineFile('C:\WINDOWS\system32\1ZXWNJd.exe','');
QuarantineFile('C:\WINDOWS\system32\orHy8lz.exe','');
QuarantineFile('C:\WINDOWS\system32\aPJNtKh.exe','');
QuarantineFile('C:\WINDOWS\system32\q5Twcl9.exe','');
QuarantineFile('C:\WINDOWS\system32\MGUAAEm.exe','');
QuarantineFile('C:\WINDOWS\system32\SW2Up3j.exe','');
QuarantineFile('C:\WINDOWS\system32\qvrkorg.exe','');
QuarantineFile('C:\WINDOWS\system32\YmDzx4l.exe','');
QuarantineFile('C:\WINDOWS\system32\U9cKHzw.exe','');
QuarantineFile('C:\WINDOWS\system32\lHFkekk.exe','');
QuarantineFile('C:\WINDOWS\system32\HDf7yil.exe','');
QuarantineFile('C:\WINDOWS\system32\NUc9Pov.exe','');
QuarantineFile('C:\WINDOWS\system32\skrudLh.exe','');
QuarantineFile('C:\WINDOWS\system32\Wda4ZmQ.exe','');
QuarantineFile('C:\WINDOWS\system32\Ro3Y02m.exe','');
QuarantineFile('C:\WINDOWS\system32\dkmkrgd.exe','');
QuarantineFile('C:\WINDOWS\system32\xuutEjh.exe','');
QuarantineFile('C:\WINDOWS\system32\OtQ85Q1.exe','');
QuarantineFile('C:\WINDOWS\system32\4TFMBZk.exe','');
QuarantineFile('C:\WINDOWS\system32\eLrg9Ao.exe','');
QuarantineFile('C:\WINDOWS\system32\ejXzMoR.exe','');
QuarantineFile('C:\WINDOWS\system32\HS5bwHk.exe','');
QuarantineFile('C:\WINDOWS\system32\bEjULkS.exe','');
QuarantineFile('C:\WINDOWS\system32\ADLJY49.exe','');
QuarantineFile('C:\WINDOWS\system32\muzFwO2.exe','');
QuarantineFile('C:\WINDOWS\system32\KjmXK8f.exe','');
QuarantineFile('C:\WINDOWS\system32\JC7gti7.exe','');
QuarantineFile('C:\WINDOWS\system32\cd9dRRO.exe','');
QuarantineFile('C:\WINDOWS\system32\W8OT3Mi.exe','');
QuarantineFile('C:\WINDOWS\system32\m0ALnRs.exe','');
QuarantineFile('C:\WINDOWS\system32\ydjEpky.exe','');
QuarantineFile('C:\WINDOWS\system32\bM4rvrX.exe','');
QuarantineFile('C:\WINDOWS\system32\bhgNKgb.exe','');
QuarantineFile('C:\WINDOWS\system32\hpzDdxS.exe','');
QuarantineFile('C:\WINDOWS\system32\AHkZaLN.exe','');
QuarantineFile('C:\WINDOWS\system32\qQKq74r.exe','');
QuarantineFile('C:\WINDOWS\system32\5mnBNYA.exe','');
QuarantineFile('C:\WINDOWS\system32\xSi7wdQ.exe','');
QuarantineFile('C:\WINDOWS\system32\btSLuCk.exe','');
QuarantineFile('C:\WINDOWS\system32\QWo4uTZ.exe','');
QuarantineFile('C:\WINDOWS\system32\IOQRZFb.exe','');
QuarantineFile('C:\WINDOWS\system32\zUDWCUb.exe','');
QuarantineFile('C:\WINDOWS\system32\JjVzG11.exe','');
QuarantineFile('C:\WINDOWS\system32\kkGMA4c.exe','');
QuarantineFile('C:\WINDOWS\system32\tajJ1gf.exe','');
QuarantineFile('C:\WINDOWS\system32\37qNGIP.exe','');
QuarantineFile('C:\WINDOWS\system32\KGLFGU7.exe','');
QuarantineFile('C:\WINDOWS\system32\Uu5btGc.exe','');
QuarantineFile('C:\WINDOWS\system32\JNC6QVP.exe','');
QuarantineFile('C:\WINDOWS\system32\kFXmfhR.exe','');
QuarantineFile('C:\WINDOWS\system32\SGc8lCY.exe','');
QuarantineFile('C:\WINDOWS\system32\g9ryAC5.exe','');
QuarantineFile('C:\WINDOWS\system32\xuMA1Pi.exe','');
QuarantineFile('C:\WINDOWS\system32\x6CRlmV.exe','');
QuarantineFile('C:\WINDOWS\system32\lxRdpjq.exe','');
QuarantineFile('C:\WINDOWS\system32\ucypQBb.exe','');
QuarantineFile('C:\WINDOWS\system32\uO2Nw3H.exe','');
QuarantineFile('C:\WINDOWS\system32\5w7apHh.exe','');
QuarantineFile('C:\WINDOWS\system32\1UhAD4n.exe','');
QuarantineFile('C:\WINDOWS\system32\o2hncAk.exe','');
QuarantineFile('C:\WINDOWS\system32\DXSoRL6.exe','');
QuarantineFile('C:\WINDOWS\system32\XOci0Cj.exe','');
QuarantineFile('C:\WINDOWS\system32\lPEppL9.exe','');
QuarantineFile('C:\WINDOWS\system32\TnHwowU.exe','');
QuarantineFile('C:\WINDOWS\system32\Dt4RjQK.exe','');
QuarantineFile('C:\WINDOWS\system32\M3dp7rQ.exe','');
QuarantineFile('C:\WINDOWS\system32\7ZNTW5x.exe','');
QuarantineFile('C:\WINDOWS\system32\s3MgCJb.exe','');
QuarantineFile('C:\WINDOWS\system32\OxuuvOE.exe','');
QuarantineFile('C:\WINDOWS\system32\lyvROk1.exe','');
QuarantineFile('C:\WINDOWS\system32\YEBpB3I.exe','');
DeleteFile('C:\WINDOWS\system32\dgjevyk.exe');
DeleteFile('C:\WINDOWS\system32\qssffwi.exe');
DeleteFile('C:\WINDOWS\system32\sseaxri.exe');
DeleteFile('C:\WINDOWS\system32\sowwbj.exe');
DeleteFile('C:\WINDOWS\system32\qmzvbbw.exe');
DeleteFile('C:\WINDOWS\system32\c7OxDPE.exe');
DeleteFile('C:\WINDOWS\system32\NFGaQ7t.exe');
DeleteFile('C:\WINDOWS\system32\fksufen.exe');
DeleteFile('C:\WINDOWS\system32\pzdmvc.exe');
DeleteFile('C:\WINDOWS\system32\LAWA9mM.exe');
DeleteFile('C:\WINDOWS\system32\IPOQVdm.exe');
DeleteFile('C:\WINDOWS\system32\9kqaLFt.exe');
DeleteFile('C:\WINDOWS\system32\LYf0ESJ.exe');
DeleteFile('C:\WINDOWS\system32\ylyirl.exe');
DeleteFile('C:\WINDOWS\system32\WJHoGlv.exe');
DeleteFile('C:\WINDOWS\system32\74gbl0d.exe');
DeleteFile('C:\WINDOWS\system32\pOmoS7m.exe');
DeleteFile('C:\WINDOWS\system32\MEY6S6U.exe');
DeleteFile('C:\WINDOWS\system32\qHjq4XM.exe');
DeleteFile('C:\WINDOWS\system32\R9B1b3J.exe');
DeleteFile('C:\WINDOWS\system32\1FnAObm.exe');
DeleteFile('C:\WINDOWS\system32\PTxciH0.exe');
DeleteFile('C:\WINDOWS\system32\CBNs0hR.exe');
DeleteFile('C:\WINDOWS\system32\xxIkjdu.exe');
DeleteFile('C:\WINDOWS\system32\E3fnAPk.exe');
DeleteFile('C:\WINDOWS\system32\KWTagkf.exe');
DeleteFile('C:\WINDOWS\system32\iBmdpdp.exe');
DeleteFile('C:\WINDOWS\system32\h53yCRf.exe');
DeleteFile('C:\WINDOWS\system32\PdXq2iC.exe');
DeleteFile('C:\WINDOWS\system32\khxyriR.exe');
DeleteFile('C:\WINDOWS\system32\W5EY4e7.exe');
DeleteFile('C:\WINDOWS\system32\LnqpSMP.exe');
DeleteFile('C:\WINDOWS\system32\nsbpJNF.exe');
DeleteFile('C:\WINDOWS\system32\hj5RB3M.exe');
DeleteFile('C:\WINDOWS\system32\kusXnog.exe');
DeleteFile('C:\WINDOWS\system32\1ZXWNJd.exe');
DeleteFile('C:\WINDOWS\system32\orHy8lz.exe');
DeleteFile('C:\WINDOWS\system32\aPJNtKh.exe');
DeleteFile('C:\WINDOWS\system32\q5Twcl9.exe');
DeleteFile('C:\WINDOWS\system32\MGUAAEm.exe');
DeleteFile('C:\WINDOWS\system32\SW2Up3j.exe');
DeleteFile('C:\WINDOWS\system32\qvrkorg.exe');
DeleteFile('C:\WINDOWS\system32\YmDzx4l.exe');
DeleteFile('C:\WINDOWS\system32\U9cKHzw.exe');
DeleteFile('C:\WINDOWS\system32\lHFkekk.exe');
DeleteFile('C:\WINDOWS\system32\HDf7yil.exe');
DeleteFile('C:\WINDOWS\system32\NUc9Pov.exe');
DeleteFile('C:\WINDOWS\system32\skrudLh.exe');
DeleteFile('C:\WINDOWS\system32\Wda4ZmQ.exe');
DeleteFile('C:\WINDOWS\system32\Ro3Y02m.exe');
DeleteFile('C:\WINDOWS\system32\dkmkrgd.exe');
DeleteFile('C:\WINDOWS\system32\xuutEjh.exe');
DeleteFile('C:\WINDOWS\system32\OtQ85Q1.exe');
DeleteFile('C:\WINDOWS\system32\4TFMBZk.exe');
DeleteFile('C:\WINDOWS\system32\eLrg9Ao.exe');
DeleteFile('C:\WINDOWS\system32\ejXzMoR.exe');
DeleteFile('C:\WINDOWS\system32\HS5bwHk.exe');
DeleteFile('C:\WINDOWS\system32\bEjULkS.exe');
DeleteFile('C:\WINDOWS\system32\ADLJY49.exe');
DeleteFile('C:\WINDOWS\system32\muzFwO2.exe');
DeleteFile('C:\WINDOWS\system32\KjmXK8f.exe');
DeleteFile('C:\WINDOWS\system32\JC7gti7.exe');
DeleteFile('C:\WINDOWS\system32\cd9dRRO.exe');
DeleteFile('C:\WINDOWS\system32\W8OT3Mi.exe');
DeleteFile('C:\WINDOWS\system32\m0ALnRs.exe');
DeleteFile('C:\WINDOWS\system32\ydjEpky.exe');
DeleteFile('C:\WINDOWS\system32\bM4rvrX.exe');
DeleteFile('C:\WINDOWS\system32\bhgNKgb.exe');
DeleteFile('C:\WINDOWS\system32\hpzDdxS.exe');
DeleteFile('C:\WINDOWS\system32\AHkZaLN.exe');
DeleteFile('C:\WINDOWS\system32\qQKq74r.exe');
DeleteFile('C:\WINDOWS\system32\5mnBNYA.exe');
DeleteFile('C:\WINDOWS\system32\xSi7wdQ.exe');
DeleteFile('C:\WINDOWS\system32\btSLuCk.exe');
DeleteFile('C:\WINDOWS\system32\QWo4uTZ.exe');
DeleteFile('C:\WINDOWS\system32\IOQRZFb.exe');
DeleteFile('C:\WINDOWS\system32\zUDWCUb.exe');
DeleteFile('C:\WINDOWS\system32\JjVzG11.exe');
DeleteFile('C:\WINDOWS\system32\kkGMA4c.exe');
DeleteFile('C:\WINDOWS\system32\tajJ1gf.exe');
DeleteFile('C:\WINDOWS\system32\37qNGIP.exe');
DeleteFile('C:\WINDOWS\system32\KGLFGU7.exe');
DeleteFile('C:\WINDOWS\system32\Uu5btGc.exe');
DeleteFile('C:\WINDOWS\system32\JNC6QVP.exe');
DeleteFile('C:\WINDOWS\system32\kFXmfhR.exe');
DeleteFile('C:\WINDOWS\system32\SGc8lCY.exe');
DeleteFile('C:\WINDOWS\system32\g9ryAC5.exe');
DeleteFile('C:\WINDOWS\system32\xuMA1Pi.exe');
DeleteFile('C:\WINDOWS\system32\x6CRlmV.exe');
DeleteFile('C:\WINDOWS\system32\lxRdpjq.exe');
DeleteFile('C:\WINDOWS\system32\ucypQBb.exe');
DeleteFile('C:\WINDOWS\system32\uO2Nw3H.exe');
DeleteFile('C:\WINDOWS\system32\5w7apHh.exe');
DeleteFile('C:\WINDOWS\system32\1UhAD4n.exe');
DeleteFile('C:\WINDOWS\system32\o2hncAk.exe');
DeleteFile('C:\WINDOWS\system32\DXSoRL6.exe');
DeleteFile('C:\WINDOWS\system32\XOci0Cj.exe');
DeleteFile('C:\WINDOWS\system32\lPEppL9.exe');
DeleteFile('C:\WINDOWS\system32\TnHwowU.exe');
DeleteFile('C:\WINDOWS\system32\Dt4RjQK.exe');
DeleteFile('C:\WINDOWS\system32\M3dp7rQ.exe');
DeleteFile('C:\WINDOWS\system32\7ZNTW5x.exe');
DeleteFile('C:\WINDOWS\system32\s3MgCJb.exe');
DeleteFile('C:\WINDOWS\system32\OxuuvOE.exe');
DeleteFile('C:\WINDOWS\system32\lyvROk1.exe');
DeleteFile('C:\WINDOWS\system32\YEBpB3I.exe');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.[/CODE]

После перезагрузки:
- выполните такой скрипт
[CODE]begin
CreateQurantineArchive(GetAVZDirectory+'quarantine.zip');
end.[/CODE]
- Файл [B][COLOR="Red"]quarantine.zip[/COLOR][/B] из папки AVZ загрузите по ссылке [B][COLOR="Red"]Прислать запрошенный карантин[/COLOR][/B] вверху темы
- Сделайте повторный лог RSIT
05.08.2010, 09:24
IvanR

Карантин загрузил.
05.08.2010, 09:32
polword

файл C:\Program Files\Common Files\keylog.txt - удалите вручную

Обновите систему
- Установите [URL="http://www.microsoft.com/rus/windows/internet-explorer/default.aspx"]Internet-Explorer 8[/URL].(даже если Вы его не используете)
- Поставте все последние обновления системы Windows - [URL="http://www.update.microsoft.com"]тут[/URL]
- поставте [URL="http://get.adobe.com/reader/otherversions/"]Adobe Reader 9.3[/URL] или удалите старый.
05.08.2010, 10:29
IvanR

Спасибо.
06.08.2010, 10:29
CyberHelper

Итог лечения

Статистика проведенного лечения:
[LIST][*]Получено карантинов: [B]2[/B][*]Обработано файлов: [B]340[/B][*]В ходе лечения обнаружены вредоносные программы:
[LIST=1][*] c:\windows\system32\adljy49.exe - [B]Backdoor.Win32.Shiz.jf[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.394864, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\ahkzaln.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.379940, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\apjntkh.exe - [B]Trojan.Win32.Jorik.Shiz.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@a8xdKqoi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\bejulks.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\bhgnkgb.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.379860, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\bm4rvrx.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.379860, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\btsluck.exe - [B]Trojan-Dropper.Win32.Shiz.ev[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4210729, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\ca11d6ef.exe - [B]Backdoor.Win32.Shiz.gen[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Spyware.8065, NOD32: Win32/Spy.Shiz.NAI trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\cbns0hr.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\cd9drro.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4224594, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\cnwgli.exe - [B]Trojan.Win32.Jorik.Shiz.be[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@a4JyV!hi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\c7oxdpe.exe - [B]Trojan.Win32.Jorik.Shiz.bo[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\dgjevyk.exe - [B]Trojan.Win32.Jorik.Shiz.bs[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\dkmkrgd.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4372069, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\dt4rjqk.exe - [B]Trojan.Win32.Scar.cexv[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.3917375, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\dxsorl6.exe - [B]Trojan.Win32.Inject.aqke[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4309669, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\ejxzmor.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\elrg9ao.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\e3fnapk.exe - [B]Trojan.Win32.Jorik.Shiz.ae[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\fksufen.exe - [B]Trojan.Win32.Jorik.Shiz.bo[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\g9ryac5.exe - [B]Trojan.Win32.Scar.cigm[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.375381, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\hdf7yil.exe - [B]Trojan.Win32.Jorik.Shiz.e[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4539357, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\hj5rb3m.exe - [B]Trojan.Win32.Scar.cmda[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\hpzddxs.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.379674, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\hs5bwhk.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\h53ycrf.exe - [B]Trojan.Win32.Jorik.Shiz.v[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4532542, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\ibmdpdp.exe - [B]Backdoor.Win32.Shiz.jj[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\ioqrzfb.exe - [B]Trojan-Dropper.Win32.Shiz.ev[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4210729, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\ipoqvdm.exe - [B]Trojan.Win32.Jorik.Shiz.aw[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\jc7gti7.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gu0@aeTs!Dgi )[*] c:\windows\system32\jjvzg11.exe - [B]Backdoor.Win32.Shiz.hw[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4207006, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\jnc6qvp.exe - [B]Trojan-Spy.Win32.Shiz.ci[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4180799, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\kfxmfhr.exe - [B]Trojan-Spy.Win32.Shiz.ci[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4180799, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\kglfgu7.exe - [B]Trojan.Win32.Scar.cjmp[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4160686, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\khxyrir.exe - [B]Trojan.Win32.Jorik.Shiz.v[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4532542, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\kjmxk8f.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4225575, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\kkgma4c.exe - [B]Backdoor.Win32.Shiz.hw[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4207006, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\kusxnog.exe - [B]Trojan.Win32.Agent.ejtg[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4544103, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\kwtagkf.exe - [B]Trojan.Win32.Jorik.Shiz.ae[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\lawa9mm.exe - [B]Trojan.Win32.Jorik.Shiz.aw[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\lhfkekk.exe - [B]Trojan.Win32.Jorik.Shiz.e[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4539357, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\lnqpsmp.exe - [B]Trojan.Win32.Scar.cmda[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\lpeppl9.exe - [B]Trojan-Dropper.Win32.Shiz.dn[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.3945241, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\lxrdpjq.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\lyf0esj.exe - [B]Backdoor.Win32.Shiz.kq[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\lyvrok1.exe - [B]Trojan.Win32.Scar.cdyi[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4202197, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\mey6s6u.exe - [B]Backdoor.Win32.Shiz.jz[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.407245, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\mguaaem.exe - [B]Trojan.Win32.Jorik.Shiz.m[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.hq0@a0ioxJhi )[*] c:\windows\system32\muzfwo2.exe - [B]Backdoor.Win32.Shiz.jf[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.394864, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\m0alnrs.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4224594, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\m3dp7rq.exe - [B]Trojan-Dropper.Win32.Shiz.dc[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4310864, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\nfgaq7t.exe - [B]Trojan.Win32.Jorik.Shiz.bo[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\nsbpjnf.exe - [B]Trojan.Win32.Scar.cmda[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\nuc9pov.exe - [B]Trojan.Win32.Jorik.Shiz.e[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4539357, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\orhy8lz.exe - [B]Trojan.Win32.Jorik.Shiz.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@a8xdKqoi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\otq85q1.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\oxuuvoe.exe - [B]Trojan.Win32.Scar.cdyi[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4202197, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\o2hncak.exe - [B]Trojan.Win32.Inject.aqke[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4309669, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\pdxq2ic.exe - [B]Trojan.Win32.Jorik.Shiz.v[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4532542, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\pomos7m.exe - [B]Backdoor.Win32.Shiz.jz[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.407245, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\ptxcih0.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\pzdmvc.exe - [B]Trojan.Win32.Jorik.Shiz.ay[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4542246, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\qhjq4xm.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\qmzvbbw.exe - [B]Trojan.Win32.Jorik.Shiz.bo[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\qqkq74r.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.379225, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\qssffwi.exe - [B]Backdoor.Win32.Shiz.gen[/B] ( DrWEB: Trojan.Packed.20771, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\qvrkorg.exe - [B]Trojan.Win32.Jorik.Shiz.j[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4538518, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\qwo4utz.exe - [B]Trojan-Dropper.Win32.Shiz.ev[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4210729, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\q5twcl9.exe - [B]Trojan.Win32.Jorik.Shiz.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@a8xdKqoi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\ro3y02m.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4372069, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\r9b1b3j.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\sgc8lcy.exe - [B]Trojan.Win32.Scar.cigm[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.375381, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\skrudlh.exe - [B]Trojan.Win32.Jorik.Shiz.e[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4539357, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\sowwbj.exe - [B]Backdoor.Win32.Shiz.ms[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4547050, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\sseaxri.exe - [B]Backdoor.Win32.Shiz.gen[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\sw2up3j.exe - [B]Trojan.Win32.Jorik.Shiz.j[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4538518, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\s3mgcjb.exe - [B]Trojan.Win32.Scar.cdyi[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4202197, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\tajj1gf.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4200549, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\tnhwowu.exe - [B]Trojan.Win32.Scar.cexv[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.3917375, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\ucypqbb.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\uo2nw3h.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\uu5btgc.exe - [B]Trojan.Win32.Scar.cjmp[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4160686, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\u9ckhzw.exe - [B]Trojan.Win32.Jorik.Shiz.t[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@aWAy1Epi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\wda4zmq.exe - [B]Trojan.Win32.Jorik.Shiz.g[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\wjhoglv.exe - [B]Backdoor.Win32.Shiz.gen[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.hq0@aO@Uezfi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\w5ey4e7.exe - [B]Trojan.Win32.Jorik.Shiz.u[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4539491, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\w8ot3mi.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4224594, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\xoci0cj.exe - [B]Trojan-Dropper.Win32.Shiz.dn[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.3945241, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\xsi7wdq.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4212405, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\xuma1pi.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\xuutejh.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\xxikjdu.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\x6crlmv.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\ydjepky.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Backdoor.Generic.380069, NOD32: Win32/Spy.Shiz.NAL trojan )[*] c:\windows\system32\yebpb3i.exe - [B]Trojan.Win32.Scar.cdyi[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4202197, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\ylyirl.exe - [B]Backdoor.Win32.Shiz.kn[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\ymdzx4l.exe - [B]Trojan.Win32.Jorik.Shiz.j[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.gq0@a4IKZsdi, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\zudwcub.exe - [B]Trojan-Dropper.Win32.Shiz.ev[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4210729, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\1fnaobm.exe - [B]Trojan.Win32.Jorik.Shiz.ai[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\1uhad4n.exe - [B]Trojan.Win32.Scar.cgnh[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4126795, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\1zxwnjd.exe - [B]Trojan.Win32.Jorik.Shiz.r[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.hq0@aaPvLkai, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*] c:\windows\system32\37qngip.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4200549, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\4tfmbzk.exe - [B]Backdoor.Win32.Shiz.ju[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4338503, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\5mnbnya.exe - [B]Packed.Win32.Katusha.o[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4212405, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:Malware-gen )[*] c:\windows\system32\5w7aphh.exe - [B]Trojan-Dropper.Win32.Shiz.dy[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4189309, NOD32: Win32/Spy.Shiz.NBD trojan, AVAST4: Win32:Trojan-gen )[*] c:\windows\system32\7zntw5x.exe - [B]Trojan-Dropper.Win32.Shiz.dc[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.4310864, NOD32: Win32/Spy.Shiz.NAW trojan, AVAST4: Win32:Spyware-gen [Spy] )[*] c:\windows\system32\74gbl0d.exe - [B]Backdoor.Win32.Shiz.gen[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Trojan.Heur.FU.hq0@aO@Uezfi, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\system32\9kqalft.exe - [B]Backdoor.Win32.Shiz.kq[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.Zbot.15, NOD32: Win32/Spy.Shiz.NAL trojan, AVAST4: Win32:MalOb-BW [Cryp] )[*] c:\windows\temp\espe197.tmp - [B]Trojan.Win32.Agent.dvrh[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Trojan.Generic.3899553, NOD32: Win32/Spy.Shiz.NAO trojan, AVAST4: Win32:Malware-gen )[*] \\?\globalroot\systemroot\system32\ya2laaf.exe - [B]Trojan-Dropper.Win32.Shiz.m[/B] ( DrWEB: Trojan.Packed.20771, BitDefender: Gen:Variant.TDss.18, NOD32: Win32/Spy.Shiz.NAE trojan, AVAST4: Win32:Malware-gen )[/LIST][/LIST]
Рекомендации:
[LIST=1][*]Обнаружены троянские программы класса Trojan-PSW/Trojan-Spy - настоятельно рекомендуется поменять все пароли ![/LIST]