Код:
Ключи реестра: 6
PUP.Optional.BetterSurf.A, HKLM\SOFTWARE\CLASSES\CLSID\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}, , [09d0801f760564d29bf290c7e9199d63],
PUP.Optional.BetterSurf.A, HKU\S-1-5-21-527237240-1284227242-1606980848-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}, , [09d0801f760564d29bf290c7e9199d63],
PUP.Optional.BetterSurf.A, HKU\S-1-5-21-527237240-1284227242-1606980848-1003-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{8271B5D6-76D3-4ABF-AEB3-1721161C76BC}, , [09d0801f760564d29bf290c7e9199d63],
Backdoor.Agent.XN, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Tumanni 1.21, , [7d5cecb3abd088ae17473a899d6542be],
Trojan.Agent.XN, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Kak 1.22, , [6871277891ea5cda6cd9e733e321c43c],
PUP.Optional.BetterSurf.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\poheodfamflhhhdcmjfeggbgigeefaco, , [ce0be6b94f2c87af6208a038be44df21],
Значения реестра: 1
PUP.Optional.BetterSurf.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|[email protected], D:\Program Files\Better-Surf\ff, , [3a9ff8a7e19a87af6256dce5fd05669a]
Папки: 9
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni, , [7d5cecb3abd088ae17473a899d6542be],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt, , [23b6e9b63c3f6acc9ee1786a37cba060],
Trojan.Agent.XN, D:\Program Files\Inst\Kak, , [6871277891ea5cda6cd9e733e321c43c],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ch, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\chrome, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\chrome\content, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ie, , [6574920d3b4011255e3df9a88b77b34d],
Файлы: 41
Spyware.Zbot.VXGen, D:\Documents and Settings\User\Local Settings\Application Data\Microsoft\Windows\winupdate.exe, , [c019207f8cef9c9a57e68be60ff2f60a],
Spyware.Zbot.VXGen, D:\WINDOWS\system32\winboostspeed.exe, , [b326edb276053ef82a13c8a9cb361be5],
Trojan.Agent.ED, D:\WINDOWS\zdriver32.exe, , [efea603f116a999d750aa9eaed1415eb],
Trojan.Miner, D:\Documents and Settings\User\Application Data\Microsoft\sys32\minerd.exe, , [9247247b5b2035017eaef4ca0af8b848],
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni\Uninstall.ini, , [7d5cecb3abd088ae17473a899d6542be],
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni\alkohol.vbs, , [7d5cecb3abd088ae17473a899d6542be],
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni\anarubek.bat, , [7d5cecb3abd088ae17473a899d6542be],
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni\skapank.kjh, , [7d5cecb3abd088ae17473a899d6542be],
Backdoor.Agent.XN, D:\Program Files\Vecher\Tumanni\Uninstall.exe, , [7d5cecb3abd088ae17473a899d6542be],
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\8ssj99yu.default\searchplugins\webalta-search.xml, , [16c36d32730881b54220dfec3fc327d9],
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\b0k2m5u0.default\searchplugins\webalta-search.xml, , [9e3bd8c7ef8cad89abb79f2c7e847a86],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\manifest.json, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\128.png, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\16.png, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\48.png, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\content.js, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\MPGGZRdOQMFvseW.html, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\OCoZFMSiwivz.js, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\qgGTTrXryXRzs.js, , [23b6e9b63c3f6acc9ee1786a37cba060],
PUP.Optional.BetterSmile.A, D:\Documents and Settings\User\Application Data\smwdgt\xCDHbAoLugiwRh.js, , [23b6e9b63c3f6acc9ee1786a37cba060],
Trojan.Miner, D:\Documents and Settings\User\Application Data\Microsoft\sys32\Elevate.exe, , [9346405f73082a0cf2697e9439cb40c0],
Trojan.Miner, D:\Documents and Settings\User\Application Data\Microsoft\sys32\Elevate.pdb, , [3d9cfea14e2dfd3976e58191b84c946c],
Trojan.Miner, D:\Documents and Settings\User\Application Data\Microsoft\sys32\drive.exe, , [6376326d3f3ce452114bc2507e869c64],
Trojan.Miner, D:\Documents and Settings\User\Application Data\Microsoft\sys32\sys32.7z, , [429726799fdceb4b8ecfd33f12f29f61],
Misused.Legit, D:\Documents and Settings\User\Application Data\Microsoft\sys32\7za.exe, , [6475f1aed7a40f2727378290ba4abd43],
Trojan.Miner, D:\WINDOWS\system\sys32.7z, , [6a6f435c0b70dd59431c878b976dc53b],
Trojan.Agent.XN, D:\Program Files\Inst\Kak\Uninstall.ini, , [6871277891ea5cda6cd9e733e321c43c],
Trojan.Agent.XN, D:\Program Files\Inst\Kak\buhlo.vbs, , [6871277891ea5cda6cd9e733e321c43c],
Trojan.Agent.XN, D:\Program Files\Inst\Kak\cheburek.bat, , [6871277891ea5cda6cd9e733e321c43c],
Trojan.Agent.XN, D:\Program Files\Inst\Kak\Uninstall.exe, , [6871277891ea5cda6cd9e733e321c43c],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\Better-Surf.xpi, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\build.cmd, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\chrome.manifest, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\install.rdf, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.BetterSurf, D:\Program Files\Better-Surf\ff\chrome\content\firefox.js, , [6574920d3b4011255e3df9a88b77b34d],
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\8ssj99yu.default\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "http://webalta.ru");), ,[f6e3acf35f1cf04699e9d4fe14f01fe1]
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\8ssj99yu.default\prefs.js, Good: (), Bad: (user_pref("keyword.URL", "http://webalta.ru/poisk?q=");), ,[f6e3108fcfac67cf354ff8da7a8abd43]
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\b0k2m5u0.default\prefs.js, Good: (), Bad: (user_pref("browser.startup.homepage", "http://webalta.ru");), ,[1ebb306f512a96a0cbb78250ec1830d0]
PUP.Optional.WebAlta.A, D:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\b0k2m5u0.default\prefs.js, Good: (), Bad: (user_pref("keyword.URL", "http://webalta.ru/poisk?q=");), ,[1abfc8d7413a8babbdc752803acab54b]
После удаления ещё раз просканируйте и прикрепите к своему сообщению новый лог.