Найдено много вирусов, троянов, червяков и не устанавливается Symantec Antivirus 10.0.1.1000 Corporate. Логи прилагаются.
Найдено много вирусов, троянов, червяков и не устанавливается Symantec Antivirus 10.0.1.1000 Corporate. Логи прилагаются.
Уфф, еле осилил... Знатный зверинец!
Отключите восстановление системы!
Пофиксите в HijackThis:
Выполните скрипт в AVZ:Код:O2 - BHO: (no name) - {dfbeb35b-444d-4f25-8d7d-eb2683c206ec} - (no file) O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [Regedit32] C:\windows\system32\regedit.exe O4 - HKLM\..\Run: [Local Security Authority Service] C:\windows\system32\Isass.exe O4 - HKLM\..\Policies\Explorer\Run: [services] C:\WINDOWS\services.exe O4 - HKLM\..\Policies\Explorer\Run: [ming9bstart] C:\windows\system\ming9b090423.exe O20 - Winlogon Notify: WinCtrl32 - WinCtrl32.dll (file missing)
Компьютер перезагрузится.Код:begin SearchRootkit(true, true); SetAVZGuardStatus(True); ClearQuarantine; QuarantineFile('C:\windows\system\ming9b090423.exe',''); QuarantineFile('C:\windows\system32\regedit.exe',''); QuarantineFile('C:\windows\system32\08223B03.dll',''); QuarantineFile('C:\WINDOWS\system32\userinit.exe',''); QuarantineFile('C:\WINDOWS\services.exe',''); QuarantineFile('C:\WINDOWS\system32\wtesk.exe',''); QuarantineFile('C:\WINDOWS\system32\jbqhic.exe',''); QuarantineFile('C:\WINDOWS\system32\i\J002.exe',''); QuarantineFile('C:\WINDOWS\system32\S3DR5EKF7Z\J001.exe',''); QuarantineFile('C:\WINDOWS\system32\i\J001.exe',''); QuarantineFile('C:\WINDOWS\system32\drivers\62.exe',''); QuarantineFile('C:\WINDOWS\system32\kstesk.exe',''); QuarantineFile('C:\WINDOWS\system32\i\I001.exe',''); QuarantineFile('C:\WINDOWS\system32\C3TIMHZX2P\J002.exe',''); QuarantineFile('C:\WINDOWS\clfdle.exe',''); QuarantineFile('C:\WINDOWS\system32\bstesk.exe',''); QuarantineFile('C:\WINDOWS\system32\6QYME7T991\J001.exe',''); QuarantineFile('C:\windows\UtilG15.exe',''); QuarantineFile('C:\windows\system32\drivers\WmiSvc.sys',''); QuarantineFile('C:\windows\system32\Drivers\Ntfs.sys',''); QuarantineFile('C:\windows\TEMP\tmp.tmp',''); QuarantineFile('C:\windows\system32\z5WRXqHagksJxWt.dll',''); QuarantineFile('C:\windows\system32\Y4npJWJNr.dll',''); QuarantineFile('C:\windows\system32\WcCtgJ4zcxHF.dll',''); QuarantineFile('C:\windows\system32\w7uds3zyayg9.dll',''); QuarantineFile('C:\windows\system32\Va7SpUWgCA5f.dll',''); QuarantineFile('c:\windows\system32\uffpvkupjdk.dll',''); QuarantineFile('C:\windows\system32\SCEVFJRCmaB7.dll',''); QuarantineFile('C:\windows\system32\rfpz9wwyy2np.dll',''); QuarantineFile('C:\windows\system32\Qh6xX7VN48sVPnK.dll',''); QuarantineFile('C:\windows\system32\Q9q2MHJ3uTBErM7wc.dll',''); QuarantineFile('C:\windows\system32\ndxq9awMc.dll',''); QuarantineFile('c:\windows\system32\mspmsnsv.dll',''); QuarantineFile('C:\windows\system32\mFr9FPruEFZ9VNdrveJunw3.dll',''); QuarantineFile('C:\windows\system32\jY8sGUnWqbZb3x2BPhY.dll',''); QuarantineFile('C:\windows\system32\JBn2ypqY23vWX.dll',''); QuarantineFile('C:\windows\system32\Isass.exe',''); QuarantineFile('C:\windows\system32\GU6f5sW42mdc.dll',''); QuarantineFile('C:\windows\system32\eNyN5X48HrtXc.dll',''); QuarantineFile('C:\windows\system32\EMPPpCCSA8GtjURjn.dll',''); QuarantineFile('C:\windows\system32\emHnPuBAaF7XjuXBbdxSg.dll',''); QuarantineFile('C:\windows\system32\EmfVcSFcRkARFbbTQW5V5.dll',''); QuarantineFile('C:\windows\system32\ed78ab9.dll',''); QuarantineFile('C:\windows\system32\dhDhwS7fFW.dll',''); QuarantineFile('C:\windows\system32\cRsAQd4hw.dll',''); QuarantineFile('C:\windows\system32\COMRes.dll',''); QuarantineFile('C:\windows\system32\CDuAUVkGy9.dll',''); QuarantineFile('C:\windows\system32\BtmBAnd89jc9PsPq5EKNj.dll',''); QuarantineFile('C:\windows\system32\BMsg6pdMD4ht.dll',''); QuarantineFile('c:\windows\system32\appmgmts.dll',''); QuarantineFile('C:\windows\system32\76B9BA7A.dll',''); QuarantineFile('C:\windows\system32\704C3595.dll',''); QuarantineFile('c:\windows\system32\6to4.dll',''); QuarantineFile('C:\windows\system32\2EF0D734.dll',''); QuarantineFile('C:\windows\fonts\vds9ae5G5FmED.fon',''); QuarantineFile('C:\windows\fonts\NPPVWvYEyCe8H.fon',''); QuarantineFile('C:\windows\fonts\jUxfqJDwmfQEHcy2.fon',''); QuarantineFile('C:\windows\fonts\bQgc5yHMSD4yd.fon',''); QuarantineFile('C:\windows\fonts\A97CRaCB.fon',''); QuarantineFile('C:\Recycler\lWyjsIms.Dll',''); DeleteFile('C:\Recycler\lWyjsIms.Dll'); DeleteFile('C:\windows\fonts\A97CRaCB.fon'); DeleteFile('C:\windows\fonts\bQgc5yHMSD4yd.fon'); DeleteFile('C:\windows\fonts\jUxfqJDwmfQEHcy2.fon'); DeleteFile('C:\windows\fonts\NPPVWvYEyCe8H.fon'); DeleteFile('C:\windows\fonts\vds9ae5G5FmED.fon'); DeleteFile('C:\windows\system32\2EF0D734.dll'); DeleteFile('c:\windows\system32\6to4.dll'); DeleteFile('C:\windows\system32\704C3595.dll'); DeleteFile('C:\windows\system32\76B9BA7A.dll'); DeleteFile('C:\windows\system32\BMsg6pdMD4ht.dll'); DeleteFile('C:\windows\system32\BtmBAnd89jc9PsPq5EKNj.dll'); DeleteFile('C:\windows\system32\CDuAUVkGy9.dll'); DeleteFile('C:\windows\system32\cRsAQd4hw.dll'); DeleteFile('C:\windows\system32\dhDhwS7fFW.dll'); DeleteFile('C:\windows\system32\ed78ab9.dll'); DeleteFile('C:\windows\system32\EmfVcSFcRkARFbbTQW5V5.dll'); DeleteFile('C:\windows\system32\emHnPuBAaF7XjuXBbdxSg.dll'); DeleteFile('C:\windows\system32\EMPPpCCSA8GtjURjn.dll'); DeleteFile('C:\windows\system32\eNyN5X48HrtXc.dll'); DeleteFile('C:\windows\system32\GU6f5sW42mdc.dll'); DeleteFile('C:\windows\system32\Isass.exe'); DeleteFile('C:\windows\system32\JBn2ypqY23vWX.dll'); DeleteFile('C:\windows\system32\jY8sGUnWqbZb3x2BPhY.dll'); DeleteFile('C:\windows\system32\mFr9FPruEFZ9VNdrveJunw3.dll'); DeleteFile('c:\windows\system32\mspmsnsv.dll'); DeleteFile('C:\windows\system32\ndxq9awMc.dll'); DeleteFile('C:\windows\system32\Q9q2MHJ3uTBErM7wc.dll'); DeleteFile('C:\windows\system32\Qh6xX7VN48sVPnK.dll'); DeleteFile('C:\windows\system32\rfpz9wwyy2np.dll'); DeleteFile('C:\windows\system32\SCEVFJRCmaB7.dll'); DeleteFile('c:\windows\system32\uffpvkupjdk.dll'); DeleteFile('C:\windows\system32\Va7SpUWgCA5f.dll'); DeleteFile('C:\windows\system32\w7uds3zyayg9.dll'); DeleteFile('C:\windows\system32\WcCtgJ4zcxHF.dll'); DeleteFile('C:\windows\system32\Y4npJWJNr.dll'); DeleteFile('C:\windows\system32\z5WRXqHagksJxWt.dll'); DeleteFile('C:\windows\TEMP\tmp.tmp'); DeleteFile('C:\windows\UtilG15.exe'); DeleteFile('C:\WINDOWS\system32\6QYME7T991\J001.exe'); DeleteFile('C:\WINDOWS\system32\bstesk.exe'); DeleteFile('C:\WINDOWS\clfdle.exe'); DeleteFile('C:\WINDOWS\system32\C3TIMHZX2P\J002.exe'); DeleteFile('C:\WINDOWS\system32\i\I001.exe'); DeleteFile('C:\WINDOWS\system32\kstesk.exe'); DeleteFile('C:\WINDOWS\system32\drivers\62.exe'); DeleteFile('C:\WINDOWS\system32\i\J001.exe'); DeleteFile('C:\WINDOWS\system32\S3DR5EKF7Z\J001.exe'); DeleteFile('C:\WINDOWS\system32\i\J002.exe'); DeleteFile('C:\WINDOWS\system32\jbqhic.exe'); DeleteFile('C:\WINDOWS\system32\wtesk.exe'); DeleteFile('C:\WINDOWS\services.exe'); DeleteFile('C:\windows\system32\08223B03.dll'); DeleteFile('C:\windows\system32\regedit.exe'); DeleteFile('C:\windows\system\ming9b090423.exe'); BC_ImportDeletedList; ExecuteSysClean; BC_DeleteSvc('wuauservMSDTC'); BC_DeleteSvc('wtesk'); BC_DeleteSvc('WmdmPmSNxmlprov'); BC_DeleteSvc('WmdmPmSNNetDDEdsdm'); BC_DeleteSvc('WebClientDnscache'); BC_DeleteSvc('vrgv'); BC_DeleteSvc('ttesk'); BC_DeleteSvc('Themesxmlprov'); BC_DeleteSvc('tdgfv'); BC_DeleteSvc('tdfgrsh'); BC_DeleteSvc('stesk'); BC_DeleteSvc('Servicev2.0'); BC_DeleteSvc('rtgt'); BC_DeleteSvc('rgt'); BC_DeleteSvc('rg'); BC_DeleteSvc('RasManRasAuto'); BC_DeleteSvc('NlaCryptSvc'); BC_DeleteSvc('MDMNetDDEdsdm'); BC_DeleteSvc('ktesk'); BC_DeleteSvc('kstesk'); BC_DeleteSvc('jhfg'); BC_DeleteSvc('IrmonStarWindService'); BC_DeleteSvc('helpsvcMessenger'); BC_DeleteSvc('gjunj'); BC_DeleteSvc('ferer'); BC_DeleteSvc('EventSystemMDM'); BC_DeleteSvc('EventlogTlntSvr'); BC_DeleteSvc('dmadminWmdmPmSN'); BC_DeleteSvc('dmadminTermService'); BC_DeleteSvc('dcafd'); BC_DeleteSvc('cldos'); BC_DeleteSvc('bstesk'); BC_DeleteSvc('Ati2evxp'); BC_DeleteSvc('aspnet_stateWmdmPmSN'); BC_DeleteSvc('aefre'); BC_DeleteSvc('Network DDE'); BC_Activate; RebootWindows(true); end.
Пришлите карантин согласно приложению 3 правил
(загружать тут: http://virusinfo.info/upload_virus.php?tid=52152).
Сделайте новые логи.
I am not young enough to know everything...
сейчас ПК поражен спамботом - по команде netstat -a показывается множественные подключения по протоколу смтп на разные адреса
Последний раз редактировалось AndreyKa; 16.08.2009 в 13:18. Причина: загружу карантин сам
Всё это уже детектится.
Повторите логи.
Статистика проведенного лечения:
- Получено карантинов: 1
- Обработано файлов: 47
- В ходе лечения обнаружены вредоносные программы:
- c:\windows\fonts\a97cracb.fon - Trojan-GameThief.Win32.Magania.brwo ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.F34496E2, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\fonts\bqgc5yhmsd4yd.fon - Trojan-GameThief.Win32.Magania.bouf ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.40386ADD, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\fonts\juxfqjdwmfqehcy2.fon - Trojan-GameThief.Win32.Magania.bnpn ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.F6F584CD, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\fonts\nppvwvyeyce8h.fon - Trojan-GameThief.Win32.Magania.bprl ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.32D6B462, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\fonts\vds9ae5g5fmed.fon - Trojan-GameThief.Win32.Magania.boul ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.46D7722E, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system\ming9b090423.exe - Worm.Win32.AutoRun.afcb ( DrWEB: Trojan.PWS.Gamania.19081, BitDefender: Generic.Malware.SP!g.C3EBC8E8, NOD32: Win32/Spy.Pophot.NAO trojan, AVAST4: Win32:AutoRun-AXT [Wrm] )
- c:\windows\system32\appmgmts.dll - Trojan-Downloader.Win32.Agent.clwc ( BitDefender: Generic.Malware.P!dld.F67ECA79, NOD32: Win32/KillAV.NER trojan, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\system32\bmsg6pdmd4ht.dll - Trojan-GameThief.Win32.Magania.buzp ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Lmir.888759BE, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\btmband89jc9pspq5eknj.dll - Trojan-GameThief.Win32.Magania.butb ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.961B471C, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\cduauvkgy9.dll - Trojan-GameThief.Win32.Magania.bhmy ( DrWEB: Trojan.PWS.Wsgame.12115, BitDefender: Generic.Onlinegames.14.C385D75E, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\comres.dll - Trojan-GameThief.Win32.Magania.bueq ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.DC3F0B1A, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\crsaqd4hw.dll - Trojan-GameThief.Win32.Magania.btsz ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.87738A57, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\dhdhws7ffw.dll - Trojan-GameThief.Win32.Magania.bskk ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.FFC1A7FB, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\drivers\ntfs.sys - Virus.Win32.Protector.c ( DrWEB: BackDoor.Bulknet.404, BitDefender: Gen:Rootkit.Heur.LmW@fSiHyto, AVAST4: Win32:Cutwail-Y [Trj] )
- c:\windows\system32\drivers\wmisvc.sys - Rootkit.Win32.Agent.nil ( DrWEB: Win32.HLLW.Autoruner.7210, BitDefender: Rootkit.Agent.AJAQ, NOD32: Win32/Agent.PNI trojan, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\system32\ed78ab9.dll - Trojan-GameThief.Win32.Magania.blxa ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.8D6D6245, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\emfvcsfcrkarfbbtqw5v5.dll - Trojan-GameThief.Win32.Magania.buvg ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.E84C34B4, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\emhnpubaaf7xjuxbbdxsg.dll - Trojan-GameThief.Win32.Magania.bueq ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.DC3F0B1A, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\empppccsa8gtjurjn.dll - Trojan-GameThief.Win32.Magania.bouk ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.DA46ACC0, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\enyn5x48hrtxc.dll - Trojan-GameThief.Win32.Magania.btwy ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.498874C7, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\gu6f5sw42mdc.dll - Trojan-GameThief.Win32.Magania.bfuy ( DrWEB: Trojan.PWS.Wsgame.12109, BitDefender: Generic.Onlinegames.14.8FE6167B, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\isass.exe - Backdoor.Win32.Nepoe.jn ( DrWEB: BackDoor.IRC.Sdbot.945, BitDefender: Backdoor.IRCBot.ACTN, NOD32: IRC/SdBot trojan, AVAST4: Win32:Delf-MKW [Drp] )
- c:\windows\system32\jbn2ypqy23vwx.dll - Trojan-GameThief.Win32.Magania.bmst ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.E005BFCF, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\jy8sgunwqbzb3x2bphy.dll - Trojan-GameThief.Win32.Magania.bsuw ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.C91FC1F8, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\mfr9fpruefz9vndrvejunw3.dll - Trojan-GameThief.Win32.Magania.bunv ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.457DFB51, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\mspmsnsv.dll - Trojan-Downloader.Win32.Agent.clwc ( BitDefender: Generic.Malware.P!dld.F67ECA79, NOD32: Win32/KillAV.NER trojan, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\system32\ndxq9awmc.dll - Trojan-GameThief.Win32.Magania.bmbr ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.2B5853EE, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\qh6xx7vn48svpnk.dll - Trojan-GameThief.Win32.Magania.btww ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.5E75D776, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\q9q2mhj3utberm7wc.dll - Trojan-GameThief.Win32.Magania.btzn ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.96BADEA5, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\rfpz9wwyy2np.dll - Trojan-GameThief.Win32.OnLineGames.bmnx ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.A9AB0DF0, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\scevfjrcmab7.dll - Trojan-GameThief.Win32.Magania.bsov ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.0A2CE808, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\s3dr5ekf7z\j001.exe - Backdoor.Win32.Agent.ajqs ( DrWEB: BackDoor.Fanchi, BitDefender: Trojan.Rincux.AW, AVAST4: Win32:Rincux-C [Trj] )
- c:\windows\system32\uffpvkupjdk.dll - Trojan.Win32.Agent2.chlv ( DrWEB: Trojan.DownLoad.43949, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\system32\userinit.exe - Trojan-Downloader.Win32.Small.jmn ( DrWEB: Trojan.MulDrop.32667, BitDefender: Trojan.Crypt.CY, NOD32: Win32/Agent.PBD trojan, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\system32\va7spuwgca5f.dll - Trojan-GameThief.Win32.Magania.birm ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Trojan.PWS.OnlineGames.KCPP, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\wcctgj4zcxhf.dll - Trojan-GameThief.Win32.Magania.bmec ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.59921689, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\w7uds3zyayg9.dll - Trojan-GameThief.Win32.Magania.bumi ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.80A8EDC3, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\y4npjwjnr.dll - Trojan-GameThief.Win32.Magania.bogc ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Trojan.PWS.OnlineGames.KCRW, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\z5wrxqhagksjxwt.dll - Trojan-GameThief.Win32.Magania.bsyl ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.54BBB07D, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\08223b03.dll - Trojan-GameThief.Win32.Magania.bsdj ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.BD0B5F3E, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\2ef0d734.dll - Trojan-GameThief.Win32.Magania.bgjv ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.140AE7CD, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\6qyme7t991\j001.exe - Trojan-Downloader.Win32.Agent.cmaj ( DrWEB: BackDoor.Fanchi, BitDefender: Trojan.Rincux.AW, AVAST4: Win32:Rincux-C [Trj] )
- c:\windows\system32\6to4.dll - Worm.Win32.AutoRun.ghr ( DrWEB: Win32.HLLW.Autoruner.7210, BitDefender: Trojan.Agent.ANLB, NOD32: Win32/AutoRun.Agent.NZ worm, AVAST4: Win32:Katusha-BC [Trj] )
- c:\windows\system32\704c3595.dll - Trojan-GameThief.Win32.Magania.bfux ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.2CD9ACE9, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\system32\76b9ba7a.dll - Trojan-GameThief.Win32.Magania.bfva ( DrWEB: Trojan.PWS.Wsgame.12116, BitDefender: Generic.Onlinegames.14.0A29A451, NOD32: Win32/PSW.OnLineGames.NRD trojan, AVAST4: Win32:Agent-ACMH [Drp] )
- c:\windows\temp\tmp.tmp - Trojan-GameThief.Win32.OnLineGames.abrf.a ( DrWEB: Trojan.DownLoad.40413, BitDefender: Trojan.Crypt.CY, NOD32: Win32/TrojanDownloader.Small.ONW trojan, AVAST4: Win32:Trojan-gen {Other} )
- c:\windows\utilg15.exe - Backdoor.Win32.Hupigon.htef ( DrWEB: BackDoor.Pigeon.17279, BitDefender: GenPack:Backdoor.Hupigon.ZUW, AVAST4: Win32:Rootkit-gen [Rtk] )
Уважаемый(ая) RaYKeX, наши специалисты оказали Вам всю возможную помощь по вашему обращению.
В целях поддержания безопасности вашего компьютера настоятельно рекомендуем:
Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru:
Надеемся больше никогда не увидеть ваш компьютер зараженным!
Если Вас не затруднит, пополните пожалуйста нашу базу безопасных файлов.