Trojan.gen.2 Manual de Remoção

Nível da Ameaça:
10/10
Classifique este Artigo:
Comentários (0)
Leituras do Artigo: 30646
Categoria: Trojans

Trojan.gen.2 é um nome de guarda-chuva para infecções de computador diferente que pode direcionar o seu sistema operacional do Windows. Um cavalo de Tróia é um clandestino pedaço de malware que pode utilizar truques enganosos para entrar em seu computador pessoal. Por exemplo, um cavalo de Tróia pode esconder sob falso codecs de vídeo, conversores de PDF, atualizações do sistema, anexos de e-mail de spam ou plugins de navegador. A ameaça também pode ser empacotado com freeware e são instalados por já existentes infecções computador. Em geral, não há dúvida que a ameaça vai entrar no seu computador somente se ele não está protegido pelo software de deteção de remoção de spyware autêntico e confiável. De acordo com nossos pesquisadores de malware, Trojan infecções são altamente clandestinas e podem entrar e executar dentro do sistema sem o seu conhecimento. Estamos aqui para ajudá-lo a detectar e excluir Trojan.gen.2 do sistema operacional Windows.

Descobriu-se que Trojan.gen.2 é suportada por mais de 160 milhões de arquivos que podem formar centenas e milhares de infecções computador diferente. Por exemplo, TrojanDownloader:Win32/Agent.BQ, Vundo, Zbot Trojan, Trojan.Katusha ou Trojan.Alureon pode todos utilizam os arquivos maliciosos que estão ligados ao vicioso Trojan.gen.2. Escusado será dizer, os arquivos desonestos ligados à infecção são altamente perigosos e exigem a remoção imediata. Se os componentes usam combinações de letra/número aleatório para um nome, não é difícil localizar e excluí-los. No entanto, em outros casos, que os arquivos podem ser camuflados, que significa que eles poderiam roubar os nomes dos componentes autênticos ou poderiam até mesmo corromper arquivos autênticos para fazer você acreditar que não há nenhum elemento maligno que você deve remover. Alguns dos elementos mais freqüentemente detectados camuflados incluem svchost.exe, system.exe, winlogon.exe ou iexplore.exe. Estes são os arquivos que você usa em uma base regular e cuja existência dentro do Gerenciador de tarefas não gerará quaisquer perguntas.

Componentes maliciosos Trojan.gen.2 podem ser usado para uma variedade de diferentes processos. Alguns desses arquivos têm capacidades polimórficas e atuam como rootkits para esconder a deteção e a remoção. No entanto, se você não remover esses componentes do sistema, você pode ser vítima de golpes extremamente perversos. Os arquivos perigosos podem remover o acesso a utilitários do Windows (por exemplo, o Gerenciador de tarefas, Windows Security Center, Firewall), adicionar ou excluir processos do sistema, desativar as atualizações de segurança, contornar o software de segurança desatualizados, conectar seu PC a servidores remotos e empregá-lo para distribuição de spyware. Não é raro para Trojans coletar nomes de usuário e senhas para que os planejadores poderiam seqüestrar seu banco on-line, e-mail, contas de bate-papo virtual. Tudo isso pode levar a perda financeira e envolvimento em atividades criminosas.

A maioria dos Trojans são invisíveis; no entanto, podem causar desempenho e problemas de conexão de Internet do computador mais lento. Você também pode descobrir que alguns dos utilitários dentro do sistema são inoperantes. Se você descobriu quaisquer alterações, não importa quão pequena podem ser, você não deve arriscar a integridade do seu sistema de Windows ou a segurança da sua identidade virtual. Se você tiver a menor dúvida – instale um autêntico spyware scanner para examinar o computador. SpyHunter oferece um scanner de gratuita que irá detectar todas as ameaças existentes. Se for encontrado qualquer malware – excluí-lo sem demora antes de cyber criminosos conseguem se infiltrar mais ameaças. Se seu PC está limpo.. nós sugerimos que você instale o software de deteção e remoção de spyware autêntica para manter a proteção confiável.

Removedor de Download para Trojan.gen.2 *
*O download do digitalizador do SpyHunter deste site é destinado a ser usado como uma ferramenta de detecção. Se deseja usar a sua função de remoção, é necessário que você compre a versão completa do SpyHunter.

Trojan.gen.2 informação técnica para remoção manual:

Arquivos Modificados/Criados no sistema:

# Nome do Arquivo Tamanho do Arquivo (Bytes) Arquivo de Hash
1p7ex40uo.exe37890 bytesMD5: eb1a6c8a847dac1349022011fb7ad5b4
2zxpkktwt.exe15360 bytesMD5: 2ee727f416d0fc6c1e9a3a1fc3812dd9
3rs32net.exe22528 bytesMD5: 204336ee0680808e19aa7c351f4d2629
4lawawafi.dll97280 bytesMD5: 46db5639e141972ef2a5b59606da020b
5roam five.exe700416 bytes
6nevoputo.dll89600 bytes
7%UserProfile%\643f??????????
8norozuse.dll69632 bytes
9yopalimi.dll106496 bytes
10photo_id.exe27755 bytes
11mivi.exe171520 bytesMD5: 947f14f76240dc31ff436dc3ff906114
12verabija.dll88064 bytes
131F5.tmp.exe96256 bytesMD5: 120723d8dcf6a06495767e30999e1d75
14ayscjcts.exe73728 bytesMD5: ce38101a3995438a891466d6a0fb9df7
15omshtup.dll74752 bytesMD5: 5c4a9189143898c880c685baefe0949f
16sysfnx.exe454656 bytesMD5: bf38290e4b197faf16cd6db040b3c0c6
17mssrv32.exe41478 bytesMD5: 21dec97b096703797a66ef62add96723
18nl2.exe1918976 bytes
19tpsaxyd.exe157696 bytesMD5: 25e62ad9b7454477b966e84427f2d3f9
20autorun.exe61440 bytesMD5: 3a9bcde21a8d27f0c4b7f43615e0e821
21prnet.tmp182911 bytesMD5: d848251f26b45a2a5f72173d82593cb3
22CDDBUIRoxio32.dll135168 bytesMD5: 8965c5949b9df0c2020f6cb38a9b6592
23pofolehe.dll51200 bytes
24ajuquqoqepoqu.dll179200 bytesMD5: 101c7b1219b42021916ee9f7b7836b23
25goo[1].exe155648 bytesMD5: e6245881c2d132c4ba9465599f2f9979
26mbssm32.exe576512 bytesMD5: 2d2c56f61320a5aacd2040be7faaccce
27wicstd32.dll10240 bytesMD5: 319176330cb575151eccdd9f155b5d98
28svshost.dll2560 bytesMD5: 5306c45838bdaa5d596f01d05b13e123
29md.dll29696 bytesMD5: 022ad402acfbb80a80fe53945f429409
30agemtctl.exe,TTzwd.exe,3Tzw.exe65536 bytesMD5: a1b86b52bb6e141a094464b9429c05ce
31BTNRENC.EXE31744 bytesMD5: ab94bcdd992637454a0c8935466c94af
32lobkavuboo.dll166400 bytesMD5: e897c02175babec6b2fb2e6215c2e781
33qycu.exe133632 bytesMD5: 4f78005695709f8a9b48ec2598301d7d
34lsivs.exe172032 bytesMD5: 3d1987195b0ede8d523e71a53db059bd
35cftmon.exe73426 bytesMD5: 093d535d1f45f1ee9491c84da0d1ffc5
36winlo.exe1220215 bytes
37xydzyh.exe45056 bytes
38cluhtj.exe36352 bytesMD5: c5d1bd0c682106929f3fb2efbebc7f48
39%SystemRoot%\System32\phc?????????
40KBDURsr.dll62976 bytesMD5: e3beace9fb53c4ea2a2a5517d76b5b38
41realsvc.exe143537 bytes
42IviUdf.sys126592 bytesMD5: 492fe21332922b6b19defd0c17c70cee
43pjdeya.exe597504 bytesMD5: 5d4743a302e76421c449e8cfc2d8be2f
44bupuyafo.dll89088 bytes
45wincsycc.exe11264 bytesMD5: 591346cdb904691f47c51e17aca121c3
46kulo.exe118850 bytesMD5: 8a37ecc0344edbdcff843f01e4db160a
47zelovumi.dll49152 bytes
48svhoster.exe202240 bytesMD5: 70b823b8f8cfc015679550a156154d1b
49MetDDE.exe69632 bytesMD5: a2d46a88740d09934f3cccbddcc85aff
50scvhost32.exe151040 bytesMD5: efc76d879e8b0da559ef11027b7b1dbc
51~tmpd.exe93184 bytesMD5: 0fe696aff9bec0b63d9b77e3d9413441
52GetModule25.exe367104 bytesMD5: 7f98bb1ca92afce707d1e2913151ee86
53rtenazot.dll102400 bytesMD5: c3a7b6e05ff63c80f0e7c5fbf083b83a
54relereni.dll87552 bytes
55sgpron.dll62464 bytesMD5: 261b36cee988614c50f1d17100409f3d
56%UserProfile%\pphc?????????
57zemupalu.dll89600 bytes
58svx.exe179200 bytesMD5: 12ec58aab6d5638efcf3c4302517e682
59mjc.exe145408 bytesMD5: d7a749f9545c4b195ba68de5e07a2d1d
60kozeyizu.dll89088 bytes
61JavaUpdate.exe1657344 bytesMD5: 0f62157f848205ade52648c9379ae648
62%ProgramFiles%
63svc.exe179200 bytesMD5: fdde49b3668c5ac1704a99d9567f0888
64tbcdyhdzjpa.exe159744 bytesMD5: 8cae570780c3fac5590ba6bbea2ff6ef
65irxoe.exe116736 bytesMD5: 4f883bd12740c865a1765183767f979a
66ree1.exe646656 bytes
67poqii.exe147445 bytesMD5: 9372599a17d10580496c99fb50c62fdf
68dd.dll47310 bytesMD5: adc1e2a574f5b85c126c1749995e07a7
69uyefesujoxumu.dll182784 bytesMD5: f42cc970e73eaee3d6419c9be9ced491
70d.tmp374272 bytesMD5: e57b9492a4393e2bbdc43474184e9690
71kafunepi.dll80384 bytes
72qxepvqt.exe83456 bytesMD5: f7933fee69a07fa4ad2acf2112dd15c9
73r3gk0iax.exe62976 bytesMD5: 5858a0a3f4a187eeaa52c6c3dc0fde5c
74pm_proc2.exe100344 bytesMD5: 6396c3e35aafe388c032fd96a51c8f8a
75liser.dll24576 bytesMD5: 4af751f112ab905e7997bd65919891c1
76oyuwopoze.dll183296 bytesMD5: d49dfd4cf9dd4128c42423d2809f24dd
77iwaludeje.dll253952 bytesMD5: 4198fa1e672c5e150b725a46c737ee9f
78ixervhy.exe561152 bytesMD5: efc6c7208bb3245325c1a2f87ad1cfdb
79services.exe43520 bytesMD5: 87eb7388bbca55d29f8eaacb58180074
80hgcheck.exe89772 bytesMD5: 5f0ed8815f6cc8e8e533e1c747ed6b76
81SUE_PD.sys19840 bytesMD5: c0137b5947ae3d3fc1c17ba6fdfb3dad
82torbjne.exe128512 bytesMD5: c1cf83cac41392b5dec8f45747234fef
83%SystemRoot%\System32\thc?????????
84icaqx.exe124414 bytesMD5: 36547fb1efeb3d949032ab5bf8040c76
85sesanujo.dll70144 bytes
86yiklrfqsko.dll177664 bytesMD5: c4ff05912deaf57d0d83d11707d0c3e1
87pinnew[1].exe28672 bytesMD5: 79c8911a9124871b14becf56547b479a
88penipure.dll50688 bytes
89ehczrw312.exe1150976 bytes
90bovekafu.dll89600 bytes
91~tmpa.exe93696 bytesMD5: 062d756070c4aa99845c08d0c1c27bb1
92lewiyidi.dll49664 bytes
93eruzurow.dll180224 bytesMD5: 63178a01d821357152f686e70909bf3e
94B2e61bdMX2oiZ.exe378368 bytesMD5: e1629287ca4632f28057ff69187dcc4d
95sjg9s8guigjs.dll15000 bytesMD5: be64c8d27e584847f53a05c97a50876a
96runsql.exe202752 bytesMD5: ba702d98ac626c79b7a3b012ec4a0f03
97207163515.exe892416 bytesMD5: 695a8155cf64fa91f33241cb825a78c4
98topapope.dll80384 bytes
99%UserProfile%\Application Data\blphc?????????
100MySelf.exe571392 bytesMD5: 6e01f914fa6edf1df717b293d2265d68
101nvcoi.exe57344 bytesMD5: ef06b65121d338d8f6063b1a3a640cac
102drvcd.dll14886 bytesMD5: d741347e64f47150d973401bc6c8c08e
103wuauclt.exe84480 bytesMD5: dbd8079e1fd194a32d24dd95c3cdb490
104ccodr.exe18944 bytesMD5: 459c57f0bbbb10a74c7e40c98d78d495
105mail.exe13312 bytesMD5: b69ab9adecb74281b2112f31ed02b210
106%SystemRoot%\System32\blphc?????????
107pwakdnwqmdesytpg.dll171520 bytesMD5: acd0509401759d6806d61f61b7879787
108oqarib.dll41984 bytesMD5: ef89d54c3f78e803f9816b7c5953244f
109xSiyUgc.exe83968 bytesMD5: cccf02e55cf8a7795e87328fb6fe5d01
110debodoro.dll71168 bytes
111%SystemRoot%\System32\lphc?????????
112GetModule26.exe367616 bytesMD5: 9ca11f3c9d0c1ef635eacf8c2a034c12
113cbsj0jry.exe40962 bytesMD5: 12e5d4abee0e6385c46f964d7f8cf469
114DNTUS26.EXE73728 bytesMD5: 6c8e94c4bdb0fb718c7f31d8f0f6a48f
11514578.exe48128 bytesMD5: 1918d01a239cf69b4e339bcdb5deb383
116userinig.exe128016 bytesMD5: 0851e65e336c6a94796296452362ff2c
117scerpt.dll7168 bytesMD5: 9993b724e7cfaf7d879d1cab16b25da5
118clcl16.exe399360 bytesMD5: 7245d85b7d5b060d3a1cf0153ebbdd83
119trial-reset.exe178780 bytesMD5: 64325992b448dc3f957bdfee25abed69
120servises.exe24064 bytesMD5: 27944fc648cccd66084d05a21cf410bf
121get_wabs[1].exe326656 bytesMD5: d13c6e0472f1122937145e627a3f5207
122gabpath.exe598016 bytesMD5: 9c63e4529c96f277131f4c78b7bd0df8
123ufdsvc.exe69632 bytesMD5: 99184adc5b7fab997146971f20afff18
124uqogumamumuse.dll183808 bytesMD5: f9dbaec1d7f298488edd7340029f808d
125testabd.dll24576 bytesMD5: 3d6e12904b999509981750f4e42dc636
126kbdnet.dll30720 bytes
127%UserProfile%\Application Data\phc?????????
128userinic.exe128029 bytesMD5: 037bcdae3f1e79a4416193256fcea98e
129sihosido.dll108032 bytes
130ytaeuj.exe75776 bytesMD5: 639c64c1f97175cfa775d6a6746060a9
131DisplaySwitch.exe118272 bytesMD5: dde7ef6358e594956b13fc291d92e52a
132%ProgramFiles%\pphc?????????
133alg.exe34264 bytesMD5: 3336dc9e791ce29e50da64edda657874
134unapatax.dll182272 bytesMD5: 13c74cdba40b44b226697a503a1efe5f
135powamahe.dll109056 bytes
136vosevodi.dll89088 bytes
137livukafa.dll49664 bytes
138iksuy.exe140151 bytesMD5: cfc995ef0b0728896b5120c5adf214e0
139__c0091c40.dat30208 bytesMD5: 3aef5fad0ea7df747d87c8b68d8dcc18
140FreeApp.exe382976 bytesMD5: f9e3c04234bdb02eec91215f0f5bda14
141hepigalo.exe
142crypts.dll33280 bytesMD5: 0b4f0240107e1d529db3e35c9d638131
143Mjcore.dll112128 bytesMD5: 78e42e862394b018b9db226fd9850437
144Twain.exe61440 bytesMD5: 173cfb5c220013c4117ac25f40e71610
145freereg.exe276992 bytesMD5: 23117816d27d971407e62b5843e1f053
146GetModule36.exe367616 bytesMD5: 78ed10ac464d64fd61f01ec25db66713
147sysftp[1].exe
148sysrc32.exe12288 bytes
149ptidle.exe56832 bytes
150nuviyapi.dll49152 bytes
151csrss5.dll60416 bytesMD5: f9b7362c94497e0536b08fac8dd441a7
152ijusuyanami.dll266240 bytesMD5: 39c5f01af18aa97ace2b61ff4040d4e6
153digifast.exe225792 bytesMD5: 6ab29263ea43b66d2746fd7997b0f05d
154%UserProfile%\whc?????????
155Lxh.exe169472 bytesMD5: 9f4ab3be9eaba698dc0e0f7c73a95558
156sysftp[1].exe,820233103.exe,809353461.exe,sysftpd[1].exe34816 bytesMD5: 30130f64b90770105d20bbb46f1596c0
157%UserProfile%\Application Data\whc?????????
158nupotuku.dll48640 bytes
1599f.tmp373760 bytesMD5: 753058870a5c60659f629f1be9758ab5
160fechme.exe32768 bytes
161%SystemRoot%\System32\whc?????????
162papororo.dll88576 bytes
163~tmpv.exe86528 bytesMD5: 5268d175825fe56d5ad6144d5af5eeb6
1648[1].exe,_ad9.exe551017 bytesMD5: 0db04f38181bc16312afe001f7617f7e
165GetModule31.exe367616 bytesMD5: 74ee0a87bfc4c7be1cd822eab1a7fed2
166d3dx9_2832.dll135168 bytesMD5: 746bdd7d01eff41ea203a959e22bcfcb
167fozusayo.dll49152 bytes
1688.exe233601 bytesMD5: a1e10d1993eaf6bf11ce023ddb11c2d2
169uqiwaceh.dll187392 bytesMD5: d7c17417a83ab2c658cb5c025f8f2500
1701793357.exe449024 bytesMD5: 332539c1ac6a5257a368dd9b22e4868e
171%UserProfile%\phc?????????
172GetModule24.exe367104 bytesMD5: 6290091bba29a0424fa5ff050b1eb77f
173SerialsWorld.exe1075712 bytes
174hesudobu.dll104960 bytes
175HPIEAddOn.dll221184 bytesMD5: 2c96526419e5a0054dc3481ec01489f2
176csrss.exe26112 bytesMD5: 815bb063d77a1137e25f78d14738c763
1772d6smh6a.exe77824 bytesMD5: 0c6d458e643afe6d9cb8821f3e8e5233
178sekisahi.dll48128 bytes
179teste2_p[1].exe
180sogidona.dll89088 bytes
181weluyiki.dll107520 bytes
182fenofaki.dll87040 bytes
183NewSecpol[1].exe, secpol.exe17408 bytesMD5: 4ec0a9461311afc3e472d24e0bff1f40
184aim remote.exe683520 bytes
185zyex.exe132608 bytesMD5: 1879ac641af2e71f26905cb048a07857
186winsys32_061230.dll86016 bytesMD5: a8d196ffe40607bde5e9b26719b790e2
187TfoQAsn4.exe114690 bytesMD5: 5c519c4d86010393cee4dd21eb26cf41
188srenum.sys36480 bytes
189ccsx[1].exe,Trojan.Generic116736 bytesMD5: 3b4bc9e9dedd2b860d604a3f83186729
190dijipire.dll70144 bytes
191a.exe74752 bytesMD5: 82c72af61d70022b53f6d7a8b198f1f2
19211002[1].exe15872 bytesMD5: 0404f5f07561ff96490101c945f1d663
193sumonibe.dll49152 bytes
194jelayube.dll72861 bytes
195spools.exe41321 bytesMD5: 97645d946a25b774231cc30a1669a17a
196bpvol.dll10752 bytesMD5: cb85419e8cf78e9a33297efd3f87a73b
197%UserProfile%\Application Data
198wisegava.dll50688 bytes
19939942.exe10752 bytesMD5: 96c798d1b63868ec666b3b8821e8deae
200SYS32DLL.exe13824 bytesMD5: feb9fcb58b7537c47a0cfc1c00702b50
201GetModule23.exe364032 bytesMD5: 9fad18271a6576613a4f6f573e58dbe8
202default[1].exe2048 bytesMD5: 8e0f2f3ecb2bcc8a3886fb3d6776ba0f
203oderobifamaves.dll181248 bytesMD5: bcb38a3af170849ed800813980c098c5
204taskmon.exe38912 bytesMD5: 7b3c9d8e4deba2027fbbf00a9b4f2fa8
205svcnost.exe77824 bytesMD5: 5cfba96ea9b51ad953809c4ec2a944bb
206winlogin.exe856635 bytesMD5: 68ae154089846d5866a3961b62780f32
207nobajanu.dll81408 bytes
208%UserProfile%\bpph??????????
209wlcstd32.dll10240 bytesMD5: 32f081876e0a9a49cadc132c80827470
210sysmgr.exe46080 bytesMD5: 3f649d096d1d87a16eeea171d86d3c0e
211evizavohiyesupa.dll186880 bytesMD5: 93e22d9b2653be354a9214a8d1915d47
212nl4.exe668160 bytes
213iqugumamu.dll183296 bytesMD5: 3a18d024f36469eed2cc3ef1e6648725
214bdsl2.dll86016 bytes
215mejiyolo.dll88064 bytes
216iovtvnfa.exe15360 bytesMD5: 9d37f1cb24a9825ec6afd10d097c33b9
217avto1[1].exe
218naomf.exe1253448 bytesMD5: 910cd709449eeafe5c20b76bba8b1aae
219teste3_p[1].exe
220kanyd.exe334336 bytesMD5: 01d2824fbd283ee17eeb4a8a330c37e5
221stuvwxy.exe
222kekasika.dll49664 bytes
223wintipgrd.exe1419776 bytesMD5: 584e02bc0b71cea43957160d28318b6e
224obaluqizevax.dll182784 bytesMD5: e18c0753f6729408f93832496a7085be
225emihotepopeg.dll187392 bytesMD5: 0df79c59f0e032e5bc995786d5815461
226windmh32.dll12167 bytesMD5: 658af36153b0121bf252bb9dc87e9088
227UnLoad.exe37888 bytesMD5: 437f7b6ff7982015788b28d66f49ba2a
228nahatona.dll106496 bytes
229%ProgramFiles%\rhc?????????
230wininet.exe,1[2].exe94208 bytesMD5: b0cc27a138575533af8acb762e155ea3
2311[2].exe20502 bytesMD5: 6a777cd9afb4887eddaca54aca458e64
232XSBMON.EXE192512 bytesMD5: bb541ce011fc9f24ac7c5c11ccdb1420
233dxva2C.dll62464 bytesMD5: 41cb45cccc9897274d77c847ba946b6d
234tlahidonokecikot.dll40448 bytesMD5: 5db1afcda473b31f71f9c8a0ba21f200
235d.exe87552 bytesMD5: 0d7cbf822cca7a05a1b505d46aa39238
236crss.exe69582 bytesMD5: ba673a3c6be69f0703a2e8165aeefbb3
237accessv.exe
238ufimixefenoy.dll257536 bytesMD5: b9407a6531a93d27f4a970f3b849ee9e
239sv.exe202240 bytesMD5: 3e6a990438c37ffdaf8bbedffd6daf6e
240mutelupo.dll69632 bytes
241ClipHelp3xx.dll86016 bytesMD5: 0a102507a28680434a8231199c7ac913
2428[1].exe
243GetPack22.exe350208 bytesMD5: c9252d5f573c2bd4829d0d5170865011
244zumie.dll3584 bytesMD5: e597db498fd34ba71442d6fbc3f4b59e
245irulusasiyuwam.dll178176 bytesMD5: 066db90be6f45540e15d1d928ab7f21d
246cogad.exe56832 bytesMD5: 36ad7a012dd20f01a379a60f11b350e3
247xoipk.exe142848 bytesMD5: 97c65e1c3df2ea29ceb58b3390bd0b37
248soundmix.exe16896 bytesMD5: cbb4589423773e45c296071c97c729b0
249%ProgramFiles%\643f??????????
250oqifubeqixi.dll188416 bytesMD5: 611049af410f7421a4aa95dfaff83a06
251promo.exe31232 bytesMD5: 1ec93eaa7ba8fef99e00d26185b7f520
252userload.exe45056 bytesMD5: d1df8099720d352b77d80033e72feab1
253winmyy32.dll39424 bytes
254baracudanew[1].exe
255mokyquij.exe285184 bytesMD5: cef89d9e97afa7ac44326de704333300
256tcxYF.exe176362 bytesMD5: bb6b2e25a5506ea2a92ad583a5cf3313
257ezcron.dll36864 bytesMD5: 6d9d68a880e4d7767813cc78a0c99c52
258xsl27629.dll176128 bytesMD5: 26006c6929925e2417bdbb3177f7a982
259load[1].exe16896 bytesMD5: d8352707bd91be935756bee2a91dadd9
260addpn.exe11801 bytesMD5: c3a081da7d4bd8f65eb496fc8e456d4e
261wahayaga.dll49664 bytes
262%UserProfile%\Application Data\thc?????????
263svchost_32.exe27648 bytesMD5: d4cc2cc6029ac62d70530439558bf190
264bopufeto.dll50176 bytes
265penis.exe90112 bytes
266nageduge.dll50688 bytes
267baw7.tmp160164 bytesMD5: 64a34e22c2872fb56f7c29f3c11d8990
268%UserProfile%\rhc?????????
269pep.exe41763 bytesMD5: 6983debe768648ed995b0902e4880874
270ajas.exe196096 bytesMD5: 39ed0421c5e8bd511bc49927c81d59c6
271Dll.dll13824 bytesMD5: 4a110a7e3889a48a66a4b5453c382ef2
272uqojanecatevih.dll182784 bytesMD5: 8a9effc288c73c50e8ccbd76f29f4f8f
273pidle.exe56832 bytesMD5: 933ffb175075373dd176d4fb290958f9
274~tmpi.exe87040 bytesMD5: 9637325d7b6dabfb5380fa863cc76ca4
275svzip.exe203264 bytesMD5: e18a5ee6efab3f4e64ae32b1200e4c60
276svchost.exe109228 bytesMD5: 20581fabf5d4927452bc8fe55097d234
277hnetcfg32.dll135168 bytesMD5: c444d8fbbc2644b73d506a91cd88625f
278vupesasu.dll64512 bytesMD5: b5b5cc712268472c9e92b81f54a385c4
279cpuserv.dll5120 bytesMD5: 117d1ac1072af5ac25abc49e10c5a956
280ofriasc.dll79360 bytesMD5: 158568bd1c1926d357b66f18397c4c11
281SrvAlrt.dll14378 bytesMD5: 1c5480e1156f515e8790229e182c19c3
282820233103.exe
283avto2[1].exe
284Counter.exe53248 bytesMD5: 4cb73ca203f42bd1853a43d59521f96b
285sysftpd[1].exe
286sysaiei.exe11264 bytesMD5: f26e196913390dbb9acb01c6d96af584
2874.tmp.exe88068 bytesMD5: da20840fc0f6048937a7fcafdb795fe0
288idxuctiadbjqbvlt.dll171520 bytesMD5: 45e408cb6c0bddf791dfe7f5a8f7748a
289xmvi.dll33792 bytesMD5: 073742add793c533e886c56eca19c767
290lgjklyrm.exe90112 bytesMD5: c548e431ca7bb5119692a362525bcf6e
291PowerJa.ask70777 bytes
292potibubi.dll50176 bytes
293asade.exe133120 bytesMD5: c5ed7ab3a7f1b367bc77480907a71274
294uclyv.exe100352 bytesMD5: 904c33d27f3b145fbb9506955049d90b
295SYSDLL.exe17408 bytesMD5: 4bf2a453fce39e60262bcb9859f7bda9
296miduyevu.dll89600 bytes
297togojaze.dll50176 bytes
298%ProgramFiles%\blphc?????????
299podmena.sys9472 bytesMD5: be860349aabf8d6b4c724da73843125f
300Ffodoa.exe163840 bytesMD5: a5690ed0f4f2a3184fd469d5be888072
301aq[1].exe207726 bytesMD5: fea22e004d5ab6db98220284de477403
302mafuyiha.dll106496 bytes
303ixelinet.dll182272 bytesMD5: a1b569c180afb2dd878a45bba9c078d4
304__c00F296D.dat25088 bytesMD5: 5117367eb536360dd103f69b68695433
305delidubu.dll89600 bytes
306junefare.dll50688 bytes
307sujibiwi.dll50176 bytes
308bufezeza.dll80384 bytes
309CbEvtSvc.exe99840 bytesMD5: 322203725a65de0b24976c379563b9b2
310alivevukov.dll179712 bytesMD5: 64b417db53c23d036d2843b44c22bb7c
311robejaku.dll88064 bytes
312flsysio.exe371200 bytesMD5: 386e79decf1debf931692da686d2941f
313pivumedo.dll190976 bytes
314kurtapt24@yahoo.com9458 bytesMD5: 2e124646bd0fbe6838796bd181df0eef
315%SystemRoot%\System32
316Packer[1].dll10240 bytesMD5: 7ff33af50bf5812ff53ee43d02cbc0a8
317mukejowe.dll89600 bytes
318tipifipo.dll109056 bytes
319dll32.exe14848 bytesMD5: 44ffc0527bbcf06fe9bc5b4cc343b88a
320Facegame.exe56320 bytesMD5: 36cb5eeaad4045bf7b7faa9e00746c65
321MDM.EXE22016 bytesMD5: 5fab5eb60cadff79ba706d792028e08b
322logomafe.dll88576 bytes
323vybi.exe115200 bytesMD5: dbdf452705cb7e45fee3063e1e12f99b
324hnwqrys.exe368896 bytesMD5: 3603e534db5178036425c5e6bcca8ee4
325uhoyureg.dll182272 bytesMD5: e27f0bd6b5d9af43fd35abaa37123f54
326809353461.exe34816 bytesMD5: 30130f64b90770105d20bbb46f1596c0
327ugavisidu.dll180224 bytesMD5: 6aa2d902c4637662f7dac98aabf95544
328hehoyoze.dll50688 bytes
329cajiw.exe557056 bytesMD5: 6222d185dbfd393c9208e3e19cd3eee1
330msncache.dll44544 bytesMD5: 140d34e4e1c4d844851e68c2a789db58
331vopereso.dll49152 bytes
332reqi.exe116224 bytesMD5: fb482abc534c45584bfab8e7c621b2e6
333eventlog32.dll135168 bytesMD5: de7c6c753ba2b54c3080fa1d7189b294
334~tmpc.exe87040 bytesMD5: 56cfd76107dc7af50826e43142279885
335MNl2fg.dll79872 bytesMD5: b9b3a4f131bb995aa1f8426c35137389
3369.tmp81920 bytesMD5: cd1f1696515aaf21bf7ce38670aca395
337%ProgramFiles%\thc?????????
338dmutil32.dll198656 bytes
339hoyuvuki.dll50176 bytes
340asycfil.dll123904 bytes
3411mes8hd6.exe16896 bytesMD5: 7cc6e68957d40710c033f8c2a4fa99f3
342kusewovi.dll69120 bytes
343fahokipa.dll86528 bytes
344mcfg.exe15360 bytesMD5: 3026b2ce720126c88cb8831e002a7f42
345msword98.exe26935 bytesMD5: 7210b53888e6e1a6984e17d72bb822d7
346nl3.exe1891840 bytes
347bawawaza.dll78848 bytes
348q1[1].exe177664 bytesMD5: e55d9e2bf2b9af6415c7f52e6a08664b
349WinPatrol.exe172032 bytesMD5: c56a3f97dfc755e9364edae0c12d24c2
3502.tmp86016 bytesMD5: bf2631140fea33acab46bb6da052b066
351palowaru.dll48640 bytes
352svw.exe179200 bytesMD5: a29364f32c3846181cadde9240ca4876
353nl5.exe1464320 bytes
354hovebipu.dll48640 bytes
355baka6.exe144384 bytesMD5: c95ecdad9b7dabf9eb81b4cf50a1aa59
356MonCheck.dll18698 bytesMD5: 1967a569277b94265f7283fdb0eff402
357AvpKbd.dll13866 bytesMD5: 3d2872ef05e869a68c99c37700377f43
358viwc.exe334422 bytesMD5: 7eb0488ae9323e01afa13c9f46b4a012
359bdaplgini.dll84992 bytesMD5: deacbaa2ddf8597cdf1985e2950034d6
360comparevers.exe455575 bytesMD5: 832ffbc37551be1f9b14dd44a462d3a8
361iSecurity.cpl6144 bytesMD5: f23cf8169780e82b462596c07446bef7
362jnbvog.exe75264 bytesMD5: 0e3df308253dd58440de1a85800482d6
363zesanido.dll50176 bytes
364tiobdfkehemjx.dll24064 bytesMD5: 96d273d795688816a89f41178c6485ff
365pascmgp.exe438272 bytesMD5: e18777a913aa00cdf543c89bd3e271cb
366ip_fw.sys28800 bytesMD5: 7894251573f64b42eddb730ed3165686
367035B777F.exe, BEDC10ED.exe67584 bytesMD5: 8c0bd426432c6d444ec261ab59282e66
368WMFMRNV.EXE108032 bytesMD5: 0f7851342bd02272fe349adc730ea9ee
369luyehije.dll87552 bytes
370tzqaplu13.exe10241 bytesMD5: 7d5e5e4095d368730e4bb31eda13e1d9
37110901[1].exe15872 bytesMD5: 0ec3f40f13511b2029893b648d8647bf
372juriyuyi.dll50688 bytes
373zarebeba.dll50688 bytes
374aboheraj.dll187904 bytesMD5: f9412fbd4707eca38cb794f439af6294
375iexplorer.exe210432 bytesMD5: a4f8a24a7aa1bd24c8475e12301b8582
376onifr.exe147454 bytesMD5: 055c5d04c1cb3c4945637d38c7ba9933
3771[1].exe72192 bytesMD5: ce64a953dc4b9ff7f26b525f9176d7e2
378teste4_p[1].exe
379ree2.exe748032 bytes
380winsystem.exe237568 bytesMD5: ddbdcb4c3299bc9a3fe404ca4ac80a1c
381dodohovo.dll107520 bytes
382SystemAutorun.exe377344 bytesMD5: a1451e7535d918f60a31409acb76186a
383jhxm32.dll29184 bytesMD5: 46bd6c40a886049b723777d3aac5cd2a
384install[1].exe111616 bytesMD5: 58b54f430f9f09313e25f4cfe1e689be
385%UserProfile%\Application Data\rhc?????????
386caese.exe116736 bytesMD5: a3e5d6733da460ebf9d0c4332bb95f37
387_ad9.exe225280 bytesMD5: 457d47dbb13140d640e394503817fdb5
388ovamudutibofe.dll195584 bytesMD5: 636d4967bd46a237f681c8339559688c
389vmitla1.exe26112 bytesMD5: ffca349e6cb0be4b045f28446a7c23b1
390iecompat32.dll390144 bytesMD5: 02823c5c220298ec985375d9ca0d0404
391uheludeje.dll173056 bytesMD5: b34cdd55229d93f43cebd8bac52597e6
392bndmss.exe31744 bytesMD5: 523f3cf252a6e3ee6de7dc84bce8ab96
393%SystemRoot%\System32\pphc?????????
394zipavagi.dll50688 bytes
395avto[1].exe
396mshpc.dll49664 bytesMD5: c894f59c864b86176fcae55ac22b0c5b
397pujosove.dll48640 bytes
398dx8vb32.dll139264 bytes
399AUTOPLAY.EXE36864 bytesMD5: cba42f5e4fefdc19295def916586bbda
400TubePlayer.ver.6.exe40964 bytesMD5: 20382cd32ca75a220d98f6ee0321a2a4
401%UserProfile%\blphc?????????
402firefox.exe79872 bytesMD5: ecd71f1a4d2953beeb086109faf252e7
40354.tmp.exe86020 bytesMD5: 75936b242a164487ab01b0961d5c690d
404rigiwoti.dll81920 bytes
405%ProgramFiles%\phc?????????
406StartupMgr.exe475136 bytesMD5: d3479142c846e481ddfd7abf95d3d0b8
407barijatu.dll50176 bytes
408akuzivazoveraxif.dll185344 bytesMD5: 8ccb115f9ae7f00b03e5fe57313915c9
409hekeyapi.dll89088 bytes
410fejolave.dll50688 bytes
411sysload32vh.dll4096 bytesMD5: 17722a6919386877f4b8ff9c2d2afc51
412_A00F1A0D83.exe35328 bytesMD5: 61fb92645c70143002fec8760422cba4
413viyiyini.dll88064 bytes
414pp2.exe11776 bytesMD5: ebe785b88411e41a68f2ce0affa4289d
415WgaLogon.dll20480 bytesMD5: 17a89cc0648612d4452f0c4b3f180254
416afitegef.dll181248 bytesMD5: 561281ee46cf4df81d610382a80ec6aa
417ibitolet.dll189952 bytesMD5: 233dc9f067988cb5a89f47f62276fc3f
418jahasike.dll48128 bytes
419bGb.exe176362 bytesMD5: e1161977ee96bf4501d433fcc9220465
420vabofoka.dll48128 bytes
421atl7.dll122368 bytes
422ctfmon.exe291908 bytesMD5: d3aa69fe0e7fd72099d10506e926817d
423%TEMP%
424etomemap.dll179200 bytesMD5: 637e74ea2f3f3b948ca58a3f9fa9da53
425icocalolacihir.dll182272 bytesMD5: a0f9b695b2711007dc5201a98de184f4
426dizubure.dll66560 bytes
427itufijorece.dll207360 bytesMD5: 3334de88ae7ce7034ff0b075ec923599
428yamanewa.dll80384 bytes
429%SystemRoot%\System32\bpph??????????
430%ProgramFiles%\lphc?????????
4315448b7f2.exe27648 bytesMD5: cee3744e4c5f165b8acd295ba5c07830
432hcasfg.exe172032 bytesMD5: 57f1a80fd17e42806762fbad45628c33
433yovalono.dll49664 bytes
434tmp100031.exe12288 bytesMD5: 828a383370e909eaa6986cad3ebf1499
435UnknownSetup.dll18510 bytesMD5: 6dbe6c126db24660fbb74f8417525583
436ppaeuah.exe74953 bytesMD5: 0848e296775c6da135ada6f6243aa510
437zorihali.dll109281 bytes
438oviyukebicitaq.dll189952 bytesMD5: 26e0901133821a1a844fdf9f376a2220
439%UserProfile%\lphc?????????
440asvdxl.dll79872 bytesMD5: bc2780a2a6d2c21b76c8716975c10813
441NOD-UE.exe216104 bytesMD5: b3b1d08902abda9f04365b2348aaba2f
442trialiis.dll54784 bytesMD5: b066be644121f06b6d507832b24844c9
443svcchosst.exe101376 bytes
444sonuleme.dll88064 bytes
445r4gA16WQ.dll29696 bytesMD5: 4ccb30f8ac3a3780babf4f069676d7d0
446liser.exe57344 bytesMD5: 205da52de1e856b51e381c20e3ab046e
447aaxiao.exe260393 bytesMD5: 233b86592d3c769e5044bf5dcd00032b
448mmmrhacw.dll47104 bytesMD5: 10a14f8c5892ae058b0a7ad690d7b8d1
449fsmgmt.dll50688 bytesMD5: a3caaec88a94e584736a280449b9ca60
450muyinepa.dll80896 bytes
451eloheseweriquyi.dll182272 bytesMD5: 351a14711242221e54e0a1920a82f4de
452%ProgramFiles%\bpph??????????
453kdpini.dll192528 bytes
454mrcmgr.exe94720 bytesMD5: ab50813160d10f25b9fd55d48f5b86f7
455ope2314.exe 401920 bytesMD5: 64e9e281d180395b1f60872930a8d19a
456hnjhepnj.exe, twain_32.exe15360 bytesMD5: 3d133ae332ea05823ddf0907c3a26348
457udihozazohec.dll197632 bytesMD5: 8e4bd6bf49fa29c52b564f0c3255cfed
458msnm.exe374805 bytesMD5: b2fab7d1d850fe2346ca94841b272af1
459winlogun.exe15000 bytesMD5: 689738a2a20480e6a8e22de5c93a3feb
46080353.exe10752 bytesMD5: 250b6f7b6f25d0c58788df556497680d
461setupapi.dll983552 bytesMD5: 7808313cbc634ee08346d5ddfef1cc5f
462cfrog.exe13312 bytesMD5: 6f2e7ae0d178b933f20942ca70ee69e1
463burolage.dll96768 bytesMD5: fd8affc7ff66481f02384e273ad71123
464%SystemRoot%\System32\rhc?????????
465spywaredetect[1].exe
466tipiyipo.dll89600 bytes
467q7[1].exe177664 bytesMD5: c6e5dc1b9db284bce329d1ffd3dbe9e6
468%UserProfile%\Application Data\pphc?????????
469yosineku.dll89600 bytes
470bdsyslink.dll86016 bytes
471dsound32.dll135168 bytesMD5: 9e15d65ee0e73133be27bd872ea4bd6c
472wisysvi.dll67072 bytesMD5: cd5ecd06b63492fbcb6509dc20442631
473fwtrtuqtssd.exe262144 bytesMD5: f3992fde36ff8e1ebb24d1e0f3cb95ea
474nkolxecj.dll33792 bytesMD5: 8409bd6382dde2378427802cb3ca85a6
475jimofiji.dll49152 bytes
476idolowun.dll180736 bytesMD5: 15689f041fb926413e423597a913f5e2
477teste1_p[1].exe
4780a5f00962.tmp64000 bytesMD5: a91d2d5d1d12e87be085066fa7184aa6
479yatodimi.dll70144 bytes
480w32main2.exe263680 bytesMD5: 68c2a77f3a68555dbebed5aad2438315
481uvojigulukacega.dll181760 bytesMD5: 8ba96641c0cf6ba391ad8b6081ba36e7
482rdolib.dll30720 bytes
483SayTimeMain.exe1429504 bytesMD5: 1e910179fa25bc952457dc3aa92c9a32
484svehost.exe73728 bytesMD5: 61c8339fc77ec99480f5f0b84c6a8e38
485dowikabu.dll87552 bytes
486ahuiz.exe
487idumowapupiy.dll183296 bytesMD5: 039e2ad7866d29aa5751b3810fd015fc
488nvvsvc.exe93184 bytesMD5: bd3f08311b90cf0a7b949f7474473719
489dlcccomm32.dll135168 bytesMD5: 51983fbcd7893938515ce021b00ac063
490vlc.exe233472 bytesMD5: 1100318c440c6126c8dd576fe2dcdd3d
4911370e162.exe29184 bytesMD5: c6d7eb3e377885825b9460a77774df3e
492putmuk3110[1].exe,1132935139.exe96256 bytesMD5: 8cb1a76eeed653d942edf146d54bac66
493balomane.dll80384 bytes
494sdasda.exe66560 bytes
495kusers.dll205840 bytes
496%UserProfile%\Application Data\643f??????????
497iyupodovujepope.dll194048 bytesMD5: 20df5aee46a31774c749f9945b711641
498doriyubi.dll49152 bytes
499pulobuha.dll109056 bytes
500nl6.exe1453056 bytes
501csrcs.exe20480 bytesMD5: fb52692745918a67cbd7e9cc26982627
502FixCamera.exe20480 bytesMD5: 6f9455f97d5d91fdeec0f344e70a2d0e
503mscheck2.exe79188 bytesMD5: 8d0ee696ba00f43ca5cc57b0224a8d38
504kylo.exe116736 bytesMD5: 9393917d6f87dadf94d2ccaead23f380
505digiwet.dll17920 bytes
506cdcw.exe274432 bytesMD5: 7ad7e338fdb7276dc788dca85b915052
507Owner.exe10309 bytesMD5: 9cf7d2ffcecb3715769e6426c5679679
508f4f.exe77824 bytesMD5: d89bb1499758709da3bdb15071c27b21
509nupanogo.dll107520 bytes
510uvumaxeqa.dll186368 bytesMD5: 1d2f7578eeee5cd17d39e57dd6de31b0
511pokumala.dll107520 bytes
512yowujeje.dll48640 bytes
513osidfjklsdw.exe288200 bytesMD5: 04955fd6dcf6304719c5b2c54f7d2c85
514systeminit.exe76800 bytesMD5: c435f3bf454091f652b37cc408dedcd8
515_adA.exe151556 bytesMD5: 7682909df756c886ee64428a21e98ddf
516kl.exe1311560 bytesMD5: de97fad9b678743b357d9237cfbdcc89
517vubabuku.dll48128 bytes
518msdriver.exe32256 bytesMD5: e080d45b226153c94350c1f9ab5a076f
519wirepots.exe8704 bytesMD5: 4c1fd02d449c708d7708deb17f9dc6c5
520kavumefe.dll81920 bytes
521jfkrgotvbl.dll295936 bytesMD5: d31d225923eac2fdfc8355223a1ce125
522dot3cfg32.dll119808 bytes
523ijucahalevet.dll181760 bytesMD5: a4687240401c1d4ef8e1bead595cbca3
524%UserProfile%\Application Data\bpph??????????
525molocha.exe276539 bytesMD5: bf3f45a8702980f9866c0bff7052bfa1
526q6[1].exe177664 bytesMD5: 39d0b73b6ddba211658b3b35cef180e7
527QoS.dll69632 bytesMD5: 239d3153ef14d3f56506e817fc2669a8
528JavaRuntime.00.exe581120 bytesMD5: 7b4951d68f89aa59002d9289e63d87b0
529pcpriv.exe397824 bytes
5308B8.tmp368128 bytesMD5: 14997a8ac270980608357d62964df41d
531mspsmon.exe37888 bytesMD5: de7ea2339f3217998e05c59c633ec078
532VKNT.EXE75776 bytesMD5: 9e8bbd55991166b3d0db6c6bdd8da409
533nsx23.dll1351680 bytes
534purdrh.exe89600 bytesMD5: 95c4ae530527d459c6ff2d533daa844b
535zofowoda.dll50688 bytes
536bbafgfbj.dll137728 bytesMD5: ca87f20354b8226cf55c05ecb024b781
537%UserProfile%\thc?????????
538tikatabi.dll80384 bytes
539zs880000[1].exe108032 bytes
540evejubet.dll194048 bytesMD5: 73b599d33ae2f39ef880ac2195ea6ce9
541kifupiza.dll50176 bytes
542explorer.exe3265079 bytesMD5: e2da1cea135d6f225a88e1928c7dc99e
543bok6835v.exe41474 bytesMD5: 8afc2e98a9fa1afad5eaa2b73a5e7f99
544fd.dll5632 bytesMD5: 40ba7ab2ba85d5fa7404ee99bbdd6f69
545MsndkHelper.exe232860 bytesMD5: 6ca5e0073c5b56e473628a5cecb1aac0
546%SystemRoot%\System32\643f??????????
547LSYSTI~1.DLL65536 bytesMD5: 0585d6a369726d96cf3bdc95767f1eab
548VCL.dll335064 bytesMD5: 85e369896d7049fa73dff2064a9df4db
549akihovojamaz.dll180224 bytesMD5: 859e7381425e73ec2d908216567448e4
550BootRom.dll18654 bytesMD5: 9eb71a7230a3b1337ff61f6a5e45aaa9
551%UserProfile%
55210411[1].exe60928 bytesMD5: 02923b10e87a32bf64fb1b871e5b2eb8
5531361163109.exe991232 bytesMD5: 9fcf0e8c39b00227ba76a1bdaee25480
554%ProgramFiles%\whc?????????
555262634_3872_1508_3588.19169.tmp15360 bytesMD5: 932963b837dd832eb546dd15b5fecca3
556lopibeki.dll70144 bytes
557E7Cx1XQ.exe82432 bytesMD5: 4eaa2a799120642860e9d82563ae7313
558q2[1].exe177664 bytesMD5: cded350dfea06d8f30a9d98623d6129c
559idojapimogudoray.dll185344 bytesMD5: 6b08c208052f9e5cc2190d6801ac1b9e
560odbn0.exe295424 bytes
561tijawani.dll50688 bytes
562~tmpt.exe95744 bytesMD5: 5f1fd4f36338c714c0d0f0394002ecc7
563SysteM.exe68096 bytesMD5: fb95c76a52291a4229355309cb825795
564updatenf.dll43520 bytesMD5: a2bf702237a404775083a1360112c6e5
565ld01.exe
566rexsvc32.exe1735854 bytesMD5: 5b0a5c74d78559d8a7367c9719cd40e5
567RqAds.exe135168 bytes
568dwm.exe318464 bytesMD5: b9ec59d036d43e1302083ef3e48b1311
569winlogon.exe505344 bytesMD5: 42d8303e00cd0545182bbd202900194b
570worsock.dll10752 bytesMD5: ac873605e4f76e95da6cab54836d2a1e
571wehebopa.dll50176 bytes
572PCFreeMon.exe409600 bytesMD5: 51b5f8a20f6126f559c543f3d7bd7d1d
573moomqojucfqbs.dll296448 bytesMD5: 32e67e7558d3e1918103918fb34a978a
574SHDOCVW.dll1482752 bytesMD5: 0bb75bbbee1240c2b49ed38c858a7a5f
575winhlp.exe104448 bytesMD5: 86305f32fcd8799fdebaea9591dc6ca8
576driver.sys9472 bytesMD5: 2e5cd019224e9db901bcbb3612402693
577uyuhapuhid.dll195072 bytesMD5: 5f6b1405d57dc8df91144601b605e3ae
578Warn Support.exe704512 bytes
579GetPack24.exe350720 bytesMD5: 33777bae0d5ee0bce992e0350017b3cc
580uzewerilupavid.dll186368 bytesMD5: fa537293c1587d408722591ed4020a20
581winrop32.dll18944 bytesMD5: 50936bf066e5d27ac13ce55ede05d2b9
582beipq.exe169472 bytesMD5: ac12fcef12aec513bd5e8e8fcf389e1f
583wujiwibe.dll88064 bytes
58467xv511g.exe42498 bytesMD5: 75af8aef0381fa32f2567a869beb47ee
585tuvUoPIc.dll29184 bytesMD5: 0edd521ec0e677f7b45a23b95f510251
586lol.exe180301 bytesMD5: e5c5d0f936b8cefe9fc41ea68906c278
587xipr.exe184848 bytes
588zezowawi.dll106496 bytes
589bisevona.dll78848 bytes
590lebenesa.dll78848 bytes
591kufefele.dll50688 bytes
592soxpeca.exe41472 bytesMD5: 580ecc4ef07e4d92f2528c2848fb3bbe
593kory.exe92672 bytesMD5: 0db0abdcf82af6f56402d11cca6ad0dd
594arpl.exe8192 bytesMD5: 6eecbe1e5d39c14533551bf4b20a54c6
595hukubuhu.dll69632 bytes
596oxuvewuc.dll24576 bytesMD5: f28e184dc0a166e685398b62de924cc6
597AcroIEHelpe022.dll216400 bytesMD5: 417958dc10a28999d539ca25fb35f884
598ktgmhs.exe61952 bytesMD5: 9a0daa34e46178974452863248054404
5998086983.exe455168 bytesMD5: 1d278267dfbe93494afd431c661824ce
600cmdial3.dll122368 bytes
601q3[1].exe177664 bytesMD5: 09dceebef459414871ca668d721d3198
6022252500.exe89088 bytesMD5: 2eeff90ab3df88dc9ae02d22fdfbb094
603new26[1].exe51712 bytesMD5: 60e1a6c8aef35630f48e1ddd39cd7de5
604zogonaha.dll108544 bytes
605lepopoka.dll50688 bytes
606yybc.exe176128 bytesMD5: 71ca0f7b1ed5b236c631540cd0b176b6
607LcodecPlus[1].v.1.exe8192 bytesMD5: a8298fc139035c7108a4d4b72450b74a
608vcnews.exe2784256 bytesMD5: c8009d121e537630ee9d97578c4249e8
609Tierlir.exe,TT[1].exe61742 bytesMD5: 914e102b29b912c77d9a2c657a0dc730
610lsass.exe237056 bytesMD5: 14fb62117d4deb631525a34a7344ea89
611tarowata.dll97280 bytesMD5: b3f9346c6fa39b323fa3e569e7f9b075
612TubePlayer[1].ver.6.exe49156 bytesMD5: cfd6c6cab652cf677ea03d131e6df858
613dijoromo.dll50176 bytes
614DesktopTool.exe167936 bytesMD5: c57a0bf6243c581ad367e6aecb17e165
615fezahoyu.dll81920 bytes
616%UserProfile%\Application Data\lphc?????????
617mivalivo.dll49664 bytes
618AdobeSoftVaallupjhn.exe507840 bytesMD5: 86c6ad598623186d95a83b4b86180ab4

Modificações do Registro:

Foram criadas as Chaves de Registro que se seguem:

  • BIND SUPPORT SEEK FIRST
  • Sys3.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad rwlfsdmk
  • Somefox
  • C:\WINDOWS\system32\kdswe.exe
  • \YUR130.exe
  • \YUR131.exe
  • SmartMon
  • 515.tmp
  • Sys2.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ PCFree
  • \Win14.exe
  • F5JMWNZTHI
  • cont_mxlivemedia
  • Software\Microsoft\Internet Explorer\Explorer Bars {C2EC2654-52F0-3E63-9017-D0FA8FA79271}
  • \YUR8.exe
  • Software\Microsoft\Internet Explorer\Explorer Bars {FCDEE81D-95A3-AE8A-D4FB-5A9FB8E32860}
  • software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad tfnslopk
  • cokx
  • \YURE.exe
  • Software\Microsoft\Windows\CurrentVersion kdksc.exe
  • \YUR1.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad fdxbameg
  • bone thunk axis copy
  • %windir%\system32\kdswe.exe
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ kell
  • SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run xqe6lJLnN1
  • Software\Microsoft\Internet Explorer\Explorer Bars {9CDB6E2A-B859-45BB-8F05-AF684301AB41}
  • \YURF.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ promo.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ SVCHOST
  • Software\Microsoft\Windows\CurrentVersion kdid
  • \VIE14.exe
  • RUNNING PROGRAM\tmp100031.exe
  • ptidle
  • software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad xokvrpwg
  • GetPack19
  • xydzyh
  • \VIE3.exe
  • HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser HelperObjects\{7BF9F344-72CF-344A-9D1B-3B7D25C37D34}
  • Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler {0ba3e00d-b660-46e6-a2db-2672ee82dc98}
  • SOFTWARE\Microsoft\Internet Explorer\Toolbar {8E21DC20-6E4E-42B3-9796-244EC9385CEF}
  • Microsoft\Windows NT\CurrentVersion\Winlogon\Notify cxqmyibm
  • \YUR9.exe
  • SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE gi985993737
  • Cognac
  • \YUR2.exe
  • \YURC.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {C14E6230-757D-4246-81CE-B34E2940C722}
  • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CbEvtSvc
  • \VIE2F.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {BB4C402F-882A-4526-8C08-51278EA437C1}
  • {E4785213-3EFE-4c26-A9B4-332440E31F6F}
  • \YUR2C.exe
  • Sys4.exe
  • Long Internet Team Stupid
  • \VIE5.exe
  • \VIE2.exe
  • advap32
  • \YUR12E.exe
  • Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run andfor
  • Online Alert Manager
  • {4D4DB474-8435-4FA1-8D91-512C0CE1E931}
  • Microsoft\Windows NT\CurrentVersion\Winlogon\Notify nnnkiGvV
  • %windir%\System32\kdwls.exe
  • ROAD ITCH AMOK PING
  • \YUR2A.exe
  • \YURD.exe
  • Captcha5
  • \YUR12.exe
  • lljyn_df
  • memo site kind that
  • \YUR2D.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ Vietkey
  • hlpproc
  • \YUR15.exe
  • \YUR18.exe
  • \YUR6.exe
  • Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run servises
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ molocha
  • \YURA.exe
  • C:\WINDOWS\System32\kdmsh.exe
  • \YUR2B.exe
  • \YUR20.exe
  • Microsoft\Windows NT\CurrentVersion\Winlogon\Notify __c0040F39
  • Software\Microsoft\Internet Explorer\Explorer Bars {EB9539EB-598E-BCA7-3D4A-82F4F26E9738}
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINDOWS\APPINIT_DLLS\ AppInit_DLLs
  • vmdetdhc.exe
  • Microsoft\Windows NT\CurrentVersion\Winlogon\Notify ssqPhEVM
  • \YUR13.exe
  • \YUR3.exe
  • \YUR10.exe
  • \YUR14.exe
  • SOFTWARE\Microsoft\Internet Explorer\Toolbar {3B4EFB6A-06FD-40AC-B072-1FB7D1D456E8}
  • \YUR4.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ ComSpec Research Srv
  • FixCamera
  • \Win10.exe
  • \Win11.exe
  • \YUR11.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad xrdwbfgn
  • Facegame
  • {78B578D7-BCE1-4d83-9CD4-195BC34D8CB3}
  • {3BCF8450-D134-427E-AE9C-2A42CE8215CC}
  • GetPack21
  • SOFTWARE\Microsoft\Internet Explorer\Toolbar {57776700-7BC8-47AC-B43E-99C24B015570}
  • \YUR30.exe
  • HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN servises
  • Software\Microsoft\Windows\CurrentVersion kdmsh.exe
  • penis.exe
  • {0389E53C-62CF-4CD6-9F4E-955A740E4385}
  • SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks {D3CCFAF7-DF03-4E73-95EC-E5E139CC2BF2}
  • %windir%\System32\kdmsh.exe
  • \YUR12F.exe
  • {09E23F2C-ED1E-43FC-9AA1-1332162A35AE}
  • \YURB.exe
  • Sys1.exe
  • SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad fsrpknov
  • Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler {B2BA40A2-74F0-42BD-F434-12345A2C8953}
  • \Win13.exe
  • SerialsWorld
  • \YUR5.exe
  • {157627A6-2A10-4aa1-B97F-90B8DC6F24AC}
  • \Win12.exe
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\USERINIT\ userinit
  • HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ FixCamera
  • C:\WINDOWS\System32\kdwls.exe

Responder

O seu endereço de email não sera publicado.

Nome
Site da Rede
Comentário

Introduza os números na caixa à direita *