Перейти к содержанию
Правила раздела

[РЕШЕНО] касперский нашел HEUR:HackTool.Win32.Convagent.gen в файле svchos.exe

Vadya

От Vadya
в Помощь в удалении вирусов

 Share

Рекомендуемые сообщения

Vadya Продвинутый

Vadya

Опубликовано
Опубликовано (изменено)

здравствуйте. история такая. прошло почти две недели как прошлый раз проверял комп курейтом. думаю дай сегодня проверю  курейтом лучше перебдеть чем недобдеть.   и как только курейт проверил   в папке program data/чего то там/ файл  svchos.exe  касперский поднял алерт  HEUR:HackTool.Win32.Convagent.gen и удалил этот файл. проверил папку эту она создана аж 23 апреля почему раньше касперский  алерт не поднимал не понятно, то ли вирус подменил этот файл на зловред, то ли база обновилась и там стали бить тревогу на этот фаил не понятно. хочу, что бы вы проверили, что бы моя душа была спокойна. курейт ничего не нашел.

кстати еще вопрос почему автологер пишет 5. поиск кей логеров и сборщиков клавиатуры отключена пользователем? я ж не отключаю ничего как в инструкции написано так и делаю?  

CollectionLog-2023.06.19-18.44.zip

Изменено пользователем Vadya
Ссылка на комментарий
Поделиться на другие сайты
mike 1 Мудрец

mike 1

Опубликовано
Опубликовано

Внимание! Рекомендации написаны специально для этого пользователя. Если рекомендации написаны не для вас, не используйте их - это может повредить вашей системе.

Если у вас похожая проблема - создайте тему в разделе Уничтожение вирусов и выполните Правила оформления запроса о помощи.

 

Здравствуйте! 

 

Закройте все программы, временно выгрузите антивирус, файрволл и прочее защитное ПО.

Важно! на Windows Vista/7/8 AVZ запускайте через контекстное меню проводника от имени Администратора. Выполните скрипт в АВЗ (Файл - Выполнить скрипт):

  

begin
ExecuteWizard('TSW',2,2,true);
RebootWindows(false);
end.

 

Внимание! Будет выполнена перезагрузка компьютера

 

Пофиксите следующие строчки в HiJackThis (используйте версию из папки Автологгера)

  

O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\dwt-6860-5288-ec389fabd.sys -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\dwt-6860-5288-ec62bbeee.tmp\catfile-se.db -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\dwt-6860-5288-ec62bbeee.tmp\cathash-se.db -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\dwt-6860-5288-ec62bbeee.tmp\certs-6860-5288-ec62f49d0.tmp.db -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\dwt-6860-5748-fe07fd9a1.sys -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Device\HarddiskVolume4\Temp\fshc-6860-5288-ee5b4bbf4.tmp.db -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\033E3lkCbY -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0BU3K4D1jpNk -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0dgqmrhIrZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0iaWDcLUDlj5hB0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0iITO5j2kuebGwi.exe -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0je2PYSfq -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\0lEqk6XGulaN -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\11c8MZHTbO3F -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\1MkXjmM47xtPfiz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\1o3zpg8AUz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\2eIUt395p -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\2I6Df0XGsgem -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\2VdJALo9LeqRB -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\2yQ1FdRmCn -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3EFoTJL4cqqAgm -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3eZhxxkmjdXr -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3ga88ngcYS2rL -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3GCQFqmZQ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3ILDi6DwhVUp3i -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\3qQLxT7WJV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4dXbHKBCJUxNuS6 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4G7JekTZxTV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4gIWMYi8N -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4mlkvlUJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4o0kSPv5tx -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4S9fskTK3ksr -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\4X9QDlEJV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5blWRurBmZxk -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5GPujW3R -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5NrQUK70r -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5oRVN4EZ3FqhmF -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5rmhcEiUN2uwZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\5T1mAo8G -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\65dJtw3RE6Pi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\6CnFQ8O70R -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\6G0QfZj399yGG6J -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\6oFP4luEZWphBN -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\6v5zatdGU -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\7HRNIpGnRC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\7QQucmL89 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\7XvfKDp8kvvxPx -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\85LbfJRoG37 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8AiKyZ5agnnY8w -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8C2VEoFOEpa -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8DdbCV67XrF4N -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8F0ffg9Ntk2EK -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8I4dXf4yJZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8nbOz4SU7 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\8Sc8diHg1 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\9ak0OR8dxDmSkJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\9J4wexeghMfG5 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\9MmRUPU73bwv -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\9xKyXgGAxFR7Rp -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\a3Jw0JdESNGb -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\A9pWuNec -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ABcRKndt5V -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\AdiQZWS8 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\aEwgf5ITY -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\AGgcwwRloS -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Ah02LCccmG2Xr -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\AmCN0eyz5 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\aMV0mHpt -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ApJJm6LkFJ0t1ix -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\aRph11ZV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\aWzrZXrEeZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\aXiRliUbW7iv -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\B33xJAkA9CU91Z -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\b3WcbR24uR -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ba8h6JcZ649vFa -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\BcmkE619Ks -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Bds4BDPmcY -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\BeKY16ZJ8 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\bMGKajCOM7WE6N -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\bmijpnhTeKES -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\BmxgwScxzX -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\bPLkZOC8b -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\bq3AZdK0oZFJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\BsHN7CbStT0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\bWX8Mp2XU08Z -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Bxn2s8O3j2b7nBt.key -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Bzq17G8370LwmT -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ccsdk.dll -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\CjlM9bkI -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\cJVKgR9TqJWK3R -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\CLic3YiXISrjta -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\CmFe2ln1ehc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\cMpTTpRyd6R -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\CNWIQ0jla0Holrc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\CoIT2fY5l6 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\cVFBIMgPz2zL -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\cXVG0Ck86BZinDy -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\D1h2cJqmy0K9r -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\d2B0WM6Ey -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\D5gHzRRSkGfjvu -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\dCDMDzNI9jUZer -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Dk3XK0LV53M -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\dkIHlTDwSow -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\dMakBUDDq -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\DQYtOUHfnVXt7Le -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\drwbase.db -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\DVAULSFhkKHCw.dll -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\DYGTs2T3Ci2 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\e2FgKABWjd8yUNl -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\E3XEDgtF9 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\e7ddWKfXS5 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ebd4de7d3.sys.2841f53 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ebd4de7d3.sys.2841f53.28427fd -> DELETE
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\EBue9Vk1T -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\EHgceuj14Jfh -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\en.chm -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\eP3EUeQO2tV5GEl -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\epzCup3piG -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ez1fZpeQ7UE0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\F7Lfe0oVDSszfd -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\f8NGfa1qQsxpK -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\f9Bc1lZ3u3Ph -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\FBZbC2yjRB -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ffZxhfFNp4qtZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\fjgf3oubBnZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\frhnVg7phUiOM -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\g2DAy3PJskqkBTD -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\g7AUsTTjnhKxF79 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\gbvH8qPRzK -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\gct5IMXqq6 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\GEIYoFwmM -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\GoUVd9LomP -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\gWjVnCFeNCo -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\GzGORh9ZQUfe -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\hcmO87UKHx26CH8 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HcOPfhWc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HDmTYdEhjB2 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HhEM7JH90PGfS7 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HIFCmQoju -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\hkLcHWWSns -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\hoBSV5q4f3 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HoPnIv6ciVt78G -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HPTLicQSL6KeZZc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HSHPq6UyYitn3U -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\HzEAQvm4Y3P3 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\I4fjlMkpv -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\IcO4noR1xRf -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ikChaWxG5 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\IkWIarGvzo -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ilr16UJNsxdS7 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\isURO3FnCjYPc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\IwkcnOTV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\J5VztcCO -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ja.chm -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\jA67dyYPSlM -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JahuuYOktxUj -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\jBqaSMCMNtp -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JceCm74e.exe.2841f72 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JceCm74e.exe.2841f72 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\jHaaqk7G -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Jhu6vQ2rIFyHc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\jIslVkGe3c -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JN9WRwx2 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JnAWrY2aYKX3 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\JpeMQu5HXtiAYIb -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\k0oCYWCjt7GN -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\KCjDeiipa -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Kh7sh9ixb8EGT2F -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\kJ023MqkZBX7Lj -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Kqj5dlsiux -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ku21WrfcnNzV63 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\kVta9bTlIQixuDi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\KwL5H5GB7ON -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\KyanRwlu -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\KYRhmW8ouk -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\L35Cl0c0nGXZ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LBHCKM060 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LBIhoWlo0uFu -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\lDMrslHhg2ffjC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LFSDrEJYegtD -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\lfu2pmsrC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LgChSUvRh -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\lhrHYyfDr3UiM4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\lLp9EVm2 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LnsTGN5tJEq -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\LSJd3tn5 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\M0WXPbOBC8d -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\mANp4WMiysc8LH -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\MATUaT5T3S -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\MNh62jztKPv6zs.exe -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\MqEWoZNCuDt -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\mVcDu0kax5hfV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Myu7EGnCmpRDsz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\myvhE00WoSZth -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\MzBRAx1Om1mrY -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\n4SMrig9TTKlT5O -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\NDiE4aKX -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\NgvaB35Gxx -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\nhGjVv6CA -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\nKNVJRQ0Ecim -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\NXjlYmob -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\o6qnvvSeklY7veS -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\O81N2vlsJzTfF -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oe5yTa7bY7bsgL -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oEG5Eaq1F84Cfm -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\of0hGsbp31AT -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oneaBy2meT -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oQs4LUyJ8C -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oSYQrX1412VUZnP -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Ov4TKDOHA -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\oxuTCDkOGGj8L8 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\P6ccda7a8xTF5Ic -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\pHLJ8J42gC7j -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\PJvVnJPQGIisnG4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\PPHMobY4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\PTjW87XS4Yl -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\pZ8aB9FhWSEO -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\qEYhrM0vd -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\qgCbt2hf -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\QILyqMxgckx6gi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\QiYryZdInAsjat -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\qME6QyMXC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\QpnNoRZ23X8lF -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\QXhGRcI4u -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\qXR7dEG7lc -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\QYcUErzKSp0MKaz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\R6qSZEGNFyLV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\rBqyfjNaDvJ8oA1 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\rD2FPdjrTLDlFtu -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\REAyfgjXkRMGE -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\rf0yGuaufFXNd -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Rf4ShcNcYYS -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\rGnRi7SmC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\RJ5xGPKaDBr7s -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\RKp8RYOjd55PAdT -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\RMfQAzW6p3X -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\RpmTmI62u -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\RTluN006N0L -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ru.chm -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\s4eMgzkZ1o2Ce -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\sgOBhw30H6wYarJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\sTv03BXwL -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\sVO5eeCB3SVAv -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\SvRE2KNt0t -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\T73jyQYA -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\tc26R3rOxz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\tcEBzs4O9lLeo -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\tCLKoZZi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\te2BoKfQ1RxRzn -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\thS3Cpa2I1tqUlp -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\TrNdZjrV0kuW -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\UayVOxrwGOn -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\uGA29yi5YvRHHF -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\UiZMYrsoBgMLK5Z -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ULg1LsshSsxEmm3 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\UmTDgaStJrYc2 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Uq0BfXING40hI -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\uRR82tlZt3U -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\UV5OcDMPP -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\uYvY1Z3mfT -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\V5CVRTynaJw5x -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vFPZeruCrFqf5k0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vgzQJfF4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\VKJdQVDBrd -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Vlf2ih6u5ee0Xu.exe -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\VMZknVUjHR08I4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vnLN5bqNQVhl6 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vQ8324sYpg -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vQogStzrvcjwt -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vqVhXVZrw4VmJM -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vRzW0dW6aPra.dll.2841fd0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vRzW0dW6aPra.dll.2841fd0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vT25cBGvE -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\vwTyBpWnf8OlL4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\wD5lfCsWkLz -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\wevpRZ4JxhC3M -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Whtbvrre -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\WuW1Ajd0 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\WW1g7Dmv6y73 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\wXwDEIUx -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\x8DtBG1YgM -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\x9VpcM6h -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\xG2uPx7833Gs -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\xjSHhZp5w4Avaj -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\xR6D51VIqV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\xv9RH9xPnSIsU -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\xYXEZoV3MrhOeC -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Y1YnojCKKfShSAQ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Y4MiU8PF3dt -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Y6PSNZB0IrKe75C -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\YcykB7QV -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\yfFzawuKXYrUQ1B -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ygruxYt454djBMi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Yiaenj3iotf8J7A -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\Yku0ufJ2KS -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\YlkTzeoBAKqZ6O -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\YNFIhZ2s4kN -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ynXG37Sq -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\YOiX7T0Fg -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\YuXma6wYz01c5mJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\yxutNBlO -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\z3TQGvRgs5M -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\z8sMbFVkZ2n -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\zAUZshLRP7jmEJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZAyJbJbhUJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\zCFsmnfD1A4 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ze8tnf7Qk7HuNi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZfxK38cf4xXJ -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZHZVfOmxk -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZIijTUOR -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZJBlQkxwBEK5EW -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ztSFwmd3A.dll -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZVJzDc5ZKxrwbi -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZVxebVQOmjD0T6 -> DELETE (file missing)
O4 - HKLM\..\Session Manager: [PendingFileRenameOperations2] = C:\Temp\C66FBAF0-4A60B799-9374C65-1054145D\ZWvt7mJu -> DELETE (file missing)

 

Сделайте новые логи Автологгером. 

Ссылка на комментарий
Поделиться на другие сайты
Vadya Продвинутый

Vadya

Опубликовано
  • Автор
Опубликовано
52 минуты назад, mike 1 сказал:

Выполните скрипт в АВЗ (Файл - Выполнить скрипт):

сделано.

53 минуты назад, mike 1 сказал:

Пофиксите следующие строчки в HiJackThis

в этом вопросе мы с вами по кругу ходим еще прошлый раз я писал, что HiJackThis ни одной строчки из вашего сообщения не находит как их фиксить если он их не видит? 

джек.jpg

Ссылка на комментарий
Поделиться на другие сайты
  • 4 weeks later...
mike 1 Мудрец

mike 1

Опубликовано
Опубликовано

Мы были рады Вам помочь! Надеемся, что Вы остались довольны результатом. На нашем форуме также можно получить компьютерную помощь, помощь по продуктам "Лаборатории Касперкого", обсудить технологии и технику, заказать эксклюзивную сувенирную продукцию "Лаборатории Касперского" бесплатно! Форумчане ежегодно путешествуют. В числе приглашенных в ТурциюАрмениюСочиКамбоджу можете стать и Вы! Будем рады видеть Вас в наших рядах! Всегда ваш, клуб "Лаборатории Касперского".

Ссылка на комментарий
Поделиться на другие сайты
Гость
Эта тема закрыта для публикации ответов.
 Share
Перейти к списку тем

  • Похожий контент

    • buizilka_sx
      NET:MALWARE.URL нашел вирус
      От buizilka_sx
      Сделал проверку нашелся вирус NET:MALWARE.URL в doctorweb попытался удалить не получилось помогите пожалуйста удалить его 
    • aronone
      [РЕШЕНО] Нашел вирус Trojan:Win32/Dorv.A
      От aronone
      Здравствуйте, защитник виндовс нашел Trojan:Win32/Dorv.A , и еще PUABundler:Win32/uTorrent_BundleInstaller и PUADlManager:Win32/OfferCore , поместил в карантин и заблокировал, после проверил куррейтом и ничего не находит. Просьба помочь почистить пк. Вирус появился сразу после подключения к общему гостиничному вай фай, может быть это как то связанно
      cureit.zip CollectionLog-2024.11.30-15.34.zip
    • vort8x
      [РЕШЕНО] Нашел у себя майнер sppextfileobj.exe после попытки обхода discord
      От vort8x
      Банально хотел бы попросить помощь в удалении, т.к. антивирус с ним не справился и после перезагрузки он появился снова. Логи прилагаю: 
      CollectionLog-2024.12.22-21.06.zip
    • Павел11
      [РЕШЕНО] heur.trojan.multi.genbadur.genw
      От Павел11
      Появился вирус, вроде бы даже лечится Касперским, но после перезагрузки появляется вновь
       
      Событие: Обнаружен вредоносный объект
      Пользователь: MSI\fayde
      Тип пользователя: Активный пользователь
      Компонент: Антивирусная проверка
      Результат: Обнаружено
      Описание результата: Обнаружено
      Тип: Троянское приложение
      Название: HEUR:Trojan.Multi.GenBadur.genw
      Точность: Точно
      Степень угрозы: Высокая
      Тип объекта: Файл
      Имя объекта: System Memory
      Причина: Базы
      Дата выпуска баз: Сегодня, 06.11.2024 17:20:00
      CollectionLog-2024.11.06-21.34.zip
    • KL FC Bot
      Какое защищенное хранилище файлов выбрать | Блог Касперского
      От KL FC Bot
      Удобство облачных хранилищ файлов наподобие Dropbox и OneDrive омрачается лишь тем, что злоумышленники, спецслужбы или просто сотрудники хостинг-провайдера могут несанкционированно просматривать файлы в облаке. Но решение для конфиденциального хранения есть: целый ряд сервисов предлагает хранить файлы в зашифрованном виде. Некоторые называют это End-to-End Encryption, сквозным шифрованием, по аналогии с Signal и WhatsApp. Реклама гласит, что файлы шифруются еще на устройстве хозяина и отправляются в облако уже зашифрованными, а ключ шифрования есть только у владельца файлов. И никто, даже сотрудники сервиса, не может получить доступ к информации. Но так ли это на самом деле?
      Наташа, мы сломали все шифрование. Честно
      Исследователи с факультета прикладной криптографии ETH Zurich детально разобрали алгоритмы пяти популярных зашифрованных хранилищ: Sync.com, pCloud, Icedrive, Seafile и Tresorit. Оказалось, что разработчики каждого из этих сервисов допустили ошибки в реализации шифрования, позволяющие в той или иной степени манипулировать файлами и даже получать доступ к фрагментам незашифрованных данных. В двух других популярных хостингах, MEGA и Nextcloud, исследователи обнаружили дефекты раньше.
       
      View the full article
×
×
  • Создать...