Publicité
Publicité
Format du document : text/plain
Prévisualisation
Malwarebytes Anti-Malware
www.malwarebytes.org
??? ???????: 03/11/2016
????? ?????? ?????: 08:19
??? ?????: mounir trj.txt
???? ????????: ???
???????: 2.2.1.1043
????? ?????? ??????? ??????: v2016.11.03.06
????? ?????? ?????? ??????: v2016.10.31.01
???????: ??????
??????? ?? ??????? ??????: ???
????? ????? ??? ??????: ???
??????? ???????: ???
???? ???????: Windows 10
???? ???????? ????????: x86
???? ???????: NTFS
????????: monir
??? ????? ??????: ??????? ?????? ??????
???????: ?????
???????? ???? ?? ????? ??????: 270322
????? ???????: ?????? 40 ????? 11
???????: ?????
??? ???????: ?????
???? ???????: ?????
?????????: ?????
?????? ??????: ???
?????????: ?????
?????: ?????
???: ?????
????????: 17
Adware.Agent, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, 1648, ??? ??? ????? ???????, [b62cf4c7c5d5c76f293dbd2b46be20e0]
Adware.Agent, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, 1632, ??? ??? ????? ???????, [835fead1faa0ae8872f476721aea1ce4]
Adware.Agent, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, 1708, ??? ??? ????? ???????, [24be63587b1fcd698cda70782ada1de3]
Adware.Agent, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, 1716, ??? ??? ????? ???????, [f9e95764d7c3f046174f6b7dd92be51b]
Trojan.Downloader, C:\ProgramData\7winp7\WFini.exe, 2100, ??? ??? ????? ???????, [30b229921e7c171f2c709155d82c8d73]
Adware.Agent, E:\Program Files\MS.Default\Helper.3\Helper33.exe, 2148, ??? ??? ????? ???????, [c022f7c4c0dae84ecc9a1fc9a55f43bd]
Adware.Agent, E:\Program Files\MS.Default\Helper.4\Helper44.exe, 2156, ??? ??? ????? ???????, [8959f0cbbfdb81b5aabcc42455afdd23]
Adware.Agent, E:\Program Files\MS.Default\Helper.5\Helper55.exe, 2164, ??? ??? ????? ???????, [6d7567540e8c3105620413d549bbf50b]
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\WFini.exe, 2100, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, 1708, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, 1716, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, 1632, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, 1648, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.3\Helper33.exe, 2148, ??? ??? ????? ???????, [ad35e0dbd6c493a31b790ed51ee6c63a]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.4\Helper44.exe, 2156, ??? ??? ????? ???????, [23bfb9027e1cad890193e7fc7b8952ae]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.5\Helper55.exe, 2164, ??? ??? ????? ???????, [786a6259faa00d295341c3205aaaed13]
PUP.Optional.Elex, C:\Program Files\UvConverter\UvConverter.exe, 2136, ??? ??? ????? ???????, [a141ebd0ebafab8b3b8230ca57ad6b95]
??????? ???????: 2
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\WinSAP.dll, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher\Archer.dll, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
?????? ???????: 30
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6, ????? ?????, [b62cf4c7c5d5c76f293dbd2b46be20e0],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5, ????? ?????, [835fead1faa0ae8872f476721aea1ce4],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3, ????? ?????, [24be63587b1fcd698cda70782ada1de3],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4, ????? ?????, [f9e95764d7c3f046174f6b7dd92be51b],
Trojan.Downloader, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdMan, ????? ?????, [30b229921e7c171f2c709155d82c8d73],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper33, ????? ?????, [c022f7c4c0dae84ecc9a1fc9a55f43bd],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper44, ????? ?????, [8959f0cbbfdb81b5aabcc42455afdd23],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper55, ????? ?????, [6d7567540e8c3105620413d549bbf50b],
PUP.Optional.WindowsProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdMan, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3, ????? ?????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4, ????? ?????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5, ????? ?????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6, ????? ?????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.SpyHunter, HKLM\SOFTWARE\ENIGMASOFTWAREGROUP\SpyHunter, ????? ?????, [af3374472e6cdd59fc6edb2cf80d48b8],
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3FB4592C-A609-4A28-A39E-EDC63EAECD5B}, ??? ??? ????? ???????, [91514675d7c3ae885d18814257ad7e82],
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ChelfNotify Task, ??? ??? ????? ???????, [edf5a318f2a8c96dea8c4f74d52f15eb],
PUP.Optional.Trotux, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C40EA79E-975C-421A-B25A-FB7FF316F648}, ????? ?????, [954d43783763da5c5b416a5f31d1eb15],
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, ????? ?????, [2bb7ba01c6d4bd79f6a70fbab34f847c],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Archer, ????? ?????, [677b982343571b1bb0b62afbf41129d7],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\qkseeService, ????? ?????, [e4fe7c3fa8f270c662a8438956ac2ed2],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinSAPSvc, ????? ?????, [36ac3d7e5149f343c1a6170e957014ec],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER33, ????? ?????, [ad35e0dbd6c493a31b790ed51ee6c63a],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER44, ????? ?????, [23bfb9027e1cad890193e7fc7b8952ae],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER55, ????? ?????, [786a6259faa00d295341c3205aaaed13],
PUP.Optional.Interhop, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\INTERHOP, ????? ?????, [8d559328fb9f8fa768adfef6b3517b85],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UVCONVERTER, ????? ?????, [a141ebd0ebafab8b3b8230ca57ad6b95],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSABER, ????? ?????, [d9097d3ea3f7dc5acd4b0e9d20e4f709],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINZIPERSVC, ????? ?????, [9c46ffbc11898babeb5db53fc43fd22e],
PUP.Optional.InstallCore, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\csastats, ????? ?????, [36ac6952b1e9e94d4feef00ad52e867a],
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, ????? ?????, [786a4675702a082e2873b7126f937b85],
??? ???????: 22
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3FB4592C-A609-4A28-A39E-EDC63EAECD5B}|Path, \ChelfNotify Task, ??? ??? ????? ???????, [91514675d7c3ae885d18814257ad7e82]
PUP.Optional.Trotux, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C40EA79E-975C-421A-B25A-FB7FF316F648}|DisplayName, trotux - Uninstall, ????? ?????, [954d43783763da5c5b416a5f31d1eb15]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [2bb7ba01c6d4bd79f6a70fbab34f847c]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [489a11aa7129181ea3fa03c662a06e92]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, http://www.trotux.com/search/?q={searchTerms}&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp, ????? ?????, [09d93a8109919b9b821b8841cd35ec14]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, http://www.trotux.com/search/?&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp&q=, ????? ?????, [a0422a91e4b64beb0d90efda57abc23e]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper33|ImagePath, "E:\Program Files\MS.Default\Helper.3\Helper33.exe" 3e19779b2974487e881c2174c0562504, ????? ?????, [ad35e0dbd6c493a31b790ed51ee6c63a]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper44|ImagePath, "E:\Program Files\MS.Default\Helper.4\Helper44.exe" b48f42ba07304dd38f2ef02dfd46c678, ????? ?????, [23bfb9027e1cad890193e7fc7b8952ae]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper55|ImagePath, "E:\Program Files\MS.Default\Helper.5\Helper55.exe" 388837891c4f496ea6203a5f71b2a421, ????? ?????, [786a6259faa00d295341c3205aaaed13]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3|ImagePath, "C:\Program Files\SOEasy.3\SSoEasyySvc3.exe" c54102ea829e4d458c86147e71427a8f, ????? ?????, [ffe3c1faddbd67cf335f31b25aaa768a]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4|ImagePath, "C:\Program Files\SOEasy.4\SSoEasyySvc4.exe" 420f678469254505a655a4b567f7c9a0, ????? ?????, [4999625981198da95a38e4ff33d11be5]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5|ImagePath, "C:\Program Files\SOEasy.5\SSoEasyySvc5.exe" ae2ce54ab1294744903dca4a5f8539bf, ????? ?????, [449ed1ea465439fd5141eaf97a8a14ec]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6|ImagePath, "C:\Program Files\SOEasy.6\SSoEasyySvc6.exe" e47b5abf08794d6b8b774f94eeb062f4, ????? ?????, [8d55c5f68d0ded49731f0ed55ea6936d]
PUP.Optional.Interhop, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\INTERHOP|ImagePath, "C:\Program Files\InterHop\InterHop.exe" {2C8E8C85-942B-451C-8243-97A089265577}, ????? ?????, [8d559328fb9f8fa768adfef6b3517b85]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UVCONVERTER|ImagePath, "C:\Program Files\UvConverter\UvConverter.exe" {2C8E8C85-942B-451C-8243-97A089265577}, ????? ?????, [a141ebd0ebafab8b3b8230ca57ad6b95]
PUP.Optional.WindowsProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WDMAN|ImagePath, C:\ProgramData\7winp7\WFini.exe -svr, ????? ?????, [c91906b5eab0fa3c66831eda12f124dc]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSABER|ImagePath, C:\Program Files\WinSaber\WinSaber.exe, ????? ?????, [d9097d3ea3f7dc5acd4b0e9d20e4f709]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINZIPERSVC|ImagePath, C:\Program Files\WinZipper\winzipersvc.exe, ????? ?????, [9c46ffbc11898babeb5db53fc43fd22e]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [786a4675702a082e2873b7126f937b85]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [667cead1e0bad1652279fbcef40e4eb2]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, http://www.trotux.com/search/?q={searchTerms}&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp, ????? ?????, [885a24979a00d75f3665725754aebd43]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, http://www.trotux.com/search/?&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp&q=, ????? ?????, [bb273487bbdf9e982c6fe2e7f012669a]
?????? ???????: 7
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[736fb6052a70fb3bada4ed082adaa45c]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}, ???: (www.google.com), ????: (http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}),???????,[776bd4e74e4cee482d2449ac5ea650b0]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}, ???: (www.google.com), ????: (http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}),???????,[38aa2794ff9be5514c05569f50b4c13f]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[7b6734877f1bfb3b153cfff6758f4bb5]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, ???: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), ????: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),???????,[c1215a61aaf0b4827bfc1b5bd331cc34]
PUP.Optional.MyLucky123.ShrtCln, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[f0f2774419811e1860efb540a65e50b0]
PUP.Optional.MyLucky123.ShrtCln, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[6a78c0fb1486cb6b9bb4d91cb54f55ab]
????????: 15
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\xtemp, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\{7FC98EAE-BD39-4B54-ACC5-D4CF90F26357}, ????? ?????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee\log, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\Program Files\Cipule, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\defs, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
???????: 91
Adware.Agent, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, ??? ??? ????? ???????, [b62cf4c7c5d5c76f293dbd2b46be20e0],
Adware.Agent, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, ??? ??? ????? ???????, [835fead1faa0ae8872f476721aea1ce4],
Adware.Agent, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, ??? ??? ????? ???????, [24be63587b1fcd698cda70782ada1de3],
Adware.Agent, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, ??? ??? ????? ???????, [f9e95764d7c3f046174f6b7dd92be51b],
Trojan.Downloader, C:\ProgramData\7winp7\WFini.exe, ??? ??? ????? ???????, [30b229921e7c171f2c709155d82c8d73],
Adware.Agent, E:\Program Files\MS.Default\Helper.3\Helper33.exe, ??? ??? ????? ???????, [c022f7c4c0dae84ecc9a1fc9a55f43bd],
Adware.Agent, E:\Program Files\MS.Default\Helper.4\Helper44.exe, ??? ??? ????? ???????, [8959f0cbbfdb81b5aabcc42455afdd23],
Adware.Agent, E:\Program Files\MS.Default\Helper.5\Helper55.exe, ??? ??? ????? ???????, [6d7567540e8c3105620413d549bbf50b],
PUP.Optional.Elex, C:\Program Files\Cipule\Sheerwardposoingrenewgnp.exe, ????? ?????, [29b916a5e1b9f73fbb541d06f80d56aa],
PUP.Optional.Elex, C:\Program Files\Cipule\qks.exe, ????? ?????, [a43eeecd306a56e0908cbb2f827f1fe1],
PUP.Optional.Elex, C:\Program Files\Cipule\saber.exe, ????? ?????, [479ba6159efcd85e7493996811f444bc],
PUP.Optional.Elex, C:\Program Files\Cipule\winzipper.exe, ????? ?????, [00e2c5f6e9b173c3eb5656c2ef1615eb],
Trojan.Downloader, C:\Program Files\Cipule\wpm.exe, ????? ?????, [d30fd7e43d5d78beefad10d640c4de22],
Adware.ProxyAgent, C:\Users\monir\AppData\Local\Temp\A672B458-A824-4C88-811D-5BC02604DBE5\isr_lj.exe, ????? ?????, [e8fad1ea3b5f71c53f0fcee8a75d43bd],
HackTool.IdleKMS, C:\Windows\SECOH-QAD.exe, ????? ?????, [4a98902b5d3de55156aca2ff3cc510f0],
PUP.Optional.Elex, C:\Windows\Installer\113f8f.msi, ????? ?????, [fbe7d3e88e0cf442fecde338ce3750b0],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\WFini.exe, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\xtemp\conf, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.GsearchFinder, C:\Users\monir\AppData\Roaming\Profiles\drgeghviceingclocty\extensions\@90B817C8-8A5C-413B-9DDD-B2C61ED6E79A.xpi, ????? ?????, [875b16a5fc9e171f090b09f49073e020],
PUP.Optional.GsearchFinder, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\extensions\@90B817C8-8A5C-413B-9DDD-B2C61ED6E79A.xpi, ????? ?????, [647e67547f1b4de9ea2a02fb5da6e719],
PUP.Optional.Elex, C:\Windows\System32\Tasks\ChelfNotify Task, ????? ?????, [31b185361288ab8b86f1665d43c15ca4],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.MyLucky123.ShrtCln, C:\Users\monir\AppData\Roaming\Mozilla\Firefox\Profiles\ulvs9f0t.default\searchplugins\mylucky123.xml, ????? ?????, [6c760fac2278ca6c13001bd952b20af6],
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\WinSAP.dll, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher\Archer.dll, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.3\Helper33.exe, ??? ??? ????? ???????, [ad35e0dbd6c493a31b790ed51ee6c63a],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.4\Helper44.exe, ??? ??? ????? ???????, [23bfb9027e1cad890193e7fc7b8952ae],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.5\Helper55.exe, ??? ??? ????? ???????, [786a6259faa00d295341c3205aaaed13],
PUP.Optional.Elex, C:\Program Files\UvConverter\UvConverter.exe, ??? ??? ????? ???????, [a141ebd0ebafab8b3b8230ca57ad6b95],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee\log\install.log, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee\qksee.lnk, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee\uninstall.lnk, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\Program Files\Cipule\5.txt, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\9.3.6494.400.manifest, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\anifat.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\BrowserUpdate.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\chrome_elf.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\DeElevator.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\Iftainckoucultserver.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\ihpul.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\reooph.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\thagiied, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\wpm.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\German.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Brazilian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Chinese(Simplified).lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Chinese(Traditional).lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Common.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Croatian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Czech.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Danish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Defman.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Dutch.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\English.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\EsgScanner.inf, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\EsgScanner.sys, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\ExecutionGuard.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Finnish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\French.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Greek.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Indonesian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Italian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Japanese.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\license.txt, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Lithuanian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\native.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Norwegian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Polish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Portuguese.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Romanian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Russian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\ShScanner.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Slovene.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Spanish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Swedish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\defs\def.dat, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (user_pref("browser.newtab.url", "http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp");), ???????,[f9e97b40108a47ef58ee13d90ff58878]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (473196263);
user_pref("app.update.lastUpdateTime.xpi-si), ???????,[7270e0db9802f541a4a225c7a262de22]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (s file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to ), ???????,[00e2308b17836fc7ad9908e44cb823dd]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", ), ???????,[bd25a11a59412a0cfd490ddfd72d946c]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (, you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", true);
user_pref("app.update.auto", false);
user_pref("app.update.enabled", false);
user_pref("app.update.lastUpdateT), ???????,[22c039820397360082c44e9e28dc48b8]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (s will be overwritten when the application exits.
*), ???????,[f7eb0bb05f3b45f188be4d9fb74d51af]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: ( you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", true);
user_pref("app.update.auto", false);
user_pref("app.update.enabled", false);
user), ???????,[756dcaf1cbcf4aecaf977a72ab596c94]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\searchplugins\zopngmlu.xml, ????? ?????, [d50d3883702af93dfe450ce009fb758b],
???????? ???????: 0
(????? ?? ??? ????? ?????)
(end)
www.malwarebytes.org
??? ???????: 03/11/2016
????? ?????? ?????: 08:19
??? ?????: mounir trj.txt
???? ????????: ???
???????: 2.2.1.1043
????? ?????? ??????? ??????: v2016.11.03.06
????? ?????? ?????? ??????: v2016.10.31.01
???????: ??????
??????? ?? ??????? ??????: ???
????? ????? ??? ??????: ???
??????? ???????: ???
???? ???????: Windows 10
???? ???????? ????????: x86
???? ???????: NTFS
????????: monir
??? ????? ??????: ??????? ?????? ??????
???????: ?????
???????? ???? ?? ????? ??????: 270322
????? ???????: ?????? 40 ????? 11
???????: ?????
??? ???????: ?????
???? ???????: ?????
?????????: ?????
?????? ??????: ???
?????????: ?????
?????: ?????
???: ?????
????????: 17
Adware.Agent, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, 1648, ??? ??? ????? ???????, [b62cf4c7c5d5c76f293dbd2b46be20e0]
Adware.Agent, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, 1632, ??? ??? ????? ???????, [835fead1faa0ae8872f476721aea1ce4]
Adware.Agent, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, 1708, ??? ??? ????? ???????, [24be63587b1fcd698cda70782ada1de3]
Adware.Agent, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, 1716, ??? ??? ????? ???????, [f9e95764d7c3f046174f6b7dd92be51b]
Trojan.Downloader, C:\ProgramData\7winp7\WFini.exe, 2100, ??? ??? ????? ???????, [30b229921e7c171f2c709155d82c8d73]
Adware.Agent, E:\Program Files\MS.Default\Helper.3\Helper33.exe, 2148, ??? ??? ????? ???????, [c022f7c4c0dae84ecc9a1fc9a55f43bd]
Adware.Agent, E:\Program Files\MS.Default\Helper.4\Helper44.exe, 2156, ??? ??? ????? ???????, [8959f0cbbfdb81b5aabcc42455afdd23]
Adware.Agent, E:\Program Files\MS.Default\Helper.5\Helper55.exe, 2164, ??? ??? ????? ???????, [6d7567540e8c3105620413d549bbf50b]
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\WFini.exe, 2100, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, 1708, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, 1716, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, 1632, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9]
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, 1648, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.3\Helper33.exe, 2148, ??? ??? ????? ???????, [ad35e0dbd6c493a31b790ed51ee6c63a]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.4\Helper44.exe, 2156, ??? ??? ????? ???????, [23bfb9027e1cad890193e7fc7b8952ae]
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.5\Helper55.exe, 2164, ??? ??? ????? ???????, [786a6259faa00d295341c3205aaaed13]
PUP.Optional.Elex, C:\Program Files\UvConverter\UvConverter.exe, 2136, ??? ??? ????? ???????, [a141ebd0ebafab8b3b8230ca57ad6b95]
??????? ???????: 2
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\WinSAP.dll, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher\Archer.dll, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
?????? ???????: 30
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6, ????? ?????, [b62cf4c7c5d5c76f293dbd2b46be20e0],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5, ????? ?????, [835fead1faa0ae8872f476721aea1ce4],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3, ????? ?????, [24be63587b1fcd698cda70782ada1de3],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4, ????? ?????, [f9e95764d7c3f046174f6b7dd92be51b],
Trojan.Downloader, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdMan, ????? ?????, [30b229921e7c171f2c709155d82c8d73],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper33, ????? ?????, [c022f7c4c0dae84ecc9a1fc9a55f43bd],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper44, ????? ?????, [8959f0cbbfdb81b5aabcc42455afdd23],
Adware.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper55, ????? ?????, [6d7567540e8c3105620413d549bbf50b],
PUP.Optional.WindowsProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WdMan, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3, ????? ?????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4, ????? ?????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5, ????? ?????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6, ????? ?????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.SpyHunter, HKLM\SOFTWARE\ENIGMASOFTWAREGROUP\SpyHunter, ????? ?????, [af3374472e6cdd59fc6edb2cf80d48b8],
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3FB4592C-A609-4A28-A39E-EDC63EAECD5B}, ??? ??? ????? ???????, [91514675d7c3ae885d18814257ad7e82],
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ChelfNotify Task, ??? ??? ????? ???????, [edf5a318f2a8c96dea8c4f74d52f15eb],
PUP.Optional.Trotux, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C40EA79E-975C-421A-B25A-FB7FF316F648}, ????? ?????, [954d43783763da5c5b416a5f31d1eb15],
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, ????? ?????, [2bb7ba01c6d4bd79f6a70fbab34f847c],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Archer, ????? ?????, [677b982343571b1bb0b62afbf41129d7],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\qkseeService, ????? ?????, [e4fe7c3fa8f270c662a8438956ac2ed2],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WinSAPSvc, ????? ?????, [36ac3d7e5149f343c1a6170e957014ec],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER33, ????? ?????, [ad35e0dbd6c493a31b790ed51ee6c63a],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER44, ????? ?????, [23bfb9027e1cad890193e7fc7b8952ae],
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHELPER55, ????? ?????, [786a6259faa00d295341c3205aaaed13],
PUP.Optional.Interhop, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\INTERHOP, ????? ?????, [8d559328fb9f8fa768adfef6b3517b85],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UVCONVERTER, ????? ?????, [a141ebd0ebafab8b3b8230ca57ad6b95],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSABER, ????? ?????, [d9097d3ea3f7dc5acd4b0e9d20e4f709],
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINZIPERSVC, ????? ?????, [9c46ffbc11898babeb5db53fc43fd22e],
PUP.Optional.InstallCore, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\csastats, ????? ?????, [36ac6952b1e9e94d4feef00ad52e867a],
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, ????? ?????, [786a4675702a082e2873b7126f937b85],
??? ???????: 22
PUP.Optional.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{3FB4592C-A609-4A28-A39E-EDC63EAECD5B}|Path, \ChelfNotify Task, ??? ??? ????? ???????, [91514675d7c3ae885d18814257ad7e82]
PUP.Optional.Trotux, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{C40EA79E-975C-421A-B25A-FB7FF316F648}|DisplayName, trotux - Uninstall, ????? ?????, [954d43783763da5c5b416a5f31d1eb15]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [2bb7ba01c6d4bd79f6a70fbab34f847c]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [489a11aa7129181ea3fa03c662a06e92]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, http://www.trotux.com/search/?q={searchTerms}&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp, ????? ?????, [09d93a8109919b9b821b8841cd35ec14]
PUP.Optional.Trotux, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, http://www.trotux.com/search/?&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp&q=, ????? ?????, [a0422a91e4b64beb0d90efda57abc23e]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper33|ImagePath, "E:\Program Files\MS.Default\Helper.3\Helper33.exe" 3e19779b2974487e881c2174c0562504, ????? ?????, [ad35e0dbd6c493a31b790ed51ee6c63a]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper44|ImagePath, "E:\Program Files\MS.Default\Helper.4\Helper44.exe" b48f42ba07304dd38f2ef02dfd46c678, ????? ?????, [23bfb9027e1cad890193e7fc7b8952ae]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ZSHelper55|ImagePath, "E:\Program Files\MS.Default\Helper.5\Helper55.exe" 388837891c4f496ea6203a5f71b2a421, ????? ?????, [786a6259faa00d295341c3205aaaed13]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc3|ImagePath, "C:\Program Files\SOEasy.3\SSoEasyySvc3.exe" c54102ea829e4d458c86147e71427a8f, ????? ?????, [ffe3c1faddbd67cf335f31b25aaa768a]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc4|ImagePath, "C:\Program Files\SOEasy.4\SSoEasyySvc4.exe" 420f678469254505a655a4b567f7c9a0, ????? ?????, [4999625981198da95a38e4ff33d11be5]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc5|ImagePath, "C:\Program Files\SOEasy.5\SSoEasyySvc5.exe" ae2ce54ab1294744903dca4a5f8539bf, ????? ?????, [449ed1ea465439fd5141eaf97a8a14ec]
PUP.Optional.Elex.Generic, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BSSoEasySvc6|ImagePath, "C:\Program Files\SOEasy.6\SSoEasyySvc6.exe" e47b5abf08794d6b8b774f94eeb062f4, ????? ?????, [8d55c5f68d0ded49731f0ed55ea6936d]
PUP.Optional.Interhop, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\INTERHOP|ImagePath, "C:\Program Files\InterHop\InterHop.exe" {2C8E8C85-942B-451C-8243-97A089265577}, ????? ?????, [8d559328fb9f8fa768adfef6b3517b85]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\UVCONVERTER|ImagePath, "C:\Program Files\UvConverter\UvConverter.exe" {2C8E8C85-942B-451C-8243-97A089265577}, ????? ?????, [a141ebd0ebafab8b3b8230ca57ad6b95]
PUP.Optional.WindowsProtectManager, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WDMAN|ImagePath, C:\ProgramData\7winp7\WFini.exe -svr, ????? ?????, [c91906b5eab0fa3c66831eda12f124dc]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINSABER|ImagePath, C:\Program Files\WinSaber\WinSaber.exe, ????? ?????, [d9097d3ea3f7dc5acd4b0e9d20e4f709]
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINZIPERSVC|ImagePath, C:\Program Files\WinZipper\winzipersvc.exe, ????? ?????, [9c46ffbc11898babeb5db53fc43fd22e]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|hp, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [786a4675702a082e2873b7126f937b85]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|tab, http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp&mode=ffsengext, ????? ?????, [667cead1e0bad1652279fbcef40e4eb2]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|sp, http://www.trotux.com/search/?q={searchTerms}&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp, ????? ?????, [885a24979a00d75f3665725754aebd43]
PUP.Optional.Trotux, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|surl, http://www.trotux.com/search/?&z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=sp&q=, ????? ?????, [bb273487bbdf9e982c6fe2e7f012669a]
?????? ???????: 7
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[736fb6052a70fb3bada4ed082adaa45c]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}, ???: (www.google.com), ????: (http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}),???????,[776bd4e74e4cee482d2449ac5ea650b0]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}, ???: (www.google.com), ????: (http://www.mylucky123.com/search/?type=ds&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&q={searchTerms}),???????,[38aa2794ff9be5514c05569f50b4c13f]
PUP.Optional.MyLucky123.ShrtCln, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[7b6734877f1bfb3b153cfff6758f4bb5]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, ???: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), ????: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),???????,[c1215a61aaf0b4827bfc1b5bd331cc34]
PUP.Optional.MyLucky123.ShrtCln, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[f0f2774419811e1860efb540a65e50b0]
PUP.Optional.MyLucky123.ShrtCln, HKU\S-1-5-21-4148660473-2795377025-255848801-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX, ???: (www.google.com), ????: (http://www.mylucky123.com/?type=hp&ts=1477498512&z=ee6d8fc0d94cdd7f8ada817g5zamfm4zbt2bdm3efg&from=interhop1024&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX),???????,[6a78c0fb1486cb6b9bb4d91cb54f55ab]
????????: 15
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\xtemp, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\{7FC98EAE-BD39-4B54-ACC5-D4CF90F26357}, ????? ?????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee\log, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\Program Files\Cipule, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\defs, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
???????: 91
Adware.Agent, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, ??? ??? ????? ???????, [b62cf4c7c5d5c76f293dbd2b46be20e0],
Adware.Agent, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, ??? ??? ????? ???????, [835fead1faa0ae8872f476721aea1ce4],
Adware.Agent, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, ??? ??? ????? ???????, [24be63587b1fcd698cda70782ada1de3],
Adware.Agent, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, ??? ??? ????? ???????, [f9e95764d7c3f046174f6b7dd92be51b],
Trojan.Downloader, C:\ProgramData\7winp7\WFini.exe, ??? ??? ????? ???????, [30b229921e7c171f2c709155d82c8d73],
Adware.Agent, E:\Program Files\MS.Default\Helper.3\Helper33.exe, ??? ??? ????? ???????, [c022f7c4c0dae84ecc9a1fc9a55f43bd],
Adware.Agent, E:\Program Files\MS.Default\Helper.4\Helper44.exe, ??? ??? ????? ???????, [8959f0cbbfdb81b5aabcc42455afdd23],
Adware.Agent, E:\Program Files\MS.Default\Helper.5\Helper55.exe, ??? ??? ????? ???????, [6d7567540e8c3105620413d549bbf50b],
PUP.Optional.Elex, C:\Program Files\Cipule\Sheerwardposoingrenewgnp.exe, ????? ?????, [29b916a5e1b9f73fbb541d06f80d56aa],
PUP.Optional.Elex, C:\Program Files\Cipule\qks.exe, ????? ?????, [a43eeecd306a56e0908cbb2f827f1fe1],
PUP.Optional.Elex, C:\Program Files\Cipule\saber.exe, ????? ?????, [479ba6159efcd85e7493996811f444bc],
PUP.Optional.Elex, C:\Program Files\Cipule\winzipper.exe, ????? ?????, [00e2c5f6e9b173c3eb5656c2ef1615eb],
Trojan.Downloader, C:\Program Files\Cipule\wpm.exe, ????? ?????, [d30fd7e43d5d78beefad10d640c4de22],
Adware.ProxyAgent, C:\Users\monir\AppData\Local\Temp\A672B458-A824-4C88-811D-5BC02604DBE5\isr_lj.exe, ????? ?????, [e8fad1ea3b5f71c53f0fcee8a75d43bd],
HackTool.IdleKMS, C:\Windows\SECOH-QAD.exe, ????? ?????, [4a98902b5d3de55156aca2ff3cc510f0],
PUP.Optional.Elex, C:\Windows\Installer\113f8f.msi, ????? ?????, [fbe7d3e88e0cf442fecde338ce3750b0],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\WFini.exe, ??? ??? ????? ???????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.WindowsProtectManager, C:\ProgramData\7winp7\xtemp\conf, ????? ?????, [ebf7ead14d4d2a0c4b9d8f694ab93ac6],
PUP.Optional.GsearchFinder, C:\Users\monir\AppData\Roaming\Profiles\drgeghviceingclocty\extensions\@90B817C8-8A5C-413B-9DDD-B2C61ED6E79A.xpi, ????? ?????, [875b16a5fc9e171f090b09f49073e020],
PUP.Optional.GsearchFinder, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\extensions\@90B817C8-8A5C-413B-9DDD-B2C61ED6E79A.xpi, ????? ?????, [647e67547f1b4de9ea2a02fb5da6e719],
PUP.Optional.Elex, C:\Windows\System32\Tasks\ChelfNotify Task, ????? ?????, [31b185361288ab8b86f1665d43c15ca4],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.3\SSoEasyySvc3.exe, ??? ??? ????? ???????, [756da01b33677cba662a8261d82cb44c],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.4\SSoEasyySvc4.exe, ??? ??? ????? ???????, [4b97b902c4d6999d2e62ffe431d34fb1],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.5\SSoEasyySvc5.exe, ??? ??? ????? ???????, [d0120caf861447ef5c3431b27d8717e9],
PUP.Optional.Elex.Generic, C:\Program Files\SOEasy.6\SSoEasyySvc6.exe, ??? ??? ????? ???????, [3ba7c1fa5d3d72c48a06b82b23e19c64],
PUP.Optional.MyLucky123.ShrtCln, C:\Users\monir\AppData\Roaming\Mozilla\Firefox\Profiles\ulvs9f0t.default\searchplugins\mylucky123.xml, ????? ?????, [6c760fac2278ca6c13001bd952b20af6],
PUP.Optional.Elex, C:\ProgramData\WinSAPSvc\WinSAP.dll, ??? ??? ????? ???????, [aa3844778218b383b60227f7b0553cc4],
PUP.Optional.Elex, C:\Program Files\WinArcher\Archer.dll, ??? ??? ????? ???????, [f1f1bcff2773181e823b9c82e81d0af6],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.3\Helper33.exe, ??? ??? ????? ???????, [ad35e0dbd6c493a31b790ed51ee6c63a],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.4\Helper44.exe, ??? ??? ????? ???????, [23bfb9027e1cad890193e7fc7b8952ae],
PUP.Optional.Elex.Generic, E:\Program Files\MS.Default\Helper.5\Helper55.exe, ??? ??? ????? ???????, [786a6259faa00d295341c3205aaaed13],
PUP.Optional.Elex, C:\Program Files\UvConverter\UvConverter.exe, ??? ??? ????? ???????, [a141ebd0ebafab8b3b8230ca57ad6b95],
PUP.Optional.Elex, C:\Users\monir\AppData\Roaming\qksee\log\install.log, ????? ?????, [22c02596a6f42214c79ecbfc3bc7d52b],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee\qksee.lnk, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qksee\uninstall.lnk, ????? ?????, [6b7705b6d5c581b51156468117ebe61a],
PUP.Optional.Elex, C:\Program Files\Cipule\5.txt, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\9.3.6494.400.manifest, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\anifat.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\BrowserUpdate.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\chrome_elf.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\DeElevator.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\Iftainckoucultserver.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\ihpul.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\reooph.dll, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\thagiied, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.Elex, C:\Program Files\Cipule\wpm.exe, ????? ?????, [8a58b10a2179c670892f04021ee7b44c],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\German.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Brazilian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Chinese(Simplified).lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Chinese(Traditional).lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Common.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Croatian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Czech.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Danish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Defman.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Dutch.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\English.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\EsgScanner.inf, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\EsgScanner.sys, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\ExecutionGuard.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Finnish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\French.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Greek.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Indonesian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Italian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Japanese.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\license.txt, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Lithuanian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\native.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Norwegian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Polish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Portuguese.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Romanian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Russian.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\ShScanner.dll, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Slovene.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Spanish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.com, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\Swedish.lng, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.SpyHunter, C:\Program Files\Enigma Software Group\SpyHunter\defs\def.dat, ????? ?????, [60829d1e9efc1e1826e1bd4a35d08e72],
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (user_pref("browser.newtab.url", "http://www.trotux.com/?z=3f3f3354726679b1927bea6gez7mbc7o0c6t6q9z4e&from=isr&uid=HitachiXHDP725016GLA380_GEK834RH38U8MC38U8MCX&type=hp");), ???????,[f9e97b40108a47ef58ee13d90ff58878]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (473196263);
user_pref("app.update.lastUpdateTime.xpi-si), ???????,[7270e0db9802f541a4a225c7a262de22]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (s file.
*
* If you make changes to this file while the application is running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to ), ???????,[00e2308b17836fc7ad9908e44cb823dd]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (running,
* the changes will be overwritten when the application exits.
*
* To make a manual change to preferences, you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", ), ???????,[bd25a11a59412a0cfd490ddfd72d946c]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (, you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", true);
user_pref("app.update.auto", false);
user_pref("app.update.enabled", false);
user_pref("app.update.lastUpdateT), ???????,[22c039820397360082c44e9e28dc48b8]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: (s will be overwritten when the application exits.
*), ???????,[f7eb0bb05f3b45f188be4d9fb74d51af]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\prefs.js, ???: (), ????: ( you can visit the URL about:config
*/
user_pref("accessibility.typeaheadfind", true);
user_pref("app.update.auto", false);
user_pref("app.update.enabled", false);
user), ???????,[756dcaf1cbcf4aecaf977a72ab596c94]
PUP.Optional.Trotux, C:\Users\monir\AppData\Roaming\Profiles\zrd3nmza.default\searchplugins\zopngmlu.xml, ????? ?????, [d50d3883702af93dfe450ce009fb758b],
???????? ???????: 0
(????? ?? ??? ????? ?????)
(end)