Ir para conteúdo
  • Cadastre-se

A partir do dia 19/11/2018, o foco do Fórum do BABOO é apenas Windows e Segurança Digital conforme informado no início de 2018.
As áreas que não têm relação com esses dois assuntos foram arquivadas e seus tópicos estão disponíveis para consulta na área Tópicos Antigos.

Conheça as novidades de 2019 para o BABOO e Fórum do BABOO

Philipe Afonso

  • Postagens

    4
  • Desde

  • Última visita

Perfil

  • Estado
    Goiás
  • Sexo
    masculino
  • Escolaridade
    Superior cursando
  1. Philipe Afonso

    Sobre o vírus MEM:Trojan.Win32.SEPEH.gen

    Obrigado, Baboo! Eu achei assustador quando pesquisei o nome do vírus que o Kaspersky identificou! um bocado de sites, até em polonês e alemão, falando sobre a mesma coisa com o mesmo post. Tenho o MWB e o Kaspersky Total Security instalados no PC. O MBW está em fase de avaliação e logo a licença gratuita já acaba. Vou baixar essa extensão que você comentou! Grato!
  2. Philipe Afonso

    Sobre o vírus MEM:Trojan.Win32.SEPEH.gen

    Boa tarde, pessoal! Ontem instalei o Kaspersky Free (estou grato em dizer que adquiri hoje o Kaspersky Total Security! fiquem atentos às promoções e aos cupons de desconto, foi assim que consegui 50% de desconto por cupom) e descobri que meu laptop estava infectado pelo trojan "MEM:Trojan.Win32.SEPEH.gen". O antivírus anterior, AVG free, não conseguiu identificar o trojan. Ver solução em: Pelas informações que obtive fazendo uma breve pesquisa, tudo indica que esse vírus é bem recente. Segue abaixo informações sobre ele: A remoção só foi completa com o uso do ESET Online Scanner. Mas também outras ferramentas foram utilizadas, como demonstrado no tópico de solução.
  3. Philipe Afonso

    Remoção do vírus MEM:TROJAN.WIN32.SPEH.GEN

    Atualização! Depois que utilizei o ESET, o problema foi de fato resolvido, uma vez que o próprio Kaspersky não conseguiu desinfetar o arquivo definitivamente (por isso ele reaparecia a cada inicialização do Windows). Então, dou nota dez para o ESET na solução do problema. Tudo isso comprova que o trojan mencionado não era um falso-positivo, mas realmente um vírus complexo, bem infiltrado no sistema. Por fim, utilizei o Delfix para apagar os arquivos de desinfeção. Reitero que não baixem programas, jogos ou serviços piratas ou pirateados sob qualquer circunstância! Log final do Kaspersky: 20.09.2018 12.48.26 Full Scan No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Cloud objects skipped: 612 Release date of databases used for scan: 9/20/2018 8:28 AM Total duration: 15 minutes 22 seconds Completion time: 9/20/2018 1:03 PM 20.09.2018 08.35.51 Quick Scan No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Release date of databases used for scan: 9/20/2018 4:40 AM Total duration: 4 minutes 12 seconds Completion time: 9/20/2018 8:40 AM 20.09.2018 06.11.49 Full Scan No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Cloud objects skipped: 612 Release date of databases used for scan: 9/20/2018 1:46 AM Total duration: 18 minutes 33 seconds Completion time: 9/20/2018 6:30 AM 20.09.2018 02.55.12 Rootkit Scan Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/20/2018 1:46 AM Total duration: 20 minutes 15 seconds Completion time: 9/20/2018 3:15 AM 20.09.2018 02.25.12 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 2 seconds Completion time: 9/20/2018 6:09 AM 20.09.2018 02.19.12 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 2 minutes 33 seconds Completion time: 9/20/2018 2:21 AM 20.09.2018 02.17.42 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 30 seconds Completion time: 9/20/2018 2:19 AM 20.09.2018 01.58.45 Quick Scan No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 4 minutes 25 seconds Completion time: 9/20/2018 2:03 AM 20.09.2018 01.43.41 Full Scan Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 14 minutes 35 seconds Completion time: 9/20/2018 1:58 AM 20.09.2018 01.39.00 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 2 minutes 56 seconds Completion time: 9/20/2018 1:41 AM 20.09.2018 01.39.00 Rootkit Scan (canceled) No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 0 seconds Completion time: 9/20/2018 1:38 AM 20.09.2018 01.02.39 Full Scan Objects detected: 2, neutralized: 1, not disinfected: 1 Detected: 2 Deleted: 1 Not disinfected: 1 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 36 minutes 20 seconds Completion time: 9/20/2018 1:38 AM 20.09.2018 00.57.58 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 3 minutes 3 seconds Completion time: 9/20/2018 1:01 AM 20.09.2018 00.56.26 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 21 seconds Completion time: 9/20/2018 12:57 AM 20.09.2018 00.51.03 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 3 minutes 9 seconds Completion time: 9/20/2018 12:54 AM 20.09.2018 00.49.48 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 14 seconds Completion time: 9/20/2018 12:51 AM
  4. Philipe Afonso

    Remoção do vírus MEM:TROJAN.WIN32.SPEH.GEN

    Bom dia, Meu notebook Dell 7000 Gaming chegou semana passada e eu havia instalado o AVG antivírus free, conforme dica presente em um vídeo do Baboo no YouTube. Além disso, instalei o Malwarebytes e até então foi sucesso - só alguns PUP que o MWB encontrou e o restante era de arquivos de crack de jogos que mandei o antivírus excluir. O problema surgiu quando ontem de noite resolvi remover o AVG (fiz uma varredura antes e constava que meu notebook estava limpo) e instalar o Kaspersky free. Logo apareceu um trojan presente na memória do computador com a seguinte descrição: MEM:Trojan.WIN32.SPEH.gen. Fiz uma pesquisa na internet e, pelo que pareceu, o vírus é bem recente - o que me preocupou mais ainda. Porém, ainda receio que a indicação de ameaça do Kaspersky possa ser um falso-positivo. Por favor, gostaria que me ajudasse a remover esse vírus! Adiciono que o Windows Defender, durante a varredura do ESET, neutralizou uma ameaça "Trojan:Win32/Occany.c" advinda de uma pasta de jogo pirata que eu havia excluído. Depois de cinco varreduras do Kaspersky, apontando para o Trojan na memória, o computador foi reiniciado em três vezes e nas outras duas resolvi desinfectar sem reiniciar. Após as reinicializações o Trojan reaparecia. Histórico de varreduras do Kaspersky (00:51 até 3:15): 20.09.2018 02.55.12 Rootkit Scan Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/20/2018 1:46 AM Total duration: 20 minutes 15 seconds Completion time: 9/20/2018 3:15 AM 20.09.2018 02.19.12 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 2 minutes 33 seconds Completion time: 9/20/2018 2:21 AM 20.09.2018 02.17.42 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 30 seconds Completion time: 9/20/2018 2:19 AM 20.09.2018 01.58.45 Quick Scan No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 4 minutes 25 seconds Completion time: 9/20/2018 2:03 AM 20.09.2018 01.43.41 Full Scan Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 14 minutes 35 seconds Completion time: 9/20/2018 1:58 AM 20.09.2018 01.39.00 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 2 minutes 56 seconds Completion time: 9/20/2018 1:41 AM 20.09.2018 01.39.00 Rootkit Scan (canceled) No threats detected Detected: 0 Deleted: 0 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 0 seconds Completion time: 9/20/2018 1:38 AM 20.09.2018 01.02.39 Full Scan Objects detected: 2, neutralized: 1, not disinfected: 1 Detected: 2 Deleted: 1 Not disinfected: 1 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 36 minutes 20 seconds Completion time: 9/20/2018 1:38 AM 20.09.2018 00.57.58 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 3 minutes 3 seconds Completion time: 9/20/2018 1:01 AM 20.09.2018 00.56.26 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 21 seconds Completion time: 9/20/2018 12:57 AM 20.09.2018 00.51.03 Advanced Disinfection Objects detected: 1, neutralized: 1, not disinfected: 0 Detected: 1 Deleted: 1 Not disinfected: 0 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 3 minutes 9 seconds Completion time: 9/20/2018 12:54 AM 20.09.2018 00.49.48 Full Scan (canceled) Objects detected: 1, neutralized: 0, not disinfected: 1 Detected: 1 Deleted: 0 Not disinfected: 1 Cloud objects skipped: 496 Release date of databases used for scan: 9/19/2018 10:22 PM Total duration: 1 minute 14 seconds Completion time: 9/20/2018 12:51 AM Logs e reports em ordem de execução. Report do Kaspersky free (e sim, depois disso eu deletei meus jogos piratas, cerca de cinco, criando vergonha na cara para comprá-los. Não tenho vergonha de admitir isso. Que isso sirva de lição a todos: não baixem softwares piratas!): 20.09.2018 02.25.26 Detected object (system memory) not processed System Memory System memory: System Memory Object name: MEM:Trojan.Win32.SEPEH.gen Object type: Trojan program Time: 9/20/2018 2:25 AM 20.09.2018 01.12.42 Detected object (file) deleted D:\Downloads\Jogos\Portal.2.RePack\Portal-2.exe File: D:\Downloads\Jogos\Portal.2.RePack\Portal-2.exe Object name: UDS:Trojan.Win32.Comei.sb Object type: Trojan program Time: 9/20/2018 1:12 AM Log do ADWcleaner: # ------------------------------- # Malwarebytes AdwCleaner 7.2.3.0 # ------------------------------- # Build: 08-30-2018 # Database: (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Scan # ------------------------------- # Start: 09-20-2018 # Duration: 00:00:17 # OS: Windows 10 Pro # Scanned: 41929 # Detected: 0 ***** [ Services ] ***** No malicious services found. ***** [ Folders ] ***** No malicious folders found. ***** [ Files ] ***** No malicious files found. ***** [ DLL ] ***** No malicious DLLs found. ***** [ WMI ] ***** No malicious WMI found. ***** [ Shortcuts ] ***** No malicious shortcuts found. ***** [ Tasks ] ***** No malicious tasks found. ***** [ Registry ] ***** No malicious registry entries found. ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries found. ***** [ Chromium URLs ] ***** No malicious Chromium URLs found. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries found. ***** [ Firefox URLs ] ***** No malicious Firefox URLs found. AdwCleaner_Debug.log - [37645 octets] - [20/09/2018 02:13:23] AdwCleaner[S00].txt - [2884 octets] - [20/09/2018 02:13:57] AdwCleaner[C00].txt - [2851 octets] - [20/09/2018 02:14:30] AdwCleaner[S01].txt - [1422 octets] - [20/09/2018 02:16:01] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ########## Log do Malwarebytes (com opção de rootkits ativada): Malwarebytes www.malwarebytes.com -Detalhes de registro- Data da análise: 20/09/2018 Hora da análise: 02:35 Arquivo de registro: feb1a076-bc96-11e8-975b-d09466f6f85f.json -Informação do software- Versão: 3.6.1.2711 Versão de componentes: 1.0.463 Versão do pacote de definições: 1.0.6923 Licença: Versão de Avaliação -Informação do sistema- Sistema operacional: Windows 10 (Build 17134.285) CPU: x64 Sistema de arquivos: NTFS Usuário: DESKTOP-2IO1G6F\phili -Resumo da análise- Tipo de análise: Análise de Ameaças Análise Iniciada Por: Manual Resultado: Concluído Objetos verificados: 308124 Ameaças detectadas: 4 Ameaças em quarentena: 4 Tempo decorrido: 2 min, 42 seg -Opções da análise- Memória: Habilitado Inicialização: Habilitado Sistema de arquivos: Habilitado Arquivos compactados: Habilitado Rootkits: Habilitado Heurística: Habilitado PUP: Detectar PUM: Detectar -Detalhes da análise- Processo: 0 (Nenhum item malicioso detectado) Módulo: 0 (Nenhum item malicioso detectado) Chave de registro: 1 PUP.Optional.SpyHunter, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\Windows\CURRENTVERSION\UNINSTALL\SpyHunter5, Excluir ao reiniciar, [3920], [552679],1.0.6923 Valor de registro: 0 (Nenhum item malicioso detectado) Dados de registro: 0 (Nenhum item malicioso detectado) Fluxo de dados: 0 (Nenhum item malicioso detectado) Pasta: 0 (Nenhum item malicioso detectado) Arquivo: 3 PUP.Optional.SpyHunter, C:\PROGRAM FILES\ENIGMASOFT\SPYHUNTER\SPYHUNTER5.EXE, Excluir ao reiniciar, [3920], [552678],1.0.6923 PUP.Optional.SpyHunter, C:\PROGRAMDATA\ENIGMASOFT LIMITED\SH5_INSTALLER.EXE, Excluir ao reiniciar, [3920], [552679],1.0.6923 PUP.Optional.SpyHunter, C:\PROGRAMDATA\ENIGMASOFT LIMITED\SH5_INSTALLER.EXE, Excluir ao reiniciar, [3920], [552698],1.0.6923 Setor físico: 0 (Nenhum item malicioso detectado) Instrumentação do Windows (WMI): 0 (Nenhum item malicioso detectado) (end) Log do ZHPCleaner: ~ ZHPCleaner v2018.9.14.172 by Nicolas Coolman (2018/09/14) ~ Run by phili (Administrator) (20/09/2018 02:45:31) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Certificate ZHPCleaner: Legal ~ Type : Repair ~ Report : C:\Users\phili\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\phili\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Pro, 64-bit (Build 17134) ---\ Alternate Data Stream (ADS). (0) ~ No malicious or unnecessary items found. (ADS) ---\ Services (0) ~ No malicious or unnecessary items found. (Service) ---\ Browser internet (0) ~ No malicious or unnecessary items found. (Browser) ---\ Hosts file (1) ~ The hosts file is legitimate (21) ---\ Scheduled automatic tasks. (0) ~ No malicious or unnecessary items found. (Task) ---\ Explorer ( File, Folder) (1) MOVED folder: C:\Users\phili\AppData\Local\OneDrive =>PUP.Optional.Y2Go ---\ Registry ( Key, Value, Data) (3) DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{50f4b9dd-c39c-4241-9199-cedb1d2f772c}\\DhcpNameServer [Bad : 189.5.128.61 189.5.128.66] =>Hijacker.Browser DELETED data: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 189.5.128.61 189.5.128.66] =>Hijacker.Browser DELETED key*: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent [BitTorrent Inc.] =>BitTorrent (P2P) ---\ Summary of the elements found (3) https://nicolascoolman.eu/2017/04/08/pup-optional-y2go/ =>PUP.Optional.Y2Go https://nicolascoolman.eu/2017/11/10/hijacker-browser-3/ =>Hijacker.Browser https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>BitTorrent (P2P) ---\ Other deletions. (10) ~ Registry Keys Tracing deleted (10) ~ Remove the old reports ZHPCleaner. (0) ---\ Result of repair ~ Repair carried out successfully ~ Browser not found (Opera Software) ---\ Statistics ~ Items scanned : 762 ~ Items found : 0 ~ Items cancelled : 0 ~ Items options : 0/7 ~ Space saving (bytes) : 0 ~ End of clean in 00h00mn13s ---\ Reports (2) ZHPCleaner--20092018-02_45_12.txt ZHPCleaner-[R]-20092018-02_45_44.txt Log do ESET Smart Installer (varredura realizada com anti-vírus e anti-malware desligado): C:\Users\phili\AppData\Local\Temp\temp__1366\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__14298\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__1441\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__17846\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__18081\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__18352\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__18883\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__19688\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__19982\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__20048\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__20891\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__21504\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__21595\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__22650\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__24057\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__2510\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__264\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__26721\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__27249\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__28498\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__29311\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__30810\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__3126\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__31310\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__31363\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__32440\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__3512\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__5864\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__7585\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__9021\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Users\phili\AppData\Local\Temp\temp__9850\package\upd.bat PowerShell/TrojanDownloader.Agent.AVN trojan cleaned by deleting C:\Windows\System32\cscsrv.dll a variant of Win64/CoinMiner.NZ trojan cleaned by deleting D:\Livros Eletrônicos\organizar pdfs\e-books\E-Livros\Kaspersky Anti-Virus + Internet Security + Total Security 2018 18.0.0.405 + Activator [CracksNow]\Kaspersky Total Security 2018\Activator + Update.rar a variant of Win32/RiskWare.HackAV.OM application deleted
×