Pour les utilisateurs

Fermer

Bibliothèque
Ma bibliothèque

+ Ajouter à la bibliothèque

Recherche
Recherche

Contacter-nous !
Support 24/24 | Rules regarding submitting

Envoyer un message

Requête à l'aide du formulaire

Nous téléphoner

0 825 300 230

Forum

Vos requêtes

  • Toutes : -
  • Non clôturées : -
  • Dernière : le -
Créer une nouvelle requête

Nous téléphoner

0 825 300 230

Profil

FR

RU CN DE EN ES FR IT JP KZ UZ PL BY ID
Fermer
Services support
Scanners
Dr.Web vxCube
Démo
Bibliothèque virale
Base documentaire

TECHNOLOGIES

TERMINOLOGIE

COURS ET EDU

MYTHES

Actualités

Trojan.KillProc2.30048

Added to the Dr.Web virus database: 2025-07-17

Virus description added:

Technical Information

Malicious functions
Terminates or attempts to terminate
the following system processes:
  • %WINDIR%\explorer.exe
  • <SYSTEM32>\taskhost.exe
  • <SYSTEM32>\dwm.exe
the following user processes:
  • iexplore.exe
  • firefox.exe
Modifies file system
Creates the following files
  • %WINDIR%y1s2fctrp3
  • %CommonProgramFiles%\microsoft shared\gzn4ud7e 8ok6yf 7vepaqjm girly .zip.exe
  • %ProgramFiles%\dvd maker\shared\ bq4kno fishy .zip.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\documentshare\8r3baiec l9hwcs7vvnphd9 glans zmc8ujp (2hbt8wr,dxocjwba).mpg.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\grooveforms\formstemplates\upfgetx lpcu5ai3 vjq39c1gwy titts ol6p1tua .rar.exe
  • %ProgramFiles%\microsoft office\office14\groove\xml files\space templates\viaz50 ihthd33 sweet .avi.exe
  • %ProgramFiles%\microsoft office\templates\z9z7rwe horse 7nd83wovj nom72kl nmibe2 .rar.exe
  • %ProgramFiles%\microsoft office\templates\1033\onenote\14\notebook templates\ikdyfwhy cum bq4kno zn3tvn .mpg.exe
  • %ProgramFiles%\windows journal\templates\gay porn uncut boobs hairy .zip.exe
  • %ProgramFiles%\windows sidebar\shared gadgets\eq7k2xcxt porn uncut .avi.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\idtemplates\black 7nd83wovj big .mpg.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files\fac71w2 l9hwcs7vvnphd9 wifey (sonja,dxocjwba).zip.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files-select\upfgetx bd1l5ir apv53deiq9fw feet .zip.exe
  • %CommonProgramFiles(x86)%\microsoft shared\xxx nom72kl epyxwn hole gh5b6gd7wrv .zip.exe
  • %ProgramFiles(x86)%\microsoft visual studio 8\common7\ide\vsta\itemtemplates\asian 7nd83wovj sgu4m7oc cock .mpeg.exe
  • %ProgramFiles(x86)%\windows sidebar\shared gadgets\tsomq34 cum [bangbus] boobs .mpg.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\ikdyfwhy yzw1afy nom72kl mg9fvb2xk9 .avi.exe
  • %ALLUSERSPROFILE%\microsoft\search\data\temp\z1qxwcd uncut (sonja,y8oxsqa).mpg.exe
  • %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\sharepoint\f07qtt yzw1afy sgu4m7oc (y8oxsqa).zip.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\ddqayq bd1l5ir [bangbus] kfp2yqq b37oavmx289 .rar.exe
  • %ALLUSERSPROFILE%\templates\ wep6b08 bq4kno balls .mpeg.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\h93bklf w6csjja14n1 l9hwcs7vvnphd9 kfp2yqq .avi.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\nom72kl [free] .zip.exe
  • %ALLUSERSPROFILE%\templates\ddqayq 8ok6yf nom72kl 8pfmdyy .zip.exe
  • C:\users\default\appdata\local\microsoft\windows\<INETFILES>\gzn4ud7e cum ihthd33 hole .zip.exe
  • C:\users\default\appdata\local\temp\porn nude nom72kl (jenna).zip.exe
  • C:\users\default\appdata\local\<INETFILES>\nude nude bq4kno zn3tvn .rar.exe
  • C:\users\default\appdata\roaming\microsoft\windows\templates\0287zh xxx horse apv53deiq9fw 8bgkvshe1 .mpeg.exe
  • C:\users\default\templates\wep6b08 gay apv53deiq9fw .avi.exe
  • %LOCALAPPDATA%\microsoft\windows\<INETFILES>\fac71w2 tsomq34 uncut feet sgoibhh .mpg.exe
  • %TEMP%\upfgetx ddqayq nom72kl js80j73 (jade).mpeg.exe
  • %LOCALAPPDATA%\<INETFILES>\wep6b08 bq4kno boobs hotel (karin,2hbt8wr).rar.exe
  • %LOCALAPPDATA%low\mozilla\temp-{070abd97-84e1-4f5f-9c02-f1d76dd9fce4}\f1i7cm cum bq4kno ash balls (2hbt8wr,gina).avi.exe
  • %LOCALAPPDATA%low\mozilla\temp-{1fae114c-c2b0-4da1-b23a-8e5ad0c3d722}\horse nude nom72kl .avi.exe
  • %LOCALAPPDATA%low\mozilla\temp-{3571406e-c08c-4c74-b145-8857b365f6e7}\ big qx2j1b5 .mpeg.exe
  • %APPDATA%\microsoft\templates\gzn4ud7e 7nd83wovj girls ash (cy4xpd,liz).rar.exe
  • %APPDATA%\microsoft\windows\templates\wpjwijv mnho9y54 [milf] hotel .mpeg.exe
  • %APPDATA%\mozilla\firefox\profiles\v08trqk6.default-release\storage\temporary\fac71w2 mzwpstr8n 7vepaqjm gsva2xn .mpg.exe
  • %APPDATA%\thunderbird\profiles\chdgbv82.default-release\storage\temporary\lpcu5ai3 mzwpstr8n girls 8bgkvshe1 .mpeg.exe
  • %HOMEPATH%\templates\s2fkave lpcu5ai3 gay nom72kl 40+ .mpg.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor\upfgetx wep6b08 vjq39c1gwy qx2j1b5 .mpeg.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor.resources\7nd83wovj [bangbus] .rar.exe
  • %WINDIR%\assembly\gac_64\microsoft.grouppolicy.admtmpleditor\4h1e2a346 nude horse apv53deiq9fw cock js80j73 .rar.exe
  • %WINDIR%\assembly\gac_64\microsoft.grouppolicy.admtmpleditor.resources\zc8giv9 wep6b08 apv53deiq9fw latex .avi.exe
  • %WINDIR%\assembly\gac_64\microsoft.sharepoint.businessdata.administration.client\7b6fhxi lpcu5ai3 w6csjja14n1 uncut qx2j1b5 .mpg.exe
  • %WINDIR%\assembly\gac_msil\microsoft.sharepoint.businessdata.administration.client.intl\ikdyfwhy horse mzwpstr8n [bangbus] .mpg.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_32\temp\horse 8ok6yf epyxwn hairy (dxocjwba).zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_32\temp\zap9e41.tmp\eq7k2xcxt bd1l5ir girls (c4w8hqa).avi.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\z1qxwcd 8ok6yf uncut 779mipj .zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zap6b8e.tmp\0287zh nom72kl bd1l5ir apv53deiq9fw .mpg.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape291.tmp\gzn4ud7e xxx uncut .zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape56e.tmp\horse ihthd33 ash (dehod0,jade).mpeg.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_32\temp\s2fkave beast [bangbus] young .mpg.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_64\temp\f07qtt horse vjq39c1gwy cock (y8oxsqa,y8oxsqa).mpeg.exe
  • %WINDIR%\assembly\temp\xakmpl l9hwcs7vvnphd9 zmc8ujp .mpeg.exe
  • %WINDIR%\assembly\tmp\wep6b08 beast [bangbus] jxqgtp 40+ .avi.exe
  • %WINDIR%\microsoft.net\framework\v4.0.30319\temporary asp.net files\wpjwijv beast horse bq4kno b37oavmx289 .mpeg.exe
  • %WINDIR%\microsoft.net\framework64\v4.0.30319\temporary asp.net files\z1qxwcd wep6b08 bq4kno 50+ .zip.exe
  • %WINDIR%\pla\templates\zc8giv9 cum apv53deiq9fw b37oavmx289 (cy4xpd).rar.exe
  • %WINDIR%\security\templates\z1qxwcd bd1l5ir h93bklf girls shoes (jade).mpeg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\microsoft\windows\<INETFILES>\w6csjja14n1 ihthd33 jxqgtp .mpeg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\temp\mzwpstr8n vjq39c1gwy titts (jade).mpeg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\roaming\microsoft\windows\templates\viaz50 lpcu5ai3 girls gsva2xn .zip.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\microsoft\windows\<INETFILES>\bd1l5ir girls 6tl9zg0uqa .rar.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\temp\tsomq34 sgu4m7oc boots .zip.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\templates\horse beast hot (!) kfp2yqq .rar.exe
  • %WINDIR%\syswow64\config\systemprofile\xakmpl mzwpstr8n l9hwcs7vvnphd9 .mpeg.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\upfgetx cum [free] feet sgoibhh .zip.exe
  • %WINDIR%\syswow64\fxstmp\black w6csjja14n1 horse nom72kl gh5b6gd7wrv .zip.exe
  • %WINDIR%\syswow64\ime\shared\cum 8ok6yf vjq39c1gwy 6tl9zg0uqa (sarah,rdl1tfkz).rar.exe
  • %WINDIR%\syswow64\config\systemprofile\porn lpcu5ai3 ihthd33 titts rv0y8n .mpeg.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\black wep6b08 l9hwcs7vvnphd9 lzxyhb7k .avi.exe
  • %WINDIR%\syswow64\fxstmp\7b6fhxi bd1l5ir [milf] sgoibhh .zip.exe
  • %WINDIR%\syswow64\ime\shared\wpjwijv porn nom72kl [bangbus] glans (y8oxsqa,c4w8hqa).avi.exe
  • %WINDIR%\temp\fac71w2 mnho9y54 sperm hot (!) feet .mpeg.exe
  • %WINDIR%\winsxs\installtemp\7b6fhxi xxx nude big shoes .rar.exe
  • <Current directory>\sqjaed7r1vnw
  • %CommonProgramFiles%\microsoft shared\0287zh sperm big hole lzxyhb7k .avi.exe
  • %CommonProgramFiles%\microsoft shared\gzn4ud7e sperm mnho9y54 ihthd33 titts gh5b6gd7wrv (y8oxsqa).avi.exe
  • %ProgramFiles%\dvd maker\shared\8ok6yf horse bq4kno sm (jade).rar.exe
  • %ProgramFiles%\dvd maker\shared\yzw1afy sgu4m7oc .zip.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\documentshare\xakmpl l9hwcs7vvnphd9 legs gh5b6gd7wrv .avi.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\documentshare\mnho9y54 hot (!) b37oavmx289 .zip.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\grooveforms\formstemplates\wep6b08 l9hwcs7vvnphd9 .mpg.exe
  • %ProgramFiles%\microsoft office\office14\groove\tooldata\groove.net\grooveforms\formstemplates\viaz50 8ok6yf wep6b08 7vepaqjm rv0y8n .mpeg.exe
  • %ProgramFiles%\microsoft office\office14\groove\xml files\space templates\w6csjja14n1 bq4kno ae2sd7u4xh .avi.exe
  • %ProgramFiles%\microsoft office\office14\groove\xml files\space templates\jxaglwti ddqayq ihthd33 zmc8ujp .rar.exe
  • %ProgramFiles%\microsoft office\templates\8ok6yf cum uncut ejn547rbxhd1 (liz,liz).avi.exe
  • %ProgramFiles%\microsoft office\templates\beast 7nd83wovj [bangbus] (sandy).mpg.exe
  • %ProgramFiles%\microsoft office\templates\1033\onenote\14\notebook templates\viaz50 sperm beast girls (sarah).avi.exe
  • %ProgramFiles%\microsoft office\templates\1033\onenote\14\notebook templates\upfgetx bd1l5ir sperm uncut .mpeg.exe
  • %ProgramFiles%\windows journal\templates\jxaglwti horse wep6b08 epyxwn girly .zip.exe
  • %ProgramFiles%\windows journal\templates\z1qxwcd lpcu5ai3 uncut (karin,liz).rar.exe
  • %ProgramFiles%\windows sidebar\shared gadgets\lpcu5ai3 big cock .mpg.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\idtemplates\h93bklf beast ihthd33 .mpg.exe
  • %ProgramFiles%\windows sidebar\shared gadgets\xakmpl bd1l5ir l9hwcs7vvnphd9 ae2sd7u4xh .zip.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\idtemplates\z9z7rwe 8ok6yf bq4kno legs (g6u8n4r).rar.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files\8ok6yf sgu4m7oc rv0y8n .mpg.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files-select\gzn4ud7e yzw1afy nom72kl boobs .mpg.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files\viaz50 bd1l5ir vjq39c1gwy .mpeg.exe
  • %ProgramFiles(x86)%\adobe\acrobat reader dc\reader\webresources\resource0\static\js\plugins\my-sharepoint-files-select\7nd83wovj vjq39c1gwy .zip.exe
  • %CommonProgramFiles(x86)%\microsoft shared\7nd83wovj h93bklf uncut .avi.exe
  • %ProgramFiles(x86)%\microsoft visual studio 8\common7\ide\vsta\itemtemplates\4h1e2a346 bd1l5ir h93bklf uncut 40+ (hyo87il).zip.exe
  • %CommonProgramFiles(x86)%\microsoft shared\7b6fhxi yzw1afy ihthd33 kfp2yqq .mpeg.exe
  • %ProgramFiles(x86)%\microsoft visual studio 8\common7\ide\vsta\itemtemplates\gay horse girls (karin,haj1oyikd).avi.exe
  • %ProgramFiles(x86)%\windows sidebar\shared gadgets\4h1e2a346 7nd83wovj tsomq34 uncut ash .mpg.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\0287zh gay vjq39c1gwy hotel .zip.exe
  • %ALLUSERSPROFILE%\microsoft\search\data\temp\porn mzwpstr8n [free] boots .avi.exe
  • %ProgramFiles(x86)%\windows sidebar\shared gadgets\f1i7cm h93bklf [bangbus] legs .zip.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\0287zh h93bklf l9hwcs7vvnphd9 ash sgoibhh (liz,36mho73).avi.exe
  • %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\sharepoint\upfgetx nude nom72kl sgu4m7oc qx2j1b5 .avi.exe
  • %ALLUSERSPROFILE%\microsoft\search\data\temp\f07qtt yzw1afy [milf] ae2sd7u4xh .zip.exe
  • %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\sharepoint\z9z7rwe beast apv53deiq9fw .rar.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\4h1e2a346 lpcu5ai3 xxx [bangbus] nrb42wq .zip.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\gzn4ud7e tsomq34 mzwpstr8n epyxwn .avi.exe
  • %ALLUSERSPROFILE%\templates\zc8giv9 lpcu5ai3 h93bklf l9hwcs7vvnphd9 kfp2yqq gsva2xn .rar.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\eq7k2xcxt horse sgu4m7oc (hyo87il,2hbt8wr).rar.exe
  • %ALLUSERSPROFILE%\templates\nom72kl w6csjja14n1 [milf] qq6w54yfhtqrbwcslg (g6u8n4r).rar.exe
  • %ALLUSERSPROFILE%\microsoft\search\data\temp\w6csjja14n1 yzw1afy hot (!) kfp2yqq .mpeg.exe
  • %ALLUSERSPROFILE%\microsoft\rac\temp\7b6fhxi 8ok6yf bq4kno glans 50+ .zip.exe
  • %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\sharepoint\eq7k2xcxt nude [bangbus] lady .rar.exe
  • %ALLUSERSPROFILE%\microsoft\search\data\temp\sperm ihthd33 kfp2yqq ejn547rbxhd1 .avi.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\viaz50 7nd83wovj uncut (c4w8hqa).mpeg.exe
  • %ALLUSERSPROFILE%\microsoft\windows\start menu\programs\sharepoint\f07qtt beast ddqayq nom72kl qq6w54yfhtqrbwcslg (2hbt8wr).avi.exe
  • %ALLUSERSPROFILE%\microsoft\windows\templates\f07qtt mzwpstr8n [free] .rar.exe
  • %ALLUSERSPROFILE%\templates\upfgetx horse xakmpl big qq6w54yfhtqrbwcslg .mpg.exe
  • %ALLUSERSPROFILE%\templates\0287zh ddqayq wep6b08 ihthd33 boobs .rar.exe
  • C:\users\default\appdata\local\microsoft\windows\<INETFILES>\horse hot (!) legs ejn547rbxhd1 .zip.exe
  • C:\users\default\appdata\local\temp\eq7k2xcxt h93bklf uncut ash rv0y8n .zip.exe
  • C:\users\default\appdata\local\microsoft\windows\<INETFILES>\gzn4ud7e nom72kl uncut fw58kpr41ob1w .avi.exe
  • C:\users\default\appdata\local\<INETFILES>\horse tsomq34 epyxwn 779mipj .mpeg.exe
  • C:\users\default\appdata\roaming\microsoft\windows\templates\ sgu4m7oc 40+ .avi.exe
  • C:\users\default\templates\4h1e2a346 w6csjja14n1 tsomq34 ihthd33 fw58kpr41ob1w .mpg.exe
  • C:\users\default\appdata\local\temp\mnho9y54 sgu4m7oc nmibe2 (sarah,sonja).rar.exe
  • C:\users\default\appdata\local\<INETFILES>\mzwpstr8n ihthd33 .zip.exe
  • C:\users\default\appdata\roaming\microsoft\windows\templates\f1i7cm 7nd83wovj horse hot (!) .avi.exe
  • C:\users\default\templates\viaz50 h93bklf ihthd33 lzxyhb7k .mpeg.exe
  • %LOCALAPPDATA%\microsoft\windows\<INETFILES>\z1qxwcd bd1l5ir mzwpstr8n epyxwn rv0y8n .mpg.exe
  • %LOCALAPPDATA%\microsoft\windows\<INETFILES>\yzw1afy vjq39c1gwy (36mho73,rdl1tfkz).mpeg.exe
  • %TEMP%\tsomq34 uncut .rar.exe
  • %LOCALAPPDATA%\<INETFILES>\yzw1afy l9hwcs7vvnphd9 hairy (g6u8n4r).rar.exe
  • %TEMP%\nude sperm hot (!) legs eigt45 (g6u8n4r).rar.exe
  • %LOCALAPPDATA%low\mozilla\temp-{1fae114c-c2b0-4da1-b23a-8e5ad0c3d722}\f1i7cm bd1l5ir w6csjja14n1 big .mpeg.exe
  • %LOCALAPPDATA%\<INETFILES>\cum uncut balls (y8oxsqa).avi.exe
  • %LOCALAPPDATA%low\mozilla\temp-{3571406e-c08c-4c74-b145-8857b365f6e7}\porn cum ihthd33 zmc8ujp .zip.exe
  • %LOCALAPPDATA%low\mozilla\temp-{070abd97-84e1-4f5f-9c02-f1d76dd9fce4}\z9z7rwe lpcu5ai3 beast vjq39c1gwy jxqgtp 8bgkvshe1 .avi.exe
  • %LOCALAPPDATA%low\mozilla\temp-{1fae114c-c2b0-4da1-b23a-8e5ad0c3d722}\jxaglwti mnho9y54 epyxwn b37oavmx289 (g6u8n4r,jade).mpeg.exe
  • %APPDATA%\microsoft\templates\gzn4ud7e porn wep6b08 hot (!) (g6u8n4r).zip.exe
  • %LOCALAPPDATA%low\mozilla\temp-{3571406e-c08c-4c74-b145-8857b365f6e7}\mzwpstr8n gay [free] gh5b6gd7wrv .mpeg.exe
  • %APPDATA%\microsoft\windows\templates\f1i7cm cum bq4kno .avi.exe
  • %APPDATA%\mozilla\firefox\profiles\v08trqk6.default-release\storage\temporary\w6csjja14n1 tsomq34 bq4kno ejn547rbxhd1 .rar.exe
  • %HOMEPATH%\templates\xakmpl hot (!) hole hotel .rar.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor\w6csjja14n1 ihthd33 wifey (g6u8n4r,jade).zip.exe
  • %APPDATA%\microsoft\templates\f1i7cm 7nd83wovj big hole .rar.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor.resources\mzwpstr8n wep6b08 nom72kl gsva2xn .zip.exe
  • %APPDATA%\microsoft\windows\templates\gzn4ud7e xxx big (liz).zip.exe
  • %WINDIR%\assembly\gac_64\microsoft.grouppolicy.admtmpleditor\8r3baiec xakmpl bq4kno glans .mpg.exe
  • %WINDIR%\assembly\gac_64\microsoft.grouppolicy.admtmpleditor.resources\sperm hot (!) titts ae2sd7u4xh .mpg.exe
  • %APPDATA%\mozilla\firefox\profiles\v08trqk6.default-release\storage\temporary\s2fkave nom72kl xxx nom72kl ash .mpg.exe
  • %WINDIR%\assembly\gac_64\microsoft.sharepoint.businessdata.administration.client\ nude uncut .mpeg.exe
  • %WINDIR%\assembly\gac_msil\microsoft.sharepoint.businessdata.administration.client.intl\w6csjja14n1 nude big glans (rdl1tfkz,jenna).rar.exe
  • %APPDATA%\thunderbird\profiles\chdgbv82.default-release\storage\temporary\fac71w2 mzwpstr8n bq4kno qx2j1b5 .rar.exe
  • %HOMEPATH%\templates\xxx ihthd33 hairy .mpeg.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor\asian cum cum [free] .zip.exe
  • %WINDIR%\assembly\gac_32\microsoft.grouppolicy.admtmpleditor.resources\gzn4ud7e bd1l5ir yzw1afy ihthd33 lzxyhb7k .zip.exe
  • %WINDIR%\assembly\gac_64\microsoft.grouppolicy.admtmpleditor.resources\jxaglwti nom72kl [free] (gina,2hbt8wr).zip.exe
  • %WINDIR%\assembly\gac_64\microsoft.sharepoint.businessdata.administration.client\black 8ok6yf 8ok6yf vjq39c1gwy .mpg.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_32\temp\h93bklf big zn3tvn .rar.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\gay sgu4m7oc young .zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zap6b8e.tmp\upfgetx 8ok6yf epyxwn young .rar.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape291.tmp\ddqayq [free] gsva2xn .zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape56e.tmp\nude sgu4m7oc legs qx2j1b5 .rar.exe
  • %WINDIR%\assembly\gac_msil\microsoft.sharepoint.businessdata.administration.client.intl\sperm apv53deiq9fw (liz).zip.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_32\temp\viaz50 mnho9y54 girls .mpg.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_64\temp\upfgetx mzwpstr8n bq4kno fishy (g6u8n4r,gina).mpg.exe
  • %WINDIR%\assembly\temp\8r3baiec h93bklf ihthd33 (sonja,sonja).avi.exe
  • %WINDIR%\assembly\tmp\h93bklf big hole ae2sd7u4xh (sandy).avi.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_32\temp\f1i7cm lpcu5ai3 hot (!) glans zmc8ujp (dxocjwba,sandy).avi.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_32\temp\zap9e41.tmp\mnho9y54 l9hwcs7vvnphd9 girly .zip.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\black horse 7vepaqjm ash .avi.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zap6b8e.tmp\zc8giv9 nom72kl lpcu5ai3 apv53deiq9fw (sonja).mpg.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape291.tmp\viaz50 sperm 7vepaqjm .rar.exe
  • %WINDIR%\assembly\nativeimages_v2.0.50727_64\temp\zape56e.tmp\viaz50 xxx yzw1afy epyxwn hole .avi.exe
  • %WINDIR%\microsoft.net\framework\v4.0.30319\temporary asp.net files\ikdyfwhy nom72kl hot (!) .avi.exe
  • %WINDIR%\microsoft.net\framework64\v4.0.30319\temporary asp.net files\wpjwijv lpcu5ai3 w6csjja14n1 [free] cock .rar.exe
  • %WINDIR%\pla\templates\4h1e2a346 porn uncut .mpeg.exe
  • %WINDIR%\security\templates\nude yzw1afy bq4kno titts 8pfmdyy (sonja).avi.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_32\temp\4h1e2a346 xakmpl hot (!) 8bgkvshe1 (dxocjwba).mpg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\microsoft\windows\<INETFILES>\7nd83wovj sgu4m7oc (sonja).mpg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\temp\w6csjja14n1 nom72kl gh5b6gd7wrv (karin,dxocjwba).rar.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\roaming\microsoft\windows\templates\gay lpcu5ai3 [bangbus] ae2sd7u4xh .mpeg.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\microsoft\windows\<INETFILES>\horse vjq39c1gwy 779mipj .rar.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\temp\jxaglwti gay uncut .zip.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\templates\wpjwijv horse girls gsva2xn .avi.exe
  • %WINDIR%\assembly\nativeimages_v4.0.30319_64\temp\cum l9hwcs7vvnphd9 zmc8ujp .avi.exe
  • %WINDIR%\assembly\temp\fac71w2 mzwpstr8n bd1l5ir ihthd33 (sandy,y8oxsqa).mpg.exe
  • %WINDIR%\assembly\tmp\8r3baiec 8ok6yf apv53deiq9fw .mpg.exe
  • %WINDIR%\syswow64\config\systemprofile\mzwpstr8n hot (!) hole .rar.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\nom72kl uncut .mpg.exe
  • %WINDIR%\syswow64\fxstmp\8ok6yf 7vepaqjm .rar.exe
  • %WINDIR%\syswow64\ime\shared\h93bklf nom72kl sgoibhh .rar.exe
  • %WINDIR%\microsoft.net\framework\v4.0.30319\temporary asp.net files\s2fkave horse porn l9hwcs7vvnphd9 eigt45 .zip.exe
  • %WINDIR%\microsoft.net\framework64\v4.0.30319\temporary asp.net files\h93bklf beast [milf] qq6w54yfhtqrbwcslg .rar.exe
  • %WINDIR%\pla\templates\ddqayq beast vjq39c1gwy legs .rar.exe
  • %WINDIR%\syswow64\config\systemprofile\zc8giv9 horse ihthd33 .mpeg.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\zc8giv9 ddqayq sperm [free] glans qx2j1b5 .avi.exe
  • %WINDIR%\security\templates\asian wep6b08 gay l9hwcs7vvnphd9 hotel .zip.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\microsoft\windows\<INETFILES>\beast sgu4m7oc ol6p1tua (2hbt8wr).mpeg.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\local\temp\zc8giv9 cum uncut ae2sd7u4xh .mpeg.exe
  • %WINDIR%\syswow64\fxstmp\upfgetx gay sgu4m7oc sm (rdl1tfkz,sarah).avi.exe
  • %WINDIR%\serviceprofiles\localservice\appdata\roaming\microsoft\windows\templates\7b6fhxi 8ok6yf apv53deiq9fw wifey (karin).mpg.exe
  • %WINDIR%\syswow64\ime\shared\4h1e2a346 ddqayq beast [free] fishy .mpeg.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\microsoft\windows\<INETFILES>\wpjwijv 8ok6yf gay bq4kno titts (jenna).avi.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\local\temp\wpjwijv nom72kl xakmpl sgu4m7oc hole .rar.exe
  • %WINDIR%\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\templates\fac71w2 nude sgu4m7oc balls (gina).avi.exe
  • %WINDIR%\temp\cum big sm (36mho73,jade).avi.exe
  • %WINDIR%\syswow64\config\systemprofile\cum [bangbus] hairy .mpg.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\ikdyfwhy porn lpcu5ai3 bq4kno sm (jade,c4w8hqa).avi.exe
  • %WINDIR%\syswow64\fxstmp\yzw1afy beast sgu4m7oc gh5b6gd7wrv .zip.exe
  • %WINDIR%\syswow64\ime\shared\z9z7rwe nude cum vjq39c1gwy fw58kpr41ob1w .zip.exe
  • %WINDIR%\syswow64\config\systemprofile\zc8giv9 bd1l5ir [milf] wifey .avi.exe
  • %WINDIR%\syswow64\config\systemprofile\appdata\local\microsoft\windows\<INETFILES>\mzwpstr8n apv53deiq9fw (gina,haj1oyikd).avi.exe
  • %WINDIR%\syswow64\fxstmp\7b6fhxi beast mzwpstr8n sgu4m7oc .zip.exe
  • %WINDIR%\syswow64\ime\shared\bd1l5ir [free] kfp2yqq girly .zip.exe
  • %WINDIR%\temp\black wep6b08 nom72kl [milf] .mpeg.exe
  • %WINDIR%\winsxs\installtemp\gzn4ud7e mnho9y54 beast hot (!) titts .avi.exe
  • %WINDIR%\winsxs\installtemp\upfgetx horse nude big .mpg.exe
Miscellaneous
Searches for the following windows
  • ClassName: 'Progman' WindowName: ''
  • ClassName: 'Proxy Desktop' WindowName: ''
Restarts the analyzed sample
Executes the following
  • '%WINDIR%\explorer.exe'

Recommandations pour le traitement

  1. Si le système d'exploitation peut être démarré (en mode normal ou en mode sans échec), téléchargez Dr.Web Security Space et lancez un scan complet de votre ordinateur et de tous les supports amovibles que vous utilisez. En savoir plus sur Dr.Web Security Space.
  2. Si le démarrage du système d'exploitation est impossible, veuillez modifier les paramètres du BIOS de votre ordinateur pour démarrer votre ordinateur via CD/DVD ou clé USB. Téléchargez l'image du disque de secours de restauration du système Dr.Web® LiveDisk ou l'utilitaire pour enregistrer Dr.Web® LiveDisk sur une clé USB, puis préparez la clé USB appropriée. Démarrez l'ordinateur à l'aide de cette clé et lancez le scan complet et le traitement des menaces détectées.
Version démo gratuite

 

Télécharger Dr.Web

Par le numéro de série

Veuillez lancer le scan complet du système à l'aide de Dr.Web Antivirus pour Mac OS.

Version démo gratuite

 

Télécharger Dr.Web sur le site

Par le numéro de série

Télécharger Dr.Web sur l'Apple Store

Veuillez lancer le scan complet de toutes les partitions du disque à l'aide de Dr.Web Antivirus pour Linux.

Version démo gratuite

 

Télécharger Dr.Web

Par le numéro de série

  1. Si votre appareil mobile fonctionne correctement, veuillez télécharger et installer sur votre appareil mobile Dr.Web pour Android. Lancez un scan complet et suivez les recommandations sur la neutralisation des menaces détectées.
  2. Si l'appareil mobile est bloqué par le Trojan de la famille Android.Locker (un message sur la violation grave de la loi ou la demande d'une rançon est affiché sur l'écran de l'appareil mobile), procédez comme suit:
    • démarrez votre Smartphone ou votre tablette en mode sans échec (si vous ne savez pas comment faire, consultez la documentation de l'appareil mobile ou contactez le fabricant) ;
    • puis téléchargez et installez sur votre appareil mobile Dr.Web pour Android et lancez un scan complet puis suivez les recommandations sur la neutralisation des menaces détectées ;
    • Débranchez votre appareil et rebranchez-le.

En savoir plus sur Dr.Web pour Android

Free trial

14 days

Download now
Get it on Google Play