TROJ_AGENT_005911.TOMB

2012年10月12日

別名:

Worm:Win32/Xolxo.A (Microsoft); W32/HLLP.11042.gen (McAfee); W32.SillyP2P (Symantec); P2P-Worm.Win32.Delf.aj (Kaspersky); BehavesLike.Win32.Malware.bsm (vs) (Sunbelt); Win32.HLLP.Aple.A (FSecure)

プラットフォーム:

Windows 2000, Windows XP, Windows Server 2003

危険度:

ダメージ度:

感染力:

感染確認数:

マルウェアタイプ: トロイの木馬型
破壊活動の有無: なし
暗号化:
感染報告の有無: はい

概要

マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。

詳細

ファイルサイズ 123,059 bytes

タイプ EXE

メモリ常駐なし

発見日 2012年4月21日

侵入方法

マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。

他のシステム変更

マルウェアは、以下のファイルを削除します。

%System Root%\AUTOEXEC.BAT
%Desktop%\vcredist_x86.exe
%Desktop%\WinPcap_4_1_2.exe
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe
%Program Files%\Internet Explorer\iedw.exe
%Program Files%\Internet Explorer\IEXPLORE.EXE
%Program Files%\Messenger\msmsgs.exe
%Program Files%\Movie Maker\moviemk.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe
%Program Files%\NetMeeting\cb32.exe
%Program Files%\NetMeeting\conf.exe
%Program Files%\NetMeeting\wb32.exe
%Program Files%\Outlook Express\msimn.exe
%Program Files%\Outlook Express\oemig50.exe
%Program Files%\Outlook Express\setup50.exe
%Program Files%\Outlook Express\wab.exe
%Program Files%\Outlook Express\wabmig.exe
%Program Files%\Windows Media Player\migrate.exe
%Program Files%\Windows Media Player\mplayer2.exe
%Program Files%\Windows Media Player\setup_wm.exe
%Program Files%\Windows Media Player\wmplayer.exe
%Program Files%\Windows NT\Accessories\wordpad.exe
%Program Files%\Windows NT\dialer.exe
%Program Files%\Windows NT\hypertrm.exe
%Program Files%\Windows NT\Pinball\PINBALL.EXE
%Program Files%\WinPcap\rpcapd.exe
%Program Files%\WinPcap\Uninstall.exe
%System Root%\vcredist_x86.exe
%Windows%\explorer.exe
%Windows%\Help\Tours\mmTour\tour.exe
%Windows%\hh.exe
%Windows%\msagent\agentsvr.exe
%Windows%\mui\muisetup.exe
%Windows%\NOTEPAD.EXE
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe
%Windows%\pchealth\helpctr\binaries\HelpHost.exe
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe
%Windows%\pchealth\helpctr\binaries\HscUpd.exe
%Windows%\pchealth\helpctr\binaries\msconfig.exe
%Windows%\pchealth\helpctr\binaries\notiflag.exe
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe
%Windows%\regedit.exe
%System%\accwiz.exe
%System%\actmovie.exe
%System%\ahui.exe
%System%\alg.exe
%System%\append.exe
%System%\arp.exe
%System%\asr_fmt.exe
%System%\asr_ldm.exe
%System%\asr_pfu.exe
%System%\at.exe
%System%\atmadm.exe
%System%\attrib.exe
%System%\auditusr.exe
%System%\autochk.exe
%System%\autoconv.exe
%System%\autofmt.exe
%System%\autolfn.exe
%System%\blastcln.exe
%System%\bootcfg.exe
%System%\bootok.exe
%System%\bootvrfy.exe
%System%\cacls.exe
%System%\calc.exe
%System%\charmap.exe
%System%\chcp.com
%System%\chkdsk.exe
%System%\chkntfs.exe
%System%\cidaemon.exe
%System%\cipher.exe
%System%\cisvc.exe
%System%\ckcnv.exe
%System%\cleanmgr.exe
%System%\cliconfg.exe
%System%\clipbrd.exe
%System%\clipsrv.exe
%System%\cmd.exe
%System%\cmdl32.exe
%System%\cmmon32.exe
%System%\cmstp.exe
%System%\Com\comrepl.exe
%System%\Com\comrereg.exe
%System%\command.com
%System%\comp.exe
%System%\compact.exe
%System%\config\systemprofile\Desktop\vcredist_x86.exe
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe
%System%\conime.exe
%System%\control.exe
%System%\convert.exe
%System%\cscript.exe
%System%\csrss.exe
%System%\ctfmon.exe
%System%\dcomcnfg.exe
%System%\ddeshare.exe
%System%\debug.exe
%System%\defrag.exe
%System%\dfrgfat.exe
%System%\dfrgntfs.exe
%System%\diantz.exe
%System%\diskcomp.com
%System%\diskcopy.com
%System%\diskpart.exe
%System%\diskperf.exe
%System%\dllhost.exe
%System%\dllhst3g.exe
%System%\dmadmin.exe
%System%\dmremote.exe
%System%\doskey.exe
%System%\dosx.exe
%System%\dplaysvr.exe
%System%\dpnsvr.exe
%System%\dpvsetup.exe
%System%\driverquery.exe
%System%\drwatson.exe
%System%\drwtsn32.exe
%System%\dumprep.exe
%System%\dvdplay.exe
%System%\dvdupgrd.exe
%System%\dwwin.exe
%System%\dxdiag.exe
%System%\edit.com
%System%\edlin.exe
%System%\esentutl.exe
%System%\eudcedit.exe
%System%\eventcreate.exe
%System%\eventtriggers.exe
%System%\eventvwr.exe
%System%\exe2bin.exe
%System%\expand.exe
%System%\extrac32.exe
%System%\fastopen.exe
%System%\fc.exe
%System%\find.exe
%System%\findstr.exe
%System%\finger.exe
%System%\fixmapi.exe
%System%\fltMc.exe
%System%\fontview.exe
%System%\forcedos.exe
%System%\format.com
%System%\freecell.exe
%System%\fsquirt.exe
%System%\fsutil.exe
%System%\ftp.exe
%System%\gdi.exe
%System%\getmac.exe
%System%\gpresult.exe
%System%\gpupdate.exe
%System%\graftabl.com
%System%\graphics.com
%System%\grpconv.exe
%System%\help.exe
%System%\hostname.exe
%System%\ie4uinit.exe
%System%\iexpress.exe
%System%\imapi.exe
%System%\ipconfig.exe
%System%\ipsec6.exe
%System%\ipv6.exe
%System%\ipxroute.exe
%System%\kb16.com
%System%\krnl386.exe
%System%\label.exe
%System%\lights.exe
%System%\lnkstub.exe
%System%\loadfix.com
%System%\locator.exe
%System%\lodctr.exe
%System%\logagent.exe
%System%\login.cmd
%System%\logman.exe
%System%\logoff.exe
%System%\logon.scr
%System%\logonui.exe
%System%\lpq.exe
%System%\lpr.exe
%System%\lsass.exe
%System%\magnify.exe
%System%\makecab.exe
%System%\mem.exe
%System%\migpwd.exe
%System%\mmc.exe
%System%\mnmsrvc.exe
%System%\mobsync.exe
%System%\mode.com
%System%\more.com
%System%\mountvol.exe
%System%\mplay32.exe
%System%\mpnotify.exe
%System%\mqbkup.exe
%System%\mqsvc.exe
%System%\mqtgsvc.exe
%System%\mrinfo.exe
%System%\mscdexnt.exe
%System%\MsDtc\Trace\msdtcvtr.bat
%System%\msdtc.exe
%System%\msg.exe
%System%\mshearts.exe
%System%\mshta.exe
%System%\msiexec.exe
%System%\mspaint.exe
%System%\msswchx.exe
%System%\mstinit.exe
%System%\mstsc.exe
%System%\narrator.exe
%System%\nbtstat.exe
%System%\nddeapir.exe
%System%\net.exe
%System%\net1.exe
%System%\netdde.exe
%System%\netsetup.exe
%System%\netsh.exe
%System%\netstat.exe
%System%\nlsfunc.exe
%System%\notepad.exe
%System%\npp\nppagent.exe
%System%\nslookup.exe
%System%\ntbackup.exe
%System%\ntkrnlpa.exe
%System%\ntoskrnl.exe
%System%\ntsd.exe
%System%\ntvdm.exe
%System%\nw16.exe
%System%\nwscript.exe
%System%\odbcad32.exe
%System%\odbcconf.exe
%System%\oobe\msoobe.exe
%System%\oobe\oobebaln.exe
%System%\openfiles.exe
%System%\osk.exe
%System%\osuninst.exe
%System%\packager.exe
%System%\pathping.exe
%System%\pentnt.exe
%System%\perfmon.exe
%System%\ping.exe
%System%\ping6.exe
%System%\powercfg.exe
%System%\print.exe
%System%\progman.exe
%System%\proquota.exe
%System%\proxycfg.exe
%System%\qappsrv.exe
%System%\qprocess.exe
%System%\qwinsta.exe
%System%\rasautou.exe
%System%\rasdial.exe
%System%\rasphone.exe
%System%\rcimlby.exe
%System%\rcp.exe
%System%\rdpclip.exe
%System%\rdsaddin.exe
%System%\rdshost.exe
%System%\recover.exe
%System%\redir.exe
%System%\reg.exe
%System%\regedt32.exe
%System%\regini.exe
%System%\regsvr32.exe
%System%\regwiz.exe
%System%\relog.exe
%System%\replace.exe
%System%\reset.exe

作成活動

マルウェアは、以下のファイルを作成します。

%System%\control.exe-
%System%\convert.exe-
%System%\cscript.exe-
%System%\csrss.exe-
%System%\ctfmon.exe-
%System%\dcomcnfg.exe-
%System%\ddeshare.exe-
%System%\debug.exe-
%System%\defrag.exe-
%System%\dfrgfat.exe-
%System%\dfrgntfs.exe-
%System%\diantz.exe-
%System%\diskcomp.com-
%System%\diskcopy.com-
%System%\diskpart.exe-
%System%\diskperf.exe-
%System%\dllhost.exe-
%System%\dllhst3g.exe-
%System%\dmadmin.exe-
%System%\dmremote.exe-
%System%\doskey.exe-
%System%\dosx.exe-
%System%\dplaysvr.exe-
%System%\dpnsvr.exe-
%System%\dpvsetup.exe-
%System%\driverquery.exe-
%System%\drwatson.exe-
%System%\drwtsn32.exe-
%System%\dumprep.exe-
%System%\dvdplay.exe-
%System%\dvdupgrd.exe-
%System%\dwwin.exe-
%System%\dxdiag.exe-
%System%\edit.com-
%System%\edlin.exe-
%System%\esentutl.exe-
%System%\eudcedit.exe-
%System%\eventcreate.exe-
%System%\eventtriggers.exe-
%System%\eventvwr.exe-
%System%\exe2bin.exe-
%System%\expand.exe-
%System%\extrac32.exe-
%System%\fastopen.exe-
%System%\fc.exe-
%System%\find.exe-
%System%\findstr.exe-
%System%\finger.exe-
%System%\fixmapi.exe-
%System%\fltMc.exe-
%System%\fontview.exe-
%System%\forcedos.exe-
%System%\format.com-
%System%\freecell.exe-
%System%\fsquirt.exe-
%System%\fsutil.exe-
%System%\ftp.exe-
%System%\gdi.exe-
%System%\getmac.exe-
%System%\gpresult.exe-
%System%\gpupdate.exe-
%System%\graftabl.com-
%System%\graphics.com-
%System%\grpconv.exe-
%System%\help.exe-
%System%\hostname.exe-
%System%\ie4uinit.exe-
%System%\iexpress.exe-
%System%\imapi.exe-
%System%\ipconfig.exe-
%System%\ipsec6.exe-
%System%\ipv6.exe-
%System%\ipxroute.exe-
%System%\kb16.com-
%System%\krnl386.exe-
%System%\label.exe-
%System%\lights.exe-
%System%\lnkstub.exe-
%System%\loadfix.com-
%System%\locator.exe-
%System%\lodctr.exe-
%System%\logagent.exe-
%System%\login.cmd-
%System%\logman.exe-
%System%\logoff.exe-
%System%\logon.scr-
%System%\logonui.exe-
%System%\lpq.exe-
%System%\lpr.exe-
%System%\lsass.exe-
%System%\magnify.exe-
%System%\makecab.exe-
%System%\mem.exe-
%System%\migpwd.exe-
%System%\mmc.exe-
%System%\mnmsrvc.exe-
%System%\mobsync.exe-
%System%\mode.com-
%System%\more.com-
%System%\mountvol.exe-
%System%\mplay32.exe-
%System%\mpnotify.exe-
%System%\mqbkup.exe-
%System%\mqsvc.exe-
%System%\mqtgsvc.exe-
%System%\mrinfo.exe-
%System%\mscdexnt.exe-
%System%\MsDtc\Trace\msdtcvtr.bat-
%System%\msdtc.exe-
%System%\msg.exe-
%System%\mshearts.exe-
%System%\mshta.exe-
%System%\msiexec.exe-
%System%\mspaint.exe-
%System%\msswchx.exe-
%System%\mstinit.exe-
%System%\mstsc.exe-
%System%\narrator.exe-
%System%\nbtstat.exe-
%System%\nddeapir.exe-
%System%\net.exe-
%System%\net1.exe-
%System%\netdde.exe-
%System%\netsetup.exe-
%System%\netsh.exe-
%System%\netstat.exe-
%System%\nlsfunc.exe-
%System%\notepad.exe-
%System%\npp\nppagent.exe-
%System%\nslookup.exe-
%System%\ntbackup.exe-
%System%\ntkrnlpa.exe-
%System%\ntoskrnl.exe-
%System%\ntsd.exe-
%System%\ntvdm.exe-
%System%\nw16.exe-
%System%\nwscript.exe-
%System%\odbcad32.exe-
%System%\odbcconf.exe-
%System%\oobe\msoobe.exe-
%System%\oobe\oobebaln.exe-
%System%\openfiles.exe-
%System%\osk.exe-
%System%\osuninst.exe-
%System%\packager.exe-
%System%\pathping.exe-
%System%\pentnt.exe-
%System%\perfmon.exe-
%System%\ping.exe-
%System%\ping6.exe-
%System%\powercfg.exe-
%System%\print.exe-
%System%\progman.exe-
%System%\proquota.exe-
%System%\proxycfg.exe-
%System%\qappsrv.exe-
%System%\qprocess.exe-
%System%\qwinsta.exe-
%System%\rasautou.exe-
%System%\rasdial.exe-
%System%\rasphone.exe-
%System%\rcimlby.exe-
%System%\rcp.exe-
%System%\rdpclip.exe-
%System%\rdsaddin.exe-
%System%\rdshost.exe-
%System%\recover.exe-
%System%\redir.exe-
%System%\reg.exe-
%System%\regedt32.exe-
%System%\regini.exe-
%System%\regsvr32.exe-
%System%\regwiz.exe-
%System%\relog.exe-
%System%\replace.exe-
%System%\reset.exe-
%System Root%\AUTOEXEC.BAT
%Desktop%\vcredist_x86.exe
%Desktop%\WinPcap_4_1_2.exe
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe
%Program Files%\Internet Explorer\iedw.exe
%Program Files%\Internet Explorer\IEXPLORE.EXE
%Program Files%\Messenger\msmsgs.exe
%Program Files%\Movie Maker\moviemk.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe
%Program Files%\NetMeeting\cb32.exe
%Program Files%\NetMeeting\conf.exe
%Program Files%\NetMeeting\wb32.exe
%Program Files%\Outlook Express\msimn.exe
%Program Files%\Outlook Express\oemig50.exe
%Program Files%\Outlook Express\setup50.exe
%Program Files%\Outlook Express\wab.exe
%Program Files%\Outlook Express\wabmig.exe
%Program Files%\Windows Media Player\migrate.exe
%Program Files%\Windows Media Player\mplayer2.exe
%Program Files%\Windows Media Player\setup_wm.exe
%Program Files%\Windows Media Player\wmplayer.exe
%Program Files%\Windows NT\Accessories\wordpad.exe
%Program Files%\Windows NT\dialer.exe
%Program Files%\Windows NT\hypertrm.exe
%Program Files%\Windows NT\Pinball\PINBALL.EXE
%Program Files%\WinPcap\rpcapd.exe
%Program Files%\WinPcap\Uninstall.exe
%System Root%\vcredist_x86.exe
%Windows%\explorer.exe
%Windows%\Help\Tours\mmTour\tour.exe
%Windows%\hh.exe
%Windows%\msagent\agentsvr.exe
%Windows%\mui\muisetup.exe
%Windows%\NOTEPAD.EXE
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe
%Windows%\pchealth\helpctr\binaries\HelpHost.exe
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe
%Windows%\pchealth\helpctr\binaries\HscUpd.exe
%Windows%\pchealth\helpctr\binaries\msconfig.exe
%Windows%\pchealth\helpctr\binaries\notiflag.exe
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe
%Windows%\regedit.exe
%System%\accwiz.exe
%System%\actmovie.exe
%System%\ahui.exe
%System%\alg.exe
%System%\append.exe
%System%\arp.exe
%System%\asr_fmt.exe
%System%\asr_ldm.exe
%System%\asr_pfu.exe
%System%\at.exe
%System%\atmadm.exe
%System%\attrib.exe
%System%\auditusr.exe
%System%\autochk.exe
%System%\autoconv.exe
%System%\autofmt.exe
%System%\autolfn.exe
%System%\blastcln.exe
%System%\bootcfg.exe
%System%\bootok.exe
%System%\bootvrfy.exe
%System%\cacls.exe
%System%\calc.exe
%System%\charmap.exe
%System%\chcp.com
%System%\chkdsk.exe
%System%\chkntfs.exe
%System%\cidaemon.exe
%System%\cipher.exe
%System%\cisvc.exe
%System%\ckcnv.exe
%System%\cleanmgr.exe
%System%\cliconfg.exe
%System%\clipbrd.exe
%System%\clipsrv.exe
%System%\cmd.exe
%System%\cmdl32.exe
%System%\cmmon32.exe
%System%\cmstp.exe
%System%\Com\comrepl.exe
%System%\Com\comrereg.exe
%System%\command.com
%System%\comp.exe
%System%\compact.exe
%System%\config\systemprofile\Desktop\vcredist_x86.exe
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe
%System%\conime.exe
%System%\control.exe
%System%\convert.exe
%System%\cscript.exe
%System%\csrss.exe
%System%\ctfmon.exe
%System%\dcomcnfg.exe
%System%\ddeshare.exe
%System%\debug.exe
%System%\defrag.exe
%System%\dfrgfat.exe
%System%\dfrgntfs.exe
%System%\diantz.exe
%System%\diskcomp.com
%System%\diskcopy.com
%System%\diskpart.exe
%System%\diskperf.exe
%System%\dllhost.exe
%System%\dllhst3g.exe
%System%\dmadmin.exe
%System%\dmremote.exe
%System%\doskey.exe
%System%\dosx.exe
%System%\dplaysvr.exe
%System%\dpnsvr.exe
%System%\dpvsetup.exe
%System%\driverquery.exe
%System%\drwatson.exe
%System%\drwtsn32.exe
%System%\dumprep.exe
%System%\dvdplay.exe
%System%\dvdupgrd.exe
%System%\dwwin.exe
%System%\dxdiag.exe
%System%\edit.com
%System%\edlin.exe
%System%\esentutl.exe
%System%\eudcedit.exe
%System%\eventcreate.exe
%System%\eventtriggers.exe
%System%\eventvwr.exe
%System%\exe2bin.exe
%System%\expand.exe
%System%\extrac32.exe
%System%\fastopen.exe
%System%\fc.exe
%System%\find.exe
%System%\findstr.exe
%System%\finger.exe
%System%\fixmapi.exe
%System%\fltMc.exe
%System%\fontview.exe
%System%\forcedos.exe
%System%\format.com
%System%\freecell.exe
%System%\fsquirt.exe
%System%\fsutil.exe
%System%\ftp.exe
%System%\gdi.exe
%System%\getmac.exe
%System%\gpresult.exe
%System%\gpupdate.exe
%System%\graftabl.com
%System%\graphics.com
%System%\grpconv.exe
%System%\help.exe
%System%\hostname.exe
%System%\ie4uinit.exe
%System%\iexpress.exe
%System%\imapi.exe
%System%\ipconfig.exe
%System%\ipsec6.exe
%System%\ipv6.exe
%System%\ipxroute.exe
%System%\kb16.com
%System%\krnl386.exe
%System%\label.exe
%System%\lights.exe
%System%\lnkstub.exe
%System%\loadfix.com
%System%\locator.exe
%System%\lodctr.exe
%System%\logagent.exe
%System%\login.cmd
%System%\logman.exe
%System%\logoff.exe
%System%\logon.scr
%System%\logonui.exe
%System%\lpq.exe
%System%\lpr.exe
%System%\lsass.exe
%System%\magnify.exe
%System%\makecab.exe
%System%\mem.exe
%System%\migpwd.exe
%System%\mmc.exe
%System%\mnmsrvc.exe
%System%\mobsync.exe
%System%\mode.com
%System%\more.com
%System%\mountvol.exe
%System%\mplay32.exe
%System%\mpnotify.exe
%System%\mqbkup.exe
%System%\mqsvc.exe
%System%\mqtgsvc.exe
%System%\mrinfo.exe
%System%\mscdexnt.exe
%System%\MsDtc\Trace\msdtcvtr.bat
%System%\msdtc.exe
%System%\msg.exe
%System%\mshearts.exe
%System%\mshta.exe
%System%\msiexec.exe
%System%\mspaint.exe
%System%\msswchx.exe
%System%\mstinit.exe
%System%\mstsc.exe
%System%\narrator.exe
%System%\nbtstat.exe
%System%\nddeapir.exe
%System%\net.exe
%System%\net1.exe
%System%\netdde.exe
%System%\netsetup.exe
%System%\netsh.exe
%System%\netstat.exe
%System%\nlsfunc.exe
%System%\notepad.exe
%System%\npp\nppagent.exe
%System%\nslookup.exe
%System%\ntbackup.exe
%System%\ntkrnlpa.exe
%System%\ntoskrnl.exe
%System%\ntsd.exe
%System%\ntvdm.exe
%System%\nw16.exe
%System%\nwscript.exe
%System%\odbcad32.exe
%System%\odbcconf.exe
%System%\oobe\msoobe.exe
%System%\oobe\oobebaln.exe
%System%\openfiles.exe
%System%\osk.exe
%System%\osuninst.exe
%System%\packager.exe
%System%\pathping.exe
%System%\pentnt.exe
%System%\perfmon.exe
%System%\ping.exe
%System%\ping6.exe
%System%\powercfg.exe
%System%\print.exe
%System%\progman.exe
%System%\proquota.exe
%System%\proxycfg.exe
%System%\qappsrv.exe
%System%\qprocess.exe
%System%\qwinsta.exe
%System%\rasautou.exe
%System%\rasdial.exe
%System%\rasphone.exe
%System%\rcimlby.exe
%System%\rcp.exe
%System%\rdpclip.exe
%System%\rdsaddin.exe
%System Root%\AUTOEXEC.BAT-
%Desktop%\vcredist_x86.exe-
%Desktop%\WinPcap_4_1_2.exe-
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe-
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe-
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe-
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe-
%Program Files%\Internet Explorer\iedw.exe-
%Program Files%\Internet Explorer\IEXPLORE.EXE-
%Program Files%\Messenger\msmsgs.exe-
%Program Files%\Movie Maker\moviemk.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe-
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe-
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe-
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe-
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe-
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe-
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe-
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe-
%Program Files%\NetMeeting\cb32.exe-
%Program Files%\NetMeeting\conf.exe-
%Program Files%\NetMeeting\wb32.exe-
%Program Files%\Outlook Express\msimn.exe-
%Program Files%\Outlook Express\oemig50.exe-
%Program Files%\Outlook Express\setup50.exe-
%Program Files%\Outlook Express\wab.exe-
%Program Files%\Outlook Express\wabmig.exe-
%Program Files%\Windows Media Player\migrate.exe-
%Program Files%\Windows Media Player\mplayer2.exe-
%Program Files%\Windows Media Player\setup_wm.exe-
%Program Files%\Windows Media Player\wmplayer.exe-
%Program Files%\Windows NT\Accessories\wordpad.exe-
%Program Files%\Windows NT\dialer.exe-
%Program Files%\Windows NT\hypertrm.exe-
%Program Files%\Windows NT\Pinball\PINBALL.EXE-
%Program Files%\WinPcap\rpcapd.exe-
%Program Files%\WinPcap\Uninstall.exe-
%System Root%\vcredist_x86.exe-
%Windows%\explorer.exe-
%Windows%\Help\Tours\mmTour\tour.exe-
%Windows%\hh.exe-
%Windows%\msagent\agentsvr.exe-
%Windows%\mui\muisetup.exe-
%Windows%\NOTEPAD.EXE-
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe-
%Windows%\pchealth\helpctr\binaries\HelpHost.exe-
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe-
%Windows%\pchealth\helpctr\binaries\HscUpd.exe-
%Windows%\pchealth\helpctr\binaries\msconfig.exe-
%Windows%\pchealth\helpctr\binaries\notiflag.exe-
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe-
%Windows%\regedit.exe-
%System%\accwiz.exe-
%System%\actmovie.exe-
%System%\ahui.exe-
%System%\alg.exe-
%System%\append.exe-
%System%\arp.exe-
%System%\asr_fmt.exe-
%System%\asr_ldm.exe-
%System%\asr_pfu.exe-
%System%\at.exe-
%System%\atmadm.exe-
%System%\attrib.exe-
%System%\auditusr.exe-
%System%\autochk.exe-
%System%\autoconv.exe-
%System%\autofmt.exe-
%System%\autolfn.exe-
%System%\blastcln.exe-
%System%\bootcfg.exe-
%System%\bootok.exe-
%System%\bootvrfy.exe-
%System%\cacls.exe-
%System%\calc.exe-
%System%\charmap.exe-
%System%\chcp.com-
%System%\chkdsk.exe-
%System%\chkntfs.exe-
%System%\cidaemon.exe-
%System%\cipher.exe-
%System%\cisvc.exe-
%System%\ckcnv.exe-
%System%\cleanmgr.exe-
%System%\cliconfg.exe-
%System%\clipbrd.exe-
%System%\clipsrv.exe-
%System%\cmd.exe-
%System%\cmdl32.exe-
%System%\cmmon32.exe-
%System%\cmstp.exe-
%System%\Com\comrepl.exe-
%System%\Com\comrereg.exe-
%System%\command.com-
%System%\comp.exe-
%System%\compact.exe-
%System%\config\systemprofile\Desktop\vcredist_x86.exe-
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe-
%System%\conime.exe-
%System%\rdshost.exe
%System%\recover.exe
%System%\redir.exe
%System%\reg.exe
%System%\regedt32.exe
%System%\regini.exe
%System%\regsvr32.exe
%System%\regwiz.exe
%System%\relog.exe
%System%\replace.exe
%System%\reset.exe

このウイルス情報は、自動解析システムにより作成されました。

対応方法

対応検索エンジン: 9.200

手順 1

Windows XP および Windows Server 2003 のユーザは、コンピュータからマルウェアもしくはアドウェア等を完全に削除するために、ウイルス検索の実行前には必ず「システムの復元」を無効にしてください。

手順 2

以下のファイルを検索し削除します。

[ 詳細 ]

コンポーネントファイルが隠しファイル属性の場合があります。[詳細設定オプション]をクリックし、[隠しファイルとフォルダの検索]のチェックボックスをオンにし、検索結果に隠しファイルとフォルダが含まれるようにしてください。

%System Root%\AUTOEXEC.BAT-
%Desktop%\vcredist_x86.exe-
%Desktop%\WinPcap_4_1_2.exe-
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe-
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe-
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe-
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe-
%Program Files%\Internet Explorer\iedw.exe-
%Program Files%\Internet Explorer\IEXPLORE.EXE-
%Program Files%\Messenger\msmsgs.exe-
%Program Files%\Movie Maker\moviemk.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe-
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe-
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe-
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe-
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe-
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe-
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe-
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe-
%Program Files%\NetMeeting\cb32.exe-
%Program Files%\NetMeeting\conf.exe-
%Program Files%\NetMeeting\wb32.exe-
%Program Files%\Outlook Express\msimn.exe-
%Program Files%\Outlook Express\oemig50.exe-
%Program Files%\Outlook Express\setup50.exe-
%Program Files%\Outlook Express\wab.exe-
%Program Files%\Outlook Express\wabmig.exe-
%Program Files%\Windows Media Player\migrate.exe-
%Program Files%\Windows Media Player\mplayer2.exe-
%Program Files%\Windows Media Player\setup_wm.exe-
%Program Files%\Windows Media Player\wmplayer.exe-
%Program Files%\Windows NT\Accessories\wordpad.exe-
%Program Files%\Windows NT\dialer.exe-
%Program Files%\Windows NT\hypertrm.exe-
%Program Files%\Windows NT\Pinball\PINBALL.EXE-
%Program Files%\WinPcap\rpcapd.exe-
%Program Files%\WinPcap\Uninstall.exe-
%System Root%\vcredist_x86.exe-
%Windows%\explorer.exe-
%Windows%\Help\Tours\mmTour\tour.exe-
%Windows%\hh.exe-
%Windows%\msagent\agentsvr.exe-
%Windows%\mui\muisetup.exe-
%Windows%\NOTEPAD.EXE-
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe-
%Windows%\pchealth\helpctr\binaries\HelpHost.exe-
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe-
%Windows%\pchealth\helpctr\binaries\HscUpd.exe-
%Windows%\pchealth\helpctr\binaries\msconfig.exe-
%Windows%\pchealth\helpctr\binaries\notiflag.exe-
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe-
%Windows%\regedit.exe-
%System%\accwiz.exe-
%System%\actmovie.exe-
%System%\ahui.exe-
%System%\alg.exe-
%System%\append.exe-
%System%\arp.exe-
%System%\asr_fmt.exe-
%System%\asr_ldm.exe-
%System%\asr_pfu.exe-
%System%\at.exe-
%System%\atmadm.exe-
%System%\attrib.exe-
%System%\auditusr.exe-
%System%\autochk.exe-
%System%\autoconv.exe-
%System%\autofmt.exe-
%System%\autolfn.exe-
%System%\blastcln.exe-
%System%\bootcfg.exe-
%System%\bootok.exe-
%System%\bootvrfy.exe-
%System%\cacls.exe-
%System%\calc.exe-
%System%\charmap.exe-
%System%\chcp.com-
%System%\chkdsk.exe-
%System%\chkntfs.exe-
%System%\cidaemon.exe-
%System%\cipher.exe-
%System%\cisvc.exe-
%System%\ckcnv.exe-
%System%\cleanmgr.exe-
%System%\cliconfg.exe-
%System%\clipbrd.exe-
%System%\clipsrv.exe-
%System%\cmd.exe-
%System%\cmdl32.exe-
%System%\cmmon32.exe-
%System%\cmstp.exe-
%System%\Com\comrepl.exe-
%System%\Com\comrereg.exe-
%System%\command.com-
%System%\comp.exe-
%System%\compact.exe-
%System%\config\systemprofile\Desktop\vcredist_x86.exe-
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe-
%System%\conime.exe-
%System%\control.exe-
%System%\convert.exe-
%System%\cscript.exe-
%System%\csrss.exe-
%System%\ctfmon.exe-
%System%\dcomcnfg.exe-
%System%\ddeshare.exe-
%System%\debug.exe-
%System%\defrag.exe-
%System%\dfrgfat.exe-
%System%\dfrgntfs.exe-
%System%\diantz.exe-
%System%\diskcomp.com-
%System%\diskcopy.com-
%System%\diskpart.exe-
%System%\diskperf.exe-
%System%\dllhost.exe-
%System%\dllhst3g.exe-
%System%\dmadmin.exe-
%System%\dmremote.exe-
%System%\doskey.exe-
%System%\dosx.exe-
%System%\dplaysvr.exe-
%System%\dpnsvr.exe-
%System%\dpvsetup.exe-
%System%\driverquery.exe-
%System%\drwatson.exe-
%System%\drwtsn32.exe-
%System%\dumprep.exe-
%System%\dvdplay.exe-
%System%\dvdupgrd.exe-
%System%\dwwin.exe-
%System%\dxdiag.exe-
%System%\edit.com-
%System%\edlin.exe-
%System%\esentutl.exe-
%System%\eudcedit.exe-
%System%\eventcreate.exe-
%System%\eventtriggers.exe-
%System%\eventvwr.exe-
%System%\exe2bin.exe-
%System%\expand.exe-
%System%\extrac32.exe-
%System%\fastopen.exe-
%System%\fc.exe-
%System%\find.exe-
%System%\findstr.exe-
%System%\finger.exe-
%System%\fixmapi.exe-
%System%\fltMc.exe-
%System%\fontview.exe-
%System%\forcedos.exe-
%System%\format.com-
%System%\freecell.exe-
%System%\fsquirt.exe-
%System%\fsutil.exe-
%System%\ftp.exe-
%System%\gdi.exe-
%System%\getmac.exe-
%System%\gpresult.exe-
%System%\gpupdate.exe-
%System%\graftabl.com-
%System%\graphics.com-
%System%\grpconv.exe-
%System%\help.exe-
%System%\hostname.exe-
%System%\ie4uinit.exe-
%System%\iexpress.exe-
%System%\imapi.exe-
%System%\ipconfig.exe-
%System%\ipsec6.exe-
%System%\ipv6.exe-
%System%\ipxroute.exe-
%System%\kb16.com-
%System%\krnl386.exe-
%System%\label.exe-
%System%\lights.exe-
%System%\lnkstub.exe-
%System%\loadfix.com-
%System%\locator.exe-
%System%\lodctr.exe-
%System%\logagent.exe-
%System%\login.cmd-
%System%\logman.exe-
%System%\logoff.exe-
%System%\logon.scr-
%System%\logonui.exe-
%System%\lpq.exe-
%System%\lpr.exe-
%System%\lsass.exe-
%System%\magnify.exe-
%System%\makecab.exe-
%System%\mem.exe-
%System%\migpwd.exe-
%System%\mmc.exe-
%System%\mnmsrvc.exe-
%System%\mobsync.exe-
%System%\mode.com-
%System%\more.com-
%System%\mountvol.exe-
%System%\mplay32.exe-
%System%\mpnotify.exe-
%System%\mqbkup.exe-
%System%\mqsvc.exe-
%System%\mqtgsvc.exe-
%System%\mrinfo.exe-
%System%\mscdexnt.exe-
%System%\MsDtc\Trace\msdtcvtr.bat-
%System%\msdtc.exe-
%System%\msg.exe-
%System%\mshearts.exe-
%System%\mshta.exe-
%System%\msiexec.exe-
%System%\mspaint.exe-
%System%\msswchx.exe-
%System%\mstinit.exe-
%System%\mstsc.exe-
%System%\narrator.exe-
%System%\nbtstat.exe-
%System%\nddeapir.exe-
%System%\net.exe-
%System%\net1.exe-
%System%\netdde.exe-
%System%\netsetup.exe-
%System%\netsh.exe-
%System%\netstat.exe-
%System%\nlsfunc.exe-
%System%\notepad.exe-
%System%\npp\nppagent.exe-
%System%\nslookup.exe-
%System%\ntbackup.exe-
%System%\ntkrnlpa.exe-
%System%\ntoskrnl.exe-
%System%\ntsd.exe-
%System%\ntvdm.exe-
%System%\nw16.exe-
%System%\nwscript.exe-
%System%\odbcad32.exe-
%System%\odbcconf.exe-
%System%\oobe\msoobe.exe-
%System%\oobe\oobebaln.exe-
%System%\openfiles.exe-
%System%\osk.exe-
%System%\osuninst.exe-
%System%\packager.exe-
%System%\pathping.exe-
%System%\pentnt.exe-
%System%\perfmon.exe-
%System%\ping.exe-
%System%\ping6.exe-
%System%\powercfg.exe-
%System%\print.exe-
%System%\progman.exe-
%System%\proquota.exe-
%System%\proxycfg.exe-
%System%\qappsrv.exe-
%System%\qprocess.exe-
%System%\qwinsta.exe-
%System%\rasautou.exe-
%System%\rasdial.exe-
%System%\rasphone.exe-
%System%\rcimlby.exe-
%System%\rcp.exe-
%System%\rdpclip.exe-
%System%\rdsaddin.exe-
%System%\rdshost.exe-
%System%\recover.exe-
%System%\redir.exe-
%System%\reg.exe-
%System%\regedt32.exe-
%System%\regini.exe-
%System%\regsvr32.exe-
%System%\regwiz.exe-
%System%\relog.exe-
%System%\replace.exe-
%System%\reset.exe-
%System Root%\AUTOEXEC.BAT
%Desktop%\vcredist_x86.exe
%Desktop%\WinPcap_4_1_2.exe
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe
%Program Files%\Internet Explorer\iedw.exe
%Program Files%\Internet Explorer\IEXPLORE.EXE
%Program Files%\Messenger\msmsgs.exe
%Program Files%\Movie Maker\moviemk.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe
%Program Files%\NetMeeting\cb32.exe
%Program Files%\NetMeeting\conf.exe
%Program Files%\NetMeeting\wb32.exe
%Program Files%\Outlook Express\msimn.exe
%Program Files%\Outlook Express\oemig50.exe
%Program Files%\Outlook Express\setup50.exe
%Program Files%\Outlook Express\wab.exe
%Program Files%\Outlook Express\wabmig.exe
%Program Files%\Windows Media Player\migrate.exe
%Program Files%\Windows Media Player\mplayer2.exe
%Program Files%\Windows Media Player\setup_wm.exe
%Program Files%\Windows Media Player\wmplayer.exe
%Program Files%\Windows NT\Accessories\wordpad.exe
%Program Files%\Windows NT\dialer.exe
%Program Files%\Windows NT\hypertrm.exe
%Program Files%\Windows NT\Pinball\PINBALL.EXE
%Program Files%\WinPcap\rpcapd.exe
%Program Files%\WinPcap\Uninstall.exe
%System Root%\vcredist_x86.exe
%Windows%\explorer.exe
%Windows%\Help\Tours\mmTour\tour.exe
%Windows%\hh.exe
%Windows%\msagent\agentsvr.exe
%Windows%\mui\muisetup.exe
%Windows%\NOTEPAD.EXE
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe
%Windows%\pchealth\helpctr\binaries\HelpHost.exe
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe
%Windows%\pchealth\helpctr\binaries\HscUpd.exe
%Windows%\pchealth\helpctr\binaries\msconfig.exe
%Windows%\pchealth\helpctr\binaries\notiflag.exe
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe
%Windows%\regedit.exe
%System%\accwiz.exe
%System%\actmovie.exe
%System%\ahui.exe
%System%\alg.exe
%System%\append.exe
%System%\arp.exe
%System%\asr_fmt.exe
%System%\asr_ldm.exe
%System%\asr_pfu.exe
%System%\at.exe
%System%\atmadm.exe
%System%\attrib.exe
%System%\auditusr.exe
%System%\autochk.exe
%System%\autoconv.exe
%System%\autofmt.exe
%System%\autolfn.exe
%System%\blastcln.exe
%System%\bootcfg.exe
%System%\bootok.exe
%System%\bootvrfy.exe
%System%\cacls.exe
%System%\calc.exe
%System%\charmap.exe
%System%\chcp.com
%System%\chkdsk.exe
%System%\chkntfs.exe
%System%\cidaemon.exe
%System%\cipher.exe
%System%\cisvc.exe
%System%\ckcnv.exe
%System%\cleanmgr.exe
%System%\cliconfg.exe
%System%\clipbrd.exe
%System%\clipsrv.exe
%System%\cmd.exe
%System%\cmdl32.exe
%System%\cmmon32.exe
%System%\cmstp.exe
%System%\Com\comrepl.exe
%System%\Com\comrereg.exe
%System%\command.com
%System%\comp.exe
%System%\compact.exe
%System%\config\systemprofile\Desktop\vcredist_x86.exe
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe
%System%\conime.exe
%System%\control.exe
%System%\convert.exe
%System%\cscript.exe
%System%\csrss.exe
%System%\ctfmon.exe
%System%\dcomcnfg.exe
%System%\ddeshare.exe
%System%\debug.exe
%System%\defrag.exe
%System%\dfrgfat.exe
%System%\dfrgntfs.exe
%System%\diantz.exe
%System%\diskcomp.com
%System%\diskcopy.com
%System%\diskpart.exe
%System%\diskperf.exe
%System%\dllhost.exe
%System%\dllhst3g.exe
%System%\dmadmin.exe
%System%\dmremote.exe
%System%\doskey.exe
%System%\dosx.exe
%System%\dplaysvr.exe
%System%\dpnsvr.exe
%System%\dpvsetup.exe
%System%\driverquery.exe
%System%\drwatson.exe
%System%\drwtsn32.exe
%System%\dumprep.exe
%System%\dvdplay.exe
%System%\dvdupgrd.exe
%System%\dwwin.exe
%System%\dxdiag.exe
%System%\edit.com
%System%\edlin.exe
%System%\esentutl.exe
%System%\eudcedit.exe
%System%\eventcreate.exe
%System%\eventtriggers.exe
%System%\eventvwr.exe
%System%\exe2bin.exe
%System%\expand.exe
%System%\extrac32.exe
%System%\fastopen.exe
%System%\fc.exe
%System%\find.exe
%System%\findstr.exe
%System%\finger.exe
%System%\fixmapi.exe
%System%\fltMc.exe
%System%\fontview.exe
%System%\forcedos.exe
%System%\format.com
%System%\freecell.exe
%System%\fsquirt.exe
%System%\fsutil.exe
%System%\ftp.exe
%System%\gdi.exe
%System%\getmac.exe
%System%\gpresult.exe
%System%\gpupdate.exe
%System%\graftabl.com
%System%\graphics.com
%System%\grpconv.exe
%System%\help.exe
%System%\hostname.exe
%System%\ie4uinit.exe
%System%\iexpress.exe
%System%\imapi.exe
%System%\ipconfig.exe
%System%\ipsec6.exe
%System%\ipv6.exe
%System%\ipxroute.exe
%System%\kb16.com
%System%\krnl386.exe
%System%\label.exe
%System%\lights.exe
%System%\lnkstub.exe
%System%\loadfix.com
%System%\locator.exe
%System%\lodctr.exe
%System%\logagent.exe
%System%\login.cmd
%System%\logman.exe
%System%\logoff.exe
%System%\logon.scr
%System%\logonui.exe
%System%\lpq.exe
%System%\lpr.exe
%System%\lsass.exe
%System%\magnify.exe
%System%\makecab.exe
%System%\mem.exe
%System%\migpwd.exe
%System%\mmc.exe
%System%\mnmsrvc.exe
%System%\mobsync.exe
%System%\mode.com
%System%\more.com
%System%\mountvol.exe
%System%\mplay32.exe
%System%\mpnotify.exe
%System%\mqbkup.exe
%System%\mqsvc.exe
%System%\mqtgsvc.exe
%System%\mrinfo.exe
%System%\mscdexnt.exe
%System%\MsDtc\Trace\msdtcvtr.bat
%System%\msdtc.exe
%System%\msg.exe
%System%\mshearts.exe
%System%\mshta.exe
%System%\msiexec.exe
%System%\mspaint.exe
%System%\msswchx.exe
%System%\mstinit.exe
%System%\mstsc.exe
%System%\narrator.exe
%System%\nbtstat.exe
%System%\nddeapir.exe
%System%\net.exe
%System%\net1.exe
%System%\netdde.exe
%System%\netsetup.exe
%System%\netsh.exe
%System%\netstat.exe
%System%\nlsfunc.exe
%System%\notepad.exe
%System%\npp\nppagent.exe
%System%\nslookup.exe
%System%\ntbackup.exe
%System%\ntkrnlpa.exe
%System%\ntoskrnl.exe
%System%\ntsd.exe
%System%\ntvdm.exe
%System%\nw16.exe
%System%\nwscript.exe
%System%\odbcad32.exe
%System%\odbcconf.exe
%System%\oobe\msoobe.exe
%System%\oobe\oobebaln.exe
%System%\openfiles.exe
%System%\osk.exe
%System%\osuninst.exe
%System%\packager.exe
%System%\pathping.exe
%System%\pentnt.exe
%System%\perfmon.exe
%System%\ping.exe
%System%\ping6.exe
%System%\powercfg.exe
%System%\print.exe
%System%\progman.exe
%System%\proquota.exe
%System%\proxycfg.exe
%System%\qappsrv.exe
%System%\qprocess.exe
%System%\qwinsta.exe
%System%\rasautou.exe
%System%\rasdial.exe
%System%\rasphone.exe
%System%\rcimlby.exe
%System%\rcp.exe
%System%\rdpclip.exe
%System%\rdsaddin.exe
%System%\rdshost.exe
%System%\recover.exe
%System%\redir.exe
%System%\reg.exe
%System%\regedt32.exe
%System%\regini.exe
%System%\regsvr32.exe
%System%\regwiz.exe
%System%\relog.exe
%System%\replace.exe
%System%\reset.exe

マルウェアのコンポーネントファイルの削除：

[スタート]-[検索]-[ファイルとフォルダすべて]を選択します。
註：Windowsのバージョンによって異なります。
[ファイル名のすべてまたは一部]に以下を入力してください。

%System Root%\AUTOEXEC.BAT-
%Desktop%\vcredist_x86.exe-
%Desktop%\WinPcap_4_1_2.exe-
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe-
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe-
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe-
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe-
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe-
%Program Files%\Internet Explorer\iedw.exe-
%Program Files%\Internet Explorer\IEXPLORE.EXE-
%Program Files%\Messenger\msmsgs.exe-
%Program Files%\Movie Maker\moviemk.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe-
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe-
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe-
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe-
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe-
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe-
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe-
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe-
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe-
%Program Files%\NetMeeting\cb32.exe-
%Program Files%\NetMeeting\conf.exe-
%Program Files%\NetMeeting\wb32.exe-
%Program Files%\Outlook Express\msimn.exe-
%Program Files%\Outlook Express\oemig50.exe-
%Program Files%\Outlook Express\setup50.exe-
%Program Files%\Outlook Express\wab.exe-
%Program Files%\Outlook Express\wabmig.exe-
%Program Files%\Windows Media Player\migrate.exe-
%Program Files%\Windows Media Player\mplayer2.exe-
%Program Files%\Windows Media Player\setup_wm.exe-
%Program Files%\Windows Media Player\wmplayer.exe-
%Program Files%\Windows NT\Accessories\wordpad.exe-
%Program Files%\Windows NT\dialer.exe-
%Program Files%\Windows NT\hypertrm.exe-
%Program Files%\Windows NT\Pinball\PINBALL.EXE-
%Program Files%\WinPcap\rpcapd.exe-
%Program Files%\WinPcap\Uninstall.exe-
%System Root%\vcredist_x86.exe-
%Windows%\explorer.exe-
%Windows%\Help\Tours\mmTour\tour.exe-
%Windows%\hh.exe-
%Windows%\msagent\agentsvr.exe-
%Windows%\mui\muisetup.exe-
%Windows%\NOTEPAD.EXE-
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe-
%Windows%\pchealth\helpctr\binaries\HelpHost.exe-
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe-
%Windows%\pchealth\helpctr\binaries\HscUpd.exe-
%Windows%\pchealth\helpctr\binaries\msconfig.exe-
%Windows%\pchealth\helpctr\binaries\notiflag.exe-
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe-
%Windows%\regedit.exe-
%System%\accwiz.exe-
%System%\actmovie.exe-
%System%\ahui.exe-
%System%\alg.exe-
%System%\append.exe-
%System%\arp.exe-
%System%\asr_fmt.exe-
%System%\asr_ldm.exe-
%System%\asr_pfu.exe-
%System%\at.exe-
%System%\atmadm.exe-
%System%\attrib.exe-
%System%\auditusr.exe-
%System%\autochk.exe-
%System%\autoconv.exe-
%System%\autofmt.exe-
%System%\autolfn.exe-
%System%\blastcln.exe-
%System%\bootcfg.exe-
%System%\bootok.exe-
%System%\bootvrfy.exe-
%System%\cacls.exe-
%System%\calc.exe-
%System%\charmap.exe-
%System%\chcp.com-
%System%\chkdsk.exe-
%System%\chkntfs.exe-
%System%\cidaemon.exe-
%System%\cipher.exe-
%System%\cisvc.exe-
%System%\ckcnv.exe-
%System%\cleanmgr.exe-
%System%\cliconfg.exe-
%System%\clipbrd.exe-
%System%\clipsrv.exe-
%System%\cmd.exe-
%System%\cmdl32.exe-
%System%\cmmon32.exe-
%System%\cmstp.exe-
%System%\Com\comrepl.exe-
%System%\Com\comrereg.exe-
%System%\command.com-
%System%\comp.exe-
%System%\compact.exe-
%System%\config\systemprofile\Desktop\vcredist_x86.exe-
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe-
%System%\conime.exe-
%System%\control.exe-
%System%\convert.exe-
%System%\cscript.exe-
%System%\csrss.exe-
%System%\ctfmon.exe-
%System%\dcomcnfg.exe-
%System%\ddeshare.exe-
%System%\debug.exe-
%System%\defrag.exe-
%System%\dfrgfat.exe-
%System%\dfrgntfs.exe-
%System%\diantz.exe-
%System%\diskcomp.com-
%System%\diskcopy.com-
%System%\diskpart.exe-
%System%\diskperf.exe-
%System%\dllhost.exe-
%System%\dllhst3g.exe-
%System%\dmadmin.exe-
%System%\dmremote.exe-
%System%\doskey.exe-
%System%\dosx.exe-
%System%\dplaysvr.exe-
%System%\dpnsvr.exe-
%System%\dpvsetup.exe-
%System%\driverquery.exe-
%System%\drwatson.exe-
%System%\drwtsn32.exe-
%System%\dumprep.exe-
%System%\dvdplay.exe-
%System%\dvdupgrd.exe-
%System%\dwwin.exe-
%System%\dxdiag.exe-
%System%\edit.com-
%System%\edlin.exe-
%System%\esentutl.exe-
%System%\eudcedit.exe-
%System%\eventcreate.exe-
%System%\eventtriggers.exe-
%System%\eventvwr.exe-
%System%\exe2bin.exe-
%System%\expand.exe-
%System%\extrac32.exe-
%System%\fastopen.exe-
%System%\fc.exe-
%System%\find.exe-
%System%\findstr.exe-
%System%\finger.exe-
%System%\fixmapi.exe-
%System%\fltMc.exe-
%System%\fontview.exe-
%System%\forcedos.exe-
%System%\format.com-
%System%\freecell.exe-
%System%\fsquirt.exe-
%System%\fsutil.exe-
%System%\ftp.exe-
%System%\gdi.exe-
%System%\getmac.exe-
%System%\gpresult.exe-
%System%\gpupdate.exe-
%System%\graftabl.com-
%System%\graphics.com-
%System%\grpconv.exe-
%System%\help.exe-
%System%\hostname.exe-
%System%\ie4uinit.exe-
%System%\iexpress.exe-
%System%\imapi.exe-
%System%\ipconfig.exe-
%System%\ipsec6.exe-
%System%\ipv6.exe-
%System%\ipxroute.exe-
%System%\kb16.com-
%System%\krnl386.exe-
%System%\label.exe-
%System%\lights.exe-
%System%\lnkstub.exe-
%System%\loadfix.com-
%System%\locator.exe-
%System%\lodctr.exe-
%System%\logagent.exe-
%System%\login.cmd-
%System%\logman.exe-
%System%\logoff.exe-
%System%\logon.scr-
%System%\logonui.exe-
%System%\lpq.exe-
%System%\lpr.exe-
%System%\lsass.exe-
%System%\magnify.exe-
%System%\makecab.exe-
%System%\mem.exe-
%System%\migpwd.exe-
%System%\mmc.exe-
%System%\mnmsrvc.exe-
%System%\mobsync.exe-
%System%\mode.com-
%System%\more.com-
%System%\mountvol.exe-
%System%\mplay32.exe-
%System%\mpnotify.exe-
%System%\mqbkup.exe-
%System%\mqsvc.exe-
%System%\mqtgsvc.exe-
%System%\mrinfo.exe-
%System%\mscdexnt.exe-
%System%\MsDtc\Trace\msdtcvtr.bat-
%System%\msdtc.exe-
%System%\msg.exe-
%System%\mshearts.exe-
%System%\mshta.exe-
%System%\msiexec.exe-
%System%\mspaint.exe-
%System%\msswchx.exe-
%System%\mstinit.exe-
%System%\mstsc.exe-
%System%\narrator.exe-
%System%\nbtstat.exe-
%System%\nddeapir.exe-
%System%\net.exe-
%System%\net1.exe-
%System%\netdde.exe-
%System%\netsetup.exe-
%System%\netsh.exe-
%System%\netstat.exe-
%System%\nlsfunc.exe-
%System%\notepad.exe-
%System%\npp\nppagent.exe-
%System%\nslookup.exe-
%System%\ntbackup.exe-
%System%\ntkrnlpa.exe-
%System%\ntoskrnl.exe-
%System%\ntsd.exe-
%System%\ntvdm.exe-
%System%\nw16.exe-
%System%\nwscript.exe-
%System%\odbcad32.exe-
%System%\odbcconf.exe-
%System%\oobe\msoobe.exe-
%System%\oobe\oobebaln.exe-
%System%\openfiles.exe-
%System%\osk.exe-
%System%\osuninst.exe-
%System%\packager.exe-
%System%\pathping.exe-
%System%\pentnt.exe-
%System%\perfmon.exe-
%System%\ping.exe-
%System%\ping6.exe-
%System%\powercfg.exe-
%System%\print.exe-
%System%\progman.exe-
%System%\proquota.exe-
%System%\proxycfg.exe-
%System%\qappsrv.exe-
%System%\qprocess.exe-
%System%\qwinsta.exe-
%System%\rasautou.exe-
%System%\rasdial.exe-
%System%\rasphone.exe-
%System%\rcimlby.exe-
%System%\rcp.exe-
%System%\rdpclip.exe-
%System%\rdsaddin.exe-
%System%\rdshost.exe-
%System%\recover.exe-
%System%\redir.exe-
%System%\reg.exe-
%System%\regedt32.exe-
%System%\regini.exe-
%System%\regsvr32.exe-
%System%\regwiz.exe-
%System%\relog.exe-
%System%\replace.exe-
%System%\reset.exe-
%System Root%\AUTOEXEC.BAT
%Desktop%\vcredist_x86.exe
%Desktop%\WinPcap_4_1_2.exe
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe
%Program Files%\Internet Explorer\iedw.exe
%Program Files%\Internet Explorer\IEXPLORE.EXE
%Program Files%\Messenger\msmsgs.exe
%Program Files%\Movie Maker\moviemk.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe
%Program Files%\NetMeeting\cb32.exe
%Program Files%\NetMeeting\conf.exe
%Program Files%\NetMeeting\wb32.exe
%Program Files%\Outlook Express\msimn.exe
%Program Files%\Outlook Express\oemig50.exe
%Program Files%\Outlook Express\setup50.exe
%Program Files%\Outlook Express\wab.exe
%Program Files%\Outlook Express\wabmig.exe
%Program Files%\Windows Media Player\migrate.exe
%Program Files%\Windows Media Player\mplayer2.exe
%Program Files%\Windows Media Player\setup_wm.exe
%Program Files%\Windows Media Player\wmplayer.exe
%Program Files%\Windows NT\Accessories\wordpad.exe
%Program Files%\Windows NT\dialer.exe
%Program Files%\Windows NT\hypertrm.exe
%Program Files%\Windows NT\Pinball\PINBALL.EXE
%Program Files%\WinPcap\rpcapd.exe
%Program Files%\WinPcap\Uninstall.exe
%System Root%\vcredist_x86.exe
%Windows%\explorer.exe
%Windows%\Help\Tours\mmTour\tour.exe
%Windows%\hh.exe
%Windows%\msagent\agentsvr.exe
%Windows%\mui\muisetup.exe
%Windows%\NOTEPAD.EXE
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe
%Windows%\pchealth\helpctr\binaries\HelpHost.exe
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe
%Windows%\pchealth\helpctr\binaries\HscUpd.exe
%Windows%\pchealth\helpctr\binaries\msconfig.exe
%Windows%\pchealth\helpctr\binaries\notiflag.exe
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe
%Windows%\regedit.exe
%System%\accwiz.exe
%System%\actmovie.exe
%System%\ahui.exe
%System%\alg.exe
%System%\append.exe
%System%\arp.exe
%System%\asr_fmt.exe
%System%\asr_ldm.exe
%System%\asr_pfu.exe
%System%\at.exe
%System%\atmadm.exe
%System%\attrib.exe
%System%\auditusr.exe
%System%\autochk.exe
%System%\autoconv.exe
%System%\autofmt.exe
%System%\autolfn.exe
%System%\blastcln.exe
%System%\bootcfg.exe
%System%\bootok.exe
%System%\bootvrfy.exe
%System%\cacls.exe
%System%\calc.exe
%System%\charmap.exe
%System%\chcp.com
%System%\chkdsk.exe
%System%\chkntfs.exe
%System%\cidaemon.exe
%System%\cipher.exe
%System%\cisvc.exe
%System%\ckcnv.exe
%System%\cleanmgr.exe
%System%\cliconfg.exe
%System%\clipbrd.exe
%System%\clipsrv.exe
%System%\cmd.exe
%System%\cmdl32.exe
%System%\cmmon32.exe
%System%\cmstp.exe
%System%\Com\comrepl.exe
%System%\Com\comrereg.exe
%System%\command.com
%System%\comp.exe
%System%\compact.exe
%System%\config\systemprofile\Desktop\vcredist_x86.exe
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe
%System%\conime.exe
%System%\control.exe
%System%\convert.exe
%System%\cscript.exe
%System%\csrss.exe
%System%\ctfmon.exe
%System%\dcomcnfg.exe
%System%\ddeshare.exe
%System%\debug.exe
%System%\defrag.exe
%System%\dfrgfat.exe
%System%\dfrgntfs.exe
%System%\diantz.exe
%System%\diskcomp.com
%System%\diskcopy.com
%System%\diskpart.exe
%System%\diskperf.exe
%System%\dllhost.exe
%System%\dllhst3g.exe
%System%\dmadmin.exe
%System%\dmremote.exe
%System%\doskey.exe
%System%\dosx.exe
%System%\dplaysvr.exe
%System%\dpnsvr.exe
%System%\dpvsetup.exe
%System%\driverquery.exe
%System%\drwatson.exe
%System%\drwtsn32.exe
%System%\dumprep.exe
%System%\dvdplay.exe
%System%\dvdupgrd.exe
%System%\dwwin.exe
%System%\dxdiag.exe
%System%\edit.com
%System%\edlin.exe
%System%\esentutl.exe
%System%\eudcedit.exe
%System%\eventcreate.exe
%System%\eventtriggers.exe
%System%\eventvwr.exe
%System%\exe2bin.exe
%System%\expand.exe
%System%\extrac32.exe
%System%\fastopen.exe
%System%\fc.exe
%System%\find.exe
%System%\findstr.exe
%System%\finger.exe
%System%\fixmapi.exe
%System%\fltMc.exe
%System%\fontview.exe
%System%\forcedos.exe
%System%\format.com
%System%\freecell.exe
%System%\fsquirt.exe
%System%\fsutil.exe
%System%\ftp.exe
%System%\gdi.exe
%System%\getmac.exe
%System%\gpresult.exe
%System%\gpupdate.exe
%System%\graftabl.com
%System%\graphics.com
%System%\grpconv.exe
%System%\help.exe
%System%\hostname.exe
%System%\ie4uinit.exe
%System%\iexpress.exe
%System%\imapi.exe
%System%\ipconfig.exe
%System%\ipsec6.exe
%System%\ipv6.exe
%System%\ipxroute.exe
%System%\kb16.com
%System%\krnl386.exe
%System%\label.exe
%System%\lights.exe
%System%\lnkstub.exe
%System%\loadfix.com
%System%\locator.exe
%System%\lodctr.exe
%System%\logagent.exe
%System%\login.cmd
%System%\logman.exe
%System%\logoff.exe
%System%\logon.scr
%System%\logonui.exe
%System%\lpq.exe
%System%\lpr.exe
%System%\lsass.exe
%System%\magnify.exe
%System%\makecab.exe
%System%\mem.exe
%System%\migpwd.exe
%System%\mmc.exe
%System%\mnmsrvc.exe
%System%\mobsync.exe
%System%\mode.com
%System%\more.com
%System%\mountvol.exe
%System%\mplay32.exe
%System%\mpnotify.exe
%System%\mqbkup.exe
%System%\mqsvc.exe
%System%\mqtgsvc.exe
%System%\mrinfo.exe
%System%\mscdexnt.exe
%System%\MsDtc\Trace\msdtcvtr.bat
%System%\msdtc.exe
%System%\msg.exe
%System%\mshearts.exe
%System%\mshta.exe
%System%\msiexec.exe
%System%\mspaint.exe
%System%\msswchx.exe
%System%\mstinit.exe
%System%\mstsc.exe
%System%\narrator.exe
%System%\nbtstat.exe
%System%\nddeapir.exe
%System%\net.exe
%System%\net1.exe
%System%\netdde.exe
%System%\netsetup.exe
%System%\netsh.exe
%System%\netstat.exe
%System%\nlsfunc.exe
%System%\notepad.exe
%System%\npp\nppagent.exe
%System%\nslookup.exe
%System%\ntbackup.exe
%System%\ntkrnlpa.exe
%System%\ntoskrnl.exe
%System%\ntsd.exe
%System%\ntvdm.exe
%System%\nw16.exe
%System%\nwscript.exe
%System%\odbcad32.exe
%System%\odbcconf.exe
%System%\oobe\msoobe.exe
%System%\oobe\oobebaln.exe
%System%\openfiles.exe
%System%\osk.exe
%System%\osuninst.exe
%System%\packager.exe
%System%\pathping.exe
%System%\pentnt.exe
%System%\perfmon.exe
%System%\ping.exe
%System%\ping6.exe
%System%\powercfg.exe
%System%\print.exe
%System%\progman.exe
%System%\proquota.exe
%System%\proxycfg.exe
%System%\qappsrv.exe
%System%\qprocess.exe
%System%\qwinsta.exe
%System%\rasautou.exe
%System%\rasdial.exe
%System%\rasphone.exe
%System%\rcimlby.exe
%System%\rcp.exe
%System%\rdpclip.exe
%System%\rdsaddin.exe
%System%\rdshost.exe
%System%\recover.exe
%System%\redir.exe
%System%\reg.exe
%System%\regedt32.exe
%System%\regini.exe
%System%\regsvr32.exe
%System%\regwiz.exe
%System%\relog.exe
%System%\replace.exe
%System%\reset.exe
[探す場所]の一覧から[マイコンピュータ]を選択し、[検索]を押します。
検索が終了したら、ファイルを選択し、SHIFT+DELETEを押します。これにより、ファイルが完全に削除されます。
残りのファイルに対して、このマルウェアのコンポーネントファイルの削除の手順2.）から4.）を繰り返してください。

手順 3

最新のバージョン（エンジン、パターンファイル）を導入したウイルス対策製品を用い、ウイルス検索を実行してください。「TROJ_AGENT_005911.TOMB」と検出したファイルはすべて削除してください。検出されたファイルが、弊社ウイルス対策製品により既に駆除、隔離またはファイル削除の処理が実行された場合、ウイルスの処理は完了しており、他の削除手順は特にありません。

手順 4

以下のファイルをバックアップを用いて修復します。なお、マイクロソフト製品に関連したファイルのみ修復されます。このマルウェア／グレイウェア／スパイウェアが同社製品以外のプログラムをも削除した場合には、該当プログラムを再度インストールする必要があります。

%System Root%\AUTOEXEC.BAT
%Desktop%\vcredist_x86.exe
%Desktop%\WinPcap_4_1_2.exe
%Program Files%\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
%Program Files%\Common Files\Microsoft Shared\Speech\sapisvr.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn1.exe
%Program Files%\Internet Explorer\Connection Wizard\icwconn2.exe
%Program Files%\Internet Explorer\Connection Wizard\icwrmind.exe
%Program Files%\Internet Explorer\Connection Wizard\icwtutor.exe
%Program Files%\Internet Explorer\Connection Wizard\inetwiz.exe
%Program Files%\Internet Explorer\Connection Wizard\isignup.exe
%Program Files%\Internet Explorer\iedw.exe
%Program Files%\Internet Explorer\IEXPLORE.EXE
%Program Files%\Messenger\msmsgs.exe
%Program Files%\Movie Maker\moviemk.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Digcore.exe
%Program Files%\MSN\MSNCoreFiles\Install\MSN9Components\Msncli.exe
%Program Files%\MSN\MSNCoreFiles\Install\msnsusii.exe
%Program Files%\MSN Gaming Zone\Windows\bckgzm.exe
%Program Files%\MSN Gaming Zone\Windows\chkrzm.exe
%Program Files%\MSN Gaming Zone\Windows\hrtzzm.exe
%Program Files%\MSN Gaming Zone\Windows\Rvsezm.exe
%Program Files%\MSN Gaming Zone\Windows\shvlzm.exe
%Program Files%\MSN Gaming Zone\Windows\zClientm.exe
%Program Files%\NetMeeting\cb32.exe
%Program Files%\NetMeeting\conf.exe
%Program Files%\NetMeeting\wb32.exe
%Program Files%\Outlook Express\msimn.exe
%Program Files%\Outlook Express\oemig50.exe
%Program Files%\Outlook Express\setup50.exe
%Program Files%\Outlook Express\wab.exe
%Program Files%\Outlook Express\wabmig.exe
%Program Files%\Windows Media Player\migrate.exe
%Program Files%\Windows Media Player\mplayer2.exe
%Program Files%\Windows Media Player\setup_wm.exe
%Program Files%\Windows Media Player\wmplayer.exe
%Program Files%\Windows NT\Accessories\wordpad.exe
%Program Files%\Windows NT\dialer.exe
%Program Files%\Windows NT\hypertrm.exe
%Program Files%\Windows NT\Pinball\PINBALL.EXE
%Program Files%\WinPcap\rpcapd.exe
%Program Files%\WinPcap\Uninstall.exe
%System Root%\vcredist_x86.exe
%Windows%\explorer.exe
%Windows%\Help\Tours\mmTour\tour.exe
%Windows%\hh.exe
%Windows%\msagent\agentsvr.exe
%Windows%\mui\muisetup.exe
%Windows%\NOTEPAD.EXE
%Windows%\pchealth\helpctr\binaries\HelpCtr.exe
%Windows%\pchealth\helpctr\binaries\HelpHost.exe
%Windows%\pchealth\helpctr\binaries\HelpSvc.exe
%Windows%\pchealth\helpctr\binaries\HscUpd.exe
%Windows%\pchealth\helpctr\binaries\msconfig.exe
%Windows%\pchealth\helpctr\binaries\notiflag.exe
%Windows%\pchealth\UploadLB\Binaries\UploadM.exe
%Windows%\regedit.exe
%System%\accwiz.exe
%System%\actmovie.exe
%System%\ahui.exe
%System%\alg.exe
%System%\append.exe
%System%\arp.exe
%System%\asr_fmt.exe
%System%\asr_ldm.exe
%System%\asr_pfu.exe
%System%\at.exe
%System%\atmadm.exe
%System%\attrib.exe
%System%\auditusr.exe
%System%\autochk.exe
%System%\autoconv.exe
%System%\autofmt.exe
%System%\autolfn.exe
%System%\blastcln.exe
%System%\bootcfg.exe
%System%\bootok.exe
%System%\bootvrfy.exe
%System%\cacls.exe
%System%\calc.exe
%System%\charmap.exe
%System%\chcp.com
%System%\chkdsk.exe
%System%\chkntfs.exe
%System%\cidaemon.exe
%System%\cipher.exe
%System%\cisvc.exe
%System%\ckcnv.exe
%System%\cleanmgr.exe
%System%\cliconfg.exe
%System%\clipbrd.exe
%System%\clipsrv.exe
%System%\cmd.exe
%System%\cmdl32.exe
%System%\cmmon32.exe
%System%\cmstp.exe
%System%\Com\comrepl.exe
%System%\Com\comrereg.exe
%System%\command.com
%System%\comp.exe
%System%\compact.exe
%System%\config\systemprofile\Desktop\vcredist_x86.exe
%System%\config\systemprofile\Desktop\WinPcap_4_1_2.exe
%System%\conime.exe
%System%\control.exe
%System%\convert.exe
%System%\cscript.exe
%System%\csrss.exe
%System%\ctfmon.exe
%System%\dcomcnfg.exe
%System%\ddeshare.exe
%System%\debug.exe
%System%\defrag.exe
%System%\dfrgfat.exe
%System%\dfrgntfs.exe
%System%\diantz.exe
%System%\diskcomp.com
%System%\diskcopy.com
%System%\diskpart.exe
%System%\diskperf.exe
%System%\dllhost.exe
%System%\dllhst3g.exe
%System%\dmadmin.exe
%System%\dmremote.exe
%System%\doskey.exe
%System%\dosx.exe
%System%\dplaysvr.exe
%System%\dpnsvr.exe
%System%\dpvsetup.exe
%System%\driverquery.exe
%System%\drwatson.exe
%System%\drwtsn32.exe
%System%\dumprep.exe
%System%\dvdplay.exe
%System%\dvdupgrd.exe
%System%\dwwin.exe
%System%\dxdiag.exe
%System%\edit.com
%System%\edlin.exe
%System%\esentutl.exe
%System%\eudcedit.exe
%System%\eventcreate.exe
%System%\eventtriggers.exe
%System%\eventvwr.exe
%System%\exe2bin.exe
%System%\expand.exe
%System%\extrac32.exe
%System%\fastopen.exe
%System%\fc.exe
%System%\find.exe
%System%\findstr.exe
%System%\finger.exe
%System%\fixmapi.exe
%System%\fltMc.exe
%System%\fontview.exe
%System%\forcedos.exe
%System%\format.com
%System%\freecell.exe
%System%\fsquirt.exe
%System%\fsutil.exe
%System%\ftp.exe
%System%\gdi.exe
%System%\getmac.exe
%System%\gpresult.exe
%System%\gpupdate.exe
%System%\graftabl.com
%System%\graphics.com
%System%\grpconv.exe
%System%\help.exe
%System%\hostname.exe
%System%\ie4uinit.exe
%System%\iexpress.exe
%System%\imapi.exe
%System%\ipconfig.exe
%System%\ipsec6.exe
%System%\ipv6.exe
%System%\ipxroute.exe
%System%\kb16.com
%System%\krnl386.exe
%System%\label.exe
%System%\lights.exe
%System%\lnkstub.exe
%System%\loadfix.com
%System%\locator.exe
%System%\lodctr.exe
%System%\logagent.exe
%System%\login.cmd
%System%\logman.exe
%System%\logoff.exe
%System%\logon.scr
%System%\logonui.exe
%System%\lpq.exe
%System%\lpr.exe
%System%\lsass.exe
%System%\magnify.exe
%System%\makecab.exe
%System%\mem.exe
%System%\migpwd.exe
%System%\mmc.exe
%System%\mnmsrvc.exe
%System%\mobsync.exe
%System%\mode.com
%System%\more.com
%System%\mountvol.exe
%System%\mplay32.exe
%System%\mpnotify.exe
%System%\mqbkup.exe
%System%\mqsvc.exe
%System%\mqtgsvc.exe
%System%\mrinfo.exe
%System%\mscdexnt.exe
%System%\MsDtc\Trace\msdtcvtr.bat
%System%\msdtc.exe
%System%\msg.exe
%System%\mshearts.exe
%System%\mshta.exe
%System%\msiexec.exe
%System%\mspaint.exe
%System%\msswchx.exe
%System%\mstinit.exe
%System%\mstsc.exe
%System%\narrator.exe
%System%\nbtstat.exe
%System%\nddeapir.exe
%System%\net.exe
%System%\net1.exe
%System%\netdde.exe
%System%\netsetup.exe
%System%\netsh.exe
%System%\netstat.exe
%System%\nlsfunc.exe
%System%\notepad.exe
%System%\npp\nppagent.exe
%System%\nslookup.exe
%System%\ntbackup.exe
%System%\ntkrnlpa.exe
%System%\ntoskrnl.exe
%System%\ntsd.exe
%System%\ntvdm.exe
%System%\nw16.exe
%System%\nwscript.exe
%System%\odbcad32.exe
%System%\odbcconf.exe
%System%\oobe\msoobe.exe
%System%\oobe\oobebaln.exe
%System%\openfiles.exe
%System%\osk.exe
%System%\osuninst.exe
%System%\packager.exe
%System%\pathping.exe
%System%\pentnt.exe
%System%\perfmon.exe
%System%\ping.exe
%System%\ping6.exe
%System%\powercfg.exe
%System%\print.exe
%System%\progman.exe
%System%\proquota.exe
%System%\proxycfg.exe
%System%\qappsrv.exe
%System%\qprocess.exe
%System%\qwinsta.exe
%System%\rasautou.exe
%System%\rasdial.exe
%System%\rasphone.exe
%System%\rcimlby.exe
%System%\rcp.exe
%System%\rdpclip.exe
%System%\rdsaddin.exe
%System%\rdshost.exe
%System%\recover.exe
%System%\redir.exe
%System%\reg.exe
%System%\regedt32.exe
%System%\regini.exe
%System%\regsvr32.exe
%System%\regwiz.exe
%System%\relog.exe
%System%\replace.exe
%System%\reset.exe

ご利用はいかがでしたか？　アンケートにご協力ください