TROJ_DLOADER.POH

2013年9月7日

別名:

PSWTool.Win32.Agent.qz (Kaspersky); Trojan.Win32.Generic!BT (Sunbelt); Trojan horse Downloader.Generic11.BPJK (AVG)

プラットフォーム:

Windows 2000, Windows XP, Windows Server 2003

危険度:

ダメージ度:

感染力:

感染確認数:

マルウェアタイプ: トロイの木馬型
破壊活動の有無: なし
暗号化:
感染報告の有無: はい

概要

マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。

詳細

ファイルサイズ 23,016,903 bytes

タイプ EXE

メモリ常駐なし

発見日 2013年5月17日

侵入方法

マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。

インストール

マルウェアは、以下のフォルダを作成します。

%Program Files%\Opera_Lite_Edition
%Program Files%\Opera_Lite_Edition\Backup
%Program Files%\Opera_Lite_Edition\Backup\locale
%Program Files%\Opera_Lite_Edition\Backup\locale\ru
%Program Files%\Opera_Lite_Edition\Backup\profile
%Program Files%\Opera_Lite_Edition\Backup\profile\dictionaries
%Program Files%\Opera_Lite_Edition\Backup\profile\mail
%Program Files%\Opera_Lite_Edition\Backup\profile\menu
%Program Files%\Opera_Lite_Edition\Backup\profile\pstorage
%Program Files%\Opera_Lite_Edition\Backup\profile\sessions
%Program Files%\Opera_Lite_Edition\Backup\profile\styles
%Program Files%\Opera_Lite_Edition\Backup\profile\styles\user
%Program Files%\Opera_Lite_Edition\Backup\profile\thumbnails
%Program Files%\Opera_Lite_Edition\Backup\profile\toolbar
%Program Files%\Opera_Lite_Edition\Backup\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32
%Program Files%\Opera_Lite_Edition\x32\defaults
%Program Files%\Opera_Lite_Edition\x32\Downloads
%Program Files%\Opera_Lite_Edition\x32\Downloads\temporary_downloads
%Program Files%\Opera_Lite_Edition\x32\extra
%Program Files%\Opera_Lite_Edition\x32\gstreamer
%Program Files%\Opera_Lite_Edition\x32\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x32\locale
%Program Files%\Opera_Lite_Edition\x32\locale\ru
%Program Files%\Opera_Lite_Edition\x32\mapi
%Program Files%\Opera_Lite_Edition\x32\profile
%Program Files%\Opera_Lite_Edition\x32\profile\backups
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries
%Program Files%\Opera_Lite_Edition\x32\profile\icons
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache\g_0000
%Program Files%\Opera_Lite_Edition\x32\profile\keyboard
%Program Files%\Opera_Lite_Edition\x32\profile\Lib
%Program Files%\Opera_Lite_Edition\x32\profile\menu
%Program Files%\Opera_Lite_Edition\x32\profile\mouse
%Program Files%\Opera_Lite_Edition\x32\profile\sessions
%Program Files%\Opera_Lite_Edition\x32\profile\Skin
%Program Files%\Opera_Lite_Edition\x32\profile\styles
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user
%Program Files%\Opera_Lite_Edition\x32\profile\toolbar
%Program Files%\Opera_Lite_Edition\x32\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32\program
%Program Files%\Opera_Lite_Edition\x32\program\FlashCookiesView
%Program Files%\Opera_Lite_Edition\x32\program\getsize
%Program Files%\Opera_Lite_Edition\x32\program\htm2clip
%Program Files%\Opera_Lite_Edition\x32\program\htmlZclip
%Program Files%\Opera_Lite_Edition\x32\program\Neutron
%Program Files%\Opera_Lite_Edition\x32\program\OperaCacheView
%Program Files%\Opera_Lite_Edition\x32\program\OperaLEreg
%Program Files%\Opera_Lite_Edition\x32\program\OperaPassView
%Program Files%\Opera_Lite_Edition\x32\program\osie
%Program Files%\Opera_Lite_Edition\x32\program\plugins
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor
%Program Files%\Opera_Lite_Edition\x32\program\SiteShoter
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\Langs
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\plugins
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Language
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Plugins
%Program Files%\Opera_Lite_Edition\x32\program\vbs
%Program Files%\Opera_Lite_Edition\x32\program\VideoCacheView
%Program Files%\Opera_Lite_Edition\x32\program\WebVideoCap
%Program Files%\Opera_Lite_Edition\x32\region
%Program Files%\Opera_Lite_Edition\x32\skin
%Program Files%\Opera_Lite_Edition\x32\styles
%Program Files%\Opera_Lite_Edition\x32\styles\images
%Program Files%\Opera_Lite_Edition\x32\styles\user
%Program Files%\Opera_Lite_Edition\x32\ui
%Program Files%\Opera_Lite_Edition\x64
%Program Files%\Opera_Lite_Edition\x64\gstreamer
%Program Files%\Opera_Lite_Edition\x64\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x64\mapi
%Program Files%\Opera_Lite_Edition\x64\pluginwrapper
%Program Files%\Opera_Lite_Edition\x64\program
%Program Files%\Opera_Lite_Edition\x64\program\VideoCacheView

(註：%Program Files%フォルダは、Windows 2000、Server 2003、XP (32ビット)、通常 Vista (32ビット) および 7 (32ビット) の場合、通常 "C:\Program Files"、Windows XP (64ビット)、Vista (64ビット) および 7 (64ビット) の場合、通常 "C:\Program Files (x86)" です。)

作成活動

マルウェアは、以下のファイルを作成します。

%Program Files%\Opera_Lite_Edition\x32\files_list
%Program Files%\Opera_Lite_Edition\x32\program\plugins\npds.zip
%Program Files%\Opera_Lite_Edition\x32\profile\Skin\standard_author_skin.zip
%Program Files%\Opera_Lite_Edition\x32\skin\standard_skin.zip
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.ini_editor.jar
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.jar
%Program Files%\Opera_Lite_Edition\x32\styles\images\customize.gif
%Program Files%\Opera_Lite_Edition\x32\styles\images\arrow.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bar.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd-rev.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bullet.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\container.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\darkBox.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\defaultFavicon.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\error.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\file.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\flag.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\folder.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\hanger.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2F2ip.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fc.icq.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ffresults2.metabot.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fgramota.ru%2Fimg%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimageshack.us%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.imgsmail.ru%2Fr%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.yandex.net%2Fi%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flimg.imgsmail.ru%2Fs%2Fimages%2Ficon%2Ffavicon.ico.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flingvopro.abbyyonline.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flurkmore.to%2Fskins%2Fcommon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fmyradio.ua%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fonline.perevodov.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fprice.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Falawar%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbigpoint%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbooking%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Ffastmail%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgamexp%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgoogle%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fizone%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmailru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmyopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fozon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fsoftportal%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fwikipedia%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fyandex%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fru.wikipedia.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Frutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.rutor.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.ytimg.com%2Fyt%2Ffavicon-vfldLzJxy.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2Fsoftportal_favicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2FSuper_Uploader.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fst.kinopoisk.ru%2Fimages%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.ak.fbcdn.net%2Frsrc.php%2Fyi%2Fr%2Fq9U99v3_saj.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.rutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftorrtilla.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftwitter.com%2Ffavicons%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Fimages%2Ffaviconnew.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvkontakte.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.avg.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.bittorrent.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.ebay.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.fastmail.fm%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.kinopoisk.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.oszone.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.youtube.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2F98fe7RGgatvcZCaXxF7ff2529Fk.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FgdtS6a0b5ZRt_6PIn1MCYzp2mNI.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2Fp2hHn1BzWL7kJemxd7YIBrA98ho.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FpDu9OWAQKB0s2J9IojKpiS_Eho.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera-icon-red.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\Opera_256x256.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\page-bot.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_left.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_right.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\root.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\search.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\section.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\smartGroup.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\tooltiptail.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\top.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\warning.png
%Program Files%\Opera_Lite_Edition\x32\IconLE.ico
%Program Files%\Opera_Lite_Edition\x32\extra\missingplugin.svg
%Program Files%\Opera_Lite_Edition\x32\extra\missingpluginhover.svg
%Program Files%\Opera_Lite_Edition\x32\encoding.bin
%Program Files%\Opera_Lite_Edition\x32\program\getsize\GetSize.exe.manifest
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.bat
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.bat
%Program Files%\Opera_Lite_Edition\Backup\????????????_??????_??????.bat
%Program Files%\Opera_Lite_Edition\x32\defaults\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\defaults\mailproviders.xml
%Program Files%\Opera_Lite_Edition\x32\opera_install_log.xml
%Program Files%\Opera_Lite_Edition\x32\pubsuffix.xml
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Readme_ru.htm
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\opera2chm.html
%Program Files%\Opera_Lite_Edition\x32\profile\OperaButton.html
%Program Files%\Opera_Lite_Edition\x32\profile\Readme.html
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\Readme.html
%Program Files%\Opera_Lite_Edition\x32\styles\webfeeds.html
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\0adblock.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\10visited.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\11flashblocker-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\12ucoz.ru.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\1night.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\2rambler_radio.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\3remove_blank.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\4links-with-icons.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\5noads-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\6vinezh.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\7Cursor_Opera11.5.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\8autocopy-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\9Check marking visited links.css
%Program Files%\Opera_Lite_Edition\x32\styles\about.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\accessibility.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\altdebugger.css
%Program Files%\Opera_Lite_Edition\x32\styles\cache.css
%Program Files%\Opera_Lite_Edition\x32\styles\certinfo.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\classid.css

このウイルス情報は、自動解析システムにより作成されました。

対応方法

対応検索エンジン: 9.300

手順 1

Windows XP、Windows Vista および Windows 7 のユーザは、コンピュータからマルウェアもしくはアドウェア等を完全に削除するために、ウイルス検索の実行前には必ず「システムの復元」を無効にしてください。

手順 2

以下のファイルを検索し削除します。

[ 詳細 ]

コンポーネントファイルが隠しファイル属性の場合があります。[詳細設定オプション]をクリックし、[隠しファイルとフォルダの検索]のチェックボックスをオンにし、検索結果に隠しファイルとフォルダが含まれるようにしてください。

%Program Files%\Opera_Lite_Edition\x32\files_list
%Program Files%\Opera_Lite_Edition\x32\program\plugins\npds.zip
%Program Files%\Opera_Lite_Edition\x32\profile\Skin\standard_author_skin.zip
%Program Files%\Opera_Lite_Edition\x32\skin\standard_skin.zip
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.ini_editor.jar
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.jar
%Program Files%\Opera_Lite_Edition\x32\styles\images\customize.gif
%Program Files%\Opera_Lite_Edition\x32\styles\images\arrow.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bar.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd-rev.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bullet.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\container.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\darkBox.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\defaultFavicon.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\error.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\file.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\flag.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\folder.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\hanger.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2F2ip.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fc.icq.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ffresults2.metabot.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fgramota.ru%2Fimg%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimageshack.us%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.imgsmail.ru%2Fr%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.yandex.net%2Fi%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flimg.imgsmail.ru%2Fs%2Fimages%2Ficon%2Ffavicon.ico.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flingvopro.abbyyonline.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flurkmore.to%2Fskins%2Fcommon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fmyradio.ua%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fonline.perevodov.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fprice.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Falawar%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbigpoint%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbooking%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Ffastmail%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgamexp%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgoogle%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fizone%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmailru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmyopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fozon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fsoftportal%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fwikipedia%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fyandex%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fru.wikipedia.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Frutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.rutor.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.ytimg.com%2Fyt%2Ffavicon-vfldLzJxy.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2Fsoftportal_favicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2FSuper_Uploader.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fst.kinopoisk.ru%2Fimages%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.ak.fbcdn.net%2Frsrc.php%2Fyi%2Fr%2Fq9U99v3_saj.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.rutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftorrtilla.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftwitter.com%2Ffavicons%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Fimages%2Ffaviconnew.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvkontakte.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.avg.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.bittorrent.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.ebay.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.fastmail.fm%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.kinopoisk.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.oszone.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.youtube.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2F98fe7RGgatvcZCaXxF7ff2529Fk.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FgdtS6a0b5ZRt_6PIn1MCYzp2mNI.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2Fp2hHn1BzWL7kJemxd7YIBrA98ho.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FpDu9OWAQKB0s2J9IojKpiS_Eho.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera-icon-red.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\Opera_256x256.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\page-bot.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_left.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_right.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\root.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\search.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\section.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\smartGroup.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\tooltiptail.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\top.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\warning.png
%Program Files%\Opera_Lite_Edition\x32\IconLE.ico
%Program Files%\Opera_Lite_Edition\x32\extra\missingplugin.svg
%Program Files%\Opera_Lite_Edition\x32\extra\missingpluginhover.svg
%Program Files%\Opera_Lite_Edition\x32\encoding.bin
%Program Files%\Opera_Lite_Edition\x32\program\getsize\GetSize.exe.manifest
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.bat
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.bat
%Program Files%\Opera_Lite_Edition\Backup\????????????_??????_??????.bat
%Program Files%\Opera_Lite_Edition\x32\defaults\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\defaults\mailproviders.xml
%Program Files%\Opera_Lite_Edition\x32\opera_install_log.xml
%Program Files%\Opera_Lite_Edition\x32\pubsuffix.xml
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Readme_ru.htm
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\opera2chm.html
%Program Files%\Opera_Lite_Edition\x32\profile\OperaButton.html
%Program Files%\Opera_Lite_Edition\x32\profile\Readme.html
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\Readme.html
%Program Files%\Opera_Lite_Edition\x32\styles\webfeeds.html
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\0adblock.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\10visited.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\11flashblocker-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\12ucoz.ru.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\1night.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\2rambler_radio.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\3remove_blank.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\4links-with-icons.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\5noads-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\6vinezh.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\7Cursor_Opera11.5.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\8autocopy-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\9Check marking visited links.css
%Program Files%\Opera_Lite_Edition\x32\styles\about.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\accessibility.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\altdebugger.css
%Program Files%\Opera_Lite_Edition\x32\styles\cache.css
%Program Files%\Opera_Lite_Edition\x32\styles\certinfo.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\classid.css

マルウェアのコンポーネントファイルの削除：

Windows 2000、XP および Server 2003 の場合：

[スタート]-[検索]-[ファイルとフォルダすべて]を選択します。
[ファイル名のすべてまたは一部]に以下のファイル名を入力してください。
%Program Files%\Opera_Lite_Edition\x32\files_list
%Program Files%\Opera_Lite_Edition\x32\program\plugins\npds.zip
%Program Files%\Opera_Lite_Edition\x32\profile\Skin\standard_author_skin.zip
%Program Files%\Opera_Lite_Edition\x32\skin\standard_skin.zip
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.ini_editor.jar
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.jar
%Program Files%\Opera_Lite_Edition\x32\styles\images\customize.gif
%Program Files%\Opera_Lite_Edition\x32\styles\images\arrow.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bar.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd-rev.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bullet.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\container.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\darkBox.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\defaultFavicon.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\error.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\file.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\flag.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\folder.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\hanger.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2F2ip.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fc.icq.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ffresults2.metabot.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fgramota.ru%2Fimg%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimageshack.us%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.imgsmail.ru%2Fr%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.yandex.net%2Fi%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flimg.imgsmail.ru%2Fs%2Fimages%2Ficon%2Ffavicon.ico.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flingvopro.abbyyonline.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flurkmore.to%2Fskins%2Fcommon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fmyradio.ua%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fonline.perevodov.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fprice.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Falawar%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbigpoint%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbooking%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Ffastmail%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgamexp%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgoogle%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fizone%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmailru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmyopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fozon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fsoftportal%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fwikipedia%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fyandex%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fru.wikipedia.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Frutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.rutor.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.ytimg.com%2Fyt%2Ffavicon-vfldLzJxy.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2Fsoftportal_favicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2FSuper_Uploader.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fst.kinopoisk.ru%2Fimages%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.ak.fbcdn.net%2Frsrc.php%2Fyi%2Fr%2Fq9U99v3_saj.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.rutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftorrtilla.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftwitter.com%2Ffavicons%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Fimages%2Ffaviconnew.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvkontakte.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.avg.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.bittorrent.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.ebay.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.fastmail.fm%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.kinopoisk.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.oszone.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.youtube.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2F98fe7RGgatvcZCaXxF7ff2529Fk.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FgdtS6a0b5ZRt_6PIn1MCYzp2mNI.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2Fp2hHn1BzWL7kJemxd7YIBrA98ho.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FpDu9OWAQKB0s2J9IojKpiS_Eho.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera-icon-red.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\Opera_256x256.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\page-bot.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_left.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_right.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\root.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\search.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\section.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\smartGroup.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\tooltiptail.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\top.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\warning.png
%Program Files%\Opera_Lite_Edition\x32\IconLE.ico
%Program Files%\Opera_Lite_Edition\x32\extra\missingplugin.svg
%Program Files%\Opera_Lite_Edition\x32\extra\missingpluginhover.svg
%Program Files%\Opera_Lite_Edition\x32\encoding.bin
%Program Files%\Opera_Lite_Edition\x32\program\getsize\GetSize.exe.manifest
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.bat
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.bat
%Program Files%\Opera_Lite_Edition\Backup\????????????_??????_??????.bat
%Program Files%\Opera_Lite_Edition\x32\defaults\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\defaults\mailproviders.xml
%Program Files%\Opera_Lite_Edition\x32\opera_install_log.xml
%Program Files%\Opera_Lite_Edition\x32\pubsuffix.xml
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Readme_ru.htm
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\opera2chm.html
%Program Files%\Opera_Lite_Edition\x32\profile\OperaButton.html
%Program Files%\Opera_Lite_Edition\x32\profile\Readme.html
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\Readme.html
%Program Files%\Opera_Lite_Edition\x32\styles\webfeeds.html
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\0adblock.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\10visited.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\11flashblocker-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\12ucoz.ru.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\1night.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\2rambler_radio.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\3remove_blank.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\4links-with-icons.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\5noads-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\6vinezh.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\7Cursor_Opera11.5.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\8autocopy-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\9Check marking visited links.css
%Program Files%\Opera_Lite_Edition\x32\styles\about.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\accessibility.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\altdebugger.css
%Program Files%\Opera_Lite_Edition\x32\styles\cache.css
%Program Files%\Opera_Lite_Edition\x32\styles\certinfo.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\classid.css
[探す場所]の一覧から[マイコンピュータ]を選択し、[検索]を押します。
検索が終了したら、ファイルを選択し、SHIFT+DELETE を押します。これにより、ファイルが完全に削除されます。
残りのファイルに対して、マルウェアのコンポーネントファイルの削除の手順 2.）から4 .）を繰り返してください。

Windows Vista および 7 の場合：

[スタート]をクリックします。
[プログラムとファイルの検索]に、以下を入力します。
%Program Files%\Opera_Lite_Edition\x32\files_list
%Program Files%\Opera_Lite_Edition\x32\program\plugins\npds.zip
%Program Files%\Opera_Lite_Edition\x32\profile\Skin\standard_author_skin.zip
%Program Files%\Opera_Lite_Edition\x32\skin\standard_skin.zip
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.ini_editor.jar
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.jar
%Program Files%\Opera_Lite_Edition\x32\styles\images\customize.gif
%Program Files%\Opera_Lite_Edition\x32\styles\images\arrow.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bar.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd-rev.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bkgd.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\bullet.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\container.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\darkBox.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\defaultFavicon.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\error.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\file.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\flag.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\folder.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\hanger.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2F2ip.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fc.icq.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ffresults2.metabot.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fgramota.ru%2Fimg%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimageshack.us%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.imgsmail.ru%2Fr%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fimg.yandex.net%2Fi%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flimg.imgsmail.ru%2Fs%2Fimages%2Ficon%2Ffavicon.ico.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flingvopro.abbyyonline.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Flurkmore.to%2Fskins%2Fcommon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fmyradio.ua%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fonline.perevodov.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fprice.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Falawar%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbigpoint%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fbooking%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Ffastmail%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgamexp%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fgoogle%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fizone%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmailru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fmyopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fopera%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fozon%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fsoftportal%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fwikipedia%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fredir.opera.com%2Ffavicons%2Fyandex%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fru.wikipedia.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Frutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.rutor.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fs.ytimg.com%2Fyt%2Ffavicon-vfldLzJxy.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2Fsoftportal_favicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fsouthron4965.ucoz.ru%2Ffiles%2Fimages%2Ffavicon%2FSuper_Uploader.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fst.kinopoisk.ru%2Fimages%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.ak.fbcdn.net%2Frsrc.php%2Fyi%2Fr%2Fq9U99v3_saj.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fstatic.rutracker.org%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftorrtilla.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Ftwitter.com%2Ffavicons%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvk.com%2Fimages%2Ffaviconnew.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fvkontakte.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.avg.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.bittorrent.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.ebay.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.fastmail.fm%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.kinopoisk.ru%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.oszone.net%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fwww.youtube.com%2Ffavicon.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2F98fe7RGgatvcZCaXxF7ff2529Fk.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FgdtS6a0b5ZRt_6PIn1MCYzp2mNI.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2Fp2hHn1BzWL7kJemxd7YIBrA98ho.png
%Program Files%\Opera_Lite_Edition\x32\profile\icons\http%3A%2F%2Fyandex.st%2Flego%2F_%2FpDu9OWAQKB0s2J9IojKpiS_Eho.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera-icon-red.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\opera.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\Opera_256x256.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\page-bot.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_center.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_left.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\red_right.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\root.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\search.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\section.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\smartGroup.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\tooltiptail.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\top.png
%Program Files%\Opera_Lite_Edition\x32\styles\images\warning.png
%Program Files%\Opera_Lite_Edition\x32\IconLE.ico
%Program Files%\Opera_Lite_Edition\x32\extra\missingplugin.svg
%Program Files%\Opera_Lite_Edition\x32\extra\missingpluginhover.svg
%Program Files%\Opera_Lite_Edition\x32\encoding.bin
%Program Files%\Opera_Lite_Edition\x32\program\getsize\GetSize.exe.manifest
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor\search.bat
%Program Files%\Opera_Lite_Edition\x32\profile\URLFilter.bat
%Program Files%\Opera_Lite_Edition\Backup\????????????_??????_??????.bat
%Program Files%\Opera_Lite_Edition\x32\defaults\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries\dictionaries.xml
%Program Files%\Opera_Lite_Edition\x32\defaults\mailproviders.xml
%Program Files%\Opera_Lite_Edition\x32\opera_install_log.xml
%Program Files%\Opera_Lite_Edition\x32\pubsuffix.xml
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Readme_ru.htm
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\opera2chm.html
%Program Files%\Opera_Lite_Edition\x32\profile\OperaButton.html
%Program Files%\Opera_Lite_Edition\x32\profile\Readme.html
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm\Readme.html
%Program Files%\Opera_Lite_Edition\x32\styles\webfeeds.html
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\0adblock.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\10visited.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\11flashblocker-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\12ucoz.ru.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\1night.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\2rambler_radio.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\3remove_blank.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\4links-with-icons.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\5noads-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\6vinezh.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\7Cursor_Opera11.5.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\8autocopy-js_on_off.css
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user\9Check marking visited links.css
%Program Files%\Opera_Lite_Edition\x32\styles\about.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\accessibility.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\altdebugger.css
%Program Files%\Opera_Lite_Edition\x32\styles\cache.css
%Program Files%\Opera_Lite_Edition\x32\styles\certinfo.css
%Program Files%\Opera_Lite_Edition\x32\styles\user\classid.css
検索が終了したら、ファイルを選択し、SHIFT+DELETE を押します。これにより、ファイルが完全に削除されます。
残りのファイルに対して、マルウェアのコンポーネントファイルの削除の手順 2.）から 3.）を繰り返してください。
註：Windows 7 において上記の手順が正しく行われない場合、マイクロソフトのWebサイトをご確認ください。

手順 3

以下のフォルダを検索し削除します。

[ 詳細 ]

フォルダが隠しフォルダ属性に設定されている場合があります。[詳細設定オプション]をクリックし、[隠しファイルとフォルダの検索]のチェックボックスをオンにし、検索結果に隠しファイルとフォルダが含まれるようにしてください。

%Program Files%\Opera_Lite_Edition
%Program Files%\Opera_Lite_Edition\Backup
%Program Files%\Opera_Lite_Edition\Backup\locale
%Program Files%\Opera_Lite_Edition\Backup\locale\ru
%Program Files%\Opera_Lite_Edition\Backup\profile
%Program Files%\Opera_Lite_Edition\Backup\profile\dictionaries
%Program Files%\Opera_Lite_Edition\Backup\profile\mail
%Program Files%\Opera_Lite_Edition\Backup\profile\menu
%Program Files%\Opera_Lite_Edition\Backup\profile\pstorage
%Program Files%\Opera_Lite_Edition\Backup\profile\sessions
%Program Files%\Opera_Lite_Edition\Backup\profile\styles
%Program Files%\Opera_Lite_Edition\Backup\profile\styles\user
%Program Files%\Opera_Lite_Edition\Backup\profile\thumbnails
%Program Files%\Opera_Lite_Edition\Backup\profile\toolbar
%Program Files%\Opera_Lite_Edition\Backup\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32
%Program Files%\Opera_Lite_Edition\x32\defaults
%Program Files%\Opera_Lite_Edition\x32\Downloads
%Program Files%\Opera_Lite_Edition\x32\Downloads\temporary_downloads
%Program Files%\Opera_Lite_Edition\x32\extra
%Program Files%\Opera_Lite_Edition\x32\gstreamer
%Program Files%\Opera_Lite_Edition\x32\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x32\locale
%Program Files%\Opera_Lite_Edition\x32\locale\ru
%Program Files%\Opera_Lite_Edition\x32\mapi
%Program Files%\Opera_Lite_Edition\x32\profile
%Program Files%\Opera_Lite_Edition\x32\profile\backups
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries
%Program Files%\Opera_Lite_Edition\x32\profile\icons
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache\g_0000
%Program Files%\Opera_Lite_Edition\x32\profile\keyboard
%Program Files%\Opera_Lite_Edition\x32\profile\Lib
%Program Files%\Opera_Lite_Edition\x32\profile\menu
%Program Files%\Opera_Lite_Edition\x32\profile\mouse
%Program Files%\Opera_Lite_Edition\x32\profile\sessions
%Program Files%\Opera_Lite_Edition\x32\profile\Skin
%Program Files%\Opera_Lite_Edition\x32\profile\styles
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user
%Program Files%\Opera_Lite_Edition\x32\profile\toolbar
%Program Files%\Opera_Lite_Edition\x32\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32\program
%Program Files%\Opera_Lite_Edition\x32\program\FlashCookiesView
%Program Files%\Opera_Lite_Edition\x32\program\getsize
%Program Files%\Opera_Lite_Edition\x32\program\htm2clip
%Program Files%\Opera_Lite_Edition\x32\program\htmlZclip
%Program Files%\Opera_Lite_Edition\x32\program\Neutron
%Program Files%\Opera_Lite_Edition\x32\program\OperaCacheView
%Program Files%\Opera_Lite_Edition\x32\program\OperaLEreg
%Program Files%\Opera_Lite_Edition\x32\program\OperaPassView
%Program Files%\Opera_Lite_Edition\x32\program\osie
%Program Files%\Opera_Lite_Edition\x32\program\plugins
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor
%Program Files%\Opera_Lite_Edition\x32\program\SiteShoter
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\Langs
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\plugins
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Language
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Plugins
%Program Files%\Opera_Lite_Edition\x32\program\vbs
%Program Files%\Opera_Lite_Edition\x32\program\VideoCacheView
%Program Files%\Opera_Lite_Edition\x32\program\WebVideoCap
%Program Files%\Opera_Lite_Edition\x32\region
%Program Files%\Opera_Lite_Edition\x32\skin
%Program Files%\Opera_Lite_Edition\x32\styles
%Program Files%\Opera_Lite_Edition\x32\styles\images
%Program Files%\Opera_Lite_Edition\x32\styles\user
%Program Files%\Opera_Lite_Edition\x32\ui
%Program Files%\Opera_Lite_Edition\x64
%Program Files%\Opera_Lite_Edition\x64\gstreamer
%Program Files%\Opera_Lite_Edition\x64\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x64\mapi
%Program Files%\Opera_Lite_Edition\x64\pluginwrapper
%Program Files%\Opera_Lite_Edition\x64\program
%Program Files%\Opera_Lite_Edition\x64\program\VideoCacheView

このマルウェアまたはアドウェア等が作成したフォルダの削除：

Windows 2000、XP および Server 2003 の場合：

[スタート]-[検索]-[ファイルとフォルダすべて]を選択します。
[ファイル名のすべてまたは一部]に、以下のフォルダ名を入力してください。
%Program Files%\Opera_Lite_Edition
%Program Files%\Opera_Lite_Edition\Backup
%Program Files%\Opera_Lite_Edition\Backup\locale
%Program Files%\Opera_Lite_Edition\Backup\locale\ru
%Program Files%\Opera_Lite_Edition\Backup\profile
%Program Files%\Opera_Lite_Edition\Backup\profile\dictionaries
%Program Files%\Opera_Lite_Edition\Backup\profile\mail
%Program Files%\Opera_Lite_Edition\Backup\profile\menu
%Program Files%\Opera_Lite_Edition\Backup\profile\pstorage
%Program Files%\Opera_Lite_Edition\Backup\profile\sessions
%Program Files%\Opera_Lite_Edition\Backup\profile\styles
%Program Files%\Opera_Lite_Edition\Backup\profile\styles\user
%Program Files%\Opera_Lite_Edition\Backup\profile\thumbnails
%Program Files%\Opera_Lite_Edition\Backup\profile\toolbar
%Program Files%\Opera_Lite_Edition\Backup\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32
%Program Files%\Opera_Lite_Edition\x32\defaults
%Program Files%\Opera_Lite_Edition\x32\Downloads
%Program Files%\Opera_Lite_Edition\x32\Downloads\temporary_downloads
%Program Files%\Opera_Lite_Edition\x32\extra
%Program Files%\Opera_Lite_Edition\x32\gstreamer
%Program Files%\Opera_Lite_Edition\x32\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x32\locale
%Program Files%\Opera_Lite_Edition\x32\locale\ru
%Program Files%\Opera_Lite_Edition\x32\mapi
%Program Files%\Opera_Lite_Edition\x32\profile
%Program Files%\Opera_Lite_Edition\x32\profile\backups
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries
%Program Files%\Opera_Lite_Edition\x32\profile\icons
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache\g_0000
%Program Files%\Opera_Lite_Edition\x32\profile\keyboard
%Program Files%\Opera_Lite_Edition\x32\profile\Lib
%Program Files%\Opera_Lite_Edition\x32\profile\menu
%Program Files%\Opera_Lite_Edition\x32\profile\mouse
%Program Files%\Opera_Lite_Edition\x32\profile\sessions
%Program Files%\Opera_Lite_Edition\x32\profile\Skin
%Program Files%\Opera_Lite_Edition\x32\profile\styles
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user
%Program Files%\Opera_Lite_Edition\x32\profile\toolbar
%Program Files%\Opera_Lite_Edition\x32\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32\program
%Program Files%\Opera_Lite_Edition\x32\program\FlashCookiesView
%Program Files%\Opera_Lite_Edition\x32\program\getsize
%Program Files%\Opera_Lite_Edition\x32\program\htm2clip
%Program Files%\Opera_Lite_Edition\x32\program\htmlZclip
%Program Files%\Opera_Lite_Edition\x32\program\Neutron
%Program Files%\Opera_Lite_Edition\x32\program\OperaCacheView
%Program Files%\Opera_Lite_Edition\x32\program\OperaLEreg
%Program Files%\Opera_Lite_Edition\x32\program\OperaPassView
%Program Files%\Opera_Lite_Edition\x32\program\osie
%Program Files%\Opera_Lite_Edition\x32\program\plugins
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor
%Program Files%\Opera_Lite_Edition\x32\program\SiteShoter
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\Langs
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\plugins
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Language
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Plugins
%Program Files%\Opera_Lite_Edition\x32\program\vbs
%Program Files%\Opera_Lite_Edition\x32\program\VideoCacheView
%Program Files%\Opera_Lite_Edition\x32\program\WebVideoCap
%Program Files%\Opera_Lite_Edition\x32\region
%Program Files%\Opera_Lite_Edition\x32\skin
%Program Files%\Opera_Lite_Edition\x32\styles
%Program Files%\Opera_Lite_Edition\x32\styles\images
%Program Files%\Opera_Lite_Edition\x32\styles\user
%Program Files%\Opera_Lite_Edition\x32\ui
%Program Files%\Opera_Lite_Edition\x64
%Program Files%\Opera_Lite_Edition\x64\gstreamer
%Program Files%\Opera_Lite_Edition\x64\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x64\mapi
%Program Files%\Opera_Lite_Edition\x64\pluginwrapper
%Program Files%\Opera_Lite_Edition\x64\program
%Program Files%\Opera_Lite_Edition\x64\program\VideoCacheView
[探す場所]の一覧から[マイコンピュータ]を選択し、[検索]を押します。
検索が終了したら、フォルダを選択し、SHIFT+DELETE を押します。これにより、フォルダが完全に削除されます。
残りのフォルダに対して、このマルウェアまたはアドウェア等が作成したフォルダの削除の手順 2.）から 4.）を繰り返してください。

Windows Vista および 7 の場合：

[スタート]をクリックします。
[プログラムとファイルの検索]に、以下を入力します。
%Program Files%\Opera_Lite_Edition
%Program Files%\Opera_Lite_Edition\Backup
%Program Files%\Opera_Lite_Edition\Backup\locale
%Program Files%\Opera_Lite_Edition\Backup\locale\ru
%Program Files%\Opera_Lite_Edition\Backup\profile
%Program Files%\Opera_Lite_Edition\Backup\profile\dictionaries
%Program Files%\Opera_Lite_Edition\Backup\profile\mail
%Program Files%\Opera_Lite_Edition\Backup\profile\menu
%Program Files%\Opera_Lite_Edition\Backup\profile\pstorage
%Program Files%\Opera_Lite_Edition\Backup\profile\sessions
%Program Files%\Opera_Lite_Edition\Backup\profile\styles
%Program Files%\Opera_Lite_Edition\Backup\profile\styles\user
%Program Files%\Opera_Lite_Edition\Backup\profile\thumbnails
%Program Files%\Opera_Lite_Edition\Backup\profile\toolbar
%Program Files%\Opera_Lite_Edition\Backup\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32
%Program Files%\Opera_Lite_Edition\x32\defaults
%Program Files%\Opera_Lite_Edition\x32\Downloads
%Program Files%\Opera_Lite_Edition\x32\Downloads\temporary_downloads
%Program Files%\Opera_Lite_Edition\x32\extra
%Program Files%\Opera_Lite_Edition\x32\gstreamer
%Program Files%\Opera_Lite_Edition\x32\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x32\locale
%Program Files%\Opera_Lite_Edition\x32\locale\ru
%Program Files%\Opera_Lite_Edition\x32\mapi
%Program Files%\Opera_Lite_Edition\x32\profile
%Program Files%\Opera_Lite_Edition\x32\profile\backups
%Program Files%\Opera_Lite_Edition\x32\profile\dictionaries
%Program Files%\Opera_Lite_Edition\x32\profile\icons
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache
%Program Files%\Opera_Lite_Edition\x32\profile\icons\cache\g_0000
%Program Files%\Opera_Lite_Edition\x32\profile\keyboard
%Program Files%\Opera_Lite_Edition\x32\profile\Lib
%Program Files%\Opera_Lite_Edition\x32\profile\menu
%Program Files%\Opera_Lite_Edition\x32\profile\mouse
%Program Files%\Opera_Lite_Edition\x32\profile\sessions
%Program Files%\Opera_Lite_Edition\x32\profile\Skin
%Program Files%\Opera_Lite_Edition\x32\profile\styles
%Program Files%\Opera_Lite_Edition\x32\profile\styles\user
%Program Files%\Opera_Lite_Edition\x32\profile\toolbar
%Program Files%\Opera_Lite_Edition\x32\profile\UserJS
%Program Files%\Opera_Lite_Edition\x32\program
%Program Files%\Opera_Lite_Edition\x32\program\FlashCookiesView
%Program Files%\Opera_Lite_Edition\x32\program\getsize
%Program Files%\Opera_Lite_Edition\x32\program\htm2clip
%Program Files%\Opera_Lite_Edition\x32\program\htmlZclip
%Program Files%\Opera_Lite_Edition\x32\program\Neutron
%Program Files%\Opera_Lite_Edition\x32\program\OperaCacheView
%Program Files%\Opera_Lite_Edition\x32\program\OperaLEreg
%Program Files%\Opera_Lite_Edition\x32\program\OperaPassView
%Program Files%\Opera_Lite_Edition\x32\program\osie
%Program Files%\Opera_Lite_Edition\x32\program\plugins
%Program Files%\Opera_Lite_Edition\x32\program\Qsaver2_and_opera2chm
%Program Files%\Opera_Lite_Edition\x32\program\search.ini_editor
%Program Files%\Opera_Lite_Edition\x32\program\SiteShoter
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\Langs
%Program Files%\Opera_Lite_Edition\x32\program\USDownloader\plugins
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Language
%Program Files%\Opera_Lite_Edition\x32\program\UserJS_Manager_2.1_Final\UjsMan_Plugins
%Program Files%\Opera_Lite_Edition\x32\program\vbs
%Program Files%\Opera_Lite_Edition\x32\program\VideoCacheView
%Program Files%\Opera_Lite_Edition\x32\program\WebVideoCap
%Program Files%\Opera_Lite_Edition\x32\region
%Program Files%\Opera_Lite_Edition\x32\skin
%Program Files%\Opera_Lite_Edition\x32\styles
%Program Files%\Opera_Lite_Edition\x32\styles\images
%Program Files%\Opera_Lite_Edition\x32\styles\user
%Program Files%\Opera_Lite_Edition\x32\ui
%Program Files%\Opera_Lite_Edition\x64
%Program Files%\Opera_Lite_Edition\x64\gstreamer
%Program Files%\Opera_Lite_Edition\x64\gstreamer\plugins
%Program Files%\Opera_Lite_Edition\x64\mapi
%Program Files%\Opera_Lite_Edition\x64\pluginwrapper
%Program Files%\Opera_Lite_Edition\x64\program
%Program Files%\Opera_Lite_Edition\x64\program\VideoCacheView
検索が終了したら、フォルダを選択し、SHIFT+DELETE を押して削除します。これにより、フォルダが完全に削除されます。
残りのフォルダに対して、このマルウェアまたはアドウェア等が作成したフォルダの削除の手順 2.）から 3.）を繰り返してください。
註：Windows 7 において上記の手順が正しく行われない場合、マイクロソフトのWebサイトをご確認ください。

手順 4

最新のバージョン（エンジン、パターンファイル）を導入したウイルス対策製品を用い、ウイルス検索を実行してください。「TROJ_DLOADER.POH」と検出したファイルはすべて削除してください。検出されたファイルが、弊社ウイルス対策製品により既に駆除、隔離またはファイル削除の処理が実行された場合、ウイルスの処理は完了しており、他の削除手順は特にありません。

ご利用はいかがでしたか？　アンケートにご協力ください