Пойманы в разделе Помогите, отчет за период 31.08.2011 - 01.09.2011

[LIST][*][thread=108070]Backdoor.Win32.IRCBot.vbm[/thread] -> c:\documents and settings\work\application data\28.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Downloader-JYD [Trj] )[*][thread=108070]Backdoor.Win32.IRCBot.vbm[/thread] -> c:\windows\jodrive32.exe ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Malware-gen )[*][thread=108070]Backdoor.Win32.IRCBot.vbm[/thread] -> c:\documents and settings\work\application data\1a.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Malware-gen )[*][thread=108070]Backdoor.Win32.IRCBot.vbm[/thread] -> c:\documents and settings\work\application data\1b.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Downloader-JYD [Trj] )[*][thread=108000]Backdoor.Win32.Ruskill.ckl[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Gen:Trojan.Heur.RP.bqW@ame@f8e, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Malware-gen )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\o43[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\h[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\h[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\01.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\07.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\10.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\32.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\33.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\68.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\76.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\h[2].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\work\application data\biaeaf.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339261, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\04.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\14.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\25.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\56.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\64.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\73.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\k[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\work\application data\21.tmp ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\00.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\45.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\52.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\recycler\r-1-5-21-1482476501-1644491937-682003330-1013\ecleaner.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\h[3].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\v43[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338909, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\work\application data\vgaeaz.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339262, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\16.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338909, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\23.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\41.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\50.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\57.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\81.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\88.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\h[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\h[4].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\di43[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\h[2].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\h[3].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\08.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\15.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\36.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\38.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\67.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\k[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\h[4].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\work\application data\20.tmp ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\work\application data\2c.tmp ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339262, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\12.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\34.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\87.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\k[1].exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.339249, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\84.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108040]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-5161\i8564tg.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\26.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.338465, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\27.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\42.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.Ruskill.cxr[/thread] -> c:\windows\system32\85.exe ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KD.337664, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Backdoor.Win32.VB.nvf[/thread] -> c:\windows\system32\ac32.exe ( DrWEB: Trojan.Click1.59522, BitDefender: Backdoor.Generic.681828, AVAST4: Win32:Malware-gen )[*][thread=108184]Backdoor.Win32.ZAccess.ob[/thread] -> c:\windows\2801479846:1506739289.exe:$data ( DrWEB: BackDoor.Siggen.34163, BitDefender: Trojan.Generic.6454905, NOD32: Win32/Sirefef.CT trojan, AVAST4: Win32:Tiny-AMB [Rtk] )[*][thread=108174]HEUR:Trojan.Win32.Zapchast.4463028.silent.hw.trust_30082011[/thread] -> c:\windows\system32\ichctjk.dll ( DrWEB: Trojan.Mayachok.1 )[*][thread=108120]Trojan-Downloader.Win32.Agent.szde[/thread] -> c:\users\679e~1\appdata\local\temp\windebug32.exe ( DrWEB: Trojan.PWS.Turist.1, BitDefender: Trojan.Generic.6437100, NOD32: Win32/Spy.Ranbyus.E trojan )[*][thread=108070]Trojan-Downloader.Win32.Agent.tbap[/thread] -> c:\documents and settings\work\application data\1f.tmp ( DrWEB: BackDoor.IRC.Bot.896, BitDefender: Trojan.Generic.KDV.338310, AVAST4: Win32:Karagany-AX [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Genome.cjwq[/thread] -> c:\documents and settings\all users\документы\avz4\infected\2011-08-29\avz00001.dta ( DrWEB: Trojan.DownLoader3.36983, BitDefender: Trojan.Generic.KDV.260229, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=108070]Trojan-Downloader.Win32.Genome.cjwq[/thread] -> c:\documents and settings\work\application data\19.tmp ( DrWEB: Trojan.DownLoader3.36983, BitDefender: Trojan.Generic.KDV.260229, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\52.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\16.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\9.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\a.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108000]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-1413\syitm.exe ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\24.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\e.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan-Downloader.Win32.Injecter.glz[/thread] -> c:\documents and settings\work\application data\12.tmp ( DrWEB: Win32.HLLW.Autoruner.17766, BitDefender: Gen:Trojan.Heur.RP.cqW@aCJWPxi, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108120]Trojan-Dropper.Win32.Cidox.adn[/thread] -> c:\users\елена\appdata\local\temp\flash_player_update.exe ( DrWEB: Trojan.Mayachok.based, BitDefender: Trojan.Generic.KD.313529, AVAST4: Win32:Malware-gen )[*][thread=108171]Trojan-Dropper.Win32.Cidox.cth[/thread] -> c:\users\sviatoslav\appdata\local\temp\flash_player_update.exe[*][thread=108120]Trojan-Dropper.Win32.VB.bbfx[/thread] -> c:\users\елена\appdata\lsass.exe ( DrWEB: Trojan.Hosts.4561, BitDefender: Trojan.Generic.6445142 )[*][thread=108144]Trojan-PSW.Win32.QQPass.aidr[/thread] -> c:\windows\ati2evxx.exe ( AVAST4: Win32:Crypt-KFP [Trj] )[*][thread=108120]Trojan.Win32.Agent.hvad[/thread] -> c:\windows\system32\nnpkaef.dll ( DrWEB: Trojan.Mayachok.based, BitDefender: Trojan.Generic.6442327, NOD32: Win32/Agent.SFM trojan, AVAST4: Win32:Downloader-JQG [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[10].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[3].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[6].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\p43[2].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@a0B1XBp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\t[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\25.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\8.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\d.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[2].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[5].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\13.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\1d.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\7.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[11].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\p43[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@a0B1XBp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\t[4].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\51.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\t[2].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\p43[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@a0B1XBp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[8].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[9].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\t[3].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\t[4].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\p43[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@a0B1XBp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\p43[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@a0B1XBp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\t[2].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\nhz.exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.gqW@aOOiDkc, NOD32: Win32/Dorkbot.A worm, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\17.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\1e.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\23.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\29.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\f.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\t[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvapy5kb\t[5].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\t[2].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\2b.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\b.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[4].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\ghebm7yr\t[7].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\mvudktej\t[1].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\o18n6lul\t[3].exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.cqW@aGPXArp, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\acms.exe ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.gqW@aOOiDkc, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\11.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\15.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.kqW@aGH3cPe, NOD32: Win32/SpamTool.Tedroo.AR trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Inject.bjak[/thread] -> c:\documents and settings\work\application data\1c.tmp ( DrWEB: BackDoor.Ddoser.131, BitDefender: Gen:Trojan.Heur.RP.bqW@aqx!vao, NOD32: Win32/Lethic.AA trojan, AVAST4: Win32:Kolab-JO [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\c.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108000]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\windows\aadrive32.exe ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\10.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\54.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\18.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\14.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108070]Trojan.Win32.Jorik.SdBot.qf[/thread] -> c:\documents and settings\work\application data\26.tmp ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Gen:Variant.Kazy.35171, AVAST4: Win32:Ruskill-CB [Trj] )[*][thread=108120]Trojan.Win32.Menti.hxhf[/thread] -> c:\users\елена\appdata\roaming\netprotdrvss.exe ( DrWEB: BackDoor.Butirat.23, BitDefender: Trojan.Generic.KD.339781, AVAST4: Win32:Kryptik-ENG [Trj] )[*][thread=108120]Trojan.Win32.Menti.hxhf[/thread] -> c:\users\елена\appdata\roaming\netprotocol.exe ( DrWEB: BackDoor.Butirat.23, BitDefender: Trojan.Generic.KD.339781, AVAST4: Win32:Kryptik-ENG [Trj] )[*][thread=108169]Trojan.Win32.VBKrypt.fvqk[/thread] -> c:\windows\jodrive32.exe ( DrWEB: Trojan.VbCrypt.23, BitDefender: Trojan.Generic.KD.339197, AVAST4: Win32:IRCBot-DYR [Trj] )[*][thread=108070]Trojan.Win32.VBKrypt.fvua[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-1413\syitm.exe ( DrWEB: Trojan.VbCrypt.23, BitDefender: Trojan.Generic.KD.339183, AVAST4: Win32:IRCBot-DYR [Trj] )[*][thread=108040]Trojan.Win32.VBKrypt.fvub[/thread] -> c:\windows\aadrive32.exe ( DrWEB: Trojan.VbCrypt.23, BitDefender: Trojan.Generic.KD.339197, AVAST4: Win32:IRCBot-DYR [Trj] )[*][thread=108040]Trojan.Win32.VBKrypt.fvub[/thread] -> c:\docume~1\forps~1.zhi\locals~1\temp\msmgr.exe ( DrWEB: Trojan.VbCrypt.23, BitDefender: Trojan.Generic.KD.339197, AVAST4: Win32:IRCBot-DYR [Trj] )[*][thread=108070]Trojan.Win32.VBKrypt.fwhp[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-1830\zaberg.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Trojan.Generic.KD.340890, AVAST4: Win32:VB-XWE [Trj] )[/LIST]