Пойманы в разделе Помогите, отчет за период 04.12.2011 - 05.12.2011

[LIST][*][thread=113375]Backdoor.Win32.Bredolab.tky[/thread] -> \виру\виру\автозагрузка.rar ( DrWEB: archive: Trojan.DownLoader5.21181, BitDefender: Gen:Variant.Kazy.46739 )[*][thread=113416]Backdoor.Win32.Gbot.qui[/thread] -> c:\documents and settings\ксюша\главное меню\программы\автозагрузка\6vtgtfkeorc.exe ( DrWEB: Trojan.Carberp.29, BitDefender: Gen:Variant.Kazy.47127 )[*][thread=113377]Backdoor.Win32.Shiz.aezw[/thread] -> c:\windows\apppatch\cxwwhx.exe[*][thread=113369]HEUR:Trojan.Win32.Generic[/thread] -> c:\windows\system32\hhmztjc.dll ( DrWEB: Trojan.Mayachok.4, BitDefender: Trojan.Generic.6852279, AVAST4: Win32:Malware-gen )[*][thread=113425]HEUR:Trojan.Win32.Generic[/thread] -> c:\users\администратор\start menu\programs\startup\taskmgrsx.exe ( DrWEB: Tool.BtcMine.8, BitDefender: Gen:Variant.Zusy.417 )[*][thread=113425]not-a-virus:HEUR:RiskTool.Win32.BitCoinMiner.gen[/thread] -> c:\users\836d~1\appdata\local\temp\x30811.exe ( DrWEB: Tool.BtcMine.8, BitDefender: Trojan.Generic.6942060 )[*][thread=113401]not-a-virus:PSWTool.Win32.ProductKey.bv[/thread] -> c:\windows\system32\cpldapu\produkey.exe ( DrWEB: Tool.PassSteel.578 )[*][thread=113394]not-a-virus:RemoteAdmin.Win32.RAdmin.20[/thread] -> c:\windows\system\svchost.exe ( DrWEB: Program.RemoteAdmin, BitDefender: Trojan.Generic.5484328 )[*][thread=113425]Trojan-Downloader.Win32.VB.aoir[/thread] -> c:\users\администратор\appdata\roaming\regsrv64.exe ( BitDefender: Gen:Variant.Graftor.5877 )[*][thread=113380]Trojan-Dropper.Win32.Aspxor.jf[/thread] -> c:\documents and settings\алексей\application data\netprotocol.exe ( AVAST4: Win32:Dropper-gen [Drp] )[*][thread=113396]Trojan-Ransom.Win32.Cidox.alz[/thread] -> c:\windows\system32\lhfverd.dll ( AVAST4: Win32:Cidox-N [Trj] )[*][thread=113378]Trojan-Ransom.Win32.Cidox.amu[/thread] -> c:\windows\system32\abdoimc.dll[*][thread=113400]Trojan-Ransom.Win32.Cidox.amw[/thread] -> c:\windows\system32\zkjbbra.dll ( DrWEB: Trojan.Mayachok.1, AVAST4: Win32:Kryptik-FXZ [Trj] )[*][thread=113380]Trojan-Ransom.Win32.Cidox.amw[/thread] -> c:\windows\system32\uasfjwb.dll[*][thread=113415]Trojan-Ransom.Win32.Cidox.amw[/thread] -> c:\windows\system32\dfspurc.dll ( DrWEB: Trojan.Mayachok.1, AVAST4: Win32:Kryptik-FXZ [Trj] )[*][thread=113354]Trojan-Ransom.Win32.Cidox.amw[/thread] -> c:\windows\system32\dypnfea.dll ( AVAST4: Win32:Cidox-N [Trj] )[*][thread=113425]Trojan.Win32.Agent.garm[/thread] -> c:\windows\system32\svcnet32.dll ( DrWEB: Trojan.Disabler.61, BitDefender: Trojan.Generic.5175606, NOD32: Win32/TrojanDownloader.Agent.QKR trojan, AVAST4: Win32:Malware-gen )[*][thread=113369]Trojan.Win32.Diple.djzk[/thread] -> c:\programdata\qrnluidzjd.dll ( DrWEB: Trojan.Siggen3.30324, BitDefender: Gen:Variant.Kazy.46645, AVAST4: Win32:Malware-gen )[*][thread=113394]Trojan.Win32.Diple.djzk[/thread] -> c:\documents and settings\all users\application data\gpsiryrl.dll ( DrWEB: Trojan.Siggen3.30324, BitDefender: Gen:Variant.Kazy.46645, AVAST4: Win32:Malware-gen )[*][thread=113425]Trojan.Win32.FakeAv.iyue[/thread] -> c:\users\администратор\appdata\roaming\jkjkjt.exe ( DrWEB: Tool.BtcMine.8, BitDefender: Worm.Generic.355996, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=113267]Trojan.Win32.Scar.bzam[/thread] -> c:\documents and settings\all users\application data\msuwarn\slgssrv.exe ( DrWEB: Trojan.MulDrop1.12161, BitDefender: Gen:Variant.Rimecud.2, AVAST4: Win32:Malware-gen )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\windows\shellnew\elnorb.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\application data\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\roaming\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\application data\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\application data\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\главное меню\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\appdata\roaming\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\roaming\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\local\winlogon.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\главное меню\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\appdata\roaming\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\шаблоны\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\главное меню\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\windows\system32\config\systemprofile\appdata\roaming\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\windows\system32\config\systemprofile\appdata\local\smss.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\roaming\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\local\winlogon.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\application data\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\шаблоны\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\главное меню\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\appdata\roaming\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\application data\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\шаблоны\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\roaming\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\главное меню\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\application data\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\application data\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\roaming\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\application data\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\appdata\roaming\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\roaming\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\local\lsass.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\local\lsass.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\application data\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\application data\microsoft\windows\start menu\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\appdata\roaming\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\главное меню\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\local\smss.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\local\services.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\шаблоны\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\администратор\главное меню\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\application data\microsoft\windows\templates\bararontok.com ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\appdata\roaming\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\главное меню\программы\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\documents and settings\1111111\application data\microsoft\windows\start menu\programs\startup\empty.pif ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\администратор\appdata\local\smss.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[*][thread=113425]Virus.Win32.Sality.u[/thread] -> c:\users\1111111\appdata\local\services.exe ( DrWEB: Win32.HLLP.Sector, BitDefender: Win32.Sality.K, NOD32: Win32/Sality.NAC virus, AVAST4: Win32:Sality-O )[/LIST]