Пойманы в разделе Помогите, отчет за период 30.01.2013 - 31.01.2013

[LIST][*][thread=131847]Backdoor.Win32.Ruskill.qcf[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp5\a0001635.exe ( DrWEB: BackDoor.IRC.NgrBot.42, BitDefender: Gen:Variant.Zusy.34026, AVAST4: Win32:LockScreen-QK [Trj] )[*][thread=131847]Backdoor.Win32.Ruskill.qcf[/thread] -> c:\documents and settings\kirill\application data\microsoft\nuemez.exe ( DrWEB: BackDoor.IRC.NgrBot.42, BitDefender: Gen:Variant.Zusy.34026, AVAST4: Win32:LockScreen-QK [Trj] )[*][thread=131847]Backdoor.Win32.Ruskill.qcf[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002125.exe ( DrWEB: BackDoor.IRC.NgrBot.42, BitDefender: Gen:Variant.Zusy.34026, AVAST4: Win32:LockScreen-QK [Trj] )[*][thread=131847]Backdoor.Win32.Ruskill.qcf[/thread] -> c:\documents and settings\kirill\application data\temp.bin ( DrWEB: BackDoor.IRC.NgrBot.42, BitDefender: Gen:Variant.Zusy.34026, AVAST4: Win32:LockScreen-QK [Trj] )[*][thread=131708]HackTool.Win32.BruteForce.az[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\vkontakte_pass_by_emai_retriever.rar ( DrWEB: archive: Tool.Vkpass.1, BitDefender: Trojan.Generic.2666111 )[*][thread=131708]HackTool.Win32.VKTools.r[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\приват\подозрительный софт\check.rar ( DrWEB: archive: Tool.Siggen.4108, BitDefender: Trojan.Agent.19115 )[*][thread=131847]HEUR:Trojan.Win32.Generic[/thread] -> c:\documents and settings\kirill\application data\5.exe ( DrWEB: Win32.HLLW.Autoruner1.33124, BitDefender: Gen:Win32.ExplorerHijack.amW@aeK05dj, AVAST4: Win32:Malware-gen )[*][thread=131847]HEUR:Trojan.Win32.Generic[/thread] -> c:\documents and settings\kirill\application data\4.exe ( DrWEB: Win32.HLLW.Autoruner1.33124, BitDefender: Gen:Win32.ExplorerHijack.amW@aeK05dj, AVAST4: Win32:Malware-gen )[*][thread=131847]HEUR:Trojan.Win32.Generic[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-91768\nedpro0xz.exe ( DrWEB: Win32.HLLW.Autoruner1.33124, BitDefender: Gen:Win32.ExplorerHijack.amW@aeK05dj, AVAST4: Win32:Malware-gen )[*][thread=131708]not-a-virus:RemoteAdmin.Win32.RAdmin.ic[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\слежка\будет\msupdate.exe ( DrWEB: archive: Program.WebRemote.147, NOD32: is OK )[*][thread=131905]Trojan-Downloader.Win32.Agent.btlp[/thread] -> c:\windows\userinit.exe ( DrWEB: BackDoor.Bulknet.419, BitDefender: Trojan.Generic.1748385, AVAST4: Win32:Agent-QTR [Trj] )[*][thread=131905]Trojan-Downloader.Win32.Agent.btlp[/thread] -> c:\windows\system32\system.exe ( DrWEB: BackDoor.Bulknet.419, BitDefender: Trojan.Generic.1748385, AVAST4: Win32:Agent-QTR [Trj] )[*][thread=131905]Trojan-Downloader.Win32.Andromeda.gto[/thread] -> c:\users\админ\appdata\roaming\{e9ce56e8-e32c-489e-abbe-7b863c63ad13}\winsyn64.exe ( DrWEB: Trojan.BtcMine.25, BitDefender: Gen:Variant.Symmi.9264 )[*][thread=131852]Trojan-Dropper.Win32.Injector.gsrv[/thread] -> c:\users\user\appdata\roaming\2561.exe ( DrWEB: Trojan.PWS.Siggen.29248, BitDefender: Gen:Variant.Delf.25, AVAST4: Win32:Delf-TEI [Trj] )[*][thread=131708]Trojan-Dropper.Win32.VB.caxw[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\solitario crypter.rar ( DrWEB: archive: Trojan.Siggen3.44528, BitDefender: Trojan.Generic.7230668 )[*][thread=131708]Trojan-PSW.Win32.VKont.kq[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\приват\spamer_vkontakte_zero_tolerance.rar ( BitDefender: Trojan.Generic.5967304 )[*][thread=131708]Trojan-PSW.Win32.VKont.kq[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\приват\vkontakte_accounts_manager_fixed.rar ( DrWEB: archive: Flooder.Vkontakte, BitDefender: Trojan.Generic.5967304 )[*][thread=131847]Trojan-Ransom.Win32.PornoAsset.bouh[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp2\a0000147.exe ( DrWEB: BackDoor.IRC.NgrBot.42, BitDefender: Trojan.Generic.KD.826964, AVAST4: Win32:LockScreen-PV [Trj] )[*][thread=131868]Trojan-Spy.Win32.SpyEyes.aiko[/thread] -> c:\systemhost\24fc2ae397d.exe ( BitDefender: Trojan.Generic.KDV.843648, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=131708]Trojan-Spy.Win32.Webmoner.ce[/thread] -> f:\documents and settings\дима\рабочий стол\bce dumoha\приват\подозрительный софт\wm.rar ( DrWEB: archive: Trojan.Wmchange, BitDefender: Trojan.Spy.Webmoner.CE )[*][thread=131905]Trojan.Win32.Agent.ukrk[/thread] -> c:\program files (x86)\common files\system\taskmager.exe ( DrWEB: BackDoor.IRC.Huxor.59, BitDefender: Gen:Win32.IRC-Backdoor.dmX@aaEr27e, AVAST4: Win32:SdBot-FJH [Trj] )[*][thread=131847]Trojan.Win32.Bublik.wwn[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002118.exe ( DrWEB: Worm.Siggen.6967, BitDefender: Trojan.Generic.KDZ.2516, AVAST4: Win32:Downloader-RWS [Trj] )[*][thread=131847]Trojan.Win32.Bublik.wwn[/thread] -> c:\documents and settings\kirill\application data\1e4.exe ( DrWEB: Worm.Siggen.6967, BitDefender: Trojan.Generic.KDZ.2516, AVAST4: Win32:Downloader-RWS [Trj] )[*][thread=131847]Trojan.Win32.Bublik.wwn[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp3\a0001158.exe ( DrWEB: Worm.Siggen.6967, BitDefender: Trojan.Generic.KDZ.2516, AVAST4: Win32:Downloader-RWS [Trj] )[*][thread=131847]Trojan.Win32.Bublik.wwn[/thread] -> c:\documents and settings\kirill\application data\57c.exe ( DrWEB: Worm.Siggen.6967, BitDefender: Trojan.Generic.KDZ.2516, AVAST4: Win32:Downloader-RWS [Trj] )[*][thread=131848]Trojan.Win32.Cidox.ydk[/thread] -> h:\windows\system32\zliwjdl.dll ( DrWEB: Trojan.Mayachok.18566, BitDefender: Gen:Variant.Zusy.34697, AVAST4: Win32:Crypt-OVV [Trj] )[*][thread=131775]Trojan.Win32.Cidox.yiy[/thread] -> d:\windows\system32\otkvxde.dll ( DrWEB: Trojan.Mayachok.18566, BitDefender: Trojan.Generic.KDV.843068, AVAST4: Win32:Crypt-OVV [Trj] )[*][thread=131832]Trojan.Win32.Cidox.ymd[/thread] -> c:\windows\system32\kdshaak.dll ( DrWEB: Trojan.Mayachok.18566, BitDefender: Gen:Variant.Graftor.66344, AVAST4: Win32:Crypt-OVV [Trj] )[*][thread=131832]Trojan.Win32.Jorik.Buterat.zmt[/thread] -> c:\docume~1\admin\locals~1\temp\6a2pry7e.exe ( DrWEB: BackDoor.Butirat.245, BitDefender: Gen:Variant.Kazy.138995, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\11d.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002009.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\1e0.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001988.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\57b.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\57a.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\3e0.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\3df.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\3.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-917678\nepro0xz.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002060.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002033.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002021.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001997.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp6\a0001641.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\8.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\584.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\1df.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002059.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002032.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001996.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001987.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\6.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\9.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002010.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\recycler\s-1-5-21-0243556031-888888379-781863308-46689\24naq.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp3\a0001229.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\11e.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002047.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002048.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp3\a0001157.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp6\a0001648.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002022.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\2.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\documents and settings\kirill\application data\583.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.IRCbot.wdk[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp6\a0001649.exe ( DrWEB: Win32.HLLW.Phorpiex.54, BitDefender: Trojan.Generic.KDZ.3011, AVAST4: Win32:Malware-gen )[*][thread=131852]Trojan.Win32.Jorik.Nrgbot.ell[/thread] -> c:\users\user\appdata\roaming\lausud.exe ( DrWEB: Trojan.PWS.Panda.547, BitDefender: Worm.Generic.416794, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp3\a0001230.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp2\a0000129.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\documents and settings\kirill\application data\3e1.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001995.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\documents and settings\kirill\application data\1e2.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\documents and settings\kirill\application data\578.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Nrgbot.ene[/thread] -> c:\documents and settings\kirill\application data\585.exe ( DrWEB: Trojan.Packed.23610, BitDefender: Trojan.Generic.KDZ.1286, AVAST4: Win32:Malware-gen )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\1.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\577.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp2\a0000146.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp6\a0001647.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\1de.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0001986.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\582.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\system volume information\_restore{c314edc3-10af-4edc-829b-207420f59508}\rp8\a0002008.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\11c.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\7.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131847]Trojan.Win32.Jorik.Tedroo.cjy[/thread] -> c:\documents and settings\kirill\application data\3de.exe ( DrWEB: BackDoor.BlackEnergy.24, BitDefender: Trojan.Generic.KD.827479, AVAST4: Win32:Jorik-SI [Trj] )[*][thread=131905]Trojan.Win32.VBKrypt.lydv[/thread] -> c:\users\админ\appdata\roaming\regsrv34.exe ( DrWEB: Trojan.DownLoad2.43630, BitDefender: Trojan.Generic.KDV.525055, NOD32: Win32/Agent.TFI trojan, AVAST4: Win32:Malware-gen )[/LIST]