Пойманы в разделе Помогите, отчет за период 04.01.2021 - 05.01.2021

[LIST][*][thread=226188]Backdoor.Win32.RMS.pm[/thread] -> c:\programdata\windows\rfusclient.exe ( BitDefender: Trojan.Generic.15942633 )[*][thread=226188]Backdoor.Win32.ShadowBrokers.f[/thread] -> c:\programdata\rundll\doublepulsar-1.3.1.exe ( AVAST4: Sf:WNCryLdr-A [Trj] )[*][thread=226188]Exploit.Win32.ShadowBrokers.aa[/thread] -> c:\programdata\rundll\etchcore-0.x86.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Exploit.Win32.ShadowBrokers.ab[/thread] -> c:\programdata\rundll\eteb-2.dll ( AVAST4: Sf:WNCryLdr-A [Trj] )[*][thread=226188]Exploit.Win32.ShadowBrokers.ad[/thread] -> c:\programdata\rundll\etebcore-2.x86.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Exploit.Win32.ShadowBrokers.ae[/thread] -> c:\programdata\rundll\eternalblue-2.2.0.exe ( AVAST4: Sf:WNCryLdr-A [Trj] )[*][thread=226188]Exploit.Win32.ShadowBrokers.z[/thread] -> c:\programdata\rundll\etch-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Exploit.Win64.ShadowBrokers.c[/thread] -> c:\programdata\rundll\etchcore-0.x64.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Exploit.Win64.ShadowBrokers.d[/thread] -> c:\programdata\rundll\etebcore-2.x64.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]HackTool.Win32.ShadowBrokers.k[/thread] -> c:\programdata\rundll\libxml2.dll[*][thread=226188]HackTool.Win32.ShadowBrokers.l[/thread] -> c:\programdata\rundll\libiconv-2.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]HackTool.Win32.ShadowBrokers.n[/thread] -> c:\programdata\rundll\libeay32.dll ( AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=226188]HEUR:Trojan-Spy.Win32.Convagent.gen[/thread] -> c:\programdata\windowstask\audiodg.exe ( BitDefender: Gen:Trojan.Heur.AutoIT.2, AVAST4: Win32:Malware-gen )[*][thread=226188]HEUR:Trojan.Win32.Blouiroet.gen[/thread] -> c:\programdata\rundll\2x64.dll ( AVAST4: Win64:Malware-gen )[*][thread=226188]HEUR:Trojan.Win32.Blouiroet.gen[/thread] -> c:\programdata\rundll\x86.dll ( BitDefender: Gen:Trojan.Heur.LP.fu4@aKVfA7ei, AVAST4: Win32:Trojan-gen )[*][thread=226188]HEUR:Trojan.Win32.Blouiroet.gen[/thread] -> c:\programdata\rundll\x64.dll ( AVAST4: Win64:Malware-gen )[*][thread=226188]HEUR:Trojan.Win32.Blouiroet.gen[/thread] -> c:\programdata\rundll\2x86.dll ( BitDefender: Gen:Trojan.Heur.LP.fu4@aKVfA7ei, AVAST4: Win32:Trojan-gen )[*][thread=226188]HEUR:Trojan.Win32.Generic[/thread] -> c:\program files\microsoft office\services\software maintenance service\svchоst.exe ( AVAST4: Win32:Malware-gen )[*][thread=226188]HEUR:Trojan.Win32.Miner.gen[/thread] -> c:\programdata\windowstask\appmodule.exe ( AVAST4: Win64:Malware-gen )[*][thread=226188]not-a-virus:RemoteAdmin.Win32.RDPWrap.h[/thread] -> c:\program files\rdp wrapper\rdpwrap.dll[*][thread=226188]Trojan-PSW.Win32.Delf.aidq[/thread] -> c:\programdata\install\sys.exe ( AVAST4: Win32:PWSX-gen [Trj] )[*][thread=226188]Trojan.VBS.Starter.mi[/thread] -> c:\programdata\rundll\start.exe[*][thread=226188]Trojan.Win32.Autoit.acbae[/thread] -> c:\programdata\windowstask\winlogon.exe ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.EquationDrug.ace[/thread] -> c:\programdata\rundll\dmgd-4.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.EquationDrug.acf[/thread] -> c:\programdata\rundll\coli-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.EquationDrug.acg[/thread] -> c:\programdata\rundll\trfo-2.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.EquationDrug.ach[/thread] -> c:\programdata\rundll\crli-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.EquationDrug.acj[/thread] -> c:\programdata\rundll\cnli-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.EquationDrug.dp[/thread] -> c:\programdata\rundll\zlib1.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.EquationDrug.jf[/thread] -> c:\programdata\rundll\libcurl.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.aa[/thread] -> c:\programdata\rundll\posh.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.ShadowBrokers.ab[/thread] -> c:\programdata\rundll\posh-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ac[/thread] -> c:\programdata\rundll\tibe.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ad[/thread] -> c:\programdata\rundll\tibe-2.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ae[/thread] -> c:\programdata\rundll\trch.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.ShadowBrokers.af[/thread] -> c:\programdata\rundll\trch-0.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.ag[/thread] -> c:\programdata\rundll\trch-1.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ah[/thread] -> c:\programdata\rundll\tucl.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ai[/thread] -> c:\programdata\rundll\tucl-1.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ak[/thread] -> c:\programdata\rundll\xdvl-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.al[/thread] -> c:\programdata\rundll\zibe.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.an[/thread] -> c:\programdata\rundll\trfo.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.ao[/thread] -> c:\programdata\rundll\cnli-1.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.aq[/thread] -> c:\programdata\rundll\trfo-0.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.ar[/thread] -> c:\programdata\rundll\riar.dll ( AVAST4: Win32:Stuxnet-C [Wrm] )[*][thread=226188]Trojan.Win32.ShadowBrokers.as[/thread] -> c:\programdata\rundll\riar-2.dll ( AVAST4: Win32:Stuxnet-C [Wrm] )[*][thread=226188]Trojan.Win32.ShadowBrokers.au[/thread] -> c:\programdata\rundll\pcreposix-0.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.av[/thread] -> c:\programdata\rundll\pcrecpp-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.aw[/thread] -> c:\programdata\rundll\dmgd-1.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.ax[/thread] -> c:\programdata\rundll\pcre-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.bb[/thread] -> c:\programdata\rundll\tibe-1.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.Shadowbrokers.co[/thread] -> c:\programdata\rundll\ucl.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.ct[/thread] -> c:\programdata\rundll\iconv.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.cz[/thread] -> c:\programdata\rundll\ssleay32.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.p[/thread] -> c:\programdata\rundll\adfw.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.ShadowBrokers.t[/thread] -> c:\programdata\rundll\adfw-2.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]Trojan.Win32.ShadowBrokers.v[/thread] -> c:\programdata\rundll\esco-0.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.w[/thread] -> c:\programdata\rundll\exma.dll ( AVAST4: Win32:Malware-gen )[*][thread=226188]Trojan.Win32.ShadowBrokers.x[/thread] -> c:\programdata\rundll\exma-1.dll[*][thread=226188]Trojan.Win32.ShadowBrokers.y[/thread] -> c:\programdata\rundll\pcla-0.dll ( AVAST4: Other:Malware-gen [Trj] )[*][thread=226188]UDS:DangerousObject.Multi.Generic[/thread] -> c:\programdata\rundll\rundll.exe[/LIST]