Пойманы в разделе Помогите, отчет за период 04.11.2009 - 05.11.2009
[LIST][*][thread=59259]Backdoor.Win32.Agent.amjl[/thread] -> c:\documents and settings\вадим\application data\haiqem.dll[*][thread=59341]Backdoor.Win32.Agent.amjv[/thread] -> c:\windows\system32\chknt32.exe[*][thread=37678]Backdoor.Win32.Bifrose.bwgk[/thread] -> c:\temp\quarantine\proxymaster.exe ( DrWEB: Trojan.Packed.2960, BitDefender: Trojan.Generic.2472292, AVAST4: Win32:VB-NFD [Drp] )[*][thread=59387]Backdoor.Win32.Bredolab.asq[/thread] -> c:\documents and settings\svetik\главное меню\программы\автозагрузка\zavupd32.exe ( DrWEB: Trojan.Botnetlog.11 )[*][thread=59259]Backdoor.Win32.HareBot.rl[/thread] -> c:\documents and settings\вадим\restorer64_a.exe ( DrWEB: Trojan.DownLoad.41506, BitDefender: Backdoor.Bot.108440, NOD32: Win32/Wigon.HT trojan )[*][thread=59337]Backdoor.Win32.HareBot.tl[/thread] -> c:\documents and settings\shulzhenko.qp\restorer32_a.exe ( DrWEB: Trojan.DownLoad.41506, BitDefender: Trojan.Kobcka.IN, AVAST4: Win32:Cutwail-AC [Trj] )[*][thread=59337]Backdoor.Win32.HareBot.tl[/thread] -> c:\windows\system32\restorer32_a.exe ( DrWEB: Trojan.DownLoad.41506, BitDefender: Trojan.Kobcka.IN, AVAST4: Win32:Cutwail-AC [Trj] )[*][thread=59374]Backdoor.Win32.SdBot.pyq[/thread] -> e:\documents and settings\администратор\local settings\temp\409.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Backdoor.Generic.221158, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59374]Backdoor.Win32.SdBot.pyq[/thread] -> e:\documents and settings\администратор\local settings\temporary internet files\content.ie5\sqjl75b7\vs8[1].exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Backdoor.Generic.221158, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59374]Backdoor.Win32.SdBot.pyq[/thread] -> e:\documents and settings\администратор\local settings\temp\683.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Backdoor.Generic.221158, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59374]Backdoor.Win32.SdBot.pyq[/thread] -> c:\recycler\s-1-5-21-0243936033-3052116371-381863308-1859\ls888.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Backdoor.Generic.221158, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59374]Backdoor.Win32.SdBot.pyq[/thread] -> c:\recycler\s-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe ( DrWEB: BackDoor.Siggen.637, BitDefender: Backdoor.Generic.221315, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59288]HackTool.Win32.Hidd.cc[/thread] -> c:\program files\fontsys.fon ( DrWEB: Trojan.MulDrop.31992, BitDefender: Trojan.Generic.2136392, NOD32: Win32/Delf.OKV trojan, AVAST4: Win32:Induc )[*][thread=59268]Net-Worm.Win32.Kolab.ccj[/thread] -> c:\windows\system\svhost.exe ( DrWEB: BackDoor.IRC.Sdbot.4752, BitDefender: Trojan.Generic.2314165, NOD32: Win32/Injector.MM trojan, AVAST4: Win32:AutoRun-AVE [Wrm] )[*][thread=59313]not-a-virus:AdWare.Win32.AdSubscribe.afj[/thread] -> c:\users\alex\appdata\roaming\cmedia\cmedia.dll ( DrWEB: Trojan.AdSubscribe.137 )[*][thread=59313]not-a-virus:AdWare.Win32.FearAds.ay[/thread] -> c:\users\alex\appdata\roaming\fieryads\fieryads.dll ( DrWEB: Adware.FieryAds.22, BitDefender: Gen:Adware.Heur.OO8aQaTp4jrk )[*][thread=59172]not-a-virus:Monitor.Win32.KbrdHook.a[/thread] -> c:\program files\kbrdhook\keyboard.dll ( BitDefender: Trojan.Pws.Lineage.AR, AVAST4: Win32:Trojan-gen )[*][thread=59172]not-a-virus:Monitor.Win32.KbrdHook.a[/thread] -> c:\program files\kbrdhook\plugins\pass.khp[*][thread=59259]Packed.Win32.Krap.x[/thread] -> c:\documents and settings\вадим\главное меню\программы\автозагрузка\sysupd32.exe ( DrWEB: Trojan.Packed.682, BitDefender: Trojan.CryptRedol.Gen.5, NOD32: Win32/TrojanDownloader.Bredolab.AU trojan, AVAST4: Win32:Bredolab-AQ [Trj] )[*][thread=59374]P2P-Worm.Win32.Palevo.jpm[/thread] -> e:\windows\system32\wshost32.exe ( DrWEB: Win32.HLLW.Lime.18, BitDefender: Trojan.Patched.BI, AVAST4: Win32:Patched-JZ [Trj] )[*][thread=37678]Trojan.BAT.KillWin.fe[/thread] -> c:\temp\quarantine\reiting_vkontakte.exe ( NOD32: is OK )[*][thread=37678]Trojan.BAT.Qhost.gw[/thread] -> c:\temp\quarantine\anti spam.exe ( BitDefender: Trojan.Generic.2427042 )[*][thread=59294]Trojan-Downloader.Win32.Agent.ctoo[/thread] -> c:\windows\system32\drivers\svchost.exe ( DrWEB: Trojan.Click.29425 )[*][thread=59273]Trojan-Downloader.Win32.Agent.nsl[/thread] -> c:\windows\system32\windata.cab ( DrWEB: Trojan.DownLoader.59496, BitDefender: Trojan.Downloader.Agent.ZIS, NOD32: Win32/Wigon trojan, AVAST4: Win32:Cutwail [Trj] )[*][thread=59268]Trojan-Downloader.Win32.Mutant.glm[/thread] -> c:\documents and settings\artix\restorer32_a.exe ( DrWEB: Trojan.DownLoad.41506, BitDefender: Trojan.Kobcka.IN, AVAST4: Win32:Cutwail-AC [Trj] )[*][thread=59268]Trojan-Downloader.Win32.Mutant.glm[/thread] -> c:\windows\system32\restorer32_a.exe ( DrWEB: Trojan.DownLoad.41506, BitDefender: Trojan.Kobcka.IN, AVAST4: Win32:Cutwail-AC [Trj] )[*][thread=59259]Trojan-Downloader.Win32.Small.kgl[/thread] -> c:\windows\system32\wmmest.dll ( DrWEB: Trojan.DownLoad.40730, BitDefender: Trojan.Generic.2507160 )[*][thread=59284]Trojan-Dropper.Win32.Agent.bhdo[/thread] -> c:\windows\system32\wsefkdfesd.exe ( BitDefender: Gen:Trojan.Heur.bm0@!dG3VDlb, AVAST4: Win32:Agent-AERY [Trj] )[*][thread=59385]Trojan-GameThief.Win32.Magania.carh[/thread] -> d:\yudald.bat ( DrWEB: Trojan.PWS.Wsgame.13118, BitDefender: Trojan.Generic.2521888, NOD32: Win32/PSW.OnLineGames.NNU trojan, AVAST4: Win32:Kamso [Trj] )[*][thread=59385]Trojan-GameThief.Win32.Magania.clrs[/thread] -> c:\temp\cvasds0.dll ( DrWEB: Trojan.PWS.Wsgame.13208, NOD32: Win32/PSW.OnLineGames.ODJ trojan, AVAST4: Win32:Malware-gen )[*][thread=59385]Trojan-GameThief.Win32.Magania.clrs[/thread] -> c:\temp\cvasds1.dll ( DrWEB: Trojan.PWS.Wsgame.13208, NOD32: Win32/PSW.OnLineGames.ODJ trojan, AVAST4: Win32:Malware-gen )[*][thread=59385]Trojan-GameThief.Win32.Magania.clsb[/thread] -> c:\1a1dndah.exe ( DrWEB: Trojan.PWS.Wsgame.12661, NOD32: Win32/PSW.OnLineGames.NNU trojan, AVAST4: Win32:Soolo [Trj] )[*][thread=59385]Trojan-GameThief.Win32.Magania.clsb[/thread] -> c:\autorun.inf ( NOD32: Win32/PSW.OnLineGames.NNU trojan )[*][thread=59385]Trojan-GameThief.Win32.Magania.clsb[/thread] -> d:\1a1dndah.exe ( DrWEB: Trojan.PWS.Wsgame.12661, NOD32: Win32/PSW.OnLineGames.NNU trojan, AVAST4: Win32:Soolo [Trj] )[*][thread=59385]Trojan-GameThief.Win32.Magania.clsb[/thread] -> d:\autorun.inf ( NOD32: Win32/PSW.OnLineGames.NNU trojan )[*][thread=37678]Trojan.MSIL.VkHost.c[/thread] -> c:\temp\quarantine\vkmasterpro.exe[*][thread=59351]Trojan-Proxy.Win32.Agent.bwd[/thread] -> c:\windows\system32\pmod11.dll[*][thread=59268]Trojan-Proxy.Win32.Agent.re[/thread] -> c:\windows\msmacro32.exe ( DrWEB: Trojan.Proxy.1783, NOD32: Win32/TrojanProxy.Agent.MM trojan, AVAST4: Win32:Trojan-gen )[*][thread=59268]Trojan-Proxy.Win32.Agent.re[/thread] -> c:\docume~1\artix\locals~1\temp\00.exe ( DrWEB: Trojan.Proxy.1783, NOD32: Win32/TrojanProxy.Agent.MM trojan, AVAST4: Win32:Trojan-gen )[*][thread=37678]Trojan-PSW.VBS.Jakuz.b[/thread] -> c:\temp\quarantine\hack-kontakt.exe ( DrWEB: Trojan.PWS.Banker.3468, BitDefender: Trojan.Dropper.Delf.XU, AVAST4: Win32:Delf-HOR [Trj] )[*][thread=37678]Trojan-Ransom.Win32.Agent.gr[/thread] -> c:\temp\quarantine\farmer_money_hack.exe ( DrWEB: archive: Trojan.Starter.1072 )[*][thread=59152]Trojan-Ransom.Win32.SMSer.rb[/thread] -> c:\windows\system32\config\system~1\applic~1\ufastd~1\propetyufastmanager.exe ( DrWEB: Trojan.Winlock.425 )[*][thread=59387]Trojan-Ransom.Win32.SMSer.rb[/thread] -> c:\docume~1\svetik\applic~1\ufastd~1\propetyufastmanager.exe ( DrWEB: Trojan.Winlock.425 )[*][thread=59152]Trojan-Ransom.Win32.SMSer.rb[/thread] -> c:\windows\system32\config\system~1\applic~1\ufastd~1\propet~1.exe ( DrWEB: Trojan.Winlock.425 )[*][thread=59387]Trojan-Ransom.Win32.SMSer.rb[/thread] -> c:\docume~1\svetik\applic~1\ufastd~1\propet~1.exe ( DrWEB: Trojan.Winlock.425 )[*][thread=59329]Trojan-Ransom.Win32.SMSer.rb[/thread] -> c:\docume~1\locals~1.nta\applic~1\ufastd~1\propet~1.exe ( DrWEB: Trojan.Winlock.425 )[*][thread=59259]Trojan-Ransom.Win32.SMSer.ri[/thread] -> c:\docume~1\8ad5~1\applic~1\ufastd~1\propet~1.exe ( DrWEB: Trojan.Winlock.425, AVAST4: Win32:Malware-gen )[*][thread=59268]Trojan.Win32.Agent.cncs[/thread] -> c:\windows\system\dllcache.exe ( DrWEB: BackDoor.Siggen.205, BitDefender: Trojan.Generic.2053126, NOD32: Win32/AutoRun.IRCBot.AZ worm, AVAST4: Win32:Inject-SW [Trj] )[*][thread=59374]Trojan.Win32.Buzus.casf[/thread] -> e:\windows\system32\umdmgr.exe ( DrWEB: BackDoor.IRC.Letmein.13, BitDefender: Trojan.Generic.2497240, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59297]Trojan.Win32.Buzus.cleo[/thread] -> c:\windows\mslsrv32.exe ( DrWEB: BackDoor.IRC.Sdbot.5190, AVAST4: Win32:Injector-SE [Trj] )[*][thread=59268]Trojan.Win32.Buzus.clkn[/thread] -> c:\windows\mslsrv32.exe ( DrWEB: BackDoor.IRC.Bot.144 )[*][thread=59268]Trojan.Win32.FraudPack.zcs[/thread] -> c:\windows\services.exe ( DrWEB: Trojan.Spambot.3531, AVAST4: Win32:FakeAlert-DU [Trj] )[*][thread=59333]Trojan.Win32.Inject.alcg[/thread] -> c:\windows\system32\syschk32.exe ( DrWEB: Trojan.Blackmailer.1519 )[*][thread=59242]Trojan.Win32.Inject.alcg[/thread] -> c:\windows\system32\syschk32.exe ( DrWEB: Trojan.Blackmailer.1519 )[*][thread=59385]Trojan.Win32.Inject.ldi[/thread] -> c:\windows\system32\gasretyw0.dll ( DrWEB: Trojan.PWS.Wsgame.6885, BitDefender: Trojan.PWS.OnlineGames.KCPB, NOD32: Win32/PSW.OnLineGames.NMP trojan, AVAST4: Win32:Kavos [Trj] )[*][thread=59385]Trojan.Win32.Inject.ldi[/thread] -> c:\windows\system32\kamsoft.exe ( DrWEB: Trojan.PWS.Wsgame.4983, BitDefender: Trojan.PWS.OnlineGames.KCPB, NOD32: Win32/PSW.OnLineGames.NMY trojan, AVAST4: Win32:Kavos [Trj] )[*][thread=59259]Trojan.Win32.Pakes.nrk[/thread] -> c:\program files\common files\system\webcheck.dll ( DrWEB: Trojan.WebCheck.9 )[*][thread=59294]Trojan.Win32.Scar.ajuf[/thread] -> c:\windows\system32\svrhost.exe[*][thread=37678]Trojan.Win32.Scar.akmu[/thread] -> c:\temp\quarantine\l-l.exe ( DrWEB: archive: Trojan.Winlock.275, BitDefender: Trojan.Agent.ANPG )[*][thread=37678]Trojan.Win32.Scar.akmu[/thread] -> c:\temp\quarantine\index.exe ( DrWEB: Trojan.Winlock.275, BitDefender: Trojan.Agent.ANPG )[*][thread=37678]Trojan.Win32.VkHost.fe[/thread] -> c:\temp\quarantine\arat.exe[*][thread=37678]Type_Script[/thread] -> c:\temp\quarantine\install.exe ( DrWEB: archive: a modification of VBS.Generic.18, BitDefender: Dropped:Generic.ScriptWorm.EB231356 )[*][thread=59374]Worm.Win32.AutoRun.azzu[/thread] -> e:\recycler\s-1-5-21-5895244299-9687726348-596259165-1146\wmfcgr.exe ( DrWEB: Trojan.Packed.471, BitDefender: MemScan:Worm.Generic.83261, AVAST4: Win32:Delf-IFY [Trj] )[*][thread=59268]Worm.Win32.AutoRun.ftp[/thread] -> c:\windows\system32\drivers\sysdrv32.sys ( DrWEB: Tool.TcpZ, BitDefender: Rootkit.Agent.AJBM, AVAST4: Win32:Tcpz [Tool] )[/LIST]