-
Подозоение на Троян
Я снял логи с компа и в соответствии с курсом попытался проанализировать логи. Еще ничего не предпринимал. посмотрите. HHijackThis нет логов так как не я логи снимал как сниму прикреплю.
begin
QuarantineFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp','');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\AppData\Local\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Temp\~DFD2ED.tmp');
DeleteFile('C:\Documents and Settings\Александр\Local Settings\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\AppData\Local\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Application Data\Temp\~DFE1FE.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Temp\~DFD2ED.tmp');
DeleteFile('C:\Users\Александр\Local Settings\Temp\~DFE1FE.tmp');
end.
-
Ничего необычного.
[URL="http://virusinfo.info/showthread.php?t=10025"]Займитесь уборкой[/URL]
Page generated in 0.00693 seconds with 10 queries