Пойманы в разделе Помогите, отчет за период 23.11.2010 - 24.11.2010
[LIST][*][thread=92325]Backdoor.Win32.Agent.bawi[/thread] -> c:\recycler\s-1-5-21-1482476501-1644491937-682003330-1013\dcm.exe ( DrWEB: Win32.HLLW.Autoruner.34215, BitDefender: Trojan.Generic.4999185, NOD32: Win32/AutoRun.KS worm, AVAST4: Win32:Malware-gen )[*][thread=92325]Backdoor.Win32.Bifrose.fvv[/thread] -> c:\windows\dn.exe ( DrWEB: BackDoor.IRC.Sdbot.6672, BitDefender: Backdoor.Bot.127128, NOD32: Win32/AutoRun.IRCBot.DL worm, AVAST4: Win32:Trojan-gen )[*][thread=92325]Backdoor.Win32.LolBot.ju[/thread] -> c:\documents and settings\светлана-солнышко\application data\microsoft-5858-2574\winsvcrn.exe ( DrWEB: Trojan.Inject.14359, BitDefender: Trojan.Generic.5122329, NOD32: Win32/Boberog.AZ worm, AVAST4: Win32:Trojan-gen )[*][thread=92325]Backdoor.Win32.Poison.bzoz[/thread] -> c:\documents and settings\светлана-солнышко\application data\d-2785-7947-8747\wincdsvn.exe ( DrWEB: Trojan.Packed.21129, BitDefender: Trojan.Generic.5005915, NOD32: Win32/Boberog.AW worm, AVAST4: Win32:VB-QLR [Drp] )[*][thread=92342]Email-Worm.Win32.Joleee.fkz[/thread] -> c:\windows\system32\msvmiode.exe ( DrWEB: Trojan.Spambot.9106, BitDefender: Trojan.Generic.5126931, NOD32: Win32/SpamTool.Tedroo.AN trojan, AVAST4: Win32:Trojan-gen )[*][thread=92316]Email-Worm.Win32.Joleee.fkz[/thread] -> c:\windows\system32\msvmiode.exe ( DrWEB: Trojan.Spambot.9106, BitDefender: Trojan.Generic.5126931, NOD32: Win32/SpamTool.Tedroo.AN trojan, AVAST4: Win32:Trojan-gen )[*][thread=92326]HEUR:Trojan.Win32.Generic[/thread] -> c:\documents and settings\admin\application data\microsoft\windows\shell.exe ( DrWEB: Trojan.Siggen2.9442, BitDefender: Gen:Variant.Kazy.3790, NOD32: Win32/Cycbot.AA trojan, AVAST4: Win32:Malware-gen )[*][thread=92325]Packed.Win32.Klone.i[/thread] -> c:\windows\system32\dbr07007.ocx ( BitDefender: Trojan.Generic.5005917, AVAST4: Win32:Malware-gen )[*][thread=92325]Packed.Win32.Klone.i[/thread] -> c:\windows\system32\dbr09006.ocx ( DrWEB: Trojan.PWS.Wow.1959, BitDefender: Trojan.Generic.5001360, AVAST4: Win32:Malware-gen )[*][thread=92326]Packed.Win32.Krap.hy[/thread] -> c:\windows\temp\dwm.exe ( DrWEB: Trojan.Fakealert.19553, BitDefender: Gen:Variant.Kazy.3922, AVAST4: Win32:Cycbot-V [Trj] )[*][thread=92326]Packed.Win32.Krap.hy[/thread] -> c:\documents and settings\admin\application data\microsoft\svchost.exe ( DrWEB: Trojan.Siggen2.9461, BitDefender: Gen:Variant.Kazy.3922, AVAST4: Win32:Cycbot-V [Trj] )[*][thread=92352]P2P-Worm.Win32.Palevo.biej[/thread] -> d:\webservers\recycler\autorun.exe ( DrWEB: Trojan.Inject.14030, BitDefender: Trojan.Generic.KDV.69199, AVAST4: Win32:Malware-gen )[*][thread=92352]P2P-Worm.Win32.Palevo.bigb[/thread] -> c:\documents and settings\networkservice\local settings\temporary internet files\content.ie5\wi36400p\h[1].exe ( DrWEB: Trojan.Inject.14025, BitDefender: Trojan.Generic.KDV.69043, AVAST4: Win32:Malware-gen )[*][thread=92352]P2P-Worm.Win32.Palevo.bigb[/thread] -> c:\recycler\s-1-5-21-9900579533-3504241354-264695936-0737\winmap.exe ( DrWEB: Trojan.Inject.14025, BitDefender: Trojan.Generic.KDV.69043, AVAST4: Win32:Malware-gen )[*][thread=92352]P2P-Worm.Win32.Palevo.bigb[/thread] -> c:\windows\system32\06.exe ( DrWEB: Trojan.Inject.14025, BitDefender: Trojan.Generic.KDV.69043, AVAST4: Win32:Malware-gen )[*][thread=92267]Rootkit.Win32.Agent.ey[/thread] -> c:\system volume information\_restore{41713082-6106-46fb-ba51-d9ab9b01f983}\rp76\a0009784.sys ( DrWEB: Trojan.NtRootKit.321, BitDefender: Rootkit.Agent.GV, AVAST4: Win32:Neptunia-YS [Trj] )[*][thread=92267]Rootkit.Win32.Papapa.c[/thread] -> c:\system volume information\_restore{41713082-6106-46fb-ba51-d9ab9b01f983}\rp76\a0009783.sys ( DrWEB: Trojan.NtRootKit.4398, BitDefender: Gen:Rootkit.Heur.auW@tGEC52e, AVAST4: Win32:Haxdoor-KJ [Rtk] )[*][thread=92267]Rootkit.Win32.Papapa.c[/thread] -> c:\documents and settings\петрович\doctorweb\quarantine\runtime.sys ( DrWEB: Trojan.NtRootKit.4398, BitDefender: Gen:Rootkit.Heur.auW@tGEC52e, AVAST4: Win32:Haxdoor-KJ [Rtk] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000660.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0002343.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000661.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0001698.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000633.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\documents and settings\светлана-солнышко\application data\microsoft\gymmurit.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\windows\system32\lotufour.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0001683.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0001707.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000679.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000517.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0001741.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0001704.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\system volume information\_restore{2605f4bb-78de-45fc-9fd4-9c8b43c6e11b}\rp2\a0000637.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\documents and settings\светлана-солнышко\local settings\temp\252.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\documents and settings\светлана-солнышко\application data\microsoft\lotufour.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\documents and settings\светлана-солнышко\local settings\temp\731.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.FraudLoad.xzit[/thread] -> c:\documents and settings\светлана-солнышко\application data\microsoft\vougukypot.exe ( DrWEB: Trojan.Packed.20878, BitDefender: Trojan.Generic.5075187, AVAST4: Win32:Tedroo-D [Trj] )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bsk[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\ojfqvg5hi7.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.5054518, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bsq[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\81y2zav.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60352, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.btu[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\65j3qvg.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60417, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bud[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\teplwrrsdy.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60417, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bud[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\1xhidez.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60417, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bue[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\ukl03h0njz.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60351, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bue[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\hc6y86vqrw.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60351, AVAST4: Win32:Trojan-gen )[*][thread=92325]Trojan-Downloader.Win32.Refroso.bug[/thread] -> c:\documents and settings\светлана-солнышко\главное меню\программы\автозагрузка\ejfqvg5hi.exe ( DrWEB: Trojan.MulDrop1.53399, BitDefender: Trojan.Generic.KDV.60351, AVAST4: Win32:Trojan-gen )[*][thread=92267]Trojan-Dropper.Win32.Agent.dnlv[/thread] -> c:\windows\system32\cerb\servs.exe ( DrWEB: Trojan.DownLoader1.39209, BitDefender: Trojan.Generic.4866359, NOD32: Win32/TrojanDropper.Delf.NQD trojan, AVAST4: Win32:FakeVimes-B [Trj] )[*][thread=92325]Trojan-GameThief.Win32.Frethoq.cer[/thread] -> e:\temporary\kb970588.dll ( DrWEB: Trojan.Siggen2.5317, BitDefender: Trojan.Onlinegames.2077, NOD32: Win32/PSW.OnLineGames.PEK trojan, AVAST4: Win32:Agent-AMDC [Drp] )[*][thread=92325]Trojan-GameThief.Win32.Frethoq.cgi[/thread] -> e:\temporary\jkrjewc.dll ( BitDefender: Generic.PWS.Games.4.7E5C92A6, AVAST4: Win32:Agent-AMDC [Drp] )[*][thread=92325]Trojan-GameThief.Win32.Frethoq.cit[/thread] -> e:\temporary\uewurweuc.dll ( BitDefender: Generic.PWS.Games.4.AEF14D88, AVAST4: Win32:Agent-AMDC [Drp] )[*][thread=92325]Trojan-GameThief.Win32.Frethoq.cld[/thread] -> e:\temporary\wyfjdkwec.dll ( BitDefender: Generic.PWS.Games.4.849374CC, AVAST4: Win32:Agent-AMDC [Drp] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnrx[/thread] -> c:\windows\system32\vxsflguull.sd ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Trojan.Generic.4960205, NOD32: Win32/Agent.RYW trojan, AVAST4: Win32:Spyware-gen [Spy] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\fafchme.do ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\migqkyl.mi ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\rwjsgyk.ja ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\bwckcuu.ta ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\cwtgcio.do ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\dmdiboj.ra ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\windows\system32\uuanbedjsq.td ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.bnsm[/thread] -> c:\program files\common files\iuskyss.ja ( DrWEB: Trojan.PWS.Stealer.342, BitDefender: Rootkit.40857, NOD32: Win32/Agent.RYZ trojan, AVAST4: Win32:Rootkit-gen [Rtk] )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.xeeq[/thread] -> c:\windows\system32\20101027233203.dll ( DrWEB: Trojan.PWS.Wsgame.23714, BitDefender: Trojan.Generic.4862076 )[*][thread=92325]Trojan-GameThief.Win32.OnLineGames.xgsw[/thread] -> c:\windows\system32\msctfiem.cpl ( DrWEB: Trojan.PWS.Wsgame.23922, BitDefender: Trojan.Generic.5016275, AVAST4: Win32:Agent-AMKP [Drp] )[*][thread=92316]Trojan.Win32.Agent.gana[/thread] -> c:\docume~1\пашка~1.bat\locals~1\temp\708.exe ( DrWEB: Win32.HLLW.Autoruner.22584, BitDefender: Trojan.Generic.5077934, NOD32: Win32/TrojanProxy.Ranky trojan, AVAST4: Win32:Malware-gen )[*][thread=92324]Trojan.Win32.Delf.ahrs[/thread] -> c:\windows\system32\cryptnet32.dll ( DrWEB: Trojan.Siggen2.5088, BitDefender: Trojan.Generic.5065862, NOD32: Win32/Lukicsel.Q trojan, AVAST4: Win32:Malware-gen )[*][thread=92325]Trojan.Win32.FraudPack.cjmu[/thread] -> c:\documents and settings\светлана-солнышко\application data\juzjf.exe ( DrWEB: Win32.HLLW.Autoruner.22584, BitDefender: Gen:Variant.Zbot.26, AVAST4: Win32:Malware-gen )[*][thread=92325]Trojan.Win32.Jorik.IRCbot.kx[/thread] -> c:\docume~1\-761a~1\locals~1\temp\winupdate.exe ( DrWEB: BackDoor.IRC.Bot.592, BitDefender: Trojan.Generic.4978102, NOD32: Win32/AutoRun.IRCBot.FL worm, AVAST4: Win32:Malware-gen )[*][thread=92324]Trojan.Win32.Jorik.IRCbot.la[/thread] -> c:\docume~1\admin\locals~1\temp\dvadessest.exe ( DrWEB: Win32.HLLW.Autoruner.29375, BitDefender: Trojan.Generic.4846269, NOD32: Win32/AutoRun.IRCBot.FL worm, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=92325]Trojan.Win32.Jorik.IRCbot.nb[/thread] -> c:\documents and settings\светлана-солнышко\winscrnv.exe ( DrWEB: Trojan.MulDrop1.50953, BitDefender: Gen:Win32.IRC-Backdoor.dqW@aeAnLfki, AVAST4: Win32:Bifrose-ETF [Trj] )[*][thread=92325]Trojan.Win32.Jorik.SdBot.fg[/thread] -> c:\windows\nvsvc32.exe ( DrWEB: Trojan.Packed.21093, BitDefender: Trojan.Generic.KDV.50547, NOD32: Win32/Yimfoca.AA worm, AVAST4: Win32:Malware-gen )[*][thread=92316]Trojan.Win32.Jorik.SdBot.lg[/thread] -> c:\windows\cfdrive32.exe ( DrWEB: BackDoor.IRC.Bot.166, BitDefender: Trojan.Generic.5131083, AVAST4: Win32:Malware-gen )[*][thread=92313]Trojan.Win32.Jorik.Shiz.hy[/thread] -> c:\windows\system32\jnsspbw.exe ( DrWEB: Trojan.MulDrop1.52533 )[*][thread=92324]Trojan.Win32.Jorik.Skor.fs[/thread] -> j:\microsof-1dbb0c\microsof-1dbb0c\microsof-1dbb0cdl14.exe ( DrWEB: Win32.HLLW.Autoruner.36264, BitDefender: Gen:Trojan.Heur.ZGY.5, NOD32: Win32/AutoRun.IRCBot.FL worm, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=92324]Trojan.Win32.Jorik.Skor.fs[/thread] -> c:\docume~1\admin\locals~1\temp\sesdessecetra.exe ( DrWEB: Win32.HLLW.Autoruner.36264, BitDefender: Gen:Trojan.Heur.ZGY.5, NOD32: Win32/AutoRun.IRCBot.FL worm, AVAST4: Win32:Dropper-gen [Drp] )[*][thread=92325]Trojan.Win32.Swisyn.aqlw[/thread] -> c:\docume~1\-761a~1\locals~1\temp\lsass.exe ( DrWEB: Trojan.MulDrop1.52282, BitDefender: Trojan.Generic.KDV.62444, AVAST4: Win32:Malware-gen )[*][thread=92324]Worm.VBS.VirusProtection.d[/thread] -> c:\program files\usb_anti_autorun\usb.wsf ( DrWEB: Tool.Autorun.4, BitDefender: Generic.ScriptWorm.F2E62E2D, AVAST4: VBS:AutoRun-gen [Wrm] )[/LIST]