Показано с 1 по 12 из 12.

Остатки вирусов (заявка № 101946)

  1. 09.05.2011, 15:26 #1
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51

    Остатки вирусов

    Приветствую, друзья!

    Пытаюсь вылечить последний комп (остальные, благодаря форуму, здоровые и счастливые).

    Др Вэб нашел заразу и удалил. После перезагрузки открываются пустые вэб-страницы. При соединении с Интернетом система иногда зависает.

    Помогите. Логи прилагаю согласно правилам.
  2.  Будь в курсе! Будь в курсе!
    Реклама на VirusInfo

    Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:

    Anti-Malware Telegram
     
  3. 09.05.2011, 19:28 #2
    polword
    polword вне форума
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    23.06.2009
    Адрес
    Пермь
    Сообщений
    11,186
    Вес репутации
    551
    - Выполните скрипт в AVZ
    Код:
    begin
 SearchRootkit(true, true);
 SetAVZGuardStatus(True);
 RegKeyStrParamWrite('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon','UserInit', GetEnvironmentVariable ('WinDir')+'\System32\userinit.exe,'); 
  QuarantineFile('C:\WINDOWS.0\system32\bsysmgr.exe','');
 QuarantineFile('C:\WINDOWS.0\jodrive32.exe','');
 QuarantineFile('C:\Documents and Settings\Admin\bnt.exe','');
 QuarantineFile('C:\Documents and Settings\Admin\msc32.exe','');
 QuarantineFile('c:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\winfixer.exe','');
 QuarantineFile('C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe','');
 TerminateProcessByName('c:\documents and settings\admin\pdf.exe');
 QuarantineFile('c:\documents and settings\admin\pdf.exe','');
 QuarantineFile('c:\windows.0\jodrive32.exe','');
 TerminateProcessByName('c:\windows.0\jodrive32.exe');
 DeleteFile('c:\windows.0\jodrive32.exe');
 DeleteFile('c:\documents and settings\admin\pdf.exe');
 DeleteFile('C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe');
 RegKeyParamDel('HKEY_CURRENT_USER','Software\Microsoft\Windows\CurrentVersion\Run','12CFG214-K641-12SF-N85P');
 DeleteFile('C:\WINDOWS.0\jodrive32.exe');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run','Microsoft Config Setup');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows\CurrentVersion\Run','Microsoft Config Setup');
 DeleteFile('c:\RECYCLER\R-1-5-21-1482476501-1644491937-682003330-1013\winfixer.exe');
 DeleteFile('C:\Documents and Settings\Admin\msc32.exe');
 DeleteFile('C:\Documents and Settings\Admin\bnt.exe');
 DeleteFile('C:\WINDOWS.0\system32\bsysmgr.exe');
 RegKeyParamDel('HKEY_LOCAL_MACHINE','Software\Microsoft\Windows NT\CurrentVersion\Winlogon','Taskman ');
 BC_ImportAll;
 ExecuteSysClean;
 ExecuteRepair(11);
 ExecuteWizard('TSW', 2, 2, true);
 ExecuteWizard('SCU', 2, 2, true);
 BC_Activate;
 RebootWindows(true);
end.
    После перезагрузки:
    - выполните такой скрипт
    Код:
    begin
  CreateQurantineArchive(GetAVZDirectory+'quarantine.zip'); 
 end.
    - Файл quarantine.zip из папки AVZ загрузите по ссылке Прислать запрошенный карантин вверху темы

    Обновите систему
    - SP2 обновите до Service Pack 3(может потребоваться активация)
    * Перед установкой Сервис Пака необходимо выгрузить антивирус, файрвол, а так же резидентные приложения типа TeaTimer (Spybot Search and Destroy) и др.)
    * Microsoft остановил поддержку и выпуск обновлений безопасности для ОС Windows XP без установленного SP3, см.тут
    - Поставте все последние обновления системы Windows - тут

    После обновления:
    - Сделайте повторные логи по правилам п.2 и 3 раздела Диагностика.(virusinfo_syscheck.zip;hijackthis.log)
    - Сделайте лог MBAM
  4. 09.05.2011, 22:29 #3
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51
    Сервис Пак, к сожалению, никак не хочет ставиться (кто-то или что-то блокирует доступ к реестру в процессе инсталляции). Уже кучу способов перепробовал - пока не помогает

    Все остальное - выполнил. Посмотрите, плз.
  5. 09.05.2011, 22:36 #4
    polword
    polword вне форума
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    23.06.2009
    Адрес
    Пермь
    Сообщений
    11,186
    Вес репутации
    551
    1.удалите в MBAM
    Код:
    Заражённые ключи в реестре:
HKEY_CLASSES_ROOT\CLSID\{8E8E8F8A-8FCC-88CE-BCB8-B8FD8E88888A} (Malware.Packer.Gen) -> No action taken.


Заражённые папки:
c:\program files\Save (Adware.WhenU) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU (Adware.WhenU) -> No action taken.
c:\RECYCLER\r-1-5-21-1482476501-1644491937-682003330-1013 (Worm.AutoRun.Gen) -> No action taken.

Заражённые файлы:
c:\documents and settings\Admin\application data\dwpem.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\application data\visdrive.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\application data\bbjph.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\application data\hawmd.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\38.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\38_____0.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\47.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\61.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\79C.exe (Trojan.Agent.Gen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\7D6.exe (Trojan.Agent.Gen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\85.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\bsysmgr.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\bsysmgr0.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\bsysmgr1.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\conhost.exe (Backdoor.Cycbot.Gen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\csrss.exe (Backdoor.Cycbot.Gen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\dwm.exe (Trojan.Agent.Gen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\jodrive32.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\pdf.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\png.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\png____0.exe (Trojan.Downloader) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\vsbntlo.exe (Trojan.Agent) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\vsbntlo0.exe (Trojan.Agent) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\vsbntlo1.exe (Trojan.Agent) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\winfixe0.exe (Trojan.Downloader) -> No action taken.
c:\documents and settings\Admin\doctorweb\quarantine\winfixer.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\Admin\local settings\application data\174375.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\local settings\application data\1746781.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2125406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2129187.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2248328.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2317640.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2317875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2349515.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\Admin\local settings\application data\2349609.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\Admin\local settings\application data\5520953.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\Admin\local settings\application data\5524296.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\application data\nkrsh.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\application data\yqufy.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\00406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\00468.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\032843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\032875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\036593.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\04500.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\06968.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\07250.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\100406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\100500.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1032843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1032953.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1033671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\10406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\580453.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\580640.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5832843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5833671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\583393.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\587328.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\590406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\590468.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\590796.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5932843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5932859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5933468.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\597593.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\60406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\60484.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1232843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1232968.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1233562.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\130406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\132843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\132875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1332843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\133578.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\140406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\170593.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\170640.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\170859.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1732843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\173346.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\174846.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\180406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\180703.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\210406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\210578.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\210859.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\220406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\220671.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\221156.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\230406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\10468.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\120843.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1820343.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\230546.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2328390.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2330625.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2338984.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\260406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\280750.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\381265.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\410406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\440812.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\470687.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\580406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\260531.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2610.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\261375.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2622828.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2623250.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\26765.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\270406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\270640.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\27218.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\276734.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\280406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\280656.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3112671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\320406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\320671.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\320937.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3212359.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\330406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\330734.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\366453.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\370406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\370750.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3732843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3732890.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3733546.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\379859.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\380406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3810.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3812515.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\410812.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4132843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4132906.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4133578.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\420406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\420671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\421140.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4232843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4232859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\470859.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4732843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4733265.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4734343.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\480421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\480843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4832843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4832875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4833968.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\490421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4932843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\49330.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4937468.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\500421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\500656.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5232843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\523346.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\523446.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\530437.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\530593.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\531250.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\532843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\532921.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5332843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5332968.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\632843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\632953.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\633734.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\70406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\70640.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\70937.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\732843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\732937.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\733562.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\80406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\80484.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\230828.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\23146.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2319375.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2319578.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2322437.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2322687.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2322812.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2323281.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2857296.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\290406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\290656.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2913625.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\298406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\300406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\300656.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\300828.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3011187.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\30406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\30484.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\306406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\30765.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\310406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\310843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3314203.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\332843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\332875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\333531.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\340406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\340703.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3422437.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3443671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\350406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\350968.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\44131.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4432843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4432859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4433984.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\450421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\450937.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\451109.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\451531.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4532843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4532984.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4533968.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\460421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\460515.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\460828.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\460984.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4632843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4632937.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\463462.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\470421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\501531.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\50193.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5032843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\503331.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5033968.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\50406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\50484.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\510421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\510625.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\51146.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5132843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5133406.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5135343.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\520421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\521312.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\550656.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\551218.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5532843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\553315.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5533828.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\560453.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\560890.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5632843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\110406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\110500.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\111375.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\112265.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1132843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1132968.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1133562.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\120406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\120500.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2328406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\232843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2328875.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\232890.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2329734.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2329937.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2330218.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2330406.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2330546.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2331218.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2331281.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2331296.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2331765.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2335515.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2335671.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\233593.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2337125.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2337328.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2337359.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2337515.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2337640.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2338109.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2338453.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2338484.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2338687.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2339218.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\240406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\240656.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\2416812.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\250406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\250531.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\250765.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\256734.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\256796.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3832843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3832875.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3834218.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\390406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\390781.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3932843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\39330.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\39350.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\400406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\400796.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\400875.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4032843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4032921.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\403415.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\40406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\563331.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\56340.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\570468.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\570921.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\57146.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5726984.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5732843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5732859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5734296.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3532843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3532859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3533484.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\35893.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\360406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\360718.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3632843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3632859.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\3633437.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4233484.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\430406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\430828.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\432843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\432906.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4332843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\4334687.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\433478.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\433500.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\440421.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5333921.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\533546.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\540437.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\540609.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\541375.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\541703.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5432843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5433671.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\5434765.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\550437.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\80812.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\832843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\832906.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\833515.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\90406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\90484.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\90640.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\90796.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\932843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\932953.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\933546.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\140562.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\14180.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1432843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\150406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\150515.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\151815.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1532843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\160406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\160515.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\160593.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\161831.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1632843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\16953.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\170406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1832843.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1850343.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\190406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\190578.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1932859.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\1932984.exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\200406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\200578.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\200593.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\20406.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\application data\20468.exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\332D2NN3\sms[1].exe (Worm.Palevo.XGen) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\332D2NN3\xhxc[1].bmp (Extension.Mismatch) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\332D2NN3\chzfnrw[1].jpg (Extension.Mismatch) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\ABPE2IFX\202[1].exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\ABPE2IFX\ms0481[1].exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\ABPE2IFX\ms0481[2].exe (Trojan.FakeAlert) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\ABPE2IFX\wzrpsujt[1].bmp (Extension.Mismatch) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\P0Z58SC3\202[1].exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\QY2JMAX7\h1[1].exe (Trojan.Dropper) -> No action taken.
c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5\QY2JMAX7\myms[1].exe (Worm.Palevo.XGen) -> No action taken.
c:\system volume information\_restore{d77952ef-4819-47e3-9ada-2f84c44282d6}\RP397\A0073542.exe (FakeMS) -> No action taken.
j:\RECYCLER\r-1-5-21-1482476501-1644491937-682003330-1013\winfixer.exe (Backdoor.Bot) -> No action taken.
c:\documents and settings\OEM\local settings\Temp\ie3.tmp (Trojan.Agent) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU\customer support.lnk (Adware.WhenU) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU\learn more about whenu save.url (Adware.WhenU) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU\learn more about whenu savenow.url (Adware.WhenU) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU\uninstall instructions.lnk (Adware.WhenU) -> No action taken.
c:\documents and settings\OEM\главное меню\программы\WhenU\whenu.com website.url (Adware.WhenU) -> No action taken.
    2.Выполните скрипт в AVZ
    Код:
    begin
 DeleteFileMask(GetAVZDirectory + 'Quarantine', '*.*', true);
 DeleteFileMask('c:\documents and settings\networkservice.nt authority\local settings\temporary internet files\Content.IE5', '*.*', true);
 RebootWindows(true);
end.
    После перезагрузки:
    - Сделайте лог MBAM
  6. 10.05.2011, 08:43 #5
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51
    Новый лог высылаю.
  7. 10.05.2011, 12:26 #6
    polword
    polword вне форума
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    23.06.2009
    Адрес
    Пермь
    Сообщений
    11,186
    Вес репутации
    551
    обновите систему
  8. 10.05.2011, 18:41 #7
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51
    Не получается Я б с удовольствием, но SP3 не ставится. Не хватает прав доступа инсталлятору к некоторым веткам реестра (каким не знаю). Что делать - ума не приложу (Форматировать, или в третий раз ставить новую систему уж очень не хочется).

    Спасибо.

    Добавлено через 5 часов 29 минут

    По внешним признакам, все хорошо, вроде-бы. Спасибо большое!
    Последний раз редактировалось Evgen18; 10.05.2011 в 18:41. Причина: Добавлено
  9. 10.05.2011, 20:16 #8
    polword
    polword вне форума
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    23.06.2009
    Адрес
    Пермь
    Сообщений
    11,186
    Вес репутации
    551
    - Выполните скрипт в AVZ
    Код:
    begin
 ExecuteRepair(6);
 ExecuteRepair(8);
 RegKeyIntParamWrite('HKLM', 'SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum', '{BDEADF00-C265-11D0-BCED-00A0C90AB50F}', 1);
 RebootWindows(true);
end.
  10. 10.05.2011, 20:27 #9
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51
    Выполнил. Логи нужны?
  11. 10.05.2011, 21:31 #10
    polword
    polword вне форума
    Visiting Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    23.06.2009
    Адрес
    Пермь
    Сообщений
    11,186
    Вес репутации
    551
    попробуйте установить sp3
  12. 11.05.2011, 13:08 #11
    Evgen18
    Evgen18 вне форума
    Junior Member Репутация
    Регистрация
    23.05.2010
    Сообщений
    24
    Вес репутации
    51
    Попробовал. Результат тот-же - "Отказано в доступе", при инсталляции (реестр по прежнему частично блокируется)
    Можно что-то исправить? Или все, амба
  13. 12.05.2011, 13:08 #12
    CyberHelper
    CyberHelper вне форума
    Cybernetic Helper Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.12.2008
    Сообщений
    48,233
    Вес репутации
    977

    Итог лечения

    Статистика проведенного лечения:
    • Получено карантинов: 3
    • Обработано файлов: 27
    • В ходе лечения обнаружены вредоносные программы:
      1. c:\\documents and settings\\admin\\bnt.exe - P2P-Worm.Win32.Palevo.coyf ( DrWEB: Trojan.Inject.37080, BitDefender: Trojan.Generic.6117635, AVAST4: Win32:Inject-AGC [Trj] )
      2. c:\\documents and settings\\admin\\msc32.exe - Backdoor.Win32.Floder.gl ( DrWEB: Trojan.AVKill.2, BitDefender: Trojan.Generic.KD.207363, AVAST4: Win32:Inject-AGC [Trj] )
      3. c:\\documents and settings\\admin\\pdf.exe - P2P-Worm.Win32.Palevo.cpex ( DrWEB: Trojan.AVKill.11761, BitDefender: Trojan.Generic.KD.203871, NOD32: IRC/SdBot trojan, AVAST4: Win32:Inject-AGC [Trj] )
      4. c:\\recycler\\r-1-5-21-1482476501-1644491937-682003330-1013\\winfixer.exe - Trojan.Win32.Pincav.bezz ( DrWEB: Trojan.DownLoader2.47649, BitDefender: Trojan.Generic.KDV.205305, AVAST4: Win32:Inject-AGC [Trj] )
      5. c:\\recycler\\s-1-5-21-0243936033-3052116371-381863308-1811\\vsbntlo.exe - P2P-Worm.Win32.Palevo.coyf ( DrWEB: Trojan.Inject.37080, BitDefender: Trojan.Generic.6117635, AVAST4: Win32:Inject-AGC [Trj] )
      6. c:\\windows.0\\jodrive32.exe - Net-Worm.Win32.Kolab.aabi ( DrWEB: Trojan.DownLoader2.47649, BitDefender: Trojan.Generic.KDV.205305, AVAST4: Win32:Inject-AGC [Trj] )
      7. c:\\windows.0\\system32\\bsysmgr.exe - Trojan-Downloader.Win32.VB.ailh ( DrWEB: Trojan.DownLoader2.43376, BitDefender: Trojan.Generic.6243262, NOD32: Win32/TrojanClicker.VB.NUD trojan, AVAST4: Win32:FakeAlert-AER [Trj] )

  • Уважаемый(ая) Evgen18, наши специалисты оказали Вам всю возможную помощь по вашему обращению.

    В целях поддержания безопасности вашего компьютера настоятельно рекомендуем:

     

     

    Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru:

     

     

    Anti-Malware VK

     

    Anti-Malware Telegram

     

     

    Надеемся больше никогда не увидеть ваш компьютер зараженным!

     

    Если Вас не затруднит, пополните пожалуйста нашу базу безопасных файлов.

    • « Предыдущая тема | Следующая тема »

    Похожие темы

    1. остатки от вирусов
      От juls в разделе Помогите!
      Ответов: 2
      Последнее сообщение: 10.10.2011, 16:06
    2. Остатки вирусов
      От MoNyA в разделе Помогите!
      Ответов: 7
      Последнее сообщение: 07.03.2011, 17:39
    3. Остатки вирусов
      От localnetlock в разделе Помогите!
      Ответов: 28
      Последнее сообщение: 26.02.2010, 00:34
    4. Остатки вирусов
      От platinum в разделе Помогите!
      Ответов: 4
      Последнее сообщение: 16.01.2010, 11:32
    5. Остатки вирусов
      От gabber в разделе Помогите!
      Ответов: 11
      Последнее сообщение: 22.02.2009, 06:41

    Свернуть/Развернуть Ваши права в разделе

    • Вы не можете создавать новые темы
    • Вы не можете отвечать в темах
    • Вы не можете прикреплять вложения
    • Вы не можете редактировать свои сообщения
    •  

    Правила форума

    Page generated in 0.00831 seconds with 19 queries