�� esetnod32.ru [��: �� Win32/Spatet.T]

�� Win32/Spatet.T

Sun, 10 Nov 2013 14:26:36 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
��, �� , �� ...

�� .
10.11.2013 14:26:36, santy.

�� Win32/Spatet.T

Sun, 10 Nov 2013 12:02:26 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
��, �� santy �� !!!!!!!!!!!!!!
�� !
��
�� : 9027 (20131109)
�a�a: 10.11.2013 ��: 10:00:00
�� , �� : ��
�� : 795
�� : 0
�� : 10:00:01 �� : 1 ��. (00:00:01)
��2.txt
10.11.2013 12:02:26, �� .

�� Win32/Spatet.T

Sun, 10 Nov 2013 05:53:02 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .

====quote====
09.11.2013 21:47:05 �� , �� = launcher.exe(2976) �� Win32/Spatet.T ��
09.11.2013 21:47:05 �� , �� = launcher.exe(2976) �� Win32/Spatet.T ��
09.11.2013 21:47:05 �� , �� = launcher.exe(2976) �� Win32/Spatet.T ��

=============

�� uVS:
- �� ;
- �� uVS(start.exe), �� : �� , �� - �� - �� ;
- �� ;
====code====

;uVS v3.81.7 [http://dsrt.dyndns.org]
;Target OS: NTv6.1

OFFSGNSAVE
delall %Sys32%\INSTALL\WIN32.EXE
;------------------------autoscript---------------------------

deltmp
delnfr
;-------------------------------------------------------------

restart

=============
��, �� .
------------

1. ��

2. �� ESET NOD32 �� , � �� .

�� ,
��
http://forum.esetnod32.ru/forum9/topic3998/
10.11.2013 05:53:02, santy.

�� Win32/Spatet.T

Sun, 10 Nov 2013 00:42:24 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
�� ...�� ...
��:
��-��_2013-11-09_22-35-11.7z
��.txt
2013-11-09_20-13-03_log.txt
10.11.2013 00:42:24, �� .

�� Win32/Spatet.T

Sat, 09 Nov 2013 23:19:35 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
�� ,

�� ,

��
1. �� .

2. ��
http://forum.esetnod32.ru/forum9/topic1408/

3. �� .
�� _��log.txt �� uVS
09.11.2013 23:19:35, santy.

�� Win32/Spatet.T

Sat, 09 Nov 2013 22:38:12 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
�� uVS �� ...
�� ...
�� .�� ..
MBAM-log-2013-11-09 (20-35-58).txt
09.11.2013 22:38:12, �� .

�� Win32/Spatet.T

Sat, 09 Nov 2013 21:55:13 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
�� uVS:
- �� ;
- �� uVS(start.exe), �� : �� , �� - �� - �� ;
- �� ;
====code====


;uVS v3.81.7 [http://dsrt.dyndns.org]
;Target OS: NTv6.1

OFFSGNSAVE
addsgn 1A8D779A5583358CF42BC6D1DF8C1261DABFFCF689FA943CA1D34CD074C6FC200707E8B76D03CAE8E7EEC29F7753B5C9B88F6117BD25C5D4A63258E882FADC8C 8 PCK/Enigma

zoo %Sys32%\INSTALL\WIN32.EXE

bl 335B22433736124CDFA7C10D4262A9C2 1543680
;------------------------autoscript---------------------------

chklst
delvir

; Bonjour
exec MsiExec.exe /X{79155F2B-9895-49D7-8612-D92580E0DE5B} /quiet

deltmp
delnfr
;-------------------------------------------------------------

czoo
restart

=============
��, �� .
�� uVS (�� : ZOO_2012-12-31_23-59-59.rar/7z) �� sendvirus2011@gmail.com, support@esetnod32.ru
------------
��,
��
http://forum.esetnod32.ru/forum9/topic682/
09.11.2013 21:55:13, santy.

�� Win32/Spatet.T

Sat, 09 Nov 2013 21:49:48 +0400

�� Win32/Spatet.T Win32/Spatet.T � �� .
�� . �� . �� . �� ...
� �� uVS.
�� . ��!

��
�� : 9026 (20131109)
�a�a: 09.11.2013 ��: 19:46:36
�� , �� : ��
�� = win32.exe(2964) - �� Win32/Spatet.T �� - �� [1]
�� = win32.exe(2964) - �� Win32/Spatet.T �� - �� [1]
�� = win32.exe(2964) - �� Win32/Spatet.T �� - �� [1]
�� = win32.exe(2964) - �� Win32/Spatet.T �� - �� [1]
�� = C:\Windows\System32\install\win32.exe = ENIGMA = mainBinary.exe - ��
�� = \\?\E:\��\��\syetso - �� [4]
�� : 844
�� : 4
�� : 4
�� : 19:46:44 �� : 8 ��. (00:00:08)

��:
[1] �� , �� .
[4] �� . �� .
��-��_2013-11-09_19-30-56.7z
09.11.2013 21:49:48, �� .

����� esetnod32.ru [����: ����� � ����������� ������ Win32/Spatet.T]

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

����� � ����������� ������ Win32/Spatet.T

�� esetnod32.ru [��: �� Win32/Spatet.T]

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T

�� Win32/Spatet.T