�� esetnod32.ru [��: Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF]

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Thu, 01 Dec 2011 10:30:09 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
��, �� Carberp �� .
----------
�� .
01.12.2011 10:30:09, santy.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Thu, 01 Dec 2011 10:19:07 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
�� !
��
2011-12-01_08-43-08_log.txt
01.12.2011 10:19:07, kostyanich.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Wed, 30 Nov 2011 19:25:25 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
��
�� uVS
�� - �� - ��

====code====


;uVS v3.72 script [http://dsrt.dyndns.org]

fixvbr D: 5
deltmp
delnfr
restart

=============
��, �� .
-----------
��

====quote====
�� :
HKEY_LOCAL_MACHINE\SOFTWARE\StimulProfit (Adware.Agent) -> No action taken.

�� :
(�� )

�� :
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

�� :
(�� )

�� :
c:\documents and settings\admin\application data\igfxtray.dat (Malware.Trace) -> No action taken.
c:\WINDOWS\system32\ieunitdrf.inf (Malware.Trace) -> No action taken.

=============

��
30.11.2011 19:25:25, santy.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Wed, 30 Nov 2011 14:40:33 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
1. �� D �� .
2. �� .
mbam-log-2011-11-30 (13-39-36).txt
30.11.2011 14:40:33, kostyanich.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Wed, 30 Nov 2011 14:29:00 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
1. �� D �� ?
2.
��
http://forum.esetnod32.ru/forum9/topic682/
30.11.2011 14:29:00, santy.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Wed, 30 Nov 2011 14:02:23 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
��
30.11.2011 14:02:23, kostyanich.

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Wed, 30 Nov 2011 14:01:34 +0400

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF ��  � �� .
�� .
�� . Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF.
�� - �� .
�� .
30.11.2011 12:07:06 �� , �� svchost.exe(1464) �� Win32/Carberp.A �� ANATOLE\AdminNT
30.11.2011 12:02:09 �� , �� svchost.exe(1464) �� Win32/Carberp.A ��
30.11.2011 11:33:35 �� , �� svchost.exe(1464) �� Win32/Carberp.A �� ANATOLE\AdminNT
30.11.2011 11:09:56 �� , �� svchost.exe(1512) �� Win32/Carberp.A �� ANATOLE\AdminNT
29.11.2011 20:21:18 �� , �� explorer.exe(204) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
29.11.2011 19:32:27 �� , �� svchost.exe(1472) �� Win32/Carberp.A �� ANATOLE\AdminNT
29.11.2011 19:11:30 �� , �� explorer.exe(1112) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
29.11.2011 10:43:36 �� , �� explorer.exe(1168) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
28.11.2011 20:23:43 �� , �� explorer.exe(1716) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
28.11.2011 16:53:28 �� , �� explorer.exe(1828) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
28.11.2011 14:01:33 �� C:\Documents and Settings\Admin\Local Settings\Application Data\Opera\Opera\cache\g_0075\opr00O84.tmp HTML/ScrInject.B.Gen �� ANATOLE\AdminNT �� : C:\WINDOWS\explorer.exe.
28.11.2011 13:40:02 �� , �� explorer.exe(1668) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
28.11.2011 13:16:01 �� , �� explorer.exe(1696) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
28.11.2011 10:26:43 �� , �� explorer.exe(1524) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
27.11.2011 14:38:31 �� , �� explorer.exe(452) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
26.11.2011 17:44:19 �� , �� explorer.exe(124) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
26.11.2011 14:23:49 �� , �� explorer.exe(1888) �� Win32/TrojanDownloader.Carberp.AF �� ANATOLE\AdminNT
ANATOLE_2011-11-30_12-46-00.rar
30.11.2011 14:01:34, kostyanich.

����� esetnod32.ru [����: Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF]

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; ���������������� Win32/TrojanDownloader.Carberp.AF

�� esetnod32.ru [��: Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF]

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF

Win32/Carberp.a; �� Win32/TrojanDownloader.Carberp.AF