Sei sulla pagina 1di 6

;********************************************************************************

********************************************************************************
*******************
ANALYSIS: 2011-01-09 23:12:26
PROTECTIONS: 0
MALWARE: 45
SUSPECTS: 8
;*******************************************************************************
********************************************************************************
********************
PROTECTIONS
Description Version Activ
e Updated
;===============================================================================
================================================================================
====================
;===============================================================================
================================================================================
====================
MALWARE
Id Description Type Active Sever
ity Disinfectable Disinfected Location
;===============================================================================
================================================================================
====================
00055522 Eicar.Mod Virus No 0
No No c:\documents and settings\administrador\mis doc
umentos\juegos para nokia 5230-by_montalvo\pes2009 nokia 5800.jar[_]
00076351 Exploit/ByteVerify HackTools No 0
Yes No c:\documents and settings\administrador\datos d
e programa\sun\java\deployment\cache\6.0\25\7bb08f99-10016478[dev/s/adgredy.clas
s]
00076352 Exploit/ByteVerify HackTools No 0
Yes No c:\documents and settings\administrador\datos d
e programa\sun\java\deployment\cache\6.0\25\7bb08f99-10016478[dev/s/dyesyasz.cla
ss]
00076353 Exploit/ByteVerify HackTools No 0
Yes No c:\documents and settings\administrador\datos d
e programa\sun\java\deployment\cache\6.0\25\7bb08f99-10016478[dev/s/loaderx.clas
s]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@trafficmp[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@doubleclick[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@atdmt[3].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@atdmt[1].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@tradedoubler[3].txt
00145405 Cookie/RealMedia TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@247realmedia[1].txt
00145457 Cookie/FastClick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@fastclick[2].txt
00145457 Cookie/FastClick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@fastclick[1].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@tribalfusion[1].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@tribalfusion[2].txt
00145738 Cookie/Mediaplex TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@mediaplex[2].txt
00147814 Cookie/AspinallsOnlineCasino TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@pacificpoker[2].txt
00147824 Cookie/Clickbank TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@clickbank[1].txt
00149116 Cookie/Ccbill TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@ccbill[1].txt
00149116 Cookie/Ccbill TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@ccbill[2].txt
00167647 Cookie/Yadro TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@yadro[1].txt
00167647 Cookie/Yadro TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@yadro[2].txt
00167704 Cookie/Xiti TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@xiti[2].txt
00167704 Cookie/Xiti TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@xiti[1].txt
00167749 Cookie/Toplist TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@toplist[2].txt
00167753 Cookie/Statcounter TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@statcounter[2].txt
00167753 Cookie/Statcounter TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@statcounter[3].txt
00167761 Cookie/Sextracker TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@counter8.sextracker[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@ad.yieldmanager[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@apmebf[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@apmebf[3].txt
00168076 Cookie/BurstNet TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@burstnet[2].txt
00168090 Cookie/Serving-sys TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@serving-sys[2].txt
00168090 Cookie/Serving-sys TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@serving-sys[3].txt
00168093 Cookie/Serving-sys TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@bs.serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@bs.serving-sys[1].txt
00168095 Cookie/888 TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@888[1].txt
00168095 Cookie/888 TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@888[2].txt
00168106 Cookie/Weborama TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@weborama[2].txt
00168106 Cookie/Weborama TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@weborama[1].txt
00168109 Cookie/Adtech TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adtech[1].txt
00168109 Cookie/Adtech TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@server.iad.liveperson[2].txt
00168116 Cookie/Comclick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@fl01.ct2.comclick[1].txt
00168116 Cookie/Comclick TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@fl01.ct2.comclick[2].txt
00169190 Cookie/Advertising TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@advertising[2].txt
00169190 Cookie/Advertising TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@advertising[3].txt
00169286 Cookie/Sextracker TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@sextracker[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@statse.webtrendslive[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@statse.webtrendslive[3].txt
00170554 Cookie/Overture TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@overture[1].txt
00170554 Cookie/Overture TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@overture[2].txt
00172221 Cookie/Zedo TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@zedo[2].txt
00172221 Cookie/Zedo TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@zedo[1].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adultfriendfinder[3].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adultfriendfinder[2].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adultfriendfinder[1].txt
00207936 Cookie/Adviva TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adviva[1].txt
00207936 Cookie/Adviva TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@adviva[2].txt
00249100 Cookie/Cgi-bin TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@www2.addfreestats[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@smartadserver[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@smartadserver[2].txt
00286738 Cookie/Cgi-bin TrackingCookie No 0
Yes No c:\documents and settings\administrador\cookies
\administrador@www1.addfreestats[1].txt
03074964 Trj/CI.A Virus/Trojan No 0
Yes No c:\system volume information\_restore{3cb7b13b-
9282-4a0c-921b-1c4db1f94797}\rp52\a0021249.dll
04638480 Generic Trojan Virus/Trojan No 0
Yes No c:\system volume information\_restore{3cb7b13b-
9282-4a0c-921b-1c4db1f94797}\rp52\a0022818.dll
06872390 W32/Tdss.FE Virus No 0
Yes No c:\system volume information\_restore{3cb7b13b-
9282-4a0c-921b-1c4db1f94797}\rp127\a0083886.sys
07527414 Generic Trojan Virus/Trojan No 0
Yes No c:\windows\system32\config\systemprofile\config
uración local\archivos temporales de internet\content.ie5\zn7g1c3i\av302[1].exe
07570352 Generic Trojan Virus/Trojan No 0
Yes No c:\system volume information\_restore{3cb7b13b-
9282-4a0c-921b-1c4db1f94797}\rp52\a0022819.exe
;===============================================================================
================================================================================
====================
SUSPECTS
Sent Location
;===============================================================================
================================================================================
====================
Yes c:\$recycle$\$recycle$.exe
Yes c:\$recycle$\$recycle$.exe
Yes c:\documents and settings\administrador\datos de programa\sun\java\dep
loyment\cache\6.0\26\4f0974da-2a20ec69
Yes c:\system volume information\_restore{3cb7b13b-9282-4a0c-921b-1c4db1f9
4797}\rp49\a0020541.exe[c:\system volume information\_restore{3cb7b13b-9282-4a0c
-921b-1c4db1f94797}\rp49\a0020541.exe][x.exe]
Yes c:\system volume information\_restore{3cb7b13b-9282-4a0c-921b-1c4db1f9
4797}\rp52\a0021275.dll
Yes c:\system volume information\_restore{3cb7b13b-9282-4a0c-921b-1c4db1f9
4797}\rp52\a0022817.dll
Yes c:\windows\temp\0.06181813338763775.exe
Yes c:\windows\temp\0.6432994044477832.exe
;===============================================================================
================================================================================
====================
VULNERABILITIES
Id Severity Description
;===============================================================================
================================================================================
====================
224953 HIGH MS10-099
224952 HIGH MS10-098
224951 HIGH MS10-097
224950 HIGH MS10-096
224931 HIGH MS10-090
223917 HIGH MS10-084
223916 HIGH MS10-083
223914 HIGH MS10-081
223909 HIGH MS10-076
223906 HIGH MS10-073
223904 HIGH MS10-071
223355 HIGH MS10-069
223353 HIGH MS10-067
223352 HIGH MS10-066
223349 HIGH MS10-063
223346 HIGH MS10-061
222627 HIGH MS10-054
222622 HIGH MS10-049
222621 HIGH MS10-048
222620 HIGH MS10-047
222470 HIGH MS10-046
222062 HIGH MS10-042
221289 HIGH MS10-034
221287 HIGH MS10-032
219830 HIGH MS10-029
219822 HIGH MS10-021
219821 HIGH MS10-020
217842 HIGH MS10-015
217839 HIGH MS10-012
217838 HIGH MS10-011
217834 HIGH MS10-008
217832 HIGH MS10-006
217831 HIGH MS10-005
216839 HIGH MS10-001
215935 HIGH MS09-069
215048 HIGH MS09-065
214076 HIGH MS09-059
214075 HIGH MS09-058
214074 HIGH MS09-057
214073 HIGH MS09-056
214072 HIGH MS09-055
213109 HIGH MS09-046
212494 HIGH MS09-042
212493 HIGH MS09-041
211784 HIGH MS09-032
211781 HIGH MS09-029
210625 HIGH MS09-026
210624 HIGH MS09-025
210621 HIGH MS09-022
208380 HIGH MS09-015
208378 HIGH MS09-013
208377 HIGH MS09-012
206981 HIGH MS09-007
206980 HIGH MS09-006
204670 HIGH MS09-001
203505 HIGH MS08-071
202465 HIGH MS08-068
201683 HIGH MS08-067
201258 HIGH MS08-066
201256 HIGH MS08-064
201255 HIGH MS08-063
201253 HIGH MS08-061
209275 HIGH MS08-049
196455 MEDIUM MS08-037
;===============================================================================
================================================================================
====================