. , , ,

,,,

"" — ,


""

. -

2009.


, , , , , , .. , . ? .

, , , . .

. : , , , , .

() , . ( ) , - .

, - - , , .

, . ӻ.

, , .. ! , ?! .

Antikiller-Aleks


I.

 

, , , , . ? . Agnitum Outpost Firewall Pro . 2004 . .

, .

, . , , , , . , . , ( )? , , . , .

, . , , . , , . , . , - , . , , - , , , , . , , , microsoft, , , , windows, , , .

, , .

- . - . , , ftp- . tftp.exe (, , , , , ). - DDoS ; , , , IP-. , ( ->-> ). . DCOM , , . , . " " - , ! .

, , , . , tftp.exe, .

%WINDIR%Driver Cachedriver.cab , , %WINDIR%system32dllcache %WINDIR%system32.

, , , ! . . , TCPView, , . - , , svhost.exe, , , , , . , . ( Process Explorer) . svhost.exe MS, , . , , , , . , , , . , , . svhost.exe, - .

-> -> , svhost.exe, svhost.exe, , ( ). , , , MSDN , - . , . , , , . , , , 5 , , . , :

1.         ntldr

2.         boot.ini

3.         pagefile.sys

4.         Bootfont.bin

5.         NTDETECT.COM

.

. , .

, .

. , . . , , , , , , . , , . , , , , , , . ? , Internet Explorer, , - ActiveX. , , Java-, . javascript . 98% . , , , .

- . , , - . , , , - . , , . SoftIce (bpx RegSetValue) , , , .

- , . , , , . , , .

, , , explorer.exe. , BHO . , Browser Helper Object MS, , - , , .

, , , .

, . . . - , - ( , ) . PEiD . microsoft visual C++ , , 99% , . , . - , Restorator , MS . . . , *.dll . Windows , rundll32.exe, . rundll32.exe myspy.dll, . , , rundll32.exe, . ? . Shturmovik www.gh0sts.org


II. :

 

, , , , , , , . . , , : Grisoft AVG Anti-Virus Professional Eset NOD32.

"" , - , WildList Organization (www.wildlist.com), . : 100000 250 "" ; "" . , . , , 32- Windows - "". - 90,4 100%.

, , , "", : McAfee Norton 99% 95% "", AVG - 23,5%, . , WildList, . , , , . PC-cillin, ; - Eset NOD32, 32 20000 . , , , , .

""?

, . , "" , , . , "" - , , "" . "" - , Netsky.gen, "" Netsky.R.

, McAfee AVG, 70,1% 65,6% , ; NOD32 - 41,4%. , , , - . . NOD32: Advanced Heuristics -, . , , nod32.exe /AH. Advanced Heuristics NOD32 53,5%.

, , "", . , Netsky, . , - . , .

, McAfee. , McAfee - , , , , . CTX, " " Optix Mydoom.A. PC-cillin - , . McAfee, NOD32 Panda CTX () .

Norton . , , Panda NOD32, . Norton - 5400 /, 575 , Windows XP, Pentium III 800 , 256 RAM, 12 . , NOD32, 52 . (, Norton .) NOD32 Panda, 2,5 . Trend Micro PC-cillin Internet Security 2004: , .


 

III. Beagle

Hi! test - !

, . Beagle Bagle . 20 2004 , - , .

*.exe , , Windows. , , . proxy , -. Windows.

, , :

Test =)

( )

--

Test, yep.

, - , .

. , Beagle . Sobig, . 28 . , .

Network Associates , , Beagle. . , , .

, 2003 , 55 . 2002 20 30 , 2001 - 13 .

, 2004 , .

Beagle .

! , ! , , .

Windows! - Windows .

, ! ! .

, . , , , .

, , bbeagle.exe .

Microsoft. .


 

IV.

, , . , , - . , , .

?

, , .

.

: . , ! !

, . ( ) . . ? , , ( ) , . , !

, - .

- , , . , - , , , .

- , .

. , . , , , . , .

, : , . , , . . . : , , - ! , , , , , !

.

. , , , .

, .

:

For Award Bios:

AWARD?SW AWARD SW
AWARD_SW AWARD_WG
AWARD_PW BIOSTAR
CONCAT CONDO
HELGA-S 2.51G
2.51U HEWITT RAND HLT
KDD PASSWORD
SKY_FOXS SWITCHES_SW
TTPTHA ZAAADA
ZBAAACA 256256
5895894.5x ZJAAADC ChEck_a
Ikwpeter Syxz
TzqF Wodj
aPAf alfarome
award_ps
award.sw ?award
award_? bios*
biostar biosstar
condo efmukl
g6PJ
2.51 h6BB j64
j09F j256
j262 j322
t0ch20x t0ch88
01322222 1EAAh
2.50

For Ami Bios:

AMI A.M.I.
AMI~ AMI?SW
AMI!SW AMI_SW AMI.KEY
AMIPSWD BIOSPASS
CMOSPWD HEWITT RAND SER
Aammii ami.kez
ami amiami amipswd
amidecod bios310

, , Bios Setup. . , Command DEBUG.EXE :

-o 70 17

-o 71 17

-q

, !

Award Bioc Hack

:

alekssoft-z@mail.ru

http://alekssoft-z.ucoz.ru

"" . - 2009. , ,

 

 

 

! , , , .
. , :

: