Precisa de ajuda? Peça à comunidade ou contrate um perito.
Acesse a Avira Answers
Virus:Adware/MediaGet.E
Date discovered:02/10/2012
Type:Adware/Spyware
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
VDF version:7.11.44.246 - Tuesday, October 2, 2012
IVDF version:7.11.44.246 - Tuesday, October 2, 2012

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Kaspersky: not-a-virus:HEUR:Downloader.Win32.MediaGet.gen
   •  Eset: probably a variant of Win32/MediaGet application
     Norman: Trojan W32/DLoader.AQSAQ


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7


Right after execution the following information is displayed:


 Files The following files are created:

Non malicious files:
   • %temp%\mediaget-installer-tmp\img\kaspersky.gif;
      %temp%\mediaget-installer-tmp\img\pbar-ani.gif;
      %temp%\mediaget-installer-tmp\img\preloader.gif;
      %temp%\mediaget-installer-tmp\img\babylon.jpg;
      %temp%\mediaget-installer-tmp\img\claro.jpg;
      %temp%\mediaget-installer-tmp\img\line.jpg;
      %temp%\mediaget-installer-tmp\img\orbitum.jpg;
      %temp%\mediaget-installer-tmp\img\orbitum_logo.jpg;
      %temp%\mediaget-installer-tmp\img\poster.jpg;
      %temp%\mediaget-installer-tmp\img\yandex.jpg;
      %temp%\mediaget-installer-tmp\img\bg.png;
      %temp%\mediaget-installer-tmp\img\start.png;
      %temp%\mediaget-installer-tmp\stub.html;
      %temp%\mediaget-installer-tmp\js\jquery-ui.min.1.8.0.js;
      %temp%\mediaget-installer-tmp\js\jquery.min.1.6.4.js;
      %temp%\mediaget-installer-tmp\index.template;
      %temp%\mediaget-installer-tmp\index.html

– A file that is for temporary use and it might be deleted afterwards:
   • %temp%\mediaget-installer-tmp\mediaget-tmp-41.tmp

 Miscellaneous Internet connection:
In order to check for its internet connection the following DNS server is contacted:
   • download.**********-get.ru

Descrição enviada por Wensin Lee em quinta-feira, 4 de outubro de 2012
Descrição atualizada por Wensin Lee em quinta-feira, 4 de outubro de 2012

Voltar . . . .
https:// Esta janela é criptografada para sua segurança.