Need help? Ask the community or hire an expert.
Go to Avira Answers
病毒:TR/Obfuscate.XY.536
发现日期:13/12/2012
类型:特洛伊木马
广泛传播:
病毒传播个案呈报:低程度
感染/传播能力:低程度
破坏 / 损害程度:低程度
文件大小:552.960 字节
MD5 校检和:75791c664d816c00e78c408b810F22f7
VDF 版本:7.11.53.216 - 13 Aralık 2012 Perşembe
IVDF 版本:7.11.53.216 - 13 Aralık 2012 Perşembe

 况概描述 传播方法:
   • 无内置传播例程


别名:
   •  Mcafee: Generic.grp!hh
   •  Bitdefender: Trojan.Generic.KDV.567624
   •  GData: Trojan.Generic.KDV.567624
   •  Norman: Trojan W32/Troj_Generic.APLTR


平台/操作系统:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7

 其他 访问 Internet 资源:
   • http://www.**********esperu.webs.com/rotadores/**********or1.txt
   • http://www.**********esperu.webs.com/rotadores/**********or2.txt
   • http://www.**********esperu.webs.com/rotadores/**********or3.txt
   • http://www.**********esperu.webs.com/rotadores/**********or4.txt
   • http://www.**********chaos.com/tutoriai.html
   • http://ads.**********wtion.com/**********.js?s=2730485&z=728x90
   • http://b.**********search.com/p?c1=8&c2=7936279&c3=0&cv=2.0&cj=1
   • http://pixel.**********serve.com/pixel/p-70x45KyHA6cIs.gif?media=ad


事件处理程序 (Event Handler):
它会创建事件处理程序:
   • getprotobyname
   • TWorkEndEvent
   • AWorkCountMax
   • WSACloseEvent
   • getservbyname
   • gethostbyname
   • gethostbyaddr
   • HELO


字符串:
此外,它还包含以下字符串:
   • HTTP/1.0 200 OK
   • URL OleVariant

Açıklamayı yerleştiren Wensin Lee tarihinde 5 Haziran 2012 Salı
Açıklamayı güncelleyen: Wensin Lee tarihinde 5 Haziran 2012 Salı

Geri . . . .
https:// Bu pencere güvenlik amacıyla şifrelenmiştir.