需要修復電腦?
聘請專家
Virus:VBS/Dldr.Agent.1438
Date discovered:14/08/2013
Type:Trojan
Subtype:Downloader
In the wild:No
Reported Infections:Medium
Distribution Potential:Low
Damage Potential:Low
Static file:No
VDF version:7.11.96.216 - Wednesday, August 14, 2013
IVDF version:7.11.96.216 - Wednesday, August 14, 2013

 General Method of propagation:
   • No own spreading routine


Alias:
   •  Eset: VBS/Agent.NDE.worm


Platforms / OS:
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7


Side effects:
    Can be used to execute malicious code
   • Downloads a malicious file

 Registry One of the following values is added in order to run the process after reboot:

  [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
   • "sample"=""wscript.exe //B "%appdata%\sample.vbs"""

 Miscellaneous Internet connection:
In order to check for its internet connection the following DNS server is contacted:
   • penter**********.no-ip.biz

 File details Programming language:
The malware program was written in Visual Basic.

說明撰寫者 Soe-liang Tan 開啟 2013年8月16日星期五
說明更新者 Wensin Lee 開啟 2013年8月16日星期五

返回 . . . .
https:// 為了你的安全,此視窗已加密。