需要修復電腦?
聘請專家
Virus:TR/Crypt.ZPACK.20427
Date discovered:24/08/2013
Type:Trojan
In the wild:No
Reported Infections:Low to medium
Distribution Potential:Low to medium
Damage Potential:Low to medium
Static file:Yes
File size:367.616 Bytes
MD5 checksum:AF610A8D2CB9B1CCB41E23DA062E2972
VDF version:7.11.97.248 - Saturday, August 24, 2013
IVDF version:7.11.97.248 - Saturday, August 24, 2013

 General Method of propagation:
   • No own spreading routine


Aliases:
     Avast: Win32:FakeImg-D [Trj]
     Microsoft: Worm:Win32/Dorpiex.B
     AVG: Inject.BJVD
   •  Eset: a variant of Win32/Injector.AIFY
AhnLab: Trojan/Win32.Inject
     Fortinet: W32/Injector.AIFY
     Ikarus: Backdoor.Win32.Ruskill


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7


Side effects:
   • Lowers security settings
   • Registry modification

 Registry The following registry key is changed:

[HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
   Old value:
   • "MigrateProxy"=%user defined settings%
   • "ProxyEnable"=%user defined settings%
   • "ProxyServer"=%user defined settings%
   • "ProxyOverride"=%user defined settings%
   • "AutoConfigURL"=%user defined settings%
   New value:
   • "MigrateProxy"=dword:00000001
   • "ProxyEnable"=dword:00000000
   • "ProxyServer"=-
   • "ProxyOverride"=-
   • "AutoConfigURL"=-

 Miscellaneous Accesses internet resources:
   • http://vcx.ao2r**********.com/PoM.php

說明撰寫者 Alexander Bauer 開啟 2013年8月25日星期日
說明更新者 Alexander Bauer 開啟 2013年8月25日星期日

返回 . . . .
https:// 為了你的安全,此視窗已加密。