Worm:Win32/Vobfus.gen!E (Microsoft); Downloader-CJX.gen.n (McAfee); W32.Changeup!gen10 (Symantec); Trojan.Win32.VBKrypt.gjwi (Kaspersky); Gen:Trojan.Heur.ZGY.6 (FSecure)

 Piattaforma:

Windows 2000, Windows XP, Windows Server 2003

 Valutazione del rischio complessivo:
 Potenziale dannoso: :
 Potenziale di distribuzione: :
 Reported Infection:
Basso
Medio
Alto
Critico

  • Tipo di minaccia informatica:
    Worm

  • Distruttivo?:
    No

  • Crittografato?:
     

  • In the wild::

  Panoramica e descrizione


  Dettagli tecnici

Dimensione file: 221,184 bytes
Tipo di file: EXE
Data di ricezione campioni iniziali: 30 settembre 2011

Otras modificaciones del sistema

Agrega las siguientes entradas de registro:

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /C"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /n"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /k"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /i"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /a"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /G"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /t"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /T"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /E"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /e"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /R"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /Q"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /m"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /O"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /c"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /q"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /F"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /P"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /D"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /s"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /b"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /g"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /u"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /Y"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /H"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /M"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /S"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /I"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /K"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /L"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /l"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /d"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /N"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /A"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /h"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /j"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /J"

HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
yaabuu = "%User Profile%\yaabuu.exe /o"

  Soluzioni

Motore di scansione minimo: 9.200

Step 1

Los usuarios de Windows ME y XP, antes de llevar a cabo cualquier exploración, deben comprobar que tienen desactivada la opción Restaurar sistema para permitir la exploración completa del equipo.

Step 2

Eliminar este valor del Registro

[ learnMore ]

Importante: si modifica el Registro de Windows incorrectamente, podría hacer que el sistema funcione mal de manera irreversible. Lleve a cabo este paso solo si sabe cómo hacerlo o si puede contar con ayuda de su administrador del sistema. De lo contrario, lea este artículo de Microsoft antes de modificar el Registro del equipo.

  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /C"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /n"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /k"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /i"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /a"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /G"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /t"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /T"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /E"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /e"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /R"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /Q"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /m"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /O"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /c"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /q"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /F"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /P"
  • In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
    • yaabuu="%User Profile%\yaabuu.exe /D"
'); } //$(document).ready(function () { // var htmlcontent = $('.details-single').html().replace("/vinfo/images", "/vinfo/resources/images"); // htmlcontent = htmlcontent.replace("/vinfo/images", "/vinfo/resources/images"); // htmlcontent = htmlcontent.replace("/vinfo/images", "/vinfo/resources/images"); // htmlcontent = htmlcontent.replace("/vinfo/images", "/vinfo/resources/images"); // $('.details-single').html(htmlcontent); // var htmlcontentLeftnav = $('#left-nav').html().replace("/vinfo/images", "/vinfo/resources/images"); // $('#left-nav').html(htmlcontentLeftnav); //});