cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

ãÓÍ ÇáÊÇÑíÎ: 07/27/2015
ÇáãÓÍ ÇáÖæÆí ÇáæÞÊ: 07:00
ãáÝ ÇáÓÌá:
ãÏíÑ ÇáÈÑäÇãÌ: äÚã

ÇáÅÕÏÇÑ: 2.1.8.1057
ÞÇÚÏÉ ÈíÇäÇÊ ÇáÈÑÇãÌ ÇáÖÇÑÉ: v2015.07.27.01
ÞÇÚÏÉ ÈíÇäÇÊ ÇáÌÐæÑ ÇáÎÝíÉ: v2015.07.22.01
ÇáÊÑÎíÕ: ÇáãÍÇßãÉ
ÇáÍãÇíÉ ãä ÇáÈÑÇãÌ ÇáÖÇÑÉ: Êãßíä
ÍãÇíÉ ãæÇÞÚ æíÈ ÇáÖÇÑÉ: Êãßíä
ÇáÍãÇíÉ ÇáÐÇÊíÉ: Ðæí

äÙÇã ÇáÊÔÛíá: Windows 8.1
æÍÏÉ ÇáãÚÇáÌÉ ÇáãÑßÒíÉ: x86
äÙÇã ÇáãáÝÇÊ: NTFS
ÇáãÓÊÎÏã: Team 161

äæÚ ÇáãÓÍ ÇáÖæÆí: ÇáÊåÏíÏ ÈÇáãÓÍ ÇáÖæÆí
ÇáäÊíÌÉ: ÃßãáÊ
ÇáßÇÆäÇÊ ÇáÊí Êã ãÓÍåÇ ÖæÆíÇð: 306462
ÇáæÞÊ ÇáãäÞÖí: ÏÞíÞÉ¡ 12 ËÇäíÉ 8

ÇáÐÇßÑÉ: Êãßíä
ÈÏÁ ÇáÊÔÛíá: Êãßíä
äÙÇã ÇáãáÝÇÊ: Êãßíä
ÇáãÍÝæÙÇÊ: Êãßíä
ÇáÌÐæÑ ÇáÎÝíÉ: Ðæí
ÇáÇÓÊÏáÇá: Êãßíä
ÃáÌÑæ: Êãßíä
Èæã: Êãßíä

ÇáÚãáíÇÊ: 2
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\hnsl48A4.tmp, 1888, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [04b925c18bffae88807b6738eb196c94]
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\jnsm324B.tmp, 2020, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [04b925c18bffae88807b6738eb196c94]

ÇáæÍÏÇÊ ÇáäãØíÉ: 0
(ÇáßÔÝ Úä ÃíÉ ÚäÇÕÑ ÎÈíËÉ)

ãÝÇÊíÍ ÇáÊÓÌíá: 11
PUP.Optional.Amonetize.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{B0660298-91AA-421F-BF0D-BFF6BB8BF3AE}, ÇáÍÌÑ ÇáÕÍí, [6954d5111c6ed75fccb347819b672fd1],
PUP.Optional.ModGoog, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, ÇáÍÌÑ ÇáÕÍí, [ecd1b3336b1fc076c3d2b6da758c24dc],
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\comyninu, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\hyverumu, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.CrossRider.C, HKLM\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, ÇáÍÌÑ ÇáÕÍí, [b20bd115137741f57f8ddf2f2bd87789],
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\BYHEDEDO, ÇáÍÌÑ ÇáÕÍí, [219c38aeadddf640e7a3a6e97f85fb05],
PUP.Optional.SavePass.A, HKU\S-1-5-18\SOFTWARE\SavePass 1.1-nv-ie, ÇáÍÌÑ ÇáÕÍí, [8d30499de0aab5810fa94fe3b94afa06],
PUP.Optional.Crossrider.C, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\_CrossriderRegNamePlaceHolder_, ÇáÍÌÑ ÇáÕÍí, [e9d440a694f6de581d0d2f6549bb48b8],
PUP.Optional.Cinema.A, HKU\S-1-5-21-3125164571-896367534-2909453621-1001\SOFTWARE\CinemaP-1.9cV16.03-nv-ie, ÇáÍÌÑ ÇáÕÍí, [beff20c66b1fd4626db7fe32748fe51b],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3125164571-896367534-2909453621-1001\SOFTWARE\ICSW1.11, ÇáÍÌÑ ÇáÕÍí, [704d3bab2c5ed3633e7bac5fea197c84],
PUP.Optional.SavePass.A, HKU\S-1-5-21-3125164571-896367534-2909453621-1001\SOFTWARE\SavePass 1.1-nv-ie, ÇáÍÌÑ ÇáÕÍí, [ccf101e5cac01b1b6d4b91a1c73cc838],

Þíã ÇáÊÓÌíá: 3
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\byhededo|ImagePath, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\knspAE40.tmpfs, ÇáÍÌÑ ÇáÕÍí, [219c38aeadddf640e7a3a6e97f85fb05]
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\comyninu|ImagePath, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\hnsl48A4.tmp, ÇáÍÌÑ ÇáÕÍí, [9429af37a4e6c67015757f1064a0cb35]
PUP.Optional.MultiPlug.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\hyverumu|ImagePath, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\jnsm324B.tmp, ÇáÍÌÑ ÇáÕÍí, [f0cd36b04941bc7a404a8b044fb5a858]

ÈíÇäÇÊ ÇáÊÓÌíá: 0
(ÇáßÔÝ Úä ÃíÉ ÚäÇÕÑ ÎÈíËÉ)

ÇáãÌáÏÇÊ: 3
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.GlobalUpdate.A, C:\Users\Team 161\AppData\Local\Temp\comh.11420, ÇáÍÌÑ ÇáÕÍí, [e0ddbc2aafdb3303adbf13d84eb4659b],
PUP.Optional.GlobalUpdate.A, C:\Users\Team 161\AppData\Local\Temp\comh.493527, ÇáÍÌÑ ÇáÕÍí, [437aa442266464d29cd003e838cac33d],

ÇáãáÝÇÊ: 61
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\ICSW1.11_0C1I2Y1S1L1R1V1S1I2Y1P1.11.exe, ÇáÍÌÑ ÇáÕÍí, [f1cc22c44941b581c1e03e7e946d4cb4],
Trojan.Agent, C:\Users\Team 161\AppData\Local\Temp\nsbFDC8.tmp, ÇáÍÌÑ ÇáÕÍí, [e4d919cda6e465d1182f53dc5baa9a66],
PUP.Optional.RelevantKnowledge, C:\Users\Team 161\AppData\Local\Temp\CSMB7F4.tmp, ÇáÍÌÑ ÇáÕÍí, [febfa244820853e3675e420212f303fd],
PUP.Optional.RelevantKnowledge, C:\Users\Team 161\AppData\Local\Temp\CSME3A0.tmp, ÇáÍÌÑ ÇáÕÍí, [06b76185b5d5d165f8cd3410e61f4ab6],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsb7D20.tmp, ÇáÍÌÑ ÇáÕÍí, [00bd2fb791f9a88e02e3426c936ea060],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsdD476.tmp, ÇáÍÌÑ ÇáÕÍí, [635a23c3fa90a2944f96644a7b86a858],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsf4DB4.tmp, ÇáÍÌÑ ÇáÕÍí, [823b17cfbfcb0c2a1cc9d5d935ccfd03],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsk9863.tmp, ÇáÍÌÑ ÇáÕÍí, [66571ec84941a492ad38406e23ded22e],
PUP.Optional.Somoto.C, C:\Users\Team 161\AppData\Local\Temp\nso632A.tmp, ÇáÍÌÑ ÇáÕÍí, [318c1bcb2b5fe056ec97333d5aab0af6],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nso7DCD.tmp, ÇáÍÌÑ ÇáÕÍí, [bd00c026474302344e97d8d6cb3620e0],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\ICReinstall_nsr6C70.tmp, ÇáÍÌÑ ÇáÕÍí, [00bd03e3c3c70036ac39832b51b054ac],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\ICReinstall_nsw3FD5.tmp, ÇáÍÌÑ ÇáÕÍí, [8a33618586041e18a93c347a4db423dd],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsr6C70.tmp, ÇáÍÌÑ ÇáÕÍí, [7e3fd80e8604de58e6ff5b538c7519e7],
PUP.Optional.InstallCore.A, C:\Users\Team 161\AppData\Local\Temp\nsw3FD5.tmp, ÇáÍÌÑ ÇáÕÍí, [af0e2bbb7812be78469f6c42b0518080],
PUP.Optional.EpicScale, C:\Users\Team 161\AppData\Local\Temp\offer-338C9018-A2B7-4931-A6C5-43D01A5E0DC6.exe, ÇáÍÌÑ ÇáÕÍí, [764746a0b0da6fc74f2ce896dd24a35d],
PUP.Optional.SavePass.A, C:\Users\Team 161\AppData\Local\Temp\8815.exe, ÇáÍÌÑ ÇáÕÍí, [58657a6cbfcbaa8c4d88c99cb24f24dc],
PUP.Optional.Crossbrowse.C, C:\Users\Team 161\AppData\Local\Temp\9186.exe, ÇáÍÌÑ ÇáÕÍí, [ab12697d5832da5c9eae0994be43f709],
PUP.Optional.RelevantKnowledge, C:\Users\Team 161\AppData\Local\Temp\is-414GL.tmp\rkinstaller.exe, ÇáÍÌÑ ÇáÕÍí, [6c517e68a3e7da5c335cc58b7f86ec14],
PUP.Optional.RelevantKnowledge, C:\Users\Team 161\AppData\Local\Temp\is-414GL.tmp\rkverify.exe, ÇáÍÌÑ ÇáÕÍí, [308d4e98d5b5e45205be0c38d530916f],
PUP.Optional.WProtectManager.A, C:\Users\Team 161\AppData\Local\Temp\mtmp693677140\tmp\wpm_v20.0.0.2290.exe, ÇáÍÌÑ ÇáÕÍí, [06b70dd99deddf579a01df91e71e2ad6],
PUP.Optional.Browserwatch, C:\Users\Team 161\AppData\Local\Temp\mtmp693677140\tmp\XTab_Setup(2639).exe, ÇáÍÌÑ ÇáÕÍí, [c8f5984e26644ee8e9d0fe25ee17a65a],
PUP.Optional.Amonentize.A, C:\Users\Team 161\AppData\Local\Temp\n2406\PlusHDrow_2606--735dc808.exe, ÇáÍÌÑ ÇáÕÍí, [fcc12abcc8c27fb7b35b50558d746b95],
PUP.Optional.Somoto, C:\Users\Team 161\AppData\Local\Temp\n2406\s2406.exe, ÇáÍÌÑ ÇáÕÍí, [695471751971181e38ca591814f1dd23],
PUP.Optional.Somoto, C:\Users\Team 161\AppData\Local\Temp\n2723\s2723.exe, ÇáÍÌÑ ÇáÕÍí, [14a950968dfd191ded15422f966f39c7],
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Team 161\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_46.exe, ÇáÍÌÑ ÇáÕÍí, [f1cc27bfbecc4de96562f87519ec43bd],
PUP.Optional.PriceFountain.A, C:\Users\Team 161\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_71.exe, ÇáÍÌÑ ÇáÕÍí, [6a5329bd28626acc1bc3f27c3acb01ff],
PUP.Optional.MyStartSearch.ShrtCln, C:\Users\Team 161\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\adv_76.exe, ÇáÍÌÑ ÇáÕÍí, [47767c6ae1a9a2948ec2066891749769],
PUP.Optional.OfferInstaller.C, C:\Users\Team 161\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\OfferInstaller.exe, ÇáÍÌÑ ÇáÕÍí, [f8c543a36f1b59dd13d1641faa57b64a],
PUP.Optional.Mypcbackup, C:\Users\Team 161\AppData\Local\Temp\f9626892-7a78-3199-abd2-97bbce96297b\Extracted\adv_33.exe, ÇáÍÌÑ ÇáÕÍí, [8637f1f5c1c9f442d3c9b4bbd62fcb35],
PUP.Optional.IStartSurf.ShrtCln, C:\Users\Team 161\AppData\Local\Temp\81437661746\0QFdCMEpQTg==2.exe, ÇáÍÌÑ ÇáÕÍí, [7e3f816527635fd7c106e08d05009c64],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\GoogleCrashHandler.exe, ÇáÍÌÑ ÇáÕÍí, [aa1317cf800ab28431649ef2aa57bb45],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\GoogleUpdate.exe, ÇáÍÌÑ ÇáÕÍí, [ecd1b3336b1fc076c3d2b6da758c24dc],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\GoogleUpdateBroker.exe, ÇáÍÌÑ ÇáÕÍí, [79440cda553537ff11845040f20fec14],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\GoogleUpdateOnDemand.exe, ÇáÍÌÑ ÇáÕÍí, [7c41b2344e3c9a9c5b3a91ff699850b0],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\goopdate.dll, ÇáÍÌÑ ÇáÕÍí, [0ab324c2e3a754e23f56355b4ab77b85],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\goopdateres_en.dll, ÇáÍÌÑ ÇáÕÍí, [75484d99e0aaa78f04912d63b948d32d],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\npGoogleUpdate4.dll, ÇáÍÌÑ ÇáÕÍí, [01bc83635733989ed2c3f8989c659769],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\psmachine.dll, ÇáÍÌÑ ÇáÕÍí, [a31ae006fb8fc4729bfad8b8be43ea16],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.11420\psuser.dll, ÇáÍÌÑ ÇáÕÍí, [d1ecaf378dfd14220e871c74bb468779],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\globalupdate.exe, ÇáÍÌÑ ÇáÕÍí, [6a53687ed8b2e74f4c49c1cff809f20e],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\globalupdateBroker.exe, ÇáÍÌÑ ÇáÕÍí, [566700e6296175c11b7a3858c8396b95],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\globalupdateCrashHandler.exe, ÇáÍÌÑ ÇáÕÍí, [5f5eb6301179989edbbaff91e31e8080],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\globalupdateOnDemand.exe, ÇáÍÌÑ ÇáÕÍí, [ffbe40a66228bd795c39e1afc14013ed],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\goopdate.dll, ÇáÍÌÑ ÇáÕÍí, [2d90e204f39768cefa9b4e42b15050b0],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\goopdateres_en.dll, ÇáÍÌÑ ÇáÕÍí, [932a8d59c2c87abc0b8addb3748d7c84],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\npglobalupdateUpdate4.dll, ÇáÍÌÑ ÇáÕÍí, [5f5ef2f416747abc385dbed28e738b75],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\psmachine.dll, ÇáÍÌÑ ÇáÕÍí, [e9d4a442058565d1ade8e5ab5ca527d9],
PUP.Optional.ModGoog, C:\Users\Team 161\AppData\Local\Temp\comh.493527\psuser.dll, ÇáÍÌÑ ÇáÕÍí, [2598dd09fa90fd39078e751b44bd857b],
PUP.Optional.WProtectManager.A, C:\Users\Team 161\AppData\Local\Temp\Miui-tmp\tmp\wpm_v20.0.0.2290.exe, ÇáÍÌÑ ÇáÕÍí, [972665814f3bc76f5c3f1d5325e07789],
PUP.Optional.Browserwatch, C:\Users\Team 161\AppData\Local\Temp\Miui-tmp\tmp\XTab_Setup(2639).exe, ÇáÍÌÑ ÇáÕÍí, [67562fb73a50bf772c8d0b18b550ff01],
PUP.Optional.TempoRunner.A, C:\Windows\System32\Tasks\Tempo Runner soc6hen, ÇáÍÌÑ ÇáÕÍí, [695440a65e2cc86e90bcaae95ba94bb5],
PUP.Optional.Winsock.HijackBoot, C:\Users\Team 161\AppData\Local\Temp\adblocker_installer__0.txt, ÇáÍÌÑ ÇáÕÍí, [01bcae38f3973cfa3973128a3ec6ab55],
PUP.Optional.Winsock.HijackBoot, C:\Users\Team 161\AppData\Local\Temp\adblocker_installer__1437661998.txt, ÇáÍÌÑ ÇáÕÍí, [f5c842a4424851e59b11c0dc00043bc5],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\hnsl48A4.tmp, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\jnsm324B.tmp, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\knsk9F59.tmp, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\rnsiC38F.exe, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\Uninstall.exe, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.MultiPlug.A, C:\Program Files\33444335-1437661814-4D44-5436-A45D3672749B\vnsl8BC9.tmp, ÇáÍÌÑ ÇáÕÍí, [04b925c18bffae88807b6738eb196c94],
PUP.Optional.GlobalUpdate.A, C:\Users\Team 161\AppData\Local\Temp\comh.11420\GoogleUpdateHelper.msi, ÇáÍÌÑ ÇáÕÍí, [e0ddbc2aafdb3303adbf13d84eb4659b],
PUP.Optional.GlobalUpdate.A, C:\Users\Team 161\AppData\Local\Temp\comh.493527\globalupdateHelper.msi, ÇáÍÌÑ ÇáÕÍí, [437aa442266464d29cd003e838cac33d],

ÇáÞØÇÚÇÊ ÇáãÇÏíÉ: 0
(ÇáßÔÝ Úä ÃíÉ ÚäÇÕÑ ÎÈíËÉ)


(end)

Publicité


Signaler le contenu de ce document

Publicité