cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Malwarebytes Anti-Malware
www.malwarebytes.org

ãÓÍ ÇáÊÇÑíÎ: 13/10/2015
ÇáãÓÍ ÇáÖæÆí ÇáæÞÊ: 17:16:31
ãáÝ ÇáÓÌá: malwal.txt
ãÏíÑ ÇáÈÑäÇãÌ: äÚã

ÇáÅÕÏÇÑ: 2.2.0.1024
ÞÇÚÏÉ ÈíÇäÇÊ ÇáÈÑÇãÌ ÇáÖÇÑÉ: v2015.10.13.06
ÞÇÚÏÉ ÈíÇäÇÊ ÇáÌÐæÑ ÇáÎÝíÉ: v2015.10.06.01
ÇáÊÑÎíÕ: ÇáãÍÇßãÉ
ÇáÍãÇíÉ ãä ÇáÈÑÇãÌ ÇáÖÇÑÉ: Êãßíä
ÍãÇíÉ ãæÇÞÚ æíÈ ÇáÖÇÑÉ: Êãßíä
ÇáÍãÇíÉ ÇáÐÇÊíÉ: Ðæí

äÙÇã ÇáÊÔÛíá: Windows XP Service Pack 3
æÍÏÉ ÇáãÚÇáÌÉ ÇáãÑßÒíÉ: x86
äÙÇã ÇáãáÝÇÊ: NTFS
ÇáãÓÊÎÏã: pc

äæÚ ÇáãÓÍ ÇáÖæÆí: ÇáÊåÏíÏ ÈÇáãÓÍ ÇáÖæÆí
ÇáäÊíÌÉ: ÃßãáÊ
ÇáßÇÆäÇÊ ÇáÊí Êã ãÓÍåÇ ÖæÆíÇð: 284266
ÇáæÞÊ ÇáãäÞÖí: ÏÞíÞÉ¡ 8 ËÇäíÉ 20

ÇáÐÇßÑÉ: Êãßíä
ÈÏÁ ÇáÊÔÛíá: Êãßíä
äÙÇã ÇáãáÝÇÊ: Êãßíä
ÇáãÍÝæÙÇÊ: Êãßíä
ÇáÌÐæÑ ÇáÎÝíÉ: Êãßíä
ÇáÇÓÊÏáÇá: Êãßíä
ÃáÌÑæ: Êãßíä
Èæã: Êãßíä

ÇáÚãáíÇÊ: 1
RiskWare.Tool.CK, C:\WINDOWS\KMService.exe, 672, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [5b1fce88c8c348eef9a9406b4cb5bd43]

ÇáæÍÏÇÊ ÇáäãØíÉ: 0
(ÇáßÔÝ Úä ÃíÉ ÚäÇÕÑ ÎÈíËÉ)

ãÝÇÊíÍ ÇáÊÓÌíá: 1
PUP.Optional.WinManger, HKLM\SOFTWARE\CLASSES\APPID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}, ÇáÍÌÑ ÇáÕÍí, [3f3b8dc958333303bd5c52dfb74b817f],

Þíã ÇáÊÓÌíá: 1
Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Taskman, C:\RECYCLER\S-1-5-21-6848422483-4067928558-964565533-4995\nissan.exe, ÇáÍÌÑ ÇáÕÍí, [94e6490de8a352e4a7954ea939c96a96]

ÈíÇäÇÊ ÇáÊÓÌíá: 3
Trojan.FakeMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Taskman, C:\RECYCLER\S-1-5-21-6848422483-4067928558-964565533-4995\nissan.exe, ÍÓä: (), ÓíÆÉ: (C:\RECYCLER\S-1-5-21-6848422483-4067928558-964565533-4995\nissan.exe),ÇÓÊÈÏÇá,[e19943136e1dbf77e0d044cba55cd22e]
PUM.Hijack.StartMenu, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|Start_ShowHelp, 0, ÍÓä: (1), ÓíÆÉ: (0),ÇÓÊÈÏÇá,[6614df77f09b6acc93ccde5c17ed26da]
PUM.Hijack.Help, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoSMHelp, 1, ÍÓä: (0), ÓíÆÉ: (1),ÇÓÊÈÏÇá,[a2d8124490fb85b1221aaa8fa262b54b]

ÇáãÌáÏÇÊ: 2
PUP.Optional.Amonetize, C:\Documents and Settings\pc\Application Data\13785, ÇáÍÌÑ ÇáÕÍí, [502a3e184a419b9b6cbb6d08679cc13f],
PUP.Optional.GlobalUpdate, C:\Documents and Settings\pc\Local Settings\Temp\comh.343535, ÇáÍÌÑ ÇáÕÍí, [1565e96df19a46f0e09f7bdf26dcc838],

ÇáãáÝÇÊ: 9
RiskWare.Tool.CK, C:\WINDOWS\KMService.exe, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [5b1fce88c8c348eef9a9406b4cb5bd43],
Trojan.FakeMS, C:\RECYCLER\S-1-5-21-6848422483-4067928558-964565533-4995\nissan.exe, ÍÐÝ Úáì ÅÚÇÏÉ ÇáÊÔÛíá, [e19943136e1dbf77e0d044cba55cd22e],
PUP.Optional.CrossRider, C:\Documents and Settings\pc\Application Data\BJu7aIWNZNp5tvx.exe, ÇáÍÌÑ ÇáÕÍí, [7cfedb7b3358b08697bd3a21a75aab55],
PUP.Optional.CrossRider, C:\Documents and Settings\pc\Application Data\YolM67vtiG83rzSjPnDt5.exe, ÇáÍÌÑ ÇáÕÍí, [9fdb62f43f4cae881524999c2cd41be5],
PUP.Optional.HideBaid, C:\Program Files\baidu\Bind.exe, ÇáÍÌÑ ÇáÕÍí, [7703eb6be1aad066d48bc5aafb06b947],
PUP.Optional.Nova, C:\Program Files\baidu\f8114d23-4e77-499a-9a4d-0c631d5c8886.dll, ÇáÍÌÑ ÇáÕÍí, [1f5b4c0a622959dd43824e10837ef10f],
PUP.Optional.Nova, C:\Program Files\e05945c7-3db0-433c-a92f-f3bc9b697f4c\6f91b6ca-e05d-4feb-831b-317a168153c9.dll, ÇáÍÌÑ ÇáÕÍí, [d5a54a0cb5d6c373f9ccd58950b17888],
PUP.Optional.Amonetize, C:\Documents and Settings\pc\Application Data\13785\status.cfg, ÇáÍÌÑ ÇáÕÍí, [502a3e184a419b9b6cbb6d08679cc13f],
PUP.Optional.Amonetize, C:\Documents and Settings\pc\Application Data\13785\Updater.xml, ÇáÍÌÑ ÇáÕÍí, [502a3e184a419b9b6cbb6d08679cc13f],

ÇáÞØÇÚÇÊ ÇáãÇÏíÉ: 0
(ÇáßÔÝ Úä ÃíÉ ÚäÇÕÑ ÎÈíËÉ)


(end)

Publicité


Signaler le contenu de ce document

Publicité