BrowseSmart

Categoria: Adware e PUA Opzioni di protezione ora disponibili:03 feb 2014 23:59:08 (GMT)
Tipo: Adware Ultimo aggiornamento:28 lug 2014 23:00:42 (GMT)

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Examples of BrowseSmart include:

Example 1

File Information

Size
2.1M
SHA-1
019ccdd044697ef8e2d0eef9b9cdfc6daa444607
MD5
c7c05142d6c35b2f97bbbaf6b8f96989
CRC-32
aac8ce83
File type
Windows executable
First seen
2014-07-15

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\modern-wizard.bmp
    Size
    461K
    SHA-1
    371789f197283a024043cd1d4ff2569ff4658592
    MD5
    2f9b60eb24b586ae749d58419f4f671c
    CRC-32
    51ae03e3
    File type
    Device-independent bitmap (DIB) file
    First seen
    2014-05-04
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\WmiInspector.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\nsJSON.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\IpConfig.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\inetc.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\nsDialogs.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\NSISEncrypt.dll
    Size
    130K
    SHA-1
    1651f5f1d689998498b0369a431aa474cd7d6d7d
    MD5
    3709e547378c41dc2a4bfb5ac33d291a
    CRC-32
    ded79699
    File type
    Windows executable
    First seen
    2014-07-15
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\UserInfo.dll
  • C:\Program Files\Zebar\updateZebar.exe
    Size
    312K
    SHA-1
    06ffec8bf0910594265884e58b58025506d67495
    MD5
    eaf28bd48897eb88d498db89995c085a
    CRC-32
    8cb01656
    File type
    Windows executable
    First seen
    2014-07-10
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\nsExec.dll
  • C:\Program Files\Zebar\updateZebar.InstallState
  • c:\Documents and Settings\test user\Local Settings\Temp\nsg3.tmp\ExecDos.dll
Registry Keys Created
  • HKLM\SOFTWARE\Zebar\Internet Explorer
    sie
    false
  • HKLM\SOFTWARE\Zebar
    iid
    def_Zebar
  • HKCU\Software\Zebar
    id
    2014-07-15 9:12:24
  • HKLM\SOFTWARE\Zebar\Chrome
    sgc
    true
  • HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
    (Default)
    073775A2-014A-4100-A944-A7E1E5F8626C
  • HKLM\SOFTWARE\Zebar\Firefox
    sff
    false
Processes Created
  • c:\docume~1\support\locals~1\temp\nsg3.tmp\ns4.tmp
  • c:\docume~1\support\locals~1\temp\nsg3.tmp\ns5.tmp
  • c:\program files\zebar\updatezebar.exe
  • c:\windows\system32\sc.exe
HTTP Requests
  • http://172.16.0.2/wpad.dat
  • http://install.metalzebar.com/mg
  • http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt
DNS Requests
  • api.metalzebar.com
  • install.metalzebar.com
  • wpad
  • www.download.windowsupdate.com

Example 2

File Information

Size
58K
SHA-1
01c9d59e8ac041b7619f2288f9959545c6681bda
MD5
5e61cf16fbeedf8c70383cbee8e61805
CRC-32
ecd395a7
File type
Windows executable
First seen
2014-07-15

Example 3

File Information

Size
101K
SHA-1
02507d8b9e79a39ff9fd4ac7c596b1145dfec7ea
MD5
97609a69387b9b0eb39e7b92cb59ebfa
CRC-32
c158f8d3
File type
Windows executable
First seen
2014-07-15

scarica Prova gratuita dei prodotti Sophos
Scarica subito