Forums Security analysis MagniPic, Logiciel Publicitaire (Adware)

Viewing 1 Message (on 1 total)
  • Author
    Messages
  • Nicolas CoolmanNicolas Coolman
    • Administrator
    @nicocoolmann
    Nombre d'articles : 1323

    The program MagniPic ranks in the category of Advertising Software (Adware).

    It can display ads in the form of coupons and banner advertising in the form of popups.

    These ads are usually signed with the words "Powered by", "Brought to you by" or even "Ads by", followed by the name of the adware.

    Logiciel Publicitaire (Adware)

    This program is ranked in the category of adware (Adware), English "ADS" diminutive of English warning (Promotion poster). Adware usually settle as a program or as a browser extension and are loaded each time the system starts. They can launch services, Start scheduled tasks and create shortcuts on your desktop. All these operations are carried out with or without your consent under the terms of his contract of use. Once installed, adware may change some settings in your browsers, like for example the pages of research, the start page or even your error page "404". Adware may collect your browsing habits and communicate them to a server by the method of tracking because it is more often a marketing solution to retain customers.

    During navigation it usually displays advertisements in the form of coupons and banners in the form of popups. These ads are usually signed with the words "Powered by", "Brought to you by" or even "Ads by", followed by the name of the adware. But some adware are exaggerated in size and the frequency of the display ads, which can affect the speed of internet browsing and the visibility of the content of the pages visited. Note also that the advertising editor can decline any responsibility on the content of the links targeted by its ads. In the end, the goal of these programs is to make money by generating Web traffic to sponsored sites. Some adware are installed via the software bundled and are not necessarily desired by the user and antivirus generally classify them in potentially unwanted software (LPI/PUP).

    Spyware (spyware) and adware (Adware) unwanted, as malware, can use the vulnerabilities of writing the legitimate software or operating systems. It is therefore essential to have official software and that they have an automatic update. Your Windows operating system must be programmed in mode update automatic and active, in order to have the latest updates of critical security vulnerabilities.

    Main shares :
    It installs a program extension for Google Chrome browser (G2),
    It installs an extension for the Mozilla Firefox browser program (M2),
    It installs as a Browser Helper Object (BHO) internet browser (O2),
    – He moved as the AppInit_DLLs registry value (O20),
    It starts a scheduled automatic task (Ø38),
    He settled as a program (O42)
    Add additional folders (O43),
    Registration in the Windows prefetcher folder (O45)

    Overview ZHPDiag :
    G2 – GCE: Preference [User DataDefault] [ahfgeienlihckogmohjhadlkjgocpleb] MyaagtttniPPicc v.0.1 (Activated )
    M2 – MFEP: prefs.js [Coolman – brgdqpkv.default\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}] [MagniPic] MyaagniPPicc 1.2.2 (.Wladimir Palant.)
    M2 – MFEP: prefs.js [Coolman – brgdqpkv.default\5110b3035a065@5110b3035a09e.com] [] MagniPic v1.5 (.MagniPic.)
    M2 – MFEP: prefs.js [Coolman – brgdqpkv.default\ioei_bobs@gkrmhlg.edu] [] MaeganiPic v1.5 (..)
    M2 – MFEP: prefs.js [Coolman – brgdqpkv.default\nukfoms@zcdifp.co.uk] [] MaeganiPic v1.5 (..)
    O2 – BHO: MyaagniPPicc [64Bits] – {E92EBB48-C671-FB71-7CEB-8D6F9D1CFA5C} . (…) — C:\ProgramData\MyaagniPPicc\514e0fd929698.dll
    O20 – AppInit_DLLs: . (…) – C:\Program Files\MagniPic\sprotector.dll
    O39 – APT:Automatic Planified Task – C:\Windows\Tasks\MagniPicUpdaterTask{66E7334E-7227-4F6F-B357-B3D0E3EA5BF7}.job [376]
    O42 – Logiciel: MyaagtttniPPicc – (…) [HKLM] — {94865A53-9825-425F-A0B4-D0074F6578A5}
    O42 – Logiciel: MagniPic – (.Unknown owner.) [HKLM] — {94865A53-9825-425F-A0B4-D0074F6578A5}
    O42 – Logiciel: MagniPic – (…) [HKLM] — {85B77189-B91F-4A0C-A8E7-F13D5E54537F}
    O43 – CFD: 12/04/2013 – 13:28:41 – [0] —-D C:\ProgramData\MyaagtttniPPicc
    O43 – CFD: 14/02/2013 – 3:21:12 AM – [1.491] —-D C:\Program Files\MagniPic
    O43 – CFD: 30/05/2013 – 23:23:32 – [0,036] —-D C:\ProgramData\MaGnaiPic
    O45 – LFCP:[MD5.7D26A952AEA4DB50A77FED8B7EA6AA48] – 12/03/2013 – 7:36:26 PM —A- – C:\Windows\Prefetch\MAGNIPIC.EXE-170A4970.pf
    [HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{E92EBB48-C671-FB71-7CEB-8D6F9D1CFA5C}]
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{94865A53-9825-425F-A0B4-D0074F6578A5}]
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{94865A53-9825-425F-A0B4-D0074F6578A5}]
    [HKLMSoftwareMicrosoftWindowsCurrentVersionUninstall{85B77189-B91F-4A0C-A8E7-F13D5E54537F}]
    [HKLMSoftwareClassesInterface{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]
    [HKLMSoftwareWow6432NodeClassesInterface{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}]
    [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\ahfgeienlihckogmohjhadlkjgocpleb]
    C:\Program Files\MagniPic
    C:\ProgramData\MyaagtttniPPicc
    C:\ProgramData\MaGnaiPic

    Alias :
    Win32/Adware.MultiPlug [ESET Nod32]
    Adware.Win32.FastSaveApp [Microsoft]
    Adware.MegaSearch
    Pup. Multiplug
    Adware.MagniPic

    Diagnose with ZHPSuite..  Uninstall with Windows..  Delete with ZHPCleaner..  Delete with Malwarebytes..

Viewing 1 Message (on 1 total)
  • You need to be logged in to answer about it.