[go: up one dir, main page]
Scribd
Upload
284 views8 pages

Aaa

Uploaded by

sayan pal

Malwarebytes software scanned a system and detected 111 threats including trojans, backdoors, and spyware in processes, files, folders, registry keys and values. The 27 minute scan analyzed over 377,000 objects and quarantined no threats. Locations of threats included the Windows and temp folders, registry hives for current user and services, and various program files.

Copyright:

© All Rights Reserved
Download as TXT, PDF, TXT or read online from Scribd
Download as txt, pdf, or txt

Aaa

Uploaded by

sayan pal
284 views8 pages
Malwarebytes software scanned a system and detected 111 threats including trojans, backdoors, and spyware in processes, files, folders, registry keys and values. The 27 minute scan analyzed over 377,000 objects and quarantined no threats. Locations of threats included the Windows and temp folders, registry hives for current user and services, and various program files.

Copyright

© © All Rights Reserved

Available Formats

TXT, PDF, TXT or read online from Scribd

Did you find this document useful?

Is this content inappropriate?

Malwarebytes software scanned a system and detected 111 threats including trojans, backdoors, and spyware in processes, files, folders, registry keys and values. The 27 minute scan analyzed over 377,000 objects and quarantined no threats. Locations of threats included the Windows and temp folders, registry hives for current user and services, and various program files.

Copyright:

© All Rights Reserved
Download as TXT, PDF, TXT or read online from Scribd
Download as txt, pdf, or txt
284 views8 pages

Aaa

Uploaded by

sayan pal
Malwarebytes software scanned a system and detected 111 threats including trojans, backdoors, and spyware in processes, files, folders, registry keys and values. The 27 minute scan analyzed over 377,000 objects and quarantined no threats. Locations of threats included the Windows and temp folders, registry hives for current user and services, and various program files.

Copyright:

© All Rights Reserved
Download as TXT, PDF, TXT or read online from Scribd
Download as txt, pdf, or txt
You are on page 1/ 8

Malwarebytes

www.malwarebytes.com

-Log Details-
Scan Date: 6/10/21
Scan Time: 12:34 PM
Log File: 14032a48-c9ba-11eb-8b74-dc85dea1ebc4.json

-Software Information-
Version: 4.4.0.117
Components Version: 1.0.1318
Update Package Version: 1.0.41541
License: Free

-System Information-
OS: Windows 10 (Build 18363.1379)
CPU: x64
File System: NTFS
User: AcerNitro5AN515-55\hacker

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 377754
Threats Detected: 111
Threats Quarantined: 0
Time Elapsed: 27 min, 41 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 7
Trojan.Agent, C:\WINDOWS\WINDEFENDER.EXE, No Action By User, 511, 428246, , , , ,
6512AE7C9F36206F6433F78296102419,
6B9468EFEE35A8454A7FB395F43E5BDD14DF918437661846D7D6EC199BA08883
Trojan.Agent, C:\WINDOWS\RSS\CSRSS.EXE, No Action By User, 511, 196479, , , , ,
48EAC0485AFBC2C14335BEF4E7D5958A,
0451B04C0A04CD69B2DC822FB3AAEA7EC8389C4D460B33A5F8305F979A432000
Generic.Trojan.Malicious.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\ML20201223.EXE, No Action By User,
1000002, 0, , , , , D54ADE674CB0C3E6D322ED7380E8ADF6,
5191548B8EDF4B98E623F055F5205E2DB17AA220C28928B1DA1C3A9BA1A75EE0
Trojan.Injector, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\INJECTOR\INJECTOR.EXE, No
Action By User, 743, 931301, , , , , D98E33B66343E7C96158444127A117F6,
5DE4E2B07A26102FE527606CE5DA1D5A4B938967C9D380A3C5FE86E2E34AAAF1
Trojan.Dropper.GO, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WW31.EXE, No Action By
User, 8016, 944512, , , , , 9A4B7B0849A274F6F7AC13C7577DAAD8,
C1D5A585FCE188423D31DF3EA806272F3DAA5EB989E18E9ECF3D94B97B965F8E
Bitcoin.Trojan.Miner.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WUP\XARCH\WUP.EXE, No Action By User,
1000002, 0, , , , , 8BC0535A7B801F05FD80D46525666576,
B80914FAF6F1C7FD6CBF6F6832BEBF2B9DE726FF9AE10683787BA7EC436B38A2
Generic.Trojan.Malicious.DDS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\MG20201223-
1.EXE, No Action By User, 1000002, 0, , , , , 0A13D106FA3997A0C911EDD5AA0E147A,
5E46ECFFCFF9440E97BF4F0A85AD34132407F925B27A8759F5A01DE5EA4DA6AF

Module: 7
Trojan.Agent, C:\WINDOWS\WINDEFENDER.EXE, No Action By User, 511, 428246, , , , ,
6512AE7C9F36206F6433F78296102419,
6B9468EFEE35A8454A7FB395F43E5BDD14DF918437661846D7D6EC199BA08883
Trojan.Agent, C:\WINDOWS\RSS\CSRSS.EXE, No Action By User, 511, 196479, , , , ,
48EAC0485AFBC2C14335BEF4E7D5958A,
0451B04C0A04CD69B2DC822FB3AAEA7EC8389C4D460B33A5F8305F979A432000
Generic.Trojan.Malicious.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\ML20201223.EXE, No Action By User,
1000002, 0, , , , , D54ADE674CB0C3E6D322ED7380E8ADF6,
5191548B8EDF4B98E623F055F5205E2DB17AA220C28928B1DA1C3A9BA1A75EE0
Trojan.Injector, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\INJECTOR\INJECTOR.EXE, No
Action By User, 743, 931301, , , , , D98E33B66343E7C96158444127A117F6,
5DE4E2B07A26102FE527606CE5DA1D5A4B938967C9D380A3C5FE86E2E34AAAF1
Trojan.Dropper.GO, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WW31.EXE, No Action By
User, 8016, 944512, , , , , 9A4B7B0849A274F6F7AC13C7577DAAD8,
C1D5A585FCE188423D31DF3EA806272F3DAA5EB989E18E9ECF3D94B97B965F8E
Bitcoin.Trojan.Miner.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WUP\XARCH\WUP.EXE, No Action By User,
1000002, 0, , , , , 8BC0535A7B801F05FD80D46525666576,
B80914FAF6F1C7FD6CBF6F6832BEBF2B9DE726FF9AE10683787BA7EC436B38A2
Generic.Trojan.Malicious.DDS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\MG20201223-
1.EXE, No Action By User, 1000002, 0, , , , , 0A13D106FA3997A0C911EDD5AA0E147A,
5E46ECFFCFF9440E97BF4F0A85AD34132407F925B27A8759F5A01DE5EA4DA6AF

Registry Key: 12
Trojan.Glupteba.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{563780C0-6B58-4E1C-9F58-DF110338C839},
No Action By User, 514, 781231, 1.0.41541, , ame, , ,
Trojan.Glupteba.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{563780C0-6B58-4E1C-9F58-DF110338C839},
No Action By User, 514, 781232, , , , , ,
Trojan.Glupteba.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\csrss, No Action By User, 514, 781232,
1.0.41541, , ame, , ,
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDEFENDER, No Action By
User, 511, 428246, 1.0.41541, , ame, , ,
Trojan.Glupteba.E, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\3c80c2ed, No Action By User, 514, 821174, 1.0.41541, , ame,
, ,
Spyware.PasswordStealer.E, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\BowwSoftwar, No Action By User, 3951, 947581, 1.0.41541, , ame, , ,
Trojan.SmokeLoader, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Firefox Default Browser Agent
45301B7D3698DE48, No Action By User, 1204, 946416, , , , , ,
Trojan.SmokeLoader, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{63E97864-F9D6-48AA-B0F5-A3B48FCEFF65},
No Action By User, 1204, 946416, , , , , ,
Trojan.SmokeLoader, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{63E97864-F9D6-48AA-B0F5-A3B48FCEFF65},
No Action By User, 1204, 946416, , , , , ,
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\KMSAutoNet, No Action By User, 1367,
814031, , , , , ,
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{015E14D5-4E99-4B33-94FB-DD5128F59495},
No Action By User, 1367, 814031, , , , , ,
HackTool.KMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\PLAIN\{015E14D5-4E99-4B33-94FB-DD5128F59495},
No Action By User, 1367, 814031, , , , , ,

Registry Value: 9
Trojan.Glupteba.E, HKLM\SOFTWARE\MICROSOFT\WINDOWS
NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{563780C0-6B58-4E1C-9F58-DF110338C839}|
PATH, No Action By User, 514, 781231, 1.0.41541, , ame, , ,
Trojan.Agent, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WINDEFENDER|IMAGEPATH, No
Action By User, 511, 428246, 1.0.41541, , ame, , ,
Trojan.Glupteba.E, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\3c80c2ed|CAMPAIGNID, No Action By User, 514, 821174,
1.0.41541, , ame, , ,
RiskWare.BitCoinMiner, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|KRYPTEX, No Action By User, 914,
771795, 1.0.41541, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|DAMPWILDFLOWER, No Action By
User, 511, 196479, 1.0.41541, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|PRUN, No Action By User, 511,
945897, 1.0.41541, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|WINFLOW, No Action By User, 511,
945899, 1.0.41541, , ame, , ,
Trojan.Agent, HKU\S-1-5-21-491075131-3213195125-171082294-
1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|WINHOST, No Action By User, 511,
945900, 1.0.41541, , ame, , ,
Trojan.Glupteba.E,
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\FIREW
ALLRULES|{791742F6-341A-483C-87AF-C12854A66BED}, No Action By User, 514, 795081,
1.0.41541, , ame, , ,

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 8
Backdoor.Bifrose, C:\PROGRAM FILES (X86)\COMPANY\NEWPRODUCT, No Action By User,
1066, 172663, 1.0.41541, , ame, , ,
Trojan.Agent.VBS, C:\USERS\HACKER\APPDATA\ROAMING\WINDOWS UPDATES FILES, No Action
By User, 1307, 755045, 1.0.41541, , ame, , ,
Spyware.StolenData.E, C:\PROGRAMDATA\E1TOBV9YAJ6SLNUDMJ9UFFUGF\FILES\Wallets, No
Action By User, 992, 697276, 1.0.41541, , ame, , ,
Spyware.StolenData.E, C:\PROGRAMDATA\X61JQOYTB31EDF8A1GKB9D4T1\FILES\Wallets, No
Action By User, 992, 697276, 1.0.41541, , ame, , ,
Spyware.StolenData.E, C:\PROGRAMDATA\Z3C7981ACGL54QWHVUO0Q2XNK\FILES\Wallets, No
Action By User, 992, 697276, 1.0.41541, , ame, , ,
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV, No Action By User, 1367,
805275, , , , , ,
Trojan.BrowserHijack, C:\ProgramData\Ifrbxb\Txxuahu\34988E8A, No Action By User,
2696, 940996, , , , , ,
Trojan.BrowserHijack, C:\PROGRAMDATA\IFRBXB\TXXUAHU, No Action By User, 2696,
940996, 1.0.41541, , ame, , ,

File: 68
Backdoor.Bifrose, C:\Program Files (x86)\Company\NewProduct\d, No Action By User,
1066, 172663, , , , , ,
Backdoor.Bifrose, C:\Program Files (x86)\Company\NewProduct\d.INTEG.RAW, No Action
By User, 1066, 172663, , , , , 9E43F6271758FF2FEEC43461A0C3719E,
54C0384202828D52E6C7C00F2D31EC321ADF79655C71A8DB836F58B736B54885
Backdoor.Bifrose, C:\Program Files (x86)\Company\NewProduct\d.jfm, No Action By
User, 1066, 172663, , , , , 4F42D767048CE6174CA0477BABBD1AE1,
BBAA9A7AD18569606E121CAA1851AEABB70955D81808D63EE6057AA84669A57B
Trojan.Agent.VBS, C:\USERS\HACKER\APPDATA\ROAMING\WINDOWS UPDATES FILES\Windows
Updates Service.vbe, No Action By User, 1307, 755045, 1.0.41541, , ame, ,
82FA92DE3AA21D821ACFB2DA1325FCCD,
77232BD78738DD0A1DA3883737D179082754437011DBEB432D17E0DD86EED598
Trojan.Glupteba.E, C:\WINDOWS\SYSTEM32\TASKS\CSRSS, No Action By User, 514, 781232,
, , , , 3AD89BBBECFD5102E3435D5E11A027A2,
59DB7FEF047A1B7719E803E669211524837495A4E8D8BBFCAE63BAC1E276BDC0
Trojan.Agent, C:\WINDOWS\WINDEFENDER.EXE, No Action By User, 511, 428246, , , , ,
6512AE7C9F36206F6433F78296102419,
6B9468EFEE35A8454A7FB395F43E5BDD14DF918437661846D7D6EC199BA08883
Trojan.Agent, C:\WINDOWS\RSS\CSRSS.EXE, No Action By User, 511, 196479, , , , ,
48EAC0485AFBC2C14335BEF4E7D5958A,
0451B04C0A04CD69B2DC822FB3AAEA7EC8389C4D460B33A5F8305F979A432000
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP1\devcon.exe, No Action By
User, 1367, 805275, , , , , 3904D0698962E09DA946046020CBCB17,
A51E25ACC489948B31B1384E1DC29518D19B421D6BC0CED90587128899275289
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\devcon.exe, No Action By
User, 1367, 805275, , , , , 7F0C8F7B6F6D22ECD83013F2F26A71AE,
A4E561F666C08353C2226E8E264555C406893B0AD1B74FD05F4F29655E128809
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\tapoas.inf, No Action By
User, 1367, 805275, , , , , 61243CB103543EE3163BF16DF69BCB54,
1652B1DE2F15EEACBD06E0AB14ADA5A466316FFD3AB88D4A2A46CFCBD25FDFA1
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64TAP2\tapoas.sys, No Action By
User, 1367, 805275, , , , , 927D0CDB3F96EFC1E98FB1A2C9FB67AD,
58F14DAA0EA21EA2F2A1D3D62C88BD8E5A0E0EF498B7B8D367BEEADE6A46843C
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\FakeClient.exe, No Action
By User, 1367, 805275, , , , , D25567C3C868A53A018A114C903E9932,
141BA0B04CBE778669F7BC9286E0F88FCAD05120C296BFF2F075E643ED5EB125
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WdfCoInstaller01009.dll, No
Action By User, 1367, 805275, , , , , BE566E174EAF5B93B0474593CD8F2715,
CEE8496BFA1080FD84FC48BA4375625238900FE93EA739B2DC0300206FDE8330
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.dll, No Action By
User, 1367, 805275, , , , , 3F0C03E5076C7E6B404F894FF4DC5BB1,
4E7EBED8410C83B73A23185AA94680143DA2933305CD6DEEFE8EC0B51B7EE6F3
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.inf, No Action By
User, 1367, 805275, , , , , A94D989905A248AFCA52BC3CBFCB248B,
6C9F7DEA4F9A47788D5D2BA110B08457FD00DBABE4812EBCA6F022300843A75D
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\x64WDV\WinDivert.sys, No Action By
User, 1367, 805275, , , , , A0D15D8727D0780C51628DF46B7268B3,
5E23F3ED1D6620C39A644F9879404A22DED86B3B076EC4A898B4B6BE244AFD64
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\oas_sert.cer, No Action By User,
1367, 805275, , , , , 0041584E5F66762B1FA9BE8910D0B92B,
BB27684B569CBB72DEC63EA6FDEF8E5F410CDAEB73717EEE1B36478DBCFF94CC
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\driver\tap0901.cer, No Action By User,
1367, 805275, , , , , 3D5FFD53BE77C32CBB147F32423C0A86,
669C56DB590C0308EA25C4508375BB88611B06B1AE689A895DC6B19F4DF5619C
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\KMSSS.exe, No Action By User, 1367,
805275, , , , , 0F03F72A92AEF6D63EB74E73F8AC201D,
ACD55C44B8B0D66D66DEFED85CA18082C092F048D3621DA827FCE593305C11FD
HackTool.KMS, C:\ProgramData\KMSAutoS\bin\KMSSS.log, No Action By User, 1367,
805275, , , , , FB8A9A8B69C1EB0C1A9F409A0866C72D,
A0A8075EAFA9C744A40B0CA5DA74286A9A6ECDF90502FDFDDEB1CD24F5C3548F
HackTool.KMS, C:\ProgramData\KMSAutoS\kmsauto.ini, No Action By User, 1367, 805275,
, , , , 04EF85A52FD11D1B8D2862F442F579F3,
529ACB7AF5F0A61DC00A8B0BBCD48C6819BB3301E9E2FD06E88805B005C712D3
Backdoor.Bot, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\WUP\WUP.EXE, No Action By User,
3608, 874960, 1.0.41541, 0A2675B58C63F54C016E574F, dds, 01283168,
CE4395EDBBF9869A5E276781AF2E0FB5,
F059A5358C24CC362C2F74B362C75E02035FDF82F9FFAE8D553AFEE1A271AFD0
Trojan.BrowserHijack, C:\PROGRAMDATA\IFRBXB\TXXUAHU\34988E8A\BACKGROUND.JS, No
Action By User, 2696, 940996, 1.0.41541, , ame, , 83AB0ECE22DCA6968DE7EA97BD8344BC,
BC698785FABD773459A5E0D2FCBEDBDECACE9A33D3F5DB5F54EFAB993C9163A0
Trojan.BrowserHijack, C:\ProgramData\Ifrbxb\Txxuahu\34988E8A\icon128.png, No Action
By User, 2696, 940996, , , , , 86DF701CE3B2191A415BDEF3222AB59F,
E2712D19AA6AA4A29827E76C4DF53F54B5207AB9C90C0CB2202635072D41AA22
Trojan.BrowserHijack, C:\ProgramData\Ifrbxb\Txxuahu\34988E8A\manifest.json, No
Action By User, 2696, 940996, , , , , 75905F5F19AA48B918A96EE93887AD2C,
74BC8F8C5047C56CDC0BCE3006D4D7A47A96A8CD9B4EF0D15F2D1538A393CAFD
Trojan.BrowserHijack, C:\ProgramData\Ifrbxb\Txxuahu\34988E8A\meeh, No Action By
User, 2696, 940996, , , , , 0493128D5911AB4B59422058DB5134E8,
9EEA0AB43227F3BCD9822CE3A24931E9D86C5C53501D5C9583489465A7C01F75
Generic.Trojan.Malicious.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\ML20201223.EXE, No Action By User,
1000002, 0, 1.0.41541, 9A7A6AFB3102800D547A4E88, dds, 01283168,
D54ADE674CB0C3E6D322ED7380E8ADF6,
5191548B8EDF4B98E623F055F5205E2DB17AA220C28928B1DA1C3A9BA1A75EE0
Trojan.Injector, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\INJECTOR\INJECTOR.EXE, No
Action By User, 743, 931301, 1.0.41541, 3E13BCDF055A7AC4FE1CC453, dds, 01283168,
D98E33B66343E7C96158444127A117F6,
5DE4E2B07A26102FE527606CE5DA1D5A4B938967C9D380A3C5FE86E2E34AAAF1
Trojan.Dropper.GO, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WW31.EXE, No Action By
User, 8016, 944512, 1.0.41541, 38CB23A85555CEA6F5EFA0FA, dds, 01283168,
9A4B7B0849A274F6F7AC13C7577DAAD8,
C1D5A585FCE188423D31DF3EA806272F3DAA5EB989E18E9ECF3D94B97B965F8E
Bitcoin.Trojan.Miner.DDS,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\WUP\XARCH\WUP.EXE, No Action By User,
1000002, 0, 1.0.41541, F24CB72F397483E1616D5702, dds, 01283168,
8BC0535A7B801F05FD80D46525666576,
B80914FAF6F1C7FD6CBF6F6832BEBF2B9DE726FF9AE10683787BA7EC436B38A2
Generic.Trojan.Malicious.DDS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\MG20201223-
1.EXE, No Action By User, 1000002, 0, 1.0.41541, 9A7A6AFB3102800D547A4E88, dds,
01283168, 0A13D106FA3997A0C911EDD5AA0E147A,
5E46ECFFCFF9440E97BF4F0A85AD34132407F925B27A8759F5A01DE5EA4DA6AF
Trojan.SmokeLoader, C:\WINDOWS\SYSTEM32\TASKS\Firefox Default Browser Agent
45301B7D3698DE48, No Action By User, 1204, 946416, , , , ,
69ED2B393E00B303324A9B309F03BF7B,
19C0A0C931EEB8E6F72ECD9A47448933F7726CD3EAD0F3D67C0D2C514A31BDA7
Trojan.SmokeLoader, C:\USERS\HACKER\APPDATA\ROAMING\CEDEJII, No Action By User,
1204, 946416, 1.0.41541, , ame, , BD1E755A982F445233A209B3D25E1CAC,
ABEB4B57006C77D73D51719247CC3806FE8619738833E5A09C12D78ADA7379B3
HackTool.KMS, C:\WINDOWS\SYSTEM32\TASKS\KMSAutoNet, No Action By User, 1367,
814031, 1.0.41541, , ame, , BA019BD6152635FA4B6994F4EC795185,
7B37B01B207717C94A6ED995E2BC01198495CED62AB75A19F900BADC027687E4
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\MSVCP140.DLL, No Action By User, 3957,
820423, 1.0.41541, , ame, , 109F0F02FD37C84BFC7508D4227D7ED5,
334E69AC9367F708CE601A6F490FF227D6C20636DA5222F148B25831D22E13D4
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\NSS3.DLL, No Action By User, 3957, 820421,
1.0.41541, , ame, , BFAC4E3C5908856BA17D41EDCD455A51,
E2935B5B28550D47DC971F456D6961F20D1633B4892998750140E0EAA9AE9D78
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\VCRUNTIME140.DLL, No Action By User, 3957,
820419, 1.0.41541, , ame, , 7587BF9CB4147022CD5681B015183046,
C40BB03199A2054DABFC7A8E01D6098E91DE7193619EFFBD0F142A7BF031C14D
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\SOFTOKN3.DLL, No Action By User, 3957,
820420, 1.0.41541, , ame, , A2EE53DE9167BF0D6C019303B7CA84E5,
43536ADEF2DDCC811C28D35FA6CE3031029A2424AD393989DB36169FF2995083
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\FREEBL3.DLL, No Action By User, 3957,
820418, 1.0.41541, , ame, , EF2834AC4EE7D6724F255BEAF527E635,
A770ECBA3B08BBABD0A567FC978E50615F8B346709F8EB3CFACF3FAAB24090BA
RiskWare.MisusedLegit.E, C:\PROGRAMDATA\MOZGLUE.DLL, No Action By User, 3957,
820422, 1.0.41541, , ame, , 8F73C08A9660691143661BF7332C3C27,
3FE6B1C54B8CF28F571E0C5D6636B4069A8AB00B4F11DD842CFEC00691D0C9CD
PUP.Optional.OnlineIO, C:\USERS\HACKER\APPDATA\ROAMING\AW MANAGER\WINDOWS MANAGER
1.0.0\INSTALL\97FDF62\ADVANCEDWINDOWSMANAGER.EXE, No Action By User, 3792, 360154,
1.0.41541, , ame, , A2DBD075D730064E16829E8A8D74D74A,
152A160ECA0475F99245A347EE8FFDDE2F55E8A395862D03ED389234DCDD0F25
RiskWare.ShortcutHijack, C:\USERS\HACKER\APPDATA\ROAMING\MICROSOFT\INTERNET
EXPLORER\QUICK LAUNCH\GOOGLE CHROME.LNK, No Action By User, 15563, 940778,
1.0.41541, , ame, , A409827D6D36A0C7D2C7CE65CD043057,
854180B2FA9D7DF5E5D11B949297D7510BE106C2CD67F77CADD77615E395B89E
Trojan.MalPack.GS, C:\USERS\HACKER\APPDATA\ROAMING\NAILEDP\EDSPOLISHPP.EXE, No
Action By User, 8407, 947568, 1.0.41541, , ame, , 84482CCC25D8732C2A33B2E731F53368,
C8CBC34E33AC2D253932CE0767A96D461B40E70C0DC1DD0E1AC386D262328FA9
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\2773793.EXE, No Action By
User, 8312, 947495, 1.0.41541, 1ECCCEB052DAA7273483DDFD, dds, 01283168,
CF8D7E9ED4A72706CF9227316E76301D,
79C5FFE37032FA536CE1B503E1E54C414335D12DB736C7751ABCAC04A39E3A49
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\4743334.EXE, No Action By
User, 8312, 947495, 1.0.41541, 8FAD8C49B19515A434A6980A, dds, 01283168,
D91656A2D23A6F3C184E281A2B9BC184,
FB82F218D502FCCE8150894AE8057D0F05B33EFB5B3A67702519B0E332F8992C
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\6861360.EXE, No Action By
User, 8312, 947495, 1.0.41541, 8FAD8C49B19515A434A6980A, dds, 01283168,
D91656A2D23A6F3C184E281A2B9BC184,
FB82F218D502FCCE8150894AE8057D0F05B33EFB5B3A67702519B0E332F8992C
Spyware.PasswordStealer, C:\USERS\HACKER\APPDATA\ROAMING\8292579.EXE, No Action By
User, 553, 940559, 1.0.41541, 256764E83D4E8D8DFA6242F8, dds, 01283168,
D57DC2B82B678CF64723FE2ED48C70D3,
F5F2A587CFAB97961F26189F821D5C2B722E689CC45511078D3B99FE7F813EBD
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\6224191.EXE, No Action By
User, 8312, 947495, 1.0.41541, 8FAD8C49B19515A434A6980A, dds, 01283168,
D91656A2D23A6F3C184E281A2B9BC184,
FB82F218D502FCCE8150894AE8057D0F05B33EFB5B3A67702519B0E332F8992C
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\2414546.EXE, No Action By
User, 8312, 947495, 1.0.41541, D705EBE61022EC9B183BCCAC, dds, 01283168,
4E8AD8DF0C7BB5E3225491B056744346,
8E74A0DC9255DA3D684232D1A87A20A3B7AF486144F41AA6D6862FF24BAC2725
Spyware.ElysiumStealer, C:\USERS\HACKER\APPDATA\ROAMING\7265175.EXE, No Action By
User, 8312, 947495, 1.0.41541, D705EBE61022EC9B183BCCAC, dds, 01283168,
4E8AD8DF0C7BB5E3225491B056744346,
8E74A0DC9255DA3D684232D1A87A20A3B7AF486144F41AA6D6862FF24BAC2725
Spyware.PasswordStealer, C:\USERS\HACKER\APPDATA\ROAMING\3739472.EXE, No Action By
User, 553, 940559, 1.0.41541, 256764E83D4E8D8DFA6242F8, dds, 01283168,
D57DC2B82B678CF64723FE2ED48C70D3,
F5F2A587CFAB97961F26189F821D5C2B722E689CC45511078D3B99FE7F813EBD
Trojan.Clipper, C:\USERS\HACKER\APPDATA\ROAMING\8483996.EXE, No Action By User,
7631, 947580, 1.0.41541, E60028D01977CD27F023D4E8, dds, 01283168,
BCC25C08B993D97DE75B279B19A8F644,
6ED857FE106B8C6C34FD36F6DB3C6DA4FF587943486FE385A4738EE42D70812C
Trojan.MalPack.GS, C:\PROGRAM FILES (X86)\TWILIGHT-
FIELD\VIDEO+CARTOONIZER+4.1.6+FULL+CRACK.RAR-RTMD-
AEA2KMDGZGQAVHWCAELOFWASAJJCQ2CA.EXE, No Action By User, 8407, 937476, 1.0.41541,
93AE3CE3F4FD8070E7266148, dds, 01283168, 48EAC0485AFBC2C14335BEF4E7D5958A,
0451B04C0A04CD69B2DC822FB3AAEA7EC8389C4D460B33A5F8305F979A432000
Trojan.Downloader, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\$INST\TEMP_0.TMP, No Action
By User, 540, 936816, 1.0.41541, BD127086E60B96655CFDCEB1, dds, 01283168,
83BC25CD48C17736F09ACAD1DDBF715D,
10B8ACF7FED92CAC44D628DD9ECD2B96CD10E450D60ABFEF19F282DB85A72C39
Trojan.Dropper, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\NUPLOAD05053.EXE, No
Action By User, 604, 937705, 1.0.41541, 558711A9E7FB2B0825D87658, dds, 01283168,
04C1F4395F80A3890AA8B12EBC2B4855,
FAD16599A866F466BDEFF2A716B9AA79FAA6677F2895F0B262CF9402DEB4B66C
Trojan.Ranumbot, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\ETTM2205.EXE, No Action
By User, 7816, 944468, 1.0.41541, 0000000000000000000003EB, dds, 01283168,
679F030B0848E48F7B38499694B74864,
56D7E442C68BFE83B7D1CA43151632A4F0B18E64C14A5566FAB6B3E1A8B5FD56
Generic.Malware/Suspicious,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\SMBSCANLOCAL0806.EXE, No Action By User,
0, 392686, 1.0.41541, , shuriken, , 122A8BAF2E599B4E24B1F974F268F7E2,
612F95126092EB1A625CFC7689517BEA7BC755621B761705C3DACD27D8CCD455
Malware.AI.2373211908,
C:\USERS\HACKER\APPDATA\LOCAL\TEMP\CSRSS\SMBSCANLOCAL0906.EXE, No Action By User,
1000000, 0, 1.0.41541, 72995EB38C9450738D745704, dds, 01283168,
6BE10A13C17391218704DC24B34CF736,
9A74640CA638B274BC8E81F4561B4C48B0C5FBCB78F6350801746003DED565EB
Trojan.MalPack.GS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\B099.EXE, No Action By User,
8407, 947568, 1.0.41541, , ame, , CB490BD5A987437C9F3F2E1F0FA40F10,
CE609DEF0560D15CC97A2E90B7F99AAFD3262E2E66D95B4401539598057237F7
Trojan.Injector.VB, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\8225.EXE, No Action By User,
928, 816546, 1.0.41541, 664DCB294FEAB71C7E883A15, dds, 01283168,
A69E12607D01237460808FA1709E5E86,
188E05EFB42C1F7FDB5C910A6614F710A87AE642B23AC9FFE3F75246744865BC
Trojan.MalPack.GS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\980F.EXE, No Action By User,
8407, 947568, 1.0.41541, , ame, , 8A1D4C4D36901122C4E77FB20B7FBA0E,
7A453F079D1916E40EEA9146CB96056DBE8FE1CFC4512D549D78FEE49D7BED2A
Trojan.Injector.VB, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\5315.EXE, No Action By User,
928, 816546, 1.0.41541, 664DCB294FEAB71C7E883A15, dds, 01283168,
A69E12607D01237460808FA1709E5E86,
188E05EFB42C1F7FDB5C910A6614F710A87AE642B23AC9FFE3F75246744865BC
Trojan.Dropper.Generic, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\P6.ZIP, No Action By
User, 10939, 939945, 1.0.41541, , ame, , D4D19EC3A915247C894152690549797C,
53963E5F885077F82CC206CFA268EFD34A49F661644DF23ABADEA158D13D9ED8
Trojan.Crypt, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\BIT2FF6.TMP, No Action By User,
601, 946403, 1.0.41541, , ame, , 556C57B122C0B62B3EBE66EB943CB726,
596A8BE054BE2847E86E15E7B6CE213B47C81C0C402FF859DEB8F8BE74355C10
Trojan.MalPack.GS, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\AV.ZIP, No Action By User,
8407, 947568, 1.0.41541, , ame, , 48AEBFB61D7C085B5144777ED378AFF8,
392239A5BB15B61707E95A6DF650A04CF4D46609C5E1BF5358080EA6927844CA
Malware.AI.475553583, C:\USERS\HACKER\APPDATA\LOCAL\TEMP\UPDATE-ASSETS.ZIP, No
Action By User, 1000000, 0, 1.0.41541, F60B9B0D25046EBE1C585F2F, dds, 01283168,
B9E0981E078C3AA73B95C1B98403B983,
F40C3FFF7E3A730B188A8BB3C89205FC1DC5C6C159CA574BEEC5471C9C8495F5
Generic.Trojan.Malicious.DDS, C:\WINDOWS\TEMP\GHLWIZG.LOG, No Action By User,
1000002, 0, 1.0.41541, FF62A03D52C6A150DCD29264, dds, 01283168,
1B70134C921AE4144ECC2C6E49103195,
640327EB3604BCF76AD645CFC2E7BF19C930CC72896982A6BA306AF25F531EA1
RiskWare.ShortcutHijack, C:\USERS\HACKER\APPDATA\ROAMING\MICROSOFT\INTERNET
EXPLORER\QUICK LAUNCH\USER PINNED\TASKBAR\GOOGLE CHROME.LNK, No Action By User,
15563, 940778, 1.0.41541, , ame, , 719E87DB75D7D6FA839863257D515AA5,
464E678A5A31992214A092EAC388E531B75979B7F28C6D5B3A64CD7C5F21D9BF

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

You might also like