Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 1/9/19
Scan Time: 7:14 PM
Log File: ba76cfbf-1414-11e9-874f-089e01f95592.json
-Software Information-
Version: 3.6.1.2711
Components Version: 1.0.463
Update Package Version: 1.0.6913
License: Free
-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Hp-PC\Hp
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 240782
Threats Detected: 29
Threats Quarantined: 29
Time Elapsed: 3 min, 12 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 15
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa, Quarantined, [6047], [430789],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}, Quarantined, [6047], [430789],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}, Quarantined, [6047], [430789],1.0.6913
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ok, Quarantined, [3703], [417164],1.0.6913
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B40E32BA-1A3F-409C-B460-69D67C9264CE}, Quarantined, [3703], [417164],1.0.6913
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{B40E32BA-1A3F-409C-B460-69D67C9264CE}, Quarantined, [3703], [417164],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa1, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa2, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa3, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}, Quarantined, [6047], [430784],1.0.6913
Registry Value: 6
Trojan.Agent.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|START, Quarantined, [3703], [400553],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}|PATH, Quarantined, [6047], [430786],1.0.6913
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B40E32BA-1A3F-409C-B460-69D67C9264CE}|PATH, Quarantined, [3703], [417161],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}|PATH, Quarantined, [6047], [430786],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}|PATH, Quarantined, [6047], [430791],1.0.6913
Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}|PATH, Quarantined, [6047], [430786],1.0.6913
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 8
Trojan.Agent.BTMGen, C:\WINDOWS\TEMP\CONHOST.EXE, Quarantined, [6149], [217077],1.0.6913
Trojan.BitCoinMiner.WmiBit, C:\WINDOWS\DEBUG\LSMOSE.EXE, Quarantined, [6285], [430813],1.0.6913
Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\MYSA, Quarantined, [6047], [430789],1.0.6913
Trojan.Agent.Generic, C:\WINDOWS\SYSTEM32\TASKS\OK, Quarantined, [3703], [417164],1.0.6913
Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa1, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa2, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa3, Quarantined, [6047], [430784],1.0.6913
Trojan.Agent.E, C:\PROGRAM FILES\COMMON FILES\XPDOWN.DAT, Quarantined, [3710], [568219],1.0.6913
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)