Jump to content

Anmolrazdan

Members
  • Posts

    13
  • Joined

  • Last visited

Everything posted by Anmolrazdan

  1. the results and some files named system volume information and recycle bin folders are formed in lopcal disk, volume E, D, F mbst-grab-results.zip
  2. some of the sites which are being blocked trojan.txt trojan 2.txt trojan 3.txt trojan 4.txt trojan 5.txt trojan 6.txt trojan 7.txt
  3. i did it and restarted the computer, but after the restart malwarebytes was continuously prompting me about trojan, the prompt says site was blocked due to trojan
  4. can you give me an idea where it will be present, as i am having trouble finding it
  5. Malwarebytes www.malwarebytes.com -Log Details- Scan Date: 1/9/19 Scan Time: 7:14 PM Log File: ba76cfbf-1414-11e9-874f-089e01f95592.json -Software Information- Version: 3.6.1.2711 Components Version: 1.0.463 Update Package Version: 1.0.6913 License: Free -System Information- OS: Windows 7 Service Pack 1 CPU: x64 File System: NTFS User: Hp-PC\Hp -Scan Summary- Scan Type: Threat Scan Scan Initiated By: Manual Result: Completed Objects Scanned: 240782 Threats Detected: 29 Threats Quarantined: 29 Time Elapsed: 3 min, 12 sec -Scan Options- Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Disabled Heuristics: Enabled PUP: Detect PUM: Detect -Scan Details- Process: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registry Key: 15 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa, Quarantined, [6047], [430789],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}, Quarantined, [6047], [430789],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}, Quarantined, [6047], [430789],1.0.6913 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\ok, Quarantined, [3703], [417164],1.0.6913 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B40E32BA-1A3F-409C-B460-69D67C9264CE}, Quarantined, [3703], [417164],1.0.6913 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{B40E32BA-1A3F-409C-B460-69D67C9264CE}, Quarantined, [3703], [417164],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa1, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa2, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Mysa3, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}, Quarantined, [6047], [430784],1.0.6913 Registry Value: 6 Trojan.Agent.Generic, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|START, Quarantined, [3703], [400553],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{9334C4AC-C277-45B3-BFC3-6BB70FC71589}|PATH, Quarantined, [6047], [430786],1.0.6913 Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{B40E32BA-1A3F-409C-B460-69D67C9264CE}|PATH, Quarantined, [3703], [417161],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{C10082AF-D23A-46AD-99EA-1F37CDBA3526}|PATH, Quarantined, [6047], [430786],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F5D7FF3D-F5D0-4461-AE7A-2F26E56CF55B}|PATH, Quarantined, [6047], [430791],1.0.6913 Trojan.Agent.WmiBit, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{FA7301F1-DD2D-462A-A6D6-CE6F13C56428}|PATH, Quarantined, [6047], [430786],1.0.6913 Registry Data: 0 (No malicious items detected) Data Stream: 0 (No malicious items detected) Folder: 0 (No malicious items detected) File: 8 Trojan.Agent.BTMGen, C:\WINDOWS\TEMP\CONHOST.EXE, Quarantined, [6149], [217077],1.0.6913 Trojan.BitCoinMiner.WmiBit, C:\WINDOWS\DEBUG\LSMOSE.EXE, Quarantined, [6285], [430813],1.0.6913 Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\MYSA, Quarantined, [6047], [430789],1.0.6913 Trojan.Agent.Generic, C:\WINDOWS\SYSTEM32\TASKS\OK, Quarantined, [3703], [417164],1.0.6913 Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa1, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa2, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.WmiBit, C:\WINDOWS\SYSTEM32\TASKS\Mysa3, Quarantined, [6047], [430784],1.0.6913 Trojan.Agent.E, C:\PROGRAM FILES\COMMON FILES\XPDOWN.DAT, Quarantined, [3710], [568219],1.0.6913 Physical Sector: 0 (No malicious items detected) WMI: 0 (No malicious items detected) (end)
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.