Çözüldü Malware bytes sonuçlarım

12-09-2020, 20:45:17

#1
Açık Profil bilgileri

Özel Mesaj Gönder

tarafından gönderilen tüm mesajları bul

'ı arkadaş olarak ekle
Malwarebytes

-Log Details-
Scan Date: 9/12/20
Scan Time: 1:45 PM
Log File: 24193d96-f4e5-11ea-8502-8c16453bab75.json

-Software Information-
Version: 4.2.0.82
Components Version: 1.0.1036
Update Package Version: 1.0.29737
License: Trial

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Anonymous\Anonymous

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 223564
Threats Detected: 27
Threats Quarantined: 0
Time Elapsed: 12 min, 14 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 8
Backdoor.DarkComet.Trace, HKU\S-1-5-21-2627291530-1057943046-3431161015-1000\SOFTWARE\DC3_FEXEC, No Action By User, 6471, 246706, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack, HKU\S-1-5-21-2627291530-1057943046-3431161015-1000\SOFTWARE\DRPSU, No Action By User, 631, 472301, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack, HKU\S-1-5-21-2627291530-1057943046-3431161015-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INT ERNET SETTINGS\ZONEMAP\DOMAINS\drp.su, No Action By User, 631, 472299, 1.0.29737, , ame, , ,
Adware.Agent.OL, HKLM\SOFTWARE\CLASSES\Prod.cap, No Action By User, 6929, 830817, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack, HKLM\SOFTWARE\WOW6432NODE\DRPSU, No Action By User, 631, 472300, 1.0.29737, , ame, , ,
PUP.Optional.AdvanceSystemCare, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\ASC_RA SAPI32, No Action By User, 931, 333222, 1.0.29737, , ame, , ,
PUP.Optional.AdvanceSystemCare, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\TRACING\ASC_RA SMANCS, No Action By User, 931, 333222, 1.0.29737, , ame, , ,
PUP.Optional.SlimCleanerPlus, HKLM\SOFTWARE\WOW6432NODE\SlimWare Utilities Inc\SlimDrivers, No Action By User, 1612, 396321, 1.0.29737, , ame, , ,

Registry Value: 4
PUP.Optional.DriverPack, HKU\S-1-5-21-2627291530-1057943046-3431161015-1000\SOFTWARE\DRPSU|CLIENTID, No Action By User, 631, 472301, 1.0.29737, , ame, , ,
Hijack.ShellA.Gen, HKU\S-1-5-21-2627291530-1057943046-3431161015-1000\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|SHELL, No Action By User, 6205, 187664, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack.BITSRST, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SHAREDACCES S\PARAMETERS\FIREWALLPOLICY\FIREWALLRULES|{9C2AC67 5-C251-4CEE-9395-B697B9235A89}, No Action By User, 5940, 820531, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack, HKLM\SOFTWARE\WOW6432NODE\DRPSU|CLIENTID, No Action By User, 631, 472300, 1.0.29737, , ame, , ,

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 8
PUP.Optional.Babylon, C:\Users\Anonymous\AppData\Local\Babylon\Setup, No Action By User, 398, 339640, , , , , ,
PUP.Optional.Babylon, C:\USERS\ANONYMOUS\APPDATA\LOCAL\BABYLON, No Action By User, 398, 339640, 1.0.29737, , ame, , ,
Backdoor.DarkComet.StolenData.E, C:\USERS\ANONYMOUS\APPDATA\ROAMING\DCLOGS, No Action By User, 1137, 784081, 1.0.29737, , ame, , ,
Backdoor.NanoCore.StolenData.Generic, C:\Users\Anonymous\AppData\Roaming\BCFACFD4-DFEA-4929-9227-195EC6ECD45C\Logs\Anonymous, No Action By User, 3772, 677862, , , , , ,
Backdoor.NanoCore.StolenData.Generic, C:\Users\Anonymous\AppData\Roaming\BCFACFD4-DFEA-4929-9227-195EC6ECD45C\Logs, No Action By User, 3772, 677862, , , , , ,
Backdoor.NanoCore.StolenData.Generic, C:\USERS\ANONYMOUS\APPDATA\ROAMING\BCFACFD4-DFEA-4929-9227-195EC6ECD45C, No Action By User, 3772, 677862, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack.BITSRST, C:\USERS\ANONYMOUS\APPDATA\ROAMING\DRIVERPACK CLOUD, No Action By User, 5940, 820472, 1.0.29737, , ame, , ,
PUP.Optional.DriverPack.BITSRST, C:\USERS\ANONYMOUS\APPDATA\ROAMING\DRPSU, No Action By User, 5940, 820473, 1.0.29737, , ame, , ,

File: 7
PUP.Optional.Babylon, C:\USERS\ANONYMOUS\APPDATA\LOCAL\BABYLON\SETUP\SET UP2.ZPB, No Action By User, 398, 339640, 1.0.29737, , ame, , 5E6230B3B16798E23720958756AC6D9E, D49EC47F5D27A09A17E00A6EB78F49A761C9F5881EC81FB07C C49FD0A5F287B2
Backdoor.DarkComet.StolenData.E, C:\Users\Anonymous\AppData\Roaming\dclogs\2020-08-10-2.dc, No Action By User, 1137, 784081, , , , , 8A66379C711F20C523007E1C8A3AFAFC, 8429ED69605D229065F9B9E3C627460D059C503170E4441293 12E0AAE4A3D8E8
Backdoor.DarkComet.StolenData.E, C:\Users\Anonymous\AppData\Roaming\dclogs\2020-08-11-3.dc, No Action By User, 1137, 784081, , , , , 282A483946895FE79EEF71811BB1BDB3, 0E28DC47F9ED6AF4EE5CC328826E0465CFE3720CC7FC5B5545 B2205308DD30A1
Backdoor.DarkComet.StolenData.E, C:\Users\Anonymous\AppData\Roaming\dclogs\2020-08-12-4.dc, No Action By User, 1137, 784081, , , , , EB2CC83A7BFD5FF182D87CD1A658F485, 9740177A044474E4209A5737394CDE21C97FFB0C506030D578 57384D88AE7EC1
Backdoor.NanoCore.StolenData.Generic, C:\USERS\ANONYMOUS\APPDATA\ROAMING\BCFACFD4-DFEA-4929-9227-195EC6ECD45C\run.dat, No Action By User, 3772, 677862, 1.0.29737, , ame, , 6DE2D2B66AFEF8EB1400B0B0C9FFA353, A4921608FD0C6570EB0F32809A75191A866DECF93A3CA958BF DA6C28DE6842CB
Backdoor.NanoCore.StolenData.Generic, C:\Users\Anonymous\AppData\Roaming\BCFACFD4-DFEA-4929-9227-195EC6ECD45C\settings.bin, No Action By User, 3772, 677862, , , , , 368E4907A857F177BC6A7DBFDE0F646D, BE2D2D84559A36AC1B070C2A18EBC62868F3F16EF17ACCCB6A 52323C4851A20D
Malware.AI.4057399060, C:\PROGRAM FILES (X86)\SUPERSCAN\SCANNER.EXE, No Action By User, 1000000, 0, 1.0.29737, C81ADA4F95C14C5BF1D6FF14, dds, 00893374, 5C7050E14E090C71B3373AEB2EE13914, AFA241787FDE424249C8B445B1D66F40DE8B08BC7BED7BEF97 C1FEC4B069E53B

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

Bilgili kişiler yardımcı olabilirmi?