API tools faq
paste
Guest User

Valorant b shady

a guest
May 25th, 2020
181
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.88 KB | None | 0 0
raw download clone embed print report
  1. -Scan Details-
  2. Process: 2
  3. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINRMSRV.EXE, No Action By User, 910, 767022, , , ,
  4. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINLOGUI.EXE, No Action By User, 910, 767023, , , ,
  5.  
  6. Module: 2
  7. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINRMSRV.EXE, No Action By User, 910, 767022, , , ,
  8. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINLOGUI.EXE, No Action By User, 910, 767023, , , ,
  9.  
  10. Registry Key: 12
  11. Backdoor.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Microsoft\Windows\WDI\SrvHost, No Action By User, 850, 653659, , , ,
  12. Backdoor.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AEC68552-21FF-44B4-BEE6-8B7347AE793B}, No Action By User, 850, 653659, , , ,
  13. Backdoor.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{AEC68552-21FF-44B4-BEE6-8B7347AE793B}, No Action By User, 850, 653659, , , ,
  14. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Microsoft\Windows\Application Experience\STARTUPCHECKLIBRARY, No Action By User, 493, 735770, , , ,
  15. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{32AFBC45-0F0B-49B7-8FE5-2AA91D62C592}, No Action By User, 493, 735770, , , ,
  16. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{32AFBC45-0F0B-49B7-8FE5-2AA91D62C592}, No Action By User, 493, 735770, , , ,
  17. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Microsoft\Windows\Windows Error Reporting\winrmsrv, No Action By User, 493, 780529, , , ,
  18. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{A5E0EF59-681A-4E3C-95C8-11F097BCCFE9}, No Action By User, 493, 780529, , , ,
  19. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{A5E0EF59-681A-4E3C-95C8-11F097BCCFE9}, No Action By User, 493, 780529, , , ,
  20. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{1CF2023F-B540-47BD-9AA0-ADB65A242FCF}, No Action By User, 493, 780232, 1.0.24446, , ame,
  21. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\LOGON\{1CF2023F-B540-47BD-9AA0-ADB65A242FCF}, No Action By User, 493, 780231, , , ,
  22. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\MICROSOFT\WINDOWS\WININET\Winlogui, No Action By User, 493, 780231, 1.0.24446, , ame,
  23.  
  24. Registry Value: 4
  25. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{1CF2023F-B540-47BD-9AA0-ADB65A242FCF}|PATH, No Action By User, 493, 780232, 1.0.24446, , ame,
  26. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{32AFBC45-0F0B-49B7-8FE5-2AA91D62C592}|PATH, No Action By User, 493, 782993, 1.0.24446, , ame,
  27. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{A5E0EF59-681A-4E3C-95C8-11F097BCCFE9}|PATH, No Action By User, 493, 780528, 1.0.24446, , ame,
  28. Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{AEC68552-21FF-44B4-BEE6-8B7347AE793B}|PATH, No Action By User, 493, 784920, 1.0.24446, , ame,
  29.  
  30. Registry Data: 3
  31. PUM.Optional.DisabledSecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|ANTIVIRUSDISABLENOTIFY, No Action By User, 13665, 293294, 1.0.24446, , ame,
  32. PUM.Optional.DisabledSecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|FIREWALLDISABLENOTIFY, No Action By User, 13665, 293295, 1.0.24446, , ame,
  33. PUM.Optional.DisabledSecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UPDATESDISABLENOTIFY, No Action By User, 13665, 293296, 1.0.24446, , ame,
  34.  
  35. Data Stream: 0
  36. (No malicious items detected)
  37.  
  38. Folder: 0
  39. (No malicious items detected)
  40.  
  41. File: 8
  42. Backdoor.Agent, C:\WINDOWS\SYSTEM32\TASKS\Microsoft\Windows\WDI\SrvHost, No Action By User, 850, 653659, , , ,
  43. Backdoor.Agent, C:\WINDOWS\SYSTEM32\WINSCOMRSSRV.DLL, No Action By User, 850, 653659, 1.0.24446, 5C31E96B6447AC8FFB01DF5F, dds, 00735811
  44. Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\MICROSOFT\WINDOWS\APPLICATION EXPERIENCE\STARTUPCHECKLIBRARY, No Action By User, 493, 735770, 1.0.24446, , ame,
  45. Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\MICROSOFT\WINDOWS\WINDOWS ERROR REPORTING\WINRMSRV, No Action By User, 493, 780529, 1.0.24446, , ame,
  46. Trojan.Agent, C:\WINDOWS\SYSTEM32\TASKS\MICROSOFT\WINDOWS\WININET\WINLOGUI, No Action By User, 493, 780231, , , ,
  47. Trojan.FakeMS.TskLnk, C:\WINDOWS\SYSTEM32\STARTUPCHECKLIBRARY.DLL, No Action By User, 4082, 676770, 1.0.24446, 5A74DC805B2D0D63F8E75887, dds, 00735811
  48. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINRMSRV.EXE, No Action By User, 910, 767022, 1.0.24446, , ame,
  49. Trojan.BitCoinMiner, C:\WINDOWS\SYSTEM32\WINLOGUI.EXE, No Action By User, 910, 767023, 1.0.24446, , ame,
  50.  
  51. Physical Sector: 0
  52. (No malicious items detected)
  53.  
  54. WMI: 0
  55. (No malicious items detected)
  56.  
  57.  
  58. (end)
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!