Scribd
Upload
185 views4 pages

Malware Scan Report Summary

Uploaded by

Abood Ali
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
185 views4 pages

Malware Scan Report Summary

Uploaded by

Abood Ali
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

7/1/2021 [Link] PM

Files scanned: 594900


Detected files: 62
Cleaned files: 62
Total scan time [Link]
Scan status: Stopped by user

C:\Program Files (x86)\IDA\Extensions\ida@[Link] Win32/Westbyte.A


potentially unwanted application contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\4UE3HH44\ethminer-
0.18.0-cuda10.0-windows-amd64[1].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\4UE3HH44\ethminer-
0.18.0-cuda10.0-windows-amd64[2].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\4UE3HH44\xmrig-6.10.0-
msvc-win64[1].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\4UE3HH44\xmrig-6.10.0-
msvc-win64[2].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\ethminer-
0.18.0-cuda10.0-windows-amd64[1].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\ethminer-
0.18.0-cuda10.0-windows-amd64[2].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\ethminer-
0.18.0-cuda10.0-windows-amd64[3].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\xmrig-6.10.0-
msvc-win64[1].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\xmrig-6.10.0-
msvc-win64[2].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\xmrig-6.10.0-
msvc-win64[3].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\xmrig-6.10.0-
msvc-win64[4].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\ESZZQXC4\xmrig-6.12.1-
msvc-win64[1].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[1].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[2].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[3].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[4].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[5].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[6].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[7].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\ethminer-
0.18.0-cuda10.0-windows-amd64[8].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\xmrig-6.10.0-
msvc-win64[1].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\xmrig-6.10.0-
msvc-win64[2].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\G31YA7OP\xmrig-6.10.0-
msvc-win64[3].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\ethminer-
0.18.0-cuda10.0-windows-amd64[1].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\ethminer-
0.18.0-cuda10.0-windows-amd64[2].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\ethminer-
0.18.0-cuda10.0-windows-amd64[3].zip a variant of Win64/[Link]
potentially unwanted application deleted
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[1].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[2].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[3].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[4].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[5].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Microsoft\Windows\INetCache\IE\NIPN19L7\xmrig-6.10.0-
msvc-win64[6].zip a variant of Win64/[Link] potentially unwanted application
contained infected files
C:\Users\drdia\AppData\Local\Temp\csrss\injector\[Link]
Win64/[Link].C trojan cleaned by deleting (after the next
restart)
C:\Users\drdia\AppData\Local\Temp\csrss\smb\[Link] multiple
detections,Win32/[Link].C trojan,Win32/[Link]
trojan,Win32/[Link] trojan,Win32/[Link]
trojan,Win32/[Link].U trojan,Win32/[Link]
trojan,Python/[Link] trojan,a variant of Win32/[Link]
trojan,Win32/[Link] trojan,Win32/[Link].F
trojan,Win32/[Link] trojan,a variant of Win32/[Link]
trojan,Win32/[Link].G trojan,Win32/[Link].X
trojan,Win32/[Link].W trojan,Win32/[Link].A trojan,a
variant of Win32/[Link].Y trojan,a variant of Win32/[Link]
trojan,a variant of Win32/[Link].W trojan,Win32/[Link]
trojan,Win32/[Link] trojan,a variant of Win32/[Link]
trojan,a variant of Win32/[Link] trojan,a variant of
Win32/[Link] trojan,Win32/[Link] trojan,a variant of
Win32/[Link] trojan,a variant of Win32/[Link].V trojan,a
variant of Win64/[Link] trojan,a variant of
Win32/[Link] trojan,Win32/[Link]
trojan,Win32/[Link].B trojan,Win32/[Link].A
trojan,a variant of Win32/[Link].Z trojan contained infected files
C:\Users\drdia\AppData\Local\Temp\csrss\wup\xarch\[Link] a variant of
Win64/[Link] potentially unwanted application cleaned by deleting (after
the next restart)
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of WinGo/RanumBot.X
trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.D trojan cleaned by deleting (after the next restart)
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.D trojan cleaned by deleting (after the next restart)
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.D trojan cleaned by deleting (after the next restart)
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.D trojan cleaned by deleting (after the next restart)
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.X trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.U trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of
WinGo/RanumBot.U trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\csrss\[Link] a variant of WinGo/Agent.H
trojan cleaned by deleting (after the next restart)
C:\Users\drdia\AppData\Local\Temp\G2vV91BN\[Link]
Win32/[Link] trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\RarSFX1\[Link] a variant of
Win32/[Link] trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\RarSFX1\[Link] a variant of
Win32/[Link] trojan cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\RarSFX2\[Link] detections,a
variant of Win32/[Link] trojan,a variant of MSIL/[Link]
trojan,a variant of Win32/[Link] trojan,a variant of Win32/[Link] trojan
cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\w4i0y4j8u3j3k8j6\[Link] a
variant of MSIL/[Link] application cleaned by deleting
C:\Users\drdia\AppData\Local\Temp\[Link] multiple
detections,Win32/[Link] trojan,a variant of Win32/[Link] suspicious
application,a variant of Win32/[Link] trojan cleaned by deleting
C:\Users\drdia\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-
13a3a9e97384}\ida@[Link] Win32/Westbyte.A potentially unwanted
application contained infected files
C:\Users\drdia\Desktop\plc\AGX_SETUP\[Link] a variant of Win32/[Link]
trojan cleaned by deleting
C:\Users\drdia\Desktop\plc\AGX_SETUP\[Link] a variant of Win32/[Link]
trojan cleaned by deleting
C:\Users\drdia\Downloads\Internet_Download_Accelerator_Pro_6.[Link] a
variant of Win32/Yandex.K potentially unwanted application,Win32/Westbyte.A
potentially unwanted application deleted
C:\Users\drdia\Downloads\N64D_SETUP.zip a variant of Win32/[Link] trojan
contained infected files
C:\Users\drdia\Downloads\[Link] a variant of
Win32/uTorrent.C potentially unwanted application,a variant of MSIL/WebCompanion.A
potentially unwanted application,a variant of Win32/WebCompanion.B potentially
unwanted application cleaned by deleting
C:\Windows\rss\[Link] a variant of Win32/[Link] trojan cleaned by
deleting
C:\Windows\rss\[Link] a variant of Win32/[Link] trojan cleaned by
deleting
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCach
e\Content\358EF424AAAEE505CCBE18AD71E8F724 a variant of Win32/[Link]
trojan cleaned by deleting
C:\Windows\System32\Tasks\ScheduledUpdate XML/[Link].B trojan
cleaned by deleting
C:\Windows\System32\[Link] Win64/Farfli.S trojan cleaned by deleting

You might also like