in effetti avevo un po di minacce circa 30 piu altri file sospetti nelle cartelle temp
Malwarebytes
www.malwarebytes.com
-Dettagli log-
Data scansione: 31/03/20
Ora scansione: 22:13
File di log: 091e31c0-738c-11ea-be2e-40b07642d9ac.json
-Informazioni software-
Versione: 4.1.0.56
Versione componenti: 1.0.859
Aggiorna versione pacchetto: 1.0.21692
Licenza: Trial
-Informazioni sistema-
SO: Windows 10 (Build 18362.720)
CPU: x64
File system: NTFS
Utente: DESKTOP-FLAUC24\Lorenzo
-Riepilogo scansione-
Tipo di scansione: Ricerca elementi nocivi
Scansione avviata da: Manuale
Risultati: Completata
Elementi analizzati: 272705
Minacce rilevate: 30
Minacce messe in quarantena: 30
Tempo impiegato: 1 min, 5 sec
-Opzioni di scansione-
Memoria: Attivata
Esecuzioni automatiche: Attivata
File system: Attivata
Archivi compressi: Attivata
Rootkit: Disattivata
Analisi euristica: Attivata
PUP: Rilevare
PUM: Rilevare
-Dettagli scansione-
Processo: 0
(Nessun elemento nocivo rilevato)
Modulo: 0
(Nessun elemento nocivo rilevato)
Chiave di registro: 6
Trojan.FakeMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WINDOWSTASKCOREUPDATE, In quarantena, 3120, 721978, , , ,
Trojan.FakeMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E8419FA0-1AEA-4B12-A454-75F5453D624A}, In quarantena, 3120, 721978, , , ,
Trojan.FakeMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{E8419FA0-1AEA-4B12-A454-75F5453D624A}, In quarantena, 3120, 721978, , , ,
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4B5C3C0B-70EB-4DB6-A61B-10553E9B1497}, In quarantena, 1218, 758827, , , ,
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\BOOT\{4B5C3C0B-70EB-4DB6-A61B-10553E9B1497}, In quarantena, 1218, 758827, , , ,
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\nv4drv, In quarantena, 1218, 758827, 1.0.21692, , ame,
Valore di registro: 2
Trojan.Agent.VBS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4B5C3C0B-70EB-4DB6-A61B-10553E9B1497}|PATH, In quarantena, 1218, 758828, 1.0.21692, , ame,
Trojan.FakeMS, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{E8419FA0-1AEA-4B12-A454-75F5453D624A}|PATH, In quarantena, 3120, 721980, 1.0.21692, , ame,
Dati di registro: 4
PUM.Optional.DisableTaskMgr, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DISABLETASKMGR, Sostituito, 13614, 293320, 1.0.21692, , ame,
PUM.Optional.DisableTaskMgr, HKU\S-1-5-21-832194469-2089485798-3820565594-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DISABLETASKMGR, Sostituito, 13614, 293320, 1.0.21692, , ame,
PUM.Optional.DisableTaskMgr, HKU\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DISABLETASKMGR, Sostituito, 13614, 293320, 1.0.21692, , ame,
PUM.Optional.DisableTaskMgr, HKU\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DISABLETASKMGR, Sostituito, 13614, 293320, 1.0.21692, , ame,
Flusso di dati: 0
(Nessun elemento nocivo rilevato)
Cartella: 8
Trojan.Agent.VBS.Generic, C:\USERS\LORENZO\APPDATA\ROAMING\D0DE36D21988494C8544CD7B4A99B4FD, In quarantena, 3769, 721982, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\USERS\LORENZO\APPDATA\ROAMING\FB49FE9AE9EC41F9BCA883549594EF29, In quarantena, 3769, 721982, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\4D782DA75E284CB4A0B896EE5400FB36, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\932C90758B60467AA3AAF10398867432, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\BF7E217E6A1F43F4B125E9BABE86F288, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\C50A3FFDE2334CA1ADC882C2E4B9021A, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\CCDFA43B99634B3CB9829E94653666CC, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\E137B0FB95EA494FAB42124B61B3C3FE, In quarantena, 3769, 763708, 1.0.21692, , ame,
File: 10
Trojan.FakeMS, C:\WINDOWS\SYSTEM32\TASKS\WINDOWSTASKCOREUPDATE, In quarantena, 3120, 721978, 1.0.21692, , ame,
Trojan.Agent.VBS, C:\WINDOWS\SYSTEM32\TASKS\NV4DRV, In quarantena, 1218, 758827, , , ,
Trojan.Agent.VBS.Generic, C:\USERS\LORENZO\APPDATA\ROAMING\D0DE36D21988494C8544CD7B4A99B4FD\45B0EFF7D849429B9264899C0B07CA8C.vbe, In quarantena, 3769, 721982, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\USERS\LORENZO\APPDATA\ROAMING\FB49FE9AE9EC41F9BCA883549594EF29\A1F61657F95740FAA0D5A4EA1E34062C.vbe, In quarantena, 3769, 721982, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\4D782DA75E284CB4A0B896EE5400FB36\E9BEBF83D20748BE8F3230D3914F759F.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\932C90758B60467AA3AAF10398867432\809FA69F43C04CDFB1EC83C82860E251.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\BF7E217E6A1F43F4B125E9BABE86F288\84A0B77F4B5641088524085320CFE2DD.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\C50A3FFDE2334CA1ADC882C2E4B9021A\0594B0BEF3D848F3A0A716C90A1A4786.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\CCDFA43B99634B3CB9829E94653666CC\84E5872576174746A81389CCC6EC05F3.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Trojan.Agent.VBS.Generic, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\E137B0FB95EA494FAB42124B61B3C3FE\A745AD5418EC429797B4B2E9CB911DE4.vbe, In quarantena, 3769, 763708, 1.0.21692, , ame,
Settore fisico: 0
(Nessun elemento nocivo rilevato)
WMI: 0
(Nessun elemento nocivo rilevato)
(end)