Scribd Logo
Upload

Welcome to Scribd!

  • Resultado de Escaneo RDP 15 OG

    Uploaded by

    Omar Gascon
    16 views8 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    16 views8 pages

    Resultado de Escaneo RDP 15 OG

    Uploaded by

    Omar Gascon

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 8

    Malwarebytes

    www.malwarebytes.com

    -Log Details-
    Scan Date: 4/1/24
    Scan Time: 10:57 AM
    Log File: 2260947a-f038-11ee-b13f-00155d001308.json

    -Software Information-
    Version: 4.6.10.316
    Components Version: 1.0.2286
    Update Package Version: 1.0.82888
    License: Premium

    -System Information-
    OS: Windows Server 2012 R2
    CPU: x64
    File System: NTFS
    User: 08-SRVRDP\

    -Scan Summary-
    Scan Type: Threat Scan
    Scan Initiated By: Manual
    Result: Completed
    Objects Scanned: 429241
    Threats Detected: 100
    Threats Quarantined: 0
    Time Elapsed: 9 min, 12 sec

    -Scan Options-
    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Detect
    PUM: Detect

    -Scan Details-
    Process: 0
    (No malicious items detected)

    Module: 0
    (No malicious items detected)

    Registry Key: 31
    Virus.Neshta, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SNAC, No Action By User, 1682,
    1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    TREE\Symantec Endpoint Protection\Symantec Endpoint Protection Error Analyzer, No
    Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    TASKS\{13524F07-684F-4C5E-889A-C0B90A2AE68C}, No Action By User, 1682, 1196847, , ,
    , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    PLAIN\{13524F07-684F-4C5E-889A-C0B90A2AE68C}, No Action By User, 1682, 1196847, , ,
    , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    TREE\Symantec Endpoint Protection\Symantec Endpoint Protection Error Processor, No
    Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    TASKS\{0B38FA66-5230-4E6D-80C6-9903FEFDF731}, No Action By User, 1682, 1196847, , ,
    , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\
    PLAIN\{0B38FA66-5230-4E6D-80C6-9903FEFDF731}, No Action By User, 1682, 1196847, , ,
    , , ,
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\
    Microsoft Edge, No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\MICROSOFT\ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-
    B17A-45AE-9F64-1857B5D58CEE}, No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1141\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1142\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1143\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1144\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1145\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1151\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1152\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1153\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1156\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-181284173-1866072105-440528605-1159\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-522276997-1308634477-379793411-1004\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-522276997-1308634477-379793411-1005\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKU\S-1-5-21-522276997-1308634477-379793411-500\SOFTWARE\MICROSOFT\
    ACTIVE SETUP\INSTALLED COMPONENTS\{9459C573-B17A-45AE-9F64-1857B5D58CEE}, No Action
    By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\CLASSES\TYPELIB\{C9C2B807-7731-4F34-81B7-44FF7779522B},
    No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\CLASSES\INTERFACE\{C9C2B807-7731-4F34-81B7-
    44FF7779522B}, No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{C9C2B807-7731-4F34-81B7-
    44FF7779522B}, No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{C9C2B807-7731-4F34-81B7-
    44FF7779522B}, No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MicrosoftEdgeElevationService,
    No Action By User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SBOClientAgent, No Action By
    User, 1682, 1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\
    InstallShield_{7BA03320-C23E-44EF-ABA2-79768FD277EC}, No Action By User, 1682,
    1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\
    InstallShield_{E30C5D6E-D6D2-465D-96E0-FB94CB2BB14D}, No Action By User, 1682,
    1196847, , , , , ,
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\
    InstallShield_{889991FA-CE9B-42A9-A8DA-228219FA65AC}, No Action By User, 1682,
    1196847, , , , , ,

    Registry Value: 1
    Virus.Neshta, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\
    SHAREDDLLS|C:\PROGRAM FILES (X86)\SAP\SAP BUSINESS ONE CLIENT AGENT\
    B1CLIENTAGENT.EXE, No Action By User, 1682, 1196847, , , , , ,

    Registry Data: 1
    Hijack.ExeFile, HKLM\SOFTWARE\CLASSES\EXEFILE\SHELL\OPEN\COMMAND|, No Action By
    User, 3497, 293008, 1.0.82888, , ame, , ,

    Data Stream: 0
    (No malicious items detected)

    Folder: 0
    (No malicious items detected)

    File: 67
    Generic.Malware.AI.DDS, C:\USERS\GTE.FINANZAS\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\CONTADOR.DUNO\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\FACTURACION.DUCA\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\JEFE.ADMIN DUNO\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\CONTADOR.DUCA\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\COBRANZAS.DUCA\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    AEA66E754335451881B78B89A4F224AB,
    AE34674743423DF4F0BA4E3B7FF671DAFE885918A7D0755A49C7CB133153FA80
    Generic.Malware.AI.DDS, C:\WINDOWS\SVCHOST.COM, No Action By User, 1000002, 0,
    1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\JEFE.ADMIN DUCA\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B8ECE4272B3E1C86F1C57B955A45CA9F,
    C719E88E605DCA917A5215C1D93E35A24E5DBAE38E45B9224034CB6693D417FC
    Generic.Malware.AI.DDS, C:\USERS\GTE.FINANZAS.08-SRVRDP\WINDOWS\SVCHOST.COM, No
    Action By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    AEA66E754335451881B78B89A4F224AB,
    AE34674743423DF4F0BA4E3B7FF671DAFE885918A7D0755A49C7CB133153FA80
    Generic.Malware.AI.DDS, C:\USERS\ANALISTA.VENTAS\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    AEA66E754335451881B78B89A4F224AB,
    AE34674743423DF4F0BA4E3B7FF671DAFE885918A7D0755A49C7CB133153FA80
    Generic.Malware.AI.DDS, C:\USERS\FACTURACION.DUNO\WINDOWS\SVCHOST.COM, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    AEA66E754335451881B78B89A4F224AB,
    AE34674743423DF4F0BA4E3B7FF671DAFE885918A7D0755A49C7CB133153FA80
    Generic.Malware.AI.DDS, C:\USERS\FACTURACION.DUNO\APPDATA\LOCAL\TEMP\3582-490\
    SAPBOUICOM.EXE, No Action By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68,
    dds, 02761264, A4A64867B115DCB6E4ED5D1440807190,
    997F41B815AF81E72368D83E14F2E6465B0FD9D909260C5ED5F999CA571D82CA
    Generic.Malware.AI.DDS, C:\USERS\CONTADOR.DUNO\APPDATA\LOCAL\TEMP\{18F1C903-4F5A-
    46E2-94D7-BCA2536AE83B}\ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888,
    3817FCFECA2A8AF0A9E104C1, dds, 02761264, F6472FEF4B02D1A5D1601619AB20DFE9,
    AC55EC9CC8AB8C62A189CB4D269BDBA8013AACBDE7BCE745A74CA77F6966500A
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\{142111AC-EA06-45FD-A684-ECDA06AF006D}\
    ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1,
    dds, 02761264, F6472FEF4B02D1A5D1601619AB20DFE9,
    AC55EC9CC8AB8C62A189CB4D269BDBA8013AACBDE7BCE745A74CA77F6966500A
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\3582-490\SYMERR.EXE, No Action By User,
    1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    54D561BAE7E633CF321AA658845EF4AC,
    62457DCD18076ADE9A1DF6D794D83AF1FB3E28E6200AF88F8DFB9B604BCC5E72
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\{EC489753-CED1-4B04-89BB-F7105B3C4ACF}\
    ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1,
    dds, 02761264, 85A22745CCE5E737AF29C3C176E265C6,
    E03541797EC0C2F21DFDC653A826EEEB81A4ED12E68F8C0C358CA8209031EC76
    Generic.Malware.AI.DDS, C:\USERS\GTE.FINANZAS\APPDATA\LOCAL\TEMP\3582-490\
    TOASTUI.EXE, No Action By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68,
    dds, 02761264, 2F8F43EE85AB11EE4F56F480DA273B65,
    EB422BE2E3D136E0A044DC6FDAEA0711A3DCB58E2A711397DC2BE04838021D4F
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\{475524BC-702F-438A-A060-36FF2C7A8222}\
    ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1,
    dds, 02761264, E2613BC0311EF691FD2E920572F8853C,
    31ABBAB289662F1CEC4E69BE83208911201860C9980CF094E421BB01AAD785E7
    Generic.Malware.AI.DDS, C:\USERS\GTE.FINANZAS.08-SRVRDP\APPDATA\LOCAL\TEMP\3582-
    490\TOASTUI.EXE, No Action By User, 1000002, 0, 1.0.82888,
    CA2A8B373817FCFDAE6E0F68, dds, 02761264, 2F8F43EE85AB11EE4F56F480DA273B65,
    EB422BE2E3D136E0A044DC6FDAEA0711A3DCB58E2A711397DC2BE04838021D4F
    Generic.Malware.AI.DDS, C:\USERS\CONTADOR.DUNO\APPDATA\LOCAL\TEMP\{47A89C20-DE65-
    4E07-8057-E4CF594E7DA4}\ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888,
    3817FCFECA2A8AF0A9E104C1, dds, 02761264, F6472FEF4B02D1A5D1601619AB20DFE9,
    AC55EC9CC8AB8C62A189CB4D269BDBA8013AACBDE7BCE745A74CA77F6966500A
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\{272558EB-B2F0-43D4-8B76-289F433DEDC4}\
    ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1,
    dds, 02761264, F6472FEF4B02D1A5D1601619AB20DFE9,
    AC55EC9CC8AB8C62A189CB4D269BDBA8013AACBDE7BCE745A74CA77F6966500A
    Generic.Malware.AI.DDS, C:\WINDOWS\TEMP\{C249B947-BB0C-40F6-A8A9-E4592E6F5825}\
    ISBEW64.EXE, No Action By User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1,
    dds, 02761264, F6472FEF4B02D1A5D1601619AB20DFE9,
    AC55EC9CC8AB8C62A189CB4D269BDBA8013AACBDE7BCE745A74CA77F6966500A
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\
    14.3.8259.5000.105\BIN64\SNAC64.EXE, No Action By User, 1682, 1196847, 1.0.82888, ,
    ame, , 0876CD54D404BECE7A9A2C4A8D1F2646,
    2BB6A97C1D1D9A8A73ADFD6DC263F9294763F20B86B4E2CD9EE9845D11AF625A
    Virus.Neshta, C:\WINDOWS\SYSTEM32\TASKS\Symantec Endpoint Protection\Symantec
    Endpoint Protection Error Analyzer, No Action By User, 1682, 1196847, , , , ,
    D32E41DB9BE3C96E34EC1ED54488CBFB,
    86D989BD47AF3C5E34D4484A542898D6A5808251647258CDB04505AC2AB77917
    Virus.Neshta, C:\WINDOWS\SYSTEM32\TASKS\Symantec Endpoint Protection\Symantec
    Endpoint Protection Error Processor, No Action By User, 1682, 1196847, , , , ,
    78B432ABC6B1D06BC31F08D17FDC60F9,
    0594FA0A41AD7869B2B55B0FB6C01BA25941C304868EB74E51B1C6DEE20ECA9B
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\
    14.3.8259.5000.105\BIN64\SYMERR.EXE, No Action By User, 1682, 1196847, 1.0.82888, ,
    ame, , 54D561BAE7E633CF321AA658845EF4AC,
    62457DCD18076ADE9A1DF6D794D83AF1FB3E28E6200AF88F8DFB9B604BCC5E72
    Virus.Neshta, C:\PROGRAM FILES (X86)\MICROSOFT\EDGE\APPLICATION\109.0.1518.140\
    INSTALLER\SETUP.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    6BDF2BA9A91B7FB0D8D1166CD86EB9C5,
    DD206B4484F4D58ED6F052AE15A41BCE51D0B1F0EF82F28985610E67C6A9EC71
    Virus.Neshta, C:\PROGRAM FILES (X86)\MICROSOFT\EDGE\APPLICATION\109.0.1518.140\
    ELEVATION_SERVICE.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    B3AFADFF059BEEECF049419BF871931D,
    3EBD2E7CBD2BA7F299ED9100B87A3FA415B21709BCCFDFF1A90DA102FA77696E
    Virus.Neshta, C:\PROGRAM FILES (X86)\SAP\SAP BUSINESS ONE CLIENT AGENT\
    B1CLIENTAGENT.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    4B2200AD8642C1C5B86D83CCBCF110B5,
    23A1400140FB34FE117A5B9C4F6F56CC3DD16113105E38C2F9A74A44FA0D6F31
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\APPDATA\LOCAL\TEMP\7\3582-490\
    WISEFORCEDELETERPORTABLE_1.5.3_DEVTEST3.PAF.EXE, No Action By User, 1000002, 0,
    1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    BE72AAC9DDC6E02EB0DDB0ABDDD701FD,
    4ACF787F53E15500D5469D02E7A702C0A725271A6B14911B1259DEE9BCD48AFC
    Virus.Neshta, C:\WINDOWS\INSTALLER\{889991FA-CE9B-42A9-A8DA-228219FA65AC}\
    ARPPRODUCTICON.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    90B842AE39FCF067FFEFDE7B6B6532FF,
    10595D50BD1E28B1EEFE94EB4C472F31FB6969C69E4D33CF7109336B0D791F47
    Virus.Neshta, C:\WINDOWS\INSTALLER\{7BA03320-C23E-44EF-ABA2-79768FD277EC}\
    ARPPRODUCTICON.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    11F1FC8C44432251AAB632F229F67FCA,
    49E634DC809D3936ADD52610B61C49099D3E968A4548A52090D9410BB1F61B33
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\
    SEPLIVEUPDATE.EXE, No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    5D8890481253C77C7A159C798935BFF3,
    84235ECC8219C8F9527495A0F6668CACE3FB24E6E735CD46C29AA2C03430AB6C
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\DOSCAN.EXE, No
    Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    5D8890481253C77C7A159C798935BFF3,
    84235ECC8219C8F9527495A0F6668CACE3FB24E6E735CD46C29AA2C03430AB6C
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\SMC.EXE, No
    Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    5D8890481253C77C7A159C798935BFF3,
    84235ECC8219C8F9527495A0F6668CACE3FB24E6E735CD46C29AA2C03430AB6C
    Virus.Neshta, C:\PROGRAM FILES (X86)\SAP\SAP BUSINESS ONE\B1BROWSER.EXE, No Action
    By User, 1682, 1196847, 1.0.82888, , ame, , 1EB18330ADF898C8DB78590AC924C0F8,
    A638C5A1F233B955564F9C8FB662009F8CD4C152A41554D219AF21EB72B0E012
    Virus.Neshta, C:\PROGRAM FILES (X86)\INSTALLSHIELD INSTALLATION INFORMATION\
    {7BA03320-C23E-44EF-ABA2-79768FD277EC}\SETUP.EXE, No Action By User, 1682, 1196847,
    1.0.82888, , ame, , EAEC0F958B7B525F29C9943088C843CB,
    DC893AD70B144B20993BCE160F186A3D5371CF132648F76BE72C2DA3FE932910
    Virus.Neshta, C:\PROGRAM FILES\SYMANTEC\SYMANTEC ENDPOINT PROTECTION\CHECKSUM.EXE,
    No Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    5D8890481253C77C7A159C798935BFF3,
    84235ECC8219C8F9527495A0F6668CACE3FB24E6E735CD46C29AA2C03430AB6C
    Virus.Neshta, C:\PROGRAM FILES (X86)\INSTALLSHIELD INSTALLATION INFORMATION\
    {E30C5D6E-D6D2-465D-96E0-FB94CB2BB14D}\SETUP.EXE, No Action By User, 1682, 1196847,
    1.0.82888, , ame, , 40CA927ABBF258A00415E0F7899D3889,
    89F55BFE95BBBA2D1FBB8EB4BC77DD28BAC3EED52C3913365D90C1CCB4564841
    Generic.Malware.AI.DDS, C:\USERS\COBRANZAS.DUNO\DOWNLOADS\EPSON15229 (1).EXE, No
    Action By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    10AF88EAC825ED05E17F349AFAD4A9C3,
    DDB7DBBB792BF2085D90020C6E8D7C1CDECAB37AFBE98DF60CED0EF481F797D9
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\WISEFORCEDELETERPORTABLE\
    WISEFORCEDELETERPORTABLE.EXE, No Action By User, 1000002, 0, 1.0.82888,
    CA2A8B373817FCFDAE6E0F68, dds, 02761264, 258A8D32055006F1739BBFE6202976DC,
    787FBBA89E77091A02D448CF6B3C61AD266B96CD0D18C634C02870E3CC1FC946
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\NETSCAN.EXE, No Action By
    User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    DC5AC1D5327B62822CA3C98A583CB978,
    D7BCBB321DAB19EE507FE1806C7C733883771D4A714F15A9EBCA9F25D7EB3E3D
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\POWERTOOL_EN_20151209\
    POWERTOOL32.EXE, No Action By User, 1000002, 0, 1.0.82888,
    CA2A8B373817FCFDAE6E0F68, dds, 02761264, 46A9F4C02E5FF821D7D2DA65777B7D8D,
    4677D4EADC42CBE21AF658D74D5EA924EB19978D5C65032D407C3708A2522386
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\WWW\SPFRE.EXE, No Action By
    User, 1000002, 0, 1.0.82888, 3817FCFECA2A8AF0A9E104C1, dds, 02761264,
    08C7D5CF1CF8A9D1EA8200AE7C1B0210,
    BC9472A69FD05C748FF2512381D3654C86415CC073390A9BF31AA464AB12BBAC
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\POWERTOOL_EN_20151209\
    POWERTOOL64.EXE, No Action By User, 1000002, 0, 1.0.82888,
    CA2A8B373817FCFDAE6E0F68, dds, 02761264, 5BE950EDE67B2534B249BBF41AAB9F5D,
    59AFFCD3AC6139F0F27F15F1F3254F2A264B837ED9E98C5EEE72B5AF48FFC8F6
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\REVOUNINSTALLER_PORTABLE\
    REVOUPORT.EXE, No Action By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68,
    dds, 02761264, BDBD5C86F8FEFD6F40125CE76B6D0645,
    6438B019E682A75CC2AAEA6803088D4136651A86B43E4BEC96FA13D5F2A6A182
    Generic.Malware.AI.DDS, C:\USERS\ADMINISTRADOR\MUSIC\WWW\XRDP.V2.1.EXE, No Action
    By User, 1000002, 0, 1.0.82888, CA2A8B373817FCFDAE6E0F68, dds, 02761264,
    B3CC51A2EBE3D35E2225C42709ECDA67,
    8F14C68ABB0091CA3BE55E8C2A15277C87EB6E8F84922F33549BD6BE1CD0C3C9
    Virus.Neshta, C:\PROGRAM FILES (X86)\INSTALLSHIELD INSTALLATION INFORMATION\
    {889991FA-CE9B-42A9-A8DA-228219FA65AC}\SETUP.EXE, No Action By User, 1682, 1196847,
    1.0.82888, , ame, , A7D900EA83A6F1660181E3BA51FD6E61,
    0088AD55E2D59116A61952E157D37A72D83799F434730729DD79123631C1641F
    RiskWare.PowerTool, C:\USERS\ADMINISTRADOR\MUSIC\POWERTOOL_EN_20151209.ZIP, No
    Action By User, 11117, 1168567, 1.0.82888, 57D65393EE9656C22EE12192, dds, 02761264,
    5B41CBDBA5C4D6F98F055D7AAE3B8EB6,
    2677B28DF4CEABC7ED356A77BF851396F0A922394E238DC9101EAEDDA5C9B3BF
    Virus.Neshta, C:\PROGRAM FILES (X86)\SAP\SAP BUSINESS ONE\SAPBOUICOM.EXE, No Action
    By User, 1682, 1196847, 1.0.82888, , ame, , A4A64867B115DCB6E4ED5D1440807190,
    997F41B815AF81E72368D83E14F2E6465B0FD9D909260C5ED5F999CA571D82CA
    Mimikatz.Spyware.Stealer.DDS, C:\USERS\ADMINISTRADOR\MUSIC\MIMIKATZ1.ZIP, No Action
    By User, 1000002, 0, 1.0.82888, 88F3E282BB019C10BD2057F2, dds, 02761264,
    8DD7F6319DAAFF4BAF1A912EFD408D7C,
    7148473C917696F3D2B932FD53CE0DCB8C8CFCB13CDFDFEC840719C85F3F1351
    Virus.Neshta, C:\PROGRAMDATA\Microsoft\Windows\Start Menu\Programs\Microsoft
    Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    B586B4B01AA13170B56D3757C8C8E496,
    E09374F52364C7B5FA24F9153190E3C187EE945D12EC2456BA066E9F382EFC6B
    Virus.Neshta, C:\USERS\ADMINISTRADOR\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    47895B417D72BB271B3877B77B1C6D7E,
    B67B3BFB8F7D409C3D582D73D0A88A82413991FE15BAB2763FCA239E27C1F0CE
    Virus.Neshta, C:\USERS\ANALISTA.VENTAS\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    70C8357A7B6C36A381EB408B86D00C58,
    9DE468EE9E23EEDED8502E6B9CC198DFFE7987565F1CCFB061B22D779EAAD6F3
    Virus.Neshta, C:\USERS\COBRANZAS.DUCA\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    FF1C1EFEF04577A436FF34C60B5DD036,
    D707DD196A0272DBF25D7565368A17C3CFAC755F5BA76F1F99ADFCB73128BFA1
    Virus.Neshta, C:\USERS\COBRANZAS.DUNO\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    20998C770F24B7CCD27C9D0F0D7EA230,
    1F5E9329A2580717F2C5A3BA0ACCF288EE8B3BB117ECFE6317C317A63464596C
    Virus.Neshta, C:\USERS\CONTADOR.DUCA\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    F783A75C6A11B647CD62D1EE7D9D4C40,
    FA2716A2F8AC6F76152EAFAF667DB8C1FDEF541FC8EDBC260A5A493618ACEA57
    Virus.Neshta, C:\USERS\CONTADOR.DUNO\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    D519A5938B8DB6581430DDA4BD30DD60,
    6520F2CA0FD3E0C8BE80DD25D75F4C3B5D9B505C046F94189F6DD120C6664EC8
    Virus.Neshta, C:\USERS\FACTURACION.DUCA\APPDATA\ROAMING\Microsoft\Internet
    Explorer\Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    A94F19B48F0C75C91386E902426807A7,
    728EB375E07BF9BF5852DBDD9A5230D486A2E8A7AAA5F67371437E6153C4950A
    Virus.Neshta, C:\USERS\FACTURACION.DUNO\APPDATA\ROAMING\Microsoft\Internet
    Explorer\Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    AD47EF747B58BEF8A6C2F1C8BBF422BC,
    E1097F746DD68B41CFF6B709BDB8E895F33FE8B0E8F9D1868F47735E60334EFA
    Virus.Neshta, C:\USERS\GTE.ADMIN.08-SRVRDP\APPDATA\ROAMING\Microsoft\Internet
    Explorer\Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    2FEA00BA59BE2B69002B42DE27F7FCE3,
    AAD9B6E8702E4FDFD09479642E7DCB1CA4BD733B149BA5231F48E6BB351EFB44
    Virus.Neshta, C:\USERS\GTE.FINANZAS.08-SRVRDP\APPDATA\ROAMING\Microsoft\Internet
    Explorer\Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    4708230B1A44D047B025012CEBA3E810,
    7DC5F673BB0773ED72819A829E7E19BEB92FD3600568CA46D9AE050D1969B28F
    Virus.Neshta, C:\USERS\GTE.FINANZAS\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    2DC51FFF80C5841D818FA0182313056E,
    69C26D569857F354D1F3CF81A9E684DD682B2B70189873298A5C3F644831C37E
    Virus.Neshta, C:\USERS\JEFE.ADMIN DUCA\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    DD01C1699AE3A1DE7A2EC3B27651AE3D,
    63998C1B628FD40B22A335176E0417E026CA2BC047A60BA91AB1A7D8765FE0B4
    Virus.Neshta, C:\USERS\JEFE.ADMIN DUNO\APPDATA\ROAMING\Microsoft\Internet Explorer\
    Quick Launch\Microsoft Edge.lnk, No Action By User, 1682, 1196847, , , , ,
    BC4601A9185D19E2E72A6D27B8E3338F,
    BF95CC0F24E5B0DFB94824CA9CFE23104C3201A39B79D1B93D989BB3AD3D8FB1
    Virus.Neshta, C:\PROGRAM FILES (X86)\MICROSOFT\EDGE\APPLICATION\MSEDGE.EXE, No
    Action By User, 1682, 1196847, 1.0.82888, , ame, ,
    DCECFAA3FA8AF9D84B57BCDF0F251440,
    D2EE612C0631DDF98C4E248E6D5CFEF0E94A52AC1DE6F41EE5893C7EFCD3F2DD

    Physical Sector: 0
    (No malicious items detected)

    WMI: 0
    (No malicious items detected)

    (end)

    You might also like