Perlihatkan Tulisan
1
Konsultasi Virus / cara membersihkan New Heur. Lowrep (Cloudnet) bagaimana???
« pada: Juli 03, 2018, 10:29:36 AM »
halo tim smadav
bagaimana cara membersihkan new heur.lowrep (Cloudnet) ini ya?
- Setiap menscan pc dengan Smadav atau software AV lainnya, setelah beberapa saat software akan terclose dan terdelete sehingga harus diinstal ulang kembali software AV tersebut termasuk Smadav
- entah permasalahan windows atau akibat virus ini pc tidak bisa masuk ke safemode walaupun di restart melalui msconfig
- semua aplikasi MS Office tidak bisa terhubung dengan printer, walaupun aplikasi pdf printer
- pc sudah jelas lebih terasa berat
di tab one virus by user ada 4 aplikasi yaitu:
mrt.exe (process)
csrss.exe (process)
cloudnet.exe (process)
cloudnet.exe (startup)
ini hasil log dari quick scan SMADAV:
==============================
Log File of Smadav 2018 Rev. 11.9
==============================
Scanning Results :
=> Time & Date : 10:10:20, on 07-03-2018
=> Finishing Time : 24 minutes,44 seconds
=> Folder Scanned :30982
=> File Scanned : 186509
=> File Detected : 2
=> File Cleaned : 0
=> File Skipped : 0
=> Value Scanned : 1441
=> Value Detected: 1
=> Value Fixed: 0
=> Path Scanned: 0
=> Path Hidden: 0
=> Path Unhidden: 0
==============================
Before Scanning
==============================
Suspected Paths :
=> Fine(Level 1) as : 1 Process
-F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\SysWOW64\NLSSRV32.EXE
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\System32\certutil.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> Fine(Level 1) as : 1 Process
-C:\ProgramData\DatacardService\DCSHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\CCleaner\CCleaner.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\rss\csrss.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> Fine(Level 1) as : 1 Process
-SmadavProtect64.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\Documents\app\Internet Download Manager IDM 6.21 Build 14 Final Incl. Crack [ATOM]\Crack\IDMan.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Trojan Remover\Trjscan.exe
Running Processes :
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\wininit.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\SysWOW64\NLSSRV32.EXE
=> N/A
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> N/A
=> C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> N/A
=> C:\Windows\windefender.exe
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskeng.exe
=> N/A
=> C:\Windows\explorer.exe
=> C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Windows\System32\cmd.exe
=> N/A
=> C:\Windows\System32\certutil.exe
=> N/A
=> C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> N/A
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> C:\ProgramData\DatacardService\DCSHelper.exe
=> N/A
=> N/A
=> C:\Program Files\CCleaner\CCleaner.exe
=> C:\Windows\rss\csrss.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> C:\Windows\System32\svchost.exe
=> SmadavProtect64.exe
=> C:\Windows\System32\SearchProtocolHost.exe
=> C:\Windows\System32\SearchFilterHost.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
==============================
After Scanning
==============================
Suspected Paths :
=> Fine(Level 2) as : 2 Process
-C:\Windows\rss\csrss.exe
=> Fine(Level 1) as : 1 Process
-F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\SysWOW64\NLSSRV32.EXE
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> Fine(Level 1) as : 1 Process
-C:\ProgramData\DatacardService\DCSHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\CCleaner\CCleaner.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> Fine(Level 1) as : 1 Process
-SmadavProtect64.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
=> Fine(Level 1) as : 1 Process
-C:\Users\nke\AppData\Local\Temp\csrss\mrt.exe
=> Fine(Level 1) as : 1 Process
-C:\Users\nke\AppData\Local\Temp\csrss\smb\XVznwLpQBvZ\Eternalblue-2.2.0.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\Documents\app\Internet Download Manager IDM 6.21 Build 14 Final Incl. Crack [ATOM]\Crack\IDMan.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Trojan Remover\Trjscan.exe
Running Processes :
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\wininit.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\SysWOW64\NLSSRV32.EXE
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> N/A
=> C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> N/A
=> C:\Windows\windefender.exe
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskeng.exe
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Windows\System32\cmd.exe
=> N/A
=> N/A
=> C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> N/A
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> C:\ProgramData\DatacardService\DCSHelper.exe
=> C:\Program Files\CCleaner\CCleaner.exe
=> C:\Windows\rss\csrss.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> SmadavProtect64.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
=> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Users\nke\AppData\Local\Temp\csrss\mrt.exe
=> C:\Windows\rss\csrss.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\explorer.exe
=> N/A
=> C:\Users\nke\AppData\Local\Temp\csrss\smb\XVznwLpQBvZ\Eternalblue-2.2.0.exe
=> N/A
Detected Virus :
=> New Heur.LowRep(cloudnet)
-Detected Process [Killed]
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> New Heur.LowRep(cloudnet)
-Infected File
-C:\Users\nke\AppData\Local\Temp\csrss\cloudnet.exe
Infected Registry Values :
=> CloudNet
-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
-New Heur.Startup Suspected Virus Value
bagaimana cara membersihkan new heur.lowrep (Cloudnet) ini ya?
- Setiap menscan pc dengan Smadav atau software AV lainnya, setelah beberapa saat software akan terclose dan terdelete sehingga harus diinstal ulang kembali software AV tersebut termasuk Smadav
- entah permasalahan windows atau akibat virus ini pc tidak bisa masuk ke safemode walaupun di restart melalui msconfig
- semua aplikasi MS Office tidak bisa terhubung dengan printer, walaupun aplikasi pdf printer
- pc sudah jelas lebih terasa berat
di tab one virus by user ada 4 aplikasi yaitu:
mrt.exe (process)
csrss.exe (process)
cloudnet.exe (process)
cloudnet.exe (startup)
ini hasil log dari quick scan SMADAV:
==============================
Log File of Smadav 2018 Rev. 11.9
==============================
Scanning Results :
=> Time & Date : 10:10:20, on 07-03-2018
=> Finishing Time : 24 minutes,44 seconds
=> Folder Scanned :30982
=> File Scanned : 186509
=> File Detected : 2
=> File Cleaned : 0
=> File Skipped : 0
=> Value Scanned : 1441
=> Value Detected: 1
=> Value Fixed: 0
=> Path Scanned: 0
=> Path Hidden: 0
=> Path Unhidden: 0
==============================
Before Scanning
==============================
Suspected Paths :
=> Fine(Level 1) as : 1 Process
-F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\SysWOW64\NLSSRV32.EXE
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\System32\certutil.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> Fine(Level 1) as : 1 Process
-C:\ProgramData\DatacardService\DCSHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\CCleaner\CCleaner.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\rss\csrss.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> Fine(Level 1) as : 1 Process
-SmadavProtect64.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\Documents\app\Internet Download Manager IDM 6.21 Build 14 Final Incl. Crack [ATOM]\Crack\IDMan.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Trojan Remover\Trjscan.exe
Running Processes :
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\wininit.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\SysWOW64\NLSSRV32.EXE
=> N/A
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> N/A
=> C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> N/A
=> C:\Windows\windefender.exe
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskeng.exe
=> N/A
=> C:\Windows\explorer.exe
=> C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Windows\System32\cmd.exe
=> N/A
=> C:\Windows\System32\certutil.exe
=> N/A
=> C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> N/A
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> C:\ProgramData\DatacardService\DCSHelper.exe
=> N/A
=> N/A
=> C:\Program Files\CCleaner\CCleaner.exe
=> C:\Windows\rss\csrss.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> C:\Windows\System32\svchost.exe
=> SmadavProtect64.exe
=> C:\Windows\System32\SearchProtocolHost.exe
=> C:\Windows\System32\SearchFilterHost.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
==============================
After Scanning
==============================
Suspected Paths :
=> Fine(Level 2) as : 2 Process
-C:\Windows\rss\csrss.exe
=> Fine(Level 1) as : 1 Process
-F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> Fine(Level 1) as : 1 Process
-C:\Windows\SysWOW64\NLSSRV32.EXE
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> Fine(Level 1) as : 1 Process
-C:\ProgramData\DatacardService\DCSHelper.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Program Files\CCleaner\CCleaner.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> Fine(Level 1) as : 1 Process, 1 Startup
-C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> Fine(Level 1) as : 1 Process
-SmadavProtect64.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
=> Fine(Level 1) as : 1 Process
-C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
=> Fine(Level 1) as : 1 Process
-C:\Users\nke\AppData\Local\Temp\csrss\mrt.exe
=> Fine(Level 1) as : 1 Process
-C:\Users\nke\AppData\Local\Temp\csrss\smb\XVznwLpQBvZ\Eternalblue-2.2.0.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\Documents\app\Internet Download Manager IDM 6.21 Build 14 Final Incl. Crack [ATOM]\Crack\IDMan.exe
=> Fine(Level 1) as : 1 Startup
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> Fine(Level 1) as : 1 Startup
-C:\Program Files (x86)\Trojan Remover\Trjscan.exe
Running Processes :
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\wininit.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> F:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
=> C:\Windows\System32\taskeng.exe
=> C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\SysWOW64\NLSSRV32.EXE
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
=> N/A
=> C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
=> N/A
=> C:\Windows\windefender.exe
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\taskeng.exe
=> N/A
=> C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Windows\System32\cmd.exe
=> N/A
=> N/A
=> C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
=> N/A
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
=> C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
=> C:\ProgramData\DatacardService\DCSHelper.exe
=> C:\Program Files\CCleaner\CCleaner.exe
=> C:\Windows\rss\csrss.exe
=> C:\Windows\System32\svchost.exe
=> C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
=> C:\Windows\System32\SearchIndexer.exe
=> N/A
=> C:\Users\nke\AppData\Roaming\Spotify\SpotifyWebHelper.exe
=> SmadavProtect64.exe
=> C:\Program Files (x86)\SMADAV\SMΔRTP.exe
=> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
=> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
=> C:\Windows\System32\svchost.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Users\nke\AppData\Local\Temp\csrss\mrt.exe
=> C:\Windows\rss\csrss.exe
=> N/A
=> N/A
=> N/A
=> N/A
=> N/A
=> C:\Windows\System32\svchost.exe
=> C:\Windows\explorer.exe
=> N/A
=> C:\Users\nke\AppData\Local\Temp\csrss\smb\XVznwLpQBvZ\Eternalblue-2.2.0.exe
=> N/A
Detected Virus :
=> New Heur.LowRep(cloudnet)
-Detected Process [Killed]
-C:\Users\nke\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
=> New Heur.LowRep(cloudnet)
-Infected File
-C:\Users\nke\AppData\Local\Temp\csrss\cloudnet.exe
Infected Registry Values :
=> CloudNet
-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
-New Heur.Startup Suspected Virus Value