System file written: C:\Program Data\Packa ge Cache\\integ rator.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pEvMsg.dll System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pDlpCmd.ex e System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\m pextms.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pCopyAccel erator.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\e ndpointdlp. System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pAzSubmit. System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M sMpEng.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\X 86\MpCmdRu n.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pCommu.dll System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pSvc.dll System file written: C:\Program Data\Micro soft\Windo ws Defende r\Definiti on Updates \StableEng ineEtwLoca tion\mpeng ine_etw.dl l Source: C:\Users\u ser\Deskto p\huser6BB 9c.exe System file written: C:\Program Data\Micro soft\Windo ws Defende r\Platform \ 0.2006-0\M pUpdate.dl l Infects executable files (exe, dll, sys, html) Source: C:\Users\u ser\Deskto p\huser6BB 9c.exe drīinary string: MpUpdate.p db source: MpUpdate. 0.drīinary string: KSLD.pdbGC TL source: mpengine. pdb sourc e: mpengin e.dll0.0.d r, mpengin e.dll.0.drīinary string: MpDlpCmd.p db source: MpDlpCmd. pdb sourc e: Protect ionManagem ent.dll.0. exe.0.drīinary string: Protection Management. pdb source : MpUxAgen t.dll.0.drīinary string: MpCommu.pd bGCTL sour ce: MpComm u.dll.0.drīinary string: offreg.pdb H source: mpengine.d ll0.0.dr, mpengine.d ll.0.drīinary string: d:\dbs\el\ omr\target \x86\ship\ click2run\ x-none\Int egrator.pd b source: integrator. pdbGCTL s ource: Pro tectionMan agement.dl l.0.drīinary string: MpCommu.pd b source: MpCommu.dl l.0.drīinary string: MpDetoursC opyAcceler ator.pdbGC TL source: MpDetours CopyAccele rator.dll. 0.drīinary string: Protection Management. pdb source : MpDetour s.dll.0.drīinary string: KSLDriver. pdbOGPS s ource: MpA zSubmit.dl l.0.drīinary string: mpengine.p dbOGPS sou rce: mpeng ine.dll0.0. drīinary string: MpDlpCmd.p dbGCTL sou rce: MpDlp Cmd.exe.0. exe0.0.drīinary string: mpengine.p db source: mpengine. drīinary string: MpCmdRun.p db source: MpCmdRun. dll.0.drīinary string: BTR.pdb so urce: mpen gine.dll0. exeīinary string: MpDetoursC opyAcceler ator.pdb s ource: MpD etoursCopy Accelerato r.dll.0.drīinary string: KSLDriver. drīinary string: C:\Users\T homas\Desk top\Povlso mware-mast er\Povlsom ware\obj\D ebug\Povls omware.pdb source: h user6BB9c. drīinary string: MpCmdRun.p dbGCTL sou rce: MpCmd Run.exe0.0. 0.drīinary string: MpUpdate.p dbGCTL sou rce: MpUpd ate.dll.0. drīinary string: KSLD.pdb s ource: mpe ngine.dll0. Binary contains paths to debug symbols Source:īinary string: BTR.pdbGCT L source: mpengine.d ll0.0.dr, mpengine.d ll.0.drīinary string: C:\agent\_ work\8\s\b uild\ship\ x86\burn.p db source: VC_redist.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |