Vanilla077 0 Posted March 9, 2023 Share Posted March 9, 2023 Just like in description. I installed ESET trial version today because I noticed a wild Powershell windows popping out. I saw that I need to include logs, so there they are. Can you please tell me what files I should delete? eis_logs.zip Link to comment Share on other sites More sharing options...
Administrators Marcos 5,070 Posted March 9, 2023 Administrators Share Posted March 9, 2023 Please provide an unfiltered Procmon boot log. After a reboot stop logging after the threat has been detected and then save the log. For now just provide me with this file (do not delete it yet): C:\WINDOWS\System32\B63F.tmp\B640.tmp.ps1 Link to comment Share on other sites More sharing options...
Solution itman 1,659 Posted March 9, 2023 Solution Share Posted March 9, 2023 Previous detection reference here: https://forum.eset.com/topic/35286-threat-removed/ Link to comment Share on other sites More sharing options...
Vanilla077 0 Posted March 9, 2023 Author Share Posted March 9, 2023 41 minutes ago, Marcos said: Please provide an unfiltered Procmon boot log. After a reboot stop logging after the threat has been detected and then save the log. For now just provide me with this file (do not delete it yet): C:\WINDOWS\System32\B63F.tmp\B640.tmp.ps1 Ugh, I was looking at logs in meanwhile and already deleted it. Sorry for that, but I can't provide that file Link to comment Share on other sites More sharing options...
Recommended Posts