Jump to content

TrojanDownloader.Agent.GHN

Vanilla077
 Share
Go to solution Solved by itman,

Recommended Posts

Vanilla077

Vanilla077 0

Posted
Posted

Just like in description. I installed ESET trial version today because I noticed a wild Powershell windows popping out. image.thumb.png.d71e4b8ba7f54a2580fd36167433047c.png

I saw that I need to include logs, so there they are. Can you please tell me what files I should delete?

eis_logs.zip

Link to comment
Share on other sites
  • Administrators
Marcos

Marcos 5,070

Posted
  • Administrators
Posted

Please provide an unfiltered Procmon boot log. After a reboot stop logging after the threat has been detected and then save the log.

For now just provide me with this file (do not delete it yet):
C:\WINDOWS\System32\B63F.tmp\B640.tmp.ps1

Link to comment
Share on other sites
Vanilla077

Vanilla077 0

Posted
  • Author
Posted
41 minutes ago, Marcos said:

Please provide an unfiltered Procmon boot log. After a reboot stop logging after the threat has been detected and then save the log.

For now just provide me with this file (do not delete it yet):
C:\WINDOWS\System32\B63F.tmp\B640.tmp.ps1

Ugh, I was looking at logs in meanwhile and already deleted it. Sorry for that, but I can't provide that file 

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...