exe file (for me it was C:\WINDOWS\system32\dllcache\).ģ) Stop the process using Task Manager or other equivalent.Ĥ) This malware also uses a service to start this executable on startup. 1) Determine the process that has outbound connections on Port 4899 using (for me it was msgsm.exe which was the fake name used for the program lamescan3.exe).Ģ) Find the location of the.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |