Jump to content
Kaspersky Support Forum

Junix Chan

Members
 View Profile  See their activity

  • Posts

    1

  • Joined

  • Last visited

 Content Type 

Posts posted by Junix Chan

    How to remove in kaspersky endpoint? virus keeps running

    in Kaspersky Endpoint Security for Business

    Posted

    Time:
    Date and time when the event is received by the console
    04/20/2023 1:23 pm
    Event category and description:
    Blocked
    Result description: Blocked
    Type: Trojan
    Name: PDM:Exploit.Win32.Generic
    User: NT SERVICE\MSSQLSERVER (Active user)
    Object: D:\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
    Reason: Dangerous action
    Database release date: 4/20/2023 10:24:00 AM
    SHA256: 3E917376199B13523DFB4FCC445583D9DF0606AD0A6A02B111D8A3EE6B71E117
    MD5: 3AE13C9869B7CE1135BCF21C0AAA68ED
     
    Time:
    Date and time when the event is received by the console
    04/20/2023 1:23 pm
    Event category and description:
    Blocked
    Result description: Blocked
    Type: Trojan
    Name: Trojan.Multi.GenAutorunSQL.b
    User: NT AUTHORITY\SYSTEM (System user)
    Object: System Memory
    Reason: Dangerous action
    Database release date: 4/20/2023 10:24:00 AM
     
    Time:
    Date and time when the event is received by the console
    04/20/2023 1:23 pm
    Event category and description:
    Blocked
    Result description: Blocked
    Type: Trojan
    Name: PDM:Trojan.Win32.GenAutorunMsSqlServerCommandRun.a
    User: NT SERVICE\MSSQLSERVER (Active user)
    Object: D:\Microsoft SQL Server\MSSQL11.MSSQLSERVER\MSSQL\Binn\sqlservr.exe
    Reason: Dangerous action
    Database release date: 4/20/2023 10:24:00 AM
    SHA256: 3E917376199B13523DFB4FCC445583D9DF0606AD0A6A02B111D8A3EE6B71E117
    MD5: 3AE13C9869B7CE1135BCF21C0AAA68ED
    • Like 1
×
×
  • Create New...