Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Randomly Named files


  • Please log in to reply
No replies to this topic

#1 A P Bustraan

A P Bustraan

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:11:05 PM

Posted 14 January 2017 - 03:17 PM

In the past couple days on a network that I manage, I have found 6 randomly named files like this:

 

4D2E2CB03318 (that's the file name) and opening in notepad: is: 23B11F97807412DDFF13728E7FE767B3E5BB586E

2F52988EF008 (that's the file name) and opening in notepad: 325B16E574B7A6F5F2B7493D6323489CCC6BF46B

 

Dated from 1/12/2017 win 4 hours of each other and have the ownership of 6 different owners.

 

All machines are running McAfee Enterprise updated 1/12/2017 and Malwarebytes 1.8 Updated 2017.01.13.10 with Malwarebytes Anti-Exploit for Business 1.08.2.1045  at the time of discovery.

 

Recently migrated to Server 2012 from 2008 server. I've scanned the 6 systems full Malwarebytes, McAfee, and ADWCleaner and nothing, no threats, or PUP's or anything.

 

Also randomly checked 100+ files, of various types across folders these users would have access to as well as their computers and nothing all files open successfully.

 

Also checked known locations within the machines and registries and no signs of anything.

 

Any thoughts?

 

 



BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users