*The information below is copied from MicrosoftDocs, which is maintained by Microsoft. Proc_creation_win_multiple_suspicious_cli.yml # - '\diskpart.exe' # cannot be used in a rule of level critical While diskpart.exe is not inherently malicious, its legitimate functionality can be abused for malicious purposes. The following table contains possible examples of diskpart.exe being misused. Legal Copyright: Microsoft Corporation.Product Name: Microsoft Windows Operating System.Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US.Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US.See the System Event Log for more information. On computer: default - pc DiskPart has encountered an error: No mapping between account names and security IDs was done.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |