Exploit:W32/CmdStager.D1!DeepGuard

Outonalimb

Anybody else getting these alerts over the past 24 hours. Can't seem to find any further information about it:

|Exploit:W32/CmdStager.D1!DeepGuard|Blocked|File|C:\Windows\System32\wbem\WmiPrvSE.exe|3ea7cc066317ac45f963c2227c4c7c50aa16eb7c

Any help would be appreciated.

MonikaL

Hi,

We would require the diagnostic information from the machine for us to view the detection log file.

To create the file, please follow the instruction from here.

https://community.f-secure.com/common-home-en/kb/articles/5427-how-do-i-create-an-fsdiag-file

Please provide this information to support, and we will investigate further.

Please open a support case here:

https://www.f-secure.com/en/business/support-and-downloads/support-request