Are these files built-in Windows binaries or suspicious files on an IIS web server?

H

HARIS A NEURAL

Dear TeamPlease verify the legitimacy of the following files if discovered on an IIS web server, and provide an explanation of their standard functions within Windows operating systems:Could you please confirm that the following binaries are Windows built-ins or malicious\Windows\System32\CoreEvent.exe\Windows\System32\inetsrv\cachsess.dll (or sess_cache.dll, or similarly named files)\Windows\SysWOW64\inetsrv\cachsess.dll (or sess_cache.dll, or similarly named files)

Continue reading...
 
Back
Top Bottom