-------------------------------------------------------------------------------- Start time: 2020-07-22 20:37:16Z Process: c4.1d66067e35f5685 Command: /stub 1.1.16900.5 /payload 1.319.2051.0 /program C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\mpam-ccbdea3a.exe /q WD Administrator: no Version: 1.1.16900.5 ================================ ProductSearch ================================= Microsoft Windows Defender (RS1+): Status: Active ProductGUID: 77BDAF73-B396-481F-9042-AD358843EC24 Engine: 2090f1a6b417d0f72603b8bf6777a4cb043a2d53d8b1c04928ad52d22b6664ac 1.1.17200.2 AS base VDM: cf60c6c0eb769360047716966dbbb0821043218777974459071efd1036d32a49 1.319.0.0 AV base VDM: 74637b94ecee1764361ff70df9ee615762acc17b0519e0c716ca7da20d62c061 1.319.0.0 AS delta VDM: c1ec2a71177e57402df89ff20e1e331f3b0858f67bf5b68fcbd3b2ac844acade 1.319.1913.0 AV delta VDM: d01210821105dd6fd84e17210c47449ca5c5968af131b69dbcd779b696535343 1.319.1913.0 NIS engine: NIS base VDM: NIS full VDM: Platform: 3344c72d30307e253b2205def6bd56507469514efbc26222d3199772e4d0eae9 4.18.2006.10 =============================== PackageDiscovery =============================== Package files discovered: Directory: C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\659D9874-854E-4DC3-9A03-E38D4F57DC3F mpasdlta.vdm: 19ebc60e3a388c0e12496bcd4115db4bf986673e9820b0dbb4e5af10c6ba1cf0 1.319.2051.0 mpavdlta.vdm: a14c856a26a66d574084862084b8e0c0c8e2d9cf32994f4df40c53be517811d6 1.319.2051.0 MpSigStub.exe: d0772bfb0687e068d4d21749c90dbac7fb7f71f74f3a8caf6d69cac483a1c17f 1.1.16900.5 AM Delta: Engine: Not included AS base VDM: Not included AV base VDM: Not included AS delta VDM: 1.319.2051.0 AV delta VDM: 1.319.2051.0 ==================================== Update ==================================== Product name: Microsoft Windows Defender (RS1+) Package files: Directory: C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\659D9874-854E-4DC3-9A03-E38D4F57DC3F mpasdlta.vdm: 19ebc60e3a388c0e12496bcd4115db4bf986673e9820b0dbb4e5af10c6ba1cf0 1.319.2051.0 mpavdlta.vdm: a14c856a26a66d574084862084b8e0c0c8e2d9cf32994f4df40c53be517811d6 1.319.2051.0 MpSigStub.exe: d0772bfb0687e068d4d21749c90dbac7fb7f71f74f3a8caf6d69cac483a1c17f 1.1.16900.5 SignatureLocation changed from C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2E540DFE-B164-4C86-88B4-4581C25C38FB} to C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EA56A738-3967-42C2-BC09-8BA516384660} Signatures updated from C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\659D9874-854E-4DC3-9A03-E38D4F57DC3F ================================ ValidateUpdate ================================ MpSigStub successfully updated Microsoft Windows Defender (RS1+) using the AM Delta package. Original: Updated to: AS delta VDM: 1.319.1913.0 1.319.2051.0 AV delta VDM: 1.319.1913.0 1.319.2051.0 End time: 2020-07-22 20:37:23Z -------------------------------------------------------------------------------- -------------------------------------------------------------------------------- Start time: 2021-02-12 12:16:54Z Process: e40.1d70138f3b18eac Command: /stub 1.1.17800.4 /payload 1.331.815.0 /program C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\mpam-fa38f9da.exe /q WD Administrator: no Version: 1.1.17800.4 ================================ ProductSearch ================================= Microsoft Windows Defender (RS1+): Status: Active ProductGUID: 77BDAF73-B396-481F-9042-AD358843EC24 Engine: 60b1d601e5def57496db5302ba586bad935c52f18e1a4e1bdd6b9d300d5be13c 1.1.17800.5 AS base VDM: a52ca0b8cde368d45db820518a9591ae2c6a4d6e8482e938bff68c896ce60e02 1.331.0.0 AV base VDM: 58baecd54eaaf252b617b22e12e645bca286c2a022f6970f3dc3f99956c921ac 1.331.0.0 AS delta VDM: fcffa3fe1cd80c17f2df4eb17cb5398d69ce02f0cc866927e0dfc467689ff670 1.331.650.0 AV delta VDM: 8434e0216f096438f506a50de57f686f0e74f29363dc00dff4fdefb2782d4cc8 1.331.650.0 NIS engine: NIS base VDM: NIS full VDM: Platform: 86b60c4d746f62fae2936a0ccb24f8fa1a8e6ad0fc4c9c1dc066b02ab0e2cfeb 4.18.2101.9 =============================== PackageDiscovery =============================== Package files discovered: Directory: C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\978FCE95-3E65-44FC-AAA2-5427B9FD26CB mpasdlta.vdm: 09a35e3999e12ce8ae0c828a97b4175b11bdc1c83700a9fda84194fd8b9ae879 1.331.815.0 mpavdlta.vdm: 31e3793a4eac1acd08d1c16d18eae411b0972a7957a329e23d6feaf9848b8b36 1.331.815.0 MpSigStub.exe: 0bc408c801441239f72d7df3dd6edbcdfb5313d6ae5a04c0a13e8c2dfc39f6d8 1.1.17800.4 AM Delta: Engine: Not included AS base VDM: Not included AV base VDM: Not included AS delta VDM: 1.331.815.0 AV delta VDM: 1.331.815.0 ==================================== Update ==================================== Product name: Microsoft Windows Defender (RS1+) Package files: Directory: C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\978FCE95-3E65-44FC-AAA2-5427B9FD26CB mpasdlta.vdm: 09a35e3999e12ce8ae0c828a97b4175b11bdc1c83700a9fda84194fd8b9ae879 1.331.815.0 mpavdlta.vdm: 31e3793a4eac1acd08d1c16d18eae411b0972a7957a329e23d6feaf9848b8b36 1.331.815.0 MpSigStub.exe: 0bc408c801441239f72d7df3dd6edbcdfb5313d6ae5a04c0a13e8c2dfc39f6d8 1.1.17800.4 SignatureLocation changed from C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5CE8361B-EA8E-44A0-A8CD-84D15D00D570} to C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B9324D3E-624D-4967-BE38-422DF57321C2} Signatures updated from C:\Windows\SERVIC~2\NETWOR~1\AppData\Local\Temp\978FCE95-3E65-44FC-AAA2-5427B9FD26CB ================================ ValidateUpdate ================================ MpSigStub successfully updated Microsoft Windows Defender (RS1+) using the AM Delta package. Original: Updated to: AS delta VDM: 1.331.650.0 1.331.815.0 AV delta VDM: 1.331.650.0 1.331.815.0 End time: 2021-02-12 12:17:05Z -------------------------------------------------------------------------------- 戼砾戼㹲戼㹲楗摮睯⁳呎䬠呐⁖⸶′畢汩⁤㈹〰⠠楗摮睯⁳敓癲牥㈠㄰′慄慴散瑮牥䔠楤楴湯
㕩㘸戼㹲⼼㹢