Core Isolation Memory Integrity Won't Stay Enabled after Reboot - Virus, Trojan, Spyware, and Malware Removal Help
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 6401debb-0c50-435e-b351-612338f68451 |
| Fingerprint | 7d5428aa72aaafc2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | June 25, 2023, 7:34 p.m. |
| Added to db | June 26, 2023, 2:32 a.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Core Isolation Memory Integrity Won't Stay Enabled after Reboot |
| Title | Core Isolation Memory Integrity Won't Stay Enabled after Reboot - Virus, Trojan, Spyware, and Malware Removal Help |
| Detected Hints/Tags/Attributes | 90/1/199 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 163 | ✔ | — | https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 397 | asp.net |
|
| Details | Domain | 4 | microsoft.net.sdk.android |
|
| Details | Domain | 285 | microsoft.net |
|
| Details | Domain | 2 | schinagl.priv.at |
|
| Details | Domain | 79 | www.openssl.org |
|
| Details | Domain | 10 | mbam.zone |
|
| Details | File | 70 | onedrivesetup.exe |
|
| Details | File | 13 | addinloader.dll |
|
| Details | File | 1 | c:\users\ganderson\appdata\local\microsoft\teams\current\teams.exe |
|
| Details | File | 35 | c:\program files\malwarebytes\anti-malware\mbshlext.dll |
|
| Details | File | 13 | c:\windows\system32\driverstore\filerepository\nv_dispi.inf |
|
| Details | File | 29 | nvshext.dll |
|
| Details | File | 5 | c:\windows\system32\rtvcvfw64.dll |
|
| Details | File | 5 | c:\windows\syswow64\rtvcvfw32.dll |
|
| Details | File | 2 | linkshellextension.htm |
|
| Details | File | 4 | bdr_info.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\libegl.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\libglesv2.dll |
|
| Details | File | 4 | yccv3.dll |
|
| Details | File | 31 | newtonsoft.json |
|
| Details | File | 16 | ni.dll |
|
| Details | File | 4 | c:\program files\corsair\corsair icue 4 software\siusbxp.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\libcrypto-1_1-x64.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\libssl-1_1-x64.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\bearer\qgenericbearer.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qgif.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qicns.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qico.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qjpeg.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qsvg.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qtga.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qtiff.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qwbmp.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\imageformats\qwebp.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\platforms\qwindows.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt\labs\platform\qtlabsplatformplugin.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5core.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5gui.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5network.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5positioning.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5printsupport.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5qml.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5qmlmodels.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5qmlworkerscript.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5quick.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5quickcontrols2.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5quickshapes.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5quicktemplates2.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5quickwidgets.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5svg.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5webchannel.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5webengine.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5webenginecore.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5webenginewidgets.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5websockets.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5widgets.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5winextras.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qt5xml.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtgraphicaleffects\private\qtgraphicaleffectsprivate.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtgraphicaleffects\qtgraphicaleffectsplugin.dll |
|
| Details | File | 8 | qtquick2plugin.dll |
|
| Details | File | 7 | qtquickcontrols2plugin.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtquick\layouts\qquicklayoutsplugin.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtquick\shapes\qmlshapesplugin.dll |
|
| Details | File | 8 | qtquicktemplates2plugin.dll |
|
| Details | File | 8 | windowplugin.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtwebchannel\declarative_webchannel.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\qtwebengine\qtwebengineplugin.dll |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\styles\qwindowsvistastyle.dll |
|
| Details | File | 4 | osvi.dll |
|
| Details | File | 2 | gbtnvgpulib.dll |
|
| Details | File | 1 | c:\users\ganderson\downloads\frst64.exe |
|
| Details | File | 8 | c:\windows\system32\mscoree.dll |
|
| Details | File | 99 | steam.exe |
|
| Details | File | 32 | steamwebhelper.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\left 4 dead 2\left4dead2.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\hearts of iron iv\dowser.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\hearts of iron iv\hoi4.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\stormworks\stormworks64.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\spaceengineers\bin64\spaceengineers.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\arma 3\arma3launcher.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\police simulator patrol officers\boston.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\icarus\icarus.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\cities_skylines\dowser.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\rimworld\rimworldwin64.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\no man's sky\binaries\nms.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\ultimate chicken horse\ultimatechickenhorse.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\stellaris\dowser.exe |
|
| Details | File | 1 | valheim.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\h3vr\h3vr.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\grand theft auto v\playgtav.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\kingdomcomedeliverance\bin\win64\kingdomcome.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\beat saber\beat saber.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\ready or not\readyornot.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\ready or not\engine\binaries\win64\crashreporter.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\starbound\win64\starbound.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\starbound\win64\starbound_server.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\starbound\win64\mod_uploader.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\starbound\win32\starbound.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\fallout 4\fallout4launcher.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\stardew valley\stardew valley.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\transport fever 2\transportfever2.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\kerbal space program\pdlauncher\launcherpatcher.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\gold rush the game\goldrushthegame.exe |
|
| Details | File | 1 | d:\twitch\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\total war three kingdoms\launcher\launcher.exe |
|
| Details | File | 2 | hl2.exe |
|
| Details | File | 1 | hogwartslegacy.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\superhot vr\shvr.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\superhot vr\superhotvr.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\american truck simulator\bin\win_x64\amtrucks.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\red dead redemption 2\playrdr2.exe |
|
| Details | File | 1 | d:\twitch\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe |
|
| Details | File | 1 | d:\steamlibrary\steamapps\common\no time\64-bit\notime64.exe |
|
| Details | File | 16 | launcher.exe |
|
| Details | File | 1 | bladeandsorcery.exe |
|
| Details | File | 87 | java.exe |
|
| Details | File | 8 | c:\program files\electronic arts\ea desktop\ea desktop\eabackgroundservice.exe |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\eaconnect_microsoft.exe |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\eadesktop.exe |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\eagep.exe |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\ealocalhostsvc.exe |
|
| Details | File | 1 | c:\program files\electronic arts\ea desktop\ea desktop\ealaunchhelper.exe |
|
| Details | File | 1 | projecthospital.exe |
|
| Details | File | 1 | c:\program files\roberts space industries\starcitizen\live\bin64\starcitizen.exe |
|
| Details | File | 1 | factorygame.exe |
|
| Details | File | 9 | overwolfbrowser.exe |
|
| Details | File | 22 | msteams.exe |
|
| Details | File | 87 | skype.exe |
|
| Details | File | 35 | spotify.exe |
|
| Details | File | 76 | msedgewebview2.exe |
|
| Details | File | 27 | c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe |
|
| Details | File | 17 | c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
|
| Details | File | 4 | apcent.exe |
|
| Details | File | 4 | gcupd.exe |
|
| Details | File | 2 | flashbios.exe |
|
| Details | File | 19 | securityhealthservice.exe |
|
| Details | File | 15 | ucrtbase.dll |
|
| Details | File | 9 | c:\windows\system32\securityhealthservice.exe |
|
| Details | File | 8 | c:\windows\system32\ucrtbase.dll |
|
| Details | File | 27 | phoneexperiencehost.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 533 | ntdll.dll |
|
| Details | File | 92 | c:\windows\system32\svchost.exe |
|
| Details | File | 36 | c:\windows\system32\ntdll.dll |
|
| Details | File | 1 | ealaunchhelper.exe |
|
| Details | File | 7 | fcon.dll |
|
| Details | File | 1 | coreprivacysettingsstore.dll |
|
| Details | File | 91 | addition.txt |
|
| Details | md5 | 1 | 1d0c09f0d2d5dd80573d29d6c71d3d58 |
|
| Details | IPv4 | 1 | 0.227.1.1 |
|
| Details | IPv4 | 1 | 22.160.0.3 |
|
| Details | IPv4 | 8 | 1.0.7.0 |
|
| Details | IPv4 | 3 | 1.0.4.16 |
|
| Details | IPv4 | 3 | 1.0.10.1 |
|
| Details | IPv4 | 1 | 1.0.10.4 |
|
| Details | IPv4 | 8 | 1.0.1.8 |
|
| Details | IPv4 | 10 | 1.0.4.0 |
|
| Details | IPv4 | 11 | 6.2.0.0 |
|
| Details | IPv4 | 2 | 26.2.0.1 |
|
| Details | IPv4 | 1 | 22.160.0.4 |
|
| Details | IPv4 | 1 | 17.7.2.1 |
|
| Details | IPv4 | 5 | 5.70.0.0 |
|
| Details | IPv4 | 9 | 3.27.0.112 |
|
| Details | IPv4 | 7 | 1.3.40.14 |
|
| Details | IPv4 | 1 | 0.224.0.25 |
|
| Details | IPv4 | 13 | 1.1.0.1 |
|
| Details | IPv4 | 34 | 2.10.91.91 |
|
| Details | IPv4 | 1 | 17.0.118.0 |
|
| Details | IPv4 | 4 | 1.0.2.18 |
|
| Details | IPv4 | 198 | 1.1.1.1 |
|
| Details | IPv4 | 20 | 9.9.9.9 |
|
| Details | IPv4 | 2 | 0.223.0.33 |
|
| Details | Url | 1 | http://schinagl.priv.at/nt/hardlinkshellext/linkshellextension.htm |
|
| Details | Url | 12 | https://www.openssl.org |
|
| Details | Windows Registry Key | 77 | HKLM-x32 |
|
| Details | Windows Registry Key | 19 | HKLM-x32\...\InstallShield_ |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\Discord |
|
| Details | Windows Registry Key | 3 | HKLM-x32\...\FileZilla |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\Overwolf_cmogmmciplgmocnhikmphehmeecmpaggknkjlbag |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\GitHubDesktop |
|
| Details | Windows Registry Key | 9 | HKLM\...\PROSetDX |
|
| Details | Windows Registry Key | 68 | HKLM-x32\...\Microsoft |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\OneDriveSetup.exe |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\...\Teams |
|
| Details | Windows Registry Key | 6 | HKLM-x32\...\Afterburner |
|
| Details | Windows Registry Key | 9 | HKLM-x32\...\Overwolf |
|
| Details | Windows Registry Key | 5 | HKLM-x32\...\RTSS |
|
| Details | Windows Registry Key | 2 | HKLM\...\81bfc699-f883-50c7-b674-2483b6baae23 |
|
| Details | Windows Registry Key | 34 | HKLM-x32\...\Steam |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001 |
|
| Details | Windows Registry Key | 1 | HKLM-x32\...\78088ee6 |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001_Classes\CLSID |
|
| Details | Windows Registry Key | 16 | HKLM\...\Drivers32 |
|
| Details | Windows Registry Key | 32 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService |
|
| Details | Windows Registry Key | 32 | HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-3662965057-1754897377-3593242192-1001\Control |
|
| Details | Windows Registry Key | 98 | HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System |