I have been chasing an infection and I am getting infection paths such as %appdata%\... "?.\"... %winroot%... etc.
Is there a setting that needs to changed to provide this level of detail because it's frustrating that I have to chase a file path when it's not properly (at least I don't see it) documented.
Any assistance would be great because when a machine(s) are infected, I don't have time to do anyone else job.
Thank you.
Best answer by TripleHelix
View original