TheCoolestOne

CLOSED Trojan / Rootkit / Malware Found

Recommended Posts

Hi,

I am using a Windows 8.1  64Bit OS. A few days ago my antivirus AVAST detected a rootkit  C:\Windows\System32\Drivers\Wdf45726.sys

Every time I delete this file manually or thru AVAST it comes back after reboot. Avast does not allow me to Quarantine this file. I am unable to rename this file as i get "Access Denied" error even in Safe Mode and Logged on as Administrator.

I have used Adaware and Malwarebytes which found some more potential Trojans etc which I was able to remove easily except this one.

I ran EMISoft Emergency Kit and it too detected this.

 

Regards,

Sam

 

Addition.txt FRST.txt scan_200615-115023.txt

Share this post


Link to post
Share on other sites

The presence on this line in your FRST scan report indicates that this system is not properly licensed and activated.

Task: {69B80BA9-69E3-49C4-879A-F09E46672633} - System32\Tasks\[email protected]\Windows63Professional => wmic path SoftwareLicensingProduct where (ID="c06b6981-d7fd-4a35-b7b4-054742b7af67") call Activate

No further assistance will be given, unitl such time that the copy of Windows 8.1 Professional on this system is properly licensed and activated.

Share this post


Link to post
Share on other sites

Thread Closed

 

Reason: Lack of Response

 

PM either Kevin, or Arthur to have this thread reopened.

 

The procedures contained in this thread are for this user and this user only. Attempting to use the instructions in this thread on a system, other than the one they were written for, could result in damaging the Operating System beyond repair. Do Not use any of the tools mentioned in this thread without the supervision of a Malware Removal Specialist.

 

All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE if you don't we are just going to send you back to this thread

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.