Heuristic detections like this are not uncommon when you are working with tools such as these that shut down various Windows processes. No worries.Originally Posted by Tirhakah
That is another case of a registry remnant calling a removed malware at startup. We'll probably need to remove it manually .
That is odd, but not surprising. I suggest uninstalling Kaspersky for the time being - until the machine is clean. Then completely re-install it so we can be sure it hasn't been damaged and will work properly in the future.
** This machine is pretty heavily infested - Please run ComboFix again. Download a fresh version as it is constantly updated. Please post the fresh scanlog.
I know all these scans can be a pain, but they do make things easier (if less challenging) than they were back in the old days of ripping out infestations manually
We'll probably have a lot of "manual" removal to do afterward nonetheless.....
@Judy:
I'd suggest a running of SDFix as well as a rerun of combofix and get both fresh logs before starting the manual removal process. What do you think?
Cheers
PP
Reply With Quote