jackraymund
-
Posts
4 -
Joined
-
Last visited
Kudos
-
jackraymund gave kudos to Marcos in Win32/TrojanDownloader.Delf.BTT
As I wrote, it's a rootkit so you and other apps / AVs won't normally see it. You should see it in safe mode.
-
jackraymund gave kudos to Marcos in Win32/TrojanDownloader.Delf.BTT
You have a rootkit there. Either boot from a clean medium (e.g. ESET SysRescue) and run a full disk scan, or do the following:
- start Windows in safe mode
- move C:\Windows\System32\Ms96FB23EEApp.dll to another folder, e.g. to c:\eset
- start Windows in normal mode
- run a full disk scan.