Every reboot >> 30seconds >> ESET notification pops up: "Threat (BH/GenKryptic.1) found in file that powershell tried to access"
..i click DELETE, but get the error message shown at the bottom of the screenshot attatched.
ESET does not tell me WHAT file is the infected one. But by checking EventViewer Powershell logs, looks like the file problem file was Microsoft_Framework.js(?)
However, on scanning Microsoft_Framework.js, and Powershell.exe, individually via ESET; they come up clean.
I'm at a loss here; need to get through two steps:
1: finding the infected file (making ESET notifs more verbose or some such??)
2: getting permissions to delete/restore the infected file
Any advice would be greatly appreciated,
Thanks,
T