Bajiru

@Maurice Naggar thanks for the script. However, I forgot to tell you that it's probably not needed. Yesterday night, we checked Task Manager and found a process called "StopUpgrade10" by greatis.com. My brother doesn't know how he got it at all. I deleted it plus any residual files, rebuilt the registry entries in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv (exported them from my functioning PC and imported them to his), restarted and now Windows Update works normally. I think the topic is closed now. Thank you really much for your help. Hope you gave a good day!

@Maurice Naggar Here's the AdwCleaner log file. It yielded no results, however it told me that I can reset Winsock and other settings to default if needed. Do I need to do so? AdwCleaner[S01].txt

@Maurice Naggar thanks for the help! I really appreciate it! We ran a scan, though no results were yielded. The trojans might have been removed by yesterday's scan & quarantine. I have attached the log file you need. Malwarebytes_rootkitscan.txt

Hello, @Maurice Naggar. We let the scan ran overnight, though it yielded no results. I have attached the log file. Though, I have to mention that yesterday, he scanned his PC for ~20 minutes the 1st time and it did find 1 infection, however he cancelled the scan prematurely as he had to get some work done and his disk usage was at 100%. msert.log

Hey, thanks for reaching out! I go by Bill, "Bajiru" is just a pseudonym. Since my brother cannot run the scan now, he is going to let it run overnight. I'll upload the log in the morning.

Hello. My brother's Windows 10 PC is infected with the Trojan.BitCoinMiner.Generic trojan. We both knew it was from a game copy he downloaded from a sketchy website, so we deleted it, and the previous instance of the trojan succeessfully. However, it literally crippled vital parts of his Windows installation, like Windows Update. He was able to fix this without reinstalling by upgrading from build 2004 to 20H2. 1 month later, and suddenly he cannot install updates ("Something went wrong. Try to reopen Settings later."), he cannot download apps from Windows Store (I don't know how, but this Store app is useful and not available as an exe file), Safe Mode sessions are corrupted and he cannot enable the Administrator account no matter what. Following the steps from this similar post here, we ran a Malwarebytes scan, which quarantined and removed 7 detections of the trojan in various places. Then, we ran a scan using AdwCleaner and rebooted. Finally, we ran Farbar Recovery Scan Tool. However, as the scripts and log files there were for a completely different Windows installation, I have attached the log files from his PC to see what can be done. Thank you in advance. Addition.txt AdwCleaner[S00].txt Malwarebytes.txt FRST.txt