Search the Community
Showing results for tags 'sysinternals'.
I am fearful that I might be infected. When I Autoruns at Sysinternals it shows to items which are concerning as I cannot delete them even when I try to do so as an Administrator. MpFilter Microsoft On-Access Malware Protection Mini-Filter Driver File not found: system32\DRIVERS\MpFilter.sys NisDrv NIS helps guard against intrusion attempts targeting known and newly discovered vulnerabilities in network protocols File not found: system32\DRIVERS\NisDrvWFP.sys I would like to find out how to delete these and if I am infected or have been hacked. Thank you
According to Virustotal, MBAM is the only program that detected this as malware. It is part of a software package that has been on my computer for years and hasn't been modified, called sysinternals. Malwarebytes has had false positives of other sysinternals tools in the past. /index.php?/topic/141560-newsid/#entry804819 mbam log and actual reghide.exe contained in attached .zip file. Zip not password protected. Thanks!