Received a file from somebody which had an .exe infected with HackTool:Win32/AutoKMS!ml.
The ideea is that I didn't opened it, only saved it on my NAS.
After Defender from W11 detected the trojan.. I ran a quick-scan with it and got the following :
I also ran Malwarebytes and got the following results. During the time Malwarebytes was installed I noticed that Defender icon was green.. not with the x as was before install MB. and after uninstalling Malwarebytes
Red :
Conclusion :
1. Defender doesn't seem to be able to change something with quarantine or remove. I think that remembers the file as Affected items at that path.. but it's empty right now. Cannot get rid of the message anyway.
2. Malwarebytes gives a clean report.
3. That file was also manually removed from NAS. Should I scan the entire drive also?
Question
Cosmin
Hi,
Received a file from somebody which had an .exe infected with HackTool:Win32/AutoKMS!ml.
The ideea is that I didn't opened it, only saved it on my NAS.
After Defender from W11 detected the trojan.. I ran a quick-scan with it and got the following :
I also ran Malwarebytes and got the following results. During the time Malwarebytes was installed I noticed that Defender icon was green.. not with the x as was before install MB. and after uninstalling Malwarebytes
Red :
Conclusion :
1. Defender doesn't seem to be able to change something with quarantine or remove. I think that remembers the file as Affected items at that path.. but it's empty right now. Cannot get rid of the message anyway.
2. Malwarebytes gives a clean report.
3. That file was also manually removed from NAS. Should I scan the entire drive also?
What do you recommend? Thanks a lot!
Link to comment
Share on other sites
5 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now