Jump to content

profamous

Registered
  • Content count

    1
  • Joined

  • Last visited

Community Reputation

0 Neutral

About profamous

  • Rank
    New Member
  1. Hello all, I was recently infected by a number of viruses. While I have removed a number of them, there are multiple unknown processes that I am unable to access or delete through any means. There are two files in question: scavmnu.exe and pwitvmdsvc.exe. I have attempted to delete these files via Unlocker and Boot Deleter, to no avail. I have also attempted to gain ownership of these files through the Properties>Security tab, command prompt, PSExec (icacls), and a context menu registry addition to "Gain Ownership", to no avail. Also, I have tried deleting these processes via Linux with the drive still online - access denied. Any attempts to view the properties of these files within Security Task Manager is met with Access Denied. Also, it seems that the "pwitvmdsvc.exe" file I am completely unable to view in Windows Explorer, even with hidden and system files shown. The only activity I have seen that seems threatening is traffic over ports 80 and 8080 to a few server companies. See screenshots of Process Explorer and Security Task Manager. Thanks.
×