I have completed the log creation steps for detecting/removing Win32/Sirfef.e-AO rootkit.
Please see attached. Looks like it hooks into the registry to run something on load oeprations by the system “%” Just thinking…
Anyway, the logs are attached. Your help would be appreciated.
Thank you.