[Solved] Windows Defender detects Trojan: Win32 / Occamy.C but cannot delete it

Hello,

Windows Defender detects the Trojan: Win32 / Occamy.C threat while scanning. Unfortunately, it is not able to remove it, the only action to choose from is the permission on the device. Interestingly, Malwarebytes does not detect the threat. I am sending FRST logs and asking for help.

Regards

https://malwarefixes.com/threats/trojanwin32-occamy-c/

Check the file on the disk locally as in the guide.

Otwórz notatnik i wklej:

CloseProcesses:
HKU\S-1-5-21-2778722619-1208249535-4111246651-1001\...\Run: [GalaxyClient] => [X]
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\$McRebootA5E6DEAA56$.lnk [2019-12-03]
ShortcutTarget: $McRebootA5E6DEAA56$.lnk -> (No File)
GroupPolicy: Restriction ? about:newtab
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2019-12-24]

The scan does not detect anything anymore. I just had to clear the defender history as it kept telling me about the old threat.

Thank you and I close the topic.

The scan does not detect anything anymore. I just had to clear the defender history as it kept telling me about the old threat.

Thank you and I close the topic.

Added after 2 [minutes]:

The user prepared a log that removed the threat. Additionally, I cleared the history of windows defender