Windows Driver Foundation
Hello Bitdefender Community,
While checking my computer, I discovered a suspicious process that is not visible in the Task Manager, but I managed to identify it using the Sysinternals Process Explorer tool. Details about this process are presented in Image 1.
Upon inspecting the characteristics of this process, I found more information, including TCP/IP connections, presented in Image 2. During the process's execution, I encountered various issues, and ultimately, I obtained additional information, as shown in Images 3 and 4.
In the search for information about this potential virus, I found only one article written just 2 months ago, indicating that this process is indeed a virus and is not detected by antivirus solutions as such. However, when scanning my computer with VirusTotal and Malwarebytes, Bitdefender did not identify this process as a virus.
I managed to create a specific dump file for this process (not entirely possible), and I will attach it to this message (Windows Driver Foundation (WDF).dmp).
In Images 5-6, it can be observed that this file is detected by Total Commander but is impossible to locate.
I would greatly appreciate any advice or assistance that the community can provide regarding identification.