Anyones help on this would be greatly appreciated (see attachment for detailed info) - My antivirus keeps telling me that lsass.exe is infected with a Trojan. The antivirus wants to delete or quarantine this file, but as I understand it it's a system critical file so that will cause more problems.
I've tried using Regcure, which (as all of them do) stated that it would definitely fix the problem, but it hasn't.
Now as you can see in the image, this instance of lsass is in c:\windows\config... I was under the impression that all these files would be in the System32 folder instead, and sure enough there is another lsass.exe in there too.
So really i'm looking for someone to say whether or not it is ok to delete this file completely or not. It does make me wonder though, as if the 'REAL' lsass.exe was ok (in system32), why would I see the lsass.exe process running frequently at 100% and also uploading to the maximum of my bandwidth?? (luckily I have Netlimiter installed, so have put a stop to that straight away!!).
Any advice or suggestions would be greatly appreciated!