RickG2 June 26, 2010 at 18:03:33 Specs: Windows XP
I had malware in the form of a fake av program on a users work computer. I have the system cleaned with the exception of 1 file that ESET and Malwarebytes cannot remove. I tried to boot from a bartpe cd and it locks on post. I then tried the boot from an XP setup cd and it locks at 'starting windows'. The system will boot fine from the HDD. The file that the scanners show as infected is c:\windows\system32\drivers\qeyyc.sys. I cannot remove it even in safe mode command prompt. Both scanners find the file as a rootkit and say it is removed, but it is still there The only issue I have are many redirects when using IE. ESET is blocking them but doesn't give me a infection warning.
The information on Computing.Net is the opinions of its users. Such
opinions may not be accurate and they are to be used at your own risk.
Computing.Net cannot verify the validity of the statements made on this
site. Computing.Net and Purch hereby disclaim all responsibility
and liability for the content of Computing.Net and its accuracy.