![]() Most people would advise using Safe Mode for this, but plain Administrator Mode worked just fine for me. Normally, you could just use the Windows "Search" operation, but I use Agent Ransack (works better). I will assume from now we are dealing with a real rootkit! ![]() What? That's weird! I don't know for sure if you can wipe the rootkit itself, but you can safely remove "sfloppy.sys". And in "system32" of all places, so it would be expected to appear elsewhere, but where? In fact, it keeps reappearing in "service pack 3". This file keeps reappearing after being comprehensively eradicated by Avast! Hmm. Look: Avast! keeps trying to eradicate this file "sfloppy.sys", and fails to do it? That is the mark of a false positive? I think not.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |