Sign In
Create Account
0
Guys
Malwarebytes keeps finding a rootkit agent in C:\WINDOWS\system32\sysaudio.sys (Rootkit.Agent) . It quarantines and deletes it yet when I run it again the next evening it appears again ?
I am running AVG8 and Zone Alarm Pro..Neither of them find it...
Hope this is an easy fix.
Thanks for your time and help
Ged
Back to top
#2
Posted 17 November 2008 - 05:56 AM
-
- Members
-
- 1 posts
New Member
It found the same file on my computer too. I haven't removed it yet because I want to make sure that it wasn't a mistake. Also, I wanted to find out what problems I could expect if I were to remove it.
It seems the original file would need to be replaced. Where would I go or how would I replace it on a WinXP Home SP2 operating system?
It seems the original file would need to be replaced. Where would I go or how would I replace it on a WinXP Home SP2 operating system?
#3
Posted 17 November 2008 - 06:17 AM
-
- Experts
-
- 591 posts
Elite Member
C:\WINDOWS\system32\drivers
is the correct location for the legitimate file
http://miekiemoes.blogspot.com/2008/10/fak...archengine.html
http://www.malwareby...?showtopic=2936
You might want to post in the HJT subforum here
is the correct location for the legitimate file
http://miekiemoes.blogspot.com/2008/10/fak...archengine.html
http://www.malwareby...?showtopic=2936
You might want to post in the HJT subforum here
Regards
Chewy the wild wookie
Chewy the wild wookie
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
