Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected System file (pciide.sys)


  • Please log in to reply
2 replies to this topic

#1 orbitton

orbitton

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:07 PM

Posted 04 May 2010 - 08:34 AM

While I was at work on my computer (I was in the middle of reading a blog-post on a well enough respected website) it suddenly rebooted. During startup I got a message (from Anvir Task Manager) that a new startup item was found:

net.net, in C:\Windows\System32
name: net
company: privat

I blocked and deleted this item (from the startup list), after making sure it wasn't a normal system file. However, during this, my AVG gave the following Resident Shield alert:

File:
C:\WINDOWS\System32\drivers\pciide.sys

Infection:
Virus identified Win32/Patched.DP

Result:
Object is white-listed (critical/system file that should not be removed)

(Process name: C:\WINDOWS\System32\dumprep.exe)

I decided to scan my Windows folder in full (using AVG), just to be sure, and got 2 infections:

C:\WINDOWS\System32\drivers\pciide.sys
Virus identified Win32/Patched.DP
(White-listed)

C:WINDOWS\System32\net.net
Torjan Horse Clicker.AFJE
Moved to Virus Vault

I would very much appreciate any help or insight in getting rid of this infection.

BC AdBot (Login to Remove)

 


#2 yuupo

yuupo

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:07 PM

Posted 04 May 2010 - 07:34 PM

I have the EXACT same problem, EXACTLY!

happened about an hour ago.

Except, I went to a website, java strangely started loading, I opened task manager: closed java: computer restarted by itself.

Next thing I know, AVG is reporting the above infected file.

Please help us!!! :thumbsup:

#3 orbitton

orbitton
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:07 PM

Posted 10 May 2010 - 11:21 AM

I could still use some help with this, if anyone could offer any insights...




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users