I am running Windows XP home edition, version 2002, SP3.
Malwarebyte's and Rootrepeal have identified a specific file, C:windows\system32\drivers\wzsszb.sys, as being Backdoor.IEbooot trojan. I've run Rootrepeal in safe mode and wipe the file, but it comes back. It says it is "locked to the windows API. In Malwarebyte's it identifies the file and tries to remove it, but says it cannot. It tells me to reboot to complete the removal process but it remains on my system.
I also did a search for the file and tried to delete it. I get the follow error: "cannot delete wzsszb: cannot read from the source file or disk"
I have also run combofix and can post the log if that will help.
Any help would be greatly appreciated! Please excuse my newbness....
