Posted 07 February 2011 - 10:07 AM
Hi, my computer has been repeatedly getting the BSOD over the past 2 months. I have found the core of the problem. It was a fake driver known as [ikmasa.sys]. I have tried deleting it but it keeps saying 'Cannot read from source file or disk'. I ran an AVG anti-rootkit scan and it appears ikmasa.sys is a rootkit. The detection name was "IRP hook, \FileSystem\Ntfs IRP_MJ_CREATE -> ikmasa.sys +0x22B1". Can anybody please tell me how I can remove it. I do not want to resort to using System Restore or formatting the computer.
Thanks for any replies.