Posted 03 February 2012 - 02:46 PM
So, I've been going around the Internet a few times, trying solutions I could dig up, even going as far as to ask MS tech support for help... yeah, I'm getting desperate here.
I have a new laptop with Windows 7 (64-bit), and a program apparently snuck its way into my computer while I was browsing a less-than-secure wiki site for one of my favorite games. MSE and Avast identify it as "Sirefef.B", also known as ZeroAccess. The maddening thing is, most anti-malware programs out there can't detect it, including TDSSKiller and RKill. I've tried running both programs in both normal and Safe Mode with no success.
The most crippling problem is this. Whatever Sirefef.B is, whenever I remove the core file at C:/Windows/System32/consrv.dll, my computer becomes unable to reboot. I suspect that it's altered my registry somehow so that it's regarded as a part of the boot files (so that when I boot, Windows attempts to start consrv.dll, then triggers an error when it can't find it), although as I'm not a tech expert I can't be sure if this is true.
So, bottom line, I have a trojan that's somehow sunk its claws into my 64-bit system even though supposedly it generally only infects 32-bit, and when I try to just remove it, it kills my computer's boot capability and I have to System Restore (at which point it's right back where it was). Is there a way I can clear out my registry of whatever it seems to have done and get my computer clean once more?