Jump to content

"shjyai.sys" and Some Obnoxious Reg. Keys (This is a Fun One)

Recommended Posts

So, I recently had a malware infestation and there is part of one of these programs that just won't leave. One of the main culprits seems to be shjyai.sys, which both avast! and Malwarebytes both detect as a rootkit. Both avast and MWB ask me if I want to delete it on the next boot and I say YES and when I boot up and do another scan shjyai.sys is still there. I've searched through the registry and there are several keys (or whatever they're called) related to it. One is HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SHJYAI. This one can be deleted when I change the permissions on it. However, this reappears on the next boot. The other one is HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\shjyai and it is the real bugger. Changing permissions on it seems to do no good. It gives me the "Error while deleting key" message. So, both avast! and MWB know shjyai is bad, but they don't seem to know how to completely get rid of it. I'm no expert, but I'm guessing that if I can get rid of the "undeletable" key then the .sys file isn't going to reappear on the next boot. I'm also guessing that this file is a brand new malware as I find no references to it on the net. There don't seem to be any actual symptoms of infestation (ie changing my desktop, pop-ups, etc) other than the reappearance of the file. Any ideas?


Link to post
Share on other sites

Hello ThePDW , and welcome to Malwarebytes.org

As you replied to your own post, they seem to have overlooked you - You are obviously infected, so please follow the directions below -

We don't work on Malware removal in the general forums so please read these instructions -

Please read and follow the directions here, skipping any steps you are unable to complete. Then post a NEW topic here.

One of the expert helpers there will give you one-on-one assistance when one becomes available -

Thank You - :lol:

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.