bcbg Posted March 4, 2010 ID:209355 Share Posted March 4, 2010 I am running Windows Vista Ultimate and got infected with the fake Windows 2010 Antivirus which I was able to finally isolate and get rid of after a few attempts.A few days later I start to notice when I boot up my PC, the windows installer window pops up briefly and then goes away, and then today while in the Computer window my drives won't display and then I get the error that Windows Explorer has stopped working and it restarts and my drives will not show and each time I refresh I get the same Windows Explorer error.I ran Super Anti-Spy which found the root Trojan file fcpmex.sys(733 bytes in size) in my Windows\System32\drivers folder - it quarantined it and asked to reboot to finalize it's deletion. Upon restarting my PC, it was still there - I then scanned again using MBAM - same thing happened. I then scanned using Avanquest Fix It Utilities 10 - same thing.I have researched steps on how to delete a sys file, but it will not go away, and I searched the Net for the file name and nothing comes up.Any suggestions on how to kill this?BarryHere's what I tried to change the attributes and also to rename itc:\Windows\System32\drivers>attrib -h fcpmex.sysUnable to change attribute - C:\Windows\System32\drivers\fcpmex.sysc:\Windows\System32\drivers>attrib -r fcpmex.sysUnable to change attribute - C:\Windows\System32\drivers\fcpmex.sysc:\Windows\System32\drivers>attrib -S fcpmex.sysUnable to change attribute - C:\Windows\System32\drivers\fcpmex.sysc:\Windows\System32\drivers>ren fcpmex.sys bad.datA device attached to the system is not functioning.c:\Windows\System32\drivers> Link to post Share on other sites More sharing options...
noknojon Posted March 4, 2010 ID:209363 Share Posted March 4, 2010 Hi bcbg -This is our latest version of a fix for A/V 2010 - Hope it helps -If you think that you are still infected we will go over your system for you - Just follow the advice below -We don't work on Malware removal or diagnostics in the general forums. Please print out, read, and follow the directions here, skipping any steps you are unable to complete. Then post a NEW topic here. One of the expert helpers there will give you one-on-one assistance when one becomes available.After posting your new post make sure under options that you select Track this topic and choose one of the Email options so that you're alerted when someone has replied to your post.Alternatively, as a paying customer, you can contact the help desk at support@malwarebytes.orgThank You - B) Link to post Share on other sites More sharing options...
Recommended Posts