re: #5 Dark_Falcon

If this one was only that simple…

it’s a patching virus which proceeds to infect damn near all of your system files.

On top of that the client had another virus that actively prevents running most antivirus and anti malware utilities.

Finally had to pull the hard drive, save the virus files as txt files and replace them with text files with .dll extensions so they couldn’t load, but would look like they were still there so the virus wouldn’t recreate them. That got it to the point where I could actually run the rootkit utility to clean up the remaining pieces.

Yeesh…Good thing I get paid by the hour for this stuff.