Hi,
Over the last three days, I’ve received two blue screens of death(BSOD). After the second one, I began to investigate what was wrong.
I used ‘BlueScreenView’ to give me a log of what was causing the BSOD.
Then I tried to scan the drivers causing the BSODs using the ‘Virus Total’ website. Only problem was I couldn’t locate the driver when I was using the site.
Then I went through windows explorer and found the driver exactly where it should be. I used Avast free software to scan it and sure enough it came back and told me it was malware.
I stopped at this point because I was unfamiliar with the options and was afraid to damage the computer because of the driver the malware has attached itself to.
The driver is win32k.sys within Windows 7. When I’ve googled the driver, various people have warned against tampering with the file as one user put it, it is ‘the heart of Windows’.
In the meantime, I called a friend more knowledgeable than myself to help. But we reached the conclusion I was as well off to proceed slowly.
Finally, I googled the ‘move to chest’ option and was happy that it seemed like if I screwed up, it wasn’t permanent.
So I selected ‘move to chest’ option and Avast gave me an error message, saying that it the was wrong directory, path, file(I didn’t copy the message down).
I closed the window and went to scan the driver again with Avast and now it tells me the driver is clean and can’t find any problems. However, I went back to find the driver again with ‘Virus Total’ again and I can’t as its still hidden.
Between when Avast found the malware and when I finally pressed ‘apply’ for ‘move to chest’ was roughly 1 hour.
It would seem to me that in that time, the malware has hidden itself from Avast.
Can anyone recommend what the next step I should take should be?
Thanks