Need some advice please.
Have a customers box that I am working on. Issues were spyware related at 1st and his Norton Corp. AV not being able to update. So I install the normal AS software and get rid of 834 pieces of junk on it. Then I start to troubleshoot the Norton issues, find out it's a hacked copy from a previous job by someone else. The program won't uninstall, so I manually rip it out. Customer supplies me with a new Trend Micro all in one solution to install, no problems there. Upon a new scan virus scan it comes up with a few, some get removed and one doesn't. Says it's a root_kit virus located "c:/win98/system32/hpdriver."
So I boot it into safemode to remove it, it goes, reboot and now it's back... I haven't ran into an HP file being rewritten with a virus, but figure WTH the printer software can be reinstalled later if I cook it. So I remove the hard drive and scan/clean it with a clean PC. Solved.. Nope, after I put it back in the original comp, it's still F'n there. And every time I click on the "hpdriver" file, Trendmicro throws up a warning.
So for now, I have killed access to the system32 file, which is a crutch as far as Im concerned and I'm sure since this looks to be an upgraded OS from 98, the printer will not work.
I have "ides" as to why this is all happening or not happening, but can't prove any of it. I want to recommend a format and clean install of everything, but if there is another way, I'm open to suggestions. As it is, I've put too much time into this thing and just want it to be done.
Thanks for any suggestions.
Have a customers box that I am working on. Issues were spyware related at 1st and his Norton Corp. AV not being able to update. So I install the normal AS software and get rid of 834 pieces of junk on it. Then I start to troubleshoot the Norton issues, find out it's a hacked copy from a previous job by someone else. The program won't uninstall, so I manually rip it out. Customer supplies me with a new Trend Micro all in one solution to install, no problems there. Upon a new scan virus scan it comes up with a few, some get removed and one doesn't. Says it's a root_kit virus located "c:/win98/system32/hpdriver."
So I boot it into safemode to remove it, it goes, reboot and now it's back... I haven't ran into an HP file being rewritten with a virus, but figure WTH the printer software can be reinstalled later if I cook it. So I remove the hard drive and scan/clean it with a clean PC. Solved.. Nope, after I put it back in the original comp, it's still F'n there. And every time I click on the "hpdriver" file, Trendmicro throws up a warning.
So for now, I have killed access to the system32 file, which is a crutch as far as Im concerned and I'm sure since this looks to be an upgraded OS from 98, the printer will not work.
I have "ides" as to why this is all happening or not happening, but can't prove any of it. I want to recommend a format and clean install of everything, but if there is another way, I'm open to suggestions. As it is, I've put too much time into this thing and just want it to be done.
Thanks for any suggestions.