MariosX Posted August 15, 2013 Share Posted August 15, 2013 Hello! I'm using Microsoft Security Essentials for Antivirus. Months ago I installed a keylogger to my computer for personal reasons and which was detected obviously from Security Essentials. When I was done with it, I uninstalled/deleted the keylogger but System Restore or the Windows Backup made a copy and it is located in "file:\Device\HarddiskVolumeShadowCopy11\Program Files (x86)\DAO\svchost.exe" I would like to know how can I delete this keylogger entirely and never ever be bothered by this keylogger again. please note: If I press Remove, Apply actions, it does not get deleted Link to comment https://www.neowin.net/forum/topic/1170913-windows-7-remove-malware-from-filedeviceharddiskvolumes/ Share on other sites More sharing options...
astrokat Posted August 15, 2013 Share Posted August 15, 2013 Less extreame approach / disable system restore to clear the cache and follow the examples here http://www.sevenforums.com/tutorials/166102-shadow-copies-delete.html to delete the volume shadow copy. More extreame: I guess you could FDISK your MBR or seek input from the manufacturer - providing you acquired it through traditional means. If you found this program randomly on the internet - i would reinstall windows, but use command prompt / diskpart to blow away the partition info before reinstallation. Link to comment https://www.neowin.net/forum/topic/1170913-windows-7-remove-malware-from-filedeviceharddiskvolumes/#findComment-595880941 Share on other sites More sharing options...
MariosX Posted August 15, 2013 Author Share Posted August 15, 2013 Never mind. Problem solved. The malware had been reinstalled and it was in the program files and when Windows Backup were trying to backup the drive, they were backing up the virus as well Link to comment https://www.neowin.net/forum/topic/1170913-windows-7-remove-malware-from-filedeviceharddiskvolumes/#findComment-595880985 Share on other sites More sharing options...
Recommended Posts