XP BSOD caused by xsfdvway.sys

Danno

Windows XP Home 32-bit SP3 gets a BSOD (blue screen of death) caused by file: xsfdvway.sys which is in the WINDOWS/System32/Drivers folder.

A Google on xsfdvway.sys shows up nothing! What device driver uses this file? It seems to go bang when using the internet only, especially downloading files etc...

Have tried Malwarebytes Anit-Malware to check - nothing found, but then again I cannot download updates for MBAM as it crashes! Talk about a catch 22! Same in safe mode.

I cannot delete the file from the system folder either. The file is listed in the startup of safe mode (in the list that flys up after choosing Safe Mode from the F8 interrupt)

Any help would be greatly appreciated as I am pulling my hair out on this one!

Cheers,
Danno!

I'd be 99% sure this is a rootkit. The only guaranteed way to remove it would be to scan the machine for viruses while it isn't running; take the disk out and scan it in another machine. Alternatively, if you have the XP CD, you could try booting into the XP recovery console and delete it from there.

Danno

Thank you, hooked it to another PC and Microsoft Security Essentials found it and removed it - Trojan:WinNT/Bubnix.gen!A and Virus:Win32/Bamital.E