I picked up a nasty virus last night. It started out as the usual system security rouge. I cleaned that with a process stop and Malware Bytes. After several reboots and scans with McAfee, MalwareBytes, and Kaspersky the virus in still there.
Symptoms: Google link hijacking and ???
detected: Trojan program Trojan.Win32.Monder.cqbi File: globalroot\systemroot\system32\geyekrqgrrrqpn.dll
It claims the file is locked and will not delete
Memory Modules Infected:
\\?\globalroot\systemroot\system32\geyekrqgrrrqpn. dll (Trojan.TDSS)
\\?\globalroot\systemroot\system32\geyekrqgrrrqpn. dll (Trojan.TDSS) -> No action taken.
Malwarebytes trys to delete after reboot but it does not seem to be successfull
I attached an AVZ log.