Hello Everyone. Last week, I had the TrojanOS/Rovnix.D on my PC and spent several hours on this forum reviewing information about this nasty Trojan. After some investigating, I am reasonably confident that I had the same exact variant of this virus that was addressed in the thread posted below. https://www.techspot.com/community/topics/help-trojan-dos-rovnix-d.195116/ I had the same symptoms I had the same BSOD Code I had the exact same results when Trying to remove via MSE (blocked by group policy) Etc... SO, I decided to try to remove the virus following the instructions outlined in the thread above. I did every step (less posting the logs) and ended up removing WAY more threats than I thought I would (D'oh!) !! A lot of times, my results were similar to the poster's. Well, not the logs, but at least the processes (like BSOD's in the middle of the Malwarebytes Anti-Rootkit Runs). The only thing I did not do was paste the custom fix in the OTL tool. I was worried that the custom fix was specifically for the poster's issues. SO, on to my point. After rescanning with several of the tools requested, everything seems to indicate my system is clean. Except my MBR still seems to be hosed. A few things I've noticed. 1. RKreport still shows an issue (I think): Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo 2. I have two identical 1TB Disks. Same make, model, everything. C: has 1,000,097,181,696 bytes I: has 1,000,202,039,296 bytes I'm worried that there's a hidden partition or something on C: and that the Trojan could come back (Or that it's still there!). I would appreciate any help and/or guidance in getting this resolved. I will happily start with the instructions you have provided in the UPDATED 4-Step Viruses/Spyware/Malware Removal Preliminary Instructions thread. I just wanted to be sure that would be what was needed as a first step.