If you see $sys$DRMServer.exe in your process page. Then you have the Sony Root Kit Installed. Here is the following thing i’ve done to remove such a kit.
1. Find the location where the root kit is installed.
C:WindowsSystem32$sys$filesystem$sys$DRMServer.exe
- In Safe mode delete this dir.
C:WindowsSystem32$sys$filesystem -
Open the registry (regedit)
Del the following location keys. Note when modifying the registry you could make the system not to boot. i recommend that you read up on the windows registry, or have some one help you.
HIT Key Local Machine and Hit Key Local User there should be a software folder. Go in both and check for $sys$ and del.
“Here is the link that helped me find out how to remove.
http://www.bleepingcomputer.com/forums/topic34904.html
