This has happened a couple time now, where on a boot scan, Avast mistakenly places a system file in the chest, then it won't boot into Windows anymore. The only option is to view the drive on another machine. So far I've figured out the location of the chest, and the index.xml file which I believe tells me the renamed file name and the previous name, so I thought I could just rename it back to the original name, then copy it back to the original location, but that doesn't seem to work. First BSOD said missing file, then after copy of file back to system32 folder, 2nd BSOD said Bad Image (not a valid windows image).
I'm assuming <ChestID> is the new file name, <OrigFileName> is the old file name, and the entry goes between <ChestEntry> and </ChestEntry>, in which case, I'm not sure what I've done wrong unless there's also a permissions thing or something.
file was C:\WINDOWS\system32\basebfgct32.dll, I renamed and uploaded to totalvirus.com, came out clean. Thoughts?
Thanks.