Avast WEBforum

Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: hollandman99 on April 26, 2004, 08:55:59 PM

Title: Infection: Win32:Trojan-gen. {Other}
Post by: hollandman99 on April 26, 2004, 08:55:59 PM

Same old story, but cannot seem to find solution to above subject.  The following are the Results of last scan:

File name:
c:\_RESTORE\ARCHIVE\FS39.CAB\A0005400.CPY
Result:
Infection: Win32: Trojan-gen {Other}
Operation:
Error occurred during file deleting: Access is denied.

File name:
c:\RESTORE\ARCHIVE\FS91.CAB\...\[AsPack]
Result:
Unable to scan: EXE archive is corrupted.

File name:
c:\RESTORE\ARCHIVE\FS92.CAB\...\[AsPack]
Result:
Unable to scan: EXE archive is corrupted.

File name:
c:\RESTORE\ARCHIVE\FS102.CAB\...\[AsPack]
Result:
Unable to scan: EXE archive is corrupted.
 
NOTE:
- I use WINDOWS ME
- Please, if you give recommendations, be sure to be clear in how to perform each procedure you suggest.
- I am using the latest Avast update
- I use Adaware 6.0
- I use Registry Mechanic
- I use CWShredder
- I have also used Norton anti-virus 2004 (which did not detect the above)

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: DJ on April 26, 2004, 11:42:20 PM

Try turning off your system restore and then scan for viruses.

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: hollandman99 on April 28, 2004, 03:17:21 PM

Once I disabled SYSTEM RESTORE, I was finally able to move WIN32 Trojan-gen to Avast Chest.  However the other three (FS102, FS92, FS91) are still open; I cannot delete them or move them.  When attempting to do so, I get a msg stating: "An error has accurred during the processing."

Any other suggestions of getting rid of these?   Thanks in advance for your help.

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: whocares on April 28, 2004, 03:57:03 PM

Hi,

when you've disabled RESTORE properly (which includes a REBOOT!!), then there should'nt be any restore points/files left in the RESTORE-folder:

http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
 ;)

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: Max M.Wachtel III on April 29, 2004, 04:07:38 AM

If you still can't delete them try restarting in "safe mode"
Also leave the restore turned off-it causes more problems than it solves......just my 2cents
-max

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: hollandman99 on April 30, 2004, 06:45:34 AM

Okay, I've turned off SYSTEM RESTORE, I've rebooted; I've also rebooted in the SAFE MODE and rescanned.

However, I am still getting the three same (FS91, FS92, FS102) files coming up.  The written result by AVAST (about these 3 files) is: "Unable to scan: EXE archive is corrupted."

Any ideas of how to rid my computer of these 3 files?

Thanks.

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: whocares on April 30, 2004, 08:44:37 AM

Boot your PC with a clean, write protected WIN/DOS-Startdisk, and delete the Cab-files in DOS

if you don't have a startdisk, get one from www.bootdisk.com

boot to safeMode and scan

If then all's Clean, boot normal, apply all Windowsupdates, scan online with Trend & RAV

reenable restore  & reboot, then set a new restorepoint

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: Max M.Wachtel III on May 01, 2004, 01:10:05 AM

Here is a link to an erase program called eraser 5.3
http://www.tolvanen.com/eraser/
I use it to erase files. It can overwrite files 37 times.(very secure) Use it also in safe mode to insure erasing.
If you know the location of the offending files- erase them! Also you might use a registry cleaner.There have been many posts in this forum with excellent tools. ;)

Title: Re:Infection: Win32:Trojan-gen. {Other}
Post by: bob3160 on May 01, 2004, 04:59:50 PM

Listen to WhoCares   and follow his advice.
He is 100% on the money.