« previous next »
Pages: [1]   Go Down

Author Topic: 3 Trj , 1 Adw, 1 RAR  (Read 4343 times)

0 Members and 1 Guest are viewing this topic.

lilmelody

  • Guest
3 Trj , 1 Adw, 1 RAR
« on: July 24, 2006, 02:03:07 PM »
1]

C:\_RESTORE\ARCHIVE\FS1357.CAB\A0264142.CPY
Infection: Win32.Trojano-G[Trj]
Error Occured During File Deleting: Access is Denied.

2]


C:\_RESTORE\ARCHIVE\FS1728.CAB\A0301442.CPY
Infection: Win32.Swizzor-gen[Trj]
Error Occured During File Deleting: Access is Denied.

3]


C:\_RESTORE\ARCHIVE\FS1760.CAB\A0313504.CPY
Infection: Win32.Spyware-gen.[Trj]
Error Occured During File Deleting: Access is Denied.

4]



C:\_RESTORE\ARCHIVE\FS1728.CAB\A0301466.CPY
Infection: Win32.Adware-gen.[Adw]
Error Occured During File Deleting: Access is Denied.

5]


C:\_RESTORE\ARCHIVE\FS1357.CAB\A0264142.CPY\install.exe
Unable to Scan: Error 0x00001779
Error Occured During File Deleting: Error 0x00001779

----------------

Ive tried Safe mode, they wont delete. What should my next move be other than a complete system restore.
Logged

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89061
  • No support PMs thanks
Re: 3 Trj , 1 Adw, 1 RAR
« Reply #1 on: July 24, 2006, 02:18:29 PM »
The c:\_Restore folder is a part of the system restore function and as such is protected by windows, the only way to clean infected _restore points is to disable system restore and reboot. This will clear ALL _restore points. Once you have disabled system restore, reboot, scan your PC again and if clear enable system restore.

WinME - How to disable System Restore
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33903
  • malware fighter
Re: 3 Trj , 1 Adw, 1 RAR
« Reply #2 on: July 24, 2006, 03:33:41 PM »
Hi lilmelody,

By the way did you do a panda online scan before finding up these, there could be the problem of the findings: panda signatures that Avast ticks as malware, a known bug of panda's.
It is just a hunch on my side?

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89061
  • No support PMs thanks
Re: 3 Trj , 1 Adw, 1 RAR
« Reply #3 on: July 24, 2006, 03:40:58 PM »
For the future (not really applicable with _Restore issue you had, no choice in this case), Deletion isn't really a good first option (you have none left), you are better of sending the file to the avast Chest and then investigate. The adage 'first do no harm' is very apt, don't delete, send virus to the chest and investigate.

There is no rush to delete anything from the chest, they can't do any harm there. Anything that you send to the chest you should leave there for a week or two. If after that time you have suffered no adverse effects from moving these to the chest, scan them again (inside the chest) and if they are still detected as viruses, delete them.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.3.6108 (build 24.3.8975.762) UI 1.0.801/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

lilmelody

  • Guest
Re: 3 Trj , 1 Adw, 1 RAR
« Reply #4 on: July 25, 2006, 08:22:46 AM »
Quote from: DavidR on July 24, 2006, 02:18:29 PM
The c:\_Restore folder is a part of the system restore function and as such is protected by windows, the only way to clean infected _restore points is to disable system restore and reboot. This will clear ALL _restore points. Once you have disabled system restore, reboot, scan your PC again and if clear enable system restore.
WinME - How to disable System Restore
I did that. No more virus's or spyware. However my computer still wont shut down :/ It goes to a black screen with a blinking white cursor. The power never cuts off i have to manually turn it off [via power supply]. I dont know whats doing this... hmmm but there are no more virus so yay!  tyvm David.


Quote from: polonus on July 24, 2006, 03:33:41 PM
Hi lilmelody,

By the way did you do a panda online scan before finding up these, there could be the problem of the findings: panda signatures that Avast ticks as malware, a known bug of panda's.
It is just a hunch on my side?

polonus


No my bro was looking for a trainner. :/ He clicked on the exe before he even scanned me thats how this happened.
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33903
  • malware fighter
Re: 3 Trj , 1 Adw, 1 RAR
« Reply #5 on: July 25, 2006, 09:22:59 AM »
Hi lilmelody,

Download this to get passed your shutdown probs:
http://www.soft32.com/Download/free-trial/dfg_ShutDown_XP/4-7996-1.html

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »