9 replies to this topic

[merylvdm]

I ran a-squared Free and discovered the Trojan Downloaded and Win:SuspectCRc. I have followed the instructions in the sticky and run the Cleaner utility and am attaching the requested files.

Thanks
Meryl


 a2scan_100118-182137.txt   4.46K   110 downloads  ISeeYouXP.txt   757.02K   172 downloads  HiJackFree.log   21.22K   68 downloads

[Lynx]

Hi Meryl, welcome to the forum

a-squared Free - Version 4.0
Last update: 4/27/2009 8:13:07 AM

This is very outdated version and Signatures.

Current version is 4.5.0.27

Please install the new version update and Deep rescan

My regards

[merylvdm]

Sorry - that was not very smart of me. I forgot it was almost a year ago when I had my last problem!

I updated and re-ran and am attaching the latest report. One of the problems has now gone away - but another has appeared.

Meryl

 a2scan_100119-120016.txt   1.76K   80 downloads

[ShadowPuterDude]

AVG 8.5 is outdated. Update to AVG 9

-----------------------------------------------------------

The installed version of Java on this computer is out-dated. Install Java Runtime Environment (JRE) 6u18 available from Sun Microsystems.

-----------------------------------------------------------

Using Add or Remove Programs in the Control Panel; uninstall the following:

Java™ 6 Update 13

-----------------------------------------------------------

These are System Restore Points:

C:\System Volume Information\_restore{A8393674-085C-4723-B63E-39928C5F4C89}\RP479\A0123865.exe 	detected: Win32.SuspectCrc!IK
C:\System Volume Information\_restore{A8393674-085C-4723-B63E-39928C5F4C89}\RP493\A0128481.exe 	detected: Win32.SuspectCrc!IK

Antivirus Tools Cannot Clean Infected Files in the System Restore Folder.

The System Restore feature in Windows protects all folders and files in the System Restore folder on the Windows partition. This folder and all of its subfolders are the data store that the System Restore feature uses to restore your computer's operating system to a previous state from a previous point in time.

Although some antivirus programs may have the ability to work with files that have been compressed or stored in .zip or .cab file format, the System Restore feature does not permit these utilities to manipulate these files within the data store. The data store is protected for data integrity purposes, and the System Restore feature is the only method you can use to obtain access to the data store. Because of this, the antivirus program is unable to remove the virus from the file or files in the data store. The files in the data store are inactive and can be used only by the System Restore feature.

See How To Enable and Disable System Restore

[merylvdm]

1. I deleted AVG as I can't upgrade to AVG 9 without paying and installed Avast

2. I updated Java

3. Under Change/Remove programs Java 6 v 13 no longer shows up now I have downloaded the latest version so I couldn't delete it

4. I followed instructions to Disable System Restore - I checked the box as per instructions(I am on Windows XP) and clicked 'OK' but then I just get taken out of the screen - I do not get the question whether I want to restart. Should I just restart the computer at that point?

Thanks
Meryl

[ShadowPuterDude]

Yes reboot and then turn System Restore back on.

[merylvdm]

Ok - I have done all that.

[ShadowPuterDude]

OK, that was all that needed to be done.

[merylvdm]

Thanks - I appreciate the help. Your service is great!!
Meryl

[ShadowPuterDude]

Thread Closed

Reason: Resolved

The procedures contained in this thread are for this user and this user only. Attempting to use the instructions in this thread on your system could result in damaging the Operating System beyond repair. Do Not use any of the tools mentioned in this thread without the supervision of a Malware Removal Specialist.

All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE, if you don't we are just going to send you back to this thread