merylvdm

Trojan Downloader 17876!IK and Win:Suspect.CRC!IK

10 posts in this topic

I ran a-squared Free and discovered the Trojan Downloaded and Win:SuspectCRc. I have followed the instructions in the sticky and run the Cleaner utility and am attaching the requested files.

Thanks

Meryl

0

Share this post


Link to post
Share on other sites

Hi Meryl, welcome to the forum

a-squared Free - Version 4.0

Last update: 4/27/2009 8:13:07 AM

This is very outdated version and Signatures.

Current version is 4.5.0.27

Please install the new version update and Deep rescan

My regards

0

Share this post


Link to post
Share on other sites

Sorry - that was not very smart of me. I forgot it was almost a year ago when I had my last problem!

I updated and re-ran and am attaching the latest report. One of the problems has now gone away - but another has appeared.

Meryl

0

Share this post


Link to post
Share on other sites

AVG 8.5 is outdated. Update to AVG 9

-----------------------------------------------------------

The installed version of Java on this computer is out-dated. Install Java Runtime Environment (JRE) 6u18 available from Sun Microsystems.

-----------------------------------------------------------

Using Add or Remove Programs in the Control Panel; uninstall the following:

Java 6 Update 13

-----------------------------------------------------------

These are System Restore Points:

C:\System Volume Information\_restore{A8393674-085C-4723-B63E-39928C5F4C89}\RP479\A0123865.exe 	detected: Win32.SuspectCrc!IK
C:\System Volume Information\_restore{A8393674-085C-4723-B63E-39928C5F4C89}\RP493\A0128481.exe 	detected: Win32.SuspectCrc!IK

Antivirus Tools Cannot Clean Infected Files in the System Restore Folder.

The System Restore feature in Windows protects all folders and files in the System Restore folder on the Windows partition. This folder and all of its subfolders are the data store that the System Restore feature uses to restore your computer's operating system to a previous state from a previous point in time.

Although some antivirus programs may have the ability to work with files that have been compressed or stored in .zip or .cab file format, the System Restore feature does not permit these utilities to manipulate these files within the data store. The data store is protected for data integrity purposes, and the System Restore feature is the only method you can use to obtain access to the data store. Because of this, the antivirus program is unable to remove the virus from the file or files in the data store. The files in the data store are inactive and can be used only by the System Restore feature.

See How To Enable and Disable System Restore

0

Share this post


Link to post
Share on other sites

1. I deleted AVG as I can't upgrade to AVG 9 without paying and installed Avast

2. I updated Java

3. Under Change/Remove programs Java 6 v 13 no longer shows up now I have downloaded the latest version so I couldn't delete it

4. I followed instructions to Disable System Restore - I checked the box as per instructions(I am on Windows XP) and clicked 'OK' but then I just get taken out of the screen - I do not get the question whether I want to restart. Should I just restart the computer at that point?

Thanks

Meryl

0

Share this post


Link to post
Share on other sites

Yes reboot and then turn System Restore back on.

0

Share this post


Link to post
Share on other sites

OK, that was all that needed to be done.

0

Share this post


Link to post
Share on other sites

Thread Closed

Reason: Resolved

The procedures contained in this thread are for this user and this user only. Attempting to use the instructions in this thread on your system could result in damaging the Operating System beyond repair. Do Not use any of the tools mentioned in this thread without the supervision of a Malware Removal Specialist.

All posters requesting Malware Removal assistance are required to follow all procedures in the thread titled START HERE, if you don't we are just going to send you back to this thread

0

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.