Trojan Horse Downloader.rameh.A

Discussion in 'Trojan Defence Suite' started by Eternal5585, May 4, 2004.

Thread Status:
Not open for further replies.
  1. Eternal5585

    Eternal5585 Registered Member

    Joined:
    May 4, 2004
    Posts:
    1
    I get a window that pops up saying:
    **Virus
    Trojan Horse Downloader.Rameh.A
    is found in file
    C:\System Volume Information\_restore{CD53596A-5812-49DB-AF84-A72B9BECDE4F}\RP126\A0022882.dll

    To remove this virus, please run AVG for Windows**

    Ill run AVG, and it will find nothing. I try to access my System Volume Information Folder and it will say access denied, which I'm the only person on this computer, and am the admin.
    I would greatly appreciate some help. Thx!
     
  2. snowbound

    snowbound Retired Moderator

    Joined:
    Feb 18, 2003
    Posts:
    8,723
    Location:
    The Big Smoke
    Hi Eternal5585 :)

    Welcome to Wilders.

    It looks like the trojan is in your systems restore.

    Just disable it, which will clear the restore points, reboot, then renable it and create a manual restore point.

    Here's how if your not sure,

    http://www.pchell.com/virus/systemrestore.shtml

    Post back and let us know if it worked.


    snowbound
     
  3. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    To make you extra happy, if it is in your restore, it has been or is in your system too, but as your scan didn't find it probably was cleansed already. Do you remember a recent alarm/cleansing, maybe with AVG? Is it still in their quarantine folder?
    Please try running TDS. If your restore point is still there and not too big send it as a sample to submit@diamondcs.com.au
     
Thread Status:
Not open for further replies.