trojen horse C:\ system volume information

Discussion in 'malware problems & news' started by Uncle Paulie, Sep 14, 2003.

Thread Status:
Not open for further replies.
  1. Uncle Paulie

    Uncle Paulie Guest

    :mad: I have a virus detected by AVG... trojan horse dialer..c:\system volume information-restore{958DE7BO-2C5A-4B1C-8DB2-CA35FF11COAO}\RP168\A0037002.exe however AVG can not find the virus when the program is run, I have run several spyblaster programs with no luck.... can any one help!!!o_O
     
  2. wizard

    wizard Registered Member

    Joined:
    Feb 9, 2002
    Posts:
    818
    Location:
    Europe - Germany - Duesseldorf
    Just turn off your sytem restore function of windows. For WinMe an instruction can be found here:
    http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001012513122239

    The same for WinXP can be found here http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001111912274039

    After disabling the restore function you can just delete the file and enable the system restore again.

    Other alternative would be to create a boot diskette with AVG (if it has such a feature) and boot your system with the disk. This would also allow to remove the file.

    wizard
     
Loading...
Thread Status:
Not open for further replies.