Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan Generic 323130


  • Please log in to reply
1 reply to this topic

#1 ishmanda

ishmanda

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:12:14 AM

Posted 22 July 2008 - 11:05 AM

Okay, so I am not computer savy but when I came to my aunt's house I noticed her computer running VERY slow. It also had popups she couldn't get under control. So I asked her if she had ever done a virus or spyware scan and she said she hadn't ever since her Norton expired a while back. I figured I could handel this because I have had computers with mild problems before. I downloaded Spyware Doctor and then I put my Bit Defender on. I first downloaded spy doctor and before I rebooted I figured may as well get the download of bit defender over with so I only have to reset it once. As soon as I rebooted it ran even slower! It was messing up all over the place and finally after it froze five times in a row, I was able to get spydoctor up and running. Good.And it caught like 700 things. Even better because the popups will hopefully stop. So I reboot again it was running just as horridly. I got bit defender running, and after 2 hours it said 12 viruses were found. I was happy, I was thinking this would remove it! But no, it told me four things could not be removed. They are as followed:

C:\System Volume Information\_restore{A2578CBA-012A-4EE9-9E3D-27D3F494A2B6}\RP524\A0057585.exe=](NSIS o)=]lzma_nsis0001 Adware.Shopper.O Infected (no action was possible, file was in an archive)
C:\System Volume Information\_restore{A2578CBA-012A-4EE9-9E3D-27D3F494A2B6}\RP472\A0053242.exe=](NSIS o)=]lzma_solid_nsis0004 Adware.Zango.AU Infected (no action was possible, file was in an archive)
C:\System Volume Information\_restore{A2578CBA-012A-4EE9-9E3D-27D3F494A2B6}\RP472\A0053242.exe=](NSIS o)=]lzma_solid_nsis0002 Adware.Zango.SH Infected (no action was possible, file was in an archive)
C:\System Volume Information\_restore{A2578CBA-012A-4EE9-9E3D-27D3F494A2B6}\RP472\A0053242.exe=](NSIS o)=]lzma_solid_nsis0003 Trojan.Generic.323150 Infected (no action was possible, file was in an archive)

So I thought I would install superantispyware because I used that to remove the vundo virus my brother had on his computer. So I did that, it didn't even find it. So that is pretty much where I am at right now, I googled this one and couldn't find anything on it.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:14 AM

Posted 22 July 2008 - 11:55 AM

Hello . These are left in the System restore. They are not scanned by AV's because of thet location. They can be removed by doin g this. then rescan and see. Let us know. You also have a HJT log posted. I will delete that for now . we can repost if still needed. I don't want to waste the NHJT volunteers time with a log that probably won't be necessary.
HJT Log...http://www.bleepingcomputer.com/forums/index.php?showtopic=159070&st=0&p=889332&#entry889332

Now you should Set a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which sometimes can reinfect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Then go to Start > Run and type: Cleanmgr
  • Click "OK".
  • Click the "More Options" Tab.
  • Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users