HELP How do I retrieve or replace file deleted when Trojan horse

[Guest]

When AVG deleted the two Trojan horses I had a couple days ago, it also
deleted a couple files and now my system restore won't work and US Robotics
is my modem. How can I retrieve or replace those files? It says that the
files deleted were C:System Volume Information\_restore
{B37680B2-BAOA-4E5D-83E44C588624}\RP855\A0096189.exe and the other file
deleted was Crogram Files\US Robotics\Control Center\atmdlusr.exe. Any
help would be greatly appreciated. Thanks

 

[Guest]

Start>Run>type SFC /SCANNOW (space between C and /)>click OK
SFC = System File Check, have your WindowsXP install CD handy for
it may ask for it. SFC checks for missing or corrupt system files and
replaces them. If that procedure does not solve your situation, you
may have to do a XP Repair install.
How to Perform a Windows XP Repair Install
http://www.michaelstevenstech.com/XPrepairinstall.htm

 

[Nepatsfan]

(e-mail address removed),

When AVG deleted the two Trojan horses I had a couple days
ago, it also deleted a couple files and now my system
restore won't work and US Robotics is my modem. How can I
retrieve or replace those files? It says that the files
deleted were C:System Volume Information\_restore
{B37680B2-BAOA-4E5D-83E44C588624}\RP855\A0096189.exe and the
other file deleted was Crogram Files\US Robotics\Control
Center\atmdlusr.exe. Any help would be greatly appreciated.
Thanks --
Barb

A Google search for atmdlusr.exe indicates that it is a file
you would not want to restore.
You might want to leave that file deleted unless you're having
problems with your modem. If you're having problems with your
modem, you'll have to reinstall the modem drivers. Look for an
installation CD that came with the modem. You can also check on
the US Robotic web site.

As for System Restore, you might want to take a look at this
web site for troubleshooting information:

Courtesy of Bert Kinney, MS-MVP
Troubleshoot System Restore “Restore Point Failures” in Windows
XP
http://bertk.mvps.org/html/srfail.html

Many times System Restore won't work because one or more of the
restore points is corrupted. Since you say that AVG deleted a
file within a restore point, your only recourse may be to
delete all of them. To do that, scroll down to the "How to
purge the System Restore Store" section of that web site.
Remember to restart your computer after completing the
procedure.

Good luck

Nepatsfan

 

[Guest]

Thanks!! I'll give it a try. The only Windows XP disk I have is the
reinstallation disk that Dell sent with my computer. Windows XP was already
installed. Will that work as well?

 

[Guest]

Hi. Thanks. I do have an install disk that came with my US Robotics modem
but when I tried to reinstall after uninstalling, I wasn't allowed to; when
it got to that file it said "access denied and the virus detected screen came
up. No matter how I said to dispose of the trojan horse I couldn't install.
This is after I've deleted the trojan horse with AVG and then run other
spyware scans that say it's ok. It's almost like the trojan horse has gotten
onto my install disk? How could that be. I assume it's write protected.
And when I tried to install the call waiting portion my system went blue
screen and crashed. The modem seems to be working ok so I think I'll just
let it go. It appears the Trojan Horse is still there. Is there another way
to get around it and install new drivers, if need be. I did get System
Restore up and working, thank heavens. I needed to use it after the blue
screen and crash. Thanks for the advice!! I'm curious what Google said
about the file I mentioned in US Robotics and why it shouldn't be
reinstalled. Barb

 

[Nepatsfan]

No big secret as far as what Google returns when you search for
atmdlusr.exe.

http://www.google.com/search?hl=en&q=atmdlusr.exe&btnG=Google+Search

According to many of the listed sites, atmdlusr.exe is part of
an updater program that is installed along with the US Robotics
modem drivers. AVG may view that program as a trojan. I'm
unable to test that theory since none of my computers has a US
Robotics modem installed.

I would suggest shutting down AVG if you ever need to reinstall
the drivers for your modem. Once the installation is complete
you can restart AVG.

Good luck

Nepatsfan

(e-mail address removed),

 

[q_q_anonymous]

Thanks!! I'll give it a try. The only Windows XP disk I have is the
reinstallation disk that Dell sent with my computer. Windows XP was already
installed. Will that work as well?

backup all your DATA first (data won't be infected by a virus) e.g.
write to CD.
make a few CDs just in case.

Don't backup Programs, they may be infected.

The Dell CD that came with your system has the drivers. The serial
number to use when installing windows from the Dell CD, is on a label
somewhere on the outside of your computer.

Boot off the (Dell) CD. Once you install windows, open and close the
CD drive with the CD in there, so the CD autoruns, and follow the
instructions to install the drivers.

Then copy all your data to your comp from your backup CDs.