Infected Restore file- get rid of it how?

S

Susan

Restore Point Problem



Infected restore point cannot be cleared using the reset and re-enable
System Restore

However based on the results it appears that the file is located on a CDROM
(CDFS) and not on the C fixed disk.



Freedom lists the virus as D:\SYSTEM VOLUME
INFORMATION\_RESTORE{46DE8921-1D39-44D2-A9E9-64119261F211}\FIFOED\A0009633.EXE
but I cannot find this anywhere and when I scan my computer with Freedom it
does not find it after this initial startup alert. Please help!



n System
Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Pentium(R) M processor 1.60GHz
Percentage of Memory in Use: 54%
Physical Memory (total/avail): 1023.37 MiB / 463.21 MiB
Pagefile Memory (total/avail): 2460.63 MiB / 1868.36 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1995.05 MiB

C: is Fixed (NTFS) - 52.05 GiB total, 5.25 GiB free.
D: is CDROM (CDFS)
E: is Removable (No Media)



How should it be properly deleted?



TIA,

Susan
 
G

Guest

Susan said:
Restore Point Problem



Infected restore point cannot be cleared using the reset and re-enable
System Restore

However based on the results it appears that the file is located on a CDROM
(CDFS) and not on the C fixed disk.



Freedom lists the virus as D:\SYSTEM VOLUME
INFORMATION\_RESTORE{46DE8921-1D39-44D2-A9E9-64119261F211}\FIFOED\A0009633.EXE
but I cannot find this anywhere and when I scan my computer with Freedom it
does not find it after this initial startup alert. Please help!



n System
Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Pentium(R) M processor 1.60GHz
Percentage of Memory in Use: 54%
Physical Memory (total/avail): 1023.37 MiB / 463.21 MiB
Pagefile Memory (total/avail): 2460.63 MiB / 1868.36 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1995.05 MiB

C: is Fixed (NTFS) - 52.05 GiB total, 5.25 GiB free.
D: is CDROM (CDFS)
E: is Removable (No Media)



How should it be properly deleted?



TIA,

Susan
Click to expand...

Hi Susan,
= Read here then scan with another vendor for viruses and malwares:
http://forum.malwareremoval.com/viewtopic.php?p=164060&sid=100fd69c481fb0f3a3d16a744d16956f

= Run a scan from here on-line:
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Download Avast Cleaner from here:
http://www.avast.com/eng/avast-virus-cleaner.html
Lots of tools to download and disinfect your machine:
http://www.bitdefender.co.uk/site/Downloads/browseFreeRemovalTool/

For Malwares download both these software:
http://www.lavasoft.com/products/ad-aware_se_personal.php
http://www.safer-networking.org ; for Spybot S&D

= Then Download the Hijackthis and send the report to one of many
forums for analysis and troubleshooting:
When all else fails, HijackThis v1.99.1
(http://aumha.org/downloads/hijackthis.zip) is the preferred tool to use.
It will help you to both identify and remove any hijackware/spyware. Post
your log to http://aumha.net/viewforum.php?f=30,
http://castlecops.com/forum67.html,
http://forums.subratam.org/index.php?showforum=7, or other appropriate
forums for expert analysis, not here.
Does your Norton Up and current for updates and subscriptions?.
HTH.
nass
===
www.nasstec.co.uk
 
S

Susan

I am a little confused about the monitored drive. The CDROM drive is the D
drive. Can there exist a monitor D: partition? Are drive letters and
partition letters different? In other words can a same letter exist for
both?
 
Top