Trojan Problem

Ok I come here because you all are the best at this kind of thing. Well I sure hope so anyway.

Here goes. I seem to have picked up a trojan somewhere. Not sure where or how. I never open e-mails that I don't know exactly where they've come from & I don't frequent those other unmentionable sites.

Anywho......it's some kind of Trojan Downloader thingy. It goes by the name Downloader.Dyfica.V and it's located in the "System Volume Information" folder which is a Hidden folder that is Access Denied. I've run everything under the sun to get rid of it. AVG says it removes it, SpyBot says it's gone, AdAware doesn't show it anymore ( it did the first time I ran it ), but it always comes back. AVG gives me a popup saying that it is loaded again & to run the anti-virus. It removes it again, but it keeps coming back.

So my thought is.......might there be a way to get into that "System Volume" folder & just delete it or is there some other way to actually remove it short of reformatting? I'm not exactly opposed to reformatting, but I'd really like to not have to.

Any help at all on this will be most appreciated.

 

turn off system restore restart in safe mode re scan with your anti-virus clean what comes up reboot then restart your system restore

see how that goes

 

Okee dokee will do that right now & get back with the results. Thnx

 

Ok guys that seems to have done it. Thnx bunches.

 

I hear pros and cons about using system restore, seems to me that even if you have in enabled, if you get one of these worms. trojans, you will lose your restore settings when you have to disable it.

 

lol np man
another case when great minds think alike

@suesman glad its sorted


@greyhound
system restore is a great tool but i clean out my old logs every week after reading some posts here from wizewiz
i figured if its good for the wizard its got to be good for me

 

Hey, very (very) fast dog-guy!

I can't think of a single con, and I have learned about everything there IS to know about Sys Restore. If you get a nasty, it's likely to get in there, because SR is tracking every significant change to the system since the last restore point (RP). So IF you get a nasty, you're likely to lose your RPs as part of getting rid of it.

But RPs have lots of pros (not cons) for those NON-virus/trojan/worm things that happen to your computer. You screw up a reg edit. An installation goes bad. A rotten boot leaves you with bizarre settings. Any number of bad things that are NOT nasties happen to your computer, and your SR system, with a little care and handling, can save you from many of them. I have used RPs about five times in the past year, and every time I've been really glad they were there ... cuz they WORK!

A year or so ago, when the famous baaaad Windows Update happened that ground lots of machines to a crawl (and mine was definitely one of them: argh!), SR came to my rescue. I uninstalled the update, but things were still kinda wonky on the system, and it just didn't FEEL right. I went back to the RP just before the update and everything was just perfect again. And it was so EASY!

Now I always make a manual RP before every experiment or new install, cuz it's so easy to fix a bad mistake by using that one little RP.

Keep it running by emptying it periodically and re-setting it. You can clean out all but one with Disk Cleanup, or you can clear 'em all by just turning it off and turning it back on. But to completely re-set it, you have to turn it off, then REBOOT, and then turn it back on.

And if you're going to clean it out once a week or so, adjusting the slider is pointless. Just let it work at its default, then clear it periodically.

It's not a backup and it's not an image and it doesn't take the place of exporting the reg key you're about to tweak, but by Golly, it's a great little life-saver when you need it.

That's the way I see it, anyway.

 

Wise One! I had an interesting issue crop up with System Restore I wanted to let you know about.

I did a system restore to when I installed Grand Theft Auto, it was automatically created. I didn't restore to one before.

What I ran into was this:

The application that intiated the restore did so before the program was completely installed.

So when I restore back to that time, the game was missing some, not all shortcuts, the game wouldnt launch, it was quite obvious it was broken.


Moral of this story? Don't trust a program to initiate your system restore points for you

 

And a damned fine moral it is, too, Adryn. Thanks for that info to add to the old storehouse.

Do the "Create a Restore Point" boogie before you install,
Yabba dabba, yabba dab, yabba dab.
Ya won't regret it; not at all,
Yabba dabba, yabba dab.

 

Well I usually have GoBack installed, which is a much better program then what Windoze gives you. I can't tell you how many times GoBack has saved me. When you restore using GoBack it removes all changes made since that point. "Restore" doesn't actually do that does it? Guess it's time to reinstall it huh?

Thnx again. Restore is now disabled altogether. Digging out the GoBack disc right now.

 

A nibblet of info you may find interesting about GoBack:

It modifies your filesystem so that if you ever have to reinstall Windows, it doesn't recognize your filesystem anymore.

GoBack is just as intrusive on a hard disk as a drive overlay.

 

Thanks WW, guess that put me in a new frame of mind, I just reenabled RP. Didn't see any slider on mine but then I am still running ME. BTW Greyhound was what they used to call the Destroyer, a very fast ship.

 

Destroyer, eh?

Well, I didn't mean to preach, but I sure recommend it. Thanks for listening.

Hey, cool, I didn't know that! I'll never kid you about your nickname again. Honest.

 

No problem, was a FYI only.