Ponza A vrius

  • Thread starter Thread starter Miles
  • Start date Start date
M

Miles

My anti virus program (CA e-Trust EZ AntiVirus) has
identified the following Ponza A virus:

C:\System Volume Information\Restore{F8D3E663-439A-4F56-
A12E-87568CA318C1}\RP100\A0012728.exe

I see the C:\System Volume Information\ path under the
anti-virus software view of the tree, but can't figure
how to access it for deletion of the virus.

I have run both Spybot & AdAware without luck; I have
used 'search' to try to find portions of the string
without luck.

Any suggestions would be appreciated.
TIA, Miles
 
My anti virus program (CA e-Trust EZ AntiVirus) has
identified the following Ponza A virus:

C:\System Volume Information\Restore{F8D3E663-439A-4F56-
A12E-87568CA318C1}\RP100\A0012728.exe

I see the C:\System Volume Information\ path under the
anti-virus software view of the tree, but can't figure
how to access it for deletion of the virus.

I have run both Spybot & AdAware without luck; I have
used 'search' to try to find portions of the string
without luck.

Any suggestions would be appreciated.
TIA, Miles
Click to expand...

Disable System Restore to remove its contents. System Properties> System
Restore. Check box next to "Turn off System Restore on all drives." Restart
the computer to allow these folders to flush their contents. Then go back
to the same location and restart System Restore.
 
Hi Miles,

The virus is in a System Restore folder. It is not harmful there, unless you
invoke that restore point. Eventually, it will be purged, but if you want to
remove it now you will need to purge the restore point.

There are three ways to easily remove restore points (you should not do this
selectively).

1) Start/run cleanmgr.exe (disk cleanup), there is a "clean up" button on
the "more options" tab to remove all but the newest restore point.

2) Control Panel/System/System Restore tab, go to settings and reduce the
amount of space allotted to System Restore. This will remove older restore
points, how many depends on how much space you require for a point, and how
much space you leave.

3) Control Panel/System/System Restore tab, click the "turn off system
restore on all drives" box. This will eliminate all restore points. Once
reenabled, the system will begin creating new ones. You should reboot in
between doing this.

--
Best of Luck,

Rick Rogers aka "Nutcase" MS-MVP - Win9x
Windows isn't rocket science! That's my other hobby!

Associate Expert - WinXP - Expert Zone
 
Greetings --

The System Volume Information is the folder in which WinXP's
System Restore feature stores information used to recover from errors.

To clear viruses from the "System Volume Information," simply turn
off the System Restore feature (Start > All Programs > Accessories >
System Tools > System Restore, System Restore Settings), reboot, then
re-enable System Restore, and reboot one last time. This will delete
all of your Restore Points, including the corrupted one(s), and allow
you start with a clean slate.


Bruce Chambers

--
Help us help you:




You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
 
Back
Top