Trend Micro is seeing this, but AntiSpyware is not

  • Thread starter Thread starter charles wright
  • Start date Start date
C

charles wright

Real-time Scan
Trend Micro PC-cillin Internet Security has detected a
virus, spyware application, or other Internet threat, and
performed the action specified.

Infected file: C:\System Volume Information\_restore
{7DF4E3E9-1855-4D42-9F72-ED87DCB5B14B}\RP354\A0039992.dll
Virus name: SPYW_WTANGENT.A
User name: Charles Wright
Scan action result: Denied Access.
Note: If Search for and clean Trojans is enabled and is
executed after scanning, you can click Next to view final
scan result information.
 
If access is denied by Trend, how can MSAS can see it? If you want to test,
restart in safe mode and run only MSAS full scan.
 
You are seeing a remnant of spyware, presumably Wild Tangent, in a System
Restore restore point.

This is not dangerous, unless you actually restore the system to this
restore point.

A great source of information is:

http://www.bleepingcomputer.com/forums/index.php?showtutorial=56

Using the Disk Cleanup tool, you can remove all but the most recent restore
point--this is one safe way to remove older restore points which may have
virus executables included, but keep a good current one.
 
Back
Top