losing my mind, please help!

losing my mind, please help!
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
losing my mind, please help! laurie93_6 01-03-2006
Posted by =?Utf-8?B?bGF1cmllOTNfNg==?= on January 3, 2006, 1:45 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi good people!

I am getting virus notices from my Antuivirus, this is the report and the
files listed:

----[ Files Still Infected ]------------

Virus:        BehavesLike:Win32.ExplorerHijack
Status:                Disinfect Failed
C:\System Volume
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>irx.exe

Virus:        Trojan.WinReg.LowZones.G
Status:                Deletion Failed
C:\System Volume
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>kans.reg

C:\System Volume
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>kansup.reg

My Instructions were to turn off my "Systyem-Restore" and to reboot and turn
it back on and it was supposed to clean it out but no good?
I have tried to delete it but cant access my system volume folder why is this?

Is there a tool I can run or something to get to this nasty thing, it is
making me nuts and I am barely staying ahead of my kids and their hormones on
these nasty sites!!

Last Q, my son is using "AIM" to talk with friends and of course I know its
a bad source and one of my problems but are those multi platform IM's any
more secure? Like maybe they are not as targeted as AIM is? (by viruses etc.
I mean)
--
laurie93_6@hotmail.com

Posted by Jurren Bouman on January 3, 2006, 4:02 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Disable System Restore, see these instructions for Windows ME:
http://support.microsoft.com/kb/264887/en-us

For Windows XP:
http://support.microsoft.com/kb/310405/en-us
you need to be logged in as "adminstrator" to do this.

"How antivirus software and System Restore work together"
http://support.microsoft.com/kb/831829/en-us



laurie93_6 wrote:
> Hi good people!
>
> I am getting virus notices from my Antuivirus, this is the report and the
> files listed:
>
> ----[ Files Still Infected ]------------
>
> Virus:        BehavesLike:Win32.ExplorerHijack
> Status:                Disinfect Failed
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>irx.exe
>
> Virus:        Trojan.WinReg.LowZones.G
> Status:                Deletion Failed
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>kans.reg
>
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
Sfx o)=>kansup.reg
>
> My Instructions were to turn off my "Systyem-Restore" and to reboot and turn
> it back on and it was supposed to clean it out but no good?
> I have tried to delete it but cant access my system volume folder why is this?
>
> Is there a tool I can run or something to get to this nasty thing, it is
> making me nuts and I am barely staying ahead of my kids and their hormones on
> these nasty sites!!
>
> Last Q, my son is using "AIM" to talk with friends and of course I know its
> a bad source and one of my problems but are those multi platform IM's any
> more secure? Like maybe they are not as targeted as AIM is? (by viruses etc.
> I mean)

Posted by Malke on January 3, 2006, 7:57 am
If you were  Registered and logged in, you could reply and use other advanced thread options
laurie93_6 wrote:

> Hi good people!
>
> I am getting virus notices from my Antuivirus, this is the report and
> the files listed:
>
> ----[ Files Still Infected ]------------
>
> Virus: BehavesLike:Win32.ExplorerHijack
> Status: Disinfect Failed
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
> Sfx o)=>irx.exe
>
> Virus: Trojan.WinReg.LowZones.G
> Status: Deletion Failed
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
> Sfx o)=>kans.reg
>
> C:\System Volume
>
Information\_restore\RP159\A0013830.exe=>(RAR
> Sfx o)=>kansup.reg
>
> My Instructions were to turn off my "Systyem-Restore" and to reboot
> and turn it back on and it was supposed to clean it out but no good?
> I have tried to delete it but cant access my system volume folder why
> is this?
>
> Is there a tool I can run or something to get to this nasty thing, it
> is making me nuts and I am barely staying ahead of my kids and their
> hormones on these nasty sites!!
>
> Last Q, my son is using "AIM" to talk with friends and of course I
> know its a bad source and one of my problems but are those multi
> platform IM's any more secure? Like maybe they are not as targeted as
> AIM is? (by viruses etc. I mean)

Mr. Bouman has given you instructions how to turn off/on System Restore.
Here are some general malware removal steps (with System Restore
information there also):

http://www.elephantboycomputers.com/page2.html#Removing_Malware

If you are concerned, go through at least some of those steps.

As for AIM, there is nothing wrong with instant messaging programs per
se. What you need to do is train your users (like I train my kids) to
never click on links or accept files that come in IM's. I don't care
who the links or files are. My kids understand the risks (and what will
happen to their computers - and the consequences to them from Mom if
they mess up their computers) and I'm sure your kid is smart, too.

Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User

Similar ThreadsPosted
Re: Mind Control "mailteam" works-- victims work trends February 12, 2008, 11:38 am
Keep losing file associations November 4, 2005, 11:50 pm
losing share connection May 27, 2005, 8:15 am
keeps losing local group membership April 6, 2006, 9:47 am
2000 server is losing data files February 17, 2006, 7:52 am
Can I switch hard drives w/o losing data? March 22, 2006, 5:42 am

The site map in XML format XML site map

Contact Us | Privacy Policy