Solved Avira free detected Ramnit.A

MrT0ad · Oct 4, 2010

I'm not running OTL at the minute due to the alert

MrT0ad · Oct 4, 2010

Do you want me to run OTL despite the alert?

Broni · Oct 4, 2010

Run full Avira scan and report on any findings.
Make sure, Avira is updated.

MrT0ad · Oct 5, 2010

Good morning, Avira ran overnight and found these three viruses:

TR/PSW.Zbot.905
TR/Crypt.XPACK.Gen2
TR/Crypt.XPACK.Gen2

All the viruses were found in C:\System Volume Information\_Restore

I have the option to repair all, should I do that?

MrT0ad · Oct 5, 2010

I assume that this is the malware in the previous restore points that we want to delete as per your previous post.

Broni · Oct 5, 2010

Exactly, so you go ahead with my reply #49.

Now, it's my bed time

MrT0ad · Oct 5, 2010

thanks will do good night

MrT0ad · Oct 5, 2010

Here is the OTL log

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: All Users

User: Ben2
->Temp folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->FireFox cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes

User: NetworkService
->Temp folder emptied: 3322 bytes

User: Sara
->Temp folder emptied: 0 bytes

User: Sara.BEN
->Temp folder emptied: 0 bytes

User: User1
->Temp folder emptied: 1975 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 10151476 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1707127 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 11.00 mb

[EMPTYFLASH]

User: Administrator

User: All Users

User: Ben2

User: Default User

User: Guest

User: LocalService

User: NetworkService

User: Sara

User: Sara.BEN

User: User1

Total Flash Files Cleaned = 0.00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.14.1 log created on 10052010_064833

Files\Folders moved on Reboot...
File\Folder C:\WINDOWS\temp\TMP0000000F15B451C9DA6C58CC not found!

Registry entries deleted on Reboot...

Broni · Oct 10, 2010

The issue seems to be resolved.

MrT0ad · Oct 30, 2010

no recurrence since the clean up .... really appreciate it ....thanks
donation on its way

Broni · Oct 30, 2010

Thank you

Solved Avira free detected Ramnit.A

MrT0ad

Posts: 52 +0

MrT0ad

Posts: 52 +0

Broni

Posts: 56,041 +516

MrT0ad

Posts: 52 +0

MrT0ad

Posts: 52 +0

Broni

Posts: 56,041 +516

MrT0ad

Posts: 52 +0

MrT0ad

Posts: 52 +0

Broni

Posts: 56,041 +516

MrT0ad

Posts: 52 +0

Broni

Posts: 56,041 +516

Similar threads

Latest posts