Jump to content

rl22

Members
  • Content Count

    10
  • Joined

  • Last visited

About rl22

  • Rank
    Member
  1. rl22

    Gromozon trojan?

    Thanks for the response. I had tried the Prevx tool and it found no infection. I don't experience any anomalies with web sites so, I don't "believe" I am infected. I'll assume SAS is messed up.
  2. rl22

    Gromozon trojan?

    SAS quick scan shows 11 instances of The trojan Gromozon. After selecting "remolve threats" and rebooting, all 11 show up again. I searched SAS web site for an explanation but only found one forum question concerning Gromozon from 2006 which was unaswered. No other virus/malware scan from other vendors shows an infection. SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 07/18/2012 at 11:44 AM Application Version : 5.1.1002 Core Rules Database Version : 8919 Trace Rules Database Version: 6731 Scan type : Quick Scan Total Scan Time : 00:07:15 Operating System Information Windows Vista Home Premium 32-bit (Build 6.00.6000) UAC Off - Administrator Memory items scanned : 484 Memory threats detected : 0 Registry items scanned : 27237 Registry threats detected : 0 File items scanned : 6695 File threats detected : 11 Trojan.Gromozon (RootKit) C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\360AMIGO SYSTEM SPEEDUP.LNK C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\DOCCHECKLIST.PDF C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\FREE WINDOW REGISTRY REPAIR.LNK C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\INSTRUCTIONS_FOR_THEWORK.PDF C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\OPENOFFICE.ORG 3.0 (EN-US) INSTALLATION FILES\LICENSES\LICENSE_EN-US.HTML C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\OPENOFFICE.ORG 3.0 (EN-US) INSTALLATION FILES\READMES\README_EN-US.HTML C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\OPENOFFICE.ORG 3.0 (EN-US) INSTALLATION FILES\SETUP.EXE C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\ORBIT.LNK C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\PASSWORD-FOLDER-SETUP-BETA.EXE C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\RADIOSURE.LNK C:\USERS\PAVILION\DESKTOP\THUMBS.MS\COM1.{D3E34B21-9D75-101A-8C3D-00AA001A1652}\?ã.\LASTF\USB SAFEGUARD (J).LNK
  3. rl22

    RESTORING FILES

    Thank you. Installed SAS 4.4. It DOES NOT show previous quarantine from SAS 3.91. Exploring my computer files I find many in the recycle bin preceeded by "$". Perhaps the SAS quarantined files did go into the recycle bin. I'm thinking that I can restore these (though there are hundreds) through VIsta without using SAS...is this a good way to go? Or, should I try SAS 3.91, find quarantine file? WELL, the $ files are obviously not the ones that were quarantined. Just wondering if I should try to use SAS 3.91 before I resort to system recover. Problem is, I can't find SAS 3.91. There must be the quarantine file on my hard drive...just how to find it!
  4. rl22

    RESTORING FILES

    Do you mean installing the new SAS 4.4 will bring up the old quarantine or is the version I was using (3.91) needed?
  5. rl22

    RESTORING FILES

    Great, I'll try this but, I can't find my SAS 3.91 exe and can't find it on the web. Anyone know where it could be found? Thanks much!
  6. rl22

    RESTORING FILES

    Forgot to answer about Vista issues: It's working except for glitches such as, when I try to launch some programs there is a very long wait and then I get a message that the program is not responding.
  7. rl22

    RESTORING FILES

    I mistakenly left the files in quarantine when I uninstalled SAS. But, I'm wondering, if I reinstall SAS 3.91, could it possibly recognize the previously quarantined files and then restore them?
  8. rl22

    RESTORING FILES

    I posted yesterday about the SAS scan showing thousands of infected files. I was using version 3.91 which was the cause of all the false positives. UNFORTUNATELY, I allowed many of the false positives to be quarantined by SAS and then downloaded the newest SAS. BUT,I forgot to restore the files that went into quarantine before uninstalling SAS 3.91. NOW my Windows Vista is messed up and I tried a system restore but received the message that it was not successful! Now what can be done? Any suggestions would be most appreciated.
×