Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 6 subscribers
  • Views 10223 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Mal/Generic-L

Sundance

The scan found 4 problems. But only helped with 3

I still have one major virus that wont go

Mal/KeyGen-M: This came back 3 times now it’’’’s gone

Troj/JavaBz-CV: This is gone

Troj/ZAccess-AH: This is gone

Mal/Generic-L:  This is not going (Disinfection failed)

>>> Virus 'Mal/Generic-L' found in file C:\System Volume Information\_restore{5602B260-5887-48B2-8A4B-12A708160559}\RP200\A0030058.sys\FILE:0000

Disinfection failed

Scan completed.

How do I get ride of this thing?

:24591


This thread was automatically locked due to age.
Parents
  • 0

    Hi Sundance,

    I'm having to guess on a lot of things here, it sounds like some malware is still running (Possibly dropped by that Keygen that was detected), if you restart then scan with the Sophos Virus Removal Toolkit again, is Troj/ZAccess-AH detected again?

    If so, then you may need to do some investigation into what is dropping the file (As you mentioned, it sounds like something is still running in the background), I can't give you any direct steps for this sadly, but we do have a white paper (a bit techy) on Zero Access which may help you or someone else look into it for you.

    You'll also find a lot of online information about Zero Access if you search.

    http://nakedsecurity.sophos.com/zeroaccess/

    Thanks.

    :24765
Reply
  • 0

    Hi Sundance,

    I'm having to guess on a lot of things here, it sounds like some malware is still running (Possibly dropped by that Keygen that was detected), if you restart then scan with the Sophos Virus Removal Toolkit again, is Troj/ZAccess-AH detected again?

    If so, then you may need to do some investigation into what is dropping the file (As you mentioned, it sounds like something is still running in the background), I can't give you any direct steps for this sadly, but we do have a white paper (a bit techy) on Zero Access which may help you or someone else look into it for you.

    You'll also find a lot of online information about Zero Access if you search.

    http://nakedsecurity.sophos.com/zeroaccess/

    Thanks.

    :24765
Children
No Data