Quote:
ComboFix 07-08-07.6 - "User" 2007-08-07 22:48:21.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.101 [GMT -5:00]
|
You posted an incorrect copy of combofix log. This was the log from your previous run. I would like a copy of the log that's produced after running CFScript.
"Healed" is a misnomer. If legitimate files gets patched by malware code, antivirus programs will attempt to heal/repair them (to remove malware code & restore the file). Some files are in their entirety, created by malware. There's no healing for them. They need to be deleted. The picture you attached shows an infected file from the System Volume Information folder; that's where System Restore's cache is stored. Whatever is in there can't harm you unless you choose to perform a manual restore. Nevertheless, we shall be reseting/clearing the cache in a little while
Go to Start → Run → type
control sysdm.cpl,,4 & press Enter
- Tick on the checkbox - Turn off System Restore on all drives
- Click Apply
Turn it back 'On' by unticking the same checkbox & click OK
-------
C:\QooBox\ is ComboFix's quarantine folder. You can safely delete it
Tell me if you're still getting AVG alerts after this.
__________________
Question - what have you done for the community today?