| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 43160 | 2004-03-05 09:12:00 | System Volume Information Virus | delco_guy (5354) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 220310 | 2004-03-05 09:12:00 | Hi, My virus scanner is telling me that I have a file with a virus that is located in a directory within the System Volume Information folder, however when I try and access the folder I recieve a dialogue box telling me that Access is denied. Also when I run the anti-virus program it doesnt seem to scan the whole directory. Is there any way that I can get into the System Volume Information to locate the file, so I can delete it? |
delco_guy (5354) | ||
| 220311 | 2004-03-05 09:28:00 | Welcome to Press F1... The virus is in your restore point files, it was "backed up" by system restore from an infected system file Would help to know what version of Windows, but in general turn off System Restore, reboot, turn on System Restore. That purges all system restore info. It means you can't restore the system to an earlier date, but you wouldn't want to restore a virus infected system anyway. |
godfather (25) | ||
| 220312 | 2004-03-05 09:28:00 | Hi delco_guy, and welcome to PressF1 . Your virus scanner has most likely restricted access to the folder within System Volume Information, even though it is a restricted system folder which you can't access normally . Quoting from the Symantec website: "One of the new features of Windows Me and Windows XP is System Restore . This feature, which is enabled by default, is used by Windows to restore files on your computer in case they become damaged . Windows Me keeps the restore information in the _RESTORE folder . Windows XP stores this information in the System Volume Information folder . These folders are updated when the computer restarts . If the computer was previously infected with a virus, then it is possible that the virus was backed up in the _RESTORE or System Volume Information folder . Files in the System Restore folder cannot infect the computer unless the computer is restored to an infected restore date . Because of this, NAV excludes the _RESTORE and System Volume Information folders from scanning by default . " To solve your problem, disable System Restore function (Right-click My Computer, Properties, System Restore, Turn Off System Restore), restart your computer (this should delete the contents of the System Volume Information folder), then do a virus scan . Re-enable System Restore . If you have any problems, post back here and someone will try to help you . |
somebody (208) | ||
| 1 | |||||