AVG 2013 Says Volsnap Infected With Trojan Generic3_c.BNQG

Page 2 of 3 FirstFirst 123 LastLast

  1. Posts : 572
    Windows 7 Professional x64
    Thread Starter
       #11

    I thought the Alureon was a dns style infection?
    Attached Thumbnails Attached Thumbnails AVG 2013 Says Volsnap Infected With Trojan Generic3_c.BNQG-capture.jpg  
      My Computer


  2. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #12

    It redirects you do to the DNS

    But take a look at this

    Code:
    Installation
    
    Virus:Win32/Alureon.I is the detection for "volsnap.sys", a system driver that has been infected by members of the Win32/Alureon family.
    Taken from the link below

    Link Encyclopedia entry: Virus:Win32/Alureon.I - Learn more about malware - Microsoft Malware Protection Center
      My Computer


  3. Posts : 572
    Windows 7 Professional x64
    Thread Starter
       #13

    Your right, I did not see that. so I should also be prepared for a bigger infection correct?
      My Computer


  4. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #14

    mohavepc

    With cottonball's help you will be cured . He has worked on a lot of Alureon trojans on people's PCs
      My Computer


  5. Posts : 572
    Windows 7 Professional x64
    Thread Starter
       #15

    I appreciate it VistaKing and I will await Cottonball's return.
      My Computer


  6. Posts : 2,470
    Windows 7 Home Premium
       #16

    My apology for the delay. Do not like to do things in a hurry...

    Will be back @ 4:30PM CST and we will proceed.

    Thanks for your patience.
      My Computer


  7. Posts : 2,470
    Windows 7 Home Premium
       #17

    mohavepc,

    Please copy/paste the text inside the quote box to Notepad (Do not copy the word 'Quote')

    Replace: C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_158d0da45d68903e\volsnap.sys C:\Windows\System32\drivers\volsnap.sys
    In Notepad, click File (at the top), and select: Save As...
    In the Save As... prompt, name the file fixlist.txt, and save it to the USB pendrive <<--- Important!!

    NOTE. It is important that FRST and the fixlist.txt are in the same location (USB pendrive) or this will not work.

    Run FRST64 as you did previously, press the Fix button, just once, and wait.

    When done, the tool makes a log on the Desktop: Fixlog.txt

    Please post Fixlog.txt in your reply.
    Last edited by cottonball; 24 May 2013 at 17:20.
      My Computer


  8. Posts : 572
    Windows 7 Professional x64
    Thread Starter
       #18

    cottonball said:
    mohavepc,

    Please copy/paste the text inside the quote box to Notepad (Do not copy the word 'Quote')

    Replace: C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_158d0da45d68903e\volsnap.sys C:\Windows\System32\drivers\volsnap.sys
    In Notepad, click File (at the top), and select: Save As...
    In the Save As... prompt, name the file fixlist.txt, and save it to the Desktop <<--- Important!!

    NOTE. It is important that FRST and the fixlist.txt are in the same location (Desktop) or this will not work.

    Run FRST and press the Fix button, just once, and wait.

    When done, the tool makes a log on the Desktop: Fixlog.txt

    Please post Fixlog.txt in your reply.
    FRST is going to be able to copy a system file in a "running" windows environment?

    Ran from desktop of corrupted machine
    here is the log

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 23-05-2013
    Ran by Holly at 2013-05-24 15:03:45 Run:1
    Running from C:\Users\Holly\Desktop
    Boot Mode: Normal
    ==============================================
    C:\Windows\System32\drivers\volsnap.sys => Could not move.
    Could not replace C:\Windows\System32\drivers\volsnap.sys
    ==== End of Fixlog ====

    Would it be easier if I booted into Linux and copied the file? I have several live disks at my disposal.
    Last edited by mohavepc; 24 May 2013 at 17:14. Reason: clarification
      My Computer


  9. Posts : 2,470
    Windows 7 Home Premium
       #19

    mohavepc,


    I think I lost it!!


    Trying to do too many things at once. My apology...

    Modified the previous instructions. Please try them again.
      My Computer


  10. Posts : 572
    Windows 7 Professional x64
    Thread Starter
       #20

    L O L .... I was wondering there for a few. ok here is the new log

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 23-05-2013
    Ran by SYSTEM at 2013-05-24 15:23:31 Run:2
    Running from F:\
    Boot Mode: Recovery
    ==============================================
    C:\Windows\System32\drivers\volsnap.sys => Moved successfully.
    C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_158d0da45d68903e\volsnap.sys copied successfully to C:\Windows\System32\drivers\volsnap.sys
    ==== End of Fixlog ====
      My Computer


 
Page 2 of 3 FirstFirst 123 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 01:12.
Find Us