Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Dropper virus in System Volume Information folder

Status
Not open for further replies.
tazzzkitty

tazzzkitty

Technical User
Jul 25, 2003
15
US
A few days ago, a message popped up on my computer from my virus scanner saying that a trojan horse was found called dropper.small.dq in my System Volume Information folder. It said to run a virus scan and that that would clean it up. But then the virus scan found no viruses. I've tried it sevral times and with a few different virus scanners. I can't get into that folder to delete it manually because I guess it's protected. Can anyone tell me how I can delete this virus? It's causing no problems on my computer yet, which I guess means it hasn't activated yet, or hasn't dropped the virus yet, since that's what a dropper trojan horse does. But I want to get rid of it before it causes any problems! Any help would be greatly appreciated! Thanx!

 
Sort by date Sort by votes
Just disable System Restore, scan, then re-enable System Restore.
 
Upvote 0 Downvote
I tried both of these things, but neither one worked. That virus scanner was so out of date it wouldn't run and it wouldn't let me do the update for some reason. It had an error. Is there somewhere I can get a newer version of it? And I turned off System Restore and it still wouldn't let me have access to that folder. Any other ideas?
 
Upvote 0 Downvote
Use the "search" on windows (on the start menu) search for "dropper.small.dq", search hidden files also on all your drives (C:\ A:\ E:\ ect)if it find it delete it from search.

Do you think I should by a monkey, it's cheaper and better than windows :p
 
Upvote 0 Downvote
I am using AVG for my virus protection and I too have a similar problem. The virus is in the system volume information folder but even after I shut off the system restore I am unable to delete the virus.

AVG reports that the they are located in:

D:\System Volume Information\_restore{C13DACA1-5B31-4169-B9D4-F874BACC06A4}\RP205\A0143299.exe:\CrackerBox.CAB:\Crackerbox.exe which is Trojan horse DDoS.Crackerbox

and

D:\System Volume Information\_restore{C13DACA1-5B31-4169-B9D4-F874BACC06A4}\RP253\A0156653.exe:\install.exe Which is the Trojan horse Dropper.Small.DE

I have even tried to go into the system volume and manually deleting it with the system restore off and it still comes back. I am baffeled at this one. Anyone with any ideas?
 
Upvote 0 Downvote
Are you sure that you've turned off System Restore on your D: drive? Is your os ME or XP? Is this a dual boot system? What format is the D drive - NTFS or FAT32?
 
Upvote 0 Downvote
I had same problem with clients pc. AVG pointed to it intermittently, and never on a full scan. Had to give up in the end and reloaded OS.lovsan-a this time.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

iambob
  • Locked
  • Question
Avast Anti-Virus is.. a virus?! 3
Replies
5
Views
287
Oorde
Oorde
Mike Lewis
  • Locked
  • Question
MsMpEng.EXE in MSE: necessary? desirable?
Replies
3
Views
249
Mike Lewis
Mike Lewis
andyv2011
  • Locked
  • Question
Looking at Virus Actions
Replies
0
Views
122
andyv2011
andyv2011
Tiffc0922
  • Locked
  • Question
Virus / Malware Scans on Local PCs
Replies
5
Views
182
goombawaho
goombawaho
kharrison70
  • Locked
  • Question
Meskisift Visaal Studie Virus? 6
Replies
6
Views
180
goombawaho
goombawaho

Part and Inventory Search

Sponsor

Back
Top