system restore not working

  march 09:25 11 Jan 2013

Hi can anyone help please? running vista, pc seems to be working fine but found but avg found a virus so I thought a system restore would help to remove it so, have been trying to do system restore, get this message after , system restore did not complete successfully an unspecified error occurred during system restore

avg has in virus vault this


infected -c:\windows\system32\rundell32.exe - file or directory deleted- c:\windows\system32\rundell32.exe - process deleted moved to virus vault- c:\windows\system32\rundell32.exe - file or directory
healed –hkeylocalmachine_\software\microsoft -registry key

could someone point me in right direction to get system restore working please and tell me why it isn’t at moment, is it something to do with avg and virus?

would I be able to just delete the virus in avg? then Can I turn system restore off then take a new restore point if I do delete the virus?

thank you for any help march

  onthelimit1 09:42 11 Jan 2013

I would go for your last option - if AVG can shift the virus, no need to do a system restore.

  march 09:58 11 Jan 2013

thank you for response onthelimit1, please bear with me not sure how these things work, do i just select the item in avg and then delete? Am bit worried as it says its a system file?

  Fruit Bat /\0/\ 10:24 11 Jan 2013

c:\windows\system32\rundell32.exe is a system file and will need to be replaced with a GOOD copy

It will be doing no harm in the vault, you can delete it if you wish.

Type sfc /scannow in the search box Press Enter and let windows find and replace missing or corrupt windows files. This will repair you operating system.

System restore is probably failing due to a corrupt restore point. Switch off system restore to delete all restore points reboot and switch it back on again and it will create a new restore point.

  woodchip 10:57 11 Jan 2013

Trojans are not virus's they carry payloads that do damage. That's where it gets its Name, Trojan Horse had solders inside it

  march 11:55 11 Jan 2013

thanks woodchip for telling me its not a virus, I've learnt a bit more thanks to you,

Fruit Bat /\0/\ have done what you said with sfc, its completed but not said its replaced or repaired anything, would it have just done repaired/replaced automatically? if so I will delete the trojan from avg then do a system restore next.


  Fruit Bat /\0/\ 13:51 11 Jan 2013

It won't always says its replaced nything especially if replacing from a pre-installed hard drive, otherwise it will ask for theDVd to locate the file from.

You do not need to do a system restore!

Just switch it off and back onagin to get rid of any corrupt restore points. Sometimes a virus is copied into a restore point (especially in ain a system file - restoring would just bring the virus back again now AVg has moved it to the vault.

Delete it from the vault and forget about it.

If worried let AVG do another scan to check everything is OK.

  march 14:04 11 Jan 2013

Fruit Bat /\0/\

Have deleted fron avg, done a check with avg, malwarebytes and dr web, nothing found, have now got rid of old restore points and done new restore point.

the pc seems to be working faster than before dont know if that because trojan has gone or me imagining it?

thank you very much for your time and help, big thanks to everyone who posted

regards march

  Fruit Bat /\0/\ 14:16 11 Jan 2013

The PC is working faster - that could be a result of the sfc repair to the opsystem. Glad everything is Ok.

Please tick in the right hand column to close the thread.

  march 14:42 11 Jan 2013

have resolved this and tried clicking on tick in right hand column to no avail.

  Fruit Bat /\0/\ 15:28 11 Jan 2013

Some ad blockers prevent the green tick from working correctly so don't worry about it :0)

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

Samsung Galaxy A8 review: Hands-on

Majority of illustrators don’t earn enough to live from, new survey shows

iPhone X problems

Word gratuit : comment télécharger le logiciel de Microsoft ?