Win32:Shutdowner-CD [PUP]

so i decided to do a boot scan and this is what came up twice
Win32:Shutdowner-CD [PUP] in system restore is it an actual infection and how does one get infected by it if it is

It’s a PUP (Potential Unwanted Program). It could be used for good or for bad. It’s not a real infection.
Which is the file name and path?

oh scared the hell out of me and ill go look

im writing this from another computer so im trying to access the information you need now
03/30/2010 11:22
Scan of C:

File C:\System Volume Information_restore{95FBC0F6-5912-4502-8A4C-5F84E33A85EF}\RP45\A0008294.exe|>SmitfraudFix\restart.exe is infected by Win32:Shutdowner-CD [PUP], Deleted
File C:\System Volume Information_restore{95FBC0F6-5912-4502-8A4C-5F84E33A85EF}\RP45\A0008311.exe is infected by Win32:Shutdowner-CD [PUP], Deleted

Yes, it is just a tool that is used by smitfraudfix to restart, which you have at some point removed and system restore has created a restore point for them.

Deletion isn’t really a good first option (you have none left), ‘first do no harm’ don’t delete, send virus to the chest and investigate. However, in this case there is no real downside, but deletion without 100% investigation/confirmation isn’t a habit you want to get into.

- Infected Restore Points - There really is little benefit in chasing a detection in the system volume information folder. It is only there because it had previously been deleted or moved from the system folders and this is a back-up created by system restore. 
 
- Worst case scenario it isn't infected and you delete it, you can't use that restore point in the future, not much of a loss and the older the restore point is the less of an issue it is. 
 
- So if there is any suspicion about a restore point then it is best removed from the system volume information folder or it could bite you in the rear at some point in the future when you use system restore if it included that restore point.

aah thanks yeah after reading over the log i remembered running that program but iv been wake for about 45 hours now was goign to go to bed and let the boot scan run but decided to check it and low and behold what do i see but that scared me since a couple weeks ago well updating a game called entropia universe my computer was totaled i was only just able to get my files backed up and that took me a few hours THEN it took me another 48 straight hours of reprogramming just to get everything back on i wasnt looking forward to that

so thanks for clearing that up

jay

http://forum.avast.com/index.php?topic=57825.0

You’re welcome.