Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Avg Virus Vault


  • Please log in to reply
1 reply to this topic

#1 Halek

Halek

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:20 AM

Posted 16 August 2007 - 09:40 PM

I have AVG Free and Antispyware installed.
I have been trying to get thru to their forum without any progress.
Frankly I am confused about what to do next!

Because I suspected a virus might be making my computer act erratically I ran a manual scan.
The results have me puzzled. The Control Center say my Data file is up-to-date and I am protected. The Test Results however show that Kernel32.dll and ntoskrnl.exe have been changed.
Is this an indication of a problem?

The Virus Vault shows 9 listings, the most recent in 2/07. My computer had been functioning Ok up to about a week ago.
Is this an indication that AVG did it’s job and caught these before they could affect my system?
The list shows I-Worm/Nuwar , Downloader.Generic2.EBC & several instances of Downloader.tibs all associated with Postcard or Greeting Card
Should I do anything more than “empty the vault”? Or do I need to do more to remove them?

Thanks in advance for any help!!!

BC AdBot (Login to Remove)

 


#2 tg1911

tg1911

    Lord Spam Magnet


  • Members
  • 19,274 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:SW Louisiana
  • Local time:07:20 AM

Posted 16 August 2007 - 10:05 PM

I noticed that my partition table MBR, boot sector, kernel32.dll, shell32.dll, ntoskrnl.exe all say changed.

It is normal that AVG shows that files, the MBR, or Boot record to have changed. These are done during normal maintainance, when you, or Windows, updates files, or have had to correct errors on the harddrive. The only time that you should worry is if they also show as infected.

To get AVG to quit showing them as changed, open the AVG Test Center, click the F3 key on your keyboard and tell it to accept the changes. If it still shows something as changed after this.. delete the file named AVG7QT.DAT in C:\ and AVG will rebuild it the next time it is run.


The Virus Vault shows 9 listings, the most recent in 2/07. My computer had been functioning Ok up to about a week ago.
Is this an indication that AVG did it’s job and caught these before they could affect my system?

Correct

Should I do anything more than “empty the vault”? Or do I need to do more to remove them?

Just empty the Vault, to be rid of them.
MOBO: GIGABYTE GA-MA790X-UD4P, CPU: Phenom II X4 955 Deneb BE, HS/F: CoolerMaster V8, RAM: 2 x 1G Kingston HyperX DDR2 800, VGA: ECS GeForce Black GTX 560, PSU: Antec TruePower Modular 750W, Soundcard: Asus Xonar D1, Case: CoolerMaster COSMOS 1000, Storage: Internal - 2 x Seagate 250GB SATA, 2 x WD 1TB SATA; External - Seagate 500GB USB, WD 640GB eSATA, 3 x WD 1TB eSATA

Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users