Jump to content
Posted 10 December 2007 - 02:30 PM
Posted 10 December 2007 - 02:45 PM
kernel32.dll, wsock32.dll, user32.dll, shell32.dll and ntosknrl.exe have "changed"
There are many valid reasons for those files to show changed, a Windows update, file system check that replaced them if corrupted, and others. As long as AVG doesn't say they are infected it is ok. If it continues to show changed, delete the following file(s) in the C:\ directory and AVG will create a new one(s)...AVG7DB_F.DAT, AVG7QT.DAT
Changed File Alerts
It is normal that AVG shows that files, the MBR or Boot record to have changed. These are done during normal maintainance, when you or windows updates files or have had to correct errors on the drive. The only time that you should worry is if they also show as infected.
To get AVG to quit showing them as changed, open the AVG Test Center, click the F3 key on your keyboard and tell it to accept the changes. If it still shows something as changed after this.. delete the file named AVG7QT.DAT in the %ALLUSERSPROFILE%\Application Data\avg7\ folder and AVG will rebuild it the next time it is run.
The %ALLUSERSPROFILE% is different for each version of Windows. The following are the typical locations for XP and Win9x
XP - C:\Documents and Settings\All Users\Application Data\avg7
Win9x -C:\Windows\All Users\Application Data\avg7
Posted 10 December 2007 - 03:05 PM
0 members, 0 guests, 0 anonymous users