Hi Zbynek
I copied to quarantine the TDSS killer detections, but didn't remove them because at least 2 of them referred to a programme I hope is ok. The more I read about this stuff the more I realise you have to be careful what you remove from your PC, but I don't have the knowledge yet to discern what should go and what should stay. Unfortunately when I tried to upload the avg results, scans/gmer etc you got the files empty. the ftp uploader said the files had been send but didn't give me a filename to tell you. Problems problems, there seem to be more problems than answers
Hi Chris,
It should be always possible to fix it instead of factory reset, but factory reset is much faster/easier so users prefer it. When TDSS killer identified threats did you also removed them?
It is hard to advice without seeing any actual result.
Thanks
Umm, zbynek and alan, mailer daemon rejected my reply email - avg no reply etc… ill try the new tool. rgds chris
Hi alan, on the upload instructions link it asks me to inform avg once ive uploaded the files, is this not necessary? cool if it isnt, saves me a phone call
Hi Zbynek/alan,
I tried downloading the sysinfo.exe file, but it came back file not found.
seems i cant get this information to you.
ive been having problems with avg recently in that it keeps stopping. starts with identity protection, then the whole thing stops. updates keep failing, and, being a newbie to this stuff, ive just discovered in the event log there have been no entries since 27/12/13. ive removed all other antivirus programs except microsoft security essentials. but ive found that parts of spybot and avast free versions. are difficult to remove, even using avasts removal tool i find avast icons here and there.
what now? rgds chris
two infected files found by whole computer scan. type - part of operating system
inline hook win32sys.w32pArgumentTable+0x2A2C->0xFFFFF95F8013780B
inline hook win32sys.w32pArgumentTable+0x4944->0xFFFFF95F80139707
Is this a genuine rootkit/threat or a false positive? I downloaded and ran Avast free av the previous day, to see if it flagged anything avg didnt. resulted in a blue screen event and hard shutdown, rebooted, avast was installed, ran scan and no detections, following day booted up and avast wouldnt load error msge said it was wrong version for my windows 7! scanned with avg and got above report. ran malwarebytes and kaspersky antirootkit. nothing. any help appreciated.
Hi Chris,
It should be always possible to fix it instead of factory reset, but factory reset is much faster/easier so users prefer it. When TDSS killer identified threats did you also removed them?
It is hard to advice without seeing any actual result.
Thanks
Hi Chris,
Please note that there shouldn't be running multiple real time protections.
You can try scan your computer using updated AVG Rescue CD (http://forums.avg.com/ww-en/avg-forums?sec=thread&act=show&id=68967).
Thanks
You are right Bruce, I did go through the scan options and ticked everything. After that I got the notifications, You are also right I havent' checked the help sectionmuch , and will do that asap. but prior to that I got the Inline Hook rootkit detection from a normal scan, which AVG couldnt remove. A british computer magazine recommended that we should use a variety of free antivirus programs which will result in detections missed by one being caught by another, this seems to be the case.
AVG flagged the rootkits and another infected file now quarantined. Malwarebytes flagged two registry keys and a Googlechrome file extension. TDSSkiller in safe mode highlighted 4 possible threats, so on an so forth. I have been in contact with Microsoft community and it has been recommended to me to reformat/install o/s, or restore factory settings, or take PC to a techie.
Can you make any recommendations on the basis of what you've just read. many thanks, chris
Hi alan, thanks for your reply. Sorry its taken me so long to get back to you, I've run the GMER scan and AVG scan and saved as documents, but I can't get the FTP uploader to work., AVG Uploader Pro en. Error message says 'some files could not be created, close all apps reboot and restart installation. WINRAR self extracting archive cannot create AVG Uploader.exe . the installation won't complete. Any suggestions welcome. thanks, chris
Hi Zbynek,
i can send Avg and Gmer scans as email if you like? Avg scan when i used export overview to file, it opens as an Excel spreadsheet. The Gmer file is a text document. do u want me to change the file type? Both files open ok on my PC and aren't empty here. I'll send them as email attachments.
regards, chris.
Hi Zbynek/Alan,
Recently AVG scan has been reporting hundreds of notifications, files which cannot be scanned. These are either locked files or password protected files. They are AVG files or Spybot files or suchlike. They are reported as of low severity. What are they please and should I be concerned about them? Thanks, Chris.
Hi Zbynek
I copied to quarantine the TDSS killer detections, but didn't remove them because at least 2 of them referred to a programme I hope is ok. The more I read about this stuff the more I realise you have to be careful what you remove from your PC, but I don't have the knowledge yet to discern what should go and what should stay. Unfortunately when I tried to upload the avg results, scans/gmer etc you got the files empty. the ftp uploader said the files had been send but didn't give me a filename to tell you. Problems problems, there seem to be more problems than answers
Chris, If you've uploaded the files to the AVG FTP server (http://kb.avg.com/articles/en_US/How_to/How-to-upload-a-file-to-our-FTP-server?l=en_US) they'll be eventually analysed by the AVG Community Support expert but please bear in mind it's now the weekend (http://forums.avg.com/ww-en/avg-forums?sec=thread&act=show&id=190509) in Brno, Czech Rep…
Hi Chris,
Try use this tool (http://www.avg.com/filedir/util/AVG_SysInfo.exe) and please add detailed description of issue.
Thanks
Chris, In order to analyze it please provide AVG experts with GMER (http://kb.avg.com/articles/en_US/How_to/GMER-Scan-Result/) and AVG scan result (http://kb.avg.com/articles/en_US/How_to/AVG-scan-result-export/)s.
Umm, zbynek and alan, mailer daemon rejected my reply email - avg no reply etc… ill try the new tool. rgds chris