Hello !
Excuse me for my english, I am french.
When I make a scan with avast! 4.6.691 Home update (Windows XP pro), it detects no virus, but when I use online Housecall trendmicro virus free, it detects 5 viruses which I have deleted : mapi32.exe, iexplore8.exe, iexplore.exe, lll.exe, rrr.exe in the folder c:\Windows !
On top of that, this execute files asked for an access on web (I’m blocked them with Zone Alarme).
Thank you for your answer.
These are file names and not virus names so it is difficult to say why they all weren’t picked up.
What type of scan did you initiate with avast!
mapi32.exe, it would appear to be the ‘W32/Codbot-C’ a part of the sdbot family it should have been detected by avast! as ‘Win32:CodBot [Trj]’
You should ensure that your OS is up to date as this attempts to exploit am MS Vulnerability that has been patched last year.
W32/Codbot-C may attempt to exploit a number of vulnerabilities, including the LSASS vulnerability (MS04-011).
Thank you for having answered me.
I did a Thorough scan of all my drives but
you have perfectly every reason to recall faults in microsoft because I have MS Windows XP Pro without Service Pack installed.
I think that good software as Avast! needs SP installed and updated to work well, is not.
Therefore I am going to follow your advice and installed a SP1 and all necessaries updates( It seems that SP2 is instable (that think of it to you?)).
Thanks a lot for this precious help.
SP2 for some people with old systems had some issues with hardware (mainly drivers) and some old software (having to run in compatibility mode, sort of trick XP into running it as win98, etc.).
SP2 offers many security enhancements, not to mention that it patched some more exploits/vulnerabilities. With SP2 installed you can also get the latest version of IE6 (which is also SP2), you can’t get this IE latest update with XP SP1.
For the most though if they were able to run XP they would be able to run SP2.
If you download the full SP2 update about 266MB from the microsoft download site (sorry I don’t have the link), it includes the SP1 update elements as well so you don’t have to do that first.
So if at all possible SP2 is the way to go.
Has anyone noticed that Avast deletes TrendMicro plaintext virus signatures, thus making your scanner less effective?
e. b. soloway
Hi, your post isn’t related to this thread, so you should really have created a new thread. Go to the top of the Viruses & Worms list and click on New Topic.
But a quick answer would be, how is avast to determine if an unencrypted virus signature is malicious or not, it is looking for virus signatures, not the location or purpose of the signature. I can’t see how it makes avast less effective.
If you feel you need to answer of make further comment, please do it in a new thread.