False alarm on utility AVZ. Gone are days and the situation has not changed.
Hi Dim@eik,
As people try to uninstall that AVZ utilty, according to instructions found here:
http://support.kaspersky.com/avptool2010/all?qid=208280889
remnants stay behind like utcwotqw.sys :
c:\WINDOWS\system32\drivers\utcwotqw.sys : 7168 bytes long
md5sum: 524d8d450622db4a7875b111c299a76b
Also that is still registered in registry as AVZ Kernel Driver, and this has been flagged,
apparently as FP, for the MD5 hash, see: http://www.google.nl/search?gcx=c&ix=c2&sourceid=chrome&ie=UTF-8&q=524d8d450622db4a7875b111c299a76b
This issue has been seen as for uti3otqy.sys from the year 2009 henceon, so yes it should not be found as malware, but also Kaspersky should come up with a better uninstaller,
polonus
Whatever it was … but still AVZ Kernel Driver is defined as the Win32:Beagle-APU [Rtk] and this is a false alarm.
This particular driver and his actions and behavior is similar to the rootkit.
Avast virus analysts certainly know better, but my opinion is not correct.
Hi all,
the detection should be changed in next release. Thank You, for FP submission.
Have a good day!
Welcome aboard Salat 