system
1
Hi Dim@eik,
As people try to uninstall that AVZ utilty, according to instructions found here:
http://support.kaspersky.com/avptool2010/all?qid=208280889
remnants stay behind like utcwotqw.sys :
c:\WINDOWS\system32\drivers\utcwotqw.sys : 7168 bytes long
md5sum: 524d8d450622db4a7875b111c299a76b
Also that is still registered in registry as AVZ Kernel Driver, and this has been flagged,
apparently as FP, for the MD5 hash, see: http://www.google.nl/search?gcx=c&ix=c2&sourceid=chrome&ie=UTF-8&q=524d8d450622db4a7875b111c299a76b
This issue has been seen as for uti3otqy.sys from the year 2009 henceon, so yes it should not be found as malware, but also Kaspersky should come up with a better uninstaller,
polonus
system
3
Whatever it was … but still AVZ Kernel Driver is defined as the Win32:Beagle-APU [Rtk] and this is a false alarm.
This particular driver and his actions and behavior is similar to the rootkit.
Avast virus analysts certainly know better, but my opinion is not correct.
salat
4
Hi all,
the detection should be changed in next release. Thank You, for FP submission.
Have a good day!