Not sure if these two events are related… I have an Acer Aspire One netbook running XP, SP3.
This morning, the netbook would not “wake up.” The green light (on the ON button) was lit, but the screen was totally blank, like it wasn’t working. Tried turning the machine off and one a couple times, but still nothing came up onscreen. Husband disconnected and reconnected the battery, and the netbook then started up – screen was working. So I don’t really know if it was a problem with startup, or just a glitch with the screen.
Shortly after I started running the netbook, I got an Avast pop-up:
Rootkit Found
A suspicious hidden object (rootkit) has been detected on your system. this may be a sign of a malware infection. it is recommended to remove the object immediately.
I think there was an Avast virus definitions update before I got the pop-up, but I’m not sure.
Anyway, I don’t know if I should let Avast delete the rootkit, or if it is a false positive. Could it do any harm to try to remove it without knowing if it’s a false positive?
I’m not a technical person so I’m trying to be cautious.
send to virus@avast.com in a password protected zip file
mail subject: False Positive / undetected sample (select subject according to your case)
zip password: infected
mallomar, i suspect it is a false-positive… it seems that lots of people are getting “Win32:Evo-gen [Susp]” false-positives this morning…
i don’t know about the avast-free program, but, with the avast-pro program, on the “support” tab, there is a utility, there, for submitting files to “avast” (without first having to quarantine the file)…
assuming that it is a false-positive, you wouldn’t want to quarantine the file… i mean, if it was me, i always verify that a file actually is malware before i allow it to be removed…
Yeah, I didn’t want to remove the file and then find out it was clean and something I needed. Although in this case it’s apparently a file I don’t need.
Frankly, I didn’t even know what google desktop was. I had to google it to find out! And no, I don’t use it – never have. I suspect it’s something that was preinstalled on the netbook but not activated.
I suppose I could uninstall it, since I don’t use it.