Hi all,

When I performed the full-depth scan on my computer today, 11 infected files were found. I have to mention here that my computer is newly formatted, and does not contain ANY external files.Only the DEFAULT files are present.So I clicked on ‘Move to chest’ for all the infested files. I think most of them were from the system32 folder

Now whenever I switch on my lappie, I get the message ‘Could not load kernel library’.No further inconveniences at this point of time,but can anyone tell me how to retrieve those files I moved to the chest? Is it possible?Is it advisable? Will this error affect me in the future, when I plan to load stuff on my laptop?? What should I do?

Please Help

What is the chest,and is retrieving files possible?

if you right click a file in chest there should be an option to restore…there will remain a copy f the file in chest

But if you have a newly formatted comp, why did avast not like these files ?
is your avast updated ?
latest version is 5.1.889 with VPS 110123-0

Yes you can restore files from the chest, but that is a pointless exercise as avast would alert again unless you excluded them and that is something which shouldn’t be done without confirming the detection was a false positive.

What is the malware name, the infected file name, where was it found e.g. (malware name, C:\windows\system32\infected-file-name.xxx) ?
For detection on on demand scans, check C:\Documents And Settings\All Users\Application Data\Alwil Software\Avast5\Log (Windows 2000, Windows XP). Or C:\ProgramData\Alwil Software\Avast5\log (windows Vista, windows 7).

You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here the URL in the Address bar of the VT results page. You can’t do this with the file securely in the chest, you need to extract it to a temporary (not original) location first, see below.

Create a folder called Suspect in the [b]C:[/b] drive. Now exclude that folder in the File System Shield, Expert Settings, Exclusions, Add, type (or copy and paste) C:\Suspect*
That will stop the File System Shield scanning any file you put in that folder.

@Pondus

The reason for that could be my pendrive - I used it around 4-5 times to transfer Wordpad files :-\ .Yup,Ive got the latest version, the upgrading process is smooth.And er…where do I find the ‘Chest’?

@DavidR

Ok. How do I confirm it was a false positive?
I have Windows XP…but I wasn’t able to find the Application Data folder! All Users had the foll folders : Desktop,Favourites,Shared Documents and Start Menu.

where do I find the 'Chest'?

You will need to enable “show hidden files and folders” befor the application data folder can be seen.

• Ensure that you have hidden files and folders enabled and disable hide system files in Windows Explorer, Tools, Folder Options, Hidden files and folders, uncheck Hide extensions for known file types, etc. see image. This should allow you to find the log files.

You have to follow the instructions in my previous post everything after the #### to check for false positive detections…