I don't have a problem (now). I am just giving a warning.

Grisoft just distributed its new version, AVG 7.5472, replacing 7.5430. I installed it yesterday and ran it this morning. I have a dual boot system and AVG ran (w/o asking me) from the Win98 system. It found 4 instances of viruses. One of them was SFC.DLL on my Win2K partition. I have 2 separate copies of AVG -- one for each system. I do that with all the security programs because they might not recognize the registry of the other OS.

Anyway, it said that it "healed" the files. That's a quote.

So then I booted to Win2K to get the daily update for AVG there and double check.

B.S.O.D. It said that some file necessary for startup was missing.

I had to run the basic repair from the product disc to sign on. That meant that any missing files were replaced by the originals from the 2003 disc. Then I updated AVG and ran a scan on the Win2K partition. Again, it "healed" SFC.DLL. Suspicious, I checked. No, it did not heal it, it simply deleted the entire file.

Ad-Aware has a feature that you can tell it not to reexamine a file which gives a false positive and it clearly tells you whether the file can be healed and asks you if you want to delete it. AVG bulldozes ahead and "fixes" things automatically.

I copied SFC.DL_ from the I386 folder on the product disc and went to command level and used the EXPAND.EXE utility to decompress that to SFC.DLL in the WINNT\System32 folder.

Now, yesterday I had a boot problem (from a different and known cause that would be TMI at this point) and ran the entire repair utility on Win2K. So the SFC.DLL was both times the program from the CD.

AVG is giving a false positive for this file. It thinks the original SFC.DLL has the signature for Trojan horse PSW.Banker.WQP. And it has a disastrous solution.

This may not happen to anyone else. SFC.DLL may have been updated a long time ago. I downloaded a huge single collection of the updates this morning and will run it. But just be aware that one of the most popular antiviruses -- at this point in time -- may invalidate your Win2K.

[Reply or follow-up to this message]

If I'm not mistaken you can set AVG to ask what to do if it finds a virus/suspicious file. Maybe you have it set to automatic? Check AVG's settings.

_____________________

P4 2.5ghz.
2 x 512gb. DDR400
ATI 9600pro 256mb AGP8x

[Reply or follow-up to this message]

Dual-boot Win98/2K systems aren't exactly 'growing on trees', but it would just so happen that I built one two years ago, for an auto repair shop. (They run older DOS diagnostic programs on 98SE, and their parts ordering systems on Win2K).

Yes, Drive D: (Win2K) is FAT32 (meaning Win98 can access it), and both O.S.'s had AVG on them, so I drove over there to avert a possible problem.

Guess what? They had uninstalled AVG from Win98 a month ago, and replaced it with ClamWin. When I asked why, they said that they thought it might be a good idea to have two different A/V's on the machine (one on each O.S.). They can scan the Win2K drive with ClamWin from Win98, for instance, and this is a good idea, really!

AVG 7.5.472 is on their Win2K partition, I ran it today and scanned the computer (C: and D: drives, Win98 and Win2K) and it found no 'positives' (true or false).

------------------------------------------------------------

Athlon 1.1 - 768 MB RAM = 98SE & XP Home

Athlon 3000+ 64 - 1024 MB RAM = 98SE (@768 MB RAM) & XP Pro

IBM ThinkPad PIII 900 - 384 MB RAM = 98SE & XP Pro SP2

Windows 2000 Server in the basement

[Reply or follow-up to this message]

Yes, their AVG is the paid version, being that it's a "commercial" use. When their AVG for Win98 expired, they decided to replace it with ClamWin, because it's Open Source GNU General Public License, so it's free even for "commercial" use.... (and their lawyer won't have a hissy)

------------------------------------------------------------

Athlon 1.1 - 768 MB RAM = 98SE & XP Home

Athlon 3000+ 64 - 1024 MB RAM = 98SE (@768 MB RAM) & XP Pro

IBM ThinkPad PIII 900 - 384 MB RAM = 98SE & XP Pro SP2

Windows 2000 Server in the basement

[Reply or follow-up to this message]

AVG in it's GOD given wisdom, has decided to delete ANY spf.exe files that it finds..... without asking permission of the OWNER, and additionally has removed the ability to restore the same file from it's software. .. The restored file being only a hollow shell..!! ... There is a warning here...... regarding TRUSTING NO-ONE at ALL even AVG....!! when it comes to UPDATES..!! ... Who is currently more DANGEROUS.... the virus creators.... or the BIG BROTHER KNOWS BEST.... so called virus Destroyers.......!! ... My tip here...... is to keep your Backups OFF LINE..... so that AVG..... can't Destroy your valuable .exe files...!! ... YOU HAVE BEEN WARNED..!! ... PS....This current AVG BUG problem applies to ALL OPERATING SYSTEMS...!! ...

[Reply or follow-up to this message]

Yup. AVG sent an updated edition (7.5476) after my 1st msg. I recently ran it and on my Win2K partition it spotted LOGIC.EXE which is a Trojan loader. (No big deal there. When LOGIC.EXE first tried to get a connection out my firewall asked me for permission and on general principles I said to block it.) It also found 4 product files that were infected and deleted them. Which means I could not start Win2K.

So I dug out the product disk and ran the Repair option (minus the repair on the startup files which would mess with dual boot).

Even tho they've released the new version AVG still has no options for warning much less repair. It doesn't even have an option to print a report of what was deleted so you can replace those couple files yourself from the CABs.

My assessment of the corporate culture is a bit different from yours. Because of his reputation for leadership, courage, vision & boldness, someone is promoted to boss. Actually he is a simpleminded bully and a poser. He simply exercises machismo and shows he is top cat by moving up the product release date. If the gamble works and nothing goes wrong he has proven that the fuzzy thinking intellectuals (the programmers) were a bunch of timid nellies, who just needed a real man to kick them around. If it goes wrong, then he blames the programmers and demands a golden parachute as the price for being fired. Or better yet, he moves to a new company as the old one is suffering the damages he inflicted and says he is switching because the old company could not encompass his bold and expansive view.


On Monday, July 16, 2007 at 4:41 pm, Roger wrote:
>AVG in it's GOD given wisdom, has decided to delete ANY spf.exe files that it finds.....
>without asking permission of the OWNER, and additionally has removed the ability
>to restore the same file from it's software.
>..
>The restored file being only a hollow shell..!!
>...
>There is a warning here...... regarding TRUSTING NO-ONE at ALL even AVG....!! when
>it comes to UPDATES..!!
>...
>Who is currently more DANGEROUS.... the virus creators.... or the BIG BROTHER KNOWS
>BEST.... so called virus Destroyers.......!!
>...
>My tip here...... is to keep your Backups OFF LINE..... so that AVG..... can't Destroy
>your valuable .exe files...!!
>...
>YOU HAVE BEEN WARNED..!!
>...
>PS....This current AVG BUG problem applies to ALL OPERATING SYSTEMS...!!
>...

[Reply or follow-up to this message]

• Search this forum
• Start a new thread on a different subject

• Report abuse of the forum