anyone seeing this after the last update in AVG 8?

Discussion in 'other anti-virus software' started by robinb9, Aug 2, 2008.

Thread Status:
Not open for further replies.
  1. robinb9

    robinb9 Registered Member

    Joined:
    Apr 3, 2006
    Posts:
    219
    after the last update AVG 8.0 popped up and said there was this Trojan horse Generic11.clr in the files below and one in c:/System Volume Information\_restore,,,,,

    c:\windows\system32\spool\drivers\w32x86\3\hpztbu06.exe
    and \\(name of machine)\print$\W32X86\3\hpztbu07.exe

    Every machine that is connected to my network and using the hp desktjet 5550 is getting the same message from AVG

    What triggered it is when i went to print something.

    I never saw this before. I have not updated this driver recently and did not install any new software for it.

    I ran superantispyware pro and it is coming up clean.

    I sent an analysis to AVG- have not heard as of yet

    So what gives?

    robin
     
  2. EliteKiller

    EliteKiller Registered Member

    Joined:
    Jan 18, 2007
    Posts:
    1,138
    Location:
    TX
    It's a FP

    FWIW it's better to scan a file using virustotal.com or virscan.org than relying on SAS by itself.
     
  3. robinb9

    robinb9 Registered Member

    Joined:
    Apr 3, 2006
    Posts:
    219
    true but i wanted to see if SAS would find anything or anything else. It has never let me down.

    btw i went here and it says it is a fp

    http://www.bleepingcomputer.com/startups/hpztsb05.exe-2016.html

    now all we need is avg to look in here and put an update so avg stops screaming here.

    robin
     
  4. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,976
    Location:
    U.S.A.
    Try their latest update: AVI 270.5.10/ 1587 and see if they have included your FP.
     
  5. robinb9

    robinb9 Registered Member

    Joined:
    Apr 3, 2006
    Posts:
    219
    Just did a manual update and saw the version you typed.
    I restored the 3 files in the virus vault
    seems it did
    I did a specific scan on windows/system32/ folder and it now comes up clean.

    They must have seen my post here or the analysis I sent to them

    thanks
    robin
     
  6. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,976
    Location:
    U.S.A.
    robinb9, more than likely AVG saw the analysis you sent them, rather than look in here (they've been too busy lately). Whenever I have sent them a False Positive, AVG has responded with an update within 2 hours or less.

    BTW, I use the program's Manual Update every time and I do so by keeping track of AVG updates here: Wilders Update Alerts since the members & staff do a wonderful job of keeping current on software changes. Just FYI.
     
  7. hex_614

    hex_614 Registered Member

    Joined:
    Jul 17, 2008
    Posts:
    155
    Location:
    Manila, Philippines
    yes AVG is good when it comes to listening to thier client wheather using paid or free versions. ive sent many files to them for analysis and they are replying in the soonest possible time. i did submit a new found trojan which was not yet included in thier database. they are very much thankful to me. the trojan was named Worm/Autoit.BTK. i was the one who submit to them the sample file.
     
  8. Firecat

    Firecat Registered Member

    Joined:
    Jan 2, 2005
    Posts:
    7,927
    Location:
    The land of no identity :D
    Heck, AVG even adds samples sent by people who are not users of their product. I really appreciate the quick response from AVG on sample submissions - I have sent a few in the past and they were all added within the next 3 updates. :)
     
Loading...
Thread Status:
Not open for further replies.