Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

NAV lists virus that's not there?

Status
Not open for further replies.
dalecooper

dalecooper

Technical User
Nov 5, 2002
36
DE
Hi

Regular nightly checks scheduled via the Symantec Control Center notify me of the Bad_Trans Worm on a certain machine, but when I scan the machine individually the next day, it can't be found and the files named in the report (Docs.doc.pif asf.) are gone. But Kernel32.exe is also listed, but seems clean.

How can that be? My guess is, that the virus has once infected that PC, got insufficiently cleaned so some files still contain parts of its code.

Any other ideas?

Cheers
Ralf



 
Sort by date Sort by votes
Kernel32.exe is not a windows file. It's the virus disguised as a windows file so if it's there delete it. Can this machine connect to the net? If so go here and run this online scan. But if you delete kernel32.exe the scan may not find anything.


More info...



I don't know what version of badtrans you're supposed to have but run this free removal tool on the infected pc and see if it finds anything...

 
Upvote 0 Downvote
Those links are messed up there so just copy and paste them starting with 'http...' into your address bar and hit enter.
 
Upvote 0 Downvote
Thanks for replying! I checked the files on the machine again and the ones that were listed as infected are all gone. As someone pointed out in the other forum -to which I accidentally posted before finding this one- it appears as if the "Virus found" status is an old one and the flag on the workstation wasn't cleared in SSC.

I've done that now and will wait, if it turns up again in tonight's scan.

I find it a strange concept in SSC, that the status of a workstation is maintained until manually cleared, even if the latest scheduled scan didn't find a virus. Instead the files from the initial scan, that found a virus turn up again and again. Good to get lazy admins, of course :cool:
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

iambob
  • Locked
  • Question
Avast Anti-Virus is.. a virus?! 3
Replies
5
Views
283
Oorde
Oorde
Shimmy613
  • Locked
  • Question
Avira Free: "Your computer is not secure! A Service is not working correctly"
Replies
14
Views
482
ChrisHirst
ChrisHirst
andyv2011
  • Locked
  • Question
Looking at Virus Actions
Replies
0
Views
120
andyv2011
andyv2011
Tiffc0922
  • Locked
  • Question
Virus / Malware Scans on Local PCs
Replies
5
Views
179
goombawaho
goombawaho
kharrison70
  • Locked
  • Question
Meskisift Visaal Studie Virus? 6
Replies
6
Views
178
goombawaho
goombawaho

Part and Inventory Search

Sponsor

Back
Top