Problems? See this thread at archive.org.
Hey guys,
Just ran for the first time AVG Anti rootkit, and it came back with 1 result.
"Object name";"C:\Windows\System32\Drivers\aj2eg8k5.SYS"
"Detection name";"Hidden driver"
"SDK Type";"Rootkit"
"Result";"Object is hidden"
So when I click to heal and remove, AVG says: Some files cannot be healed. Access denied.
So I searched around the net and downloaded Autoruns by sysinternals. And located it in the drivers section.
It tells me that aj2eg8k5.SYS is an Atapi miniport driver. Developed by Microsoft corp. It has a file size of 0 bytes.
What do you guys reckon? Any ideas would be greatly appreciated.
Thanks in advance.
*EDIT: Well I haven't had much luck with this one. What I did find out is, unless my mates pc also has the same problem, it looks like its natural to have one hidden atapi miniport driver. Its not necessarily under the same name either. For example the *.sys file I had this morning is now called adq1yjbn.sys. And according to Autoruns it is a verified microsoft driver. So I reckon the anti rootkit that comes with avg is just being over paranoid and everything is a-ok. But, what do I know? =) *
-
-
I did over the weekend. And here is what they had to say:
*Re: AVG Anti Rookit Problem: Hidden Driver = False positive?
Posted by: BIG AL 43 - Moderator (IP Logged)
Date: May 10, 2009 02:55PM
Dead0rAlive
Are you sure that you actually mean AVG Anti-Rootkit [free.avg.com] [freeforum.avg.com] since it's been withdrawn.*
I wasn't even aware.
But its still annoying. I was kind of hoping for an answer at least. But never mind.
AVG Anti Rookit Problem.
Discussion in 'Security and Anti-Virus Software' started by Dead0rAlive, May 9, 2009.
