Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

[ Create a new account ]

AVG Virus Scanner Removes Critical Windows File

Posted by kdawson on Monday November 10, @07:42PM
from the it-just-acts-like-one dept.
Windows Bug It's funny. Laugh.
secmartin writes "The popular virus scanner AVG released an update yesterday that caused their software to mark user32.dll as a virus. Since this is a rather critical file, AVG's suggestion to remove it caused problems for users around the world who are now advised to restore the file through the Windows Recovery Console. AVG just posted an update about this (FAQ item 1574) in the support section of their site. Their forums are full of complaints."
humor windows bug deletesystem32 oops
tech windows
story

Related Stories

Firehose:AVG virus scanner removes critical Windows file by secmartin (1336705)
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

AVG Virus Scanner Removes Critical Windows File 25 Comments More | Login | Reply /

 Full
 Abbreviated
 Hidden
More | Login | Reply
Loading... please wait.

  • Well... (Score:5, Funny)

    by jav1231 (539129) on Monday November 10, @07:42PM (#25714135)
    Just doing it's job!

    • Re:Well... (Score:5, Funny)

      by zappepcs (820751) on Monday November 10, @07:50PM (#25714197) Journal

      When I read it, I thought the title was "AVG Virus Scanner Removes Critical Windows Flaw" ...
      That would have been excellent sales technique. shame the reality is so very different.

    • Re:Well... (Score:5, Interesting)

      by Anonymous Coward on Monday November 10, @08:05PM (#25714383)

      This isn't too far from realistic.

      I work for a firm that, through the power of politics, actually pays to use McAfee antivirus and related products. Now, this is a product that can sometimes detect a virus but can't remove it, whatsoever. Yet, it will produce an error message that prompts the end-user to "delete", "remove" or "ignore"... (something to this nature - it really doesn't matter since none of them work except "ignore").

      Some of the technicians have resorted to using certain free applications to get rid of the viruses (virii?) when the end-users show up to the help desk, angry as all get. Recently, McAfee started preventing these various freeware packages from being installed - it simply detects them as viruses themselves!

      You could say that McAfee is doing its job - it leaves the sales up to the politicians while it prevents the real software from doing the work.

      What a hopeless, hopeless situation.

  • It's sad... (Score:5, Insightful)

    by FF8Jake (929704) on Monday November 10, @07:47PM (#25714189)
    It seems like AVG has gone massively downhill lately.

    • Re:It's sad... (Score:5, Insightful)

      by Red Pointy Tail (127601) on Monday November 10, @08:23PM (#25714569)

      Yes, they used to be very good, but they have gone all terrible. First, they started hiding all evidence to their free version from their website (you have to know to go to free.grisoft.com otherwise there is no link from their main website, though it is back up now), misleading licensing, then their version 8 started doing all sort of crap like hogging resources, scanning every weblink and generating massive amount of web traffic (though it can be turned off), and having bugs every week like marking legitimate files as infected and irritatingly requiring a computer restart every time you turn it on (requires a reinstall to fix it).

      They have gone all shite, and I'm massively put off by them now, and I will recommend anyone against buying or using their stuff. They are just plain sloppy now, and frankly you don't want your first or second line of defence to be sloppy.

      After our current license term expires, my company will be switching away to another vendor.

      • Re:It's sad... (Score:5, Informative)

        by fuzzyfuzzyfungus (1223518) on Monday November 10, @08:07PM (#25714399)
        I'm not sure that there would be. Antivirus is one of those things that(at least until actual heuristic scanning that seriously works comes out) leans heavily on having a whole bunch of security guys and worker drones hammering out signature updates all day every day. That isn't something that falls under "The Open Source is strong with this one". In particular, antivirus is basically a bandaid designed to let clueless users use critically flawed systems without understanding them. If OSS coders were more common on Windows, they would probably just read and write to any of the various guides for running Windows with minimal privileges, and ignore the problem.

          • Re:Arrr! (Score:5, Informative)

            by Anonymous Coward on Monday November 10, @08:33PM (#25714671)
            No, Avast ye scurvy viruses, dammit! Not everything that looks vaguely latin should be pluralized with an i, and most certainly nothing should be pluralized by changing the word-final "us" to "ii"! You're just a dumbass trying to look educated, and failing miserably. http://dictionary.reference.com/browse/virus [reference.com]

  • not what it seems (Score:5, Funny)

    by savuporo (658486) on Monday November 10, @07:50PM (#25714207)
    This is actually a patch that they tried to roll out to fix Ubuntu bug #1 [launchpad.net], a great stride forward too.

  • Should have gone for the gold... (Score:5, Funny)

    by phmadore (1391487) on Monday November 10, @07:51PM (#25714223)
    Should have gone for the gold, marked Explorer.exe and iExplore...

  • Setting itself apart from other software (Score:5, Interesting)

    by LoadWB (592248) on Monday November 10, @07:55PM (#25714267) Homepage Journal

    Damn. This is what I was hoping would never happen to AVG. After reading all the times that McAfee, Norton, and others had removed Office documents, Windows DLLs, and Office DLLs, I always had a smug chuckle available.

    But now. Ah, well. Four years, 300 workstations, a dozen or more managed installations and still not a single infection or major problem for me using AVG.

  • It's done this before.. (Score:5, Funny)

    by Rob from RPI (4309) <xrobau@gmail.com> on Monday November 10, @08:05PM (#25714379) Homepage

    I've been using AVG at customers sites since version 6.. It has, over the years, deleted entire outlook pst's, repeatedly uninstalled VNC servers and radmin, and generally been grumpy for the slightest reason.

    I am a sucker for punishment, because I still keep using it. It's just as good as the rest, it's half the price, and noticably faster than all the others I've tried.

    I think that, however, the entire concept of antivirus is going to have to fail, and we'll need a whitelist, rather than a blacklist.

    There has been quite a bit of discussion about this over the years, and it's going to come true.

    Oh. And as an added bonus, Slashdot is screwing up my display. When I load the page, I get the comments page, and then it clears and I get a spammy IBM flash ad of some sort. Serves me right for not installing ABP after a reinstall.

    --Rob

  • I'd like to share a revelation that I've had during my time here. It came to me when I tried to classify your operating systems and I realized that you're not actually cross platform. Every OS on this planet instinctively develops a natural equilibrium with the surrounding community but you Windows users do not. You move to a hardware manufacturer and you multiply and multiply until every desktop is consumed and the only way you can survive is to spread to another OEM. There is another organism on this planet that follows the same pattern. Do you know what it is? A virus. Windows is a disease, a cancer of this planet.

    You're a plague and AVG is the cure.

    • Re:I haven't been hit yet... (Score:5, Informative)

      by Animaether (411575) on Monday November 10, @08:10PM (#25714451) Journal

      If you haven't been hit yet, then you probably won't be either; your AVG quite likely already has the fixed definitions file.

      If you -are- hit... guess what? it pops up a warning that it believes it found some sort of trojan in user32.dll . Laymen might just tell it to remove the thing, but I do hope -you- would know better and tell it to stfu and ignore, then fetch the latest update (it will warn you a few more times if you've got the resident shield runnning, as user32.dll gets accessed a lot).

      If you -are- hit and it has already removed it... quickly restore it, carry on.

      If you are hit, it has removed it, and your machine has already crashed... reboot to a command prompt (safe mode MAY work, but it didn't when I fixed a machine on sunday), restore user32.dll from a cache / restore point. If you can't get it from a cache, get it from the installation CD (if you have one), but keep in mind that it will be missing updates and windows update might not realize that (as everything else on the system tells it hotfixes N-M have been installed - maybe MS will make the update check the MD5 or something of user32.dll, after this problem, just in case).

      This was extremely stupid on the end of AVG, but then I'm still baffled why such files can be removed at all; same with ntldr. If you accidentally wipe your root dir, you're all kinds of f'ed.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 SourceForge, Inc.