avira ativir personal found a SystemSRL.dll to be malware

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by the_artz19, Dec 11, 2008.

  1. the_artz19

    the_artz19 Private First Class

    a game kept quiting out on me so i decided to restart and do some weekly scans, one of which would be with avir. which before even finishing said that " The file 'C:\Program Files\SystemRequirementsLab\SystemSRL.dll'
    contained a virus or unwanted program 'TR/Zlob.753664' [trojan]
    Action(s) taken:
    The file was moved to '49b46886.qua'!" i dont remember ever doing anything with something by that name, and have had no problem with any part of my system really. so i dont know if this is a false positive or something. the few searches i did(vry tired) only came up with threads of people recommending a systems requirements lab check for if you were vista ready, or that their systemsrl.dll was broken or something. so i was just wondering if anyone new of any problems with this/why avira would recognize it as a trojan. thanks for any help or input, just wondering if i need any more or less action than just telling it to quarantine the file...
     
    the_artz19, Dec 11, 2008
    #1
  2. the_artz19

    the_artz19 Private First Class

    as usual, it seems to have found the same thing somwere else. i dont know if this latest detection sheds any more light on this issue but here it is. "The file 'C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP155\A0124966.dll'
    contained a virus or unwanted program 'TR/Zlob.753664' [trojan]
    Action(s) taken:
    The file was moved to '49726eee.qua'!" i have even less of an idea exactly what this one is in relation to.
     
    the_artz19, Dec 11, 2008
    #2
  3. the_artz19

    the_artz19 Private First Class

    i am sorry that i did not remember to go through the system check before asking these questions. i am not sure that this is a huge problem in retrospect but i will run these tests in the future if i need to and will repost. thanks.
     
    the_artz19, Dec 12, 2008
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    It is a false positive.

    Items in the System Volume Information folder are in System Restore. To remove them, you must disable system restore and then reenable it.

    If you are having any malware problems, you need to run the below.
    ===============================
    Please follow the instructions in the below link and attach the requested logs when you finish these instructions.


    READ & RUN ME FIRST. Malware Removal Guide
    • If something does not run, write down the info to explain to us later but keep on going.
    • Do not assume that because one step does not work that they all will not.
    Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode. You can run steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools on another PC and burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
     
    chaslang, Dec 15, 2008
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds