Noob question re:quarantine

Discussion in 'Malware Help (A Specialist Will Reply)' started by Death Zebra, May 30, 2009.

  1. Death Zebra

    Death Zebra Private E-2

    My antivirus software, Virgin Broadand PCguard, has determined that system32/ftp.exe and system32/dllcache/ftp.exe are infected with w32/backdoor2/emeb. Both files have been quarantined.

    Assuming I should go through the read and run first sticky, do I have to take the file out of quarantine before doing so? It's probably a dumb question but it doesn't seem that obvious to me since I thought the idea of quarantining a file was to prevent it from interacting (for lack of a less crude way of putting it).

    I don't want to delete these files outright instead. As unknowledgable as I am about Windows even I know it is probably not a good idea to just delete a file in the system32 folder. As far (or not) as I can tell FTP.exe is a needed file.
     
    Death Zebra, May 30, 2009
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    It is possible that it is a false positive, so you should leave it in quarantine and continue on with the Read and Run First instructions.
     
    TimW, Jun 1, 2009
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds