avp.exe

FAQ

Profile

avp.exe

Security Forums (Home) -> General Discussions

Next: Is this a Trojan?

Author

Message

Jean

External

Since: Jan 16, 2008
Posts: 10

(Msg. 1) Posted: Wed Jan 16, 2008 4:42 pm Post subject: avp.exe Archived from groups: alt>comp>anti-virus, others (more info?)

My AV application: Kaspersky Anti-Virus (6.0.2.6210) During a relative slow loading of a website a pop-up message appeared indicating:- Firewall - allow avp.exe Google search that this item is related to Kaspersky AV but it also could be a trojan/keylogger. Is it safe to add avp.exe to my Win XP2 Pro Firewall exceptions list? If not, could this attribute to slow web page loading? Run a HJT - no problems. >> Stay informed about: avp.exe

TheApostle

External

Since: Jan 16, 2008
Posts: 3

(Msg. 2) Posted: Wed Jan 16, 2008 5:10 pm
Post subject: Re: avp.exe [Login to view extended thread Info.]
Imported from groups: per prev. post (more info?)

This message is not archived

>> Stay informed about: avp.exe

David H. Lipman

External

Since: Jul 04, 2003
Posts: 1735

(Msg. 3) Posted: Wed Jan 16, 2008 9:58 pm Post subject: Re: avp.exe [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

From: "Jean" <jean.RemoveThis@nowhere.com> \| My AV application: Kaspersky Anti-Virus (6.0.2.6210) \| \| During a relative slow loading of a website a pop-up message appeared \| indicating:- Firewall - allow avp.exe \| \| Google search that this item is related to Kaspersky AV but it also could be \| a trojan/keylogger. \| \| Is it safe to add avp.exe to my Win XP2 Pro Firewall exceptions list? If \| not, could this attribute to slow web page loading? \| \| Run a HJT - no problems. The name of a file is insuffient. What is important is the fully qualified name and path to the file. For example. c:\windows\system32\svchost.exe is legitimate. C:\Program Files\Common Files\System\svchost.exe is NOT legitimate. -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp >> Stay informed about: avp.exe

Jean

External

Since: Jan 16, 2008
Posts: 10

(Msg. 4) Posted: Thu Jan 17, 2008 7:29 am Post subject: Re: avp.exe [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message news:r6vjj.13987$W73.4156@trnddc04... > From: "Jean" <jean.TakeThisOut@nowhere.com> > > \| My AV application: Kaspersky Anti-Virus (6.0.2.6210) > \| > \| During a relative slow loading of a website a pop-up message appeared > \| indicating:- Firewall - allow avp.exe > \| > \| Google search that this item is related to Kaspersky AV but it also > could be > \| a trojan/keylogger. > \| > \| Is it safe to add avp.exe to my Win XP2 Pro Firewall exceptions list? > If > \| not, could this attribute to slow web page loading? > \| > \| Run a HJT - no problems. > > The name of a file is insuffient. > What is important is the fully qualified name and path to the file. > For example. > c:\windows\system32\svchost.exe is legitimate. > C:\Program Files\Common Files\System\svchost.exe is NOT legitimate. > Unfortunately the pop-up message did not fully qualify name and path, just avp.exe and since my HJT log came out 'clean' I assume that no illegitimate items are present. Based on this, is it safe to add avp.exe to my Win XP2 Pro Firewall exceptions list? BTW, I recently downloaded Multi-AV which added WGET.EXE to the firewall exceptions list; From this list there is no way to tell if this is an legitimate item or not. But of course I know WGET.EXE is okay, the downloading instruction of Multi-AV does explain this. >> Stay informed about: avp.exe

David H. Lipman

External

Since: Jul 04, 2003
Posts: 1735

(Msg. 5) Posted: Thu Jan 17, 2008 7:29 am Post subject: Re: avp.exe [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

From: "Jean" <jean DeleteThis @nowhere.com> \| Unfortunately the pop-up message did not fully qualify name and path, just \| avp.exe and since my HJT log came out 'clean' I assume that no illegitimate \| items are present. \| Based on this, is it safe to add avp.exe to my Win XP2 Pro Firewall \| exceptions list? \| \| BTW, I recently downloaded Multi-AV which added WGET.EXE to the firewall \| exceptions list; From this list there is no way to tell if this is an \| legitimate item or not. But of course I know WGET.EXE is okay, the \| downloading instruction of Multi-AV does explain this. Yepper... It is easy, via Registry entry, to add an allowance for a EXE to pass through the Windowes FireWall. Malware does it so I did it for the GNU WGET utuility. Search the hard disk (including Hidden and System files) for AVP.EXE and see where this file is located on your system. Please post back the fully qualified name (FQN) and path to the file(s) that you find. -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp >> Stay informed about: avp.exe

foghollow

External

Since: Apr 04, 2007
Posts: 74

(Msg. 6) Posted: Thu Jan 17, 2008 9:29 am Post subject: Re: avp.exe [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

In article <r6vjj.13987$W73.4156@trnddc04>, DLipman~nospam~@Verizon.Net says... > From: "Jean" <jean.DeleteThis@nowhere.com> > > \| My AV application: Kaspersky Anti-Virus (6.0.2.6210) > \| > \| During a relative slow loading of a website a pop-up message appeared > \| indicating:- Firewall - allow avp.exe > \| > \| Google search that this item is related to Kaspersky AV but it also could be > \| a trojan/keylogger. > \| > \| Is it safe to add avp.exe to my Win XP2 Pro Firewall exceptions list? If > \| not, could this attribute to slow web page loading? > \| > \| Run a HJT - no problems. > > The name of a file is insuffient. > What is important is the fully qualified name and path to the file. > > For example. > c:\windows\system32\svchost.exe is legitimate. > C:\Program Files\Common Files\System\svchost.exe is NOT legitimate. > > avp.exe /should/ be the KAV scanner. It's always possible it's infected (or just plain bad) if you got KAV from a non-authorised route or something's managed to whack it since you installed it. If you have reason to think it might be bad, dl some other antivirus (AntiVir, for just one example that's free) and scan just that file, see what it says. wget is a utility for grabbing files from websites. Lots of stuff uses it. I use it in some of my scripts. -- Snob? Were I a snob, I wouldn't be talking to you. >> Stay informed about: avp.exe

Jean

External

Since: Jan 16, 2008
Posts: 10

(Msg. 7) Posted: Thu Jan 17, 2008 12:12 pm Post subject: Re: avp.exe [Login to view extended thread Info.] Archived from groups: per prev. post (more info?)

"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message news:jFxjj.17522$W73.10755@trnddc04... > From: "Jean" <jean.DeleteThis@nowhere.com> > > \| Unfortunately the pop-up message did not fully qualify name and path, > just > \| avp.exe and since my HJT log came out 'clean' I assume that no > illegitimate > \| items are present. > \| Based on this, is it safe to add avp.exe to my Win XP2 Pro Firewall > \| exceptions list? > \| > \| BTW, I recently downloaded Multi-AV which added WGET.EXE to the firewall > \| exceptions list; From this list there is no way to tell if this is an > \| legitimate item or not. But of course I know WGET.EXE is okay, the > \| downloading instruction of Multi-AV does explain this. > > Yepper... > > It is easy, via Registry entry, to add an allowance for a EXE to pass > through the Windowes > FireWall. Malware does it so I did it for the GNU WGET utuility. > > Search the hard disk (including Hidden and System files) for AVP.EXE and > see where this file > is located on your system. > > Please post back the fully qualified name (FQN) and path to the file(s) > that you find. > I searched in drive C:\ for AVP.EXE using 'Agent Ransack' and it found: Name:- avp.exe Location:- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe Size:- 197 KB Type:- Application Modified:- 3/9/2007 7:50:58 PM >> Stay informed about: avp.exe

Display posts from previous:

Related Topics:

Netspy trogan - Hi all, new here and I think I got a problem? My Norton firewall reports a trogan and here is the information: Netspy Trogan Horse program: windows.exe protocol: TCP inbound remote address 127.0.0.1:3012 Local address: all local adapters:1024 I don't....

about virus - Hello, Help me please. When I browse internet, I often get virus warning messages: Virus name: W32/Deloder.worm Infected file: C:\WINNT\system32\Dvldr32.exe and Virus name: BackDoor-ARG.dr Infected file: C:\WINNT\system32\inst.exe Neither files can be....

Virus SW registration for updates - I have an older version of Norton Antivirus that Norton no longer supports. I do not have to pay a subscription for updating my .dat files. Does all of the newer Software require that users pay such a subscription? Would anyone have any idea why Norto...

how to scan and disinfect NTFS from a floppy AV? - I have been trying to find a way to boot a pc with the ntfs file system and scan and clean with f-prot for dos from a floppy(s). Winternals ntfsdos prof. 4.0 according to Winternals emails to my questions, will not work. They said the pc must be on a..

NOD32 error message - I hope someone here is familiar enough with NOD32, v. 2.0, to offer some help. I haven't been using it very long, having just replaced Kaspersky AV with it. I received an attached Word document via e-mail from a trusted source. I don't believe it..

	Security Forums (Home) -> General Discussions	All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum