#322 Protection against system files and BSOD

open
nobody
None
5
2012-09-05
2008-08-23
john gkh
No

There are cases where anti-virus program remove
critical system files in the system32 folder.
This will result in BSOD when windows boot up.

It happen to Symantec in China, May 2007 when they made a mistake during live update and the anti-virus mistake 2 windows system files as virus and delete the files.

Suggest that Clamwin protect these files by making a backup copy somewhere safe. When these system files are infected by virus. Clamwin should replace these files with the backup so that BSOD will not occurs.

Discussion

  • john gkh
    john gkh
    2008-08-27

    Logged In: YES
    user_id=191019
    Originator: YES

    Suggest that Clamwin also have clean registry function to remove annoying errors that pop up after the virus file is removed.

    Before Clamwin make any registry cleaning, the current registry should be back up so the error recovery is possible.

    Clamwin should also rename the infected file as {file name}.exe.infected so that user will not accidentally click and activate the virus when they are checking the quarantine folder.