sorry RejZor, I can't do screen shots, but the alert panel that appears when avast shuts down translates by (I use the French version):
"avast!: the AAVM sub-system has detected an RPC error
the operation could not be done"
And after that I can't even open or use a web browser. It's
Concerning the firewall, yes Jarmo you're right, it's working but it doesn't appear on the tray before I get an contact attempt alert.
Then it gives me a panel saying the NT Kernel_System has changed....
The executable has changed since the last time you used: C:\WINDOWS\System32\ntoskrnl.exe
File Version : 5.1.2600.1634
File Description : NT Kernel & System
File Path : C:\WINDOWS\System32\ntoskrnl.exe
Process ID : 0x4 (Heximal) 4 (Decimal)
Connection origin : local initiated
Protocol : UDP
Local Address : 192.168.1.102
Local Port : 138
Remote Name :
Remote Address : 192.168.1.255
Remote Port : 138 (NETBIOS-DGM - Browsing datagram responses of NetBIOS over TCP/IP)
Ethernet packet details:
Ethernet II (Packet Length: 266)
Destination: ff-ff-ff-ff-ff-ff
Source: 00-0e-a6-75-40-b3
Type: IP (0x0800)
Internet Protocol
Version: 4
Header Length: 20 bytes
Flags:
.0.. = Don't fragment: Not set
..0. = More fragments: Not set
Fragment offset:0
Time to live: 128
Protocol: 0x11 (UDP - User Datagram Protocol)
Header checksum: 0x15b0 (Correct)
Source: 192.168.1.102
Destination: 192.168.1.255
User Datagram Protocol
Source port: 138
Destination port: 138
Length: 8
Checksum: 0x6a8c (Correct)
Data (218 Bytes)
Binary dump of the packet:
0000: FF FF FF FF FF FF 00 0E : A6 75 40 B3 08 00 45 00 | .........u@...E.
0010: 00 EE 05 34 00 00 80 11 : B0 15 C0 A8 01 66 C0 A8 | ...4.........f..
0020: 01 FF 00 8A 00 8A 00 DA : 8C 6A 11 02 80 1B C0 A8 | .........j......
0030: 01 66 00 8A 00 C4 00 00 : 20 46 44 45 46 45 44 45 | .f...... FDEFEDE
0040: 49 45 42 45 4F 43 4E 44 : 41 44 42 43 41 43 41 43 | IEBEOCNDADBCACAC
0050: 41 43 41 43 41 43 41 41 : 41 00 20 41 42 41 43 46 | ACACACAAA. ABACF
0060: 50 46 50 45 4E 46 44 45 : 43 46 43 45 50 46 48 46 | PFPENFDECFCEPFHF
0070: 44 45 46 46 50 46 50 41 : 43 41 42 00 FF 53 4D 42 | DEFFPFPACAB..SMB
0080: 25 00 00 00 00 00 00 00 : 00 00 00 00 00 00 00 00 | %...............
0090: 00 00 00 00 00 00 00 00 : 00 00 00 00 11 00 00 2A | ...............*
00A0: 00 00 00 00 00 00 00 00 : 00 E8 03 00 00 00 00 00 | ................
00B0: 00 00 00 2A 00 56 00 03 : 00 01 00 01 00 02 00 3B | ...*.V.........;
00C0: 00 5C 4D 41 49 4C 53 4C : 4F 54 5C 42 52 4F 57 53 | .\MAILSLOT\BROWS
00D0: 45 00 0C 00 E0 93 04 00 : 4D 53 48 4F 4D 45 00 00 | E.......MSHOME..
00E0: 00 00 00 00 00 00 01 00 : 03 0A 00 10 00 80 D4 FE | ................
00F0: 9C 02 53 45 43 48 41 4E : 2D 30 31 00 00 00 00 00 | ..SECHAN-01.....
0100: 00 00 00 00 00 00 00 00 : 00 00 | ..........
Can I still save files without risking to save the virus. I mean, if this thing has gotten though Sygate and Avast, I can't really trust file scans, can I?
Heeeelp!