Hello to the Avast experts on this forum!
My PC is set up with dual boot, to Windows 7 and also to Windows XP (which I keep around for playing old games, so please don't yell at me for XP
).
I purchased Avast for both sides in 2016. When I run Avast, it scans both sides (though it lacks access to the Users and Program data on the 'other' side). The current version on the XP side is 18.6.2349 (build 18.6.3983.0), definitions version 180908-6.
When I ran Avast last night from the XP side, it reported that it had removed propsys.dll from two folders on the Windows 7 side (the H drive on my PC):
* Scan name: Full Virus Scan
* Started on: Friday, September 07, 2018 8:04:02 PM
* VPS: 180907-0, 09/07/2018
*
H:\Windows\System32\propsys.dll [L] Win64:Malware-gen (0)
File was successfully moved to chest...
H:\Windows\winsxs\amd64_microsoft-windows-propsys_31bf3856ad364e35_7.0.7601.17514_none_89c51b2d31299255\propsys.dll [L] Win64:Malware-gen (0)
File was successfully moved to chest...
Based on my limited internet research today, I am very concerned that I will be unable to boot to Windows 7, or worse, that I might even cause damage in the attempt, so I have not done so. I have not found any reference to this specific issue on the internet or in this forum, so I am posting it here.
My previous scan was on August 28, so something seems to have happened in the past 10 days ... either that those files became infected somehow, or I suppose there's a possibility of a false positive resulting from a recent definition update. So here are my questions for you good folks out there:
- Have you seen this propsys.dll issue before?
- Could this be a false positive?
- Should I use the "Send for analysis" function, or is there anything else I should do first?
- If propsys.dll really was infected somehow, can I simply paste a copy of propsys.dll from the H:Windows\SysWOW64 folder (which thankfully was NOT removed) into those two folders?
Thank you in advance for your time and your support! - Bill -