VBS: Redlof

[norb]

Hi,

Avast has caught this virus in my windows\system\kernel.dll file.  Repair option doesn't work and I'm hesitant to delete such a systems file.  Could anyone give advice if I could go ahead and attempt to delete the infected kernel.dll file or if not, what other action to take?  I'm running 98SE.

Thanks in advance.

[MoonlightKnight]

You don't want to delete the .dll.  You need to find a clean kernel.dll to replace the infected one.  Then change back any registry information that was changed by the virus.

Look here

http://securityresponse.symantec.com/avcenter/venc/data/vbs.redlof.a.html

[Summoner Yuna]

the .dll file should be located in one of the .cab files on the windows 98 setup CD

[igor]

There is no such file as kernel.dll in Windows installation, this file can be simply deleted.
The true Windows kernel is called kernel32.dll.

[Summoner Yuna]

The true Windows kernel is called kernel32.dll

Oh thank you for correcting me igor

[norb]

 Thanks to everyone and especially to Igor!  I've deleted the "fake" kernel.dll file and am back on track.  

[RejZoR]

There is also kernel.dll and its not a virus/worm by itself.
Check it with RAV Online or Kaspersky Single file check on www.security-ops.tk

Kernel.dll info:
DLL File: kernel or kernel.dll
DLL Name: Windows NT BASE API Client DLL (16 Bit)
Description: File that contains Windows API functions used by all Windows applications.
Part Of: Windows
System DLL: Yes
Common Errors: File Not Found, Missing File, Exception Errors

EDIT:
norb,you just deleted system file. You can download new one here :
http://www.dll-files.com/dllindex/dll-files.shtml?kernel

[igor]

RejZor: I don't know what that kernel.dll file from dll-files.com is - but it is certainly not a system file. It was not done by Microsoft, and it is not a Windows NT BASE API Client.

Maybe there can be a kernel.dll file on Windows 3.x, I don't remember - but there is no such file on Windows 98 SE (as well as on newer systems).