Page 1 of 1
TvtDrv.sys malware, mystery file?
Posted: Wed Apr 30, 2008 10:43 pm
by rmendoza
Avast told me that I have a rootkit, with the following path
C:\...\common files\lenovo\invagent\TvtDrv.sys
I think it's a legitimate lenovo file, but I couldn't find any info on it. Does anyone know what it is, whether it's safe? Thanks.
Posted: Thu May 01, 2008 2:00 am
by erik
it's a legitimate file. TVT is lenovo's abbreviation for ThinkVantage Technology.
Posted: Thu May 01, 2008 4:27 am
by rmendoza
That is what I thought, I just wanted to make sure it wasn't corroputed or anything. False alarm I suppose.
Posted: Thu May 01, 2008 11:32 am
by DenTP4rm
Erik (or anyone else who can help),
This goes beyond rmendoza's original question, but, can you tell me if the following are really necessary for security:
cssauth.exe
CLI.exe
tvttcsd.exe
Every time I upgrade Zone Alarm it flags these startups. I've read differing views on their importance. I posted a query before regarding tvttcsd.exe but got zero replies on the Forum. Any light you can shed on their function would be most appreciated.
Thanks for any help you or any others can give,
DenTP4rm
Posted: Thu May 01, 2008 12:12 pm
by erik
both cssauth.exe and tvttcsd.exe are for thinkvantage client security solution software. if you disable them then CSS won't work.
CLI.exe is an interface app for your ATI catalyst driver to link the driver to the ATI control panel. without this running, i'd guess that your ATI control panel would break.