A0064871.exe detected. Please help

Hi,

Could someone please help me remove an .exe file?

I’ve been getting warnings about A0064871.exe located at System Volume Information … and it doesn’t seem ok.

Thanks in advance!

Robert

PS. I’ve been here before (http://forum.avast.com/index.php?topic=56533.0) so I still have the ComboFix etc. on my pc :stuck_out_tongue:

It’s detecting something in one of your system restore points. If everything else is working correctly, just delete all your restore points by turning off system restore and then turning it back on. The problem will go away.

Did you not allow avast to send it to the chest (as it should be able to do that) ?
If you did, were there any errors on trying to move or delete it ?
That way you are only dealing with the single restore point and not loosing all restore points (Clean or otherwise) if you disable system restore.

  • Infected Restore Points - There really is little benefit in chasing a detection in the system volume information folder. It is only there because it had previously been deleted or moved from the system folders and this is a back-up created by system restore.

  • Worst case scenario it isn’t infected and you delete it, you can’t use that restore point in the future, not much of a loss and the older the restore point is the less of an issue it is.

  • So if there is any suspicion about a restore point then it is best removed from the system volume information folder or it could bite you in the rear at some point in the future when you use system restore if it included that restore point.

That was why I said IF everything is working correctly. If it is, there’s no reason to have any previous restore points and they can all be deleted as long as you immediately create a new one afterwards. As a side note, there is also no reason to let Windows use the default amount of disk space for system restore. I have found that setting it to 1% is more than sufficient. Five restore points should be more than enough.

I don’t have it enabled as I have never found it 100% reliable, I by far prefer hard disk imaging software to completely replace system restore completely.