Adding specific applications to resident-scan ignore list

Hi,

i need to be able to run the sysinternals utility pskill.exe which have been discussed here a few times before. What are the correct procedures to be able to do this? As of today (VPS 000725-0, 2007-03-19), it has been flagged as a virus on my system (Vista), quite surprisingly i might add, beacuse it seems to have been marked as potential malware for quite some time now but i have been able to run it never the less. Until today that is. Anyone?

You didn’t say what the malware name was, it probably has the suffix [tool] after it, tools can be used for good and evil and AVs can’t determine that usage.

You can add it to the exclusions lists:
Standard Shield, Customize, Advanced, Add and
Program Settings, Exclusions

It’s the latest (1.12) pskill.exe downloaded from sysinternals.com, it is not infected by any virus or trojan.
Avast halt the execution with the following info:

Malware name: Win32:Trojan-gen. {Other}
Malware type: Virus/Worm

Actually, avast hijacks the file pstools.zip already when you try to download it from sysinternals.com because it contains pskill.exe so there’s no way of getting the other tools in the pstools suite. Surely, there must be a way to add this tool to some kind of ignore list?

I’ve told you how to exclude it once you get it on your system.

You need to pause the Web Shield so it can be downloaded, the Standard Shield may alert depending on your settings (possibly not as it is in a zip file), however when you try to extract it from the zip file standard shield will alert, choose no action.

For things like this (tools, etc.) I have and exclusions folder ‘z-avast-exclude’ the ‘z’ just puts it at the bottom of explorers folder list. I have the z-avast-exclude in my exclusions so I don’t have to continually add exclusions unless they must live in a different folder.

The false positive should be fixed now.

Nice to see a quick responce from time to time ;D

Keep up the good work !!

Al968

Thank you VERY much! This way, there’s no need for workarounds and special ignore folders which is great!