I found a file listed in ZA pro list with all sevices granted and most trusted set. The name is BD553513.exe, can anyone give me any info on this as I can’r find any thing on my own.
With no Google results, this file seems suspicious.
Upload the file to VirusTotal and post results.
You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here the URL in the Address bar of the VT results page.
If multiple scanners detect this you should send the sample to avast.
Send the sample to virus@avast.com zipped and password protected with the password in email body, a link to this topic and virustotal results URL might help and undetected malware in the subject.
Or you can also add the file to the User Files (File, Add) section of the avast chest (if it isn’t already there) where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest. A copy of the file/s will remain in the original location, so any further action you take can remove that. Send it from the User Files section of the chest (select the file, right click, email to Alwil Software).
This process has been modified in the latest version (now 4.8.1290) to make it easier, it doesn’t actually get emailed, but transferred when the next avast auto (or manual) update is done.
I left Avast running while I went to work and my wife deleted two viruses it found. I can’t find it on the PC now, but was in system32 and playfirst\priatepoppers. Listed as installed 11-19-2008. I’ve had and played Priatepoppers for over two months. Priatepoppers files were deleted as well.
If deleted they are history unless you have an undelete application to recover deleted files.
avast would only delete the files detected as infected and you (your wife) chose delete as the action, it wouldn’t delete associated files, so if there are more files missing you will have to interrogate someone to throw a little more light on to the matter.
What is the infected file name/s, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?
Check the avast! Log Viewer (C:\Program Files\Alwil Software\Avast4\ashLogV.exe ), Warning section, this contains information on all avast detections. That should list all the files that were detected and possibly deleted by your other half.
Without the files you can’t upload them to either virustotal to conform the detection, good/bad or to avast for further analysis.
You may need try reinstalling the game again, but avast may well alert when installing, even choosing no action wouldn’t resolve that as it doesn’t take any of the listed actions but it won’t let the file be moved (from the installation file or CD). So you may have to take a leap of faith if you feel the game isn’t infected/malicious and pause the standard shield to be able to install it.
Then copy the suspect files into a temporary folder (see below), start the standard shield again and upload the file/s to virustotal for scanning and post the results.
Create a folder called Suspect in the C:\ drive, e.g. C:\Suspect. Now exclude that folder in the Standard Shield, Customize, Advanced, Add, type (or copy and paste) C:\Suspect*
That will stop the standard shield scanning any file you put in that folder. You should now be able to export any file in the chest to this folder and upload it to VirusTotal without avast alerting.