I am getting notification that there is a virus in a file, but when I try to delete, move, rename or move to chest, I get a "Cannot process “…filenam” file error. Here is the supposed file path:
C:\Program Files (x86)\Motorola Phone Tools\MPT_TEST_Info.exe>AUTOIT UNICODE SCRIPT<
And here it is detected by MBAM
c:\program files\motorola phone tools\MPT_TEST_Info.exe (Trojan.Downloader) → Quarantined and deleted successfully.
e:\programfiles\motorola\Addons\MPT_TEST_Info.exe (Trojan.Downloader) → Quarantined and deleted successfully. http://www.bleepingcomputer.com/forums/topic244388.html
This was also detected as a password stealing worm by IOBit and also McAfee flags it as a heuristic find, your renaming circumvented that. I would not give it a clean bill at once, as I do not know whether it is a high or rather low riskware tool?
Well changing the file name shouldn’t make any difference if that file is scanned then it would be detected as essentially the file is identical as far as MD5 is concerned. So it may be possible that in changing the .exe file type to .old may mean that it doesn’t get scanned at all.
That however, depends on the scan you are doing and the settings that you have.
Either that or avast has analysed this file and changed the detection signature in a VPS update.