Hi! I’m a new member. I use Avast and several other scanners, one of which picked up a file in Avast that had similarities to this: W32/damaged_file.gen!Eldorado and quarantined it until I can find out if it’s going to be a problem. The Eldorado is considered possibly dangerous. Thanks to the forum for any info. breeze

What is the other scanner that picked this up ?

What is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?

Eldorado is a signature that Authentium and F-Prot uses. Eldorado is not dangerous.

Thanks for the replies. I researched this before posting but I couldn’t come up with anything conclusive so that’s why I was asking for help. The scanner is Returnil Virtual System and the application is:
\DEVICE\HARDDISKVOLUME\WINDOWS\TEMP\AVAST4\UNP1 69320561.TMP
???

That isn’t an avast file, the avast4 folder is where avast unpacks/places files that it is going to scan, hence the unp start to the file name and .tmp file type.

So you are getting what is effectively a conflict of another scanner hooking files that avast will scan, with no intervention avast would scan the file and if clean remove it from the avast4 folder.

Thanks. I just started using this scanner. I’ve had scanner conflicts before. You just have to learn from them. Add to my knowledge base. It took me 2 years to figure out I had a conflict/system slowdown with Trojan Remover and Avast. The problem with Returnil is that is a heuristic “live” scanner. What next?

I have never used Returnil Virtual System if it is a resident anti-virus scanner then you are going to have conflicts.

Having two resident scanners installed is not recommended as rather than provide twice the protection it can cause conflicts that could leave you more vulnerable.

At the very least you need to exclude the avast4 folder and contents.