today, when I booted my PC, Avast! reported that it found the virus Win32:Trojan-gen {Other} in the file G:\Programme\HP\Digital Imaging\bin\hpqtra08.exe
Somehow I think this is a false-positive, but unfortunately virustotal.com gives me an error when I try uploading it to check it there. Anyone else got this problem? However, I moved the file to the chest just to be safe Any other suggestions? Or should I just be waiting for the new AVS-update so that perhaps this problem will be fixed by avast! itself?
Thanks in advance!
Could be a FP, but the file is normally being installed when one installs the Hewlett Packard Imaging Devices drivers.
It will place an icon in the systray to be able to quickly change settings.
It is a nonessential process, you can end it safely at times you are not using the printer/scanner or if you do not want the systray icon. It also can consume 34% of your CPU.
Better play safe and put it into the avast chest or see to it it won’t start up at startup,
Uses Internet: No
Virus: No
Spyware: No
As a rule situated here: C:\Program Files\HP\Digital Imaging\bin
Well, yes, the systray icon has disappeared now I had already moved it into the chest when I was writing the first posting…
But I got you right: it is more likely that this is a FP than that this is a virus that suddenly infects a file that is on my PC since January 2008 (because back then I installed my HP printer…) I still wonder why avast! is “finding” a virus there just now…
Oh, by the way, I sent the file to virustotal by e-mail.
That’s what it says:
a-squared 4.0.0.101/20090410 found nothing
AhnLab-V3 5.0.0.2/20090410 found nothing
AntiVir 7.9.0.138/20090409 found nothing
Antiy-AVL 2.0.3.1/20090410 found nothing
Authentium 5.1.2.4/20090409 found nothing
Avast 4.8.1335.0/20090409 found [Win32:Trojan-gen {Other}]
AVG 8.5.0.285/20090410 found nothing
BitDefender 7.2/20090410 found nothing
CAT-QuickHeal 10.00/20090410 found nothing
ClamAV 0.94.1/20090410 found nothing
Comodo 1109/20090410 found nothing
DrWeb 4.44.0.09170/20090410 found nothing
eSafe 7.0.17.0/20090407 found nothing
eTrust-Vet 31.6.6448/20090410 found nothing
F-Prot 4.4.4.56/20090409 found nothing
F-Secure 8.0.14470.0/20090410 found nothing
Fortinet 3.117.0.0/20090409 found nothing
GData 19/20090410 found [Win32:Trojan-gen {Other}]
Ikarus T3.1.1.49.0/20090410 found nothing
K7AntiVirus 7.10.698/20090409 found nothing
Kaspersky 7.0.0.125/20090410 found nothing
McAfee 5579/20090409 found nothing
McAfee+Artemis 5579/20090409 found nothing
McAfee-GW-Edition 6.7.6/20090409 found nothing
Microsoft 1.4502/20090410 found nothing
NOD32 3999/20090410 found nothing
Norman 6.00.06/20090409 found nothing
nProtect 2009.1.8.0/20090410 found nothing
Panda 10.0.0.14/20090410 found nothing
PCTools 4.4.2.0/20090408 found nothing
Prevx1 V2/20090410 found nothing
Rising 21.24.43.00/20090410 found nothing
Sophos 4.40.0/20090410 found nothing
Sunbelt 3.2.1858.2/20090410 found nothing
Symantec 1.4.4.12/20090410 found nothing
TheHacker 6.3.4.0.305/20090409 found nothing
TrendMicro 8.700.0.1004/20090410 found nothing
VBA32 3.12.10.2/20090410 found nothing
ViRobot 2009.4.10.1688/20090410 found nothing
VirusBuster 4.6.5.0/20090409 found nothing
So it’s two scanners that say there is a virus: avast! and GData (never heard of it…) Nevertheless it’s not likely that there is a virus, isn’t it?
These scanners use the same heuristics, so reason the more it could be a FP, send the file out of the chest to avast and maybe next virus signature update is not flagged any longer and you can safely put back,
When verifying a file through search, always make sure the information on file size, file version, & MD5 number matches the one you have on your computer.
As has been mentioned by others above, it is also a good idea to test the file at virustotal (or other similar sites) and send a copy of the file to avast.
Any other suggestions? Or should I just be waiting for the new AVS-update so that perhaps this problem will be fixed by avast! itself?