Win32:Otwycal-Z [Wrm]

[Aztec]

Personally I would confirm the detection is good or not first.

You could also check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here.
You can't do this with the file securely in the chest, you need to extract it to a temporary (not original) location first, see below.

Create a folder called Suspect in the C:\ drive, e.g. C:\Suspect. Now exclude that folder in the Standard Shield, Customize, Advanced, Add, type (or copy and paste) C:\Suspect\* That will stop the standard shield scanning any file you put in that folder. You should now be able to export any file in the chest to this folder and upload it to VirusTotal without avast alerting.

I've done this.  Here is the link:  http://www.virustotal.com/analisis/14eedbe1be86cb0c4185b436d41f3bc6

Also, why does a "Google" only yield 2 links, and both to Avast's forum's?  Is this a 'worm' that I and others should be worried about?  I'm so confused.

[PiotrW]

My Avast just alerted me to the same worm. The program says it infected... wmplayer.exe (yes, the Windows Media Player main file).

Is this a real threat or another false positive by Avast?

[Chunker]

It does and it is called Restore, see image.
Open the chest, select the Infected files if it was a detection by avast and you select the file you want to restore, right click and select Restore.

It would have been better to have asked this question before jumping in with a system restore.

David, If you would read and understand my post, avast gave "no" option to restore those two files on the recovery drive.  That option was greyed out on both.  The one for the file from the c drive was there, but none for the d drive!

[neojudgment]

Hi all,

Today I received the same alert during download 'SIM Manager' from the official Website in Australia : http://www.simmanager.com.au/

 

[Chunker]

It does and it is called Restore, see image.
Open the chest, select the Infected files if it was a detection by avast and you select the file you want to restore, right click and select Restore.

It would have been better to have asked this question before jumping in with a system restore.

David, If you would read and understand my post, avast gave "no" option to restore those two files on the recovery drive.  That option was greyed out on both.  The one for the file from the c drive was there, but none for the d drive!

Now it seems that it was indeed a false positive and has been fixed my avast.  But too late, the damage has already been done in my case.  I did exactly what I was supposed to do and moved 3 infected files into the chest for further inspection.  I returned the one file off the c drive with no problem.  But the two files that came from the d (recovery) drive, avast gave me "no" option of restoring them.  Even on right clicking those files while in the chest and choosing properties, It said those files were unrestorable.  Now they are lost forever and my recovery drive has been corrupted, no thanks to avast!!  I will never trust avast again.

[Bellzemos]

I did a boot scan and there was no virus found. But one file is corrupted:

File C:\WINDOWS\Driver Cache\i386\driver.cab\kdh00001.ppd Error 42127 {CAB archive is corrupted.}

Why is that so? Thank you!

[DavidR]

Nothing to worry about even if the file is corrupt there is nothing that you as a user can do about it. However, it is possibly that avast can't fully unpack it to scan it and the error message is reporting corruption as the cause which may not be 100% correct.

The main thing to remember it is just unable to be scanned, nothing else, not infected, etc.