I have free Avast! loaded on 2 PCs (Vista Home laptop and XP Home SP3 desktop). I was always uncomfortable by the Avast scan reports stating that it could not access numerous files. Thus, I decided to do virus scans outside Windows.
I downloaded free 2010 Kaspersky Rescue bootable CD and used it on all my PCs at home.
I scanned 4 PCs and 2 come back with several viruses each, mostly trojans hiding in the Java cache.
Here is the kicker, both PCs with viruses have free Avast! installed with up to date virus definitions and with frequent scans (configured to start every time screen saver activates, I loved that Avast setting). All PC have software firewalls enabled and are behind the home network hardware firewall (router).
The other PCs that were not infected are XP Home SP3 desktop and XP Professional SP3 laptop using free 2011 AVG and Symantec corporate AV, respectively.
Before I totally condemn the Avast, both infected PC are used by kids and I guess their browsing/facebook habits are not the safest.
Can someone convince me why I should not get rid of Avast and migrate to AVG?
Just curious of a few things. Were the files compressed? What were the file names and path? Was the screensaver scan set to scan compressed files? Did the screensaver scan run long enough to scan the entire computer? Has Java been kept current with updates? Are these files found in the Avast virus chest?
Virus definitions were up to date. The Avast versions were 5.0 and 4.8 (I have no idea why this one failed to update to newer version, but I rarely have access to this laptop). I’m not sure how you adjust settings in screensaver scanner.
However, deep scans (with the highest scan sensitivities possible) were done every week or month in addition to the screensaver scans running all the time and having enough time to complete.
I don’t remember the specific designations of the java viruses, there were several different ones. I know, I should have written them down. I don’t believe they were compressed and they were sitting in the default java cache under user documents local setting folder. The Avast virus chest is empty as Avast never found anything (but one false positive I posted about here some time ago). The Java was reasonably up to date but not always, as I discovered that the java autoupdate was set to monthly updates only.
You can configure Avast to scan other than default. Charyb asked a good question regarding your files.
We have seen this many times from other users unfortunately, and you being their parent I’m sure are aware of this. Kids don’t always use the Internet safely.
AVG I’m told from others has much bloatware comparred to Avast, just to start. There are many other problems, which you can search on this forum since I’m not into name-bashing.
Things that may help you on your machine with Avast are:
Keep your definitions up to date for both Avast and MBAM (Malwarebytes’ Antimalware).
Keep all your shields on with Avast.
Update MBAM prior to scanning, then do Quick scans.
Keep your MS Updates current.
Add security related Add-on’s to your browsers for safer browsing. See my Signature as an example.
Use common sense when browsing and do not go to risky sites.
When downloading software, read what you are clicking and do not download adware toolbars which are commonly opted in; look before you click or do a Custom install to avoid putting unwanted toolbars on your machine that lead to spyware tracking or adware.
Check to see that your software is up to date with the free Secunia Software Inspector http://secunia.com/vulnerability_scanning/personal/ since software is changing all the time. This site gives you the vendor’s direct download link making it easy to upgrade your software. Many of us here scan our machines weekly.
Let us know if you have any other questions. Thank you.
Which browser do you use? Have you heard of NoScript? It disables (you can enable it when you want) Java (scripting) for safer browsing thereby decreasing the chances of you getting malware which is so prevalent now from ANY page you open on a web site. I highly recommend this add-on in your browser. In addition, make sure you have the latest version of Java installed on your machine; outdated software is another way to get malware.
I use FF and NoScript in my PCs, however, FF is not cool enough for kids and they use safari instead. However, all PCs have SpywareBlaster and Spybot/teatimer installed and running. They also have Secunia installed and the software is reasonably up to date.
I strongly suggest that you make sure Java is up to date since we see many malware related to this.
Run a Secunia scan today. Keep NS enabled and tell the kids to learn how to use it.
There have been issues/conflicts with Teatimer (TT) and Avast. Many have had to uninstall TT, just to let you know.
I highly recommend you also run an MBAM scan as well; download freehttp://www.malwarebytes.org/ (the blue button) for an on-demand scanner and update PRIOR to scanning every time.
Good luck with whatever AV you decide to go with - for a system used by kids I may be inclined to get something that includes a browser sandbox, and get them to use it.
See if you get any help for your situation on the AVG forum!
Read this avast! blog entry
New free AV comparative test: and the winner is…
I usually don’t bother writing about individual AV tests and how great we did here and there, but this time I’ll make an exception. Malekal Morte, a very well-known (and influential) security person (tester/blogger/expert) from France recently performed a test of all leading free antivirus software products, and I’m very delighted to say that avast 5 was selected as a winner of the test.
Yes, but note that this evaluation is OLDER than the one mentioned in the post above (i.e., March 2010 vs. 3rd quarter 2010). In any case, opinions are going to vary and it’s easy to find someone who will either take your position or bash it. In the end, the only thing that matters is whether a software application suits your needs or not (whatever those needs are).
FWIW, I have been a loyal Avast user for some time and will continue to be if the software does its job for me, but if I lose confidence in it at some point I will move on. I think it’s reasonable for others to do the same.
I had a similarly worrying problem last week. I use Eclipse and Java SE 1.6.0 (u20, then u22, and now u24) on Windows 7 on a daily basis (all 64-bit), and have always thought my Java environment was “clean” as neither Avast 5 nor 6 have ever popped up any alerts for any Java-related files, and I always have my real-time shields in über-paranoid mode (having my development environment go down would be bad for business),
After a scan with Microsoft’s standalone system sweeper last week (updated to the latest definitions), I found that I’ve got (amongst many other things) 1 trojan and 5 exploits in my Java cache files. Two of these are pretty new, so it’s not really fair to expect Avast to pick them up immediately (MS only updated their definitions to include these at the start of March):
Another two were known about by MS in August last year, but as they have given no detail about which JDK version (if any) may have been vulnerable, I can’t say whether me running a slightly older JDK was the problem or not (Java SE 1.6.0 u20 went on a clean install of Win 7, on a newly-partitioned BootCamp volume):
However, I’m at a complete loss to understand how I’ve become infected with either of the following exploits, given their way in was patched in Java SE 1.6.0u10 and 1.6.0u17 respectively - well before the u20 I installed initially:
Once on your system, these exploits can run arbitrary code and allow other unsigned applets to have unrestricted access to your system, outside of the Java sandbox.
I’ve a clean system now, with UAC tweaked up a bit more, fully up-to-date JDKs, and I’ve upped Avast’s über-paranoid mode to über-über-paranoid so I do hope I’ll be clean for a long while to come… It was just a pain having 2 days of downtime (to scan one of my 3 HDDs alone took 16 hours, checking inside every JAR, ZIP, ISO, and PST).
How do I clear the Java cache?
This article applies to:
Platform(s): Windows 7, Vista, Windows XP, Windows 2000, Windows 2003, Windows 98, Windows ME
Browser(s): All Browsers
Java version(s): 1.4.2_xx, 1.5.0, 6.0
Clearing the Java Plug-in cache forces the browser to load the latest versions of web pages and programs.
6.0 and 1.5.0
To clear the Java Plug-in cache:
Click Start > Control Panel.
Double-click the Java icon in the control panel.
The Java Control Panel appears.
Java Control Panel
Click Settings under Temporary Internet Files.
The Temporary Files Settings dialog box appears.
Temporary Files Settings dialog box
Click Delete Files.
The Delete Temporary Files dialog box appears.
Delete Temporary Files dialog box
There are three options on this window to clear the cache.
Delete Files
View Applications
View Applets
Click OK on Delete Temporary Files window.
Note: This deletes all the Downloaded Applications and Applets from the cache.
Click OK on Temporary Files Settings window.
Note: If you want to delete a specific application and applet from the cache, click on View Application and View Applet options respectively.
Double-click the Java icon in the control panel.
The Java Control Panel appears.</blockquote>
1.4.2
To clear the Java Plug-in cache:
Click Start > Settings > Control Panel.
Double-click the Java Plug-in icon in the control panel.
The Java Plug-in Control Panel appears.
Click the Cache tab.
Click Clear.
A confirmation dialog box appears.
Click Yes to confirm.
Click Apply.</blockquote>
In the menus select Tools > Clear Recent History For the time range to clear select Everything If the list of items is not selected click on the arrow icon next to Details In the list make sure that Cache is the only thing selected Click Clear Now
