During the first boot-time scan I've run with Avast Free since I installed it back several months ago, it detected 4 items (please see appended screenshot of the items I placed in the chest).
As I’m not the most knowledgeable person when it comes to items like these, I would appreciate any information about these items, such as, HOW did I manage to acquire them. (Although I also utilize MBAM Pro and SAS (on-demand), I’ve never seen either of them find these items here). Am I correct in saying I should immediately delete these items from the chest?
Thank you for your time and any enlightenment! (And Happy Holiday wishes to all!)
These are commonly as a result of having an old version of JAVA, which is being exploited. Check and update as required.
I would also suggest a visit to this site, which scans your system for out of date programs that have patches to close vulnerabilities, http://secunia.com/software_inspector/.
Thanks for the info, David! I visited the Secunia site you suggested, and ran the first scan shown (the “thorough” system scan). I’ve appended a screenshot below of the Secunia results for your review.
One other question, if I may…those items in the virus chest…should I delete the log altogether? I see no way to just delete them from the virus chest, or will leaving them in the virus chest prevent them from causing any security issues with my computer?
Strange that it isn’t even picking up that you have JAVA, check in add remove programs and if you have it installed it should be there, report the version you have ?
The latest version for the JRE (JAVA Runtime Environment) is JAVA 6 update 30, http://java.com/en/download/manual.jsp, but there is also a new JRE 7 version. If you have the JRE 6 version ensure you have update 30 in the link given. Or you can choose to JAVA 7 option from the menu to the left of that page.
Cleaning them isn’t an option as they aren’t viruses, e.g. a legitimate file infected by a small virus element inserted into the file, but the whole content of the file is considered malicious. So there is little point in retaining these (what are essentially temporary files) in the chest.
As far as deleting the log goes, that is just historic date and doesn’t contain any detected files. So it doesn’t hurt to retain that information, just remember that this is historic data. The references are historic, so there are no actions that can be taken, that is why the Apply button. etc. are greyed out.
I clicked on the link you provided, YoKenny, and it states my Java is working. Hope that boot time scan results was just a transitory glitch and not something more serious I need to be concerned with.
I managed to install the update #2 via the JAVA section in the Control Panel. But, in doing so, I kept getting numerous alerts regarding programs considered "suspicious" as needing approval to proceed. I just hope I haven't inadvertently installed some malware during the process of installing that update 2!
What sensitivity do you have Outpost, Settings, Firewall Policy set at ?
Mine is on Rules Wizard and that is moderately active and essentially you have to have an idea of what is going on on your system. Allow Most (allows communications that aren’t explicitly blocked) would be quieter.
If you are in Expert Mode (check the bottom left corner of the main Outpost window), I don’t know if switching to Simple mode might quieten it down a little.
When you get these you should try and gather some more information on them as without it we are just guessing.
When you are installing new programs or functions like JAVA they will need to integrate themselves into the system, knowing that and that the pop-up relates to the actual installation (may be a temporary file) making these modifications.
My Outpost Firewall is set both on the Rules Wizard setting and I have it also on Expert View. At one point, I did have the setting on BLOCK MOST, but went back to using the Rules Wizard (can’t remember the exact reason I did that,but I seem to recall it had something to do with some kind of increased problems I was experiencing).
Frankly…it seems it takes someone who’s a Systems Analyst to figure out all the intracacies of Avast, Outpost Firewall Pro, MBAM, etc, etc! Every time I turn around there seems to be some new problem arising that I haven’t the faintest idea of how to deal with it! It’s just really pissing me off big time!
Which is why I suggested you drop the slider down from Rules Wizard as you will get asked about the rules changes. Dropping it down to the next lower level will be Allow Most e.
The Wizard part is that it recognises most common applications and has pre-set rules for them. However, when one of those programs changes you will be asked about a trusted program having been changed. Once you confirm the change it will continue to follow the pre-set rules.
Updating JAVA would trigger such changes to the JAVA executables. I don’t know if setting it to Allow most, would may no longer ask about these changes as that would probably not fall under that category, but under the Pro-active Protection, Anti-Leak protection. I have mine set at Advanced, if you drop that level down a notch to Optimal it may trouble you less.
Many advanced firewalls will ask you questions that you find difficult to answer, but finding the settings best for you should help that.
Maybe one day, I'll be able to figure out all this stuff. Right now, my mind is so clogged up with all the info I've acquired...I can't even think straight...so I'm going to just call it a day and go to bed!