Hello, I have installed Avast! Pro in two computers with Windows Vista 32 bits.
I have been talking with the friend who recommended me it, and we have noticed an issue.
We wanted to try the antivirus, so we downloaded an infected file from internet (a file hosted in rapidshare).
My friend says Avast! blocked the download as it detected the infection.
However I could download the full file and even open it. I only was alerted by Avast! when I tried to run the infected file. We both used firefox for downloading it.
I haven’t changed any option in Avast! (I have only deactivated the BDRV). My protection profile is set to “Normal”, and my friend says he hasn’t changed any option (also “Normal” protection in the status). I’m not sure if he is using Windows XP. Of course, we both have the antivirus updated with latest definitions.
So, how can I protect from HTTP infected files? Do I have to turn on any option? Maybe my friend activated any option?
By the way, I did an typical installation.
I am having the same problem in my two computers.
I would appreciate any help/info/tip on this problem.
Based solely on your screen name, did you have another AV installed on this system (and what was it) and how did you remove it ?
When the download was complete the Standard Shield should have scanned it (depending on the file type, exe, and your avast settings) detected it if it was infected. I wouldn’t recommend downloading a live virus just to test your AV, you could use the eicar test file.
Ensure first that the web shield is running and scanning pages. Monitor the Web Shield provider detailed view and the scanned count: and Last scanned: fields should be updated.
Are there other sites that you can test Avast! for detecting trojans or malware safely like you can test viruses at http://www.eicar.org ?
Intersting! At eicar.org website I download the eicar zip folder to one of my hard drives from the https site at eicar. Avast! , as noted did not find it because it was https, however, Windows Defender threw up a big red flag when I tried to download it and recommed I did not, and required action on my part to contiue. Once in the folder I could go to the drive and folder and right click on the “file” and Avast! gave out the typical warning.
I wonder if it would have sent it to the Chest without intervention under a scheduled scan?
In one of my computers I previously had installed Kaspersky internet security. In the other computer Avast! has been the first antivirus I have installed.
I have seen the Web Monitor. The activity says 0 objects scanned.
I have downloaded the eicar test file in zip and Avast doesn’t detect it. I can download the file and open it. Avast will only detect it when I open the com file.
However the url which points directly to the com file is blocked by Avast, but the Web Shield still shows 0 scanned objects.
Also, my friend said Avast blocked the file he downloaded from rapidshare, so maybe that site has not https?
Well with a scanned count of 0 it isn’t scanning (why it didn’t detect anything at rapidshare, not https) it is as simple as that, why is the question.
I don’t think it was a problem from kaspersky. As I have said I am having the same problem in both computers (and in the other one I didn’t install kaspersky).
I am using the windows vista firewall, and the browser (as I already said) is FireFox.
Even though KIS is/was one only one system it would still be worth doing for ilimination if nothing else.
The Vista firewall shouldn’t get in the way as the outbound protection is disabled by default (a failing IMHO).
Do you connect to the internet through a proxy (ISP or accelerator, etc.) on these systems ?
If so you need to configure the Web Shield to monitor that port and not to ignore local communication.