So my internet on my pc was a little weird today and after trying anything to fix anything i ran different anti-malware softwares (Avast and Malwarebytes) to see if a malware infected my pc, but when i was doing the Avast scan, Windows Defender detected a threat. That was the CoinHive trojan and I was surprised that virus was in an Avast file as you can see in the pic:
The info is in spanish but i came to this forum because it looks more active and I want to know if that was a false positive or if Avast is indeed mining my pc without my knowledge.
I’m surprised that a text file is being pinged by an AV as a CoinHive trojan.
I would also like to know why Windows Defender (WD) detected a threat.
Also when Avast is installed WD is meant to be disabled by the OS (you don’t say which) ?
Running two active AV at the same time is a recipe for potential conflict/false detection.
On my system my WebShield.txt file is 2KB and it is essentially when the web shield is started and stopped. Also if the Web Shield makes any detections on the internet a record of that detection is entered in the report WebShield.txt file.
It’s my first time on this forum so I don’t know how to attach screenshots here.
I’m on Windows 10 and the fact that WD detected a threat surprised me because it should be disabled because of what you said.
Maybe running WD while Avast was running (I don’t know how that happened) could be the reason of the detection but I need to be sure.
How can I verify if it was a false detection or if the file got infected?
When you make a reply, just under the text input window, is a clue, Attachments and other options
Just click that to expand it.
Text files by their nature are inert (if it is truly a text file) which would make it pretty pointless to try to infect. Given this, I really do wonder what the hell WD is scanning it for anyway.
Files can be uploaded to VirusTotal.com for analysis, I just did this with my copy of the WebShield.txt and no detections WebShield-txt-scan-results-at-VirusTotal. That however is likely to be different as everyone’s copy is likely to be different, based on their browsing habit and the content of the file, if you have had any detections.
