*PROCESS\a7c\psanhost.exe\b9c000\e000 NRLG family
*PROCESS\a7c\psanhost.exe\ba9000\14000 NRLG family
*PROCESS\a7c\psanhost.exe\bc70000\66000 Win32:Induc
*PROCESS\a7c\psanhost.exe\bcf0000\5000 Win95:Sledge-689
*PROCESS\a7c\psanhost.exe\bd20000\9000 Win32:Aliser
*PROCESS\a7c\psanhost.exe\bd30000\3000 Win32:Vypne[Trj]
*PROCESS\a7c\psanhost.exe\bdb0000\6000 Win95:CIH-1106
*PROCESS\a7c\psanhost.exe\bdf0000\7000 Win32:Small-139
*PROCESS\a7c\psanhost.exe\be90000\30000 Win32:MicroJoiner-C[Trj]
*PROCESS\a7c\psanhost.exe\bee0000\2c000 Win32:Netthief-AG[Trj]
*PROCESS\a7c\psanhost.exe\bf60000\7000 Win32:Frauder-BB[Trj]
*PROCESS\a7c\psanhost.exe\c6ce0000\4000 Win32:Agent-ZMQ[Trj]
*PROCESS\a7c\psanhost.exe\c6e0000\1b00 Win32:Kuang2
*PROCESS\a7c\psanhost.exe\ccd0000\94000 Hate-971

I believe psanhost.exe is Panda Cloud Antivirus
would this detection be cause of conflict between 2 AV because i was told if i downloaded Panda cloud before Avast there wouldnt be a problem and I did dl Panda Cloud before Avast
and since “*PROCESS” is memory should I worry about this even if it wasn’t conflict between 2 AV’s ???

I believe you have been tweaking the avast scan settings - Ignore Virus Targeting

In general, any security application can load some signatures (fragments of malicious code used to detect the real threats) into memory - they are located in data segments (instead of executable code). With "Ignore virus targeting" option enabled avast! can detect these harmless fragments.

These items in scan results are not the files but the virus is detected in memory allocated to security_program_name.exe process - because of this no action is available.

DavidR
I have that turned off in my custom scan and after reading your post i turned it on rescanned and 4 more threats appeared totaling of 18 detected threats. ???

I take it you mean more of the same psanhost.exe?

I have no experience with PandaCloud, but I think I have seen posts saying its not compatible or at least unfriendly with Avast!

yes there will be a conflict if you use two resident antivirus program at the same time.

are you using that now? if so uninstall cloud antivirus and go with avast.

OK, so presumably in your custom scan you had avast scan Memory ?
As that isn’t a part of the regular on-demand scans.

Whilst they say you can use a cloud AV option and resident AV I thought that the Panda cloud AV specifically warned to uninstall the resident AV when you try to install it ?

Even if they do work together and I have my doubts placing unencrypted virus signatures into memory is simply bad practice, they would have to expect other AVs to detect them if memory is scanned.

Okay so I don’t have to worry about the detection since its in the memory?
and should scan memory in my custom scan or not scan it?
and would uninstalling Panda Cloud be the best solution?

Personally I don’t see the need for the Panda cloud option (I have never used it, as a dial-up user), but the choice on uninstalling it would have to be yours.

I find the avast default settings for the range of standard scans, Quick or Full System provide the best balance between protection and performance, not to mention when you start making changes to setting there is a higher likelihood you will come across things like this which will challenge you in deciding what to do, is it harmful or not, etc. One particular area is PUP (Potentially Unwanted Program), some tools and programs can be used for good or evil and you have to know which as an AV can’t determine intent.

Personally I would stick with the Quick or Full System scans until you get a better understanding of how avast works.

What is it that you are trying to achieve with the custom scan, e.g. what are you scanning ?

Well I created the custom scan initially to have have the full root kit scan but as i looked through the areas to scan i decided to add one from each group/section (sections divided by the lines) and thats how my custom scan was created.