On my laptop Avast found a Trojan in the Firefox cache during a scheduled scan. All shields are always running, and the program and virus definitions are set to self update, as well as vista.
Avast put the Trojan in the virus chest. But Avast found something the last 3 scheduled scans, each in different places. Before that I had a different anti-virus(kapersky- but FF didn’t like it). Do I need to be concerned?
I ask because on my home computer Avast never finds anything and I visit the same websites with that computer. Avast has been installed on my home computer since I got it.
And why would the Trojan make it into the cache if the web shield is running? The Trojan wasn’t found until a scan was run.
Thanks for taking the time to help a noob.
One more unrelated question, can I have Malwarebytes installed at the same time as Avast without conflict?
Yes, you can have malwarebytes and avast, and I suggest you do install malwarebytes (if you don’t already have it), run a scan, and post the results back here. I’m sure someone will be along to advise.
If you have avast pro (real time protection), I don’t bother with any exclusions between mbam and avast other than the one suggested by DavidR - exclude the folder C:windows\temp_avast. I see no conflicts
With the free version of MBAM it isn’t so critical to add the c:\windows\temp_avast_ folder to the MBAM Ignore List, but it won’t hurt.
This Ignore List entry is more for the Pro MBAM version as it is resident and would be scanning files that avast sends there to scan. I only have this on the system were I have MBAM Pro, but not on this one with MBAM free (on-demand).
You can rescan what is in the Virus Chest by right clicking on it (make sure your Avast definitions are updated first). If the scan comes out clean, just delete the cache file. Normally we recommend keeping files in the Chest longer, but since you state it is cache, it can be deleted if it is clean. You can also upload the files to Avast to make sure it is real or a FP; and this is done at the next virus definitions update.
Not sure whether people had noticed the OPs mbam log - I’ve reprinted it below. Apologies if you had already seen it. It’s not clear if he’s actioned the mbam registry findings.
Update MBAM again and rescan it. When it asks what to do, put infected items into quarantine. Do NOT delete. You can always get items out of quarantine if needed.
Cut and paste your new MBAM log or add it as an attachment to your next post.
Let us know how your machine is behaving after running this second scan. Thank you.
MBAM doesn’t ask what to do (it doesn’t mention quarantine) as such, it pre-checks any of the detection and you choose from the Action buttons.
The Remove Selected button is somewhat misleading as it sends then to Quarantine and doesn’t actually remove/delete them (just moves the entries into quarantine), see image example.
So you need to run MBAM again and this time click the Remove Selected button.