system
35
Lars,
So when someone chose to open the attachement it was saved to WINDOWS\TEMP, and that triggered avast! (as it should).
And also the Swen32 virus!
Yes, I can yield to your view. However, just keep in mind that the Swen32 is a nasty little thing that CAN activiate even when not opened by the user. This is fact! All it needs is to be downloaded and saved. Avast did detect it, however, when you deleted the virus (and it is only conjecture on my part) the Swen had already started to spread and mutate. Avast stopped the original exe coded virus but some of the little buggers got out. You said Avast alerted you when the virus was saved. That is correct. It would not alert you again because Avast will not let you execute an infected file. You stated that you got the “locked file” message.
I know you want to go round and round with this, but I have had Avast for some time now and it has stopped viri on many occasions without any compute damage or corruption. Sometimes a file will not “delete” for different reasons: passworded, active, locked, in the Restore directory and others. But until you can figure out HOW to delete the virus, Avast will not let it do damage.
Also, you are also correct about webmail. Unfortunatley, Avast cannot scan an email client not configure by POP3 and SMTP.
I wish I could offer a better explanation, but maybe there really isn’t any!
Thank you for your input,
techie