Avast WEBforum
Other => General Topics => Topic started by: todteach on August 07, 2012, 05:52:44 PM
-
HI, Every time I run a scan there are a ton of files that can't be scanned because it says they are password protected. I don't have any files etc. that are password protected that I know of. How do I find the archived folders and remove the password?
Also, today I got 2 items that says "these files are a Decompression Bomb", what does that mean and how do I get rid of it or stop it from decompressing etc? This is the first time I have seen an item like that.
-
Files that can't be scanned are just that, not an indication they are suspicious/infected, just unable to be scanned.
1. Many programs (usually security based ones) password protect their files for legitimate reasons, there are others (and avast doesn't know the password or have any way of using it even if it did know it).
When you run scans with the above programs and you delete harmful entries that they detect, a copy is kept (in quarantine/restore/backup) in case you need to reverse what you did. These are usually password protected, you should do some housekeeping and delete old backup/recovery/quarantine entries (older than two weeks or so), this will reduce the numbers of files that can't be scanned.
By examining 1) the reason given by avast! for not being able to scan the files, 2) the location of the files, you can get an idea of what program they relate to. You may need to expand the column headings to see all the text.
If you can give some examples of those file names, the locations and reason given why it can't be scanned might help us further ?
2. Decompression Bomb, a file that is highly compressed, which could be very large when decompressed. This used to be a tactic long ago to swamp the system.
The name really is the most dangerous thing about this and I wish they would change it or simply not report it, a real PITA[/b].
These highly compressed files are generally 'archive' files which are inert, don't present an immediate risk until they are unpacked. If you happen to select 'All packers' in your on-demand scans then you are more likely to come across this type of thing. Personally it is a waste of time scanning 'all packers' and that is why it isn't enabled by default.