Avast WEBforum
Other => General Topics => Topic started by: HPY on August 27, 2010, 09:23:51 AM
-
Using the Avast 5 Free Version, I wondered what you would recommend as an optimal weekly Scan: Quick Scan, Full Scan, or Custom Scan?
Looking at Quick and Full Settings I notice that under Packers, the default seems to be restricted to 3 Packers and recommends a Custom Scan to include the rest. Is the default Setting adequate, or which Setting would you recommend for the weekly Scan using Custom? If so what Settings for Custom Scan do you recommend?
The reason I ask is that although I don't tend to surf dangerously, of the 4 security measures running on my laptop, whenever something really nasty tries to download, AVAST is the one to raise the alarm : Threatfire reacts to some things that Avast misses usually FPs, pre-installed Windows Defender also works quietly in the background but never reacts to anything important, the Free version of SuperAntiSpyware which I activate for its scan catches only harmless cookies.
A good example was: I inadvertently downloaded something called the YouTube Downloader Bar with an update of the YouTube Downloader, which obviously must have contained a “sleeper” because some days later, whenever it tried to activate itself Avast told me loud and clear and blocked the process. Threatfire wasn't aware of it, nor did my regular SAS quick scan show it. I immediately ran an Avast Quick Scan and located this YouTube Downloader Bar, and although it would not open it, repair it or send it to the Chest, it enabled me to simply delete it.
Back to my question – Avast is the best gear I have had as a first line of defence (I am wondering whether to junk Threatfire and SAS), but would like your opinion on the best Scan to scan for any other “sleepers” that may have come in under the radar.
-
after i installed it, i did a full scan with default settings. After that i activated the screensaver scan and thats it......but that`s me....
OBS: the default settings on the screensaver scan is " lop " i removed that...
Back to my question – Avast is the best gear I have had as a first line of defence (I am wondering whether to junk Threatfire and SAS), but would like your opinion on the best Scan to scan for any other “sleepers” that may have come in under the radar.
I use MalwarebytesPRO and SAS
-
"screensaver scan"? Never saw that. Does the free version have this - where is it?
-
"screensaver scan"? Never saw that. Does the free version have this - where is it?
Yes. Setting > Basic > Special scans
Then go to Scan folder and configure it :)
-
Basic > Special scans> Screen Saver scan -- With you now. I was on the scan interface not the "front page " Settings. There is no Start button so presumably it starts when in Low energy or screen saver mode?
-
:)
-
There is no Start button so presumably it starts when in Low energy or screen saver mode
It start scanning when the screensaver start
-
Tech and Pondus - thanks. I have set it to Full sensitivity. I suppose screensaver mode is as energy saving as low power mode.
-
I suppose screensaver mode is as energy saving as low power mode.
What do you mean?
-
Reply Tech,
This Vista laptop of mine was bought in Germany. In the shut-down menu you have the option "Energie sparen = low energy or Sleep mode" or something. I thought that this was perhaps the same as when the cummputer goes into Screensave-mode when you leave it on in your absence.
-
Hi HPY,
Generally, it is recommended to do a full scan monthly. You don't have to go as far as scanning weekly, that's a bit overkill and unnecessary. Avast focuses more on prevention than the cure, but there has been cases where a virus slips through and gets caught with a manual scan because there wasn't a virus definition in the database at that time, so it's just to make sure. Install Malwarebytes to backup avast. If you stay away from the computer long enough for the screensaver scan to finish then you could use that instead. As for the scan settings, the avast! Team has recommended you use the default settings.
-
Generally, it is recommended to do a full scan monthly.
???
If you do a boot scan right after you've first installed avast!, and your system has been confirmed as clean.
a full scan really isn't needed at all since avast! scan'a all files added ,opened, transferred, etc. to your system. IMHO.
Once Clean, your system should remain clean. :) (There are a few possible exceptions but the normal on demand scanning would still pick up these exceptions.)
-
GloobyGoob and Bob
because there wasn't a virus definition in the database at that time, so it's just to make sure. Install Malwarebytes to backup avast.
Yes. the thing was as I said in my original post this YouTube Bar-thingie stuck a "sleeper" in my system. Whenever it tried to activate itself Avast stopped it. Still, I had to run an Avast scan to find it.
SAS scan was no help at all. Is Malwarebytes more effective? I will consider Malwarebytes as lomng as it can sit passively until called upon, like SAS.
Thanks all!
-
This Vista laptop of mine was bought in Germany. In the shut-down menu you have the option "Energie sparen = low energy or Sleep mode" or something. I thought that this was perhaps the same as when the cummputer goes into Screensave-mode when you leave it on in your absence.
This has to do with saving energy so your battery last longer, i have turned of all saving when in power mode
If you stay away from the computer long enough for the screensaver scan to finish then you could use that instead.
If the screensaver scan is interupted, it will continue where it stopped when it is starting again. ( new in avast 5. I think Igor said this in a post if i remember correct )
-
Guys -
I could express myself a lot quicker (and therefore contribute more) if someone could tell me how to make screenshots.
PS - have just installed Malwarebytes and started a Quick Scan and within seconds it found 2 Infected Files in the Registry. Hope these are not Fps or vital parts of Windows??
-
I could express myself a lot quicker (and therefore contribute more) if someone could tell me how to make screenshots.
I think Bob posted a How to guide somwhere in here.....
PS - have just installed Malwarebytes and started a Quick Scan and within seconds it found 2 Infected Files in the Registry. Hope these are not Fps or vital parts of Windows??
If you post the Scan log, somone can tell you
-
Pondus - OK:
MALWAREBYTES:
"Registry Keys Infected:
HKEY_CLASSES_ROOT\dnscache.dnscacheobj (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\dnscache.dnscacheobj.1 (Trojan.BHO) -> Quarantined and deleted successfully.
---------------------------------------------------------------------------------------------------------------------------------------------------
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4489
Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005
27.08.2010 17:38:37
mbam-log-2010-08-27 (17-38-37).txt
Scan type: Quick scan
Objects scanned: 138304
Time elapsed: 9 minute(s), 29 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CLASSES_ROOT\dnscache.dnscacheobj (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\dnscache.dnscacheobj.1 (Trojan.BHO) -> Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
-
Pondus -
I think I will ditch SuperAntiSpyware, In the 6 months I have used it (about once every 2 weeks) it only came up with harmless cookies. It is deadweight on the hard disk compared to this Malwarebytes jugging by what the latter found and what SAS overlooked. I always thought SAS and their other products even LOOKED tacky. I only installed it because one of our "Überevangelists" suggested it.
-
I could express myself a lot quicker (and therefore contribute more) if someone could tell me how to make screenshots.
PS - have just installed Malwarebytes and started a Quick Scan and within seconds it found 2 Infected Files in the Registry. Hope these are not Fps or vital parts of Windows??
- When you click the Reply button, there is an Additional Options link, this expands the options to attach a file, that can be an image file or a text file (.log or .txt). Also see How to post an Image (http://forum.avast.com/index.php?topic=8982.0).
-
David - thanks
As you can see in my above post, this Trojan.BHO found its way into the Registry and was probably wiating for me to do some online banking. Malwarebytes dealt with it. SuperAntiSpyware never picked it up. I think it may be linked to the trojan that got in through the YouTube Downloader Bar, which only Avast blocked but did not repair (could not open the file so I deleted it).
I will ditch SuperAntiSpyware.
-
Personally I wouldn't ditch either as they compliment each other (as you will see from my signature) If you have one as resident or both as on demand (then they aren't heavy on resources).
I have used both for ages and a) I don't have SAS scan for cookies and b) I don't really expect either to detect anything.
SAS has features not in MBAM and vice versa, I haven't had a live detection by MBAM but I have had a number of false positives.
A trojan doesn't find its way into registry, it is just an entry in the registry and if you don't use IE BHOs are a moot point, there is no BHO function in firefox, opera or chrome.
-
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4489
Windows 6.0.6002 Service Pack 2
Internet Explorer 7.0.6002.18005
Internet Exporer has been updated to V8 and is much better and has been available since March 18, 2009.
Increased performance
Internet Explorer 8 includes many performance improvements that contribute to a faster, more responsive web browsing experience in the areas that matter most.
http://www.microsoft.com/windows/internet-explorer/features/faster.aspx
Stay Safer Online
The Internet has enhanced our lives in nearly every way. However, as more of the things we do every day depend on the Internet, online crime has risen in turn.
http://www.microsoft.com/windows/internet-explorer/features/safer.aspx
Snipping Tool is available for Vista and Windows 7
http://windows.microsoft.com/en-US/windows-vista/Use-Snipping-Tool-to-capture-screen-shots
-
a friend of mine had a computer wich was heavily infected and slow so i installed superantispyware on it and other than tracking cookies it detected 3 rootkits and 1 browserhijacker. the computer also had avast wich detected malware now and then, but it missed the 3 rootkits and the browserhijacker. after deleting what superantispyware found then the computer was not so slow anymore.
so in my opinion superantispyware is a good addition to avast :)
-
Personally I wouldn't ditch either as they compliment each other (as you will see from my signature) If you have one as resident or both as on demand (then they aren't heavy on resources).
I have used both for ages and a) I don't have SAS scan for cookies and b) I don't really expect either to detect anything.
SAS has features not in MBAM and vice versa, I haven't had a live detection by MBAM but I have had a number of false positives.
A trojan doesn't find its way into registry, it is just an entry in the registry and if you don't use IE BHOs are a moot point, there is no BHO function in firefox, opera or chrome.
Interesting. I use Firefox (with ABP and NS) although another poster said that it too could be at risk.
Avast however did neutralise the threat (but not repair) that was coming from this YouTube Downloader Bar which may have pinged something into the Registry which is why it was still there after I had deleted YouTube Downloader Bar which was sitting in Programs next to, but not within YouTube Downloader. The point may be that it was still a potentially serious threat and therefore should not have been there (yet none of the others including Avast were seeing it). Hence my enthusiasm for MBAM .
*a) "I don't have SAS scan for cookies" -- I always did the standard Quick Scan but Cookies it did indeed find.
*Maugrimx - "it detected 3 rootkits and 1 browserhijacker. the computer also had avast wich detected malware now and then, but it missed the 3 rootkits and the browserhijacker."
Thanks both - maybe I should keep both in reserve, although I do not actually know that SAS and MBAM compliment each other.
Yes a quick Scan occasionally by both makes sense.
-
@ HPY
As you have nothing in your signature its hard for the helpers to offer help.
I have not had SAS since I purchased MBAM ages ago.
DavidR has good information in his sigature. 8)
-
YoKenny - you are right - is there a slick way of adding your signature?
I could go to My Profile and list the details although copying and pasting doesn't work.
I have MBAM and SAS both free and ThreatFire free.
-
Please go to PROFILE then Modify Profile then Forum Profile Information then Signature: and put information about your system just like my signature about your system just like my signature so that the helpers can offer pertinent advice.
-
<Snip>
- is there a slick way of adding your signature?
I could go to My Profile and list the details although copying and pasting doesn't work.
<Snip>
Copy and paste should work provided you don't exceed the maximum number of characters.
I have just confirmed it by trying to add the above sentence to my existing signature. It didn't fail but it did run out of space, it would have exceeded the 300 character limit, so the last part isn't copied, see image.