Avast WEBforum
Other => Viruses and worms => Topic started by: Damstas on June 04, 2011, 06:29:19 PM
-
What is that Win32:FakeAlert-AAB [TRJ], which was on Avast files..?
-
Do you happen to be running a custom scan and scanning memory ?
I suspect so, as it looks like it is detecting avast virus signatures in memory.
-
Do you happen to be running a custom scan and scanning memory ?
I suspect so, as it looks like it is detecting avast virus signatures in memory.
I was scanning everything along with that, so it´s Avast:s own fakevirus..?
-
No, it is detecting an unencrypted signature loaded into memory by the avastsvc.exe process.
Scanning memory can bring strange results.
Since they aren't physical files they can't be moved to the chest, deleted, etc. so there is no action that can be taken, hence the Apply button being greyed out.
The detections in memory are frequently other security applications loading unencrypted virus signatures into memory. Having set off a scan of memory by an antivirus application looking for virus signatures, don't be too surprised if it finds some in memory.
- With a resident on-access antivirus like avast, the need for frequent on-demand scans is much depreciated. For the most part the on-demand scan is going to be scanning files that would be otherwise be dormant or inert. If they were active files then the on-access file system shield would be scanning them before being created, modified, opened or executed.
I have avast set to do a scheduled weekly Quick scan, set at a time and day that I know the computer will be on. If for some reason my system wasn't on, no big deal I will catch up on the next scheduled scan.