Author Topic: Chest or delete?  (Read 2926 times)

0 Members and 1 Guest are viewing this topic.

Offline brendanxx

  • Newbie
  • *
  • Posts: 3
Chest or delete?
« on: November 01, 2018, 02:29:01 PM »
I'm new to avast - a scan reveals that I've got MacOS:installcore-EY [PUP] - should I delete or put this in the chest?
(1) what action, if any, should I take re "unable to read files"?
(2)I've just started getting "Infection blocked!" messages - never had them before with Kaspersky - do these messages mean that avast has stopped them from getting into my system - therefore I need do nothing?
(3) What's the difference between the pop ups "Avast Web shield has blocked a threat" and "Avast Filesystem has blocked a threat and moved it to the Chest?
Many thanks

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37245
  • Not a avast user
Re: Chest or delete?
« Reply #1 on: November 01, 2018, 05:38:03 PM »
MacOS:installcore-EY [PUP]
PUP = Possible Unwanted Program (wanted for some unwanted for others, usually crap)

"Install Core" is an installer which bundles legitimate applications with offers for additional third party applications that may be unwanted by the user. Such third party applications are typically installed onto users’ computers by default, but may include an option to ‘opt-out’ during or after the installation process.

1. do you mean files that could not be scanned?

2. Infection blocked is usually avast webshield blocking (blacklisted) URLs

3. Shield info
Mac  >>

Quarantine, Delete, or Clean: Which Is Best for a Virus?

Offline alanb

  • Poster
  • *
  • Posts: 652
Re: Chest or delete?
« Reply #2 on: November 01, 2018, 06:17:36 PM »
Although I'm far from a newbie, this is still a useful collection of informative links.

Well found, Pondus  :D

Offline .: Mac :.

  • Avast Überevangelist
  • Ultra Poster
  • *****
  • Posts: 5093
Re: Chest or delete?
« Reply #3 on: November 06, 2018, 12:20:47 AM »
InstallCore is many times a scareware type item, generally you can delete as its distributed in an installer like a fake adobe flash update.

For the unable to read/scan, this will be hidden in a future update so not to report in the GUI any further, this is normal in most cases but if you are concerned about any of the reported locations feel free to post here and we can advise

Web Shield vs File Shield is the point when the detection is Found/reported. Web Shield generally detects during download or prior to download, where file shield is detection the file on the drive.
"People who are really serious about software should make their own hardware." - Alan Kay