Hi David,
I found the 2nd image you posted on Web Shield. I clicked on Exceptions and typed in the url, then clicked ok. When I went to the url, I had the trojan horse warning again. On this popup, it gives me several options: move/rename; Delete or Move to Chest.
This is an alert from the standard shield, if it were the web shield then the alert would only have given you the option to Abort the Connection.
So it would appear that your exception for the web page/site is working because it is getting down to your hard disk, browser cache.
Under that there is another section that says Processing... There is a place that I can click on that says No Action. Am I supposed to click on this No Action box?
O rebooted and went through the same steps again. When I clicked on the hotconference link, I got the Trojan Warning again.
No action just means don't sent it to the chest, delete, etc. but avast won't allow a detected file to be run. Now we at least have a suspect file we can check.
What is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ? Check the avast! Log Viewer (right click the avast icon), Warning section, this contains information on all avast detections.
When I closed the warning window and went ahead...when the downloading of that hotconference link was done..I tried to open it and another popup window came up that said :An external application must be launched to handle this file. Then it gives a Requested link. It gave me the option of launching the link or cancel. When I clicked launch the link, nothing happened. It brought me back to the previous popup which showed that I had downloaded the hotconference link.
What do I do now ? Thanks so much for your patience!
You should check the offending/suspect file at (you may have to pause the standard shield to achieve this, enable again once uploaded):
VirusTotal - Multi engine on-line virus scanner I feel virustotal is the better option as it uses the windows version of avast (more packers supported) and there are currently 32 different scanners.
Or
Jotti - Multi engine on-line virus scanner if any other scanners here detect them it is less likely to be a false positive.
Whichever scanner you use, you can't do this with the file in the chest, you will need to move it out. Let us know the result of the scans.
If it is indeed a false positive, add it to the exclusions lists (
Standard Shield, Customize, Advanced, Add and Program Settings, Exclusions) and Restore it to its original location, periodically check it (scan it in the chest), there should still be a copy in the chest even though you restored it to the original location. When it is no longer detected then you can also remove it from the Standard Shield and Program Settings, exclusions.
Send the sample to
virus@avast.com zipped and password protected with password in email body and false positive/undetected malware in the subject. Or you can also add the file to the User Files (File, Add) section of the avast chest where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest.
Also see
False Positives, how to report it to avast! and what to do to exclude them until the problem is corrected.