Hi,
I have been using Avast Free Antivirus for some time, but this is my first serious (?) infection. On this system, I have had Avast installed since May 2010. This weekend, Avast reported three threats found among my Java program files:
C:\Users\username\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\12670d29-5ec793ee|>gogol\Emailer.class
C:\Users\username\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\12670d29-5ec793ee|>gogol\Familie.class
C:\Users\username\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\12670d29-5ec793ee|>gogol\PhonBook.class
Here is what I did:
1. I chose to let Avast move the files to the virus chest.
2. I downloaded and ran Malwarebytes' Anti-Malware. It found no threats, except Trojan.Downloader which was located on a storage drive where I had dumped all files from an old computer. (The file was \I386\WUAUENG.DLL). This file was successfully quarantined and deleted by MBAM.
3. Ran full Avast scan again, no threats found.
4. Ran full MBAM scan again, no threats found.
Then I wanted to find out what this threat was, and started searching the web. That soon made me want to look at the Avast log file, but the log file from the scan that reported the threats is now gone. Is there any reasonable explanation for this? I find it hard to understand how I could have deleted it accidentally. Under Maintenance, I have the default auto-cleanup setting that temporary logs older than 1 day are to be deleted. Does it mean that the log I saw was just a temporary one? That's the most interesting log I have seen so far, why would it be just a temporary one?
When I check the Avast chest, I see only two entries, not three:
12670d29-5ec793ee.idx - original location C:\Users\username\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\
gogol\Emailer.class - original location C:\Users\username\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\12670d29-5ec793ee
So my questions are:
1. Where is the missing log file?
2. Why are there only two items in the virus chest, when I chose the same action for three threats?
3. Should I consider my system to be safe now?
Thanks in advance for your advice!