Author Topic: Compromised Avast  (Read 5521 times)

0 Members and 1 Guest are viewing this topic.

Jack421

  • Guest
Compromised Avast
« on: January 20, 2011, 02:56:53 AM »
How do I know if malware has compromised Avast?  If somehow the malware has secretly rendered the scan engine inoperable or unable to remove malware.

Rootkits, viruses spyware etc ect
« Last Edit: January 20, 2011, 03:04:37 AM by Jack421 »

Gargamel360

  • Guest
Re: Compromised Avast
« Reply #1 on: January 20, 2011, 03:11:41 AM »
Ideally, you would see a yellow exclamation point or red X over Avast! icon in the system tray, either constantly or intermittently. 

Jack421

  • Guest
Re: Compromised Avast
« Reply #2 on: January 20, 2011, 03:39:51 AM »
Is there anyway avast can be compromised showing its operating normally or any other scan engine such as malware bytes and Super Anti Spyware!

Offline wonderwrench

  • Sr. Member
  • ****
  • Posts: 223
Re: Compromised Avast
« Reply #3 on: January 20, 2011, 04:21:25 AM »
Sure it's possible. I have seen Norton disabled several times over the years. It looks like it scans but finds nothing. The PC's in question were being operated by dangerous users that did not follow common sense and most likely help infect their PC's with malware that disabled norton. I have yet to see Avast get disabled, fingers crossed.

Bill
Main Box*i7 930*GB X58A-UD3R*3x4 gig Patriot DDR3 1600 EL*EVGA GTX 460 1 gig*Intel X25-M G2 80 gig*WD 2TB Green*ASUS DRW-24B3LT*Samsung SH-S223L*LG WH14NS40*Corsair AX750*Rosewill Challenger case*Windows 8 Pro 64 bit*Avast 8 Free 8.0.1482*MBAM Pro*Firefox 19.0.1*NoScript

Jack421

  • Guest
Re: Compromised Avast
« Reply #4 on: January 20, 2011, 05:23:58 AM »
Ok but how would one know if the system is compromised if it operates normally as if it had not been compromised by malware?  Would this come up in a OTL log or some other type of utility!  If it is compromised how could it be fixed and how can you find out?

Gargamel360

  • Guest
Re: Compromised Avast
« Reply #5 on: January 20, 2011, 06:35:57 AM »
Ultimate goal of much malware is to be stealth.  That is one reason for frequent program/virus database updates. 

Logs like you speak of are effective to see what others can not, if you know how to read the results.  They do nothing to prevent initial infection, though.

Best prevention of this doomsday scenario is layers of protection from separate sources.

Jack421

  • Guest
Re: Compromised Avast
« Reply #6 on: January 20, 2011, 07:32:34 AM »
What do you suggest I know avast covers spy ware and you can only run one anti virus at a time, I have avast and online Armour!  I use House Call and Eset Online Scanner as well as combo fix, Malware bytes, Spyware Blaster and Super Anti Spyware!

Gargamel360

  • Guest
Re: Compromised Avast
« Reply #7 on: January 20, 2011, 07:42:04 AM »
Ok, that is a lineup.  I would say for me that would be more than good enough.  But more?  Something like Threatfire.....maybe some kind of HIPS (OA have something like that?).... Sandboxie (or a full VM like VMware or Virtualbox).....Winpatrol......Prevx......all good things to check out.