Menu
Question: Q: Trojan found on Mac by Avast? I know Avast! Isn't the best, but this is the only time it's given me an 'infection' detection so far. The file was an 'alekspack10.jar' file and considered a trojan. Avast business cloudcare for mac. * It could be a false positive, and deleting it could destroy valuable data, damage an application or damage your system. CNET's Avast and AVG forum is your destination to discuss anything related to your desktop, mobile, or business security solutions. False positive - Duplicates Cleaner. AVG is a fake.
The Virus Chest in Avast Security and Avast Premium Security (previously Avast Security Pro) is an isolated space where you can safely store potentially dangerous files before taking further action. Files in the Virus Chest cannot run or access your system and data, so any malicious code contained within a file is unable to harm your Mac.
Refer to the sections in this article to learn how to manage files in the Virus Chest. To access the Virus Chest, click Virus Chest on the main Avast Security screen.
Move files to the Virus Chest
Avast for the mac. Files are automatically moved into the Virus Chest in the following ways:
- If an Avast Security scan detects a suspicious file and you confirm that the detected file should be moved to the Virus Chest.
- If an active Avast Security shield detects a suspicious file.
When Avast Security detects a suspicious file during a scan, the detection appears in the scan report. To move a file to the Virus Chest, use the check box to select the file, then click Resolve Selected.
The file is now marked as Threat resolved.
Suspicious files can also be manually added to the Virus Chest by following the steps below:
- Click Virus Chest on the main Avast Security screen.
- Click Add File...
- Locate the file on your Mac using the Finder window, then click Open.
The selected file is added to the list of files in the Virus Chest.
Submit files from the Virus Chest to the Avast Threat Labs
Avast For Mac False Positive Restore
Any suspicious file, or file incorrectly identified as a threat, can be submitted directly from your Virus Chest to Avast Threat Labs for further analysis. To submit a file for virus analysis: Avast security for mac full system scan.
- Click Virus Chest on the main Avast Security screen.
- Hover your cursor over the file in the Virus Chest, then click
…
(three dots), and select Send for analysis. - Select either Potential malware or False positive, then enter as much additional information as possible in the text box, and click Send. If you are submitting a False positive, specify the Program name, Program publisher, Program version number, and the reason why you believe the file or program should not have been detected.
A confirmation appears when the file is sent.
In most cases, Avast Threat Labs processes the files they receive without sending a response to you.
Restore files from the Virus Chest
When you restore a file from the Virus Chest, Avast Security moves the file back to its original location. Alternatively, you can specify to restore the file to another location on your Mac. To restore a file from the Virus Chest:
- Click the check box next to the file in the Virus Chest.
- Click
…
(three dots), then select Restore or Restore as. - If you selected Restore as, use the Finder window to choose a new location for the file, then click Open.
- If prompted, use your Touch ID or enter your Administrator password and click OK to confirm the restoration.
The file is restored and can now be opened or run from its original or specified location on your Mac.
Restoring files from the Virus Chest is only intended for critical situations, such as a system file being moved there. Restoring infected files puts your Mac at risk. We recommend you only perform this action if you have advanced skills and experience in handling infected files.
Delete files from the Virus Chest
To permanently delete a file from the Virus Chest:
- Click the check box next to the file in the Virus Chest.
- Click Delete.
- Click Delete to confirm.
![Mac Mac](/uploads/1/3/3/8/133864471/283378606.png)
The file is deleted from your Mac.
- Avast Security 14.x for Mac
- Avast Premium Security 14.x for Mac
- Apple macOS 10.14.x (Mojave)
- Apple macOS 10.13.x (High Sierra)
- Apple macOS 10.12.x (Sierra)
- Apple Mac OS X 10.11.x (El Capitan)
- Apple Mac OS X 10.10.x (Yosemite)
“Your antivirus will complain that this download is a virus, but don’t worry — it’s a false positive.” You’ll occasionally see this assurance when downloading a file, but how can you tell for sure whether the download is actually safe?
![Positive Positive](/uploads/1/3/3/8/133864471/442019462.jpg)
A false positive is a mistake that happens occasionally — the antivirus thinks a download is harmful when it’s actually safe. But malicious people may try to trick you into downloading malware with this assurance.
Use VirusTotal to Get More Opinions
Avast For Mac Review
If you download a file and your antivirus jumps into action and informs you the file is harmful, it probably is. If you’ve run into a false positive and the file is actually safe, most other antivirus programs shouldn’t make the same mistake. In other words, if this is a false positive, only a few antivirus programs should flag the file as dangerous, while most should say it’s safe. That’s where VirusTotal comes in — it lets us scan a file with 45 antivirus programs so we can see what they all think of it.
Head to the VirusTotal website and upload the suspect file or enter an URL where it can be found online. They’ll automatically scan the file with a wide variety of different antivirus programs and tell you what each says about the file.
Norton security for mac free trial. If most antivirus programs say there’s a problem, the file is probably malicious. If only a few antivirus programs have a problem with the file, it may well be a false positive — this doesn’t guarantee the file is actually safe, it’s just a piece of evidence to consider.
Evaluate the Download’s Source — Are They Trustworthy?
The most important thing you can do is evaluate the source of the download. If you’ve performed a Google search and downloaded a program from a company you don’t recognize, you probably shouldn’t trust them. If the file arrived via a peer-to-peer network or email, it’s probably malware.
On the other hand, you may have downloaded the file from a company you trust. For example, you might one day download the latest version of software from a reputable company and see a message on the download page saying “Note: Norton Antivirus currently says this file is malicious, but that’s a false positive. We’re working on fixing it.” If you trust the company, you can feel fairly good bypassing Norton’s malware alert and running the file — but you have to be sure you really trust the company and that you’re on their real website.
RELATED:Basic Computer Security: How to Protect Yourself from Viruses, Hackers, and Thieves
There’s still no guarantee, of course. The company’s website may have been compromised. It’s a good sign if you see a false-positive warning before downloading a file. On the other hand, if you download a file and see an error without seeing a warning first, that’s a bad sign — you may have stumbled onto a malicious download. Are you sure you’re on the company’s real website and not a fake website set up to trick you into downloading malware?
Try to ensure that the file is actually from the organization you trust — your bank won’t send you programs attached to emails, for example.
Check a Malware Database
When an antivirus flags a file, it will give you a specific name for the type of malware it is. Plug this name into a search engine like Google and you should find links to malware database websites written by antivirus companies. They’ll tell you exactly what the file does and why it’s blocked.
In some cases, files that have legitimate uses may be flagged as malware and blocked because they can be used for malicious purposes. For example, some antivirus programs will block VNC server software. VNC server software may be installed by someone malicious so they can remotely access your computer, but it’s safe if you know what you’re doing and intend on installing a VNC server yourself.
Be Very Careful
There’s no foolproof way to know for sure whether a file is actually a false positive. All we can do is gather evidence — what other antivirus programs say, whether the file is from a trustworthy source, and exactly what type of malware the file is flagged as — before making our best guess.
If you’re not too sure whether a file is actually a false positive, you shouldn’t run it. Better safe than sorry.
If you think the file is actually a false positive, your antivirus software may have a way to submit it to the antivirus company. Check your antivirus’s documentation for information on submitting false positives so they can improve their detection and fix problems.
READ NEXT- › How to Fix a Slow or Unresponsive Mac
- › Windows 10’s Tablet Mode May Be Replaced With the Desktop
- › How to Quickly Switch Between Gmail Accounts on Android, iPhone, and iPad
- › How to Use the chmod Command on Linux
- › How Writers Can Use GitHub to Store Their Work