Solved Decompression bomb false positive or real?

Ricoman

New Member
Messages
4
Very late last night I ran a quick avast scan and it found two decompression bombs that it couldn't scan. A few days ago I did increase my sensitivity settings. Test whole files was unchecked & the suspicious behavior HIPS monitoring was set to one bar now two. Could this just be a mistake because I changed these settings and what scans should I run next to verify it is or isn't a real virus?

I attached a screenshot below of what the infection inside avast scan history looks like. I'm running Windows 8.1 & both it & Avast are always up-to-date. This is just a cheap best buy laptop but here's the specs I was able to find out that are also on my profile. CPU: Intel i3-3130M, 4GB RAM, Intel HD 4000 Graphics, Firefox Browser, Logitech M100 Mouse, 678GB HDD.
 

Attachments

  • Avast History Screenshot.png
    Avast History Screenshot.png
    5.1 KB · Views: 162

My Computer

System One

  • OS
    Windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    HP
    CPU
    Intel i3-3130M 2,6GHz
    Motherboard
    HP
    Memory
    4GB
    Graphics Card(s)
    Intel HD Graphics 4000
    Screen Resolution
    1366x768
    Hard Drives
    678GB
    Cooling
    Air
    Mouse
    Logitech M100
    Internet Speed
    1.3Mbps
    Browser
    Firefox
    Antivirus
    Avast
    Other Info
    Just a cheap Best Buy laptop but it works.
Hello Ricoman:

It is quite possible that the files are virus/spyware database files from Microsoft.

Individually, send both files to https://virustotal.com and scan. Then post both report URLs in your next reply.

Only if both are digitally signed/verified by Microsoft Corp. can you choose to treat both as false positives that may later need to be entered in Avast's exclusions list.
 

My Computer

System One

  • OS
    W8
Hello Ricoman:

It is quite possible that the files are virus/spyware database files from Microsoft.

Individually, send both files to https://virustotal.com and scan. Then post both report URLs in your next reply.

Only if both are digitally signed/verified by Microsoft Corp. can you choose to treat both as false positives that may later need to be entered in Avast's exclusions list.
I could only find the second one in My Computer, here's the results.

https://virustotal.com/en/file/73c5...7725d27f0433ea192fd28ab4/analysis/1476220774/
 

My Computer

System One

  • OS
    Windows 8.1
    Computer type
    Laptop
    System Manufacturer/Model
    HP
    CPU
    Intel i3-3130M 2,6GHz
    Motherboard
    HP
    Memory
    4GB
    Graphics Card(s)
    Intel HD Graphics 4000
    Screen Resolution
    1366x768
    Hard Drives
    678GB
    Cooling
    Air
    Mouse
    Logitech M100
    Internet Speed
    1.3Mbps
    Browser
    Firefox
    Antivirus
    Avast
    Other Info
    Just a cheap Best Buy laptop but it works.
Back
Top