GZIP Logic bomb in Avast files

  dave1933 11:40 AM 07 Mar 13
Locked

System XP SP3. A couple of days ago I installed Iolo System Shield and following a scan it reported finding 5 copies of Gzip Logic Bomb in Windows\temp\avast. this seems rather strange. Can anyone suggest a reason for this. Avast (free) has been on the machine for about 2 weeks. Thanks Dave.

  Fruit Bat /\0/\ 12:20 PM 07 Mar 13

A zip bomb, also known as a Zip of Death or decompression bomb, is a malicious archive file designed to crash or render useless the program or system reading it. It is often employed to disable antivirus software to create an opening for more traditional viruses.

Rather than hijacking the normal operation of the program, a zip bomb allows the program to work as intended, but the archive is carefully crafted so that unpacking it (e.g. by a virus scanner in order to scan for viruses) requires inordinate amounts of time, disk space or memory.

from here

Avast opens files in a temporary directory to scan them that's why you are seeing them in that folder.

So you have had something nasty on your machine trying to get round Avast could have come from a wesite that Avast uesed its realtime scanner to look at any files attempting to be downloaded.

  1. look at the date of these files

  2. use something like CCleaner to regularly clean temporay files off your machine

I have run Avast for years without problems.

  lotvic 13:14 PM 07 Mar 13

Fruit Bat /\0/\, Is it okay to run both programs? (Avast and iolo System Shield Antivirus) Won't that lead to problems?

  Fruit Bat /\0/\ 13:35 PM 07 Mar 13

Yes 2 antivirus can often see each others "viurs defitions" and call it up as a problem.

Advertisement

This thread is now locked and can not be replied to.

Should I upgrade to Windows 10? Windows 10 is now available, so do you have to upgrade? 8 reasons…

Why Vodafone’s frequency choice should interest you: The benefits of 800MHz

Digital visionaries discuss Designing the Future

How to run Windows 10 on Mac: How to run Windows 10 using Boot Camp or VirtualBox to install…