Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AVG detected threats, but I'm not sure they are really threats


  • Please log in to reply
4 replies to this topic

#1 ribo

ribo

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:23 PM

Posted 27 February 2014 - 12:39 PM

As the title said, AVG 2014 (free version) detected 10 threats, but I'm pretty sure they are not threats, so I want to check with someone who actually knows what he/she's doing. I tried to google them, came up with no results. I have Windows 8.1. The report is below. Thank you!

 

Scheduled Scan               High priority;"10";"0";"10"             Folders selected for scanning:;"Scan whole computer"       Started:;"2014-02-27, 11:14:00 AM"           Finished:;"2014-02-27, 11:33:26 AM"           Total object scanned:;"352504"           User who launched the scan:;"SYSTEM"                             Name;"Description";"Result";"Status";"Priority"         C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernmail\util\accountvalidator.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernpeople\appframe\appbar.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernpeople\addressbook\controls\viewport\scrollingviewport.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernpeople\addressbook\controls\virtualizedgrid\cellcreator.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\moderncalendar\views\scheduler\scheduler.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\moderncalendar\views\calendar\en\calendar.css;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\jx\en\settingsflyout.css;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernmail\components\settingspane\fontsettings.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernmail\compose\components\attachmentwell.tmpl.js;"Hidden file";"Infected";"Infected";"High" C:\Program Files\WindowsApps\Deleted\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe51269377-c1e2-42d0-ad49-aa267674763d\modernpeople\addressbook\controls\collections\addressbookcollections.js;"Hidden file";"Infected";"Infected";"High"                                                                        

 



BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,590 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:23 PM

Posted 27 February 2014 - 03:38 PM

The JS file type is primarily associated with JavaScript.

When a browser runs an applet, the Java Runtime Environment (JRE) stores the downloaded files into its cache folder for quick execution later and better performance. Both legitimate and malicious applets (malicious Java class files) are stored in the Java cache directory and your anti-virus may detect them as threats. The detection can indicate the presence of malicious code which could attempt to exploit a vulnerability in Java which could be used to allow adware, phishing programs or other types of fraudulent software to be installed on a computer. For more information about Java exploits, please refer to Anti-Virus has detected a virus. Is it related to Java?.

In your case, these .js files appear to be stored in the WindowsApps folder found on Windows 8.

Notification of these files as a threat does not always mean that a machine has been infected; it indicates that a program included the viral class file but this does not mean that it used the malicious functionality.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 flagrama

flagrama

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:23 PM

Posted 27 February 2014 - 03:51 PM

That looks more like a Windows Modern Application. It has absolutely nothing to do with Java. There is javascript though because that is how those applications are developed. Those specific ones are also applications installed by default on Windows 8 and 8.1 developed by Microsoft.



#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,590 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:23 PM

Posted 27 February 2014 - 04:43 PM

.js files are primarily associated with JavaScript.

ACG found these .js files in this folder C:\Program Files\WindowsApps\Deleted\ which is found on Windows 8. I don't use Windows 8 so I wasn't aware they were defaults developed by Microsoft. Apparently the People, Mail, and Calendar apps are known collectively as the Windows Communications Apps which all these appear to be related to. If that is the case, then the detections may just be false positives. I find it curious they are in a "Deleted" subfolder.

I searched AVG but cannot find any information on this particular detection.

I did some more research and it appears Windows Store Apps are created using JavaScript. They even have JavaScript project templates for these Apps.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,590 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:11:23 PM

Posted 27 February 2014 - 04:51 PM

ribo you probably should check with AVG about this detection.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users