Here is the link to the Avast web page that I got by way of going to the links within my Avast program:
The one that hit me is:
I took Avast off two of my macines and was ready to take it off this computer in the basement and then it hit. I did a WRA scan after that and it came up clean. Would WRA have found it if Avast didn't? Now I am wondering it I shuold continue to run both programs on all machines.
Best answer by JimMView original
I reread it and did not see where I used the word file. I have to confess ignorance, because I wasn't sure how to word my post but when I looked at the link it uses the word file in there. I had copied the whole URL and I see from another machine that the first part is clickable, but I am not sure how that other part got there. I am talking about this part here:
I use MailWasher on all my machines and it showed up as a PHISHING email, but I see a lot of warnings on my regular emails, so I ignored it. I suppose I have to learn this stuff a little better, thanks for the links. That was why I said I should have known.
Although we do have anti-phishing capabilities that are not dependent on executing a file, that falls under the first part of the explanation as to why Avast was able to act on it first.
What I was getting at was, worse case scenario, let's say for the sake of argument that the phishing email took you to the redirect successfully and the malware host attempted to drop the malware on the computer. At that point (assuming again that Avast didn't want to act first since WSA would let it), WSA would have caught that malware deposit. In fact, you wouldn't have even needed to run a manual scan for that to happen. WSA would have acted on its own immediately.
I also have an American Express card from Costco that I use. Something similar happened to me a few months ago. I got a email (Looked Real) from AM EX stating that I had too many failed logins to my account. They wanted me to "Click the link" and update my account or account is subject to close. The email looked real, had my name and last 4 numbers of my account. I never clicked the link, instead I called AM EX on the telephone and my account was good, no failed logins and the only logins to the account was from me. I received about 4 more false emails from AM EX (The Hacker) and they finally gave up sending emails. I never click links to incoming emails about $$$ accounts. There are too many slick hackers out there now-a-days. I'm sure that if I would have clicked it, WSA would have caught it. ;)