Got Hit by "Avanish" malware, missed by W10 security

Page 3 of 3 FirstFirst 123
  1. TairikuOkami's Avatar
    Posts : 3,832
    Home 1903 x64 10.0.18362.267
       #21

    It sounds like a false positive, most likely caused by VPN or other installed software, since it kept reoccuring.
    The only other reason, it would be restoring, would be a scheduled task used by fileless malware - autoruns.
      My ComputerSystem Spec

  2. Rickerz's Avatar
    Posts : 37
    Windows 10 (ver 1809)
    Thread Starter
       #22

    TairikuOkami said: View Post
    It sounds like a false positive, most likely caused by VPN or other installed software, since it kept reoccuring.
    The only other reason, it would be restoring, would be a scheduled task used by fileless malware - autoruns.
    The
    I wonder how you have concluded the" re-occurrence" you you've mentioned, if you are eluding to the number of "Avinash" in the start-up list, that's just the nature of the malware to simply cause havoc and slow the system to the crawl, soon after the discovery Hitman Pro, stopped the malware and quarantined "Avanish.exe and Anachronism.exe" remnant files which defeats the "fileless " malware. In so far whatever Hitman did seems to be holding and no more signs of the Malware which amazed me that no one ever heard of .

    - - - Updated - - -

    TairikuOkami said: View Post
    It sounds like a false positive, most likely caused by VPN or other installed software, since it kept reoccuring.
    The only other reason, it would be restoring, would be a scheduled task used by fileless malware - autoruns.
    BTW, what is a "False Positive"... perhaps a truncated statement? or is it?
      My ComputerSystem Spec

  3. Bree's Avatar
    Posts : 12,407
    10 Home x64 (1903) (10 Pro on 2nd pc)
       #23

    Rickerz said: View Post
    BTW, what is a "False Positive"... perhaps a truncated statement? or is it?
    No, that's the full statement, it's a commonly used term in the anti-virus industry. See:

    How-To Geek | How To Tell If a Virus Is Actually a False Positive
      My ComputersSystem Spec

  4. iMacg3's Avatar
    Posts : 11
    Windows
       #24

    It sounds like you have a malware infection. Please do this ...

    ---------------------------------------------------
    Farbar Recovery Scan Tool (FRST)

    Download Farbar Recovery Scan Tool and save it to your desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, and that will be the right version.
    • Right-click FRST.exe/FRST64.exe then click "Run as administrator"
    • When the tool opens, click Yes to the disclaimer.
    • Press the Scan button.
    • When finished, it will produce logs called FRST.txt and Addition.txt in the same directory the tool was run from.
    • Please copy and paste the logs in your next reply.
      My ComputerSystem Spec

  5. Rickerz's Avatar
    Posts : 37
    Windows 10 (ver 1809)
    Thread Starter
       #25

    iMacg3 said: View Post
    It sounds like you have a malware infection. Please do this ...

    ---------------------------------------------------
    Farbar Recovery Scan Tool (FRST)

    Download Farbar Recovery Scan Tool and save it to your desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system, download both of them and try to run them. Only one of them will run on your system, and that will be the right version.
    • Right-click FRST.exe/FRST64.exe then click "Run as administrator"
    • When the tool opens, click Yes to the disclaimer.
    • Press the Scan button.
    • When finished, it will produce logs called FRST.txt and Addition.txt in the same directory the tool was run from.
    • Please copy and paste the logs in your next reply.

    Yeah , i did, or shall I say my PC had! right now the intent is how to delete the traces the malware left behind namely in the start-up (please refer to screen capture showing above)... but If "Farbar Recovery Scan Tool" is capable to cleanup the startup list It would be nice.
    will it?
      My ComputerSystem Spec

  6. iMacg3's Avatar
    Posts : 11
    Windows
       #26

    Rickerz said: View Post
    Yeah , i did, or shall I say my PC had! right now the intent is how to delete the traces the malware left behind namely in the start-up (please refer to screen capture showing above)... but If "Farbar Recovery Scan Tool" is capable to cleanup the startup list It would be nice.
    will it?
    Yes.
    If you are able to download and run FRST, please post the contents of FRST.txt and Addition.txt in your reply.
      My ComputerSystem Spec



  7. Posts : 185
    win10 home
       #27

    All that seems to have been achieved in 3 days is to be stuck at the beginning.A clean install allows you the pleasure of the middle finger salute to the virus providers.One or preferably two inexpensive drives for backup usage will give you peace of mind,using Macrium of course.
    Stop fiddling around.
      My ComputerSystem Spec

  8. jimbo45's Avatar
    Posts : 7,844
    Windows / Linux : Centos, Ubuntu, OpenSuse
       #28

    Bree said: View Post
    No, that's the full statement, it's a commonly used term in the anti-virus industry. See:

    How-To Geek | How To Tell If a Virus Is Actually a False Positive

    Hi there

    @Bree

    I wouldn't take that as "Gospel" in any way shape or form -- I'm sure any sensible hacker worthy of the name would do their utmost to "poodlefake" stuff so everything looks as legit as possible and I'm sure some of those "Scumbags" intent on wrecking people's machines will already be well aware of that type of literature.

    Normally though malware isn't such a mega problem these days since scammers are all in it to make money and this can easily be done (apparently !!!) by methods that really don't involve using malware or viruses any more --the only places you might get that stuff from is by using some of the more dubious torrent and warez sites -- most popular torrent sites these days don't want their users getting infected either. I think even that old site still flying the jolly roger blocks people who upload torrents with malware in them.

    Fake websites , opening emails from unknown senders, replying to unsolicited questionaires, replying to websites offering you "Tax Refunds" which look official and above all giving out too much data on these social media sites is where these people operate at now. The effort of creating viruses to load on "mom and pop" machines won't yield much money - especially for the effort involved -- but catching them with a nice easy scam which gets things like their credit card details is a much more profitable enterprise.

    Keep your machine(s) regularly backed up -- Macrium Free -- just run it from within windows --save your image to an external device and if you need to restore simply boot from the recovery tool and restore from the image you made --couldn't be simpler -- it's all easily menu driven.

    @joeandmarg0

    agree 100% rep given (double if I could -- why people don't take regular backups is totally beyond me - we've all hosed up machines I'm sure at some time in the past - and restoring is so easy). I think the original user after 3 days is in a worse state than when starting -- We'd call it "Back to square MINUS Z" -- i.e worse than back to square A or one). Even on a slowish machine a macrium restore shouldn't take more than around 30 mins for average Windows systems.

    Cheers
    jimbo
      My ComputerSystem Spec

  9. iMacg3's Avatar
    Posts : 11
    Windows
       #29

    A factory reset is certainly an option. However, we can try to clean the malware without formatting/reinstalling Windows.

    If you decide to do so, please post the logs from FRST. If you decide to go with a factory reset, let us know and we can help you with the steps involved in doing so.
      My ComputerSystem Spec


 
Page 3 of 3 FirstFirst 123

Related Threads
[REPORT] "Bing Is Pushing Malware When You Search for Chrome" in AntiVirus, Firewalls and System Security
Just came across this report.
Is it possible to change "Open" and "Save As" windows view to "List" instead of "Details" globally without having to set List view in File Explorer? I would like to use Details view in File Explorer and List view for "Open" and "Save As" windows. ...
After i installed windows 10 on my Asus N53SV, the keyboard doesnt work properly. I look on the internet for help, but it looks like im the only one. I tried uninstall and reinstall almost everything i know. From keyboard driver, touchpad, etc....
When I click on "SETTINGS" I get no sub-menu. That means I cannot upgrade Win 10 because there is no "UPGRADE & SECURITY" choice for me to make. I was given this system two years ago and after the first two months I've only used it occasionally. ...
Never mind this. It was nothing to do with Adobe.
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 06:42.
Find Us