Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Win32:Evo-gen [susp] persisting
Message
<blockquote data-quote="jaymeeraine" data-source="post: 140548" data-attributes="member: 13932"><p>I thought I was pretty slick when it came to keeping infections off my computer, but oh well.</p><p></p><p>As I said above, I've used the guide on this site in addition to a couple of other diagnostic and removal programs. They have found a couple of registry issues and tracking cookies that were removed, but no actual instances of the Win32:Evo-gen malware. However, at varying times throughout the day (sometimes twice a day, sometimes up to 5-6 times a day), avast! pops up with the same 4 notifications, all of them blocking instances of the malware from being "created or modified". </p><p></p><p>When I re-do the removal tutorial from this site right after doing it the first time, it comes back clean, but when I run it after the next time avast!'s notifications pop, some of the programs find the same registry issues all over again, even though they were properly quarantined and/or deleted before. </p><p></p><p>The only websites I use are Netflix, Google, Outlook, Facebook, and occasionally Twitter and DeviantArt. </p><p></p><p>It's always the same four files that come up as being infected, too (I think I tried deleting the entire folder they were in once ,but no dice on stopping Win32:Evo-gen). I don't know if it makes a difference, but avast! says they are all in the SoftwareDistribution\Download section, and have the following names: 2 flashutil:activex.exe and 2 temp files named with a string of numbers and letters. The process avast! provides for these warnings are under WinSxS, Windows servicing stack, TiWorker.exe (I don't know if any of these names matter or are useful). </p><p></p><p>I'm not sure what else to do. I don't know if the malware is actually on my machine, or something keeps trying to get it on there or regenerate it and so avast! is stopping it from regenerating over and over. </p><p></p><p>I should also mention that for the first 5-10 minutes after I reboot my PC, my Disk Usage jumps to 100% several times for no particular reason (even when I only have start-up programs open).</p><p></p><p>I have taken the steps from the tutorial both in safe mode and out of safe mode.</p></blockquote><p></p>
[QUOTE="jaymeeraine, post: 140548, member: 13932"] I thought I was pretty slick when it came to keeping infections off my computer, but oh well. As I said above, I've used the guide on this site in addition to a couple of other diagnostic and removal programs. They have found a couple of registry issues and tracking cookies that were removed, but no actual instances of the Win32:Evo-gen malware. However, at varying times throughout the day (sometimes twice a day, sometimes up to 5-6 times a day), avast! pops up with the same 4 notifications, all of them blocking instances of the malware from being "created or modified". When I re-do the removal tutorial from this site right after doing it the first time, it comes back clean, but when I run it after the next time avast!'s notifications pop, some of the programs find the same registry issues all over again, even though they were properly quarantined and/or deleted before. The only websites I use are Netflix, Google, Outlook, Facebook, and occasionally Twitter and DeviantArt. It's always the same four files that come up as being infected, too (I think I tried deleting the entire folder they were in once ,but no dice on stopping Win32:Evo-gen). I don't know if it makes a difference, but avast! says they are all in the SoftwareDistribution\Download section, and have the following names: 2 flashutil:activex.exe and 2 temp files named with a string of numbers and letters. The process avast! provides for these warnings are under WinSxS, Windows servicing stack, TiWorker.exe (I don't know if any of these names matter or are useful). I'm not sure what else to do. I don't know if the malware is actually on my machine, or something keeps trying to get it on there or regenerate it and so avast! is stopping it from regenerating over and over. I should also mention that for the first 5-10 minutes after I reboot my PC, my Disk Usage jumps to 100% several times for no particular reason (even when I only have start-up programs open). I have taken the steps from the tutorial both in safe mode and out of safe mode. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
