So I made a full system scan in avast, and only 10% through I found over 200 infected files. I needed to stop the scan to see what was this file. Keep in mind all the infected files were the same virus and the same location which is C:/ProgramData/PCDr/6584/performance. The name says that it was a snapshot then bunch of numbers. Please tell me more about this and if it’s a false positive cause I found over 200 of the same thing!
EDIT: By the way I look in my task manger before and after the scan disk, cpu, memory below 25-30%. Even before the scan my computer ran fine, it ran the same speed as I usually do I think.
I’m also having the same experience as jumbofight54. Avast auto removes it, but it’s back the following day. I checked Avast virus update history (@ https://www.avast.com/en-us/virus-update-history) and Win32:genmalicious-DLE [trj] is listed under 18.2.2015 - 150218-0 column. Not sure if I have a stubborn virus on my hands.
I know that I got false positives but is there anyway for avast to ignore them because I kind of feel insecure right now, since full system scan is now useless. If I can’t do that do you have ideas when a update will come out?
Hey, I’m just gonna join this topic because I have the exact same problem. I recently did a quick scan and found out I had like 339 Win32gen from the exact same folder. Unfortunately, I kinda panicked and deleted all the files. After a short while, I downloaded Malwarebytes and did a couple scans. It found a bunch of pup stuff that doesn’t look life-threatening but no win32gen. However, I did another quick scan with avast and found one more win32gen in the same folder. Again, I panicked and deleted it again.
Currently, I’ve been doing like a couple of scans a day but found no more Win32gen virus. I was planning to either refresh or reset my PC until I saw this topic. Hopefully, it’s a false positive because I don’t wanna reset my whole PC and lose my files.
As for symptoms, my PC is running a bit slow but this problem has been there way before I found the win32gen virus. Today, my OneNote app (the Microsoft one, purple app) became one of the Startup programs even though I had no memory of making it a startup program
found a bunch of pup stuff that doesn't look life-threatening
PUP = not malware / Possible Unwanted Program .... usually crap that comes bundled with free downloads
but no win32gen.
you cant compare as different vendor use different names
Again, I panicked and deleted it again.
dont delete, you then have no options left
[b]Clean, Quarantine, or Delete? [/b] http://antivirus.about.com/b/2007/03/11/clean-quarantine-or-delete.htm
I was planning to either refresh or reset my PC until I saw this topic.
why ... we fix it here for free (if realy infected)
start your own topic and follow instructions here if you want help https://forum.avast.com/index.php?topic=53253.0
@Pondus
When you said “you cant compare as different vendor use different names”, I’m gonna interpret the meaning as “different anti-virus/anti-malware uses different names for the virus” and not “the virus will keep changing it names”. Yeah, when Malwarebytes found those PUP, I googled search each of the virus to make sure it is not life-threatening. All of them seems to be only for advertisement and annoyance purposes.
And like I said, I panicked when I deleted those files and now I realized it wasn’t one of my brighter ideas.
And ok, I’ll start a new topic to ask for help to clean my computer on the forums if this is really a win32gen virus and not a false positive. I just thought that resetting/reformatting my computer would be a easier and sure-fire though sadder way to get rid of the good-for-nothing virus.
But getting back to the topic, does anyone have any idea if these snapshots from the Pcdr file are just false positives? I thought Pcdr stands for PC-Doctor which came with the computer when I bought it.
When you said "you cant compare as different vendor use different names", I'm gonna interpret the meaning as "different anti-virus/anti-malware uses different names for the virus" and not "the virus will keep changing it names". Yeah, when Malwarebytes found those PUP, I googled search each of the virus to make sure it is not life-threatening. All of them seems to be only for advertisement and annoyance purposes.