Virus Windows 7

0 views
Skip to first unread message

Mack Mosely

unread,
Aug 5, 2024, 11:52:08 AM8/5/24
to cleavadonid
Ihad compiled a simple hello world program in C with the MinGW compiler using the command line. As it had finished compiling, windows defender popped up and detected a virus (Trojan:Win32/Fuery.C!cl).

EDIT: I deleted the path variable of C:/MinGW and added CodeBlock's MinGW compiler. I then used the command line to compile the same C file again and had uploaded the .exe file to VirusTotal. This time, 0 engines detected. So I have come to the conclusion that, the MinGW compiler that I had installed was creating this problem.


This is what I did: I removed the PATH Variable of C:\MinGW and added CodeBlock's MinGW compiler (CodeBlocks/MinGW/bin). I used the command line to compile the same C file, and had uploaded the .exe to VirusTotal. No engines detected this file!


Since you wrote that program and you know it isn't actually a Trojan, it's obviously a false positive. You should submit the file to them at so they can figure out why it's triggering the false positive and fix it. (If it happens with everything you compile, just sending them one will suffice.) In the meantime, you should add an exclusion to Windows Defender for the folder that you compile your executables in.


I ran into this after installing MinGW on 01-08-20(dd-mm-yy).For me it was also Windows Defender, the way to - hopefully temporarily- get rid of this is to add an exception for the folder your compilation output will reside in.The Microsoft website states these steps to add an exclusion:


I had a similar problem. I figured out that the following dll was missing: mingw32-libmingwex-dll. Once I installed it via "MinGW Installation Package", I didn't have the problem anymore.I hope this can help others.


I had the same problem (having a freshly compiled executable on a clean machine, accused of carrying malware), however when updating a project with VS2022, originally done in VS2015 and using VB. After compiling and taking the executable to the installation folder, a few seconds after replacing the old executable, Windows Defender detected a virus (Win32/Nuqel!pz), removed it from the run folder and quarantined it. My client, who needed to use the new version, had to put the executable as an exception, which is a reduced security condition.


The reason why I want to do this is because I get laptops that have been infested and its my job to clean them for viruses. Normally I just started up a Virus scan and a Windows Defender scan. An hour later they both would be done.


If you wish to run Windows Defender scan, you must disable you other installed antivirus for that moment. Once the scan from Windows defender has finished scanning, you can start up another antivirus and continue scanning with that. I think, it is a good initiative by Windows 8 to disable Windows defender, if it finds another antivirus, as in case of Windows 7, we have to manually take care of it, as keeping two antivirus software together on a machine is not advisable.


Instead of running two Anti viruses, I would suggest running an antimalware program real time at the same time as your anti virus. They work beautifully together and don't conflict with each other. Another layer of security is to make sure that you have a Firewall enabled.


So today I was watching a Youtube video and I noticed everything started getting extremely slow and things became very delayed, even just moving my mouse, I opened task manager which took several seconds and saw "Antimalware Service Executable" using 80% of my disk, which is strange as I don't recall starting a scan or anything.

Upon searching it up people are suggesting it's either an error with windows defender, or a virus that may be acting as windows defender. I've ran a full scan with windows defender and am running one with Malwarebytes currently but neither seem to be finding anything.



Does anyone know how to fix this? Any kind of help would be greatlyyy appreciated.


While you are waiting for the next qualified/approved malware removal expert helper to weigh in on your topic, and even though you may have run the following Malwarebytes utility, or its subsets, please carefully follow these instructions:


For the short time between when you post the diagnostic logs, and when your helper weighs in, please take no further self-directed remedial actions that will invalidate the diagnostic logs you will have sent.


Hi. Very glad to read the scan result. As to the screen grab above, the very key words are "during a scan run of Microsoft Defender antivirus". Yes that is normal during a on-going scan of MS Defender.

As to when there is NOT a scan on-going, like during idle or lightly loaded system, the percentahe of system use would be a lot lower.

Thus, if the screen capture is during a scan, this is normal.

By the by, while in Task Manager, if you do a RIGHT-click on Antimalware Service Executable" and select "Properties" you would see the executbale name of msmpeng.exe on the folder location C:\Programdata\Microsoft\Windows Defender\Platforum\4.18.nnnn.n

That is the engine executable of MS Defender antivirus.


So I was just completely overreacting, I probably have just never thought to check task manager during a scan, so it seemed strange, and also is 95% cpu usage also normal during a scan, cause I was just running another scan just to double check, and it's hovering right around 90-95% cpu.


A standard quick scan with Microsoft Defender should be just a few minutes in duration. And as to the percentage, it would fluctuate up and down. It is not like the percent in use is 90+ all day long. A strong caution I would advise to everybody, is to be cautious when looking at Task Manager stats.


This is a follow-up on the SecurityCheck report. These are what you need to take action on.

I would suggest that you insure to have Version 4.5.24.248 of Malwarebytes.

Do a Check for Update using the Malwarebytes Settings >> General tab.


As to s-l-o-w or lagging computer

there are several areas that you can look into.

Here are a few links to handy articles

Please know that a slow condition can be due to non-infection factors.


KPRM only removes the security tools/report tools I had you use. If you have a concern about installed programs Razer Cortex or Razer Synapse and do not want them, look in Windows installed programs list and remove as desired. -us/windows/uninstall-or-remove-apps-and-programs-in-windows-4b55f974-2cc6-2d2b-d092-5905080eaf98


Keep your system and programs up to date. Several programs release security updates on a regular basis to patch vulnerabilities. Keeping your software patched up prevents attackers from being able to exploit them to drop malware.


Select your chosen scan and wait for it to complete. Windows Defender shows a progress bar to let you know what scan is running, how long it is estimated to take, and how many files have been scanned. Do not turn off your device!! You can continue using your device while the scan runs in the background.


If you ran this scan in response to your email sending or receiving spam, let the ITS helpdesk know that you successfully ran a virus scan an that you need your email re-enabled. They will take you through the process of getting your email back up and running.


Although rare, Linux malware & viruses do exist. The strict layered structure of Linux makes it however less vulnarable, but not immune. It can also not be excluded that you make a mistake, and authorize a malicious piece of software to do harmfull things.


So I've done some research about virus' and I've learned that a Windows formatted virus is useless in a Mac environment because of the formatting differences. I've also read that, because I've partitioned my HD, the Windows side cannot see or access anything from the Mac side and that the Mac side can only read from the Windows side, not write. Which would lead me to believe that the Mac would remain protected. I also understand that if the Windows OS gets a virus that could damage it, I could just reboot in Mac and format the partition, wiping the virus from the HD (and then reinstall Windows if need be).


Now, the only reason I will be using Windows is to play League of Legends as it's not supported by Mac, that being said is there any virus, maleware, spyware, ect that could leak into the Mac side and steal contact info or more importantly credit card and banking info?


To prevent a remote user from access, in Advanced System Settings->Remote Tab, you will see that by default your system can be controlled remotely unless you change it. There are various Remote Services, Firewall settings and User account settings that would have to be enabled/disabled to make it possible as well.


You should have Microsoft Security Essentials ( =5201 ) as your only anti virus software. I just removed a "Win 7 Antivirus 2012" from friend's Toshiba computer. You'll find more about it with inet search. She was using AVG. The 2012 would not allow access to task manager, explorer, internet anything. I downloaded M. Sec. Ess. to my Mac flash USB drive, and installed it to her PC in Safe mode boot. It got rid of Win 7 AV. Although I had uninstalled AVG, M. Sec. Ess. got rid of remainders of it also.


Microsoft Security Essentials shoud be a part of any Windows installation, (not an option). If some obsolete U.S. Congress unbundling law is preventing this, then maybe Apple could include it as part of BootCamp. For example, OEM supplier HP includes Norton free for x months.


Thanks for this v. informative posting. I am running Windows 7 and MS Office 2010 in a Bootcamp partition on my MacBook Pro. Based on my research thus far, I am going to install MS Sec. Essentials in the Windows partition. Two .exe files are avaialble for download at the link above, those being:


To see and limit what programs run at start-up, key msconfig and click on found object. I limit this list to only Boot Camp and Microsoft Security Client. If you are syncing to Apple devices, you may want to leave those items checked.

3a8082e126
Reply all
Reply to author
Forward
0 new messages