Author Topic: Avast unable to eliminate Win32: malware-gen (Read 4540 times)

Brian__K · « **on:** March 20, 2011, 01:00:52 AM »

This is my 1st post. I've read other posts about win32: malware-gen but I've been unable or not skilled enough to understand and apply the manual fixes that seem to be necessary.

Safe mode scans by Malwarebytes and Superantispyware do not find this virus but an Avast boot scan repeatedly finds it and some related infected files. Avast can isolate the related files but when attempting any of the fix options (delete, repair, move, ignore), I get this error: "operation is not supported for this type of archive." The only action I can perform is to exit the scan. The location is in some Dell shovelware:

Dell Embassy Trust Suite\embassy trust suite\wave infrastructure\wave infrastructure.msi>data1.cab1|>...(long series of numbers & letters).

I could not attach the full OTS log due to upload size limitations, but I did attach the first part of the log file with the system information.

Any guidance would be appreciated.

Pondus · « **Reply #1 on:** March 20, 2011, 01:22:59 AM »

Quote

I could not attach the full OTS log due to upload size limitations, but I did attach the first part of the log file with the system information.

then you do one more post where you attach the rest...

Brian__K · « **Reply #2 on:** March 20, 2011, 01:37:07 AM »

Thanks for the tip; I should have thought of that. Here's the second of three OTS files:

Brian__K · « **Reply #3 on:** March 20, 2011, 01:37:49 AM »

And the 3rd and last:

Pondus · « **Reply #4 on:** March 20, 2011, 01:54:19 AM »

Essexboy is notified, check back later today as he is in bed now....

Brian__K · « **Reply #5 on:** March 20, 2011, 02:10:29 AM »

You mean to say that you superhero types actually sleep?!

DavidR · « **Reply #6 on:** March 20, 2011, 02:13:47 AM »

Yes, under their capes

doktornotor · « **Reply #7 on:** March 20, 2011, 09:07:55 AM »

Dell Embassy Trust Suite is a legit product usually preinstalled on Dell laptops. Looks like FP to me. "operation is not supported for this type of archive" message merely tells you that avast! is not able to delete files selectively from the CAB archive. It could delete the entire archive instead if you set the actions accordingly.

IOW, I'd suggest to submit this as possible FP to Avast...

essexboy · « **Reply #8 on:** March 20, 2011, 02:15:25 PM »

Would agree with the false positive assessment

Upload as previously stated as a false positive... Otherwise all looks good

Brian__K · « **Reply #9 on:** March 20, 2011, 05:51:18 PM »

Whew! Thanks for the assistance; keep up the noble work!

essexboy · « **Reply #10 on:** March 20, 2011, 06:01:15 PM »

Our pleasure

Author Topic: Avast unable to eliminate Win32: malware-gen (Read 4540 times)

Brian__K

Avast unable to eliminate Win32: malware-gen

Pondus

Re: Avast unable to eliminate Win32: malware-gen

Brian__K

Re: Avast unable to eliminate Win32: malware-gen

Brian__K

Re: Avast unable to eliminate Win32: malware-gen

Pondus

Re: Avast unable to eliminate Win32: malware-gen

Brian__K

Re: Avast unable to eliminate Win32: malware-gen

DavidR

Re: Avast unable to eliminate Win32: malware-gen

doktornotor

Re: Avast unable to eliminate Win32: malware-gen

essexboy

Re: Avast unable to eliminate Win32: malware-gen

Brian__K

Re: Avast unable to eliminate Win32: malware-gen

essexboy

Re: Avast unable to eliminate Win32: malware-gen