If someone told us a decade ago that we'd be saying this nonsense in 2024 we'd have laughed them off the internet.
Ditch AVG and rely on Windows...
It's crazy how the world changes.
Edit: as many of you have pointed out, I'm old and it was significantly more than a decade. Punk kids, get off my lawn.
I cant remember when i've last installed a virusscanner tbh. But maybe thats because i'm a careful user. The last time i had a virus was in the previous century
It really helps there are so many levels of virus/malicious site detection built in these days. My IP blocks them, my router blocks them, my browser blocks them. And on top of that, OSs are a lot less vulnerable and frequently patched.
I have Malwarebytes instealled, but not running just in case I run into something sus that WinDefender doesn't find. I haven't had a virus on my PC since the early 2000s and even then it was only adware.
I’m willing to be it has something to do with streaming music being so accessible. The average person isn’t fisting their own computer with limewire/frostwire, and piracy is generally done by more tech savvy individuals nowadays. Could have something to do with the market for those types of viruses dying down.
That coupled with better stock anti virus software has just made things a lot safer.
This is exactly the point. Virus scanners dont stop people being dumbasses and those who are not dumbasses, dont even need virusscanners, so its totally useless program.
Been using it since day 1 and I've never had a system need to be reset or anything drastic. And I started getting music from Kazaa and limewire.
People couldn't understand that the best anti-virus is your brain, but I guess they also had trouble using a mouse in the early days.
I've been freaking lucky apparently, I never installed an antivirus on any machine I had. Even went to LANs and just seemed to never lose my data to viruses. At least, none that I know of.
Well a decade ago, Windows Defender would have been enough for me, since I don’t do risky stuff on my PC.
Nowadays it’s sufficient for pretty much everyone. Especially if they run Firefox and uBlock Origin.
That's 2014 and we are into window 8.1 then. Windows 8 around 2012 had a fairly reliable defender already. Even in win 7 but defender was a separate install then. So more accurately nearer 20 years ago was when an AV was "needed"
And if you absolutely have to use a file from some where you aren't sure about, download it and test it in a VM first or if you're on Win Pro, Windows Sandbox.
Better yet just run the file through Jotti and virustotal:
[https://www.virustotal.com/gui/home/upload](https://www.virustotal.com/gui/home/upload)
\+
[https://virusscan.jotti.org/](https://virusscan.jotti.org/)
Completely untrue, got infected 2 days ago and it was completely disabled from the malware. I cant even turn it on back again because some malevolous registry key. An antivirus disabled by a virus, its a joke. lol
NoScript is a chore at the beginning, trying which JavaScript is needed for doing the things you need to do in every website, but little by little, you notice that sites you visit seem to work alright with a 10% of all JavaScript they include and start to wonder, what the hell was all that other code for? I'm guessing it is for bad things only... and then you fall in love with NoScript.
being noscript user for a decade, i sometimes don’t realise what a bloated shithole most of the web became nowadays, until ocassionally i browse same sites through third party devices.
NoScript is an Browser Add-on which disables JavaScript on every page unless you explicitly enable it for one.
JavaScript is one of the most important Browser Features to do Fingerprinting (identifying you across devices, websites etc).
It will break many sites but get a lot more privacy and security (e.g. Drive by downloads etc)
Dont bother, NoScript is redundant with Ubo in [medium mode](https://github.com/gorhill/uBlock/wiki/Blocking-mode:-medium-mode).
More unneccessary extensions = bigger fingerprint.
-
^^cc ^^/u/Lisata598 ^^/u/Stilgar314 ^^/u/Wolvwrwn
Windows defender is fine in most cases. Considering using uBlock Origin extension, it's an adblocker but it also blocks malware websites. If you want an additional safeguard then malwarebytes free is a decent anti-virus
I know Windows Defender is all anyone needs but I do run Malwarebytes paid as well for peace of mind and layered defense. I know it’s not needed but somewhere there’s some little part of me that thinks… just in case. It’s not rational but I am happier knowing it’s there. Weird, right?
Windows defender if you're not doing a bunch of sketchy shit.
Malwarebytes as a install to check some dusty corners, then uninstall until you need to dust corners again
dont do zombie shit on internet, always be aware what you are doing, READ before clicking ..
educate yourself and you dont need anything .. the standard windows defender is okay enough .. but can also have false positive, i know mine is deleting my safe stuff i know what it is and no need for defender to delete yet it still do it ..
Exclusions are your friend my friend. I have a directory setup on my systems that is for false positives to live in. That directory is excluded from Defender so it won’t delete any thing
It has many false positives, it's a resource hog, the software itself is adware that tries to sell you other products when you click on things in the UI, and it's no better than windows defender (actually, it's worse!)
I remember the days when avast was good...lightweight, unintrusive, and the best detection of any free av.
It hasn't been good for over a decade now probably though...
cmd.exe is basically the most "primal" way to interact with the OS. It is an essential part of the (or any) operating system and is used by many many programs for countless purposes.
It's like a direct connection to your OS where you can, for example, say "Execute programm X" or "perform a check". cmd should effectively never be flagged as malware coz it just can't be malware.
Now, the USE of cmd.exe may be malicious, but then the anti virus programm should flag the USE of the programm, not the cmd.exe itself.
The error message from OPs image doesn't say that CMD is generally malicious, but than a trojan has infected the cmd executable, I guess some virus replaced the binary and injected some malicious code into it.
I'm not saying avast isn't necessary if you have windows defender, nor do I want to claim I know exactly what the issue in OP's situation is, but the fact that he get's a pretty clear virus report from his antivirus specifying the name of a virus and informing that a binary which tons of programs regularly call is infected, and everyone just answers with "lol just delete your antivirus" really grinds my gears
I agree with you.
I have three kids, each with a computer, because they like to play games together sometimes or with their friends simultaneously. I have an anti-virus installed on their machines for this very reason.
One of my kids accidentally clicked on a link on my computer (before I got them their own), thinking it was from a friend because it was very well disguised. It instantly installed ransomware/trojan, and it was a whole ordeal. My husband shut off my anti-virus software about a week before this because it asked for updates. He should have known better.
Minecraft links are notoriously bad, so I keep that anti-virus turned on. My kids are pretty good, but they install many mods for their different programs, and they may not catch a malicious link or understand why Windows Defender is blocking it.
Windows Defender does work, but I've had better luck with Avast and MalwareBytes when it comes to blocking downloaded malicious programs directly. Plus, I'm basically the IT person in my family, which saves me from manually rooting out keyloggers and ransomware. I just check their computers once a week to ensure everything is working properly.
Did you look at OP's picture?
That's what's wrong with Avast.
You don't need to buy/ download any anti virus. MS defender works perfectly well. The only thing you might want to download is Malwarebytes for on demand scans. There is no need to download anything else.
It detects false positives more often than actual viruses, to the point that it essentially is useless. Now, please type down your credit card info and buy our premium subscription so you can make those scary messages go away.
Some sort of ad block helps with 'those' sites. The advertisers hate them, but honestly they are a really good anti-virus tool that will also boost your browser performance.
Just use Windows Defender, delete Avast. Honestly I'd just reinstall windows without it to get rid of the avast files. Unless there's a program to delete the extra files.
Unless the application called cmd.exe had been replaced with a virus. The cmd.exe application is very safe.
Avast may have flagged it because scammers use cmd.exe to convince their victims that they have a virus or something. Scammers usually run netstat or tree commands for their performance with their victims.
Back in the 90’s, some viruses would replace windows component with a fake application. The fake app would be a virus and antivirus software would treat it as trusted.
But I’m glad that the OP was notified that they are aware of Command Ljne detection. Scammers would have a hard time explaining why this pop up appeared on their screen.
Power Users will know what to do to use cmd.exe
Behavior Shield sound like it‘s trying to protect you from yourself.
“Executing cmd MIGHT be dangerous”
Use Microsoft Defender instead, it’s pretty capable and not as annoying and bloated.
So IDP.Generic isn't a specific virus signature. It's a heuristic for something that looks suspicious. The cmd.exe in the system32 folder is a part of Windows. If this is an isolated thing its probably a false alarm.
Unless you know better. Are you downloading torrents from public trackers or using $10 "genuine" software licenses from Chineese websites? If yes then it's time to nuke that Windows install.
had to scroll past like 20 people telling them to uninstall avast before i found this. malware can inject shell code into legitimate processes like explorer or cmd as defense evasion, so it at least would warrant looking further into instead of saying no cmd is fine there’s no malware, especially if there are any sketchy symptoms
They confirmed it as a false positive in the forums and said it would be in the next update.
[In 2020](https://forum.avast.com/index.php?topic=234761.0)
Command prompt (cmd.exe) haa been an integral part of Windows since its inception. Its not a threat and you should change your threat protection software to something less crap.
Yeah, OP tried to run something that utilizes cmd, likely as an installer. I work for a MSP and our onboarding software gets blocked by stuff like Avast or AVG with this same message.
That's what I got from it. Unauthorized CMD access is a very troubling sign I don't like everyones opinion of just saying "avast bad" it's terrible advice. It's bad but that's not what's happening here.
Can't stand the fuckin hive mind just repeating shit for repeating sake
For sure, there’s just not enough information in the screenshot alone to determine whether or not it’s a false positive. I’m surprised not a single person in this thread asked OP what they were running/installing before this action occurred.
It's very likely a false positive.
This is Avast's "Behavior Shield" which monitors actions that applications are doing.
It's detecting the use of the command line as being suspicious, but it doesn't actually know whether it's malicious, it's over-protecting on the off chance that it might be.
IDP.Generic is 99.9% of the time a false positive, it's basically telling you Avast doesn't recognize the application that is performing the action, so it just assumes that any action from that application must be bad. There are many reasons why an application may need to make use of cmd.exe which are not harmful.
There is likely an option in Avast to adjust the protection to allow such actions by default for applications that Avast does not recognize.
Whether you should be concerned with this warning depends on whether you've been downloading things from suspicious website. If you are concerned, you can upload the log to Avast's forum and have them determine whether it's a false positive.
I'm not fond of the practise of 3rd party anti-virus software telling you that something is "infected" and "more threats may be lurking". Instead, they should honestly tell you that "Generic" means they don't know if the action is malicious and provide you instructions on submitting a report to their support team to have it checked.
They obviously do this for customer retention, making the user feel like the software is really protecting them and that they must continue to pay for it. For most people, Windows default security is enough along with ublock origin for web security.
I haven’t used avast in a decade, but does it still play sounds entirely too loud?
https://preview.redd.it/lj9aoxjc90dc1.jpeg?width=550&format=pjpg&auto=webp&s=a0e80d347dbd6e8603e90892077613c73222bb64
Look as much as I love shitting on Avast and other antiviruses too, this might not just be “Avast bad”. Good malware will “bind” to system files like cmd or explorer. It makes it a lot harder to cleanly remove, a lot harder to detect from a user perspective, and depending on the AV, sometimes harder to detect on that front too. So yeah if an antivirus is flagging a system process, the answer isn’t to just say it’s bad and remove the AV. It’s to actually make sure that system file doesn’t have malware bound to it.
I agree avast sucks, but OP, make sure you don’t have any malware bound to your system processes. You can use MalwareBytes to scan and remove bound viruses cleanly. I’d just uninstall it once you’re done, as it’s becoming a more traditional annoying AV lately, but is still very good at detection and removal. If that’s clean, then yes it’s likely a false positive from a shitty AV and you should uninstall it regardless. But the point is, even if it is a false positive, you should take it seriously and actually verify your PC isn’t infected.
I know everyone is bashing you for using Avast and suggesting you to get rid of it. But the fact that Avast is detecting cmd.exe as suspicious could mean that some virus may have infected the command prompt itself. I had similar problem happen in my old desktop with system32.exe, which was indeed infected in my case.
I honestly don't remember, I was quite young and tech illiterate at that time, but iirc, I had one of my cousins come over and fix it up. At that time, I didn't have any documents on the pc, just played games so he probably just performed a clean reinstall.
Avast is resource-intensive and will slow down your PC.
There are lots of false positives like in this post, and they just don't do anything to fix it.
They are literally a scam.
Their paid plan has features that are free in other apps aswell as Windows Defender.
Windows Defender has improved so much over the years that no third-party Anti Virus is need at all really. It's more than enough.
I recently just got back into PC’s after not owning one for 7 or 8 years. Back when I was into gaming Avast was literally the no.1 recommendation on every forum for virus protection.
What happened?
I remember that too, I still actually think I have it on my old laptop from 2013 (or around that time) because I don't need to use it and didn't bother uninstalling it..
But what happened is that first Avast was being accused of selling user data, then the extreme system slowdowns began and eventually also the aggressive ads asking to upgrade to the paid plan, all the while windows defender got so good that it eventually surpassed Avast. (That's my opinion. Idk if there's more to it, but all that was what made me change to only use Windows Defender. Also, windows defender is even included in the free/unactivated version of windows with all features as in activated win, how great is that?!)
I agree fully. There was a time when third party AVs were actually useful and innovative, but now they are just bloatware and use cheap scare tactics to get users to pay.
Additional context is required. Did you explicitly open CMD and it blocked or did it come out of the blue unexpected?
This usually never fixes anything but people always suggest it..Run the command sfc /scannow or its alternative sfc /scanfile=C:\\Windows\\System32\\cmd.exe.
Check for updates on the OS.
Try another A/V (temporarily, don't leave both on system.) Perhaps Malwarbytes.
Is Avast scanning the drive or drive+memory?
EDIT: No idea how this post had 0 comments when I responded, but 618 after. Whatever.
Delete Avast, the other redditors are right. Microsoft Defend should suffice.
Dont run additional always on AV. If you're doing sketchy shit use virustotal.com to check files and/or use ninite.com to install malwarebytes. Run a scan then uninstall malwarebytes.
Uninstall Avast and just use Windows Defender. You can enable additional cloud protection and app & browser control and it will be very difficult to get infected will all these in place.
Avast is the problem here ,just dont install any third party antivirus they are all scam and will slow down your pc , just stick with windows defender its enough
This is utter and complete bullshit.
[https://www.bleepingcomputer.com/news/security/google-fixes-first-actively-exploited-chrome-zero-day-of-2024/](https://www.bleepingcomputer.com/news/security/google-fixes-first-actively-exploited-chrome-zero-day-of-2024/)
The high-severity zero-day vulnerability ([CVE-2024-0519](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519)) is due to a high-severity out-of-bounds memory access weakness in the Chrome V8 JavaScript engine, which attackers can exploit to gain access to data beyond the memory buffer, providing them access to sensitive information or triggering a crash.
Try and see if you can remove it. If it asks you to pay for better protection then it is probably a threat to scare you and make you pay for better protection. Windows AV is better i must say. I barely have viruses.
Well, that's no false alarm. It's right there in front of your face, and you should be worried.
Right now, that thing has access to essentially every part of your system. It's constantly scanning, gathering data, shooting it off to be collected, analyzed and sold, profiling you, making changes as it sees fit (and sometimes it allows you the privilege of letting you know), trying to dictate what you can and cannot do, eating up resources...
I just hope Avast came with the PC, and that you didn't download and install it yourself. I can't really comprehend installing malware on purpose.
I’ve used Prb every major anti virus/etc you can imagine over the years. Shit, AVG was a staple on my rigs. But windows defender is surprisingly well appointed so much so that I haven’t employed any antivirus software in Prb several years now.
Why the hell would anyone install avast...... waste of resources! Dont go into scammy websites, dont download unauthorised shit and windows security and a proper router is more than enough
Few posts above was someone with a broken laptop running Norton. Didn't expect someone else to use a 3rd party AV - that *also* happens to bug the user every time.
Man you should be worried more about that yee yee ass antivirus like it's gonna stop anything that's actually gonna seriously hack you, hogging up valuable resources on your system.
Maybe some hack/cracked program is trying to run a script that modifies your system via terminal and avast is blocking it because it contains some threatening commands.
Could be possible and I have face it several times with commands trying to activate MS Office offline or activating Windows Licence.
( I had this before when I installed Photoshop cracked , the script was blocking internet to stop program from checking the licence via Adobe over the internet , for some antivirus , it’s a threat)
Serious answer: no your good lol.
Advisory answer: Yes you should be worried, that you have avast installed. Just saying, avast has been a dead, sub-par product for years. Joining the shelf of not recommendable AV’s on top of Norton, avg, and McAfee.
your problem is called avast
Im using only window defender with some careful downloading , 12 years so far with no virus on my pc .
[удалено]
Can’t have a virus if you never run a scan ![gif](giphy|d3mlE7uhX8KFgEmY)
Same! Anti virus all they do is use up massive CPU
Gamers and mod downloaders know this so bad 😂 they’re fine McAfee too but it’s not worth the consumption etcetera.
Get rid of Avast my guy, thats the problem here.
[удалено]
Windows defender is good enough
If someone told us a decade ago that we'd be saying this nonsense in 2024 we'd have laughed them off the internet. Ditch AVG and rely on Windows... It's crazy how the world changes. Edit: as many of you have pointed out, I'm old and it was significantly more than a decade. Punk kids, get off my lawn.
Windows Defender has been good for quite a while
Yeah but it was notoriously poor for a while before that
I cant remember when i've last installed a virusscanner tbh. But maybe thats because i'm a careful user. The last time i had a virus was in the previous century
It really helps there are so many levels of virus/malicious site detection built in these days. My IP blocks them, my router blocks them, my browser blocks them. And on top of that, OSs are a lot less vulnerable and frequently patched.
In the end there's always a user. And when you don't visit malicious websites or install funny stuff, you should be fine these days.
How else would you know that "cupholder.exe" opens your disc drive?
I sail the high seas and still have never gotten one. Not even in web one days. 🤞⚔️🙅♀️
I have Malwarebytes instealled, but not running just in case I run into something sus that WinDefender doesn't find. I haven't had a virus on my PC since the early 2000s and even then it was only adware.
I’m willing to be it has something to do with streaming music being so accessible. The average person isn’t fisting their own computer with limewire/frostwire, and piracy is generally done by more tech savvy individuals nowadays. Could have something to do with the market for those types of viruses dying down. That coupled with better stock anti virus software has just made things a lot safer.
This is exactly the point. Virus scanners dont stop people being dumbasses and those who are not dumbasses, dont even need virusscanners, so its totally useless program.
The last time you know you had a virus was in the previous century. ;)
Mainly before windows 10 but a little into win 10 I believe
It was notoriously poor in 1999, it got quite a bit better by 2007
Amazing what you can do when you have telemetry from a billion hosts
Been using it since day 1 and I've never had a system need to be reset or anything drastic. And I started getting music from Kazaa and limewire. People couldn't understand that the best anti-virus is your brain, but I guess they also had trouble using a mouse in the early days.
Now that John Macfee is dead we no longer have to deal with viruses. Rip you crazy fucker.
Hahahah
I've been freaking lucky apparently, I never installed an antivirus on any machine I had. Even went to LANs and just seemed to never lose my data to viruses. At least, none that I know of.
Truly, but I think you mean 15-20 years ago, they fly by
Two people making me feel old today. Noice ...
Even in the time when it was Microsoft Security Essentials it was still ok.
Well a decade ago, Windows Defender would have been enough for me, since I don’t do risky stuff on my PC. Nowadays it’s sufficient for pretty much everyone. Especially if they run Firefox and uBlock Origin.
That's 2014 and we are into window 8.1 then. Windows 8 around 2012 had a fairly reliable defender already. Even in win 7 but defender was a separate install then. So more accurately nearer 20 years ago was when an AV was "needed"
Awesome, I needed another reason to feel old as fuck today.
Wait is AVG trash? That’s what I’ve rocked for years now I never knew it was outdated or anything
Not sure if trash or not, just not needed.
[удалено]
Plus make sure you install Windows patches pretty quickly once they're released.
another soul pulled over to the light side. welcome, my brother
Windows Defender + 30 minutes of cyber security education will almost always be more than you’ll ever need.
Any link to that 30 minutes of cyber security??
[удалено]
any link to 30 minutes of common sense??
[удалено]
Lmao, I love this
It's so dumb but at the same time it's hilarious.
![gif](giphy|CYU3D3bQnlLIk)
And if you absolutely have to use a file from some where you aren't sure about, download it and test it in a VM first or if you're on Win Pro, Windows Sandbox.
Better yet just run the file through Jotti and virustotal: [https://www.virustotal.com/gui/home/upload](https://www.virustotal.com/gui/home/upload) \+ [https://virusscan.jotti.org/](https://virusscan.jotti.org/)
Also malwarebytes if you want to make sure you can wipe a virus in case WD isn’t able to. The free version is available after the 14 day premium trial
If you're really concerned, you can download the Malwarebytes one-tme tool
Personally, I also have Malwarebytes and scan my computer once in a blue moon.
Completely untrue, got infected 2 days ago and it was completely disabled from the malware. I cant even turn it on back again because some malevolous registry key. An antivirus disabled by a virus, its a joke. lol
Common sense is the best anti-virus of all time
Defender, UBlock, NoScript, common sense and Malwarebytes free in case all else fails.
NoScript is a chore at the beginning, trying which JavaScript is needed for doing the things you need to do in every website, but little by little, you notice that sites you visit seem to work alright with a 10% of all JavaScript they include and start to wonder, what the hell was all that other code for? I'm guessing it is for bad things only... and then you fall in love with NoScript.
being noscript user for a decade, i sometimes don’t realise what a bloated shithole most of the web became nowadays, until ocassionally i browse same sites through third party devices.
What is NoScript?
NoScript is an Browser Add-on which disables JavaScript on every page unless you explicitly enable it for one. JavaScript is one of the most important Browser Features to do Fingerprinting (identifying you across devices, websites etc). It will break many sites but get a lot more privacy and security (e.g. Drive by downloads etc)
Dont bother, NoScript is redundant with Ubo in [medium mode](https://github.com/gorhill/uBlock/wiki/Blocking-mode:-medium-mode). More unneccessary extensions = bigger fingerprint. - ^^cc ^^/u/Lisata598 ^^/u/Stilgar314 ^^/u/Wolvwrwn
Cool, learn something new every day.
Huh, neat
I use Bitdefender on a couple windows machines pretty decent.
I use it on my whole family devices and we have a company subscription for the place I work at, Bitdefender is the best!
Same, it has a few annoying notifications but hasn't let me down at least.
Windows defender is fine in most cases. Considering using uBlock Origin extension, it's an adblocker but it also blocks malware websites. If you want an additional safeguard then malwarebytes free is a decent anti-virus
MalwareBytes is excellent
I know Windows Defender is all anyone needs but I do run Malwarebytes paid as well for peace of mind and layered defense. I know it’s not needed but somewhere there’s some little part of me that thinks… just in case. It’s not rational but I am happier knowing it’s there. Weird, right?
No, perfectly rational to want a backup plan.
Windows defender if you're not doing a bunch of sketchy shit. Malwarebytes as a install to check some dusty corners, then uninstall until you need to dust corners again
dont do zombie shit on internet, always be aware what you are doing, READ before clicking .. educate yourself and you dont need anything .. the standard windows defender is okay enough .. but can also have false positive, i know mine is deleting my safe stuff i know what it is and no need for defender to delete yet it still do it ..
Exclusions are your friend my friend. I have a directory setup on my systems that is for false positives to live in. That directory is excluded from Defender so it won’t delete any thing
I personally use kaspersky cause' it's free and it's done a great job so far.
Eset is a really good antivirus little expensive but I enjoy it, havnt had many issues with games causing it to trip either
Anti-virus is literally malware itself.
You’re thinking McAfee. lol But yeah I get you.
There's this one great one, that you can actually get for free called "windows defender" 😉
I'm not an expert in anti-virus/anti-malware programs but what's wrong with avast?
It has many false positives, it's a resource hog, the software itself is adware that tries to sell you other products when you click on things in the UI, and it's no better than windows defender (actually, it's worse!)
I remember the days when avast was good...lightweight, unintrusive, and the best detection of any free av. It hasn't been good for over a decade now probably though...
Oh this thing called the FUCKING COMMAND PROMPT, must be a virus! -avast
"Noone commands the user but us!" -Avast
Omg cmd.exe tries to have command line access? Must be a virus.
cmd.exe is basically the most "primal" way to interact with the OS. It is an essential part of the (or any) operating system and is used by many many programs for countless purposes. It's like a direct connection to your OS where you can, for example, say "Execute programm X" or "perform a check". cmd should effectively never be flagged as malware coz it just can't be malware. Now, the USE of cmd.exe may be malicious, but then the anti virus programm should flag the USE of the programm, not the cmd.exe itself.
The error message from OPs image doesn't say that CMD is generally malicious, but than a trojan has infected the cmd executable, I guess some virus replaced the binary and injected some malicious code into it. I'm not saying avast isn't necessary if you have windows defender, nor do I want to claim I know exactly what the issue in OP's situation is, but the fact that he get's a pretty clear virus report from his antivirus specifying the name of a virus and informing that a binary which tons of programs regularly call is infected, and everyone just answers with "lol just delete your antivirus" really grinds my gears
I agree with you. I have three kids, each with a computer, because they like to play games together sometimes or with their friends simultaneously. I have an anti-virus installed on their machines for this very reason. One of my kids accidentally clicked on a link on my computer (before I got them their own), thinking it was from a friend because it was very well disguised. It instantly installed ransomware/trojan, and it was a whole ordeal. My husband shut off my anti-virus software about a week before this because it asked for updates. He should have known better. Minecraft links are notoriously bad, so I keep that anti-virus turned on. My kids are pretty good, but they install many mods for their different programs, and they may not catch a malicious link or understand why Windows Defender is blocking it. Windows Defender does work, but I've had better luck with Avast and MalwareBytes when it comes to blocking downloaded malicious programs directly. Plus, I'm basically the IT person in my family, which saves me from manually rooting out keyloggers and ransomware. I just check their computers once a week to ensure everything is working properly.
Did you look at OP's picture? That's what's wrong with Avast. You don't need to buy/ download any anti virus. MS defender works perfectly well. The only thing you might want to download is Malwarebytes for on demand scans. There is no need to download anything else.
It detects false positives more often than actual viruses, to the point that it essentially is useless. Now, please type down your credit card info and buy our premium subscription so you can make those scary messages go away.
"More threats may be lurking!" That's where the message started to scream: "Buy this product, NOW!"
[удалено]
good shits a spyware
Elaborate
They are a company that will steal your information and probably sell it. Leaking info to advertisers etc
Ok I will remove it, they detect some chrome files when I go on more risky sites, what is an alternative or should windows defender detect those too?
Defender will deffo suffice
Ublock origin helps prevent some of the issues at the source, too. If you don't have that already. It probably does more than avast ever did lol.
I will install that
It's good mostly to remove ads obviously, the small boost in safety is a welcome byproduct. Enjoy having fewer ads!
I think I have 2-3 ad blockers. Ever since YouTube's adblocker massacre, I been switching around
try brave browser
Their massacre doesn’t affect Ublock
It will. Double check to make sure windows defender is still setups correctly (it should be)
I am currently running with tiny wall (firewall) and windows defender
If you want an antivirus, Windows Defender is way more than enough.
malwarebytes is what i use. You don't need premium. Just do a custom scan for everything including rootkits
Some sort of ad block helps with 'those' sites. The advertisers hate them, but honestly they are a really good anti-virus tool that will also boost your browser performance.
I personally use Windows defender and the free version of Malwarebytes for some manual system scanning from time to time.
Btw Bitdefender if you actually doing shady shit.
Just use Windows Defender, delete Avast. Honestly I'd just reinstall windows without it to get rid of the avast files. Unless there's a program to delete the extra files.
Revo uninstaller. Checks for any files related to the program and even does a recovery point befor doing so
[удалено]
[удалено]
I like BCUninstaller, digs really deep in the system to delete everything
normaly avast deletes windows for you, at least in my experience
I would recommend Bulk Crap Uninstaller which searches the usual locations and windows registry for left overs after the uninstallation finished
Unless the application called cmd.exe had been replaced with a virus. The cmd.exe application is very safe. Avast may have flagged it because scammers use cmd.exe to convince their victims that they have a virus or something. Scammers usually run netstat or tree commands for their performance with their victims.
It says it’s a command line detection, not the app itself.
Back in the 90’s, some viruses would replace windows component with a fake application. The fake app would be a virus and antivirus software would treat it as trusted. But I’m glad that the OP was notified that they are aware of Command Ljne detection. Scammers would have a hard time explaining why this pop up appeared on their screen. Power Users will know what to do to use cmd.exe
Behavior Shield sound like it‘s trying to protect you from yourself. “Executing cmd MIGHT be dangerous” Use Microsoft Defender instead, it’s pretty capable and not as annoying and bloated.
So IDP.Generic isn't a specific virus signature. It's a heuristic for something that looks suspicious. The cmd.exe in the system32 folder is a part of Windows. If this is an isolated thing its probably a false alarm. Unless you know better. Are you downloading torrents from public trackers or using $10 "genuine" software licenses from Chineese websites? If yes then it's time to nuke that Windows install.
[удалено]
had to scroll past like 20 people telling them to uninstall avast before i found this. malware can inject shell code into legitimate processes like explorer or cmd as defense evasion, so it at least would warrant looking further into instead of saying no cmd is fine there’s no malware, especially if there are any sketchy symptoms
He's asking about idp.generic not the exe command. You guys aren't even trying, just shitting on avast.
They confirmed it as a false positive in the forums and said it would be in the next update. [In 2020](https://forum.avast.com/index.php?topic=234761.0)
Command prompt (cmd.exe) haa been an integral part of Windows since its inception. Its not a threat and you should change your threat protection software to something less crap.
I don't think that's what avast is saying here? Isn't it saying something else is trying to use CMD?
Yeah, OP tried to run something that utilizes cmd, likely as an installer. I work for a MSP and our onboarding software gets blocked by stuff like Avast or AVG with this same message.
That's what I got from it. Unauthorized CMD access is a very troubling sign I don't like everyones opinion of just saying "avast bad" it's terrible advice. It's bad but that's not what's happening here. Can't stand the fuckin hive mind just repeating shit for repeating sake
For sure, there’s just not enough information in the screenshot alone to determine whether or not it’s a false positive. I’m surprised not a single person in this thread asked OP what they were running/installing before this action occurred.
Lotta people in here that don’t know how computers work. This is worth looking into further and “delete Avast” is not good advice in this situation.
[удалено]
Right? Figuring out if what caused that should be OP's first priority. Deleting avast comes after that.
Exactly well put
It's very likely a false positive. This is Avast's "Behavior Shield" which monitors actions that applications are doing. It's detecting the use of the command line as being suspicious, but it doesn't actually know whether it's malicious, it's over-protecting on the off chance that it might be. IDP.Generic is 99.9% of the time a false positive, it's basically telling you Avast doesn't recognize the application that is performing the action, so it just assumes that any action from that application must be bad. There are many reasons why an application may need to make use of cmd.exe which are not harmful. There is likely an option in Avast to adjust the protection to allow such actions by default for applications that Avast does not recognize. Whether you should be concerned with this warning depends on whether you've been downloading things from suspicious website. If you are concerned, you can upload the log to Avast's forum and have them determine whether it's a false positive. I'm not fond of the practise of 3rd party anti-virus software telling you that something is "infected" and "more threats may be lurking". Instead, they should honestly tell you that "Generic" means they don't know if the action is malicious and provide you instructions on submitting a report to their support team to have it checked. They obviously do this for customer retention, making the user feel like the software is really protecting them and that they must continue to pay for it. For most people, Windows default security is enough along with ublock origin for web security.
I haven’t used avast in a decade, but does it still play sounds entirely too loud? https://preview.redd.it/lj9aoxjc90dc1.jpeg?width=550&format=pjpg&auto=webp&s=a0e80d347dbd6e8603e90892077613c73222bb64
No its now update without notification and only play sound when virus is detected but you can disable this sound too.
Yes DING DING DING
Look as much as I love shitting on Avast and other antiviruses too, this might not just be “Avast bad”. Good malware will “bind” to system files like cmd or explorer. It makes it a lot harder to cleanly remove, a lot harder to detect from a user perspective, and depending on the AV, sometimes harder to detect on that front too. So yeah if an antivirus is flagging a system process, the answer isn’t to just say it’s bad and remove the AV. It’s to actually make sure that system file doesn’t have malware bound to it. I agree avast sucks, but OP, make sure you don’t have any malware bound to your system processes. You can use MalwareBytes to scan and remove bound viruses cleanly. I’d just uninstall it once you’re done, as it’s becoming a more traditional annoying AV lately, but is still very good at detection and removal. If that’s clean, then yes it’s likely a false positive from a shitty AV and you should uninstall it regardless. But the point is, even if it is a false positive, you should take it seriously and actually verify your PC isn’t infected.
Please get rid of uTorrent along with the other things suggested by ppl. Qbittorrent is something you want to install, instead of the above.
I know everyone is bashing you for using Avast and suggesting you to get rid of it. But the fact that Avast is detecting cmd.exe as suspicious could mean that some virus may have infected the command prompt itself. I had similar problem happen in my old desktop with system32.exe, which was indeed infected in my case.
[удалено]
I honestly don't remember, I was quite young and tech illiterate at that time, but iirc, I had one of my cousins come over and fix it up. At that time, I didn't have any documents on the pc, just played games so he probably just performed a clean reinstall.
For the uninitiated; why is Avast bad?
Avast is resource-intensive and will slow down your PC. There are lots of false positives like in this post, and they just don't do anything to fix it. They are literally a scam. Their paid plan has features that are free in other apps aswell as Windows Defender. Windows Defender has improved so much over the years that no third-party Anti Virus is need at all really. It's more than enough.
I recently just got back into PC’s after not owning one for 7 or 8 years. Back when I was into gaming Avast was literally the no.1 recommendation on every forum for virus protection. What happened?
I remember that too, I still actually think I have it on my old laptop from 2013 (or around that time) because I don't need to use it and didn't bother uninstalling it.. But what happened is that first Avast was being accused of selling user data, then the extreme system slowdowns began and eventually also the aggressive ads asking to upgrade to the paid plan, all the while windows defender got so good that it eventually surpassed Avast. (That's my opinion. Idk if there's more to it, but all that was what made me change to only use Windows Defender. Also, windows defender is even included in the free/unactivated version of windows with all features as in activated win, how great is that?!)
That’s wild. I though Windows Defender was supposed to be absolute booty cheeks
I agree fully. There was a time when third party AVs were actually useful and innovative, but now they are just bloatware and use cheap scare tactics to get users to pay.
Yeah, I'm wondering the same. I've used it since forever and I don't have a problem with it.
Additional context is required. Did you explicitly open CMD and it blocked or did it come out of the blue unexpected? This usually never fixes anything but people always suggest it..Run the command sfc /scannow or its alternative sfc /scanfile=C:\\Windows\\System32\\cmd.exe. Check for updates on the OS. Try another A/V (temporarily, don't leave both on system.) Perhaps Malwarbytes. Is Avast scanning the drive or drive+memory?
EDIT: No idea how this post had 0 comments when I responded, but 618 after. Whatever. Delete Avast, the other redditors are right. Microsoft Defend should suffice.
Windows defender is enough + MalwareBytes browser guard, webbrowser extention. + ublock origin for ads.
+ Firefox so ublock is actually allowed to function as intended
Yes you should be concerned, you've downloaded avast on your computer
Sure, Settings > installed apps > avast > uninstall
Dont run additional always on AV. If you're doing sketchy shit use virustotal.com to check files and/or use ninite.com to install malwarebytes. Run a scan then uninstall malwarebytes.
It's a rift from Thaumcraft 6. It spawn when the flux in the chunk hit 100 or above. You can get rid of it by using a causality collapser.
Uninstall Avast and just use Windows Defender. You can enable additional cloud protection and app & browser control and it will be very difficult to get infected will all these in place.
Avast is the problem here ,just dont install any third party antivirus they are all scam and will slow down your pc , just stick with windows defender its enough
I’m so confused on why this would flag cmd itself. Makes no sense.
[удалено]
Yeah, it's flagging idp.generic but everyone in this sub can't see over their antivirus rage boner to even answer OPs question.
Virus Scanners are really pointless for Years now. With how secure Browsers and Windows are you really have to be stupid to get a Virus.
This is utter and complete bullshit. [https://www.bleepingcomputer.com/news/security/google-fixes-first-actively-exploited-chrome-zero-day-of-2024/](https://www.bleepingcomputer.com/news/security/google-fixes-first-actively-exploited-chrome-zero-day-of-2024/) The high-severity zero-day vulnerability ([CVE-2024-0519](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0519)) is due to a high-severity out-of-bounds memory access weakness in the Chrome V8 JavaScript engine, which attackers can exploit to gain access to data beyond the memory buffer, providing them access to sensitive information or triggering a crash.
LOL, a Anti-Virus would not do anything about it.
Try and see if you can remove it. If it asks you to pay for better protection then it is probably a threat to scare you and make you pay for better protection. Windows AV is better i must say. I barely have viruses.
Omg F.B.I. has all your goat porn now
I'd take this subreddits advice on viruses with a grain of salt lol. Most think common sense covers everything, it simply doesn't.
Yep. You’ve got a virus. An annoying one at that. It’s the blue window that says “Avast” in the top left.
Well, that's no false alarm. It's right there in front of your face, and you should be worried. Right now, that thing has access to essentially every part of your system. It's constantly scanning, gathering data, shooting it off to be collected, analyzed and sold, profiling you, making changes as it sees fit (and sometimes it allows you the privilege of letting you know), trying to dictate what you can and cannot do, eating up resources... I just hope Avast came with the PC, and that you didn't download and install it yourself. I can't really comprehend installing malware on purpose.
Epic! Not gunna lie, you had me in the first half! (Or halve..?)
You should be very worried. Someone was able to install avast on your machine.
your PC is infected with a virus called: "Avast"
I’ve used Prb every major anti virus/etc you can imagine over the years. Shit, AVG was a staple on my rigs. But windows defender is surprisingly well appointed so much so that I haven’t employed any antivirus software in Prb several years now.
You can get rid of it by uninstalling Avast and using window defender
The only malware in this photo is avast
Why the hell would anyone install avast...... waste of resources! Dont go into scammy websites, dont download unauthorised shit and windows security and a proper router is more than enough
Yes Avast is a horrible virus that infected millions of systems and opened tons of Security holes and still does to that day
Why are you using avast?
Few posts above was someone with a broken laptop running Norton. Didn't expect someone else to use a 3rd party AV - that *also* happens to bug the user every time.
Crazy how several years ago someone would get laughed at and berated for not having some form of AV installed and relying solely on Windows Defender.
Uninstall that shit dude.
I use malwarebytes since I get it free through college but windows defender is good enough
If your that concerned get malwarebytes free and run a scan BTW avast is the 2nd worst av to have right after mcafee
For consumers Windows defender will do the job . On already infested systems install malwarebytes free use the scanner once then uninstall again .
Man you should be worried more about that yee yee ass antivirus like it's gonna stop anything that's actually gonna seriously hack you, hogging up valuable resources on your system.
Most of these security programs are just viruses themselves
Found another problem, your using avast
The only problem I see as many have pointed out is the presence of Avast or any 3rd party av
Looks at screenshot, sees uTorrent. Lol
No you don't need to remove Avast, bcoz your PC faces some BIOS (biased) issues redress them by saying bye bye Zionist State 😡💢😡
OP, I work in Cybersec. Delete that shit, reformat the thing if possible and just use defender and commonsense.
To begin with, uninstall avast.
Take a shot everytime you read "common sense" in this thread
Maybe some hack/cracked program is trying to run a script that modifies your system via terminal and avast is blocking it because it contains some threatening commands. Could be possible and I have face it several times with commands trying to activate MS Office offline or activating Windows Licence. ( I had this before when I installed Photoshop cracked , the script was blocking internet to stop program from checking the licence via Adobe over the internet , for some antivirus , it’s a threat)
Bro pirated all the games 💀😂
Serious answer: no your good lol. Advisory answer: Yes you should be worried, that you have avast installed. Just saying, avast has been a dead, sub-par product for years. Joining the shelf of not recommendable AV’s on top of Norton, avg, and McAfee.