Windows 10: Fileless malware: The smart person's guide

Fileless malware: The smart person's guide - TechRepublic

:)

 

Why is windows defender not taking care of malware and adware in my system even when it is updated regularly?

Suggestion to read and try these guides:

• Zemana Blog: Yeabests.cc Fileless Browser Hijacker
• Yeabests.cc: A fileless infection using WMI to hijack your Browser
• How to remove the Yeabests.cc and TopYea Browser Hijacker
• How to remove Yeabests.cc redirect (Virus Removal Guide)

If needed, I suggest to ask for free expert help at one of these sites:

• Am I Infected? What do I do? How do I get help? Who is helping me? - Am I infected? What do I do?
• Malware Removal Assistance For Windows
  

Hope this helps.

Cheers,

J

PS: I'll ask a moderator to move this thread to the
Virus and Malware forum.

 

recording levels automatically being muted and set to zero

Looking at the MalwarebytesLabs description for that
Rootkit.Fileless.MTGen detection shows why an Antivirus like Defender may not detect it, since it isn't a file based infection and combines rootkit techniques as well per the following excerpt.

"Rootkit.Fileless.MTGen is the generic detection for fileless infections that use a

rootkit to hide their presence. In the majority of the cases, they use registry keys that are designed to run Powershell commands that carry out the rest of the infection. Other than Powershell, we have also seen the
mshta command.

More information about fileless infections can be found in our blog post,
Fileless Infections: An Overview."

Hope that does solve your problem, which from your research seems likely.

Marking a post as answer is more valuable than either the optional "Helpful" or "Solved my problem" selections, since this suppresses the default display of other response posts and highlights those marked by the owner as providing the best answer. The
other 2 options are really intended for use by others viewing the thread, since only the thread originator or a moderator can select an answer.

Rob

 

A Fileless Malware Primer - YouTube - not detected by multiple scanners.

Comodo Firewall vs Fileless Malware - YouTube - easily stopped by Comodo, as always.

 

Is this another NSA / CIA invention?

 

"Scareware"....Pretty sure most of these reports are released by AV institutions, whose prime purpose is to get those neurotic enough to believe them, that they are then much more likely to purchase their products.

Lets be honest.....how many clued up members have actually been caught out by this so called "Scareware"