Forum Discussion
Callistemon
Apr 30, 2022Copper Contributor
Severely malicious running process detected by Windows Defender in 22610 update
While installing the Windows 11 Dev update to build 22610 today, Windows Defender arrested "Severe" malware, an actively running process, not just an inactive file. The update errored with 0xc190011f...
Reza_Ameri
Apr 30, 2022Silver Contributor
Microsoft Updates are clean and not infected.
Did you install the Windows 11 from official Microsoft website?
Try run a full scan with Microsoft Defender.
You did the right thing by sending Feedback and hopefully the Windows team will investigate the issue.
Did you install the Windows 11 from official Microsoft website?
Try run a full scan with Microsoft Defender.
You did the right thing by sending Feedback and hopefully the Windows team will investigate the issue.
- CallistemonApr 30, 2022Copper ContributorThe virtual machine was originally installed with a 22499 ISO from https://aka.ms/wipiso
It has been upgraded to 22523, 22533, 22538, 22543, 22557, 22563, 22572, 22579, 22581, 22589, 22593, and 22598. As stated in the original post, a Full Scan with Windows Defender was run, and so was a Windows Defender Offline Scan. I also updated Emsisoft Emergency Kit and used it to scan from the Recovery Environment, and SFC and DISM did not report any corruption. The Behavior:Win32/Powessere.SA process that is "Severely" malicious is the only thing that occurs, and that's it.