IPB

Welcome Guest ( Log In | Register )

 
Closed TopicStart new topic
> Unable to Remove virus "HEUR:trojan win32 generic"
Valperion
post 23.07.2011 01:02
Post #1


Newbie
*

Group: Members
Posts: 2
Joined: 23.07.2011




I have Kaspersky Anti-Virus 2011
I Currently have a an issue with this virus "HEUR:trojan win32 generic" and I am unable to manually find the "Program Data Folder"

This is a link to the GSI Log

http://www.getsysteminfo.com/read.php?file...597597784069653

I have an issue trying to find my "Programs Data Folder"
Seems not to be at "Drive C"


But when I clicked "view" for virusinfo.log I was able to find, but I don't have permission to move the file.

virusinfo_syscure.zip log has been uploaded.

I wanted to upload in attachments the "Kaspersky Protection State Screen-shoot" , but it has insufficient space.
I'll post a link to the screenshoot.

http://oi54.tinypic.com/ebeqds.jpg

This post has been edited by Valperion: 23.07.2011 01:18
Attached File(s)
Attached File  sysinfo.zip ( 162,99K ) Number of downloads: 2
 
Go to the top of the page
 
+Quote Post
richbuff
post 23.07.2011 03:20
Post #2


Are You Kidding?
*****************

Group: Moderators
Posts: 1000150
Joined: 14.06.2007




Welcome. Run this script, instructions: http://forum.kaspersky.com/index.php?showt...mp;#entry678328 PC will reboot:
CODE
begin
QuarantineFile('C:\Users\David\AppData\Local\Temp\clipb.exe','');
QuarantineFile('C:\ProgramData\dxmasf32.dll','');
DeleteFile('C:\ProgramData\dxmasf32.dll');
DeleteFile('C:\Users\David\AppData\Local\Temp\clipb.exe');
BC_ImportDeletedList;
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.

After run script, run this script, instructions same as the last one:
CODE
begin
CreateQurantineArchive('c:\quarantine.zip');
end.

A file called quarantine.zip should be created in C:\. Then please upload C:\quarantine.zip to a filehost such as http://www.mediafire.com/
Then, Private Message me the Download link to the uploaded file. Click my user name and select Send message.

Also, if you use Windows System Restore, turn it off > reboot and do a full scan with Kaspersky. This to remove malware from system volume information files. Then turn system restore back on, if you wish. How to turn it off/on: http://support.kaspersky.com/faq/?qid=208279208

Before doing the scan, Clear the Detected list: Detected > Active threats > right click > Disinfect all > right click > Clear list > then scan again > then post screenshot of Detected >
Active threats. With columns widened to show full name and object details.

Also, scan with Malwarebytes' Anti-Malware: http://www.malwarebytes.org/mbam.php Update it first, scan and attach its log, but Please Don't remove anything yet, until the log is reviewed.

How to take and post screenshot: PrtSc (Print screen) key (upper right part of keyboard)> open Paint (Start > All programs > Accessories) > Edit > Paste, File > Save as (jpeg or
png, Not bmp). When replying, Browse > click once to select file > Open > Upload > add reply.




--------------------
Please see the Important topics, located at the top of this section, and at the top of other sections of this forum.
Go to the top of the page
 
+Quote Post
Valperion
post 23.07.2011 03:45
Post #3


Newbie
*

Group: Members
Posts: 2
Joined: 23.07.2011




I wanted to reply , that I followed the Kaspersky " FastTrack Support Instructions" in dealing with this matter.

After running the system on safe mode, I was able to delete the virus with the kaspersky 2011 anti-virus.

Should I still follow your instructions, in this given matter?
Go to the top of the page
 
+Quote Post
richbuff
post 23.07.2011 03:54
Post #4


Are You Kidding?
*****************

Group: Moderators
Posts: 1000150
Joined: 14.06.2007




Go ahead and follow my instructions, because the avz script will remove two malware-related files.


--------------------
Please see the Important topics, located at the top of this section, and at the top of other sections of this forum.
Go to the top of the page
 
+Quote Post

Closed TopicStart new topic

 



Lo-Fi Version Time is now: 31.10.2014 09:34