Sign in to follow this  
Followers 0
Valperion

Unable to Remove virus "HEUR:trojan win32 generic"

4 posts in this topic

I have Kaspersky Anti-Virus 2011

I Currently have a an issue with this virus "HEUR:trojan win32 generic" and I am unable to manually find the "Program Data Folder"

 

This is a link to the GSI Log

 

http://www.getsysteminfo.com/read.php?file...597597784069653

 

I have an issue trying to find my "Programs Data Folder"

Seems not to be at "Drive C"

 

 

But when I clicked "view" for virusinfo.log I was able to find, but I don't have permission to move the file.

 

virusinfo_syscure.zip log has been uploaded.

 

I wanted to upload in attachments the "Kaspersky Protection State Screen-shoot" , but it has insufficient space.

I'll post a link to the screenshoot.

 

http://oi54.tinypic.com/ebeqds.jpg

sysinfo.zip

Edited by Valperion

Share this post


Link to post
Share on other sites

Welcome. Run this script, instructions: http://forum.kaspersky.com/index.php?showt...mp;#entry678328 PC will reboot:

begin
QuarantineFile('C:\Users\David\AppData\Local\Temp\clipb.exe','');
QuarantineFile('C:\ProgramData\dxmasf32.dll','');
DeleteFile('C:\ProgramData\dxmasf32.dll');
DeleteFile('C:\Users\David\AppData\Local\Temp\clipb.exe');
BC_ImportDeletedList;
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.

After run script, run this script, instructions same as the last one:

begin
CreateQurantineArchive('c:\quarantine.zip');
end.

A file called quarantine.zip should be created in C:\. Then please upload C:\quarantine.zip to a filehost such as http://www.mediafire.com/

Then, Private Message me the Download link to the uploaded file. Click my user name and select Send message.

 

Also, if you use Windows System Restore, turn it off > reboot and do a full scan with Kaspersky. This to remove malware from system volume information files. Then turn system restore back on, if you wish. How to turn it off/on: http://support.kaspersky.com/faq/?qid=208279208

 

Before doing the scan, Clear the Detected list: Detected > Active threats > right click > Disinfect all > right click > Clear list > then scan again > then post screenshot of Detected >

Active threats. With columns widened to show full name and object details.

 

Also, scan with Malwarebytes' Anti-Malware: http://www.malwarebytes.org/mbam.php Update it first, scan and attach its log, but Please Don't remove anything yet, until the log is reviewed.

 

How to take and post screenshot: PrtSc (Print screen) key (upper right part of keyboard)> open Paint (Start > All programs > Accessories) > Edit > Paste, File > Save as (jpeg or

png, Not bmp). When replying, Browse > click once to select file > Open > Upload > add reply.

 

 

Share this post


Link to post
Share on other sites

I wanted to reply , that I followed the Kaspersky " FastTrack Support Instructions" in dealing with this matter.

 

After running the system on safe mode, I was able to delete the virus with the kaspersky 2011 anti-virus.

 

Should I still follow your instructions, in this given matter?

Share this post


Link to post
Share on other sites

Go ahead and follow my instructions, because the avz script will remove two malware-related files.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0