Jump to content

how to remove HEUR:Trojan.Script.Generic from my windows 10 PC


Recommended Posts

Posted

At the Endpoint protection web manager one windows 10 Pc reported several times on the hour that it detected HEUR:Trojan.Script.Generic at "https://outlook.office365.com/mapi/emsmdb/?MailboxId=*****@*****.tld" we are using office 365 mail.

Is that PC infected?? how can I remove the infection and stop the hundreds of reports?

Posted

Welcome to Kaspersky Community.

 

Check in Your Kaspersky Reports the detection, but it seems You got an email msg with infected attached.

 

To remove it (if not legit), just remove the msg and empty the messages Bin.

  • Like 2
Posted

Thank you for your comments, I do not know which message is the infected, how can i know it from the report?

Kapersky1.jpg

Posted

Hum... I see in that detection picture this:

 

image.png.05b59c2f2835fe7c6b1dc9f7a39f697c.png

 

Try to find something about "@ahk-me.com"

 

Also check by the date, it seems quite old -> 23/03/2022 ?

Posted

Strange??? the address is not the user mail 311d1e0e-2238-4740-a125-548b425e9542 not in our domain ahk-mena.com 

also, the date of the mail is too old, why it was not checked before?? so strange

 

  • Like 1
Posted

Dear user,

Thanks for your post. Please remember in future messages clarify in first message what product are you using to let us analyze better your request.

7 hours ago, Aboulsaad said:

Thank you for your comments, I do not know which message is the infected, how can i know it from the report?

Kapersky1.jpg

This screenshot is from KES Cloud (Plus? Pro?). That detection is made by Kaspersky Endpoint Security apparently by Web Anti-Virus module (because of action: Blocked) and you should check that message in Exchange Online.

That message could be an archived element, you should find it and delete it. If you are using our Kaspersky Security for Office 365 (included in KES Cloud Plus & Pro license) you can run scan task for mailboxes of Exchange Online users.

  • Like 1

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now


×
×
  • Create New...