GeekPolice
Welcome to GeekPolice.net!

From "wow" to "whoa" - we're teaching practical technology and helping others with tech support. Join our family here!

You are viewing the forum as a "Guest" which doesn't give you member privileges to ask questions or post comments.

Take 30 seconds to register or log in below and unlock the limitations of this website to discover new computer knowledge!

HEUR: Trojan.Win32.Generic

View previous topic View next topic Go down

HEUR: Trojan.Win32.Generic

Post by ampperson on Thu Nov 10, 2011 11:46 am

Hello everyone i'm new on this forum but i really need help on my computer, my kaspersky was saying it had found viruses and i looked at my detection log and it said it was not processed and then it showed all these viruses called like HEUR: Trojan.Win32.Generic and Trojan.win32.kryp and my kaspersky said it would need to restart to delete these so i restarted and before i restarted i tried to run a program and it gave me some kind of error but when i restarted and got back on kaspersky said the computer was fine so i went on and then like 30 minutes later i got like 4 alerts of kaspersky finding Trojan.win32.kryp and one HEUR: Trojan.Win32.Generic and then it asked me to delete them so i did.. then kaspersky asked for full scan and i did it and during full scan those same viruses came back so i deleted them again.. After these viruses came and kaspersky deleted them i have not found a popup about them anymore is it safe to go on the computer now it's not slow or anything no ads nothing..

here is a picture of my detailed reports..




ampperson
Beginner
Beginner

Status :
Online
Offline

Posts : 2
Joined : 2011-11-10
OS : Windows 7 Ultimate Service pack 1

View user profile

Back to top Go down

Re: HEUR: Trojan.Win32.Generic

Post by Gabethebabe on Thu Nov 10, 2011 3:53 pm

Hi there ampperson and welcome to GeekPolice!

I am Gabethebabe and I will be helping you with this issue. Before we start some general remarks/rules:
  • Whilst Im helping you, please follow my instructions carefully and do not experiment on your own or accept help from other persons.
  • Feel free to ask questions! Especially if my instructions are not clear. Im here to help, not confuse you.
  • I will try and respond quickly, but please understand I do have a real life (job, wife, 3 kids, kinky hobbies).
  • Stick with me till the end. If your computer starts running better, doesnt mean it is clean yet!

====================

Please download OTL by OldTimer from [You must be registered and logged in to see this link.] and save it to your desktop.
  • Close all windows and double click OTL.exe.
  • The Extra Registry setting should be Use Safelist
  • Copy and paste the following text into the Custom Scans/Fixes box:

Code:
%APPDATA%\Microsoft\*.*
%systemroot%\system32\config\systemprofile\*.dat /x
%USERPROFILE%\Desktop\*.exe
%PROGRAMFILES%\Common Files\*.*
%systemroot%\winn32\*.*
%USERPROFILE%\My Documents\*.exe
%USERPROFILE%\*.exe
%PROGRAMFILES%\Mozilla Firefox\*.exe
%ProgramFiles%\TinyProxy.
%systemroot%\system32\*.* /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.* /lockedfiles
%PROGRAMFILES%\*.
netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
/md5start
netlogon.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
disk.sys
explorer.exe
userinit.exe
winlogon.exe
/md5stop
CREATERESTOREPOINT
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
  • Click the Run Scan button and allow it to run.
  • It will produce two logs for you, OTL.txt and Extras.txt. Please post both logs in this thread.
  • You may need multiple posts to get it all.


====================

Please download aswMBR by Alwil Software from [You must be registered and logged in to see this link.] and save it to your desktop.

  • Double click aswMBR.exe to run the tool
  • Click the Scan button to start the scan
  • Dont panic if you see any **Rootkit** entries. The tool sometimes produces false alarms
  • Once the scan finishes click Save log to save the log to your desktop
  • Copy and paste the contents of this log (aswMBR.txt) into your next reply.


Gabethebabe
Top Dog
Top Dog

Status :
Online
Offline

Posts : 1568
Joined : 2010-03-07
Gender : Male
OS : Win7

View user profile

Back to top Go down

Re: HEUR: Trojan.Win32.Generic

Post by ampperson on Thu Nov 10, 2011 6:16 pm

Well i have no problems at the moment the computer isn't slow i just want to see if it is completely gone..

ampperson
Beginner
Beginner

Status :
Online
Offline

Posts : 2
Joined : 2011-11-10
OS : Windows 7 Ultimate Service pack 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum