Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Trojan called 'Trojan.Generic.2582177' on my system

30 Oct 2014   #11
maxie

windows 7 home 64bit
 
 

You can not have any faith in one Antivirus Program ... You have had it checked with over 50 and found nothing ? ...


My System SpecsSystem Spec
.
30 Oct 2014   #12
seanysean

Windows 4 Ultimate 64 bit
 
 

Well I uploaded the suspect file to Total Virus and I got a long list of anti virus software each with a green circle containing a white tick inside it. I assume that means that all the software has found no problems with the file. The 'Detection rate' states: 0/52 which presumably means 0 infections detected in 52 checks. If I hover over the green circles with my cursor, however' I get a pop-up message stating 'File not detected'. Not sure if that's normal.

SJ.
My System SpecsSystem Spec
30 Oct 2014   #13
maxie

windows 7 home 64bit
 
 

Yes it means nothing Detected .... Any news from Bitdefender ? ...
My System SpecsSystem Spec
.

30 Oct 2014   #14
Slartybart

x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
 
 

It's a generic name, so the AV program found it using heuristics.
Quote   Quote: Originally Posted by F-secure
Aliases: trojan.generic.[variant], gen:trojan.[variant]
Category: Malware
Type: Trojan
Platform: W32

Summary: A file or program that appears to have trojan-like features or behavior.
....
A trojan that is identified by a detection using the format 'trojan.generic.[variant]', 'trojan.gen.[variant]' or similar indicates that the program was identified by a Generic Detection. Unlike single-file detections which identify unique files, a Generic Detection looks for broadly applicable code or behavior characteristics to evaluate a file's potential for causing harm ...
These are often false positive detections - the file you submitted to Virus Total passed (0/52)

Try following this guide:
How to easily clean an infected computer (Malware Removal Guide)

There have been issues reported against RogueKiller (step 5) - it seems to be system dependant, each machine is different. Given that, I suggest skipping Step 5 Rogue Killer.

The scanners are well trusted. You should plan on running through the guide in one session (malware tends to root itself again if left to it's own devices).

Most of the scanners run in less than 1/2 an hour, but there are 8 or 9 of them - so do the math (4.5 hours). ESET online scanner is the longest and might take a few hours by itself.
Be patient and let the scanners do their job.

The only time you should override the scanner's decision is if you are absolutely certain that the program is NOT malware.

Pay attention to the restart prompts and directions (do NOT restart after step 2: RKill - don't let the names confuse you, there are two pgms that sound similar).

Post the logs here if you want SevenForum members to assist you.

After you've finished running through all of the scanners - check that your system files are valid:
Please follow the instructions in OPTION TWO of SFC /SCANNOW Command - System File Checker

Copy C:\Windows\Logs\CBS\CBS.log to your Desktop (it is a protected file so you cannot attach the original)

Attach the copy of the entire CBS.log to a new post.

Thanks
My System SpecsSystem Spec
30 Oct 2014   #15
seanysean

Windows 4 Ultimate 64 bit
 
 

OK, confused now. I ran the Kaspersky System Scan and the TDSSKiller and both say there are no infections found on my machine. TDSSKiller took about 17 seconds to complete, not 30 minutes. MalwareBytes and Total Virus also say my system is clean but Bitfender still says the file ('permissions.sqlite' or 'permissions.sqlite-journal') is infected and can't be cleaned. I've heard nothing from Bitfender so far despite contacting them twice today.

I haven't noticed any unusual behaviour by my machine. Despite the fact that a number of recommended packages all say my machine is ok there's an unpleasant nagging doubt in my mind because of what Bitfender is saying. I've researched what these generic trojans can do and it seems they're pretty nasty so I'd love to be certain there's nothing wrong. Is the only way I can find out for sure just to wait to see if things go wrong? Should I go through all the processes on that list even though TDSSKiller didn't find anything?

Thanks.

SJ.
My System SpecsSystem Spec
30 Oct 2014   #16
Slartybart

x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
 
 

17 seconds is less than 30 minutes - correct? I said Most of the scanners run in less than 1/2 an hour

BitDefender might be reporting a false positive - I also said that. Why are you confused?

You only mention two of the scanners in the guide - run the rest.

I'm not sure you're following the guide - the only Kaspersky mention is TDSSkiller (no mention of Kaspersky System Scan)

I'll repeat: if you want help from SevenForum members, follow the directions and post information. It's ok to ask questions, but Despite the fact that a number of recommended packages all say my machine is ok there's an unpleasant nagging doubt in my mind because of what Bitfender is saying. I've researched what these generic trojans can do and it seems they're pretty nasty so I'd love to be certain there's nothing wrong. Is the only way I can find out for sure just to wait to see if things go wrong? is the wrong question.

Run through the guide if you want to be as sure as possible of a clean system. Or you can rely solely on Bitdefender and ignore the other scanners, Virus Total, and SF member's help.

Your call. I don't have anything else to offer.
My System SpecsSystem Spec
30 Oct 2014   #17
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Let's see if it's "adware" ... Please download AdwCleaner by Xplode and save to your Desktop.
Step 1.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.


Step 2.
Using AdwCleaner v3: Scan & Clean:
This time click on the Clean button.
Press OK when asked to close all programs and follow the onscreen prompts.
Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
Copy and paste the contents of that logfile in your next reply.
A copy of that logfile will also be saved in the C:\AdwCleaner folder


******Post both .txt logs
My System SpecsSystem Spec
30 Oct 2014   #18
seanysean

Windows 4 Ultimate 64 bit
 
 

Hello Slartybart,


Thanks for your help.


The response you quote was in reply to a recommendation from another member. The attitude you express is unwelcome, and wholly uncalled for. Itís the kind of attitude normally reserved solely for people on the internet who donít have to be looked at in the eye when being spoken down to. I doubt very much that youíd use that tone when directly addressing your spouse, a friend, a client, your boss, a colleague or even a child. You may find my lack of experience and understanding frustrating but the fact that I know less that you in your field does not make me stupid and it certainly doesnít give you any right to speak to me as such. If youíre having a bad day then consider the possibility that I am too as are most other people in the world, probably.


I ran all the software in the list and still found nothing so it looks like the problem may be with Bitfender and not my machine.



Thanks again.


SJ.
My System SpecsSystem Spec
30 Oct 2014   #19
Slartybart

x64 (6.3.9600) Win8.1 Pro & soon dual boot x64 (6.1.7601) Win7_SP1 HomePrem
 
 

Quote   Quote: Originally Posted by seanysean View Post
Hello Slartybart,

Thanks for your help.

The response you quote was in reply to a recommendation from another member. The attitude you express is unwelcome, and wholly uncalled for. Itís the kind of attitude normally reserved solely for people on the internet who donít have to be looked at in the eye when being spoken down to. I doubt very much that youíd use that tone when directly addressing your spouse, a friend, a client, your boss, a colleague or even a child. You may find my lack of experience and understanding frustrating but the fact that I know less that you in your field does not make me stupid and it certainly doesnít give you any right to speak to me as such. If youíre having a bad day then consider the possibility that I am too as are most other people in the world, probably.

I ran all the software in the list and still found nothing so it looks like the problem may be with Bitfender and not my machine.

Thanks again.

SJ.
Sorry you took offense, nothing ill-willed was intended.

I did not know you were responding to someone else - you weren't explicit.

For the record, I speak directly to most people - some people take it the wrong way ... then I have to explain. C'est la vie!

I don't consider the level of another member's computer literacy when suggesting something and I make a concerted effort to provide details in the steps I offer.

When It appears that the other member is not following the suggestion or might be self medicating on other boards or Google, I am a bit more assertive. I also try to allay any fears and am quite honest about there being no guarantees.

When I can't offer any more help, I say so.

Thought you deserved an explanation, but I will not be following this thread ... because it's solved.
Seek first to understand and then to be understood

You should probably keep the pressure up on BitDefender for an answer.

Glad you feel more comfortable after running the scanners.
My System SpecsSystem Spec
31 Oct 2014   #20
DonnaB

Win7 64-bit, Vista 32-bit, XP 32-bit, W2K 32-bit (VM)
 
 

Quote   Quote: Originally Posted by seanysean View Post
Hello Slartybart,


I ran all the software in the list and still found nothing so it looks like the problem may be with Bitfender and not my machine.



Thanks again.


SJ.
I agree. If only BitDefender found it, and Virus Total came out clean, I wouldn't worry about it. I'm almost sure it is a False Positive and will be fixed in an upcoming update in BitDefender.

Still, I would follow Jacee's instructions found here and scan with AdwCleaner. I'm curious to see what else it finds that needs to be removed as well.

Donna
My System SpecsSystem Spec
Reply

 Trojan called 'Trojan.Generic.2582177' on my system




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
post-trojan cleaning, Hidden/System folders no longer hidden/system
Greetings. Win7-64, Home Premium, SP1. I had a trojan infection last night, and successfully cleaned it using Combofix and MBAM, however, this morning I opened Windows Explorer, and noticed that hidden & system folders no longer have their hidden/system attributes, and they are all showing in...
General Discussion
Java Exploit / Trojan magically re-appears even with a system re-image
I re-imaged my system hard drive the other day after getting infected with a google redirect virus, and a lot of other nasty malware that was apparently smart enough to be able to tell what you're doing and shuts your system down after making it unbootable. Seems to have been a Java exploit. I...
System Security
System infected after removing trojan. System changes on its own.
Hi, I think I'm n the right section. Brand new Lenovo G570. Using Kaspersky Internet Security 2012 and I keep getting viruses. Restored to factory settings and I think the virus is still here. For Windows 7 update preference I chose to notify me before installing updates and let me choose...
System Security
My system is infected with a trojan. It has hidden c & d drives. ?
The Run, Task Manager and Control Panel are hidden. The system shows virus alert. I have AVG 7 but it does'nt help. It has even stopped my broadband connection. I cannot format my whole system. It has valuable information. Please help.
System Security
Trojan:Win32/FakeSpypro & Trojan:JS/FakeSpypro
A little help,please.Got this trojan earlier.It disabled MSE,MBAM,Internet,CCleaner,and pretty much anything .exe.Claimed everything was infected...so says whatever fake AV program that came with it.(I wish I could figure out how to use the indention tool here)I had to restart,open task manager...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 05:23.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App