A heuristic scan is usually used to detect new malware in your system that have not yet been detected by your AV database that you hopefully update every day. If you don’t then you really should. It might be a new Trojan horse but it may also be a false positive. This detection is often very confusing but even if it’s a false positive it’s always good to know that your anti-virus program has found some suspicious programs or processes that need your attention. Since it’s probably a new piece of malicious code antivirus programs can fail to remove HEUR.Trojan.Win32.Generic from the system. What makes things even worse is that it usually comes bundled with rootkits, Backdoor.Multi.Zaccess.gen, Sirefef or TDSS for instance. Antivirus can’t properly remove the new Trojan and at the same time rootkits are hiding its presence in the system. If your antivirus cannot remove it, it will constantly show you notifications about this new infection. I strongly advise you to take such notifications very seriously; otherwise you may end up with identity theft or may even lose your money. Many of us have felt the unpleasant effects of being a victim of cyber crime. Sometimes we’re just plain unlucky but on other occasions we may have unknowingly triggered something that does us harm by an action we have taken. Whilst there are many forms of malicious software, the one we’re talking about today is definitely very dangerous.

HEUR.Trojan.Win32.Generic is normally created to cheat you out of your hard earned cash and cyber criminals have no shortage of ways to achieve this. As online security gets more stringent and public knowledge has increased, in the last few years these criminals have had to adopt increasingly inventive ways to part us with our money. One of the new malware kids on the block is zero day Trojans with rootkit modules.

What is more, since it’s a generic detection you can’t really know what exactly this Trojan is capable of. For example, it can download and install more malware on your computer, let’s say rogue security programs. You know those bogus software programs that seem to be helpful from a security point of view, but in actual fact, they are not. This unhelpfulness springs from the fact that rogue anti-virus software is masquerading as genuine anti-virus or security software. It will display misleading alerts with an aim to frightening you into taking part in a fraudulent transaction. Put simply, rogue anti-virus software’s goal is to deceive you into thinking that your PC is infected with dangerous malware and then tricking you into buying its useless security software. So, you get the idea, HEUR.Trojan.Win32.Generic will probably try to install some other malicious programs on your computer, not necessarily rogue programs of course but also spyware, adware, worms, etc.

Once installed, this Trojan horse will stay in your system and continually send commands to remote web servers. One of the annoying characteristic of this type of malware is that it embeds itself deep into your operating system, making it tricky to uninstall or remove. Here is unlock guide designed to help you remove this browser locker virus. For some reason if you cannot remove this virus then most likely you need help from technicians who can perform analysis of your particular situation to remove this virus.

Step 1:Print out these instructions as you will need to shut down the computer in next step.

Step 2:Now power down the HEUR.Trojan.Win32.Generic virus infected computer and wait for 30 Seconds before you turn on.

Step 3:Now please turn ON the computer and immediately keep hitting F8 until you see WINDOWS ADVANCED OPTIONS MENU as shown below.
Windows F8 Key

Step 4:In the WINDOWS ADVANCED OPTIONS MENU, go down to the SAFE MODE WITH NETWORKING using the arrow keys on the board. Then press ENTER on the keyboard. This will take your computer to Safe mode. Safe Mode will cause the display and desktop icons to appear changed. This is normal. No need to Panic as it is due to HEUR.Trojan.Win32.Generic virus.
Safe mode Option

Step 5Now we must end all the processes that belong to HEUR.Trojan.Win32.Generic virus so that it does not interfere with your ability clear your computer. Inspector-[Random Characters].exe and Protector-[Random Characters].exe are the processed that needs to be stopped. To do this we need to download Rkill, developed by Bleepingcomputer to help stop the computer process of HEUR.Trojan.Win32.Generic virus. Now please hold down the WINDOWS key and the R key simultaneously to open RUN dialog box.
Run command Prompt

Step 6Now type “iexplore.exe” and hit the OK button.

Step 7:Save the Rkill.exe on your desktop. Double-click the Rkill icon and run Rkill.exe. You will see a black MS DOS dialog box. Now it will kill all the processes of HEUR.Trojan.Win32.Generic virus. It will take several minute before a Notepad file containing log information on what Rkill found will open. You may review it and close notepad file.

Step 8:Now you are ready to removal all the infection related to HEUR.Trojan.Win32.Generic virus. For that you need to use Malwarebytes software. It is a very popular malware and spyware removal application. Now please hold down the WINDOWS key and the R key simultaneously to open RUN dialog box. Type “iexplore.exe” and hit the OK button.

Need help for removing with HEUR.Trojan.Win32.Generic virus infection

Step 9:Save the mbam.exe on your desktop. Double click the Malwarebytes icon and run mbam.exe. Now the SELECT SETUP LANGUAGE dialog box will appear. Select your preferred language and hit press OK button.
Malwarebytes Language

Step 10:The Malwarebytes SETUP WIZARD will show blow screen Hit the NEXT button to continue.
Malwarebytes Wizard

Step 11:Now the LICENSE AGREEMENT screen will appear as shown. Accept the agreement and hit NEXT button.
Malwarebytes License Agreement

Step 12:Now the Information screen will appear. Click on next button and continue following the steps.
HEUR.Trojan.Win32.Generic virus- Malwarebytes Information

Step 13:SELECT DESTINATION LOCATION screen will appear now. You can choose the location where Malwarebytes can be installed. We recommend choosing the default location as shown then click NEXT button.
HEUR.Trojan.Win32.Generic virus - Malwarebytes Install path

Step 14:Now the SELECT START MENU FOLDER screen will appear. Let the default as it is and click NEXT button.
Removal of HEUR.Trojan.Win32.Generic virus - Malwarebytes Folder

Step 15:Now the SELECT ADDITIONAL TASKS screen will appear. If you want a Desktop Icon or Quick Launch icon then check appropriate boxes.

Step 16:READY TO INSTALL screen will come next. Hit the INSTALL button to install Malwarebytes.
HEUR.Trojan.Win32.Generic virus - Ready to Install

Step 17:In this step let the UPDATE and LAUNCH checked as it is to update the application with latest malware definition to capture all the malwares then click FINISH button.

Step 18:Once update is done then Scanner screen will launch. Make sure to select PERFORM FULL SCAN is selected to clean up HEUR.Trojan.Win32.Generic virus infection. Click on SCAN button to start the scan.
full scan

Step 19:Now choose the local drives that you want to scan from the dialog box and click SCAN button.
HEUR.Trojan.Win32.Generic virus - drive

Step 20:Be patient as the scan will take several minutes before it cleans up HEUR.Trojan.Win32.Generic virus infection. Once the scan is finished, a message box saying the scan is complete will appear. Click OK button to close the box then click SHOW RESULTS button.
drive selection

Step 21:From results dialog box choose REMOVE SELECTED button to remove all the infections found. Malwarebytes will also delete all of the files and registry keys affected by HEUR.Trojan.Win32.Generic virus and add them to the quarantine.
HEUR.Trojan.Win32.Generic virus- quarantine

Step 22:Malwarebytes may require you to reboot the PC to complete the HEUR.Trojan.Win32.Generic virus (Removal Steps). After completions reboot your computer Malwarebytes will be launched, please follow the instructions on the screen and continue the removal process. Once everything is clean out a log will be open created by Malwarebytes. Please reviewed it and closed it. Now your computer should be free of HEUR.Trojan.Win32.Generic virus. Enjoy.
HEUR.Trojan.Win32.Generic virus- Complete

Step 23:Keep Antivirus up to date and active. If you do not have antivirus then we offer antivirus software at this link

Need Quick solution to get rid HEUR.Trojan.Win32.Generic virus?

Technical Details of HEUR.Trojan.Win32.Generic virus files :
You may need to delete following HEUR.Trojan.Win32.Generic virus files :

%windows%\system32\drivers\HEUR.Trojan.Win32.Generic .sys
%Desktop%\HEUR.Trojan.Win32.Generic .lnk
%CommonPrograms%\HEUR.Trojan.Win32.Generic .lnk
%DesktopDir%\HEUR.Trojan.Win32.Generic .lnk
%UserProfile%\Start Menu\Programs\HEUR.Trojan.Win32.Generic \Uninstall HEUR.Trojan.Win32.Generic
%appdata %\Roaming\Microsoft\Windows\Templates\
%UserProfile%\Desktop\HEUR.Trojan.Win32.Generic .lnk
%AllUsersProfile%\Start Menu\Programs\HEUR.Trojan.Win32.Generic .lnk
%LocalAppdata %\HEUR.Trojan.Win32.Generic virus\uninstall\HEUR.Trojan.Win32.Generic virus.lnk
%program files%\NPSWF32.dll

Also please check following registry file infected by HEUR.Trojan.Win32.Generic virus:

HKU\Sokolow Family\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell
GuardSoftware = %AppData%\[random].exe
HKEY_LOCAL_MACHINE\software\microsoft\Windows NT\CurrentVersion\Image File Execution Options\MpCmdRun.exe
HKEY_LOCAL_MACHINE\software\microsoft\Windows NT\CurrentVersion\Image File Execution Options\MpUXSrv.exe
HKEY_LOCAL_MACHINE\software\microsoft\Windows NT\CurrentVersion\Image File Execution Options\MSASCui.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon\”Shell” = “[random].exe”
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\CustomizeSearch=site address
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar=site address
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\HEUR.Trojan.Win32.Generic

Blocked by HEUR.Trojan.Win32.Generic virus (how to remove it using YouTube Video) :

Unable to Get rid of HEUR.Trojan.Win32.Generic virus and need help?

Symptoms of HEUR.Trojan.Win32.Generic virus:

• Processes running in the background
• Unwanted software on the system
• Deactivated antivirus programs
• Slow Internet activity
• Constant popups

Get rid of HEUR.Trojan.Win32.Generic virus and Safety Tips:

1. Run the Malwarebytes using these steps to Get rid of HEUR.Trojan.Win32.Generic virus
2. Make sure your computer is up to date with windows updates.
3. Make sure Windows Firewall is enable.
4. Install reputable and commercial Get rid of HEUR.Trojan.Win32.Generic virus .
5. Keep the Antivirus active and current
6. Call tech support help line if you are unable remove this infection or have any question or concern.

  1. My friend recommended me about this site and it proved that its worth to be considered for further recommendations. I admire your hardwork that you have put in to bring such a nice and accurate solution to remove mandiant usa cyber security virus.

  2. i was scared by seeing this virus screen then i came across this site and their steps . . i followed them all and i got my laptop back thank you fixpcyourself .:)