Trojan Addware:Win32/Generic.A

Ok hello all,

For a day or to Ms Defender tells me that I have this Trojan Addware:Win32/Generic.A and Defender tels me that he will remove this Trojan. Still for some reason this trojan comes back in a warning message from Defender but Avast 4.8 does not trigger at all ???

What is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?

Confirm the detection:
Check the offending/suspect file at: VirusTotal - Multi engine on-line virus scanner and report the findings here. I feel virustotal is the better option as it uses the windows version of avast (more packers supported) and there are currently over 30 different scanners.

If multiple scanners detect it but not avast:
Send the sample to virus@avast.com zipped and password protected with the password in email body, a link to this topic might help and undetected malware in the subject.

Or you can also add the file to the User Files (File, Add) section of the avast chest where it can do no harm and send it from there (select the file, right click, email to Alwil Software). No need to zip and PW protect when the sample is sent from chest. A copy of the file/s will remain in the original location, so any further action you take can remove that.

Well as I wrote only Ms Defender triggers but this program will not tell me where the file is or what it’s name is.

I don’t use MS Defender, but I find it hard to believe they could be so stupid as not to give this basic of information. Otherwise there really is no way to check the validity of the detection, crazy.

Are there any logs that can be checked ?
Does it put the suspect file in quarantine, etc. where you might be able to get its file name ?

I look at the malware name and look at the generic.a part and think it may be similar to a single signature trying to detect multiple variants of the same malware. In this case the first part of the malware name, Adware (something primarily used to deliver ads) this may or may not be valid.

Program & Tutorial - Also useful as a diagnostic tool - FileHippo Download - HiJackThis - HJT Information HiJackThis Tutorial.

Download and run HJT and post the contents of the log file (cut and paste) into this topic, you may need to split it over two or more posts depending on how large it is.