NewHeur_Pe Virus

Hi, I have a problem with a virus that is identified by Nod32 as NewHeur_Pe Virus. Nod shows that a certain file wincs32.exe is infected with it in the windows/system32 directory. In the past two days Nod has caught two previous infected files with this NewHeur_PE (in C:\RECYCLER and C:\System Volume Information)

If somebody could help it would be greatly appreciated

~Unrequested log removed. Ron~

 

Hi remyx187, welcome to Wilders.

Please take the following steps:

1. Check your settings against those found in the following NOD32 Tutorial: https://www.wilderssecurity.com/showthread.php?t=37509

2. Turn OFF System Restore (note: by doing so you will lose all restore points) by doing the following:

Windows XP Instructions

a. Right click on the “My Computer” icon on the Windows desktop.

b. Click on “Properties”.

c. Click on the “System Restore”.

d. Place a tick in “Turn off System Restore on all Drives”.

e. Click OK.

f. Close and RESTART your system.

g. Turn System restore back ON.

3. Finally, run a scan by clicking on the NOD32 Control Centre> NOD32> Run NOD32> Scan and Clean.

Cheers

 

Such flagged files are result of heuristic detection and should be sent as samples to ESET's viruslab