Step by Step Remove Trojan.Gen.2 - Virus Removal Help

Overview of Trojan.Gen.2

Antivirus detected Trojan.Gen.2 on your computer but cannot erase effectively? Well, Trojan.Gen.2 is known as a hazardous Trojan infection which is endowed with advanced techniques that escape the auto removal by antispyware. Dangerous as Trojan.Gen.2 is, it always sneaks into random machines without any consent while inserting its malicious codes and values in order to hide its components deeply. Though you have updated your antivirus programs to the latest one, they may still cannot catch and terminate Trojan.Gen2 with luck.

It is common that Trojan.Gen.2 is bundled with additional viruses which could bring worse results on affected PC, including Trojan.zeroacces.C, Trojan.Gen.3 as well as other unknown threats. Victims may also realize the changes on their browsers (Internet Explorer, Mozilla Firefox and Google Chrome), which are redirected to malicious websites or pop up with unknown ads. We should have a clear idea that we need to remove Trojan.Gen.2 for the sake of avoiding any potential threats and risks. If your antivirus cannot help, you may take over the effective manual removal to get rid of Trojan.Gen.2 completely.

Possible way to get Trojan.Gen.2

1) downloading files/drivers from an unreliable web sites;
2) opening email or downloading media files that contain the activation code of the virus;
3) The virus has successfully hacked some famous social online communicate website such as Facebook, Twitter, Yahoo and sites like that. The web masters are not possible to have enough time to manage all corners of their websites. If you get any suspicious pop-up from a website, you have to be careful since the pop-up may not be from the website, instead, may be from Trojans that can control your PC within a short time if you click the pop-up.

How to remove Trojan.Gen.2? Manual Removal

 1) Boot your computer into Safe Mode with Networking.
To perform this procedure, please restart your computer. -> As your computer restarts but before Windows launches, tap “F8″ key constantly. -> Use the arrow keys to highlight the “Safe Mode with Networking” option and then press ENTER. -> If you don’t get the Safe Mode with Networking option, please restart the computer again and keep tapping “F8″ key immediately.

2) Show hidden files of Trojan.Gen.2
1. Open Folder Options: clicking the Start button> Control Panel> Appearance and Personalization, and then clicking Folder Options.   After that, click the View tab.
2. Under Advanced settings, click Show hidden files and folders, uncheck Hide protected operating system files (Recommended) and then click OK.

3) Check the following directories and remove Trojan.Gen.2 associated files:
%System%\drivers\[RANDOM CHARACTERS].sys
%Temp%\[random]
C:\WINDOWS\system32\[random name].dll
C:\Windows\System32\lxbu_device.dll
C:\WINDOWS\system32\NCUSBw32.dll
C:\WINDOWS\system32\amdk8.dll
C:\WINDOWS\system32\avidstartup.dll
C:\WINDOWS\system32\mail2ec.dll

4) Open Registry Editor by navigating to Start Menu, type in Regedit, and then click OK. When you have been in Registry Editor, please remove the following registry entries related with Trojan.Gen.2:
v HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Use FormSuggest" = 'Yes'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "CertificateRevocation" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings "WarnonBadCertRecving" = '0'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes" = '.zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;.scr;'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer "NoDesktop" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr" = '1'
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[random].exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "[random]"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableTaskMgr" = '1'

Attention: Manual removal refers to key parts of computer system. Any error step may lead to system crash. Online tech expert is recommended to help you remove the Trojan.Gen.2 virus if you don’t have sufficient expertise in dealing with the removal.