Computer OS: Windows 10
Antivirus: Kaspersky 2016
I clicked this page yesteday through google.
-After the page loaded, what was probably a Kaspersky alert window soon appeared together with a sound.
-it said it detected HEUR:Trojan.Script.iframer or HEUR:Trojan.Script.lframer (I am not sure whether that was
a capitalized i or a l)
-I clicked the alert window several times, maybe 4-5 times, probably out of reflex because I wanted to close it, which may have closed the window (alert window) each time,so I maybe got this window to appear several times in a short time span. (I'm sorry for my bad explanations)
I think the window may have been red.
I might have seen the word whitelist on one of these windows, and this wasn't on the first window that apppeared.
The problem is I am not used to Windows 10 and Kaspersky 2016 and I don't know what an alert window about a blocked object looks like and if there buttons inside the window that I ended up clicking.
But I've deduced is that if HEUR:Trojan.Script.iframer downloaded some object (trojanetc...), that it is possible that I may have unkowingly whitelisted it when I quickly cliked on the Kaspersky alert window(s) that flashed.
And I closed the web page after the thing with those alert windows.
I checked Kaspersky's log, and what I saw makes me think my earlier deduction is possibly correct.
-There are 5 entries logged at the time I opened that web page.
They say something like this
-Added to whitelist
Here is the url logged into Kasperky:
As for the object added to the whitelist, it is a .dll called avpuiman.dll that is located
in Kaspersky's folder under Program Files, and thus appears at first glance to be part of Kaspersky, although I haven't found anything about it through Google,
The date listed for the creation of the file is the same as when Kaspersky 2016 was installed, so almost 1 week ago. But why would a Kaspersky component get whitelisted all of a sudden?
I am also curious to know if this looks bad or is it possibly just a false positive. I have started backing up my files just in case, are there other things i should do?
I thank you in advance.
Edited by wingardiumleviosa50, 28 December 2015 - 08:50 PM.