PUP

How to Remove “new folder.exe” virus

Posted by egomoo on February 12, 2010
Manual removal instructions, PUP, Worm / No Comments

[#: The article How to Remove “new folder.exe” virus is an article in Spyware Removal Instructions, the original author is egomoo .you can read more articles at Manual removal instructions> PUP> Worm,the next article:.#]


What's about “new folder.exe” virus

there is folder name “newfolder.exe” every time i clicked on that another that type of folder will be created itself…!!!!!!!!!
This virus affects your system by Disabling Task Manager,Creates a startup entry to start upon system start and Creates its own exe files in Shared Documents folder which appear like ordinary folders.


How to Get rid of “new folder.exe” virus


Step1: Please download Safe Returner from Here to your Desktop.


  1. If you are using Firefox, make sure that your download settings are as follows:
    • Tools->Options->Main tab
    • Set to "Always ask me where to Save the files".

    2. Step 2:Close any open browsers. Close/disable all antivirus,HIPS and anti-malware programs so they do not interfere with the running of Safe Returner,visit here for how to temporarily disable your anti-virus and/or anti-malware programs.

    Step 3:Run Safe Returner with a simple click "Start Scan".

    main3.gif



    Step 4:Waiting less than 5 minutes after scan finished.

    main3.gif

    Step 5:Click "Remove" to remove spyware or malware threats.



    >Step6:

    Why should you need Regtweaker?

    As we know, virus and Trojans make the computer malfunction by destroying and modifying the registry so that the computer will not run normally. After the virus and Trojans are removed, the registry is still destroyed or modified, so the computer still has problems. That's why you need to repair the registry. Also, some virus and Trojans leave some DLL files in the registry and this will cause strange DLL errors and affect the computer performance.

    Installing or uninstalling software still can leave your Windows registry fragmented,with obsolete,corrupted and harmful files.Check your registry with RegTweaker tody.Download RegTweaker Now

    To make your computer run as fast as before or much faster than before,
    1. Download and install Regtweaker.
    2.Run a full scan of your computer.
    3. Click Repair Now and repair all errors detected.

    After these 3 easy steps, your computer will run much faster than before!


    Share/Save/Bookmark

Tags: , , , , ,

How to Remove vundo Variant,NewJuan,WinFixer,Virtumonde

Posted by egomoo on June 26, 2008
PUP, Trojan / 1 Comment

Lots of people have inflected The Vundo family of Trojans which will bring popups that usually advertise rogue antispyware programs.Users are normally targeted by false positives, and warning of infection an example of this could be popups alerting users they are infected with a blackworm virus.

Nowadays,the vundo Variant,NewJuan/VM,Virtumonde and winfixer are the same scam above.

Symptons from a Hijackthis log:

Below is an example of a Vundo infection, though there are many different random filenames.

O2 – BHO: (no name) – {AB6BFAD6-3AAC-46E9-98E6-BD56DE7ED97c} – C:\WINDOWS\system32\wluaivlv.dll
O2 – BHO: (no name) – {CA2CFBDE-0F94-491B-9286-00C60C553954} – C:\WINDOWS\system32\ssqpmkk.dll
O2 – BHO: (no name) – {EF9A7BD4-4B5D-4481-9A58-06B5030B4B56} – C:\WINDOWS\system32\vtsqp.dll

O20 – Winlogon Notify: ssqpmkk – C:\WINDOWS\SYSTEM32\ssqpmkk.dll
O20 – Winlogon Notify: vtsqp – C:\WINDOWS\system32\vtsqp.dll
O20 – Winlogon Notify: vturr – C:\WINDOWS\system32\vturr.dll

more random dll files that caused by vundo variant or Virtumonde:
jkkjj.dll
vtsqp.dll
ssqpq.dll
Virtumonde.dll
AWVVU.DLL
DDCCC.DLL

How To Remove Those Vundo variant,Virtumonde,NewJuan??

An easy way is using specialised tools,just like Vundo Fix,or VirtumundoBegone

Simply Download it ,and Scan for Vundo,then get rid of Vundo variant.

If the infection is still present and you can’t remove Vundo variant ,it may be that you have a new variant that the tools cannot yet remove, or you have a stubborn infection.

or you can try to remove it by use Malwarebytes

1.Malwarebytes' Anti-Malware Download Linkcookie,and it's free.

2.After installtion ,make sure update Malwarebytes' Anti-Malware and than make sure the Perform quick scan option is selected ,just click scan button.

MBAM
3.The scanning process may take quite a while, so I suggest you go and do something else or go to setp 4 first to cleaning Registry errors .After the scan is finished,a screenshot shows all the malicious programs found will be shown how has seen in the picture below. Remember that, the infections May vary, what is shown.You should now click on the Remove Selected button to remove all the listed malware.

trojanwin32fung




4.download Registry Easy for other Registry repairing, cleaning errors and problems to optimize your PC. It is an amazing program that I use!

good luck!


Share/Save/Bookmark

Tags: , , , , , , , , , , ,


 Powered by Max Banner Ads