Removal tool for Magania.bzmw (Taterf.B,Win32.Inhoo) Trojan

 

- Magania trojan Sets the drive to autoplay by creating autorun.inf file in its root directory. If the drive is shared across the network then other remote computers can be infected any time they try to access this share.

- Downloads/requests other files from Internet.

- Creates a startup registry entry.

 

Read more

Removal tool for Dybalom.gd Trojan and Key logger not detected yet

Dybalom.gd is a keylogger program that can capture all user keystrokes (including confidential details such username, password, credit card number, etc.)

Read more

Removal of W32/Agent.JVW Trojan (Manual)

Removal of W32/Inject.AAOH Trojan (Manual)

Removal of W32/VB.LN Worm (IM-Worm.Win32.VB.ln, W32/VB-DGA, WORM_VB.GMM) (Manual)

Removal of W32/AutoRun.NAN Worm (Worm.Win32.AutoRun.nan, Worm:W32/AutoRun.GF) (Manual)

The New Version of Swizzor Trojan Not Detected Yet and How to Remove it Manually

Today I found new version of  trojan (Swizzor Trojan) the damage that Trojan do is slowing down IE and maybe it send personal information to remote server, therefore it can be a real threat to your privacy.

Swizzor can also try to download and install malicious software such as adware.

 

How did I detect it :

I saw 2 IExplore.exe processes is running without seeing any IE windows even if I closed any of them it will run again saw I tracked whitch software is running IE without any permission and I found it in Startup tab at Msconfig the file name is : admin dumb.exe with other files @ “C:\Documents and Settings\”Administrator”\Application Data\Extra 16″ .

I copied the folder that have the trojan and uploaded the files to virus total some of them have been detected from kaspersky but admin dumb.exe not detected from kaspersky,Mcafee,Symantec,Nod32,Sophos,….etc. to see the result from virustotal.com Click Here .

How to remove Swizzor Trojan Manually :

1- Open Msconfig from Start>Run and click on startup tab the uncheck from admin dumb.exe .

2- Go to admin dumb.exe path like “C:\Documents and Settings\”Administrator”\Application Data\Extra 16″ and rename the folder that include trojan file .

3- End admin dumb.exe process from Task Manager if its running.

3- Restart your PC then go back to the folder that you renamed before and delete it with all contects.

4- Your PC is clean now, Enjoy.

For any help please comment or contact us.

Removal of W32/Koobface.GJ Worm (Manual)

Removal of Advanced Virus Remover (Manual)

 

Advanced Virus Remover is a rogue security application promoted through the use of Trojans, fake advertisements and online anti-malware scanners. It is advertised as an anti-virus software, but in reality, though, AdvancedVirus Remover is just another scam. The main purpose of the rogue is to scare you into thinking that your computer is seriously infected with malware, spyware and other parasites. Once, this program is installed and active, it will simulate system scan and display many bogus infections that won’t be removed until you purchase Advanced Virus Remover.

 

Read more

Removal of W32/AutoRun.PYK Worm (Manual)

Next Page »