TECHNICAL DETAILS File Size: 3,090,732 bytes File Type: EXE Memory Resident: No Initial Samples Received Date: 04 Nov 2011 Arrival Details This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Metus Host Booter 2.0.1 Full Scanning OfSOLUTION Minimum Scan Engine: 9.200 Step 1 Before doing any scans, Windows XP, Windows Vista, and Windows 7 users must disable System Restore to allow full scanning of their computers.Step 2 Search and delete these folders Learn More back Please make sure you check the Search Hidden Files and Folders checkbox in the More advanced options option to include all hidden folders in the search result.User Tempirexttemp0 User Tempirexttemp0AutoPlay User Tempirexttemp0AutoPlayAudio User Tempirexttemp0AutoPlayButtons User Tempirexttemp0AutoPlayDocs User Tempirexttemp0AutoPlayIcons User Tempirexttemp0AutoPlayImages User Tempirexttemp0AutoPlayPlugins User Tempirexttemp0AutoPlayPluginsCDAudio User Tempirtmpfnt1 To delete malwaregraywarespyware folders: Right-click Start then click Search. ![]() In the Named input box, type: User Tempirexttemp0 User Tempirexttemp0AutoPlay User Tempirexttemp0AutoPlayAudio User Tempirexttemp0AutoPlayButtons User Tempirexttemp0AutoPlayDocs User Tempirexttemp0AutoPlayIcons User Tempirexttemp0AutoPlayImages User Tempirexttemp0AutoPlayPlugins User Tempirexttemp0AutoPlayPluginsCDAudio User Tempirtmpfnt1 In the Look In drop-down list, select My Computer, then press Enter. Once located, select the folder then press SHIFTDELETE to permanently delete the folder. Repeat steps 2 to 4 for the remaining folders: User Tempirexttemp0 User Tempirexttemp0AutoPlay User Tempirexttemp0AutoPlayAudio User Tempirexttemp0AutoPlayButtons User Tempirexttemp0AutoPlayDocs User Tempirexttemp0AutoPlayIcons User Tempirexttemp0AutoPlayImages User Tempirexttemp0AutoPlayPlugins User Tempirexttemp0AutoPlayPluginsCDAudio User Tempirtmpfnt1 Step 3 Search and delete these components Learn More back There may be some components that are hidden. Please make sure you check the Search Hidden Files and Folders checkbox in the More advanced options option to include all hidden files and folders in the search result. Once located, select the file then press SHIFTDELETE to delete it. Note: Read the following Microsoft page if these steps do not work on Windows 7. Step 4 Scan your computer with your Trend Micro product to delete files detected as TROJFAM63e.TOMA. If the detected files have already been cleaned, deleted, or quarantined by your Trend Micro product, no further step is required.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |