Newfolder.exe Virus Remove
How To Remove Newfolder.exe Virus?
What is Newfolder.exe?
The real name of this virus is Iddono. This threat copies its file(s) to your hard disk. Its typical file name is Iddono.
Then it creates new startup key with name Iddono and value newfolder.exe.
You can also find it in your processes list with name newfolder.exe or Iddono.
This virus is very difficult to eliminate manually, but you can find solution for removal by scanning with Spy Emergency 2010 Manual Solution:
Step1: 1. Search for autorun.inf file. It is a read only file so you will have to change it to normal by right clicking the file , selecting the properties and un-check the read only option
2. Open the file in notepad and delete everything and save the file.
3. Now change the file status back to read only mode so that the virus could not get access again.
4. Autorun
5. Click start->run and type msconfig and click ok
6. Go to startup tab look for regsvr and uncheck the option click OK.
7. Click on Exit without Restart, cause there are still few things we need to do before we can restart the PC. 8. Now go to control panel -> scheduled tasks, and delete the At1 task listed there.
Step2: 1. Click on start -> run and type gpedit.msc and click Ok.
2. 3. If you are Windows XP Home Edition user you might not have gpedit.msc in that case download and install it from Windows XP Home Edition: gpedit.msc and then follow these steps.
4. Go to users configuration->Administrative templates->system
5. Find “prevent access to registry editing tools” and change the option to disable.
6. Opening the gate of castle: Group Edit Policies
7. Once you do this you have registry access back.
Step3: 1. Click on start->run and type regedit and click ok
2. Go to edit->find and start the search for regsvr.exe,
3. Launch the attack in the heart of castle: registry search
4. Delete all the occurrence of regsvr.exe; remember to take a backup before deleting. KEEP IN MIND regsvr32.exe is not to be deleted. Delete regsvr.exe occurrences only.
5. At one ore two places you will find it after explorer.exe in theses cases only delete the regsvr.exe part and not the whole part. E.g. Shell = “Explorer.exe regsvr.exe” the just delete the regsvr.exe and leave the explorer.exe
Step4: 1. Click on start->search->for files and folders.
2. Their click all files and folders
3. Type “*.exe” as filename to search for
4. Click on „when was it modified „ option and select the specify date option
5. Type from date as 1/31/2008 and also type To date as 1/31/2008
6. Seek and destory enemy soldiers: the search option
7. Now hit search and wait for all the exe‟s to show up.
8. Once search is over select all the exe files and shift+delete the files, caution must be taken so that you don‟t delete the legitimate exe file that you have installed on 31st January.
9. Also selecting lot of files together might make your computer unresponsive so delete them in small bunches. 10. Also find and delete regsvr.exe, svchost .exe( notice an extra space between the svchost and .exe) Step5: 1. Now do a cold reboot (ie press the reboot button instead) and you are done.
What is Newfolder.exe?
The real name of this virus is Iddono. This threat copies its file(s) to your hard disk. Its typical file name is Iddono.
Then it creates new startup key with name Iddono and value newfolder.exe.
You can also find it in your processes list with name newfolder.exe or Iddono.
This virus is very difficult to eliminate manually, but you can find solution for removal by scanning with Spy Emergency 2010 Manual Solution:
Step1: 1. Search for autorun.inf file. It is a read only file so you will have to change it to normal by right clicking the file , selecting the properties and un-check the read only option
2. Open the file in notepad and delete everything and save the file.
3. Now change the file status back to read only mode so that the virus could not get access again.
4. Autorun
5. Click start->run and type msconfig and click ok
6. Go to startup tab look for regsvr and uncheck the option click OK.
7. Click on Exit without Restart, cause there are still few things we need to do before we can restart the PC. 8. Now go to control panel -> scheduled tasks, and delete the At1 task listed there.
Step2: 1. Click on start -> run and type gpedit.msc and click Ok.
2. 3. If you are Windows XP Home Edition user you might not have gpedit.msc in that case download and install it from Windows XP Home Edition: gpedit.msc and then follow these steps.
4. Go to users configuration->Administrative templates->system
5. Find “prevent access to registry editing tools” and change the option to disable.
6. Opening the gate of castle: Group Edit Policies
7. Once you do this you have registry access back.
Step3: 1. Click on start->run and type regedit and click ok
2. Go to edit->find and start the search for regsvr.exe,
3. Launch the attack in the heart of castle: registry search
4. Delete all the occurrence of regsvr.exe; remember to take a backup before deleting. KEEP IN MIND regsvr32.exe is not to be deleted. Delete regsvr.exe occurrences only.
5. At one ore two places you will find it after explorer.exe in theses cases only delete the regsvr.exe part and not the whole part. E.g. Shell = “Explorer.exe regsvr.exe” the just delete the regsvr.exe and leave the explorer.exe
Step4: 1. Click on start->search->for files and folders.
2. Their click all files and folders
3. Type “*.exe” as filename to search for
4. Click on „when was it modified „ option and select the specify date option
5. Type from date as 1/31/2008 and also type To date as 1/31/2008
6. Seek and destory enemy soldiers: the search option
7. Now hit search and wait for all the exe‟s to show up.
8. Once search is over select all the exe files and shift+delete the files, caution must be taken so that you don‟t delete the legitimate exe file that you have installed on 31st January.
9. Also selecting lot of files together might make your computer unresponsive so delete them in small bunches. 10. Also find and delete regsvr.exe, svchost .exe( notice an extra space between the svchost and .exe) Step5: 1. Now do a cold reboot (ie press the reboot button instead) and you are done.
Hidden files showing problem
Trouble:
Sometimes a virus or some malicious script makes the hidden files and folders not visible even when it is explicitly enabled.
In this case even if the user enables the Show hidden files and folders in
Tools > Folder options > View menu, Hidden files and folder does not become visible.
Lets see how to fix it.
The user has enabled the Show hidden files and folder
1. Go to Tools > Folder options. This will show a folder options menu.
2. Go to View tab and select the option “Show hidden files and folder“
The hidden files and folders are displayed by this method normally. But in case some virus or script is preventing the hidden files and folders from being visible, follow the below steps:
1. Go to your Start > Run, type regedit and press enter. This will open registry editor.
2. Navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folde r\Hidden\SHOWALL
Double Click folders, Command Prompt opens?
Click Start, Run copy and paste regsvr32 /i shell32.dll into the text box and press Ok.
Add custom picture and other details in System Properties tab
This article applies only to Windows operating systems.
If you dont know how to take System Properties tab, do this, Right click the My Computer icon on the desktop, select Properties. By default the General tab will be shown. This is the System Properties.
System Properties can also be accessed from the Control Panel.
If you dont know how to take System Properties tab, do this, Right click the My Computer icon on the desktop, select Properties. By default the General tab will be shown. This is the System Properties.
System Properties can also be accessed from the Control Panel.
Step 1.
Create an bitmap image of width 180 px and height 115 px. You can use any image editor to do this. The Paint program in windows works fine. If you want to use any other file, first convert the image to bitmap format. If you have a large bitmap file than 180 px and 115 px, dont worry, you can use your file but only 180 px x 115 px from the center of the image will be shown.
Create an bitmap image of width 180 px and height 115 px. You can use any image editor to do this. The Paint program in windows works fine. If you want to use any other file, first convert the image to bitmap format. If you have a large bitmap file than 180 px and 115 px, dont worry, you can use your file but only 180 px x 115 px from the center of the image will be shown.
Now rename your bitmap file to “oemlogo.bmp”, without quotes, and store it in your System folder.
Please note that in Windows 98 the System folder is in x:\windows\system
and in windows 2000
the System folder is in x:\winnt\system32
Please note that in Windows 98 the System folder is in x:\windows\system
and in windows 2000
the System folder is in x:\winnt\system32
Step 2.
Create a file named “oeminfo.ini” , without quotes, in your System folder.
Open this file in a text editor a write this
Create a file named “oeminfo.ini” , without quotes, in your System folder.
Open this file in a text editor a write this
[General]
Manufacturer=Write some thing here
Model=Write Something here
Owned=
[Support Information]
Line1= This info will be showed
Line2= when you click the
Line3= Support Information button
Line4= This is another line
Line5= This is yet another line
Please note that the oeminfo.ini file should contain these sections
[General]
Manufacturer=
Model=
Owned=
[Support Information]
Line1=
[General]
Manufacturer=
Model=
Owned=
[Support Information]
Line1=
Example:
[General]
Manufacturer= Kiran Paul V.J.
Model=AMD
Owned=OEM generated file.
[Support Information]
Line1= This computer is owned by..
Line2=Maintained by : ***********
Line3=Use this computer at your own risk
Its done, now open the System Properties to view the changes.
ফাইল অথবা ফোল্ডার ভাইরাস
dvBj ev †dvìvi fvBivm
Avgiv A‡bK iKg fvBivm m¤ú©‡K AeMZ n‡jI dvBj ev †dvìvi fvBivm m¤ú©‡K KZUzKz Rvwb? Avgiv Rvwb gvby‡li kix‡ii fvBiv‡mi cÖeYZv nj bZzb fvBivm Rb¥ †`qv wVK Z`ª“c Kw¤úDUv‡ii fvBivm| Avmyb †`Lv hvK wK K‡i GmKj fvBivm‡K †Pbv hvq Ges G‡`i‡K aŸsm K‡i Kw¯úDUvi‡K fvBivm gy³ Kiv hvq|
G ai‡Yi fvBiv‡mi dvB‡ji bvg I G·‡Ubkb¸‡jv njt folder.ini, http, desktop.ini, desktop.htt, *bak, *prv, *000, *gid, *$$$ BZ¨vw`|
G‡`i‡K Luy‡R †c‡Z Ges aŸsm Ki‡Z Start †_‡K Search>>For Files or Folders Option wU‡Z wK¬K Ki‡Z n‡e| GLb Search Results Window †_‡K All files and Folders option wU‡Z wK¬K Ki‡Z n‡e| G ch©v‡q 2wU †U·U e· cvIqv hv‡e, Dc‡ii †U·U e‡· G·‡Ubkb¸‡jvi †h †KvbwU wjL‡Z n‡e Ges wb‡Pi w`‡Ki Selection Box n‡Z All Hard Drives Select Ki‡Z n‡e| Gevi Search evU‡b wK¬K Ki‡Z n‡e hv‡Z H dvB‡ji bvg I G·‡Ubkb¸‡jvi Rb¨ dvBj ev †dvìvi Show Ki‡e| GLb GKwU GKwU K‡i A_ev me¸‡jv wm‡j± K‡i Delete K‡i w`‡Z n‡e| Gfv‡e dvB‡ji bvg I G·‡Ubkb¸‡jv e¨envi K‡i dvBj ev †dvìvi fvBivm aŸsm Ki‡Z Dc‡i ewY©Z cš’v Aej¤^b Ki‡Z n‡e| D‡jL¨, GB mKj dvBj Ges G·‡Ubkb mg~‡ni dvBj¸‡jvi wKQy wKQ~ AZ¨š— cÖ‡qvRbxq| Z‡e G‡Z fq cvevi wKQy †bB, KviY Windows XP Ges Zvi Dc‡ii fvm©‡bi Acv‡iwUs wm‡÷g¸‡jv H wj÷ n‡Z cÖ‡qvRbxq dvBjmg~n gy‡Q †dj‡Z evav †`q|
†gv. bvRgyj nvmvb
