|
Trojan.Bomka removal procedures requires
technical know-how on computer troubleshooting. It is better to
consult your LAN Administrator or Technical Persons to avoid additional
damage on your computer if modifications on Services and Registry have to
be done.
MANUAL REMOVAL:
1. Disable System Restore (Windows Me/XP).
[how to]
2. Update the virus definitions.
3. Restart the computer in Safe mode.
4. Run a full system scan and delete all the files detected.
5. Delete any values added to the registry.
[how
to edit registry]
Delete the following registry
subkeys:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects
\{4BC9A7AC-2329-49D0-B07F-5FE484029DC2}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects
\{A853979C-2A9A-4ACB-8975-5740A7E26CB4}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects
\{CC56A1F3-9B83-45FF-8CB6-D58959492F0F}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser
Helper Objects
\{037CE595-57CB-4EB5-9775-97BC112F3BB3}
HKEY_CLASSES_ROOT\Kaboom.IEagent
HKEY_CLASSES_ROOT\Kaboom.IEagent.1
HKEY_CLASSES_ROOT\Watcher.GoogleTracker
HKEY_CLASSES_ROOT\Watcher.GoogleTracker.1
HKEY_CLASSES_ROOT\do.msx
HKEY_CLASSES_ROOT\do.msx.1
HKEY_CLASSES_ROOT\CLSID\{4BC9A7AC-2329-49D0-B07F-5FE484029DC2
HKEY_CLASSES_ROOT\CLSID\{CC56A1F3-9B83-45FF-8CB6-D58959492F0F}
HKEY_CLASSES_ROOT\CLSID\{A853979C-2A9A-4ACB-8975-5740A7E26CB4}
HKEY_CLASSES_ROOT\CLSID\{037CE595-57CB-4EB5-9775-97BC112F3BB3}
HKEY_CLASSES_ROOT\Interface\{BAA919E5-FD47-4D7E-95AB-5B2CDA493358}
HKEY_CLASSES_ROOT\TypeLib\{E0C0FC76-CC5E-46E2-B77A-4C2ADD965B9F}
HKEY_CLASSES_ROOT\Interface\{D861BD5E-E1E7-4E5E-AB15-CB347FBDBC6D}
HKEY_CLASSES_ROOT\TypeLib\{023E6659-1A0A-4724-9273-66EA06A82C98}
HKEY_CLASSES_ROOT\Interface\{88B67E52-A8D4-44AF-A199-DEE96469B7AF}
HKEY_CLASSES_ROOT\TypeLib\{B73EF4A8-B8B1-4683-8D21-AA1C1A46CAD7}
HKEY_CLASSES_ROOT\Interface\{7E951E5E-C57B-41ED-806F-1FBB2E4538C1}
HKEY_CLASSES_ROOT\Typelib\{3E55D5AA-2006-4572-BCF3-643D6AAB9063}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SUW
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IEAgent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\icqupd
Navigate to the subkey and delete values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Values:
"IEAgent update check" = "[DROPPED_TROJAN_FILE]"
"runapp" = "[DROPPED_TROJAN_FILE]"
6. Exit registry and
re-start the computer
***If it makes changes to Windows
registry that may prevent you from running executable files. A tool to
reset registry values to the default value is available for download.
Click Here.
7. In order to make sure that trojan bomka is
completely eliminated from your computer, carry out a full scan of your
computer using
AntiVirus and
Antispyware Software. Another way to delete the virus using various
Antivirus Program without the need to install can be done with
Online Virus
Scanner.
Click here to
proceed 
Click here to download
|
