Win32/Gataka.B is a highly dangerous Trojan created by the internet hackers and infects your computer through vulnerability or security program exploits. If a users has ever clicked malicious code or distribute unsafe advertising pop-ups, visited pornographic website or downloaded attachment from spam emails, there will be a chance to get infected with this nasty Trojan.
Once it is running, it can conceal its presence of the compromised computer by showing only legitimate process running on the system. Thus, it is not surprised that your current antivirus can’t pick it up. This virus tends to slow down PC performance, making programs stop responding or PC freeze all the time. Meanwhile, if Win32/Gataka.B resides on your computer, it can potentially damage your personal files or you may end up losing data stored on your system. Research has shown that this virus may have the ability to make your computer vulnerable to remote attacks which could result in loss of money and possibly identity theft. Hence, you need to remove this threat as soon as possible.
Win32/Gataka.B can wreak chaos on your computer by performing the following actions:
1. It will steal confidential information such as user name and passwords without your permission.
2. It will download additional malicious files and update itself to prevent from the detection of antivirus program.
3. It can gather essential data like computer name, operating system version, network setup, and hardware/software details and send to remote hacker.
4. It will notably slow down your PC performance and make you experience blue screen of death, system crash down etc.
1. Show hidden files and folders.
Open Folder Options by clicking the Start button, clicking Control Panel, clicking Appearance and Personalization, and then clicking Folder Options.
Click the View tab.
Under Advanced settings, click Show hidden files and folders, uncheck Hide protected operating system files (Recommended) and then click OK.
2. Open Registry entries. Find out the malicious files and entries and then delete all.
Attention: Always be sure to back up your PC before making any changes.
a. Press the “Start” button and then choose the option “Run”. In the “Open” field, type “regedit” and click the “OK” button.
b. All malicious files and registry entries that should be deleted:
%System%\[NAME OF AN EXISTING DLL]32.dll
%UserProfile%\Application Data\random.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “[RANDOM].exe”
HKEY_CURRENT_USER\Software\[RANDOM]
Win32/Gataka.B is classified as a pesky Trojan that spreads through a number of ways typically applied by other threats on the same group. File-sharing networks, malicious links, and spam email messages are also part of this Trojan’s distribution channel. Many computer users may take it for granted that the antivirus software or antispyware program can relieve their annoyance when infected by Win32/Gataka.B. However, they failed to achieve their anticipated outcome because this tricky virus can’t be detected by any antivirus completely. Once it is running, it can open a backdoor on the infected computer and connect to a distant server as well as allow a remote attacker to gain an access on the affected PC. It is no doubt for users to eliminate this threat in order to secure the computer.
If you have no idea how to do with that, you are welcome to contact experts from Yoocare Online Tech Support for further help.
Published by & last updated on September 13, 2012 3:54 am
Leave a Reply
You must be logged in to post a comment.