Trojan Downloader:O97M/Donoff virus attacked my computer and made my computer suffer from poor system performance. As a matter of fact, after its successful invasion, the Trojan infection can hide itself so well that it can bypass most anti-virus software. Why the virus is so stubborn and what terrible activities it will perform if I do not remove it promptly? What can I do to save the computer? How to get rid of the Trojan horse from the computer to avoid any loss? Please learn more about it from this article.
Trojan Downloader:O97M/Donoff is categorized as a trojan which targets computers around the world through the internet and brings many troubles to unwary users. The computer users can easily get the Trojan by visiting a compromised website that have Trojan Downloader:O97M/Donoff codes or programs secretly hidden in it , clicking on random ads and downloading free software without any caution. Once the Trojan horse is installed, it will point you to some ransomware websites continuously which display many unwanted links related to rubbish products, ask you to download freeware and visit doubtful content. It usually runs as a background program, consuming system space greatly. This trojan hides itself so well that it is hard for you to find its trace on Task Manager. Furthermore the Trojan can use creepy tactics to help some unwanted extensions, ads-on and plug-ins to install in the computer secretly.
Trojan Downloader:O97M/Donoff can monitor your online activities by taking advantages of system loopholes in order to collect useful data for its designer whose aim is to gain profit. In fact, the Trojan infection is very aggressive and it is capable to slow system performance and generate online traffic. Obviously, system would get stuck and constant freezes can occur to the computer unexpectedly. It damages the computer seriously by modifying system settings and entries and drops malicious files to the computer. What is worse, the Trojan infection is able to infiltrate other risky malwares to further consolidate its survival and gain better control of your computer. If you let it stay in the computer for a long time, you will suffer from a greater loss. Even though it is always troublesome to remove a Trojan infection, you still need to delete it from the computer without any delay.
Trojan Downloader:O97M/Donoff allows cyber-criminals to break into the infected computer without being noticed and it could disable executable programs installed on your computer and cause system crash. Also it will change important settings on your computer to allow remote control from cyber criminals. Other than that, it will modify your registry settings and important key value to make it difficult to be removed.
Manual removal is suggested here if the antivirus program in your computer can’t deal with it. The most guaranteed way to get rid of the Trojan Downloader:O97M/Donoff without reinstalling the system or formatting the hard disk is manual removal. Here are some basic steps to achieve this point. However, removing the virus manually requires high skills in order to determine which files to delete for the Trojan infection is changing with the passage of time. You are also suggested to do a backup before starting.
1. End Relevant Processes
(1). Press Ctrl+Shift+Esc together to pop up Windows Task Manager, click Processes tab
*For Win 8 Users:
Click More details when you see the Task Manager box
And then click Details tab
(2). Find out and end the processes of Trojan Downloader:O97M/Donoff
2. Show Hidden Files
(1). Click on Start button and then on Control Panel
(2). Click on Appearance and Personalization
(3). Click on Folder Options
(4). Click on the View tab in the Folder Options window
(5). Choose Show hidden files, folders, and drives under the Hidden files and folders category
(6). Click OK at the bottom of the Folder Options window
*For Win 8 Users:
Press Win+E together to open Computer window, click View and then click Options
Click View tab in the Folder Options window, choose Show hidden files, folders, and drives under the Hidden files and folders category
3. Delete Relevant Registry Entries and Files
(1). Delete the registry entries of Trojan Downloader:O97M/Donoff through Registry Editor
Press Win+R to bring up the Run window, type “regedit” and click “OK”
While the Registry Editor is open, search and delete the related registry entries
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\[RANDOM CHARACTERS].exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ‘Random’
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Random
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “CertificateRevocation” =Random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\Random.exe
(2). Find out and remove the associated files
%AllUsersProfile%\random.exe
%AppData%\Roaming\Microsoft\Windows\Templates\random.exe
%Temp%\random.exe
%AllUsersProfile%\Application Data\random
%AllUsersProfile%\Application Data\~random
%AllUsersProfile%\Application Data\.dll HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Random “.exe”
As designed, the Trojan Downloader:O97M/Donoff enables the hackers to control the computer remotely and try to collect vital personal information for their evil purpose. The Trojan can trigger redirection during your online activities and change your system settings as its wishes. As a result, such unexpected symptoms may occur like system crash, blue screen errors and other serious problems. The longer the Trojan stays in the computer, the greater damages the computer will suffer. However, you will find that even the most advanced anti-virus software still fails to deal with the Trojan infection. To clean the computer, users should carry out a feasible manual removal way.
The above manual removal is quiet complicated, which needs sufficient professional skills to process. Therefore, only computer users with sufficient computer skills are recommended to implement the process because any errors including deleting important system files and registry entries will crash your computer system. If you have no idea of how to process the manual removal, please contact experts from YooCare Online Tech Support for further assistance.
Published by on October 19, 2014 9:21 pm, last updated on October 21, 2014 3:41 am
Leave a Reply
You must be logged in to post a comment.