Virus.ModTool.A Description
Virus.ModTool.A is a tricky and stubborn malicious program which is designed by cyber fraudster to make chaos to the infected computers. It is also known as VirTool:Win32/ModTool.A, W32.Imaut, Trojan.Autoit and Mal/Sohana-A. Just like any other Trojan virus, Virus.ModTool.A can be distributed via spam email, malicious links, free downloads, removable drives that contain infected files etc. You may not notice this parasite until it gradually shows its real face and affects the system seriously. Virus.ModTool.A can cause the computer act weirdly, make PC performances slow down like a snail. In addition, it downloads unwanted programs, attracts many other Trojans, hijackers, keloggers, rogue to the system without your knowledge. The most dangerous things is that it records personal data like user name/password, online banking accounts, email contact, system details and so on. AV tools like MSE, Kaspersky, Norton, AVG may catch it. But none of them can remove it completely as Virus.ModTool.A uses rootkit technology and updates its related components quickly. It can even rename its malicious files as the system files to mislead users. Some victims may try to install a new system only to remove Virus.ModTool.A, but they will be more angry as they lose all data and still cannot remove the virus. It comes back time and time again. It really upsets users. Fortunately you can remove it by manual approach, Read the guide below for useful Virus.ModTool.A removal.
Harmful Symptoms of Virus.ModTool.A
1. Virus.ModTool.A can bring malicious ads to computers, takes over users’ browsers,
2. Virus.ModTool.A may steal users’ private data, such as a user name, password, credit card information.
3. Virus.ModTool.A will slow down the system and cause security problem.
4. Virus.ModTool.A comes with other malware, which will totally damage your computer.
Manually Remove Virus.ModTool.A
The most effective way to eliminate Virus.ModTool.A completely is manual removal. Firstly we suggest you back up windows registry in case any accidentally damages happened during the process. Follow the below guide to start.
step1. Open the task manager and stop all processes related to Virus.ModTool.A
random.exe
step2. Remove all files associated with Virus.ModTool.A from your computer completely:
Windows XP:
%AllUsersProfile%\Application Data\~
%AllUsersProfile%\Application Data\~r
%AllUsersProfile%\Application Data\.dll
%AllUsersProfile%\Application Data\.exe
%AllUsersProfile%\Application Data\
%AllUsersProfile%\Application Data\.exe
%UserProfile%\Desktop\Virus.ModTool.A.lnk
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\Uninstall Virus.ModTool.A.lnk
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\Virus.ModTool.A.lnk
Windows Vista & 7:
%AllUsersProfile%\~
%AllUsersProfile%\~r
%AllUsersProfile%\.dll
%AllUsersProfile%\.exe
%AllUsersProfile%\
%AllUsersProfile%\.exe
%UserProfile%\Desktop\Virus.ModTool.A.lnk
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\Uninstall Virus.ModTool.A.lnk
%UserProfile%\Start Menu\Programs\Virus.ModTool.A\Virus.ModTool.A.lnk
Step 3: Open the Registries Editor, and then locate the all malicious registries that are added by Virus.ModTool.A, then delete all of them:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “.exe”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “”
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “CertificateRevocation” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “WarnonBadCertRecving” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop “NoChangingWallPaper” = ’1′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations “LowRiskFileTypes” = ‘/{hq:/s`s:/ogn:/uyu:/dyd:/c`u:/bnl:/ble:/sdf:/lrh:/iul:/iulm:/fhg:/clq:/kqf:/`wh:/lqf:/lqdf:/lnw:/lq2:/l2t:/v`w:/rbs:’
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments “SaveZoneInformation” = ’1′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableTaskMgr” = ’1′
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system “DisableTaskMgr” = ’1′
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Download “CheckExeSignatures” = ‘no’
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main “Use FormSuggest” = ‘yes’
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced “Hidden” = ’0′
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced “ShowSuperHidden” = 0′
Virus.ModTool.A Removal Video Guide
(Note: Sufficient computer skills will be required in dealing with Virus.ModTool.A files, processes, .dll files and registry entries, otherwise it may lead to mistakes damaging your system, so please be careful during the manual removal operation. If you cannot figure out the files by yourself, just feel free to Contact Tee Support Online Experts for more instructions.)
Hey, nice site you have here! Keep up the excellent work!
ReplyDeleteMicrosoft Virus Removal