Hacking For Beginners – Manthan Desai

2010

14. How To remove New Folder virus

What is Newfolder.exe?

The real name of this virus is Iddono. This threat copies its file(s) to your hard disk. Its typical file name is Iddono. Then itcreates new startup key with name Iddono and value newfolder.exe. You can also find it in your processes list with namenewfolder.exe or Iddono. This virus is very difficult to eliminate manually, but you can find several possible methods ofremoval below.

How to fix Newfolder.exe?

Quick Solution:

True Sword will find and eliminate this problem and more than 447 908 other dangerous threats including trojans,spyware, adware, riskware, problemware, keyloggers, dialers and other kinds of malicious programs several seconds.Fast, easy, and handy, True Sword protects your computer against malicious programs that do harm your computerand break your privacy. True Sword scans your hard disks and registry and destroys any manifestation such maliciousprograms. Standard anti-virus software can do nothing against privacy breakers and malicious programs like that. Get ridof trojans, spyware, adware, trackware, dialers and keyloggers in one click .

How to fix Newfolder.exe manually? For advanced users only

This problem can be solved manually by deleting all registry keys and files connected with this software, removing it fromstarup list and unregistering all corresponding DLLs. Additionally missing should be restored from distribution incase they are corrupted by Iddono. To fix this threat, you should: 1. Kill following processes and delete theappropriate files:



libedit.dllnewfolder.exeshelliddono.dllsrv0104.idssrvidd20.exe

If these files can't be deleted during normal Windows work or recreate themselves, reboot into Safe Mode and repeatdeletion. If you do not see all of these they are hiding themselves. You need special software to kill thosehidden files. 2. Delete the following malicious registry entries and\or values:

 Key: SOFTWARE\Microsoft\Windows\CurrentVersion\Run for nwiz.exe Value: @ Key: software\microsoft\windows\currentversion\run\alchem Value: @ Key: software\microsoft\windows\currentversion\run\zzb Value: @

Another method which is recently discovered by me that any AVG antivirus above 8.0version can detect the new foldervirus easily.

“ For beginners I recommend to for for the Software True Sword its free “.

www.hackingtech.co.tv

Page 120