Thursday, January 9, 2014

How to erase Hijack.Shell.Gen Trojan horse

General information on Hijack.Shell.Gen :

Hijack.Shell.Gen is a notorious computer virus which belongs to the Trojan horse family. Hijack.Shell.Gen virus will perform a lot of malicious tasks to disturb computer users once gets installed in the target PC.

For its own benefit, Hijack.Shell.Gen Trojan horse may download other malicious programs without users’ permission. These vicious programs are conductive to the spread and blossom of Hijack.Shell.Gen Trojan horse, but on the contrary, make great damage to the infected PC. For instance, Hijack.Shell.Gen may bring in the browser hijacker virus which can lead to browsers redirecting, or adware virus which may pop up a bunch of unstopped ads to block users to access to other applications on the infected PC.



At the same time, Hijack.Shell.Gen Trojan horse is capable to infect and corrupt computer registries, leaving the infected PC totally unsafe which may provide a chance for the cyber crooks to invade into the compromised PC more easily. You confidential information on the infected PC may be put at the risk of being used by the schemers.

All in all, Hijack.Shell.Gen Trojan horse is a big threat to the operating system of the infected PC and also your personal data, you should remove it without any hesitation. Follow the video and the manual removal guide as below to get rid of this computer virus right now.

Video on how to remove  Hijack.Shell.Gen


Method one: Guide on removing Hijack.Shell.Gen Trojan horse manually

1. Please restart the computer and put it in Safe mode with Networking. 
Here’s the guide: Restart the computer upon the locking screen and start hitting F8 key repeatedly when PC is booting up again; if successfully, Safe mode options will show up on the screen for you to select. Please use arrow keys to highlight Safe mode with Networking option and hit enter key. System will be loading files into this mode afterward.



2. Disable any suspicious startup items that are made by infections.
Here’s the guide: Click Start menu ; click Run; type: msconfig in the Run box; click Ok to open the System Configuration Utility; Disable all possible startup items generated.



3. Stop all the malicious processes
Here is the guide: Open task manager by pressing Alt+Ctrl+Del keys at the same time. Another way is to click on the Start button and choose Run option, then type taskmgr into and press OK.




Terminate all the processes about the virus



4. Show hidden files and folders and delete all the following files.
Here is the Guide: click the Start button and choose Control Panel, clicking Appearance and Themes, to find Folder Options then double-click on it. 




In the pop-up dialog box, click the View tab and uncheck Hide protected operating system files (Recommended).


Delete all the infected files
%AppData%\<random>.exe
%CommonAppData%\<random>.exe
%temp%\<random>.exe
C:\Program Files\<random>
C:\Windows\Temp\<random>.exe

5. Open Registry Editor to delete all the vicious registries
Here is the guide: open Registry Editor by pressing Window+R keys together.(another way is clicking on the Start button and choosing Run option, then typing into Regedit and pressing Enter. )




Delete all the vicious registries as below:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main "Search Page" = http://www.<random>.com/web/?type=ds&ts=<timestamp>&from=tugs&uid=<hard drive id>&q={searchTerms}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main "Start Page" = http://www.<random>.com/?type=hp&ts=<timestamp>&from=tugs&uid=<hard drive id>
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search "CustomizeSearch" = http://www.<random>.com/web/?type=ds&ts=<timestamp>&from=tugs&uid=<hard drive id>&q={searchTerms}
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabbedBrowsing "NewTabPageShow" = "1"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Start Page" = HKEY_LOCAL_MACHINE\SOFTWARE\<random>Software
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wpm


If the manual guide is kinda difficult for you, please feel free to download automatic removal tool SpyHunter to drive the self-invited guest away.

Method two: Automatically remove Hijack.Shell.Gen with Spyhunter antivirus software:

 

Step 1: click the icon below to download automatic removal tool SpyHunter

 
http://www.pcresolvers.com/spyhunter.php

 

Step 2: follow the instructions to install SpyHunter

 



 

Step 3: run SpyHunter to automatically detect and uninstall Hijack.Shell.Gen

 


Summary: Due to the changeable characters of Hijack.Shell.Gen, you cannot be too careful to distinguish the harmful files and registries from the system files and registries. If you have spend too much time in manual removing Hijack.Shell.Gen and still not make any progress, you can download and install Spyhunter antivirus software here to remove Hijack.Shell.Gen automatically for you.

No comments:

Post a Comment