Sunday, January 19, 2014

How to Remove trojan:win32/orsam!rts Completely from Your Computer

Trojan:win32/orsam!rts which  is  detected by Microsoft Security Essentials is a stubborn and tricky Trojan horse virus. It has the ability to mutate all the time and add new characteristics in the infected PC. When invades into the target PC, trojan:win32/orsam!rts will change system settings automatically to make itself run freely in the infected PC. It may alter the startup menu without users’ permission and gets started immediately when people boot the infected PC.

trojan:win32/orsam!rts also chisels up backdoors in the background sneakily which may cause system vulnerability. Via the loopholes created by trojan:win32/orsam!rts , other computer infections can invade into this compromised  PC much more easily.

To permanently get rid of trojan:win32/orsam!rts virus, you cannot just rely on antivirus software. As trojan:win32/orsam!rts is quite stubborn, in case it will re-produce itself automatically, you need to delete all its malicious components like infected files, registries and processes completely. You can follow the manual removal guide and video as below to detect all the harmful components of this virus and remove all of them.

Method one:Trojan:win32/orsam!rts manual removal guide
Step 1: Launch your PC into Safe Mode with Networking.
 Restart your computer. As your computer restarts but before Windows launches, tap "F8" key constantly. Use the arrow keys to highlight the "Safe Mode with Networking" option, and then press ENTER.

Step 2: Stop all processes that related to this computer virus
Press Window+R keys together. In the dialogue box that pop-up, type into taskmgr and press OK.  

Terminate all the malicious processes in the Window Task Manager.

Step3:Disable any suspicious startup items that are made by infections.
click start menu; type msconfig in the search bar; open System Configuration Utility; Disable all possible startup items generated.

Step4:Show all hidden files and clean all the malicious files about this virus
Click the Start button and choose Control Panel, clicking Appearance and Personalization, to find Folder Options then double-click on it.

In the pop-up dialog box, click the View tab and uncheck Hide protected operating system files (Recommended).

Clean all the malicious files about this computer virus as below.
C:\Program Files\<random>

Step5:Remove all the vicious registry entries as follows:
Open Registry Editor by pressing Window+R keys together and typing into Regedit, then pressing Enter.

Find out all harmful registry entries of the virus and delete all of them.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "<random>" = "%AppData%\<random>.exe"
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "<random>" = "%AppData%\<random>.exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Associations "LowRiskFileTypes"=".zip;.rar;.nfo;.txt;.exe;.bat;.com;.cmd;.reg;.msi;.htm;.html;.gif;.bmp;.jpg;.avi;.mpg;.mpeg;.mov;.mp3;.m3u;.wav;"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Attachments "SaveZoneInformation"=1

Video on removing Trojan horse:

If the manual guide is kinda difficult for you, please feel free to download automatic removal tool SpyHunter to drive the self-invited guest away.

Method two: Automatically remove trojan:win32/orsam!rts with Spyhunter antivirus software:


Step 1: click the icon below to download automatic removal tool SpyHunter


Step 2: follow the instructions to install SpyHunter



Step 3: run SpyHunter to automatically detect and uninstall trojan:win32/orsam!rts


Summary: Due to the changeable characters of trojan:win32/orsam!rts, you cannot be too careful to distinguish the harmful files and registries from the system files and registries. If you have spend too much time in manual removing trojan:win32/orsam!rts and still not make any progress, you can download and install Spyhunter antivirus software here to remove trojan:win32/orsam!rts automatically for you.

No comments:

Post a Comment