Embed Size (px)
DESCRIPTION
iugolpik
Citation preview
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 1/15
How Can I Remove Win32/Grenam.A Permanently– Win32/Grenam.A Remover
I played a computer game online. I downloaded some game �les from the website. But the antivirus quarantines
Win32/Grenam.A from a dll �le that is need to run the game. Is this Win32/Grenam.A a computer virus to threaten the
computer? How can I solve this issue? Any advise will be highly appreciated.
What is Win32/Grenam.A?
Alerting Level: Severe
Win32/Grenam.A is a computer threat that has been detected out by many antivirus software. Although it has
diDerent names, it has the same malicious traits that has been labeled and recorded in the virus database. This
is a malware program named as hacktool that is used by the cyber attacker . It often comes with the �les or
software that can be downloaded from the Internet. Win32/Grenam.A can be inserted on the
freeware,installation compressed packages, programs from the websites whether ever the sites are safe or not.
Once the safe sites are injected with the malicious codes of the malware programs by the vicious coders
intentionally, the users of these sites can also be the poor victims.
Win32/Grenam.A can be also called as potentially unwanted program but a hack tool that is a application is
bene�cial for hacking the target computers.After the computer has been detected to have this infection,the
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 2/15
users’ sensitive information may be exposed to the cyber criminals for commercial purpose. This unwanted
application create keys to some other register software legally. But some are always spread as the malware
programs to make the target computer face the further risk of infections. And some other malware programs
are always used this tool as �gurehead to trick the innocent users. After the target computers have installed
related �les that contains the malicious codes of Win32/Grenam.A, more and more unwanted programs will
take every chance to install on the computer without permission. After the target computer has completely
compromised to the malware programs, it will listen to and execute the malicious commands from the author
of the Win32/Grenam.A. The computer will become the agent server of the cyber attackers to open backdoor
for more infections. Those unwanted programs will sneak in the computer stealthily after the computer has lost
more administrative privileges. When the Internet is connected, the computer will be also the sender to send
back the con�dential data to the remote server as the hackers’ wish.It is strongly recommended that you
should make a full scan of your system �les to locate the infected �les or unwanted programs to avoid further
loss of important data or �les as soon as possible.
This type of malware can be installed via unsecure supply chains , for example, websites, freeware,music
�les,both legitimately and illegitimately. If you are the ones who prefer downloading �les or software online, it
is strongly suggested that you should beware of the security of the computer after downloading.
Malicious Properties of Trojan.Agent.0BGen
1. Win32/Grenam.A will help the remote cyber attackers to install more malware programs.
2. Win32/Grenam.A will assist the remote server to collect important data for the fake of commercial purposes.
3. Win32/Grenam.A will be useful for the cyber attackers to take control of the computer.
4. Win32/Grenam.A will modify the default settings of the system without permission.
5. Win32/Grenam.A will create new registries in order to act up on boot up.
6. Win32/Grenam.A will execute its related components to activate along with the system.
7. Win32/Grenam.A will put down useless shortcuts or cache to slow down the computer.
How to Remove Win32/Grenam.AManually?
Please make a backup of all your important �les and save them in the safe data storage devices like USB �ash
drive before taking any action as below. Any mistaken operation will lead to the system crash/data loss. So
please be careful with every step during removal procedure. the random �les/registries are diDerent from each
PC and PC’s conditions, so if you are not familiar with the system �les/registries, you may be unable to �nd out
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 3/15
all infected �les/registries associated with the malware programs . So if you can not locate all these related
components, you had better not take any risk to delete any �les/registries/dll.�les that are important for the
system normal operation.If you can not �nd out all related �les/registries of Win32/Grenam.A, please ask
Mitechmate Online Experts to help you exclusively and quickly.
1: Boot up your computer in Safe Mode with Networking:
Method One
1: Press “Windows” and “R” keys together to open the Run box
2: Type “mscon�g” in the the Run box and click OK
mscon�g
3: Click the Boot tab, then check the box that says “Safe boot” and “Network” under the Boot options section
Click OK.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 4/15
4: Click Restart when it informs that you need to restart your computer.
Method Two
1:Press the “Windows” + “C” keys, and then click Settings.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 5/15
2: Click Power, hold down Shift key on your keyboard and click Restart.
3: Click Troubleshoot button
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 6/15
4: Click Advanced options button
5: Click Startup Settings button
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 7/15
6: Click Restart button
7: Press 5 on your keyboard to Enable Safe Mode with Networking.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 8/15
2: Show all hidden �les:
On Windows XP
? Close all programs so that you are at your desktop.
? Click on the Start button. This is the small round button with the Windows �ag in the lower left corner.
? Click on the Control Panel menu option.
? When the control panel opens click on the Appearance and Personalization link.
? Under the Folder Options category, click on Show Hidden Files or Folders.
? Under the Hidden �les and folders section, select the radio button labeled Show hidden �les, folders, or
drives.
? Remove the checkmark from the checkbox labeled Hide extensions for known �le types.
? Remove the checkmark from the checkbox labeled Hide protected operating system �les (Recommended).
? Press the Apply button and then the OK button.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 9/15
On Windows 7 / Vista
? Click and open Libraries
? Under the Folder Options category of Tools , click on Show Hidden Files or Folders.
? Under the Hidden �les and folders section, select the radio button labeled Show hidden �les, folders, or
drives.
? Remove the checkmark from the checkbox labeled Hide extensions for known �le types.
? Remove the checkmark from the checkbox labeled Hide protected operating system �les (Recommended).
? Press the Apply button and then the OK button
.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 10/15
On Windows 8 /8.1
? Click on Windows Explorer ;
? Click on View tab;
? Check the “Hidden Items” box
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 11/15
3: End Win32/Grenam.A associated �les
%commondesktopdir% Win32/Grenam.A .lnk
%windows%System32drivers[**Random**].sys
C:WindowsSystem32drivers[Random].sys
%program files%Backdoor.Emdivi!gen1 uninstall Win32/Grenam.A .lnk
%ProgramFiles%Protected SearchTaskSchedulerCreator.exe
%System%driversUAC[RANDOM CHARACTERS].sys
%Documents and Settings%[UserName]Application Data Win32/Grenam.A
C:Documents and Settings[user name]Local SettingsTemporary Internet Files
4: Stop Win32/Grenam.Arelated processes in the Windows Task Manager
random.exe
On Windows XP
Press Ctrl+Alt+Del keys together to open Windows Task Manager ;
Under the Processes tab, right-click on the processes related with the virus and click End Process
Windows Task Manager on XP
On Windows 7 / Windows Vista
Right-click on Task Bar and click click Task Manager;Under the Processes tab, right-click on the processes related with the virus and click End Process
Windows Task Manager on windows 7 and vista
end process on windows 7 and vista
On Windows 8 / 8.1
Right-click on Task Bar and click click Task Manager;Under the Processes tab, right-click on the processes related with the virus and click End Process
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 12/15
Windows Task Manager on windows 8
5.Open the Registry Editor
Method 1
(Available on Windows XP, Windows 7 /Vista, and Windows 8 /8.1):
Call out “Run” box by pressing “Windows” key + “R” key on your keyboard;
Type “Regedit” into the Run box and click OK to open Registry Editor
Method 2
(Available on Windows 7/ Vista):
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 13/15
Click on Start button to open Start Menu
Type “Regedit” into the search box and click on Regedit to open Registry Editor
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 14/15
6: Delete Registry Entries created by Win32/Grenam.A
HKEY_LOCAL_MACHINEsoftwareclassesurlsearchhook.toolbarurlsearchhook
HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar
HKEY_LOCAL_MACHINESOFTWAREMozillaFirefoxextensions,
HKEY_CURRENT_USERsoftwaremicrosoftinternet explorertoolbarwebbrowser
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun “.exe”
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionInternet Settings “WarnonBadCertRecving” =
’0
Note:
All leftover of the malware ” Win32/Grenam.A” should be found out and deleted completely and quickly to avoid
further damage on the critical system �les. If you do not delete all related components related to
Win32/Grenam.A, it will damage the left good �les or legal applications on the computer continuously. If you
have any questions on the removal process, please let Mitechmate Online Experts to help you out at once:
This entry was posted in Posts and tagged Delete Win32/Grenam.A, Get Rid of Win32/Grenam.A, Remove
Win32/Grenam.A on 2015-07-02 [http://blog.mitechmate.com/win32-grenam-a-removal/] by Johnson.
11/29/2015 How Can I Remove Win32/Grenam.A Permanently Win32/Grenam.A Remover
http://blog.mitechmate.com/win32grenamaremoval/ 15/15
