Help! I’ve got this JS:Decode-BTB virus and I don’t know how to remove it. The infection alert keeps popping up from my antivirus software. But I tried use it to eliminate the virus but it failed. The infected files cannot be deleted. I did try some other different programs but they turned out to be in vain too. What can I try to remove the virus completely?
JS:Decode-BTB Trojan Virus Infection Description
JS:Decode-BTB is a Trojan virus which stands out for its ability to stealing password. It can steal private details from an infected system. People cannot understand why the computer gets infected when it has the protection from reputable security software. There are viruses created every day and the hackers are updating them with new codes and higher expertise. Security software always take time to update its database to the latest thus they will not be able to react the the latest infection in time. And for another reason, the virus is enabled by its creators to turn off the security functions as soon as it gets installed.
Having the ability to block antivirus software from running by disabling the processes of important programs, JS:Decode-BTB Trojan virus can begin its other scams on the infected system. It will use the internet to get connected with remote server and drop additional malware or other kinds of viruses. The virus can also record the keystrokes of the computer users of the target computer and save them as a log file. That means that the virus can trace all your activities on the infected computer and make records on them. The revealing of the information can bring loss to the net users one day. Thus to remove the virus has become an urgent thing.
Symptoms of Similar Trojan Infection :
– This virus can escape from most antivirus protection and get itself installed on computers especially with Windows operating systems.
– It can cause constant stuck or even blue screens on the infected computers.
– Computer users will experience constant security pop ups on the computers which may not truly represent the status of the PCs.
– Certain malware or spyware may be prompted by these fake security pop ups which will end up scamming money.
– Sensitive data like privacy can also be stolen and taken advantages by cyber criminals.
Manual Removal Step by Step Instructions
Up till now, there is not a perfect antivirus that can detect this pesky Trojan virus or delete it completely. JS:Decode-BTB has been updated by remote and backstage cyber criminals and is able to escape from the scan of any anti-virus programs thus it is hard to be removed or even found. The most effective way is to remove it manually. The following instructions need quite level of computer expertise. If you don’t know how to that correctly, please contact with YooSecurity online support now!
Step A: Check on your start menu if there are any programs that you are not familiar with. The strange ones will often related to the virus process as it can start automatically with the windows. You can press on Windows key or just click on the start menu to view it. Please notice that you need to click on All Programs to have an overall check on it.
Step B: To remove the Trojan the first thing we need to do is to end its process thus we will not get the error message when we delete its files. To do that, open Windows Task Manager to end process related to this Trojan infection. You can press Ctrl+Alt+Del keys at the same time to pull up Window Task Manager; go to Processes tab on top and scroll down the list to find.
Step C: Always any virus files will be hidden files. So we need to show hidden files before we are going to delete them. Open Control Panel from Start menu and search for Folder Options (As an easy way you can open a folder and hold Alt key and tap on T, O key one by one and folder option window will pops up). Go to Folder Options window, under View tab, tick Show hidden files and folders and non-tick Hide protected operating system files (Recommended) and then click Apply and then hit OK.
After we can see hidden folders and files we can go to system files and delete the infected files. The path of the virus often can be found from the antivirus which detects it.
Step D: After we delete the virus files from system data we get to remove the registry of the virus from registry editor to prevent it from coming back. You can get Registry Editor by pressing Windows+R keys to pull up Run box and type in regedit to open Registry Editor.
The following is how Windows Registry Editor looks like.
Step E: Delete all these associated files and registry entries with this Trojan virus from Registry Editor. The registry files are listed randomly. Besides, you need to delete the infection files of the redirect virus from your system files to prevent it from coming back. Those files are named randomly also but may be different on different operating systems.
Video on How to Modify or Change Windows Registry Safely:
To Summarize Shortly:
JS:Decode-BTB, being recognized as Trojan virus infection, has become quite popular and annoying nowadays. The virus specialize in information stealing and all victims of this virus have reported that they have to be confronted with more and more troubles as there seem arise more and more risks on their infected computers. When the system of the infected machine gets vulnerable there will be larger chance for other online-spreading viruses to attack the system. As what has been mentioned above, the virus can also collect the useful information on the infected computer as well as some online activities of the users. It will transmit the information to remote cyber criminals on particular schedule through various ways such as emails or file transfer protocol. Besides, the virus will also add its own registries and create its own files to make it uneasy to remove. If you let it stay on an infected computer, you may have to try harder when you want to remove it.
Note: Have tried many methods but failed to get rid of this Trojan virus? If you have no clue, please contact YooSecurity Online Experts in time to save your computer.
Published by Michael Myn & last updated on May 6, 2014 12:51 pm