You must Sign In to post a response.
  • Category: Other Security Topics

    How to remove ExploreZip virus?


    Are you looking for the guidance on removing the ExploreZip virus manually? You can find the expert answers here.

    Though I have an anti-virus solution on my system but the vendor said that some sophisticated viruses cant be detected by free antivirus software. It got into my system by opening an attachment in email. Surprisingly, the mail came from a trusted source. The vendor told me that ExploreZip virus-borne emails come from known email addresses only. I have an option to buy a premium plan but I have heard that ExploreZip virus can also be removed manually. If this is the case, guide me how to do so.
  • #4403
    Explorezip is a worm which uses email software like Outlook to spread. It replicates automatically to all the networked computers.
    It can be removed manually by following steps:

    1. Close all the running programs through Task Manager.
    2.Delete the files named Explorer.exe ans _setup.exe in Windows directory.
    3. ExploreZip modifies the Registry to load itself automatically on next boot. So open Registry Editor by typing regedit in Run.
    4. Open the Registry key HKEY_CURRENT_USER\Software\Microsoft\WindowsNT\Current Version\Windows and change the key value from run c:\windowsNT\system32\explore.exe to empty.
    5. Restart your computer and open the attachments in mails carefully.

  • #4406
    ExploreZip is a type of worm which contains a malicious payload. It utilizes Microsoft Outlook, Outlook Express or exchange to reply unread emails in your mail Inbox automatically. The another characteristic of this worm is that it also searches mapped drives as well as networked computers. If found, it copies itself to the \Windows folder of the remote computer and then modifies the Win.ini file of the infected computer. It destroys all the files having extension of .h, .c, .cpp, .asm, .doc, .ppt, or .xls on the infected computer as well as any network computer during its execution. It affects Windows 98, Windows 95, Windows XP, Windows Me, Windows NT, Windows 2000.

    To remove this virus manually, please follow the steps:

    A. In case if you are using Windows 95 or 98 OS:

    1. First open the Win.ini file in a text editor like System Configuration Editor (Sysedit.exe)

    2. Now remove the command C:\Windows\System\Explore.exe or C:\Windows\System\_Setup.exe from the run= line

    3. Need to restart your computer

    4. Now delete the Explore.exe from the C:\Windows\System folder

    B. In case if you are using Windows NT:

    1. First start the Registry Editor (Regedit.exe)

    2. You need to navigate the key: HKEY_CURRENT_USER\Software\Microsoft\WindowsNT\CurrentVersion\Windows\Run and remove the entry "Explore.exe" or _setup.exe."

    3. Now restart your computer

    4. You will have to delete Explore.exe from the C:\Winnt\System32 folder.

    With Best Regards,

    Kokil


  • Sign In to post your comments