remove "b.exe"

how do you remove the b.exe virus ?its being a problem to remove >:(

Download malwarebytes http://filehippo.com/download_malwarebytes_anti_malware/
After you have it installed,update it and run a quick scan.
Remove everything it finds.Then post back a log from malwarebytes.

I suggest:

  1. Clean your temporary files.
  2. Schedule a boot time scanning with avast with archive scanning turned on. If avast does not detect it, you can try DrWeb CureIT! instead.
  3. Use MBAM (or SUPERantispyware or even Spyware Terminator) to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete them.
  4. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
  5. Make a HijackThis log to post here or this analysis site. Or even submit the RunScanner log to to on-line analysis.
  6. Clean your Hosts file (replacing it) with HostsMan tool.
  7. Disable System Restore and then reenable it again.
  8. Immunize your system with SpywareBlaster.
  9. Check if you have insecure applications with Secunia Software Inspector.

whats b.exe?

A malware (virus).

Hi folks,

With avast it can also be removed. After scanning it, look for a button that says Delete. A window will come up. Tick the box that says “permanently delete after system reboot” or similar. Save all programs then restart the computer. The b.exe virus should not be there anymore.
A manual cleansing routine is:

  1. Take note of the path of the file (I hope you’re still familiar with DOS), e.g.:
    c:\Documents and Settings<your logged-in name>\Local Settings\Temp\b.exe
    (I would assume that “b.exe” is always embedded in the Temp folder);
  1. Re-start the computer; press F8 repeatedly during the POST booting;
  2. A menu will show up; choose/enter SAFE MODE; windows will start under SAFE MODE;
  3. Log-in as you would normally do under your user name (as Administrator);
  4. Start>Run; type “CMD” then enter; OR Start>All Programs>Accessories>Command Prompt;
  5. Since you logged in under your user name, the command prompt would normally show:
    c:\Documents and Settings<your logged-in name>;
  6. type, “CD Temp” (cd means “change directory”) and press enter; the sub-directory “Temp” should open and the new prompt should look like this:
    c:\Documents and Settings<your logged-in name>\Local Settings\Temp>;
  7. Now type “dir b.exe” (to be sure that the culprit file is there);
  8. Type “attrib b.exe”; it will show the attribute of the file (which in my case was “A” which meant Archived);
  9. Type “attrib b.exe –a” (this means that the Archive attribute is being negated or removed);
    To ensure that it was removed: Type “attrib b.exe” (at this point, “A” should not be shown;
  10. Now remove the culprit: “Type del b.exe”, press enter;
  11. Finally, check if it was successfully removed: Type “dir b.exe”; the prompt should show “File not find”;
  12. Type “exit”, this will bring you back to Windows (still at SAFE MODE); Restart Windows;

polonus