Comprolive.com offers free remote tech support using Google Chrome Remote Desktop. Please contact sanjayrajure(at)gmail.com by GMail/ GTalk/ Audio/ Video.

Photo.exe

Last Updated on Wednesday, 05 June 2013 17:33 Wednesday, 17 February 2010 09:25

Harmful - EXE

How to find and remove malicious virus files named photo.exe 

The name Photo.exe is found in several computer viruses in Microsoft windows. Their analysis reports are given below.

The current virus that creates photo.exe adds the following files

Files - view
%Temp%\photo.exe 
%Programs%\Startup\9e16c401f72f35f8d08e45d698def37c.exe
%Temp%\photo.exe.tmp 

While you may be able to delete the files from the Temp folder easily. You may also have to open the startup folder in Microsoft Windows and delete any exe file found in it. As no antivirus program can detect these virus files as of now, you may have to do this manually. As you may have noticed, the Startup folder in Microsoft Windows by default does not contain any exe files in it. Hence any exe file found in the Startp folder should be considered as a virus. 

Here are reports of other virus programs that create photo.exe

Files found - view
C:\photo.exe
C:\Program Files\Bifrost\Server.exe

Files found - view
C:\driver\Photo.exe

Files found - view
C:\windows\system32\photo.exe

Files found - view
C:\windows\system32\Bifrost\photo.exe

Files found - view
C:\windows\system32\firewall\photo.exe

Files found - view
C:\windows\system32\cam\photo.exe

Files found - view
C:\windows\system32\qqq\photo.exe

Files found - view
C:\Program Files\screen\photo.exe

Files found - view
C:\Program Files\Bifrost\Photo.exe

Files found - view
%Temp%\ir_ext_temp_0\AutoPlay\Docs\photo.exe

(You can also find file size, md5, sha-1 info on the above links) 

(Full path for the short folder names)

There may be more files created by this virus program. You can find them out. First locate and note down the "date of creation" of photo.exe, and after that, search the hard disk for other files created on that date or onward. See image 

Necessary steps to remove these viruses

  • To remove virus processes from the Task Manager.
  • To search and delete virus files from the hard disk. Enable to view "hidden files and folders" before you search. Otherwise virus files inside the hidden folders will not be found.
  • To remove obsolete registry keys using CCleaner.

Detailed instructions and free Tools.

Preventive step to avoid viruses.

Reprinted with permission from Threatexpert.com

Disclaimer 

 Vocabulary of the technical terms used in this article

 

< Prev   Next >

Main Menu

Home
----Sections----
Harmful Files
Virus Removal
Trojan Removal
Worms Removal
Rogues Removal
Unwanted Apps
Removal Tools
Current News
----Articles----
Warning/ Disclaimer
Common Folders
Preventive Measures
Removal Instructions
Video Tutorials
----Site Info----
Sitemap
About/Contact
Privacy Policy
Search this site
FAQ

Subscribe to me on YouTube