Yontoo attaches its ads and toolbar on your browser, so usually it should be in extension/ plug-in/ add-on. But no progress is made from there because one simply cannot find its trace. Getting into Control Panel and removing yontoo there helps nothing, both yontoo ads and its toolbar survive even there’s no its indication in Control Panel and browser. What happens? Is that a ghost? Why would an add-on be that difficult to get rid of?
How would a tiny one be capable of bringing junks and virus into your system in the coming days?
The answer lies on the backdoor it makes. A light one doesn’t mean it is an innocuous one to your system. Yontoo virus manages to open up a backdoor invisible to you by inserting its critical part (registry entries) into the kernel part of the compromised machine. Once the backdoor is in shape, you will get all its affiliate things, that’s why PC users who get yontoo ads would finally get yontoo toolbar and vice versa. A backdoor can also be exploited by random virus. Therefore, we suggest a quick remove of yontoo virus, no matter you have its script pop up or toolbar.
2 Efficient Removal Antidotes
Antidote A: Remove Yontoo Manually
For Windows XP:
Click Start menu -> click Run -> type: msconfig in the search bar -> open System Configuration Utility -> Disable all possible startup items including those of yontoo virus.
a) open Control Panel from Start menu and search for Folder Options;
b) under View tab to tick Show hidden files and folders and non-tick Hide protected operating system files (Recommended) and then click OK;
c) click on the “Start” menu and then click on the “Search programs and files” box, Search for and delete these files created by yontoo virus:
- C:\WINDOWS\assembly\KYH_64\Desktop.ini
- C:\Windows\assembly\KYH_32\Desktop.ini
- C:\WINDOWS\system32\giner.exe
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\random
- HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run\random
- HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\5ATIUYW62OUOMNBX256 “(Default)”=”1?
4. Remove add-ons:
Assuming you use Mozilla Firefox:
1) Click on the magnifier’s icon and select ‘Manage Search Engine…’;
2) Choose ‘Search Results’ from the list and click ‘Remove’ and OK to save changes;
3) Go to ‘Tools’ -> “Options”. Reset the startup homepage or change it to google.com under ‘General tab;
Attention: If you want to be the one who wants the removal to be a easy and automatic job, as we all say where there is a will, there is a way, Spyhunter can be your first choice. Download and install the most powerful antivirus program Spyhunter to kick the ass of Yontoo .
Antidote B: Remove Yontoo automatically (with SpyHunter)
Step A. Download removal tool SpyHunter
1) Click here or the icon below to download SpyHunter automatically.
2) Follow the instructions to install SpyHunter
Step B. Run SpyHunter to block Yontoo
Run SpyHunter and click "Malware Scan" button to scan your computer, after detect this unwanted program, clean up relevant files and entries completely.
Step C. Restart your computer to take effect.
warm reminder:
No one denies Spyhunter since it does such a good job.Want to remove Yontoo right away?Want to protect your computer from additional malware? Want to enjoy your surfing internet?
Download and install Spyhunter to be your first safeguard.