How to Eliminate TR/Dropper.Gen Completely from PC?

By | December 9, 2015

Avira antivirus, which I just installed since AVG stopped working without that mfc100.dll, has found trojen tr/dropper.gen. I tried deleting it but it comes again. How do I remove it completely?

What is TR/Dropper.Gen?

TR/Dropper.Gen is a high risk trojan horse infection that usually breaks into user’s computer without letting them know until their AV detects it. Here are some channels through which this Trojan can get into your computer.

  • It comes after you visit a hacked/compromised website;
  • It arrives as a spam email attachment with malicious activation code;
  • It comes bundled with software infected third party software;
  • It is distributed via torrent files and other social network services.

Once inside, TR/Dropper.Gen usually connects to a remote server to download malicious files to your computer. Meanwhile, it will break the defend system and exploit system vulnerability to invite additional threats such as adware, browser hijackers, ransowmare, worm, etc. So you might come across some pop-up ads, browser modifiers, or ransom attacks. Besides, this Trojan will conduct other suspected or even baleful behaviors in your computer. Here are examples:

  • It can use your computer for click fraud.
  • It can record your keystrokes and the sites you visit.
  • It can steal your IP address, private accounts and passwords.
  • It can serve as a backdoor and allow remote hacker to access your computer.
  • It can disable your system services via alter relevant settings.
  • It can slow your computer and even freeze your system.

How to Remove TR/Dropper.Gen?

As a risky infection, TR/Dropper.Gen should be removed from your PC as soon as possible. You can remove it manually as well as automatically. Here are some guides that may help you out. You can follow them to get rid of it as soon as possible.

Method 1. Remove TR/Dropper.Gen Manually

Method 2. Remove TR/Dropper.Gen by using SpyHunter Anti-Malware

Detail instruction:

Method 1: Manually Remove TR/Dropper.Gen

A: Boot your computer into Safe Mode with Networking.

To perform this procedure, please restart your computer and keep pressing F8 key until Windows Advanced Options menu shows up, then using arrow key to select “Safe Mode with Networking” from the list and press ENTER to get into that mode.

safe-mode-with-networking

B. Follow the steps to continue

Step 1. Go to Task Manager with Alt+Ctrl+Delete and stop its process.

TaskManager2

Step 2. Disable any suspicious startup items that are made by TR/Dropper.Gen

Windows Vista or Windows7: click start menu→type msconfig in the search bar → open System Configuration →Disable all possible startup items generated.

xp3

Step 3. Show all hidden files and clean all the malicious files.

(1).Click the Start button and choose Control Panel, clicking Appearance and Personalization, to find Folder Options then double-click on it.

(2).In the pop-up dialog box, click the View tab and uncheck Hide protected operating system files (Recommended).

FolderOptions1

(3). Clean all the malicious files about this infection as below.

%AllUsersProfile%\{random.exe\
%AllUsersProfile%\Application Data\
%AllUsersProfile%\random.exe
%AppData%\Roaming\Microsoft\Windows\Templates\random.exe
%Temp%\random.exe
%AllUsersProfile%\Application Data\random

Step 4. Delete related malicious registry entries .

Open Registry Editor by pressing Window+R keys together.(another way is clicking on the Start button and choosing Run option, then typing into regedit and pressing Enter. )

registry editor in safe mode

Delete all the vicious registries as below:

HKEY_LOCAL_MACHINE\SOFTWARE\<random>Software
HKEY_LOCAL_MACHINE\SOFTWARE\supWPM
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Wpm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main "Default_Page_URL" = 
"http://www.<random>.com/?type=hp&ts=<timestamp>&from=tugs&uid=<hard drive id>"

Method 2: Automatically Get Rid of TR/Dropper.Gen with Spyhunter

SpyHunter is a powerful, real-time anti-spyware application that designed to assist the average computer user in protecting their PC from malicious threats like worms, Trojans, rootkits, rogues, dialers, spyware,etc. To keep SpyHunter Anti-malware on your computer is an important way to protect your computer in a good condition. Please find the instruction as follow.

Step 1: Click the icon to Download SpyHunter removal tool

download Spyhunter2

Step 2: Install Spyhunter.

Open spyh File sph-setup-win7 spyhunter installed

Step 3: After the installation, run SpyHunter and click “Malware Scan” button to have a full or quick scan on your PC.

1

Step 4: Select the detected malicious files after your scanning and click “Remove” button to clean up all viruses.

remove

Speed up and optimize your computer with RegCure Pro

RegCure Pro thoroughly cleans away system errors that cause freezing, crashes, slowness and general poor PC performance. It restores speed and performance. RegCure Pro gets rid of temporary items, junk files and other clutter that slow you down. It also deletes privacy files that contain confidential data. This advanced program cleans your PC in many ways.

Step 1.Download RegCure Pro by clicking the button

download RegCure Pro

Step 2. Run the file of RegCure Pro.

RegCure-Pro-Installer1

Step 3. Follow the Setup Wizard and install the RegCure Pro on your desktop:

RegCure Pro 2

Step 4 . Run a scan and fix any detected problems.

RegCure Pro 3

Threats-Fix

Note: Manually removal TR/Dropper.Gen is a tough job since there are many related files need to detect and remove. Some files will be hidden so that you cannot find them out and remove completely. If you have been spend much time on manually removal but still cannot fit this problem, you are highly recommended to download Spyhunter anti-malware software hereto remove TR/Dropper.Gen and other threats from your system once for all. And Download RegCure Pro to help you clean up the unneeded registry entries and optimize your computer.

Leave a Reply

Your email address will not be published. Required fields are marked *