I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
What is AUTOEXEC.WSF?
AUTOEXEC.WSF detected as TROJ.AUTOEXEC.WSF.
You can get it on your computer while downloading it bundled with some free software.
Sadly, most free downloads do not disclose that other programs will be installed, so you are more likely to get AUTOEXEC.WSF on your PC without your own knowledge.
After being downloaded, AUTOEXEC.WSF hijacks your browser and changes search settings.
AUTOEXEC.WSF also causes an appearance of popup ads and browser redirecting.
AUTOEXEC.WSF is very annoying and hard to get rid of.
Technical Information:
- Full path on a computer= AUTOEXEC.WSF
You have 2 ways to remove AUTOEXEC.WSF:
Why I recommend you to use an automatic way?
- You know only one virus name: "AUTOEXEC.WSF", but usually you have infected by a bunch of viruses.
The UnHackMe program detects this threat and all others. - UnHackMe is quite fast! You need only 5 minutes to check your PC.
- UnHackMe uses the special features to remove hard in removal viruses. If you remove a virus manually, it can prevent deleting using a self-protecting module. If you even delete the virus, it may recreate himself by a stealthy module.
- UnHackMe is small and compatible with any antivirus.
- UnHackMe is fully free for 30-days!
Here’s how to remove AUTOEXEC.WSF virus automatically:
STEP 1: Install UnHackMe (1 minute)
STEP 2: Scan for malware using UnHackMe (1 minute)
STEP 3: Remove AUTOEXEC.WSF virus (3 minutes)
So it was much easier to fix such problem automatically, wasn't it?
That is why I strongly advise you to use UnHackMe for remove AUTOEXEC.WSF redirect or other unwanted software.
How to remove AUTOEXEC.WSF manually:
STEP 1: Check all shortcuts of your browsers on your desktop, taskbar and in the Start menu. Right click on your shortcut and change it's properties.
You can see AUTOEXEC.WSF or another web site at the end of shortcut target (command line). Remove it and save changes.
In addition, check this command line for fake browser's trick.
For example, if a shortcut points to Google Chrome, it must have the path:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe.
Fake browser may be: …\Appdata\Roaming\HPReyos\ReyosStarter3.exe.
Also the file name may be: “chromium.exe” instead of chrome.exe.
STEP 2: Investigate the list of installed programs and uninstall all unknown recently installed programs.
STEP 3: Open Task Manager and close all processes, related to AUTOEXEC.WSF in their description. Discover the directories where such processes start. Search for random or strange file names.
STEP 4: Inspect the Windows services. Press Win+R, type in: services.msc and press OK.
Disable the services with random names or contains AUTOEXEC.WSF in it's name or description.
STEP 5: After that press Win+R, type in: taskschd.msc and press OK to open Windows Task Scheduler.
Delete any task related to AUTOEXEC.WSF. Disable unknown tasks with random names.
STEP 6: Clear the Windows registry from AUTOEXEC.WSF virus.
Press Win+R, type in: regedit.exe and press OK.
Find and delete all keys/values contains AUTOEXEC.WSF.
STEP 7: Remove AUTOEXEC.WSF from Google Chrome.
STEP 8: Remove AUTOEXEC.WSF from Internet Explorer.
STEP 9: Remove AUTOEXEC.WSF from Mozilla Firefox.
STEP 10: And at the end, clear your basket, temporal files, browser's cache.
But if you miss any of these steps and only one part of virus remains – it will come back again immediately or after reboot.