Download KoobFace Removal Tool

Computer worm W32.Koobface.B passes around through social networking sites. Once executed the computer worm searches for cookies related to social networking sites, if found it modifies settings to add malicious site links in users profile. This computer worm is getting into the system in the form of Video codec by displaying fake alert message to install missing Video Codec. Then worm connects to remote site and notify attacker about new installation.

Message displayed by worm W32.Koobface.B
Title: Error
Mesage: Error installing Codec. Please contact support.

How to remove worm W32.Koobface.B ?

1. Perform standard procedure for virus removal
** Standard procedure for virus removal.

2. Delete these registry values added by the worm.
** How to edit registry ?
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current Version\Run\"systray" = "C:\Windows\fbtre6.exe"

Restore this value
HKEY_CURRENT_USER\AppEvents\Schemes\Apps\Explorer\Navigating

Remove these files if exists
C:\Windows\fbtre6.exe
C:\Windows\fmark2.dat

Related:
How to disable System Restore ?
How to backup Windows Registry ?
How to edit System registry or Windows registry ?
How to Start Computer in Safe Mode?
Free Online Virus Scanners to Remove Virus
Top 10 Anti Virus Software 2008

Recommendations:
Always use Antivirus and Firewall protection.