E-Greetings.exe Threat Level:

E-Greetings.exe is a Trojan that gets linked to from a fake Postcards.org email, subject line “You have just received a virtual postcard from a friend !”

Sounds friendly, right?

Wrong.

If you click through the “You have just received a virtual postcard from a friend !” email, you’ll download E-Greetings.exe. E-Greetings.exe is really a Trojan, that’ll likely allow a hacker to get creepy-cozy with your PC — and likely all your personal and financial information.

Let me show you how to block E-Greetings.exe.

Do You Have E-Greetings.exe?

When you’re infected with badware — whether it’s E-Greetings.exe, spyware, adware, a Trojan, or a virus — there are a few key symptoms. Have you noticed…

• Slow computer performance: It just takes one parasite like E-Greetings.exe to slow your computer dramatically. If your PC takes longer than usual to reboot, or if your Internet connection is unusually slow, you may be infected with E-Greetings.exe.
• New desktop shortcuts or switched homepage: Badware like E-Greetings.exe may change your Internet settings to redirect your homepage to another site. Badware can even add desktop shortcuts to your PC.
• Annoying popups: Badware can bombard your computer with popup ads, even when you’re not online. Through these popups, you may be tricked into downloading more spyware.

How to Remove E-Greetings.exe Manually

Before we get started, you should backup your system and your registry, so it’ll be easy to restore your computer if anything goes wrong.

To remove E-Greetings.exe manually, you need to delete E-Greetings.exe files. Not sure how to delete E-Greetings.exe files? Click here, and I’ll show you. Otherwise, go ahead and…

E-Greetings.exe email reads:

From: received@postcard.org
Subject: You have just received a virtual postcard from a friend !
You have received A Hallmark E-Card.

You have just received a virtual postcard from a friend !

.

You can pick up your postcard at the following web address:

.

Click here to pick up your postcard

.

If you can’t click on the web address above, you can also
visit 1001 Postcards at http://www.postcards.org/postcards/
and enter your pickup code, which is: d21-sea-sunset

.

(Your postcard will be available for 60 days.)

.

Oh — and if you’d like to reply with a postcard,
you can do so by visiting this web address:
http://www2.postcards.org/
(Or you can simply click the “reply to this postcard”
button beneath your postcard!)

.

We hope you enjoy your postcard, and if you do,
please take a moment to send a few yourself!

.

Regards,
1001 Postcards
http://www.postcards.org/postcards/

Block E-Greetings.exe sites:

Stop E-Greetings.exe processes:

Note: In any E-Greetings.exe files I mention above, “%UserProfile%” is a variable referring to your current user’s profile folder. If you’re using Windows NT/2000/XP, by default this is “C:\Documents and Settings\[CURRENT USER]” (e.g., “C:\Documents and Settings\JoeSmith”). If you have any questions about manual E-Greetings.exe removal, go ahead and leave a comment.

How Do You Remove E-Greetings.exe Files?

Need help figuring out how to delete E-Greetings.exe files? While there’s some risk involved, and you should only manually remove E-Greetings.exe files if you’re comfortable editing your system, you’ll find it’s fairly easy to delete E-Greetings.exe files in Windows.

How to delete E-Greetings.exe files in Windows XP and Vista:

1. Click your Windows Start menu, and then click “Search.”
2. A speech bubble will pop up asking you, “What do you want to search for?” Click “All files and folders.”
3. Type a E-Greetings.exe file in the search box, and select “Local Hard Drives.”
4. Click “Search.” Once the file is found, delete it.

How to stop E-Greetings.exe processes:

1. Click the Start menu, select Run.
2. Type taskmgr.exe into the the Run command box, and click “OK.” You can also launch the Task Manager by pressing keys CTRL + Shift + ESC.
3. Click Processes tab, and find E-Greetings.exe processes.
4. Once you’ve found the E-Greetings.exe processes, right-click them and select “End Process” to kill E-Greetings.exe.

How to remove E-Greetings.exe registry keys:

Because your registry is such a key piece of your Windows system, you should always backup your registry before you edit it. Editing your registry can be intimidating if you’re not a computer expert, and when you change or a delete a critical registry key or value, there’s a chance you may need to reinstall your entire system. Make sure your backup your registry before editing it.

1. Select your Windows menu “Start,” and click “Run.” An “Open” field will appear. Type “regedit” and click “OK” to open up your Registry Editor.
2. Registry Editor will open as a window with two panes. The left side Registry Editor’s window lets you select various registry keys, and the right side displays the registry values of the registry key you select.
3. To find a registry key, such as any E-Greetings.exe registry keys, select “Edit,” then select “Find,” and in the search bar type any of E-Greetings.exe’s registry keys.
4. As soon as E-Greetings.exe registry key appears, you can delete the E-Greetings.exe registry key by right-clicking it and selecting “Modify,” then clicking “Delete.”

How to delete E-Greetings.exe DLL files:

1. First locate E-Greetings.exe DLL files you want to delete. Open your Windows Start menu, then click “Run.” Type “cmd” in Run, and click “OK.”
2. To change your current directory, type “cd” in the command box, press your “Space” key, and enter the full directory where the E-Greetings.exe DLL file is located. If you’re not sure if the E-Greetings.exe DLL file is located in a particular directory, enter “dir” in the command box to display a directory’s contents. To go one directory back, enter “cd ..” in the command box and press “Enter.”
3. When you’ve located the E-Greetings.exe DLL file you want to remove, type “regsvr32 /u SampleDLLName.dll” (e.g., “regsvr32 /u jl27script.dll”) and press your “Enter” key.

That’s it. If you want to restore any E-Greetings.exe DLL file you removed, type “regsvr32 DLLJustDeleted.dll” (e.g., “regsvr32 jl27script.dll”) into your command box, and press your “Enter” key.

Did E-Greetings.exe change your homepage?

1. Click Windows Start menu > Control Panel > Internet Options.
2. Under Home Page, select the General > Use Default.
3. Type in the URL you want as your home page (e.g., “http://www.homepage.com”).
4. Select Apply > OK.
5. You’ll want to open a fresh web page and make sure that your new default home page pops up.

E-Greetings.exe Removal Tip

Is your computer acting funny after deleting any E-Greetings.exe files? I recommend using a program like File Recover from PC Tools. File Recover saves deleted files that otherwise can’t be recovered by Windows operating sytem.

Want to save time finding E-Greetings.exe files? Download Spyware Doctor, let it find the E-Greetings.exe files for you, and then manually delete E-Greetings.exe files.

How Did You Get E-Greetings.exe?

Wondering how E-Greetings.exe ended up on your PC? If you’re infected with E-Greetings.exe or other badware, perhaps you were using…

• Freeware or shareware: Did you download and install shareware or freeware? These low-cost or free software applications may come bundled with spyware, adware, or programs like E-Greetings.exe. Sometimes adware is attached to the free software to “pay” developers for the cost of creating the software, and more often spyware is secretly attached to free software to harm your computer and steal your personal and financial information.
• Peer-to-peer software: Do you use a peer-to-peer (P2P) program or other application with a shared network? When you use these applications, you put your system at risk for unknowingly downloading an infected file, including applications like E-Greetings.exe.
• Questionable websites: Did you visit a website that’s of questionable nature? When you visit malicious sites that are fishy and phishy, badware may be automatically downloaded and installed onto your computer, sometimes including applications like E-Greetings.exe. I recommend you use Firefox web browser, if you don’t already.

Understanding E-Greetings.exe

If you’re infected with E-Greetings.exe, you should know what you’re fighting. I’ll explain some definitions related to E-Greetings.exe.

E-Greetings.exe May Be a Backdoor

“Backdoor” describes a parasite that gets past your system’s normal means of authentication, remotely accesses your PC, or otherwise enters your system without being detected. Trojans and worms often use backdoor methods to access your computer and steal your personal and financial information and/or install more malware into your PC.

E-Greetings.exe May Be a Trojan

Trojans install themselves secretly onto your computer, most often through your downloading a simple email attachment (often Trojans pose as harmless pictures). Most Trojans are able to gain complete control over your PC after installation. With this control, the Trojan and the hacker behind it may change your system settings, delete important files, steal your passwords, and watch your computer acitivity.

Infection Methods of E-Greetings.exe and Other Trojans

Most Trojans infect your computer by tricking you into launching an infected file. This poisoned file could disguised as a small file, such as a jpeg or other email attachment, or it might be downloaded via a website or FTP.

• Email: Your PC may be infected with a Trojan when you download infected email attachments, or sometimes even when you simply open an email. Many Trojans exploit security holes in Microsoft Outlook. You may be able to reduce your chances of getting infected by a Trojan by using a spam-blocking software.
• Websites: Your PC may be infected with a Trojan when you visit a rogue site. Many Trojans exploit security holes in Internet Explorer web browser so that by simply visiting a website you may unknowingly download a Trojan.
• Open ports: If your computer runs programs that provide file-sharing functions – such as AOL Instant Messenger (AIM), MSN Messenger, and more – you may open your computer up to vulnerabilities. Using file sharing through these applications may create a network that gives attackers the opportunity to remotely access your computer.