The Happy Birthday virus is picking up great deal of popularity and is spreading a lot faster as compared to other virus. This virus mostly spreads through E-mails and flash drives like pen drives.

Following are the problems that this virus causes:

1.    Disables registry editor, folder options and command prompt.

2.    Shows a tool tip near the mouse cursor with the texts ‘Happy Birthday’.

3.    Runs a process named either “explorce.exe” or “explorcr.exe” in the background processes that confuses with explorer.exe

4.    Operating system shows “NTLDR Missing” problem.

Solution to fix the problem:

1.    First of all we need to get our folder options and registry editor back (to do this, refer this post of mine).

2.    Now kill the process “explorcr.exe” or “explorce.exe” running in background.

3.    Now go to Folder options -> tick Show Hidden Files and Folders and uncheck Hide Protected Operating System Files.

4.    Delete the exe from “C:\Windows\system32” folder.

5.    Also delete the “autorun.inf” file from the root drive.

6.    Now to fix NTLDR missing problem, insert XP CD and Copy ‘NTLDR’ from i386\NTLDR to %SystemDrive%

7.    Reboot the system.

The problem must have gone.

Share/Save/Bookmark