Infected by Exploit:JS/Dotcaf.A? - Exploit:JS/Dotcaf.A removal Guide

Is your computer becoming more and more sluggish? Your antivirus program gives you a warning about the Exploit:JS/Dotcaf.A virus but can not remove it? You try the tool to remove it but the malicious program still harms the PC each time when the system finishes restarting? Have no ideas what to do since your antivirus program cannot remove this Trojan virus successfully? Read this post and follow the removal guide, you can successfully remove Exploit:JS/Dotcaf.A from the PC.

Exploit:JS/Dotcaf.A Information 

Exploit:JS/Dotcaf.A is an aggressively destructive and nasty Trojan horse that can constantly attack the targeted machine via exploiting system security vulnerability and unprotected networks. This Trojan virus can target computers with different Windows operating systems such as Windows XP, Windows 7, Windows Vista or Windows 8. Through hacked website, spam email sending or some freeware that is embedded with malicious code, it can transfer from one computer to another by network. To prevent being infected by the Trojan, you have to be careful all the time when surfing online.

This Trojan virus is designed by the hackers to have the capacity of performing a range of tasks in the targeted computer. It alters the vital system settings and modifies the system registry so that it can start automatically every time Windows loads. What’s more, as this Trojan takes up a lot of valuable system space and memory, the computer becomes rather slow. Even though you have cleaned your system with a system cleaner, your computer still can not work fast. When you enable a program, load a web page or even click to run a document files, the computer takes a long time to respond. You even cannot find some files since they have been removed from their original places by the Trojan virus. Moreover, cyber criminals can monitor your computer activities once your network is connected. Cyber criminals use it to bring potential threats to your infected computer. No one can imagine what disastrous consequences it may bring to the PC. Therefore, if you want to protect your personal information and stop Trojan violating your computer system, please delete it as early as you can.

Exploit:JS/Dotcaf.A poses a great challenge to antivirus defense. The inventors of the Trojan are very canny. They make the virus pretend to be a part of the computer system, which prevents the antivirus programs from removing it effectively. In this situation, manually removing this Trojan virus can be a workable way.

The manual removal provided below requires enough computer knowledge and skills. If you don’t want to take risks while fixing computer with manual method, please get help from automatic way in the next step.

Manual removal guide 

Exploit:JS/Dotcaf.A is a Trojan virus which can sneak into your computer silently without consent when you surf the Internet. Your computer performance will become slower and slower due to the Trojan and the additional threats brought by it. What’s worse, it will compromise your privacy by collecting valuable data and information from your infected computer. It is recommended to remove it as quickly as possible. Users can take the manual removal instructions into account if they need to get rid of the malware.


Step 1: Stop the processes of the Trojan in Task Manager.

1)Open Windows Task Manager by pressing keys Ctrl+Shift+ESC or Ctrl+Alt+Del. together.

2)Search for its running malicious processes of the Trojan, and then stop them all by clicking on “End Process” button. (The virus process can be random)

Step 2: Delete all the files associated with the Trojan.

%AppData%\Roaming\Microsoft\Windows\Templates\random.exe
%AllUsersProfile%\Application Data\random
%AllUsersProfile%\Application Data\~random
%AllUsersProfile%\Application Data\.dll HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Random “.exe”

Step 3: Get rid of all the registry entries related to the Trojan.

1)Press Window + R keys together. When Run pops up, type regedit into the box and click OK to launch Registry Editor.

Navigate to the HKEY_LOCAL_MACHINE and HKEY_CURRENT_USER directories, find out and get rid of all the registry entries related to the Trojan immediately.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\random
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunRegedit
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\[RANDOM CHARACTERS].exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Random
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “CertificateRevocation” =Random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\Random.exe

Note: Please back up your computer before any file changes in case that you can restore your information and data if you make any mistake during the process.

Step 4: Restart the computer to normal mode after these steps are done.


Therefore, Exploit:JS/Dotcaf.A is a computer infection which can damage the infected system and steal the victims’ personal information. As soon as computer is infected by it, the computer runs slower and slower. You will get irritated if you have some important work to do on such a sluggish computer, for it greatly decreases the work efficiency. The PC can easily turn off without notifying you. Furthermore, hackers can steal your valuable information such as online accounts and passwords to make illegal profits. So, you should quickly remove this threat out of your computer to secure your system and privacy.