KAVITHA TUTORIALS, TIRUVURU: How to Remove the Virus Manually

Tools to remove virus manually

Operating systems CD/DVD (If OS corrupts)
Antivirus software with recent updates
Sysinternals security utilities like process explorer and autoruns Activate the Registry Editor:

REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableRegistryTools /t REG_DWORD /d 0 /f

The Windows Registry is a database which stores settings and options for Microsoft Windows operating systems. It contains information and settings for hardware, operating system software, most non-operating system software, and per-user settings.

CAUTION: Disable autorun on all drives from Group Policy Editor (gpedit.msc) and never double click removable media without checking virus (for autorun.inf and other virus executables)

Activate the task manager:

Start Menu===>RUN==>gpedit.msc===>

Group policy window will open, In this windows go to User configurataion pane and ===>admin templates===>system===>ctrl+alt+del===>Remove Task Manager==>Select and Apply "Not configured."

(or)

Go to below path in the registry editor and set the DisableTheTaskMgr key to 0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system

Not Able to open command prompt?

Download process explorer or any third party software to view the processes running and find the unwanted software or suspecting processes running under explorer with no signature and kill those processes.

How to find and delete the virus files?

From process explorer find the path of the virus program from where it is running(eg:c:\windows\system32)

Open command prompt(Go to run, Type cmd and press Enter key)
Go to the path with the command (cd\ 2) cd c:\windows\system32)
View the file with DIR command. If not able to see execute DIR/AH command to view the hidden files. If you find its hidden execute the command attrib -r –a –s –h to reset the attributes of that file
Then finally delete that file with the command DELETE
Unable to open drives in My Computer?

Open command prompt with Start Menu -> RUN ->cmd and press enter
In command prompt window, type CD\ to go to the parent directory
View the hidden files with the command DIR/AH , you will find autoruns.inf and other files with extensions like .exe, .com and execute the command ATTRIB –R –H *.* to unhide them and then delete those files with the command DELETE AUTORUN.INF and DELETE

	Online Reference Dictionary, Encyclopedia & more
Word:
Look in:	Dictionary & thesaurus Medical Dictionary Legal Dictionary Financial Dictionary Acronyms Idioms Encyclopedia Wikipedia Periodicals Literature Other languages: Spanish Dictionary German Dictionary French Dictionary Italian Dictionary Chinese Dictionary Portuguese Dictionary Dutch Dictionary Norwegian Dictionary Greek Dictionary Russian Dictionary
by:

KAVITHA TUTORIALS, TIRUVURU

Pages

Friday, February 11, 2011

How to Remove the Virus Manually

No comments:

visitors counter