HowTo: Manually Remove a Virus from Computer
This manual is intended for those that in no circumstances have the time and resource to wait or to download an antivirus. This instruction includes modifying registry which could cause damage to your operating system. This instruction can also be used simply to clean viruses from memory, in case your antivirus can detect them but unable to erase them because they’re still active.
This manual was intended for Windows XP but usage in Windows Vista, 98, and Me should be similar.
Follow this instruction at your own risk.
Update 24 July 2009
Kill your XP/Vista system restore… from my experience they create more headache then relieve.
Get your infected PC off the network, you don’t want to infect a perfectly healthy PC or risk reinfection by some virus (ie. conficker).
If you’re one of those cheap pocket pirated software user that doesn’t use original OS, download the patch… or move to Linux.
If your browser was magically unable to access AV sites nor MS sites, most likely you’re infected with conficker… the block can be easily bypassed by killing DNS Client service under Control Panel – Administrative Tools – Services – DNS Client.
Under some cases, the virus encapsulate a legitimate file (usually executable), such as in sality case. If you are infected with such virus, then it is best to use sality fix tools such as one provided by Trend Micro, and download the virus pattern here (lpt$vpn.xxx) and spyware pattern here (ssapiptn.dax). Extract Fixtool, and the pattern at the same folder and run fix.bat.
You’ll have to use tools because in sality case, because your explorer, system file, even your anti virus should be incapable to remove them.
(more…)
