Sometimes it is better to delete the virus manually rather than relying on any antivirus.And in this way I would learn more. So here are the steps which I did to remove the boot.vbs virus:
- Go to Task Manager > Processes and End the following processes in order: dxdlg.exe and wscript.exe
- Go to Start > Run > regedit and Open the following key:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
- In the right side pane, select Userinit and double click it and delete everything except “C:\windows\system32\userinit.exe”
- Make sure the processes wscript.exe and dxdlg.exe are not running.
- Then delete the following files
C:\Windows\System32\dxdlg.exe
C:\Windows\System32\boot.vbs
In your Windows drive, search for boot.vbs and delete all of them.
In your Windows drive, search for kinza.exe and delete all of them. - Disable System Restore and then Enable it again.
- Restart your computer.
3 comments:
very useful and a very essential post..
i hope this comes to use for every visitor
hi dear
thanks a lot , This tutorial is useful .
my sister computer was infected & your tutorial help she .
www.secure-developer.com