Jump to content
Sign in to follow this  
Ishana

[BASIC DIY] How to disable a virus [/BASIC DIY]

Recommended Posts

Hello there, This basic guide will teach you how to disable/remove a virus that is stuck in your computer

First step is checking if you really got a virus

  1. Open Task Manager (Alt + Ctrl + Delete or right click on your taskbar)
  2. Click on Process tab

Look for weird process like this one below

9ljvxy.png

If you would like to know if the process is a virus or not then search for it here : www.systemlookup.com

So, mine here is obviously a virus called "RS_Service"

Currently it is running and working

First step to find where it is to do that, Right click it and then choose properties and take note where it is in the location area

After that click "End Process"

After that you must make sure it will no longer open on startup

Now go to the location and delete it from there

after that

Open regedit (below is how to open it)

Windows 7

Click on start orb then write in the search box regedit then open regedit.exe

Windows XP

Click on start orb then click on run and when it opens write regedit and click Enter

When you open it

Open those folders in registry editor

  1. HKEY_CURRENT_USER
  2. Software
  3. Microsoft
  4. Windows
  5. CurrentVersion
  6. Run

Then find the virus there and remove its registry

Mine was there

2v3kbns.png

If it is not there then just search for it (Ctrl + F) and remove it

If you fail to remove it from registery and it keeps adding again then download Malwarebytes anti virus and scan it

If Malwarebytes asks you to restart you must restart

Note : I injected my self with my own keylogger just for this guide

Share this post


Link to post
Share on other sites

Not a bad tutorial.

Just as a note, you could use the boot tab in msconfig to change the startup items also.

Share this post


Link to post
Share on other sites

Thank you! I fianlly got rid of that keylogger or w/e i hadz!

Share this post


Link to post
Share on other sites

Might want to explain how some virus's can't be deleted if they are running.

Benefits of having Linux duel boot, delete it from linux while it can't run. Or safe mode :)

Share this post


Link to post
Share on other sites
I think I have a RAT, yesterday my computer randomly shutdown (no updates as I disabled automatically install updates) and when I tried to logon to my runescape account all my stuff was gone and someone tried to logon to my facebook. I have his IP though. I did what you said and I deleted steamm.exe from the registry. It seemed suspicious to me. Hopefully you could help me some more.

Share this post


Link to post
Share on other sites
Thanks bro! lol people rely on anti virus programs that do the same thing...

Share this post


Link to post
Share on other sites
Ty ishana!

Now i can get rid of probably the 50 keyloggers I have XD

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×