- upon start up.... after os loading... go to task manager by pressing CTRL+ALT+DEL then kill password_viewer.exe or bar311.exe or photos.zip.exe...
- EDIT the following registry entries thru regedit at start/run
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="userinit.exe,bar311.exe" ---> remove ", bar311.exe" only... leave userinit.exe because this is used by Windows when you log-in...
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
"HideFileExt"=dword:00000000
"ShowSuperHidden"=dword:00000001
or unhide the hidden file and file extensions
[HKEY_CURRENT_USER\Software\Microsoft\Command Processor]
"autorun"="c:\Windows\pc-off.bat" --> remove "c:\Windows\pc-off.bat" or delete the autorun key. - go to your thumb drive, please use the folders view in the explorer and use the navigation panel on the left side when accessing the drives to avoid triggering the autorun... then delete autorun.inf and password_viewer.exe or bar311.exe
- open notepad then type what is shown below as is...
@echo off
del /a /f c:\Windows\bar311.exe
del /a /f c:\Windows\password_viewer.exe
del /a /f c:\Windows\photos.zip.exe
del /a /f c:\Windows\pc-off.bat
pause
then save this as remove.bat(in the thumb drive) then click to run.... this will remove the virus...
Computer Shuts Down when you Open up CMD (Command Prompt).
Thanks to Technology and Computer Guide. That's all for now. Chow! ;)
1 comment:
Hi, Suburbanzero!
I believe that you were able to fix your issue. Hope you can help me to. I also have the same issue and I need to manually delete the virus/es because the automatic delete link gives me another type of virus.
My problem is I don't where to find thumb drive mo as instructed in instruction no. 3.
Please help.
Thanks!
Post a Comment