Social Icons

Tuesday, June 12, 2012

Complete Tutorial: How to delete viruses and malware using command prompt

Hi fellow blogger, today i show you a simple tutorials on to delete virus and malware using CMP/Command Prompt. Just follow my simple step and instruction.

STEP 1:

  • Open CMD / Command Prompt
= Go to "Start"
= Then click "Run"
= There a small box appear then type "CMD"

 

Read More...




STEP 2:
  • Using "Attrib" in CMD.
= Type CD\  (Because this is alaways the target og Malware / Viruses). Then press "Enter".
= Then type "Attrib".

 


STEP 3:

In this example, I have two files that are considered as malware.

Note that there are two files which I outlined in red (SilentSoftech.exe and autorun.inf). Since you cannot see this file nor delete it (because the attributes that was set on these files are +s +h +r
  1. +s - meaning it is a system file (which also means that you cannot delete it just by using the delete command)
  2. +h - means it is hidden (so you cannot delete it)
  3. +r - means it is a read only file ( which also means that you cannot delete it just by using the delete command)
Now we need to set the attributes of autorun.inf to -s -h -r (so that we can manually delete it)
  1. Type attrib -s -h -r autorun.inf ( be sure to include -s -h -r because you cannot change the attributes using only -s or -h or -r alone)
  2. Type attrib again to check if your changes have been commited
  3. If the autorun.inf file has no more attributes, you can now delete it by typing del autorun.inf
  4. Since SilentSoftech.exe is a malware you can remove its attributes by doing step 1 and step 3(just change the filename) ex. attrib -s -h -r silentsoftech.exe



There you have it!!!!

NOTE: When autorun.inf keeps coming back even if you already deleted it, be sure to check your Task Manager by pressing CTRL + ALT + DELETE ( a virus is still running as a process thats why you cannot delete it. KILL the process first by selecting it and clicking End Process.
NOTE: You can also apply the attrib -s -h -r command to all the partition of your computer, drive D: drive E: drive F: (all of your drives). For example. for drive D, just type "D:" (minus the double quote) then you can see that your current drive is D.. type there the command "attrib -s -h -r *.exe" for exe files and "attrib -s -h -r *.inf" and then delete the file by "del autorun.inf".

Hope this helps.

SOURCE:

Posted by at
Labels: , , , , , , , ,

6 comments:

  1. UnknownAugust 17, 2012 at 1:15 PM

    Hey hi..i just read your article. it's really informative. i think you done great work. Thank you for sharing such a nice information.

    Michigan parks recreation

    ReplyDelete
  2. Joshua JimenezFebruary 3, 2013 at 5:54 PM

    Hi, meron ho akong Program Fi dun sa mga nakalista. Is this a virus? Program Fi lang po tlga name nya, tapos sa local disc C siya naka locate.

    ReplyDelete
  3. AnonymousAugust 24, 2013 at 2:44 PM

    Hello, anu nman po ung cause ng biglang nag aapear ung winamp sa desktop? and yung bgla may na eencode sa username at password ng khit anung sites? and any remedies po?

    ReplyDelete
  4. AnonymousOctober 29, 2013 at 7:01 PM

    It is such an amazing article n very useful about virus removal . I have also read this type of post on how do i remove a virus from my computer. This way we can remove virus from pc with formatting

    ReplyDelete
  5. Mobile App DevelopersJune 19, 2015 at 4:30 PM

    Great article, Thanks for your great information, the content is quiet interesting. I will be waiting for your next post.

    ReplyDelete

Subscribe to: Post Comments (Atom)
 

About

www.blogpingtool.com free web page counters

Add to Google Reader or Homepage

Subscribe in Bloglines

blogger widgets Free Backlinks

Pinoy Link Exchange ExactSeek: Relevant Web Search Web Directory www.hypersmash.com

Blogroll

Twitter Widgets Facebook Widgets View Khilven Laudo's profile on LinkedIn

Followers

Blogger news

Page Viewers