Step 1.
Click Start > Run and type Regedit.
Step 2.
Follow the paths using regedit and find:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion
Run
Step 3.
In the right window, look for a registry key with a value that loads the "icqnuke.exe" file. This is the registry key that provides the ability to load the server portion of the trojan whenever the PC is started.
Step 4.
In the right window, highlight the key that loads the file and delete it (Right click and choose Delete).
Step 5.
Exit the Registry.
Step 6.
Click Start > Shutdown > "Restart in MS-DOS mode".
Step 7.
After the computer has restarted, change to the WINDOWS or WINDOWS\SYSTEM directory and delete the "icqnuke.exe" file.
Step 8.
Press CTRL-ALT-DEL and allow Windows to restart.
Congratulations, BackDoor has now been removed from your system.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment