|
Backdoor.Bebshell removal procedures requires technical know-how on
computer troubleshooting. It is better to consult your LAN Administrator
or Technical Persons to avoid additional damage on your computer if
modifications on Services and Registry have to be done.
MANUAL REMOVAL:
1. Disable System Restore (Windows Me/XP).
[how to]
2. Update the virus definitions.
3. Run a full system scan and delete all the files detected.
4. Delete any values added to the registry.
[how
to edit registry]
Navigate to the subkey and delete
value:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Value: "WebShell" = "[RANDOM CLSID]"
Navigate to the subkey and delete
value:
HKEY_CLASSES_ROOT\CLSID\[RANDOM]\InProcServer32
Value: "(Default)" = "%System%\webshell.dll"
Navigate to the subkey and delete
value:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer
Value: "InstallerParameters"
5.
Exit registry editor and restart the computer.
***If it makes changes to Windows
registry that may prevent you from running executable files. A tool to
reset registry values to the default value is available for download.
Click Here.
6. In order to make sure that Backdoor.Bebshell is
completely eliminated from your computer, carry out a full scan of your
computer using
AntiVirus and
Antispyware Software. Another way to delete the virus using various
Antivirus Program without the need to install can be done with
Online Virus
Scanner.
Click here to
proceed 
Download and run any of these
Anti-Spyware:
Spy Sweeper
Spyware Doctor
Pest Patrol
Spy Hunter
|
