How do I remove the west Yorkshire virus?
Posted 02 May 2012 - 07:53 PM
Posted 02 May 2012 - 07:57 PM
This is what it looks like
Posted 02 May 2012 - 11:44 PM
I expect your version will work about the same way. The main thing you need to do is correct the shell entry in the registry. Then run msconfig
instead of turning everything off:
Go to Services tab and click on the box to hide Microsoft Services then uncheck
everything that remains. Go to Startup tab and uncheck everything. OK and
I would try rebooting into Safe Mode with Networking tho with most things turned off you may be able to boot into regular mode.
If you can get it to boot then:
Download OTL from
and Save it to your desktop.
Run OTL (Vista or Win 7 => right click and Run As Administrator)
select the All option in the Extra Registry group then Run Scan.
You should get two logs. Please copy and paste both of them.
Posted 03 May 2012 - 12:07 AM
To get into Safe Mode:
Reboot and when you see the maker's logo, hear a beep or it talks about F8, start tapping the F8 key slowly. Keep tapping until the Safe Mode Menu appears and choose Safe Mode with Command Prompt (or just Command Prompt). Login with your usual login.
I'd skip the task manager and go directly to regedit. If you get the Registry Editor to open then:
HKey_Local Machine and click on the + in front of it. This should make it open up and show you its subkeys. One of which will be:
Software. Click on its + and then find:
Microsoft. Click on its + and then find:
Windows NT. Click on its + and then find:
CurrentVersion. Click on its + and then find:
Winlogon. Click on Winlogon and then look in the right pane for Shell. Right click on Shell and select Modify (or double click on it). A little box will open up which will have the path to the malware. Write that down then replace it with explorer.exe and hit OK. Close the registry.
Now try to run msconfig.
Posted 03 May 2012 - 06:01 PM
Posted 03 May 2012 - 06:22 PM
Download PC Regedit from http://www.pcdisktoo...d/PCRegedit.iso
We need to burn this as a bootable CD so the easiest way is to get free iso burner from:
You run Free Iso Burner and then point it at the PCRegdit.iso file and tell it to burn it and it should do it correctly.
Then you have to tell your PC to boot from the CD. Sometimes they have a separate boot order key like F10. Other times you have to go into the BIOS/CMOS setup to change the order.
Instructions for using this CD are at the bottom of http://www.raymond.c...ing-in-windows/
They tell you to look at the userinit key which is in the same area as the Shell key that you probably need to fix so the instructions should be good enough for you.
Posted 04 May 2012 - 06:14 AM
Posted 04 May 2012 - 08:31 AM
Press Ctrl-O (the letter O, not the number zero).
From the prompted "Open" dialog box, type:
Note: For Windows 7, it will prompt you whether you want to download and execute the file; you can press "Run" to continue.
In the command prompt displayed, type in one of the following commands, depending on your operating system:
For Windows XP:
Type cd %USERPROFILE%\Start Menu\Programs\Startup
For Windows 7:
Type cd %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
From the same command prompt, type:
Finally, reboot the machine. You can do so by using this command:
shutdown -r -t 0
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users