Basic Virus Deletion Process


Basic Virus Deletion Process

March 9, 2012

By: Rutledge Daugette


Standard viruses are generally simple to remove, if you follow this process every time. I developed this virus deletion process while working on a large number of infected systems.


Step 1: End the Running Virus Process

In most cases, a window will be popped up that won’t allow you to do anything. In this case, you need to end the running process, which is generally a random Three Letter EXE file like <fml.exe>. Open up task manager and end this process. If this does not work, sometimes you may need to run RKill instead

Step 2: Remove the Virus EXE File


There will always be virus files installed on the user profile. Simply, they are generally under these paths:

XP: c:Documents and Settings%Username%LocalSettings(Hidden)<rand3.exe>


Vista: c:Users%Username%App Data(Hidden)Local<rand3.exe>

Windows 7: c:Users%Username%App Data(Hidden)Local<rand3.exe>


Browse to these and delete the .exe and any others that are there, as well as anything with random numbers and letters (Files, not folders)


Step 3: Run CCleaner

Install CCleaner and run on the PC. Follow These Steps:

  1. “Run Cleaner”, followed by clicking “OK” on the popup
  2. Click Registry on the left
  3. “Scan for Issues”, followed by “No” on the pop up
  4. When that is finished, click “Fix selected issues” and fix them
Step 4: Run Rkill

Run Rkill on the PC, and when finished close the windows it creates.

Step 5: Run SuperantiSpyware

Install SuperantiSpyware(Free Version)

Run a Full Scan with Rescue (Checkbox)

Choose high on boost, to increase scanning speed.

Remove all threats, and reboot. (Do this twice)

After this, the virus should be gone and there should be no further pop ups.