This tutorial i made is to enable all disabled programs cause by virus, and delete the virus also! WITH NO USING, OR DOWNLOADING A SOFTWARE, [b]First you need to enable the Task manager [/b] Open Spoiler [spoiler]To open the Task Manager, you normally would do one of the following: * Press CTRL-ALT-DEL on the keyboard * Press CTRL-SHIFT-ESC on the keyboard * Right-click on a blank area on the start bar and choose Task Manager * Click on Start, Run and type TASKMGR in the run box and press Enter Sometimes instead of Task Manager opening you’ll see the following screen. In these cases, you’ll have to follow the methods below to re-enable access to the Task Manager. [img]http://www.pchell.com/images/taskmanagerdisabled.gif[/img] First we’ll begin with the various registry modification methods for correcting this problem. Method 1 - Using the Group Policy Editor in Windows XP Professional 1. Click Start, Run, type gpedit.msc and click OK. 2. Under User Configuration, Click on the plus (+) next to Administrative Templates 3. Click on the plus (+) next tSystem, then click on Ctrl+Alt+Delete Options 4. Find Remove Task Manager in the right-hand pane and double click on it 5. Choose the option “Not Configured” and click Ok. 6. Close the Group Policy Window Method 2: Change the Task Manager Option through the Run line 1. Click on Start, Run and type the following command exactly and press Enter REG add HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System /v DisableTaskMgr /t REG_DWORD /d 0 /f Method 3: Change Task Manager through a Registry REG file 1. Click on Start, Run, and type Notepad and press Enter 2. Copy and paste the information between the dotted lines into Notepad and save it to your desktop as taskmanager.reg ———————————— Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] “DisableTaskMgr”=dword:00000000 ————————————- 3. Double click on the taskmanager.reg file to enter the information into the Windows registry Method 4: Delete the restriction in the registry manually 1. Click on Start, Run, and type REGEDIT and press Enter 2. Navigate to the following branch HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies\ System 3. In the right pane, find and delete the value named DisableTaskMgr 4. Close the registry editor[/spoiler] -------------------------------------------------------------------------------------------------- Second delete all running process in task manager [b]except the named below![/b] Default processes in Task Manager CISVC.EXE CSRSS.EXE CTFMON.EXE EXPLORER.EXE LSASS.EXE MDM.EXE MSTASK.EXE REGSVC.EXE SERVICES.EXE SMSS.EXE SPOOLSV.EXE STISVC.EXE SVCHOST.EXE SYSTEM SYSTEM IDLE PROCESS TASKMGR.EXE WINLOGON.EXE WINMGMT.EXE ------------------------------------------------------------------------------------------- Now no more virus running, you will have to know what the virus you want to delete is, first go to My Computer, (don’t double click the drives, once you double click it the virus will execute again), in My Computer, in address bar type "C:\autorun.inf" change the "C:\" if you have a partition change it accordingly, like "D:\autorun.inf" or "E:\autorun.inf" if the notepad will open, then you are infected with autorun virus, in the notepad, try to search a virus name Sample of autorun <">the [b]RavMon.exe [/b] is the virus program, most of the virus end with ".exe" & ".vbs" so now you have the virus, we will now delete it, by using batch file, open a notepad and copy this and pasted in your notepad <">CHANGE the "virusname.filename" with the actual name of virus like [b]RavMon.exe [/b] then save it to [b]"DelVirus.bat"[/b] then delete! now it's done, you must enable the Registry Editor. [b]Cannot Access Regedit, How to Fix It?[/b] Goto Start>Run> type this <">and hit enter. [b]Connot Acces Tooloption, How to fix it?[/b] copy and pasted it in your notepad <">save as "tooloption.reg" den double click to enabled again. Good Luck.

Last edited by Nehpets (2008-11-05 08:19:55)