Saturday, 26 November 2016

What is Resident virus ? and How to remove it ?

Viruses are a tremendous threat to anyone with a connection to the internet.  These nasty programs typically install and execute themselves without the victim's knowledge.  The impact of a virus ranges widely from slowing down the performance of your computer to completely erasing all of your important files.  In most cases, it will distribute itself to other machines you communicate with, giving it the ability to cripple an entire network.  Regardless of how severe the consequence, a virus is something you do not want on your computer.



What is a Resident Virus? 

A resident virus is one of the most common types of computer infections.  It functions by installing malicious code into the memory of your computer, infecting current programs and any others you may install in the future.  In order to achieve this, the resident virus needs to find a method to allocate memory for itself, meaning it must find somewhere to hide.  Additionally, it must establish a process that activates the resident code to begin infecting other files.

A resident virus may use a number of different techniques to spread its infection.  One of the most overlooked methods involves the TSR (Terminate-Stay-Resident) interrupt function.  While this method is the easiest to invoke infection, it is also easily detected by a virus scanner.  A more desired technique involves the manipulation of MBCs (memory control blocks).  Lastly, a virus needs to attach itself to specific interrupts in order to launch the resident code.  For instance, if a virus is programmed to activate each time a program is run, it must be hooked to interrupt functions designated for loading and executing that particular application


Methods of Detection

In many instances, a resident virus can be detected by the average computer user. It usually slow down your computer's performance .


How to remove a resident virus manually?

To know which virus is being problematic, look up on internet for those specific error messages you are receiving. Get the error code or the virus’s name by searching through search engines and note down the name of that particular virus. Now you will know what you should find in Window’s registry.

Keep in mind that manual procedure can only be followed if you know exactly which virus has been affecting your system. Manual procedure usually involves editing Windows registry. So, be sure you do not mess up with Windows registry as any wrong edits would have serious consequences for your computer. If you are unfamiliar with how windows registry works or just got to know about it when you read in this article, then be more careful to edit. Follow the steps below:

  1. Press “Ctrl+Alt+Del” and click “start task manager.” Go to the tab “processes” and find any suspicious viruses named resident virus or something like this. Also find and stop those running exe files you don’t know of. Keep in mind that exe file may not be a virus. So, be 100% sure before clicking “end process.”

  2. Press start+R key together on keyboard. On the search field, type “regedit.” Make sure to click yes when prompted for permission. Windows registry will open.

  3. Expand “HKEY_LOCAL_MACHINE” and press “Ctrl+F” to open a dialog box. Type the name of the virus in the “find what” field and check the first three boxes you can see below. Click “find next” and wait for Windows to complete the search.

  4. Delete the suspected files by right-clicking on each one of them.

This will hopefully solve the problem

No comments:

Post a Comment