- 1). Hold down the Windows key and press "R" to open the "Run" box.
- 2). Type "regedit" into the Run box and click "OK." The Registry Editor opens.
- 3). Locate the following registry values in the left pane of the Registry Editor and delete them. To delete a registry value, right-click on it and select "Delete."
"HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\*WinLogon"
"HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\*[filename]"
"HKEY_CLASSES_ROOT\CLSID\{2316230A-C89C-4BCC-95C2-66659AC7A775}"
"HKEY_CLASSES_ROOT\CLSID\{8109AF33-6949-4833-8881-43DCC232B7B2}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ATLEvents.ATLEvents.1"
"HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02F96FB7-8AF6-439B-B7BA-2F952F9E4800}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2316230A-C89C-4BCC-95C2-66659AC7A775}"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8109AF33-6949-4833-8881-43DCC232B7B2}"
"HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Active State" - 1). Hold down the Windows key and press "R" to open the Run box.
- 2). Type "cmd" into the Run box and click "OK" to open the "Command Prompt."
- 3). Type the following into the command prompt, being sure to press "Enter" after each line:
"regsvr32 /u vzbb.dll"
"regsvr32 /u vturr.dll" - 1). Click on the "Start" menu.
- 2). Click on the "Search Programs and Files" box.
- 3). Search for and delete the following files.
"vzbb.dll"
"vturr.dll"
"dszigqd.dll"
Delete Infected Registry Values
Unregister Infected DLL Files
Delete Infected Files
Source...