http://blog.csdn.net/pipisorry/article/details/41258577

How to manually remove an infected file from your computer

In order to manually remove an infected item from your computer you need to perform the following steps:

1. Restart the computer in Safe Mode. You can do that, by following the steps in our article, here.

2. Display hidden objects in Windows; information on how to display the hidden object can be found here.

3. Locate and delete (right click on the file > delete) the infected file. In our example the infected file is:

C:\\test\\eicar.com.txt

4. After you do this, you can restart the computer in Normal Mode.

Please run a Bitdefender System Scan to be sure the computer is clean.

 Important; We recommend manually deleting an infected file only if you are sure the file isn't an important operating system file. Deleting
a system file may result in the malfunction of your operating system. If you are not sure about the file, please contact the Customer Care Department.

Most common types of files you could encounter and can be safely deleted:
 
I.  Temporary Files
The Temporary files are usually recognized as follows:
  • .tmp files found on C:\\, C:\\Windows, C:\\Windows\\temp, etc.
  • files found in the locations:
               C:\\Windows\\Temp
 
               C:\\Documents and Settings\\Local Settings\\Temp(for Windows XP)
 
               C:\\Users\\AppData\\Local\\Temp(for Windows Vista/7)
 
Note: The system drives where the primary boot volume and OS are. So if you install it to the default it will be C:\\ drive; else please modify the paths accordingly.
 
For more details and step by step instructions please check the KB article How to clean infected Temporary Files.
 
II.  Temporary Internet Files
A temporary Internet file is a file that is located on your hard drive that a browser uses to store Web site data for every Web page or URL address that you visit. When the Web server sends the Web page files to the browser, they are stored in a file so
that the next time you visit the same Web site the browser takes the data from the temporary Internet file. Loading the Web site in this way from a temporary Internet file is called caching.
 
The Temporary Internet Files can be found in different locations depending on the internet browser:
 
For Internet Explorer: the folder is …user’s profile...\\Temporary Internet Files
For Mozilla Firefox: ….user’s profile…\\Mozilla\\Firefox\\Profiles\\xxxxxx.default\\cache
Very similar for other browsers:
For Google Chrome: ….user’s profile…\\Google\\Chrome\\User Data\\Default\\Cache
For Safari: ….user’s profile…\\Apple Computer\\Safari\\cache.db
For Opera: ….user’s profile…\\Opera\\Opera\\cache
 
For more details about the exact locations and how to delete temporary internet files check this this article.
 
 
III. Files located in System Volume Information
Check this KB article to learn how to clean system restore points from System Volume Information
 
IV. Email archives which cannot be repacked by Bitdefender
For more details and how to clean them please check thisarticle.
 
V. For files located on optical devicessuch as CDs, DVDs, Blue-Ray Discs
Unfortunately, these files cannot be cleaned since modify/delete actions are not permitted on this kind of storage devices. You can rest assured that, if you still want to use the respective device, Bitdefender On-Access Scanning will protect your PC from
any attack. However, we recommend you to take safety measures or not using the device at all on computers with no up to date security solution installed.
 
VI. For files located on network storages, NAS,  network shares, mapped network drives, etc.
There are several reasons for Bitdefender not being able to clean the respective files such as: you only have read permissions on the respective network share/storage, therefore no actions can be taken due to limited privileges or the network share has
a different operating system not supported by your Bitdefender virus engines. You can rest assured that, if you still want to access this share, Bitdefender On-Access Scanning will protect your PC from any attack.
 
VII. For tmp.ebd files
In order to remove the infected objects from your computer you need to reset the Windows Update and Windows Search services by following these steps:
  - Temporarily disable the Bitdefender On-Access Scanning from Bitdefender > Settings > Antivirus > Shield tab > use the ON/OFF switch for On-Access Scanning
  - Go to Start > run… (for Windows XP) or Start > click on the Search box (for Windows Vista/7), type services.msc and hit Enter;
  - Locate the Windows Update service, right click on the entry and choose Restart from the dropdown menu;
  - Locate the Windows Search service and restart it as well;
  - Reboot the PC and check if the issue reoccurs.

from:http://blog.csdn.net/pipisorry/article/details/41258577

ref:http://www.bitdefender.com/support/how-to-manually-remove-an-infected-file-from-your-computer-1312.html

How to manually remove an infected file from your computer的更多相关文章

  1. Clouder Manager安装时出现please remove the following file: /etc/cloudera-scm-server/db.properties问题解决(图文详解)

    问题详情 bigdata@ubuntucmbigdata1:/opt/softwares/cm-$ sudo ./cloudera-manager-installer.bin This install ...

  2. 【翻译自mos文章】 在错误的从os级别remove掉 trace file 之后,怎么找到该trace file的内容?

    在错误的从os级别remove掉 trace file 之后,怎么找到该trace file的内容? 參考原文: How to Find the Content of Trace File Gener ...

  3. rm: cannot remove `xxx': Read-only file system

    linux 中出现 Read-only file system - Aidon博客 - CSDN博客 https://blog.csdn.net/u010839779/article/details/ ...

  4. GIT使用[git remove untracked working file]

    使用GIT进行merge的时候, git merge --no-ff master 如果merge之后出现问题, 想进行回退, 可以使用 git reset --hard HEAD 来回退到最新的版本 ...

  5. 『奇葩问题集锦』Malformed lock file found: /var/cache/dnf/metadata_lock.pid.

    Malformed lock file found: /var/cache/dnf/metadata_lock.pid.Ensure no other dnf process is running a ...

  6. Recovering InnoDB table from an .ibd file.

    Recovering an InnoDB table from only an .ibd file. Sometime you may need to recover a table when all ...

  7. How to Deinstall Oracle Clusterware Home Manually

    ###sample 0:安装GI 和DB soft 都成功,如何回退DB soft [opdb@pdbdb01:/db/db/app/db/product/11204/deinstall]$ ./de ...

  8. [转]MySQL: Starting MySQL….. ERROR! The server quit without updating PID file

    转自: http://icesquare.com/wordpress/mysql-starting-mysql-error-the-server-quit-without-updating-pid-f ...

  9. [Storm] java.io.FileNotFoundException: File '../stormconf.ser' does not exist

    This bug will kill supervisors Affects Version/s: 0.9.2-incubating, 0.9.3, 0.9.4 Fix Version/s: 0.10 ...

随机推荐

  1. 二叉树学习三:AVL树

    1.AVL树: 1)其左子树(TL)与右子树(TR)是AVL树: 2)|HL-HR|<=1,其中HL和HR是TL和TR的高度: 3)高度为h的AVL树,结点数2*h-1. AVL树查找,插入,删 ...

  2. JavaScript处理异步请求的几种方式(取异步函数返回值)

    JavaScript处理异步的几种方式 Javascript语言的执行环境是"单线程"(single thread,就是指一次只能完成一件任务.如果有多个任务,就必须排队,前面一个 ...

  3. ASP.NET Core 2.2 基础知识(四) URL重写中间件

    说到URL重写就不得不提URL重定向. URL重定向 URL重定向是客户端操作,指示客户端访问另一个地址的资源.这需要往返服务器,并且当客户端对资源发出请求时,返回客户端的重定向URL会出现在浏览器的 ...

  4. inline select

  5. java.sql.SQLException: Access denied for user ''@'localhost' (using password: No)

    出错原因: 连接数据库是忘记配username 和 password 了 刚在学hiberbate4,把持久层从纯粹的jdbc改为hiberbate 出现的错误.(原来的是直接读取properties ...

  6. Codeforces 716 E Digit Tree

    E. Digit Tree time limit per test 3 seconds memory limit per test 256 megabytes input standard input ...

  7. [CF494D]Birthday

    题意:给一棵带边权的树,定义如下的一些东西 $S(x)$表示以$x$为根的子树中的节点组成的集合 $d(u,v)$表示$u$和$v$之间的距离 $f(u,v)\sum\limits_{x\in S(v ...

  8. Scala实战高手****第1课:大数据时代的“黄金”语言Scala

    共计28课,每节课程在1个小时左右. 每天至少2个课程.预计在11.30号完成. ——————————————————

  9. java前后端加密(转载)

    最近做一个项目的安全渗透测评,测评人员发来一份测试报告,报告明确提出不允许明文参数传输,因为数据在传输的过程中可能被拦截,被监听,所以在传输数据的时候使用数据的原始内容进行传输的话,安全隐患是非常大的 ...

  10. iOS9 HTTPS解决办法

    iOS9引入了新特性App Transport Security (ATS).详情:App Transport Security (ATS) 新特性要求App内访问的网络必须使用HTTPS协议.但是现 ...