How do you remove a virus called HTML.Redlof?


hi there just like to ask i had this virus which was called HTML.Redlof

I used norton to quarentine the files and delete them away

but after that happen, each time i shut down my computer lots of illegal operation messages come out and not only that it takes quite awhile before my computer actually shuts off.

i have tried reinstalling win98 SE as mine is a 98SE.


This question was answered on August 24, 2003. Much of the information contained herein may have changed since posting.

Try this..

To remove this virus from the system, follow the procedure given below:

1 Restart the system in safe mode

2 Scan the system using your Nortons Anti-Virus

3 Delete all the files reported as infected

4 While scanning, a file Kernel.dll will be detected in C:\Windows You may delete this file as it is

only a virus file though it sounds like a system file(In Windows NT / 2000 / XP, the Kernel.dll is

detected as Kernel32.dll in WINNT/System directory)

5 Open the Windows Registry Editor (Start>Run>regedit)

6 Navigate to HKEY_LOCAL_MACHINE\Software\Calsses\Dllfile

7 Delete all subdirectories (ScriptEngine, ScriptingHostEncode, Shell, ShellEx) other than

Defaulticon under Dllfile

8 Now go to HKEY_LOCAL_MACHINE\Software\Microsoft\Out Express

9 On the right hand side, delete the entry "Degree" under the Default column, if found

10 Now go to KEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run

11 On the right hand side, delete the entry "Kernel32" under the Default column, if found

12 Close the Windows Registry Editor

13 Click on Start and select Find, Files / Folders

14 Search all local drives on your hard drive for Folder.htt and Desktop.ini

15 Delete all the files found

16 Empty the Recycle Bin

17 Restart the system

Need Help with this Issue?

We help people with technology! It's what we do.
Schedule an Appointment with a location for help!


Posted by Student of Katharine Gibbs School - New York on August 24, 2003