How to Remove the Heuristic Virus

By Thomas King

Heuristic, also known as Heur.Invader, is a computer virus designed to change your system security settings. Once the Heuristic virus has done this, it takes advantage of your vulnerable computer to download additional viruses and gather personal information. In addition, Heuristic may disable your anti-virus program. You have an alternative way to remove Heuristic. Manual removal is an option even if you do not have access to your anti-virus program or the Internet. Note that the manual removal steps described in this article apply to Windows Vista and Windows 7.

End Processes

Step 1

Press "Ctrl" + "Shift" + "Escape" to open the Task Manager.

Step 2

Click on the "Processes" tab and select the "Show Processes From All Users" button.

Step 3

Right-click on "Student.exe" found under "Image Name." Select "End Process."

Step 4

Right-click on "ivsfzf.exe" found under "Image Name." Select "End Process."

Step 5

Close the Task Manager.

Delete Registry Entries

Step 1

Click on the "Start" menu icon. Type "regedit" into the "Search Programs and Files" box and press "Enter." The Registry Editor opens.

Step 2

Right-click on the following registry entries in the left pane of the Registry Editor and select "Delete." Note that deleting the wrong registry entry can lead to serious system-wide complications."HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINLOGON\NOTIFY\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON\NOTIFY\ntkrnl32""HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN LANSchoolTeacher""HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSCURRENTVERSIONRUN Nvidia""HKEY_LOCAL_MACHINESOFTWAREMICROSOFTWINDOWSNTCURRENTVERSIONWINLOGONNOTIFYSOFTWAREMICROSOFTWINDOWS NTCURRENTVERSIONWINLOGONNOTIFYtkrnl32"

Step 3

Close the Registry Editor.

Delete DLLs and Files

Step 1

Click on the "Start" menu. Type "cmd" into the "Search Programs and Files" box and press "Enter." The Command Prompt opens.

Step 2

Type the following commands into the Command Prompt. Press "Enter" after each command and click "Yes" if asked to confirm."regsvr32 /u ntkrnl32.dll""del Student.exe""del ivsfzf.exe""ntkrnl32.dll"

Step 3

Restart your computer.