Using safe mode
Most of malicious processes are inactive when PC operates in safe mode with networking. To reach safe mode with networking, do following:
Reboot
Press F8 early on (you can press F8 couple times)
Choose Safe mode with networking (preferably) or safe mode from menu
On success you should not see any alerts that bother you under normal mode
Killing processes using task manager
The benefit of using task manager is that you do not need to download anything. Task manager is present in all windows computers, though it might be disabled and provides little control
Open task manager by either pressing ctrl+shift+esc or pressing ctrl+alt+del and choosing from menu. For best results, try doing so just after windows login, while other processes are still loading
If it fails, go to go to Start->Run and type taskmgr
If this fails, go to C:\Windows\System32, copy taskmgr and rename it to 1.scr , 1.com or other random name. Launch that file. You can try right-clicking on it and choosing Run as administrator on Windows Vista or Windows 7
Choose process TAB, choose to see processes of all users (optional)
Choose malicious process from the list, right click on it
Press End process
On successful stop of malicious processes alerts should disappear and you can continue to next steps of malware removal.
Killing processes using process explorer
Process explorer provides more information on how the processes were launched. Also it is not blocked together with Task Manager. If it is blocked from execution, try saving it as 1.scr, 1.com or iexplore.exe before execution.
Download Process explorer from here : http://download.sysinternals.com/Files/ProcessExplorer.zip and unzip.
Launch process explorer (procexp.exe )
Select malicious process and press DEL.
On successful stop of malicious processes alerts should disappear and you can continue to next steps of malware removal.
0 comments:
Post a Comment