Tuesday, September 21, 2010

Beginners Guide on How to Remove Malware Scripts and Files

Beginners Guide on How to Remove Malware Scripts and Files


IMPORTANT WARNING: Make changes in your Windows Registry only if you know exactly what you are doing. We recommend using Award Winning Registry Mechanic Software from PC Tools, for repairing all Registry Defects and problems.

The purpose of this guide is to let the users easily remove malware scripts and programs from their systems. It is useful for those users, which have not yet invested in a good quality Anti Virus Program / Firewall / Spyware on their system and have got infected with some spurious malware. This guide helps you to know the method to delete the files and kill the processes associated with a particular malware. For using this guide you should know, which malware has infected your system and what process and files are associated with that malware.

Don’t worry, we will be regularly be making you aware about these processes and files, as soon as we come across a major threat.

But be cautious: This method of removing malware is not fool proof. The best defense against any malware attack is to invest in a good quality AntiMalware like Norton, McAfee or Kasperesky.

How to Remove Malware Manually?

The process of manual removal of malware is very complex and it involves upto four steps depending upon the complexity and type of a particular malware. It is not necessary that all these steps are required to be executed for every type of malware. The steps are…

  • Kill the Malware Process
  • Delete the Registry Entries
  • Unregister harmful DLLs
  • Delete the Malware files

malware removalHow to kill the malware processes:

For it you have to know the processes associated with the malware. Search for them on the Internet, if you do not already know them. Then proceed as follows.

Press Ctrl+Shift+Esc.

This will open Your Windows Task Manager > Process Tab. See the screenshot for reference.

Here you can find all the processes currently running on your system. Select the malicious Processes and press End Process.

Save your settings.

How to delete malware Registry Entries:

IMPORTANT WARNING: Make changes in your Windows Registry only if you know exactly what you are doing. We recommend using Award Winning Registry Mechanic Software from PC Tools, for repairing all Registry Defects and problems.

Many of the malware programs try to modify the Windows registry. These malware programs cannot be removed from your system unless you delete these registry keys. Modification of the Windows Registry is a bit dangerous process, but if you are careful and know what exactly is to be done, then it is very useful.

registry editorTo delete the malware registry entries, you have to know beforehand, what are the registry entries associated with the malware. Search for them on the Internet, if you do not already know them. Then proceed as follows.

Click on Start menu > Run.

Type regedit, press ok.

Now navigate through the menu on the left pane to the desired registry entry, and delete or modify it as required.

How to Unregister harmful malware DLLs

DLL, which is an acronym for Dynamic Link Library, refers to a file type, which basically is a collection of commands and/or data which can be shared by different programs on the same platform. They contain commands and/or data that are common to a certain task.

Many of the complex malware programs use DLL files to execute certain harmful functions and required by threats to work as intended. You have to know which are the DLL files associated with the malware, unregister them and then simply delete them like ordinary files.

For this purpose, you can use the default tool regsvr32, which is part of the Windows program and can be accessed through Command Prompt.

Click on Start > Run.

Type cmd and press ok, to open the Command Prompt.

Here you type regsvr32 /u [dll_name] and press enter to unregister the DLL.

If you accidentally do something wrong, you can register it again by using regsvr32 [dll_name].

How to delete Malware Files:

Malware programs are designed to hide themselves. You have to find them to remove them. Basically there may as many as three steps to remove these files.

  • Remove the visible malware files through Windows Explorer
  • Make the hidden malware files visible and then delete them through Windows Explorer
  • Delete any remaining file through the Command Prompt.

Using Safe Mode to remove Malware

If you are not able to delete the malware files with the above given procedures, then try to restart your system in safe mode. Again try to repeat above steps.

Using KillBox:

Killbox is a third party software, which tries to remove the files effectively. If any processes are running with that file then it tries to close that process first before deleting the file. It sometimes is a very effective tool against malware processes and files. You can download it for Free and it is not required to be installed on your system.

Disclaimer: Remember, there is no fool proof method of removing these malware. The best defense against them is to install a good quality Anti Malware program like Norton, McAfee or Kasperesky. Make sure what you are doing before attempting any steps in this guide. Use this guide at your own risk.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)