Now the next step is to look at some simple tools needed for successful removal of virus.
1. Windows command processor:
This is commonly known as cmd. It is a dos shell interference in windows which is a very powerful interference. You can do anything with this small program. If you want to look at the different commands available in dos type help in cmd and you will be presented with a list of commands. Then if you want to look at a specific command type the name of the command followed by /?
For eg. to look up for attrib command type attrib /? And you will be shown a list of available commands.
Alternatively if you want to look at the web check out the Microsoft MSDN site here as it contains some more good commands as well.
For list of commands refer here http://technet.microsoft.com/en-au/library/bb490890.aspx
If you are having a problem like command not found click here.
2. Windows task manager:
Now you will be certainly aware of this small app. It is used to check out the current process running + to end certain processes. There are also some other functions. It will be used to check for certain type of viruses and end there key processes. This is then followed by deleting the corresponding file associated with the virus.
If virus has disabled ur command prompt look here on hoe to enable it.
3. Windows registry:
You must be knowing the function of registry. It is the brain of computers and the most powerful component of windows. Type regedit.exe at run prompt and you will be presented with window registry. Now registry is a very complex structure and to explain it’s various functions a whole lots of books has been written. We will use registry here only to delete the registry keys that certain virus write for their successful operation
If virus has disable your registry the look here on how to enable it.
4. Windows group policy editor
Now this is a bit like registry but is used to control how a program acts to a particular user. We use this small app in windows to basically restore accesses to task manager and registry.
The command is gpedit.msc
If you are having problems like gpedit missing or some loading problem refer here for solutions.
5. Process explorer
This component is not shipped with the original windows installation but you have to download it separately from the Microsoft site.
Download it from here.
This APP helps if the virus is a severe one and by and means accesses can’t be given to the task manager or registry. Sometimes it happens that you can’t restore access to cmd or and other app.
To do this just run process explorer and look for malicious process and end task them.
So when you have taken a look at these small programs and played with some of them we are no ready to play with them.
No comments:
Post a Comment