Identifying a Virus
To identify a virus we have to understand the computer itself. The viruses are mainly of different purposes some may be to slow your computer down, some may be to disable some of your programs. Whatever the virus is this thing would we running in your computer if you are affected by it.
So, we need to look into the processes that are running in your computer. For that take the task manager(Those who know this can skip these two steps).
- Press Ctrl + alt + del
- If it is Windows 7 - select Task manager (if not windows 7 it will automatically open up)
select process and you are going to see the process running on your computer. To view all secret process click on show all process from all users. Now you will see all the programs/process running in your computer including 3rd party progs, virus etc. If you have a virus among them for the experienced people it is easy to identify. For the others look the process name, sometimes the process name will be in capitol letters if so it is some kind of virus for sure. Here i provide some of the normal windows running process .
alg.exe, audiodg.exe, csrss.exe, ctfmon.exe, desktop.ini ,dllhost.exe ,dwm.exe, explorer.exe, hiberfil.sys, internat.exe, kernel32.dll, logonui.exe, lsass.exe, lsm.exe ,mdm.exe ,mobsync.exe ,msmsgs.exe, mssearch.exe, mstask.exe ,pagefile.sys ,penservice.exe ,regsvc.exe ,rundll32.exe ,sdclt.exe, services.exe, slsvc.exe, slwinact.exe ,smss.exe, spoolsv.exe ,svchost.exe ,system taskeng.exe, thumbs.db ,wercon.exe, winlogon.exe ,winmgmt.exe ,wmiexe.exe ,wmiprvse.exe, wpcumi.exe ,wscntfy.exe, wuauclt.exe, wudfhost.exe
So after these we may have process of many third party progs like vlc, itunes, gtalk etc..... Do take care about these too. If some unidentified prog is taking lots of memory and cpu for a very long time then it can be also a virus. The next step that you should do is to right click the process that you think is a virus and click open file location. And the file location comes, you can check whether it is valid or some kind of bug thing. You have to remember these location.If it is valid that it is a bug follow next step.
Destroying a Virus
Friends we can use different ways to destroy a virus, but a am using a very different way and i recommend this. For this you must have a linux booting CD. So after booting go to the file location and delete the file that you think is a virus. We are using this technique as we are now using linux base and those virus won't work here. Also you can edit those virus here and save it(like notepad)..... abut when we bootup back in windows the process won't work there as we have edited it. Tats it guys.......... If you have doubt pls post it as comment.......
Tags:- Windows virus, virus remove, virus, windows 7 virus, remove windows virus, destroy virus, linux booting
No comments:
Post a Comment