Windows Defender can be started in Windows7 from Start menu. Just type windows defender in the search box and you will get the menu link.
Windows Defender is integrated in Windows7. It has become an essential software for windows. It combines an antispyware, an intrusion detection and prevention utility. Unfortunately Microsot has removed the Software Explorer from Windows Defender. But now they have improved the Task Manager by adding a Description column, where you can see the program name of a running process. The task manager also displays currently running Services. Whereas you should still rely on msconfig command to disable a program from startup.
In its present form Microsoft has made Windows Defender a just malware scanning/ removing utility. It is good in a way. You can initiate a Quick Scan/ Full Scan or just scan the files/ folders you want. You can schedule the program to run at a particular time everyday, and also select the default actions to be taken if a suspicious file is found. Updates are automatic.
In this article I will explain in brief how to make use of Sysinterna'l powerful utility called Autoruns. Sysinternal's is now owned by Microsoft. Since Microsoft is still allowing the free download and use Sysinternal's tools, you can download them from this link.
Autoruns is a small utility of about 580 kb zip file. You need to uncompress it and save it on your computer. You can also find a brief introductiona and instructions of usage of this tool on the above mentioned site.
" This utility, which has the most comprehensive knowledge of auto-starting locations of any startup monitor, shows you what programs are configured to run during system bootup or login, and shows you the entries in the order Windows processes them. These programs include ones in your startup folder, Run, RunOnce, and other Registry keys. You can configure Autoruns to show other locations, including Explorer shell extensions, toolbars, browser helper objects, Winlogon notifications, auto-start services, and much more. Autoruns goes way beyond the MSConfig utility bundled with Windows Me and XP. "
How to Use Autoruns Tool to remove malicious windows Services
If you download and run Autoruns tool, you will see a window with several tabs in it. Locate and select the services tab in it. That will list all the currently registered services in it. It has columns
Autorun Entry / Description / Publisher / Image Path
This is a little different than the service tab in System configuration Utility.
If you Click on Start > Run, a box opens, In vista it is already open. You can type msconfig and press Enter. That will open the System Configuration utility. Select the Services Tab in it. You will see all the windows services in it. You have an option to hide all microsoft services.
It has columns
Service / Essential / Manufacturer / Status
The status is either Running or Stopped.
The drawback in System configuration utility is that you can not see the Image path as you can see in the Sysinternal's Autoruns Tool. This helps you to identify the location of the file on the hard disk, that belongs to a particular service. So making use of both these tools we can pinpoint a malicious windows service added by a virus and remove it.
You can Uncheck the box in front of the name of the service in the system configuration utility, if the service is running, then press Apply/ Ok/ Close to restart the computer. That will result in stopping the service. But if the service is already stopped, even then you need to delete the file associated with the malicious service. This is where you can use the Autoruns Tool. Locate and note down the file and its path. You can expand the columns in Autoruns Tool so as to read the complete text inside the columns. You can make the tool to expand full screen. So once you see that the service is stopped, and you have the file name and its location on the hard disk, you can simply delete that file. This way you can get rid of a virus.
- Enable Run Command Task Manager and Registry Tools in Vista
- Use Windows Defender in Vista
- Use Windows Defender in XP
- Boot in safe mode in Vista
- Boot in safe mode in xp
- Edit Registry in XP
- Edit Registry in Vista
- Free tools and online scanners for Vista
- Free Removal Tools and Online Scanners for XP
- Enable To View Hidden Files in Vista
Page 5 of 14«StartPrev12345678910NextEnd»