Tips on using safe mode to kill malware.
Straight_Man
Geeky, in my own wayNaples, FL Icrontian
When malware is running, and is registered as a system process, XP will keep you from deleting it in many cases. IF it is not running, you can stop it from activating by deleting in safe mode without networking in XP, or just safe mode if that is your only choice while simultaneously being able to kill it easier simply because it cannot run right in safe mode-- in safe mode, what makes the thing a system process is many times nto loaded at all, that is both why you cannot get to web and why it is easier to kill lots of malware.
Since the malware then is not running due to how safe mode works and what Widnwos does not run while in in safe mode, it is faster to remove rather than fight widnwos' built-in system process protection adn try to kill while it is running and possibly putting itself back because the web link and networking are working. by being in safe mode, you can do things that you cannot do in normal mode as most malware uses the web to infect and reinfect as you fight to kill it in many cases.
Killing is two-step process, to totally kill and not damage machine. First, you deactivate it by getting the registry keys it uses to activate and get Windows to protect it DELETED, and then ebcasue it will no longer be protected as much when not running, you can delete the files themselves easier.
But, in safe mode you cannot get on web to read the instructions again. So, while on web, print or write down the exact directions, you will need that info for two things:
First step , to know what registry keys must go adn to get them deleted right-- to deactivate malware by so doing, second to know where to find files and delete them after registry keys are deleted and computer has been restarted just to make sure those keys are not active.
Most computer users that come to us have multiple things of malware kind going on at once, there is an underground economy going that feeds on ad clicks and on info on computers. So, one .biz that is illegitimate in the sense of hijacking browsers, is likely to get its info from other such places and in some cases to make money by advertising them. If teh owner of that "bad" to user's biz were out of business due to no incoming money, guess what??? one less site that feeds on info qwe want to protect as private property. If we help kill off the malware, guess what??? we all benefit by depriving the owner of bad businesses from gettign revenue. If we teach how to kill that stuff, we have a two-edged sword in place that will swing both ways.
There are good .biz sites, but .biz sites are always there to break even or make money for the site owner. I'll do a few focused things, they can be stickied if mods and admins want.
John.
Since the malware then is not running due to how safe mode works and what Widnwos does not run while in in safe mode, it is faster to remove rather than fight widnwos' built-in system process protection adn try to kill while it is running and possibly putting itself back because the web link and networking are working. by being in safe mode, you can do things that you cannot do in normal mode as most malware uses the web to infect and reinfect as you fight to kill it in many cases.
Killing is two-step process, to totally kill and not damage machine. First, you deactivate it by getting the registry keys it uses to activate and get Windows to protect it DELETED, and then ebcasue it will no longer be protected as much when not running, you can delete the files themselves easier.
But, in safe mode you cannot get on web to read the instructions again. So, while on web, print or write down the exact directions, you will need that info for two things:
First step , to know what registry keys must go adn to get them deleted right-- to deactivate malware by so doing, second to know where to find files and delete them after registry keys are deleted and computer has been restarted just to make sure those keys are not active.
Most computer users that come to us have multiple things of malware kind going on at once, there is an underground economy going that feeds on ad clicks and on info on computers. So, one .biz that is illegitimate in the sense of hijacking browsers, is likely to get its info from other such places and in some cases to make money by advertising them. If teh owner of that "bad" to user's biz were out of business due to no incoming money, guess what??? one less site that feeds on info qwe want to protect as private property. If we help kill off the malware, guess what??? we all benefit by depriving the owner of bad businesses from gettign revenue. If we teach how to kill that stuff, we have a two-edged sword in place that will swing both ways.
There are good .biz sites, but .biz sites are always there to break even or make money for the site owner. I'll do a few focused things, they can be stickied if mods and admins want.
John.
0
This discussion has been closed.