| QUESTIONS | CATEGORIES | BLOG | PROFILE | Login | Register |
ASK QUESTION
ComputersSecurity and hacking
ANSWERS: 1
  • Official Know-It-All
    Rootkit infections can wreak havoc on your computer, rendering it nearly inoperable. The biggest trouble with rootkits is their sophistication and ability to adapt in a way that makes them virtually undetectable by scanning software. Oftentimes, the best strategy for removing a rootkit is to manually locate and destroy it.

    Identify the Rootkit

    The most important step in defeating a rootkit is properly identifying it. You can find rootkits by using a combination of malware scanners, Sysinternals Process Explorer and a little bit of research. Initially use just the malware scanner to find potential rootkit infections. If it is a common bug, the scanner should locate it and provide advice on eliminating it. If nothing is showing up, though, it will be necessary to closely review your running process using Sysinternals Process Explorer. Anything that looks suspicious should be researched online. Once you have identified the issue, you can begin the process of removing the rootkit.

    Remove the Rootkit

    Identifying the rootkit is usually the easy part. The design of many rootkits is such that deleting the offending files or removing the specific registry items does not solve the problem or is altogether impossible. One way to get around restrictions that rootkits impose is to make changes to your computer in Safe Mode. This will elevate your privileges while also preventing the rootkit from initiating. Ultimately, though, you will likely be required to address the rootkit from the command prompt, as this allows you maximum flexibility in removing it and making changes to your system. In researching rootkits online, be sure to carefully note how to go about removing the rootkit.

    Reinstall Windows

    If a rootkit infection is showing itself to be nearly impossible to remove, the best course of action may be a complete re-installation of Windows. This method may seem extreme, but some rootkits make the computer so unusable and are so difficult to remove that re-installation becomes the only option. Be sure to back up your data before using this solution.

    Source:

    Manually Detecting Rootkits

    How to Manually Remove Rootkits

    Rootkits: Is Removing Them Even Possible?

    Resource:

    Process Explorer

    No comments

RELATED QUESTIONS

ABOUT ANSWERBAG

Answerbag wants to provide a service to people looking for answers and a good conversation. Ask away and we will do our best to answer or find someone who can.We try to vet our answers to get you the most acurate answers.

Copyright 2023, Wired Ivy, LLC

Answerbag | Terms of Service | Privacy Policy