Saturday, February 21, 2015

How to block or prevent malware from running

Simple solutions for blocking malwares in Windows


I've been talking about manual malware removal in most of my blog, now we talk about prevention.  As the saying goes, "a byte of prevention better than a megabyte of cure."  This technique is not limited to blocking wscript.exe, which we will be discussing later, but to any application as long as you know the file name.  I've been using this procedure way back in 2009 to remove any unknown malware.

For starters, we use what's built in with Windows (I'll discuss 3rd party apps later) using Group Po;icy Editor, some registry tweaks and using a small VBS file to terminate all running scripts a few seconds after Windows startup.

I.  Group Policy Editor

  • Launch gpedit.msc
  • Go to User Configuration | Administrative Templates | System and double click on Don't run selected Windows applications




  •  Enable and click on Show... button

  • Click Add...



  • Type the filename of the application you want to block, wscript.exe in our example and click OK


  • Wscript.exe is now added to our list.  Click OK



  • Click OK


  • Exit gpedit.msc
Now let's test if our restriction works by running a vbs file.


 That's is. Now you can easily remove any worm in your system by doing a full scan with an updated antivirus.

How to block or prevent malware from running Part 2

Please visit my blog on manual malware removal

Related posts:

How to delete startup entries 
How to terminate a process
 

All my tutorials are FREE.  If you find this tutorial useful, please comment or share.  You can also help fund my continued work by making a donation.  Thank you and GOD bless!



To GOD be the glory!

arnaldo.austria@gmail.com
https://www.facebook.com/groups/pinoytechrambo

All content ("Information") contained in this report is the copyrighted work of WinXPert: Virus and Malware Removal.

The Information is provided on an "as is" basis. WinXPert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, WinXPert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Copyright © 2015 WinXPert. All rights reserved. All other trademarks are the sole property of their respective owners.

Posted by at
Labels: , , , , , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)