What should I do if the Windows service under win7 system is registered by rogue software? Windows service is registered solution

Solution:
In fact, to deal with these use of rogue software, you need to delete the relevant .exe file, so that it can no longer run, or directly clear the service itself, so that the computer restarts At the time, it won't start again. For example, Hijackthis scan, in the scan log, generally listed non-Windows system services in the form of 023, as in the following paragraph: O23 - Unknown - Service: BKMARKS [provide data security protection mechanism of the transport protocol, effectively maintain data transmission Safe and complete. ] - C:/WINDOWS/SYSTEM32/RUNDLL.EXE O23 - Unknown - Service: ewido anti-spyware 4.0 guard [ewido anti-spyware 4.0 guard] - D:/Program Files/ewido anti-spyware 4.0/guard.exe O23 - Unknown - Service: KSD2Service [KSD2Service] - C:/WINDOWS/system32/SVCH0ST.exe
Delete method:
Method 1: Use sc.exe this Windows command
1, click “Start—&mdash ; run & rdquo ;, enter cmd.exe command and press enter, type sc at the open window;

2, using a solution is simple: sc delete " service name " (if there are spaces in the middle of the service , you need to add quotes before and after) as for the above: sc delete KSD2Service.
Method two: Delete the registry law
1, in the run window, enter & ldquo; regedit & rdquo; open the registry editor;

2, locate the following key: HKEY_LOCAL_MACHINE /SYSTEM /CurrentControlSet /Services The general service will display a main key here with the same name, and delete the relevant key values ​​directly.

Method three: Remove
Safe Mode 1, if the service shows rundll32.exe, and this file is located in system32 directory, you can not delete the rundll32.exe file, which is Windows system The file, then just clear the relevant service can be;
2, if a service is deleted immediately and automatically established, indicating that the process in the background is monitoring, protection, you need to kill the corresponding in the process manager Process, or press F8 after startup to delete in safe mode.
The above is the three solutions to the Windows service under the win7 system registered by the rogue software. If you encounter the same problem, please follow the above method.