How to remove Windows services (Sc.exe Delete and registry Delete two methods)

First, what is Windows services

The Windows service, also known as Windows Services, is the foundation of the Windows operating system and the Windows network and is part of the core of the system and supports various operations across Windows. Services such as DNS clients, print programs, Windows Update Services, scheduled tasks, Windows Time services, alarms, and so on, are related to whether the machine works correctly. Failure to properly manage these services can affect the normal operation of the machine.
A service is first a Win32 executable, or a process that is formed by Rundll32.exe to run a. dll.
Unlike a normal application, such as opening Word, there is an interface out, but the service does not have a user interface. You cannot run the corresponding. exe program directly by double-clicking it. And how does Windows control a service?
Windows services are managed by a higher level of services.exe, which is managed by the service, which is responsible for starting, stopping, running, pausing, and so on. Our most common operation is to do this through the Windows Service MMC interface.

Second, how to remove Windows services

Now the rogue software, more and more to register themselves as a service. In the HijackThis scan log, the non-Windows system services are generally listed in 023 ways, as in the following paragraph:
O23-unknown-Service:bkmarks [provides the data protection mechanism of the transmission protocol, which effectively maintains the security and integrity of the data transmission. ]-C:/windows/system32/rundll. Exe
O23-unknown-Service:ewido Anti-spyware 4.0 guard [Ewido Anti-spyware 4.0 guard]-D:/program Files/ewido anti-spyware 4.0/ Guard.exe
O23-unknown-Service:ksd2service [Ksd2service]-C:/windows/system32/svch0st.exe

For these rogue software, it is necessary to delete the associated. exe file so that it can no longer run, or to clear the service itself, so that when the computer restarts, it will not start again.

There are two ways to delete:

Method One: Use sc.exe this Windows command
Start-run--cmd.exe and enter SC to see it. The way to use it is simple:
SC Delete "service name" (if there is a space in the middle of the service name, it needs to be quoted before and after)
As for the above: SC delete ksd2service

Method Two: Direct registry editing (not recommended)
Open Registry Editor and locate the following key value:
Hkey_local_machine/system/currentcontrolset/services General Service will show a key in the same name here, directly delete the relevant keys can be.

Iii. Special Circumstances

1, if the service display is rundll32.exe, and this file is located in the System32 directory, then you can not delete this rundll32.exe file, it is the Windows system files. Then just clear the relevant services.

2, if a service deleted immediately and automatically established, indicating that there is a process in the background monitoring, protection. You need to kill the corresponding process in the Process Manager first, or press F8 after startup to remove it in safe mode.

Iv. Other references

Remove the rogue software and delete files, you can also refer to the site below three articles:
[Big discovery] Stubborn files remove the ultimate weapon "
"HijackThis Browser hijacking log Fine solution"
"The first weapon to clear rogue software" (IceSword)

http://blog.csdn.net/jiangxinyu/article/details/5380568

How to remove Windows services (Sc.exe Delete and registry Delete two methods)