RECOMMENDED

FREE Spyware Scan with SpyHunter
SpyHunter's spyware scanner last
updated on 11/28/2008.
  

Top Parasite Threats

  

Recent Parasite Threats

  

Resources and Tools

  

Recent Articles

  

Subscribe To

  • AddThis Social Bookmark Button
  • AddThis Feed Button
  
msconfig.com Removal ToolHome msconfig.com Removal ToolFile Extensions msconfig.com Removal Tool"Remove msconfig.com"

msconfig.com

line

The msconfig.com file is installed and used by Wowcraft.b and Wowcraft.c.
(click on the name(s) to read more about the infection).

msconfig.com Automatic Detection

WARNING!!! msconfig.com file is related to spyware. Your computer's security and privacy may be at risk. We recommend you run a scan of your computer to detect any spyware threats.

Download SpyHunter's Spyware Scanner Download SpyHunter's Spyware Scanner.
Automatically detect msconfig.com.

SpyHunter's free version is only for spyware detection. If SpyHunter's spyware scanner detects msconfig.com on your PC, you have the option of purchasing SpyHunter's spyware removal tool to remove msconfig.com and other malicious files.

msconfig.com Manual Detection

Below are manual removal instructions for msconfig.com so you can remove the unwanted file from your PC. Always be sure to back up your PC before you modify anything.

Note: This manual removal process may be difficult and you run the risk of destroying your computer. We recommend that you use the SpyHunter's spyware detection tool to check for msconfig.com.

Step 1: Use Windows File Search Tool to Find msconfig.com Path


  1. Go to Start > Search > All Files or Folders.
  2. In the "All or part of the the file name" section, type in "msconfig.com" file name(s).
  3. To get better results, select "Look in: Local Hard Drives" or "Look in: My Computer" and then click "Search" button.
  4. When Windows finishes your search, hover over the "In Folder" of "msconfig.com", highlight the file and copy/paste the path into the address bar. Save the file's path on your clipboard because you'll need the file path to delete msconfig.com in the following manual removal steps.

Step 2: Use Windows Task Manager to Remove msconfig.com Processes


  1. To open the Windows Task Manager, use the combination of CTRL+ALT+DEL or CTRL+SHIFT+ESC.
  2. Click on the "Image Name" button to search for "msconfig.com" process by name.
  3. Select the "msconfig.com" process and click on the "End Process" button to kill it.

Step 3: Detect and Delete Other msconfig.com Files

  1. To open the Windows Command Prompt, go to Start > Run > cmd and then press the "OK" button.
  2. Type in "dir /A name_of_the_folder" (for example, C:\Spyware-folder), which will display the folder's content even the hidden files.
  3. To change directory, type in "cd name_of_the_folder".
  4. Once you have the file you're looking for type in del "name_of_the_file".
  5. To delete a file in folder, type in "del name_of_the_file".
  6. To delete the entire folder, type in "rmdir /S name_of_the_folder".
  7. Select the "msconfig.com" process and click on the "End Process" button to kill it.

msconfig.com Anti-Spyware Recommendation

Certain file extensions come from parasite applications. If you decide to remove unknown file extensions manually, you might do irreversible harm to your PC. We highly recommend you use a good spyware cleaner/remover to automatically track msconfig.com as well as other spyware, adware, trojans, and virus threats in your PC.

Spyware Fix: To safely check for spyware download SpyHunter's Spyware Scanner.

Download SpyHunter's Spyware Scanner Download SpyHunter's Spyware Scanner

SpyHunter's free version is ONLY for spyware detection. If SpyHunter's spyware scanner detects msconfig.com on your PC, you have the option of purchasing SpyHunter's spyware removal tool to remove msconfig.com and other malicious files.

To learn more on msconfig.com file extension, see our file extension resource section below.


More File Extension Resources

What's a .com?


The file name msconfig.com is a .com file extension.

.com extensions usually indicate the file is a command file for an application. Be aware that this type of file may be infected. To examine your computer for files that may contain spyware, download SpyHunter's spyware detection tool to scan your system for free. .

What's a File Extension?

A file extension is the last characters after the period in the name of a file and identifies the type of data found in the file. For example, to look for images on a computer, one would search for .gif and .jpg files.

What are the symptoms of a malicious .com?

  • Allows parasites associated with the file to operate invisibly in the background.
  • May record your credit cards, bank passwords and other personal information.
  • Parasites operate on your PC while malicious file is present on the system.

How can I tell if a .com file extension is legitimate?

There are legitimate file extensions that are not malicious. File extensions are components of your operating system or software. Therefore, you should check the file before removing it from your computer. In case you are not sure about the legitimacy of .com file extension, run a scan with an anti-spyware program or ask an expert to examine the file to make sure you won't delete a legitimate file. But remember that the file which is installed without your knowledge is not a legitimate one. Removing files can be risky, because spyware often exploits legitimate files and if such files are not removed properly can seriously damage your system.

Here's a list of features that will help you to define whether the file is legitimate:

  • First examine the description, the product or the company signing – if signing is absent, misspelled or modified there is a high risk that the file is illegitimate.
  • At initial activation illegitimate file opens a small window and immediately closes under the cursor. This process is called dummywin.exe and proves illegitimacy of the file.
  • A file can get injected when cursor moves on the window and in this way activates the process. Usually certain files will display a notification.
  • On a powerful PC the window will display and close instantly before you can even react.
  • You can check information on the file online, this will reduce the risk of removing a letigimate program.
  • If you still dont know about the legitimacy of the file, go to Spyware FileHunter to check whether a file has spyware components.

Related Files

msconfig.sys
iexplore.pif
command.pif
1.com
rundll32.com
regedit.com
msconfig.com
iexplore.com
finder.com
explorer.com
dxdiag.com
smss.exe
exeroute.exe
debugprogram.exe

Related Registry Keys

HKEY_LOCAL_MACHINE SOFTWAREMicrosoftShared ToolsMSInfoToolSetsMSInfohdwwizcommand=%System%command.pif
HKEY_LOCAL_MACHINE SOFTWAREClientsStartMenuInternetiexplore.pifShellOpenCommand(Default)= C:Program FilesCommon Filesiexplore.pif
HKEY_LOCAL_MACHINE SOFTWAREClassesUnknownShellOpenasCommand(Default)=%System%finder.com %System%shell32.dll
HKEY_LOCAL_MACHINE SOFTWAREClassesscrfileShellInstallCommand(Default)=finder.com desk.cpl
HKEY_LOCAL_MACHINE SOFTWAREClassesInternetShortcutShellOpenCommand(Default)=finder.com shdocvw.dll
DefaultInstall 132 %1
InstallHinfSection
HKEY_LOCAL_MACHINE SOFTWAREClassesinffileShellInstallCommand(Default)=%System% undll32.com setupapi
HKEY_LOCAL_MACHINE SOFTWAREClasseshttpShellOpenCommand(Default)= C:Program FilesCommon Filesiexplore.pif -nohome
HKEY_LOCAL_MACHINE SOFTWAREClassesftpShellOpenCommand(Default)= C:Program FilesInternet Exploreriexplore.com %1
HKEY_LOCAL_MACHINE SOFTWAREClassesdunfileShellOpenCommand(Default)=%System% undll32.comnetshell.dll
HKEY_LOCAL_MACHINE SOFTWAREClassesDriveShellFindCommand(Default)=%Windir%explorer.com
HKEY_LOCAL_MACHINE SOFTWAREClassesApplicationsiexplore.exeShellOpenCommand(Default)= C:Program FilesInternet Exploreriexplore.com %1
OpenAs_RunDLL %1
HKEY_CLASSES_ROOTUnknownShellOpenAsCommand(Default)=%System%finder.com %System%shell32.dll
TelnetProtocolHandler %l
elnetShellOpenCommand(Default)=finder.com url.dll
HKEY_CLASSES_ROOT
GenerateTypeLib %1
HKEY_CLASSES_ROOTscriptletfileShellGenerate TypelibCommand(Default)=%System%finder.com %System%scrobj.dll
InstallScreenSaver %l
HKEY_CLASSES_ROOTscrfileShellInstallCommand(Default)=finder.com desk.cpl
OpenURL %l
HKEY_CLASSES_ROOTInternetShortcutShellOpenCommand(Default)=finder.com shdocvw.dll
HKEY_CLASSES_ROOTwinfilesShellOpenCommand(Default)=%Windir%exeroute.exe %1 %*
InstallHinfSection DefaultInstall 132 %1
HKEY_CLASSES_ROOTinffileShellInstallCommand(Default)=%System% undll32.com setupapi
HKEY_CLASSES_ROOThttpShellOpenCommand(Default)= C:Program FilesCommon Filesiexplore.pif -nohome
HKEY_CLASSES_ROOThtmlfileShellOpenNewCommand(Default)= C:Program FilesCommon Filesiexplore.pif
FileProtocolHandler %1
HKEY_CLASSES_ROOTfileShellOpenCommand(Default)=rundll32.com url.dll
InvokeDunFile %1
HKEY_CLASSES_ROOTdunfileShellOpenCommand(Default)=%System% undll32.com netshell.dll
%*
Control_RunDLL %1
HKEY_CLASSES_ROOTcplfileShellcplopenCommand(Default)=rundll32.com shell32.dll
NewLinkHere %1
HKEY_CLASSES_ROOT.lnkShellNewCommand=rundll32.com appwiz.cpl
HKEY_CLASSES_ROOT.exe(Default)=winfiles
Briefcase_Create %2!d! %1
HKEY_CLASSES_ROOT.bfcShellNewCcommand=%System% undll32.com %System%syncui.dll
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindowsNT CurrentVersionWinlogonShell=explorer.exe 1
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindows CurrentVersionRunServices
orjan program=%Windir%smss.exe
HKEY_LOCAL_MACHINE SOFTWAREMicrosoftWindows CurrentVersionRun



User Comments


There are no comments posted for this page.

Leave a Reply


*
To prove you're a person (not a spam script), type the security word shown in the picture.
Security Image

Back to Top

Remove msconfig.com