This method is through the command taskkill under WinXP system achieved in the use of this method, first need to open the system processes the list interface, the process of finding the virus corresponding to a specific process name.
Then Click "Start → Run" command, the system is running in the pop-up box, run "cmd" command; and then at the DOS command line, type "taskkill / im aaa" format string command, click the Enter key after the , the persistence of the virus process, "aaa" have been forcibly killed. For example, to force kill "conime.exe" viral process, as long as the command prompt implementation of the "taskkill / im conime.exe" command, or else how long the system will automatically return to the results shown in the figure.
No. According to the process of killing
The above method, only part of the virus, the process of effective and encountered some more "stubborn" the virus processes, may be futile. At this point you can more than Win2000 system, built-in command - ntsd, to forcibly kill all the virus processes, because the order inter System process, SMSS.EXE process, CSRSS.EXE process can not "against" things, can be basically against other all the process. But in the process of using the command to kill the virus before the virus need to find the corresponding process in the specific process ID.
System process taking into account the list of interfaces in the default state, it is not show a specific process ID, so you can first open the Windows Task Manager window, and then click the "View" menu item below "Choose Columns" command, in the pop-up settings box, "PID (Process Identifier)" option is selected, click "OK" button. Return to the system processes the list page, you will be able to see into the process of the corresponding virus in a specific PID.
Then open the Run dialog box system, in which run the "cmd" command, at the command prompt, enter "ntsd-cq-p PID" command, you can specify the PID of the virus forced the process of killing. For example, a virus found in the process PID is "444", then you can perform "ntsd-cq-p 444" command to kill the virus process.
No comments:
Post a Comment