Some understanding of computer virus and network security

Source: Internet
Author: User

Some manifestations of viral infection

How do we know about the virus in the computer? In fact, computer poisoning and people are sick, there are always some obvious symptoms show. For example, the machine runs very slowly, not on the network, anti-virus software can not be born, Word documents can not open, the computer does not start, hard disk partitions found, data loss and so on, is a number of poisoning symptoms.

Virus Infection Diagnosis

1, press Ctrl+shift+delete (simultaneously press this three key), bring up the Windows Task Manager to see the system running process, find unfamiliar process and write down its name (this requires experience), if these processes are viruses, so as to facilitate the subsequent cleanup. Do not end these processes for the time being, because some viruses or illegal processes may not end here. Click Performance to view the current state of the CPU and memory, if the CPU utilization is close to 100% or memory occupancy value is high, at this time the probability of computer poisoning is 95%.

2. View the service items currently started by Windows, and open services in Administrative Tools in Control Panel. Look at the row in the right column status is the "Start" Start category is the "automatic" item; Generally speaking, a normal Windows service is basically descriptive (except for a handful of hackers or worms), double-click to open the service item that you think has a problem view the path and name of the executable file in its properties. If its name and path is C:/winnt/system32/explored.exe, the computer strokes. There is a situation where the "Control Panel" is not open or all the icons inside the left side, there is a vertical scroll bar, and the right is blank, and then double-click Add/Remove Programs or management tools, the window is empty, this is the characteristics of the virus file Winhlpp32.exe attack.

3, run Registry Editor, command for regedit or regedt32, view all those programs with Windows to start. Mainly look at the Hkey_local_machine/software/microsoft/windows/currentversion/run and the following several RunOnce, see the form to the right of the item value to see if there are illegal startup items. Windows XP run Msconfig also play the same role. With the accumulation of experience, you can easily judge the start of a virus.

4, in the browser to determine the Internet. A previous outbreak of Gaobot virus, can be on yahoo.com,sony.com and other sites, but cannot access such as Www.symantec.com,www.ca.com, the site of such a famous security manufacturer, installs symantecNorton2004 antivirus software and does not upgrade online.

5, unhide the properties, view the System folder Winnt (Windows)/system32, if opened after the folder is empty, indicating that the computer has been poisoned; after opening the System32, you can sort the icons by type to see if there are any popular virus execution files. By the way, check the folder Tasks,wins,drivers. At present, there are virus execution files hiding in this; drivers/etc under the file hosts are viruses like to tamper with the object, it would have been only about 700 bytes, has been tampered with more than 1Kb, This is caused by the general Web site access and security vendors can not access the site, the famous anti-virus software can not upgrade the reason.

6, by the anti-virus software to determine whether poisoning, if poisoned, anti-virus software will be automatically terminated by the virus program, and manual upgrade failed.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.