-
This can't be helped, ordinary antivirus software can't kill it! You can use the explorer to open it, for example, the D drive! Then open the folder options submenu under the Tools menu, select the View tab, select Show all files and folders in the advanced settings, and turn on the Hide protected OS files option, so that there will be a file under your D drive, and possibly thumb, rundll and other similar files, delete them and then restart the computer.
If you can't delete it, then you should delete the process caused by the above files in the process manager after it is finished.
-
What you kill is the Ruijin virus, you can use the special kill or manual kill, the special kill is the next software, manually right-click, open into the disk, and then the tool folder option, check the display of all files and folders, and at the same time check the contents of the display system folder, check off the hidden protected operating system files, you will see that there is an auto file in the disk, delete it directly. This virus is very common and is not very difficult to kill.
-
Clear registry remnants.
If the hard disk has been infected, and the partition cannot be double-clicked to open, then start--run-regedit, hkey classes root drive shell, delete all the contents under the shell, close the registry, and f5 refresh; If the file cannot be double-clicked, then start--run-regedit, hkey classes root directory shell, delete all the contents under the shell, close the registry, and f5 refresh.
To prevent auto, create one on each disk directory""The autovirus will not be able to replicate itself into your disk!
-
Give a section of auto for my own use**:
echo on
taskkill /im /f
taskkill /im
start reg add hkcu\software\microsoft\windows\currentversion\explorer\advanced /v showsuperhidden /t reg_dword /d 1 /f
start reg import
del c:\autorun.* /f /q /asdel %systemroot%\system32\autorun.* /f /q /as
del d:\autorun.* /f /q /asdel e:
autorun.* /f /q /asdel f:\autorun.
f /q /asdel g:\autorun.* /f /q /asdel h:
autorun.* /f /q /asdel i:\autorun.
f /q /asdel j:\autorun.* /f /q /asdel k:
autorun.* /f /q /asdel l:\autorun.
f /q /asdel m:\autorun.* /f /q /asdel n:
autorun.* /f /q /asstart
Copy the above ** to Notepad,Then click on the file,Save as,Select all file types below,Save as Then run the generated file,The desktop will disappear temporarily,Then open my computer,Click right,If auto is still there,Open it again,You can guarantee the deletion of the virus。。。
-
Enter in safe mode, don't do anything, find the shortcut of the antivirus software directly from the beginning, run the complete antivirus, and then open the properties of the hidden files in the system and check again, if there are any, you can click to delete with the delete key of the keyboard after clicking.
-
This is the auto virus. It is recommended to use the auto virus to kill, you can go to the official website**, very small and installation-free, **after one. rar, you can use it directly after unzipping. The official website address is:
-
nod32 can be deleted really, wo just deleted yesterday, killed n many times, and finally got it cool.
-
It can be killed with a Kill Tool, and it is immune.
-
1. Click "Start", select "Run", type ", and run, and open the "Group Policy" window;
2. In the left column, under "Local Computer Policies", open "Computer Configuration Management Templates System", and then on the right.
All Drives, click the OK button to exit the Group Policy window.
This is a WOW Trojan,It seems that there are more people who have been recruited recently,This little Trojan will establish auto-start items like the general Trojan.、In addition to associated files,It will also modify a lot of other associated information,Increase the probability of the virus being activated,It also brings a little trouble to removal。
Solution: There is a problem with this file, delete the attribute after removing it, and then find the file pointed to in the registry, and delete the shell subkey after finding it, and then you can open the D drive. Start – Run the input"regedit"(Registry) with"ctrl+f"Key.
The Find dialog box for input appears""You can see the shell child.
Then right-click - Delete.
Or refer to the following method.
1. If there are a class of hidden files under each partition, it is best to restart the computer after deleting them.
2. Re-set the opening method in the file type (take XP as an example).
Open the My Computer tool Folder Options File Type, find "Drive" or "Folder" (choose which one according to the problem you are experiencing, if it is a double-click that can't open the drive, select "Drive", and if you can't open the folder, select "Folder"). Click "Advanced" below, "New" in the "File Type" dialog box, and fill in "open" in the operation (this can be filled in at will, if there is "open" and it points to other unfamiliar ones.) The exe file may point to a Trojan, so select """) to fill in the application used to perform the operation, and OK.
Then return to the File Type window, select Open, set it as the default, and OK. Now open the partition or folder again and see if it has returned to normal?
3. Registry Law:
a. You can't double-click the opener for partitions.
Start Run Enter regedit, find [hkey classes root drive shell] to delete all under the shell, then close the registry, press keyboard f5 to refresh, double-click the partition and look again.
b. You can't double-click on the opener for folders.
Start Run Enter regedit, find [hkey classes root directory shell] to delete all under the shell, then close the registry, press keyboard f5 to refresh, double-click the partition and look again.
Wider range than the settings in User Configuration. It helps multiple users to use such a setting.
-
Hello user: This situation should be infected with autorun type virus, it is recommended that you install Rising Antivirus v16 version to upgrade to the latest virus database, restart the computer and press the F8 key to select the safe mode, carry out a full virus scan and kill, and then use Rising Security Assistant to repair the computer, **Address:
-
You can find a tool called: "Snow Kill" and restart it as soon as you finish killing in safe mode.
Try a few more times, I've used it okay.
If it really doesn't work, reinstall the system, and after installation, use the right button to open each drive letter in turn to display the hidden files, and then delete it.
Remember, just after installing the system, you must not double-click on other drive letters.
-
There is a file in the same directory of that disk, which is hidden by protection. Delete it.
-
Right-click on the disk to open and then click on the tool Folder Options to select Show All Files.
Delete it.,If you restart and aoto,That's the virus hasn't been deleted.。。
-
It will not be recognized as a virus, and it must be deleted manually. If there is still aoto in the restart, it is that the virus has not been deleted.
The above two are virus scripts,Can run automatically,The following is the temporary folder of the web page,You should be poisoned by the virus web page on the trojan.,Since it prompts you to be isolated, you're not afraid.,No problem.,But for the sake of safety, scan the virus on the whole disk.。
For known viruses, after installing antivirus software, you can scan your computer to see if it is poisoned. If you have an older virus database, some antivirus software won't be able to detect it. Here's how to help. >>>More
Set up virtual memory.
There is a very large data exchange file in the hard disk, which is reserved by the system for virtual memory as a temporary storage place, which is often used by many applications, so the system needs to make a large amount of data access to the main memory frequently, so the speed of accessing this file constitutes a very important factor affecting the speed of the computer! Generally, Windows defaults to the system to manage the virtual memory, and it will automatically adjust the size of the swap file according to the needs of different programs, but such a large and small size will put an additional burden on the system and make the system run slower! For this reason, it is best to customize the minimum and maximum values of virtual memory to avoid frequent resizes. >>>More
First of all, it is clarified that ARP is not a virus, but a "protocol attack behavior", so it is called a virus because the current transmission mode and outbreak phenomenon of ARP attack tools have become closer and closer to viruses. ARP (Address Interpretation Protocol) is an indispensable key protocol in network communication protocols, which is responsible for translating IP addresses into corresponding MAC addresses. The existence of ARP gives good people an opportunity to take advantage of it, but without the ARP protocol, network devices will not be able to communicate with each other, which is the main reason why ARP is a mouse. >>>More
See if you can get into the security system, and if you can't get into the security system, then redo the system. >>>More