My system security diary

xiaoxiao2021-03-06  54

I am working in a state-owned unit. The original work is to do the development of the website, but many times are like a network management, where the machine has a problem or a class of Chinese virus comes to me, I am not in this area, ~~ ~~~~~. Have no idea!

However, it is also very fun to remove the virus Trojan. The most worthless is to clear myDoom virus. In the case of the unit editor (Khan ~~, he should buy lottery tickets) At that time this virus was intercepted, there is no MYDOOM This name, so anti-virus software can't kill. When this virus was cleared at the time, finally deleted a stem file in safe mode, and reset the firewall after reboot. After a few days, I found that Microsoft actually rewarded my Doom virus manufacturers, providing information, can reward, dizzy! ! ! But I didn't want it.

Anti-virus software is not universal, many viruses and Trojans can't delete, so we have to rely on yourself. It is now harmful to the system including viruses, Trojans, spyware. The harm is also different, the following is the common special killing tool I found and the common tools for removing viruses. It is possible that most software have seen it, just write a person who has not used these software, it provides a reference.

1, anti-virus software: I use the Rising Network version. Rising anti-virus software is generally good, the virus library is updated faster, and there are more viruses. Self-strap tool vulnerability scan (Scandb.exe), registry tool (regclean.exe) is also good, vulnerability scan tool can directly scan the system without installing the patch to download the patch directly, one button. But the biggest determination is that there are too many system resources, especially to open anti-virus software, which is automatically connected to the Virus web content of the Rising website. The individual who can bear some 128msdram's older machine, it is very slow, and it can reflect it. Depressed. I don't know what anti-virus software.

2, self-start View (Autoruns 5.0 Chinese version): Recommended: ★★★ ☆ ☆ Installation: No Author: Free Address: http://www.crsky.com/softview/softview_2948.html

When you suspect a virus or Trojan, you first look at the self-automatic and Win.ini files in the registry, see if there is suspicious file, if you have it to delete it. In fact, Windows itself takes this tool, believe everyone knows, is Msconfig, but there is no tool in the Win2000 system, and cannot list the self-starting item. Autoruns is the work of Sysinternals, you can view and delete self-started items such as registry and Win.ini files, and kill viruses or Trojans is very convenient.

3, home kidnapping, hijackthis 1.98.2: Recommended: ★★★★★ Installation: No authorization: Free Address: http://www.skycn.com/soft/13334.html Description: It is the first choice for a virus from the kidnapping IE It can take out the programs of the kidnapping your browser and delete the suspicious file and determine whether it is deleted! Combined with Rising's registry tools, the effect is very good, and it can successfully remove the viruses of many kidnapping IEs. Use it to remove a search engine kidnapping IE virus, the name of the website is not quite accurate, clear it, think of 3721, please make it difficult to send the gods, finally combined with Rising and Rising registry tool to remove this annoying virus

4, Mark-Star 5.46 Build 0901: Recommended: ★★★★★ Recommendation with the system startup installation: Yes Authorization: Registration address: http://www.crsky.com/softview/softview_3737.html with registration code Description: Mark Max Kill 8122 international Trojans, 1053 passwords steal the trees. Of course, it is impossible to completely remove all Trojans, and there are new Trojans at any time, so it is often upgraded to avoid. In addition, there are many excellent functions, built-in firewalls (of course, the personal firewall of Tianwang, will be introduced below); check the system process, prompt non-system processes; View Network Status: List the current network connection, list Local IP and remote connection IP, and display local and remote port numbers, which is very helpful to clear Trojans and viruses; self-starting items: List the current startup project. There is also a monitoring network, managing applications to access networks, view sharing, send mail programs, etc. 5, Tianwang firewall personal trial version 2.7: recommended: ★★★★★ Recommended with the system startup: Yes Authorization: Free Address: http://www.crsky.com/softview/softview_850.html Description: From Tianwang Experiment The personal version of the room released, the system is small, accounting for only 1.5M memory. The function is very powerful, and the security level is divided into low, medium, high, custom, default installation as middle. If you don't know the rules of the firewall, it is recommended to use the default security level. If you have a certain understanding of firewall rules, it is recommended to use custom rules to edit firewall rules that are right for your system. Especially the server, close the unnecessary port, only open the external port that must be used, avoiding the system being invaded. And provide logging functions, list views to local IP and ports. Personal and small servers preferred firewalls.

6, Webroot Spy Sweeper 3.0: Recommended: ★★★★★ Recommendation With the System Startup: Yes Authorization: Register Address: http://www.crsky.com/softview/SoftView_2001.html Description: Spy Sweeper can automatically detect and clear System of spyware, such as: Trojans, keyboard records and advertising procedures; also you have personal privacy, delete all personal records; explain the spyware to what you have learned. A very good anti-spyware, protecting personal privacy preferences. The scanning speed is very fast, and it is also very thorough to clear spyware. And provide isolation options, save the deleted spyware, if there is a problem after the system is cleared, you can restore the deleted spyware here.

It is recommended that it provides system protection and IE protection. When the system and IE are set, the warning message is automatically displayed, saving settings or reject settings, and the protection system is not invaded by spyware and Trojan virus. Special recommendation.

7, Drive Rescue v1.9d Chinese version: Recommended: ★★★ ☆ ☆ Installation: Yes Authorization: Free Address: http://www.crsky.com/softview/softview_2001.html Description: Drive Rescue Manufacturer of Norton Software Symantec's free disk data rescue program, it can restore the driver (such as hard disk) misleading or lost data, even if the partition table or hard disk has been quickly formatted or encountered by system crash, etc. The situation, retrieve the drive important file system information such as partition table, boot record, FAT, file / directory record, etc. Of course, it is impossible for physical damaged hard disks. Drive Rescue supports FAT 12/16/32 partitions and Windows full range of operating systems and dual hard drives. Note: Another tool TLIST for removing viruses and Trojans is a Windows self-contained tool to view the details of the system process. In the Support directory of the Disc installed, you can see the TLIST.EXE file directly to the hard disk directly to the hard disk.

Also recommend two system optimization software 1, TuneUp Utilities 2004 V4.1 Chinese version recommendation: ★★★★★ installation: Yes Authorization: Registration address: http://www.crsky.com/softview/softview_3018.html Description: Germany The system adjustment tool first brand - TuneUp Utilities, followed by TuneEup 97 after selling more than 100,000 copies in Germany, TuneEup Utilities attempts to capture the system adjustment tool international market! TuneUp Utilities features, main tools include: system transformation / analysis, hard disk / login file cleaning, system acceleration, memory optimization, login file editing, software uninstall, work administrator, file restore / clean.

Two functions worthy of question: provide a one-button repair function, clear the temporary files of garbage and system in the registry, improve the speed of the system; additional system consultant function, find out the system can slow down within the system And give a solution.

2, Gold Memory (Memory Booster) V3.1 Recommended: ★★★ ☆ ☆ Installation: Yes Authorization: Register Address: http://www.crsky.com/softview/softview_3945.html Description Gold Memory / Recycling / Cleaning The physical memory of the system improves memory distribution hits, improves the use efficiency, prevents insufficient memory due to memory leakage. The full graphical interface allows the operator's current state of the system, so that you can't let go.

Memory finishing: Understand memory and CPU usage, timely organize memory, and adjust physical memory usage performance.

Process Management: You can view the process and memory situation in the system, find out the big household, and can terminate at any time;

Service Management: Manage the service item in XP / 2000, stop the service, speed up the boot speed, save memory.

Startup management: You can start or suspend the starting or suspension of the random project, which greatly increases the start speed.

Note: There is a registration code for the above registration software.

转载请注明原文地址:https://www.9cbs.com/read-116828.html

New Post(0)