My friend said that the machine is getting slower and slow, and it is very obvious that Rising can't find a virus, I will help the past. First open the DOS window, run netstat -an to view the local open port situation, open the port brush a few screens, and you will definitely have problems. Then open the startup item (with a tool for Jinshan), see what is wrong with the startup. For common software, you will know, but there are several things that generally should not appear in the startup. Deleted a few abnormal, refresh, found that there were two not deleted, and there was an SVCH0ST.exe, one is Expl0Rer.exe. Remove again, refresh again, still not deleted. The problem is definitely on these two files, so copy the name of these two files to Notepad, see if there is any problem with the name, sure, the two file names in the name of the two files are not common SVCHOST.EXE and The letter O of the Explorer.exe file is not numbers 0. Really like, don't carefully distinguish it at all, you can't see it (in Notepad, the big-written O and Number 0 have a small difference). In this case, as long as the two files are deleted, there should be no problem. Find these two counterfeit files under Windows, all in the system32 directory, want to delete, no, is being used. So call the task manager and delete the two running tasks. But immediately, these two tasks appeared again. It seems that these two files are interrelated, one stopped, and the other immediately let it start running. In this case, simply enter DOS, forcibly delete two files. Then restart, delete the relevant items in the startup item. Restart, run netstat -an, check the port, normal.
In the end, I didn't know what virus. I checked the Internet. I found that many viruses use these two files, and I don't know what to do, and I have not traverse. As for Rising, it is not surprising, it is estimated that the virus makes Rising invalid. For viruses, anti-anti-anti-anti-virus, it is the lower policy.
