Those commands that force the end of the system process


It is reported that there are many viruses currently in the way of injecting into the system process to achieve the hidden way, on the one hand, by masquerading their own names, the user is difficult to distinguish at a time, and then confused. The purpose, including disguising as some system process files, etc., on the one hand, through some protection methods, we can't force the end through the system's own task manager, forcing the user to be in real-time threat, so, can it be faster by other methods? End these malicious processes, prevent them from accidentally attacking and running in the background? The answer is yes, this tutorial will introduce you to the invincible command to end the Windows system process.

Windows only has System, SMSS.EXE and CSRSS.EXE can't kill. The first two are purely kernel-mode, and the last one is the Win32 subsystem, which is required by ntsd itself. Since 2000, ntsd is the user-mode debugging tool that comes with the system. The process attached by the debugger exits with the debugger, so it can be used to terminate the process at the command line. Using ntsd automatically gets debug permissions, which can kill most of the process. Ntsd will open a new debug window, which could not be controlled under the pure command line, but if it is just a simple command, such as exiting (q), it can be passed from the command line with the -c parameter. NtsdNtsd is also provided to software developers by convention. Only system developers use this command. For more information, see the help file included with NTSD. Usage: Open a cmd.exe window and type:

ntsd -c q -p PID

Change the last PID to the ID of the process you want to terminate. If you don't know the ID of the process, Task Manager -> Process Tab -> View -> Select Column -> Check "PID (Process Identifier)" and you will see it.

There are two easy-to-use tools for tasklist and tskill. The tasklist can list all processes, and the corresponding information. Tskill can kill the process, the syntax is very simple: tskill program name!!

Process is an execution activity of the program on the computer. When you run a program, you start a process. Obviously, the program is dead (static) and the process is alive (dynamic). Processes can be divided into system processes and user processes. The process used to complete the various functions of the operating system is the system process, they are the operating system itself in the running state; the user process is all the processes started by you.

Copyright © Windows knowledge All Rights Reserved