How to use Winer to better manage system processes under WinXP

Whenever we use WinXP to have system failure, virus infection, card machine and other issues, the first time to pay attention to the "three big pieces" is —— Self-starting programs, current active processes, and services. Management of this "three majors" must execute a number of programs, WinXP does not have a tool to manage them uniformly, so we can only use a better third-party software to manage them, that is, Starter, Starter can not only “Three big pieces” unified integration can also help you find the problem when the system is faulty. The following small series will detail how to use Winer to better manage system processes under WinXP.

First, beyond the self-starting management of MSConfig

Trojans, viruses usually use self-starting to harm the computer, so when you suspect that you are infected with a virus, you usually have to find all the self-starting locations of the system one by one. However, there are many places in the system's self-starting position. Manual search is not convenient, but MSConfig can only be disabled and cannot be deleted.

For example, "The Super Password Killer (I-Worm/Supkp.z)" is in [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run], [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows \\CurrentVersion\ unServices] added 9 self-starting key values. After starting the Starter, click “Start Project”, in the list on the left, you can clearly see all the self-starting projects of the virus, and the different startup items are arranged according to the user and the starting position. Now hold down the Ctrl key to select the 9 self-starting key values ​​in turn, then right-click and select “delete” to clean up these self-starting key values ​​at once (see figure). In addition, right-click any self-starting program to select “file attribute”, you can see the details of the startup process, including the path, version, etc., to make it easier to determine whether the file is safe. At the same time, select “ browse branch key & rdquo; you can quickly open the "registry editor" and locate the corresponding key value, unlike MSConfig just look at it.

Second, one button to terminate all suspicious processes

Now Trojans are getting more and more embarrassing, they often monitor each other through multiple processes, such as “Falling Star” Trojans use &ldquo ;internet.exe” and <quo;systemtray.exe” dual process protection mode. The system's own "task manager", after terminating one of the processes, another monitoring process will immediately regenerate it.

Starter can end multiple malicious processes in batches. Now click on the "current process" tab of the program window, and also use the Ctrl key to select the above two processes, and then "Terminate" through the right-click menu. Terminate all malicious processes.

Third, service management in one step

There are many malicious programs disguised as system services, for example, gray pigeons will be added in the registry [HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services] Gray_Pigeon_Server” service, we used to complete the virus check and kill by checking the registry service key and system search. Now just click the <quo;service” tab in the Starter window, right click on the service list <;Gray_Pigeon_Server” select “ browse file directory”, you can directly open the directory where the executable file is located to quickly find the Trojan file, select “ browse The service registration key & rdquo;, can directly locate the service registry key value, quickly delete the service key value repair system. In addition, you can also select “Search on the Internet” to enable the search engine to search the description of the service on the Internet. For common viruses, you can find a solution by searching.

The above are some of the features of Starter under WinXP, and how to use Starter when dealing with some problems. I believe that WinXP users have read this tutorial and will be able to use this software to manage system processes.