**以下请确定是否为自己安装的程序,是的话就不要处理**
运行SRENG删除启动项注册表:
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]
<TuoTu><; D:\Tuotu\Tuotu.exe /m> [Tuotu.com]
<DAEMON Tools-1033><; "D:\D-Tools\daemon.exe" -lang 1033> [DAEMON'S HOME]
删除浏览器加载项:
[CLDown
Object]
{0BECAB3A-E1F8-45E6-8332-38DD750EBA01} <D:\Tuotu\TuoTuHelper.dll, N/A>
[CAdLogic
Object]
{11F09AFD-75AD-4E51-AB43-E09E9351CE16} <C:\Program Files\Common Files\CPUSH\cpush0.dll, N/A>
[RWBIPVAGNS]
{5382AECD-E1DC-44F6-A47F-5231E2A29338} <C:\WINDOWS\system32\UZFKSYEKSYD.DLL, N/A>
[nxkt]
{643DE92F-E41A-4B69-B5FC-26A3F9845AEC} <C:\PROGRA~1\wdts\xhxd.dll, N/A>
[实用搜索]不要用这个搜索引擎
{6CFD436C-7AAD-4e50-992F-C0C87A94CAD2} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
[RWBIPVAGNS]
{5382AECD-E1DC-44F6-A47F-5231E2A29338} <C:\WINDOWS\system32\UZFKSYEKSYD.DLL, N/A>
[nxkt]
{643DE92F-E41A-4B69-B5FC-26A3F9845AEC} <C:\PROGRA~1\wdts\xhxd.dll, N/A>
[实用搜索]
{6CFD436C-7AAD-4E50-992F-C0C87A94CAD2} <C:\Program Files\superutilbar\superutilbar.dll, www.shiyongsousuo.com>
删除文件:
C:\WINDOWS\system32\wywnd.dll
c:\windows\system32\drivers\yzwsn.sys
文件删除用冰轫强删
修复:API HOOK
警告!System Repair Engineer 提醒
你下面的函数内容与预期值不符,他
们可能被一些恶意的软件所修改:
RVA 错误: LoadLibraryA
RVA 错误: LoadLibraryExA
RVA 错误: LoadLibraryExW
RVA 错误: LoadLibraryW
