这里官网下载费尔木马强力清除助手,勾选“抑制文件再生”删除。
http://dl.filseclab.com/down/powerrmv.zip删除:
C:\WINDOWS\system32\feilong2.exe
c:\windows\system32\yupmbz.dll
C:\WINDOWS\system32\wyd2.exe
不论删除结果如何继续下面操作。
—————————————————————————————————————
在扫日志的SRENG工具》启动项目》服务》Win32服务应用程序》里面找下面项删除
==================================
服务
[Windows Media feilong2 / feilong2][Running/Auto Start]
<C:\WINDOWS\system32\feilong2.exe><N/A>
[svchost / svchost][Running/Auto Start]
<C:\WINDOWS\system32\svchost.exe -k svchost-->%SystemRoot%\System32\yupmbz.dll><N/A>
[Windows Media wyd2 / wyd2][Running/Auto Start]
<C:\WINDOWS\system32\wyd2.exe><N/A>
[Windows Media Centvg / dconfig][Stopped/Disabled]
<><(File is missing)>
[Diagnostic Policy Service / DPSvc][Stopped/Auto Start]
<><(File is missing)>
[Windows Media feilong / feilong][Stopped/Disabled]
<><(File is missing)>
[Windows Media kangyi / kangyi][Stopped/Auto Start]
<><(File is missing)>
[Windows China Driver / Made in China DDoS][Stopped/Auto Start]
<><(File is missing)>
[SVCHOST.EXE / SVCHOST.dll][Stopped/Auto Start]
<><(File is missing)>
[Visual Studio Analyzer RPC bridge / Visual Studio Analyzer RPC bridge][Stopped/Manual Start]
<><(File is missing)>
[Windows Media Vnet / Vnet][Stopped/Disabled]
<><(File is missing)>
[XnViewMediaDetector / XnView][Stopped/Disabled]
<><(File is missing)>
————————————————————————————————————
再重启电脑,反复检查,操作的结果,
升级杀毒软件至最新版本全盘杀毒。
记得打打系统漏洞补丁
这补丁很重要
http://bbs.ikaka.com/showtopic-8509685.aspx详细想想做了什么事,又中的呢?
