1.找到c:\windows\system32\userinit.exe右键重命名为1.exe,拷贝个正常的userinit.exe粘贴到c:\windows\system32\文件夹内;
2.找到c:\windows\system32\rpcss.dll右键重命名为1.dll,拷贝个正常的rpcss.dll粘贴到c:\windows\system32\文件夹内;
3.
1.用XDelBox勾选抑制再生后删除以下文件:(
XDelBox1.7最新版下载)
使用说明:删除时复制所有要删除文件的路径,在待删除文件列表里点击右键选择
从剪贴板导入不检查路径,导入后在要删除文件上点击右键,选择立刻重启删除,电脑会重启进入DOS界面进行删除操作。运行xdelbox前最好卸载所有可移动存储介质(包括U盘,MP3,手机存储卡等)。
c:\windows\system32\gdipro.dll
c:\windows\system32\sys05015.dll
c:\windows\system32\sys07008.dll
c:\windows\system32\svteppsk.exe
c:\docume~1\admini~1\locals~1\temp\sv5.tmp
c:\windows\system32\srpcss.dll
c:\docume~1\admini~1\locals~1\temp\urlm0n.dll
c:\docume~1\admini~1\locals~1\temp\wowinitcode.dat
c:\windows\system32\3474a8c2.dll
c:\windows\system32\495271ca.dll
c:\windows\system32\4bf9cba3.dll
c:\windows\system32\4efddebe.dll
c:\windows\system32\53360697.dll
c:\windows\system32\8566f82e.dll
c:\windows\system32\9ca963ca.dll
c:\windows\system32\c250cf20.dll
c:\windows\system32\c56bcc10.dll
c:\windows\system32\d91bc61e.dll
c:\windows\system32\db2d9172.dll
c:\windows\system32\e4814792.dll
c:\windows\system32\ajsrtwyh.dll
c:\windows\system32\aneewbec.dll
c:\windows\system32\cfvtoxma.dll
c:\windows\system32\duvedxqs.dll
c:\windows\system32\fhxhzxfl.dll
c:\windows\system32\hbasktao.dll
c:\windows\system32\hbbo.dll
c:\windows\system32\hbdnf.dll
c:\windows\system32\hbmhly.dll
c:\windows\system32\hbsoul.dll
c:\windows\system32\hbtl.dll
c:\windows\system32\jzdtmwhl.dll
c:\windows\system32\kgrppybn.dll
c:\windows\system32\kouvjwld.dll
c:\windows\system32\ksuserfy.dll
c:\windows\system32\kzgimbry.dll
c:\windows\system32\mjxyexzw.dll
c:\windows\system32\mmilhbyy.dll
c:\windows\system32\nywbcxdo.dll
c:\windows\system32\peoxuzaz.dll
c:\windows\system32\qmctxuct.dll
c:\windows\system32\qtnhsamj.dll
c:\windows\system32\spqknstk.dll
c:\windows\system32\vnkwgzih.dll
c:\windows\system32\wkzjdvbe.dll
c:\windows\system32\zymbyats.dll
c:\windows\system32\system.exe
c:\windows\system32\msjetoledb40.dll
c:\windows\system32\rzx_cardid.dll
c:\windows\system32\db2d9172.dll
c:\windows\system32\d91bc61e.dll
c:\windows\system32\e4814792.dll
c:\windows\system32\c250cf20.dll
c:\windows\system32\c56bcc10.dll
c:\windows\system32\495271ca.dll
c:\windows\system32\53360697.dll
c:\windows\system32\9ca963ca.dll
c:\windows\system32\8566f82e.dll
c:\windows\system32\3474a8c2.dll
c:\windows\system32\4efddebe.dll
c:\windows\system32\4bf9cba3.dll
c:\windows\system32\svtepps.dll
c:\windows\system32\comboaus.dll
c:\windows\system32\ringtte.dll
c:\windows\system32\system.exe
c:\windows\system32\internat.exe
c:\windows\system32\4c70249.sys
c:\windows\system32\c551839.sys
c:\windows\system32\c56bcc1.sys
c:\windows\system32\d4f876.sys
c:\windows\system32\8882fa1.sys
c:\windows\system32\drivers\hbkernel32.sys
c:\program files\common files\cpush\cpush0.dll
2.删除重启后使用SREng修复下面各项: 启动项目 -- 注册表之如下项删除:
[mjxyexzw.dll]
[jzdtmwhl.dll]
[spqknstk.dll]
[peoxuzaz.dll]
[fhxhzxfl.dll]
[cfvtoxma.dll]
[wkzjdvbe.dll]
[mmilhbyy.dll]
[zymbyats.dll]
[vnkwgzih.dll]
[nywbcxdo.dll]
[kouvjwld.dll]
[qtnhsamj.dll]
[kgrppybn.dll]
[duvedxqs.dll]
[ajsrtwyh.dll]
[qmctxuct.dll]
[kzgimbry.dll]
[dxgjgbxm.dll]
[aneewbec.dll]
[tjfuqukq.dll]
[nwjbnszu.dll]
[glcwqzri.dll]
[zqodnxgm.dll]
[plfznyfb.dll]
[mjkudgmr.dll]
[wrqlwcyh.dll]
[tovglbgw.dll]
[mtznaadb.dll]
[ggddxgsf.dll]
[zmgkufhk.dll]
[szkrjdwp.dll]
[zxsxxjoe.dll]
[vnxseivu.dll]
[pcgteeja.dll]
[mrloldzh.dll]
[zktlxidr.dll]
[sxwsuhsv.dll]
[mkahjfha.dll]
[iaguyfpp.dll]
[cnkjndmt.dll]
[sqtlrjif.dll]
[ftpciidz.dll]
[cqvwqhko.dll]
[jeoamvcw.dll]
[fbuvtukl.dll]
[jwdujxto.dll]
[fmioyxad.dll]
[zzmendpa.dll]
[wpsqdcfp.dll]
[mstshabj.dll]
[ffxiwzqn.dll]
[vsvdfher.dll]
[sqbynglh.dll]
[ksuserfy.dll]
[kljxsilg.dll]
[eynmhpil.dll]
[xdqtenxh.dll]
[ubwolnfw.dll]
[ngavilub.dll]
[htdlfsjg.dll]
[xpbggswk.dll]
[uezbordz.dll]
[zaiooyed.dll]
[wqojvyms.dll]
[mtqladim.dll]
[jivfpdqc.dll]
[cvznebny.dll]
[wbdcbacd.dll]
[tjxiobac.dll]
[mwbycaph.dll]
[ykzxbnys.dll]
[vifsjmgi.dll]
[bnqwrihv.dll]
[sqzgvneh.dll]
[byeqpkqf.dll]
[vliflqnk.dll]
[brbjumgq.dll]
[iwmvdqhd.dll]
[kodstzfl.dll]
[brmvxxcf.dll]
[{DB2D9172-BDCF-432E-8AF3-8D2688F850DE}]
[{C4C78494-4D05-4614-8CF2-03F1C4276C8A}]
[{D91BC61E-7D78-4A2A-A336-7B97E8E52F0B}]
[{DA56B183-A731-402b-9235-2CB8803E212D}]
[{BA4B5EBD-AB43-4c2b-84F5-F1AD85E79E4A}]
[{E4814792-EFA3-4C20-93D0-8B130A59F9A8}]
[{4BD36A11-8E6A-47bd-A49E-740D8ACF73A0}]
[{D3112B69-A745-4805-874E-ABD480EA1299}]
[{C250CF20-5F89-4310-9854-4BC261FB14FB}]
[{F0930A2F-D971-4828-8209-B7DFD266ED44}]
[{432BDC7C-DE5B-43f4-AA81-E7F8AFB0182D}]
[{C56BCC10-503E-43AB-B208-3CD37FCFCE40}]
[{76D44356-B494-443a-BEDC-AA68DE4255E6}]
[{495271CA-D0C6-4052-ABE6-5B01C73CDFB0}]
[{D1CC9DC6-F0BC-40fc-9552-E497B05E05B8}]
[{53360697-E270-4F80-AD5D-6FB518F03D24}]
[{9CA963CA-107C-4089-B0AB-31380F90D7E3}]
[{8566F82E-03A4-416E-AEAC-66600D8881F1}]
[{3474A8C2-BEF9-46C8-983A-A26A0030EC30}]
[{4EFDDEBE-303C-4D1A-8C9E-E4F215C43651}]
[{F0C9FBC2-6FA2-479d-B65D-F9D65C613ECC}]
[{4BF9CBA3-8DEE-41A1-8BDB-FC28D30E949F}]
[{2CB77746-8ECC-40ca-8217-10CA8BE5EFC8}]
注意该项[AppInit_DLLs]修改:把<svtepps.dll comboaus.dll ringtte.dll>修改为<>即清空
[HBService32]
[internat.exe]
启动项目 -- 服务-- 驱动程序之如下项删除:
[4c70249 / 4c70249]
[c551839 / c551839]
[c56bcc1 / c56bcc1]
[d4f876 / d4f876]
[8882fa1 / 8882fa1]
[HBKernel32 Driver / HBKernel32]
系统修复-- 浏览器加载项之如下项删除:
[CAdLogic Object] <C:\Program Files\Common Files\CPUSH\cpush0.dll>
[CToolbarDetector Object] <C:\Program Files\Common Files\CPUSH\cpush0.dll>
[CAdLogic Object] <C:\Program Files\Common Files\CPUSH\cpush0.dll>
做完重起后修复安装杀毒软件一次,然后下载以下软件清理一次并更新杀毒软件至最新进行全盘杀毒一次
清理系统临时文件和IE临时文件夹
http://www.atribune.org/public-beta/ATF-Cleaner.exe 用金山清理专家清理恶意软件
http://www.duba.net/zt/ksc/down.shtml 下载 windows清理助手清理一遍
http://www.arswp.com/download/arswp2/arswp2.zip删除之前改名的 1.exe 1.dll两文件
