启动项目 -- 注册表之如下项删除:
[{D17E1746-E0F4-44BF-A4CE-ECE2FDABF4A2}] <C:\WINDOWS\system32\dhnehnkm.dll>
[{C829D1E5-0746-4E99-9F70-5F450A5613D9}] <C:\WINDOWS\system32\coipdhel.dll>
[{0BC1D565-7C48-4545-9549-CD98C11A5A82}] <C:\WINDOWS\system32\gbchdlml.dll>
[{BCE8A082-B5CD-46CD-8028-98414AF78ECA}] <C:\WINDOWS\system32\bceoagoi.dll>
[{C0B3CA2B-1512-4DD0-AF18-B8D3515EFC52}] <C:\WINDOWS\system32\cgbjcaib.dll>
[{1A52DDA4-F53C-4889-956B-178ACA7068B5}] <C:\WINDOWS\system32\haliddak.dll>
[{4DA59342-6A7E-4303-ABD2-B2CDC9C1AF22}] <C:\WINDOWS\system32\kdalpjki.dll>
[{09EA5BA1-5CBE-4F07-86AA-E10ECE893371}] <C:\WINDOWS\system32\gpealbah.dll>
[{F0B52D37-A277-427F-AB37-86C5C19BA574}] <C:\WINDOWS\system32\fgblidjn.dll>
[{984B3393-06EF-4C61-9415-3A9DE1462476}] <C:\WINDOWS\system32\pokbjjpj.dll>
[{D8B51C13-B969-4376-B550-4954EAA61134}] <C:\WINDOWS\system32\doblhchj.dll>
[D8B51C13] <C:\WINDOWS\system32\doblhchj.dll>
[0113BA92] <C:\WINDOWS\system32\ghhjbapi.dll>
[1A52DDA4] <C:\WINDOWS\system32\haliddak.dll>
[F0B52D37] <C:\WINDOWS\system32\fgblidjn.dll>
[C829D1E5] <C:\WINDOWS\system32\coipdhel.dll>
[C0B3CA2B] <C:\WINDOWS\system32\cgbjcaib.dll>
[D17E1746] <C:\WINDOWS\system32\dhnehnkm.dll>
[4DA59342] <C:\WINDOWS\system32\kdalpjki.dll>
[0BC1D565] <C:\WINDOWS\system32\gbchdlml.dll>
[09EA5BA1] <C:\WINDOWS\system32\gpealbah.dll>
[BCE8A082] <C:\WINDOWS\system32\bceoagoi.dll>
[984B3393] <C:\WINDOWS\system32\pokbjjpj.dll>
[IFEO[Thunder5.exe]] <svchost.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><kmon.dll,gpealbah.dll>
改为<kmon.dll>
启动项目 -- 服务-- 驱动程序之如下项删除:
(勾选隐藏已认证的微软项目,选中有问题的驱动/服务后,点"删除服务",点"设置"按钮即可。注意弹出的窗口中要点"否"才是确认删除服务)
[msiffei / msiffei] <System32\Drivers\msiffei.sys>
