这几步非常重要,所以一定要先做好,要不重起进不了系统的话就别抱怨:下载三个附件,
1.解压“附件1.rar” 双击“IFEO修复(XP).reg” 将注册表导入;
2.解压“修复.rar” 运行“修复.exe” 按任意键继续,直到提示复制完成;
3.解压“ctfmon.rar” 复制“ctfmon.exe”文件粘贴到 c:\windows\system32\文件夹内,提示替换时选“是”。
上面几步做完后继续下面的清理:
1.用XDelBox勾选抑制再生后删除以下文件:(
XDelBox1.7支持奥运版下载)
使用说明:删除时复制所有要删除文件的路径,在待删除文件列表里点击右键选择
从剪贴板导入不检查路径,导入后在要删除文件上点击右键,选择立刻重启删除,电脑会重启进入DOS界面进行删除操作。运行xdelbox前最好卸载所有可移动存储介质(包括U盘,MP3,手机存储卡等)。
c:\windows\system32\dscef.dll
c:\windows\system32\ektvm.dll
c:\windows\system32\tuker.dll
c:\windows\system32\ujkwet.dll
c:\windows\system32\winlib .dll
c:\windows\system32\shellext\drmce.dll
c:\program files\internet explorer\plugins\windows64.sys
c:\windows\system32\cedafb.dll
c:\windows\system32\ddserh.dll
c:\windows\system32\gjbhr.dll
c:\windows\system32\hjk.dll
c:\windows\system32\jfrwdh.dll
c:\windows\system32\jggtsr.dll
c:\windows\system32\jhfrxz.dll
c:\windows\system32\kcomi32.dll
c:\windows\system32\mfdesy.dll
c:\windows\system32\mtewdh.dll
c:\windows\system32\sgrefg.dll
c:\windows\system32\wfrdvq.dll
c:\windows\system32\wklsdd.dll
c:\windows\system32\wyhesm.dll
c:\windows\system32\wyrsdj.dll
c:\windows\system32\zefdst.dll
c:\windows\system32\zgrjdx.dll
c:\windows\system32\684581cz.dll
c:\windows\system32\mmbaikok1095.dll
c:\windows\system32\mmcbdktk1086.dll
c:\windows\system32\mmdlqjer1033.dll
c:\windows\system32\mmdxybqe1037.dll
c:\windows\system32\mmhadpqg1094.dll
c:\windows\system32\mmkafnfw1102.dll
c:\windows\system32\mmqacnar1066.dll
c:\windows\system32\rewkljlpw.dll
c:\windows\soundman.exe
c:\windows\system32\kcomi32.exe
c:\windows\kcomi32.exe
c:\windows\iiiiii.exe
c:\windows\soundman.exe
c:\windows\system32\interne.exe
c:\windows\system32\drivers\36jsuwf9.sys
c:\windows\system32\qoljfc
c:\windows\system32\drivers\hdv32_c.sys
c:\windows\system32\wwtroo
c:\windows\system32\drivers\n81f.sys
c:\windows\system32\drivers\hbkernel.sys
c:\windows\temp\~wxp2ins.187.tmp
c:\windows\system32\drivers\acpidisk.sys
c:\documents and settings\all users\application data\microsoft\pctools\pctools.dll
2.删除重启后使用SREng修复下面各项: 启动项目 -- 注册表之如下项删除:
[{7914E0AA-ECCB-4311-B584-C49538227824}]
[{2f576a94-9a0c-4268-8d9f-ac13a42376fb}]
[{6BBAA1E6-CF54-4139-AB9C-8491A9F909D7}]
[{CAED0F3B-DF8B-4DBF-BB20-8DFBC3199068}]
[{425f569c-47ec-4435-8cd3-9b57a86a3d20}]
[{51546784-adf6-459d-b950-f8cd8ba4d640}]
[{84143967-B645-4BFF-B873-DA1DC886E9A7}]
[{8C41B7F7-3168-400D-A702-0E7EFE0BA304}]
[{1E51C0FD-EE36-434B-AD2A-FD1FF3731C38}]
[{E8A3B193-77E3-4FB3-986D-F4FA4828BAFC}]
[{506484e0-0ae1-4013-b72b-cfbbe478face}]
[{42e9110a-f4e4-485f-a00b-46b8bd0649cb}]
[{9025283f-80cd-4971-aafb-40fca1e47850}]
[{ab5f91ae-daae-4472-b6ce-53755ce06a2a}]
[{56F9B9E2-1152-4DB9-93BE-4F5E848C7E60}]
[{45AADFAA-DD36-42AB-83AD-0521BBF58C24}]
[{841529CB-7F77-4B99-A895-B5441E0D302F}]
[{EB71E0B3-E97D-4D30-8733-E28266467617}]
[{A9895933-6636-4281-BC58-EE6DE2AF96E3}]
[{DC3D30AE-0380-4151-8934-EE98A34B0370}]
[{28EB3777-3E23-4E72-8449-A992D09D24C3}]
[{189F087F-4378-405F-85FA-37D955AD7A8C}]
注意该项[AppInit_DLLs]修改:把<hjk.dll,gjbhr.dll,ilkyu.dll,yukevg.dll,sergy.dll,ergfwe.dll,hffgth.dll,tyjert.dll,rthkyuk.dll,jkjkll.dll,ghjyer.dll,kergt.dll,fgthde.dll,losdf.dll,gfcfg.dll,reger.dll,hrergh.dll,frntrn.dll,qrhhb.dll,drghszd.dll,fngn.dll,gnfctt.dll,xgnfn.dll,xfgnhcgfm.dll,serger.dll,bnxnb.dll,fxgnfx.dll,jzijj.dll,xfgnfx.dll,serghjm.dll,thsddh.dll,xbcvxb.dll,zfdzb.dll,xdndn.dll,xdfntt.dll,hgfhk.dll,dnteh.dll,xfng.dll,njritc.dll,chmfcmh.dll,jwlah.dll,gmnait.dll,hfjg.dll,thurh.dll,mgmgmm.dll,oqrthc.dll,wergjuk.dll,jyjlt.dll,ijatnaw.dll,sehhter.dll,fhjfg.dll,zdbdb.dll,ydgn.dll,dbfb.dll,fjnbv.dll,grgrjj.dll,setrhes.dll,cdxbfxdb.dll,xfgnxfn.dll,gjkhj.dll,xdhdg.dll,rhs.dll,mrjhtjd.dll,zdbfbd.dll,fjyjy.dll,fxnfnh.dll,bjrvm.dll,ektvm.dll,ghthhh.dll,yjrfe.dll,dscef.dll,crugd.dll,lariytrz.dll,hjaiq.dll,kduy.dll,hkfgh.dll,awef.dll,dfhsh.dll,ethsh.dll,stehs.dll,sthth.dll,wfhyt.dll,rgghjj.dll,ghjkdr.dll,hfther.dll,>修改为<>即清空
[kcomi]
[rewkljlpw]
[SoundMan]
启动项目 -- 服务 -- Win32服务应用程序之如下项删除:
[Help and Support / helpsvc]
启动项目 -- 服务-- 驱动程序之如下项删除:
[36jsuwf / 36jsuwf9]
[qoljfc / qoljfc]
[Hdv32 / Hdv32]
[wwtroo / wwtroo]
[n81f / n81f]
[HBKernel Driver / HBKernel]
[Atixeve26078 / Atixeve26078]
[acpidisk / acpidisk]
系统修复-- 浏览器加载项之如下项删除:
[] <C:\Program Files\Internet Explorer\PLUGINS\Windows64.Sys>
[] <C:\Program Files\Internet Explorer\PLUGINS\Windows64.Sys>
[Info cache] <C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll>
[Info cache] <C:\Documents and Settings\All Users\Application Data\Microsoft\PCTools\pctools.dll>
做完下载以下软件清理一次并更新杀毒软件至最新进行全盘杀毒一次
清理系统临时文件和IE临时文件夹
http://www.atribune.org/public-beta/ATF-Cleaner.exe 用金山清理专家清理恶意软件
http://www.duba.net/zt/ksc/down.shtml 下载 windows清理助手清理一遍
http://www.arswp.com/download/arswp2/arswp2.zip全部做完之后一定记住参考这里:
http://bbs.ikaka.com/showtopic-8508653.aspx 将补丁打上 如果不打该补丁造成病毒反复发作而来求助的将不予理会
