| 引用: |
【chinaflower的贴子】用高人推荐的费尔木马强力清除助手,结果变成"a.exe.0DEL.VIR"了!郁闷!!!
……………… |
再删除C:\Documents and Settings\All Users\「开始」菜单\程序\启动\RsAutorunsDisabled文件夹。
这里官网下载冰刃,在“文件”里找那文件夹强制删除:
http://mail.ustc.edu.cn/~jfpan/download/IceSword122cn.zip 关闭瑞星的所有监控
————————————————————————————————————
在扫日志的SRENG工具》启动项目》注册表》里面找下面项目修改置空:
启动项目
注册表
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><utgnehz.dll,nauhgnem.dll,auhad.dll,nuygnef.dll,uohsom.dll,uyom.dll,gnolnait.dll,ijiq.dll,ijougiemnaw.dll,iemnaw.dll,niluw.dll,naixuhz.dll,xhtd.dll,oadgnohiac.dll,iqnauhc.dll,nahzij.dll,gnefnaib.dll,gsqq.dll,3auhad.dll,naijoad.dll,aixauh.dll,xhqq.dll,QQ.dll,hjxr.dll,zqhs.dll,oadnew.dll,dgzg.dll,hz.dll,2ty.dll,jsfg.dll,rj.dll,fmxh.dll,jmx.dll,wtwx.dll,ddtj.dll,fz.dll,gnaixnauhuoyizqq.dll,gnaixnauhqq.dll,2nauygniqaixnaij.dll,naijihzeuyouhz.dll,uyomielnux.dll,vlihzouhgnfe.dll,sfhx.dll,eve.dll,jsqc.dll,wtiemnaw.dll,dqncj.dll> [N/A]
就是将 <AppInit_DLLs><utgnehz.dll,nauhgnem.dll,auhad.dll,nuygnef.dll,uohsom.dll,uyom.dll,gnolnait.dll,ijiq.dll,ijougiemnaw.dll,iemnaw.dll,niluw.dll,naixuhz.dll,xhtd.dll,oadgnohiac.dll,iqnauhc.dll,nahzij.dll,gnefnaib.dll,gsqq.dll,3auhad.dll,naijoad.dll,aixauh.dll,xhqq.dll,QQ.dll,hjxr.dll,zqhs.dll,oadnew.dll,dgzg.dll,hz.dll,2ty.dll,jsfg.dll,rj.dll,fmxh.dll,jmx.dll,wtwx.dll,ddtj.dll,fz.dll,gnaixnauhuoyizqq.dll,gnaixnauhqq.dll,2nauygniqaixnaij.dll,naijihzeuyouhz.dll,uyomielnux.dll,vlihzouhgnfe.dll,sfhx.dll,eve.dll,jsqc.dll,wtiemnaw.dll,dqncj.dll> [N/A] 项置空为:
<AppInit_DLLs><> []
——————————————————————————————————————————
下面这驱动不认识,愿意的话,
在扫日志的SRENG工具》启动项目》服务》驱动程序》里面找下面项删除,或将启动类型改为“Disabled”
==================================
驱动程序
[pnicml / pnicml][Stopped/Manual Start]
<\??\C:\DOCUME~1\AA\LOCALS~1\Temp\pnicml.sys><N/A>
————————————————————————————————————
再重启电脑,升级杀毒软件至最新版本,全盘杀毒。
这里官网下载Windows清理助手,清理你那系统。
http://www.arswp.com/
