清除步骤:
下载sreng2.zip(作为备用)和IceSword120_cn.zip(以下简称冰刃)
sreng2:http://www.motoyi.com/Down/Noted/200705/Down_28.shtml
IceSword120:http://www.motoyi.com/Down/Noted/200704/Down_10.shtml
1. 删除病毒创建的ShellServiceObjectDelayLoad启动项目(打开冰刃-注册表-依次找到病毒注册表选项删除即可):
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"prodigy1"="{XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX}"
[HKEY_CLASSES_ROOT\CLSID\{XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX}\InProcServer32]
@="prodigys323.dll"
2. 重新启动计算机
3. 删除病毒文件(打开冰刃-文件-依次找到病毒文件删除即可):
%Windows%\PictureAlbum2007.zip
%System%\prodigys323.dll
%userprofile%\new.txt(可能存在) |
您现在的位置: 