programdata入面冇野,附hijackthis
时间:2014-04-03
来源:互联网
我想去programdata入面搵d野黎copy做backup,
但我program data入要乜都冇得个tempraw档,点解?系咪中毒?正常唔系有晒好多程式既data架咩ps.呢个post系问我部desktop,同上个post问既laptop系唔同
Logfile of Trend Micro HijackThis v2.0.5Scan saved at 下午 06:32:09, on 2014/2/22Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)
FIREFOX: 26.0 (zh-TW)Boot mode: Normal
Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir Desktop\sched.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Avira\AntiVir Desktop\avguard.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Java\jre7\bin\jqs.exeC:\WINDOWS\system32\KaraokeSer.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Avira\AntiVir Desktop\avshadow.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\system32\WgaTray.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files\881903\IETOOLBAR\hkmgr.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\Avira\AntiVir Desktop\avgnt.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\Office 2003 BY Fantastic-Destiny\Office12\GrooveMonitor.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exeC:\Documents and Settings\Au Wai Keung.AU\Local Settings\Application Data\FluxSoftware\Flux\flux.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exeC:\WINDOWS\system32\QTRAYIME.EXEC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Garena Plus\ggdllhost.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\WINDOWS\system32\NOTEPAD.EXEC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\system32\q922b5.exeC:\WINDOWS\system32\msiexec.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\BlueStacks-SplitInstaller_native.exeC:\DOCUME~1\AUWAIK~1.AU\LOCALS~1\Temp\7zSA31.tmp\BlueStacks-ThinInstaller_0.8.5.3042.exeC:\DOCUME~1\AUWAIK~1.AU\LOCALS~1\Temp\7zSA31.tmp\BlueStacks-ThinInstaller_0.8.5.3042.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\HijackThis.exe
O2 - BHO: ShowHKToolbar Class - {06433BFE-4946-4E89-823D-CD359C81CD06} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dllO2 - BHO: Hong Kong Toolbar - {481EE3EC-C026-4F9A-BA22-FD07654ADFC0} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\GRA8E1~1.DLLO2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllO2 - BHO: PPStream Video Acc Helper - {FB4F6285-4C32-49F2-950F-A5998F9CEC6C} - C:\Program Files\PPStream\plugins\IEHelper.dllO3 - Toolbar: Hong Kong Toolbar - {481EE3EC-C026-4F9A-BA22-FD07654ADFC0} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO4 - HKLM\..\Run: [XboxStat] "c:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrunO4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunO4 - HKLM\..\Run: [RaidCall] C:\Program Files\RC语音\\raidcall.exeO4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [HKToolbarManager] "C:\Program Files\881903\IETOOLBAR\hkmgr.exe"O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /minO4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"O4 - HKLM\..\Run: [IME14 CHT Uninstall] C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE /Uninstall /CHT /LogO4 - HKLM\..\Run: [GrooveMonitor] "C:\Documents and Settings\Au Wai Keung.AU\桌面\Office 2003 BY Fantastic-Destiny\Office12\GrooveMonitor.exe"O4 - HKCU\..\Run: [UpdateMyDrivers.exe] C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ssO4 - HKCU\..\Run: [UpdateMyDrivers] C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ssO4 - HKCU\..\Run: [GarenaPlus] "C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunchO4 - HKCU\..\Run: [F.lux] "C:\Documents and Settings\Au Wai Keung.AU\Local Settings\Application Data\FluxSoftware\Flux\flux.exe" /noshowO4 - HKCU\..\Run: [EADM] C:\Program Files\Origin\Origin.exe -AutoStartO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [PPS Accelerator] C:\Program Files\PPStream\PPSKernel.exeO4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [PPS Accelerator] C:\Program Files\PPStream\PPSKernel.exe (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O8 - Extra context menu item: 传送至 OneNote(&N) - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105O8 - Extra context menu item: 汇出至 Microsoft Excel(&X) - res://C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\EXCEL.EXE/3000O9 - Extra button: 传送至 OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: 传送至 OneNote(E) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\REFIEBAR.DLLO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO15 - ESC Trusted Zone: http://*.update.microsoft.com
但我program data入要乜都冇得个tempraw档,点解?系咪中毒?正常唔系有晒好多程式既data架咩ps.呢个post系问我部desktop,同上个post问既laptop系唔同
Logfile of Trend Micro HijackThis v2.0.5Scan saved at 下午 06:32:09, on 2014/2/22Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)
FIREFOX: 26.0 (zh-TW)Boot mode: Normal
Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir Desktop\sched.exeC:\WINDOWS\system32\Ati2evxx.exeC:\Program Files\Avira\AntiVir Desktop\avguard.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Java\jre7\bin\jqs.exeC:\WINDOWS\system32\KaraokeSer.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Avira\AntiVir Desktop\avshadow.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\system32\WgaTray.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exeC:\Program Files\Common Files\Java\Java Update\jusched.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exeC:\Program Files\881903\IETOOLBAR\hkmgr.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\Avira\AntiVir Desktop\avgnt.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\Office 2003 BY Fantastic-Destiny\Office12\GrooveMonitor.exeC:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exeC:\Documents and Settings\Au Wai Keung.AU\Local Settings\Application Data\FluxSoftware\Flux\flux.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exeC:\WINDOWS\system32\QTRAYIME.EXEC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Garena Plus\ggdllhost.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\WINDOWS\system32\NOTEPAD.EXEC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\WINDOWS\system32\q922b5.exeC:\WINDOWS\system32\msiexec.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\BlueStacks-SplitInstaller_native.exeC:\DOCUME~1\AUWAIK~1.AU\LOCALS~1\Temp\7zSA31.tmp\BlueStacks-ThinInstaller_0.8.5.3042.exeC:\DOCUME~1\AUWAIK~1.AU\LOCALS~1\Temp\7zSA31.tmp\BlueStacks-ThinInstaller_0.8.5.3042.exeC:\Documents and Settings\Au Wai Keung.AU\桌面\HijackThis.exe
O2 - BHO: ShowHKToolbar Class - {06433BFE-4946-4E89-823D-CD359C81CD06} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dllO2 - BHO: Hong Kong Toolbar - {481EE3EC-C026-4F9A-BA22-FD07654ADFC0} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\GRA8E1~1.DLLO2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dllO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dllO2 - BHO: PPStream Video Acc Helper - {FB4F6285-4C32-49F2-950F-A5998F9CEC6C} - C:\Program Files\PPStream\plugins\IEHelper.dllO3 - Toolbar: Hong Kong Toolbar - {481EE3EC-C026-4F9A-BA22-FD07654ADFC0} - C:\Program Files\881903\IETOOLBAR\hktbar.dllO4 - HKLM\..\Run: [XboxStat] "c:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrunO4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRunO4 - HKLM\..\Run: [RaidCall] C:\Program Files\RC语音\\raidcall.exeO4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNCO4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32O4 - HKLM\..\Run: [HKToolbarManager] "C:\Program Files\881903\IETOOLBAR\hkmgr.exe"O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /minO4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"O4 - HKLM\..\Run: [IME14 CHT Uninstall] C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEKLMG.EXE /Uninstall /CHT /LogO4 - HKLM\..\Run: [GrooveMonitor] "C:\Documents and Settings\Au Wai Keung.AU\桌面\Office 2003 BY Fantastic-Destiny\Office12\GrooveMonitor.exe"O4 - HKCU\..\Run: [UpdateMyDrivers.exe] C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ssO4 - HKCU\..\Run: [UpdateMyDrivers] C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ssO4 - HKCU\..\Run: [GarenaPlus] "C:\Program Files\Garena Plus\GarenaMessenger.exe" -autolaunchO4 - HKCU\..\Run: [F.lux] "C:\Documents and Settings\Au Wai Keung.AU\Local Settings\Application Data\FluxSoftware\Flux\flux.exe" /noshowO4 - HKCU\..\Run: [EADM] C:\Program Files\Origin\Origin.exe -AutoStartO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO4 - HKCU\..\Run: [PPS Accelerator] C:\Program Files\PPStream\PPSKernel.exeO4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [PPS Accelerator] C:\Program Files\PPStream\PPSKernel.exe (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')O8 - Extra context menu item: 传送至 OneNote(&N) - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105O8 - Extra context menu item: 汇出至 Microsoft Excel(&X) - res://C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\EXCEL.EXE/3000O9 - Extra button: 传送至 OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: 传送至 OneNote(E) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\DOCUME~1\AUWAIK~1.AU\桌面\OFFICE~1\Office12\REFIEBAR.DLLO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO15 - ESC Trusted Zone: http://*.update.microsoft.com
作者: kennethawk 发布时间: 2014-04-03
作者: kennethawk 发布时间: 2014-04-03
1. 下载/执行RogueKiller
>>32bits(x86)按此下载<<
>>64bits(x64)按此下载<<
(下载软件至桌面)
1. 执行RogueKiller前请先关闭所有程式
2. Vista/Windows7用家: 对住软件按右键,选择以系统管理员身份执行
WindowsXP用家: 直接双击软件
3. 等候预扫描完成
4. 接受条款
5. 按下[扫描]执行扫毒程序
6. 等候出现「扫描完成。」
7. 按下[删除]移除有害对象
8. 此时,桌面会有两份报告(RKreport[0].......txt),
请将较新的一份报告用Sendspace上传报告
9. 将连结贴在回覆中
2. 下载/安装Malwarebytes Anti-Malware Free
>>下载请按此<<
(下载软件至桌面)
1. 执行安装工具 (用预设值,一直下一步就可以)
2. 安装后,请取消勾选升级到Pro试用版
3. 更新后,请执行完整扫描
4. 扫描完成后,请按右键,按检查所有项目
5. 按清除,有需要的话请重新开机
6. 会有报告弹出来
7. 将佢另存於桌面
8. 用Sendspace上传报告
9. 将连结贴在回覆中
>>32bits(x86)按此下载<<
>>64bits(x64)按此下载<<
(下载软件至桌面)
1. 执行RogueKiller前请先关闭所有程式
2. Vista/Windows7用家: 对住软件按右键,选择以系统管理员身份执行
WindowsXP用家: 直接双击软件
3. 等候预扫描完成
4. 接受条款
5. 按下[扫描]执行扫毒程序
6. 等候出现「扫描完成。」
7. 按下[删除]移除有害对象
8. 此时,桌面会有两份报告(RKreport[0].......txt),
请将较新的一份报告用Sendspace上传报告
9. 将连结贴在回覆中
2. 下载/安装Malwarebytes Anti-Malware Free
>>下载请按此<<
(下载软件至桌面)
1. 执行安装工具 (用预设值,一直下一步就可以)
2. 安装后,请取消勾选升级到Pro试用版
3. 更新后,请执行完整扫描
4. 扫描完成后,请按右键,按检查所有项目
5. 按清除,有需要的话请重新开机
6. 会有报告弹出来
7. 将佢另存於桌面
8. 用Sendspace上传报告
9. 将连结贴在回覆中
作者: GoodestEngilsh 发布时间: 2014-04-03
得rk既log
http://www.sendspace.com/file/voymaq
Malwarebytes就del紧毒果阵无端端有个视窗弹出黎,我禁ok就熄左,再开番我去隔离区del左2xx个毒,
但日志果度冇log
http://www.sendspace.com/file/voymaq
Malwarebytes就del紧毒果阵无端端有个视窗弹出黎,我禁ok就熄左,再开番我去隔离区del左2xx个毒,
但日志果度冇log
作者: kennethawk 发布时间: 2014-04-03
请提供Programdata之截图 
作者: GoodestEngilsh 发布时间: 2014-04-03
http://postimg.org/image/6mtubexfb/
Thanks
Thanks
作者: kennethawk 发布时间: 2014-04-03
作者: GoodestEngilsh 发布时间: 2014-04-03
作者: kennethawk 发布时间: 2014-04-03
请试试以下步骤以反隐藏档案:
Windows+R > 输入cmd > 输入「attrib –s –h –r /d /s」(可以copy括号内的文字,到cmd以右键方式贴上) > 按enter > 耐心等候 > 完成后重启电脑观察
Windows+R > 输入cmd > 输入「attrib –s –h –r /d /s」(可以copy括号内的文字,到cmd以右键方式贴上) > 按enter > 耐心等候 > 完成后重启电脑观察
作者: GoodestEngilsh 发布时间: 2014-04-03
首先copy完落去话格式唔岩
之后我自己打落去,好快就搞掂唔洗等好耐,
重新开机,弹出左个叫desktop既记事本,入面系" [LocalizedFileNames]
启动 Internet Explorer 浏览器[email protected],-11003
显示桌面[email protected],-6100 "
之后我自己打落去,好快就搞掂唔洗等好耐,
重新开机,弹出左个叫desktop既记事本,入面系" [LocalizedFileNames]
启动 Internet Explorer 浏览器[email protected],-11003
显示桌面[email protected],-6100 "
作者: kennethawk 发布时间: 2014-04-03
同埋program data入面都系得个tempraw档
作者: kennethawk 发布时间: 2014-04-03
请对资料夹按下右键 > 按下[内容] > 截图并贴上
作者: GoodestEngilsh 发布时间: 2014-04-03
http://postimg.org/image/udzl7ddxv/
作者: kennethawk 发布时间: 2014-04-03
Windows XP 系无 <ProgramData> 呢个资料夹架
XP: Documents and Settings\All Users\Application Data
= Vista/7: ProgramData
XP: Documents and Settings\All Users\Application Data
= Vista/7: ProgramData
作者: GoodestEngilsh 发布时间: 2014-04-03
唔该晒
我搵到d 档喇
真系唔该晒你
我搵到d 档喇
真系唔该晒你
作者: kennethawk 发布时间: 2014-04-03
相关阅读 更多
热门阅读
-
office 2019专业增强版最新2021版激活秘钥/序列号/激活码推荐 附激活工具
阅读:74
-
如何安装mysql8.0
阅读:31
-
Word快速设置标题样式步骤详解
阅读:28
-
20+道必知必会的Vue面试题(附答案解析)
阅读:37
-
HTML如何制作表单
阅读:22
-
百词斩可以改天数吗?当然可以,4个步骤轻松修改天数!
阅读:31
-
ET文件格式和XLS格式文件之间如何转化?
阅读:24
-
react和vue的区别及优缺点是什么
阅读:121
-
支付宝人脸识别如何关闭?
阅读:21
-
腾讯微云怎么修改照片或视频备份路径?
阅读:28
