註冊 微博



打印

[已解決] 請問如何徹底移除snap.do? 不想重裝電腦, 請教教我, 謝謝.

請問如何徹底移除snap.do? 不想重裝電腦, 請教教我, 謝謝. E-mail 此主題給朋友

[隱藏]
已用geek uninstaller 刪了snap, "程式和功能" 那裡已沒了snap, 但IE的附加功能還有snap, 在 "管理IE附加元件" 的 "移除" 按鈕是反白(如圖), 無法刪除, 試了網上找到的方法: 停用元件後, 在 網際網路選項>一般>設定>檢視物件>將停用之元件刪除. 之後, 還是存在, 本來用IE 10, 移除了, 現在用IE 9, 還是一樣刪除不了snap元件,

另外, 在開始功能表有個 "Search" (如圖), 檔案位置是 chrome, 但chrome瀏覽器的擴充功能內已沒有 Search/snap, 本來是有的, 但刪除了, 後將chrome移除, 重裝chrome, 就沒有了, 但那個  "Search" 的檔案位置還是 chrome,

請問, 如何徹底移除? 不想重裝電腦, 唉, 苦惱, 請教教我, 謝謝大家.

[ 本帖最後由 tinbox20 於 2013-6-19 09:08 PM 編輯 ]



實用相關搜尋: 網上 電腦

TOP HOME

引用:
原帖由 tinbox20 於 2013-6-15 08:24 PM 發表
已用geek uninstaller 刪了snap, "程式和功能" 那裡已沒了snap, 但IE的附加功能還有snap, 在 "管理IE附加元件" 的 "移除" 按鈕是反白(如圖)http://i991.photobucket.com/albums/af37/myrrh333/15-6-201319-29-53_zps ...
請先做Hijackthis掃瞄報告貼上:
引用:

下載Hijackthis至桌面 > 按 Install > 按[ Accept] > 按 [Do a system scan and save a logfile ] > 完成掃瞄系統,Hijackthis會彈出報告。

儲存該掃瞄報告於桌面。請把Hijackthis 掃瞄報告帖上。

TOP HOME

謝謝回覆! 用ccleaner 刪除到IE 附加元件個snap 哪, 不過 "search" 安裝位置仲喺chrome 度.

麻煩晒, 謝謝!
Hijackthis掃瞄報告:

Logfile of Trend Micro HijackThis v2.0.5Scan saved at 21:19:28, on 15/6/2013Platform: Windows 7 SP1 (WinNT 6.00.3505)MSIE: Internet Explorer v9.00 (9.00.8112.16483)

Boot mode: Normal
Running processes:C:\Users\JONI\AppData\Local\Akamai\netsession_win.exeC:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Users\JONI\AppData\Local\Smartbar\Application\SnapDo.exeC:\Users\JONI\AppData\Local\Akamai\netsession_win.exeC:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\USB Camera2\VM332_STI.EXED:\Program\Acrobat 10.0\Acrobat\acrotray.exeC:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exeC:\Program Files (x86)\iTunes\iTunesHelper.exeC:\Program Files (x86)\Real\RealPlayer\Update\realsched.exeC:\Program Files (x86)\QvodPlayer\QvodTerminal.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exeC:\Program Files (x86)\Skype\Phone\Skype.exeC:\Users\JONI\Downloads\Techsmith Snagit 11.0.0 Build 207\Snagit32.exeC:\Users\JONI\Downloads\Techsmith Snagit 11.0.0 Build 207\TSCHelp.exeC:\Users\JONI\Downloads\Techsmith Snagit 11.0.0 Build 207\SnagPriv.exeC:\Users\JONI\Downloads\Techsmith Snagit 11.0.0 Build 207\snagiteditor.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exeC:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\klwtblfs.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Program Files (x86)\Google\Chrome\Application\chrome.exeC:\Users\JONI\Desktop\HijackThis.exe




附件

hijackthis.log (18.44 KB)

2013-6-15 09:29 PM, 下載次數: 105

TOP HOME

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\Program\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: XlBrowserAddinBho.XlBrowserAddinBhoObject - {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} - C:\Program Files (x86)\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: (no name) - {338D7653-8FB3-5F28-902C-103E90EA8485} - (no file)
O2 - BHO: ContentBlockerBrowserHelperObject - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: XunleiBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files (x86)\Thunder Network\Thunder\BHO\XunleiBHO7.2.8.3574.dll
O2 - BHO: Windows Live ID 登入協助程式 - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: QvodExtend - {A8502600-B272-4F68-A67B-A0305D46D297} - C:\Program Files (x86)\QvodPlayer\QvodExtend\5.0.86.0\QvodExtend.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64 Class - {DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64} - C:\Program Files (x86)\QvodPlayer\AddIn\{DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64}\QvodAddr.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\Program\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE



實用相關搜尋: Java Microsoft google

TOP HOME

[隱藏]
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [IME14 CHT Setup] C:\PROGRA~2\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHT /Log
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "D:\Program\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "D:\Program\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot
O4 - HKLM\..\Run: [QvodTerminal] "C:\Program Files (x86)\QvodPlayer\QvodTerminal.exe" -autorun
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\JONI\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &使用115優蛋 3下載 - C:\Users\JONI\Downloads\軟件\115UDownPortable\App\UDown\getUrl.htm
O8 - Extra context menu item: &使用115優蛋 3下載全部連結 - C:\Users\JONI\Downloads\軟件\115UDownPortable\App\UDown\getAllUrl.htm
O8 - Extra context menu item: &妏蚚&捃濘燭盄狟婥 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\OfflineDownload.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Foxy 下載 - res://C:\Users\JONI\Desktop\FOXY1.9.9_im88\FOXY1.9.9\Foxy.exe/download.htm
O8 - Extra context menu item: Foxy 搜尋 - res://C:\Users\JONI\Desktop\FOXY1.9.9_im88\FOXY1.9.9\Foxy.exe/search.htm
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: 傳送影像到 Bluetooth 裝置(&B)... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: 傳送頁面到 Bluetooth 裝置(&B)... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: 新增到卡巴斯基廣告橫幅防護清單 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
O8 - Extra context menu item: 氝樓峈陝爵咺咺桶① - C:\Program Files (x86)\AliWangWang\7.10.04C\AddNewEmotion.htm
O8 - Extra context menu item: 用 Flash 抓捕器保存 Flash - res://C:\Program Files\Common Files\justDo\IECatcher.DLL/FlashCatcher.htm
O8 - Extra context menu item: 透過Mipony下載 - file://C:\Users\JONI\Downloads\白馬下載器\App\MiPony\Browser\IEContext.htm
O9 - Extra button: 虛擬鍵盤(&V) - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll



實用相關搜尋: Software 軟件 廣告 Microsoft google

TOP HOME

O9 - Extra button: 傳送至 OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: 傳送至 OneNote(&N) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote 連結筆記(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote 連結筆記(&K) - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Flash 抓捕器 - {90BAE0EF-F4BF-4FAC-B2EC-2C725C34AF12} - (no file)
O9 - Extra 'Tools' menuitem: Flash 抓捕器 - {90BAE0EF-F4BF-4FAC-B2EC-2C725C34AF12} - (no file)
O9 - Extra button: 傳送到 Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: 傳送到 &Bluetooth 裝置... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: 檢查網址(&H) - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.alipay.com
O15 - Trusted Zone: http://*.alisoft.com
O15 - Trusted Zone: http://*.taobao.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: HighSpeedDownloadIE - http://st1.dbank.com/netdisk/plugin/1038/DBankPlugin.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.co ... s/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:  
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus服務 (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Bonjour 服務 (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe



實用相關搜尋: Software Microsoft 檢查

TOP HOME

O23 - Service: Broadcom Power monitoring service (BPowMon) - Broadcom Corp. - C:\Program Files\Broadcom\BPowMon\BPowMon.exeO23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exeO23 - Service: Intel(R) PROSet/無線 WiMAX Red Bend 裝置管理服務 (DMAgent) - Red Bend Ltd. - C:\Program Files\Intel\WiMAX\Bin\DMAgent.exeO23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exeO23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)O23 - Service: Google更新 服務 (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google更新 服務 (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeO23 - Service: iPod 服務 (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exeO23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exeO23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exeO23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exeO23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exeO23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exeO23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exeO23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exeO23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)


實用相關搜尋: Software google

TOP HOME

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Intel(R) PROSet/無線 WiMAX 服務 (WiMAXAppSrv) - Intel(R) Corporation - C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
O23 - Service: wlcommsvc - Just Orange - C:\Program Files (x86)\MSN\Service\wlcommsvc.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe

--
End of file - 18727 bytes

好長篇, 唔好意思, 麻煩晒.




TOP HOME

開機按F8,入安全模式做Fix checked & OTM 刪除。

1.執行Hijackthis > Do a system scan only > 勾選下列項目 > 按Fix Checked (fix checked時關閉所有browsers/程式) > 按"是"。
引用:

O2 - BHO: XlBrowserAddinBho.XlBrowserAddinBhoObject - {0EA37B17-6B8B-4085-8257-F3A4AA69C27A} - C:\Program Files (x86)\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
O2 - BHO: (no name) - {338D7653-8FB3-5F28-902C-103E90EA8485} - (no file)
O2 - BHO: XunleiBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - C:\Program Files (x86)\Thunder Network\Thunder\BHO\XunleiBHO7.2.8.3574.dll
O2 - BHO: QvodExtend - {A8502600-B272-4F68-A67B-A0305D46D297} - C:\Program Files (x86)\QvodPlayer\QvodExtend\5.0.86.0\QvodExtend.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64 Class - {DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64} - C:\Program Files (x86)\QvodPlayer\AddIn\{DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64}\QvodAddr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file)


O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "D:\Program\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "D:\Program\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QvodTerminal] "C:\Program Files (x86)\QvodPlayer\QvodTerminal.exe" -autorun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\JONI\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE'
)


O8 - Extra context menu item: &使用115優蛋 3下載 - C:\Users\JONI\Downloads\軟件\115UDownPortable\App\UDown\getUrl.htm
O8 - Extra context menu item: &使用115優蛋 3下載全部連結 - C:\Users\JONI\Downloads\軟件\115UDownPortable\App\UDown\getAllUrl.htm
O8 - Extra context menu item: &妏蚚&捃濘燭盄狟婥 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\OfflineDownload.htm
O8 - Extra context menu item: Foxy 下載 - res://C:\Users\JONI\Desktop\FOXY1.9.9_im88\FOXY1.9.9\Foxy.exe/download.htm
O8 - Extra context menu item: Foxy 搜尋 - res://C:\Users\JONI\Desktop\FOXY1.9.9_im88\FOXY1.9.9\Foxy.exe/search.htm
O8 - Extra context menu item: 氝樓峈陝爵咺咺桶① - C:\Program Files (x86)\AliWangWang\7.10.04C\AddNewEmotion.htm
O8 - Extra context menu item: 用 Flash 抓捕器保存 Flash - res://C:\Program Files\Common Files\justDo\IECatcher.DLL/FlashCatcher.htm
O8 - Extra context menu item: 透過Mipony下載 - [url=file://C:\Users\JONI\Downloads\]file://C:\Users\JONI\Downloads\[/url]白馬下載器\App\MiPony\Browser\IEContext.htm
O9 - Extra button: Flash 抓捕器 - {90BAE0EF-F4BF-4FAC-B2EC-2C725C34AF12} - (no file)
O9 - Extra 'Tools' menuitem: Flash 抓捕器 - {90BAE0EF-F4BF-4FAC-B2EC-2C725C34AF12} - (no file)


O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
2. 下載/執行 OTM做刪除。
copy & paste 以下項目於Paste Instructions for Items to be Moved的框格內。
按MoveIt > OK > 重啟電腦。
引用:

:files
C:\Users\JONI\AppData\Local\Akamai\netsession_win.exe
C:\Users\JONI\AppData\Local\Smartbar\Application\SnapDo.exe
C:\Program Files (x86)\QvodPlayer\QvodTerminal.exe
C:\Program Files (x86)\Thunder Network\Thunder\BHO\XlBrowserAddin1.0.7.70.dll
C:\Program Files (x86)\Thunder Network\Thunder\BHO\XunleiBHO7.2.8.3574.dll
C:\Program Files (x86)\QvodPlayer\QvodExtend\5.0.86.0\QvodExtend.dll
C:\Program Files (x86)\QvodPlayer\AddIn\{DC1FCDCA-EFAF-2B98-418D-8FA2D5749E64}\QvodAddr.dll
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
C:\Program Files (x86)\QuickTime\QTTask.exe
3. 下載/執行Junkware Removal Tool掃毒。執行掃毒前請關閉所有瀏覽器同程式
(JRT會自動刪除附於瀏覽器的惡意程式/檔案/登錄檔)

4. 關閉所有防毒軟件(包括Windows Defender),下載ComboFix至桌面 ,執行 ComboFix 掃毒。
掃瞄時不要執行其他程式或點擊 ComboFix視窗。
(ComboFix掃毒約10 -20分鐘,唔使裝"修復主控台程式")
完成掃瞄後,ComboFix 報告會自動彈出。

請貼上以下報告:
a. JRT掃毒報告。
b. ComboFix掃毒報告。
c. 新1份Hijackthis掃瞄報告。


PS: 樓主有冇印象裝左乜野軟件/程式後出現snap.do ?



[ 本帖最後由 SILVESTERABEND 於 2013-6-15 10:00 PM 編輯 ]



實用相關搜尋: Software 軟件 Canon google 電腦

TOP HOME

[隱藏]
多謝幫忙!   好大工程咁, 聽日先整.

PS: 樓主有冇印象裝左乜野軟件/程式後出現snap.do ?

http://www.fonts101.com/fonts/vi ... oss_Stitch_Delicate
喺哩度DL 嚿 stitch font, 竟然係EXE 嚟, 都知唔對路, 手痕打開, 就安裝一咋snap 垃圾, 中途斷裝都冇用, 咁就領咗嘢.



實用相關搜尋: 軟件

TOP HOME

引用:
原帖由 tinbox20 於 2013-6-15 10:12 PM 發表
多謝幫忙!   好大工程咁, 聽日先整.

PS: 樓主有冇印象裝左乜野軟件/程式後出現snap.do ?

http://www.fonts101.com/fonts/view/Uncategorized/25849/Cross_Stitch_Delicate
喺哩度DL 嚿 stit ...
CrossStichDelicate downloader檢測: https://www.virustotal.com/zh-tw/file/c1b21105df133ffd2a5b90defd30b54f0692390e88d0ba663458073ef4ed9424/analysis/1371351812/

去呢類免費軟件網站下載/安裝downloader或activeX 要極小心!



實用相關搜尋: 軟件

TOP HOME

已照指示做, 付上下報告:
a. JRT掃毒報告。
b. ComboFix掃毒報告。
c. 新1份Hijackthis掃瞄報告。
真係唔好意思, 麻煩晒版主, 唔該晒!



熱門搜尋: filter 太陽燈 咖啡 機

附件

JRT掃毒報告.txt (90.08 KB)

2013-6-18 07:52 AM, 下載次數: 45

ComboFix掃毒報告.txt (63.46 KB)

2013-6-18 07:52 AM, 下載次數: 34

新1份Hijackthis掃瞄報告.log (27.16 KB)

2013-6-18 07:52 AM, 下載次數: 32

TOP HOME

1. 下載/執行 AdwCleaner (Xplode) 掃毒。(先按[Search]做掃瞄 > 掃完毒要再按[ Delete ]刪除)
(執行Delete時要關閉所有瀏覽器同程式)

2. 下載/執行SUPERAntiSpyware Portable Scanner Personal Edition掃毒,更新後做complete scan。

3. 下載 OTL.exe於桌面。雙按OTL.exe > 按Run Scan > 完成後請將OTL掃瞄報告(OTL.txt)貼上
(OTL掃瞄需時較長,請耐心等候)



請貼上以下報告:
a. AdwCleaner刪毒報告。
b. SAS掃毒報告。
c. OTL.txt掃瞄報告。






TOP HOME

唔該晒版主!


熱門搜尋: filter 太陽燈 咖啡 機 迷你 雪櫃 冷氣

附件

AdwCleaner刪毒報告.txt (6.95 KB)

2013-6-18 11:14 PM, 下載次數: 44

SUPERAntiSpyware Scan Log - 06-18-2013 - 22-15-30.log (15.88 KB)

2013-6-18 11:14 PM, 下載次數: 28

OTL.Txt (165.22 KB)

2013-6-18 11:14 PM, 下載次數: 38

TOP HOME

[隱藏]
1. 雙按OTL.exe > 將下列檔案copy & paste 到Custom Scans/Fixes框架內 > 按左上角[Run Fix];執行fix前要關閉瀏覽器
成功fixed (刪除)會有通知(Fix complete! Click OK to open the fix log.) >按OK > 重啟電腦。

請將fixed log貼上
引用:

:OTL
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_zh-TWHK480
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8:64bit: - Extra context menu item: &使用&迅雷下载 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\geturl.htm ()
O8:64bit: - Extra context menu item: &使用&迅雷下载全部链接 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\getAllurl.htm ()
O8:64bit: - Extra context menu item: &使用&迅雷离线下载 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\OfflineDownload.htm ()
O8:64bit: - Extra context menu item: 使用快播按图找片 - C:\Program Files (x86)\QvodPlayer\AddIn\ImgSeed.htm ()
O8:64bit: - Extra context menu item: 添加为阿里旺旺表情 - C:\Program Files (x86)\AliWangWang\7.20.22C\AddNewEmotion.htm File not found
O8 - Extra context menu item: &使用&迅雷下载 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\geturl.htm ()
O8 - Extra context menu item: &使用&迅雷下载全部链接 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\getAllurl.htm ()
O8 - Extra context menu item: &使用&迅雷离线下载 - C:\Program Files (x86)\Thunder Network\Thunder\BHO\OfflineDownload.htm ()
O8 - Extra context menu item: 使用快播按图找片 - C:\Program Files (x86)\QvodPlayer\AddIn\ImgSeed.htm ()
O8 - Extra context menu item: 添加为阿里旺旺表情 - C:\Program Files (x86)\AliWangWang\7.20.22C\AddNewEmotion.htm File not found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found


:Files
ipconfig /flushdns /c


:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[Reboot]
2. 去程式集移除Chrome/Firefox (不要保留舊設定) > 重啟電腦 > 重新安裝Chrome/Firefox。

[ 本帖最後由 SILVESTERABEND 於 2013-6-19 02:21 PM 編輯 ]



實用相關搜尋: Software Microsoft google 電腦

TOP HOME

伸延閱讀
 23 12
 提示:支持鍵盤翻頁 ←左 右→ 發新話題發佈投票

重要聲明:本討論區是以即時上載留言的方式運作,Uwants.com討論區對所有留言的真實性、完整性及立場等,不負任何法律責任。而一切留言之言論只代表留言者個人意見,並非本網站之立場,讀者及用戶不應信賴內容,並應自行判斷內容之真實性。於有關情形下,讀者及用戶應尋求專業意見(如涉及醫療、法律或投資等問題)。 由於本討論區受到「即時上載留言」運作方式所規限,故不能完全監察所有留言,若讀者及用戶發現有留言出現問題,請聯絡我們。Uwants.com討論區有權刪除任何留言及拒絕任何人士上載留言 (刪除前或不會作事先警告及通知 ),同時亦有不刪除留言的權利,如有任何爭議,管理員擁有最終的詮釋權。用戶切勿撰寫粗言穢語、誹謗、渲染色情暴力或人身攻擊的言論,敬請自律。本網站保留一切法律權利。


Copyright © 2003- Uwants.com All Right Reserved.
版權所有,不得轉載。

10.0.0.23