Knevex Opublikowano 4 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 4 Sierpnia 2015 Jakiś chiński szajs został sam zainstalowany przez złośliwy pogram (sam nie wiem który). Program ten wiele razy instalował mi inne małe programy tylko SmartWeb czy mystartsearch lub istartsurf . Udawało mi się z tym wygrać poprzez odinstalowywanie w Panelu Sterowania, lecz z tym sobie nie poradziłem. Co robić? Usunąć ten program tylko, czy jest sposób na znalezienie i odinstalowanie złośliwego programu który wciąż instaluje niepotrzebne mi software? Proszę o jak najszybszą pomoc. Pragę zaznaczyć że również używałem programów tylko ADWCleaner, ale pomagało to tyle samo co uninstall. Po ponownym uruchomieniu pc'ta niepożądane programy były dalej instalowane bez mojej zgody. Addition.txt FRST.txt Shortcut.txt Odnośnik do komentarza
jessica Opublikowano 5 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 5 Sierpnia 2015 1) Odinstaluj: globalupdate Helper (Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION 爱奇艺万能播放器 (HKLM\...\GeePlayer) (Version: 1.5.10.1295 - 爱奇艺)爱奇艺影音 (HKLM\...\IQIYI Video) (Version: - 爱奇艺) 2)Otwórz Notatnik i wklej w nim: CustomCLSID: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000_Classes\CLSID\{5EC7C511-CD0F-42E6-830C-1BD9882F3458}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll (爱奇艺公司)CustomCLSID: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000_Classes\CLSID\{61CED8F3-2CB2-4C3C-9484-7530E1127A58}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll (爱奇艺公司)CustomCLSID: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000_Classes\CLSID\{D96C1D26-5CDF-4506-9244-57233C3984DF}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll (爱奇艺公司)CustomCLSID: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\Alex\AppData\Local\Temp\DBE8\temp\_mp4hentai__Xpress_Train_-_01_uncen.exe ()CustomCLSID: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000_Classes\CLSID\{F3D0D36F-23F8-4682-A195-74C92B03D4AF-NOT}\InprocServer32 -> C:\IQIYI Video\LStyle\npWebPlayer.dll (爱奇艺公司)C:\IQIYI VideoTask: {0C5AD787-6310-4964-AA62-9A07ED531145} - System32\Tasks\65b1263e-e246-43e3-bf46-21dd1ae42b63-5_user => C:\Program Files\CinemaPlus-3.2cV17.07\65b1263e-e246-43e3-bf46-21dd1ae42b63-5.exe <==== ATTENTIONTask: {116CFB13-97FB-42D8-90F4-B7C837941460} - System32\Tasks\temp_337fb1ed-f59b-4815-8de7-a0b476c310ca-6 => C:\Program Files\CinemaPlus-3.2cV02.06\337fb1ed-f59b-4815-8de7-a0b476c310ca-6.exe <==== ATTENTIONTask: {15F72CA7-88CC-407B-B1C3-782161B803DA} - System32\Tasks\60361efe-6fea-4d98-864b-9930a4c4dfc4-3 => C:\Program Files\CinemaPlus-3.2cV26.07\60361efe-6fea-4d98-864b-9930a4c4dfc4-3.exe <==== ATTENTIONTask: {18C672B1-C3DC-446D-9070-43E25E532E7D} - System32\Tasks\60361efe-6fea-4d98-864b-9930a4c4dfc4-5_user => C:\Program Files\CinemaPlus-3.2cV26.07\60361efe-6fea-4d98-864b-9930a4c4dfc4-5.exe <==== ATTENTIONTask: {1D4B2C7D-DF82-4733-8719-3ACE2572928F} - System32\Tasks\vKj2JFxHqfv9WOGtUya => C:\Users\Alex\AppData\Roaming\vKj2JFxHqfv9WOGtUya.exe <==== ATTENTIONTask: {212D48E4-C298-4AF0-9FE9-C5C7EAF3D911} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-6 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-6.exe <==== ATTENTIONTask: {3687B27E-9BD9-4C08-8601-58AC50F45B00} - System32\Tasks\d131932d-2bfb-4f57-94fc-116f683bacae-1-6 => C:\Program Files\CinemaPlus-3.2cV06.07\d131932d-2bfb-4f57-94fc-116f683bacae-1-6.exe <==== ATTENTIONTask: {389D93F7-B2AA-4A23-A411-9CAD41635E80} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-6 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-6.exe <==== ATTENTIONTask: {44BB6A88-519B-416A-8A71-22D73D75007D} - System32\Tasks\{4568873B-B6AC-429C-A271-F397F6F36772} => pcalua.exe -a C:\Users\Alex\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=cmiTask: {4527E12E-B199-4323-843D-F287AF8FE350} - System32\Tasks\temp_60361efe-6fea-4d98-864b-9930a4c4dfc4-10_user => C:\Program Files\CinemaPlus-3.2cV26.07\60361efe-6fea-4d98-864b-9930a4c4dfc4-10.exe <==== ATTENTIONTask: {5332EE0B-4583-4BDF-9BE0-7ECE88513F12} - System32\Tasks\temp_51515474-c5d1-462f-906c-9d2743e452f1-10_user => C:\Program Files\CinemaPlus-4.2vV03.07\51515474-c5d1-462f-906c-9d2743e452f1-10.exe <==== ATTENTIONTask: {54A799C9-0B93-4FAA-8015-E792A195C566} - System32\Tasks\temp_51515474-c5d1-462f-906c-9d2743e452f1-1-6 => C:\Program Files\CinemaPlus-4.2vV03.07\51515474-c5d1-462f-906c-9d2743e452f1-1-6.exe <==== ATTENTIONTask: {55C37305-7F4F-4DA8-98E4-0CB75880A050} - System32\Tasks\RsDelayLauncher_{8A34248E-7D35-4832-8378-7659E0B0A380} => C:\PROGRAM FILES\RISING\RAV\rsdelaylauncher.exe [2014-05-15] (Beijing Rising Information Technology Co., Ltd.)Task: {56D3AC46-C95A-4631-85CB-E2D0EF292650} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-5_user => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-5.exe <==== ATTENTIONTask: {57B588F8-D837-44E5-8796-8BF32FB8FE03} - System32\Tasks\65b1263e-e246-43e3-bf46-21dd1ae42b63-5 => C:\Program Files\CinemaPlus-3.2cV17.07\65b1263e-e246-43e3-bf46-21dd1ae42b63-5.exe <==== ATTENTIONTask: {5DE3752D-827B-4F49-8743-D1E937547BE1} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTIONTask: {6116FF07-EE30-401A-B1D2-84235B0BDE17} - System32\Tasks\d131932d-2bfb-4f57-94fc-116f683bacae-6 => C:\Program Files\CinemaPlus-3.2cV06.07\d131932d-2bfb-4f57-94fc-116f683bacae-6.exe <==== ATTENTIONTask: {7619C814-76BD-422D-BE0D-884FB54958B3} - System32\Tasks\Crossbrowse => C:\Program Files\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTIONTask: {78ED8342-617E-452E-9494-FC60B9B7373B} - System32\Tasks\d131932d-2bfb-4f57-94fc-116f683bacae-1-7 => C:\Program Files\CinemaPlus-3.2cV06.07\d131932d-2bfb-4f57-94fc-116f683bacae-1-7.exe <==== ATTENTIONTask: {7966E7A1-0D33-4392-A6B7-F252B207E23D} - System32\Tasks\temp_337fb1ed-f59b-4815-8de7-a0b476c310ca-1-6 => C:\Program Files\CinemaPlus-3.2cV02.06\337fb1ed-f59b-4815-8de7-a0b476c310ca-1-6.exe <==== ATTENTIONTask: {7A24EF2D-0668-40A5-B880-149E9B6114BD} - System32\Tasks\d131932d-2bfb-4f57-94fc-116f683bacae-10_user => C:\Program Files\CinemaPlus-3.2cV06.07\d131932d-2bfb-4f57-94fc-116f683bacae-10.exe <==== ATTENTIONTask: {8237BCEE-23C9-4AC0-A390-A095AE805B9E} - System32\Tasks\X82FxyOAlfq82FaPhMv => C:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMv.exe [2015-04-20] () <==== ATTENTIONTask: {93E88428-3A04-48AC-8B7F-C98100C15300} - System32\Tasks\Bidaily Synchronize Task[973b] => c:\programdata\{c52147f3-0b53-8214-c521-147f30b51fcc}\_mp4hentai__xpress_train_-_01_uncen.exe <==== ATTENTIONTask: {969CEF98-A85A-4F3B-A11A-BA8755387B84} - System32\Tasks\d131932d-2bfb-4f57-94fc-116f683bacae-5_user => C:\Program Files\CinemaPlus-3.2cV06.07\d131932d-2bfb-4f57-94fc-116f683bacae-5.exe <==== ATTENTIONTask: {9A3CBD60-3012-47B7-8B69-9294641CAAD1} - System32\Tasks\60361efe-6fea-4d98-864b-9930a4c4dfc4-1-6 => C:\Program Files\CinemaPlus-3.2cV26.07\60361efe-6fea-4d98-864b-9930a4c4dfc4-1-6.exe <==== ATTENTIONTask: {9CBA5ABC-E905-4DFB-8287-9D70CFE38375} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-10_user => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-10.exe <==== ATTENTIONTask: {9F578E4C-647E-4623-BC6C-3CA908835E17} - System32\Tasks\Bidaily Synchronize Task[74c7] => c:\programdata\{2f8a2b62-bee9-309f-2f8a-a2b62beead8a}\hqghumeaylnlf.exe <==== ATTENTIONTask: {A0F2CB5D-F701-4159-98FA-70D218020436} - System32\Tasks\65b1263e-e246-43e3-bf46-21dd1ae42b63-1-6 => C:\Program Files\CinemaPlus-3.2cV17.07\65b1263e-e246-43e3-bf46-21dd1ae42b63-1-6.exe <==== ATTENTIONTask: {AE770A31-69A5-46EB-9E7F-06D2A6D8AC09} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-7 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-7.exe <==== ATTENTIONTask: {CD8F0AE4-FA7A-43F5-95A5-E1D1D171F46A} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-7 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-7.exe <==== ATTENTIONTask: {DE925C0A-9AF7-401A-BC7A-33679051EE95} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTIONTask: {EC9F0473-0F49-4557-8EE6-35E82FA60BC9} - System32\Tasks\temp_f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-6 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-1-6.exe <==== ATTENTIONTask: {EEE33474-BDAA-40D7-903E-806959CBF39E} - System32\Tasks\65b1263e-e246-43e3-bf46-21dd1ae42b63-6 => C:\Program Files\CinemaPlus-3.2cV17.07\65b1263e-e246-43e3-bf46-21dd1ae42b63-6.exe <==== ATTENTIONTask: {F209F725-51CB-4022-B07F-D0080C8A05F3} - System32\Tasks\f706a8f7-287f-4a40-893c-ca55c01ea0aa-5 => C:\Program Files\CinemaPlus-3.2cV29.07\f706a8f7-287f-4a40-893c-ca55c01ea0aa-5.exe <==== ATTENTIONTask: {F4AF0E7E-6517-421D-AE8A-A64C10741B9E} - System32\Tasks\GoogleUpdateTaskMachineUA1d09a038b4810b3 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)Task: {FF4DAA8E-F16E-4E24-8F10-16E11B1B9FEE} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Alex\AppData\Local\SmartWeb\SmartWebHelper.exe <==== ATTENTIONTask: C:\Windows\Tasks\Bidaily Synchronize Task[74c7].job => c:\programdata\{2f8a2b62-bee9-309f-2f8a-a2b62beead8a}\hqghumeaylnlf.exe <==== ATTENTIONTask: C:\Windows\Tasks\Bidaily Synchronize Task[973b].job => c:\programdata\{c52147f3-0b53-8214-c521-147f30b51fcc}\_mp4hentai__xpress_train_-_01_uncen.exe <==== ATTENTIONTask: C:\Windows\Tasks\Crossbrowse.job => C:\Program Files\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTIONTask: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTIONTask: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTIONC:\Program Files\globalUpdateTask: C:\Windows\Tasks\vKj2JFxHqfv9WOGtUya.job => C:\Users\Alex\AppData\Roaming\vKj2JFxHqfv9WOGtUya.exe <==== ATTENTIONTask: C:\Windows\Tasks\X82FxyOAlfq82FaPhMv.job => C:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMv.exe <==== ATTENTIONC:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMv.exeC:\Users\Alex\AppData\Roaming\vKj2JFxHqfv9WOGtUya.exeC:\Program Files\Crossbrowsec:\programdata\{c52147f3-0b53-8214-c521-147f30b51fcc}c:\programdata\{2f8a2b62-bee9-309f-2f8a-a2b62beead8a}C:\Users\Alex\AppData\Local\SmartWebC:\Program Files\CinemaPlus-3.2cV29.07C:\PROGRAM FILES\RISINGC:\Users\Alex\AppData\Roaming\mystartsearchC:\ProgramData\iWinManProiC:\Program Files\MiuiTabC:\Program Files\baiduHKLM\...\Run: [RSDTRAY] => C:\Program Files\Rising\RSD\popwndexe.exe [126808 2012-09-25] (Beijing Rising Information Technology Co., Ltd.)HKLM\...\Run: [RavTRAY] => C:\Program Files\Rising\RAV\RSTRAY.EXE [111000 2014-05-15] (Beijing Rising Information Technology Co., Ltd.)HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\...\Run: [GoogleChromeAutoLaunch_3281FCF30DCFA21CFEF4D2ECFEF8608D] => "C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-windowHKU\S-1-5-21-3050552178-2778190213-2786081387-1000\...\Run: [apphide] => C:\Program Files\baidu\baidu.exe [69632 2015-07-22] ()HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\...\Run: [HCDNClient] => C:\IQIYI Video\Common\QyKernel.exe [576104 2015-05-12] (iQIYI.COM)CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTIONHKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/?tn=98388105_hao_pgHKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3DHKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1436197717&z=f291ebabb30ea4eb981bdcdgczcccq8gft7mdmebdw&from=cmi&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}HKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hao123.com/?tn=98388105_hao_pgHKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/?type=hp&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3DHKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1436197717&z=f291ebabb30ea4eb981bdcdgczcccq8gft7mdmebdw&from=cmi&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}SearchScopes: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}SearchScopes: HKU\S-1-5-21-3050552178-2778190213-2786081387-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.istartsurf.com/web/?type=ds&ts=1438673568&z=f0fb2a4da6cb3468f42e789g3zfc2b2q8m3caq9o3e&from=face&uid=ST3500320AS_9QM22M3DXXXX9QM22M3D&q={searchTerms}BHO: Rising Web Helper -> {14A5E567-034B-471A-89D8-598A6A93B24B} -> C:\Program Files\Rising\RAV\rsscrbho.dll [2012-11-13] (Beijing Rising Information Technology Co., Ltd.)BHO: °®ĆćŇŐÖúĘÖ -> {FB4F6285-4C32-49F2-950F-A5998F9CEC6C} -> C:\IQIYI Video\Common\Accelerator\IEHelper.dll [2015-04-29] (爱奇艺)StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=1436197717&z=f291ebabb30ea4eb981bdcdgczcccq8gft7mdmebdw&from=cmi&uid=ST3500320AS_9QM22M3DXXXX9QM22M3DFF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll [2015-05-12] ()FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [2015-04-29] (爱奇艺公司)FF Plugin: @qq.com/QQPCMgr -> C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\npQMExtensionsMozilla.dll [2015-08-04] (Tencent Technology (Shenzhen) Company Limited)FF Plugin: @rising.com.cn/nprising -> C:\Program Files\Rising\RAV\nprising.dll [2013-06-27] (Beijing Rising Information Technology Co., Ltd.)FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll No FileFF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll No FileFF Plugin HKU\S-1-5-21-3050552178-2778190213-2786081387-1000: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [2015-04-29] (爱奇艺公司)FF Plugin HKU\S-1-5-21-3050552178-2778190213-2786081387-1000: @rising.com.cn/nprising -> C:\Program Files\Rising\RAV\nprising.dll [2013-06-27] (Beijing Rising Information Technology Co., Ltd.)R2 IHProtect Service; C:\Program Files\MiuiTab\ProtectService.exe [125112 2015-07-30] (XTab system)R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exe [297608 2015-08-04] (Tencent)C:\Program Files\TencentR2 RsMgrSvc; C:\Program Files\Rising\RSD\RsMgrSvc.exe [179992 2014-09-02] (Beijing Rising Information Technology Co., Ltd.)R2 RsRavMon; C:\Program Files\Rising\RAV\ravmond.exe [277552 2014-05-15] (Beijing Rising Information Technology Co., Ltd.)R3 TAOFrame; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TAOFrame.exe [293728 2015-08-04] (Tencent)R2 WindowsMangerProtect; C:\ProgramData\iWinManProi\ProtectWindowsManager.exe [708264 2015-08-01] (DTools LIMITED) <==== ATTENTIONR2 copofute; C:\Program Files\00000000-1433171668-0000-0000-1C6F6547AC60\knsr96FA.tmp [X]R2 fivyzipo; C:\Users\Alex\AppData\Roaming\00000000-1433171668-0000-0000-1C6F6547AC60\hnsgA1ED.tmp [X]S2 globalUpdate; C:\Program Files\globalUpdate\Update\globalupdate.exe /svc [X] <==== ATTENTIONS3 globalUpdatem; C:\Program Files\globalUpdate\Update\globalupdate.exe /medsvc [X] <==== ATTENTIONS2 tyvozyno; C:\Users\Alex\AppData\Roaming\00000000-1433171668-0000-0000-1C6F6547AC60\jnsb8CC6.tmp [X]C:\Users\Alex\AppData\Roaming\00000000-1433171668-0000-0000-1C6F6547AC60C:\Program Files\00000000-1433171668-0000-0000-1C6F6547AC60R1 kguard; C:\Windows\System32\DRIVERS\kguard.sys [68376 2014-05-14] (Beijing Rising Information Technology Co., Ltd.)R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMIEProtect.sys [49080 2015-08-04] ()R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUdisk.sys [60600 2015-08-04] (Tencent)S1 QQPCHelper; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCHelper.sys [22360 2015-08-04] (Tencent)R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQSysMon.sys [108344 2015-08-04] (电脑管家)R2 rsdsys; C:\Windows\system32\drivers\protreg.sys [24120 2014-05-28] (Beijing Rising Information Technology Co., Ltd.)R1 rsutils; C:\Windows\System32\DRIVERS\rsutils.sys [58664 2014-08-15] (Beijing Rising Information Technology Co., Ltd.)R0 sysmon; C:\Windows\System32\DRIVERS\sysmon.sys [156144 2014-09-10] (Beijing Rising Information Technology Co., Ltd.)R2 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [77016 2015-08-04] (Tencent)R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2015-08-04] (Tencent Technology(Shenzhen) Company Limited)R3 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [149944 2015-08-04] (电脑管家)R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TS888.sys [30392 2015-08-04] (Tencent)R1 TSCPM; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\tscpm.sys [43448 2015-08-04] (电脑管家)R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2015-08-04] (Tencent)R0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128120 2015-08-04] (电脑管家)R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSKsp.sys [204312 2015-08-04] (电脑管家)R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSSysKit.sys [101560 2015-08-04] (电脑管家)S1 innfd_1_10_0_14; system32\drivers\innfd_1_10_0_14.sys [X]S1 wsafd_1_10_0_19; system32\drivers\wsafd_1_10_0_19.sys [X]C:\Windows\system32\Drivers\TS888.sys2015-08-04 10:37 - 2015-08-04 10:37 - 00000000 ____D C:\ProgramData\TXQMPC2015-08-04 10:09 - 2015-08-04 10:09 - 00000132 __RSH C:\rising.ini2015-08-04 10:09 - 2015-08-04 10:09 - 00000122 _____ C:\Windows\system32\BsMain.ini2015-08-04 10:09 - 2015-08-04 10:09 - 00000000 ___RD C:\RavBin2015-08-04 10:09 - 2014-09-10 08:11 - 00156144 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\Drivers\sysmon.sys2015-08-04 10:09 - 2014-08-15 03:22 - 00058664 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\Drivers\rsutils.sys2015-08-04 10:09 - 2014-07-30 04:44 - 00091928 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\vpatch.dll2015-08-04 10:09 - 2014-05-14 04:02 - 00068376 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\Drivers\kguard.sys2015-08-04 10:09 - 2013-12-30 09:33 - 00256280 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\ravext.dll2015-08-04 10:09 - 2012-09-06 02:30 - 00240472 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\bsmain.exe2015-08-04 10:09 - 2012-02-29 09:49 - 00010808 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\Drivers\rsndisp.sys2015-08-04 10:08 - 2015-08-04 10:09 - 00000000 ____D C:\ProgramData\Rising2015-08-04 10:08 - 2015-08-04 10:08 - 00000000 ____D C:\Program Files\Rising2015-08-04 10:08 - 2014-05-28 09:37 - 00024120 ____N (Beijing Rising Information Technology Co., Ltd.) C:\Windows\system32\Drivers\protreg.sys2015-08-04 10:07 - 2015-08-04 10:06 - 00138552 _____ (Tencent Technology(Shenzhen) Company Limited) C:\Windows\system32\Drivers\TAOKernel.sys2015-08-04 10:07 - 2015-08-04 10:06 - 00077016 _____ (Tencent) C:\Windows\system32\Drivers\TAOAccelerator.sys2015-08-04 10:07 - 2015-08-04 10:06 - 00014008 _____ (Tencent) C:\Windows\system32\Drivers\TSDefenseBt.sys2015-08-04 10:06 - 2015-08-04 10:51 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Tencent2015-08-04 10:06 - 2015-08-04 10:51 - 00000000 ____D C:\ProgramData\Tencent2015-08-04 10:06 - 2015-08-04 10:07 - 00000000 ____D C:\Program Files\Common Files\Tencent2015-08-04 10:06 - 2015-08-04 10:06 - 00149944 _____ (电脑管家) C:\Windows\system32\Drivers\TFsFlt.sys2015-08-04 10:06 - 2015-08-04 10:06 - 00128120 _____ (电脑管家) C:\Windows\system32\Drivers\TsFltMgr.sys2015-08-04 10:06 - 2015-08-04 10:06 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件2015-08-04 10:06 - 2015-08-04 10:06 - 00000000 ____D C:\Program Files\Tencent2015-08-04 09:35 - 2015-08-04 09:35 - 00000000 ____D C:\Users\Alex\AppData\Local\SysassistByHotWheel2015-08-04 09:34 - 2015-08-04 11:07 - 00000000 ____D C:\Users\Alex\AppData\Local\Unity2015-08-04 09:33 - 2015-08-04 11:07 - 00000000 ____D C:\ProgramData\IQIYI Video2015-08-04 09:33 - 2015-08-04 11:03 - 00000000 ____D C:\Users\Alex\AppData\Roaming\IQIYI Video2015-08-04 09:33 - 2015-08-04 11:02 - 00000000 ____D C:\IQIYI Video2015-08-04 09:33 - 2015-08-04 09:33 - 00000000 ____D C:\Users\Public\QiYiC:\ProgramData\6WinManPro6Reg: reg delete "HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes" /fReg: reg delete "HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes" /fReg: reg delete "HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes" /fEmptyTemp: Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exeUruchom FRST i kliknij przycisk Fix.Powstanie plik fixlog.txt.Daj ten log. 3) Zrób nowe logi FRST. UWAGA: Jeśli zjawi się tu nowy Moderator @Naathim, https://www.fixitpc.pl/user/12-naathim/ to wypełniaj Jego zalecenia, a nie moje. jessi Odnośnik do komentarza
Knevex Opublikowano 5 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 5 Sierpnia 2015 Fixlog Fixlog.txt Odnośnik do komentarza
Knevex Opublikowano 17 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 17 Sierpnia 2015 @ref Da się coś jeszcze zrobić? Odnośnik do komentarza
jessica Opublikowano 17 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 17 Sierpnia 2015 @ref Da się coś jeszcze zrobić? nie wykonany punkt 3 moich zaleceń: 3) Zrób nowe logi FRST. jessi Odnośnik do komentarza
Knevex Opublikowano 21 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 21 Sierpnia 2015 FRST FRST.txt Odnośnik do komentarza
jessica Opublikowano 21 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 21 Sierpnia 2015 3) Zrób nowe logi FRST. miały być logi, a nie log. uzupełnij to jessi Odnośnik do komentarza
Knevex Opublikowano 21 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 21 Sierpnia 2015 ? Addition.txt FRST.txt Shortcut.txt Odnośnik do komentarza
jessica Opublikowano 21 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 21 Sierpnia 2015 Otwórz Notatnik i wklej w nim: globalupdate Helper (Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTIONTask: {30C9548A-C60A-4163-B16C-89A50BFBE8CB} - System32\Tasks\{03A73401-C37E-47D4-B23E-10649EC2320F} => pcalua.exe -a C:\Users\Alex\Desktop\Free-Hide-IP-31946-dp.cplC:\Program Files\TencentHKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\QQPCRTP => ""="service"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\QQPCRTP => ""="service"FirewallRules: [{800653E1-976C-4142-A78A-82F3B58FBA3A}] => (Allow) C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exeFirewallRules: [{40F4F7D0-2CC3-42F8-BD80-8F71C1A813AD}] => (Allow) C:\Program Files\Raptr\raptr.exeFirewallRules: [{4577B067-4086-43D8-88CA-3FB2760113D3}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exeFirewallRules: [{1A0A720B-C4AB-452F-98B0-329F9288E9CA}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer.exeFirewallRules: [{631FCF0C-F113-4CFD-986B-9D8891A2911B}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exeFirewallRules: [{055042BE-2CF8-4A95-8A87-5EA3D9937747}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exeFirewallRules: [{03AE2896-5C6C-474B-8B99-C83C4CFE63A2}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exeFirewallRules: [{8FB0E168-641C-4617-9C0A-673DBD57661F}] => (Allow) C:\IQIYI Video\Common\QyKernel.exeFirewallRules: [{F6AAA8D2-41A9-4117-A5F4-8EF5349ECA21}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exeFirewallRules: [{664E7E89-0EF6-40A0-86AA-51C053754862}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exeFirewallRules: [{D4A10035-B301-4BED-9042-AEC4965256D0}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exeFirewallRules: [{F139E77A-F32E-41A3-BEC6-47BB3C3F344B}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCmgrInstallGuide.exeFirewallRules: [{62691E92-8086-40FA-AD76-03AEBC35C5EF}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCTray.exeFirewallRules: [{70BCCEF4-71FC-4F90-9E82-CBD977A48451}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCMgr.exeFirewallRules: [{F499B39D-2546-429B-B357-B88E26AD015D}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exeFirewallRules: [{FC002D19-7990-4AAE-A916-E97102B01599}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMDL.exeFirewallRules: [{51C3123B-E961-4AFC-AC7E-F17C33DF14EC}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\bugreport.exeFirewallRules: [{0B51FE3A-C397-4017-9129-1A2B1A67DC3B}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCFileOpen.exeFirewallRules: [{58B52E3C-AA31-49E0-B7D9-72D0F9DE4DF6}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCLeakScan.exeFirewallRules: [{375331D8-4BD0-4560-901D-221BC53987B7}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPConfig.exeFirewallRules: [{CC4A8E5A-975C-415B-AD5E-A3FB408A172A}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSoftMgr.exeFirewallRules: [{9425F280-F406-40A8-B4B7-940B19905DA9}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\plugins\QMNetMon\QQPCNetFlow.exeFirewallRules: [{8A78900E-2826-4E25-A70C-6C19FBC59FF2}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCBTU.exeFirewallRules: [{2492D291-2EEE-4BC8-B1E7-29AC01AE3780}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCClinic.exeFirewallRules: [{82FFA897-6A48-436B-BE1B-C74A32E0A7FD}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCLaunch.exeFirewallRules: [{AF2CFEEE-443B-4163-BDB0-20E811102790}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUpdate\QQPCMgrUpdate.exeFirewallRules: [{5EE688A8-7C1F-44AE-BA55-8A49512D91FB}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSoftGame.exeFirewallRules: [{257BA39A-E784-40EE-A826-3DD3420A5DF3}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCSysOptimize.exeFirewallRules: [{BCA73291-080D-4512-AB86-06EFF7741693}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCUpdateAVLib.exeFirewallRules: [{F683808F-6743-42D5-9B83-0EFBD26C5931}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQRepair.exeFirewallRules: [{5B3E9BAE-31D7-49E0-A1B0-713F5456264C}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\Uninst.exeFirewallRules: [{D2938B5D-5689-4DA1-9C45-D05623BDBFBC}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCPatch.exeFirewallRules: [{3CDC6CC4-153E-4F2C-85BF-ABDDB1CB5BEE}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TpkUpdate.exeFirewallRules: [{601B4058-54B4-4546-8D76-AA986BED2B7F}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMRouterMgr.exeFirewallRules: [{CED259AB-63EF-4DD2-9E45-B576BB02E894}] => (Allow) C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMAccountProtection.exeFirewallRules: [{DEE28A60-53A4-45A9-96BF-D2950F853194}] => (Allow) C:\Program Files\Rising\RAV\ravmond.exeFirewallRules: [{6B459F86-D596-41FA-B454-D27A56F5D01B}] => (Allow) C:\Program Files\Rising\RAV\ravmond.exeFirewallRules: [{0518D1DC-DB58-4ADD-BFFB-2713967D7CC2}] => (Allow) C:\IQIYI Video\LStyle\QyClient.exeFirewallRules: [{4F3BF249-3CC9-490B-9D5F-C7A5B0568C42}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exeFirewallRules: [{D4F2BE7A-A9E3-49E2-B420-36660E6A7EF4}] => (Allow) C:\IQIYI Video\LStyle\QyWebPlayer.exeFirewallRules: [{26F6731A-7BDB-4709-9669-33B9C413B718}] => (Allow) C:\IQIYI Video\Common\QyKernel.exeFirewallRules: [{037E09EE-1361-4C17-9B5D-7419FAC25D63}] => (Allow) C:\IQIYI Video\LStyle\QyPlayer.exeFirewallRules: [{DF4E3DC2-4F2C-4E91-8E5C-4A6C2F2AF80C}] => (Allow) C:\Users\Alex\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exeFirewallRules: [{19D9FFD1-C32C-4A1E-9782-A0B2B01489CE}] => (Allow) C:\IQIYI Video\GeePlayer\GeePlayer\GeePlayer.exeFirewallRules: [{C112BF2C-988C-4C3E-BD76-DF9257A1466B}] => (Allow) C:\program files\common files\tencent\qqdownload\130\tencentdl.exeFirewallRules: [{94661AB8-095B-4D5B-BF8E-C89776C7480C}] => (Allow) C:\program files\common files\tencent\qqdownload\130\bugreport_xf.exeC:\Program Files\Common Files\TencentHKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCTray.exe [355296 2015-08-04] (Tencent)HKLM\...\Run: [RavTRAY] => "C:\Program Files\Rising\RAV\RSTRAY.EXE" -systemC:\Program Files\RisingShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMGCShellExt.dll [2015-08-04] (Tencent)HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=98388105_hao_pgHKU\S-1-5-21-3050552178-2778190213-2786081387-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.hao123.com/?tn=98388105_hao_pgR2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exe [297608 2015-08-04] (Tencent)R3 TAOFrame; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TAOFrame.exe [293728 2015-08-04] (Tencent)S2 RsMgrSvc; "C:\Program Files\Rising\RSD\RsMgrSvc.exe" [X]S2 RsRavMon; "C:\Program Files\Rising\RAV\ravmond.exe" [X]R1 HyperVM; C:\Windows\system32\drivers\hvm.sys [32568 2015-08-04] (Beijing Rising Information Technology Co., Ltd.)R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMIEProtect.sys [49976 2015-08-18] ()R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUdisk.sys [59872 2015-04-17] (Tencent)R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQSysMon.sys [108344 2015-08-04] (电脑管家)R2 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [77016 2015-08-04] (Tencent)R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2015-08-04] (Tencent Technology(Shenzhen) Company Limited)R3 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [149944 2015-08-04] (电脑管家)R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TS888.sys [30392 2015-08-20] (Tencent)R1 TSCPM; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\tscpm.sys [43448 2015-08-04] (电脑管家)R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2015-08-04] (Tencent)R5 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128120 2015-08-04] (电脑管家)R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSKsp.sys [204312 2015-08-04] (电脑管家)R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSSysKit.sys [101560 2015-08-04] (电脑管家)S5 sysmon; system32\DRIVERS\sysmon.sys [X]C:\Windows\System32\drivers\TsFltMgr.sysC:\Windows\System32\DRIVERS\TSDefenseBt.sysC:\Windows\System32\Drivers\TFsFlt.sysC:\Windows\System32\Drivers\TAOKernel.sysC:\Windows\system32\Drivers\TAOAccelerator.sysC:\Windows\system32\drivers\hvm.sysReg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\globalupdate Helper" /fC:\Users\Alex\AppData\Roaming\TencentC:\ProgramData\TencentC:\ProgramData\TXQMPCC:\Users\Alex\AppData\Local\SysassistByHotWheelC:\ProgramData\aWinManProaC:\ProgramData\2WinManPro2C:\ProgramData\lWinManProlC:\ProgramData\JWinManProJC:\Users\Alex\AppData\Local\CrossbrowseC:\Users\Alex\AppData\Roaming\X82FxyOAlfq82FaPhMvEmptyTemp: Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exeUruchom FRST i kliknij przycisk Fix.Powstanie plik fixlog.txt.Daj ten log. Zrób nowe logi FRST. jessi Odnośnik do komentarza
Knevex Opublikowano 22 Sierpnia 2015 Autor Zgłoś Udostępnij Opublikowano 22 Sierpnia 2015 fixlog i logi Addition.txt Fixlog.txt FRST.txt Shortcut.txt Odnośnik do komentarza
jessica Opublikowano 22 Sierpnia 2015 Zgłoś Udostępnij Opublikowano 22 Sierpnia 2015 1) Teraz ten program jest już widoczny, więc spróbuj go odinstalować: globalupdate Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.0 - globalupdate Inc.) <==== ATTENTION 2) Wejdź w Tryb Awaryjny (F8 przed startem Systemu) 3) Otwórz Notatnik i wklej w nim: R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCRTP.exe [297608 2015-08-04] (Tencent)R3 TAOFrame; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TAOFrame.exe [293728 2015-08-04] (Tencent)R2 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sysR1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sysC:\Windows\System32\Drivers\TAOKernel.sysC:\Windows\system32\Drivers\TAOAccelerator.sysReg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" /fReg: reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\globalupdate Helper" /f2015-08-04 10:06 - 2015-08-04 10:06 - 00481632 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\sqlite.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00100704 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\tinyxml.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00088416 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\zlib.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00203104 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQFileFlt.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00063840 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\plugins\qmiemalrtpplugin\qmiemalrtpplugin.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00051552 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\plugins\sysspeeduprtpplugin\SysSpeedupRtpPlugin.dll2015-08-04 10:51 - 2015-04-17 12:02 - 00018784 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\oDayProtect.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00137568 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\libexpatw.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00092184 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\xGraphic32.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00342040 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\arkGraphic.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00045920 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\jgImage.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00158048 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\libpng.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00285024 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\libjpegturbo.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00014176 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\jgIOStub.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00194912 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\xImage.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00076128 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\MemDefrag.dll2015-08-04 10:06 - 2015-08-04 10:06 - 00268640 _____ () C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\plugins\StartupMgr\SoftMon.dllC:\Program Files\TencentC:\Program Files\Common Files\TencentHKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQPCTRAY.EXER1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMIEProtect.sysR1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QMUdisk.sysR2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\QQSysMon.sysR3 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sysR3 TS888; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TS888.sysR1 TSCPM; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\tscpm.sysR1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sysR0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sysR1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSKsp.sysR1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.7.16066.216\TSSysKit.sysC:\Windows\System32\drivers\TsFltMgr.sysC:\Windows\System32\DRIVERS\TSDefenseBt.sysC:\Users\Alex\AppData\Roaming\TencentC:\ProgramData\TXQMPCC:\Windows\system32\Drivers\TS888.sysC:\Users\Alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件C:\Users\Alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Crossbrowse.lnkC:\ProgramData\Microsoft\Windows\Start Menu\Programs\PingBuster\Uninstall PingBuster.lnkC:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey\Website.lnkEmptyTemp: Plik zapisz pod nazwą fixlist.txt i umieść obok FRST.exeUruchom FRST i kliknij przycisk Fix.Powstanie plik fixlog.txt.Daj ten log. 3) Zrób nowe logi FRST. jessi Odnośnik do komentarza
Rekomendowane odpowiedzi
Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto
Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.
Zarejestruj nowe konto
Załóż nowe konto. To bardzo proste!
Zarejestruj sięZaloguj się
Posiadasz już konto? Zaloguj się poniżej.
Zaloguj się