瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 打开文件夹就会出现explorer遇到问题需要关闭

123   1  /  3  页   跳转

[已解决] 打开文件夹就会出现explorer遇到问题需要关闭

打开文件夹就会出现explorer遇到问题需要关闭

打开文件夹就会出现explorer遇到问题需要关闭
同学电脑上有这样的问题,我移动硬盘拷文件,没有双击点进硬盘啊
现在我电脑也有这样问题了

弹出的问题框有两种
一种是底部有调试和关闭按钮的
一种是这样的(如附件所示)

用hijacktihs扫描了一下结果如下,第一次使用不知道怎么分析
请这里的高手们赐教啊。。

引用:
Logfile of HijackThis v1.99.1
Scan saved at 10:19:01, on 2009-3-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\暴风影音3.6\stormliv.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
D:\Program Files\双飞燕鼠标\Amoumain.exe
D:\Program Files\淘宝旺旺\WangWang.EXE
D:\Program Files\音速启动\VStart.exe
D:\Program Files\卡卡上网安全助手6.0\rstray.exe
C:\Program Files\Gemplus\GemSafe Libraries\BIN\Regtool.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe
D:\Program Files\超级巡警\ast.exe
C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Messenger\msnmsgr.exe
D:\Warcraft III\WarHelper.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclToBTSrv.exe
D:\Program Files\世界之窗\TheWorld.exe
C:\WINDOWS\system32\conime.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\dwwin.exe
D:\Program Files\迅雷\Program\Thunder5.exe
C:\Documents and Settings\WangLi\桌面\ha_hijackthis_1991\HijackThis.exe

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Thunder AtOnce - {01443AEC-0FD1-40fd-9C87-E93D1494C233} - D:\Program Files\迅雷\ComDlls\TDAtOnce_Now.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\Program Files\迅雷\ComDlls\xunleiBHO_Now.dll
O2 - BHO: 卡卡上网安全助手 - {98B7C13A-E9CD-4959-8B46-FBEAB41E42A8} - C:\WINDOWS\system32\UrlFilter.dll
O2 - BHO: SecAddons Class - {AF69627B-8489-41C2-971A-B927DF7A5B0F} - D:\Program Files\超级巡警\SecAddons.dll
O2 - BHO: ntFilter - {C2EB616C-BFB0-4361-A02C-588F869A0E97} - C:\Program Files\Sucop\SecPlugin\SecPlugin.dll
O3 - Toolbar: 瑞星卡卡工具条(&R) - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll
O3 - Toolbar: 畅游巡警 - {B057BF9C-55B4-4AA4-938A-FE78617866B8} - C:\Program Files\Sucop\SecPlugin\SecPlugin.dll
O4 - HKLM\..\Run: [WheelMouse] D:\Program Files\双飞燕鼠标\Amoumain.exe
O4 - HKLM\..\Run: [WangWang] "D:\Program Files\淘宝旺旺\WangWang.EXE"
O4 - HKLM\..\Run: [VStart5.0] "D:\Program Files\音速启动\VStart.exe"
O4 - HKLM\..\Run: [runeip] "D:\Program Files\卡卡上网安全助手6.0\rstray.exe" /startup
O4 - HKLM\..\Run: [Regtool] C:\Program Files\Gemplus\GemSafe Libraries\BIN\Regtool.exe
O4 - HKLM\..\Run: [Anti-Spy Tools] D:\Program Files\超级巡警\ast.exe -min
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min /nosplash
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\暴风影音3.6\Codec\qttask.exe" -atboottime
O4 - HKLM\..\RunOnce: [KKDelay] D:\Program Files\卡卡上网安全助手6.0\RunOnce.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WarHelper.exe] D:\Warcraft III\WarHelper.exe
O4 - HKCU\..\Run: [PC Suite Tray] "D:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: 使用VV下载 - D:\Program Files\VV加速器\geturl.htm
O8 - Extra context menu item: 使用迅雷下载 - D:\Program Files\迅雷\Program\GetUrl.htm
O8 - Extra context menu item: 使用迅雷下载全部链接 - D:\Program Files\迅雷\Program\GetAllUrl.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java 控制台 - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O14 - IERESET.INF: START_PAGE_URL=http://vaio-online.sony.com/cn/
O16 - DPF: {1E0DFFCF-27FF-4574-849B-55007349FEDA} (iTrusPTA Class) - https://img.alipay.com/download/1101/aliedit.cab
O16 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl Class) - https://img.alipay.com/download/2121/aliedit.cab
O16 - DPF: {5CB840B5-A94E-4AD9-B785-4866E3B04476} (InfoSecNetSign Class) - https://b2c.icbc.com.cn/icbc/ICBCNetSignG.dll
O16 - DPF: {7AEA10C5-B38F-4D72-A8F0-ED2D43D2A59E} (ICBCOCX Public Key Check) - https://b2c.icbc.com.cn/icbc/ICBCPKCheck.cab
O20 - AppInit_DLLs: kmon.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: psfus - C:\WINDOWS\SYSTEM32\fusstub.dll
O20 - Winlogon Notify: VESWinlogon - C:\WINDOWS\SYSTEM32\VESWinlogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Premium Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe
O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour 服务 (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Contrl Center of Storm Media (ccosm) - 北京暴风网际科技有限公司 - D:\Program Files\暴风影音3.6\stormliv.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe
O23 - Service: iPod 服务 (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe
O23 - Service: VAIO Entertainment Task Scheduler - Sony Corporation - C:\Program Files\Sony\VAIO Entertainment\VzTaskScheduler.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe



用户系统信息:Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727; TheWorld)
最后编辑wanglizero 最后编辑于 2009-03-22 13:05:02
分享到:
gototop
 

回复:打开文件夹就会出现explorer遇到问题需要关闭

清理助手下载
安装后,升级清理助手,完整扫描
清理系统看看
gototop
 

回复:打开文件夹就会出现explorer遇到问题需要关闭

楼上的朋友似乎对每位朋友都这么说啊。。。
gototop
 

回复 3F wanglizero 的帖子

因为
1.HJ日志看不出异常
2.HJ日志本身不完整
3.扫扫可能会有帮助
WINDOWS清理助手适用于莫名其妙的系统故障
gototop
 

回复:打开文件夹就会出现explorer遇到问题需要关闭

有没有哪位能够分析一下hijack的结果呢^^
谢谢哦
gototop
 

回复: 打开文件夹就会出现explorer遇到问题需要关闭



引用:
原帖由 aaccbbdd 于 2009-3-22 10:25:00 发表
因为
1.HJ日志看不出异常
2.HJ日志本身不完整
3.扫扫可能会有帮助
WINDOWS清理助手适用于莫名其妙的系统故障 


好的我已经开始扫描了
请您稍等一下呵呵
gototop
 

回复 5F wanglizero 的帖子

你看看现在什么论坛用hijackthis
原因:1.N久没更新
2.项目严重短缺

想让分析的话
上sreng日志

Sreng官方下载
SREng/智能扫描(记得勾选“检查进程的数字签名)
等扫描完成,保存日志(LOG格式)
PS:如主程序SREng**.exe无法运行,导致无法扫描日志
将主程序改名为我爱小狮子.bat
或我爱小狮子.scr
日志放入附件
(点击我这贴右下角的“引用”或最右下角的那个较大的“回复”然后就应该知道怎么发了。)
gototop
 

回复: 打开文件夹就会出现explorer遇到问题需要关闭



引用:
原帖由 aaccbbdd 于 2009-3-22 10:28:00 发表
你看看现在什么论坛用hijackthis
原因:1.N久没更新
2.项目严重短缺

想让分析的话
上sreng日志

Sreng官方下载
SREng/智能扫描(记得勾选“检查进程的数字签名)
等扫描完成,保存日志(LOG格式)
PS:如主程序SREng**.



扫描好咯,速度挺快的饿~~
好像内容很多,麻烦您了不好意思啊!

附件附件:

文件名:SREngLOG.log
下载次数:199
文件类型:application/octet-stream
文件大小:
上传时间:2009-3-22 10:41:02
描述:log

gototop
 

回复:打开文件夹就会出现explorer遇到问题需要关闭

sreng-    启动项目 -- 服务-- 驱动程序之如下项删除:
(勾选隐藏已认证的微软项目,选中有问题的驱动/服务后,点"删除服务",点"设置"按钮即可。注意弹出的窗口中要点"否"才是确认删除服务)

[Safe Mon 360 / SafeMon0]    <>
[Safe Mon 360 / SafeMon0]    <>

这就是HJ不能发现的病毒

超级巡警和小红伞不要同时安装
gototop
 

回复: 打开文件夹就会出现explorer遇到问题需要关闭



引用:
原帖由 aaccbbdd 于 2009-3-22 10:52:00 发表
sreng-    启动项目 -- 服务-- 驱动程序之如下项删除:
(勾选隐藏已认证的微软项目,选中有问题的驱动/服务后,点"删除服务",点"设置"按钮即可。注意弹出的窗口中要点"否"才是确认删除服务)

[Safe Mon 360 / SafeMon0]    <>
[Safe Mon 360 / SafeMo


好的
请问哪些是有问题的驱动服务呢。。。
gototop
 
123   1  /  3  页   跳转
页面顶部
Powered by Discuz!NT