Board logo

标题: 当前窗口跳转为非当前窗口 [打印本页]

作者: Pighunter    时间: 2007-4-13 08:56     标题: 当前窗口跳转为非当前窗口

1、情况描述
我装的windows 2000SP4操作系统,IE6.0,杀毒软件是Norton 9.0,防火墙是天网V2.5.0。
--遇到情况:当前正在操作的当前窗口或应用程序跳转为非当前程序。比如我正在word中打字,忽然word的标题栏自动变灰色(从蓝色的当前窗口跳转为非当前窗口),无法再输入文字,需再次点击页面才能切换回word并继续输入。
--出现频率:每天都有发生,可能有一段时间没有出现,可能又出现了,找不到规律。当出现的时候差不多30秒钟就会跳转一次。
--特征情况:在进程中、启动项中都找不到可疑之处。但是,我在打CS的时候也遇到跳转的情况,这时候用ALT+Tab发现任务栏出现这样一个图标:
http://img.photo.163.com/wcA5P4EgKrDluwOYigkbPQ==/92323792361278982.jpg(复制后新开IE打开)

2、SRENG扫描报告

[Copy to clipboard]
CODE:
2007-04-13,08:36:57
System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)
Windows 2000 Professional Service Pack 4 (Build 2195) - 管理权限用户 - 完整功能
以下内容被选中:
    所有的启动项目(包括注册表、启动文件夹、服务等)
    浏览器加载项
    正在运行的进程(包括进程模块信息)
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <Internat.exe><internat.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <pdfSaver3><"C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe">  [Tracker Software Products Ltd.]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <Synchronization Manager><mobsync.exe /logon>  [(Verified)Microsoft Windows 2000 Publisher]
    <AGRSMMSG><AGRSMMSG.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <SKYNET Personal FireWall><C:\Program Files\SkyNet\FireWall\PFWmain.exe>  [sky.net.cn]
    <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe">  [(Verified)Symantec Corporation]
    <vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe>  [(Verified)Symantec Corporation]
    <pdfSaver3><>  [N/A]
    <MMReminderService><C:\Program Files\Mindjet\MindManager 6\MMReminderService.exe>  [Mindjet]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows 2000 Publisher]
    <Userinit><C:\WINNT\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
    <WinlogonNotify: NavLogon><C:\WINNT\system32\NavLogon.dll>  [(Verified)Symantec Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Windows Media Player><C:\WINNT\System32\setup\wmpocm.exe /ShowWMP>  [(Verified)Microsoft Windows 2000 Publisher]
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><(无)>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <SoundMAX><; "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray>  [Analog Devices, Inc.]
    <SoundMAXPnP><; C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe>  [Analog Devices, Inc.]
==================================
启动文件夹
[SnagIt 6]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\SnagIt 6.lnk --> C:\PROGRA~1\TECHSM~1\SNAGIT~1\SnagIt32.exe [TechSmith 公司]><N>
[WinDates]
  <C:\Documents and Settings\Administrator\「开始」菜单\程序\启动\WinDates.lnk --> D:\Software\WINDAT~1\WinDates\WinDates.exe [Rockin' Software]><N>
==================================
服务
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  <C:\WINNT\System32\Ati2evxx.exe><>
[Symantec Event Manager / ccEvtMgr][Running/Auto Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation>
[Symantec Password Validation / ccPwdSvc][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation>
[Symantec Settings Manager / ccSetMgr][Running/Auto Start]
  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation>
[Symantec AntiVirus Definition Watcher / DefWatch][Running/Auto Start]
  <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation>
[Logical Disk Manager Administrative Service / dmadmin][Stopped/Manual Start]
  <C:\WINNT\System32\dmadmin.exe /com><VERITAS Software Corp.>
[IBM PM Service / IBMPMSVC][Running/Auto Start]
  <C:\WINNT\System32\ibmpmsvc.exe><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
[SavRoam / SavRoam][Stopped/Manual Start]
  <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec>
[Symantec Network Drivers Service / SNDSrvc][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation>
[SoundMAX Agent Service / SoundMAX Agent Service (default)][Running/Auto Start]
  <C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe><Analog Devices, Inc.>
[Symantec AntiVirus / Symantec AntiVirus][Running/Auto Start]
  <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation>
==================================
驱动程序
[aeaudio / aeaudio][Running/Manual Start]
  <system32\drivers\aeaudio.sys><Andrea Electronics Corporation>
[Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start]
  <System32\DRIVERS\AGRSM.sys><Agere Systems>
[ati2mtag / ati2mtag][Running/Manual Start]
  <System32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[dmboot / dmboot][Stopped/Disabled]
  <System32\drivers\dmboot.sys><VERITAS Software Corp.>
[Logical Disk Manager Driver / dmio][Running/Boot Start]
  <\SystemRoot\System32\drivers\dmio.sys><VERITAS Software Corp.>
[dmload / dmload][Stopped/Disabled]
  <System32\drivers\dmload.sys><VERITAS Software Corp.>
[Intel(R) PRO Adapter Driver / E100B][Running/Manual Start]
  <System32\DRIVERS\e100bnt5.sys><Intel Corporation>
[HUAWEI Mobile Connect - 3G Modem / hwcdcmdm0][Stopped/Manual Start]
  <system32\DRIVERS\ewusbmdm.sys><QUALCOMM Incorporated>
[HUAWEI Mobile Connect - 3G Application Interface / hwusbser][Stopped/Manual Start]
  <system32\DRIVERS\ewusbser.sys><QUALCOMM Incorporated>
[IBMPMDRV / IBMPMDRV][Running/Manual Start]
  <System32\DRIVERS\ibmpmdrv.sys><IBM Corp.>
[NAVENG / NAVENG][Running/Manual Start]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070321.018\naveng.sys><Symantec Corporation>
[NAVEX15 / NAVEX15][Running/Manual Start]
  <\??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070321.018\navex15.sys><Symantec Corporation>
[NSC Infrared Device Driver / NSCIRDA][Running/Manual Start]
  <System32\DRIVERS\nscirda.sys><National Semiconductor Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[SAVRT / SAVRT][Running/System Start]
  <\??\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation>
[SAVRTPEL / SAVRTPEL][Running/Auto Start]
  <\??\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation>
[SKNFW / SKNFW][Running/System Start]
  <\??\C:\WINNT\system32\Drivers\SKNFW.sys><N/A>
[smwdm / smwdm][Running/Manual Start]
  <system32\drivers\smwdm.sys><Analog Devices, Inc.>
[SymEvent / SymEvent][Running/Manual Start]
  <\??\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation>
[SYMREDRV / SYMREDRV][Running/Manual Start]
  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation>
[SYMTDI / SYMTDI][Running/System Start]
  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation>
[World Standard Teletext Codec / WSTCODEC][Stopped/Manual Start]
  <system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>
==================================
浏览器加载项
[IeCatch5 Class]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\Program Files\FlashGet\jccatch.dll, FlashGet>
[CmjBrowserHelperObject Object]
  {AC41D38F-B56D-40AD-94E0-B493D130C959} <C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll, Mindjet>
[gFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\PROGRA~1\FLASHGET\getflash.dll, >
[CmjBrowserHelperObject Object]
  {531B9DC0-D8EE-4c76-A6EE-6C1E50569655} <C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll, Mindjet>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[@shdoclc.dll,-866]
  {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\Program Files\FlashGet\flashget.exe, FlashGet.com>
[@msdxmLC.dll,-1@2052,电台(&R)]
  {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINNT\System32\msdxm.ocx, Microsoft Corporation>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINNT\system32\Macromed\Flash\Flash9b.ocx, Adobe Systems, Inc.>
[使用网际快车下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
==================================
正在运行的进程
[PID: 152][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 184][\??\C:\WINNT\system32\csrss.exe]  [Microsoft Corporation, 5.00.2195.6601]
[PID: 204][\??\C:\WINNT\system32\winlogon.exe]  [Microsoft Corporation, 5.00.2195.6898]
    [C:\WINNT\system32\Ati2evxx.dll]  [, ]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.6673]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\system32\NavLogon.dll]  [Symantec Corporation, 9.0.0.338]
[PID: 232][C:\WINNT\system32\services.exe]  [Microsoft Corporation, 5.00.2195.6700]
    [C:\WINNT\system32\dmserver.dll]  [VERITAS Software Corp., 2195.6605.297.3]
[PID: 1388][C:\WINNT\Explorer.EXE]  [Microsoft Corporation, 5.00.3700.6690]
    [C:\WINNT\AppPatch\AcLayers.DLL]  [Microsoft Corporation, 5.00.2195.6717]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [C:\PROGRA~1\SMARTR~1\xToolsEx.dll]  [N/A, ]
    [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll]  [Symantec Corporation, 9.0.0.338]
    [C:\WINNT\system\iRiveriFPUmsMenu.dll]  [, 1, 0, 0, 1]
[PID: 1516][C:\WINNT\AGRSMMSG.exe]  [Agere Systems, 2.1.31 2.1.31 06/27/2003 08:53:31]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
[PID: 1480][C:\Program Files\SkyNet\FireWall\PFWmain.exe]  [sky.net.cn, 2.5.0.120]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
[PID: 1540][C:\Program Files\Common Files\Symantec Shared\ccApp.exe]  [Symantec Corporation, 2.2.0.577]
    [C:\WINNT\system32\MSVCP70.dll]  [Microsoft Corporation, 7.00.9466.0]
    [C:\WINNT\system32\MSVCR70.dll]  [Microsoft Corporation, 7.00.9466.0]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll]  [Symantec Corporation, 2.2.0.577]
    [C:\Program Files\Symantec\LiveUpdate\ProductRegCom.DLL]  [Symantec Corporation, 2.0.39.0]
    [C:\Program Files\Symantec\LiveUpdate\LuComServerPS.DLL]  [Symantec Corporation, 2.0.39.0]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL]  [Symantec Corporation, 2.2.0.577]
    [C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL]  [Symantec Corporation, 2.2.0.577]
    [C:\WINNT\system32\SYMREDIR.dll]  [Symantec Corporation, 5.3.0.46]
    [C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll]  [Symantec Corporation, 2.2.0.577]
    [C:\Program Files\Symantec AntiVirus\SavEmail.dll]  [Symantec Corporation, 9.0.0.338]
    [C:\Program Files\Common Files\Symantec Shared\ccProSub.dll]  [Symantec Corporation, 2.2.0.577]
[PID: 1260][C:\PROGRA~1\SYMANT~1\VPTray.exe]  [Symantec Corporation, 9.0.0.338]
    [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]  [Symantec Corporation, 9.3.0.28]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\Program Files\Symantec AntiVirus\Cliproxy.dll]  [Symantec Corporation, 9.0.0.338]
    [C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL]  [Symantec Corporation, 9.0.0.338]
    [C:\Program Files\Symantec AntiVirus\Cliscan.dll]  [Symantec Corporation, 9.0.0.338]
[PID: 1504][C:\Program Files\Mindjet\MindManager 6\MMReminderService.exe]  [Mindjet, 6.0.664]
    [C:\Program Files\Mindjet\MindManager 6\MmServiceUtilities.dll]  [Mindjet, 6.0.664]
    [C:\Program Files\Mindjet\MindManager 6\MmUtilities.dll]  [Mindjet, 6.0.664]
    [C:\Program Files\Mindjet\MindManager 6\VIC32.DLL]  [Catenary Systems, 5.30]
    [C:\Program Files\Mindjet\MindManager 6\MFC70U.DLL]  [Microsoft Corporation, 7.00.9466.0]
    [C:\Program Files\Mindjet\MindManager 6\MSVCR70.dll]  [Microsoft Corporation, 7.00.9466.0]
    [C:\Program Files\Mindjet\MindManager 6\BCGCBPRO730u.dll]  [BCGSoft Ltd / Mindjet LLC, 6.0.664]
    [C:\Program Files\Mindjet\MindManager 6\gdiplus.dll]  [Microsoft Corporation, 6.0.3264.0]
    [C:\Program Files\Mindjet\MindManager 6\MSVCP70.dll]  [Microsoft Corporation, 7.00.9466.0]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
[PID: 1324][C:\WINNT\system32\internat.exe]  [Microsoft Corporation, 5.00.2920.0000]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
[PID: 1320][C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\pdfSaver3.exe]  [Tracker Software Products Ltd., 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\dscrt30.dll]  [Tracker Software Products Ltd., 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\ixclib30.dll]  [Tracker Software Products, 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\xccdx30.dll]  [Tracker Software Products, 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\PXCLIB30.DLL]  [Tracker Software Products, 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\fm30base.dll]  [Tracker Software Products Ltd., 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\Fm30Tiff.dll]  [Tracker Software, 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\fm30xmf.dll]  [N/A, ]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\xcloc30.dll]  [Tracker Software Products Ltd., 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\xcpro30.dll]  [Tracker Software Products, 3.30.0063]
    [C:\Program Files\Tracker Software\PDF-XChange 3\pdfSaver\xcpars30.dll]  [Tracker Software Products, 3.30.0063]
[PID: 1548][C:\Program Files\TechSmith\SnagIt 6\SnagIt32.exe]  [TechSmith 公司, 6.2.0]
    [C:\Program Files\TechSmith\SnagIt 6\LTFIL12n.DLL]  [LEAD Technologies, Inc., 12.1.0.011]
    [C:\Program Files\TechSmith\SnagIt 6\LTKRN12n.dll]  [LEAD Technologies, Inc., 12.1.0.011]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\WINNT\system32\spool\DRIVERS\W32X86\3\FAXUI.DLL]  [Microsoft Corporation, 5.00.2195.7003]
[PID: 1552][D:\Software\WinDates绿色\WinDates\WinDates.exe]  [Rockin' Software, 5, 1, 0, 0]
    [D:\Software\WinDates绿色\WinDates\versit.dll]  [Versit Consortium (Apple Computer, AT&T, IBM and Siemens), 1, 0, 0, 1]
    [D:\Software\WinDates绿色\WinDates\libical.dll]  [N/A, ]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [C:\WINNT\system32\spool\DRIVERS\W32X86\3\FAXUI.DLL]  [Microsoft Corporation, 5.00.2195.7003]
[PID: 1664][D:\Software\Foxmail绿色\Foxmail.exe]  [Boda Network Technology Inc., 5.0]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [D:\Software\Foxmail绿色\FoxAntiSpam.dll]  [N/A, ]
    [D:\Software\Foxmail绿色\3rdParty\punylib.dll]  [CNNIC, 1, 0, 0, 3]
[PID: 1528][D:\Software\Maxthoncn绿色\Maxthon.exe]  [MY Soft Technology, 1, 0, 0, 250]
    [C:\WINNT\system32\msxml3.dll]  [Microsoft Corporation, 8.70.1113.0]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
    [D:\Software\Maxthoncn绿色\zlib.dll]  [N/A, ]
    [D:\Software\Maxthoncn绿色\Services\RealTime\real_time.dll]  [, 1, 0, 0, 1]
    [C:\WINNT\system32\wdmaud.drv]  [Microsoft Corporation, 5.00.2195.6673]
    [C:\WINNT\system32\msacm32.drv]  [Microsoft Corporation, 5.00.2134.1]
    [C:\WINNT\system32\msadp32.acm]  [Microsoft Corporation, 5.00.2134.1]
    [C:\Documents and Settings\Administrator\桌面\SREng【teyqiu】.com]  [Smallfrogs Studio, 2.4.12.806]
    [C:\WINNT\system32\UNISPIM5.IME]  [北京紫光华宇软件股份有限公司, 5.0.0.5091]
==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINNT\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock 提供者
N/A
==================================
Autorun.inf
N/A
==================================
HOSTS 文件
127.0.0.1       localhost
==================================
API HOOK
N/A
==================================
隐藏进程
N/A
==================================

希望哪位高手帮我解惑,十分感谢!!

作者: Pighunter    时间: 2007-4-13 10:56

帮帮忙啊!
作者: windfree    时间: 2007-4-13 11:14

作为一个低手给的建议就是升级杀毒软件,杀毒。老实说我个人一直认为Norton杀毒效果很一般。
[C:\WINNT\system32\dmserver.dll]  [VERITAS Software Corp., 2195.6605.297.3]
这个我好想没看见过,不知道是什么程序!
装的程序好多啊!
作者: chinanic    时间: 2007-4-13 14:13

太乱了。根本看不清报告了些什么。

我只见过自动更新要求重启的时候出现这种情况。
作者: 左人男    时间: 2007-4-13 15:28

简单问题麻烦化了,这种你就直接修复IE就行了。然后再杀杀毒,不要老是搞些显得很专业的东西···
作者: Pighunter    时间: 2007-4-13 16:21

谢谢几位的答复,但是我这个好像不是简单的IE的问题。两位版主看看我贴的图片(需要复制地址到新IE窗口才能打开,直接点击不行),是一个监听的图标,搞得我心里发毛啊。
各位有没有知道这个图标出处的?
作者: 左人男    时间: 2007-4-13 20:42

楼上的,我怀疑是木马图片呢?那岂不让我中标~!!!
作者: chinanic    时间: 2007-4-15 20:58

打不开图片,说服务器维护中。。。。
作者: chinanic    时间: 2007-4-15 20:59

原帖由 左人男 于 2007-4-13 12:42 发表
楼上的,我怀疑是木马图片呢?那岂不让我中标~!!!



打开杀毒软件的网络监控,如果发现是木马会自动拒绝。
作者: 黑色叶子    时间: 2007-4-15 21:58

好像是360的报告
你可以去nod32.thysea.com下nod32然后更新,在安全模式下杀毒看看
作者: 左人男    时间: 2007-4-15 23:06

至于楼主说的什么"监视"图片,我估计是那种可以显示本地机IP地址跟使用IE浏览器的脚本图片,哪个没什么,也不是病毒,只是你自己本人可看到,当然也有木马图片的可能!

这种问题没必要深究,技术不是这样钻牛角尖钻出来.WINDFREE的就是一般,传统,的正常解决.
先使用流氓清除软件扫描看有恶意插件没?
当然要使用新的版本,再升级杀软病毒库,重新启动到安全模式查杀```
................................




欢迎光临 黑色海岸线论坛 (http://bbs.thysea.com/) Powered by Discuz! 7.2