Ask Me Help Desk

Ask Me Help Desk (https://www.askmehelpdesk.com/forum.php)
-   Internet & the Web (https://www.askmehelpdesk.com/forumdisplay.php?f=177)
-   -   I can't open 'Internet Explorer', 'My Computer' or 'My Folders' (https://www.askmehelpdesk.com/showthread.php?t=27335)

  • Jun 6, 2006, 05:35 AM
    zpteh717
    I cant open Internet explorer ,my computer and folders
    Logfile of HijackThis v1.99.1
    Scan saved at 8:28:39 PM, on 6/6/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    D:\WINDOWS\System32\smss.exe
    D:\WINDOWS\system32\csrss.exe
    D:\WINDOWS\system32\winlogon.exe
    D:\WINDOWS\system32\services.exe
    D:\WINDOWS\system32\lsass.exe
    D:\WINDOWS\system32\svchost.exe
    D:\WINDOWS\system32\svchost.exe
    D:\WINDOWS\System32\svchost.exe
    D:\WINDOWS\system32\svchost.exe
    D:\WINDOWS\system32\svchost.exe
    D:\WINDOWS\system32\spoolsv.exe
    D:\WINDOWS\Explorer.EXE
    D:\WINDOWS\system32\Rundll32.exe
    D:\Program Files\MSN Messenger\msnmsgr.exe
    D:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
    D:\WINDOWS\system32\rundll32.exe
    D:\WINDOWS\system32\svchost.exe
    D:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
    D:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
    D:\WINDOWS\system32\wdfmgr.exe
    D:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
    D:\WINDOWS\System32\alg.exe
    D:\PROGRA~1\TRENDM~1\INTERN~1\PccGuide.exe
    D:\Program Files\BitComet\BitComet.exe
    D:\Program Files\Thunder Network\Thunder\Program\Thunder5.exe
    C:\TDdownload\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://seek.3721.com/srchasst.htm
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.yahoo.com.cn
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.yahoo.com.cn
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://seek.yisou.com/srchasst.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://seek.yisou.com/srchcust.htm
    R3 - URLSearchHook: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
    O2 - BHO: PPGou BHO - {00000000-0000-0000-0000-C4CA9A05F1E2} - D:\PROGRA~1\PPGou\PPGIEC~1.DLL (file missing)
    O2 - BHO: ThunderIEHelper - {0005A87D-D626-4B3A-84F9-1D9571695F55} - D:\WINDOWS\system32\xunleibho_v14.dll
    O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - D:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 - BHO: VVZ - {2FCFD111-E5B3-487E-8137-296E77D87D35} - D:\WINDOWS\system32\vvz\VVZ.dll
    O2 - BHO: yPhtb - {33BBE430-0E42-4f12-B075-8D21ACB10DCB} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yphtb.dll
    O2 - BHO: Anti Fish - {38928D50-8A48-44C2-945F-D2F23F771410} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yangling.dll
    O2 - BHO: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
    O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
    O2 - BHO: MMSAssist - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - D:\PROGRA~1\MMSASS~1\Mmsass~1.dll
    O2 - BHO: stdup - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - D:\WINDOWS\SYSTEM32\stdup.dll
    O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\Program Files\Thunder Network\Thunder\ComDlls\XunLeiBHO_001.dll
    O2 - BHO: NewWeb Controller - {9ACEEE30-143F-471A-AA45-72B061FE7D60} - D:\WINDOWS\system32\WinSC.dll
    O2 - BHO: IE - {D157330A-9EF3-49F8-9A67-4141AC41ADD4} - D:\WINDOWS\DOWNLO~1\CnsHook.dll
    O2 - BHO: Subconscious Intruder - {E2218499-2FD4-4EED-A94A-7F0B9C6E300E} - D:\WINDOWS\system32\Inte32.dll
    O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\MSN Toolbar\01.01.2607.0\en-us\msntb.dll (file missing)
    O3 - Toolbar: 酷站大全 - {954F618B-0DEC-4D1A-9317-E0FC96F87865} - D:\WINDOWS\system32\amstreamxb.dll
    O3 - Toolbar: 雅虎助手 - {406F94F0-504F-4a40-8DFD-58B0666ABEBD} - D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll
    O3 - Toolbar: blueserver toolbar - {83ef376d-8874-4769-a2e7-7096480e7def} - D:\Program Files\blueserver\tbblu0.dll
    O3 - Toolbar: VVZ收藏夹 - {40033781-CE56-4D31-9D4D-881DB0A1E95F} - D:\WINDOWS\system32\vvz\VVZ.dll
    O4 - HKLM\.. \Run: [CnsMin] Rundll32.exe D:\WINDOWS\DOWNLO~1\CnsMin.dll,Rundll32
    O4 - HKCU\.. \Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O8 - Extra context menu item: > 收藏此页到VVZ收藏夹 - D:\WINDOWS\system32\vvz\Menu.htm
    O8 - Extra context menu item: >> 彩信发送 << - res://D:\PROGRA~1\MMSASS~1\Mmsass~1.dll/mms.htm
    O8 - Extra context menu item: &使用屁屁狗[PPGou]加速下载 - D:\Documents and Settings\All\Desktop\geturl.htm
    O8 - Extra context menu item: &使用迅雷下载 - D:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
    O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
    O8 - Extra context menu item:?? - res://D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll/246
    O8 - Extra context menu item: Download All Links with IDM - D:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 - Extra context menu item: Download with IDM - D:\Program Files\Internet Download Manager\IEExt.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: 添加到雅虎订阅(&Y) - res://D:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yrss.dll/YRSSMENUEXT
    O9 - Extra button: Yahoo 1G mail - {507F9113-CD77-4866-BA92-0E86DA3D0B97} - http://cn.zs.yahoo.com/cnsbutton.htm...&btn=yahoomail (file missing)
    O9 - Extra button: E bazar - {59BC54A2-56B3-44a0-93E5-432D58746E26} - http://cn.zs.yahoo.com/cnsbutton.htm...cns&btn=taobao (file missing)
    O9 - Extra button: Yahoo Assistant - {5D73EE86-05F1-49ed-B850-E423120EC338} - http://cn.zs.yahoo.com/cnsbutton.htm...ns&btn=yassist (file missing)
    O9 - Extra button: (no name) - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - D:\PROGRA~1\MMSASS~1\Mmsass~1.dll
    O9 - Extra 'Tools' menuitem: MMSAssist工具条设置 - {6671A433-5C3D-463d-A7CF-5587F9B7E191} - D:\PROGRA~1\MMSASS~1\Mmsass~1.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Instant Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - http://cn.zs.yahoo.com/cnsbutton.htm...s&btn=yahoomsg (file missing)
    O9 - Extra button: (no name) - {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} - http://cn.zs.yahoo.com/cnsbutton.htm...cns&btn=repair (file missing)
    O9 - Extra 'Tools' menuitem: Repair Browser - {ECF2E268-F28C-48d2-9AB7-8F69C11CCB71} - http://cn.zs.yahoo.com/cnsbutton.htm...cns&btn=repair (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - {FD00D911-7529-4084-9946-A29F1BDF4FE5} - http://cn.zs.yahoo.com/cnsbutton.htm...=cns&btn=clean (file missing)
    O9 - Extra 'Tools' menuitem: Clean Internet access record - {FD00D911-7529-4084-9946-A29F1BDF4FE5} - http://cn.zs.yahoo.com/cnsbutton.htm...=cns&btn=clean (file missing)
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    O11 - Options group: [!CNS] Chinese keywords
    O12 - Plugin for .htm: D:\Program Files\\Netscape\\Netscape Browser\PLUGINS\npTrident.dll
    O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
    O17 - HKLM\System\CCS\Services\Tcpip\.. \{207C66BF-646C-42A1-81E8-90B065A8E029}: NameServer = 202.188.0.133 202.188.1.5
    O17 - HKLM\System\CS1\Services\Tcpip\.. \{207C66BF-646C-42A1-81E8-90B065A8E029}: NameServer = 202.188.0.133 202.188.1.5
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: winmmt32 - D:\WINDOWS\SYSTEM32\winmmt32.dll
    O21 - SSODL: stdup - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} - D:\WINDOWS\SYSTEM32\stdup.dll
    O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - D:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
    O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - D:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
    O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
    O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe

    after opening IE or my computer my comuter will hang for a moment then it says what Dr WAtson debugger problem
    hope u all tell the solution for me to solve it thnks
  • Jun 6, 2006, 05:46 AM
    fredg
    Hi,
    Have you run both Spyware and Antivirus scans?
    Running these is usually the first step in troubleshooting issues.
    Here are programs I use, and steps to run them, if you haven't already.
    Also, please run your AntiVirus Scan in SafeMode also.
    If you think you already have Spyware/Advertising Ware in your computer, run these as follows:

    AdAware at:
    http://www.lavasoftusa.com
    Download: AdAware_SE V 1.06

    SpyBot Search & Destroy V 1.4
    http://www.spybot.info/en/download/index.html
    All of the above programs run better and much faster when run in SafeMode.

    To get into SafeMode:
    Re-boot the computer, and immediately after starting up, Press and hold down, F8, at top of keypad.
    When the options show on the screen, use the up and down arrow keys on the keyboard to select
    "Safe Mode".
    Press Enter

    It's best to run the AdAware scan first; 3 times; then re-boot.
    Then, run the AdAware scan again 3 times. Then, run SpyBot, and then CWShredder.
    Re- Boot.
    Reason for running so many times:
    Some of these trojans' files can be deleted the first time; leaving some others; but on re-boot, they re-write the files that were deleted.
    Running multiple times deletes most of it the first
    Time.

    If you wish to have a great program, after you clean out Spyware/Advertising Ware, it's called SpyWare Blaster.
    This program stops this stuff from getting into the computer in the first place, by placing URL's in the browser, stopping them instantly. One of the Very Best free programs anyone can download! Updates of AntiSpyware Definitions are available on almost a weekly basis. I have not had ANY spyware since using this program... really no need for spyware scans anymore.

    SpyWare Blaster 3.5
    http://www.javacoolsoftware.com/sbupdate.html

    Free online scan at:
    http://www.trendmicro.com/spyware-scan/

    If the above doesn't solve the issue, or if you have already done it, please post back. Best wishes.
  • Jun 6, 2006, 08:33 AM
    LTheobald
    Do what Fred said and run some spyware scans. You've got a few bits of nasty stuff in that log. For example:

    Code:
    O10 - Unknown file in Winsock LSP: d:\windows\system32\idmmbc.dll
    According to the log parser I use (http://hjt.networktechs.com/) that's a Winsock hijacker and you want to get rid of that.

    • All times are GMT -7. The time now is 11:03 PM.