引用:
作者: tammys
O4 - HKCU\..\Run: [bgswitch] bgswitch.exe
|
你的LOG檔看起來還好,不過那個 bgswitch.exe 我不確定是正常檔案,還是病毒?
你把 bgswitch.exe 傳送到下面網址分析一下:
VirusTotal - 免費線上病毒和惡意軟體掃瞄:
http://www.virustotal.com/zh-tw/
另外修復隱藏檔案控制選項方法,將下面內容用記事本存成 "修復隱藏檔案控制選項.reg"
再用滑鼠連按二次匯入即可。
語法:
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
"HideFileExt"=dword:00000000
"SuperHidden"=dword:00000001
"ShowSuperHidden"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN]
"CheckedValue"=dword:00000002
"DefaultValue"=dword:00000002
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]
"CheckedValue"=dword:00000001
"DefaultValue"=dword:00000002
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\HideFileExt]
"CheckedValue"=dword:00000001
"DefaultValue"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
@=""