大学,固定ip。以前很好。
xp进入只转2圈半,到桌面很快,但是任务栏反应慢。右下角随开机启动的项目如avira等不显示(这点是关键)。最新avira查无毒、麦咖啡(不活动)查无毒。开机启动项仅为网络客户端(校园用)、红伞、foxmail。
不要说msconfig了,那东西N年前就会了。
以下是autoruns报告,隐藏了微软,高手帮着侦查一下。
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "avgnt" "Antivirus System Tray Tool" "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\avgnt.exe"
+ "edu run" "宽带认证客户端" "" "c:\program files\edu supplicant\supplicant.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Foxmail" "Internet Mail Client" "(未验证) Bodachina Co., Ltd" "f:\foxmail\foxmail.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "(已验证) Adobe Systems, Incorporated" "c:\program files\adobe\acrobat 8.0\acrobat elements\contextmenu.dll"
+ "OpenFolder" "阿里旺旺发送文件辅助模块." "(已验证) Alisoft(Shanghai) Co., Ltd." "c:\program files\alisoft\wangwang\aliimext.dll"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\shlext.dll"
+ "VirusScan" "VirusScan Shell Extension" "(未验证) Network Associates, Inc." "c:\program files\network associates\virusscan\shext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "VirusScan" "VirusScan Shell Extension" "(未验证) Network Associates, Inc." "c:\program files\network associates\virusscan\shext.dll"
+ "WinRAR" "" "(未验证) " "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "(未验证) " "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "(未验证) Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "(已验证) Adobe Systems, Incorporated" "c:\program files\adobe\acrobat 8.0\acrobat elements\contextmenu.dll"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\shlext.dll"
+ "VirusScan" "VirusScan Shell Extension" "(未验证) Network Associates, Inc." "c:\program files\network associates\virusscan\shext.dll"
+ "WinRAR" "" "(未验证) " "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "nView" "NVIDIA Desktop Explorer, Version 53.03 " "(未验证) NVIDIA Corporation" "c:\windows\system32\nvshell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "(已验证) Adobe Systems, Incorporated" "c:\program files\adobe\acrobat 8.0\acrobat elements\contextmenu.dll"
+ "Desktop Explorer" "NVIDIA Desktop Explorer, Version 53.03 " "(未验证) NVIDIA Corporation" "c:\windows\system32\nvshell.dll"
+ "Desktop Explorer Menu" "NVIDIA Desktop Explorer, Version 53.03 " "(未验证) NVIDIA Corporation" "c:\windows\system32\nvshell.dll"
+ "nView Desktop Context Menu" "NVIDIA Desktop Explorer, Version 53.03 " "(未验证) NVIDIA Corporation" "c:\windows\system32\nvshell.dll"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\shlext.dll"
+ "Shell Extensions for RealOne Player" "RealPlayer Shell Extensions" "(已验证) RealNetworks, Inc." "c:\program files\real\realplayer\rpshell.dll"
+ "WinRAR shell extension" "" "(未验证) " "c:\program files\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Conversion Toolbar Helper" "Adobe PDF Toolbar for Internet Explorer" "(已验证) Adobe Systems, Incorporated" "c:\program files\adobe\acrobat 8.0\acrobat\acroiefavclient.dll"
+ "Thunder Browser Helper" "XunLeiBHO" "(已验证) ShenZhen Thunder Networking Technologies Ltd." "c:\program files\thunder network\thunder\comdlls\xunleibho_now.dll"
+ "ThunderAtOnce Class" "TDAtOnce" "(已验证) ShenZhen Thunder Networking Technologies Ltd." "c:\program files\thunder network\thunder\comdlls\tdatonce_now.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Adobe PDF" "Adobe PDF Toolbar for Internet Explorer" "(已验证) Adobe Systems, Incorporated" "c:\program files\adobe\acrobat 8.0\acrobat\acroiefavclient.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "启动迅雷5" "Thunder" "(未验证) 深圳市迅雷网络技术有限公司" "c:\program files\thunder network\thunder\program\thunder.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AntiVirSchedulerService" "Service to schedule Avira AntiVir Premium jobs and updates." "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\sched.exe"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the AntiVir search engine." "(未验证) Avira GmbH" "c:\program files\avira\antivir desktop\avguard.exe"
+ "Bonjour Service" "##Id_String2.6844F930_1628_4223_B5CC_5BB94B879762##" "(未验证) Apple Computer, Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "(未验证) Macrovision Europe Ltd." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "(未验证) Macrovision Corporation" "c:\program files\common files\installshield\driver\1150\intel 32\idrivert.exe"
+ "McAfeeFramework" "McAfee 产品的共享组件框架" "(已验证) McAfee, Inc." "c:\program files\network associates\common framework\frameworkservice.exe"
+ "McShield" "On-Access Scanner service" "(未验证) McAfee, Inc." "c:\program files\network associates\virusscan\mcshield.exe"
+ "McTaskManager" "Task Manager : scheduling and OAS alerting service" "(未验证) Network Associates, Inc." "c:\program files\network associates\virusscan\vstskmgr.exe"
+ "RasMan" "创建网络连接。" "(未验证) Microsoft Corporation" "c:\windows\system32\rasmans.dll"
+ "rpcapd" "Allows to capture traffic on this machine from a remote machine." "(已验证) CACE TECHNOLOGIES, LLC" "c:\program files\winpcap\rpcapd.exe"
+ "ZhuDongFangYu" "360主动防御的服务项,提供实时保护、文件变化监控、智能扫描加速等功能。关闭此服务可能导致木马防不住、查不出,严重降低木马扫描速度。" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\program files\360safe\deepscan\zhudongfangyu.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "360AntiARP" "360AntiARP" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\360antiarp.sys"
+ "360SelfProtection" "360安全卫士 - SelfProtection" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\360selfprotection.sys"
+ "actser" "Actser Serial Filter driver" "(未验证) Siemens AG" "c:\windows\system32\drivers\actser.sys"
+ "ALCXWDM" "Realtek AC'97 Audio Driver (WDM)" "(未验证) Realtek Semiconductor Corp." "c:\windows\system32\drivers\alcxwdm.sys"
+ "Alidevice" "Windows NT alipay kernel module" "(未验证) alipay.com" "c:\windows\system32\drivers\alidevice.sys"
+ "AmdK8" "AMD Processor Driver" "(未验证) Advanced Micro Devices" "c:\windows\system32\drivers\amdk8.sys"
+ "ATP" "Array Networks VPN network driver" "(未验证) Array Networks" "c:\windows\system32\drivers\atpdrvr.sys"
+ "avgio" "Avira AntiVir Support for Minifilter" "(已验证) Avira GmbH" "c:\program files\avira\antivir desktop\avgio.sys"
+ "avgntflt" "Avira files mini-filter driver" "(已验证) Avira GmbH" "c:\windows\system32\drivers\avgntflt.sys"
+ "avipbb" "Avira's Driver for RootKit Detection" "(已验证) Avira GmbH" "c:\windows\system32\drivers\avipbb.sys"
+ "BFSDRV" "bfsdrv" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\bfsdrv.sys"
+ "BREGDRV" "bregdrv" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\bregdrv.sys"
+ "EfiMon" "360Efimon Driver" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\efimon.sys"
+ "EntDrv51" "EntDrv" "(未验证) McAfee, Inc" "c:\windows\system32\drivers\entdrv51.sys"
+ "HookPort" "360安全卫士 - HookPort" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\hookport.sys"
+ "IAmt" "bras helper" "(未验证) amtium" "c:\windows\system32\drivers\iamt.sys"
+ "NaiAvFilter1" "Anti-Virus File System Filter Driver" "(未验证) McAfee Inc." "c:\windows\system32\drivers\naiavf5x.sys"
+ "NaiAvTdi1" "Anti-Virus Mini-Firewall Driver" "(未验证) McAfee Inc." "c:\windows\system32\drivers\mvstdi5x.sys"
+ "NPF" "npf.sys (NT5/6 x86) Kernel Driver" "(已验证) CACE TECHNOLOGIES, LLC" "c:\windows\system32\drivers\npf.sys"
+ "oreans32" "" "" "c:\windows\system32\drivers\oreans32.sys"
+ "Packet" "DDK PACKET Protocol" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\protodrv.sys"
+ "qutmdserv" "qutmdrv" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\qutmdrv.sys"
+ "SafeBoxKrnl" "360安全卫士 - 保险箱" "(已验证) Qizhi Software (beijing) Co. Ltd" "c:\windows\system32\drivers\safeboxkrnl.sys"
+ "Ser2pl" "USB-to-Serial Cable Driver" "(未验证) Prolific Technology Inc." "c:\windows\system32\drivers\ser2pl.sys"
+ "sptd" "" "" "c:\windows\system32\drivers\sptd.sys"
+ "ssmdrv" "Avira Snapshot Driver" "(已验证) Avira GmbH" "c:\windows\system32\drivers\ssmdrv.sys"
+ "SVKP" "SVKP driver for NT" "(未验证) AntiCracking" "c:\windows\system32\svkp.sys"
+ "Tcpip" "TCP/IP Protocol Driver" "(未验证) Microsoft Corporation" "c:\windows\system32\drivers\tcpip.sys"
+ "vsbus" "" "" "c:\windows\system32\drivers\vsb.sys"
+ "vserial" "" "" "c:\windows\system32\drivers\vserial.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.divxa32" "DivX;-) Audio Codec" "(未验证) Hacked With Joy !" "c:\windows\system32\divxa32.acm"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "(未验证) Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.voxacm160" "Voxware Audio Compression Manager Driver" "(未验证) Voxware, Inc." "c:\windows\system32\vct3216.acm"
+ "vidc.DIV3" "DivX ;-) MPEG-4 Video Codec " "(未验证) Hacked with Joy !" "c:\windows\system32\divxc32.dll"
+ "vidc.DIV4" "DivX ;-) MPEG-4 Video Codec " "(未验证) Hacked with Joy !" "c:\windows\system32\divxc32f.dll"
+ "vidc.DIVX" "DivX? Codec for Windows" "(未验证) DivXNetworks, Inc." "c:\windows\system32\divx.dll"
+ "vidc.iv50" "Ligos Indeo XP (Indeo? Video 5.2)" "(未验证) Ligos Corporation" "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Voxware MetaSound Audio Decoder" "Voxware MetaSound Audio Decoder" "(未验证) Voxware, Inc." "c:\program files\stormii\codec\voxmsdec.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Audio Destination" "WAVDest Filter (Sample)" "(未验证) Microsoft Corporation" "c:\program files\google\google earth\wavdest.ax"
+ "DivX ;-) Hi-Res Video Decompressor " "DivX ;-) MPEG-4 Video Decompressor " "(未验证) Hacked With Joy !" "c:\windows\system32\divx_c32.ax"
+ "DivX Decoder Filter" "DivX? Decoder Filter" "(未验证) DivXNetworks, Inc." "c:\windows\system32\divxdec.ax"
+ "Indeo? Video 5.2 Compression Filter" "Ligos Indeo XP (Indeo? Video 5.2)" "(未验证) Ligos Corporation" "c:\windows\system32\ir50_32.dll"
+ "Indeo? Video 5.2 Decompression Filter" "Ligos Indeo XP (Indeo? Video 5.2)" "(未验证) Ligos Corporation" "c:\windows\system32\ir50_32.dll"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "(未验证) Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "(未验证) RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "Videosoft H.264 Decoder" "Videosoft H.264 Decoder" "(未验证) Videosoft, Inc." "c:\windows\system32\vsshdsd.dll"
"HKCU\Control Panel\Desktop\Scrnsave.exe" "" "" ""
+ "" "" "" ""
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "(未验证) Apple Computer, Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Adobe PDF Port" "Acrobat ? PDF Port" "(已验证) Adobe Systems, Incorporated" "c:\windows\system32\adobepdf.dll"
+ "HPLJ1020LM" "Spooler Language Monitor for HP LaserJet Series 1020/2600" "(未验证) Zenographics, Inc." "c:\windows\system32\zlhp1020.dll"
[ 本帖最后由 dasher777 于 2009-11-6 08:18 编辑 ] |
发表于 2009-11-5 15:06:57
楼主
