999~~系统启动问题急希望各高手帮下忙~~谢谢你们了!~~~

显示全部楼层 · 发表于 2007-12-15 09:06:38

xp sp2 ,有两个问题： 1最近机器启动时，进入桌面后，任务栏启动慢，而且几乎每次右下角的小喇叭及其他个别按钮都不会出现，只有个sound effect的图标；而当注销后，任务栏启动很快，而且所有右下角图标都能显示。原因何在，不是隐藏问题，到底是哪的问题啊。

(说明下以前开机也是加载这些东西而且很快)

显示全部楼层 · 发表于 2007-12-15 09:09:21

下面这是诊断报告

诊断平台: Microsoft Windows XP Service Pack 2
IE版本: Internet Explorer V7.0.5730.11 Build:75730
计算机物理内存:511.48MB - 当前可用内存:97.91MB
100 - 未知 - Process: stormliv.exe [暴风影音媒体控制中心] - E:\工具软件\暴风\stormliv.exe /asservice
100 - 未知 - Process: AntiArp.exe [360ARP防火墙] - E:\工具软件\安全卫士\360safe\AntiArp\AntiArp.exe
100 - 未知 - Process: XDeskShow2.exe [鱼鱼桌面秀2 beta1.8] - C:\WINDOWS\system32\XPSTYLE_ThemePackage\xdeskshow2\XDeskShow2.exe
100 - 未知 - Process: SetPoint.exe [Logitech SetPoint Event Manager (UNICODE)] - C:\Program Files\Logitech\SetPoint\SetPoint.exe
100 - 未知 - Process: KHALMNPR.exe [Logitech KHAL Main Process] - C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
100 - 未知 - Process: outpost.exe [Outpost Firewall main module] - E:\工具软件\防火墙\OP\Outpost Firewall\outpost.exe
100 - 未知 - Process: WLLoginProxy.exe [WLLoginProxy.exe] - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
R0 - 未知 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://www.hao123.com/
O4 - 未知 - HKLM\..\Run: [Outpost Firewall] [Outpost Firewall main module] E:\工具软件\防火墙\OP\Outpost Firewall\outpost.exe /waitservice
O4 - 未知 - HKLM\..\Run: [OutpostFeedBack] [Auto FeedBack] E:\工具软件\防火墙\OP\Outpost Firewall\feedback.exe /dumps_startup
O4 - 未知 - HKCU\..\Run: [XDeskShow2] [鱼鱼桌面秀2 beta1.8] C:\WINDOWS\system32\XPSTYLE_ThemePackage\xdeskshow2\XDeskShow2.exe
O8 - 未知 - Extra context menu item: 使用迅雷下载 - E:\工具软件\迅雷\Program\GetUrl.htm
O8 - 未知 - Extra context menu item: 使用迅雷下载全部链接 - E:\工具软件\迅雷\Program\GetAllUrl.htm
O8 - 未知 - Extra context menu item: 添加到QQ表情 - E:\工具软件\QQ\AddEmotion.htm
O9 - 未知 - Extra button: 启动迅雷5(HKLM) - E:\工具软件\迅雷\Thunder.exe
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{6516AE8F-6237-4D8D-BD1A-A6733022D44D}]C:\WINDOWS\system32\imon.dll
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{E2B00F7F-C7BD-43DE-B5E5-4DD6709F2C47}]C:\WINDOWS\system32\imon.dll
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{23D87406-3D9E-4AE6-BD84-D1B0A937874E}]C:\WINDOWS\system32\imon.dll
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{BA9A582D-80F1-44EE-B980-D86CB27D6D99}]C:\WINDOWS\system32\imon.dll
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{9600A841-5205-409A-BD73-3083B59B60CE}]C:\WINDOWS\system32\imon.dll
O10 - 未知 - Winsock LSP: [NOD32 IMON - Internet scanning support] [{28A4D8DA-E908-4C6F-A926-A66CC7AD3224}]C:\WINDOWS\system32\imon.dll
O16 - 未知 - DPF: 无效的CLSID：{05C1004E-2596-48E5-8E26-39362985EEB9} ({05C1004E-2596-48E5-8E26-39362985EEB9}) - http://p3p.sogou.com/MMCShell.cab
O16 - 未知 - DPF: {488A4255-3236-44B3-8F27-FA1AECAA8844} (EditCtrl) - https://img.alipay.com/download/1101/aliedit.cab
O16 - 未知 - DPF: {7B744C64-15D6-4DAC-BB13-5BC3E6ED503A} (Uploader) - http://shuqian.qq.com/files/uploader/IEFavUploader.dll
O16 - 未知 - DPF: {B4D9857D-8A55-4442-A577-6B3ED5D4E41B} (ScreenCapture) - http://m51.mail.qq.com/zh_CN/activex/TencentMailActiveX.cab
O18 - 未知 - Protocol: BackWeb GA Pluggable Protocol - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - 未知 - Protocol: KuGoo - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx
O18 - 未知 - Protocol: KuGoo3 - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\WINDOWS\system32\KuGoo3DownXControl.ocx
O18 - 未知 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - 未知 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - 未知 - Service: ccosm [Contrl Center of Storm Media] - E:\工具软件\暴风\stormliv.exe /asservice - (running)
O23 - 未知 - Service: ForceWare Intelligent Application Manager (IAM) [ForceWare Intelligent Application Manager (IAM)] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe - (running)
O23 - 未知 - Service: ForcewareWebInterface [Apache] - "C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice - (not running)
O23 - 未知 - Service: nSvcIp [ForceWare IP service] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe - (running)
O23 - 未知 - Service: nSvcLog [ForceWare user log service] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe - (running)
O23 - 未知 - Service: OutpostFirewall [Outpost Firewall Service] - E:\工具软件\防火墙\OP\Outpost Firewall\outpost.exe /service - (running)
O23 - 未知 - Service: usnjsvc [Messenger 上安装的启用共享情况的服务] - "C:\Program Files\MSN Messenger\usnsvc.exe" - (not running)
O30 - 未知 - HKLM\..\Winlogon: [UIHost] [Windows Logon UI] C:\WINDOWS\system32\XPSTYLE_ThemePackage\Logonui.exe
O30 - 未知 - HKCU\..\Desktop: [Scrnsave.exe] [] C:\WINDOWS\system32\ballscr.scr

显示全部楼层 · 发表于 2007-12-15 09:10:20

=======================================
100 - 安全 - Process: smss.exe [进程为会话管理子系统用以初始化系统变量，ms-dos驱动名称类似lpt1以及com，调用win32壳子系统和运行在windows登陆过程。] - C:\WINDOWS\System32\smss.exe
100 - 安全 - Process: csrss.exe [客户端服务子系统，用以控制windows图形相关子系统。] - C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=base
100 - 安全 - Process: winlogon.exe [windows nt用户登陆程序。] - C:\WINDOWS\system32\winlogon.exe
100 - 安全 - Process: services.exe [用于管理windows服务系统进程。] - C:\WINDOWS\system32\services.exe
100 - 安全 - Process: lsass.exe [本地安全权限服务控制windows安全机制。] - C:\WINDOWS\system32\lsass.exe
100 - 安全 - Process: ati2evxx.exe [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k DcomLaunch
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost -k rpcss
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\System32\svchost.exe -k netsvcs
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k NetworkService
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k LocalService
100 - 安全 - Process: spoolsv.exe [windows打印任务控制程序，用以打印机就绪。] - C:\WINDOWS\system32\spoolsv.exe
100 - 安全 - Process: explorer.exe [windows program manager或者windows explorer用于控制windows图形shell，包括开始菜单、任务栏，桌面和文件管理。] - C:\WINDOWS\Explorer.EXE
100 - 安全 - Process: CDAC11BA.EXE [macrovision公司的版权保护软件，用于保护一些软件不被非法拷贝复制。] - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
100 - 安全 - Process: NVMixerTray.exe [nvi出品的声卡相关软件。] - C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
100 - 安全 - Process: nod32kui.exe [eset nod32反病毒软件相关程序。] - C:\Program Files\Eset\nod32kui.exe
100 - 安全 - Process: ctfmon.exe [office xp输入法图标。] - C:\WINDOWS\system32\ctfmon.exe
100 - 安全 - Process: nod32krn.exe [一款防病毒软件相关程序。] - C:\Program Files\Eset\nod32krn.exe
100 - 安全 - Process: nSvcIp.exe [一款主板相关驱动程序。] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
100 - 安全 - Process: nSvcLog.exe [nvidia公司出品的相关产品。] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
100 - 安全 - Process: svchost.exe [service host process是一个标准的动态连接库主机处理服务。] - C:\WINDOWS\system32\svchost.exe -k imgsvc
100 - 安全 - Process: nSvcAppFlt.exe [nvidia公司出品的主板相关驱动程序。] - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
100 - 安全 - Process: alg.exe [这是一个应用层网关服务用于网络共享。] - C:\WINDOWS\System32\alg.exe
100 - 安全 - Process: iexplore.exe [microsoft internet explorer浏览器用于浏览网页。] - C:\Program Files\Internet Explorer\iexplore.exe
100 - 安全 - Process: 360Safe.exe [360安全卫士] - E:\工具软件\安全卫士\360safe\360Safe.exe
100 - 安全 - Process: 360tray.exe [360安全卫士实时保护模块] - E:\工具软件\安全卫士\360safe\safemon\360Tray.exe
R0 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL=http://go.microsoft.com/fwlink/?LinkId=54896
R1 - 安全 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=about:blank
R1 - 安全 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=about:blank
O2 - 安全 - BHO: (Thunder Browser Helper) - [迅雷附带下载监视器相关文件。] - {889D2FEB-5411-4565-8998-1DD2C5261283} - E:\工具软件\迅雷\ComDlls\xunleiBHO_Now.dll
O2 - 安全 - BHO: (Windows Live Sign-in Helper) - [windows live多用户登陆助手相关插件。] - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - 安全 - HKLM\..\Run: [SystemTray] [在系统任务栏上显示小图标的程序] systray.exe
O4 - 安全 - HKLM\..\Run: [NVMixerTray] [nvidia 公司出品的nvidia corporation软件。] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - 安全 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] [罗技多媒体产品相关程序。] KHALMNPR.EXE
O4 - 安全 - HKLM\..\Run: [nod32kui] [nod32防病毒软件的主监控程序。] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - 安全 - HKLM\..\Run: [360Antiarp] [360安全卫士ARP防火墙相关程序。] E:\工具软件\安全卫士\360safe\AntiArp\AntiArp.exe /start
O4 - 安全 - HKCU\..\Run: [CTFMON.EXE] [office xp输入法图标。] C:\WINDOWS\system32\ctfmon.exe
O4 - 安全 - Startup folder: [Logitech SetPoint.lnk] [罗技logitech setpoint事件管理器相关程序。] C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Logitech SetPoint.lnk
O11 - 安全 - Options Group: International*
O16 - 安全 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/do ... gitCheckControl.cab
O16 - 安全 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Flash播放器) - http://fpdownload2.macromedia.co ... current/swflash.cab
O23 - 安全 - Service: Adobe LM Service [adobe公司相关产品的许可服务程序。] - "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe" - (not running)
O23 - 安全 - Service: Ati HotKey Poller [ati显卡相关后台程序。] - C:\WINDOWS\system32\Ati2evxx.exe - (running)
O23 - 安全 - Service: ATI Smart [是一个ati图形显示卡驱程的相关进程。] - C:\WINDOWS\system32\ati2sgag.exe - (not running)
O23 - 安全 - Service: Autodesk Licensing Service [Autodesk的服务程序。] - "C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe" - (not running)
O23 - 安全 - Service: C-DillaCdaC11BA [是MacroVision safeCast反复制保护软件。该进程是一些软件为了保护其产品不被盗版而安装的。] - C:\WINDOWS\system32\drivers\CDAC11BA.EXE - (running)
O23 - 安全 - Service: NOD32krn [NoD反病毒软件相关服务。] - "C:\Program Files\Eset\nod32krn.exe" - (running)
=======================================
O31 - 未知 - SODL: {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll - Microsoft Corporation - Systray shell service object - 5.1.2600.2180 - 138752 - 5015d9b06ebcdf60fc56b9779723e36e
O31 - 未知 - SEApproved: {00022613-0000-0000-C000-000000000046} - C:\WINDOWS\system32\mmsys.cpl - Microsoft Corporation - Control Panel Drivers Applet - 5.1.2600.2180 - 907776 - e1eaddaebb1135380dcbca9ea31b23bc
O31 - 未知 - SEApproved: {41E300E0-78B6-11ce-849B-444553540000} - C:\WINDOWS\system32\themeui.dll - Microsoft Corporation - Windows Theme API - 6.0.2900.2180 - 375296 - ad967d6a6c0aeab59573f64cd7fc66ad
O31 - 未知 - SEApproved: {42071714-76d4-11d1-8b24-00a0c9068ff3} - deskpan.dll -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：Shell extensions for file compression -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：加密上下文菜单 -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {85BBD920-42A0-1069-A2E4-08002B30309D} - C:\WINDOWS\system32\syncui.dll - Microsoft Corporation - Windows Briefcase - 5.1.2600.2180 - 204288 - b9031db515208e708eba4bdf32aa702f
O31 - 未知 - SEApproved: {BD84B380-8CA2-1069-AB1D-08000948F534} - C:\WINDOWS\system32\fontext.dll - Microsoft Corporation - Windows Font Folder - 5.1.2600.2180 - 395776 - b187b0879adc0a6f080fcf4e4f12bec3
O31 - 未知 - SEApproved: {7007ACC7-3202-11D1-AAD2-00805FC1270E} - C:\WINDOWS\system32\netshell.dll - Microsoft Corporation - Network Connections Shell - 5.1.2600.2180 - 2222592 -
O31 - 未知 - SEApproved: {992CFFA0-F557-101A-88EC-00DD010CCC48} - C:\WINDOWS\system32\netshell.dll - Microsoft Corporation - Network Connections Shell - 5.1.2600.2180 - 2222592 -
O31 - 未知 - SEApproved: {E211B736-43FD-11D1-9EFB-0000F8757FCD} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 739840 - 75fbb14f770992a9b9073897311d3707
O31 - 未知 - SEApproved: {FB0C9C8A-6C50-11D1-9F1D-0000F8757FCD} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 739840 - 75fbb14f770992a9b9073897311d3707
O31 - 未知 - SEApproved: {905667aa-acd6-11d2-8080-00805f6596d2} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 739840 - 75fbb14f770992a9b9073897311d3707
O31 - 未知 - SEApproved: {3F953603-1008-4f6e-A73A-04AAC7A992F1} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 739840 - 75fbb14f770992a9b9073897311d3707
O31 - 未知 - SEApproved: {83bbcbf3-b28a-4919-a5aa-73027445d672} - C:\WINDOWS\system32\wiashext.dll - Microsoft Corporation - Imaging Devices Shell Folder UI - 5.1.2600.2180 - 739840 - 75fbb14f770992a9b9073897311d3707
O31 - 未知 - SEApproved: {DD2110F0-9EEF-11cf-8D8E-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 316928 - a854e35853615d3a0eed7950da34b35b
O31 - 未知 - SEApproved: {797F1E90-9EDD-11cf-8D8E-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 316928 - a854e35853615d3a0eed7950da34b35b
O31 - 未知 - SEApproved: {D6277990-4C6A-11CF-8D87-00AA0060F5BF} - C:\WINDOWS\system32\mstask.dll - Microsoft Corporation - Task Scheduler interface DLL - 5.1.2600.2180 - 316928 - a854e35853615d3a0eed7950da34b35b
O31 - 未知 - SEApproved: {5F327514-6C5E-4d60-8F16-D07FA08A78ED} - C:\WINDOWS\system32\wuaucpl.cpl - Microsoft Corporation - Automatic Updates Control Panel - 5.8.0.2469 - 187672 - c6c3f5c8b014391eca554b1bb96b830c
O31 - 未知 - SEApproved: {0DF44EAA-FF21-4412-828E-260A8728E7F1} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: 无效的CLSID：Avi Properties Handler -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {9E56BE60-C50F-11CF-9A2C-00A0C90A90CE} - C:\WINDOWS\system32\sendmail.dll - Microsoft Corporation - Send Mail - 6.0.2900.2180 - 58880 - e815077ee4d953f7053c5eb1c1edc79e
O31 - 未知 - SEApproved: {9E56BE61-C50F-11CF-9A2C-00A0C90A90CE} - C:\WINDOWS\system32\sendmail.dll - Microsoft Corporation - Send Mail - 6.0.2900.2180 - 58880 - e815077ee4d953f7053c5eb1c1edc79e
O31 - 未知 - SEApproved: {352EC2B7-8B9A-11D1-B8AE-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 619008 - 95b56f11c24cec5cabab6049beb28c42
O31 - 未知 - SEApproved: {0B124F8F-91F0-11D1-B8B5-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 619008 - 95b56f11c24cec5cabab6049beb28c42
O31 - 未知 - SEApproved: {CFCCC7A0-A282-11D1-9082-006008059382} - C:\WINDOWS\system32\appwiz.cpl - Microsoft Corporation - Shell Application Manager - 5.1.2600.2180 - 619008 - 95b56f11c24cec5cabab6049beb28c42
O31 - 未知 - SEApproved: {e84fda7c-1d6a-45f6-b725-cb260c236066} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {66e4e4fb-f385-4dd0-8d74-a2efd1bc6178} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {00E7B358-F65B-4dcf-83DF-CD026B94BFD4} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {3F30C968-480A-4C6C-862D-EFC0897BB84B} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {9DBD2C50-62AD-11d0-B806-00C04FD706EC} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {EAB841A0-9550-11cf-8C16-00805F1408F3} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {eb9b1153-3b57-4e68-959a-a3266bc3d7fe} - C:\WINDOWS\system32\shimgvw.dll - Microsoft Corporation - Windows 图片和传真查看器 - 6.0.2900.2180 - 583680 - aa55cf1976579ab28ad42ef22e216cb4
O31 - 未知 - SEApproved: {7A9D77BD-5403-11d2-8785-2E0420524153} -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {ECF03A33-103D-11d2-854D-006008059367} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 81408 - 99657bb8e1bf0ebb805a6b686c47b8e1
O31 - 未知 - SEApproved: {ECF03A32-103D-11d2-854D-006008059367} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 81408 - 99657bb8e1bf0ebb805a6b686c47b8e1
O31 - 未知 - SEApproved: {4a7ded0a-ad25-11d0-98a8-0800361b1103} - C:\WINDOWS\system32\mydocs.dll - Microsoft Corporation - My Documents Folder UI - 6.0.2900.2180 - 81408 - 99657bb8e1bf0ebb805a6b686c47b8e1
O31 - 未知 - SEApproved: {60fd46de-f830-4894-a628-6fa81bc0190d} - C:\WINDOWS\system32\photowiz.dll - Microsoft Corporation - Photo Printing Wizard - 5.1.2600.2180 - 185344 - fdaac9eea6a9ab4b7cf01ec8b67890ce
O31 - 未知 - SEApproved: {0CD7A5C0-9F37-11CE-AE65-08002B2E1262} - C:\WINDOWS\system32\cabview.dll - Microsoft Corporation - Cabinet File Viewer Shell Extension - 6.0.2900.2180 - 90624 - 80dedea34d25edfff4b0f5edf421f860
O31 - 未知 - SEApproved: {0006F045-0000-0000-C000-000000000046} - D:\PROGRA~1\MICROS~1\Office\OLKFSTUB.DLL - Microsoft Corporation - Microsoft Outlook Shell Hook for Start/Find - 9.0.0.2416 - 49202 - aea9e41eed49e0b95d9d5078fc84d8e6
O31 - 未知 - SEApproved: 无效的CLSID：Shell Extensions for RealOne Player -  -  -  -  - 0 -
O31 - 未知 - SEApproved: {B9B9F083-2B04-452A-8691-83694AC1037B} - C:\Program Files\Logitech\SetPoint\mcplext.dll - Logitech Inc. - Logitech SetPoint Event Manager - 3.30.165.0 - 102400 - 168b20323b4b0fc40a2637fa67427abe
O31 - 未知 - SEApproved: {DC70C4A5-2044-4c59-B806-DEFB9AE0DF7C} - C:\Program Files\Logitech\SetPoint\kbcplext.dll - Logitech Inc. - Logitech SetPoint Event Manager - 3.30.165.0 - 102400 - 0d1d2f409fcd064b6035778bd0f1d32a
O31 - 未知 - SEApproved: {E88DCCE0-B7B3-11d1-A9F0-00AA0060FA31} - C:\WINDOWS\system32\zipfldr.dll - Microsoft Corporation - Compressed (zipped) Folders - 6.0.2900.2180 - 465408 - 8ccb8558050f17dd6052090bef0f59ae
O31 - 未知 - SEApproved: {BD472F60-27FA-11cf-B8B4-444553540000} - C:\WINDOWS\system32\zipfldr.dll - Microsoft Corporation - Compressed (zipped) Folders - 6.0.2900.2180 - 465408 - 8ccb8558050f17dd6052090bef0f59ae
O31 - 未知 - SEApproved: {888DCA60-FC0A-11CF-8F0F-00C04FD7D062} - C:\WINDOWS\system32\zipfldr.dll - Microsoft Corporation - Compressed (zipped) Folders - 6.0.2900.2180 - 465408 - 8ccb8558050f17dd6052090bef0f59ae
O31 - 未知 - SEApproved: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - E:\工具软件\WAR\rarext.dll -  -  -  - 128000 - 562fbfc8d1700406187e83a68089a262
O31 - 未知 - SEApproved: {B089FE88-FB52-11D3-BDF1-0050DA34150D} - C:\Program Files\Eset\nodshex.dll -  -  -  - 60544 - d3cf29647131277b7db23e0d712461b1
O31 - 未知 - Directory Menu: {33C9E362-3EDA-4930-8AFE-5DA39A8BB77A} - E:\工具软件\防火墙\OP\Outpost Firewall\op_shell.dll - Agnitum Ltd. - Outpost Shell Handler - 4.0.1005.7229 - 155648 - 473a9f455c7e6b6eb0a7638fe8923ba2
O31 - 未知 - Directory Menu: {B41DB860-8EE4-11D2-9906-E49FADC173CA} - E:\工具软件\WAR\rarext.dll -  -  -  - 128000 - 562fbfc8d1700406187e83a68089a262
O31 - 未知 - LSA: Security Packages - sv1_0.dll -  -  -  - 0 -
O31 - 未知 - LSA: Security Packages - channel.dll -  -  -  - 0 -
=======================================

显示全部楼层 · 发表于 2007-12-15 09:12:18

O40 - winlogon.exe - Agnitum Ltd. - E:\工具软件\防火墙\OP\Outpost Firewall\wl_hook.dll - Winlogon Hooking - e6a7a517baf54a383d81b8f40522bd40
O40 - svchost.exe - Eset  - C:\WINDOWS\system32\imon.dll - NOD32 IMON - Internet scanning support - 17038d8ff48563a02be04086f725e757
O40 - svchost.exe -  - C:\Program Files\Eset\pr_imon.dll -  - b37fbc5f736b121b8078badf5244b138
O40 - svchost.exe - Eset  - C:\WINDOWS\system32\imon.dll - NOD32 IMON - Internet scanning support - 17038d8ff48563a02be04086f725e757
O40 - svchost.exe -  - C:\Program Files\Eset\pr_imon.dll -  - b37fbc5f736b121b8078badf5244b138
O40 - svchost.exe - Eset  - C:\WINDOWS\system32\imon.dll - NOD32 IMON - Internet scanning support - 17038d8ff48563a02be04086f725e757
O40 - svchost.exe -  - C:\Program Files\Eset\pr_imon.dll -  - b37fbc5f736b121b8078badf5244b138
O40 - svchost.exe - Eset  - C:\WINDOWS\system32\imon.dll - NOD32 IMON - Internet scanning support - 17038d8ff48563a02be04086f725e757
O40 - svchost.exe -  - C:\Program Files\Eset\pr_imon.dll -  - b37fbc5f736b121b8078badf5244b138
O40 - Explorer.EXE - Agnitum Ltd. - E:\工具软件\防火墙\OP\Outpost Firewall\wl_hook.dll - Winlogon Hooking - e6a7a517baf54a383d81b8f40522bd40
O40 - Explorer.EXE - Logitech Inc. - C:\Program Files\Logitech\SetPoint\lgscroll.dll - Logitech Scroll Enabler (UNICODE) - 9fda03b009d3f745d09d9f18d1818815
O40 - Explorer.EXE - Microsoft Corporation - C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCP80.dll - Microsoft? C++ Runtime Library - f33a2734000fc6d3dbae2e1337e2bb1f
O40 - Explorer.EXE - Logitech Inc. - C:\Program Files\Logitech\SetPoint\GameHook.dll - Logitech Gaming Hook (UNICODE) - fb9924c1c6d9f8dd7a3c388dba4b04f5
O40 - Explorer.EXE -  - E:\工具软件\WAR\rarext.dll -  - 562fbfc8d1700406187e83a68089a262
O40 - Explorer.EXE -  - C:\Program Files\Eset\nodshex.dll -  - d3cf29647131277b7db23e0d712461b1
O40 - Explorer.EXE - Agnitum Ltd. - E:\工具软件\防火墙\OP\Outpost Firewall\op_shell.dll - Outpost Shell Handler - 473a9f455c7e6b6eb0a7638fe8923ba2
O40 - Explorer.EXE -  - E:\工具软件\迅雷\Components\ResWorker\DsBho_01.dll - DsBho - 2444df61896914ffbc9b2e3c36764be9
O40 - Explorer.EXE - Thunder Networking Technologies,LTD - E:\工具软件\迅雷\Components\ResWorker\DataProcessor_01.dll - DataProcessor - 2fdb3645a004fb8414e031b5d995ea51
=======================================
O41 - ADBLOCK.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\adblock.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - d38bcb37a4fe32e5f551ff39a71cb577
O41 - ARP.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\arp.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 1dfc91c4e6e7f781a86fe14d1f1d3c76
O41 - CdaC15BA - Macrovision SECURITY Driver - C:\WINDOWS\system32\drivers\CDAC15BA.SYS - (running) - Macrovision SECURITY Driver - Macrovision Europe Ltd - f76cb7259aa575cc53f3996bc6b68c18
O41 - CONTENT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\content.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 9c5716b013c9abd818a597820e0112f6
O41 - DNSCACHE.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\dnscache.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 03decaff24a589060c12278e95045e01
O41 - FTPFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\ftpfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 3ec235fdd005fc5d4c2f7eeaa7a9ae28
O41 - HTMLFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\htmlfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - f5958973a9388d7282a2c24d1d898f0c
O41 - HTTPFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\httpfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 9820155b4a6814ea0f163ef3fdc447b0
O41 - IMAPFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\imapfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - ef644c96654d1bbb0c0ef0205fe45ae7
O41 - MAILFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\mailfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 733f0d641c3b96ed2fa2e8b5791814c1
O41 - NNTPFILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\nntpfilt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 7c4f85ff15fbb8ccf0d14aec509b31a0
O41 - npkcrypt - nProtect KeyCrypt Driver - E:\工具软件\QQ\npkcrypt.sys - (running) - nProtect KeyCrypt Driver - INCA Internet Co., Ltd. - 8bcb281a2540e7aff0cd00f9878fe21f
O41 - npkcusb - nProtect KeyCrypt Driver - E:\工具软件\QQ\npkcusb.sys - (running) - nProtect KeyCrypt Driver - INCA Internet Co., Ltd. - cab3f211df47ebbe6dd3d9c9995060ad
O41 - POP3FILT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\pop3filt.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - f54ef6ad4786b3852fc52a738a17150f
O41 - PROTECT.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\protect.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - a894450c08581f1035b458ef2fc376df
O41 - PxHelp20 - Px Engine Device Driver for Windows 2000/XP - C:\WINDOWS\system32\drivers\PxHelp20.sys - (running) - Px Engine Device Driver for Windows 2000/XP - Sonic Solutions - 81088114178112618b1c414a65e50f7c
O41 - SECRET.DLL - Outpost Firewall kernel mode plugin - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\secret.dll - (running) - Outpost Firewall kernel mode plugin - Agnitum Ltd. - 49f39567e10968f5814f3c353f69e306
O41 - sfdrv01 - StarForce Protection Environment Driver - C:\WINDOWS\system32\drivers\sfdrv01.sys - (running) - StarForce Protection Environment Driver - Protection Technology - 4c0d673281178cb496011a2e28571fc8
O41 - sfhlp02 - StarForce Protection Helper Driver - C:\WINDOWS\system32\drivers\sfhlp02.sys - (running) - StarForce Protection Helper Driver - Protection Technology - 15be2b5e4dc5b8623cf167720682abc9
O41 - sfsync03 - StarForce Protection Synchronization Driver - C:\WINDOWS\system32\drivers\sfsync03.sys - (running) - StarForce Protection Synchronization Driver - Protection Technology - b27f70092a84b2a381d1fcdbbb82f876
O41 - VFILT - Virtual Firewall driver - E:\工具软件\防火墙\OP\Outpost Firewall\Kernel\filtnt.sys - (running) - Virtual Firewall driver - Agnitum Ltd. - b484cbad65edbf3e7781f5908826232d
O41 - amdtools - amdtools - C:\WINDOWS\system32\DRIVERS\amdtools.sys - (not running) -  -  -
O41 - ids00026 - ids00026 - C:\Documents and Settings\All Users\Application Data\Kaspersky Anti-Virus Personal\5.0\bases\ids00026.sys - (not running) -  -  -
O41 - NPF - NPF Driver - TME extensions - C:\WINDOWS\system32\drivers\npf.sys - (not running) - NPF Driver - TME extensions - Politecnico di Torino - f498c5c3399a60933196fc215ef074f9
O41 - NPPTNT2 - nProtect NPSC Kernel Mode Driver for NT - C:\WINDOWS\system32\npptNT2.sys - (not running) - nProtect NPSC Kernel Mode Driver for NT - INCA Internet Co., Ltd. - 9131fe60adfab595c8da53ad6a06aa31
O41 - scrcap - ZD Soft Screen Capture Driver - C:\WINDOWS\system32\drivers\SCRCAP.SYS - (not running) - ZD Soft Screen Capture Driver - ZD Soft - 8d837882b0c6750eda99b82a13e5c9e2
=======================================
360Safe.exe=3.7.0.1001
AntiAdwa.dll=3.6.3.1001
AntiEng.dll=3.6.4.1001
AntiActi.dll=2.0.0.3000
CleanHis.dll=3.0.2.1000
live.dll=1.0.1.1021
=======================================
操作历史报告：
----------修复IE浏览器操作历史----------
2007-12-01 15:09
O6 - 危险 - 禁止IE相关功能 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions
2007-12-13 15:38
O6 - 危险 - 禁止IE相关功能 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions

显示全部楼层 · 发表于 2007-12-15 09:14:49

[ 本帖最后由卡巴副司机于 2007-12-15 09:20 编辑 ]

显示全部楼层 · 发表于 2007-12-15 10:39:10

本人不怎么喜欢看报告。

所以就看了一下你说的问题

请问最近是不是有新安装什么软件？且事安装了这个软件以后出现的问题？

还有就是，开机很慢进桌面，请问事多久？你自己最长等待时间是多久？

是不是你一旦注销一次以后，再次进入就很快？

显示全部楼层 · 发表于 2007-12-15 10:49:00

粗略看了下。想是中了恶意软件了，你的启动项有点多吧，把那些不需要的都不要开机就启动吧，在用杀毒软件查下毒，nod32在国内用的效果感觉一般般的。

显示全部楼层 · 发表于 2007-12-15 13:48:00

报告这么多，不太好看啊，很有可能是恶意软件了

[已解决] 999系统启动问题急希望各高手帮下忙谢谢你们了!~~~

上面是诊断报告

浏览过的版块

[已解决] 999~~系统启动问题 急 希望各高手帮下忙~~谢谢你们了!~~~

上面是诊断报告

浏览过的版块

[已解决] 999系统启动问题急希望各高手帮下忙谢谢你们了!~~~