开机进入桌面很卡 等一会才能进去 另外玩网络游戏也卡 有什么办法能查出来为什么卡吗？开网页也没以前快了。在线等

引用:

【zgr稳得起的贴子】本地连接 属性 INTERNET协议（TCP/IP）属性中“常规”卡→“使用下面的IP地址”中→IP地址（I）192、168、0、1参见下图所示 ………………

输入完了我点确认 系统说什么码

引用:

【侠客行难的贴子】初步检查，按ctul+alt+del组合键，调出任务管理器，看看是何方妖孽作怪。 ………………

按了我也不知道 那个是多余的啊

我的 HijackThis 不是新版本
HijackThis@Qoo的扫描日志  V1.97.7
Scan saved at 20:59:33, on 2006-8-19
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
D:\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
D:\Rising\Rav\Ravmond.exe
d:\rising\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
D:\Rising\Rav\RavStub.exe
C:\WINDOWS\System32\AlxUp.exe
D:\Rising\Rav\RavTask.exe
C:\WINDOWS\System32\Performance32.exe
D:\Rising\Rav\Ravmon.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\System32\conime.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Thunder Network\Program\Thunder5.exe
C:\WINDOWS\System32\msiexec.exe
D:\HijackThis\HijackThis.exe

O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: (no name) - {75FE2B5A-D3A4-4EFA-AC11-ADC9C9459688} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing)
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\Thunder Network\ComDlls\XunLeiBHO_002.dll
O2 - BHO: (no name) - {9A556B8F-FD02-420E-A1FD-9DB33808254E} - C:\Program Files\MySec\secmouseaan.dll (file missing)
O2 - BHO: Fav Manager - {CD8BFE70-5809-4C73-9EEE-E5672C2B79D7} - C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll (file missing)
O2 - BHO: (no name) - {FD9936EF-C90D-4914-9EAB-699612B11A47} - C:\WINDOWS\csapix.dll
O3 - Toolbar: ????? - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: ????? - {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - C:\PROGRA~1\Kingsoft\FASTAI~1\IEBand.dll
O3 - Toolbar: ????? - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\System32\kakatool.dll
O3 - Toolbar: ????? - {F869BB38-FFEF-4589-B986-610B7AD0ADA2} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing)
O3 - Toolbar: ????? - {102293E4-758B-4483-946B-714EBCEC91B8} - C:\Program Files\MySec\secbaraan.dll (file missing)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [RavTask] "D:\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [RfwMain] "D:\Rising\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [Performance Manegar] Performance32.exe
O4 - HKLM\..\Run: [S3TRAYX] C:\WINDOWS\System32\s3trayx.exe
O4 - HKLM\..\Run: [SECUPDATE] C:\Program Files\MySec\secupdateaan.exe -sv
O4 - HKLM\..\RunServices: [Performance Manegar] Performance32.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Performance Manegar] Performance32.exe
O4 - HKLM\..\RunOnce: [RavStub] "D:\Rising\Rav\ravstub.exe" /RUNONCE
O4 - Startup: NTUSER.DAT
O4 - Startup: ntuser.dat.LOG
O4 - Startup: ntuser.ini
O4 - Startup: sys_log_358112303.upt
O8 - Extra context menu item: !直接打开链接 - res://C:\Program Files\MySec\secmouseaan.dll/seopenurl.html
O8 - Extra context menu item: &使用迅雷下载 - D:\Thunder Network\Program\GetUrl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\Thunder Network\Program\GetAllUrl.htm
O8 - Extra context menu item: YOK超级搜索 - C:\Program Files\YOK.com\SuperSearch\yoksch.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用百度搜索 - res://C:\Program Files\MySec\secmouseaan.dll/sesch_bd.html
O8 - Extra context menu item: 加入365ＭＹ收藏夹(&U) - http://www.365my.com/rclick/add_url.php
O8 - Extra context menu item: 加入365ＭＹ网摘(&N) - http://www.365my.com/rclick/add_net.php
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Program Files\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: 豪杰超级解霸V8实时播放 - C:\Herosoft\HeroV8\MPURLGET.HTM
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O9 - Extra button: QQ (HKLM)
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} - http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE438969-ACEC-43E6-B4C7-7265F3CA3A13}: NameServer = 202.96.64.68 202.96.69.38

Logfile of HijackThis v1.99.1
Scan saved at 21:06:35, on 2006-8-19
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
D:\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
D:\Rising\Rav\Ravmond.exe
d:\rising\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
D:\Rising\Rav\RavStub.exe
C:\WINDOWS\System32\AlxUp.exe
D:\Rising\Rav\RavTask.exe
C:\WINDOWS\System32\Performance32.exe
D:\Rising\Rav\Ravmon.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\System32\conime.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Thunder Network\Program\Thunder5.exe
D:\Rising\Rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\HijackThis.exe

F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - D:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: YOK超级搜索 - {75FE2B5A-D3A4-4EFA-AC11-ADC9C9459688} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing)
O2 - BHO: ThunderBHO - {889D2FEB-5411-4565-8998-1DD2C5261283} - D:\Thunder Network\ComDlls\XunLeiBHO_002.dll
O2 - BHO: MAngle Class - {9A556B8F-FD02-420E-A1FD-9DB33808254E} - C:\Program Files\MySec\secmouseaan.dll (file missing)
O2 - BHO: Fav Manager - {CD8BFE70-5809-4C73-9EEE-E5672C2B79D7} - C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll (file missing)
O2 - BHO: GMBar - {FD9936EF-C90D-4914-9EAB-699612B11A47} - C:\WINDOWS\csapix.dll
O3 - Toolbar: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: 金山快译(&K) - {6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - C:\PROGRA~1\Kingsoft\FASTAI~1\IEBand.dll
O3 - Toolbar: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\System32\kakatool.dll
O3 - Toolbar: YOK超级搜索 - {F869BB38-FFEF-4589-B986-610B7AD0ADA2} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing)
O3 - Toolbar: My 网蜜(&M) - {102293E4-758B-4483-946B-714EBCEC91B8} - C:\Program Files\MySec\secbaraan.dll (file missing)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [RavTask] "D:\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [RfwMain] "D:\Rising\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [Performance Manegar] Performance32.exe
O4 - HKLM\..\Run: [S3TRAYX] C:\WINDOWS\System32\s3trayx.exe
O4 - HKLM\..\Run: [SECUPDATE] C:\Program Files\MySec\secupdateaan.exe -sv
O4 - HKLM\..\RunServices: [Performance Manegar] Performance32.exe
O4 - HKLM\..\RunOnce: [RavStub] "D:\Rising\Rav\ravstub.exe" /RUNONCE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Performance Manegar] Performance32.exe
O8 - Extra context menu item: !直接打开链接 - res://C:\Program Files\MySec\secmouseaan.dll/seopenurl.html
O8 - Extra context menu item: &使用迅雷下载 - D:\Thunder Network\Program\GetUrl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\Thunder Network\Program\GetAllUrl.htm
O8 - Extra context menu item: YOK超级搜索 - C:\Program Files\YOK.com\SuperSearch\yoksch.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - D:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用百度搜索 - res://C:\Program Files\MySec\secmouseaan.dll/sesch_bd.html
O8 - Extra context menu item: 加入365ＭＹ收藏夹(&U) - http://www.365my.com/rclick/add_url.php
O8 - Extra context menu item: 加入365ＭＹ网摘(&N) - http://www.365my.com/rclick/add_net.php
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\Program Files\Tencent\QQ\SendMMS.htm
O8 - Extra context menu item: 豪杰超级解霸V8实时播放 - C:\Herosoft\HeroV8\MPURLGET.HTM
O9 - Extra button: 启动迅雷 - {0062C9BD-B349-40DE-91A0-755F37ACD559} - D:\Thunder Network\Thunder.exe
O9 - Extra 'Tools' menuitem: 启动迅雷 - {0062C9BD-B349-40DE-91A0-755F37ACD559} - D:\Thunder Network\Thunder.exe
O9 - Extra button: My网蜜 - {102293E4-758B-4483-946B-714EBCEC91B8} - C:\Program Files\MySec\secbaraan.dll (file missing)
O9 - Extra 'Tools' menuitem: My网蜜 - {102293E4-758B-4483-946B-714EBCEC91B8} - C:\Program Files\MySec\secbaraan.dll (file missing)
O9 - Extra button: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - Extra 'Tools' menuitem: 豪杰超级解霸V8 - {367E0A21-8601-4986-9C9A-153BF5ACA118} - C:\Herosoft\HeroV8\STHSDVD.EXE
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Program Files\Tencent\QQ\QQ.EXE
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra button: YOK超级搜索 - {F869BB38-FFEF-4589-B986-610B7AD0ADA2} - http://www.yok.com (file missing)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE438969-ACEC-43E6-B4C7-7265F3CA3A13}: NameServer = 202.96.64.68 202.96.69.38
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - d:\rising\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - d:\rising\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - D:\Rising\Rav\CCenter.exe
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - D:\Rising\Rav\Ravmond.exe

最新的 有毛病吗

瑞星防火墙开机启动的 你看看有没用的吗
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run                                                                   
+ Performance Manegar                              C:\WINDOWS\System32\PERFORMANCE32.EXE                                         
+ S3TRAYX                                          C:\WINDOWS\SYSTEM32\S3TRAYX.EXE                                               
+ SECUPDATE                                        C:\PROGRAM FILES\MYSEC\SECUPDATEAAN.EXE                                       
+ helper.dll                                        C:\PROGRA~1\3721\HELPER.DLL                                                   
+ CnsMin                                            C:\WINDOWS\DOWNLO~1\CNSMIN.DLL                                                 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run                                                                   
+ Performance Manegar                              C:\WINDOWS\System32\PERFORMANCE32.EXE                                         
C:\Documents and Settings\t\「开始」菜单\程序\启动                                                                                 
+ 腾讯QQ.lnk                            QQ TENCENT D:\PROGRA~1\TENCENT\QQ\QQ.EXE                                                 
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run                                                 
+ {70CC287D-0707-2052-0920-020302020056}            C:\PROGRAM FILES\COMMON FILES\{70CC287D-0707-2052-0920-020302020056}\UPDATE.EXE

引用:

【zgr稳得起的贴子】C:\WINDOWS\system32\spoolsv.exe 其中“spoolsv.exe”这个是打印机服务如果不使用打印机可以将它请出内存，禁止方法是在“开始”→“运行”→输入“services.msc /s”打开系统服务，找到“Print Spooler”的项目，将它改为手动或禁止，下次启动后就不再出现了，要用打印机时再调入即可。 O2 - BHO: (no name) - {75FE2B5A-D3A4-4EFA-AC11-ADC9C9459688} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing) O2 - BHO: Fav Manager - {CD8BFE70-5809-4C73-9EEE-E5672C2B79D7} - C:\Program Files\Deepdo\DeepdoBar\Favorite\FavBlock.dll (file missing) O3 - Toolbar: ????? - {F869BB38-FFEF-4589-B986-610B7AD0ADA2} - C:\Program Files\YOK.com\SuperSearch\YOK_SuperSearch.dll (file missing) O2 - BHO: (no name) - {FD9936EF-C90D-4914-9EAB-699612B11A47} - C:\WINDOWS\csapix.dll O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\Run: [Performance Manegar] Performance32.exe O4 - HKLM\..\Run: [SECUPDATE] C:\Program Files\MySec\secupdateaan.exe -sv O4 - HKLM\..\RunServices: [Performance Manegar] Performance32.exe O4 - HKCU\..\Run: [Performance Manegar] Performance32.exe O4 - Startup: ntuser.dat.LOG O4 - Startup: ntuser.ini O4 - Startup: sys_log_358112303.upt O8 - Extra context menu item: 使用百度搜索 - res://C:\Program Files\MySec\secmouseaan.dll/sesch_bd.html 启动项目太多没必要的将它去上面都可以去掉 ………………

是用 HijackThis 修复吗？

修改<Performance Manegar>值为<Performance32.exe>
HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN
瑞星提示 以上的
总有提示修改注册表 不知道点确认还是拒绝 还有漏洞攻击

就RavTask 和rfwmain 还有ctfmon 启动
也个汉字的推送式客户程序 没启动 就这4个了
现在我重启下电脑看看

引用:
【zgr稳得起的贴子】 现在开机快多了 谢谢你 我电脑是自动拨号的 拨的时候稍微慢 又提示了 这个我同意还是拒绝修改 发现 修改<Performance Manegar>值为<Performance32.exe> 注册表项HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN 进程名称 C:\WINDOWS\System32\Performance32.exe