瑞星卡卡安全论坛

日志已上传
还有下面是什么，谢谢
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]

用户系统信息：Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Mozilla/4.0(Compatible Mozilla/4.0(Compatible-EmbeddedWB 14.59 http://bsalsa.com/ EmbeddedWB- 14.59  from: http://bsalsa.com/ ; MAXTHON 2.0)

附件: SREngLOG.log

日志无明显异常，可以考虑清理下系统垃圾等
关闭IE用下面的工具全选，清理系统临时文件和IE临时文件夹     
http://www.atribune.org/public-beta/ATF-Cleaner.exe

下载windows清理助手清理一遍
http://www.arswp.com/download/arswp3/x86/arswp3_x86.zip（升级后使用)

这些是什么？

API HOOK
入口点错误：NtCreateFile (危险等级: 高,  被下面模块所HOOK: 0x003C57B5)
入口点错误：NtCreateKey (危险等级: 高,  被下面模块所HOOK: 0x003C5955)
入口点错误：NtLoadDriver (危险等级: 高,  被下面模块所HOOK: 0x003C60A5)
入口点错误：NtSetValueKey (危险等级: 高,  被下面模块所HOOK: 0x003C5A25)
入口点错误：NtWriteFile (危险等级: 高,  被下面模块所HOOK: 0x003C5885)
入口点错误：ZwCreateFile (危险等级: 高,  被下面模块所HOOK: 0x003C57B5)
入口点错误：ZwCreateKey (危险等级: 高,  被下面模块所HOOK: 0x003C5955)
入口点错误：ZwSetValueKey (危险等级: 高,  被下面模块所HOOK: 0x003C5A25)
入口点错误：ZwWriteFile (危险等级: 高,  被下面模块所HOOK: 0x003C5885)
入口点错误：CreateServiceA (危险等级: 高,  被下面模块所HOOK: 0x003C5D65)
入口点错误：CreateServiceW (危险等级: 高,  被下面模块所HOOK: 0x003C5E35)
入口点错误：LoadLibraryA (危险等级: 高,  被下面模块所HOOK: 0x003C6A65)
入口点错误：LoadLibraryExW (危险等级: 高,  被下面模块所HOOK: 0x003C564D)
入口点错误：CreateFileW (危险等级: 高,  被下面模块所HOOK: 0x003C6585)
入口点错误：CreateProcessA (危险等级: 高,  被下面模块所HOOK: 0x003C6995)
入口点错误：CreateProcessW (危险等级: 高,  被下面模块所HOOK: 0x003C67F5)

那个没事，可能是杀软hook造成的

楼主装了瑞星的杀软和防火墙，又装了360卫士不卡才怪，建议删个掉。其他没什么明显不正常