The computer runs slowly. o20-appinit

The computer runs slowly. o20-appinit_dlls = nv%32.dll?

Last Update:2018-12-05 Source: Internet

Author: User

Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more ＞

The computer runs slowly. o20-appinit_dlls = nv%32.dll?

EndurerOriginal
1Version

A netizen said that his computer was running slowly and asked me to remotely repair it through QQ.

Download the pe_xscan scan log. Because the computer runs slowly, file information is not scanned.

The following suspicious items are found in log analysis:
/=
Pe_xscan 07-07-24 by Purple endurer

Windows 2000 Service Pack 4 (5.0.2195)
Administrator user group
[System process] * 0
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/winlogon.exe * 212 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/services.exe * 240 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/lsass.exe * 252 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/svchost.exe * 412 | 2000-1-10
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/EXPLORER. EXE * 1076 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/internat.exe * 1248 | 2000-1-10 :0:0
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/program files/Tencent/QQ/qq.exe * 676 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/program files/Tencent/QQ/timplatform.exe * 1364 |
C:/winnt/system32/nv000032.dll | 2000-12-4
C:/winnt/system32/conime.exe * 1536 |
C:/winnt/system32/nv000032.dll | 2000-12-4

E:/autorun. inf
/-----
[Autorun]
Opentracing open.exe
Shell/open = open (& O)
Shell/Open/commandance.exe
Hell/explore = Resource Manager (& X)
Shell/cmde/command = "cmd.exe"
ShellExecute = "Execute. tmp"
-----/

O6-hkcu/software/policies/Microsoft/Internet Explorer/restrictions the existence of IE or Internet options may be limited
The existence of IE or Internet Options in o6-hkcu/software/policies/Microsoft/Internet Explorer/control panel may be limited

O20-appinit_dlls = nv000032.dll

O23-service: pprotect (pprotect)-D:/kv2006/pprotect. sys (system)

O23-service: ws2ifsl (Windows Socket 2.0 non-ifs service provider support environment)-C:/winnt/system32/Drivers/ws2ifsl. sys | 2000-1-10 (disabled)
===/

Use WinRAR to check the e-disk. open.exe‑cmd.exe and execute. tmp are not found, and the autorun. inf file is deleted.

Download and install the rising Card Security Assistant and delete o23 items.
Download hijackthis to the http://endurer.ys168.com and fix o6.

The most strange thing is o20.

File Description: C:/winnt/system32/nv1_32.dll
Attribute: ---
Language: English (USA)
File version: 4.12.01.0650
HOOK: NVIDIA Desktop Manager hook Library
Copyright: copyright? 1998-2000 NVIDIA Corporation
Note:
Product Version: 5.12.01.0650
Product Name: NVIDIA Desktop Manager hook Library
Company Name: NVIDIA Corporation
Legal trademark:
Internal name: nv000032
Source File Name: nv000032.dll
Creation Time: 2000-12-4
Modification time: 2000-12-4
Access time: 20:52:51
Size: 102400 bytes, 100.0 KB
MD5: fb11f9053f011a52c1363eea5993bed7

Google saw that this item is normal. Upload scan, no report.

The file nv000032.dll was received at 15:20:59 (CET)
Current status: Completed

Result: 0/31 (0%)

Anti-Virus engine	Version	Last update	Scan results
AhnLab-V3	2007.8.3.0	2007.08.02	-
AntiVir	7.4.0.57	2007.08.02	-
Authentium	4.93.8	2007.08.02	-
Avast	4.7.1029.0	2007.08.02	-
AVG	7.5.0.476	2007.08.01	-
BitDefender	7.2	2007.08.02	-
Cat-quickheal	9.00	2007.08.01	-
ClamAV	0.91	2007.08.02	-
Drweb	4.33	2007.08.02	-
Esafe	7.0.15.0	2007.07.31	-
ETrust-vet	31.1.5026	2007.08.02	-
Ewido	4.0	2007.08.01	-
Fileadvisor	1	2007.08.02	-
Fortinet	2.91.0.0	2007.08.02	-
F-Prot	4.3.2.48	2007.08.01	-
F-Secure	6.70.13030.0	2007.08.02	-
Ikarus	T3.1.1.8	2007.08.02	-
Kaspersky	4.0.2.24	2007.08.02	-
McAfee	5088	2007.08.01	-
Microsoft	1.2704	2007.08.02	-
Nod32v2	2432	2007.08.02	-
Norman	5.80.02	2007.08.02	-
Panda	9.0.0.4	2007.08.02	-
Rising	19.34.32.00	2007.08.02	-
Sophos	4.19.0	2007.08.01	-
Sunbelt	2.2.907.0	2007.08.02	-
Symantec	10	2007.08.02	-
Thehacker	6.1.7.160	2007.08.01	-
Vba32	3.12.2.2	2007.08.01	-
Virusbuster	4.3.26: 9	2007.08.02	-
Webcycler-Gateway	6.0.1	2007.08.02	-

Additional information
File Size: 102400 bytes
MD5: fb11f9053f011a52c1363eea5993bed7
Sha1: b53fac7b6a914098a5338b05b976eaa34e7c4a9e

Check found that the computer hardware used by netizens is relatively low, and the disk has not been cleaned up for a long time, so he asked him to clean up the disk in safe mode and scan and sort out disk fragments.

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More

The computer runs slowly. o20-appinit_dlls = nv%32.dll?

Contact Us

What's Trending

Top 10 Tags

Top 10 Keywords

A Free Trial That Lets You Build Big!

Sales Support

After-Sales Support