============================================================== 金山清理专家系统诊断报告 该诊断报告由金山清理专家提供 http://www.duba.net ============================================================== 诊断时间: 2008-09-11, 14:31 诊断平台: Windows XP [5.1.2600] Service Pack 2 IE版本: Internet Explorer V7.0.13.5730 计算机物理内存: 1006(MB) 当前可用内存: 454(MB) 硬盘总大小: 149(GB) 硬盘可用空间: 131(GB) 清理专家版本: 2008.08.12.553 恶意软件库版本: 2008.08.06.1 漏洞库版本: 2008.09.02.1 ============================================================== 常规启动项 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [TkBellExe] <; "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [internat.exe] <; C:\WINDOWS\SYSTEM\internat.exe> [qwe] <; > [qww] <; > [SoundMAXPnP] <; C:\Program Files\Analog Devices\Core\smax4pnp.exe> -------------------------------------------------------------- 该项来源: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [swg] <; C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe> [16878] <; > ============================================================== 启动文件夹位置 ============================================================== Common Startup: C:\Documents and Settings\All Users\「开始」菜单\程序\启动 Startup: C:\Documents and Settings\hq\「开始」菜单\程序\启动 Common Startup: %ALLUSERSPROFILE%\「开始」菜单\程序\启动 ============================================================== 文件扩展名关联 ============================================================== .ASF <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -localfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] .AVI <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -localfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] .M3U <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -qlistfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] .WMA <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -localfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] .MP3 <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -localfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] .MPG(.MPEG) <"C:\Program Files\QvodPlayer\QvodPlayer.exe" -localfile "%1"> 文件路径: C:\Program Files\QvodPlayer\QvodPlayer.exe [分析中] ============================================================== Host File ============================================================== 127.0.0.1 localhost 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbaudit.gov.cn 10.30.48.15 mail.zj-nbaudit.gov.cn 10.30.48.3 kj.zj-nbaudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbAudit.gov.cn 10.30.48.15 mail.zj-nbAudit.gov.cn 10.30.48.3 kj.zj-nbAudit.gov.cn localhost 10.30.252.62 10.30.48.5 oa.zj-nbAudit.gov.cn 10.30.48.15 mail.zj-nbAudit.gov.cn 10.30.48.3 kj.zj-nbAudit.gov.cn localhost 10.30.252.62 ============================================================== 系统服务 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [HidServ] [已禁用] <%SystemRoot%\System32\hidserv.dll> [SPDODREPDT] [已启用] [VILOSZHIJQYY] [已启用] ============================================================== 驱动程序 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services [u7bh4l] [已启用] 文件路径: C:\WINDOWS\system32\drivers\u7bh4l.sys [可疑的] [y7rw] [已启用] ============================================================== BHO ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects [{21334231-6DED-436B-9E63-E45AAA9DA107}] {21334231-6DED-436B-9E63-E45AAA9DA107} [{21FD0BA3-67ED-44D7-B475-B85CBDD5CBF0}] {21FD0BA3-67ED-44D7-B475-B85CBDD5CBF0} [{296E2539-1A71-44AE-9864-9C083517BD36}] {296E2539-1A71-44AE-9864-9C083517BD36} [{867A1E46-2F7C-4A8F-A1B0-F65BF8915117}] {867A1E46-2F7C-4A8F-A1B0-F65BF8915117} [{9B753C26-9E77-4C96-B7A8-4ACB70025974}] {9B753C26-9E77-4C96-B7A8-4ACB70025974} [{C20D351F-2360-439C-B95F-002CD3367F44}] {C20D351F-2360-439C-B95F-002CD3367F44} ============================================================== IE扩展按钮 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions [知识库] <{06926B30-424E-4f1c-8EE3-543CD96573DC}> ============================================================== ActiveX控件 ============================================================== 该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats [UUSeeInstaller Control] <{1345F3CB-7C40-41C2-9AC2-87CF8B68E34E}> [{21334231-6DED-436B-9E63-E45AAA9DA107}] <{21334231-6DED-436B-9E63-E45AAA9DA107}> [{21FD0BA3-67ED-44D7-B475-B85CBDD5CBF0}] <{21FD0BA3-67ED-44D7-B475-B85CBDD5CBF0}> [{296E2539-1A71-44AE-9864-9C083517BD36}] <{296E2539-1A71-44AE-9864-9C083517BD36}> [VaCom.Application] <{51E88884-1306-4444-B22D-C34119E44232}> [{867A1E46-2F7C-4A8F-A1B0-F65BF8915117}] <{867A1E46-2F7C-4A8F-A1B0-F65BF8915117}> [{9B753C26-9E77-4C96-B7A8-4ACB70025974}] <{9B753C26-9E77-4C96-B7A8-4ACB70025974}> [{C20D351F-2360-439C-B95F-002CD3367F44}] <{C20D351F-2360-439C-B95F-002CD3367F44}> [ARMP Control] <{D5CD69C4-F983-46E2-AF79-455E892729FA}> [QvodCtrl Class] <{F3D0D36F-23F8-4682-A195-74C92B03D4AF}> 文件路径: C:\Program Files\QvodPlayer\QvodInsert.dll [分析中] ============================================================== 其他安全区域 ============================================================== 该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [显示摇曳 CPL 扩展] -------------------------------------------------------------- 该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\KnownDLLs [comdlg32] 文件路径: C:\WINDOWS\system32\comdlg32.dll [未知]