==============================================================
        金山清理专家系统诊断报告

该诊断报告由金山清理专家提供 http://www.duba.net 
==============================================================

诊断时间:            2009-01-14, 20:37 
诊断平台:            Windows XP [5.1.2600] Service Pack 2 
IE版本:              Internet Explorer V6.0.2180.2900 
计算机物理内存:      1022(MB) 
当前可用内存:        358(MB) 
硬盘总大小:          811(GB) 
硬盘可用空间:        116(GB) 
清理专家版本:        2008.06.13.404 
恶意软件库版本:         0.00.00.0 
漏洞库版本:             0.00.00.0 




==============================================================
        常规启动项
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

        [NeroFilterCheck]     <; C:\WINDOWS\system32\NeroCheck.exe>


==============================================================
        启动文件夹位置
==============================================================

Common Startup:      C:\Documents and Settings\All Users\「开始」菜单\程序\启动
Startup:             C:\Documents and Settings\KOMUGI\「开始」菜单\程序\启动
Common Startup:      %ALLUSERSPROFILE%\「开始」菜单\程序\启动

==============================================================
        文件扩展名关联
==============================================================

.ASF            <"C:\Program Files\StormII\Storm.exe" /play "%1">
文件路径: C:\Program Files\StormII\Storm.exe [服务器忙]

.AVI            <"C:\Program Files\StormII\Storm.exe" /play "%1">
文件路径: C:\Program Files\StormII\Storm.exe [服务器忙]

.M3U            <"C:\Program Files\KuGou\KuGou2008\KuGoo.exe" /Open "%1">
文件路径: C:\Program Files\KuGou\KuGou2008\KuGoo.exe [服务器忙]

.WMA            <"C:\Program Files\KuGou\KuGou2008\KuGoo.exe" /Open "%1">
文件路径: C:\Program Files\KuGou\KuGou2008\KuGoo.exe [服务器忙]

.MP3            <"C:\Program Files\KuGou\KuGou2008\KuGoo.exe" /Open "%1">
文件路径: C:\Program Files\KuGou\KuGou2008\KuGoo.exe [服务器忙]

.MPG(.MPEG)     <"C:\Program Files\StormII\Storm.exe" /play "%1">
文件路径: C:\Program Files\StormII\Storm.exe [服务器忙]


==============================================================
        Host File
==============================================================

127.0.0.1       localhost

==============================================================
        系统服务
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

        [Capture Device Service] [已禁用] <"C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe">
        文件路径: C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [服务器忙]

        [ClipSrv] [已禁用]             <C:\WINDOWS\java\classes\clipsrvz.exe>

        [CPUCooLServer] [已禁用]       <"C:\Program Files\临时\CPUCooL\CooLSrv.exe">
        文件路径: C:\Program Files\临时\CPUCooL\CooLSrv.exe [服务器忙]

        [HidServ] [已禁用]             <%SystemRoot%\System32\hidserv.dll>

        [LightScribeService] [已禁用]  <"C:\Program Files\Common Files\LightScribe\LSSrvc.exe">
        文件路径: C:\Program Files\Common Files\LightScribe\LSSrvc.exe [服务器忙]

        [WLSetupSvc] [已启用]          <"C:\Program Files\Windows Live\installer\WLSetupSvc.exe">
        文件路径: C:\Program Files\Windows Live\installer\WLSetupSvc.exe [服务器忙]

        [WMPNetworkSvc] [已启用]       <"C:\Program Files\Windows Media Player\WMPNetwk.exe">
        文件路径: C:\Program Files\Windows Media Player\WMPNetwk.exe [服务器忙]


==============================================================
        驱动程序
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32

        [SENTINEL] [已启用]            <snti386.dll>

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services

        [ASTDriver] [已启用]           <\??\C:\Documents and Settings\KOMUGI\桌面\常用工具\ast1\ASTDriver.sys>
        文件路径: C:\Documents and Settings\KOMUGI\桌面\常用工具\ast1\ASTDriver.sys [服务器忙]

        [ASTTools] [已启用]            <\??\C:\Documents and Settings\KOMUGI\桌面\常用工具\ast1\ASTTools.sys>
        文件路径: C:\Documents and Settings\KOMUGI\桌面\常用工具\ast1\ASTTools.sys [服务器忙]

        [BIOS] [已启用]                <\??\C:\WINDOWS\system32\drivers\BIOS.sys>
        文件路径: C:\WINDOWS\system32\drivers\BIOS.sys [服务器忙]

        [diskes] [已启用]              <\??\C:\WINDOWS\system32\drivers\diskes.sys>
        文件路径: C:\WINDOWS\system32\drivers\diskes.sys [服务器忙]

        [EagleNT] [已启用]             <\??\C:\WINDOWS\system32\drivers\EagleNT.sys>

        [fazhiwang] [已启用]           <\??\C:\WINDOWS\seo\fei.dat>
        文件路径: C:\WINDOWS\seo\fei.dat [服务器忙]

        [HookCont] [已禁用]            <\SystemRoot\system32\drivers\HookCont.sys>

        [HookNtos] [已禁用]            <\SystemRoot\system32\drivers\HookNtos.sys>

        [HookProtect] [已启用]         <\??\D:\热舞派对\element\HookProtect.sys>

        [HookReg] [已禁用]             <\SystemRoot\system32\drivers\HookReg.sys>

        [HookSys] [已禁用]             <\SystemRoot\system32\drivers\HookSys.sys>

        [InCDFs] [已禁用]              <system32\drivers\InCDFs.sys>

        [oreans32] [已启用]            <\??\C:\WINDOWS\system32\drivers\oreans32.sys>
        文件路径: C:\WINDOWS\system32\drivers\oreans32.sys [服务器忙]

        [qmshev] [已禁用]              <system32\drivers\qhemljy.sys>

        [Sentinel] [已启用]            <\SystemRoot\System32\Drivers\SENTINEL.SYS>

        [TAOSYS] [已启用]              <\??\C:\WINDOWS\360ME\fei.dat>

        [tap0801] [已启用]             <system32\DRIVERS\tap0801.sys>
        文件路径: C:\WINDOWS\system32\DRIVERS\tap0801.sys [服务器忙]

        [tapvpn] [已启用]              <system32\DRIVERS\tapvpn.sys>
        文件路径: C:\WINDOWS\system32\DRIVERS\tapvpn.sys [服务器忙]

        [Tcpip] [已启用]               <system32\DRIVERS\tcpip.sys/TCP/IP Protocol Driver>
        文件路径: C:\WINDOWS\system32\DRIVERS\tcpip.sys [服务器忙]


==============================================================
        BHO
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

        [FGCatchUrl]
        {2F364306-AA45-47B5-9F9D-39A8B94E7EF7}  <C:\Program Files\FlashGet1.9.6\jccatch.dll>
        文件路径: C:\Program Files\FlashGet1.9.6\jccatch.dll [服务器忙]

        [CmjBrowserHelperObject Object]
        {AC41D38F-B56D-40AD-94E0-B493D130C959}  <C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll>
        文件路径: C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll [服务器忙]

        [FlashGet GetFlash Class]
        {F156768E-81EF-470C-9057-481BA8380DBA}  <C:\Program Files\FlashGet1.9.6\getflash.dll>
        文件路径: C:\Program Files\FlashGet1.9.6\getflash.dll [服务器忙]


==============================================================
        当前进程
==============================================================

名称:     金-山-诊-断及粉-碎-器.exe  [已启用]
命令行:   "C:\Documents and Settings\KOMUGI\桌面\金-山-诊-断及粉-碎-器\金-山-诊-断及粉-碎-器.exe" 
文件路径: C:\Documents and Settings\KOMUGI\桌面\金-山-诊-断及粉-碎-器\金-山-诊-断及粉-碎-器.exe  [未知]
模块文件: C:\WINDOWS\system32\ntdll.dll                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\kernel32.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\ADVAPI32.DLL              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RPCRT4.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\COMCTL32.DLL (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msvcrt.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\GDI32.dll                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USER32.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHLWAPI.dll               (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMDLG32.DLL              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SHELL32.dll               (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\OLE32.DLL                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\IMM32.DLL                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\LPK.DLL                   (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\USP10.dll                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\riched32.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\RICHED20.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\uxtheme.dll               (Microsoft Corporation)
模块文件: C:\Documents and Settings\KOMUGI\桌面\常用工具\360safe\safemon\safemon.dll (360.CN)
模块文件: C:\WINDOWS\system32\OLEAUT32.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\PSAPI.DLL                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\MSCTF.dll                 (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\msctfime.ime              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\netapi32.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\SETUPAPI.dll              (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\CLBCATQ.DLL               (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\COMRes.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\VERSION.dll               (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\urlmon.dll                (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Secur32.dll               (Microsoft Corporation)
模块文件: C:\WINDOWS\system32\Apphelp.dll               (Microsoft Corporation)


==============================================================
        协议
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter

        <application/octet-stream>      <mscoree.dll>
        文件路径: C:\WINDOWS\system32\mscoree.dll [服务器忙]

        <application/x-complus>         <mscoree.dll>
        文件路径: C:\WINDOWS\system32\mscoree.dll [服务器忙]

        <application/x-msdownload>      <mscoree.dll>
        文件路径: C:\WINDOWS\system32\mscoree.dll [服务器忙]

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler

        <ic32pp>                        <C:\WINDOWS\wc98pp.dll>
        文件路径: C:\WINDOWS\wc98pp.dll [服务器忙]

        <KuGoo>                         <C:\WINDOWS\system32\KuGoo3DownXControl.ocx>
        文件路径: C:\WINDOWS\system32\KuGoo3DownXControl.ocx [服务器忙]

        <KuGoo3>                        <C:\WINDOWS\system32\KuGoo3DownXControl.ocx>
        文件路径: C:\WINDOWS\system32\KuGoo3DownXControl.ocx [服务器忙]


==============================================================
        第3方IE插件
==============================================================

名称:     npqtplugin.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll [服务器忙]

名称:     npqtplugin2.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin2.dll [服务器忙]

名称:     npqtplugin3.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll [服务器忙]

名称:     npqtplugin4.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.dll [服务器忙]

名称:     npqtplugin5.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin5.dll [服务器忙]

名称:     npqtplugin6.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin6.dll [服务器忙]

名称:     nprfxins.dll  [已启用]
文件路径: C:\Program Files\Internet Explorer\PLUGINS\RichFX\Player\nprfxins.dll [服务器忙]


==============================================================
        IE扩展按钮
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions

        [快车]
        <{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}>    <C:\Program Files\FlashGet1.9.6\FlashGet.exe>
        文件路径: C:\Program Files\FlashGet1.9.6\FlashGet.exe [服务器忙]


==============================================================
        IE扩展菜单
==============================================================

该项来源: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt

        <&U使用纳米机器人下载并收藏>        <C:\Program Files\NamiRobot\Data\du.html>
        文件路径: C:\Program Files\NamiRobot\Data\du.html [服务器忙]

        <&使用快车(FlashGet)下载>        <C:\Program Files\FlashGet1.9.6\jc_link.htm>
        文件路径: C:\Program Files\FlashGet1.9.6\jc_link.htm [服务器忙]

        <&使用快车(FlashGet)下载全部链接>        <C:\Program Files\FlashGet1.9.6\jc_all.htm>
        文件路径: C:\Program Files\FlashGet1.9.6\jc_all.htm [服务器忙]

        <使用 IDM 下载>        <C:\Program Files\Internet Download Manager\IEExt.htm>
        文件路径: C:\Program Files\Internet Download Manager\IEExt.htm [服务器忙]

        <使用 IDM 下载 FLV 视频>        <C:\Program Files\Internet Download Manager\IEGetVL.htm>
        文件路径: C:\Program Files\Internet Download Manager\IEGetVL.htm [服务器忙]

        <使用 IDM 下载全部链接>        <C:\Program Files\Internet Download Manager\IEGetAll.htm>
        文件路径: C:\Program Files\Internet Download Manager\IEGetAll.htm [服务器忙]

        <使用快车(Flas&hGet)下载>        <C:\Program Files\FlashGet\ComDlls\Bholink.htm>
        文件路径: C:\Program Files\FlashGet\ComDlls\Bholink.htm [服务器忙]

        <使用快车(Flash&Get)下载全部链接>        <C:\Program Files\FlashGet\ComDlls\Bhoall.htm>
        文件路径: C:\Program Files\FlashGet\ComDlls\Bhoall.htm [服务器忙]

        <使用电驴下载>        <C:\Program Files\eMule\IE2EM.htm>
        文件路径: C:\Program Files\eMule\IE2EM.htm [服务器忙]

        <使用迅雷下载>        <C:\Program Files\Thunder\Program\GetUrl.htm>
        文件路径: C:\Program Files\Thunder\Program\GetUrl.htm [服务器忙]

        <使用迅雷下载全部链接>        <C:\Program Files\Thunder\Program\GetAllUrl.htm>
        文件路径: C:\Program Files\Thunder\Program\GetAllUrl.htm [服务器忙]


==============================================================
        ActiveX控件
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components

        [{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
        <{89B4C1CD-B018-4511-B0A1-5476DBF70820}>        <C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>
        文件路径: C:\WINDOWS\system32\mscories.dll [服务器忙]

--------------------------------------------------------------
该项来源: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats

        [FGCatchUrl]
        <{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}>        <C:\Program Files\FlashGet1.9.6\jccatch.dll>
        文件路径: C:\Program Files\FlashGet1.9.6\jccatch.dll [服务器忙]

        [CmjBrowserHelperObject Object]
        <{AC41D38F-B56D-40AD-94E0-B493D130C959}>        <C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll>
        文件路径: C:\Program Files\Mindjet\MindManager 6\Mm6InternetExplorer.dll [服务器忙]

        [FlashGet GetFlash Class]
        <{F156768E-81EF-470C-9057-481BA8380DBA}>        <C:\Program Files\FlashGet1.9.6\getflash.dll>
        文件路径: C:\Program Files\FlashGet1.9.6\getflash.dll [服务器忙]


==============================================================
        其他安全区域
==============================================================

该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

        [显示摇曳 CPL 扩展]         <deskpan.dll>

        [WinRAR]              <C:\Program Files\WinRAR\rarext.dll>
        文件路径: C:\Program Files\WinRAR\rarext.dll [服务器忙]

        [Desktop Explorer]    <C:\WINDOWS\system32\nvshell.dll>
        文件路径: C:\WINDOWS\system32\nvshell.dll [服务器忙]

        [{1E9B04FB-F9E5-4718-997B-B8DA88302A47}] <C:\WINDOWS\system32\nvshell.dll>
        文件路径: C:\WINDOWS\system32\nvshell.dll [服务器忙]

        [nView Desktop Context Menu] <C:\WINDOWS\system32\nvshell.dll>
        文件路径: C:\WINDOWS\system32\nvshell.dll [服务器忙]

        [Anti-Spyware Toolkit] <C:\Documents and Settings\KOMUGI\桌面\常用工具\ast\AstShellEx.dll>
        文件路径: C:\Documents and Settings\KOMUGI\桌面\常用工具\ast\AstShellEx.dll [服务器忙]

        [NeroDigitalIconHandler Class] <C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll>
        文件路径: C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll [服务器忙]

        [NeroDigitalPropSheetHandler Class] <C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll>
        文件路径: C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll [服务器忙]

        [RealOne Player Context Menu Class] <C:\Program Files\Real\RealPlayer\rpshell.dll>
        文件路径: C:\Program Files\Real\RealPlayer\rpshell.dll [服务器忙]

        [Portable Devices]    <C:\WINDOWS\system32\wpdshext.dll>
        文件路径: C:\WINDOWS\system32\wpdshext.dll [服务器忙]

        [Portable Devices Menu] <C:\WINDOWS\system32\wpdshext.dll>
        文件路径: C:\WINDOWS\system32\wpdshext.dll [服务器忙]

        [SmartFTP Shell Extension DLL] <D:\建网文件夹\小工具\SmartFTP\smartftp_2.0\SmartFTP Client 2.0\smarthook.dll>

        [Portable Media Devices] <C:\WINDOWS\system32\Audiodev.dll>
        文件路径: C:\WINDOWS\system32\Audiodev.dll [服务器忙]

        [ShellLink for Application References] <C:\WINDOWS\system32\dfshim.dll>
        文件路径: C:\WINDOWS\system32\dfshim.dll [服务器忙]

        [Shell Icon Handler for Application References] <C:\WINDOWS\system32\dfshim.dll>
        文件路径: C:\WINDOWS\system32\dfshim.dll [服务器忙]

        [7-Zip Shell Extension] <C:\Program Files\7-Zip\7-zipn.dll>
        文件路径: C:\Program Files\7-Zip\7-zipn.dll [服务器忙]

        [DLLRegShlExt Class]  <C:\WINDOWS\system32\TudouUpload.dll>
        文件路径: C:\WINDOWS\system32\TudouUpload.dll [服务器忙]

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers

        [NeroDigitalColumnHandler Class] <C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll>
        文件路径: C:\Program Files\Common Files\Ahead\lib\NeroDigitalExt.dll [服务器忙]

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Monitors

        [PDF-XChange]         <C:\WINDOWS\system32\pxc25pm.dll>
        文件路径: C:\WINDOWS\system32\pxc25pm.dll [服务器忙]

--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Control

        [VDD]                 <RNBOVDD.DLL>

        [VDD]                 <RNBOVDD.DLL>