完美卸载 - 系统检查检测报告!
建议:修复时请按照高手的反馈编号在修复工具中打勾进行修复.

--------------------------系统环境-------------------------
检测日期: 2006-5-6 13:28
Windows: Microsoft Windows XP
ServicePack: Service Pack 1
Update: 2600.xpsp2.050301-1526
Internet Explorer: 6.0.2800.1106


-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:空连接检查安全!

服务名称        是否运行              描述
RemoteRegistry [已停止] [说明:这个服务可能被利用远程操作注册表]
Windows Time  [已停止] [说明:这个服务可能被黑客利用来启动木马]
Telnet        [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger      [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server        [已停止] [说明:如果你的电脑不用局域网中,可以关闭]


-----------------------计算机网络端口----------------------
协议      端口号              端口类型
TCP        135        微软DCE RPC end-point mapper服务
TCP        445        Microsoft-DS
TCP      1025        未知类型
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP        445        公共Internet文件系统(CIFS)
TCP        500        Internet密钥交换
TCP      1027        UC聊天软件,Trojan.Huigezi.e
TCP      1029        SubSARI
TCP      1037        未知类型
TCP        137        未知类型
TCP        138        未知类型


--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]

[编号:1]
[名称:\??\C:\WINDOWS\system32\csrss.exe]
[类型:运行进程]
[内容:未知]

[编号:2]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]

[编号:3]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:4]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:5]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:6]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:7]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:8]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:9]
[名称:C:\WINDOWS\System32\nvsvc32.exe]
[类型:运行进程]
[内容:NVIDIA Driver Helper Service, Version 56.55 (C) NVIDIA Corporation. All rights reserved.]

[编号:10]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:11]
[名称:C:\WINDOWS\System32\Rundll32.exe]
[类型:运行进程]
[内容:未知]

[编号:12]
[名称:C:\WINDOWS\System32\wdfmgr.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:13]
[名称:C:\WINDOWS\VM_STI.EXE]
[类型:运行进程]
[内容:VM., 2002. VM., 2002.]

[编号:14]
[名称:C:\WINDOWS\system32\rundll32.exe]
[类型:运行进程]
[内容:未知]

[编号:15]
[名称:C:\WINDOWS\System32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:16]
[名称:C:\Program Files\完美卸载V2006\MainCon.exe]
[类型:运行进程]
[内容:MainCon 应用程序 版权所有 (C) 2004]

[编号:17]
[名称:C:\Program Files\完美卸载V2006\SysRepairer.exe]
[类型:运行进程]
[内容:SysRepairer 应用程序 版权所有 (C) 2005]

[编号:18]
[名称:C:\Program Files\完美卸载V2006\SysSec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]

[编号:19]
[分隔符:---------------------------------------------------------------------]

[编号:20]
[名称:C:\WINDOWS\downlo~1\CnsMin.dll]
[类型:已加载DLL]
[内容:3721 CnsMin 版权所有 (C) 2001 - 2005]

[编号:21]
[名称:C:\PROGRA~1\3721\helper.dll]
[类型:已加载DLL]
[内容:Helper Module Copyright 2004]

[编号:22]
[名称:C:\PROGRA~1\3721\alrex.dll]
[类型:已加载DLL]
[内容:alrex Module Copyright 2006]

[编号:23]
[名称:C:\WINDOWS\System32\NVCPL.DLL]
[类型:已加载DLL]
[内容:NVIDIA Compatible Windows 2000 Display driver, Version 56.55  (C) NVIDIA Corporation. All rights reserved.]

[编号:24]
[名称:C:\WINDOWS\System32\nvshell.dll]
[类型:已加载DLL]
[内容:NVIDIA Desktop Explorer, Version 56.55  (C) NVIDIA Corporation. All rights reserved.]

[编号:25]
[名称:C:\WINDOWS\System32\NVWRSZHC.DLL]
[类型:已加载DLL]
[内容:NVIDIA nView Desktop and Window Manager Copyright (C) 2001-2002 NVIDIA Corporation]

[编号:26]
[名称:C:\PROGRA~1\3721\autolive.dll]
[类型:已加载DLL]
[内容:AutoLive Module Copyright 2004]

[编号:27]
[名称:C:\PROGRA~1\3721\alLiveEx.dll]
[类型:已加载DLL]
[内容:  LiveEx Copyright ? 2006]

[编号:28]
[名称:C:\WINDOWS\System32\xunleibho_v14.dll]
[类型:已加载DLL]
[内容:XunLeiBHO Module Copyright 2004-2006]

[编号:29]
[名称:C:\WINDOWS\downlo~1\CnsHook.dll]
[类型:已加载DLL]
[内容:3721 CNS Module 版权所有 (C) 2001 - 2004]

[编号:30]
[名称:C:\WINDOWS\downlo~1\CnsMinIO.dll]
[类型:已加载DLL]
[内容:3721 CnsMinIO 版权所有 (C) 2001 - 2004]

[编号:31]
[名称:C:\WINDOWS\downlo~1\cnsio.dll]
[类型:已加载DLL]
[内容:3721 CnsIO 版权所有 (C) 2001 - 2004]

[编号:32]
[名称:C:\WINDOWS\System32\msdmo.dll]
[类型:已加载DLL]
[内容:(null) (null)]

[编号:33]
[名称:C:\WINDOWS\System32\VM31bPrp.Ax]
[类型:已加载DLL]
[内容:VM., 2002. VM., 2002.]

[编号:34]
[分隔符:---------------------------------------------------------------------]

[编号:35]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]

[编号:36]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC]

[编号:37]
[名称:PHIME2002A]
[类型:开机启动]
[内容:C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName]

[编号:38]
[名称:Cmaudio]
[类型:开机启动]
[内容:RunDll32 cmicnfg.cpl,CMICtrlWnd]

[编号:39]
[名称:NvCplDaemon]
[类型:开机启动]
[内容:RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup]

[编号:40]
[名称:CnsMin]
[类型:开机启动]
[内容:Rundll32.exe C:\WINDOWS\downlo~1\CnsMin.dll,Rundll32]

[编号:41]
[名称:BigDogPath]
[类型:开机启动]
[内容:C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera 301x]

[编号:42]
[名称:NvMediaCenter]
[类型:开机启动]
[内容:RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit]

[编号:43]
[名称:helper.dll]
[类型:开机启动]
[内容:C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\3721\helper.dll,Rundll32]

[编号:44]
[名称:TkBellExe]
[类型:开机启动]
[内容:"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot]

[编号:45]
[分隔符:---------------------------------------------------------------------]

[编号:46]
[名称:AFD 网络支持环境]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]

[编号:47]
[名称:标准 IDE/ESDI 硬盘控制器]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\atapi.sys]

[编号:48]
[名称:C-Media WDM Audio Interface]
[类型:服务:C-Media Audio Driver (WDM) Copyright (C) C-Media Inc. 1998-2004]
[内容:C:\WINDOWS\system32\drivers\cmuda.sys]

[编号:49]
[名称:CnsMinKP]
[类型:服务:KMD Copyright (c) 3721 Corporation.]
[内容:C:\WINDOWS\system32\drivers\cnsminkp.sys]

[编号:50]
[名称:icddrv]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\icddrv.sys]

[编号:51]
[名称:kavsvc]
[类型:服务:Kaspersky Anti-Virus Personal Copyright ? Kaspersky Lab 1996-2005.]
[内容:"C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe"]

[编号:52]
[名称:Kl1]
[类型:服务:Kaspersky Anti-Virus Personal Copyright ? Kaspersky Lab 1996-2005.]
[内容:C:\WINDOWS\system32\drivers\kl1.sys]

[编号:53]
[名称:Klif]
[类型:服务:KLIF Copyright (c) Kaspersky Labs 1999-2004]
[内容:C:\WINDOWS\system32\drivers\klif.sys]

[编号:54]
[名称:Klmc]
[类型:服务:Kaspersky Anti-Virus Personal Copyright ? Kaspersky Lab 1996-2005.]
[内容:C:\WINDOWS\system32\drivers\klmc.sys]

[编号:55]
[名称:npkcrypt]
[类型:服务:nProtect KeyCrypt Driver Copyright (C) INCA Internet. 2000-2005]
[内容:c:\program files\tencent\qq\npkcrypt.sys]

[编号:56]
[名称:NPPTNT2]
[类型:服务:nProtect NPSC Kernel Mode Driver for NT Copyright ? 2000-2005 INCA Internet]
[内容:c:\windows\system32\npptnt2.sys]

[编号:57]
[名称:NVIDIA Display Driver Service]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\nvsvc32.exe]

[编号:58]
[名称:oreans32]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\oreans32.sys]

[编号:59]
[名称:StarForce Protection Environment Driver v6]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\prodrv06.sys]

编号:60]
[名称:StarForce Protection Helper Driver v2]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2003]
[内容:C:\WINDOWS\system32\drivers\prohlp02.sys]

[编号:61]
[名称:StarForce Protection Synchronization Driver v1]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2003]
[内容:C:\WINDOWS\system32\drivers\prosync1.sys]

[编号:62]
[名称:R2A]
[类型:服务:未知]
[内容:c:\windows\system32a2.sys]

[编号:63]
[名称:rfsafe]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\rfsafe.sys]

[编号:64]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:65]
[名称:Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver]
[类型:服务:Realtek RTL8139/810x Family Fast Ethernet NIC Copyright (C) 2002 Realtek Semiconductor Corporation]
[内容:C:\WINDOWS\system32\drivers\r8139n51.sys]

[编号:66]
[名称:Secdrv]
[类型:服务:Macrovision SECURITY Driver ? 2003 Macrovision Corporation ]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]

[编号:67]
[名称:StarForce Protection Environment Driver (version 1.x)]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2005]
[内容:C:\WINDOWS\system32\drivers\sfdrv01.sys]

[编号:68]
[名称:StarForce Protection Helper Driver]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2003]
[内容:C:\WINDOWS\system32\drivers\sfhlp01.sys]

[编号:69]
[名称:StarForce Protection Helper Driver (version 2.x)]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2004]
[内容:C:\WINDOWS\system32\drivers\sfhlp02.sys]

[编号:70]
[名称:StarForce Protection Synchronization Driver (version 2.x)]
[类型:服务:StarForce Protection System (c) Protection Technology, 2000-2004]
[内容:C:\WINDOWS\system32\drivers\sfsync02.sys]

[编号:71]
[名称:QoS Service]
[类型:服务:未知]
[内容:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087]

[编号:72]
[名称:WmNdisDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmndisdrv.sys]

[编号:73]
[名称:WmRegProDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmregprodrv.sys]

[编号:74]
[名称:VIMICRO USB PC Camera 301x]
[类型:服务:VM., 2003. VM., 2003.]
[内容:C:\WINDOWS\system32\drivers\usbvm31b.sys]

[编号:75]
[分隔符:---------------------------------------------------------------------]

[编号:76]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:http://www.9991.com/]

[编号:77]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:http://www.yahoo.com.cn]

[编号:78]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:about:blank]

[编号:79]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:http://www.yahoo.com.cn]

[编号:80]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/windows/ie_intl/cn/start/]

[编号:81]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:82]
[分隔符:---------------------------------------------------------------------]

[编号:83]
[名称:ThunderIEHelper Class]
[类型:IE 嵌入对象]
[内容:C:\WINDOWS\System32\xunleibho_v14.dll]

[编号:84]
[名称:CnsHook Class]
[类型:IE 嵌入对象]
[内容:C:\WINDOWS\downlo~1\CnsHook.dll]

[编号:85]
[分隔符:---------------------------------------------------------------------]

[编号:86]
[名称:{2253922F-1B26-4C74-8B57-E3AEE748DBB8}]
[类型:IE 扩展按钮]
[内容:新浪UC 路径:C:\Program Files\sina\UC\UC.exe]

[编号:87]
[名称:{507F9113-CD77-4866-BA92-0E86DA3D0B97}]
[类型:IE 扩展按钮]
[内容:Yahoo 1G电邮 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomail]

[编号:88]
[名称:{59BC54A2-56B3-44a0-93E5-432D58746E26}]
[类型:IE 扩展按钮]
[内容:寻宝乐趣多 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=taobao]

[编号:89]
[名称:{5D73EE86-05F1-49ed-B850-E423120EC338}]
[类型:IE 扩展按钮]
[内容:雅虎助手 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yassist]

[编号:90]
[名称:{c95fe080-8f5d-11d2-a20b-00aa003c157a}]
[类型:IE 扩展按钮]
[内容:@shdoclc.dll,-866 路径:@shdoclc.dll,-866]

[编号:91]
[名称:{c95fe080-8f5d-11d2-a20b-00aa003c157b}]
[类型:IE 扩展按钮]
[内容:QQ 路径:C:\Program Files\QQ2005\QQ.EXE]

[编号:92]
[名称:{DE607143-AC19-423e-861A-1D70ABDF119A}]
[类型:IE 扩展按钮]
[内容:易趣购物 路径:http://click2.ad4all.net/url2/urlmanage/url.asp?id=5]

[编号:93]
[名称:{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}]
[类型:IE 扩展按钮]
[内容:http://click2.ad4all 路径:http://click2.ad4all]

[编号:94]
[名称:{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}]
[类型:IE 扩展按钮]
[内容:情景聊天 路径:http://cn.rd.yahoo.com/home/messenger/bjk/clientbtn/?http://cn.messenger.yahoo.com/]

[编号:95]
[名称:{ECF2E268-F28C-48d2-9AB7-8F69C11CCB71}]
[类型:IE 扩展按钮]
[内容:http://cn.rd.yahoo.c 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=repair]

[编号:96]
[名称:{F60C7D81-8471-4D40-AAFE-56D318F34C2D}]
[类型:IE 扩展按钮]
[内容:新浪点点通 路径:新浪点点通]

[编号:97]
[名称:{FB5F1910-F110-11d2-BB9E-00C04F795683}]
[类型:IE 扩展按钮]
[内容:Messenger 路径:C:\Program Files\Messenger\MSMSGS.EXE]

[编号:98]
[名称:{FD00D911-7529-4084-9946-A29F1BDF4FE5}]
[类型:IE 扩展按钮]
[内容:C:\Program Files\Mes 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=clean]

[编号:99]
[分隔符:---------------------------------------------------------------------]

[编号:100]
[名称:!搜一搜(&S)]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:101]
[名称:&使用迅雷下载]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:102]
[名称:&使用迅雷下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:103]
[名称:上传到QQ网络硬盘]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:104]
[名称:使用彩信超级自写发送到手机]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:105]
[名称:使用网际快车下载]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:106]
[名称:使用网际快车下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:107]
[名称:发送图片到手机(&M)]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:108]
[名称:收藏此页到新浪ViVi]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:109]
[名称:易趣购物]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:110]
[名称:添加到QQ自定义面板]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:111]
[名称:添加到QQ表情]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:112]
[名称:用QQ彩信发送该图片]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:113]
[分隔符:---------------------------------------------------------------------]

[编号:114]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:115]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:116]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\System32\webcheck.dll]

[编号:117]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\System32\stobject.dll]

[编号:118]
[分隔符:---------------------------------------------------------------------]

[编号:119]
[名称:]
[类型:EXE关联]
[内容:"%1" %*]

[编号:120]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\system32\NOTEPAD.EXE %1]

[编号:121]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:122]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:123]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Maxthon\Maxthon.exe" "%1"]

[编号:124]
[名称:]
[类型:HTTP协议]
[内容:"C:\Program Files\Maxthon\Maxthon.exe" "%1"]

[编号:125]
[名称:]
[类型:FTP协议]
[内容:"C:\Program Files\Maxthon\Maxthon.exe" "%1"]

[编号:126]
[分隔符:---------------------------------------------------------------------]

[编号:127]
[名称:c:\windows\system32\deskpan.dll]
[类型:第三方 COM/ActiveX组件]
[内容:显示摇曳 CPL 扩展---发布公司:未知]

[编号:128]
[名称:c:\windows\system32\recncl.dll]
[类型:第三方 COM/ActiveX组件]
[内容:Reconciliation interface ProxyStub Factory---发布公司:未知]

[编号:129]
[名称:c:\windows\system32\audio3d.dll]
[类型:第三方 COM/ActiveX组件]
[内容:Audio3DObject---发布公司:Sensaura ? Copyright 1997-2001  Sensaura Ltd]

--------------------感谢您关注我的软件---------------------
网站: http://www.wjfsoft.com  产品:完美卸载V2006