‹‹ 上一主题 | 下一主题 ››
发新话题
打印

[求助] 走过路过的个位高手们, 快给小弟帮个忙啊!!!

13593582899

新兵

积分
威望
2  
元宝
0  
铜钱
2  
1楼 发表于 2008-1-31 20:39  只看该作者

走过路过的个位高手们, 快给小弟帮个忙啊!!!

     金山清理专家系统诊断报告
该诊断报告由金山清理专家提供 http://www.duba.net
==============================================================
诊断时间:        2008-01-31, 20:29
诊断平台:        Windows XP [5.1.2600] Service Pack 2
IE版本:          Internet Explorer V7.0.13.5730
计算机物理内存:  478(MB)
当前可用内存:    205(MB)
硬盘总大小:      72(GB)
硬盘可用空间:    55(GB)
清理专家版本:    2007,12,28,3
恶意软件库版本:  2008.01.29.2
漏洞库版本:      2008.01.23.1


==============================================================
        Explorer加载项
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
          [wiasoisao]           <wiasoisao.exe>

==============================================================
        常规启动项
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
        [upxdnd]              <C:\WINDOWS\upxdnd.exe>
        [MsPrint32D]          <C:\WINDOWS\MsPrint32D.exe>
        [Kvsc3]               <C:\WINDOWS\Kvsc3.exE>
        [WSockDrv32]          <C:\WINDOWS\WSockDrv32.exe>
        [DbgHlp32]            <C:\WINDOWS\DbgHlp32.exe>
        [WinSysM]             <C:\WINDOWS\919331M.exe>
        [LotusHlp]            <C:\WINDOWS\LotusHlp.exe>
        [PTSShell]            <C:\WINDOWS\PTSShell.exe>

==============================================================
        延迟加载
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
        [WebCheck]            <C:\WINDOWS\system32\webcheck.dll>
        文件路径: C:\WINDOWS\system32\webcheck.dll [分析中]
        [SysTime]             <C:\PROGRA~1\WinKld\WinKld.dll>

==============================================================
        执行挂钩
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
        <{6598FF45-DA60-F48A-BC43-10AC47853D56}>            <C:\WINDOWS\Fonts\rarjfpi.dll>
--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
        <{F859245F-345D-BC13-AC4F-145D47DA34FF}>            <C:\WINDOWS\Fonts\avzxomn.dll>
--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
        <{4B23A8E5-CC9C-4A15-81F3-9B902C00AF4B}>            <C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys>
--------------------------------------------------------------
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
        <{22FAACDE-34DA-CCD4-AB4D-DA34485A3422}>            <C:\WINDOWS\Fonts\rsjzbpm.dll>

==============================================================
        启动文件夹位置
==============================================================
Common Startup:      C:\Documents and Settings\All Users\「开始」菜单\程序\启动
Startup:             C:\Documents and Settings\Administrator\「开始」菜单\程序\启动
Common Startup:      %ALLUSERSPROFILE%\「开始」菜单\程序\启动
==============================================================
        Host File
==============================================================
202.109.114.142  survey88.allyes.com
202.109.114.142  adtaobao.allyes.com
202.109.114.142  code.qihoo.com
202.109.114.142  union.mop.com
202.109.114.142  js.kkunion.com
202.109.114.142  v.kkunion.com
202.109.114.142  v.21cn.com
202.109.114.142  iplusms.allyes.com
202.109.114.142  mms.t2t2.com
202.109.114.142  ivr.dobig.net
202.109.114.142  www.u8u.com
202.109.114.142  u.u8u.com
202.109.114.142  img.zhangxiu.com
202.109.114.142  tl.linktone.com
202.109.114.142  channel.e78.com
202.109.114.142  u.7town.com
202.109.114.142  union.95ol.com.cn
202.109.114.142  mms1.95ol.com.cn
202.109.114.142  mfs.95ol.com.cn
202.109.114.142  tl.a8.com
202.109.114.142  ad01.a8.com
202.109.114.142  u2.caiku.com
202.109.114.142  mms.caiku.com
202.109.114.142  code1.caiku.com
202.109.114.142  pub.lele.com
202.109.114.142  u.lele.com
202.109.114.142  7town.com
202.109.114.142  tvsend.7town.com
202.109.114.142  ivrsend.7town.com
202.109.114.142  tlt.7town.com
202.109.114.142  gsend.7town.com
202.109.114.142  smssend.7town.com
202.109.114.142  mmssend.moyu.com
202.109.114.142  91ivr.com
202.109.114.142  myad.91ivr.com
202.109.114.142  u.91ivr.com
202.109.114.142  union.91ivr.com
202.109.114.142  cm.p4p.cn.yaho,.com
202.109.114.142  un.265.com
202.109.114.142  union.qq.com
202.109.114.142  view.aliunion.cn.yaho,.com
202.109.114.142  union.narrowad.com
202.109.114.142  ln.heima8.com
202.109.114.142  www.fboat.cn
202.109.114.142  cpro.baidu,com
202.109.114.142  unstat.baidu,com
202.109.114.142  y.cnxad.com
202.109.114.142  www.ewowo.com
202.109.114.142  template.union.163.com
202.109.114.142  new.is686.com
202.109.114.142  creative.unionsys.bolaa.com
202.109.114.142  www.qyule.com
202.109.114.142  99e.cc
202.109.114.142  www.91ivr.com
202.109.114.142  mg.ukaka.com
202.109.114.142  kooxoo2.ad4all.net
202.109.114.142  www.8fff.com
202.109.114.142  union.pomoho.com
202.109.114.142  202.107.233.211
202.109.114.142  www.end123.com
202.109.114.142  w1.7clink.com
202.109.114.142  w2.7clink.com
202.109.114.142  union01.com
202.109.114.142  click.8le8le.com
202.109.114.142  stbanner.allyes.com
202.109.114.142  mms1.moyu.com
202.109.114.142  u.moyu.com
202.109.114.142  mmsu.moyu.com
202.109.114.142  show.moyu.com
202.109.114.142  ivrsend.moyu.com
202.109.114.142  ivru.moyu.com
202.109.114.142  ivr1.moyu.com
203.191.146.205  corep.dmcast.com
203.191.146.205  m081.dmcast.com
203.191.146.205  dcww.dmcast.com
203.191.146.205  renren.dmcast.com
203.191.146.205  files.henbang.net
203.191.146.205  bannerbox.cn
203.191.146.205  www.bannerbox.cn
203.191.146.205  action.coopen.cn
203.191.146.205  u4.sky99.cn
203.191.146.205  u1.sky99.cn
203.191.146.205  u2.sky99.cn
203.191.146.205  u3.sky99.cn
203.191.146.205  sky99.cn
203.191.146.205  u.sky99.cn
203.191.146.205  u.ete.cn
203.191.146.205  ip.alexaanywhere.com
203.191.146.205  www.365tan.com
203.191.146.205  www.winopen.cn
203.191.146.205  www.tanip.com
203.191.146.205  alexaanywhere.com
203.191.146.205  jssb.alexaanywhere.com
203.191.146.205  ns250.alexaanywhere.com
203.191.146.205  sb.alexaanywhere.com
203.191.146.205  ip.alexaanywhere.com
203.191.146.205  pop.9v.cn
203.191.146.205  xuni.myad.cn
203.191.146.205  iebar.t2t2.com
203.191.146.205  error.newcell.cn
203.191.146.205  auto.search.msn.com
203.191.146.205  cns.3721.com
203.191.146.205  seek.3721.com
203.191.146.205  name.cnnic.cn
203.191.146.205  toolsbar.kuaiso.com
203.191.146.205  www.kuaiso.com
203.191.146.205  kuaiso.com
203.191.146.205  www.copyso.com
203.191.146.205  union.copyso.com
203.191.146.205  auto.search.msn.com
203.191.146.205  ok.mop-hz.com
203.191.146.205  www.ncast.cn
203.191.146.205  www.ads3721.com
203.191.146.205  360.ads3721.com
203.191.146.205  www.maohehe.com
203.191.146.205  www.5566.net
203.191.146.205  5566.net
203.191.146.205  www.gjj.cc
203.191.146.205  gjj.cc
203.191.146.205  www.9495.com
203.191.146.205  9495.com
203.191.146.205  my123.com
203.191.146.205  www.my123.com
203.191.146.205  7b.com.cn
203.191.146.205  www.7b.com.cn
203.191.146.205  www.3567.com
203.191.146.205  3567.com
203.191.146.205  www.37021.com
203.191.146.205  37021.com
203.191.146.205  k369.com
203.191.146.205  www.k369.com
203.191.146.205  www.haourl.com
203.191.146.205  haourl.com
203.191.146.205  www.37021.net
203.191.146.205  37021.net
203.191.146.205  www.4199.com
203.191.146.205  4199.com
203.191.146.205  www.9505.com
203.191.146.205  9505.com
203.191.146.205  7939.com
203.191.146.205  www.7939.com
203.191.146.205  www.3448.com
203.191.146.205  3448.com
203.191.146.205  8925.com
203.191.146.205  www.8925.com
203.191.146.205  www.ttmp3.com
203.191.146.205  ttmp3.com
203.191.146.205  www.3tg.cn
203.191.146.205  3tg.cn
203.191.146.205  www.ttjj.com
203.191.146.205  ttjj.com
203.191.146.205  www.59178.com
203.191.146.205  59178.com
203.191.146.205  www.987654.com
203.191.146.205  987654.com
203.191.146.205  www.zhao123.com
203.191.146.205  zhao123.com
203.191.146.205  123wa.com
203.191.146.205  www.123wa.com
203.191.146.205  www.159.com
203.191.146.205  soft.159.com
203.191.146.205  www.v111.com
203.191.146.205  v111.com
203.191.146.205  www.855.com
203.191.146.205  855.com
203.191.146.205  www.wu123.com
203.191.146.205  wu123.com
203.191.146.205  www.haodx.com
203.191.146.205  haodx.com
203.191.146.205  19ku.com
203.191.146.205  www.19ku.com
203.191.146.205  www.t2t2.com
203.191.146.205  t2t2.com
203.191.146.205  www.ku8.com
203.191.146.205  ku8.com
203.191.146.205  www.v23.com
203.191.146.205  v23.com
203.191.146.205  www.51115.com
203.191.146.205  www.52.com
203.191.146.205  52.com
203.191.146.205  www.qu123.com
203.191.146.205  qu123.com
203.191.146.205  www.haokan123.com
203.191.146.205  haokan123.com
203.191.146.205  www.kan123.com
203.191.146.205  kan123.com
203.191.146.205  hang123.com
203.191.146.205  www.hang123.com
203.191.146.205  3tom.com
203.191.146.205  www.3tom.com
203.191.146.205  www.anyso.com
203.191.146.205  anyso.com
203.191.146.205  59178.com
203.191.146.205  www.59178.com
203.191.146.205  t3j4.com
203.191.146.205  www.t3j4.com
203.191.146.205  www.zh130.com
203.191.146.205  zh130.com
203.191.146.205  www.8757.com
203.191.146.205  8757.com
203.191.146.205  www.7667.com
203.191.146.205  7667.com
203.191.146.205  ie.union123.com
203.191.146.205  www.daohangtu.com
203.191.146.205  daohangtu.com
203.191.146.205  www.ld123.com
203.191.146.205  ld123.com
203.191.146.205  www.369.com
203.191.146.205  369.com
203.191.146.205  91ni.com
203.191.146.205  www.91ni.com
203.191.146.205  www.17995.com
203.191.146.205  17995.com
203.191.146.205  www.sha123.com
203.191.146.205  sha123.com
203.191.146.205  www.lethot.com
203.191.146.205  lethot.com
203.191.146.205  www.8757.com
203.191.146.205  8757.com
203.191.146.205  4533.cn
203.191.146.205  6h.com.cn
203.191.146.205  www.6h.com.cn
203.191.146.205  www.jjol.cn
203.191.146.205  jjol.cn
203.191.146.205  wangzhiku.com
203.191.146.205  www.wangzhiku.com
203.191.146.205  www.1zhan.com
203.191.146.205  1zhan.com
203.191.146.205  www.262.com
203.191.146.205  262.com
203.191.146.205  www.365.com
203.191.146.205  365.com
203.191.146.205  www.4533.cn
203.191.146.205  4533.cn
203.191.146.205  31tg.com
203.191.146.205  www.31tg.com
203.191.146.205  tomatolei.com
203.191.146.205  www.tomatolei.com
203.191.146.205  999cha.com
203.191.146.205  www.999cha.com
127.0.0.1  mmsk.cn
127.0.0.1  ikaka.com
127.0.0.1  360safe.com
127.0.0.1  bbs.360safe.com
127.0.0.1  www.mmsk.cn
127.0.0.1  www.ikaka.com
127.0.0.1  tool.ikaka.com
127.0.0.1  www.360safe.com
127.0.0.1  zs.kingsoft.com
127.0.0.1  forum.ikaka.com
127.0.0.1  up.rising.com.cn
127.0.0.1  scan.kingsoft.com
127.0.0.1  kvup.jiangmin.com
127.0.0.1  reg.rising.com.cn
127.0.0.1  update.rising.com.cn
127.0.0.1  update7.jiangmin.com
127.0.0.1  download.rising.com.cn
127.0.0.1  dnl-us1.kaspersky-labs.com
127.0.0.1  dnl-us2.kaspersky-labs.com
127.0.0.1  dnl-us3.kaspersky-labs.com
127.0.0.1  dnl-us4.kaspersky-labs.com
127.0.0.1  dnl-us5.kaspersky-labs.com
127.0.0.1  dnl-us6.kaspersky-labs.com
127.0.0.1  dnl-us7.kaspersky-labs.com
127.0.0.1  dnl-us8.kaspersky-labs.com
127.0.0.1  dnl-us9.kaspersky-labs.com
127.0.0.1  dnl-us10.kaspersky-labs.com
127.0.0.1  dnl-eu1.kaspersky-labs.com
127.0.0.1  dnl-eu2.kaspersky-labs.com
127.0.0.1  dnl-eu3.kaspersky-labs.com
127.0.0.1  dnl-eu4.kaspersky-labs.com
127.0.0.1  dnl-eu5.kaspersky-labs.com
127.0.0.1  dnl-eu6.kaspersky-labs.com
127.0.0.1  dnl-eu7.kaspersky-labs.com
127.0.0.1  dnl-eu8.kaspersky-labs.com
127.0.0.1  dnl-eu9.kaspersky-labs.com
127.0.0.1  dnl-eu10.kaspersky-labs.com
203.191.146.205  www.ab365.com
203.191.146.205  ab365.com
203.191.146.205  www.5235.net
203.191.146.205  5235.net
==============================================================
        系统服务
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
        [B302EC43] [已启用]            <C:\WINDOWS\system32\75D23BE4.EXE -d>
        [gusvc] [已启用]               <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe">

==============================================================
        驱动程序
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
        [000045c6] [已启用]            <system32\drivers\000045c6.SYS>
        [ATSpy] [已启用]               <\??\C:\WINDOWS\system32\ATSpy.sys>
        [EagleNT] [已启用]             <\??\C:\WINDOWS\system32\drivers\EagleNT.sys>
        [mseqsy] [已启用]              <system32\DRIVERS\msacpe.sys>
        [msskye] [已启用]              <system32\DRIVERS\msaclue.sys>
        [Shit] [已启用]                <\??\C:\Program Files\Real\RealPlayer\Shit.sys>
        [syxyee] [已启用]              <System32\DRIVERS\syxyee.sys>

==============================================================
        BHO
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
        [WebThunder Browser Helper]
        {00000AAA-A363-466E-BEF5-9BB68697AA7F}  <F:\教父\WebThunderBHO_Now.dll>
        [{4B23A8E5-CC9C-4A15-81F3-9B902C00AF4B}]
        {4B23A8E5-CC9C-4A15-81F3-9B902C00AF4B}  <C:\Program Files\Internet Explorer\PLUGINS\NvSys_55.Sys>
        [CBrowseStakeout Class]
        {55302805-482E-470E-8A57-6795A1487F90}  <C:\KAV2007\KAVAFish.DLL>
        [Google Toolbar Helper]
        {AA58ED58-01DD-4d91-8333-CF10577473F7}  <c:\program files\google\googletoolbar2.dll>
        [Google Toolbar Notifier BHO]
        {AF69DE43-7D58-4638-B6FA-CE66B5AD205D}  <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll>

TOP

pzping

自由小龙


中尉

梦幻龙神

积分
3289 
威望
8537  
元宝
30  
铜钱
2986  

新人进步奖

2楼 发表于 2008-1-31 21:47  只看该作者
干什么啊?还有你把202.109.114.142  survey88.allyes.com
202.109.114.142  adtaobao.allyes.com
202.109.114.142  code.qihoo.......................................
202.109.114.142  myad.91ivr.
203.191.146.205  v23.com
................................
203.191.146.205  5235.net
清理掉,还有就是使用截图上传,因为那样看方便,在就是使用历史痕迹清理一下机器,

[ 本帖最后由 pzping 于 2008-1-31 21:48 编辑 ]
爱情是灯,朋友是影子。当灯灭了,周围全是影子!
http://bbs.duba.net/?fromuid=1451545

TOP

kingken

五级士官

积分
1729 
威望
2830  
元宝
0  
铜钱
1172  
3楼 发表于 2008-2-1 11:59  只看该作者
Explorer加载项
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
          [wiasoisao]           <wiasoisao.exe>

==============================================================
        常规启动项
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
        [upxdnd]              <C:\WINDOWS\upxdnd.exe>
        [MsPrint32D]          <C:\WINDOWS\MsPrint32D.exe>
        [Kvsc3]               <C:\WINDOWS\Kvsc3.exE>
        [WSockDrv32]          <C:\WINDOWS\WSockDrv32.exe>
        [DbgHlp32]            <C:\WINDOWS\DbgHlp32.exe>
        [WinSysM]             <C:\WINDOWS\919331M.exe>
        [LotusHlp]            <C:\WINDOWS\LotusHlp.exe>
        [PTSShell]            <C:\WINDOWS\PTSShell.exe>

驱动程序
==============================================================
该项来源: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
        [000045c6] [已启用]            <system32\drivers\000045c6.SYS>
        [EagleNT] [已启用]             <\??\C:\WINDOWS\system32\drivers\EagleNT.sys>
        [mseqsy] [已启用]              <system32\DRIVERS\msacpe.sys>
        [msskye] [已启用]              <system32\DRIVERS\msaclue.sys>
        [Shit] [已启用]                <\??\C:\Program Files\Real\RealPlayer\Shit.sys>
        [syxyee] [已启用]              <System32\DRIVERS\syxyee.sys>
快点清除它们吧
心凉

TOP

‹‹ 上一主题 | 下一主题 ››
发新话题