--------------------------係統環境-------------------------
檢測日期: 2007-6-9 22:47
Windows: Microsoft Windows XP
ServicePack: Service Pack 1
Update: 2600.xpsp1.020828-1920
Internet Explorer: 6.0.2800.1106
-----------------------網絡基礎安全測試--------------------
密碼安全檢測:已經設置了管理員密碼,建議:將密碼複雜度和長度提高!
網絡漏洞檢測:空連接檢查安全!
服務名稱 是否運行 描述
RemoteRegistry [運行中] [說明:這個服務可能被利用遠程操作注冊表]
Windows Time [已停止] [說明:這個服務可能被黑客利用來啟動木馬]
Telnet [已停止] [說明:這個服務可能被黑客登錄到您計算機]
Messenger [已停止] [說明:這個服務常被廣告商用來發垃圾廣告]
Server [運行中] [說明:如果你的電腦不用局域網中,可以關閉]
建議在[控製麵板]-[管理工具]-[服務]中,找到這些服務關閉並設置為[禁用].
--------------------計算機係統組件體檢----------------------
[編號:0]
[名稱:\SystemRoot\System32\smss.exe]
[類型:運行進程]
[內容:未知]
[編號:1]
[名稱:\??\C:\WINDOWS\system32\winlogon.exe]
[類型:運行進程]
[內容:未知]
[編號:2]
[名稱:C:\WINDOWS\system32\services.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:3]
[名稱:C:\WINDOWS\system32\lsass.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:4]
[名稱:C:\WINDOWS\system32\svchost.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:5]
[名稱:C:\WINDOWS\System32\svchost.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:6]
[名稱:C:\WINDOWS\system32\spoolsv.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:7]
[名稱:C:\WINDOWS\Explorer.EXE]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:8]
[名稱:C:\WINDOWS\System32\ctfmon.exe]
[類型:運行進程]
[內容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[編號:9]
[名稱:C:\Program Files\完美卸載V2007 完整版\MainCon.exe]
[類型:運行進程]
[內容:完美卸載V2006 主控製台 版權所有 (C) 2005]
[編號:10 - 可疑級別:*]
[名稱:C:\Program Files\完美卸載V2007 完整版\TrCleaner.exe]
[類型:運行進程]
[內容:TrCleaner 應用程序 版權所有 (C) 2004]
[編號:11]
[名稱:C:\Program Files\完美卸載V2007 完整版\syssec.exe]
[類型:運行進程]
[內容:完美卸載V2006-ChinaHijackThis 版權所有 (C) 2006]
------------------------------------------------------------------------------------------
[編號:13 - 可疑級別:*****]
[名稱:C:\Program Files\Steganos Internet Anonym Pro 6\sselsp.dll]
[類型:已加載DLL]
[內容:未知]
[編號:14 - 可疑級別:*]
[名稱:C:\Program Files\完美卸載V2007 完整版\SkinMagic.dll]
[類型:已加載DLL]
[內容:Appspeed SkinMagic Toolkit Copyright ? 2002-2006]
[編號:15 - 可疑級別:*]
[名稱:C:\WINDOWS\System32\Macromed\Flash\Flash9c.ocx]
[類型:已加載DLL]
[內容:Shockwave Flash Adobe? Flash? Player. Copyright ? 1996-2007 Adobe Systems Incorporated. All Rights Reserved. Protected by U.S. Patent 6,879,327; Patents Pending in the United States and other countries. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.]
------------------------------------------------------------------------------------------
[編號:17]
[名稱:IMJPMIG8.1]
[類型:開機啟動]
[內容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]
[編號:18]
[名稱:LiveUpatePower]
[類型:開機啟動]
[內容:C:\Program Files\完美卸載V2007 完整版\MyUpdate.exe -PowerOn]
[編號:19]
[名稱:RegFireWall]
[類型:開機啟動]
[內容:C:\Program Files\完美卸載V2007 完整版\WmSysPro.exe -PowerOn]
[編號:20]
[名稱:ctfmon.exe]
[類型:開機啟動]
[內容:C:\WINDOWS\System32\ctfmon.exe]
------------------------------------------------------------------------------------------
[編號:22 - 可疑級別:*****]
[名稱:AFD Networking Support Environment]
[類型:服務:未知]
[內容:\SystemRoot\System32\drivers\afd.sys]
[編號:23 - 可疑級別:*]
[名稱:ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter]
[類型:服務:ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter Copyright (C) ADMtek Incorporated.2001-2002]
[內容:C:\WINDOWS\system32\drivers\an983.sys]
[編號:24 - 可疑級別:*]
[名稱:3Com EtherLink XL 90XB/C Adapter Driver]
[類型:服務:3Com EtherLink PCI Copyright 1994-2001, 3Com Corporation.]
[內容:C:\WINDOWS\system32\drivers\el90xbc5.sys]
[編號:25 - 可疑級別:*]
[名稱:Creative AudioPCI (ES1371,ES1373) (WDM)]
[類型:服務:Ensoniq ES1371/73 Copyright (C) Creative Technology Ltd. 1997-2001]
[內容:C:\WINDOWS\system32\drivers\es1371mp.sys]
[編號:26 - 可疑級別:*]
[名稱:McAfee Framework Service]
[類型:服務:McAfee Common Framework Copyright? 2000-2004 Networks Associates Technology, Inc. All Rights Reserved.]
[內容:"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart]
[編號:27 - 可疑級別:*]
[名稱:NetGroup Packet Filter Driver]
[類型:服務:NPF Driver Copyright ? 2003]
[內容:C:\WINDOWS\system32\drivers\npf.sys]
[編號:28 - 可疑級別:*****]
[名稱:PnpWmkDrv]
[類型:服務:未知]
[內容:c:\windows\system32\drivers\pnpwmkdrv.sys]
[編號:29 - 可疑級別:*****]
[名稱:Remote Packet Capture Protocol v.0 (experimental)]
[類型:服務:未知]
[內容:"%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini"]
[編號:30 - 可疑級別:*****]
[名稱:Remote Procedure Call (RPC)]
[類型:服務:未知]
[內容:C:\WINDOWS\system32\svchost ]
[編號:31 - 可疑級別:*****]
[名稱:Secdrv]
[類型:服務:未知]
[內容:C:\WINDOWS\system32\drivers\secdrv.sys]
[編號:32 - 可疑級別:*****]
[名稱:Windows Socket 2.0 Non-IFS Service Provider Support Environment]
[類型:服務:未知]
[內容:\SystemRoot\System32\drivers\ws2ifsl.sys]
------------------------------------------------------------------------------------------
[編號:34]
[名稱:Start Page]
[類型:IE主頁-當前用戶]
[內容:http://web.wenxuecity.com/BBSList.php?SubID=romance]
[編號:35]
[名稱:Search Page]
[類型:IE搜索-當前用戶]
[內容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
[編號:36]
[名稱:Start Page]
[類型:IE主頁-所有用戶]
[內容:http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home]
[編號:37]
[名稱:Search Page]
[類型:IE搜索-所有用戶]
[內容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
[編號:38]
[名稱:Default_Page_URL]
[類型:默認IE主頁-所有用戶]
[內容:http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome]
[編號:39]
[名稱:Default_Search_URL]
[類型:默認IE搜索-所有用戶]
[內容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
------------------------------------------------------------------------------------------
[編號:41 - 可疑級別:*]
[名稱:FGCatchUrl]
[類型:IE 嵌入對象]
[內容:C:\Program Files\FlashGet\jccatch.dll]
[編號:42 - 可疑級別:*]
[名稱:FlashGet GetFlash Class]
[類型:IE 嵌入對象]
[內容:C:\Program Files\FlashGet\getflash.dll]
------------------------------------------------------------------------------------------
[編號:44]
[名稱:{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}]
[類型:IE 擴展按鈕]
[內容:快車 路徑:C:\Program Files\FlashGet\FlashGet.exe]
------------------------------------------------------------------------------------------
[編號:46]
[名稱:&使用快車(FlashGet)下載]
[類型:IE 右鍵按鈕]
[內容: 路徑:t\Fl]
[編號:47]
[名稱:&使用快車(FlashGet)下載全部鏈接]
[類型:IE 右鍵按鈕]
[內容: 路徑:t\Fl]
------------------------------------------------------------------------------------------
[編號:49]
[名稱:PostBootReminder]
[類型:正常嵌入對象]
[內容:%SystemRoot%\system32\SHELL32.dll]
[編號:50]
[名稱:CDBurn]
[類型:正常嵌入對象]
[內容:%SystemRoot%\system32\SHELL32.dll]
[編號:51]
[名稱:WebCheck]
[類型:正常嵌入對象]
[內容:%SystemRoot%\System32\webcheck.dll]
[編號:52]
[名稱:SysTray]
[類型:正常嵌入對象]
[內容:C:\WINDOWS\System32\stobject.dll]
------------------------------------------------------------------------------------------
[編號:54]
[名稱:]
[類型:EXE關聯]
[內容:"%1" %*]
[編號:55]
[名稱:]
[類型:TXT關聯]
[內容:%SystemRoot%\system32\NOTEPAD.EXE %1]
[編號:56]
[名稱:]
[類型:vbs關聯]
[內容:%SystemRoot%\System32\W.exe "%1" %*]
[編號:57]
[名稱:]
[類型:Js關聯]
[內容:%SystemRoot%\System32\W.exe "%1" %*]
[編號:58]
[名稱:]
[類型:htmlfile關聯]
[內容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]
[編號:59]
[名稱:]
[類型:HTTP協議]
[內容:C:\PROGRA~1\MOZILL~1\FIREFOX.EXE -url "%1"]
[編號:60]
[名稱:]
[類型:FTP協議]
[內容:C:\PROGRA~1\MOZILL~1\FIREFOX.EXE -url "%1"]
------------------------------------------------------------------------------------------
[編號:62]
[名稱:c:\windows\system32\deskpan.dll]
[類型:第三方 COM/ActiveX組件]
[內容:Display Panning CPL Extension---發布公司:未知]
-----------------------計算機網絡端口----------------------
協議 端口號 端口類型
TCP 445 Microsoft-DS
TCP 1025 未知類型
TCP 5000 WindowsXP服務器,Blazer 5,Bubbel,Back Door Setup,Sockets de Troie
TCP 139 微軟Netbios Name服務(用於文件及打印機共享)
TCP 139 微軟Netbios Name服務(用於文件及打印機共享)
TCP 139 微軟Netbios Name服務(用於文件及打印機共享)
TCP 1067 未知類型
TCP 1068 未知類型
TCP 445 公共Internet文件係統(CIFS)
TCP 1026 Remote Explorer 2000
TCP 137 未知類型
TCP 138 未知類型
TCP 1900 未知類型
TCP 1031 Xot
TCP 1032 Akosch4
TCP 1048 未知類型
TCP 1065 未知類型
TCP 1900 未知類型
--------------------感謝您關注我們的軟件---------------------
網站: http://www.killsoft.cn 產品:完美卸載V2006
what is wrong with my system!
所有跟帖:
•
卸載掉完美卸載,下載SREng,掃描,把報告貼上來
-fanmit-
♂
(0 bytes)
()
06/11/2007 postreply
02:57:42
WENXUECITY.COM does not represent or guarantee the truthfulness, accuracy, or reliability of any of communications posted by other users.
Copyright ©1998-2024 wenxuecity.com All rights reserved. Privacy Statement & Terms of Use & User Privacy Protection Policy
