--------------------------系统环境-------------------------
检测日期: 2007-6-9 22:47
Windows: Microsoft Windows XP
ServicePack: Service Pack 1
Update: 2600.xpsp1.020828-1920
Internet Explorer: 6.0.2800.1106
-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:空连接检查安全!
服务名称 是否运行 描述
RemoteRegistry [运行中] [说明:这个服务可能被利用远程操作注册表]
Windows Time [已停止] [说明:这个服务可能被黑客利用来启动木马]
Telnet [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server [运行中] [说明:如果你的电脑不用局域网中,可以关闭]
建议在[控制面板]-[管理工具]-[服务]中,找到这些服务关闭并设置为[禁用].
--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]
[编号:1]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]
[编号:2]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:3]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:4]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:5]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:6]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:7]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:8]
[名称:C:\WINDOWS\System32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:9]
[名称:C:\Program Files\完美卸载V2007 完整版\MainCon.exe]
[类型:运行进程]
[内容:完美卸载V2006 主控制台 版权所有 (C) 2005]
[编号:10 - 可疑级别:*]
[名称:C:\Program Files\完美卸载V2007 完整版\TrCleaner.exe]
[类型:运行进程]
[内容:TrCleaner 应用程序 版权所有 (C) 2004]
[编号:11]
[名称:C:\Program Files\完美卸载V2007 完整版\syssec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]
------------------------------------------------------------------------------------------
[编号:13 - 可疑级别:*****]
[名称:C:\Program Files\Steganos Internet Anonym Pro 6\sselsp.dll]
[类型:已加载DLL]
[内容:未知]
[编号:14 - 可疑级别:*]
[名称:C:\Program Files\完美卸载V2007 完整版\SkinMagic.dll]
[类型:已加载DLL]
[内容:Appspeed SkinMagic Toolkit Copyright ? 2002-2006]
[编号:15 - 可疑级别:*]
[名称:C:\WINDOWS\System32\Macromed\Flash\Flash9c.ocx]
[类型:已加载DLL]
[内容:Shockwave Flash Adobe? Flash? Player. Copyright ? 1996-2007 Adobe Systems Incorporated. All Rights Reserved. Protected by U.S. Patent 6,879,327; Patents Pending in the United States and other countries. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries.]
------------------------------------------------------------------------------------------
[编号:17]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]
[编号:18]
[名称:LiveUpatePower]
[类型:开机启动]
[内容:C:\Program Files\完美卸载V2007 完整版\MyUpdate.exe -PowerOn]
[编号:19]
[名称:RegFireWall]
[类型:开机启动]
[内容:C:\Program Files\完美卸载V2007 完整版\WmSysPro.exe -PowerOn]
[编号:20]
[名称:ctfmon.exe]
[类型:开机启动]
[内容:C:\WINDOWS\System32\ctfmon.exe]
------------------------------------------------------------------------------------------
[编号:22 - 可疑级别:*****]
[名称:AFD Networking Support Environment]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]
[编号:23 - 可疑级别:*]
[名称:ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter]
[类型:服务:ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter Copyright (C) ADMtek Incorporated.2001-2002]
[内容:C:\WINDOWS\system32\drivers\an983.sys]
[编号:24 - 可疑级别:*]
[名称:3Com EtherLink XL 90XB/C Adapter Driver]
[类型:服务:3Com EtherLink PCI Copyright 1994-2001, 3Com Corporation.]
[内容:C:\WINDOWS\system32\drivers\el90xbc5.sys]
[编号:25 - 可疑级别:*]
[名称:Creative AudioPCI (ES1371,ES1373) (WDM)]
[类型:服务:Ensoniq ES1371/73 Copyright (C) Creative Technology Ltd. 1997-2001]
[内容:C:\WINDOWS\system32\drivers\es1371mp.sys]
[编号:26 - 可疑级别:*]
[名称:McAfee Framework Service]
[类型:服务:McAfee Common Framework Copyright? 2000-2004 Networks Associates Technology, Inc. All Rights Reserved.]
[内容:"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart]
[编号:27 - 可疑级别:*]
[名称:NetGroup Packet Filter Driver]
[类型:服务:NPF Driver Copyright ? 2003]
[内容:C:\WINDOWS\system32\drivers\npf.sys]
[编号:28 - 可疑级别:*****]
[名称:PnpWmkDrv]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\pnpwmkdrv.sys]
[编号:29 - 可疑级别:*****]
[名称:Remote Packet Capture Protocol v.0 (experimental)]
[类型:服务:未知]
[内容:"%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini"]
[编号:30 - 可疑级别:*****]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]
[编号:31 - 可疑级别:*****]
[名称:Secdrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]
[编号:32 - 可疑级别:*****]
[名称:Windows Socket 2.0 Non-IFS Service Provider Support Environment]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\ws2ifsl.sys]
------------------------------------------------------------------------------------------
[编号:34]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:http://web.wenxuecity.com/BBSList.php?SubID=romance]
[编号:35]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
[编号:36]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home]
[编号:37]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
[编号:38]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome]
[编号:39]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
------------------------------------------------------------------------------------------
[编号:41 - 可疑级别:*]
[名称:FGCatchUrl]
[类型:IE 嵌入对象]
[内容:C:\Program Files\FlashGet\jccatch.dll]
[编号:42 - 可疑级别:*]
[名称:FlashGet GetFlash Class]
[类型:IE 嵌入对象]
[内容:C:\Program Files\FlashGet\getflash.dll]
------------------------------------------------------------------------------------------
[编号:44]
[名称:{D6E814A0-E0C5-11d4-8D29-0050BA6940E3}]
[类型:IE 扩展按钮]
[内容:快车 路径:C:\Program Files\FlashGet\FlashGet.exe]
------------------------------------------------------------------------------------------
[编号:46]
[名称:&使用快车(FlashGet)下载]
[类型:IE 右键按钮]
[内容: 路径:t\Fl]
[编号:47]
[名称:&使用快车(FlashGet)下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:t\Fl]
------------------------------------------------------------------------------------------
[编号:49]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]
[编号:50]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]
[编号:51]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\System32\webcheck.dll]
[编号:52]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\System32\stobject.dll]
------------------------------------------------------------------------------------------
[编号:54]
[名称:]
[类型:EXE关联]
[内容:"%1" %*]
[编号:55]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\system32\NOTEPAD.EXE %1]
[编号:56]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\W.exe "%1" %*]
[编号:57]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\W.exe "%1" %*]
[编号:58]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]
[编号:59]
[名称:]
[类型:HTTP协议]
[内容:C:\PROGRA~1\MOZILL~1\FIREFOX.EXE -url "%1"]
[编号:60]
[名称:]
[类型:FTP协议]
[内容:C:\PROGRA~1\MOZILL~1\FIREFOX.EXE -url "%1"]
------------------------------------------------------------------------------------------
[编号:62]
[名称:c:\windows\system32\deskpan.dll]
[类型:第三方 COM/ActiveX组件]
[内容:Display Panning CPL Extension---发布公司:未知]
-----------------------计算机网络端口----------------------
协议 端口号 端口类型
TCP 445 Microsoft-DS
TCP 1025 未知类型
TCP 5000 WindowsXP服务器,Blazer 5,Bubbel,Back Door Setup,Sockets de Troie
TCP 139 微软Netbios Name服务(用于文件及打印机共享)
TCP 139 微软Netbios Name服务(用于文件及打印机共享)
TCP 139 微软Netbios Name服务(用于文件及打印机共享)
TCP 1067 未知类型
TCP 1068 未知类型
TCP 445 公共Internet文件系统(CIFS)
TCP 1026 Remote Explorer 2000
TCP 137 未知类型
TCP 138 未知类型
TCP 1900 未知类型
TCP 1031 Xot
TCP 1032 Akosch4
TCP 1048 未知类型
TCP 1065 未知类型
TCP 1900 未知类型
--------------------感谢您关注我们的软件---------------------
网站: http://www.killsoft.cn 产品:完美卸载V2006