完美卸载 - 系统检查检测报告!
建议:修复时请按照高手的反馈编号在修复工具中打勾进行修复.

--------------------------系统环境-------------------------
检测日期: 2006-5-17 6:27
Windows: Microsoft Windows XP
ServicePack: Service Pack 2, v.2144
Update: 2600.xpsp.040601-1829
Internet Explorer: 6.0.2900.2144


-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:存在IPC$空连接,容易被黑客攻击! 方案:<a href="File://D:\Program Files\完美卸载V2006\IPCRepair.reg">下载此注册表文件并导入!</a>

服务名称        是否运行              描述
RemoteRegistry [运行中] [说明:这个服务可能被利用远程操作注册表]
Windows Time  [运行中] [说明:这个服务可能被黑客利用来启动木马]
Telnet        [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger      [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server        [运行中] [说明:如果你的电脑不用局域网中,可以关闭]


-----------------------计算机网络端口----------------------
协议      端口号              端口类型
TCP        135        微软DCE RPC end-point mapper服务
TCP        445        Microsoft-DS
TCP      1029        未知类型
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP      1497        未知类型
TCP      1498        未知类型
TCP      1501        未知类型
TCP      1502        未知类型
TCP        445        公共Internet文件系统(CIFS)
TCP        500        Internet密钥交换
TCP      1040        未知类型
TCP      1483        未知类型
TCP      4500        sae-urn
TCP        123        未知类型
TCP      1900        未知类型
TCP        123        未知类型
TCP        137        未知类型
TCP        138        未知类型
TCP      1900        未知类型


--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]

[编号:1]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]

[编号:2]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:3]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:4]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:5]
[名称:D:\Program Files\Rising\Rav\CCenter.exe]
[类型:运行进程]
[内容:Rising Antivirus Software Copyright Rising  2002]

[编号:6]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:7]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:8]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:9]
[名称:C:\WINDOWS\system32\wscntfy.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:10]
[名称:D:\Program Files\完美卸载V2006\MainCon.exe]
[类型:运行进程]
[内容:MainCon 应用程序 版权所有 (C) 2004]

[编号:11]
[名称:C:\WINDOWS\system32\conime.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:12]
[名称:D:\Program Files\完美卸载V2006\SysSec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]

[编号:13]
[分隔符:---------------------------------------------------------------------]

[编号:14]
[名称:D:\Program Files\WinRAR\rarext.dll]
[类型:已加载DLL]
[内容:未知]

[编号:15]
[分隔符:---------------------------------------------------------------------]

[编号:16]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]

[编号:17]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC]

[编号:18]
[名称:PHIME2002A]
[类型:开机启动]
[内容:; C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName]

[编号:19]
[名称:RavTask]
[类型:开机启动]
[内容:"D:\Program Files\Rising\Rav\RavTask.exe" -system]

[编号:20]
[名称:NetVideoNews]
[类型:开机启动]
[内容:; C:\Program Files\BBsee\BBsee.exe]

[编号:21]
[名称:CdnCtr]
[类型:开机启动]
[内容:C:\Program Files\CNNIC\Cdn\cdnup.exe]

[编号:22]
[名称:IESAddr]
[类型:开机启动]
[内容:C:\P
]

[编号:23]
[分隔符:---------------------------------------------------------------------]

[编号:24]
[名称:AFD]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]

[编号:25]
[名称:Service for Realtek AC97 Audio (WDM)]
[类型:服务:Windows (R) WDM driver for Realtek AC'97 Audio Copyright (c) Realtek Semiconductor Corp.1998-2002]
[内容:C:\WINDOWS\system32\drivers\alcxwdm.sys]

[编号:26]
[名称:Basetdi]
[类型:服务:Rising PFW Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:c:\windows\system32\drivers\basetdi.sys]

[编号:27]
[名称:cdnprot]
[类型:服务:CNNIC cdnprot Copyright ? 2005]
[内容:C:\WINDOWS\system32\drivers\cdnprot.sys]

[编号:28]
[名称:DCOM Server Process Launcher]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:29]
[名称:ExpScaner]
[类型:服务:ExpScan.sys Copyright (C) 2004 Rising]
[内容:d:\program files\rising\rav\expscan.sys]

[编号:30]
[名称:HOOKAPI]
[类型:服务:HOOKAPI Drivers for Windows NT Copyright (C) RFW Corp. 2000-2002]
[内容:d:\program files\rising\rav\hookapi.sys]

[编号:31]
[名称:HookCont]
[类型:服务:TDIHOOK Driver for Windows NT Copyright ]
[内容:d:\program files\rising\rav\hookcont.sys]

[编号:32]
[名称:HookReg]
[类型:服务: 版权所有 (@) 2003]
[内容:d:\program files\rising\rav\hookreg.sys]

[编号:33]
[名称:HookSys]
[类型:服务:Hooksys Copyright (C) 2004]
[内容:d:\program files\rising\rav\hooksys.sys]

[编号:34]
[名称:MEMSCAN]
[类型:服务:MemScan Drivers for Windows NT Copyright (C) RFW Corp. 2000-2002]
[内容:d:\program files\rising\rav\memscan.sys]

[编号:35]
[名称:npkcrypt]
[类型:服务:nProtect KeyCrypt Driver Copyright (C) INCA Internet. 2000-2005]
[内容:d:\qq\npkcrypt.sys]

[编号:36]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:37]
[名称:Rising Process Communication Center]
[类型:服务:Rising Antivirus Software Copyright Rising  2002]
[内容:"D:\Program Files\Rising\Rav\CCenter.exe"]

[编号:38]
[名称:RsRavMon Service]
[类型:服务:Rising Antivirus Software Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:"D:\Program Files\Rising\Rav\Ravmond.exe"]

[编号:39]
[名称:Secdrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]

[编号:40]
[名称:Registry Protector]
[类型:服务:未知]
[内容:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087]

[编号:41]
[名称:SiS AGP Filter]
[类型:服务:SiS (R) NT AGP Filter for Windows XP Copyright (C) Silion Integrated Systems Corp. 1999-2001]
[内容:C:\WINDOWS\system32\drivers\sisagp.sys]

[编号:42]
[名称:SiS PCI Fast Ethernet Adapter Driver]
[类型:服务:NDIS 5.1 NIC Driver SiS Corporation]
[内容:C:\WINDOWS\system32\drivers\sisnic.sys]

[编号:43]
[名称:Terminal Services]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:44]
[名称:WmNdisDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmndisdrv.sys]

[编号:45]
[分隔符:---------------------------------------------------------------------]

[编号:46]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:http://www.baidu.com/]

[编号:47]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:http://www.yahoo.com.cn]

[编号:48]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:about:blank]

[编号:49]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:http://www.yahoo.com.cn]

[编号:50]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/windows/ie_intl/cn/start/]

[编号:51]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:52]
[分隔符:---------------------------------------------------------------------]

[编号:53]
[名称:ThunderIEHelper Class]
[类型:IE 嵌入对象]
[内容:C:\WINDOWS\system32\xunleibho_v14.dll]

[编号:54]
[名称:CdnForIE Class]
[类型:IE 嵌入对象]
[内容:C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll]

[编号:55]
[分隔符:---------------------------------------------------------------------]

[编号:56]
[名称:{c95fe080-8f5d-11d2-a20b-00aa003c157b}]
[类型:IE 扩展按钮]
[内容:QQ 路径:D:\QQ\QQ.EXE]

[编号:57]
[名称:{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}]
[类型:IE 扩展按钮]
[内容:QQ炫彩工具条设置 路径:QQ炫彩工具条设置]

[编号:58]
[分隔符:---------------------------------------------------------------------]

[编号:59]
[名称:&使用迅雷下载]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:60]
[名称:&使用迅雷下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:61]
[名称:上传到QQ网络硬盘]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:62]
[名称:导出到 Microsoft Office Excel(&X)]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:63]
[名称:添加到QQ自定义面板]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:64]
[名称:添加到QQ表情]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:65]
[名称:用QQ彩信发送该图片]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:66]
[分隔符:---------------------------------------------------------------------]

[编号:67]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:68]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:69]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\webcheck.dll]

[编号:70]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\system32\stobject.dll]

[编号:71]
[分隔符:---------------------------------------------------------------------]

[编号:72]
[名称:]
[类型:EXE关联]
[内容:"C:\WINDOWS\system32\tantta.exe" "%1" %*]

[编号:73]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\system32\NOTEPAD.EXE %1]

[编号:74]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:75]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:76]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:77]
[名称:]
[类型:HTTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:78]
[名称:]
[类型:FTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" %1]

[编号:79]
[分隔符:---------------------------------------------------------------------]

[编号:80]
[名称:c:\windows\system32\deskpan.dll]
[类型:第三方 COM/ActiveX组件]
[内容:显示摇曳 CPL 扩展---发布公司:未知]

--------------------感谢您关注我的软件---------------------
网站: http://www.wjfsoft.com  产品:完美卸载V2006

????????