完美卸载 - 系统检查检测报告!
建议:修复时请按照高手的反馈编号在修复工具中打勾进行修复.

--------------------------系统环境-------------------------
检测日期: 2006-3-25 21:15
Windows: Microsoft Windows XP
ServicePack: Service Pack 2
Update: 2600.xpsp_sp2_gdr.050301-1519
Internet Explorer: 6.0.2900.2180


-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:存在IPC$空连接,但已经禁止匿名访问,安全!

服务名称        是否运行              描述
RemoteRegistry [] [说明:这个服务可能被利用远程操作注册表]
Windows Time  [运行中] [说明:这个服务可能被黑客利用来启动木马]
Telnet        [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger      [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server        [运行中] [说明:如果你的电脑不用局域网中,可以关闭]


-----------------------计算机网络端口----------------------
协议      端口号              端口类型
TCP        135        微软DCE RPC end-point mapper服务
TCP        445        Microsoft-DS
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP      1079        未知类型
TCP      1080        Wingate,Worm.BugBear.B,Worm.Novarg.B
TCP      1095        未知类型
TCP      1144        未知类型
TCP      1157        未知类型
TCP      1158        未知类型
TCP      1159        未知类型
TCP      1160        未知类型
TCP      1161        未知类型
TCP      1162        未知类型
TCP      1163        未知类型
TCP      1164        未知类型
TCP      1165        未知类型
TCP      1167        未知类型
TCP      1030        未知类型
TCP        445        公共Internet文件系统(CIFS)
TCP        500        Internet密钥交换
TCP      1025        Maverick's Matrix 1.2 - 2.0
TCP      1036        未知类型
TCP      4500        sae-urn
TCP        123        未知类型
TCP        137        未知类型
TCP        138        未知类型
TCP      1900        未知类型
TCP        123        未知类型
TCP      1026        Remote Explorer 2000
TCP      1072        未知类型
TCP      1900        未知类型


--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]

[编号:1]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]

[编号:2]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:3]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:4]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:5]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:6]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:7]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:8]
[名称:C:\WINDOWS\SOUNDMAN.EXE]
[类型:运行进程]
[内容:Realtek Sound Manager Copyright (c) 2001-2004 Realtek Semiconductor Corp.]

[编号:9]
[名称:C:\Program Files\Common Files\Real\Update_OB\realsched.exe]
[类型:运行进程]
[内容:RealPlayer (32-bit)  Copyright ? RealNetworks, Inc. 1995-2004]

[编号:10]
[名称:D:\Twister\twister.exe]
[类型:运行进程]
[内容:Twister Anti-TrojanVirus Copyright (C) 2002-2005 Filseclab Corp.]

[编号:11]
[名称:D:\xfilter\xfilter.exe]
[类型:运行进程]
[内容:费尔个人防火墙 Copyright (C) 2002-2005 费尔安全实验室]

[编号:12]
[名称:C:\WINDOWS\system32\rundll32.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:13]
[名称:F:\D-Tools\daemon.exe]
[类型:运行进程]
[内容:DAEMON Tools Copyright (C) 2000-2004]

[编号:14]
[名称:C:\WINDOWS\system32\RUNDLL32.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:15]
[名称:C:\WINDOWS\system32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:16]
[名称:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:17]
[名称:C:\WINDOWS\system32\nvsvc32.exe]
[类型:运行进程]
[内容:NVIDIA Driver Helper Service, Version 84.20 (C) NVIDIA Corporation. All rights reserved.]

[编号:18]
[名称:C:\Program Files\Internet Explorer\iexplore.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:19]
[名称:C:\Documents and Settings\lenovo\My Documents\Huawei\PortalServer\218.75.95.241\PortalClient.exe]
[类型:运行进程]
[内容:iTELLIN AAA ]

[编号:20]
[名称:E:\完美卸载V2006\MainCon.exe]
[类型:运行进程]
[内容:MainCon 应用程序 版权所有 (C) 2004]

[编号:21]
[名称:E:\完美卸载V2006\SysSec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]

[编号:22]
[名称:C:\WINDOWS\system32\Notepad.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:23]
[名称:E:\download\Wom\Womcc.exe]
[类型:运行进程]
[内容:Windows优化大师 版权所有 (C) 2000-2005 鲁锦]

[编号:24]
[分隔符:---------------------------------------------------------------------]

[编号:25]
[名称:D:\xfilter\XFILTER.DLL]
[类型:已加载DLL]
[内容:Filseclab Personal Firewall Copyright (c) 2002-2005 Filseclab Corp.]

[编号:26]
[名称:C:\PROGRA~1\COMMON~1\system\msdc32.dll]
[类型:已加载DLL]
[内容:IPSec32.DLL Copyright 2003]

[编号:27]
[名称:C:\PROGRA~1\COMMON~1\system\mod\mstd.dll]
[类型:已加载DLL]
[内容:mstd Copyright 2005]

[编号:28]
[名称:C:\PROGRA~1\COMMON~1\system\mod\msdw.dll]
[类型:已加载DLL]
[内容:msdw Copyright 2005]

[编号:29]
[名称:C:\Program Files\WinRAR\rarext.dll]
[类型:已加载DLL]
[内容:未知]

[编号:30]
[名称:D:\Twister\Twshlext.dll]
[类型:已加载DLL]
[内容:Twister Shell Extension DLL Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:31]
[名称:C:\WINDOWS\system32\LgdGuard.dll]
[类型:已加载DLL]
[内容:CopyPathExt Module ]

[编号:32]
[名称:D:\Twister\Quarantine.dll]
[类型:已加载DLL]
[内容:Twister Qurantine Manager Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:33]
[名称:D:\Twister\W32Tools.dll]
[类型:已加载DLL]
[内容:Filseclab Win32 API Library Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:34]
[名称:D:\Twister\Virsubm.dll]
[类型:已加载DLL]
[内容:Twister Virus Submission DLL Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:35]
[名称:D:\Twister\emlib.dll]
[类型:已加载DLL]
[内容:Email Win32 Library Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:36]
[名称:D:\Twister\Regpro.dll]
[类型:已加载DLL]
[内容:Twister Registry Protector DLL Copyright (c) 2002-2005 FILSECLAB Corporation]

[编号:37]
[名称:D:\Twister\Decexp.dll]
[类型:已加载DLL]
[内容:Decoding Express DLL Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:38]
[名称:D:\Twister\Unchm.dll]
[类型:已加载DLL]
[内容:Uncompress Chm DLL Copyright (c) 2002-2005 FILSECLAB Corp.]

[编号:39]
[名称:D:\Twister\unrar.dll]
[类型:已加载DLL]
[内容:未知]

[编号:40]
[名称:D:\Twister\unzip32.dll]
[类型:已加载DLL]
[内容:Info-ZIP's UnZip Windows DLL Info-ZIP 1996-2005]

[编号:41]
[名称:D:\Twister\unacev2.dll]
[类型:已加载DLL]
[内容:未知]

[编号:42]
[名称:D:\Twister\plus.dll]
[类型:已加载DLL]
[内容:Twister Plus Win32 DLL Copyright (c) 2002-2005 Filseclab Corporation]

[编号:43]
[名称:C:\WINDOWS\system32\nvHotkey.dll]
[类型:已加载DLL]
[内容:NVIDIA Hotkey Service, Version 83.60 (C) NVIDIA Corporation. All rights reserved.]

[编号:44]
[名称:C:\WINDOWS\daemon.dll]
[类型:已加载DLL]
[内容:Copyright (C) 2000-2004 Copyright (C) 2000-2004]

[编号:45]
[名称:F:\D-Tools\PFCTOC.DLL]
[类型:已加载DLL]
[内容:Padus Foundation Class(TM) Copyright (C) 1996-2002 Padus, Inc. All rights reserved.]

[编号:46]
[名称:F:\D-Tools\Plugins\Images\ccdmount.dll]
[类型:已加载DLL]
[内容:Image access plugin Copyright (C) 2003-2004]

[编号:47]
[名称:F:\D-Tools\Plugins\Images\mdsmount.dll]
[类型:已加载DLL]
[内容:Image access plugin Copyright (C) 2003-2004]

[编号:48]
[名称:F:\D-Tools\Plugins\Images\pdimount.dll]
[类型:已加载DLL]
[内容:Image access plugin Copyright (C) 2003]

[编号:49]
[名称:F:\D-Tools\Plugins\Images\nrgmount.dll]
[类型:已加载DLL]
[内容:Image access plugin Copyright (C) 2003-2004]

[编号:50]
[名称:F:\D-Tools\Plugins\Images\bw5mount.dll]
[类型:已加载DLL]
[内容:Blindwrite 5 image access library Copyright (C) 2003]

[编号:51]
[名称:C:\WINDOWS\system32\NvMcTray.dll]
[类型:已加载DLL]
[内容:NVIDIA Media Center Library (C) NVIDIA Corporation. All rights reserved.]

[编号:52]
[名称:C:\WINDOWS\system32\NVRSZHC.DLL]
[类型:已加载DLL]
[内容:NVIDIA Compatible Windows 2000 Display driver, Version 84.20  (C) NVIDIA Corporation. All rights reserved.]

[编号:53]
[名称:C:\WINDOWS\PortalAX02.ocx]
[类型:已加载DLL]
[内容:iTELLIN AAA ]

[编号:54]
[名称:C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx]
[类型:已加载DLL]
[内容:Shockwave Flash Copyright ? 1996-2005 Macromedia, Inc.]

[编号:55]
[分隔符:---------------------------------------------------------------------]

[编号:56]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]

[编号:57]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC]

[编号:58]
[名称:PHIME2002A]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName]

[编号:59]
[名称:SoundMan]
[类型:开机启动]
[内容:SOUNDMAN.EXE]

[编号:60]
[名称:TkBellExe]
[类型:开机启动]
[内容:"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot]

[编号:61]
[名称:twister]
[类型:开机启动]
[内容:"D:\Twister\twister.exe" -a]

[编号:62]
[名称:XFILTER]
[类型:开机启动]
[内容:"D:\xfilter\xfilter.exe" -a]

[编号:63]
[名称:NvCplDaemon]
[类型:开机启动]
[内容:RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup]

[编号:64]
[名称:nwiz]
[类型:开机启动]
[内容:nwiz.exe /install]

[编号:65]
[名称:NVHotkey]
[类型:开机启动]
[内容:rundll32.exe nvHotkey.dll,Start]

[编号:66]
[名称:DAEMON Tools-2052]
[类型:开机启动]
[内容:"F:\D-Tools\daemon.exe"  -lang 2052]

[编号:67]
[名称:NvMediaCenter]
[类型:开机启动]
[内容:RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit]

[编号:68]
[名称:StormCodec_Helper]
[类型:开机启动]
[内容:"E:\Storm Codec\StormSet.exe" /S /opti]

[编号:69]
[名称:KernelFaultCheck]
[类型:开机启动]
[内容:%systemroot%\system32\dumprep 0 -k]

[编号:70]
[名称:SkyDune]
[类型:开机启动]
[内容:E:\完美卸载V2006\WmNetPro.exe -Poweron]

[编号:71]
[分隔符:---------------------------------------------------------------------]

[编号:72]
[名称:AFD]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]

[编号:73]
[名称:Service for WDM 3D Audio Driver]
[类型:服务:Copyright ? 2004 Sensaura Copyright ? 2004 Sensaura]
[内容:C:\WINDOWS\system32\drivers\alcxsens.sys]

[编号:74]
[名称:Service for Realtek AC97 Audio (WDM)]
[类型:服务:Windows (R) WDM driver for Realtek AC'97 Audio Copyright (c) Realtek Semiconductor Corp.1998-2004]
[内容:C:\WINDOWS\system32\drivers\alcxwdm.sys]

[编号:75]
[名称:ASP.NET State Service]
[类型:服务:未知]
[内容:C:\WINDOWS\microsoft.net\framework\v1.1.4322\aspnet_state.exe]

[编号:76]
[名称:DCOM Server Process Launcher]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:77]
[名称:EagleNT]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\eaglent.sys]

[编号:78]
[名称:VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver]
[类型:服务:VIA PCI 10/100Mb Fast Ethernet Adapter                      VIA Technologies, Inc.              ]
[内容:C:\WINDOWS\system32\drivers\fetnd5.sys]

[编号:79]
[名称:Twister Kernel Module]
[类型:服务:IMMDRV Copyright (C) 2002-2005 FILSECLAB Corp.]
[内容:d:\twister\immdrv.sys]

[编号:80]
[名称:Computer Storage]
[类型:服务:未知]
[内容:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087]

[编号:81]
[名称:Windows Installer]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\msiexec.exe /V]

[编号:82]
[名称:npkcrypt]
[类型:服务:nProtect KeyCrypt Driver Copyright (C) INCA Internet. 2000-2005]
[内容:e:\qq\npkcrypt.sys]

[编号:83]
[名称:NVIDIA Display Driver Service]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\nvsvc32.exe]

[编号:84]
[名称:oreans32]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\oreans32.sys]

[编号:85]
[名称:StarForce Protection Environment Driver v6]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\prodrv06.sys]

[编号:86]
[名称:StarForce Protection Helper Driver v2]
[类型:服务:StarForce Protection System (c) 2000-2003 StarForce Technologies, Inc.]
[内容:C:\WINDOWS\system32\drivers\prohlp02.sys]

[编号:87]
[名称:StarForce Protection Synchronization Driver v1]
[类型:服务:StarForce Protection System (c) 2000-2003 StarForce Technologies, Inc.]
[内容:C:\WINDOWS\system32\drivers\prosync1.sys]

[编号:88]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:89]
[名称:Secdrv]
[类型:服务:Macrovision SECURITY Driver ? 2003 Macrovision Corporation ]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]

[编号:90]
[名称:StarForce Protection Helper Driver]
[类型:服务:StarForce Protection System (c) 2000-2003 StarForce Technologies, Inc.]
[内容:C:\WINDOWS\system32\drivers\sfhlp01.sys]

[编号:91]
[名称:Terminal Services]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:92]
[名称:SecuROM User Access Service (V7)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\UAService7.exe]

[编号:93]
[名称:WmNdisDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmndisdrv.sys]

[编号:94]
[名称:Filseclab Packet Filter]
[类型:服务:Filseclab Personal Firewall Copyright (C) 2002-2005 Filseclab Corp]
[内容:C:\WINDOWS\system32\xpacket.sys]

[编号:95]
[分隔符:---------------------------------------------------------------------]

[编号:96]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:about:blank]

[编号:97]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:98]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:about:blank]

[编号:99]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:100]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/windows/ie_intl/cn/start/]

[编号:101]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:102]
[分隔符:---------------------------------------------------------------------]

[编号:103]
[名称:使用迅雷下载]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:104]
[名称:添加到QQ自定义面板]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:105]
[名称:用QQ彩信发送该图片]
[类型:IE 右键按钮]
[内容: 路径:]

[编号:106]
[分隔符:---------------------------------------------------------------------]

[编号:107]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:108]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:109]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\webcheck.dll]

[编号:110]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\system32\stobject.dll]

[编号:111]
[分隔符:---------------------------------------------------------------------]

[编号:112]
[名称:]
[类型:EXE关联]
[内容:"%1" %*]

[编号:113]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\System32\NOTEPAD.EXE %1]

[编号:114]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:115]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:116]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:117]
[名称:]
[类型:HTTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:118]
[名称:]
[类型:FTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" %1]

[编号:119]
[分隔符:---------------------------------------------------------------------]

[编号:120]
[名称:c:\windows\system32\deskpan.dll]
[类型:第三方 COM/ActiveX组件]
[内容:显示摇曳 CPL 扩展---发布公司:未知]

[编号:121]
[名称:c:\windows\system32\recncl.dll]
[类型:第三方 COM/ActiveX组件]
[内容:Reconciliation interface ProxyStub Factory---发布公司:未知]

[编号:122]
[名称:c:\windows\system32\audio3d.dll]
[类型:第三方 COM/ActiveX组件]
[内容:Audio3DObject---发布公司:Sensaura ? Copyright 1997-2003  Sensaura Ltd]

[编号:123]
[名称:c:\windows\system32\rtlcpapi.dll]
[类型:第三方 COM/ActiveX组件]
[内容:RtlCP Class---发布公司:RtlCPAPI Module Copyright 1997]

--------------------感谢您关注我的软件---------------------
网站: http://www.wjfsoft.com  产品:完美卸载V2006