我的机子重要文件染毒了使整个XP不稳定,我想修复那文件但一修复就会自动重新开机有什么办法啊
检测日期: 2006-9-15 17:29
Windows: Microsoft Windows XP
ServicePack: Service Pack 2
Update: 2600.xpsp_sp2_rtm.040803-2158
Internet Explorer: 6.0.2900.2180
-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:空连接检查安全!
服务名称 是否运行 描述
RemoteRegistry [运行中] [说明:这个服务可能被利用远程操作注册表]
Windows Time [运行中] [说明:这个服务可能被黑客利用来启动木马]
Telnet [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server [运行中] [说明:如果你的电脑不用局域网中,可以关闭
-----------------------计算机网络端口----------------------
协议 端口号 端口类型
TCP 445 Microsoft-DS
TCP 139 微软Netbios Name服务(用于文件及打印机共享)
TCP 445 公共Internet文件系统(CIFS)
TCP 123 未知类型
TCP 1025 Maverick's Matrix 1.2 - 2.0
TCP 123 未知类型
TCP 137 未知类型
TCP 138 未知类型
--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]
[编号:1]
[名称:\??\C:\WINDOWS\system32\csrss.exe]
[类型:运行进程]
[内容:未知]
[编号:2]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]
[编号:3]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:4]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:5]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:6]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:7]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:8]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:9]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:10]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:11]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:12]
[名称:C:\WINDOWS\system32\Call.exe]
[类型:运行进程]
[内容:未知]
[编号:13]
[名称:C:\WINDOWS\system32\conime.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:14]
[名称:C:\Program Files\Common Files\Real\Update_OB\realsched.exe]
[类型:运行进程]
[内容:RealPlayer (32-bit) Copyright ? RealNetworks, Inc. 1995-2004]
[编号:15]
[名称:C:\Herosoft\HeroV8\SYSEXPLR.EXE]
[类型:运行进程]
[内容:未知]
[编号:16]
[名称:C:\Program Files\Rising\Rav\RavTask.exe]
[类型:运行进程]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]
[编号:17]
[名称:C:\WINDOWS\command\rundll32.exe]
[类型:运行进程]
[内容:未知]
[编号:18]
[名称:C:\WINDOWS\Intel\rundll32.exe]
[类型:运行进程]
[内容:未知]
[编号:19]
[名称:C:\WINDOWS\LSASS.exe]
[类型:运行进程]
[内容:C6MN (null)]
[编号:20]
[名称:C:\WINDOWS\system32\agetltfets.exe]
[类型:运行进程]
[内容: ]
[编号:21]
[名称:D:\完美卸载V2006\WmNetPro.exe]
[类型:运行进程]
[内容:NetSecurity 应用程序 版权所有 (C) 2005 王剑锋]
[编号:22]
[名称:C:\WINDOWS\system32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:23]
[名称:C:\WINDOWS\system32\wdfmgr.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:24]
[名称:C:\WINDOWS\System32\alg.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:25]
[名称:D:\完美卸载V2006\MainCon.exe]
[类型:运行进程]
[内容:MainCon 应用程序 版权所有 (C) 2004]
[编号:26]
[名称:D:\完美卸载V2006\TrCleaner.exe]
[类型:运行进程]
[内容:TrCleaner 应用程序 版权所有 (C) 2004]
[编号:27]
[名称:D:\完美卸载V2006\Memory Booster.exe]
[类型:运行进程]
[内容:Memory Booster Copyright (C) 2003]
[编号:28]
[名称:C:\WINDOWS\system32\NtBackup.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:29]
[名称:C:\WINDOWS\system32\rsmsink.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows Whistler(R) Operating System Copyright (C) 2000 Microsoft Corporation]
[编号:30]
[名称:D:\完美卸载V2006\SysSec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]
[编号:31]
[分隔符:---------------------------------------------------------------------]
[编号:32]
[名称:C:\WINDOWS\system32\ztdll.dll]
[类型:已加载DLL]
[内容:未知]
[编号:33]
[名称:C:\WINDOWS\system32\tdll.dll]
[类型:已加载DLL]
[内容:未知]
[编号:34]
[名称:C:\WINDOWS\system32\RChook.dll]
[类型:已加载DLL]
[内容:未知]
[编号:35]
[名称:D:\完美卸载V2006\WmSpiDrv.dll]
[类型:已加载DLL]
[内容:未知]
[编号:36]
[名称:C:\Program Files\WinRAR\rarext.dll]
[类型:已加载DLL]
[内容:未知]
[编号:37]
[名称:C:\WINDOWS\system32\RavExt.dll]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]
[编号:38]
[名称:C:\Herosoft\HeroV8\HttpReq.dll]
[类型:已加载DLL]
[内容:未知]
[编号:39]
[名称:C:\Herosoft\HeroV8\CoolMenu.dll]
[类型:已加载DLL]
[内容:未知]
[编号:40]
[名称:C:\Herosoft\HeroV8\httphlp.dll]
[类型:已加载DLL]
[内容:未知]
[编号:41]
[名称:C:\Herosoft\HeroV8\AVCDROM.dll]
[类型:已加载DLL]
[内容:未知]
[编号:42]
[名称:C:\Herosoft\HeroV8\Sys936.DLL]
[类型:已加载DLL]
[内容:未知]
[编号:43]
[名称:C:\Program Files\Rising\Rav\RSCOMMON.DLL]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]
[编号:44]
[名称:C:\Program Files\Rising\Rav\RSAPPMGR.DLL]
[类型:已加载DLL]
[内容:Rising AntiVirus 2006 Copyright ? 2004 - 2005]
[编号:45]
[名称:C:\Program Files\Rising\Rav\CfgDll.dll]
[类型:已加载DLL]
[内容:Rising AntiVirus 2006 Copyright ? 2004 - 2006]
[编号:46]
[名称:C:\Program Files\Rising\Rav\RsCommX.dll]
[类型:已加载DLL]
[内容:rising RsCommX Copyright ? 2002]
[编号:47]
[名称:D:\完美卸载V2006\ScanEngine.dll]
[类型:已加载DLL]
[内容:ScanEngine 完美病毒引擎文件 版权所有 (C) 2005]
[编号:48]
[分隔符:---------------------------------------------------------------------]
[编号:49]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]
[编号:50]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC]
[编号:51]
[名称:PHIME2002A]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName]
[编号:52]
[名称:TkBellExe]
[类型:开机启动]
[内容:"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot]
[编号:53]
[名称:SysExplr]
[类型:开机启动]
[内容:C:\Herosoft\HeroV8\SYSEXPLR.EXE]
[编号:54]
[名称:RavTask]
[类型:开机启动]
[内容:"C:\Program Files\Rising\Rav\RavTask.exe" -system]
[编号:55]
[名称:Tray]
[类型:开机启动]
[内容:C:\WINDOWS\command\rundll32.exe]
[编号:56]
[名称:zt]
[类型:开机启动]
[内容:C:\WINDOWS\Intel\rundll32.exe]
[编号:57]
[名称:ToP]
[类型:开机启动]
[内容:C:\WINDOWS\LSASS.exe]
[编号:58]
[名称:RavUpsr]
[类型:开机启动]
[内容:C:\WINDOWS\system32\agetltfets.exe]
[编号:59]
[名称:SkyDune]
[类型:开机启动]
[内容:D:\完美卸载V2006\WmNetPro.exe -Poweron]
[编号:60]
[分隔符:---------------------------------------------------------------------]
[编号:61]
[名称:Intel(r) 82801 Audio Driver Install Service (WDM)]
[类型:服务:Intel(r) Integrated Controller Hub Audio Driver Copyright (C) Intel Corporation 1998-2001]
[内容:C:\WINDOWS\system32\drivers\ac97intc.sys]
[编号:62]
[名称:AFD]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]
[编号:63]
[名称:Rising TDI Base Driver]
[类型:服务:Rising PFW Copyright(c) 1998-2006 Beijing Rising Technology Corporation Limited]
[内容:C:\WINDOWS\system32\drivers\basetdi.sys]
[编号:64]
[名称:DCOM Server Process Launcher]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]
[编号:65]
[名称:ExpScaner]
[类型:服务:ExpScan.sys Copyright (C) 2004 Rising]
[内容:c:\program files\rising\rav\expscan.sys]
[编号:66]
[名称:HookCont]
[类型:服务:TDIHOOK Driver for Windows NT Copyright ]
[内容:c:\program files\rising\rav\hookcont.sys]
[编号:67]
[名称:HookReg]
[类型:服务: 版权所有 (@) 2003]
[内容:c:\program files\rising\rav\hookreg.sys]
[编号:68]
[名称:HookSys]
[类型:服务:Hooksys Copyright (C) 2004]
[内容:c:\program files\rising\rav\hooksys.sys]
[编号:69]
[名称:MEMSCAN]
[类型:服务:MemScan Drivers for Windows NT Copyright (C) RFW Corp. 2000-2002]
[内容:c:\program files\rising\rav\memscan.sys]
[编号:70]
[名称:NPPTNT2]
[类型:服务:nProtect NPSC Kernel Mode Driver for NT Copyright ? 2000-2005 INCA Internet]
[内容:c:\windows\system32\npptnt2.sys]
