Windows XP: XP Home Telnet?
XP Home Telnet?
by robtcmarshall - 4/18/09 2:47 PMI had to have a computer security scan on my PC, as I use it for a web-based business with credit card processing. The scan came back "FAIL" due to its finding Telnet on port tcp/23, and telnet is not allowed. The problem is, I'm running XP Home edition (SP3), and XP Home doesn't offer telnet as a service. (I spent about an hour trying to figure out why I couldn't find telnet in the list of services before I found that out--via CNET!)
My question--I have to kill telnet or the credit card companies will not allow me to process. But I can't kill it because I can't find it.
Any suggestions?
Thanks very much.
To kill it we have to find it first.
by R. Proffitt
- 4/18/09 4:11 PM
In reply to: XP Home Telnet? by robtcmarshall
http://www.bytefusion.com/products/tp/bftelnet/whatisbftelnet.htm is just one of a few thousand softwares that could be installed.
To get to the bottom of this post your HIJACKTHIS log here and I'll see if I can find it.
bob
I bet it's the SQL item.
by R. Proffitt - 4/20/09 9:30 AM
In reply to: XP Home Telnet? by robtcmarshall
Below is your pared down HJT log file. But here's an article about telneting to a SQL server -> http://www.google.com/search?hl=en&q=telnet+to+sql+server+2005
So that's it from what I can tell.
Bob
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:05:26 AM, on 4/20/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\Drivers\bwcsrv.exe
C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
C:\UPS\WSTD\MSSQL$UPSWSDBSERVER\Binn\sqlservr.exe
C:\UPS\WSTD\UPSNA1Msgr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\Trustwave\Agent\tkstatus.exe
C:\UPS\WSTD\WSTDMessaging.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Windows Explorer.lnk = C:\WINDOWS\explorer.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://www.msi.com.tw
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1178989874343
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1180564848125
O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
O23 - Service: Portrait Displays Display Tune Service (DTSRVC) - Unknown owner - C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: TrustKeeper Agent (tkagent) - Unknown owner - C:\Program Files\Trustwave\Agent\tkagent.exe
Thanks!
by robtcmarshall - 4/20/09 1:02 PM In reply to: I bet it's the SQL item. by R. Proffitt
I'll disable all the SQL servers and run the scan again.
I appreciate your help.
Robert
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
