ID do artigo: 837243 - �ltima revis�o: segunda-feira, 30 de outubro de 2006 - Revis�o: 6.2

Disponibilidade e descri��o da ferramenta Port Reporter

Clique aqui para exibir o artigo traduzido e o artigo original em ingl�s, lado a lado.

Exibir Aviso de Isen��o de Tradu��o Autom�tica

Exibir os produtos aos quais esse artigo se aplica.

Dica do SistemaEste artigo aplica-se a um sistema operativo diferente do que est� a utilizar. Foi desactivado o conte�do do artigo, que pode n�o ser relevante para si.

Este artigo descreve a ferramenta Port Reporter. A ferramenta Port Reporter � executado como um servi�o em computadores que executam o Windows Server 2003, Windows XP e Windows 2000. A ferramenta registra atividades das portas TCP e UDP. Este artigo cont�m informa��es sobre como obter e instalar a ferramenta. Quando voc� instala a ferramenta, o programa de instala��o cria as entradas de registro apropriadas e instala o servi�o Port Reporter.

Este artigo tamb�m cont�m informa��es sobre como usar par�metros de inicializa��o para configurar o servi�o Port Reporter e informa��es sobre os arquivos de log Port Reporter que s�o gerados pelo servi�o Port Reporter.

Voltar para o in�cio

INTRODU��O

Este artigo cont�m informa��es sobre como obter, instalar e configurar a ferramenta Port Reporter. A ferramenta Port Reporter � uma ferramenta que voc� pode usar para registrar dados de porta TCP/IP em computadores que est�o executando o Microsoft Windows Server 2003, Microsoft Windows XP ou Microsoft Windows 2000.

Voltar para o in�cio

Vis�o geral

A ferramenta Port Reporter registra atividades das portas TCP e UDP. A ferramenta � um pequeno programa que � executado como um servi�o em um computador que est� executando o Windows Server 2003, Windows XP ou Windows 2000.

Em Windows Server 2003 e em computadores baseados no Windows XP, o servi�o pode registrar as seguintes informa��es:

As portas que s�o usadas
Os processos que usam a porta
Se um processo � um servi�o
M�dulos carregados por um processo
As contas de usu�rio que executaram um processo

Em computadores com Windows 2000, o servi�o registra quais portas que s�o usadas e quando as portas s�o usadas.

Voc� pode usar as informa��es que est�o conectadas por the Port Reporter tool para ajudar a controlar o uso da porta e solucionar certos problemas. As informa��es que est�o conectadas por the Port Reporter tool tamb�m podem ser �til para fins de seguran�a.

Voltar para o in�cio

Obter a ferramenta Port Reporter

A ferramenta Port Reporter est� dispon�vel neste link no Centro de download da Microsoft:

http://www.microsoft.com/downloads/details.aspx?familyid=69ba779b-bae9-4243-b9d6-63e62b4bcd2e&displaylang=en (http://www.microsoft.com/downloads/details.aspx?familyid=69ba779b-bae9-4243-b9d6-63e62b4bcd2e&displaylang=en)

importante A ferramenta Port Reporter Parser � um analisador de log para arquivos de log Port Reporter. Essa ferramenta agora est� dispon�vel para download. Porta Reporter Parser possui muitos recursos que podem ajudar voc� a analisar arquivos de log de verifica��o de portas. Voc� pode baixar a ferramenta Port Reporter Parser no seguinte site da Microsoft na web:
http://download.microsoft.com/download/2/8/8/28810043-0e21-4004-89a3-2f477a74186f/PRParser.exe (http://download.microsoft.com/download/2/8/8/28810043-0e21-4004-89a3-2f477a74186f/prparser.exe)

Voltar para o in�cio

Instalar o servi�o Port Reporter

Quando voc� executar o programa de instala��o (PR-Setup.exe) para instalar Port verifica��o, o programa de instala��o executa as seguintes opera��es:

Adiciona a seguinte subchave do registro no registro do Windows:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\PortReporter
O servi�o Port Reporter requer essa chave do Registro para entradas de log no log de eventos do aplicativo no computador.
Instala o servi�o Port Reporter.

A instala��o do programa cria um objeto de servi�o para a ferramenta Port Reporter e adiciona o objeto no banco de dados Gerenciador de controle de servi�os.

Instalar o servi�o Port Reporter para o local padr�o

Por padr�o, o servi�o Port Reporter � instalado na seguinte pasta no disco r�gido:

drive: \Program Files\PortReporter

Para instalar o servi�o Port Reporter para o local padr�o:

Fazer logon no computador como um membro do grupo de administradores locais.
Feche todos os programas em execu��o no computador, incluindo a ferramenta Servi�os e Visualizar eventos em Ferramentas administrativas.
Duas vezes em Setup.exe Pr para executar a instala��o do programa.
Quando voc� for solicitado a instalar a ferramenta Port Reporter para a pasta arquivos de programas, pressione Y.

Ap�s voc� pressionar S, a instala��o do programa cria uma subpasta chamada PortReporter na pasta Program Files. Portreporter.exe � copiada para a subpasta e est� registrado como um servi�o no Gerenciador de controle servi�os.

Instalar o servi�o Port Reporter para um local diferente que n�o seja o local padr�o

Para instalar o servi�o Port Reporter em um local diferente do local padr�o:

Fazer logon no computador como um membro do grupo de administradores locais.
Feche todos os programas em execu��o no computador, incluindo a ferramenta Servi�os e Visualizar eventos em Ferramentas administrativas.
Copie o arquivo setup.exe Pr e o arquivo Portreporter.exe para a pasta onde voc� deseja instalar a ferramenta Port Reporter.

Observa��o Voc� precisa executar o programa de instala��o de uma unidade fixa, local. N�o � poss�vel executar o programa de instala��o de uma unidade de rede ou em uma unidade de CD-ROM.

No prompt de comando, digite a seguinte linha e pressione ENTER, onde PathOfFolder � a unidade e o caminho da pasta que cont�m o arquivo setup.exe Pr e o Portreporter.exe arquivo:

setup.exe pr-d ' PathOfFolder '

Por exemplo, para instalar a ferramenta de verifica��o D:\Tools\Port pasta, digite

pr setup.exe tracert ? d ? d:\tools\port reporter\ ?

Receber sa�da similar � seguinte na janela prompt de comando:

C:\temp>pr-setup.exe -d 'PathOfFolder'

Installing Port Reporter service: PathOfFolder

Creating service...completed successfully

Creating registry key and values...completed successfully

Setup has successfully installed the Port Reporter service
The service is currently stopped and set to manual startup type

Please use the services applet in the control panel to configure
and start the Port Reporter service


press any key to exit setup

Pressione qualquer tecla para sair do programa de instala��o.

Configurar e iniciar o servi�o Port Reporter

Para verificar se o servi�o Port Reporter instalado com �xito e para iniciar o servi�o, execute estas etapas:

Clique em Iniciar , clique com o bot�o direito em Meu computador e em seguida, clique em Gerenciar .
Expanda Servi�os e aplicativos e, em seguida, expanda servi�os .
No painel direito, verifique se o servi�o Port Reporter est� listado.
Para iniciar o servi�o, clique duas vezes no nome do servi�o e, em seguida, clique para selecionar o bot�o Iniciar . Clique em OK .

O servi�o Port Reporter criar� uma entrada de log no log do aplicativo indica que � iniciado.

Por padr�o, o tipo de inicializa��o do servi�o Port Reporter � configurado para usar a configura��o manual . Se desejar que o servi�o para iniciar automaticamente quando o Windows for iniciado, defina o tipo de inicializa��o para usar a configura��o autom�tica .

Por padr�o, o Port Reporter servi�o usa a conta sistema local para fazer logon no computador. Usando a conta sistema local, o servi�o Port Reporter pode obter detalhes sobre processos que a conta de administrador ou outras contas de usu�rio n�o t�m acesso a. Por isso, a Microsoft recomenda que voc� n�o modifique esta configura��o.

Observa��o Como esse servi�o � executado no contexto do sistema local conta, a Microsoft recomenda que voc� proteja a pasta onde o Port Reporter est� instalado. Se voc� instalar o Port Reporter no seu local padr�o (%SystemDrive%\Program Files\PortReporter) ou em um local personalizado, voc� deve tomar essas etapas:

Instala��o Port Reporter somente em uma parti��o de sistema de arquivo NTFS
Ajuste a lista de controle de acesso (ACLs) na pasta de instala��o para que apenas o grupo Administradores local tenha acesso para a pasta. Para fazer isso, execute as seguintes etapas:
1. Inicie o Windows Explorer e localize a pasta de instala��o. Por padr�o, ele � %SystemDrive%\Program Files\PortReporter.
2. Clique com o bot�o direito do mouse na pasta e, em seguida, clique em Propriedades .
3. Na caixa de di�logo Propriedades da pasta, clique na guia seguran�a e, em seguida, inspecionar os nomes de grupo e usu�rio que t�m acesso � pasta. Somente o grupo Administradores local e o sistema de conta deve ter acesso a esta pasta
4. Selecione outros grupos e usu�rios que est�o listados e, em seguida, clique em Remover . Quando a lista cont�m apenas o grupo Administradores local e a conta do sistema, clique em Aplicar e, em seguida, clique em OK .

Local dos arquivos de log

Por padr�o, a ferramenta Port Reporter tenta criar os arquivos de log na seguinte pasta:

%systemroot%\System32\LogFiles\PortReporter

Se esta pasta j� n�o existir, a pasta � criada para voc�. Voc� pode configurar o local dos arquivos de log usando o par�metro inicial especificado na guia Geral da caixa de di�logo de servi�o Port Reporter . Para especificar a pasta de arquivo de log, use o -ld op��o de linha de comando seguido do nome da pasta que voc� deseja usar. Certifique-se de que voc� colocar o nome da pasta entre aspas simples ('). Por exemplo, se voc� especificar o seguinte par�metro de in�cio, o servi�o Port Reporter cria arquivos de log na pasta C:\Program Files\Port verifica��o quando o servi�o Port Reporter � iniciado:

-ld ? c:\Arquivos files\port reporter ?

Tamanho dos arquivos de log

Por padr�o, o servi�o Port Reporter continua a gravar os arquivos de log at� que os arquivos de log alcan�ar 5 megabytes (MB). Depois que os arquivos de log alcan�arem 5 MB, um novo arquivo de log � criado. Para configurar o tamanho dos arquivos de log, use o -ls op��o de linha de comando. Voc� pode especificar um tamanho entre kilobytes (KB) 1000 e 102400 KB. Por exemplo, se voc� especificar o seguinte par�metro de in�cio, o servi�o Port Reporter cria um novo arquivo de log sempre que os arquivos de log alcan�ar 7000 KB:

ls - 7000

Depois de configurar o servi�o Port Reporter com os par�metros in�cio que voc� deseja, inicie o servi�o. Quando o servi�o Port Reporter � iniciado, os seguintes dois eventos s�o registrados no log de eventos do aplicativo:

Tipo: informa��es
Fonte: PortReporter
Categoria: nenhum
IDENTIFICA��O de evento: 100
Descri��o:
Port Reporter servi�o foi iniciado.

Tipo: informa��es
Fonte: PortReporter
Categoria: nenhum
IDENTIFICA��O de evento: 100
Descri��o:
Os arquivos de log Port Reporter do servi�o criado com �xito no seguinte diret�rio: PathOfLogFiles

Remover o servi�o Port Reporter

Para remover o servi�o Port Reporter, digite a seguinte linha no prompt de comando e, em seguida, pressione ENTER:

setup.exe pr-u

Receber sa�da similar � seguinte na janela prompt de comando:

Uninstalling Port Reporter service...

Deleting service...
   Stopping service...completed successfully

   Removing service...completed successfully

Deleting service...completed successfully

Deleting registry key and values...completed successfully


Setup successfully uninstalled the Port Reporter Service
The installation directory has been left intact


press any key to exit setup

Quando remover o servi�o Port Reporter, a instala��o do programa executa as seguintes opera��es:

O servi�o Port Reporter do banco de dados do servi�o Gerenciador de controle de cancela o registro.
Exclui as entradas do registro que foram criadas quando voc� instalou o servi�o Port Reporter.

Quando voc� remover o servi�o Port Reporter, o programa de instala��o n�o remove a pasta que cont�m o arquivo setup.exe Pr e o arquivo PortReporter.exe nem faz o programa de instala��o remover quaisquer arquivos de log que foram criados pelo servi�o.

Interpretar arquivos de log de verifica��o de portas

O servi�o Port Reporter cria os arquivos de log nas seguintes circunst�ncias:

Toda vez que o servi�o Port Reporter for iniciado
� meia-noite cada dia.
Quando o arquivo de log atinge 5 MB ou quando o arquivo de log alcan�a o tamanho personalizado especificado no par�metro in�cio.

Quando o servi�o Port Reporter � iniciado, os seguintes arquivos de log s�o criados:

PR-inicial-*.log
PR-PORTS-*.log
PR-PIDS-*.log

O nome de cada arquivo de log usa a data e a hora (no formato de 24 horas) quando o arquivo foi criado. O formato do carimbo de data e hora � year-month-day-hour-minute-second. Por exemplo, os seguintes tr�s arquivos foram criados 24 de janeiro de 2004, no 8:49:30 A.M.:

PR-INITIAL-04-01-24-8-49-30.log
PR-PORTS-04-01-24-8-49-30.log
PR-PIDS-04-01-24-8-49-30.log

O arquivo de log inicial de RP

O arquivo de log inicial de RP cont�m dados que processa o Port Reporter servi�o coleta sobre as portas, e m�dulos que s�o executados no computador quando o servi�o Port Reporter � iniciado. Tamb�m � registrado o contexto de usu�rio que cada processo est� sendo executado. Este � um exemplo do conte�do de um arquivo de log PR inicial em um computador baseado no Windows XP que foi criado quando o servi�o Port Reporter iniciado:

Port Reporter Version 1.0 Log File

Service initialization log

System Date: <Date and Time>


Local computer name:

 <ComputerName>

TCP/UDP Port to Process Mappings at service start-up

36 mappings found

PID:Process		Port		Local IP	State		 Remote IP:Port
0:System Idle		TCP 4857  	169.254.66.8 	TIME WAIT	 169.254.44.123:80
4:System		TCP 445  	0.0.0.0 	LISTENING	 0.0.0.0:6246
4:System		TCP 1026  	0.0.0.0 	LISTENING	 0.0.0.0:28726
4:System		TCP 139  	169.254.66.8 	LISTENING	 0.0.0.0:34925
4:System		UDP 445  	0.0.0.0 			 *:*
4:System		UDP 137  	169.254.66.8 			 *:*
4:System		UDP 138  	169.254.66.8 			 *:*
664:iexplore.exe	TCP 4867  	0.0.0.0 	LISTENING	 0.0.0.0:4225
664:iexplore.exe	TCP 4870  	0.0.0.0 	LISTENING	 0.0.0.0:45070
664:iexplore.exe	TCP 4871  	0.0.0.0 	LISTENING	 0.0.0.0:18494
664:iexplore.exe	TCP 4872  	0.0.0.0 	LISTENING	 0.0.0.0:6182
664:iexplore.exe	TCP 4867  	169.254.66.8 	ESTABLISHED	 169.254.44.123:80
664:iexplore.exe	TCP 4870  	169.254.66.8 	ESTABLISHED	 207.68.177.62:80
664:iexplore.exe	TCP 4871  	169.254.66.8 	ESTABLISHED	 207.46.248.110:80
664:iexplore.exe	TCP 4872  	169.254.66.8 	ESTABLISHED	 207.46.248.110:80
664:iexplore.exe	UDP 4817  	127.0.0.1 			 *:*
748:lsass.exe		UDP 500  	0.0.0.0 			 *:*
952:svchost.exe	TCP 135  	0.0.0.0 	LISTENING	 0.0.0.0:2096
1092:svchost.exe	TCP 1025  	0.0.0.0 	LISTENING	 0.0.0.0:2064
1092:svchost.exe	TCP 3002  	127.0.0.1 	LISTENING	 0.0.0.0:49193
1092:svchost.exe	TCP 3003  	127.0.0.1 	LISTENING	 0.0.0.0:39078
1092:svchost.exe	UDP 123  	169.254.66.8 			 *:*
1092:svchost.exe	UDP 123  	127.0.0.1 			 *:*
1192:svchost.exe	UDP 3009  	0.0.0.0 			 *:*
1192:svchost.exe	UDP 3015  	0.0.0.0 			 *:*
1192:svchost.exe	UDP 3016  	0.0.0.0 			 *:*
1228:svchost.exe	TCP 5000  	0.0.0.0 	LISTENING	 0.0.0.0:45223
1228:svchost.exe	UDP 1900  	169.254.66.8 			 *:*
1228:svchost.exe	UDP 1900  	127.0.0.1 			 *:*
1536:alg.exe		TCP 3001  	127.0.0.1 	LISTENING	 0.0.0.0:2064
1568:InoRpc.exe	TCP 42510  	0.0.0.0 	LISTENING	 0.0.0.0:14373
1568:InoRpc.exe	UDP 43508  	169.254.66.8 			 *:*
3764:msmsgs.exe	TCP 16521  	169.254.66.8 	LISTENING	 0.0.0.0:45294
3764:msmsgs.exe	UDP 4803  	0.0.0.0 			 *:*
3764:msmsgs.exe	UDP 9160  	169.254.66.8 			 *:*
3764:msmsgs.exe	UDP 9586  	169.254.66.8 			 *:*
=======================

======================================================

Process ID: 4 (System)

System Process

PID	Port		Local IP	State		 Remote IP:Port
4	TCP 445  	0.0.0.0 	LISTENING	 0.0.0.0:6246
4	TCP 1026  	0.0.0.0 	LISTENING	 0.0.0.0:28726
4	TCP 139  	169.254.66.8 	LISTENING	 0.0.0.0:34925
4	UDP 445  	0.0.0.0 			 *:*
4	UDP 137  	169.254.66.8 			 *:*
4	UDP 138  	169.254.66.8 			 *:*

Port Statistics

TCP mappings: 3
UDP mappings: 3

TCP ports in a LISTENING state: 	3 = 100.00%


Could not access module information for this process

======================================================

Process ID: 748 (lsass.exe)

User context: NT AUTHORITY\SYSTEM

Service Name: PolicyAgent
Display Name: IPSEC Services
Service Type: shares a process with other services

Service Name: ProtectedStorage
Display Name: Protected Storage

Service Name: SamSs
Display Name: Security Accounts Manager
Service Type: shares a process with other services

PID	Port		Local IP	State		 Remote IP:Port
748	UDP 500  	0.0.0.0 			 *:*

Port Statistics

TCP mappings: 0
UDP mappings: 1


Loaded modules:
D:\WINDOWS\system32\lsass.exe (0x01000000)

D:\WINDOWS\System32\ntdll.dll (0x77F50000)
D:\WINDOWS\system32\kernel32.dll (0x77E60000)
D:\WINDOWS\system32\ADVAPI32.dll (0x77DD0000)
D:\WINDOWS\system32\RPCRT4.dll (0x78000000)
D:\WINDOWS\system32\LSASRV.dll (0x74520000)
D:\WINDOWS\system32\msvcrt.dll (0x77C10000)
D:\WINDOWS\system32\Secur32.dll (0x76F90000)
D:\WINDOWS\system32\USER32.dll (0x77D40000)
D:\WINDOWS\system32\GDI32.dll (0x77C70000)
D:\WINDOWS\system32\SAMSRV.dll (0x74440000)
D:\WINDOWS\system32\cryptdll.dll (0x76790000)
D:\WINDOWS\system32\DNSAPI.dll (0x76F20000)
D:\WINDOWS\system32\WS2_32.dll (0x71AB0000)
D:\WINDOWS\system32\WS2HELP.dll (0x71AA0000)
D:\WINDOWS\system32\MSASN1.dll (0x762A0000)
D:\WINDOWS\system32\NETAPI32.dll (0x71C20000)
D:\WINDOWS\system32\SAMLIB.dll (0x71BF0000)
D:\WINDOWS\system32\MPR.dll (0x71B20000)
D:\WINDOWS\system32\NTDSAPI.dll (0x767A0000)
D:\WINDOWS\system32\WLDAP32.dll (0x76F60000)
D:\WINDOWS\system32\msprivs.dll (0x743B0000)
D:\WINDOWS\system32\kerberos.dll (0x71CF0000)
D:\WINDOWS\system32\msv1_0.dll (0x76D10000)
D:\WINDOWS\system32\netlogon.dll (0x744B0000)
D:\WINDOWS\system32\w32time.dll (0x767C0000)
D:\WINDOWS\system32\MSVCP60.dll (0x55900000)
D:\WINDOWS\system32\iphlpapi.dll (0x76D60000)
D:\WINDOWS\system32\USERENV.dll (0x75A70000)
D:\WINDOWS\system32\schannel.dll (0x767F0000)
D:\WINDOWS\system32\CRYPT32.dll (0x762C0000)
D:\WINDOWS\system32\wdigest.dll (0x74380000)
D:\WINDOWS\System32\rsaenh.dll (0x0FFD0000)
D:\WINDOWS\system32\setupapi.dll (0x76670000)
D:\WINDOWS\system32\scecli.dll (0x74410000)
D:\WINDOWS\system32\OLEAUT32.dll (0x77120000)
D:\WINDOWS\system32\OLE32.DLL (0x771B0000)
D:\WINDOWS\system32\shell32.dll (0x773D0000)
D:\WINDOWS\system32\SHLWAPI.dll (0x70A70000)
D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll (0x71950000)
D:\WINDOWS\system32\comctl32.dll (0x77340000)
D:\WINDOWS\system32\ipsecsvc.dll (0x743E0000)
D:\WINDOWS\system32\oakley.DLL (0x745D0000)
D:\WINDOWS\system32\WINIPSEC.DLL (0x74370000)
D:\WINDOWS\system32\mswsock.dll (0x71A50000)
D:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
D:\WINDOWS\system32\pstorsvc.dll (0x743A0000)
D:\WINDOWS\system32\psbase.dll (0x743C0000)
D:\WINDOWS\System32\dssenh.dll (0x0FFA0000)
======================================================

Process ID: 952 (svchost.exe)

User context: NT AUTHORITY\SYSTEM

Service Name: RpcSs
Display Name: Remote Procedure Call (RPC)
Service Type: shares a process with other services

PID	Port		Local IP	State		 Remote IP:Port
952	TCP 135  	0.0.0.0 	LISTENING	 0.0.0.0:2096

Port Statistics

TCP mappings: 1
UDP mappings: 0

TCP ports in a LISTENING state: 	1 = 100.00%

Loaded modules:
D:\WINDOWS\system32\svchost.exe (0x01000000)

D:\WINDOWS\System32\ntdll.dll (0x77F50000)
D:\WINDOWS\system32\kernel32.dll (0x77E60000)
D:\WINDOWS\system32\ADVAPI32.dll (0x77DD0000)
D:\WINDOWS\system32\RPCRT4.dll (0x78000000)
d:\windows\system32\rpcss.dll (0x75850000)
D:\WINDOWS\system32\msvcrt.dll (0x77C10000)
d:\windows\system32\WS2_32.dll (0x71AB0000)
d:\windows\system32\WS2HELP.dll (0x71AA0000)
D:\WINDOWS\system32\USER32.dll (0x77D40000)
D:\WINDOWS\system32\GDI32.dll (0x77C70000)
d:\windows\system32\Secur32.dll (0x76F90000)
D:\WINDOWS\system32\userenv.dll (0x75A70000)
D:\WINDOWS\system32\mswsock.dll (0x71A50000)
D:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
D:\WINDOWS\system32\DNSAPI.dll (0x76F20000)
D:\WINDOWS\system32\iphlpapi.dll (0x76D60000)
D:\WINDOWS\System32\winrnr.dll (0x76FB0000)
D:\WINDOWS\system32\WLDAP32.dll (0x76F60000)
D:\WINDOWS\system32\rasadhlp.dll (0x76FC0000)
D:\WINDOWS\system32\CLBCATQ.DLL (0x76FD0000)
D:\WINDOWS\system32\ole32.dll (0x771B0000)
D:\WINDOWS\system32\OLEAUT32.dll (0x77120000)
D:\WINDOWS\system32\COMRes.dll (0x77050000)
D:\WINDOWS\system32\VERSION.dll (0x77C00000)
======================================================

Process ID: 1092 (svchost.exe)

User context: NT AUTHORITY\SYSTEM

Service Name: AudioSrv
Display Name: Windows Audio
Service Type: shares a process with other services

Service Name: BITS
Display Name: Background Intelligent Transfer Service
Service Type: shares a process with other services

Service Name: CryptSvc
Display Name: Cryptographic Services
Service Type: shares a process with other services

Service Name: Dhcp
Display Name: DHCP Client
Service Type: shares a process with other services

Service Name: dmserver
Display Name: Logical Disk Manager
Service Type: shares a process with other services

Service Name: ERSvc
Display Name: Error Reporting Service
Service Type: shares a process with other services

Service Name: EventSystem
Display Name: COM+ Event System
Service Type: shares a process with other services

Service Name: helpsvc
Display Name: Help and Support
Service Type: shares a process with other services

Service Name: lanmanserver
Display Name: Server
Service Type: shares a process with other services

Service Name: lanmanworkstation
Display Name: Workstation
Service Type: shares a process with other services

Service Name: Messenger
Display Name: Messenger
Service Type: shares a process with other services

Service Name: Netman
Display Name: Network Connections

Service Name: Nla
Display Name: Network Location Awareness (NLA)
Service Type: shares a process with other services

Service Name: RasMan
Display Name: Remote Access Connection Manager
Service Type: shares a process with other services

Service Name: Schedule
Display Name: Task Scheduler

Service Name: seclogon
Display Name: Secondary Logon

Service Name: SENS
Display Name: System Event Notification
Service Type: shares a process with other services

Service Name: SharedAccess
Display Name: Internet Connection Firewall (ICF) / Internet Connection Sharing (ICS)
Service Type: shares a process with other services

Service Name: ShellHWDetection
Display Name: Shell Hardware Detection
Service Type: shares a process with other services

Service Name: srservice
Display Name: System Restore Service
Service Type: shares a process with other services

Service Name: TapiSrv
Display Name: Telephony
Service Type: shares a process with other services

Service Name: TermService
Display Name: Terminal Services
Service Type: shares a process with other services

Service Name: Themes
Display Name: Themes
Service Type: shares a process with other services

Service Name: TrkWks
Display Name: Distributed Link Tracking Client
Service Type: shares a process with other services

Service Name: W32Time
Display Name: Windows Time
Service Type: shares a process with other services

Service Name: winmgmt
Display Name: Windows Management Instrumentation
Service Type: shares a process with other services

Service Name: wuauserv
Display Name: Automatic Updates
Service Type: shares a process with other services

Service Name: WZCSVC
Display Name: Wireless Zero Configuration
Service Type: shares a process with other services

PID	Port		Local IP	State		 Remote IP:Port
1092	TCP 1025  	0.0.0.0 	LISTENING	 0.0.0.0:2064
1092	TCP 3002  	127.0.0.1 	LISTENING	 0.0.0.0:49193
1092	TCP 3003  	127.0.0.1 	LISTENING	 0.0.0.0:39078
1092	UDP 123  	169.254.66.8 			 *:*
1092	UDP 123  	127.0.0.1 			 *:*

Port Statistics

TCP mappings: 3
UDP mappings: 2

TCP ports in a LISTENING state: 	3 = 100.00%

Loaded modules:
D:\WINDOWS\System32\svchost.exe (0x01000000)

D:\WINDOWS\System32\ntdll.dll (0x77F50000)
D:\WINDOWS\system32\kernel32.dll (0x77E60000)
D:\WINDOWS\system32\ADVAPI32.dll (0x77DD0000)
D:\WINDOWS\system32\RPCRT4.dll (0x78000000)
D:\WINDOWS\system32\ole32.dll (0x771B0000)
D:\WINDOWS\system32\GDI32.dll (0x77C70000)
D:\WINDOWS\system32\USER32.dll (0x77D40000)
d:\windows\system32\shsvcs.dll (0x76BD0000)
D:\WINDOWS\system32\msvcrt.dll (0x77C10000)
D:\WINDOWS\system32\SHLWAPI.dll (0x70A70000)
D:\WINDOWS\system32\shell32.dll (0x773D0000)
D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll (0x71950000)
D:\WINDOWS\system32\comctl32.dll (0x77340000)
D:\WINDOWS\System32\WINSTA.dll (0x76360000)
d:\windows\system32\dhcpcsvc.dll (0x76D80000)
d:\windows\system32\DNSAPI.dll (0x76F20000)
d:\windows\system32\WS2_32.dll (0x71AB0000)
d:\windows\system32\WS2HELP.dll (0x71AA0000)
d:\windows\system32\iphlpapi.dll (0x76D60000)
d:\windows\system32\Secur32.dll (0x76F90000)
D:\WINDOWS\System32\UxTheme.dll (0x5AD70000)
D:\WINDOWS\System32\rsaenh.dll (0x0FFD0000)
d:\windows\system32\wzcsvc.dll (0x70B50000)
d:\windows\system32\rtutils.dll (0x76E80000)
d:\windows\system32\WMI.dll (0x76D30000)
D:\WINDOWS\system32\OLEAUT32.dll (0x77120000)
D:\WINDOWS\system32\CRYPT32.dll (0x762C0000)
D:\WINDOWS\system32\MSASN1.dll (0x762A0000)
d:\windows\system32\WTSAPI32.dll (0x76F50000)
d:\windows\system32\ESENT.dll (0x69710000)
D:\WINDOWS\system32\WLDAP32.dll (0x76F60000)
d:\windows\system32\NETAPI32.dll (0x71C20000)
D:\WINDOWS\system32\mswsock.dll (0x71A50000)
D:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
D:\WINDOWS\System32\rastls.dll (0x555A0000)
D:\WINDOWS\System32\ATL.DLL (0x76B20000)
D:\WINDOWS\System32\CRYPTUI.dll (0x754D0000)
D:\WINDOWS\System32\WINTRUST.dll (0x76C30000)
D:\WINDOWS\system32\IMAGEHLP.dll (0x76C90000)
D:\WINDOWS\system32\WININET.dll (0x76200000)
D:\WINDOWS\System32\MPRAPI.dll (0x76D40000)
D:\WINDOWS\System32\ACTIVEDS.dll (0x76E40000)
D:\WINDOWS\System32\adsldpc.dll (0x76E10000)
D:\WINDOWS\System32\SAMLIB.dll (0x71BF0000)
D:\WINDOWS\System32\SETUPAPI.dll (0x76670000)
D:\WINDOWS\System32\RASAPI32.dll (0x76EE0000)
D:\WINDOWS\System32\rasman.dll (0x76E90000)
D:\WINDOWS\System32\TAPI32.dll (0x76EB0000)
D:\WINDOWS\System32\WINMM.dll (0x76B40000)
D:\WINDOWS\System32\SCHANNEL.dll (0x767F0000)
D:\WINDOWS\system32\USERENV.dll (0x75A70000)
D:\WINDOWS\System32\WinSCard.dll (0x723D0000)
D:\WINDOWS\System32\raschap.dll (0x70AF0000)
D:\WINDOWS\system32\msv1_0.dll (0x76D10000)
D:\WINDOWS\System32\CLBCATQ.DLL (0x76FD0000)
D:\WINDOWS\System32\COMRes.dll (0x77050000)
D:\WINDOWS\system32\VERSION.dll (0x77C00000)
d:\windows\system32\schedsvc.dll (0x751D0000)
d:\windows\system32\NTDSAPI.dll (0x767A0000)
D:\WINDOWS\System32\MSIDLE.DLL (0x74F50000)
D:\WINDOWS\System32\NTMARTA.DLL (0x76CE0000)
d:\windows\system32\audiosrv.dll (0x708B0000)
d:\windows\system32\wkssvc.dll (0x75170000)
d:\windows\system32\cryptsvc.dll (0x74FA0000)
d:\windows\system32\certcli.dll (0x75350000)
d:\windows\pchealth\helpctr\binaries\pchsvc.dll (0x74F40000)
d:\windows\system32\es.dll (0x76B70000)
d:\windows\system32\ersvc.dll (0x74F80000)
d:\windows\system32\dmserver.dll (0x74F90000)
d:\windows\system32\srvsvc.dll (0x75090000)
d:\windows\system32\msgsvc.dll (0x74F60000)
d:\windows\system32\netman.dll (0x76DE0000)
d:\windows\system32\seclogon.dll (0x73D20000)
d:\windows\system32\sens.dll (0x722D0000)
d:\windows\system32\srsvc.dll (0x751A0000)
d:\windows\system32\POWRPROF.dll (0x74AD0000)
d:\windows\system32\tapisrv.dll (0x733E0000)
d:\windows\system32\PSAPI.DLL (0x76BF0000)
d:\windows\system32\trkwks.dll (0x75070000)
d:\windows\system32\w32time.dll (0x767C0000)
d:\windows\system32\MSVCP60.dll (0x55900000)
d:\windows\system32\wbem\wmisvc.dll (0x597A0000)
d:\windows\system32\wbem\wbemcomn.dll (0x75290000)
D:\WINDOWS\System32\VSSAPI.DLL (0x753E0000)
d:\windows\system32\wuauserv.dll (0x74EC0000)
D:\WINDOWS\System32\wuaueng.dll (0x01B20000)
D:\WINDOWS\System32\ADVPACK.dll (0x75260000)
D:\WINDOWS\System32\sfc.dll (0x76BB0000)
D:\WINDOWS\System32\sfc_os.dll (0x76C60000)
d:\windows\system32\rasmans.dll (0x72480000)
d:\windows\system32\WINIPSEC.DLL (0x74370000)
d:\windows\system32\netcfgx.dll (0x755F0000)
d:\windows\system32\CLUSAPI.dll (0x55560000)
d:\windows\system32\browser.dll (0x74FE0000)
D:\WINDOWS\System32\winspool.drv (0x73000000)
D:\WINDOWS\System32\rastapi.dll (0x72060000)
D:\WINDOWS\System32\SXS.DLL (0x75E90000)
D:\WINDOWS\system32\comsvcs.dll (0x75730000)
D:\WINDOWS\system32\MTXCLU.DLL (0x750F0000)
D:\WINDOWS\system32\WSOCK32.dll (0x71AD0000)
D:\WINDOWS\system32\colbact.DLL (0x75130000)
D:\WINDOWS\System32\RESUTILS.DLL (0x750B0000)
D:\WINDOWS\System32\mtxoci.dll (0x750D0000)
D:\WINDOWS\System32\unimdm.tsp (0x57CC0000)
D:\WINDOWS\System32\uniplat.dll (0x72000000)
D:\WINDOWS\System32\kmddsp.tsp (0x57D40000)
D:\WINDOWS\System32\ndptsp.tsp (0x57D20000)
D:\WINDOWS\System32\ipconf.tsp (0x57D50000)
D:\WINDOWS\System32\h323.tsp (0x57D70000)
D:\WINDOWS\System32\hidphone.tsp (0x57D60000)
D:\WINDOWS\System32\HID.DLL (0x688F0000)
D:\WINDOWS\System32\rasppp.dll (0x72240000)
D:\WINDOWS\System32\ntlsapi.dll (0x724B0000)
d:\windows\system32\ipnathlp.dll (0x66460000)
d:\windows\system32\netshell.dll (0x75CF0000)
d:\windows\system32\credui.dll (0x76C00000)
d:\windows\system32\HNetCfg.dll (0x68880000)
D:\WINDOWS\System32\rasadhlp.dll (0x76FC0000)
D:\WINDOWS\System32\Wbem\wbemcore.dll (0x75450000)
D:\WINDOWS\System32\Wbem\esscli.dll (0x75310000)
D:\WINDOWS\System32\Wbem\FastProx.dll (0x75690000)
D:\WINDOWS\System32\wbem\wmiutils.dll (0x75020000)
D:\WINDOWS\System32\wbem\repdrvfs.dll (0x75200000)
D:\WINDOWS\System32\wbem\wmiprvsd.dll (0x597F0000)
D:\WINDOWS\System32\NCObjAPI.DLL (0x5F770000)
D:\WINDOWS\System32\wbem\wbemess.dll (0x75390000)
D:\WINDOWS\System32\winhttp.dll (0x76080000)
d:\windows\system32\termsrv.dll (0x752D0000)
d:\windows\system32\ICAAPI.dll (0x74F70000)
d:\windows\system32\AUTHZ.dll (0x76CC0000)
d:\windows\system32\mstlsapi.dll (0x75110000)
D:\WINDOWS\System32\REGAPI.dll (0x76BC0000)
D:\WINDOWS\System32\wbem\ncprov.dll (0x5F740000)
D:\WINDOWS\System32\catsrvut.dll (0x6FB10000)
D:\WINDOWS\System32\MfcSubs.dll (0x61990000)
D:\WINDOWS\system32\MPR.dll (0x71B20000)
D:\WINDOWS\System32\msi.dll (0x76400000)
D:\WINDOWS\System32\Cabinet.dll (0x75150000)
D:\WINDOWS\system32\urlmon.dll (0x1A400000)
D:\WINDOWS\System32\catsrv.dll (0x6FBD0000)
D:\WINDOWS\System32\upnp.dll (0x555F0000)
D:\WINDOWS\System32\SSDPAPI.dll (0x74F00000)
D:\WINDOWS\System32\RASDLG.dll (0x75550000)
d:\windows\system32\qmgr.dll (0x5DDD0000)
d:\windows\system32\SHFOLDER.dll (0x76780000)
D:\WINDOWS\System32\qmgrprxy.dll (0x5DDC0000)
D:\WINDOWS\System32\sensapi.dll (0x722B0000)
D:\WINDOWS\System32\winrnr.dll (0x76FB0000)
D:\WINDOWS\System32\wbem\wbemsvc.dll (0x74ED0000)
D:\WINDOWS\System32\actxprxy.dll (0x71D40000)
D:\WINDOWS\System32\wbem\wbemcons.dll (0x73D30000)

Porque sistemas Windows 2000 n�o oferecem suporte para mapeamento de porta para o processo, o arquivo de log inicial de RP conter� a seguinte linha:

Porta para mapeamentos de processo n�o est�o dispon�veis neste sistema.

O arquivo de log PORTS PR

O arquivo de log PR PORTS cont�m dados de resumo sobre atividades das portas TCP e UDP no computador. Os dados s�o listados pelo usando separados um por v�rgulas (csv) formato o valor da seguinte maneira:

Data, hora, protocolo, porta local, endere�o IP local, porta remota, endere�o IP remoto, PID, m�dulo, o contexto de usu�rio

Em computadores baseados no Windows 2000 que n�o oferecem suporte a mapeamento de porta para o processo, o servi�o Port Reporter lista os dados usando o seguinte formato:

Data, hora, protocolo, porta local, endere�o IP local, porta remota, endere�o IP remoto

Este � um exemplo do conte�do de um arquivo de log PR PORTS:

Port Reporter Version 1.0 Log File - Port usage log

Check PR-PIDS-04-01-24-8-49-30.log for corresponding process data

Log format:
date,time,protocol,local port,local IP address,remote port,remote IP address,PID,module,user context

04/1/24,8:52:21,TCP,4873,0.0.0.0,45070,0.0.0.0,664,iexplore.exe,<MYDOMAIN\user>
04/1/24,8:52:21,TCP,4873,169.254.66.8,80,63.208.107.43,664,iexplore.exe,<MYDOMAIN\user>
04/1/24,8:52:22,UDP,55441,169.254.66.8,*,*,3764,msmsgs.exe,<MYDOMAIN\user>
04/1/24,8:52:41,TCP,4874,0.0.0.0,4225,0.0.0.0,664,iexplore.exe,<MYDOMAIN\user>
04/1/24,8:52:41,TCP,4874,169.254.66.8,80,216.74.132.12,664,iexplore.exe,<MYDOMAIN\user>
4/1/24,21:36:2,TCP,2682,169.254.66.8,445,169.254.133.55,4,System,
04/1/24,21:51:2,TCP,2684,0.0.0.0,12390,0.0.0.0,4,System,
04/1/24,21:51:2,TCP,2684,169.254.66.8,445,169.254.133.55,4,System,
04/1/24,22:03:15,UDP,2686,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:03:15,UDP,2687,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:03:43,UDP,2688,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:04:9,TCP,2690,169.254.66.8,389,169.254.133.55,0,System Idle,
04/1/24,22:04:35,TCP,2691,0.0.0.0,18644,0.0.0.0,1260,svchost.exe
04/1/24,22:04:36,TCP,2691,169.254.66.8,80,169.254.133.55,1260,svchost.exe
04/1/24,22:04:36,UDP,2692,127.0.0.1,*,*,1260,svchost.exe,<NT AUTHORITY\NETWORK SERVICE>
04/1/24,22:04:37,TCP,2693,0.0.0.0,2160,0.0.0.0,1260,svchost.exe,<NT AUTHORITY\NETWORK SERVICE>
04/1/24,22:04:40,TCP,2693,169.254.66.8,80,169.254.133.55,1260,svchost.exe,<NT AUTHORITY\NETWORK SERVICE>
04/1/24,22:05:2,UDP,2697,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:06:2,TCP,2698,0.0.0.0,12390,0.0.0.0,4,System,
04/1/24,22:06:2,TCP,2698,169.254.66.8,445,169.254.133.55,4,System,
04/1/24,22:06:46,UDP,2700,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:06:47,UDP,2701,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>
04/1/24,22:06:47,UDP,2702,0.0.0.0,*,*,2424,Virtual PC.exe,<MYDOMAIN\user>

Voc� pode ver entradas no arquivo de log de RP PORTS que apar�ncia semelhante � seguinte:

04/1/24,22:06:2,TCP,2698,0.0.0.0,12390,0.0.0.0,4,System,

Nesse caso, o contexto de usu�rio est� faltando. Essas entradas significam que o servi�o Port Reporter n�o � poss�vel determinar a conta de usu�rio que o processo est� associado. Isso esperado a sa�da � gerada para o sistema processar e processar para o sistema ocioso. Quando voc� examine o conte�do do arquivo de log PORTS RP para portas ou para processos, observe o carimbo de data e hora de entradas que voc� deseja investigar mais. Voc� encontrar� detalhes adicionais sobre uma entrada no arquivo de log de RP PORTS quando localizar sua entrada correspondente no arquivo de log PIDS RP. Para fazer isso, execute estas etapas:

Inicie o bloco de notas e abra o arquivo de log PIDS RP.
No menu Editar , clique em Localizar .
Na caixa Localizar , digite o carimbo de data e hora da entrada no arquivo de log PR PORTS que voc� deseja obter mais informa��es sobre como e, em seguida, clique em Localizar pr�xima .

O arquivo de log PIDS PR

O arquivo de log PR PIDS cont�m informa��es detalhadas sobre portas, processos, m�dulos relacionados e a conta de usu�rio o processo usa para executar. Este � um exemplo do conte�do de um arquivo de log PIDS PR:

Port Reporter Version 1.0 Log File

Process detail log

System Date: Sat Jan 24 08:49:31 2004


Local computer name:

 <ComputerName>


======================================================

Log entry below recorded at: <Date and Time>

======================================================

Process ID: 664 (iexplore.exe)

User context: MYDOMAIN\user

Process doesn't appear to be a service

PID	Port		Local IP	State		 Remote IP:Port
664	TCP 4867  	0.0.0.0 	LISTENING	 0.0.0.0:4225
664	TCP 4873  	0.0.0.0 	LISTENING	 0.0.0.0:45070
664	TCP 4867  	169.254.66.8  	ESTABLISHED	 169.254.44.12:80
664	TCP 4873  	169.254.66.8  	SYN SENT	 169.254.44.12:80
664	UDP 4817  	127.0.0.1 			 *:*

Port Statistics

TCP mappings: 4
UDP mappings: 1

TCP ports in a LISTENING state: 	2 = 50.00%
TCP ports in a SYN SENT state: 		1 = 25.00%
TCP ports in a ESTABLISHED state: 	1 = 25.00%

Loaded modules:
D:\Program Files\Internet Explorer\iexplore.exe (0x00400000)

D:\WINDOWS\System32\ntdll.dll (0x77F50000)
D:\WINDOWS\system32\kernel32.dll (0x77E60000)
D:\WINDOWS\system32\msvcrt.dll (0x77C10000)
D:\WINDOWS\system32\USER32.dll (0x77D40000)
D:\WINDOWS\system32\GDI32.dll (0x77C70000)
D:\WINDOWS\system32\ADVAPI32.dll (0x77DD0000)
D:\WINDOWS\system32\RPCRT4.dll (0x78000000)
D:\WINDOWS\system32\SHLWAPI.dll (0x70A70000)
D:\WINDOWS\System32\SHDOCVW.dll (0x71700000)
D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll (0x71950000)
D:\WINDOWS\system32\SHELL32.dll (0x773D0000)
D:\WINDOWS\system32\comctl32.dll (0x77340000)
D:\WINDOWS\system32\ole32.dll (0x771B0000)
D:\WINDOWS\System32\uxtheme.dll (0x5AD70000)
D:\WINDOWS\System32\BROWSEUI.dll (0x75F80000)
D:\WINDOWS\System32\browselc.dll (0x72430000)
D:\WINDOWS\system32\appHelp.dll (0x75F40000)
D:\WINDOWS\System32\CLBCATQ.DLL (0x76FD0000)
D:\WINDOWS\system32\OLEAUT32.dll (0x77120000)
D:\WINDOWS\System32\COMRes.dll (0x77050000)
D:\WINDOWS\system32\VERSION.dll (0x77C00000)
D:\WINDOWS\system32\WININET.dll (0x76200000)
D:\WINDOWS\system32\CRYPT32.dll (0x762C0000)
D:\WINDOWS\system32\MSASN1.dll (0x762A0000)
D:\WINDOWS\System32\Secur32.dll (0x76F90000)
D:\WINDOWS\System32\cscui.dll (0x76620000)
D:\WINDOWS\System32\CSCDLL.dll (0x76600000)
D:\WINDOWS\System32\SETUPAPI.dll (0x76670000)
D:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (0x10000000)
D:\Program Files\Microsoft\Rights Management Add-on\mime_filter.dll (0x5F200000)
D:\WINDOWS\System32\SXS.DLL (0x75E90000)
D:\WINDOWS\system32\urlmon.dll (0x1A400000)
D:\WINDOWS\System32\shdoclc.dll (0x00DE0000)
D:\WINDOWS\System32\mlang.dll (0x74770000)
D:\WINDOWS\System32\wsock32.dll (0x71AD0000)
D:\WINDOWS\System32\WS2_32.dll (0x71AB0000)
D:\WINDOWS\System32\WS2HELP.dll (0x71AA0000)
D:\WINDOWS\system32\mswsock.dll (0x71A50000)
D:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
D:\WINDOWS\System32\RASAPI32.DLL (0x76EE0000)
D:\WINDOWS\System32\rasman.dll (0x76E90000)
D:\WINDOWS\System32\NETAPI32.dll (0x71C20000)
D:\WINDOWS\System32\TAPI32.dll (0x76EB0000)
D:\WINDOWS\System32\rtutils.dll (0x76E80000)
D:\WINDOWS\System32\WINMM.dll (0x76B40000)
D:\WINDOWS\System32\sensapi.dll (0x722B0000)
D:\WINDOWS\system32\USERENV.dll (0x75A70000)
D:\WINDOWS\System32\msi.dll (0x01370000)
D:\WINDOWS\System32\DNSAPI.dll (0x76F20000)
D:\WINDOWS\System32\winrnr.dll (0x76FB0000)
D:\WINDOWS\system32\WLDAP32.dll (0x76F60000)
D:\WINDOWS\System32\rasadhlp.dll (0x76FC0000)
D:\WINDOWS\System32\mshtml.dll (0x63580000)
D:\WINDOWS\System32\IMM32.DLL (0x76390000)
D:\Program Files\Microsoft Office\Office10\msohev.dll (0x32520000)
D:\WINDOWS\System32\jscript.dll (0x6B700000)
D:\WINDOWS\System32\dxtrans.dll (0x6BDD0000)
D:\WINDOWS\System32\ATL.DLL (0x76B20000)
D:\WINDOWS\System32\ddrawex.dll (0x65000000)
D:\WINDOWS\System32\DDRAW.dll (0x51000000)
D:\WINDOWS\System32\DCIMAN32.dll (0x73BC0000)
D:\WINDOWS\System32\dxtmsft.dll (0x6BE10000)
D:\WINDOWS\System32\MSLS31.DLL (0x746C0000)
D:\WINDOWS\System32\WINSPOOL.DRV (0x73000000)
D:\WINDOWS\System32\wdmaud.drv (0x72D20000)
D:\WINDOWS\System32\msacm32.drv (0x72D10000)
D:\WINDOWS\System32\MSACM32.dll (0x77BE0000)
D:\WINDOWS\System32\midimap.dll (0x77BD0000)
D:\WINDOWS\System32\msxml3.dll (0x72E00000)
D:\WINDOWS\System32\vbscript.dll (0x73300000)
D:\WINDOWS\System32\IMGUTIL.DLL (0x66880000)
D:\WINDOWS\System32\pngfilt.dll (0x5E310000)
D:\WINDOWS\System32\wmp.dll (0x07680000)
D:\WINDOWS\System32\MSVFW32.dll (0x73BD0000)
D:\WINDOWS\System32\wmploc.dll (0x08110000)
D:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll (0x6D440000)
D:\WINDOWS\System32\OLEPRO32.DLL (0x5EDD0000)
D:\Program Files\Java\j2re1.4.2\bin\jpiexp32.dll (0x6D310000)
D:\Program Files\Java\j2re1.4.2\bin\jpishare.dll (0x6D380000)
D:\PROGRA~1\Java\J2RE14~1.2\bin\client\jvm.dll (0x04F20000)
D:\PROGRA~1\Java\J2RE14~1.2\bin\hpi.dll (0x02FE0000)
D:\PROGRA~1\Java\J2RE14~1.2\bin\verify.dll (0x05070000)
D:\PROGRA~1\Java\J2RE14~1.2\bin\java.dll (0x05080000)
D:\PROGRA~1\Java\J2RE14~1.2\bin\zip.dll (0x050A0000)
D:\Program Files\Java\j2re1.4.2\bin\awt.dll (0x083E0000)
D:\Program Files\Java\j2re1.4.2\bin\fontmanager.dll (0x075F0000)
D:\WINDOWS\System32\D3DIM700.DLL (0x5C000000)
D:\Program Files\Java\j2re1.4.2\bin\jpicom32.dll (0x6D2F0000)
D:\Program Files\Java\j2re1.4.2\bin\net.dll (0x07660000)
D:\WINDOWS\System32\wintrust.dll (0x76C30000)
D:\WINDOWS\system32\IMAGEHLP.dll (0x76C90000)
D:\WINDOWS\System32\schannel.dll (0x767F0000)
D:\WINDOWS\System32\rsaenh.dll (0x0FFD0000)
D:\WINDOWS\System32\dssenh.dll (0x0FFA0000)
D:\WINDOWS\System32\wmvcore.dll (0x09270000)
D:\WINDOWS\System32\WMASF.DLL (0x09470000)
D:\WINDOWS\System32\actxprxy.dll (0x71D40000)
D:\WINDOWS\System32\dispex.dll (0x6CC60000)
D:\WINDOWS\System32\mshtmled.dll (0x74CB0000)
D:\WINDOWS\System32\wmnetmgr.dll (0x09D90000)
D:\WINDOWS\system32\msv1_0.dll (0x76D10000)
D:\WINDOWS\system32\wdigest.dll (0x74380000)
D:\WINDOWS\System32\winhttp.dll (0x76080000)
D:\WINDOWS\System32\MPRAPI.dll (0x76D40000)
D:\WINDOWS\System32\ACTIVEDS.dll (0x76E40000)
D:\WINDOWS\System32\adsldpc.dll (0x76E10000)
D:\WINDOWS\System32\SAMLIB.dll (0x71BF0000)
D:\WINDOWS\System32\iphlpapi.dll (0x76D60000)
D:\WINDOWS\System32\netman.dll (0x76DE0000)
D:\WINDOWS\System32\WZCSvc.DLL (0x70B50000)
D:\WINDOWS\System32\WMI.dll (0x76D30000)
D:\WINDOWS\System32\DHCPCSVC.DLL (0x76D80000)
D:\WINDOWS\System32\WTSAPI32.dll (0x76F50000)
D:\WINDOWS\System32\WINSTA.dll (0x76360000)
D:\WINDOWS\System32\ESENT.dll (0x69710000)
D:\WINDOWS\System32\hnetcfg.dll (0x68880000)
D:\WINDOWS\System32\netshell.dll (0x75CF0000)
D:\WINDOWS\System32\credui.dll (0x76C00000)
D:\WINDOWS\System32\wbem\wbemprox.dll (0x74EF0000)
D:\WINDOWS\System32\wbem\wbemcomn.dll (0x75290000)
D:\WINDOWS\System32\wbem\wbemsvc.dll (0x74ED0000)
D:\WINDOWS\System32\wbem\fastprox.dll (0x75690000)
D:\WINDOWS\System32\quartz.dll (0x35500000)
D:\WINDOWS\System32\msdmo.dll (0x0ADF0000)
D:\WINDOWS\System32\wmadmod.dll (0x0AE00000)
D:\WINDOWS\System32\devenum.dll (0x35680000)
D:\WINDOWS\System32\DSOUND.DLL (0x51080000)
D:\WINDOWS\System32\KsUser.dll (0x5EF80000)

======================================================

Log entry below recorded at: <Date and Time>
======================================================

Process ID: 3764 (msmsgs.exe)

User context: MYDOMAIN\user

Process doesn't appear to be a service

PID	Port		Local IP	State		 Remote IP:Port
3764	TCP 16521  	169.254.66.8 	LISTENING	 0.0.0.0:45294
3764	UDP 4803  	0.0.0.0 			 *:*
3764	UDP 9586  	169.254.66.8 			 *:*
3764	UDP 55441  	169.254.66.8 			 *:*

Port Statistics

TCP mappings: 1
UDP mappings: 3

TCP ports in a LISTENING state: 	1 = 100.00%

Loaded modules:
D:\Program Files\Messenger\msmsgs.exe (0x00400000)

D:\WINDOWS\System32\ntdll.dll (0x77F50000)
D:\WINDOWS\system32\kernel32.dll (0x77E60000)
D:\WINDOWS\system32\ADVAPI32.DLL (0x77DD0000)
D:\WINDOWS\system32\RPCRT4.dll (0x78000000)
D:\WINDOWS\system32\GDI32.DLL (0x77C70000)
D:\WINDOWS\system32\USER32.dll (0x77D40000)
D:\WINDOWS\system32\OLE32.DLL (0x771B0000)
D:\WINDOWS\system32\OLEAUT32.DLL (0x77120000)
D:\WINDOWS\system32\MSVCRT.DLL (0x77C10000)
D:\WINDOWS\WinSxS\X86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\COMCTL32.DLL (0x71950000)
D:\WINDOWS\system32\SHLWAPI.dll (0x70A70000)
D:\WINDOWS\system32\SHELL32.DLL (0x773D0000)
D:\WINDOWS\System32\uxtheme.dll (0x5AD70000)
D:\Program Files\Messenger\MSGSLANG.DLL (0x69200000)
D:\WINDOWS\System32\CLBCATQ.DLL (0x76FD0000)
D:\WINDOWS\System32\COMRes.dll (0x77050000)
D:\WINDOWS\system32\VERSION.dll (0x77C00000)
D:\WINDOWS\System32\SXS.DLL (0x75E90000)
D:\WINDOWS\System32\wtsapi32.dll (0x76F50000)
D:\WINDOWS\System32\WINSTA.dll (0x76360000)
D:\WINDOWS\System32\es.dll (0x76B70000)
D:\WINDOWS\System32\WS2_32.dll (0x71AB0000)
D:\WINDOWS\System32\WS2HELP.dll (0x71AA0000)
D:\Program Files\Messenger\rtcimsp.dll (0x00F30000)
D:\WINDOWS\System32\WSOCK32.dll (0x71AD0000)
D:\WINDOWS\System32\rtcdll.dll (0x5D370000)
D:\WINDOWS\System32\ATL.DLL (0x76B20000)
D:\WINDOWS\System32\Secur32.dll (0x76F90000)
D:\WINDOWS\system32\WININET.dll (0x76200000)
D:\WINDOWS\system32\CRYPT32.dll (0x762C0000)
D:\WINDOWS\system32\MSASN1.dll (0x762A0000)
D:\WINDOWS\System32\WINMM.dll (0x76B40000)
D:\WINDOWS\System32\iphlpapi.dll (0x76D60000)
D:\WINDOWS\System32\DNSAPI.dll (0x76F20000)
D:\WINDOWS\System32\termmgr.dll (0x5B6F0000)
D:\WINDOWS\System32\rtutils.dll (0x76E80000)
D:\WINDOWS\System32\quartz.dll (0x35500000)
D:\WINDOWS\system32\mswsock.dll (0x71A50000)
D:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
D:\WINDOWS\System32\dxmrtp.dll (0x6BE70000)
D:\WINDOWS\System32\MSVFW32.dll (0x73BD0000)
D:\WINDOWS\System32\DSOUND.dll (0x51080000)
D:\WINDOWS\System32\PSAPI.DLL (0x76BF0000)
D:\WINDOWS\System32\devenum.dll (0x35680000)
D:\WINDOWS\System32\setupapi.dll (0x76670000)
D:\WINDOWS\System32\wdmaud.drv (0x72D20000)
D:\WINDOWS\System32\msacm32.drv (0x72D10000)
D:\WINDOWS\System32\MSACM32.dll (0x77BE0000)
D:\WINDOWS\System32\midimap.dll (0x77BD0000)
D:\WINDOWS\System32\msdmo.dll (0x01450000)
D:\WINDOWS\System32\dpnhupnp.dll (0x018A0000)
D:\WINDOWS\System32\rsaenh.dll (0x0FFD0000)
D:\WINDOWS\System32\rasapi32.dll (0x76EE0000)
D:\WINDOWS\System32\rasman.dll (0x76E90000)
D:\WINDOWS\System32\NETAPI32.dll (0x71C20000)
D:\WINDOWS\System32\TAPI32.dll (0x76EB0000)
D:\WINDOWS\System32\hnetcfg.dll (0x68880000)
D:\WINDOWS\System32\netshell.dll (0x75CF0000)
D:\WINDOWS\System32\credui.dll (0x76C00000)
D:\WINDOWS\System32\DHCPCSVC.DLL (0x76D80000)
D:\WINDOWS\System32\wbem\wbemprox.dll (0x74EF0000)
D:\WINDOWS\System32\wbem\wbemcomn.dll (0x75290000)
D:\WINDOWS\System32\wbem\wbemsvc.dll (0x74ED0000)
D:\WINDOWS\System32\wbem\fastprox.dll (0x75690000)
D:\WINDOWS\System32\netcfgx.dll (0x755F0000)
D:\WINDOWS\System32\CLUSAPI.dll (0x55560000)
D:\WINDOWS\System32\sensapi.dll (0x722B0000)

======================================================

Log entry below recorded at: <Date and Time>
======================================================

Process ID: 2424 (Virtual PC.exe)

User context: MYDOMAIN\user

Process doesn't appear to be a service

PID	Port		Local IP	State		 Remote IP:Port
2424	TCP 1262  	0.0.0.0 	LISTENING	 0.0.0.0:2192
2424	TCP 1731  	0.0.0.0 	LISTENING	 0.0.0.0:53467
2424	TCP 2226  	0.0.0.0 	LISTENING	 0.0.0.0:45214
2424	TCP 2229  	0.0.0.0 	LISTENING	 0.0.0.0:2176
2424	TCP 4724  	0.0.0.0 	LISTENING	 0.0.0.0:26634
2424	TCP 4725  	0.0.0.0 	LISTENING	 0.0.0.0:2172
2424	TCP 4726  	0.0.0.0 	LISTENING	 0.0.0.0:39049
2424	TCP 4727  	0.0.0.0 	LISTENING	 0.0.0.0:37118
2424	TCP 4728  	0.0.0.0 	LISTENING	 0.0.0.0:16491
2424	TCP 4729  	0.0.0.0 	LISTENING	 0.0.0.0:20734
2424	TCP 4925  	0.0.0.0 	LISTENING	 0.0.0.0:2064
2424	TCP 4930  	0.0.0.0 	LISTENING	 0.0.0.0:8249
2424	TCP 4931  	0.0.0.0 	LISTENING	 0.0.0.0:61639
2424	TCP 4932  	0.0.0.0 	LISTENING	 0.0.0.0:22535
2424	TCP 2189  	127.0.0.1 	LISTENING	 0.0.0.0:45095
2424	TCP 1262  	169.254.66.8 	ESTABLISHED	 169.254.5.214:1745
2424	TCP 1731  	169.254.66.8 	ESTABLISHED	 169.254.4.228:1745
2424	TCP 2226  	169.254.66.8 	ESTABLISHED	 157.56.120.30:1745
2424	TCP 2229  	169.254.66.8 	ESTABLISHED	 157.56.121.78:1745
2424	TCP 4724  	169.254.66.8 	ESTABLISHED	 169.254.4.38:1745
2424	TCP 4725  	169.254.66.8 	ESTABLISHED	 169.254.5.105:1745
2424	TCP 4726  	169.254.66.8 	ESTABLISHED	 169.254.5.103:1745
2424	TCP 4727  	169.254.66.8 	ESTABLISHED	 169.254.4.240:1745
2424	TCP 4728  	169.254.66.8 	ESTABLISHED	 169.254.7.23:1745
2424	TCP 4729  	169.254.66.8 	ESTABLISHED	 169.254.4.241:1745
2424	TCP 4925  	169.254.66.8 	ESTABLISHED	 169.254.121.89:1745
2424	TCP 4930  	169.254.66.8 	ESTABLISHED	 169.254.113.92:1745
2424	TCP 4931  	169.254.66.8 	ESTABLISHED	 169.254.113.87:1745
2424	TCP 4932  	169.254.66.8 	ESTABLISHED	 169.254.121.93:1745
2424	UDP 2686  	0.0.0.0 			 *:*
2424	UDP 2687  	0.0.0.0 			 *:*

Port Statistics

TCP mappings: 29
UDP mappings: 2

TCP ports in a LISTENING state: 	15 = 51.72%
TCP ports in a ESTABLISHED state: 	14 = 48.28%

Loaded modules:
C:\Program Files\Microsoft Virtual PC\Virtual PC.exe (0x00400000)

C:\WINDOWS\System32\ntdll.dll (0x77F50000)
C:\WINDOWS\system32\kernel32.dll (0x77E60000)
C:\WINDOWS\System32\DDRAW.dll (0x51000000)
C:\WINDOWS\system32\msvcrt.dll (0x77C10000)
C:\WINDOWS\system32\USER32.dll (0x77D40000)
C:\WINDOWS\system32\GDI32.dll (0x77C70000)
C:\WINDOWS\system32\ADVAPI32.dll (0x77DD0000)
C:\WINDOWS\system32\RPCRT4.dll (0x78000000)
C:\WINDOWS\System32\DCIMAN32.dll (0x73BC0000)
C:\WINDOWS\System32\DINPUT.dll (0x72280000)
C:\WINDOWS\System32\WINMM.dll (0x76B40000)
C:\WINDOWS\System32\iphlpapi.dll (0x76D60000)
C:\WINDOWS\System32\WS2_32.dll (0x71AB0000)
C:\WINDOWS\System32\WS2HELP.dll (0x71AA0000)
C:\WINDOWS\System32\PSAPI.DLL (0x76BF0000)
C:\WINDOWS\system32\comdlg32.dll (0x763B0000)
C:\WINDOWS\system32\SHLWAPI.dll (0x70A70000)
C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\COMCTL32.dll (0x71950000)
C:\WINDOWS\system32\SHELL32.dll (0x773D0000)
C:\WINDOWS\System32\WINSPOOL.DRV (0x73000000)
C:\WINDOWS\system32\ole32.dll (0x771B0000)
C:\WINDOWS\system32\OLEAUT32.dll (0x77120000)
C:\WINDOWS\system32\VERSION.dll (0x77C00000)
C:\WINDOWS\System32\OLEACC.dll (0x74C80000)
C:\WINDOWS\System32\MSVCP60.dll (0x55900000)
C:\WINDOWS\System32\uxtheme.dll (0x5AD70000)
C:\WINDOWS\System32\MSCTF.dll (0x74720000)
C:\WINDOWS\System32\CLBCATQ.DLL (0x76FD0000)
C:\WINDOWS\System32\COMRes.dll (0x77050000)
C:\WINDOWS\System32\msxml4.dll (0x69B10000)
C:\WINDOWS\System32\LINKINFO.dll (0x76980000)
C:\WINDOWS\System32\ntshrui.dll (0x76990000)
C:\WINDOWS\System32\ATL.DLL (0x76B20000)
C:\WINDOWS\System32\NETAPI32.dll (0x71C20000)
C:\WINDOWS\system32\USERENV.dll (0x75A70000)
C:\Program Files\Microsoft Firewall Client\wspwsp.dll (0x55600000)
C:\WINDOWS\System32\mswsock.dll (0x71A50000)
C:\WINDOWS\System32\DNSAPI.dll (0x76F20000)
C:\WINDOWS\System32\winrnr.dll (0x76FB0000)
C:\WINDOWS\system32\WLDAP32.dll (0x76F60000)
C:\WINDOWS\System32\wshtcpip.dll (0x71A90000)
C:\WINDOWS\System32\rasadhlp.dll (0x76FC0000)
C:\WINDOWS\System32\wdmaud.drv (0x72D20000)
C:\WINDOWS\System32\msacm32.drv (0x72D10000)
C:\WINDOWS\System32\MSACM32.dll (0x77BE0000)
C:\WINDOWS\System32\midimap.dll (0x77BD0000)
C:\WINDOWS\System32\HID.DLL (0x688F0000)
C:\WINDOWS\System32\SETUPAPI.DLL (0x76670000)
C:\Documents and Settings\user\Application Data\Microsoft\Virtual PC\VPCKeyboard.dll (0x10000000)
C:\WINDOWS\System32\mslbui.dll (0x605D0000)
C:\WINDOWS\System32\Secur32.dll (0x76F90000)
C:\WINDOWS\System32\security.dll (0x71F80000)
C:\WINDOWS\system32\msv1_0.dll (0x76D10000)
C:\WINDOWS\system32\appHelp.dll (0x75F40000)
C:\WINDOWS\System32\cscui.dll (0x76620000)
C:\WINDOWS\System32\CSCDLL.dll (0x76600000)
C:\WINDOWS\system32\MPR.dll (0x71B20000)
C:\WINDOWS\System32\ntlanman.dll (0x71C10000)
C:\WINDOWS\System32\NETUI0.dll (0x71CD0000)
C:\WINDOWS\System32\NETUI1.dll (0x71C90000)
C:\WINDOWS\System32\NETRAP.dll (0x71C80000)
C:\WINDOWS\System32\SAMLIB.dll (0x71BF0000)
C:\WINDOWS\System32\drprov.dll (0x75F60000)
C:\WINDOWS\System32\davclnt.dll (0x75F70000)

O servi�o Port Reporter observa portas para as altera��es e relat�rios essas altera��es nos arquivos de log. As altera��es podem incluir um aumento ou uma diminui��o do n�mero de conex�es em uma porta ou uma altera��o em estados de conex�o de conex�es existentes. O servi�o Port Reporter informa quando novas conex�es com uma porta TCP s�o feitas ou quando fechar as conex�es existentes. O servi�o Port Reporter tamb�m relata se alterar o estado de qualquer uma das conex�es TCP em uma porta. Estados de porta TCP incluem o seguinte:

CLOSE_WAIT
FECHADO
ESTABELECIDA
FIN_WAIT_1
LAST_ACK
ESCUTA
SYN_RECEIVED
SYN_SEND
TIMED_WAIT

Um exemplo de uma altera��o no estado ocorre quando uma conex�o que usa o estado de estabelecido � alterada para usar o estado ENCERRADO_ESPERA. �s vezes, o servi�o Port Reporter pode relatar que o processo (PID 0) usa algumas portas TCP. Essa situa��o pode ocorrer quando um programa que � instalado no computador se conecta a uma porta TCP e, em seguida, desconecta da porta muito rapidamente. A conex�o TCP entre o programa e a porta pode ser deixada em um estado ? tempo espera ?, embora o programa n�o estiver sendo executado. Nesse caso, o servi�o Port Reporter pode detectar que a porta est� sendo usada, mas n�o pode identificar o programa que usado a porta porque o programa n�o estiver sendo executado. A porta pode estar em um estado ? tempo espera ? para at� v�rios minutos, embora o processo que estava usando a porta n�o est� sendo executado.

O servi�o Port Reporter tamb�m cria uma entrada de log quando um programa que � instalado no computador inicia usando uma nova porta UDP. Por exemplo, se um programa se vincula a porta UDP 69, o servi�o Port Reporter registra esta a��o � RP PORTS e PR PIDS arquivos de log. O servi�o Port Reporter n�o registra UDP datagramas s�o enviadas para as portas UDP. O servi�o Port Reporter registra somente que a porta UDP est� ligada e � aceitar datagramas. A Microsoft recomenda que voc� verifique o log de eventos sistema e o log de eventos do aplicativo para eventos que s�o registrados pelo servi�o Port Reporter. O servi�o Port Reporter registra eventos quando do in�cio do servi�o, quando o servi�o cria arquivos de log, quando o servi�o for interrompido ou quando o servi�o encontra um erro. A fonte de eventos � registrada como PortReporter . O evento identifica��es s�o entre 100 e 112.

Porque sistemas Windows 2000 n�o oferecem suporte para mapeamento de porta para o processo, o arquivo de log PR PIDS conter� a seguinte linha:

Porta para mapeamentos de processo n�o est�o dispon�veis neste sistema.

Voltar para o in�cio

Mais Informa��es

Para exibir um WebCast sobre Port Reporter, clique no seguinte n�mero de artigo Base de dados de Conhecimento Microsoft:

840832� (http://support.microsoft.com/kb/840832/ ) WebCast de suporte: Verifica��o de portas

Voltar para o in�cio

Refer�ncias

PortQry vers�o 2.0 � uma ferramenta relacionada. Essa ferramenta lhe permite controlar a atividade em uma �nica porta ou em todas as portas que s�o usadas por um processo especificado. Para obter informa��es adicionais sobre PortQry vers�o 2.0, clique no n�mero abaixo para ler o artigo na Base de dados de Conhecimento da Microsoft:

832919� (http://support.microsoft.com/kb/832919/ ) Novos recursos e funcionalidades do PortQry vers�o 2.0

importante A ferramenta PortQueryUI fornece uma interface gr�fica do usu�rio e est� dispon�vel para download. PortQueryUI possui v�rios recursos que podem fazer usando PortQry mais f�cil. Para obter a ferramenta PortQueryUI, visite o seguinte site:

http://download.microsoft.com/download/3/f/4/3f4c6a54-65f0-4164-bdec-a3411ba24d3a/PortQryUI.exe (http://download.microsoft.com/download/3/f/4/3f4c6a54-65f0-4164-bdec-a3411ba24d3a/portqryui.exe)

importante A ferramenta Port Reporter Parser � um analisador de log para Port Reporter arquivos de log e agora est� dispon�vel para download. Porta Reporter Parser possui v�rios recursos avan�ados que podem ajudar a analisar arquivos de log de verifica��o de portas. Para obter a ferramenta Port Reporter Parser, visite o seguinte site:

http://download.microsoft.com/download/2/8/8/28810043-0e21-4004-89a3-2f477a74186f/PRParser.exe (http://download.microsoft.com/download/2/8/8/28810043-0e21-4004-89a3-2f477a74186f/prparser.exe)

Voltar para o in�cio

A informa��o contida neste artigo aplica-se a:

Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
Microsoft Windows Server 2003, Standard Edition (32-bit x86)
Microsoft Windows XP Professional
Microsoft Windows 2000 Professional Edition
Microsoft Windows 2000 Server
Microsoft Windows 2000 Advanced Server

Voltar para o in�cio

kbmt kbhowtomaster KB837243 KbMtpt

Voltar para o in�cio

Tradu��o autom�tica

IMPORTANTE: Este artigo foi traduzido por um sistema de tradu��o autom�tica (tamb�m designado por Machine Translation ou MT), n�o tendo sido portanto traduzido ou revisto por pessoas. A Microsoft possui artigos traduzidos por aplica��es (MT) e artigos traduzidos por tradutores profissionais, com o objetivo de oferecer em portugu�s a totalidade dos artigos existentes na base de dados de suporte. No entanto, a tradu��o autom�tica n�o � sempre perfeita, podendo conter erros de vocabul�rio, sintaxe ou gram�tica. A Microsoft n�o � respons�vel por incoer�ncias, erros ou preju�zos ocorridos em decorr�ncia da utiliza��o dos artigos MT por parte dos nossos clientes. A Microsoft realiza atualiza��es freq�entes ao software de tradu��o autom�tica (MT). Obrigado.

Clique aqui para ver a vers�o em Ingl�s deste artigo: 837243� (http://support.microsoft.com/kb/837243/en-us/ )

Voltar para o in�cio

Outros Recursos

Outros Sites de Suporte

Comunidades

Obtenha Ajuda Agora

Entre em contato com um profissional de suporte por email, online, ou telefone.

Tradu��es deste artigo

United States (English)

This site in other countries/regions:

Disponibilidade e descri��o da ferramenta Port Reporter

Nesta p�gina

Sum�rio

INTRODU��O

Vis�o geral

Obter a ferramenta Port Reporter

Instalar o servi�o Port Reporter

Instalar o servi�o Port Reporter para o local padr�o

Instalar o servi�o Port Reporter para um local diferente que n�o seja o local padr�o

Configurar e iniciar o servi�o Port Reporter

Local dos arquivos de log

Tamanho dos arquivos de log

Remover o servi�o Port Reporter

Interpretar arquivos de log de verifica��o de portas

O arquivo de log inicial de RP

O arquivo de log PORTS PR

O arquivo de log PIDS PR

Mais Informa��es

Refer�ncias

A informa��o contida neste artigo aplica-se a:

Palavras-chave:�

Outros Sites de Suporte

Comunidades

Obtenha Ajuda Agora

Tradu��es deste artigo

Centros de suporte relacionados