瑞星卡卡安全论坛

HijackThis_zww汉化版扫描日志 V1.99.1
保存于      8:24:19, 日期 2006-10-15
操作系统：  Windows XP SP1 (WinNT 5.01.2600)
浏览器：    Internet Explorer v6.00 SP1 (6.00.2800.1106)

当前运行的进程：         
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\WINDOWS\System32\ctfmon.exe
F:\Program Files\BitComet\BitComet.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\Program Files\Internet Explorer\iexplore.exe
F:\Program Files\HijackThis1991汉化版\HijackThis1991zww.exe

O3 - IE工具栏增项: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\System32\kakatool.dll
O4 - 启动项HKLM\\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - Startup: desktop.ini
O4 - Global Startup: desktop.ini
O17 - HKLM\System\CCS\Services\Tcpip\..\{91826285-2BEA-4C9D-AD71-527BEEF50E49}: NameServer = 202.96.128.86 202.96.128.166
O20 - Winlogon Notify: klogon - C:\WINDOWS\System32\klogon.dll
O23 - NT 服务: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - NT 服务: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - NT 服务: 卡巴斯基反病毒6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - NT 服务: internet - Unknown owner - C:\WINDOWS\internet.exe (file missing)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

+ kavKaspersky Anti-VirusKaspersky Labc:\program files\kaspersky lab\kaspersky anti-virus 6.0\avp.exe

HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components

+ 0文件未找到:    About:Home

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components

+ n/a文件未找到:    C:\Program Files\Messenger\msgsc.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved

+ Display Panning CPL Extension文件未找到:    deskpan.dll

+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\windows\system32\hticons.dll

+ Web反病毒保护Script Monitor Internet Explorer pluginKaspersky Labc:\program files\kaspersky lab\kaspersky anti-virus 6.0\scieplugin.dll

+ WinRAR shell extensionc:\program files\winrar\rarext.dll

HKLM\Software\Microsoft\Internet Explorer\Toolbar

+ kakatool.dllBeijing Rising Technology Co., Ltd.c:\windows\system32\kakatool.dll

HKLM\System\CurrentControlSet\Services

+ Ati HotKey PollerATI External Event Utility EXE ModuleATI Technologies Inc.c:\windows\system32\ati2evxx.exe

+ ATI SmartATI Smartc:\windows\system32\ati2sgag.exe

+ AVPKaspersky Anti-VirusKaspersky Labc:\program files\kaspersky lab\kaspersky anti-virus 6.0\avp.exe

+ internet文件未找到:    C:\WINDOWS\internet.exe

HKLM\System\CurrentControlSet\Services

+ ALCXWDMRealtek AC'97 Audio Driver (WDM)Realtek Semiconductor Corp.c:\windows\system32\drivers\alcxwdm.sys

+ ati2mtagATI Radeon WindowsNT Miniport DriverATI Technologies Inc.c:\windows\system32\drivers\ati2mtag.sys

+ kl1Kaspersky Unified DriverKaspersky Labc:\windows\system32\drivers\kl1.sys

+ klifspuper-ptorKaspersky Labc:\windows\system32\drivers\klif.sys

+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.c:\program files\tencent\qq\npkcrypt.sys

+ oreans32c:\windows\system32\drivers\oreans32.sys

+ PtilinkParallel Technologies DirectParallel IO LibraryParallel Technologies, Inc.c:\windows\system32\drivers\ptilink.sys

+ RTL8023xpRealtek 10/100/1000 NDIS 5.1 Driver                        Realtek Semiconductor Corporation                          c:\windows\system32\drivers\rtlnicxp.sys

+ Secdrvc:\windows\system32\drivers\secdrv.sys

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify

+ AtiExtEventATI External Event Utility DLL ModuleATI Technologies Inc.c:\windows\system32\ati2evxx.dll

+ klogonLogon VisualizerKaspersky Labc:\windows\system32\klogon.dll

没发现你说的问题啊？

该用户帖子内容已被屏蔽