heshanshan - 2007-1-13 9:47:00
Logfile of Kaka v2. 0. 2. 6 Scan Module v1. 0. 3. 9
Scan saved at 09:32:09, on 2007-01-13
Platform: Microsoft Windows XP Professional Service Pack 2 (Build 2600)
MSIE: Internet Explorer v7.00 RELEASE CANDIDATE (7.00.5700.6 (winmain(wmbla).060822-2230))
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page=C:\WINDOWS\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,default_page_url=http://go.microsoft.com/fwlink/?LinkId=54729
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page=%SystemRoot%\system32\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page=http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID}
O1 - Hosts: 127.0.0.1 LOCALHOST
O1 - Hosts: 127.0.0.1 WWW.POWERNUM123.COM
O1 - Hosts: 127.0.0.1 WWW.POWERNUM123.COM.CN
O1 - Hosts: 127.0.0.1 POWERNUM123.COM
O1 - Hosts: 127.0.0.1 POWERNUM123.COM.CN
O1 - Hosts: 127.0.0.1 WWW.CHEBL.COM
O1 - Hosts: 127.0.0.1 WWW.CHEBL.CN
O1 - Hosts: 127.0.0.1 WWW.CHEBL.COM.CN
O1 - Hosts: 127.0.0.1 CHEBL.COM
O1 - Hosts: 127.0.0.1 CHEBL.COM.CN
O1 - Hosts: 127.0.0.1 CHEBL.CN
O1 - Hosts: 127.0.0.1 WWW.CHEBULUO.COM.CN
O1 - Hosts: 127.0.0.1 WWW.CHEBULUO.COM
O1 - Hosts: 127.0.0.1 WWW.CHEBULUO.CN
O1 - Hosts: 127.0.0.1 CHEBULUO.COM.CN
O1 - Hosts: 127.0.0.1 CHEBULUO.COM
O1 - Hosts: 127.0.0.1 CHEBULUO.CN
O1 - Hosts: 127.0.0.1 WWW.17SP.COM
O1 - Hosts: 127.0.0.1 WWW.17SP.COM.CN
O1 - Hosts: 127.0.0.1 17SP.COM
O1 - Hosts: 127.0.0.1 17SP.COM.CN
O1 - Hosts: 127.0.0.1 WWW.FEIKONG.COM
O1 - Hosts: 127.0.0.1 WWW.FEIKONG.COM.CN
O1 - Hosts: 127.0.0.1 WWW.FEIKONG.CN
O1 - Hosts: 127.0.0.1 FEIKONG.COM
O1 - Hosts: 127.0.0.1 FEIKONG.COM.CN
O1 - Hosts: 127.0.0.1 FEIKONG.CN
O1 - Hosts: 127.0.0.1 WWW.HACONG.COM
O1 - Hosts: 127.0.0.1 HACONG.COM
O1 - Hosts: 127.0.0.1 WWW.XBXBXBXB.COM
O1 - Hosts: 127.0.0.1 WWW.SOBT.COM
O1 - Hosts: 127.0.0.1 WWW.SOBT.COM.CN
O1 - Hosts: 127.0.0.1 WWW.SOBT.CN
O1 - Hosts: 127.0.0.1 WWW.SOBT.NET
O1 - Hosts: 127.0.0.1 SOBT.COM
O1 - Hosts: 127.0.0.1 SOBT.COM.CN
O1 - Hosts: 127.0.0.1 SOBT.CN
O1 - Hosts: 127.0.0.1 SOBT.NET
O1 - Hosts: 127.0.0.1 WWW.XBXBXBXBXB.COM
O1 - Hosts: 127.0.0.1 XBXBXBXB.COM
O1 - Hosts: 127.0.0.1 XBXBXBXBXB.COM
O1 - Hosts: 127.0.0.1 WWW.NFSINFO.COM
O1 - Hosts: 127.0.0.1 NFSINFO.COM
O1 - Hosts: 127.0.0.1 CRMEASE.COM
O1 - Hosts: 127.0.0.1 HONGBANGZHU.COM
O1 - Hosts: 127.0.0.1 LINUX007.COM
O1 - Hosts: 127.0.0.1 LOSPLE.COM
O1 - Hosts: 127.0.0.1 LOSTEMPLE.COM
O1 - Hosts: 127.0.0.1 WWW.CRMEASE.COM
O1 - Hosts: 127.0.0.1 WWW.HONGBANGZHU.COM
O1 - Hosts: 127.0.0.1 WWW.LINUX007.COM
O1 - Hosts: 127.0.0.1 WWW.LOSPLE.COM
O1 - Hosts: 127.0.0.1 WWW.LOSTEMPLE.COM
O1 - Hosts: 127.0.0.1 SMARTALLYES.COM
O1 - Hosts: 127.0.0.1 51CPM.NET
O1 - Hosts: 127.0.0.1 51CPM.COM
O1 - Hosts: 127.0.0.1 YIQILAI.COM
O1 - Hosts: 127.0.0.1 UPDATE.SMARTALLYES.COM
O1 - Hosts: 127.0.0.1 MDMDMDMDMD.COM
O1 - Hosts: 127.0.0.1 WWW.SMARTALLYES.COM
O1 - Hosts: 127.0.0.1 WWW.51CPM.NET
O1 - Hosts: 127.0.0.1 WWW.51CPM.COM
O1 - Hosts: 127.0.0.1 WWW.YIQILAI.COM
O1 - Hosts: 127.0.0.1 WWW.MDMDMDMDMD.COM
O1 - Hosts: 127.0.0.1 QUANTUMBIZS.COM
O1 - Hosts: 127.0.0.1 WWW.QUANTUMBIZS.COM
O1 - Hosts: 127.0.0.1 PDSHN.COM
O1 - Hosts: 127.0.0.1 WWW.PDSHN.COM
O1 - Hosts: 127.0.0.1 PKPKPK.COM
O1 - Hosts: 127.0.0.1 WWW.PKPKPK.COM
O1 - Hosts: 127.0.0.1 PKPKPK.NET
O1 - Hosts: 127.0.0.1 WWW.PKPKPK.NET
O1 - Hosts: 127.0.0.1 OOOOOS.COM
O1 - Hosts: 127.0.0.1 WWW.OOOOOS.COM
O1 - Hosts: 127.0.0.1 CCTV06.COM
O1 - Hosts: 127.0.0.1 WWW.CCTV06.COM
O1 - Hosts: 127.0.0.1 FEIXIN.ORG
O1 - Hosts: 127.0.0.1 WWW.FEIXIN.ORG
O1 - Hosts: 127.0.0.1 PENGK.COM
O1 - Hosts: 127.0.0.1 WWW.PENGK.COM
O1 - Hosts: 127.0.0.1 QQYE.COM
O1 - Hosts: 127.0.0.1 WWW.QQYE.COM
O1 - Hosts: 127.0.0.1 XIA3.COM
O1 - Hosts: 127.0.0.1 WWW.XIA3.COM
O1 - Hosts: 127.0.0.1 XIAZAI1.COM
O1 - Hosts: 127.0.0.1 WWW.XIAZAI1.COM
O1 - Hosts: 127.0.0.1 CCWINFO.NET
O1 - Hosts: 127.0.0.1 WWW.CCWINFO.NET
O1 - Hosts: 127.0.0.1 DDPDDP.COM
O1 - Hosts: 127.0.0.1 WWW.DDPDDP.COM
O2 - BHO: BandIE Class - {77FEF28E-EB96-44FF-B511-3185DEA48697} - C:\PROGRA~1\baidu\bar\baidubar.dll
O2 - BHO: (file missing)
O3 - Toolbar: 百度超级搜霸 - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - C:\PROGRA~1\baidu\bar\baidubar.dll
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\GetFlash.exe
O4 - HKLM\..\Run: [RavTask] "d:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [runeip] d:\Program Files\Rising\KakaToolBar\runiep.exe
O4 - HKLM\..\RunOnce: [KKDelay] D:\Program Files\Rising\KakaToolBar\RunOnce.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O16 - DPF: {53AF6E02-F18F-4228-AC13-3E79773FBE50} (CMCBooter Object) - http://download.mysee.com/plugin/booter.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1159939071640
O17 - HKLM\System\CCS\Services\Tcpip\..\{987D6FF4-383C-476A-8D76-1B1CCEE3E1D6}: NameServer = 202.102.154.3 202.102.152.3
O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ipp - (no CLSID) - (no file)
O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll
O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll
O18 - Protocol: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll
O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll
O18 - Protocol: msdaipp - (no CLSID) - (no file)
O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll
O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll
O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll
O22 - SharedTaskScheduler: IE Component Categories cache daemon - {553858A7-4922-4e7e-B1C1-97140C1C16EF} - C:\WINDOWS\system32\ieframe.dll
O23 - Service: Internet Protect Service (BUZOR) - - C:\WINDOWS\system32\rundll.exe c:\windows\system32\wbem\smtpconfs.dll,export 1087
O23 - Service: Human Interface Device Access (HidServ) - - C:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: System Security (Indtry) - - C:\WINDOWS\system32\svchost.exe -k netsvcs
O23 - Service: Mysee2_Runtime (Mysee2_Runtime) - 北京高维视讯科技有限公司 - C:\WINDOWS\system32\svchost.exe -k mysee2
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Rising Proxy Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - - c:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - "d:\Program Files\Rising\Rav\CCenter.exe"
O23 - Service: Rising RealTime Monitor (RsRavMon) - Beijing Rising Technology Co., Ltd. - "d:\Program Files\Rising\Rav\Ravmond.exe"
© 2000 - 2026 Rising Corp. Ltd.