Logfile of Kaka v2. 0. 0. 9 Scan Module v2. 0. 0. 1
Scan saved at 10:23:56, on 2006-09-21
Platform: Microsoft Windows XP Professional Service Pack 2 (Build 2600)
Running processes:
[EXPLORER.EXE]
CommandLine = C:\WINDOWS\Explorer.EXE
[RFWMAIN.EXE]
CommandLine = -StartUp
[cdnup.exe]
CommandLine = "C:\Program Files\CNNIC\Cdn\cdnup.exe"
[hpztsb07.exe]
CommandLine = "C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe"
[rundll32.exe]
CommandLine = "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DeskAdTop\Run.dll" ,Rundll
[RavTask.exe]
CommandLine = "E:\新建文件夹\RISING\RAV\RAVTASK.EXE" -SYSTEM
[RavMon.exe]
CommandLine = "E:\新建文件夹\Rising\Rav\Ravmon.exe" -SYSTEM
[ctfmon.exe]
CommandLine = "C:\WINDOWS\system32\ctfmon.exe"
[KkScan.exe]
CommandLine = "E:\Program Files\卡卡上网助手\KkScan.exe"
R3 - Default URLSearchHook is missing
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKLM\..\Run: [CdnCtr] C:\Program Files\CNNIC\Cdn\cdnup.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [Desktop] C:\WINDOWS\system32\rundll32.exe "C:\Program Files\DeskAdTop\Run.dll" ,Rundll
O4 - HKLM\..\Run: [RavTask] "E:\新建文件夹\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [RfwMain] "E:\Program Files\瑞星防火墙\Rising\Rfw\rfwmain.exe" -Startup
O4 - Startup: desktop.ini =
O4 - Global Startup: desktop.ini =
O8 - Extra context menu item: &使用迅雷下载 - C:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - C:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm
O8 - Extra context menu item: &使用迷你迅雷下载 - E:\Program Files\遨游\Maxthon\Thundermini\geturl.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - F:\程序文件\oicq\安装包\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - F:\程序文件\oicq\安装包\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - F:\程序文件\oicq\安装包\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - F:\程序文件\oicq\安装包\QQ\SendMMS.htm
O8 - Extra context menu item: 访问通用网址 - C:\Program Files\CNNIC\Cdn\cnnic.htm
O14 - IERESET.INF: START_PAGE_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
O21 - SSODL: DelayRun - {5A6F2F95-3191-433B-8533-EB0B596A7BAC} - (no file)