瑞星卡卡安全论坛

Logfile of Kaka v2. 0. 0. 9 Scan Module v2. 0. 0. 1
Scan saved at 21:35:25, on 2006-09-21
Platform: Microsoft Windows XP Professional Service Pack 2 (Build 2600)
MSIE: Internet Explorer v6.00 SP2; (6.00.2900.2180 (xpsp_sp2_rtm.040803-2158))


Running processes:
[SMSS.EXE]
CommandLine =

[CSRSS.EXE]
CommandLine = C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16

[WINLOGON.EXE]
CommandLine = winlogon.exe

[SERVICES.EXE]
CommandLine = C:\WINDOWS\system32\services.exe

[LSASS.EXE]
CommandLine = C:\WINDOWS\system32\lsass.exe

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost -k DcomLaunch

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost -k rpcss

[CCenter.exe]
CommandLine = "F:\Program Files\Rising\Rav\CCenter.exe"

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\System32\svchost.exe -k netsvcs

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost.exe -k NetworkService

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost.exe -k LocalService

[RavMonD.exe]
CommandLine = "F:\Program Files\Rising\Rav\Ravmond.exe"

[SPOOLSV.EXE]
CommandLine = C:\WINDOWS\system32\spoolsv.exe

[RavStub.exe]
CommandLine = "F:\Program Files\Rising\Rav\RavStub.exe" /RAVMOND

[Explorer.EXE]
CommandLine = C:\WINDOWS\Explorer.EXE

[rundll32.exe]
CommandLine = C:\WINDOWS\system32\rundll32.exe C:\PROGRA~1\MMSASS~1\MMSSVER.DLL,Service

[rundll32.exe]
CommandLine = C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\System32\STDSVER.DLL,Service

[SVCHOST.EXE]
CommandLine = C:\WINDOWS\system32\svchost.exe -k imgsvc

[alg.exe]
CommandLine = C:\WINDOWS\System32\alg.exe

[SOUNDMAN.EXE]
CommandLine = "C:\WINDOWS\SOUNDMAN.EXE"

[VM_STI.EXE]
CommandLine = "C:\WINDOWS\VM_STI.EXE" BigDogPath

[RavTask.exe]
CommandLine = "F:\PROGRAM FILES\RISING\RAV\RAVTASK.EXE" -SYSTEM

[RavMon.exe]
CommandLine = "F:\Program Files\Rising\Rav\Ravmon.exe" -SYSTEM

[Popo.exe]
CommandLine = "C:\Program Files\Netease\popo2004\popo.exe"  -l

[jusched.exe]
CommandLine = "C:\Program Files\Java\jre1.5.0_01\bin\jusched.exe"

[AliTalk.exe]
CommandLine = "E:\PROGRA~1\阿里巴巴\贸易通\AliTalk.EXE" -hideframe

[ctfmon.exe]
CommandLine = "C:\WINDOWS\system32\ctfmon.exe"

[RsAgent.exe]
CommandLine = "F:\Program Files\Rising\Rav\RsAgent.exe"

[agentsvr.exe]
CommandLine = C:\WINDOWS\msagent\AgentSvr.exe -Embedding

[QQ.EXE]
CommandLine = "C:\Program Files\Tencent\QQ\QQ.exe"

[QQ.EXE]
CommandLine = "C:\Program Files\Tencent\QQ\QQ.exe"

[TIMPlatform.exe]
CommandLine = "C:\Program Files\Tencent\QQ\TIMPlatform.exe" -Embedding

[iexplore.exe]
CommandLine = "C:\Program Files\Internet Explorer\iexplore.exe"