[C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\krnln.fnr]  [, 1, 0, 0, 1]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\shell.fne]  [N/A, N/A]
    [C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\shellEx.fne]  [N/A, N/A]
    [C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\EThread.fne]  [N/A, N/A]
    [C:\WINDOWS\system32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\tdll.dll]  [N/A, N/A]
    [C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\internet.fne]  [, 1, 0, 0, 1]
    [C:\KAV2005\KASocket.dll]  [Kingsoft Corporation, 2005, 2, 22, 233]
    [C:\DOCUME~1\SHIDON~1\LOCALS~1\Temp\E_4\MyLib.fne]  [, 1, 0, 0, 1]
[PID: 1248][C:\KAV2005\KMailMon.EXE]  [Kingsoft Corporation, 2005, 10, 8, 85]
    [C:\KAV2005\KAntiSpm.dll]  [N/A, 1, 0, 0, 2]
    [C:\KAV2005\KAVIPC2.DLL]  [Kingsoft Corporation, 2004, 12, 28, 20]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\KAV2005\KAECall2.DLL]  [Kingsoft Corporation, 2004, 12, 28, 7]
    [C:\KAV2005\KAEPlat.DLL]  [Kingsoft Corp., 2004, 11, 26, 53]
    [C:\KAV2005\KAEMem.DAT]  [Kingsoft, 2004, 11, 9, 11]
    [C:\KAV2005\KAConfig.DLL]  [Kingsoft Corporation, 2005, 5, 16, 31]
    [C:\KAV2005\KASocket.dll]  [Kingsoft Corporation, 2005, 2, 22, 233]
    [C:\WINDOWS\system32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\tdll.dll]  [N/A, N/A]
[PID: 2908][C:\Program Files\Tencent\TT\TTraveler.exe]  [腾讯公司, 3.1.0.261]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\KAV2005\KASocket.dll]  [Kingsoft Corporation, 2005, 2, 22, 233]
    [C:\WINDOWS\system32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\tdll.dll]  [N/A, N/A]
    [C:\Program Files\Tencent\TT\Plugins\QQFloatBar\QQFloatBar4TT2.dll]  [腾讯公司, 1, 1, 0, 5]
    [C:\Program Files\Tencent\TT\Plugins\TWeather\TWeather.dll]  [, 1, 0, 0, 3]
    [C:\Program Files\Tencent\TT\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 4]
    [C:\KAV2005\KAScript.DLL]  [Kingsoft Corporation, 2006, 2, 10, 60]
    [C:\KAV2005\KAEPlat.DLL]  [Kingsoft Corp., 2004, 11, 26, 53]
    [C:\KAV2005\KAEMem.DAT]  [Kingsoft, 2004, 11, 9, 11]
    [C:\WINDOWS\system32\macromed\flash\flash.ocx]  [Macromedia, Inc., 6,0,79,0]
    [C:\WINDOWS\system32\msicn\msibm.dll]  [广州傲讯信息科技有限公司, 2, 0, 0, 1]
    [C:\WINDOWS\system32\JPWB.IME]  [常诚研制, 4.00.950]
[PID: 3336][C:\Program Files\Tencent\TT\TCPlus.exe]  [腾讯公司, 1, 0, 0, 5]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\KAV2005\KASocket.dll]  [Kingsoft Corporation, 2005, 2, 22, 233]
    [C:\Program Files\Tencent\TT\QQDownload.dll]  [Tencent Technology (Shenzhen) Company Limited, 1, 0, 101, 28]
    [C:\Program Files\Tencent\TT\TNProxy.dll]  [Tencent Technology(Shenzhen) Company Limited, 2, 1, 101, 60]
    [C:\WINDOWS\system32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\tdll.dll]  [N/A, N/A]
[PID: 2140][C:\WINDOWS\system32\wuauclt.exe]  [Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]
[PID: 2604][C:\Documents and Settings\shidonglin\桌面\sreng2\SREng\SREng.exe]  [Smallfrogs Studio, 2.2.6.605]
    [C:\Program Files\CNNIC\Cdn\cdnforie.dll]  [CNNIC, 2, 0, 0, 0]
    [C:\KAV2005\KASocket.dll]  [Kingsoft Corporation, 2005, 2, 22, 233]
    [C:\WINDOWS\system32\ztdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\wldll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\msdll.dll]  [N/A, N/A]
    [C:\WINDOWS\system32\tdll.dll]  [N/A, N/A]
[PID: 2740][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. [C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================

谢谢!高手帮看一下,

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present           
O16 - DPF: {9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} (LiveMediaOcx Control) - http://kkktv.com/new-p2p/down/qqtv.exe
修复``

楼主你中了很多病毒
我建议你重装系统，手动一个一个杀很麻烦，和你重装系统的时间差不多了．．．

我刚重装呀,
但又中了,晕死

万能下载器是个软件，不是病毒

你重装后，马上装上杀软升级到最新的，全盘查杀

然后再打补丁，连上网

那它什么老是自动装上呢,不明

【回复“小鸟wy”的帖子】
结束下列进程：

C:\Program Files\Common Files\updat\Update.exe
C:\WINDOWS\command\rundll32.exe
C:\WINDOWS\Download\svhost32.exe
C:\WINDOWS\Download\svhost32.exe
C:\Program Files\Microsoft\svhost32.exe
C:\WINDOWS\Intel\rundll32.exe
C:\Program Files\CNNIC\Cdn\cdnup.exe
C:\WINDOWS\SVCHOST.EXE
C:\Program Files\Tencent\TT\TTraveler.exe
C:\Program Files\Tencent\TT\TCPlus.exe

用HijackThis修复下列项目：
O2 - BHO: wmpdrm - {0E674588-66B7-4E19-9D0E-2053B800F69F} - C:\WINDOWS\system32\wmpdrm.dll
O2 - BHO: KOSIE HelperInternet Explorer Web Content Guard - {1B2F92A1-CDAF-4511-9382-91E3F5CE0880} - C:\Program Files\KOS\KOSIEBar.dll
O2 - BHO: raObject Class - {46F194EB-B7DB-4B7A-BD42-5FF39FD17664} - C:\PROGRA~1\pcast\hbcast.dll
O2 - BHO: CdnForIE Class - {5C3853CF-C7E0-4946-B3FA-1ABDB6F48108} - C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
O2 - BHO: Vision - {6671A431-5C3D-463d-A7CF-5587F9B7E191} - C:\PROGRA~1\MMSASS~1\mmsass~1.dll
O2 - BHO: (no name) - {68A3B225-BCC2-40E6-BBD9-569CAEA30746} - C:\WINDOWS\system32\addIDhelper.dll
O2 - BHO: Spoolsv Class - {9C363D55-07D7-433d-A13E-D9C105202F6F} - C:\WINDOWS\system32\drivers\spoolsv.dll
O4 - HKLM\..\Run: [SoundMam] C:\WINDOWS\system32\svohost.exe
O4 - HKLM\..\Run: [RichMedia] C:\WINDOWS\system32\Rundll32.exe "C:\PROGRA~1\pcast\hbcast.dll",WaitWindows
O4 - HKLM\..\Run: [UpdateRun] C:\Program Files\Common Files\updat\Update.exe
O4 - HKLM\..\Run: [spoolsv] C:\WINDOWS\system32\spoolsv\spoolsv.exe -printer
O4 - HKLM\..\Run: [Tray] C:\WINDOWS\command\rundll32.exe
O4 - HKLM\..\Run: [xy] C:\WINDOWS\Download\svhost32.exe
O4 - HKLM\..\Run: [wl] C:\WINDOWS\Download\svhost32.exe
O4 - HKLM\..\Run: [ms] C:\Program Files\Microsoft\svhost32.exe
O4 - HKLM\..\Run: [rzt] C:\WINDOWS\Intel\rundll32.exe
O4 - HKLM\..\Run: [CdnCtr] C:\Program Files\CNNIC\Cdn\cdnup.exe
O4 - HKCU\..\Run: [pit] C:\WINDOWS\SVCHOST.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O16 - DPF: {9242BB35-0DB0-43AC-8DFC-8EA07E63B92A} (LiveMediaOcx Control) - http://kkktv.com/new-p2p/down/qqtv.exe

重启系统。显示隐藏文件。

删除下列文件：
C:\Program Files\Common Files\updat\Update.exe
C:\WINDOWS\command\rundll32.exe
C:\WINDOWS\Download\svhost32.exe
C:\WINDOWS\Download\svhost32.exe
C:\Program Files\Microsoft\svhost32.exe
C:\WINDOWS\Intel\rundll32.exe
C:\Program Files\CNNIC\Cdn\cdnup.exe
C:\WINDOWS\SVCHOST.EXE
C:\WINDOWS\system32\wmpdrm.dll
C:\Program Files\KOS\KOSIEBar.dll
C:\PROGRA~1\pcast\hbcast.dll
C:\PROGRA~1\CNNIC\Cdn\cdnforie.dll
C:\PROGRA~1\MMSASS~1\mmsass~1.dll
C:\WINDOWS\system32\addIDhelper.dll
C:\WINDOWS\system32\drivers\spoolsv.dll
C:\WINDOWS\system32\svohost.exe
C:\PROGRA~1\pcast\hbcast.dll
C:\WINDOWS\system32\drivers\spoolsv.dll
C:\WINDOWS\system32\spoolsv\spoolsv.exe