SYSTEM发起N多个IEXPLORE.EXE进程，占用大量内存并自动弹出IE窗口.

下面为Hijack1991日志，请大家帮帮忙!

=================================================================

HijackThis_815汉化版扫描日志 V1.99.1
保存于 21:52:09, 日期 2006-9-5
操作系统： Windows XP SP2 (WinNT 5.01.2600)
浏览器： Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程：
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
D:\KV2006\KVMonXP.kxp
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\crypserv.exe
D:\tool\安全\ewido anti-spyware 4.0\guard.exe
D:\KV2006\KVSrvXP.exe
D:\KV2006\KVWsc.exe
C:\Program Files\SystemInspect\SVCHAST.exe
D:\KV2006\TrojDie.kxp
D:\KV2006\KRegEx.exe
D:\KV2006\UIHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\program files\KMPlayer\KMPlayer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\Administrator\桌面\HijackThis1991\HijackThis1991zww.exe

R3 - 默认的URLSearchHook丢失。用HijackThis修复
O3 - IE工具栏增项: 卡卡上网安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\kakatool.dll
O4 - 启动项HKLM\\Run: [KvMonXP] "D:\KV2006\KVMonXP.kxp" /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O17 - HKLM\System\CCS\Services\Tcpip\..\{55CA8C63-60CA-4C53-82F1-648228B97B31}: NameServer = 202.96.134.133
O17 - HKLM\System\CCS\Services\Tcpip\..\{6021C393-4439-43A1-B457-033A14E0D578}: NameServer = 202.96.128.166 202.96.134.133
O18 - 列举现有的协议: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - 列举现有的协议: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - NT 服务: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - NT 服务: Alerter - Unknown owner - C:\WINDOWS\System32\msnmsk.exe (file missing)
O23 - NT 服务: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - NT 服务: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - NT 服务: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - NT 服务: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - D:\tool\安全\ewido anti-spyware 4.0\guard.exe
O23 - NT 服务: KVSrvXP - Jiangmin Co. Ltd - D:\KV2006\KVSrvXP.exe
O23 - NT 服务: KVWSC - Jiangmin Co.Ltd - D:\KV2006\KVWsc.exe
O23 - NT 服务: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - NT 服务: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - NT 服务: SVCHAST (SystemInspect) - Unknown owner - C:\Program Files\SystemInspect\SVCHAST.exe
======================================



多谢大家帮忙！

O23 - NT 服务: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

修复!