bu neng da han zi le ~~~zi ti qie huan you shi hou shi bai !!
ping mu you shi hou bian se~~QQ shu ru mi ma hui chu xian cuo wu ,qq deng lu
ti shi shang ci zai hu nan deng lu !!
jian pan you shi hou jian wei quan shi cuo de
IE zhu ye bei suo ding http://www.kzdh.com/?b  ,时不是的弹出广告网站
yuan xian zhong le  AVzhong jie zhe ,hai you ge cmd.exe bing du
  centruymoon bang wo jie jue guo  ,dan xian zai you bao fa le ,gang cai  you hen duo qi guai jin cheng
现在又突然能打汉字了....
输入法切换ctrl+shift有时候不能,QQ有时候密码输入总是错误,上次QQ登陆地址显示是湖南
键盘有时候键位错乱,IE主页被锁定http://www.kzdh.com/?b,电脑屏幕有时候会有点变色
原先中过AV终结者和cmd.exe的一个病毒,现在又爆发了,进程里有时候会出现很多不明,刚才还有3个cmd.exe进程,还有个进程我记不清楚了,不能终止,出现了6,7个
快救救我吧,,谢谢大家了

[用户系统信息]Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Alexa Toolbar)

[CODE]

2007-08-18,22:04:49

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
    <KpopMon><D:\KAV6\KPopMon.EXE>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
    <PHIME2002ASync><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Windows Publisher]
    <PHIME2002A><C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Publisher]
    <Smapp><C:\Program Files\Analog Devices\SoundMAX\Smtray.exe>  [Analog Devices, Inc.]
    <KAVRun><D:\KAV6\KAVRun.EXE>  [kingsoft]
    <Kulansyn><D:\KAV6\Kulansyn.EXE>  [Kingsoft Corp.]
    <runeip><"D:\Program Files\Rising\AntiSpyware\runiep.exe" /startup>  [Beijing Rising Technology Co., Ltd.]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><jhapri.dll>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{014A26F5-FBAD-4549-9CA1-C38210704BD1}><C:\Program Files\Common Files\Microsoft Shared\MSINFO\System16.ins>  []
    <{64123FF1-8371-9834-9021-184518451FA6}><C:\WINDOWS\system32\qjfpri.dll>  []
    <{3182C1EB-375C-573D-1F5E-234552345213}><C:\WINDOWS\system32\wlfpri.dll>  []
    <{D1351752-5628-1547-FFAB-BADC13512AFD}><C:\WINDOWS\system32\ztmpri.dll>  []
    <{A13AF41A-21B1-131B-1BFC-D2A90DF4A2BA}><C:\WINDOWS\system32\xyipri.dll>  []
    <{759AFD5B-159F-ACD8-954C-ACD545FA6587}><C:\WINDOWS\system32\jzgpri.dll>  []
    <{5D83AD9C-3BFC-43F5-979D-2904DBC54A8E}><C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys>  []
    <{252D2432-37A2-324F-2A54-21BF5CF2F1A2}><C:\WINDOWS\system32\jhapri.dll>  []
    <{4F12545B-1212-1314-5679-4512ACEF8904}><C:\WINDOWS\system32\wddpri.dll>  []
    <{A12BC423-3713-224D-3F55-32B35C62B11A}><C:\WINDOWS\system32\tlupri.dll>  []
    <{5562452F-FA36-BA4F-892A-FF5FBBAC5315}><C:\WINDOWS\system32\myepri.dll>  []
    <{7A65498A-7653-9801-1647-987114AB7F47}><C:\WINDOWS\system32\zxgpri.dll>  []
    <{42311A42-AC1B-158F-FD32-5674345F23A4}><C:\WINDOWS\system32\dhdpri.dll>  []
[HKEY_CURRENT_USER\Control Panel\Desktop]
    <SCRNSAVE.EXE><D:\KAV6\KaScrScn.scr>  []

==================================
启动文件夹
[Adobe Gamma Loader]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk --> C:\PROGRA~1\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [Adobe Systems, Inc.]><N>
[Microsoft Office]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Microsoft Office.lnk --> D:\PROGRA~1\MICROS~1\Office10\OSA.EXE [Microsoft Corporation]><N>
[TabUserW.exe]
  <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\TabUserW.exe.lnk --> C:\WINDOWS\system32\WTablet\TabUserW.exe [Wacom Technology, Corp.]><N>

==================================
服务
[Autodesk Licensing Service / Autodesk Licensing Service][Running/Auto Start]
  <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Kingsoft AntiVirus Service / KAVSvc][Running/Auto Start]
  <D:\KAV6\KAVSvc.EXE><kingsoft Antivirus>
[RaySat_3dsmax8 Server / mi-raysat_3dsmax8][Running/Auto Start]
  <"D:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe"><N/A>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
  <"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><N/A>
[SoundMAX Agent Service / SoundMAX Agent Service (default)][Running/Auto Start]
  <C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe><Analog Devices, Inc.>
[TabletService / TabletService][Running/Auto Start]
  <C:\WINDOWS\system32\Tablet.exe><Wacom Technology, Corp.>
[WebPrint / WebPrint][Stopped/Disabled]
  <c:\windows\system32\webprint.exe><N/A>

==================================
驱动程序
[9ihc2wk / 9ihc2wk][Stopped/Disabled]
  <\??\C:\WINDOWS\system32\drivers\9ihc2wk.sys><N/A>
[aeaudio / aeaudio][Running/Manual Start]
  <system32\drivers\aeaudio.sys><Andrea Electronics Corporation>
[KWatch / KWatch][Running/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\KWatch.Sys><Kingsoft Corporation>
[KWatch2 / KWatch2][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\KWatch2.sys><Kingsoft Antivirus>
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><CACE Technologies>
[nv / nv][Running/Manual Start]
  <System32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Pen Class / PenClass][Running/Boot Start]
  <\SystemRoot\system32\Drivers\PenClass.sys><Wacom Technology Corporation>
[Padus ASPI Shell / pfc][Running/Manual Start]
  <system32\drivers\pfc.sys><Padus, Inc.>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[q4h / q4hj][Running/Boot Start]
  <\SystemRoot\System32\DRIVERS\q4hj.sys><N/A>
[RsAntiSpyware / RsAntiSpyware][Running/Boot Start]
  <\SystemRoot\system32\drivers\RsBoot.sys><Beijing Rising Technology Co., Ltd.>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Running/Manual Start]
  <System32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <System32\DRIVERS\secdrv.sys><N/A>
[smwdm / smwdm][Running/Manual Start]
  <system32\drivers\smwdm.sys><Analog Devices, Inc.>

==================================

浏览器加载项
[FGCatchUrl]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[]
  {C1626E66-C26B-C628-E1DF-CDACCFA26EE1} <C:\Program Files\Common Files\goskdl.dll, N/A>
[FlashGet GetFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\Program Files\FlashGet\getflash.dll, www.flashget.com>
[浩方对战平台]
  {0A155D3C-68E2-4215-A47A-E800A446447A} <F:\game\浩方对战平台\GameClient.exe, N/A>
[金山卓越]
  {8DE0FCD4-5EB5-11D3-AD25-00002100131B} <url:http://www.joyo.com, N/A>
[QQ]
  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\网络软件\Tencent\QQ\QQ.EXE, TENCENT>
[快车]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\Program Files\FlashGet\FlashGet.exe, FlashGet.com>
[金山毒霸网站]
  {e1fc9760-7b95-49cd-80b9-8c9e41017b93} <url:http://www.duba.net, N/A>
[在线查毒]
  {f58d36c3-40be-4418-a786-d8fbe3eb3554} <D:\KAV6\kavie.htm, N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[金山毒霸]
  {A9BE2902-C447-420A-BB7F-A5DE921E6138} <D:\KAV6\KAIEPlus.DLL, >
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx, Adobe Systems, Inc.>
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation>
[Menu Class]
  {27D784D7-9217-4227-B43B-E06E4781E0CB} <C:\WINDOWS\system32\AlxTB1.dll, Alexa Internet>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[FGCatchUrl]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[HtmlDlgSafeHelper Class]
  {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\System32\mshtmled.dll, Microsoft Corporation>
[Tabular Data Control]
  {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\System32\tdc.ocx, Microsoft Corporation>
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[BrowserProxy4 Class]
  {69A72A8A-84ED-4A75-8CE7-263DBEF3E5D3} <C:\WINDOWS\system32\AlxTB1.dll, Alexa Internet>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\System32\shdocvw.dll, Microsoft Corporation>
[金山毒霸]
  {A9BE2902-C447-420A-BB7F-A5DE921E6138} <D:\KAV6\KAIEPlus.DLL, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\System32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, Microsoft Corporation>
[]
  {C1626E66-C26B-C628-E1DF-CDACCFA26EE1} <C:\Program Files\Common Files\goskdl.dll, N/A>
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[AUDIO__X_MS_WMA Moniker Class]
  {CD3AFA84-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx, Adobe Systems, Inc.>
[]
  {E1FC9760-7B95-49CD-80B9-8C9E41017B93} <D:\KAV6\KAVEXT.DLL, Kingsoft Corp.>
[FlashGet GetFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\Program Files\FlashGet\getflash.dll, www.flashget.com>
[FGAutoLive]
  {F90D830D-C175-4bbe-82C7-FF94669A4C42} <C:\Program Files\FlashGet\fgupdate.dll, www.flashget.com>
[FGCatchUrl]
  {FB5DA724-162B-11D3-8B9B-AA70B4B0B524} <C:\Program Files\FlashGet\jccatch.dll, www.flashget.com>
[&使用快车(FlashGet)下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[&使用快车(FlashGet)下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[上传到QQ网络硬盘]
  <E:\网络软件\Tencent\QQ\AddToNetDisk.htm, N/A>
[导出到 Microsoft Excel(&x)]
  <res://D:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000, N/A>
[添加到QQ自定义面板]
  <E:\网络软件\Tencent\QQ\AddPanel.htm, N/A>
[添加到QQ表情]
  <E:\网络软件\Tencent\QQ\AddEmotion.htm, N/A>
[用QQ彩信发送该图片]
  <E:\网络软件\Tencent\QQ\SendMMS.htm, N/A>

==================================

正在运行的进程
[PID: 444][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 508][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 532][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 580][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
[PID: 592][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
[PID: 752][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
[PID: 812][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
[PID: 884][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\System32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\System32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
[PID: 57988][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\Program Files\Common Files\Microsoft Shared\MSINFO\System16.ins]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\rpp7vyz1.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [D:\Program Files\Microsoft Office\Office10\msohev.dll]  [Microsoft Corporation, 10.0.2609]
[PID: 58184][C:\Program Files\Analog Devices\SoundMAX\Smtray.exe]  [Analog Devices, Inc., 3, 2, 10, 0]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58208][D:\Program Files\Rising\AntiSpyware\runiep.exe]  [Beijing Rising Technology Co., Ltd., 4.0.0.18]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58232][D:\KAV6\KWatchUI.EXE]  [, 2004.1.6.119]
    [D:\KAV6\kavcomm.dll]  [Kingsoft Corporation, 2003, 11, 12, 66]
    [D:\KAV6\kavdlg.dll]  [, 2004.7.20.81]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [D:\KAV6\KAVMLM.DLL]  [Kingsoft Corporation, 2003.11.12.10]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [D:\KAV6\RpcBrge.DLL]  [kingsoft, 2003, 11, 12, 64]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58220][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58244][D:\KAV6\KPopMon.EXE]  [, 2004, 2, 2, 31]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [D:\KAV6\KAVMLM.DLL]  [Kingsoft Corporation, 2003.11.12.10]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58332][C:\WINDOWS\system32\WTablet\TabUserW.exe]  [Wacom Technology, Corp., 4.94-3]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58472][D:\KAV6\MailMon.EXE]  [Kingsoft Co., Ltd, 2004, 2, 6, 245]
    [D:\KAV6\KMFilter.DLL]  [, 2004, 3, 1, 37]
    [D:\KAV6\parse822.dll]  [Quiksoft Corporation, 2, 0, 0, 9]
    [D:\KAV6\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\KAV6\KAVLogFn.dll]  [, 2003, 11, 26, 16]
    [D:\KAV6\KAVMLM.DLL]  [Kingsoft Corporation, 2003.11.12.10]
    [D:\KAV6\KAMsgBox.DLL]  [, 2002.9.27.30]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [D:\KAV6\KAVComm.dll]  [Kingsoft Corporation, 2003, 11, 12, 66]
    [D:\KAV6\RpcBrge.DLL]  [kingsoft, 2003, 11, 12, 64]
    [D:\KAV6\KAVIPC.DLL]  [Kingsoft Corp., 2002, 3, 29, 8]
    [D:\KAV6\KAVDlg.DLL]  [, 2004.7.20.81]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [D:\KAV6\KAECall.DLL]  [Kingsoft Corporation, 2003, 11, 14, 66]
    [D:\KAV6\KAEScan.DLL]  [Kingsoft Corp., 2003, 5, 24, 36]
    [D:\KAV6\KAEPlat.DLL]  [Kingsoft Corp., 2005, 12, 29, 56]
    [D:\KAV6\KAEMem.DAT]  [Kingsoft, 2006, 4, 12, 13]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]

[PID: 58532][D:\KAV6\KAVPlus.EXE]  [, 2004, 3, 3, 71]
    [D:\KAV6\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
[PID: 58696][C:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
[PID: 56264][E:\网络软件\Tencent\QQ\TIMPlatform.exe]  [tencent, 0, 3, 1, 8]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
[PID: 55048][E:\网络软件\Tencent\QQ\QQ.exe]  [TENCENT, 0, 0, 0, 0]
    [E:\网络软件\Tencent\QQ\QQBaseClassInDll.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQHelperDll.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\BasicCtrlDll.dll]  [Tencent, 7, 0, 101, 80]
    [E:\网络软件\Tencent\QQ\MFC42.DLL]  [Microsoft Corporation, 6.00.8665.0]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [E:\网络软件\Tencent\QQ\RICHED32.DLL]  [Microsoft Corporation, 5.00.2134.1]
    [E:\网络软件\Tencent\QQ\RICHED20.dll]  [Microsoft Corporation, 5.31.23.1218]
    [E:\网络软件\Tencent\QQ\QQAPI.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\TIMProxy.dll]  [tencent, 0, 3, 2, 4]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\LoginCtrl.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\LoginCtrlRes.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQRes.dll]  [tencent, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQMainFrame.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\CQQApplication.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\NewSkin.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\HostingMgr.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\CameraDll.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\MailSummary.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQKnowledgeSearch.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQAllInOne.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\GroupLive.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\SCCore.dll]  [TENCENT, 2, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\gdiplus.dll]  [Microsoft Corporation, 5.1.3102.2180 (xpsp_sp2_rtm.040803-2158)]
    [E:\网络软件\Tencent\QQ\QQSpace.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\vbscript.dll]  [Microsoft Corporation, 5.6.0.7426]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [E:\网络软件\Tencent\QQ\QQGroupMng.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\FlashAvatarDll.dll]  [, 1, 4, 0, 1]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [E:\网络软件\Tencent\QQ\QQAvatar.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\QQSysMsgMng.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\UserDefinedHead.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQPlugin.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\QQConfigPlugin.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\QQCustomFace.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\QRingMng.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\LongConnection.dll]  [tencent, 5, 0, 200, 160]
    [C:\WINDOWS\system32\msadp32.acm]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [E:\网络软件\Tencent\QQ\PhoneAPI.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\DialerAllinOne.dll]  [tencent, 1, 4, 0, 0]
    [E:\网络软件\Tencent\QQ\QQPet.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\ImageOle.dll]  [TODO: <Company name>, 1.0.0.1]
    [E:\网络软件\Tencent\QQ\QQSceneMng.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\BQQApplication.dll]  [N/A, ]
    [E:\网络软件\Tencent\QQ\GroupConnection.dll]  [Tencent, 0, 3, 3, 5]
    [E:\网络软件\Tencent\QQ\CommercesMng.dll]  [, 1, 0, 0, 1]
    [E:\网络软件\Tencent\QQ\PersonalDesktop.dll]  [深圳市腾讯计算机系统公司QQ工作小组, 1, 0, 0, 2]
    [E:\网络软件\Tencent\QQ\QQAddr.dll]  [深圳市腾讯计算机系统有限公司, 5, 0, 101, 280]
    [E:\网络软件\Tencent\QQ\npkcntc.dll]  [INCA Internet Co., Ltd., 2006, 6, 27, 1]
    [E:\网络软件\Tencent\QQ\npkpdb.dll]  [INCA Internet Co., Ltd., 2003, 10, 1, 1]
    [E:\网络软件\Tencent\QQ\QQZip.dll]  [tencent, 0, 3, 2, 4]
    [E:\网络软件\Tencent\QQ\QQPhoneHelper.dll]  [腾讯科技（深圳）有限公司, 2, 1, 9, 95]
    [E:\网络软件\Tencent\QQ\QQMMSender.dll]  [N/A, ]
[PID: 56328][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\Program Files\FlashGet\jccatch.dll]  [www.flashget.com, 1, 8, 4, 1007]
    [C:\Program Files\FlashGet\getflash.dll]  [www.flashget.com, 1, 8, 4, 1003]
    [D:\KAV6\KAVEXT.DLL]  [Kingsoft Corp., 2002, 5, 24, 6]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]
    [D:\Program Files\Microsoft Office\Office10\msohev.dll]  [Microsoft Corporation, 10.0.2609]
    [C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx]  [Adobe Systems, Inc., 9,0,47,0]
    [C:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 57536][E:\Downloads\sreng2\SREng.EXE]  [Smallfrogs Studio, 2.4.12.806]
    [C:\WINDOWS\system32\qjfpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\SYNCOR11.DLL]  [SoundMAX, 1.2.2]
    [D:\KAV6\KMailFun.dll]  [Kingsoft Co., Ltd, 2005, 4, 28, 227]
    [C:\Program Files\Internet Explorer\PLUGINS\WinSys64.Sys]  [N/A, ]
    [C:\WINDOWS\system32\zxgpri.dll]  [N/A, ]
    [D:\Program Files\Rising\AntiSpyware\ieprot.dll]  [Beijing Rising Technology Co., Ltd., 1, 0, 0, 10]
    [C:\WINDOWS\system32\dhdpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\myepri.dll]  [N/A, ]
    [C:\WINDOWS\system32\tlupri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wddpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jhapri.dll]  [N/A, ]
    [C:\WINDOWS\system32\jzgpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\xyipri.dll]  [N/A, ]
    [C:\WINDOWS\system32\ztmpri.dll]  [N/A, ]
    [C:\WINDOWS\system32\wlfpri.dll]  [N/A, ]

==================================
文件关联
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================

Winsock 提供者
N/A

==================================
Autorun.inf
N/A

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
入口点错误：LoadLibraryExW (危险等级: 一般,  被下面模块所HOOK: D:\KAV6\KMailFun.dll)

==================================
隐藏进程
N/A

==================================


[/CODE]

只能用ctrl+space切换2种字体
ctrl+shift失效
我只求帮我让我再重装系统之后不会还有这些病毒就可以了,
我快被折磨死了

对,刚才出现过6,7个的是attrib.exe
一般键盘错乱的时候就会有这个进程