Kvsc autorun.inf病毒专杀工具
实验室不少同学中了kvsc3 病毒，它的特征是各盘根目录下面出现autorun.inf 文件（172k）,然后有个8位文件名的94229DA1.exe文件。（声明是网上找到的方法，不是本人解决的）
病毒特征

所有机子杀毒软件，兔子魔法等无法执行，无法显示隐藏文件，进安全模式蓝屏，任意点硬盘分区（不论是左键，还是右键，都出现硬盘分区“我的电脑”最大化，无可疑进程，能打开ＭＳＣＯＮＦＩＧ和注册表，在启动项里有个KVSC3。EXE文件，删除后不在出现，重装系统后，杀毒（我用的瑞星，没发现病毒）不到五分钟，病毒再次出现，，，杀毒软件又失效，杀毒字样网页不能开

1手工解决
 （1）用启动盘进入dos。
 （2）进入c:/program files/common files/microsoft shared/msinfo/94229DA1.dll和94229DA1.exe"（文件名因人而异）,有可能显示不了隐藏文件，在dos命令行里进入此文件夹，然后键入attrib -s -h -r  94229DA1.dll，删除之
（3）在注册表里找到94229DA1.dat(同上)，可以看到很多杀毒软件都在注册表项中，比如360Safe.exe，360tray.exe，avp.exe，KAV32.exe，MagicSet.exe等等各种各样的杀毒软件都在禁止列表当中，这个是造成杀毒软件打不开的问题所在，把这些列表删掉。
（4）在各个根目录下的94229DA1.exe(同上)和autorun.inf删掉
（5）杀毒软件杀毒，搞定

2 专杀工具
echo 该病毒资料
echo.
echo 该病毒建立的包括的源文件如下:(94229DA1这个文件名是这个病毒随机生成的,
echo 但是不管它的名字是怎样,大小都一样)
echo 各盘根目录下面出现autorun.inf 文件（172k）,然后有个8位文件名的94229DA1.exe文件.
echo.
echo 病毒文件全路径 大小(字节)
echo c:/windows/94229DA1.hlp 44
echo c:/WINDOWS/Help/94229DA1.chm 36,659
echo c:/Documents and Settings/Admin/Local Settings/Temp/94229DA1.exe 36,659
echo c:/Program Files/Common Files/Microsoft Shared/MSInfo/94229DA1.dll 47,923
echo c:/Program Files/Common Files/Microsoft Shared/MSInfo/94229DA1.dat 36,659
echo 其它所有分区:/autorun.inf 172
echo 其它所有分区:/94229DA1.exe 36,659
echo.
echo autorun.inf文件里的内容
echo.
echo [AutoRun]
echo open=94229DA1.exe
echo shell/open=打开(^&O)
echo shell/open/Command=94229DA1.exe
echo shell/open/Default=1
echo shell/explore=资源管理器(^&X)
echo shell/explore/Command=94229DA1.exe
echo.
echo 该病毒的后果:
echo 你的杀毒软件会无法打开,另外只要你的文件名中如果是"病毒","杀毒","瑞星"等和病毒.
echo 有关的字眼时,你这个文件打开之后会马上被关闭.网页中一搜索这些字眼也会马上关闭.
echo 可能还有其它的情况,我这里就不详细说明了.
echo.
echo 注意：因为该病毒与exeplorer.exe关联，所以在杀毒时，你的桌面
echo 会出现暂时只剩背景图片，那时请不要结束该程序，让它继续运行。
echo 到该程序运行结束之后，会自然显示出桌面的。

解决：
不显示隐藏：
请核对注册表项键值并修改为如图 2所示的对应值即可。

[HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/Explorer/Advanced/Folder/Hidden/SHOWALL]

"RegPath"="Software//Microsoft//Windows//CurrentVersion//Explorer//Advanced"
"Text"="显示所有文件和文件夹" （或者为@shell32.dll,-30500）
"Type"="radio"
"CheckedValue"=dword:00000001
"ValueName"="Hidden"
"DefaultValue"=dword:00000002
"HKeyRoot"=dword:80000001
"HelpID"="shell.hlp#51105"

不能进安全模式：

将以下内在保存为.reg文件，然后在系统中运行

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess]
"DependOnGroup"=hex(7):00,00
"DependOnService"=hex(7):4e,00,65,00,74,00,6d,00,61,00,6e,00,00,00,57,00,69,00,/
  6e,00,4d,00,67,00,6d,00,74,00,00,00,00,00
"Description"="为家庭和小型办公网络提供网络地址转换、寻址、名称解析和/或入侵保护服务。"
"DisplayName"="Windows Firewall/Internet Connection Sharing (ICS)"
"ErrorControl"=dword:00000001
"ImagePath"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,00,/
  74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,73,/
  00,76,00,63,00,68,00,6f,00,73,00,74,00,2e,00,65,00,78,00,65,00,20,00,2d,00,/
  6b,00,20,00,6e,00,65,00,74,00,73,00,76,00,63,00,73,00,00,00
"ObjectName"="LocalSystem"
"Start"=dword:00000002
"Type"=dword:00000020

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Epoch]
"Epoch"=dword:0000002b

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters]
"ServiceDll"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,/
  00,74,00,25,00,5c,00,53,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,/
  69,00,70,00,6e,00,61,00,74,00,68,00,6c,00,70,00,2e,00,64,00,6c,00,6c,00,00,/
  00

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/DomainProfile]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/DomainProfile/AuthorizedApplications]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/DomainProfile/AuthorizedApplications/List]
"%windir%//system32//sessmgr.exe"="%windir%//system32//sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/StandardProfile]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/StandardProfile/AuthorizedApplications]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Parameters/FirewallPolicy/StandardProfile/AuthorizedApplications/List]
"%windir%//system32//sessmgr.exe"="%windir%//system32//sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D://Program Files//Tencent//QQ//QQ.exe"="D://Program Files//Tencent//QQ//QQ.exe:*:Enabled:QQ"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Setup]
"ServiceUpgrade"=dword:00000001

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Setup/InterfacesUnfirewalledAtUpdate]
"All"=dword:00000001

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Services/SharedAccess/Enum]
"0"="Root//LEGACY_SHAREDACCESS//0000"
"Count"=dword:00000001
"NextInstance"=dword:00000001

以下代码也保存为.reg文件运行

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot]
"AlternateShell"="cmd.exe"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/AppMgmt]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Base]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Boot Bus Extender]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Boot file system]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/CryptSvc]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/DcomLaunch]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/dmadmin]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/dmboot.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/dmio.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/dmload.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/dmserver]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/EventLog]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/File system]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Filter]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/HelpSvc]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Netlogon]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/PCI Configuration]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/PlugPlay]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/PNP Filter]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/Primary disk]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/RpcSs]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/SCSI Class]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/sermouse.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/sr.sys]
@="FSFilter System Recovery"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/SRService]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/System Bus Extender]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/vga.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/vgasave.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/WinMgmt]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{36FC9E60-C465-11CF-8056-444553540000}]
@="Universal Serial Bus controllers"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E965-E325-11CE-BFC1-08002BE10318}]
@="CD-ROM Drive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E967-E325-11CE-BFC1-08002BE10318}]
@="DiskDrive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E969-E325-11CE-BFC1-08002BE10318}]
@="Standard floppy disk controller"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E96A-E325-11CE-BFC1-08002BE10318}]
@="Hdc"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E96B-E325-11CE-BFC1-08002BE10318}]
@="Keyboard"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E96F-E325-11CE-BFC1-08002BE10318}]
@="Mouse"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E977-E325-11CE-BFC1-08002BE10318}]
@="PCMCIA Adapters"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E97B-E325-11CE-BFC1-08002BE10318}]
@="SCSIAdapter"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E97D-E325-11CE-BFC1-08002BE10318}]
@="System"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{4D36E980-E325-11CE-BFC1-08002BE10318}]
@="Floppy disk drive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
@="Volume"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Minimal/{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
@="Human Interface Devices"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network]

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/AFD]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/AppMgmt]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Base]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Boot Bus Extender]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Boot file system]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Browser]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/CryptSvc]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/DcomLaunch]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Dhcp]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/dmadmin]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/dmboot.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/dmio.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/dmload.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/dmserver]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/DnsCache]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/EventLog]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/File system]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Filter]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/HelpSvc]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/ip6fw.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/ipnat.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/LanmanServer]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/LanmanWorkstation]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/LmHosts]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Messenger]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NDIS]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NDIS Wrapper]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Ndisuio]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetBIOS]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetBIOSGroup]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetBT]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetDDEGroup]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Netlogon]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetMan]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Network]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NetworkProvider]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/NtLmSsp]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/PCI Configuration]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/PlugPlay]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/PNP Filter]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/PNP_TDI]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Primary disk]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/rdpcdd.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/rdpdd.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/rdpwd.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/rdsessmgr]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/RpcSs]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/SCSI Class]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/sermouse.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/SharedAccess]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/sr.sys]
@="FSFilter System Recovery"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/SRService]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Streams Drivers]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/System Bus Extender]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/Tcpip]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/TDI]
@="Driver Group"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/tdpipe.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/tdtcp.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/termservice]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/vga.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/vgasave.sys]
@="Driver"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/WinMgmt]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/WZCSVC]
@="Service"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{36FC9E60-C465-11CF-8056-444553540000}]
@="Universal Serial Bus controllers"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E965-E325-11CE-BFC1-08002BE10318}]
@="CD-ROM Drive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E967-E325-11CE-BFC1-08002BE10318}]
@="DiskDrive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E969-E325-11CE-BFC1-08002BE10318}]
@="Standard floppy disk controller"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E96A-E325-11CE-BFC1-08002BE10318}]
@="Hdc"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E96B-E325-11CE-BFC1-08002BE10318}]
@="Keyboard"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E96F-E325-11CE-BFC1-08002BE10318}]
@="Mouse"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E972-E325-11CE-BFC1-08002BE10318}]
@="Net"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E973-E325-11CE-BFC1-08002BE10318}]
@="NetClient"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E974-E325-11CE-BFC1-08002BE10318}]
@="NetService"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E975-E325-11CE-BFC1-08002BE10318}]
@="NetTrans"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E977-E325-11CE-BFC1-08002BE10318}]
@="PCMCIA Adapters"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E97B-E325-11CE-BFC1-08002BE10318}]
@="SCSIAdapter"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E97D-E325-11CE-BFC1-08002BE10318}]
@="System"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{4D36E980-E325-11CE-BFC1-08002BE10318}]
@="Floppy disk drive"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
@="Volume"

[HKEY_LOCAL_MACHINE/SYSTEM/CurrentControlSet/Control/SafeBoot/Network/{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
@="Human Interface Devices"

Kvsc autorun.inf病毒相关推荐

1. 删除autorun.inf病毒的批处理 简单三招预防

   选择"显示隐藏文件"这一选项后,发现U盘有个文件闪出来一下就马上又消失了,而再打开文件夹选项时,发现仍就是"不显示隐藏文件"这一选项.而且刚发现点击C.D等盘符 ...

2. 优盘中发现计算机病毒怎么办,U盘插入电脑中发现autorun.inf病毒怎么删除

   ‍‍ U盘以及成为大家生活中不可缺少的一部分了,我们在使用电脑过程中经常会浏览或下载文件,这样很容易让U盘感染病毒,其中有一种就是autorun.inf,它能通过U盘给电脑中的其他磁盘带来病毒,从而破 ...

3. U盘autorun.inf病毒免疫

   本程序是在硬盘里建一个autorun.inf的文件夹,不可以直接删除.更改,从而达到免疫目的.同学们经常用U盘,但又怕U盘上有病毒,用了这个,也许可以帮你解决这个问题.如果要删除,请点击"取 ...

4. 记录一次与autorun.inf病毒的较量

   不久之前遇到过一次autorun病毒,不过它的版本较低很快就解决了,这次遇到的比较顽固.能解决也是巧合吧.这次是在网上下载winhex软件感染的. 公司花钱买的深信服的EDR破软件间竟然一个提示也没有 ...

5. 创建无法删除的autorun.inf来防范U盘病毒

   在微软的系统中,文件夹也是一种文件,只不过其属性特殊一点罢了.既然 这样,按照微软的规定,在同一文件夹下不允许同名的文件或文件夹出现.所以 ,我们可以利用这个规定来自己建立一个名为Autorun.in ...

6. 【转】U盘病毒autorun.inf的原理及查杀经验

   ******这是转载自别人博客的一篇文章,我也中了不止一次autorun.inf病毒,现将此文奉献出来,谢谢原作者的辛苦劳动!链接: ***************************       ...

7. U盘中的autorun.inf

   怎么删除u盘里的autorun.inf 如果U盘中毒,刚插进机子时按住SHIFT五秒,这样就可以跳过预读,这样防止了预读时把病毒感染到机子上,在U盘盘符上点右键,看看有没有"Auto&quo ...

8. autorun.inf sxs.exe病毒手动解决方法

   autorun.inf sxs.exe病毒手动解决方法 一.确认中已中此病毒: 依次执行 开始--运行--输入"cmd"--输入"X:"(X为盘符可以是D盘,可 ...

9. 对Autorun.inf类U盘病毒的攻防经验总结

   "RavMonE.exe"."rose.exe"."sxs.exe"."copy.exe"."setup.ex ...

10. 对Autorun.inf类U盘病毒的攻防

    "RavMonE.exe"."rose.exe"."sxs.exe"."copy.exe"."setup.ex ...

最新文章

1. “进度条”博客——第三周
2. Java修炼之路——基础篇——Java关键字
3. LeetCode 456. 132模式（逆序遍历+单调栈）
4. Java加密与解密的艺术~MD算法实现
5. 【翻译】WF从入门到精通（一）
6. android系统通话记录,安卓手机通话记录怎么恢复？快速恢复
7. 【转】poj 1823 hotel 线段树【Good】
8. VML 编程之--------《VML极道教程》原著:沐缘华
9. Codeforces 712C Memory and De-Evolution
10. cplex的下载、安装、IDE编程及相关问题解决
11. java编程语言视频教程,详细说明
12. 人工智能产品经理如何面对数据挖掘
13. Canal.deployer 启动报错说CHARACTER SET 'utf8' COLLATE 'utf8_unico', expect null,rkdown编辑器
14. android 拼音过滤、匹配首字母
15. Python 以正弦信号绘制信号
16. ue5-预计算可视性体积（PVS）
17. 微信小程序开发之——Video
18. 工作日查询（一段日期内的工作日天数查询）
19. 在阿里云或腾讯云配置微信小程序
20. php发送 日历邮件_如何阻止垃圾邮件发送者攻击您的Google日历

热门文章

1. 利用qiime2分析微生物组16S rRNA数据小结
2. 服务器终端性能测试之MBW内存测试
3. MVC5局部视图的调用
4. Kattis - bumped B - Bumped! （最短路）
5. 下厨房怎么显示服务器错误,4s只有一个下厨房app显示网络连接失败
6. html5 立方体 鼠标滑动,,HTML5超酷3D立方体按钮效果
7. 选型宝访谈：打造细胞级的IT透视能力，构建健壮的业务运维体系！
8. 小写转大写金额 php,php小写金额转大写
9. classic shell_使用Classic Shell将Windows 7开始菜单带到Windows 10
10. php显示控制器不存在,解决ThinkPHP6提示控制器不存在问题