电脑中毒了个不知名的病毒

.Bsl895 我用的是诺顿杀毒软件 每次一进Windows就出现一个发现病毒的对话框 如下显示： 　　　　　　 Scan type:　Auto-Protect Scan[/font] Event:　Threat Found![/font] Threat: Backdoor.Graybird[/font] File:　C:\WINDOWS\1sass.DLL[/font] Location:　C:\WINDOWS[/font] Computer:　04BFE1CF20C741D[/font] User:　SYSTEM[/font] Action taken:　Clean failed : Quarantine failed : Delete succeeded : Access denied[/font] Date found: [/font]2007[/font]年[/font]1[/font]月[/font]4[/font]日[/font]　8:12:03[/font] 删除后再全盘扫描又没有发现，第二次重启电脑又出来了，听说是控制了我的系统进程要怎么把这个可恶的家伙清除掉啊？ 以前也中过毒，删除后就不会有了，这次好像不同了，杀不死的病毒，对于电脑防毒方面很多不懂的，还请高手指点 不胜感激！:$

2007-01-04,11:18:45 System Repair Engineer 2.2.6.605 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能 以下内容被选中： 　 　 所有的启动项目（包括注册表、启动文件夹、服务等） 　 　 浏览器加载项 　 　 正在运行的进程（包括进程模块信息） 　 　 文件关联 　 　 Winsock 提供者 　 　 Autorun.inf 　 　 HOSTS 文件 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] 　 　 ＜ctfmon.exe＞＜C:\WINDOWS\system32\ctfmon.exe＞　[(Verified)Microsoft Corporation] 　 　 ＜Super Rabbit IEPro＞＜F:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD＞　[Super Rabbit Soft] 　 　 ＜MsnMsgr＞＜＂C:\Program Files\MSN Messenger\MsnMsgr.Exe＂ /background＞　[N/A] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (www.dngz.net)为您排除一切电脑故障

　 　 ＜load＞＜＞　[N/A] 　 　 ＜run＞＜＞　[N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] 　 　 ＜ccApp＞＜＂C:\Program Files\Common Files\Symantec Shared\ccApp.exe＂＞　[(Verified)Symantec Corporation] 　 　 ＜IMJPMIG8.1＞＜＂C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE＂ /Spoil /RemAdvDef /Migration32＞　[(Verified)Microsoft Corporation] 　 　 ＜IMSCMig＞＜C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload＞　[(Verified)Microsoft Corporation] 　 　 ＜PHIME2002A＞＜C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName＞　[(Verified)Microsoft Corporation] 　 　 ＜PHIME2002ASync＞＜C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC＞　[(Verified)Microsoft Corporation] 　 　 ＜TkBellExe＞＜＂C:\Program Files\Common Files\Real\Update_OB\realsched.exe＂　-osboot＞　[RealNetworks, Inc.] 　 　 ＜vptray＞＜C:\PROGRA~1\SYMANT~1\VPTray.exe＞　[(Verified)Symantec Corporation] 　 　 ＜Thunder＞＜＂F:\讯雷\Thunder.exe＂ /s＞　[Thunder Networking Technologies,LTD] 　 　 ＜SysExplr＞＜F:\3D\superplay3500\SysExplr.exe＞　[N/A] 　 　 ＜!ewido＞＜＂C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.814\ewido4.0\ewido.exe＂ /minimized＞　[N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 　 　 ＜shell＞＜Explorer.exe＞　[(Verified)Microsoft Corporation] 　 　 ＜Userinit＞＜C:\WINDOWS\system32\userinit.exe,＞　[(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] 　 　 ＜AppInit_DLLs＞＜＞　[N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 　 　 ＜UIHost＞＜logonui.exe＞　[(Verified)Microsoft Corporation] ================================== 启动文件夹 N/A ================================== 服务 [1sass / 1sass] 　＜C:\WINDOWS\1sass.exe＞＜N/A＞ dngz.net [Symantec Event Manager / ccEvtMgr] 　＜＂C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe＂＞＜Symantec Corporation＞ [Symantec Password Validation / ccPwdSvc] 　＜＂C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe＂＞＜Symantec Corporation＞ [Symantec Settings Manager / ccSetMgr] 　＜＂C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe＂＞＜Symantec Corporation＞ [Symantec AntiVirus Definition Watcher / DefWatch] 　＜＂C:\Program Files\Symantec AntiVirus\DefWatch.exe＂＞＜Symantec Corporation＞ [Human Interface Device Access / HidServ] 　＜C:\WINDOWS\System32\svchost.exe -k netsvcs--＞%SystemRoot%\System32\hidserv.dll＞＜N/A＞ [Macromedia Licensing Service / Macromedia Licensing Service] 　＜＂C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe＂＞＜N/A＞ [SavRoam / SavRoam] 　＜＂C:\Program Files\Symantec AntiVirus\SavRoam.exe＂＞＜symantec＞ [Symantec Network Drivers Service / SNDSrvc] 　＜＂C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe＂＞＜Symantec Corporation＞ [Symantec AntiVirus / Symantec AntiVirus] 　＜＂C:\Program Files\Symantec AntiVirus\Rtvscan.exe＂＞＜Symantec Corporation＞ ================================== 驱动程序 [ADProt / ADProt] 　＜\SystemRoot\system32\drivers\ADProt.sys＞＜腾讯科技（深圳）有限公司＞ [adpu160m / adpu160m] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\adpu160m.SYS＞＜Adaptec, Inc.＞ [Service for Realtek AC97 Audio (WDM) / ALCXWDM] 　＜system32\drivers\ALCXWDM.SYS＞＜Realtek Semiconductor Corp.＞ [AliIde / AliIde] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\AliIde.SYS＞＜ALi Corporation＞ [ati2mtag / ati2mtag] 　＜system32\DRIVERS\ati2mtag.sys＞＜ATI Technologies Inc.＞ [btfirst / btfirst] 　＜\SystemRoot\System32\DRIVERS\btfirst.sys＞＜YAHOO Corporation.＞

(www.dngz.net)

[dac960nt / dac960nt] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\dac960nt.SYS＞＜Mylex Corporation＞ [dpti2o / dpti2o] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\dpti2o.SYS＞＜Adaptec, Inc.＞ [VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB] 　＜system32\DRIVERS\fetnd5b.sys＞＜VIA Technologies, Inc.＞ [USB Serial Converter Driver / FTDIBUS] 　＜system32\drivers\ftdibus.sys＞＜FTDI Ltd.＞ [USB Serial Port Driver / FTSER2K] 　＜system32\drivers\ftser2k.sys＞＜FTDI Ltd.＞ [ljnjjase / ljnjjase] 　＜\SystemRoot\\SystemRoot\System32\drivers\ljnjjase.sys＞＜N/A＞ [mraid35x / mraid35x] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\mraid35x.SYS＞＜LSI Logic Corporation＞ [NAVENG / NAVENG] 　＜\？\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\naveng.sys＞＜Symantec Corporation＞ [NAVEX15 / NAVEX15] 　＜\？\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\navex15.sys＞＜Symantec Corporation＞ [npkcrypt / npkcrypt] 　＜\？\E:\qq\npkcrypt.sys＞＜INCA Internet Co., Ltd.＞ [ondnyuxs / ondnyuxs] 　＜\SystemRoot\system32\drivers\ondnyuxs.sys＞＜＞ [Direct Parallel Link Driver / Ptilink] 　＜system32\DRIVERS\ptilink.sys＞＜Parallel Technologies, Inc.＞ [ql12160 / ql12160] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\ql12160.SYS＞＜QLogic Corporation＞ [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139] 　＜system32\DRIVERS\RTL8139.SYS＞＜Realtek Semiconductor Corporation＞ [SAVRT / SAVRT] 　＜\？\C:\Program Files\Symantec AntiVirus\savrt.sys＞＜Symantec Corporation＞ [SAVRTPEL / SAVRTPEL] 　＜\？\C:\Program Files\Symantec AntiVirus\Savrtpel.sys＞＜Symantec Corporation＞ [Secdrv / Secdrv] 　＜system32\DRIVERS\secdrv.sys＞＜N/A＞ [Sony USB Filter Driver (SONYPVU1) / SONYPVU1] 　＜system32\DRIVERS\SONYPVU1.SYS＞＜Sony Corporation＞ dngz.net版权所有

[Samsung Mobile USB Device 1.0 driver (WDM) / ss_bus] 　＜system32\DRIVERS\ss_bus.sys＞＜MCCI＞ [SAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl] 　＜system32\DRIVERS\ss_mdfl.sys＞＜MCCI＞ [SAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm] 　＜system32\DRIVERS\ss_mdm.sys＞＜MCCI＞ [SVKP / SVKP] 　＜\？\C:\WINDOWS\system32\SVKP.sys＞＜AntiCracking＞ [SymEvent / SymEvent] 　＜\？\C:\Program Files\Symantec\SYMEVENT.SYS＞＜Symantec Corporation＞ [SYMREDRV / SYMREDRV] 　＜\SystemRoot\System32\Drivers\SYMREDRV.SYS＞＜Symantec Corporation＞ [SYMTDI / SYMTDI] 　＜\SystemRoot\System32\Drivers\SYMTDI.SYS＞＜Symantec Corporation＞ [ultra / ultra] 　＜C:\WINDOWS\SYSTEM32\DRIVERS\ultra.SYS＞＜Promise Technology, Inc.＞ ================================== 浏览器加载项 [Thunder Browser Helper] 　{889D2FEB-5411-4565-8998-1DD2C5261283} ＜F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD＞ [启动迅雷5] 　{09BA8F6D-CB54-424B-839C-C2A6C8E6B436} ＜F:\讯雷\Thunder.exe, Thunder Networking Technologies,LTD＞ [QQ] 　{c95fe080-8f5d-11d2-a20b-00aa003c157b} ＜E:\qq\QQ.EXE, TENCENT＞ [Windows Media Player] 　{22D6F312-B0F6-11D0-94AB-0080C74C7E95} ＜C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation＞ [HTML Document] 　{25336920-03F9-11CF-8FD0-00AA00686F13} ＜%SystemRoot%\system32\mshtml.dll, N/A＞ [HtmlDlgSafeHelper Class] 　{3050F819-98B5-11CF-BB82-00AA00BDCE0B} ＜C:\WINDOWS\system32\mshtmled.dll, Microsoft Corporation＞ [IETag Factory] 　{38481807-CA0E-42D2-BF39-B33AF135CC4D} ＜C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation＞ [Shell Name Space] 　{55136805-B2DE-11D1-B9F2-00A0C98BC547} ＜%SystemRoot%\system32\shdocvw.dll, N/A＞ [Windows Media Player] 　{6BF52A52-394A-11D3-B153-00C04F79FAA6} ＜C:\WINDOWS\system32\wmp.dll, Microsoft Corporation＞ (www.dngz.net) [Microsoft Web 浏览器] 　{8856F961-340A-11D0-A96B-00C04FD705A2} ＜C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation＞ [Thunder Browser Helper] 　{889D2FEB-5411-4565-8998-1DD2C5261283} ＜F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD＞ [Microsoft Scriptlet Component] 　{AE24FDAE-03C6-11D1-8B76-0080C744F389} ＜C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation＞ [RDS.DataSpace] 　{BD96C556-65A3-11D0-983A-00C04FC29E36} ＜C:\Program Files\Common Files\system\msadc\msadco.dll, Microsoft Corporation＞ [Shockwave Flash Object] 　{D27CDB6E-AE6D-11CF-96B8-444553540000} ＜C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.＞ [＆使用迅雷下载] 　＜F:\讯雷\Program\GetUrl.htm, N/A＞ [＆使用迅雷下载全部链接] 　＜F:\讯雷\Program\GetAllUrl.htm, N/A＞ [上传到QQ网络硬盘] 　＜E:\qq\AddToNetDisk.htm, N/A＞ [添加到QQ自定义面板] 　＜E:\qq\AddPanel.htm, N/A＞ [添加到QQ表情] 　＜E:\qq\AddEmotion.htm, N/A＞ [用QQ彩信发送该图片] 　＜E:\qq\SendMMS.htm, N/A＞ ================================== 正在运行的进程 [PID: 1040][\SystemRoot\System32\smss.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1088][\？\C:\WINDOWS\system32\csrss.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1112][\？\C:\WINDOWS\system32\winlogon.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1156][C:\WINDOWS\system32\services.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1168][C:\WINDOWS\system32\lsass.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1324][C:\WINDOWS\system32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1416][C:\WINDOWS\system32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] (www.dngz.net) [PID: 1524][C:\WINDOWS\System32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1608][C:\WINDOWS\system32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1704][C:\WINDOWS\system32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1856][C:\WINDOWS\system32\spoolsv.exe]　[Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [PID: 152][C:\WINDOWS\Explorer.EXE]　[Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] 　 　 [C:\Program Files\WinRAR\rarext.dll]　[N/A, N/A] 　 　 [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [F:\讯雷\ComDlls\XunLeiBHO_006.dll]　[Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 392][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]　[RealNetworks, Inc., 0.1.0.3510] [PID: 400][C:\PROGRA~1\SYMANT~1\VPTray.exe]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]　[Symantec Corporation, 9.3.0.28] 　 　 [C:\Program Files\Symantec AntiVirus\Cliscan.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\Cliproxy.dll]　[Symantec Corporation, 9.0.0.338] [PID: 424][C:\WINDOWS\system32\ctfmon.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 480][C:\Program Files\Internet Explorer\IEXPLORE.EXE]　[Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)] 　 　 [F:\讯雷\ComDlls\XunLeiBHO_006.dll]　[Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 488][C:\Program Files\Symantec AntiVirus\DefWatch.exe]　[Symantec Corporation, 9.0.0.338] [PID: 576][C:\Program Files\Symantec AntiVirus\SavRoam.exe]　[symantec, 1.5.0.0] 　 　 [C:\Program Files\Common Files\Symantec Shared\SSC\Transman.dll]　[Symantec Corporation, 9.0.0.338] (www.dngz.net) 　 　 [C:\WINDOWS\system32\CBA.DLL]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\MsgSys.dll]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\NTS.dll]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\PDS.DLL]　[Intel？ Corporation, 6.12.0.112 E] [PID: 668][C:\WINDOWS\system32\svchost.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 680][C:\Program Files\Symantec AntiVirus\Rtvscan.exe]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\WINDOWS\system32\CBA.DLL]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\MsgSys.dll]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\NTS.dll]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\WINDOWS\system32\PDS.DLL]　[Intel？ Corporation, 6.12.0.112 E] 　 　 [C:\Program Files\Symantec AntiVirus\NAVLU.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\ecmldr32.DLL]　[Symantec Corp., 1.1.0.3] 　 　 [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL]　[Symantec Corporation, 9.3.0.28] 　 　 [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\ecmsvr32.dll]　[Symantec Corporation, 61.3.0.18] 　 　 [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVEX32a.DLL]　[Symantec Corporation, 20061.3.0.12] 　 　 [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVENG32.DLL]　[Symantec Corporation, 20061.3.0.12] 　 　 [C:\Program Files\Symantec AntiVirus\IMail.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\NotesExt.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\vpmsece.dll]　[Symantec Corporation, 9.0.0.338]

.

　 　 [C:\Program Files\Common Files\Symantec Shared\SSC\scandlgs.dll]　[Symantec Corporation, 9.0.0.338] 　 　 [C:\Program Files\Symantec AntiVirus\DecSDK.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2ID.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2SS.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2CAB.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2LHA.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2LZ.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2AMG.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2TAR.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2RTF.dll]　[Symantec Corporation, 3.02.11.32] 　 　 [C:\Program Files\Symantec AntiVirus\Dec2Text.dll]　[Symantec Corporation, 3.02.11.32] [PID: 968][C:\WINDOWS\system32\wdfmgr.exe]　[Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)] [PID: 864][C:\WINDOWS\System32\alg.exe]　[Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2476][F:\新建文件夹 (2)\sreng2\SREng\SREng.exe]　[Smallfrogs Studio, 2.2.6.605] ================================== 文件关联 .TXT　OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

(www.dngz.net)版权所有

.EXE　OK. [＂%1＂ %*] .COM　OK. [＂%1＂ %*] .PIF　OK. [＂%1＂ %*] .REG　OK. [regedit.exe ＂%1＂] .BAT　OK. [＂%1＂ %*] .SCR　OK. [＂%1＂ /S] .CHM　Error. [C:\WINDOWS\hh.exe %1] .HLP　Error. [C:\WINDOWS\winhlp32.exe %1] .INI　Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF　Error. [C:\WINDOWS\NOTEPAD.EXE %1] .VBS　OK. [%SystemRoot%\System32\WScript.exe ＂%1＂ %*] .JS　OK. [%SystemRoot%\System32\WScript.exe ＂%1＂ %*] .LNK　OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1　 　 　 localhost ==================================

这么多是什么东东啊？ 看不懂的:o :L

服务 [1sass / 1sass] 　＜C:\WINDOWS\1sass.exe＞＜N/A＞ 用sreng禁止这服务，也可以在系统中禁止这服务，，这就是灰鸽子 然后下载本板块置顶工具帖子里面的killbox汉化版，，，，删除工具，， 填入下面路径：删除可能有的文件 C:\WINDOWS\1sass.exe C:\WINDOWS\1sass.dll C:\WINDOWS\1sasshook.dll C:\WINDOWS\1sasskey.dll C:\WINDOWS\1sass.bat

最后用sreng修复关联错误 文件关联 .CHM　Error. [C:\WINDOWS\hh.exe %1] .HLP　Error. [C:\WINDOWS\winhlp32.exe %1] .INI　Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF　Error. [C:\WINDOWS\NOTEPAD.EXE %1]