上火 病毒与中毒,电脑中毒了个不知名的病毒

电脑中毒了个不知名的病毒 - 故障解答 - 电脑教程网

电脑中毒了个不知名的病毒

日期:2007-05-13   荐:
.Bsl895 我用的是诺顿杀毒软件 每次一进Windows就出现一个发现病毒的对话框 如下显示:        Scan type: Auto-Protect Scan[/font] Event: Threat Found![/font] Threat: Backdoor.Graybird[/font] File: C:\WINDOWS\1sass.DLL[/font] Location: C:\WINDOWS[/font] Computer: 04BFE1CF20C741D[/font] User: SYSTEM[/font] Action taken: Clean failed : Quarantine failed : Delete succeeded : Access denied[/font] Date found: [/font]2007[/font]年[/font]1[/font]月[/font]4[/font]日[/font] 8:12:03[/font] 删除后再全盘扫描又没有发现,第二次重启电脑又出来了,听说是控制了我的系统进程要怎么把这个可恶的家伙清除掉啊? 以前也中过毒,删除后就不会有了,这次好像不同了,杀不死的病毒,对于电脑防毒方面很多不懂的,还请高手指点 不胜感激!:$

2007-01-04,11:18:45 System Repair Engineer 2.2.6.605 Smallfrogs (http://www.KZTechs.com) Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能 以下内容被选中:     所有的启动项目(包括注册表、启动文件夹、服务等)     浏览器加载项     正在运行的进程(包括进程模块信息)     文件关联     Winsock 提供者     Autorun.inf     HOSTS 文件 启动项目 注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]     <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Corporation]     <Super Rabbit IEPro><F:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD> [Super Rabbit Soft]     <MsnMsgr><"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [N/A] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] (www.dngz.net)为您排除一切电脑故障

    <load><> [N/A]     <run><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]     <ccApp><"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"> [(Verified)Symantec Corporation]     <IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Corporation]     <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [(Verified)Microsoft Corporation]     <PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Corporation]     <PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Corporation]     <TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot> [RealNetworks, Inc.]     <vptray><C:\PROGRA~1\SYMANT~1\VPTray.exe> [(Verified)Symantec Corporation]     <Thunder><"F:\讯雷\Thunder.exe" /s> [Thunder Networking Technologies,LTD]     <SysExplr><F:\3D\superplay3500\SysExplr.exe> [N/A]     <!ewido><"C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.814\ewido4.0\ewido.exe" /minimized> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]     <shell><Explorer.exe> [(Verified)Microsoft Corporation]     <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]     <AppInit_DLLs><> [N/A] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]     <UIHost><logonui.exe> [(Verified)Microsoft Corporation] ================================== 启动文件夹 N/A ================================== 服务 [1sass / 1sass]  <C:\WINDOWS\1sass.exe><N/A> dngz.net [Symantec Event Manager / ccEvtMgr]  <"C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"><Symantec Corporation> [Symantec Password Validation / ccPwdSvc]  <"C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe"><Symantec Corporation> [Symantec Settings Manager / ccSetMgr]  <"C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"><Symantec Corporation> [Symantec AntiVirus Definition Watcher / DefWatch]  <"C:\Program Files\Symantec AntiVirus\DefWatch.exe"><Symantec Corporation> [Human Interface Device Access / HidServ]  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A> [Macromedia Licensing Service / Macromedia Licensing Service]  <"C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><N/A> [SavRoam / SavRoam]  <"C:\Program Files\Symantec AntiVirus\SavRoam.exe"><symantec> [Symantec Network Drivers Service / SNDSrvc]  <"C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe"><Symantec Corporation> [Symantec AntiVirus / Symantec AntiVirus]  <"C:\Program Files\Symantec AntiVirus\Rtvscan.exe"><Symantec Corporation> ================================== 驱动程序 [ADProt / ADProt]  <\SystemRoot\system32\drivers\ADProt.sys><腾讯科技(深圳)有限公司> [adpu160m / adpu160m]  <C:\WINDOWS\SYSTEM32\DRIVERS\adpu160m.SYS><Adaptec, Inc.> [Service for Realtek AC97 Audio (WDM) / ALCXWDM]  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.> [AliIde / AliIde]  <C:\WINDOWS\SYSTEM32\DRIVERS\AliIde.SYS><ALi Corporation> [ati2mtag / ati2mtag]  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.> [btfirst / btfirst]  <\SystemRoot\System32\DRIVERS\btfirst.sys><YAHOO Corporation.>

(www.dngz.net)

[dac960nt / dac960nt]  <C:\WINDOWS\SYSTEM32\DRIVERS\dac960nt.SYS><Mylex Corporation> [dpti2o / dpti2o]  <C:\WINDOWS\SYSTEM32\DRIVERS\dpti2o.SYS><Adaptec, Inc.> [VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB]  <system32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.> [USB Serial Converter Driver / FTDIBUS]  <system32\drivers\ftdibus.sys><FTDI Ltd.> [USB Serial Port Driver / FTSER2K]  <system32\drivers\ftser2k.sys><FTDI Ltd.> [ljnjjase / ljnjjase]  <\SystemRoot\\SystemRoot\System32\drivers\ljnjjase.sys><N/A> [mraid35x / mraid35x]  <C:\WINDOWS\SYSTEM32\DRIVERS\mraid35x.SYS><LSI Logic Corporation> [NAVENG / NAVENG]  <\?\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\naveng.sys><Symantec Corporation> [NAVEX15 / NAVEX15]  <\?\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\navex15.sys><Symantec Corporation> [npkcrypt / npkcrypt]  <\?\E:\qq\npkcrypt.sys><INCA Internet Co., Ltd.> [ondnyuxs / ondnyuxs]  <\SystemRoot\system32\drivers\ondnyuxs.sys><> [Direct Parallel Link Driver / Ptilink]  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.> [ql12160 / ql12160]  <C:\WINDOWS\SYSTEM32\DRIVERS\ql12160.SYS><QLogic Corporation> [Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139]  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation> [SAVRT / SAVRT]  <\?\C:\Program Files\Symantec AntiVirus\savrt.sys><Symantec Corporation> [SAVRTPEL / SAVRTPEL]  <\?\C:\Program Files\Symantec AntiVirus\Savrtpel.sys><Symantec Corporation> [Secdrv / Secdrv]  <system32\DRIVERS\secdrv.sys><N/A> [Sony USB Filter Driver (SONYPVU1) / SONYPVU1]  <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation> dngz.net版权所有

[Samsung Mobile USB Device 1.0 driver (WDM) / ss_bus]  <system32\DRIVERS\ss_bus.sys><MCCI> [SAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl]  <system32\DRIVERS\ss_mdfl.sys><MCCI> [SAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm]  <system32\DRIVERS\ss_mdm.sys><MCCI> [SVKP / SVKP]  <\?\C:\WINDOWS\system32\SVKP.sys><AntiCracking> [SymEvent / SymEvent]  <\?\C:\Program Files\Symantec\SYMEVENT.SYS><Symantec Corporation> [SYMREDRV / SYMREDRV]  <\SystemRoot\System32\Drivers\SYMREDRV.SYS><Symantec Corporation> [SYMTDI / SYMTDI]  <\SystemRoot\System32\Drivers\SYMTDI.SYS><Symantec Corporation> [ultra / ultra]  <C:\WINDOWS\SYSTEM32\DRIVERS\ultra.SYS><Promise Technology, Inc.> ================================== 浏览器加载项 [Thunder Browser Helper]  {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD> [启动迅雷5]  {09BA8F6D-CB54-424B-839C-C2A6C8E6B436} <F:\讯雷\Thunder.exe, Thunder Networking Technologies,LTD> [QQ]  {c95fe080-8f5d-11d2-a20b-00aa003c157b} <E:\qq\QQ.EXE, TENCENT> [Windows Media Player]  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, Microsoft Corporation> [HTML Document]  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A> [HtmlDlgSafeHelper Class]  {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, Microsoft Corporation> [IETag Factory]  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation> [Shell Name Space]  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A> [Windows Media Player]  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation> (www.dngz.net) [Microsoft Web 浏览器]  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation> [Thunder Browser Helper]  {889D2FEB-5411-4565-8998-1DD2C5261283} <F:\讯雷\ComDlls\XunLeiBHO_006.dll, Thunder Networking Technologies,LTD> [Microsoft Scriptlet Component]  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation> [RDS.DataSpace]  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\system\msadc\msadco.dll, Microsoft Corporation> [Shockwave Flash Object]  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9.ocx, Adobe Systems, Inc.> [&使用迅雷下载]  <F:\讯雷\Program\GetUrl.htm, N/A> [&使用迅雷下载全部链接]  <F:\讯雷\Program\GetAllUrl.htm, N/A> [上传到QQ网络硬盘]  <E:\qq\AddToNetDisk.htm, N/A> [添加到QQ自定义面板]  <E:\qq\AddPanel.htm, N/A> [添加到QQ表情]  <E:\qq\AddEmotion.htm, N/A> [用QQ彩信发送该图片]  <E:\qq\SendMMS.htm, N/A> ================================== 正在运行的进程 [PID: 1040][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1088][\?\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1112][\?\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1156][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1168][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1324][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1416][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] (www.dngz.net) [PID: 1524][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1608][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1704][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 1856][C:\WINDOWS\system32\spoolsv.exe] [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [PID: 152][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]     [C:\Program Files\WinRAR\rarext.dll] [N/A, N/A]     [C:\Program Files\Common Files\Symantec Shared\SSC\vpshell2.dll] [Symantec Corporation, 9.0.0.338]     [F:\讯雷\ComDlls\XunLeiBHO_006.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 392][C:\Program Files\Common Files\Real\Update_OB\realsched.exe] [RealNetworks, Inc., 0.1.0.3510] [PID: 400][C:\PROGRA~1\SYMANT~1\VPTray.exe] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28]     [C:\Program Files\Symantec AntiVirus\Cliscan.dll] [Symantec Corporation, 9.0.0.338]     [C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\Cliproxy.dll] [Symantec Corporation, 9.0.0.338] [PID: 424][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 480][C:\Program Files\Internet Explorer\IEXPLORE.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]     [F:\讯雷\ComDlls\XunLeiBHO_006.dll] [Thunder Networking Technologies,LTD, 5, 0, 0, 3] [PID: 488][C:\Program Files\Symantec AntiVirus\DefWatch.exe] [Symantec Corporation, 9.0.0.338] [PID: 576][C:\Program Files\Symantec AntiVirus\SavRoam.exe] [symantec, 1.5.0.0]     [C:\Program Files\Common Files\Symantec Shared\SSC\Transman.dll] [Symantec Corporation, 9.0.0.338] (www.dngz.net)     [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.112 E] [PID: 668][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 680][C:\Program Files\Symantec AntiVirus\Rtvscan.exe] [Symantec Corporation, 9.0.0.338]     [C:\WINDOWS\system32\CBA.DLL] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\MsgSys.dll] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\NTS.dll] [Intel? Corporation, 6.12.0.112 E]     [C:\WINDOWS\system32\PDS.DLL] [Intel? Corporation, 6.12.0.112 E]     [C:\Program Files\Symantec AntiVirus\NAVLU.dll] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\I2ldvp3.dll] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\ecmldr32.DLL] [Symantec Corp., 1.1.0.3]     [C:\Program Files\Symantec AntiVirus\SAVRT32.DLL] [Symantec Corporation, 9.3.0.28]     [C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL] [Symantec Corporation, 9.0.0.338]     [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\ecmsvr32.dll] [Symantec Corporation, 61.3.0.18]     [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVEX32a.DLL] [Symantec Corporation, 20061.3.0.12]     [C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20061227.017\NAVENG32.DLL] [Symantec Corporation, 20061.3.0.12]     [C:\Program Files\Symantec AntiVirus\IMail.dll] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\NotesExt.dll] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\vpmsece.dll] [Symantec Corporation, 9.0.0.338]

.

    [C:\Program Files\Common Files\Symantec Shared\SSC\scandlgs.dll] [Symantec Corporation, 9.0.0.338]     [C:\Program Files\Symantec AntiVirus\DecSDK.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2ID.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2SS.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2CAB.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2LHA.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2LZ.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2AMG.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2TAR.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2RTF.dll] [Symantec Corporation, 3.02.11.32]     [C:\Program Files\Symantec AntiVirus\Dec2Text.dll] [Symantec Corporation, 3.02.11.32] [PID: 968][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: dnsrv(bld4act)] [PID: 864][C:\WINDOWS\System32\alg.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [PID: 2476][F:\新建文件夹 (2)\sreng2\SREng\SREng.exe] [Smallfrogs Studio, 2.2.6.605] ================================== 文件关联 .TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

(www.dngz.net)版权所有

.EXE OK. ["%1" %*] .COM OK. ["%1" %*] .PIF OK. ["%1" %*] .REG OK. [regedit.exe "%1"] .BAT OK. ["%1" %*] .SCR OK. ["%1" /S] .CHM Error. [C:\WINDOWS\hh.exe %1] .HLP Error. [C:\WINDOWS\winhlp32.exe %1] .INI Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF Error. [C:\WINDOWS\NOTEPAD.EXE %1] .VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*] .LNK OK. [{00021401-0000-0000-C000-000000000046}] ================================== Winsock 提供者 N/A ================================== Autorun.inf N/A ================================== HOSTS 文件 127.0.0.1      localhost ==================================

这么多是什么东东啊? 看不懂的:o :L

服务 [1sass / 1sass]  <C:\WINDOWS\1sass.exe><N/A> 用sreng禁止这服务,也可以在系统中禁止这服务,,这就是灰鸽子 然后下载本板块置顶工具帖子里面的killbox汉化版,,,,删除工具,, 填入下面路径:删除可能有的文件 C:\WINDOWS\1sass.exe C:\WINDOWS\1sass.dll C:\WINDOWS\1sasshook.dll C:\WINDOWS\1sasskey.dll C:\WINDOWS\1sass.bat

最后用sreng修复关联错误 文件关联 .CHM Error. [C:\WINDOWS\hh.exe %1] .HLP Error. [C:\WINDOWS\winhlp32.exe %1] .INI Error. [C:\WINDOWS\NOTEPAD.EXE %1] .INF Error. [C:\WINDOWS\NOTEPAD.EXE %1]

标签: