我中了灰鸽子了，请帮助！谢谢！
Logfile of HijackThis v1.99.1
Scan saved at 19:52:50, on 2005-9-11
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\rising\Rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\rising\Rfw\RfwMain.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\RISING\RAV\RAVMON.EXE
C:\Program Files\wsearch\Search.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\PROGRAM FILES\RISING\RAV\RavStub.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\rising\rav\Rav.exe
C:\Program Files\rising\rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
D:\新建文件夹 (3)\HijackThis.exe

O1 - Hosts: 61.152.241.124 www.
O1 - Hosts: 61.152.241.124
O1 - Hosts: 61.152.241.124 www.baidu99.com
O1 - Hosts: 61.152.241.124 baidu99.com
O1 - Hosts: 61.152.241.124 www.tt135.com/dd/dy2.htm
O1 - Hosts: 61.152.241.124 tt135.com/dd/dy2.htm
O1 - Hosts: 61.152.241.124 www.38dianying.com/dy/dy11.htm
O1 - Hosts: 61.152.241.124 38dianying.com/dy/dy11.htm
O1 - Hosts: 61.152.241.124 www.365ting.com
O1 - Hosts: 61.152.241.124 365ting.com
O1 - Hosts: 61.152.241.124 www.hlj169.com
O1 - Hosts: 61.152.241.124 hlj169.com
O1 - Hosts: 61.152.241.124 www.oscar.com
O1 - Hosts: 61.152.241.124 oscar.com
O1 - Hosts: 61.152.241.124 www.kan163.net
O1 - Hosts: 61.152.241.124 kan163.net
O1 - Hosts: 61.152.241.124 www.hn2008.com
O1 - Hosts: 61.152.241.124 hn2008.com
O1 - Hosts: 61.152.241.124 www.qq2008.net
O1 - Hosts: 61.152.241.124 qq2008.net
O1 - Hosts: 61.152.241.124 www.tom2008.com/dianyingyuan.htm
O1 - Hosts: 61.152.241.124 tom2008.com/dianyingyuan.htm
O1 - Hosts: 61.152.241.124 www.kk018.com/shipin.htm
O1 - Hosts: 61.152.241.124 kk018.com/shipin.htm
O1 - Hosts: 61.152.241.124 www.tt131.blogdriver.com
O1 - Hosts: 61.152.241.124 tt131.blogdriver.com
O1 - Hosts: 61.152.241.124 www.yy125.com/dy/
O1 - Hosts: 61.152.241.124 yy125.com/dy/
O1 - Hosts: 61.152.241.124 www.7517.net
O1 - Hosts: 61.152.241.124 7517.net
O1 - Hosts: 61.152.241.124 www.k8588.com
O1 - Hosts: 61.152.241.124 k8588.com
O1 - Hosts: 61.152.241.124 www.wo111.com/v/dv1.htm
O1 - Hosts: 61.152.241.124 wo111.com/v/dv1.htm
O1 - Hosts: 61.152.241.124 www.235938.com
O1 - Hosts: 61.152.241.124 235938.com
O1 - Hosts: 61.152.241.124 www.7sese.qq38.com/21cn3.htm
O1 - Hosts: 61.152.241.124 7sese.qq38.com/21cn3.htm
O1 - Hosts: 61.152.241.124 www.tzshw.net
O1 - Hosts: 61.152.241.124 tzshw.net
O1 - Hosts: 61.152.241.124 www.1v6.com/movie/9735-1.htm
O1 - Hosts: 61.152.241.124 1v6.com/movie/9735-1.htm
O1 - Hosts: 61.152.241.124 www.zhao112.com/wz/s21cn.htm
O1 - Hosts: 61.152.241.124 zhao112.com/wz/s21cn.htm
O1 - Hosts: 61.152.241.124 www.dy699.com/movie1.htm
O1 - Hosts: 61.152.241.124 dy699.com/movie1.htm
O1 - Hosts: 61.152.241.124 www.33166.net/movie7.htm
O1 - Hosts: 61.152.241.124 33166.net/movie7.htm
O1 - Hosts: 61.152.241.124 www.lalaring.zj.com
O1 - Hosts: 61.152.241.124 lalaring.zj.com
O1 - Hosts: 61.152.241.124 www.268vod.blogdriver.com/268vod/index.html
O1 - Hosts: 61.152.241.124 268vod.blogdriver.com/268vod/index.html
O1 - Hosts: 61.152.241.124 www.500dy.com
O1 - Hosts: 61.152.241.124 500dy.com
O1 - Hosts: 61.152.241.124 www.31show.com
O1 - Hosts: 61.152.241.124 31show.com
O1 - Hosts: 61.152.241.124 www.2000qq.com/index.htm
O1 - Hosts: 61.152.241.124 2000qq.com/index.htm
O1 - Hosts: 61.152.241.124 www.tt516.com
O1 - Hosts: 61.152.241.124 tt516.com
O1 - Hosts: 61.152.241.124 www.q162.com/ads/
O1 - Hosts: 61.152.241.124 q162.com/ads/
O1 - Hosts: 61.152.241.124 www.dy5.com
O1 - Hosts: 61.152.241.124 dy5.com
O1 - Hosts: 61.152.241.124 www.cc500.com/
O1 - Hosts: 61.152.241.124 cc500.com/
O1 - Hosts: 61.152.241.124 www.265dy.com
O1 - Hosts: 61.152.241.124 265dy.com
O1 - Hosts: 61.152.241.124 www.2kok.com
O1 - Hosts: 61.152.241.124 2kok.com
O1 - Hosts: 61.152.241.124 www.99fx.net
O1 - Hosts: 61.152.241.124 99fx.net
O1 - Hosts: 61.152.241.124 www.v.2791.com
O1 - Hosts: 61.152.241.124 v.2791.com
O1 - Hosts: 61.152.241.124 www.movie2000.cn
O1 - Hosts: 61.152.241.124 movie2000.cn
O1 - Hosts: 61.152.241.124 www.smh6.com
O1 - Hosts: 61.152.241.124 smh6.com
O1 - Hosts: 61.152.241.124 www.ye78.com
O1 - Hosts: 61.152.241.124 ye78.com
O1 - Hosts: 61.152.241.124 www.sogo8.blogdriver.com/sogo8/index.html
O1 - Hosts: 61.152.241.124 sogo8.blogdriver.com/sogo8/index.html
O1 - Hosts: 61.152.241.124 www.36900.cn
O1 - Hosts: 61.152.241.124 36900.cn
O1 - Hosts: 61.152.241.124 www.dy502.com/movie21.asp
O1 - Hosts: 61.152.241.124 dy502.com/movie21.asp
O1 - Hosts: 61.152.241.124 www.dy07008.com
O1 - Hosts: 61.152.241.124 dy07008.com
O1 - Hosts: 61.152.241.124 www.dy8884.blogdriver.com
O1 - Hosts: 61.152.241.124 dy8884.blogdriver.com
O1 - Hosts: 61.152.241.124 www.89989.com
O1 - Hosts: 61.152.241.124 89989.com
O1 - Hosts: 61.152.241.124 www.pjbuy.com/00033
O1 - Hosts: 61.152.241.124 pjbuy.com/00033
O1 - Hosts: 61.152.241.124 www.3012.net/00848/00000.htm
O1 - Hosts: 61.152.241.124 3012.net/00848/00000.htm
O1 - Hosts: 61.152.241.124 www.30128.com
O1 - Hosts: 61.152.241.124 30128.com
O1 - Hosts: 61.152.241.124 www.f998.com
O1 - Hosts: 61.152.241.124 f998.com
O1 - Hosts: 61.152.241.124 www.zhangshan.2288.org/ads/reg.htm
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: MEobjectSDT - {D4D5C535-BA95-4327-870D-A33826FDD17A} - C:\WINDOWS\System32\gogobm.dll
O3 - Toolbar: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3}? - (no file)
O3 - Toolbar: 卡卡安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\System32\KakaTool.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] ; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvCplDaemon] ; RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] ; nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [popo2004] C:\Program Files\Netease\popo2004\start.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE HTD PC Camera
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [RavTimer] C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
O4 - HKLM\..\Run: [RavMon] C:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
O4 - HKLM\..\Run: [Super Rabbit SRRestore] D:\超级兔子\MagicSet\srrest.exe /autosave
O4 - HKLM\..\Run: [MoveSearch] C:\Program Files\wsearch\Search.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [NdBtDown] C:\Downloads\BtDown_cq.exe
O4 - Startup: 腾讯QQ.lnk = D:\qq\QQ.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - D:\qq\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - D:\qq\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - D:\qq\SendMMS.htm
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\qq\QQ.EXE
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\qq\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - D:\qq\QQIEHelper.dll
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/19b44cf64c76aa62c014/netzip/RdxIE601_cn.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8B76583C-133E-4B38-8774-73E8C94AE4CD}: NameServer = 202.101.172.46 202.101.172.47
O18 - Protocol: koboo - {7DEE9D05-FA0A-4416-A6F3-6537D0EAB6A6} - C:\WINDOWS\System32\mbprot.dll
O23 - Service: Gray_Pigeon_Server (GrayPigeonServer) - Unknown owner - C:\WINDOWS\G_Server.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Corporation Limited - C:\Program Files\rising\Rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - rising - C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
O23 - Service: SDAgent Service (SDAgentService) - smartdove - C:\Program Files\Common Files\SDAgent\smartda.exe

【回复“宏图待展”的帖子】O23 - Service: Gray_Pigeon_Server (GrayPigeonServer) - Unknown owner - C:\WINDOWS\G_Server.exe
查杀参考： http://forum.ikaka.com/topic.asp?board=28&artid=6202404
用HijackThis修复所有O1项。

将C:\Downloads\BtDown_cq.exe打包，发送到：baohelin@yahoo.com.cn

【回复“baohe”的帖子】我不会打包啊！对于你的帮助太感谢了，不过我还没有解决，能说详细一点吗？