每次查毒都发现这个Backdoor.Gpigeon.igv　路径C:\Program Files\Internet Explorer\iexplore.exe  我不知道怎么才能搞定它帮帮我．

请下载 System Repair Engineer，使用“智能扫描”，按下“扫描”按钮进行扫描，扫描完成后按下“保存报告”按钮保存报告日志文件（SREng.LOG），把保存的报告日志文件内容复制-粘贴上来
下载网址
http://www.kztechs.com/sreng/sreng2.zip
http://forum.ikaka.com/topic.asp?board=67&artid=5188931
日志一次粘不完，分次粘完，请不要修改。谢谢．．．

Logfile of HijackThis v1.99.1
Scan saved at 19:14:55, on 2006-10-16
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
c:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Rising\Rav\RavStub.exe
C:\WINDOWS\system32\clipsvr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
c:\program files\rising\rfw\RfwMain.exe
c:\windows\powermsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Rising\Rav\RavTask.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\Program Files\Rising\Rav\RsAgent.exe
C:\WINDOWS\msagent\AgentSvr.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\regedit.exe
D:\新建文件夹 (3)\HijackThis.exe

O1 - Hosts: 66.249.89.99 www.google.com
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 61.136.63.71 health.enorth.com.cn
O1 - Hosts: 61.153.58.67 www.luckfish.net
O1 - Hosts: 168.160.184.10 www.wanfangdata.com.cn
O1 - Hosts: 60.210.17.12 www.chinaguoyi.com
O1 - Hosts: 221.12.40.175 www.chinathink.org
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 216.34.38.105 asiafind.com
O1 - Hosts: 202.108.33.54 blog.sina.com.cn
O1 - Hosts: 202.108.33.54 blog.sina.com.cn
O1 - Hosts: 210.51.181.139 www.tjwch.org
O1 - Hosts: 202.108.253.41 tj.soufun.com
O1 - Hosts: 60.28.249.210 www.tjits.cn
O1 - Hosts: 222.73.254.176 tj.eeju.com
O1 - Hosts: 219.141.31.39 gzhqyy.vicp.net
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 58.211.0.136 www.mmsk.cn
O1 - Hosts: 211.151.230.36 sohu.elong.com
O1 - Hosts: 218.108.246.202 auction1.taobao.com
O1 - Hosts: 218.108.246.201 search1.taobao.com
O1 - Hosts: 219.238.233.205 it.rising.com.cn
O1 - Hosts: 219.238.233.207 online.rising.com.cn
O1 - Hosts: 66.249.89.99 www.google.com
O1 - Hosts: 211.155.233.142 www.baiduyy.com
O1 - Hosts: 210.51.25.171 ce.jrsw.com
O1 - Hosts: 202.108.36.77 www.ourgame.com
O1 - Hosts: 219.133.61.54 service.qq.com
O1 - Hosts: 211.154.205.100 www.fengniao.com
O1 - Hosts: 211.99.213.66 www.1619.com.cn
O1 - Hosts: 210.51.168.111 www.gztc.com.cn
O1 - Hosts: 211.157.125.16 gzjinyu.cn
O1 - Hosts: 202.43.217.78 www.yahoo.cn
O1 - Hosts: 219.141.18.6 www.gytouch.com.cn
O1 - Hosts: 211.100.18.189 www.e-works.net.cn
O2 - BHO: ChajianHelper Class - {0CB66BA8-5E1F-4963-93D1-E1D6B78FE9A2} - C:\WINDOWS\system32\SYSREA~1.DLL
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: BitComet工具栏 - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - (no file)
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IMJPMIG8.1] ; "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE USB PC Camera 301P
O4 - HKLM\..\Run: [PowerOnScan] D:\新建文件夹 (3)\完美卸载V2006 完整版\CleanTips.exe
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - E:\qq\AddToNetDisk.htm
O8 - Extra context menu item: 添加到QQ自定义面板 - E:\qq\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - E:\qq\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - E:\qq\SendMMS.htm
O14 - IERESET.INF: START_PAGE_URL=about:blank
O16 - DPF: {3D8F74EE-8692-4F8F-B8D2-7522E732519E} (WebActivater Control) - http://game.qq.com/QQGame2.cab
O16 - DPF: {E4E2F180-CB8B-4DE9-ACBB-DA745D3BA153} (Rising Web Scan Object) - http://download.rising.com.cn/register/pcver/autoupgradepad/pcver2006new/OL2006.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{CFB58393-30A2-44F0-A58B-ED820074080D}: NameServer = 202.99.96.68 202.99.64.69
O23 - Service: NTFSDriverExtensions - Unknown owner - C:\WINDOWS\NTLDM
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe

请大哥帮帮看看

注意操作顺序：
1、重新启动电脑, 开机检测完后, 按[F8]键(可以一直按到启动菜单出来为止), 选择安全模式进入Windows
2，ALT+CTRL+DELETE调出任务管理器,终止clipsvr.exe，powermsgr.exe这两个进程
3，用HijackThis修复项目:
O1 - Hosts: 66.249.89.99 www.google.com
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 61.136.63.71 health.enorth.com.cn
O1 - Hosts: 61.153.58.67 www.luckfish.net
O1 - Hosts: 168.160.184.10 www.wanfangdata.com.cn
O1 - Hosts: 60.210.17.12 www.chinaguoyi.com
O1 - Hosts: 221.12.40.175 www.chinathink.org
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 216.34.38.105 asiafind.com
O1 - Hosts: 202.108.33.54 blog.sina.com.cn
O1 - Hosts: 202.108.33.54 blog.sina.com.cn
O1 - Hosts: 210.51.181.139 www.tjwch.org
O1 - Hosts: 202.108.253.41 tj.soufun.com
O1 - Hosts: 60.28.249.210 www.tjits.cn
O1 - Hosts: 222.73.254.176 tj.eeju.com
O1 - Hosts: 219.141.31.39 gzhqyy.vicp.net
O1 - Hosts: 202.108.33.32 games.sina.com.cn
O1 - Hosts: 58.211.0.136 www.mmsk.cn
O1 - Hosts: 211.151.230.36 sohu.elong.com
O1 - Hosts: 218.108.246.202 auction1.taobao.com
O1 - Hosts: 218.108.246.201 search1.taobao.com
O1 - Hosts: 219.238.233.205 it.rising.com.cn
O1 - Hosts: 219.238.233.207 online.rising.com.cn
O1 - Hosts: 66.249.89.99 www.google.com
O1 - Hosts: 211.155.233.142 www.baiduyy.com
O1 - Hosts: 210.51.25.171 ce.jrsw.com
O1 - Hosts: 202.108.36.77 www.ourgame.com
O1 - Hosts: 219.133.61.54 service.qq.com
O1 - Hosts: 211.154.205.100 www.fengniao.com
O1 - Hosts: 211.99.213.66 www.1619.com.cn
O1 - Hosts: 210.51.168.111 www.gztc.com.cn
O1 - Hosts: 211.157.125.16 gzjinyu.cn
O1 - Hosts: 202.43.217.78 www.yahoo.cn
O1 - Hosts: 219.141.18.6 www.gytouch.com.cn
O1 - Hosts: 211.100.18.189 www.e-works.net.cn
O2 - BHO: ChajianHelper Class - {0CB66BA8-5E1F-4963-93D1-E1D6B78FE9A2} - C:\WINDOWS\system32\SYSREA~1.DLL
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: BitComet工具栏 - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - (no file)
4，开始-运行输入regedit,打开注册表编辑器，定位到HKEY_LOCAL_MACHINE\ SYSTEM \ CURRENTCONTROLSET \ SERVICES分支，删除左栏中的病毒服务名NTFSDriverExtensions
5,双击我的电脑，工具，文件夹选项，查看，单击选取"显示隐藏文件或文件夹"清除"隐藏受保护的操作系统文件（推荐）"复选框。在提示确定更改时，单击“是”，在隐藏文件和文件夹选项里选择显示所有文件和文件夹 清除“隐藏已知文件类型的扩展名
6,删除：
C:\WINDOWS\system32\SYSREA~1.DLL
C:\WINDOWS\NTLDM
c:\windows\powermsgr.exe
C:\WINDOWS\system32\clipsvr.exe