只要一打开有关"病毒""防毒"之类的网站就会自动关闭,打开有关"病毒""防毒"之类的软件就没反映,电脑重装后这病毒还是存在.
那位高手知道是什么病毒啊 因为瑞星无法查杀

参考
http://hi.baidu.com/newcenturysun/blog/item/db3da71be85d3e188618bf5a.html
http://hi.baidu.com/newcenturysun/blog/item/db3da71be85d3e188618bf5a.html
如果上述两个帖子不符合你的情况
下载 System Repair Engineer，
http://www.kztechs.com/sreng/download.html
1 解压缩sreng2.zip
2 改名sreng.exe为 vdsfdsfds.com运行
3 智能扫描=》扫描=》保存报告
4 把日志中的报告完整拷贝贴上来，不要修改

同样遇到楼主的问题。重装系统后想安装瑞星都不行，打开安装届面就会自动消失。
也无法运行sreng.exe，已改文件名为dfsf.com。

求助！！

可以参考"【原创】"随机8位数".exe又更新了[5.25]```无语了"这篇原创进行处理.
在反病毒论坛中找

引用:

【国安居小叶的贴子】同样遇到楼主的问题。重装系统后想安装瑞星都不行，打开安装届面就会自动消失。 也无法运行sreng.exe，已改文件名为dfsf.com。 求助！！ ………………

再重下载新的SRENG工具，直接下载到Windows文件夹里，然后也解压在Windows文件夹里，改了SRENG自己的文件夹名，再改SRENG名，然后在确认系统时间正确的情况下运行吧。

[CODE]

2007-06-02,12:01:11

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 2 (Build 2600) - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><D:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <FXPSP><D:\Program Files\Fuji Xerox\SimpleMonitor\FXPSP.EXE>  [Fuji Xerox Co., Ltd.]
    <SoundMan><SOUNDMAN.EXE>  [Realtek Semiconductor Corp.]
    <stup.exe><D:\PROGRA~1\TENCENT\Adplus\stup.exe>  [Tencent]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
    <MSDEG32><LYLoader.exe>  []
    <MSDWG32><LYLoadbr.exe>  [N/A]
    <MSDCG32    ><LYLeador.exe>  [N/A]
    <MSDOG32><LYLoador.exe>  [N/A]
    <MSDSG32><LYLoadar.exe>  [N/A]
    <MSDMG32><LYLoadmr.exe>  [N/A]
    <MSDHG32><LYLoadhr.exe>  [N/A]
    <MSDQG32><LYLoadqr.exe>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Publisher]
    <Userinit><D:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{205BCEC2-CEC2-05B5-C205-EC25BEC205B5}><D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <HotKeysCmds><; D:\WINDOWS\system32\hkcmd.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <IgfxTray><; D:\WINDOWS\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <IMJPMIG8.1><; "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32>  [(Verified)Microsoft Windows Publisher]
    <Kvsc><; D:\WINDOWS\Kvsc3.exe>  []
    <msccrt><; D:\WINDOWS\msccrt.exe>  []
    <PHIME2002A><; D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName>  [(Verified)Microsoft Windows Publisher]
    <PHIME2002ASync><; D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC>  [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <QQDownload><; "D:\Program Files\Tencent\QQDownload\QQDownload.exe" autostart>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <stup.exe><; D:\PROGRA~1\TENCENT\Adplus\stup.exe>  [Tencent]
    <testrun><; D:\DOCUME~1\user\LOCALS~1\Temp\testexe.exe>  []

==================================
启动文件夹

  <D:\Documents and Settings\All Users\「开始」菜单\程序\启动\u.vbe -->  [N/A]><N>

==================================
服务
[C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
  <D:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
[FX Printer Status Watcher / FXPWD][Running/Auto Start]
  <D:\WINDOWS\system32\FXPWDNT.EXE><Fuji Xerox Co., Ltd.>
[FX Printer Status Database / FXSDB][Running/Auto Start]
  <D:\WINDOWS\system32\FXSDBNT.EXE><Fuji Xerox Co., Ltd.>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <D:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>

==================================
驱动程序
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[CdaC15BA / CdaC15BA][Running/Auto Start]
  <\??\D:\WINDOWS\system32\drivers\CDAC15BA.SYS><Macrovision Europe Ltd>
[CelInDrv / CelInDrv][Stopped/Disabled]
  <\??\D:\WINDOWS\system32\Drivers\CelInDriver.sys><N/A>
[VIA Rhine Family Fast Ethernet Adapter Driver Service / FETNDISB][Running/Manual Start]
  <system32\DRIVERS\fetnd5b.sys><VIA Technologies, Inc.>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[Netgroup Packet Filter / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><CACE Technologies>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[rrSpy / rrSpy][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\rrSpy.sys><N/A>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>

==================================
浏览器加载项
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <D:\Program Files\Tencent\QQDownload\QQIEHelper01.dll, 腾讯公司>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <D:\Program Files\TENCENT\Adplus\SSAddr.dll, Tencent>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <D:\Program Files\Messenger\msmsgs.exe, Microsoft Corporation>
[QQCycloneHelper Class]
  {00000000-12C9-4305-82F9-43058F20E8D2} <D:\Program Files\Tencent\QQDownload\QQIEHelper01.dll, 腾讯公司>
[Tencent Browser Helper]
  {0C7C23EF-A848-485B-873C-0ED954731014} <D:\Program Files\TENCENT\Adplus\SSAddr.dll, Tencent>
[Microsoft Web 浏览器]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <D:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <D:\WINDOWS\system32\macromed\flash\flash.ocx, Macromedia, Inc.>
[&使用超级旋风下载]
  <D:\Program Files\Tencent\QQDownload\geturl.htm, N/A>
[&使用超级旋风下载全部链接]
  <D:\Program Files\Tencent\QQDownload\getAllurl.htm, N/A>
[添加到QQ表情]
  <D:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>

==================================
正在运行的进程
[PID: 560][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 636][\??\D:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 660][\??\D:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 3.0.0.3943]
    [D:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.3943]
[PID: 1824][D:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, 16.0.0.86]
    [D:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, 16.0.0.86]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
    [D:\WINDOWS\system32\msacm32.drv]  [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
    [D:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\SSAddr.dll]  [Tencent, 4, 5, 1, 14]
    [D:\WINDOWS\system32\tssoft32.acm]  [DSP GROUP, INC., 1.01]
    [D:\WINDOWS\system32\tsd32.dll]  [, ]
    [D:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 3.0.0.3943]
    [D:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 3.0.0.3943]

[PID: 124][D:\Program Files\Fuji Xerox\SimpleMonitor\FXPSP.EXE]  [Fuji Xerox Co., Ltd., 1.000.307.18]
    [D:\WINDOWS\system32\FXSRM.dll]  [Fuji Xerox Co., Ltd., 1.000.305.22]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\Fuji Xerox\SimpleMonitor\FX DocuPrint 202\FXH01DZ.DLL]  [Fuji Xerox Co., Ltd., 1.001.307.18]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
[PID: 144][D:\WINDOWS\SOUNDMAN.EXE]  [Realtek Semiconductor Corp., 5.1.0.34]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
[PID: 216][D:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
[PID: 256][D:\WINDOWS\System32\cmd.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
[PID: 280][D:\WINDOWS\system32\conime.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
    [D:\WINDOWS\uda.a]  [N/A, ]
[PID: 812][D:\WINDOWS\System32\cmd.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
    [D:\WINDOWS\qwe\weg.com]  [Smallfrogs Studio, 2.4.12.806]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]
[PID: 472][D:\WINDOWS\System32\WScript.exe]  [Microsoft Corporation, 5.6.0.8820]
    [D:\Program Files\Common Files\Microsoft Shared\MSINFO\CEC205B5.dll]  [N/A, ]
    [D:\Program Files\TENCENT\Adplus\Adplus.dll]  [Tencent, 4, 5, 1, 14]

==================================
文件关联
.TXT  Error. [D:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  Error. [AutoCADScriptFile]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [D:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock 提供者
N/A

==================================
Autorun.inf
[C:\]
[AutoRun]
open=wscript.exe u.vbe
shell\open\Command=wscript.exe u.vbe
shell\explore\Command=wscript.exe u.vbe
shell\find\Command=wscript.exe u.vbe
[D:\]
[AutoRun]
open=CEC205B5.exe
shell\open=打开(&O)
shell\open\Command=CEC205B5.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=CEC205B5.exe
[E:\]
[AutoRun]
open=CEC205B5.exe
shell\open=打开(&O)
shell\open\Command=CEC205B5.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=CEC205B5.exe
[F:\]
[AutoRun]
open=CEC205B5.exe
shell\open=打开(&O)
shell\open\Command=CEC205B5.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=CEC205B5.exe
[G:\]
[AutoRun]
open=CEC205B5.exe
shell\open=打开(&O)
shell\open\Command=CEC205B5.exe
shell\open\Default=1
shell\explore=资源管理器(&X)
shell\explore\Command=CEC205B5.exe

==================================
HOSTS 文件
127.0.0.1      localhost

==================================
API HOOK
N/A

==================================
隐藏进程
N/A

==================================


[/CODE]

【回复“天月来了”的帖子】前几天我也有过，不过重做了系统后就好了