最近系统慢的如牛，怀疑有问题啊！！！我现在附上系统扫描日志，肯请高手们帮忙检查一下，在下万分感激哦！！！

--------------------------系统环境-------------------------
检测日期: 2006-5-30 20:47
Windows: Microsoft Windows XP
ServicePack: Service Pack 2
Update: 2600.xpsp_sp2_gdr.050301-1519
Internet Explorer: 6.0.2900.2180


-----------------------网络基础安全测试--------------------
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:空连接检查安全!

服务名称        是否运行              描述
RemoteRegistry [运行中] [说明:这个服务可能被利用远程操作注册表]
Windows Time  [运行中] [说明:这个服务可能被黑客利用来启动木马]
Telnet        [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger      [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server        [运行中] [说明:如果你的电脑不用局域网中,可以关闭]


-----------------------计算机网络端口----------------------
协议      端口号              端口类型
TCP        135        微软DCE RPC end-point mapper服务
TCP        445        Microsoft-DS
TCP      6059        未知类型
TCP      1029        未知类型
TCP        139        微软Netbios Name服务(用于文件及打印机共享)
TCP        445        公共Internet文件系统(CIFS)
TCP        500        Internet密钥交换
TCP      1040        未知类型
TCP      1128        未知类型
TCP      4500        sae-urn
TCP        123        未知类型
TCP      1835        未知类型
TCP      1900        未知类型
TCP        123        未知类型
TCP        137        未知类型
TCP        138        未知类型
TCP      1900        未知类型
TCP        123        未知类型
TCP      1900        未知类型


--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]

[编号:1]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]

[编号:2]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:3]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:4]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:5]
[名称:D:\Rising\Rav\CCenter.exe]
[类型:运行进程]
[内容:Rising Antivirus Software Copyright Rising  2002]

[编号:6]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:7]
[名称:D:\Rising\Rav\Ravmond.exe]
[类型:运行进程]
[内容:Rising Antivirus Software Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:8]
[名称:d:\rising\rfw\rfwsrv.exe]
[类型:运行进程]
[内容:Rising Personal FireWall 2006 Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:9]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:10]
[名称:D:\Rising\Rav\RavStub.exe]
[类型:运行进程]
[内容:RavStub Application Copyright (c) 1998-2005 Rising Corp.]

[编号:11]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:12]
[名称:C:\PROGRA~1\Yahoo!\ASSIST~1\YLive.exe]
[类型:运行进程]
[内容:  YLive Copyright ? 2005]

[编号:13]
[名称:C:\WINDOWS\system32\rundll32.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]

[编号:14]
[名称:D:\Rising\Rav\RavTask.exe]
[类型:运行进程]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]

[编号:15]
[名称:C:\Program Files\Common Files\Real\Update_OB\realsched.exe]
[类型:运行进程]
[内容:RealPlayer (32-bit)  Copyright ? RealNetworks, Inc. 1995-2004]

[编号:16]
[名称:D:\Rising\Rav\Ravmon.exe]
[类型:运行进程]
[内容:Rising Anti-Virus Monitor Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:17]
[名称:C:\WINDOWS\system32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:18]
[名称:C:\WINDOWS\System32\nvsvc32.exe]
[类型:运行进程]
[内容:NVIDIA Driver Helper Service, Version 29.42 (c) NVIDIA Corporation. All rights reserved.]

[编号:19]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:20]
[名称:C:\WINDOWS\system32\wscntfy.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]

[编号:21]
[名称:D:\完美卸载V2006\MainCon.exe]
[类型:运行进程]
[内容:MainCon 应用程序 版权所有 (C) 2004]

[编号:22]
[名称:D:\完美卸载V2006\SysSec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]

[编号:23]
[分隔符:---------------------------------------------------------------------]

[编号:24]
[名称:D:\Rising\Rav\BWList.dll]
[类型:已加载DLL]
[内容:BWList Dynamic Link Library Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:25]
[名称:D:\Rising\Rav\RsCommX.dll]
[类型:已加载DLL]
[内容:rising RsCommX Copyright ? 2002]

[编号:26]
[名称:D:\Rising\Rav\RSAPPMGR.DLL]
[类型:已加载DLL]
[内容:Rising AntiVirus 2006 Copyright ? 2004 - 2005]

[编号:27]
[名称:D:\Rising\Rav\CfgDll.dll]
[类型:已加载DLL]
[内容:Rising AntiVirus 2006 Copyright ? 2004 - 2006]

[编号:28]
[名称:D:\Rising\Rav\RSCOMMON.DLL]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]

[编号:29]
[名称:D:\Rising\Rav\RsLog.dll]
[类型:已加载DLL]
[内容:RsLog Dynamic Link Library Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:30]
[名称:D:\Rising\Rav\HOOKSYS.dll]
[类型:已加载DLL]
[内容:HOOKSYS Dynamic Link Library Copyright (C) 2005]

[编号:31]
[名称:D:\Rising\Rav\Scanner.dll]
[类型:已加载DLL]
[内容:Rising RsScanner Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:32]
[名称:D:\Rising\Rav\libload.dll]
[类型:已加载DLL]
[内容:rising libload Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:33]
[名称:D:\Rising\Rav\VirusLib.dll]
[类型:已加载DLL]
[内容:Rising VirusLib Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:34]
[名称:D:\Rising\Rav\regmon.dll]
[类型:已加载DLL]
[内容:  regmon Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:35]
[名称:D:\Rising\Rav\HookWeb.dll]
[类型:已加载DLL]
[内容:rising HookWeb Copyright ? 2004]

[编号:36]
[名称:D:\Rising\Rav\MemMon.dll]
[类型:已加载DLL]
[内容:北京瑞星 MemMon Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:37]
[名称:D:\Rising\Rav\expscan.dll]
[类型:已加载DLL]
[内容:ExpScan Dynamic Link Library Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:38]
[名称:D:\Rising\Rav\mPorts.dll]
[类型:已加载DLL]
[内容:Personal Firewall Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:39]
[名称:D:\Rising\Rav\MailMon.dll]
[类型:已加载DLL]
[内容:mailmon Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:40]
[名称:D:\Rising\Rav\SpamEng.dll]
[类型:已加载DLL]
[内容: SpamEng Dynamic Link Library Copyright (C) 2004]

[编号:41]
[名称:D:\Rising\Rav\engine.dll]
[类型:已加载DLL]
[内容:rising engine Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:42]
[名称:D:\Rising\Rav\PostTrt.dll]
[类型:已加载DLL]
[内容:Rising PostTrt Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:43]
[名称:D:\Rising\Rav\UnExe.dll]
[类型:已加载DLL]
[内容:rising UnExe Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:44]
[名称:D:\Rising\Rav\ScanExec.dll]
[类型:已加载DLL]
[内容:rising ScanExec Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:45]
[名称:D:\Rising\Rav\ScanEx.dll]
[类型:已加载DLL]
[内容:Rising ScanEX Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:46]
[名称:D:\Rising\Rav\NvFile.dll]
[类型:已加载DLL]
[内容:rising NVFile Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:47]
[名称:D:\Rising\Rav\ScanMac.dll]
[类型:已加载DLL]
[内容:rising ScanMac Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:48]
[名称:D:\Rising\Rav\ScanSct.dll]
[类型:已加载DLL]
[内容:rising ScanSct Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:49]
[名称:D:\Rising\Rav\Unpacker.dll]
[类型:已加载DLL]
[内容:rising UnPacker Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:50]
[名称:D:\Rising\Rav\ExtMail.dll]
[类型:已加载DLL]
[内容:瑞星 ExtMail Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:51]
[名称:d:\rising\rfw\RfwRule.dll]
[类型:已加载DLL]
[内容:rule Dynamic Link Library Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:52]
[名称:d:\rising\rfw\rfwlog.dll]
[类型:已加载DLL]
[内容:Rising Personal FireWall 2006 Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:53]
[名称:d:\rising\rfw\Rfwdrv.dll]
[类型:已加载DLL]
[内容:Rising Personal FireWall 2005 Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:54]
[名称:d:\rising\rfw\MonDrv.dll]
[类型:已加载DLL]
[内容:进程保护 Copyright ? 2005]

[编号:55]
[名称:d:\rising\rfw\ProcLib.dll]
[类型:已加载DLL]
[内容:Rising Personal FireWall  Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]

[编号:56]
[名称:C:\WINDOWS\downlo~1\CnsHook.dll]
[类型:已加载DLL]
[内容:3721 CNS Module 版权所有 (C) 2001 - 2004]

[编号:57]
[名称:C:\PROGRA~1\3721\helper.dll]
[类型:已加载DLL]
[内容:Helper Module Copyright 2004]

[编号:58]
[名称:C:\PROGRA~1\3721\alrex.dll]
[类型:已加载DLL]
[内容:alrex Module Copyright 2006]

[编号:59]
[名称:C:\PROGRA~1\Yahoo!\ASSIST~1\Yhelper.dll]
[类型:已加载DLL]
[内容:Helper Module Copyright 2004]

[编号:60]
[名称:C:\Program Files\WinRAR\rarext.dll]
[类型:已加载DLL]
[内容:未知]

[编号:61]
[名称:C:\PROGRA~1\3721\ske\contmenu.dll]
[类型:已加载DLL]
[内容:未知]

[编号:62]
[名称:C:\WINDOWS\system32\RavExt.dll]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]

[编号:63]
[名称:C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]
[类型:已加载DLL]
[内容:Adobe PDF Shell Extension Copyright 2000-2004 Adobe Systems, Inc.]

[编号:64]
[名称:C:\PROGRA~1\3721\autolive.dll]
[类型:已加载DLL]
[内容:AutoLive Module Copyright 2004]

[编号:65]
[名称:C:\PROGRA~1\Yahoo!\ASSIST~1\yaLive.dll]
[类型:已加载DLL]
[内容:YAlive Module Copyright 2005]

[编号:66]
[名称:C:\PROGRA~1\Yahoo!\ASSIST~1\Yalliveex.dll]
[类型:已加载DLL]
[内容:  LiveEx Copyright ? 2005]

[编号:67]
[名称:C:\WINDOWS\system32\xunleibho_v14.dll]
[类型:已加载DLL]
[内容:XunLeiBHO Module Copyright 2004-2006]

[编号:68]
[名称:D:\Rising\Rav\RsGuiLib.dll]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2006 Rising Corp.]

[编号:69]
[名称:D:\Rising\Rav\PngDll.dll]
[类型:已加载DLL]
[内容:Rising Antivirus Software Copyright (c) 1998-2005 Rising Corp.]

[编号:70]
[分隔符:---------------------------------------------------------------------]

[编号:71]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]

[编号:72]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC]

[编号:73]
[名称:PHIME2002A]
[类型:开机启动]
[内容:C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName]

[编号:74]
[名称:NvCplDaemon]
[类型:开机启动]
[内容:RUNDLL32.EXE NvQTwk,NvCplDaemon initialize]

[编号:75]
[名称:nwiz]
[类型:开机启动]
[内容:nwiz.exe /install]

[编号:76]
[名称:RavTask]
[类型:开机启动]
[内容:"D:\Rising\Rav\RavTask.exe" -system]

[编号:77]
[名称:TkBellExe]
[类型:开机启动]
[内容:"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot]

[编号:78]
[名称:MemoryIdle]
[类型:开机启动]
[内容:D:\完美卸载V2006\Memory Booster.exe -PowerOn]

[编号:79]
[名称:YOKAssiant]
[类型:开机启动]
[内容:Rundll32.exe C:\PROGRA~1\YOK.com\SUPERS~1\YOK_SuperSearch.dll,YOKAssiant uninstall]

[编号:80]
[分隔符:---------------------------------------------------------------------]

[编号:81]
[名称:AFD 网络支持环境]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]

[编号:82]
[名称:Rising TDI Base Driver]
[类型:服务:Rising PFW Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:C:\WINDOWS\system32\drivers\basetdi.sys]

[编号:83]
[名称:DCOM 服务器进程启动器]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:84]
[名称:EagleNT]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\eaglent.sys]

[编号:85]
[名称:ExpScaner]
[类型:服务:ExpScan.sys Copyright (C) 2004 Rising]
[内容:d:\rising\rav\expscan.sys]

[编号:86]
[名称:GPKiller]
[类型:服务:未知]
[内容:\SystemRoot\system32\drivers\gpkiller.sys]

[编号:87]
[名称:HookCont]
[类型:服务:TDIHOOK Driver for Windows NT Copyright ]
[内容:d:\rising\rav\hookcont.sys]

[编号:88]
[名称:HookReg]
[类型:服务: 版权所有 (@) 2003]
[内容:d:\rising\rav\hookreg.sys]

[编号:89]
[名称:HookSys]
[类型:服务:Hooksys Copyright (C) 2004]
[内容:d:\rising\rav\hooksys.sys]

[编号:90]
[名称:InstallDriver Table Manager]
[类型:服务:未知]
[内容:"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"]

[编号:91]
[名称:MEMSCAN]
[类型:服务:MemScan Drivers for Windows NT Copyright (C) RFW Corp. 2000-2002]
[内容:d:\rising\rav\memscan.sys]

[编号:92]
[名称:mProcRs]
[类型:服务:Rising Personal FireWall  Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:d:\rising\rfw\mprocrs.sys]

[编号:93]
[名称:Windows Installer]
[类型:服务:未知]
[内容:C:\WINDOWS\System32\msiexec.exe /V]

[编号:94]
[名称:npkcrypt]
[类型:服务:nProtect KeyCrypt Driver Copyright (C) INCA Internet. 2000-2005]
[内容:e:\工具\qq\npkcrypt.sys]

[编号:95]
[名称:npkycryp]
[类型:服务:未知]
[内容:e:\工具\qq\npkycryp.sys]

[编号:96]
[名称:NPPTNT2]
[类型:服务:nProtect NPSC Kernel Mode Driver for NT Copyright ? 2000-2005 INCA Internet]
[内容:c:\windows\system32\npptnt2.sys]

[编号:97]
[名称:NVIDIA Driver Helper Service]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\nvsvc32.exe]

[编号:98]
[名称:PxHelp20]
[类型:服务:PxHelp20 Copyright ? Sonic Solutions]
[内容:C:\WINDOWS\system32\drivers\pxhelp20.sys]

[编号:99]
[名称:Rising Personal Firewall Service]
[类型:服务:Rising Personal FireWall 2006 Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:d:\rising\rfw\rfwsrv.exe]

[编号:100]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:101]
[名称:Rising Process Communication Center]
[类型:服务:未知]
[内容:"D:\Rising\Rav\CCenter.exe"]

[编号:102]
[名称:RsFwDrv]
[类型:服务:Rising nt_fwdrv Copyright(c) 1998-2006 Beijing  Rising  Technology  Corporation  Limited]
[内容:d:\rising\rfw\rsfwdrv.sys]

[编号:103]
[名称:RsRavMon Service]
[类型:服务:未知]
[内容:"D:\Rising\Rav\Ravmond.exe"]

[编号:104]
[名称:Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver]
[类型:服务:Realtek RTL8139 Family Fast Ethernet Adapter Copyright (C) 1994-2003 Realtek Semiconductor Corporation]
[内容:C:\WINDOWS\system32\drivers\rtl8139.sys]

[编号:105]
[名称:Secdrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]

[编号:106]
[名称:Prolific Serial port driver]
[类型:服务:Prolific USB-to-Serial Bridge Cable Copyright(C) 2000 Prolific Technology Inc.]
[内容:C:\WINDOWS\system32\drivers\ser2pl.sys]

[编号:107]
[名称:Service for AC'97 Sample Driver (WDM)]
[类型:服务:SiS 7012 Audio Device WDM Driver Copyright (C) Silicon Integrated Systems Corp.  2000-2003]
[内容:C:\WINDOWS\system32\drivers\sis7012.sys]

[编号:108]
[名称:SIS AGP Bus Filter]
[类型:服务:SiS (R) NT AGP Filter Copyright (C) Silion Integrated Systems Corp. 1999-2000]
[内容:C:\WINDOWS\system32\drivers\sisagp.sys]

[编号:109]
[名称:System Restore Filter Driver]
[类型:服务:未知]
[内容:\SystemRoot\System32\DRIVERS\sr.sys]

[编号:110]
[名称:Terminal Services]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]

[编号:111]
[名称:VCD VNC Virtual Network Adapter]
[类型:服务:VNN Client Adapter Copyright (C) VNN B.J. Corp.2002-2005]
[内容:C:\WINDOWS\system32\drivers\vcdvnic.sys]

[编号:112]
[名称:VGA 显示控制器。]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\vga.sys]

[编号:113]
[名称:xinstall]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\xinstall.sys]

[编号:114]
[名称:10Moons PC-Eye Camera II]
[类型:服务:VM., 2002. VM., 2002.]
[内容:C:\WINDOWS\system32\drivers\usbvm31b.sys]

[编号:115]
[分隔符:---------------------------------------------------------------------]

[编号:116]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:http://www.baidu.com/]

[编号:117]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:118]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:about:blank]

[编号:119]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:120]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome]

[编号:121]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]

[编号:122]
[分隔符:---------------------------------------------------------------------]

[编号:123]
[名称:ThunderIEHelper Class]
[类型:IE 嵌入对象]
[内容:C:\WINDOWS\system32\xunleibho_v14.dll]

[编号:124]
[名称:AcroIEHlprObj Class]
[类型:IE 嵌入对象]
[内容:C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll]

[编号:125]
[名称:Yahoo!Photo]
[类型:IE 嵌入对象]
[内容:C:\Program Files\Yahoo!\Assistant\Assist\yphtb.dll]

[编号:126]
[名称:AntiFish Class]
[类型:IE 嵌入对象]
[内容:C:\Program Files\Yahoo!\Assistant\Assist\yAngling.dll]

[编号:127]
[名称:雅虎助手]
[类型:IE 嵌入对象]
[内容:C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\yasbar.dll]

[编号:128]
[名称:QQBrowserHelperObject Class]
[类型:IE 嵌入对象]
[内容:F:\Program Files\QQ\QQIEHelper.dll]

[编号:129]
[名称:DDDMon Class]
[类型:IE 嵌入对象]
[内容:C:\Program Files\DuDu\DddClient\dddiemon.dll]

[编号:130]
[名称:]
[类型:IE 嵌入对象]
[内容:E:\工具\KuGoo3\KuGoo3DownXControl.ocx]

[编号:131]
[名称:CnsHook Class]
[类型:IE 嵌入对象]
[内容:C:\WINDOWS\downlo~1\CnsHook.dll]

[编号:132]
[名称:DragSearch BHO]
[类型:IE 嵌入对象]
[内容:C:\PROGRA~1\YiSou\yisoub.dll]

[编号:133]
[分隔符:---------------------------------------------------------------------]

[编号:134]
[名称:{1FBA04EE-3024-11D2-8F1F-0000F87ABD18}]
[类型:IE 扩展按钮]
[内容:网址大全 路径:http://www.coc.cc]

[编号:135]
[名称:{507F9113-CD77-4866-BA92-0E86DA3D0B97}]
[类型:IE 扩展按钮]
[内容:Yahoo 1G电邮 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yahoomail]

[编号:136]
[名称:{59BC54A2-56B3-44a0-93E5-432D58746E26}]
[类型:IE 扩展按钮]
[内容:寻宝乐趣多 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=taobao]

[编号:137]
[名称:{5D73EE86-05F1-49ed-B850-E423120EC338}]
[类型:IE 扩展按钮]
[内容:雅虎助手 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=yassist]

[编号:138]
[名称:{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}]
[类型:IE 扩展按钮]
[内容:http 路径:http]

[编号:139]
[名称:{E5D12C4E-7B4F-11D3-B5C9-0050045C3C96}]
[类型:IE 扩展按钮]
[内容:Yahoo! Messenger 路径:F:\Program Files\Messenger\YahooMessenger.exe]

[编号:140]
[名称:{ECF2E268-F28C-48d2-9AB7-8F69C11CCB71}]
[类型:IE 扩展按钮]
[内容:F:\P 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=repair]

[编号:141]
[名称:{FB5F1910-F110-11d2-BB9E-00C04F795683}]
[类型:IE 扩展按钮]
[内容:Messenger 路径:C:\Program Files\Messenger\msmsgs.exe]

[编号:142]
[名称:{FD00D911-7529-4084-9946-A29F1BDF4FE5}]
[类型:IE 扩展按钮]
[内容:C:\P 路径:http://cn.zs.yahoo.com/cnsbutton.htm?source=cns&btn=clean]

[编号:143]
[分隔符:---------------------------------------------------------------------]

[编号:144]
[名称:&使用DuDu 加速器下载]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:145]
[名称:&使用DuDu 加速器下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:146]
[名称:&使用迅雷下载]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:147]
[名称:&使用迅雷下载全部链接]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:148]
[名称:上传到QQ网络硬盘]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:149]
[名称:使用KuGoo3下载(&K)]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:150]
[名称:添加到QQ自定义面板]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:151]
[名称:添加到QQ表情]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:152]
[名称:用QQ彩信发送该图片]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:153]
[名称:雅虎搜索]
[类型:IE 右键按钮]
[内容: 路径:nsbu]

[编号:154]
[分隔符:---------------------------------------------------------------------]

[编号:155]
[名称:{233A9694-667E-11D1-9DFB-006097D50408}]
[类型:Outlook Express Address Book <IE控件>]
[内容:%ProgramFiles%\Outlook Express\msoe.dll]

[编号:156]
[名称:{ABBA001B-3075-11D6-88A4-00B0D0200F88}]
[类型:OpenCable Class <IE控件>]
[内容:%systemroot%\system32\psisdecd.dll]

[编号:157]
[分隔符:---------------------------------------------------------------------]

[编号:158]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:159]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]

[编号:160]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\System32\webcheck.dll]

[编号:161]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\System32\stobject.dll]

[编号:162]
[分隔符:---------------------------------------------------------------------]

[编号:163]
[名称:]
[类型:EXE关联]
[内容:"%1" %*]

[编号:164]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\system32\NOTEPAD.EXE %1]

[编号:165]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:166]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]

[编号:167]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:168]
[名称:]
[类型:HTTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]

[编号:169]
[名称:]
[类型:FTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" %1]

[编号:170]
[分隔符:---------------------------------------------------------------------]

[编号:171]
[名称:c:\windows\system32\sbe.dll]
[类型:第三方 COM/ActiveX组件]
[内容:PSFactoryBuffer---发布公司:(null) (null)]

[编号:172]
[名称:c:\windows\system32\psisdecd.dll]
[类型:第三方 COM/ActiveX组件]
[内容:CDvb Class---发布公司:(null) (null)]

[编号:173]
[名称:c:\windows\system32\psisdecd.dll]
[类型:第三方 COM/ActiveX组件]
[内容:OpenCable Class---发布公司:(null) (null)]

[编号:174]
[名称:c:\windows\system32\a3d.dll]
[类型:第三方 COM/ActiveX组件]
[内容:A3d Object---发布公司:SiS A3D emulation Copyright(C) Silicon Integrated Systems Corp. 2002]

http://forum.ikaka.com/topic.asp?board=28&artid=6979213
一楼附件...下载HijackThis...把日志帖上来..