如题，我的电脑今天不知道怎么一回事，上面的那个进程占用了太多太多的CPU空间，再加上一些其他的，CPU一直保持在100％，那我什么事也做不了，但是后来我无意中停止了这个进程，然后再重新开这个进程又没有什么事了呀，查过毒了，在安全模式下查杀的，病毒库是最新的，没有什么问题，附上日志，请高手帮忙看一下呀s
Logfile of HijackThis v1.99.1
Scan saved at 23:30:38, on 2006-10-4
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Rising\Rav\CCenter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Rising\Rav\Ravmond.exe
c:\program files\rising\rfw\rfwsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Borland\InterBase\bin\ibguard.exe
c:\program files\rising\rfw\RfwMain.exe
C:\Program Files\Borland\InterBase\bin\ibserver.exe
C:\Program Files\Rising\Rav\RavTask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Rising\Rav\Ravmon.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Tencent\QQ\QQ.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\Internet Explorer\iexplore.exe
d:\Temp\Rar$EX00.344\HijackThis.exe

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\pansos.exe
O2 - BHO: QQBrowserHelperObject Class - {54EBD53A-9BC1-480B-966A-843A333CA162} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: conimehlp Class - {B10343BD-1DC6-442F-9BA2-D44C708CEE83} - C:\WINDOWS\system32\mskey32.dll
O2 - BHO: System Helper - {B88DBC3F-41FB-40AE-AFB0-4220E842B710} - C:\WINDOWS\system32\flash9.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [RavTask] "C:\Program Files\Rising\Rav\RavTask.exe" -system
O4 - HKLM\..\Run: [RfwMain] "C:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm
O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm
O9 - Extra button: (no name) - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O9 - Extra 'Tools' menuitem: QQ炫彩工具条设置 - {DEDEB80D-FA35-45d9-9460-4983E5A8AFE6} - C:\Program Files\Tencent\QQ\QQIEHelper.dll
O15 - Trusted IP range: http://59.35.192.30
O16 - DPF: {036E1920-9157-4A3F-B0EE-C7A0DB66A3E5} (GL_CuVcPayment_UI.GL_CuVcPayment) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CuVcPayment_UI.CAB
O16 - DPF: {09739C90-0DE0-4A20-8727-00207518DF08} (GL_InitBook_UI.GL_InitBook) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_InitBook_UI.CAB
O16 - DPF: {0DB952E4-EE50-495D-A0C1-FEA5C545E6CB} (ST_ArtInTotal_UI.ST_ArtInTotal) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_ArtInTotal_UI.CAB
O16 - DPF: {10C733D4-47AC-44F2-979F-B0A7D8C7C946} (ST_MoveBill_UI.ST_MoveBill) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_MoveBill_UI.CAB
O16 - DPF: {1BC9B132-DF42-4D6E-8C4E-87702B63D5B3} (DS_ClientTotal_UI.DS_ClientTotal) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_ClientTotal_UI.CAB
O16 - DPF: {1C60EE44-2C95-437B-8BDB-84A736B01C09} (PU_InBill_UI.PU_InBill) - http://59.35.192.30:8899/power2000/DownLoad/PU/PU_InBill_UI.CAB
O16 - DPF: {2205184A-5E29-4DF6-969E-07B9993FE112} (GL_VcCollect_UI.GL_VcCollect) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_VcCollect_UI.CAB
O16 - DPF: {23EA5C68-ECFF-4DF8-9AC0-1EADDD1FC195} (DS_ClientInOut_UI.DS_ClientInOut) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_ClientInOut_UI.CAB
O16 - DPF: {25C8EBDA-3814-4E84-B3A4-ED5B02D1F67D} (ST_ArtIODetail_UI.ST_ArtIODetail) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_ArtIODetail_UI.CAB
O16 - DPF: {296712B7-AB9E-4C62-BECE-B7E1A633722E} (SM_Layout_UI.SM_Layout) - http://59.35.192.30:8899/power2000/DownLoad/SM/SM_Layout_UI.CAB
O16 - DPF: {3C642BFC-4969-496A-BB4C-6FCCF886A953} (GL_ProfitVc_UI.GL_ProfitVc) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_ProfitVc_UI.CAB

O16 - DPF: {3FEDE885-6AB5-4C71-B204-1090ED75393A} (HG_InBill_UI.HG_InBill) - http://59.35.192.30:8899/power2000/DownLoad/CU/HG_InBill_UI.CAB
O16 - DPF: {40C430A6-5D78-4060-BBA6-F927D8B82366} (CRUFL_Power2000_API.GL) - http://59.35.192.30:8899/power2000/DownLoad/SY/CRUFL_Power2000_API.CAB
O16 - DPF: {4E054337-E470-4DCF-8D89-4A76943CE796} (SY_MSWinCommonCtl.SY_MSWinCommon) - http://59.35.192.30:8899/power2000/DownLoad/SY/SY_MSWinCommonCtl.CAB
O16 - DPF: {586A05F7-0D58-4078-9E93-B1E20E4F8593} (Power2000_UI.Power2000) - http://59.35.192.30:8899/power2000/DownLoad/SY/Power2000_UI.CAB
O16 - DPF: {5917CB6F-1061-4B8F-A0A9-831D5CE89CBB} (ST_IOTotal_UI.ST_IOTotal) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_IOTotal_UI.CAB
O16 - DPF: {59FF2A27-34CC-4117-B025-264BBCF9A048} (PU_OutQuery_UI.PU_OutQuery) - http://192.168.1.3:8899/power2000/DownLoad/PU/PU_OutQuery_UI.CAB
O16 - DPF: {629A9E42-54F5-410A-BF54-5607735EC76D} (ST_UnPack_UI.ST_UnPack) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_UnPack_UI.CAB
O16 - DPF: {65531A85-3DC5-499D-B601-7699507BBCA7} (ST_IODetail_UI.ST_IODetail) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_IODetail_UI.CAB
O16 - DPF: {65B39546-C622-4C6A-93DD-C4E6C7FAA1C4} (GL_Acc_UI.GL_Acc) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_Acc_UI.CAB
O16 - DPF: {66DB4616-3BC3-4913-9347-EEC79D86B79D} (PU_OutBill_UI.PU_OutBill) - http://59.35.192.30:8899/power2000/DownLoad/PU/PU_OutBill_UI.CAB
O16 - DPF: {6DB39024-7048-43B7-818F-5204EA1E9442} (DS_Client_UI.DS_Client) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_Client_UI.CAB
O16 - DPF: {737FBB00-BA52-46F5-8341-CC445E24B4FD} (SY_RichTextCtl.SY_RichText) - http://59.35.192.30:8899/power2000/DownLoad/SY/SY_RichTextCtl.CAB
O16 - DPF: {77520D63-DA71-41A2-B4A5-5DD9212E0818} (GL_Voucher_UI.GL_Voucher) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_Voucher_UI.CAB
O16 - DPF: {82377933-80D2-411D-B806-9B2B938BB48A} (ST_OutBill_UI.ST_OutBill) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_OutBill_UI.CAB
O16 - DPF: {847030F0-EFAC-4388-BE61-B5F05592C6A9} (GL_CuVcRecBill_UI.GL_CuVcRecBill) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CuVcRecBill_UI.CAB
O16 - DPF: {854864AE-821E-41A7-9E7F-FE3FB40FFD94} (CA_Recment_UI.CA_Recment) - http://59.35.192.30:8899/power2000/DownLoad/CA/CA_Recment_UI.CAB
O16 - DPF: {8837919F-9941-4BB8-B14F-672B1529D74D} (PU_InQuery_UI.PU_InQuery) - http://59.35.192.30:8899/power2000/DownLoad/PU/PU_InQuery_UI.CAB
O16 - DPF: {8865253D-1B57-47EB-9B4A-D5AF3F274D10} (GL_CuVcStock_UI.GL_CuVcStock) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CuVcStock_UI.CAB
O16 - DPF: {888C0DEC-64C1-4693-A523-AF5C0CD7AD4A} (DS_OutBill_UI.DS_OutBill) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_OutBill_UI.CAB
O16 - DPF: {981EEE18-EF9E-4D6C-B2E7-81357EF5FB92} (GL_Collect_UI.GL_Collect) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_Collect_UI.CAB
O16 - DPF: {9A960C38-996A-494D-9F7A-CE5ABC43A7BA} (CA_Payment_UI.CA_Payment) - http://59.35.192.30:8899/power2000/DownLoad/CA/CA_Payment_UI.CAB
O16 - DPF: {9B16A520-6773-41CB-A926-9F0AC8C59E9A} (ST_ArtOutTotal_UI.ST_ArtOutTotal) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_ArtOutTotal_UI.CAB
O16 - DPF: {A0CA5868-9529-4C1B-BCCC-B1535AB380F8} (GL_CloseOff_UI.GL_CloseOff) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CloseOff_UI.CAB
O16 - DPF: {A202D34D-3AD6-4697-B0C4-4FAB2D610450} (SM_DocPrint_UI.SM_DocPrint) - http://59.35.192.30:8899/power2000/DownLoad/SM/SM_DocPrint_UI.CAB
O16 - DPF: {A4C479A7-3BEE-4305-960E-34C7C6882790} (SY_Print_UI.SY_Print) - http://59.35.192.30:8899/power2000/DownLoad/SY/SY_Print_UI.CAB
O16 - DPF: {B08259E1-9940-4FBB-B2C0-8782824F4901} (ST_AdjBill_UI.ST_AdjBill) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_AdjBill_UI.CAB
O16 - DPF: {B500F164-06DD-4BE7-A6D6-9BC77A9A4657} (SM_Board_UI.SM_Board) - http://59.35.192.30:8899/power2000/DownLoad/SM/SM_Board_UI.CAB
O16 - DPF: {B8B0F71F-BB0A-4E1C-A4FA-39F912B27427} (GL_Ledger_UI.GL_Ledger) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_Ledger_UI.CAB
O16 - DPF: {BCC28A07-07A0-4ABF-946B-A9180CFA48C2} (FA_Depreciate_UI.FA_Depreciate) - http://192.168.1.3:8899/power2000/DownLoad/FA/FA_Depreciate_UI.CAB
O16 - DPF: {BD072926-76BB-48B5-A23C-6EA06B60A984} (DS_ArticleTotal_UI.DS_ArticleTotal) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_ArticleTotal_UI.CAB
O16 - DPF: {BD4AFFC4-FEA3-47D0-9A50-25E80521A908} (DS_ClientDetail_UI.DS_ClientDetail) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_ClientDetail_UI.CAB
O16 - DPF: {C824471D-C6CD-4E78-9D87-B980F841922A} (GL_Journal_UI.GL_Journal) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_Journal_UI.CAB
O16 - DPF: {CC708C8D-FC24-4BF8-8FED-1D56F9A86983} (GL_CuVcRecment_UI.GL_CuVcRecment) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CuVcRecment_UI.CAB
O16 - DPF: {CF74F561-AE70-4B74-863A-2F7A1804E4A0} (ST_InBill_UI.ST_InBill) - http://59.35.192.30:8899/power2000/DownLoad/ST/ST_InBill_UI.CAB
O16 - DPF: {D09396B5-8F13-4156-82DD-3CBE8FF4374F} (GL_CuVcPayBill_UI.GL_CuVcPayBill) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_CuVcPayBill_UI.CAB
O16 - DPF: {D3D47D40-A6F1-4D7D-897D-04924D3DDF66} (FD_Article_UI.FD_Article) - http://59.35.192.30:8899/power2000/DownLoad/FD/FD_Article_UI.CAB
O16 - DPF: {D7E67DC4-FA06-40EE-9CFD-E219B1D8F941} (CA_RecBill_UI.CA_RecBill) - http://59.35.192.30:8899/power2000/DownLoad/CA/CA_RecBill_UI.CAB
O16 - DPF: {DBB8BFCC-BF0D-4F68-A800-82EDA085D7EB} (SM_Email_UI.SM_Email) - http://59.35.192.30:8899/power2000/DownLoad/SM/SM_Email_UI.CAB
O16 - DPF: {DBE2B047-0142-4C31-A208-60F878D2B625} (DS_InBill_UI.DS_InBill) - http://59.35.192.30:8899/power2000/DownLoad/DS/DS_InBill_UI.CAB
O16 - DPF: {EC90DC78-855D-4F79-A4A9-214546F5CD44} (GL_ListBook_UI.GL_ListBook) - http://59.35.192.30:8899/power2000/DownLoad/GL/GL_ListBook_UI.CAB
O16 - DPF: {FAD33D8D-8FA5-4E5D-A070-49E344DF17A6} (SY_FlexGridCtl.SY_FlexGrid) - http://59.35.192.30:8899/power2000/DownLoad/SY/SY_FlexGridCtl.CAB
O16 - DPF: {FDDAE74C-EF08-42A2-9B61-3CA3E7D22A2C} (PU_InTotal_UI.PU_InTotal) - http://59.35.192.30:8899/power2000/DownLoad/PU/PU_InTotal_UI.CAB
O17 - HKLM\System\CCS\Services\Tcpip\..\{E5F236C7-E70D-4EA1-B34F-BF930FC38769}: NameServer = 202.103.24.68,202.103.0.117
O23 - Service: InterBase Guardian (InterBaseGuardian) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibguard.exe
O23 - Service: InterBase Server (InterBaseServer) - Borland Software Corporation - C:\Program Files\Borland\InterBase\bin\ibserver.exe
O23 - Service: Rising Proxy  Service (RfwProxySrv) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwproxy.exe
O23 - Service: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Co., Ltd. - c:\program files\rising\rfw\rfwsrv.exe
O23 - Service: Rising Process Communication Center (RsCCenter) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\CCenter.exe
O23 - Service: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - C:\Program Files\Rising\Rav\Ravmond.exe

请问一下，59.35.192.30这个IP是我添加进去的，我们公司的内部网，因为要下载一些插件，所以设定为可信网站，为什么要删除呢，还有，16项是什么呀

怀疑C:\WINDOWS\system32\pansos.exe
建议修复
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\pansos.exe
O15 - Trusted IP range: http://59.35.192.30
和所有的O16项
删除C:\WINDOWS\system32\pansos.exe

我以经修复了，但是无法找到这个PANSOS.EXE这个文件，我把隐藏的文件，系统保护的文件全打开了，也找不到，还有，今天我打开进程，发现有二个EXPLORER.EXE这个进程，一个是正确的，一个是病毒，但是二个的路径都一样呀，怎么区别,而且我也找不到同样子的文件