各位版主和各位高手们：大家好！我刚才看了版主的“对那些手懒的。。。。。说的心里话”之后，我还是硬着头皮给大家发了这个贴子，因为我是个新手，我也在学习当中帮我看看日志，中了什么病毒没有？该如何处理呢？我再次深深地感谢大家：
检测日期: 2006-3-5 17:33
Windows: Microsoft Windows XP
ServicePack: Service Pack 2
Update: 2600.xpsp_sp2_gdr.050301-1519
Internet Explorer: 6.0.2900.2180
网络基础安全测试
密码安全检测:已经设置了管理员密码,建议:将密码复杂度和长度提高!
网络漏洞检测:空连接检查安全!
服务名称        是否运行              描述
RemoteRegistry [运行中] [说明:这个服务可能被利用远程操作注册表]
Windows Time  [运行中] [说明:这个服务可能被黑客利用来启动木马]
Telnet        [已停止] [说明:这个服务可能被黑客登录到您计算机]
Messenger      [已停止] [说明:这个服务常被广告商用来发垃圾广告]
Server        [运行中] [说明:如果你的电脑不用局域网中,可以关闭]
--------------------计算机系统组件体检----------------------
[编号:0]
[名称:\SystemRoot\System32\smss.exe]
[类型:运行进程]
[内容:未知]
[编号:1]
[名称:\??\C:\WINDOWS\system32\winlogon.exe]
[类型:运行进程]
[内容:未知]
[编号:2]
[名称:C:\WINDOWS\system32\services.exe]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:3]
[名称:C:\WINDOWS\system32\lsass.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:4]
[名称:C:\WINDOWS\system32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:5]
[名称:C:\WINDOWS\System32\svchost.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:6]
[名称:C:\WINDOWS\system32\spoolsv.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:7]
[名称:C:\WINDOWS\Explorer.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:8]
[名称:D:\防病毒软件\KV2004\KVMonXP.kxp]
[类型:运行进程]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:9]
[名称:C:\WINDOWS\SOUNDMAN.EXE]
[类型:运行进程]
[内容:Realtek Sound Manager Copyright (c) 2001-2004 Realtek Semiconductor Corp.]
[编号:10]
[名称:C:\Program Files\Common Files\Real\Update_OB\realsched.exe]
[类型:运行进程]
[内容:RealPlayer (32-bit)  Copyright ? RealNetworks, Inc. 1995-2004]
[编号:14]
[名称:C:\WINDOWS\system32\ctfmon.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:15]
[名称:C:\Program Files\CaiShow Tech\CaiShow\UpdateManager.EXE]
[类型:运行进程]
[内容:未知]
[编号:17]
[名称:D:\系统软件\qq\QQ.exe]
[类型:运行进程]
[内容:TENCENT QQ Copyright ? 2005]
[编号:18]
[名称:C:\WINDOWS\system32\dwwin.exe]
[类型:运行进程]
[内容:Microsoft Application Error Reporting Copyright? Microsoft Corporation 1999-2001.? All rights reserved.]
[编号:19]
[名称:D:\系统软件\qq\TIMPlatform.exe]
[类型:运行进程]
[内容:tencent TIMPlatform Copyright ? 2005]
[编号:20]
[名称:D:\防病毒~1\KV2004\KVSrvXP.exe]
[类型:运行进程]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:21]
[名称:D:\防病毒软件\KV2004\KVwsc.exe]
[类型:运行进程]
[内容:kvwsc Application CopyRight (C) 2004]
[编号:22]
[名称:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE]
[类型:运行进程]
[内容:Microsoft(R) Windows(R) Operating System (C) Microsoft Corporation. All rights reserved.]
[编号:23]
[名称:D:\防病毒软件\木马防御大师\syssec.exe]
[类型:运行进程]
[内容:完美卸载V2006-ChinaHijackThis 版权所有 (C) 2006]
[编号:24]
[名称:C:\WINDOWS\system32\wscntfy.exe]
[类型:运行进程]
[内容:Microsoft? Windows? Operating System ? Microsoft Corporation. All rights reserved.]
[编号:26]
[名称:C:\WINDOWS\system32\KVWspXP_1.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:27]
[名称:C:\PROGRA~1\TENCENT\AdPlus\SSAddr.dll]
[类型:已加载DLL]
[内容:TBH Module 腾讯科技（深圳）有限公司 版权所有 (C) 2005]
[编号:28]
[名称:D:\防病毒软件\KV2004\UpdateX.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:29]
[名称:D:\防病毒软件\KV2004\lang\Kvxp0804.lng]
[类型:已加载DLL]
[内容:未知]
[编号:30]
[名称:D:\防病毒软件\KV2004\GUIExt.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:31]
[名称:D:\防病毒软件\KV2004\lang\GUIExt0804.lng]
[类型:已加载DLL]
[内容:kv2003 Copyright (C) 2002  JiangMin Ltd. ]
[编号:32]
[名称:D:\防病毒软件\KV2004\KVEnhP.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:33]
[名称:D:\防病毒软件\KV2004\KvSpiPS.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright _ 2002]
[编号:34]
[名称:D:\防病毒软件\木马防御大师\ScanEngine.dll]
[类型:已加载DLL]
[内容:ScanEngine Dynamic Link Library 版权所有 (C) 2005]
[编号:35]
[名称:D:\系统软件\qq\QQBaseClassInDll.dll]
[类型:已加载DLL]
[内容:QQBaseClassInDll Dynamic Link Library 版权所有 (C) 2003]
[编号:36]
[名称:D:\系统软件\qq\QQHelperDll.dll]
[类型:已加载DLL]
[内容:QQHelperDll Dynamic Link Library 版权所有 (C) 2005]
[编号:37]
[名称:D:\系统软件\qq\BasicCtrlDll.dll]
[类型:已加载DLL]
[内容:BasicCtrlDll Dynamic Link Library 版权所有 (C) 2005]
[编号:38]
[名称:D:\系统软件\qq\QQAPI.dll]
[类型:已加载DLL]
[内容:ModuleSample Dynamic Link Library 版权所有 (C) 2002]
[编号:39]
[名称:D:\系统软件\qq\TIMProxy.dll]
[类型:已加载DLL]
[内容:tencent QQMainCreatorProxy Copyright ? 2004]
[编号:40]
[名称:D:\系统软件\qq\LoginCtrl.dll]
[类型:已加载DLL]
[内容:LoginCtrl Dynamic Link Library 版权所有 (C) 2003]
[编号:41]
[名称:D:\系统软件\qq\npkcntc.dll]
[类型:已加载DLL]
[内容:nProtect KeyCrypt Driver Support Dll Copyright (C) INCA Internet. 2000-2005]
[编号:42]
[名称:D:\系统软件\qq\npkpdb.dll]
[类型:已加载DLL]
[内容:nProtect KeyCrypt Program Database DLL Copyright (C) INCA Internet. 2000-2003]
[编号:43]
[名称:D:\防病毒~1\KV2004\UpdateX.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:44]
[名称:D:\防病毒软件\KV2004\KVEnhD.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:45]
[名称:D:\防病毒软件\KV2004\KvSPI.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright _ 2002]
[编号:46]
[名称:D:\防病毒软件\KV2004\KVEnhM.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:47]
[名称:D:\防病毒软件\KV2004\KVEnhC.DLL]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:48]
[名称:D:\防病毒软件\KV2004\KVEnhO_1.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:49]
[名称:D:\防病毒软件\KV2004\KVEnhS_1.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:50]
[名称:D:\防病毒软件\KV2004\KVEnhJ.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:51]
[名称:D:\防病毒软件\KV2004\KVExtCab.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:52]
[名称:D:\防病毒软件\KV2004\KvExtRar.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:53]
[名称:D:\防病毒软件\KV2004\KvExtZip.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright (C) 2002  JiangMin Ltd. ]
[编号:54]
[名称:D:\防病毒软件\KV2004\KVExtEml_1.dll]
[类型:已加载DLL]
[内容:Jiangmin AntiVirus Copyright ? 2002]
[编号:55]
[名称:D:\防病毒软件\KV2004\KVExtLZH_1.dll]
[类型:已加载DLL]
[内容:未知]
[编号:56]
[名称:D:\防病毒软件\KV2004\KVEnhK_1.dll]
[类型:已加载DLL]
[内容:JiangMin Ltd. KVEnhK Copyright ? 2002]
[编号:58]
[名称:IMJPMIG8.1]
[类型:开机启动]
[内容:"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32]
[编号:59]
[名称:PHIME2002ASync]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC]

接上：
[编号:60]
[名称:PHIME2002A]
[类型:开机启动]
[内容:C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName]
[编号:61]
[名称:KvMonXP]
[类型:开机启动]
[内容:D:\防病毒软件\KV2004\KVMonXP.kxp /auto]
[编号:62]
[名称:SoundMan]
[类型:开机启动]
[内容:SOUNDMAN.EXE]
[编号:63]
[名称:TkBellExe]
[类型:开机启动]
[内容:"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot]
[编号:64]
[名称:qcsszjcz]
[类型:开机启动]
[内容:d:\系统软件\五笔\chenqxms.exe]
[编号:65]
[名称:KernelFaultCheck]
[类型:开机启动]
[内容:%systemroot%\system32\dumprep 0 -k]
[编号:66]
[名称:PowerOnScan]
[类型:开机启动]
[内容:D:\防病毒软件\木马防御大师\TrCleaner.exe -PowerOn]
[编号:67]
[名称:RegFireWall]
[类型:开机启动]
[内容:D:\防病毒软件\木马防御大师\WmSysPro.exe -PowerOn]
[编号:68]
[名称:AddrPlus3]
[类型:开机启动]
[内容:C:\PROGRA~1\TENCENT\AdPlus\Runner.exe C:\PROGRA~1\TENCENT\AdPlus\SSAddr.dll Rundll32]
[编号:70]
[名称:AFD]
[类型:服务:未知]
[内容:\SystemRoot\System32\drivers\afd.sys]
[编号:71]
[名称:Service for Realtek AC97 Audio (WDM)]
[类型:服务:Windows (R) WDM driver for Realtek AC'97 Audio(HRTF data Copyright 1994 by MIT Media Lab) Copyright (c) Realtek Semiconductor Corp.1998-2005]
[内容:C:\WINDOWS\system32\drivers\alcxwdm.sys]
[编号:72]
[名称:BdGuard]
[类型:服务:BDGUARD Dynamic Link Library Copyright (C) 2005]
[内容:C:\WINDOWS\system32\drivers\bdguard.sys]
[编号:73]
[名称:DCOM Server Process Launcher]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]
[编号:74]
[名称:kmsinput]
[类型:服务:未知]
[内容:c:\windows\system32\drivers\kmsinput.sys]
[编号:75]
[名称:KVDriver for NT (KVDP)]
[类型:服务:JiangMin Antivirus Software KV2004 Copyright (c) JiangMin Ltd. 2002-2004]
[内容:d:\防病毒~1\kv2004\kvdp.sys]
[编号:76]
[名称:KVSrvXP]
[类型:服务:未知]
[内容:D:\防病毒~1\KV2004\KVSrvXP.exe -Service]
[编号:77]
[名称:KVWSC]
[类型:服务:未知]
[内容:"D:\防病毒软件\KV2004\KVwsc.exe"]
[编号:78]
[名称:System Event Logger]
[类型:服务:未知]
[内容:C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087]
[编号:79]
[名称:Windows Installer]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\msiexec.exe /V]
[编号:80]
[名称:npkycryp]
[类型:服务:未知]
[内容:d:\系统软件\qq\npkycryp.sys]
[编号:81]
[名称:Remote Procedure Call (RPC)]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]
[编号:82]
[名称:Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver]
[类型:服务:Realtek RTL8139 Family Fast Ethernet Adapter Copyright (C) 1994-2003 Realtek Semiconductor Corporation]
[内容:C:\WINDOWS\system32\drivers\rtl8139.sys]
[编号:83]
[名称:Secdrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\secdrv.sys]
[编号:84]
[名称:Terminal Services]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\svchost ]
[编号:85]
[名称:WmNdisDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmndisdrv.sys]
[编号:86]
[名称:WmRegProDrv]
[类型:服务:未知]
[内容:C:\WINDOWS\system32\drivers\wmregprodrv.sys]
[编号:88]
[名称:Start Page]
[类型:IE主页-当前用户]
[内容:about:blank]
[编号:89]
[名称:Search Page]
[类型:IE搜索-当前用户]
[内容:]
[编号:90]
[名称:Start Page]
[类型:IE主页-所有用户]
[内容:about:blank]
[编号:91]
[名称:Search Page]
[类型:IE搜索-所有用户]
[内容:]
[编号:92]
[名称:Default_Page_URL]
[类型:默认IE主页-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome]
[编号:93]
[名称:Default_Search_URL]
[类型:默认IE搜索-所有用户]
[内容:http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch]
[编号:95]
[名称:PPGou BHO]
[类型:IE 嵌入对象]
[内容:D:\下载软件\PPGou\PPGIECom6.dll]
[编号:96]
[名称:BandIE Class]
[类型:IE 嵌入对象]
[内容:C:\Program Files\BaiDu\bar\BaiduBar.dll]
[编号:98]
[名称:{8E4E4123-AAC7-42CA-AF1B-68CE70B8D385}]
[类型:IE 扩展按钮]
[内容:网际飞音 路径:网际飞音]
[编号:99]
[名称:{c95fe080-8f5d-11d2-a20b-00aa003c157b}]
[类型:IE 扩展按钮]
[内容:QQ 路径:D:\系统软件\qq\QQ.EXE]
[编号:100]
[名称:{DEDEB80D-FA35-45d9-9460-4983E5A8AFE6}]
[类型:IE 扩展按钮]
[内容: 路径:]
[编号:101]
[名称:{FB5F1910-F110-11d2-BB9E-00C04F795683}]
[类型:IE 扩展按钮]
[内容:Messenger 路径:C:\Program Files\Messenger\msmsgs.exe]
[编号:110]
[名称:PostBootReminder]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]
[编号:111]
[名称:CDBurn]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\SHELL32.dll]
[编号:112]
[名称:WebCheck]
[类型:正常嵌入对象]
[内容:%SystemRoot%\system32\webcheck.dll]
[编号:113]
[名称:SysTray]
[类型:正常嵌入对象]
[内容:C:\WINDOWS\system32\stobject.dll]
[编号:115]
[名称:]
[类型:EXE关联]
[内容:"%1" %*]
[编号:116]
[名称:]
[类型:TXT关联]
[内容:%SystemRoot%\system32\NOTEPAD.EXE %1]
[编号:117]
[名称:]
[类型:vbs关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]
[编号:118]
[名称:]
[类型:Js关联]
[内容:%SystemRoot%\System32\WScript.exe "%1" %*]
[编号:119]
[名称:]
[类型:htmlfile关联]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]
[编号:120]
[名称:]
[类型:HTTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" -nohome]
[编号:121]
[名称:]
[类型:FTP协议]
[内容:"C:\Program Files\Internet Explorer\iexplore.exe" %1]
[编号:123]
[名称:c:\windows\system32\deskpan.dll]
[类型:第三方 COM/ActiveX组件]
[内容:显示摇曳 CPL 扩展---发布公司:未知]
[编号:124]
[名称:c:\windows\system32\rtlcpapi.dll]
[类型:第三方 COM/ActiveX组件]
[内容:RtlCP Class---发布公司:未知]