各位高手，我机器最近老是背后探出网站但是桌面不显示。只有删除C:\WINDOWS\system32下的系统隐藏文件Twian从新启动才会好几天。以下是进程扫描请各位大虾指点下~
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run           
+ BigDogPath    Still Image (STI) Driver    VM.    c:\windows\vm_sti.exe
+ RavTask    RavTimer    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rav\ravtask.exe
+ RfwMain    Rising Personal FireWall Main Program    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\rfwmain.exe
+ runeip    Rising AntiSpyware Monitor    Beijing Rising Technology Co., Ltd.    c:\program files\rising\antispyware\runiep.exe
+ yassistse    AssistSetting    Yahoo! China    c:\program files\yahoo!\assistant\yassistse.exe
+ YLive.exe    YLive    Yahoo! China    c:\program files\yahoo!\assistant\ylive.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce           
+ KKDelay    RunOnce Application    Beijing Rising Technology Co., Ltd.    c:\program files\rising\antispyware\runonce.exe
+ RavStub    Rising RavStub    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rav\ravstub.exe
C:\Documents and Settings\All Users\「开始」菜单\程序\启动           
+ 河南网通宽带用户客户端.lnk    Racer    Putian Runway    c:\program files\racer-henan-cnc\racer.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks           
+ Rising Execute File Exts hook    Rising Shell Ext Module    Beijing Rising Technology Co., Ltd.    c:\windows\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved           
+ Display Panning CPL Extension            文件未找到:    deskpan.dll
+ HyperTerminal Icon Ext    HyperTerminal Applet Library    Hilgraeve, Inc.    c:\windows\system32\hticons.dll
+ RISING    Rising Shell Ext Module    Beijing Rising Technology Co., Ltd.    c:\windows\system32\ravext.dll
+ Shell Extensions for RealOne Player    RealPlayer Shell Extensions    RealNetworks, Inc.    c:\program files\real\realplayer\rpshell.dll
+ Web反病毒保护 统计    Script Monitor Internet Explorer plugin    Kaspersky Lab    c:\program files\kaspersky lab\kaspersky anti-virus 6.0 for windows workstations\scieplgn.dll
+ WinRAR shell extension            c:\program files\winrar\rarext.dll
+ Yahoo!Photo    yPhtb    Yahoo! China    c:\program files\yahoo!\assistant\assist\yphtb.dll
+ 粉碎文件    Wiper 动态链接库    Yahoo! China    c:\program files\yahoo!\assistant\assist\ywiper.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects           
+ AntiFish Class    yangling.dll    yahoo! china    c:\program files\yahoo!\assistant\assist\yangling.dll
+ assist    Assist Module    Yahoo! China    c:\program files\yahoo!\assistant\assist\yassist.dll
+ BandIE Class    BaiduBar Module    Baidu.com, Inc.    c:\program files\baidu\bar\baidubar.dll
+ DragSearch BHO    DragSearch    yahoo! china    c:\program files\yahoo!\assistant\assist\ydragsearch.dll
+ ThunderIEHelper Class    xunleibho BHO        c:\windows\system32\xunleibho_v8.dll
+ Yahoo!Photo    yPhtb    Yahoo! China    c:\program files\yahoo!\assistant\assist\yphtb.dll
+ yFlashDl Class    Flash video download    Yahoo! China    c:\program files\yahoo!\assistant\assist\yflashdl.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks           
+ coolbar    IE ToolBand    yahoo! china    c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar           
+ baidubar.dll    BaiduBar Module    Baidu.com, Inc.    c:\program files\baidu\bar\baidubar.dll
+ kakatool.dll    Rising AntiSpyware Toolbar    Beijing Rising Technology Co., Ltd.    c:\windows\system32\kakatool.dll
+ 雅虎助手    IE ToolBand    yahoo! china    c:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions           
+ 腾讯QQ    QQ    TENCENT    d:\qq\qq.exe
+ 网址大全            文件未找到:    http://www.mpsoft.net/wz.htm
+ 雅虎助手            文件未找到:    http://cn.zs.yahoo.com/start.htm?source=yzs_icon&btn=yassistnew
HKLM\System\CurrentControlSet\Services           
+ RfwService    Rising Personal FireWall Service    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\rfwsrv.exe
+ RsCCenter    CCenter    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rav\ccenter.exe
+ RsRavMon    RavMond    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rav\ravmond.exe
HKLM\System\CurrentControlSet\Services           
+ BaseTDI    basetdi    Beijing Rising Technology Co., Ltd.    c:\windows\system32\drivers\basetdi.sys
+ cmuda    C-Media Audio WDM Driver    C-Media Inc    c:\windows\system32\drivers\cmuda.sys
+ ExpScaner    ExpScan.sys        c:\program files\rising\rav\expscan.sys
+ HookCont    HookCont    Rising    c:\program files\rising\rav\hookcont.sys
+ HookReg            c:\program files\rising\rav\hookreg.sys
+ HookSys    Hooksys    Rising    c:\program files\rising\rav\hooksys.sys
+ HookUrl    HookUrl    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\hookurl.sys
+ kl1    Kaspersky Unified Driver    Kaspersky Lab    c:\windows\system32\drivers\kl1.sys
+ klif    spuper-ptor    Kaspersky Lab    c:\windows\system32\drivers\klif.sys
+ klim5            文件未找到:    system32\DRIVERS\klim5.sys
+ MEMSCAN    MemScan Driver    瑞星软件有限公司    c:\program files\rising\rav\memscan.sys
+ mProcRs    Rising Personal FireWall  mprocrs.sys    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\mprocrs.sys
+ NPF    NPF Driver - TME extensions    Politecnico di Torino    c:\windows\system32\drivers\npf.sys
+ npkcrypt    nProtect KeyCrypt Driver    INCA Internet Co., Ltd.    d:\qq\npkcrypt.sys
+ nv    NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73     NVIDIA Corporation    c:\windows\system32\drivers\nv4_mini.sys
+ Ptilink    Parallel Technologies DirectParallel IO Library    Parallel Technologies, Inc.    c:\windows\system32\drivers\ptilink.sys
+ RsAntiSpyware    RsBoot    Beijing Rising    c:\windows\system32\drivers\rsboot.sys
+ RsFwDrv    nt_fwdrv    Beijing Rising Technology Co., Ltd.    c:\program files\rising\rfw\rsfwdrv.sys
+ RsNTGDI    RsNTGDI    Beijing Rising Technology Co., Ltd.    c:\windows\system32\drivers\rsntgdi.sys
+ RSPPSYS    RSPPSYS.SYS    Rising    c:\program files\rising\rav\rsppsys.sys
+ rtl8139    Realtek RTL8139 NDIS 5.0 Driver    Realtek Semiconductor Corporation    c:\windows\system32\drivers\rtl8139.sys
+ Secdrv            c:\windows\system32\drivers\secdrv.sys
+ ZSMC301b    Video streaming and Capture Device Driver    VM    c:\windows\system32\drivers\usbvm31b.sys
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute           
+ KKNative.exe    NativeAp    Beijing Rising Technology Co., Ltd.    c:\windows\system32\kknative.exe

这是雅虎扫描，首次发帖不对的地方请多指教
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ BigDogPathStill Image (STI) DriverVM.c:\windows\vm_sti.exe
+ RavTaskRavTimerBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravtask.exe
+ RfwMainRising Personal FireWall Main ProgramBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rfwmain.exe
+ runeipRising AntiSpyware MonitorBeijing Rising Technology Co., Ltd.c:\program files\rising\antispyware\runiep.exe
+ yassistseAssistSettingYahoo! Chinac:\program files\yahoo!\assistant\yassistse.exe
+ YLive.exeYLiveYahoo! Chinac:\program files\yahoo!\assistant\ylive.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
+ KKDelayRunOnce ApplicationBeijing Rising Technology Co., Ltd.c:\program files\rising\antispyware\runonce.exe
+ RavStubRising RavStubBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravstub.exe
C:\Documents and Settings\All Users\「开始」菜单\程序\启动
+ 河南网通宽带用户客户端.lnkRacerPutian Runwayc:\program files\racer-henan-cnc\racer.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
+ Rising Execute File Exts hookRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Display Panning CPL Extension文件未找到:    deskpan.dll
+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\windows\system32\hticons.dll
+ RISINGRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
+ Shell Extensions for RealOne PlayerRealPlayer Shell ExtensionsRealNetworks, Inc.c:\program files\real\realplayer\rpshell.dll
+ Web反病毒保护 统计Script Monitor Internet Explorer pluginKaspersky Labc:\program files\kaspersky lab\kaspersky anti-virus 6.0 for windows workstations\scieplgn.dll
+ WinRAR shell extensionc:\program files\winrar\rarext.dll
+ Yahoo!PhotoyPhtbYahoo! Chinac:\program files\yahoo!\assistant\assist\yphtb.dll
+ 粉碎文件Wiper 动态链接库Yahoo! Chinac:\program files\yahoo!\assistant\assist\ywiper.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
+ AntiFish Classyangling.dllyahoo! chinac:\program files\yahoo!\assistant\assist\yangling.dll
+ assistAssist ModuleYahoo! Chinac:\program files\yahoo!\assistant\assist\yassist.dll
+ BandIE ClassBaiduBar ModuleBaidu.com, Inc.c:\program files\baidu\bar\baidubar.dll
+ DragSearch BHODragSearchyahoo! chinac:\program files\yahoo!\assistant\assist\ydragsearch.dll
+ ThunderIEHelper Classxunleibho BHOc:\windows\system32\xunleibho_v8.dll
+ Yahoo!PhotoyPhtbYahoo! Chinac:\program files\yahoo!\assistant\assist\yphtb.dll
+ yFlashDl ClassFlash video downloadYahoo! Chinac:\program files\yahoo!\assistant\assist\yflashdl.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
+ coolbarIE ToolBandyahoo! chinac:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ baidubar.dllBaiduBar ModuleBaidu.com, Inc.c:\program files\baidu\bar\baidubar.dll
+ kakatool.dllRising AntiSpyware ToolbarBeijing Rising Technology Co., Ltd.c:\windows\system32\kakatool.dll
+ 雅虎助手IE ToolBandyahoo! chinac:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ 腾讯QQQQTENCENTd:\qq\qq.exe
+ 网址大全文件未找到:    http://www.mpsoft.net/wz.htm
+ 雅虎助手文件未找到:    http://cn.zs.yahoo.com/start.htm?source=yzs_icon&btn=yassistnew
HKLM\System\CurrentControlSet\Services
+ RfwServiceRising Personal FireWall ServiceBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rfwsrv.exe
+ RsCCenterCCenterBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ccenter.exe
+ RsRavMonRavMondBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravmond.exe
HKLM\System\CurrentControlSet\Services
+ BaseTDIbasetdiBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\basetdi.sys
+ cmudaC-Media Audio WDM DriverC-Media Incc:\windows\system32\drivers\cmuda.sys
+ ExpScanerExpScan.sysc:\program files\rising\rav\expscan.sys
+ HookContHookContRisingc:\program files\rising\rav\hookcont.sys
+ HookRegc:\program files\rising\rav\hookreg.sys
+ HookSysHooksysRisingc:\program files\rising\rav\hooksys.sys
+ HookUrlHookUrlBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\hookurl.sys
+ kl1Kaspersky Unified DriverKaspersky Labc:\windows\system32\drivers\kl1.sys
+ klifspuper-ptorKaspersky Labc:\windows\system32\drivers\klif.sys
+ klim5文件未找到:    system32\DRIVERS\klim5.sys
+ MEMSCANMemScan Driver瑞星软件有限公司c:\program files\rising\rav\memscan.sys
+ mProcRsRising Personal FireWall  mprocrs.sysBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\mprocrs.sys
+ NPFNPF Driver - TME extensionsPolitecnico di Torinoc:\windows\system32\drivers\npf.sys
+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.d:\qq\npkcrypt.sys
+ nvNVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73 NVIDIA Corporationc:\windows\system32\drivers\nv4_mini.sys
+ PtilinkParallel Technologies DirectParallel IO LibraryParallel Technologies, Inc.c:\windows\system32\drivers\ptilink.sys
+ RsAntiSpywareRsBootBeijing Risingc:\windows\system32\drivers\rsboot.sys
+ RsFwDrvnt_fwdrvBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rsfwdrv.sys
+ RsNTGDIRsNTGDIBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\rsntgdi.sys
+ RSPPSYSRSPPSYS.SYSRisingc:\program files\rising\rav\rsppsys.sys
+ rtl8139Realtek RTL8139 NDIS 5.0 DriverRealtek Semiconductor Corporationc:\windows\system32\drivers\rtl8139.sys
+ Secdrvc:\windows\system32\drivers\secdrv.sys
+ ZSMC301bVideo streaming and Capture Device DriverVMc:\windows\system32\drivers\usbvm31b.sys
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
+ KKNative.exeNativeApBeijing Rising Technology Co., Ltd.c:\windows\system32\kknative.exe

以下是卡卡扫描：
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
+ BigDogPathStill Image (STI) DriverVM.c:\windows\vm_sti.exe
+ RavTaskRavTimerBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravtask.exe
+ RfwMainRising Personal FireWall Main ProgramBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rfwmain.exe
+ runeipRising AntiSpyware MonitorBeijing Rising Technology Co., Ltd.c:\program files\rising\antispyware\runiep.exe
+ yassistseAssistSettingYahoo! Chinac:\program files\yahoo!\assistant\yassistse.exe
+ YLive.exeYLiveYahoo! Chinac:\program files\yahoo!\assistant\ylive.exe
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
+ KKDelayRunOnce ApplicationBeijing Rising Technology Co., Ltd.c:\program files\rising\antispyware\runonce.exe
+ RavStubRising RavStubBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravstub.exe
C:\Documents and Settings\All Users\「开始」菜单\程序\启动
+ 河南网通宽带用户客户端.lnkRacerPutian Runwayc:\program files\racer-henan-cnc\racer.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
+ Rising Execute File Exts hookRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
+ Display Panning CPL Extension文件未找到:    deskpan.dll
+ HyperTerminal Icon ExtHyperTerminal Applet LibraryHilgraeve, Inc.c:\windows\system32\hticons.dll
+ RISINGRising Shell Ext ModuleBeijing Rising Technology Co., Ltd.c:\windows\system32\ravext.dll
+ Shell Extensions for RealOne PlayerRealPlayer Shell ExtensionsRealNetworks, Inc.c:\program files\real\realplayer\rpshell.dll
+ Web反病毒保护 统计Script Monitor Internet Explorer pluginKaspersky Labc:\program files\kaspersky lab\kaspersky anti-virus 6.0 for windows workstations\scieplgn.dll
+ WinRAR shell extensionc:\program files\winrar\rarext.dll
+ Yahoo!PhotoyPhtbYahoo! Chinac:\program files\yahoo!\assistant\assist\yphtb.dll
+ 粉碎文件Wiper 动态链接库Yahoo! Chinac:\program files\yahoo!\assistant\assist\ywiper.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
+ AntiFish Classyangling.dllyahoo! chinac:\program files\yahoo!\assistant\assist\yangling.dll
+ assistAssist ModuleYahoo! Chinac:\program files\yahoo!\assistant\assist\yassist.dll
+ BandIE ClassBaiduBar ModuleBaidu.com, Inc.c:\program files\baidu\bar\baidubar.dll
+ DragSearch BHODragSearchyahoo! chinac:\program files\yahoo!\assistant\assist\ydragsearch.dll
+ ThunderIEHelper Classxunleibho BHOc:\windows\system32\xunleibho_v8.dll
+ Yahoo!PhotoyPhtbYahoo! Chinac:\program files\yahoo!\assistant\assist\yphtb.dll
+ yFlashDl ClassFlash video downloadYahoo! Chinac:\program files\yahoo!\assistant\assist\yflashdl.dll
HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks
+ coolbarIE ToolBandyahoo! chinac:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
+ baidubar.dllBaiduBar ModuleBaidu.com, Inc.c:\program files\baidu\bar\baidubar.dll
+ kakatool.dllRising AntiSpyware ToolbarBeijing Rising Technology Co., Ltd.c:\windows\system32\kakatool.dll
+ 雅虎助手IE ToolBandyahoo! chinac:\program files\yahoo!\assistant\assist\yasbar.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
+ 腾讯QQQQTENCENTd:\qq\qq.exe
+ 网址大全文件未找到:    http://www.mpsoft.net/wz.htm
+ 雅虎助手文件未找到:    http://cn.zs.yahoo.com/start.htm?source=yzs_icon&btn=yassistnew
HKLM\System\CurrentControlSet\Services
+ RfwServiceRising Personal FireWall ServiceBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rfwsrv.exe
+ RsCCenterCCenterBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ccenter.exe
+ RsRavMonRavMondBeijing Rising Technology Co., Ltd.c:\program files\rising\rav\ravmond.exe
HKLM\System\CurrentControlSet\Services
+ BaseTDIbasetdiBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\basetdi.sys
+ cmudaC-Media Audio WDM DriverC-Media Incc:\windows\system32\drivers\cmuda.sys
+ ExpScanerExpScan.sysc:\program files\rising\rav\expscan.sys
+ HookContHookContRisingc:\program files\rising\rav\hookcont.sys
+ HookRegc:\program files\rising\rav\hookreg.sys
+ HookSysHooksysRisingc:\program files\rising\rav\hooksys.sys
+ HookUrlHookUrlBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\hookurl.sys
+ kl1Kaspersky Unified DriverKaspersky Labc:\windows\system32\drivers\kl1.sys
+ klifspuper-ptorKaspersky Labc:\windows\system32\drivers\klif.sys
+ klim5文件未找到:    system32\DRIVERS\klim5.sys
+ MEMSCANMemScan Driver瑞星软件有限公司c:\program files\rising\rav\memscan.sys
+ mProcRsRising Personal FireWall  mprocrs.sysBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\mprocrs.sys
+ NPFNPF Driver - TME extensionsPolitecnico di Torinoc:\windows\system32\drivers\npf.sys
+ npkcryptnProtect KeyCrypt DriverINCA Internet Co., Ltd.d:\qq\npkcrypt.sys
+ nvNVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73 NVIDIA Corporationc:\windows\system32\drivers\nv4_mini.sys
+ PtilinkParallel Technologies DirectParallel IO LibraryParallel Technologies, Inc.c:\windows\system32\drivers\ptilink.sys
+ RsAntiSpywareRsBootBeijing Risingc:\windows\system32\drivers\rsboot.sys
+ RsFwDrvnt_fwdrvBeijing Rising Technology Co., Ltd.c:\program files\rising\rfw\rsfwdrv.sys
+ RsNTGDIRsNTGDIBeijing Rising Technology Co., Ltd.c:\windows\system32\drivers\rsntgdi.sys
+ RSPPSYSRSPPSYS.SYSRisingc:\program files\rising\rav\rsppsys.sys
+ rtl8139Realtek RTL8139 NDIS 5.0 DriverRealtek Semiconductor Corporationc:\windows\system32\drivers\rtl8139.sys
+ Secdrvc:\windows\system32\drivers\secdrv.sys
+ ZSMC301bVideo streaming and Capture Device DriverVMc:\windows\system32\drivers\usbvm31b.sys
HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
+ KKNative.exeNativeApBeijing Rising Technology Co., Ltd.c:\windows\system32\kknative.exe

http://forum.ikaka.com/topic.asp?board=28&artid=8301731&page=1
这是最新扫描附带图片

郁闷啊

请下载SREng2 ，使用“智能扫描”，按下“扫描”按钮进行扫描，
扫描完成后按下“保存报告”按钮保存报告日志文件（SREng.LOG），(最好关掉所有的程序，包括QQ再扫描）
把保存的报告日志文件内容复制-粘贴上来,,日志一次粘不完，分次粘完，
下载地址
http://www.kztechs.com/sreng/sreng2.zip