我的瑞星已升级到了最新版本，但系统经常突然终止运行，蓝屏加几行英文，一闪即回到开机初起动状态。用瑞星反复查杀，找不到任何病毒。但用木马清道夫却查到这么多下面那么多马，怎耐木马清道夫是未注册的，不给杀掉。不会我还要花钱买他吧，请高手指教，我该怎么办。以下是木马清道夫扫描到的：
扫描到54木马病毒文件
D:\Program Files\DESKTO~1\Cast\dmipn.dll
D:\Program Files\Desktop Media\Cast\dmdaemon.dll
D:\Program Files\Desktop Media\Cast\dmipn.dll
D:\Program Files\Desktop Media\Cast\dmsched.exe
D:\Program Files\Desktop Media\Cast\UnInstall.exe
D:\Program Files\Desktop Media\Cast\license.txt
D:\WINNT\svcproc.exe
D:\WINNT\Nail.exe
D:\WINNT\System32\cdnns.dll_iparmor
D:\WINNT\WORLD2\TOOLBAR\hmcab.inf
D:\WINNT\temp\alcupd.exe
D:\WINNT\temp\soundman.exe
D:\WINNT\temp\u3spwd.exe
D:\WINNT\temp\setup.exe
D:\WINNT\temp\rep.exe
D:\WINNT\temp\q296185_w2k_sp3_x86_CN.EXE
D:\WINNT\temp\vbs51nchs.exe
D:\WINNT\temp\q265258.exe
D:\WINNT\temp\q269368.exe
D:\WINNT\temp\crlupd.EXE
D:\WINNT\temp\nst9.EXE
D:\WINNT\temp\180sainstaller.exe
D:\WINNT\temp\SP4express_cn.exe
D:\WINNT\temp\Q271641_w2k_sp2_x86_CN.EXE
D:\WINNT\temp\Q280838_w2k_sp2_x86_CN.EXE
D:\WINNT\temp\Q266794_w2k_sp2_x86_CN.EXE
D:\WINNT\temp\Q278499_W2K_sp2_x86_CN.EXE
D:\WINNT\temp\Q266433_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q270676_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q299553_W2k_SP3_x86_cn.exe
D:\WINNT\temp\Q272303_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q272736_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q269609_W2K_SP1_x86_CN.EXE
D:\WINNT\temp\Q269523_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q269049_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q267843_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q269239_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q262694_W2K_SP2_x86_CN.EXE
D:\WINNT\temp\Q260219_W2K_SP1_x86_CN.EXE
D:\WINNT\temp\Q259728_W2K_SP1_x86_CN.EXE
D:\WINNT\temp\Q257870_W2K_SP1_x86_CN.EXE
D:\WINNT\temp\Q260197_W2K_SP1_x86_CN.EXE
D:\WINNT\SET38.tmp
D:\Program Files\bullseye network\bin\bargains.exe
D:\Program Files\bullseye network\bin\adx.exe
D:\Program Files\bullseye network\bin\adv.exe
D:\WINNT\System32\wins\SVCHOST.EXE
D:\WINNT\System32\khooker.exe
D:\WINNT\System32\msbe.dll
D:\WINNT\System32\mbprot.dll
D:\WINNT\wc98pp.dll
D:\WINNT\System32\firewall.exe
D:\WINNT\nail.exe
D:\WINNT\system32\sistray.exe
------------------------------------------------

【回复“独孤豪侠”的帖子】怎么办？怎么办？怎么办？

这么多好心人帮忙，心里很温暖，千言万语无法表达，一句话：“吃一垫长一智，谢谢袄。。。

鸽子妹妹是高手呀，但是我却是菜鸟，请问我不想重安系统就没有办法了吗？怎样把系统GHO回来？

我下了木马在线，安装后，用百度搜着了一个序列号，注册成功，查了一遍清除了20多个木马。谢谢icesong

可能真的被鸽子妹妹说中了，我的机子还是突然中止，下面是我用HijackThis V1.99.1扫描的日志，请高手指点，看看还有没有救。

保存于      22:18:56, 日期 2005-8-16
操作系统：  Windows 2000  (WinNT 5.00.2195)
浏览器：    Internet Explorer v6.00 SP1 (6.00.2800.1106)

当前运行的进程：         
D:\WINNT\System32\smss.exe
D:\WINNT\system32\winlogon.exe
D:\WINNT\system32\services.exe
D:\WINNT\system32\lsass.exe
D:\PROGRAM FILES\RISING\RAV\Ravmond.exe
D:\PROGRAM FILES\RISING\RAV\RavStub.exe
d:\program files\rising\rfw\rfwsrv.exe
D:\WINNT\system32\svchost.exe
D:\WINNT\system32\spoolsv.exe
D:\WINNT\system32\drivers\dcfssvc.exe
D:\WINNT\System32\svchost.exe
D:\Program Files\KODAK\KODAK EASYSHARE Software\bin\ptssvc.exe
D:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
D:\WINNT\system32\MSTask.exe
D:\WINNT\System32\WBEM\WinMgmt.exe
d:\program files\rising\rfw\RfwMain.exe
D:\PROGRA~1\RISING\RAV\RAVMON.EXE
D:\Program Files\CNNIC\Cdn\cdnup.exe
D:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Antiy Labs\AGB4\Monitor.exe
D:\WINNT\System32\conime.exe
D:\WINNT\EXPLORER.EXE
D:\Program Files\eMule\eMule.exe
D:\PROGRA~1\RISING\RAV\Rav.exe
D:\Program Files\HijackThis1991汉化版\HijackThis1991zww.exe

O2 - BHO: CNNIC_IDN - {35980F6E-A137-4E50-953D-813BB8556899} - D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O2 - BHO: ltmenu Class - {78C21EFD-53BA-406C-AF1A-33A38ABD3958} - C:\Program Files\LtUcx\1002\c0.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: update wnwb - {ED8DFC5C-10EF-45AB-9DC2-0639AFF5A270} - D:\PROGRA~1\COMMON~1\Wnwb\wnwbio.dll
O3 - IE工具栏增项: @msdxmLC.dll,-1@2052,电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINNT\System32\msdxm.ocx
O3 - IE工具栏增项: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\PROGRA~1\FLASHGET\fgiebar.dll
O3 - IE工具栏增项: 百度超级搜霸 - {B580CF65-E151-49C3-B73F-70B13FCA8E86} - D:\Progra~1\Baidu\bar\BaiDuBar.dll
O3 - IE工具栏增项: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar.dll
O4 - 启动项HKLM\\Run: [RavMon] D:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
O4 - 启动项HKLM\\Run: [CdnCtr] D:\Program Files\CNNIC\Cdn\cdnup.exe
O4 - 启动项HKLM\\Run: [RfwMain] "D:\Program Files\Rising\Rfw\rfwmain.exe" -Startup
O4 - 启动项HKLM\\Run: [RavTimer] D:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
O4 - 启动项HKLM\\Run: [Synchronization Manager] mobsync.exe /logon
O4 - 启动项HKLM\\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - 启动项HKLM\\Run: [AGBMonitor] C:\Program Files\Antiy Labs\AGB4\Monitor.exe
O8 - IE右键菜单中的新增项目:  >> 彩信发送 << - res://D:\PROGRA~1\MMSASS~1\MMSASS~1.DLL/mms.htm
O8 - IE右键菜单中的新增项目: !搜一搜 - res://D:\WINNT\DOWNLO~1\CnsMinEx.dll/1003
O8 - IE右键菜单中的新增项目: &Google Search - res://D:\Program Files\Google\googletoolbar.dll/cmsearch.html
O8 - IE右键菜单中的新增项目: 使用网际快车下载 - D:\Program Files\FlashGet\jc_link.htm
O8 - IE右键菜单中的新增项目: 使用网际快车下载全部链接 - D:\Program Files\FlashGet\jc_all.htm
O8 - IE右键菜单中的新增项目: 反向链接 - res://D:\Program Files\Google\googletoolbar.dll/cmbacklinks.html
O8 - IE右键菜单中的新增项目: 添加到QQ自定义面板 - D:\Documents and Settings\zhang\桌面\i\AddPanel.htm
O8 - IE右键菜单中的新增项目: 添加到QQ表情 - D:\Documents and Settings\zhang\桌面\i\AddEmotion.htm
O8 - IE右键菜单中的新增项目: 用QQ彩信发送该图片 - D:\Documents and Settings\zhang\桌面\i\SendMMS.htm
O8 - IE右键菜单中的新增项目: 百度-搜索MP3 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDUMP3.HTM
O8 - IE右键菜单中的新增项目: 百度-搜索图片 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDUIMG.HTM
O8 - IE右键菜单中的新增项目: 百度-搜索新闻 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDUNEWS.HTM
O8 - IE右键菜单中的新增项目: 百度-搜索歌词 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDULYRIC.HTM
O8 - IE右键菜单中的新增项目: 百度-搜索网页 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDUSEARCH.HTM
O8 - IE右键菜单中的新增项目: 百度-搜索贴吧 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDUPOST.HTM
O8 - IE右键菜单中的新增项目: 百度-词典搜索 - res://D:\Progra~1\Baidu\bar\BaiDuBar.dll/BAIDU_DIC.HTM
O8 - IE右键菜单中的新增项目: 类似网页 - res://D:\Program Files\Google\googletoolbar.dll/cmsimilar.html
O8 - IE右键菜单中的新增项目: 缓存的网页快照 - res://D:\Program Files\Google\googletoolbar.dll/cmcache.html
O9 - 浏览器额外的按钮: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - 浏览器额外的“工具”菜单项: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - D:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - 浏览器额外的按钮: 视频聊天 - {6924091F-CD97-41E1-B1D4-D9079409D413} - http://www.liantang.net (file missing)
O9 - 浏览器额外的“工具”菜单项: 视频聊天 - {6924091F-CD97-41E1-B1D4-D9079409D413} - http://www.liantang.net (file missing)
O9 - 浏览器额外的按钮: 寻论网--中学作业解答 - {6924091F-CD97-41E1-B1D4-D9079409D423} - http://www.xunlun.com (file missing)
O9 - 浏览器额外的“工具”菜单项: 中学作业 - {6924091F-CD97-41E1-B1D4-D9079409D423} - http://www.xunlun.com (file missing)
O9 - 浏览器额外的按钮: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINNT\web\related.htm
O9 - 浏览器额外的“工具”菜单项: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINNT\web\related.htm
O9 - 浏览器额外的按钮: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Documents and Settings\zhang\桌面\i\QQ.EXE
O9 - 浏览器额外的“工具”菜单项: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - D:\Documents and Settings\zhang\桌面\i\QQ.EXE
O9 - 浏览器额外的按钮: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FLASHGET\flashget.exe
O9 - 浏览器额外的“工具”菜单项: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\PROGRA~1\FLASHGET\flashget.exe
O10 - Broken Internet access because of LSP provider 'd:\winnt\system32\cdnns.dll' missing
O11 - Options group: [!CNS]  网络实名
O11 - Options group: [CDNCLIENT]  中文上网
O12 - IE插件，支持文件类型.mp3: D:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O16 - DPF: {2EA6D939-4445-43F1-A12B-8CB3DDA8B855} (BlueskyVideo Control) - http://www.bluesky.cn/download/v2_60.cab
O16 - DPF: {6924091F-CD97-41E1-B1D4-D9079409D413} (IMCv1 Control) - http://202.101.62.196:1995/talk.cab
O16 - DPF: {99410CDE-6F16-42ce-9D49-3807F78F0287} (ClientInstaller Class) - http://www.180searchassistant.com/180saax.cab
O18 - 列举现有的协议: koboo - {7DEE9D05-FA0A-4416-A6F3-6537D0EAB6A6} - D:\WINNT\System32\mbprot.dll
O23 - NT 服务: Dcfssvc - Eastman Kodak Company - D:\WINNT\system32\drivers\dcfssvc.exe
O23 - NT 服务: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - D:\WINNT\System32\dmadmin.exe
O23 - NT 服务: ptssvc - KODAK - D:\Program Files\KODAK\KODAK EASYSHARE Software\bin\ptssvc.exe
O23 - NT 服务: Rising Personal Firewall Service (RfwService) - Beijing Rising Technology Corporation Limited - d:\program files\rising\rfw\rfwsrv.exe
O23 - NT 服务: Rising Process Communication Center (RsCCenter) - rising - D:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
O23 - NT 服务: RsRavMon Service (RsRavMon) - Beijing Rising Technology Co., Ltd. - D:\PROGRAM FILES\RISING\RAV\Ravmond.exe
O23 - NT 服务: System Startup Service  (SvcProc) - Unknown owner - D:\WINNT\svcproc.exe

有人给看吗