瑞星卡卡安全论坛

救命啊！！我现在无论在IE输入什么网站都会转到http://www.0101.com.cn/main.htm这个网站！而遨游正常，没有转过去！怎么修复啊？我用杀毒软件检测不到病毒，Spybot - Search & Destroy和Upiea还有超级兔子以及黄山IE修复专家都试过了还是无法修复IE啊！！

http://forum.ikaka.com/topic.asp?board=67&artid=5188931
下载hijackthis,选Do a scan and save a log ,在把log贴上来

HijackThis_zww汉化版扫描日志 V1.99.1
保存于      13:57:37, 日期 2005-10-15
操作系统：  Windows XP SP2 (WinNT 5.01.2600)
浏览器：    Internet Explorer v6.00 SP2 (6.00.2900.2180)

当前运行的进程：         
D:\WINXP\System32\smss.exe
D:\WINXP\system32\winlogon.exe
D:\WINXP\system32\services.exe
D:\WINXP\system32\lsass.exe
D:\WINXP\system32\svchost.exe
D:\WINXP\System32\svchost.exe
E:\KAV2005\KWatch.EXE
D:\WINXP\system32\spoolsv.exe
D:\WINXP\Explorer.EXE
D:\WINXP\system32\ctfmon.exe
E:\KAV2005\KPfwSvc.EXE
D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
D:\WINXP\system32\nvsvc32.exe
D:\WINXP\system32\slserv.exe
C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
D:\WINXP\system32\vmnat.exe
D:\WINXP\system32\vmnetdhcp.exe
D:\WINXP\system32\svchost.exe
E:\KAV2005\KAVStart.exe
E:\KAV2005\KMailMon.EXE
E:\Maxthon\Maxthon.exe
E:\Thunder\Thunder.exe
E:\BitComet\BitComet.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
E:\QQ\QQ.exe
E:\QQ\TIMPlatform.exe
E:\Winamp\winamp.exe
D:\Program Files\HijackThis1991汉化版\HijackThis1991zww.exe

O4 - 启动项HKLM\\Run: [KavStart] "E:\KAV2005\KAVStart.exe" -startup
O4 - 启动项HKLM\\Run: [NvCplDaemon] rem ; RUNDLL32.EXE D:\WINXP\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINXP\system32\ctfmon.exe
O4 - Startup: desktop.ini
O4 - Global Startup: desktop.ini
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=
O18 - 列举现有的协议: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: cdl - {3DD53D40-7B8B-11D0-B013-00AA0059CE02} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\WINXP\system32\msvidctl.dll
O18 - 列举现有的协议: file - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: ftp - {79EAC9E3-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: gopher - {79EAC9E4-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: http - {79EAC9E2-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: https - {79EAC9E5-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: ic32pp - {BBCA9F81-8F4F-11D2-90FF-0080C83D3571} - D:\WINXP\wc98pp.dll
O18 - 列举现有的协议: ipp - (no CLSID) - (no file)
O18 - 列举现有的协议: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\WINXP\system32\itss.dll
O18 - 列举现有的协议: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: local - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: mailto - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: mhtml - {05300401-BCBC-11D0-85E3-00C04FD85AB4} - D:\WINXP\system32\inetcomm.dll
O18 - 列举现有的协议: mk - {79EAC9E6-BAF9-11CE-8C82-00AA004BA90B} - D:\WINXP\system32\urlmon.dll
O18 - 列举现有的协议: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\WINXP\system32\itss.dll
O18 - 列举现有的协议: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - D:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL
O18 - 列举现有的协议: msdaipp - (no CLSID) - (no file)
O18 - 列举现有的协议: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - D:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - 列举现有的协议: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - D:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - 列举现有的协议: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\WINXP\system32\msvidctl.dll
O18 - 列举现有的协议: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\WINXP\system32\mshtml.dll
O18 - 列举现有的协议: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - D:\WINXP\system32\wiascr.dll
O23 - NT 服务: Kingsoft Personal Firewall Service (KPfwSvc) - Kingsoft Corporation - E:\KAV2005\KPfwSvc.EXE
O23 - NT 服务: Kingsoft Antivirus KWatch Service (KWatchSvc) - Kingsoft Corporation - E:\KAV2005\KWatch.EXE
O23 - NT 服务: Macromedia Licensing Service - Macromedia - D:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - NT 服务: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINXP\system32\nvsvc32.exe
O23 - NT 服务: SmartLinkService (SLService) - Smart Link - D:\WINXP\SYSTEM32\slserv.exe
O23 - NT 服务: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
O23 - NT 服务: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - D:\WINXP\system32\vmnetdhcp.exe
O23 - NT 服务: VMware NAT Service - VMware, Inc. - D:\WINXP\system32\vmnat.exe

大家帮忙啊

O23 - NT 服务: SmartLinkService (SLService) - Smart Link - D:\WINXP\SYSTEM32\slserv.exe
灰鸽子

【回复“s晴空”的帖子】
log没问题.
修复:
O14 - IERESET.INF: SEARCH_PAGE_URL=
O14 - IERESET.INF: START_PAGE_URL=

以上的方法都试过了，都没用啊

【回复“s晴空”的帖子】
到我的空间下载SREng把日志扫上来.
http://free.ys168.com/?konce

2005-10-15,17:26:10

System Repair Engineer 1.1.0.269
    Windows XP Professional Service Pack 2 - 管理权限用户 - 完整功能

以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联


启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  <ctfmon.exe><D:\WINXP\system32\ctfmon.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <KavStart><"E:\KAV2005\KAVStart.exe" -startup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  <NvCplDaemon><rem ; RUNDLL32.EXE D:\WINXP\system32\NvCpl.dll,NvStartup>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  <shell><Explorer.exe>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
  <Userinit><D:\WINXP\SYSTEM32\Userinit.exe,>
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
  <AppInit_DLLs><>

==================================
启动文件夹
服务
[Kingsoft Personal Firewall Service / KPfwSvc]
  <"E:\KAV2005\KPfwSvc.EXE"><Kingsoft Corporation>
[Kingsoft Antivirus KWatch Service / KWatchSvc]
  <E:\KAV2005\KWatch.EXE><Kingsoft Corporation>
[Macromedia Licensing Service / Macromedia Licensing Service]
  <"D:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe"><Macromedia>
[NVIDIA Display Driver Service / NVSvc]
  <D:\WINXP\system32\nvsvc32.exe><NVIDIA Corporation>
[SmartLinkService / SLService]
  <slserv.exe><Smart Link>
[VMware Authorization Service / VMAuthdService]
  <C:\Program Files\VMware\VMware Workstation\vmware-authd.exe><VMware, Inc.>
[VMware DHCP Service / VMnetDHCP]
  <D:\WINXP\system32\vmnetdhcp.exe><VMware, Inc.>
[VMware NAT Service / VMware NAT Service]
  <D:\WINXP\system32\vmnat.exe><VMware, Inc.>

==================================
浏览器加载项
[AlternaTIFF ActiveX]
  <D:\WINXP\Downloaded Program Files\alttiff.ocx>
[Windows Genuine Advantage]
  <D:\WINXP\system32\LegitCheckControl.dll>
[IETag Factory]
  <D:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL>
[WUWebControl Class]
  <D:\WINXP\system32\wuweb.dll>
[AvlFTP Control]
  <D:\WINXP\DOWNLO~1\avlFTP.ocx>
[Windows Media Player]
  <D:\WINXP\system32\wmp.dll>
[Active Desktop Mover]
  <%SystemRoot%\system32\SHELL32.dll>
[SearchAssistantOC]
  <%SystemRoot%\system32\shdocvw.dll>
[Shockwave Flash Object]
  <D:\WINXP\system32\Macromed\Flash\Flash8.ocx>
[PhotoUpload Control]
  <D:\WINXP\DOWNLO~1\PHOTOU~1.OCX>

==================================
正在运行的进程
[PID: 488][\SystemRoot\System32\smss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 536][\??\D:\WINXP\system32\csrss.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 560][\??\D:\WINXP\system32\winlogon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 604][D:\WINXP\system32\services.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 616][D:\WINXP\system32\lsass.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 768][D:\WINXP\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 816][D:\WINXP\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1056][D:\WINXP\System32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1160][D:\WINXP\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1224][D:\WINXP\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1452][E:\KAV2005\KWatch.EXE]  <Kingsoft Corporation><2005, 4, 24, 48>
    [E:\KAV2005\KAVIPC2.DLL]  <Kingsoft Corporation><2004, 12, 28, 20>
    [E:\KAV2005\KAEPlat.DLL]  <Kingsoft Corp.><2004, 11, 26, 53>
    [E:\KAV2005\KAEMem.DAT]  <Kingsoft><2004, 11, 9, 11>
[PID: 1552][D:\WINXP\system32\spoolsv.exe]  <Microsoft Corporation><5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)>
    [D:\WINXP\system32\AdobePDF.dll]  <Adobe Systems Incorporated.><6.0.000>
    [E:\Adobe\Acrobat6.0\Distillr\adistres.dll]  <Adobe Systems Incorporated.><6.0.0.2003051500>
[PID: 1672][D:\WINXP\Explorer.EXE]  <Microsoft Corporation><6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)>
    [E:\KAV2005\KAVEXT.DLL]  <Kingsoft Corporation><2005, 2, 21, 13>
    [E:\WinRAR\rarext.dll]  <N/A><N/A>
    [E:\优化王\AssistQRunShell.dll]  <全能助手工作室><3, 0, 0, 3>
    [E:\XP变脸王\data\cmext.dll]  <Revenger inc.><1.2.1.2>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\Adobe\Acrobat6.0\Acrobat Elements\ContextMenu.dll]  <Adobe Systems Inc.><1.0.0.2003051500>
    [D:\WINXP\system32\nvcpl.dll]  <NVIDIA Corporation><6.14.10.7772>
    [D:\WINXP\system32\NVRSZHC.DLL]  <NVIDIA Corporation><6.14.10.7772>
    [D:\WINXP\system32\nvshell.dll]  <NVIDIA Corporation><6.14.10.10525>
    [E:\RealPlayer\rpshell.dll]  <RealNetworks, Inc.><1.0.1.2021>
    [D:\WINXP\system32\PNCRT.dll]  <Real Networks, Inc><6.0.0.0>
    [E:\RealPlayer\lang\rpext_cn.dll]  <RealNetworks, Inc.><6.0.12.298>
[PID: 1904][D:\WINXP\system32\ctfmon.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 432][E:\KAV2005\KPfwSvc.EXE]  <Kingsoft Corporation><2004, 12, 19, 24>
[PID: 460][D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  <Microsoft Corporation><7.00.9466>
[PID: 880][D:\WINXP\system32\nvsvc32.exe]  <NVIDIA Corporation><6.14.10.7772>
[PID: 1044][D:\WINXP\system32\slserv.exe]  <Smart Link><3.80.01MC15>
[PID: 1208][C:\Program Files\VMware\VMware Workstation\vmware-authd.exe]  <VMware, Inc.><5.0.0 build-13124>
[PID: 1732][D:\WINXP\system32\vmnat.exe]  <VMware, Inc.><5.0.0 build-13124>
[PID: 1768][D:\WINXP\system32\vmnetdhcp.exe]  <VMware, Inc.><5.0.0 build-13124>
[PID: 220][D:\WINXP\System32\alg.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 3208][D:\WINXP\system32\svchost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 796][E:\KAV2005\KAVStart.exe]  <Kingsoft Corporation><2005, 10, 10, 150>
    [E:\KAV2005\KAVIPC2.DLL]  <Kingsoft Corporation><2004, 12, 28, 20>
    [E:\KAV2005\KAVPassp.dll]  <Kingsoft Corporation><2005, 7, 29, 212>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 3764][E:\KAV2005\KMailMon.EXE]  <Kingsoft Corporation><2005, 6, 30, 74>
    [E:\KAV2005\KAntiSpm.dll]  <N/A><1, 0, 0, 2>
    [E:\KAV2005\KAVIPC2.DLL]  <Kingsoft Corporation><2004, 12, 28, 20>
    [E:\KAV2005\KAECall2.DLL]  <Kingsoft Corporation><2004, 12, 28, 7>
    [E:\KAV2005\KAEPlat.DLL]  <Kingsoft Corp.><2004, 11, 26, 53>
    [E:\KAV2005\KAEMem.DAT]  <Kingsoft><2004, 11, 9, 11>
    [E:\KAV2005\KAConfig.DLL]  <Kingsoft Corporation><2005, 3, 23, 30>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 2972][E:\Maxthon\Maxthon.exe]  <MY Soft Technology><1, 5, 0, 95>
    [E:\Maxthon\maxzlib.dll]  < ><1, 0, 0, 2>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\Maxthon\Plugin\FloatBar\FloatBar.dll]  <N/A><1, 8, 0, 0>
    [E:\Maxthon\Plugin\ViewSource\ViewSrc.dll]  <N/A><1, 0, 0, 1>
    [C:\Program Files\VMware\VMware Workstation\vmPerfmon.dll]  <VMware, Inc.><5.0.0 build-13124>
    [E:\Maxthon\Services\RealTime\real_time.dll]  <N/A><1, 0, 0, 1>
    [D:\WINXP\system32\Macromed\Flash\Flash8.ocx]  <Macromedia, Inc.><8,0,0,434>
[PID: 2796][E:\Thunder\Thunder.exe]  <Thunder Networking Technologies,LTD><5.0.3.86>
    [E:\Thunder\UpdateDownload.dll]  <N/A><N/A>
    [E:\Thunder\download_interface.dll]  <N/A><N/A>
    [E:\Thunder\log4cplus.dll]  <N/A><N/A>
    [E:\Thunder\stlport_vc646.dll]  <STLport Consulting, Inc.><4.6.2003.1031>

[E:\Thunder\historyinfo_manage.dll]  <N/A><N/A>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\Thunder\iThunder.dll]  <迅雷网络><1, 0, 0, 30>
    [E:\Thunder\RegisterDll.dll]  <N/A><N/A>
    [D:\WINXP\system32\Macromed\Flash\Flash8.ocx]  <Macromedia, Inc.><8,0,0,434>
[PID: 212][E:\BitComet\BitComet.exe]  <www.BitComet.com><0.60.>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 2596][E:\QQ\QQ.exe]  <TENCENT><14, 13, 1, 192>
    [E:\QQ\QQBaseClassInDll.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QQHelperDll.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\BasicCtrlDll.dll]  <Tencent><0, 3, 2, 9>
    [E:\QQ\CoralQQ.dll]  <Coral Team><4.0.0 Build 0920>
    [E:\QQ\IPSearcher.dll]  <N/A><1.0.0.3>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\QQ\QQAPI.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\TIMProxy.dll]  <tencent><0, 3, 2, 4>
    [E:\QQ\LoginCtrl.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\npkcntc.dll]  <INCA Internet Co., Ltd.><2005, 9, 1, 1>
    [E:\QQ\npkpdb.dll]  <INCA Internet Co., Ltd.><2003, 10, 1, 1>
    [E:\QQ\QQRes.dll]  <tencent><1, 0, 0, 1>
    [E:\QQ\QQMainFrame.dll]  <N/A><N/A>
    [E:\QQ\CQQApplication.dll]  <N/A><N/A>
    [E:\QQ\NewSkin.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\MailSummary.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QQSpace.dll]  <N/A><1, 0, 0, 1>
    [D:\WINXP\system32\msdmo.dll]  <N/A><N/A>
    [E:\QQ\QQConfigPlugin.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QRingMng.dll]  <N/A><N/A>
    [E:\QQ\PhoneAPI.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QQSysMsgMng.dll]  <N/A><N/A>
    [E:\QQ\DialerAllinOne.dll]  <tencent><1, 4, 0, 0>
    [E:\QQ\HostingMgr.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QQAvatar.dll]  <N/A><N/A>
    [E:\QQ\FlashAvatarDll.dll]  <N/A><1, 4, 0, 1>
    [E:\QQ\LongConnection.dll]  <tencent><0, 3, 3, 4>
    [D:\WINXP\system32\l3codeca.acm]  <Fraunhofer Institut Integrierte Schaltungen IIS><1, 9, 0, 0305>
    [E:\QQ\QQPlugin.dll]  <N/A><N/A>
    [E:\QQ\QQAllInOne.dll]  <N/A><N/A>
    [E:\QQ\CameraDll.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\SCCore.dll]  <N/A><N/A>
    [E:\QQ\UserDefinedHead.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\BQQApplication.dll]  <N/A><N/A>
    [E:\QQ\QQPet.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\CommercesMng.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\PersonalDesktop.dll]  <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 2>
    [E:\QQ\QQAddr.dll]  <深圳市腾讯计算机系统有限公司><4, 0, 101, 111>
    [E:\QQ\AddrAppChannel.dll]  <N/A><0, 3, 1, 4>
    [E:\QQ\QQSceneMng.dll]  <N/A><N/A>
    [E:\QQ\QQPhoneHelper.dll]  <腾讯科技（深圳）有限公司><1, 0, 0, 22>
    [E:\QQ\QQGroupMng.dll]  <N/A><1, 0, 0, 1>
    [E:\QQ\QQCustomFace.dll]  <N/A><N/A>
    [D:\WINXP\system32\Macromed\Flash\Flash8.ocx]  <Macromedia, Inc.><8,0,0,434>
    [E:\QQ\GroupConnection.dll]  <Tencent><0, 3, 2, 3>
    [E:\QQ\ImageOle.dll]  <TODO: <Company name>><1.0.0.1>
    [E:\QQ\QQZip.dll]  <tencent><0, 3, 2, 4>
    [E:\QQ\QQFileTransfer.dll]  <Tencent><0, 3, 3, 1>
[PID: 1984][E:\QQ\TIMPlatform.exe]  <tencent><0, 3, 1, 8>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\QQ\TIMProxy.dll]  <tencent><0, 3, 2, 4>
[PID: 2132][D:\WINXP\system32\dllhost.exe]  <Microsoft Corporation><5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)>
[PID: 1348][D:\WINXP\system32\msdtc.exe]  <Microsoft Corporation><2001.12.4414.258>
[PID: 3496][C:\D\My Documents\SnInput.exe]  <CBIT><0.1.2.1110>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 3184][E:\eMule\eMule.exe]  <http://www.emule.org.cn><0.46.2>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\eMule\lang\zh_CN.dll]  <http://www.emule-project.net><0.46.2>
[PID: 3600][E:\Winamp\winamp.exe]  <Nullsoft><5.1>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
    [E:\Winamp\Plugins\in_mp3.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_wm.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_midi.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\read_file.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_mod.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_vorbis.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_mp4.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_cdda.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_wave.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_ape.dll]  <Matthew T. Ashland><3.99>
    [E:\Winamp\Plugins\in_mpc.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_flac.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_cue.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_nsv.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_dshow.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\in_linein.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\out_wave.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\out_disk.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\out_ds.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\out_lame.dll]  <MUKOLI><1.6.3>
    [E:\Winamp\Plugins\gen_ml.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\ml_gusb_us.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\ml_transcode.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_hotkeys.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_jumpex.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_tray.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_skinsubmenu.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_timerestore.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_find_on_disk.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_MiniLyrics.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\MiniLyrics\MiniLyrics.dll]  <N/A><N/A>
    [E:\Winamp\Plugins\gen_context.dll]  <N/A><N/A>
[PID: 896][E:\WinRAR\WinRAR.exe]  <N/A><N/A>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 2196][F:\Temp\Rar$EX00.219\SREng.exe]  <Smallfrogs Studio><1.1.0.269>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>
[PID: 3508][D:\WINXP\NOTEPAD.EXE]  <N/A><N/A>
    [E:\KAV2005\KASocket.dll]  <Kingsoft Corporation><2005, 2, 22, 233>

==================================
文件关联
.TXT  OK. [D:\WINXP\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["D:\WINXP\hh.exe" %1]
.HLP  OK. [D:\WINXP\system32\winhlp32.exe %1]
.INI  OK. [D:\WINXP\system32\NOTEPAD.EXE %1]
.INF  OK. [D:\WINXP\system32\NOTEPAD.EXE %1]

==================================

【回复“s晴空”的帖子】SREng log也没问题.
请清空IE缓存:
开始--控制面版--internet选项--删除文件--删除所有脱机内容

清空 hosts文件;
在win 98里是: C:\Windows\hosts
在win 2000/xp是: C:\Windows\system32\drivers\etc\hosts

HOSTS文件里保存有WINDOWS系统记录的IP地址与域名的对应关系。

有些网页恶意代码会修改这个文件迫使我们访问恶意网页/网站。

删除127.0.0.1 localhost以外的其他所有多余内容

试过了，还是不行啊。不知道什么回事啊。但遨游又不会这样，只是用IE打开网页有问题。

大家帮忙啊，求求你们了

请楼主到安全模式下扫个日志上来看看...

怎么不扫描了???

我的系统不知道为什么进不了安全模式，就在欢迎界面那里停留着，进出不得！

汗,是否是安装了虚拟机造成的?

应该不是虚拟机的问题吧，以前都没有这种事的。是今天突然发生的。

同病相连,不行就先换个浏览器吧!

如果能完全替代那倒不错，可是很多情况下还是要用到IE的，很不方便的。

真惨，找不到人能帮上忙的。我只有重装系统，现在没事了，但我不知道以后该怎么防范和处理啊