瑞星卡卡安全论坛

我的浏览器主页被改成了http://www.2548dh.com/?w，试了好多方法，卡卡，360，以及ie专用修复工具，也改不过来，请教高手该怎么弄啊，这个流氓软件太xxx了。md

用户系统信息：Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; InfoPath.2)

置顶贴自己操作吧

我这是win7系统，用了“觉觉猪 顽固桌面IE清除程序”，还是不行啊，具体怎么弄啊
:kaka3:

不是还有我的那个贴嘛

怎都不喜欢细看呢:kaka6:

l老大，你有qq没，我的69923100，你加啊:kaka12: ，你那帖子太深了，看不懂啊，要手把手教啊，我都郁闷死了:kaka6:

没有QQ呢

你自己考虑是否一个一个试吧

找支持7系统的试吧

反病毒工具下载，包括SREng工具的下载。

是这个帖子里的吗？
要一个一个试啊，希望别把机子整残了:kaka4:

********** 日志开始 **********

[键]HKEY_CLASSES_ROOT\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_CLASSES_ROOT\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe,-32554

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -extoff

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]COMMAND
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe,-32554

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -extoff

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]COMMAND
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{1F4DE370-D627-11D1-BA4F-00A0C91EEDBA}
[值]@
[类型]REG_SZ
[内容]computer search results folder

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]REMOVAL MESSAGE
[类型]REG_SZ
[内容]@mydocs.dll,-900

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{645FF040-5081-101B-9F08-00AA002F954E}
[值]@
[类型]REG_SZ
[内容]recycle bin

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{8FD8B88D-30E1-4F25-AC2B-553D3D65F0EA}
[值]@
[类型]REG_SZ
[内容]dxp

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{E17D4FC0-5564-11D1-83F2-00A0C90DC849}
[值]@
[类型]REG_SZ
[内容]search results folder

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{ED228FDF-9EA8-4870-83B1-96B02CFE0D52}
[值]REMOVAL MESSAGE
[类型]REG_SZ
[内容]@gameux.dll,-10038

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{871C5380-42A0-1069-A2EA-08002B30309D}.DEFAULT
[类型]REG_SZ
[内容]0

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{9343812E-1C37-4A49-A12E-4B2D810D956B}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{871C5380-42A0-1069-A2EA-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{20D04FE0-3AEA-1069-A2D8-08002B30309D}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{208D2C60-3AEA-1069-A2D7-08002B30309D}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{871C5380-42A0-1069-A2EA-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{59031A47-3F72-44A7-89C5-5595FE6B30EE}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{031E4825-7B94-4DC3-B131-E946B44C8DD5}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{B4FB3F98-C1EA-428D-A78A-D1F5659CBA93}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{9343812E-1C37-4A49-A12E-4B2D810D956B}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{450D8FBA-AD25-11D0-98A8-0800361B1103}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{20D04FE0-3AEA-1069-A2D8-08002B30309D}
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{871C5380-42A0-1069-A2EA-08002B30309D}.DEFAULT
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\CLASSICSTARTMENU
[值]{871C5380-42A0-1069-A2EA-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{20D04FE0-3AEA-1069-A2D8-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{871C5380-42A0-1069-A2EA-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{450D8FBA-AD25-11D0-98A8-0800361B1103}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\HIDEDESKTOPICONS\NEWSTARTPANEL
[值]{208D2C60-3AEA-1069-A2D7-08002B30309D}
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]NODISPCPL
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]NODISPBACKGROUNDPAGE
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]NODISPSCRSAVPAGE
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]NODISPAPPEARANCEPAGE
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]NODISPSETTINGSPAGE
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]DISABLETASKMGR
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
[值]DISABLEREGISTRYTOOLS
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_CLASSES_ROOT\HTTP\SHELL\OPEN\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -nohome

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{01443AEC-0FD1-40FD-9C87-E93D1494C233}
[值]@
[类型]REG_SZ
[内容]thunder atonce

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}
[值]@
[类型]REG_SZ
[内容]scriptproxy

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\imageres.dll,-54

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]FULL
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\imageres.dll,-54

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]EMPTY
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\imageres.dll,-55

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH
[值]CUSTOMIZESEARCH
[类型]REG_SZ
[内容]http://ie.search.msn.com/{sub_rfc1766}/srchasst/srchcust.htm

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCH
[值]SEARCHASSISTANT
[类型]REG_SZ
[内容]http://ie.search.msn.com/{sub_rfc1766}/srchasst/srchasst.htm

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
[值]HIDDEN
[类型]REG_DWORD
[内容]0x00000002

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
[值]HIDEFILEEXT
[类型]REG_DWORD
[内容]0x00000030

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
[值]SUPERHIDDEN
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
[值]SHOWSUPERHIDDEN
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]TYPE
[类型]REG_DWORD
[内容]0x00000110

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]START
[类型]REG_DWORD
[内容]0x00000002

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]ERRORCONTROL
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]IMAGEPATH
[类型]REG_EXPAND_SZ
[内容]c:\programdata\microsoft\microsoft.exe

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]DISPLAYNAME
[类型]REG_SZ
[内容]kingsoft antivirus webshield service

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]GROUP
[类型]REG_SZ
[内容]schedulergroup

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]OBJECTNAME
[类型]REG_SZ
[内容]localsystem

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]DESCRIPTION
[类型]REG_SZ
[内容]kingsoft antivirus webshield service

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\KINGSOFT ANTIVIRUS WEBSHIELD SERVICE
[值]FAILUREACTIONS
[类型]3
[内容]00,00,00,00,00,00,00,00,00,00,00,00,01,00,00,00,14,00,00,00,00,00,00,00,00,00,00,00

[键]HKEY_CLASSES_ROOT\.LNK
[值]@
[类型]REG_SZ
[内容]lnkfile

[键]HKEY_CLASSES_ROOT\.LNK\SHELLEX\{000214EE-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\.LNK\SHELLEX\{000214F9-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\.LNK\SHELLEX\{00021500-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\.LNK\SHELLEX\{BB2E617C-0920-11D1-9A0B-00C04FC2D6C1}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\.LNK\SHELLNEW
[值]HANDLER
[类型]REG_SZ
[内容]{ceefea1b-3e29-4ef1-b34c-fec79c4f70af}

[键]HKEY_CLASSES_ROOT\.LNK\SHELLNEW
[值]ICONPATH
[类型]REG_EXPAND_SZ
[内容]c:\windows\system32\shell32.dll,-16769

[键]HKEY_CLASSES_ROOT\.LNK\SHELLNEW
[值]ITEMNAME
[类型]REG_SZ
[内容]@shell32.dll,-30397

[键]HKEY_CLASSES_ROOT\.LNK\SHELLNEW
[值]MENUTEXT
[类型]REG_SZ
[内容]@shell32.dll,-30318

[键]HKEY_CLASSES_ROOT\.LNK\SHELLNEW
[值]COMMAND
[类型]REG_SZ
[内容]rundll32.exe appwiz.cpl,newlinkhere %1

[键]HKEY_CLASSES_ROOT\LNKFILE
[值]@
[类型]REG_SZ
[内容]shortcut

[键]HKEY_CLASSES_ROOT\LNKFILE
[值]EDITFLAGS
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CLASSES_ROOT\LNKFILE
[值]FRIENDLYTYPENAME
[类型]REG_SZ
[内容]@shell32.dll,-4153

[键]HKEY_CLASSES_ROOT\LNKFILE
[值]ISSHORTCUT
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\LNKFILE
[值]NEVERSHOWEXT
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\LNKFILE\CLSID
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\COMPATIBILITY
[值]@
[类型]REG_SZ
[内容]{1d27f844-3a1f-4410-85ac-14651078412d}

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\OPENCONTAININGFOLDERMENU
[值]@
[类型]REG_SZ
[内容]{37ea3a21-7493-4208-a011-7f9ea79ce9f5}

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\{00021401-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\DROPHANDLER
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\ICONHANDLER
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_CLASSES_ROOT\LNKFILE\SHELLEX\PROPERTYSHEETHANDLERS\SHIMLAYER PROPERTY PAGE
[值]@
[类型]REG_SZ
[内容]{513d916f-2a8e-4f51-aeab-0cbc76fb1af8}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK
[值]@
[类型]REG_SZ
[内容]lnkfile

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLEX\{000214EE-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLEX\{000214F9-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLEX\{00021500-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLEX\{BB2E617C-0920-11D1-9A0B-00C04FC2D6C1}
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLNEW
[值]HANDLER
[类型]REG_SZ
[内容]{ceefea1b-3e29-4ef1-b34c-fec79c4f70af}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLNEW
[值]ICONPATH
[类型]REG_EXPAND_SZ
[内容]c:\windows\system32\shell32.dll,-16769

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLNEW
[值]ITEMNAME
[类型]REG_SZ
[内容]@shell32.dll,-30397

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLNEW
[值]MENUTEXT
[类型]REG_SZ
[内容]@shell32.dll,-30318

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\.LNK\SHELLNEW
[值]COMMAND
[类型]REG_SZ
[内容]rundll32.exe appwiz.cpl,newlinkhere %1

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE
[值]@
[类型]REG_SZ
[内容]shortcut

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE
[值]EDITFLAGS
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE
[值]FRIENDLYTYPENAME
[类型]REG_SZ
[内容]@shell32.dll,-4153

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE
[值]ISSHORTCUT
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE
[值]NEVERSHOWEXT
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\CLSID
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\COMPATIBILITY
[值]@
[类型]REG_SZ
[内容]{1d27f844-3a1f-4410-85ac-14651078412d}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\OPENCONTAININGFOLDERMENU
[值]@
[类型]REG_SZ
[内容]{37ea3a21-7493-4208-a011-7f9ea79ce9f5}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\{00021401-0000-0000-C000-000000000046}
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\DROPHANDLER
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\ICONHANDLER
[值]@
[类型]REG_SZ
[内容]{00021401-0000-0000-c000-000000000046}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\LNKFILE\SHELLEX\PROPERTYSHEETHANDLERS\SHIMLAYER PROPERTY PAGE
[值]@
[类型]REG_SZ
[内容]{513d916f-2a8e-4f51-aeab-0cbc76fb1af8}

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}
[值]INFOTIP
[类型]REG_SZ
[内容]@ieframe.dll,-881

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}
[值]LOCALIZEDSTRING
[类型]REG_SZ
[内容]@ieframe.dll,-5723

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]ieframe.dll,-190

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\INPROCSERVER32
[值]@
[类型]REG_SZ
[内容]ieframe.dll

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\INPROCSERVER32
[值]THREADINGMODEL
[类型]REG_SZ
[内容]apartment

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL
[值]@
[类型]REG_SZ
[内容]openhomepage

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS
[值]@
[类型]REG_SZ
[内容]start without add-ons

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS
[值]LEGACYDISABLE
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -extoff

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]@
[类型]REG_SZ
[内容]open &home page

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]COMMAND
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLEX\CONTEXTMENUHANDLERS\IEFRAME
[值]@
[类型]REG_SZ
[内容]{871c5380-42a0-1069-a2ea-08002b30309d}

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLEX\MAYCHANGEDEFAULTMENU
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]@
[类型]REG_SZ
[内容]ieframe.dll,-190

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEASDELETEPERUSER
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]ATTRIBUTES
[类型]REG_DWORD
[内容]0x00000024

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEFOLDERVERBS
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]WANTSPARSEDISPLAYNAME
[类型]REG_SZ
[内容]空

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEONDESKTOPPERUSER
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}
[值]INFOTIP
[类型]REG_SZ
[内容]@ieframe.dll,-881

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}
[值]LOCALIZEDSTRING
[类型]REG_SZ
[内容]@ieframe.dll,-5723

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]ieframe.dll,-190

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\INPROCSERVER32
[值]@
[类型]REG_SZ
[内容]ieframe.dll

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\INPROCSERVER32
[值]THREADINGMODEL
[类型]REG_SZ
[内容]apartment

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL
[值]@
[类型]REG_SZ
[内容]openhomepage

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS
[值]@
[类型]REG_SZ
[内容]start without add-ons

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS
[值]LEGACYDISABLE
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -extoff

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]@
[类型]REG_SZ
[内容]open &home page

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE
[值]COMMAND
[类型]REG_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]%programfiles%\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLEX\CONTEXTMENUHANDLERS\IEFRAME
[值]@
[类型]REG_SZ
[内容]{871c5380-42a0-1069-a2ea-08002b30309d}

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLEX\MAYCHANGEDEFAULTMENU
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]@
[类型]REG_SZ
[内容]ieframe.dll,-190

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEASDELETEPERUSER
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]ATTRIBUTES
[类型]REG_DWORD
[内容]0x00000024

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEFOLDERVERBS
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]WANTSPARSEDISPLAYNAME
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]HIDEONDESKTOPPERUSER
[类型]REG_SZ
[内容]空

我也中標了

有誰成功解決這流氓問題嗎

你发这日志，意思是金山急救箱或金山网盾解决不了？？？

那么不从桌面上打开IE浏览器，直接去浏览器主程序位置去打开浏览器主程序C:\Program Files\Internet Explorer\IEXPLORE.EXE看情况怎样。

还有我嘛时候要你试我的工具贴了

置顶不是有关于IE不正常的帖子嘛，自己看呗

回复：ie浏览器主页被改成2548，怎么也改不过来了，求教啊
你发这日志，意思是金山急救箱或金山网盾解决不了？？？

那么不从桌面上打开IE浏览器，直接去浏览器主程序位置去打开浏览器主程序C:\Program Files\Internet Explorer\IEXPLORE.EXE看情况怎样。

---------------------------------------------------------------------------

试了，还是不行啊

按着你的方法，一个一个试，到了发日志这一步了:kaka7:

扫描SRENG日志来

附件: SREngLOG.log (2010-10-2 20:35:55, 80.28 K)
该附件被下载次数 328

太大了，发个附件吧

这些文件是什么呢？？？

    [C:\windows\system32\NpOpenStore.dll]  [N/A, ]
    [C:\windows\system32\NPCard.dll]  [N/A, ]
    [C:\windows\system32\RsaFun.dll]  [N/A, ]
    [C:\windows\system32\GPKPCSC.dll]  [N/A, ]

这个文件呢？？？是金山网盾的么？？看是否网盾锁死了首页无法修改了
C:\ProgramData\microsoft\kswebshield.dll

C:\ProgramData\microsoft\kswebshield.dll

找到这个东西了，然后怎么弄？

那上面的几个文件呢？？又是什么呢？？

你安装有金山的网盾么？？是之前的？还是为解决此问题才弄的？？

这两天老是看到求助关于这个2548的网页的，是玩什么游戏导致的么？

回复：ie浏览器主页被改成2548，怎么也改不过来了，求教啊
那上面的几个文件呢？？又是什么呢？？

你安装有金山的网盾么？？是之前的？还是为解决此问题才弄的？？

这两天老是看到求助关于这个2548的网页的，是玩什么游戏导致的么？

-------------------------------------------------------
上面那些是啥我也不知道
金山网盾修改日期显示的是2010年3月13号，那时候我还没买这个电脑
下了个小软件装，结果就中标了，是关于word2pdf的软件，已经删了

可惜你删除了那个安装后异常的小软件

实在不知道这是哪个文件被修改了

用超级兔子工具，小东东几下就搞定了。

我第一个用的就是超级兔子

我也好奇这事，要是能找到当初那个删除的软件多好

原来的主页设的是www.hao123.com，现在一到hao123，就会自动跳转到2548。是什么问题？