瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程序\启动\隔离目录

12   1  /  2  页   跳转

[求助] 电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程序\启动\隔离目录

收藏
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:29 | 只看楼主 短消息 资料
字号: 1楼

电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程序\启动\隔离目录

是中了毒以后这样的,请问怎么恢复啊,

用户系统信息:Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) )
分享到:
gototop
 
天月来了
头像
版主
  • 帖子:76904
  • 注册: 2007-02-06
  • 来自:
发表于: 2010-04-01 17:34 | 短消息 资料
字号: 2楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

详细点

还有自己去用解压工具WinRAR亿依路径打开C:\Documents and Settings\All Users\「开始」菜单\程序\启动\文件夹,看里面是否存在“隔离目录”
百年以后,你的墓碑旁 刻着的名字不是我
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:44 | 只看楼主 短消息 资料
字号: 3楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

没有啊,不是我不详细,是我不会,不知怎么做
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:49 | 只看楼主 短消息 资料
字号: 4楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

我中了IE多个的毒后,用你写的方法删除好了,这个没好,谢谢啊,帮帮忙
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:50 | 只看楼主 短消息 资料
字号: 5楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

********** 日志开始 **********

[键]HKEY_CLASSES_ROOT\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_CLASSES_ROOT\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-32554

[键]HKEY_CLASSES_ROOT\CLSID\{65014010-9F62-11D1-A651-00600811D5CE}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]c:\program files\internet explorer\iexplore.exe,1

[键]HKEY_CLASSES_ROOT\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe http://www.ez173.com/?v

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -extoff

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_CLASSES_ROOT\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_CLASSES_ROOT\CLSID\{FBF23B42-E3F0-101B-8488-00AA003E56F8}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe",-32528

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{11016101-E366-4D22-BC06-4ADA335C892B}
[值]@
[类型]REG_SZ
[内容]ie history and feeds shell data source for windows search

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{1F4DE370-D627-11D1-BA4F-00A0C91EEDBA}
[值]@
[类型]REG_SZ
[内容]computer search results folder

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]REMOVAL MESSAGE
[类型]REG_SZ
[内容]@mydocs.dll,-900

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{645FF040-5081-101B-9F08-00AA002F954E}
[值]@
[类型]REG_SZ
[内容]recycle bin

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{E17D4FC0-5564-11D1-83F2-00A0C90DC849}
[值]@
[类型]REG_SZ
[内容]search results folder

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
[值]PENDINGFILERENAMEOPERATIONS
[类型]REG_MULTI_SZ
[内容]\??\f:\program files\kingsoft\ksm3.0\kssgui.dat0
      !\??\f:\program files\kingsoft\ksm3.0\kssgui.dat
      \??\f:\program files\kingsoft\ksm3.0\p.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\p.nlb
      \??\f:\program files\kingsoft\ksm3.0\s.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\s.nlb
      \??\f:\program files\kingsoft\ksm3.0\p2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\p2.nlb
      \??\f:\program files\kingsoft\ksm3.0\s2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\s2.nlb
      \??\f:\program files\kingsoft\ksm3.0\kscanner.dll0
      !\??\f:\program files\kingsoft\ksm3.0\kscanner.dll
      \??\f:\program files\kingsoft\ksm3.0\ksversion.ini0
      !\??\f:\program files\kingsoft\ksm3.0\ksversion.ini
      \??\f:\program files\kingsoft\ksm3.0\kdump.dll0
      !\??\f:\program files\kingsoft\ksm3.0\kdump.dll
      \??\f:\program files\kingsoft\ksm3.0\kdumprep.exe0
      !\??\f:\program files\kingsoft\ksm3.0\kdumprep.exe
      \??\f:\program files\kingsoft\ksm3.0\kinstool.exe0
      !\??\f:\program files\kingsoft\ksm3.0\kinstool.exe
      \??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml0
      !\??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml
      \??\c:\docume~1\admini~1\locals~1\temp\_iu14d2n.tmp
     
      \??\c:\docume~1\admini~1\locals~1\temp\~nsu.tmp\au_.exe
     
      \??\c:\docume~1\admini~1\locals~1\temp\~nsu.tmp\bu_.exe
     
      \??\f:\program files\kingsoft\ksm3.0\kssgui.dat0
      !\??\f:\program files\kingsoft\ksm3.0\kssgui.dat
      \??\f:\program files\kingsoft\ksm3.0\p.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\p.nlb
      \??\f:\program files\kingsoft\ksm3.0\s.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\s.nlb
      \??\f:\program files\kingsoft\ksm3.0\p2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\p2.nlb
      \??\f:\program files\kingsoft\ksm3.0\s2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\s2.nlb
      \??\f:\program files\kingsoft\ksm3.0\kscanner.dll0
      !\??\f:\program files\kingsoft\ksm3.0\kscanner.dll
      \??\f:\program files\kingsoft\ksm3.0\ksversion.ini0
      !\??\f:\program files\kingsoft\ksm3.0\ksversion.ini
      \??\f:\program files\kingsoft\ksm3.0\kdump.dll0
      !\??\f:\program files\kingsoft\ksm3.0\kdump.dll
      \??\f:\program files\kingsoft\ksm3.0\kdumprep.exe0
      !\??\f:\program files\kingsoft\ksm3.0\kdumprep.exe
      \??\f:\program files\kingsoft\ksm3.0\kinstool.exe0
      !\??\f:\program files\kingsoft\ksm3.0\kinstool.exe
      \??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml0
      !\??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml
      \??\c:\docume~1\admini~1\locals~1\temp\~nsu.tmp\au_.exe
     
     
     

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}
[值]@
[类型]REG_SZ
[内容]tswebmon

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}
[值]NOEXPLORER
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}
[值]@
[类型]REG_SZ
[内容]卡卡上网安全助手

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[值]NOEXPLORER
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,32

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]FULL
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,32

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]EMPTY
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,31

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON\EMPTY
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,31

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON\FULL
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,32

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]ATTRIBUTES
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-32554

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{65014010-9F62-11D1-A651-00600811D5CE}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]c:\program files\internet explorer\iexplore.exe,1

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe http://www.ez173.com/?v

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -extoff

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:50 | 只看楼主 短消息 资料
字号: 6楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{FBF23B42-E3F0-101B-8488-00AA003E56F8}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe",-32528

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXPLORER BARS\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}
[值]USESEARCHOPTIONS
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CLASSES_ROOT\HTTP\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -nohome

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]FIRSTHOMEPAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]FIRSTHOMEPAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]LOCAL PAGE
[类型]REG_SZ
[内容]c:\windows\system32\blank.htm

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://go.microsoft.com/fwlink/?linkid=54896

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

********** 日志开始 **********

[键]HKEY_CLASSES_ROOT\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_CLASSES_ROOT\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_CLASSES_ROOT\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-32554

[键]HKEY_CLASSES_ROOT\CLSID\{65014010-9F62-11D1-A651-00600811D5CE}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]c:\program files\internet explorer\iexplore.exe,1

[键]HKEY_CLASSES_ROOT\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

[键]HKEY_CLASSES_ROOT\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe http://www.ez173.com/?v

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -extoff

[键]HKEY_CLASSES_ROOT\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_CLASSES_ROOT\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_CLASSES_ROOT\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_CLASSES_ROOT\CLSID\{FBF23B42-E3F0-101B-8488-00AA003E56F8}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe",-32528

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{11016101-E366-4D22-BC06-4ADA335C892B}
[值]@
[类型]REG_SZ
[内容]ie history and feeds shell data source for windows search

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{1F4DE370-D627-11D1-BA4F-00A0C91EEDBA}
[值]@
[类型]REG_SZ
[内容]computer search results folder

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]@
[类型]REG_SZ
[内容]空

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{450D8FBA-AD25-11D0-98A8-0800361B1103}
[值]REMOVAL MESSAGE
[类型]REG_SZ
[内容]@mydocs.dll,-900

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{645FF040-5081-101B-9F08-00AA002F954E}
[值]@
[类型]REG_SZ
[内容]recycle bin
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:51 | 只看楼主 短消息 资料
字号: 7楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\DESKTOP\NAMESPACE\{E17D4FC0-5564-11D1-83F2-00A0C90DC849}
[值]@
[类型]REG_SZ
[内容]search results folder

[键]HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
[值]PENDINGFILERENAMEOPERATIONS
[类型]REG_MULTI_SZ
[内容]\??\f:\program files\kingsoft\ksm3.0\p2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\p2.nlb
      \??\f:\program files\kingsoft\ksm3.0\s2.nlb0
      !\??\f:\program files\kingsoft\ksm3.0\s2.nlb
      \??\f:\program files\kingsoft\ksm3.0\ksmcorex.dll0
      !\??\f:\program files\kingsoft\ksm3.0\ksmcorex.dll
      \??\f:\program files\kingsoft\ksm3.0\ksversion.ini0
      !\??\f:\program files\kingsoft\ksm3.0\ksversion.ini
      \??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml0
      !\??\f:\program files\kingsoft\ksm3.0\wss\config\ksecore.config.top.xml
     
     

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}
[值]@
[类型]REG_SZ
[内容]tswebmon

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}
[值]NOEXPLORER
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{98B7C13A-E9CD-4959-8B46-FBEAB41E42A8}
[值]@
[类型]REG_SZ
[内容]卡卡上网安全助手

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
[值]NOEXPLORER
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,31

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]FULL
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,32

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON
[值]EMPTY
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,31

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON\EMPTY
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,31

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\DEFAULTICON\FULL
[值]@
[类型]REG_EXPAND_SZ
[内容]%systemroot%\system32\shell32.dll,32

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELLFOLDER
[值]ATTRIBUTES
[类型]REG_DWORD
[内容]0x00000000

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{0002DF01-0000-0000-C000-000000000046}\LOCALSERVER32
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\HTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{42042206-2D85-11D3-8CFF-005004838597}\OLD ICON\MHTMLFILE\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe,-32554

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{65014010-9F62-11D1-A651-00600811D5CE}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]c:\program files\internet explorer\iexplore.exe,1

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\DEFAULTICON
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{86AEFBE8-763F-0647-899C-A93278894D8E}\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe http://www.ez173.com/?v

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\NOADDONS\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -extoff

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\SHELL\OPENHOMEPAGE\COMMAND
[值]@
[类型]REG_EXPAND_SZ
[内容]"c:\program files\internet explorer\iexplore.exe"

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{AE24FDAE-03C6-11D1-8B76-0080C744F389}\TOOLBOXBITMAP32
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe.mui,-17

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{D5E8041D-920F-45E9-B8FB-B1DEB82C6E5E}\LOCALSERVER32
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe" -startmediumtab

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\CLSID\{FBF23B42-E3F0-101B-8488-00AA003E56F8}\DEFAULTICON
[值]@
[类型]REG_EXPAND_SZ
[内容]"%programfiles%\internet explorer\iexplore.exe",-32528

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXPLORER BARS\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}
[值]USESEARCHOPTIONS
[类型]REG_DWORD
[内容]0x00000001

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\EXPLORER BARS\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}\FILESNAMEDMRU
[值]000
[类型]REG_SZ
[内容].vbs

[键]HKEY_CLASSES_ROOT\HTTP\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]"c:\program files\internet explorer\iexplore.exe" -nohome

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]FIRSTHOMEPAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]DEFAULT_PAGE_URL
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]FIRSTHOMEPAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]LOCAL PAGE
gototop
 
chenchenxin
头像
初生襁褓狮
  • 帖子:10
  • 注册: 2010-04-01
  • 来自:
发表于: 2010-04-01 17:52 | 只看楼主 短消息 资料
字号: 8楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

[类型]REG_SZ
[内容]c:\windows\system32\blank.htm

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]SEARCH PAGE
[类型]REG_SZ
[内容]http://go.microsoft.com/fwlink/?linkid=54896

[键]HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN
[值]START PAGE
[类型]REG_SZ
[内容]about:blank

[键]HKEY_LOCAL_MACHINE\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND
[值]@
[类型]REG_SZ
[内容]c:\program files\internet explorer\iexplore.exe

这个日志有用吗,谢谢呀请帮帮忙
gototop
 
天月来了
头像
版主
  • 帖子:76904
  • 注册: 2007-02-06
  • 来自:
发表于: 2010-04-01 18:09 | 短消息 资料
字号: 9楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

那日志和C:\Documents and Settings\All Users\「开始」菜单\程序\启动\隔离目录有关系吗??

你到底想说开机后会自动打开C:\Documents and Settings\All Users\「开始」菜单\程序\启动\隔离目录文件夹??

还是想说别的 ???

用解压工具WinRAR依路径打开C:\Documents and Settings\All Users\「开始」菜单\程序\启动文件夹看情况如何,不懂就抓图来看:
百年以后,你的墓碑旁 刻着的名字不是我
gototop
 
天月来了
头像
版主
  • 帖子:76904
  • 注册: 2007-02-06
  • 来自:
发表于: 2010-04-01 18:11 | 短消息 资料
字号: 10楼

回复:电脑开机就是C:\Documents and Settings\All Users\「开始」菜单\程...

至于日志文件以附件形式发来
点击我这贴右下角的“引用”,然后就应该知道怎么发了。

你那粘贴那一堆,没人有本事看
百年以后,你的墓碑旁 刻着的名字不是我
gototop
 
<<上一主题|下一主题>>
12   1  /  2  页   跳转
页面顶部
Powered by Discuz!NT