注册表里，跟"www.9348.cn"有关的所有键值都改了，每次重新开启IE，主页都会自动它定向到那个主页，郁闷呀！
小弟不才，无法看出自己系统内的问题，但问题确认是存在，请论坛的各位高手帮忙看看。
感觉这个主页强制锁定比以前的厉害多了，以前改个注册表就差不多了。。。唉。。。

        下面是我的系统状态信息：

[CODE]
2009-08-09,10:18:30
System Repair Engineer 2.7.1.1261
Smallfrogs (http://www.KZTechs.com)
Windows Server 2003 Enterprise Edition Service Pack 2 (Build 3790) - 管理权限用户 - 完整功能
以下内容被选中：
    所有的启动项目（包括注册表、启动文件夹、服务等）
    浏览器加载项
    正在运行的进程（包括进程模块信息）
    文件关联
    Winsock 提供者
    Autorun.inf
    HOSTS 文件
    进程特权扫描
    计划任务
    API HOOK
    隐藏进程

启动项目
注册表
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <360Safetray><"E:\Program Files\360\360Safe\safemon\360Tray.exe" /start>  [(Verified)Qizhi Software (beijing) Co. Ltd]
    <DAEMON Tools-2052><"E:\Program Files\D-Tools\daemon.exe"  -lang 2052>  [DAEMON'S HOME]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><%SystemRoot%\system32\logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><%SystemRoot%\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    <WinlogonNotify: igfxcui><igfxdev.dll>  [Intel Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <浏览器自定义组件><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <通讯簿 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows 桌面更新><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}]
    <%IEHARDENADMIN_BASE_DESC%><%SystemRoot%\system32\rundll32.exe iesetup.dll,IEHardenAdmin>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}]
    <%IEHARDENUSER_DESC%><%SystemRoot%\system32\rundll32.exe iesetup.dll,IEHardenUser>  [(Verified)Microsoft Windows Component Publisher]
==================================
启动文件夹
N/A
==================================
服务
[Atheros 配置服务 / ACS][Running/Auto Start]
  <C:\WINDOWS\system32\acs.exe><Atheros>
[ATKGFNEX Service / ATKGFNEXSrv][Running/Auto Start]
  <C:\Program Files\ATKGFNEX\GFNEXSrv.exe><>
[FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"><Macrovision Europe Ltd.>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[Remote Packet Capture Protocol v.0 (experimental) / rpcapd][Stopped/Manual Start]
  <"C:\Program Files\WinPcap\rpcapd.exe" -d -f "C:\Program Files\WinPcap\rpcapd.ini"><CACE Technologies>
[StarWind AE Service / StarWindServiceAE][Stopped/Disabled]
  <><(File is missing)>
[VMware Authorization Service / VMAuthdService][Stopped/Manual Start]
  <E:\Program Files\VMware\VMware Workstation\vmware-authd.exe><VMware, Inc.>
[VMware DHCP Service / VMnetDHCP][Stopped/Manual Start]
  <C:\WINDOWS\system32\vmnetdhcp.exe><VMware, Inc.>
[VMware Virtual Mount Manager Extended / vmount2][Stopped/Manual Start]
  <"C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vmount2.exe"><VMware, Inc.>
[VMware NAT Service / VMware NAT Service][Stopped/Manual Start]
  <C:\WINDOWS\system32\vmnat.exe><VMware, Inc.>
[WinHTTP Web Proxy Auto-Discovery Service / WinHttpAutoProxySvc][Stopped/Manual Start]
  <C:\WINDOWS\system32\svchost.exe -k LocalService-->winhttp.dll><Microsoft Corporation>
==================================
驱动程序
[Atheros AR5008 Wireless Network Adapter Service / AR5416][Stopped/Manual Start]
  <system32\DRIVERS\ar5416.sys><Atheros Communications, Inc.>
[ASMMAP / ASMMAP][Running/Auto Start]
  <\??\C:\Program Files\ATKGFNEX\ASMMAP.sys><>
[baby / baby][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\baby.sys><>
[BFSDRV / BFSDRV][Running/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\bfsdrv.sys><360安全中心>
[EfiSystemMon / EfiMon][Running/System Start]
  <System32\Drivers\Efimon.sys><奇虎网>
[VMware hcmon / hcmon][Running/Auto Start]
  <\??\C:\WINDOWS\system32\Drivers\hcmon.sys><VMware, Inc.>
[Microsoft 用于 High Definition Audio 的 UAA 总线驱动程序 / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[hotcore3 / hotcore3][Running/Boot Start]
  <\SystemRoot\system32\drivers\hotcore3.sys><Paragon Software Group>
[ialm / ialm][Running/Manual Start]
  <system32\DRIVERS\igxpmp32.sys><Intel Corporation>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RtkHDAud.sys><Realtek Semiconductor Corp.>
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
  <system32\DRIVERS\ipinip.sys><N/A>
[Keyboard Filter / kbfiltr][Running/Manual Start]
  <system32\DRIVERS\kbfiltr.sys><>
[leo / leo][Running/Boot Start]
  <\SystemRoot\System32\Drivers\leo.sys><>
[ATK0100 ACPI UTILITY / MTsensor][Running/Manual Start]
  <system32\DRIVERS\ATKACPI.sys><ATK0100>
[NetGroup Packet Filter Driver / NPF][Stopped/Manual Start]
  <system32\drivers\npf.sys><CACE Technologies>
[pdqf / pdqf][Running/Boot Start]
  <\SystemRoot\system32\drivers\gtzkr.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[rimmptsk / rimmptsk][Running/Auto Start]
  <system32\DRIVERS\rimmptsk.sys><REDC>
[rimsptsk / rimsptsk][Running/Auto Start]
  <system32\DRIVERS\rimsptsk.sys><REDC>
[Ricoh xD-Picture Card Driver / rismxdp][Running/Auto Start]
  <system32\DRIVERS\rixdptsk.sys><REDC>
[Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver / RTLE8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtenicxp.sys><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[smserial / smserial][Running/Manual Start]
  <system32\DRIVERS\smserial.sys><Motorola Inc.>
[sptd / sptd][Stopped/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  <system32\DRIVERS\SynTP.sys><Synaptics, Inc.>
[Universal Image Mounter Controller / UimBus][Stopped/System Start]
  <system32\DRIVERS\UimBus.sys><N/A>
[UIM Drive Backup Image Plugin / Uim_IM][Stopped/System Start]
  <System32\Drivers\Uim_IM.sys><N/A>
[VMware Virtual Ethernet Adapter Driver / VMnetAdapter][Running/Manual Start]
  <system32\DRIVERS\vmnetadapter.sys><VMware, Inc.>
[VMware Bridge Protocol / VMnetBridge][Running/Auto Start]
  <system32\DRIVERS\vmnetbridge.sys><VMware, Inc.>
[VMware Network Application Interface / VMnetuserif][Running/Auto Start]
  <\??\C:\WINDOWS\system32\drivers\vmnetuserif.sys><VMware, Inc.>
[VMware vmx86 / vmx86][Running/Auto Start]
  <\??\C:\WINDOWS\system32\Drivers\vmx86.sys><VMware, Inc.>
[Vstor2 Virtual Storage Driver / vstor2][Running/Auto Start]
  <\??\C:\Program Files\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys><VMware, Inc.>
[wsimd Service / WSIMD][Running/Manual Start]
  <system32\DRIVERS\wsimd.sys><Atheros Communications, Inc.>
[BREGDRV / BREGDRV][Running/Manual Start]
  <\??\C:\WINDOWS\system32\drivers\bregdrv.sys><360安全中心>

==================================
浏览器加载项
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <E:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN>
[信息检索(&R)]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <E:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[]
  {E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >
[Thunder Agent Class]
  {485463B7-8FB2-4B3B-B29B-8B919B0EACCE} <E:\Program Files\Thunder Network\Thunder\ComDlls\ThunderAgent_Now.dll, (Signed) 深圳市迅雷网络技术有限公司>
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[SafeMon Class]
  {B69F34DD-F0F9-42DC-9EDD-957187DA688D} <E:\Program Files\360\360Safe\safemon\safemon.dll, (Signed) 360.CN>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[使用迅雷下载]
  <E:\Program Files\Thunder Network\Thunder\Program\GetUrl.htm, N/A>
[使用迅雷下载全部链接]
  <E:\Program Files\Thunder Network\Thunder\Program\GetAllUrl.htm, N/A>
[导出到 Microsoft Office Excel(&X)]
  <res://E:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000, N/A>
[添加到QQ表情]
  <E:\Program Files\Tencent\QQ\Bin\AddEmotion.htm, N/A>
[转换选取内容为 Adobe PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换选取内容到现有的 PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>
[转换选定的链接到 Adobe PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html, N/A>
[转换选定的链接到现有的 PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html, N/A>
[转换链接目标为 Adobe PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html, N/A>
[转换链接目标到现有的 PDF]
  <res://E:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html, N/A>

==================================
正在运行的进程
[PID: 420 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 468 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 492 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 540 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 552 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.2.3790.0 (srv03_rtm.030324-2048)]
[PID: 724 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 792 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 868 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 904 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 920 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\WinSxS\x86_Microsoft.Windows.WinHTTP_6595b64144ccf1df_5.1.3790.4427_x-ww_FDB042FC\WINHTTP.dll]  [Microsoft Corporation, 5.2.3790.4427 (srv03_sp2_qfe.081215-1322)]
[PID: 972 / SYSTEM][C:\Program Files\ATKGFNEX\GFNEXSrv.exe]  [, 1, 0, 0, 8]
[PID: 1044 / SYSTEM][C:\WINDOWS\system32\acs.exe]  [Atheros, 6.0.2.73]
    [C:\WINDOWS\system32\athcfg20U.dll]  [Atheros, 6.0.2.73]
    [C:\WINDOWS\system32\athcfg20ResU.dll]  [Atheros Communications, Inc., 6.0.2.73]
    [C:\WINDOWS\system32\athcfg11resloc.dll]  [Atheros Communications, Inc., 6.0.2.73]
    [C:\WINDOWS\system32\wsfwDS.dll]  [Atheros Communications, Inc., 6.0.2.40]
    [C:\WINDOWS\system32\wsimd.dll]  [Atheros Communications, Inc., 6.0.2.40]
    [C:\WINDOWS\system32\DSA.dll]  [Devicescape, 1, 0, 634, 7]
[PID: 1120 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1172 / NETWORK SERVICE][C:\WINDOWS\system32\msdtc.exe]  [(Verified) Microsoft Corporation, 2001.12.4720.4340 (srv03_sp2_gdr.080723-1210)]
[PID: 1276 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1332 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
    [C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\2052\mdmui.dll]  [Microsoft Corporation, 7.00.9466]
[PID: 1376 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1564 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1844 / Administrator][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [C:\WINDOWS\system32\cFMl.dll]  [N/A, ]
    [C:\WINDOWS\system32\igfxpph.dll]  [Intel Corporation, 6.14.10.4859]
    [C:\WINDOWS\system32\hccutils.DLL]  [Intel Corporation, 6.14.10.4859]
    [C:\WINDOWS\system32\igfxres.dll]  [Intel Corporation, 6.14.10.4859]
    [C:\WINDOWS\system32\igfxress.dll]  [Intel Corporation, 6.14.10.4859]
    [C:\WINDOWS\system32\igfxsrvc.dll]  [Intel Corporation, 6.14.10.4859]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [C:\WINDOWS\system32\WN.IME]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_StatusWnd.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_CompWnd.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_Query.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\dll32\wnupdate.dll]  [深圳世强软件开发部 www.wn51.com, 2008.6.20.1]
    [E:\Program Files\WinRAR\rarext.dll]  [N/A, ]
    [E:\Program Files\QvodPlayer\QvodBand.dll]  [Shenzhen QVOD Technology Co.,Ltd, 3, 0, 0, 0]
[PID: 1956 / Administrator][E:\Program Files\360\360Safe\safemon\360Tray.exe]  [360安全中心, 5, 2, 0, 1009]
    [E:\Program Files\360\360Safe\safemon\360compro.dll]  [360安全中心, 1, 0, 0, 1013]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [E:\Program Files\360\360Safe\safemon\urlproc.dll]  [360.CN, 1, 0, 0, 1006]
    [E:\Program Files\360\360Safe\safemon\SafeKrnl.dll]  [奇虎网, 5, 0, 0, 1005]
    [E:\Program Files\360\360Safe\AntiAdwa.dll]  [360Safe.com, 4, 2, 0, 1002]
    [E:\Program Files\360\360Safe\safemon\360webpro.dll]  [360.CN, 1, 2, 0, 1014]
    [E:\Program Files\360\360Safe\deepscan\cloudsec.dll]  [360安全中心, 2, 1, 0, 1002]
    [E:\Program Files\360\360Safe\deepscan\deepscan.dll]  [360安全中心, 2, 1, 0, 1001]
    [E:\Program Files\360\360Safe\deepscan\bfsdll.dll]  [360安全中心, 1, 0, 0, 1011]
    [E:\Program Files\360\360Safe\deepscan\cloudcom.dll]  [360安全中心, 2, 1, 0, 1001]
    [E:\Program Files\360\360Safe\live.dll]  [360.cn, 1, 0, 2, 1006]
[PID: 1984 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2016 / Administrator][E:\Program Files\D-Tools\daemon.exe]  [DAEMON'S HOME, 3.47.0.0]
    [C:\WINDOWS\daemon.dll]  [, 3.47.0.0]
    [E:\Program Files\D-Tools\PFCTOC.DLL]  [Padus(R), Inc., 1, 0, 0, 12]
    [E:\Program Files\D-Tools\Plugins\Images\ccdmount.dll]  [GENERIC, 1.02.0.0]
    [E:\Program Files\D-Tools\Plugins\Images\mdsmount.dll]  [GENERIC, 1.01.0.0]
    [E:\Program Files\D-Tools\Plugins\Images\pdimount.dll]  [GENERIC, 1.01.0.0]
    [E:\Program Files\D-Tools\Plugins\Images\nrgmount.dll]  [GENERIC, 1.02.0.0]
    [E:\Program Files\D-Tools\Plugins\Images\bw5mount.dll]  [, 1.0.2.0]
[PID: 368 / Administrator][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 1196 / Administrator][E:\Program Files\kaixin\kaixin.exe]  [, 0.3.0]
    [E:\Program Files\kaixin\PYTHON26.DLL]  [Python Software Foundation, 2.6.2]
    [E:\Program Files\kaixin\wx._core_.pyd]  [N/A, ]
    [E:\Program Files\kaixin\wxbase28uh_vc.dll]  [N/A, ]
    [E:\Program Files\kaixin\wxbase28uh_net_vc.dll]  [N/A, ]
    [E:\Program Files\kaixin\wxmsw28uh_core_vc.dll]  [N/A, ]
    [E:\Program Files\kaixin\wxmsw28uh_adv_vc.dll]  [N/A, ]
    [E:\Program Files\kaixin\wx._gdi_.pyd]  [N/A, ]
    [E:\Program Files\kaixin\wx._windows_.pyd]  [N/A, ]
    [E:\Program Files\kaixin\wxmsw28uh_html_vc.dll]  [N/A, ]
    [E:\Program Files\kaixin\wx._controls_.pyd]  [N/A, ]
    [E:\Program Files\kaixin\wx._misc_.pyd]  [N/A, ]
    [E:\Program Files\kaixin\_socket.pyd]  [N/A, ]
    [E:\Program Files\kaixin\_ssl.pyd]  [N/A, ]
    [E:\Program Files\kaixin\wx._animate.pyd]  [N/A, ]
    [E:\Program Files\kaixin\libxmlmods.libxml2mod.pyd]  [N/A, ]
    [E:\Program Files\kaixin\libxml2.dll]  [N/A, ]
    [E:\Program Files\kaixin\iconv.dll]  [N/A, ]
    [E:\Program Files\kaixin\_hashlib.pyd]  [N/A, ]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [E:\Program Files\kaixin\_multiprocessing.pyd]  [N/A, ]
    [E:\Program Files\kaixin\unicodedata.pyd]  [N/A, ]
    [E:\Program Files\kaixin\pyexpat.pyd]  [N/A, ]
[PID: 1724 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
[PID: 2124 / Administrator][C:\WINDOWS\system32\conime.exe]  [(Verified) Microsoft Corporation, 5.2.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
[PID: 2876 / Administrator][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 6.00.3790.3959 (srv03_sp2_rtm.070216-1710)]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [E:\Program Files\360\360Safe\safemon\urlproc.dll]  [360.CN, 1, 0, 0, 1006]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\WINDOWS\system32\WN.IME]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_StatusWnd.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_CompWnd.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\Dll32\wnpy_Query.dll]  [深圳世强软件开发部 www.wn51.com, 2008, 7, 11, 1]
    [E:\Program Files\ShiQiang\wnime\dll32\wnupdate.dll]  [深圳世强软件开发部 www.wn51.com, 2008.6.20.1]
    [E:\Program Files\Thunder Network\Thunder\ComDlls\xunleiBHO_Now.dll]  [深圳市迅雷网络技术有限公司, 5.9.4.969]
    [C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx]  [Adobe Systems, Inc., 10,0,32,18]
[PID: 3168 / Administrator][E:\Program Files\360\360Safe\LiveUpdate360.exe]  [360Safe.com, 1, 1, 0, 1007]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [E:\Program Files\360\360Safe\LiveUpd360.dll]  [360Safe.com, 1, 1, 0, 1007]
    [E:\Program Files\360\360Safe\360net.dll]  [奇虎网, 1, 1, 3, 1006]
[PID: 2960 / Administrator][E:\Program Files\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.7.1.1261]
[PID: 2260 / Administrator][E:\Program Files\sreng2\SRE5917c45e.EXE]  [Smallfrogs Studio, 2.7.1.1261]
    [E:\Program Files\360\360Safe\safemon\safemon.dll]  [360.CN, 5, 0, 0, 1021]
    [E:\Program Files\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]

==================================
文件关联
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

从开始-程序列表里启动ie。。。这个方法对我不实用。。。谢谢大侠！！

不愿意升级到IE8，可能我机子的配置太低的缘故，没有IE6跑的快，IE8速度反而变慢了。

谢谢，好是好了，但把我的虚拟光驱的驱动文件给删了

不过还是要谢谢！！！

很感激你的回复，但经检验，它们全是正常的主页信息

我把文件删除了，但残留的服务项如何删除？因为找不到指定文件。

请教！！！


找到教程了。。。

答案：
        至于删除服务项，可能 Windows 不允许吧，如果真的要彻底删除，就请打开注册表（“开始”——“运行”——“regedit”）然后依次打开HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services，将你所希望删除的服务项从注册表里删除就行了

还有HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services的相关服务也一起删掉，否则还是有残留的