今天用HIJACK扫描出来这么多01项目，01项目不是说是–主机文件重定向
用不用修复！


Logfile of HijackThis v1.99.1
Scan saved at 13:23:11, on 2005-10-6
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

运行进程:           
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Antiy Labs\Alive\AliveCenter.exe
C:\KAV2005\KPfwSvc.EXE
C:\PROGRAM FILES\RISING\RAV\CCENTER.EXE
C:\PROGRAM FILES\RISING\RAV\Ravmond.exe
C:\Program Files\联想\联想键盘驱动\TGESrvLogon.exe
C:\PROGRAM FILES\RISING\RAV\RavStub.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\联想\联想键盘驱动\hidSevice.exe
C:\Program Files\联想\联想键盘驱动\usbkbdriver.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
C:\PROGRA~1\RISING\RAV\RAVMON.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\联想\联想键盘驱动\fastkey.exe
C:\KAV2005\KAVPFW.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ChinaNet\VnetClient.exe
E:\Tencent QQ\qq\QQ.exe
E:\Tencent QQ\qq\TIMPlatform.exe
E:\Tencent QQ\qq\QQ.exe
D:\软件\hijackthis\HijackThis.exe

O1 - Hosts: 218.28.21.116 www.sjkmu.com
O1 - Hosts: 218.28.21.116 www.qqmu.com
O1 - Hosts: 218.28.21.116 www.1717mu.com
O1 - Hosts: 218.28.21.116 www.35mu.com
O1 - Hosts: 218.28.21.116 www.wlmu.com
O1 - Hosts: 218.28.21.116 www.yesky.com
O1 - Hosts: 218.28.21.116 mu.92wy.com
O1 - Hosts: 218.28.21.116 www.4480.com
O1 - Hosts: 218.28.21.116 www.qqmu.com
O1 - Hosts: 218.28.21.116 www.7j4f.com
O1 - Hosts: 218.28.21.116 mu.370210.net
O1 - Hosts: 218.28.21.116 www.babeijiu.com
O1 - Hosts: 218.28.21.116 www.muchina.net.cn
O1 - Hosts: 218.28.21.116 qx1000.com
O1 - Hosts: 218.28.21.116 www.bsmu.com
O1 - Hosts: 218.28.21.116 www.huansf.com
O1 - Hosts: 218.28.21.116 www.00511.net
O1 - Hosts: 218.28.21.116 www.vipmu.com
O1 - Hosts: 218.28.21.116 www.60sf.com
O1 - Hosts: 218.28.21.116 www.gm163.cn
O1 - Hosts: 218.28.21.116 www.66wow.com
O1 - Hosts: 218.28.21.116 www.720sf.com
O1 - Hosts: 218.28.21.116 www.1717mu.com
O1 - Hosts: 218.28.21.116 www.200sf.com
O1 - Hosts: 218.28.21.116 www.19mu.com
O1 - Hosts: 218.28.21.116 www.75sf.com
O1 - Hosts: 218.28.21.116 www.29mu.com
O1 - Hosts: 218.28.21.116 www.muxj.com
O1 - Hosts: 218.28.21.116 www.qjsf.net
O1 - Hosts: 218.28.21.116 www.houyee.com
O1 - Hosts: 218.28.21.116 www.c920.com
O1 - Hosts: 218.28.21.116 www.4fmu.com
O1 - Hosts: 218.28.21.116 www.92lh.com
O1 - Hosts: 218.28.21.116 www.mu2006.com
O1 - Hosts: 218.28.21.116 www.40mu.com
O1 - Hosts: 218.28.21.116 www.trmu.com
O1 - Hosts: 218.28.21.116 www.012mu.com
O1 - Hosts: 218.28.21.116 www.176wow.com
O1 - Hosts: 218.28.21.116 www.lynuoming.com
O1 - Hosts: 218.28.21.116 www.163mm.cn
O1 - Hosts: 218.28.21.116 www.1717mu.com
O1 - Hosts: 218.28.21.116 mu2.sf200.com
O1 - Hosts: 218.28.21.116 www.ggvmm.com
O1 - Hosts: 218.28.21.116 www.free4f.com
O1 - Hosts: 218.28.21.116 sjkmu.com
O1 - Hosts: 218.28.21.116 qqmu.com
O1 - Hosts: 218.28.21.116 1717mu.com
O1 - Hosts: 218.28.21.116 35mu.com
O1 - Hosts: 218.28.21.116 wlmu.com
O1 - Hosts: 218.28.21.116 yesky.com
O1 - Hosts: 218.28.21.116 92wy.com
O1 - Hosts: 218.28.21.116 4480.com
O1 - Hosts: 218.28.21.116 qqmu.com
O1 - Hosts: 218.28.21.116 7j4f.com
O1 - Hosts: 218.28.21.116 370210.net
O1 - Hosts: 218.28.21.116 www.babeijiu.com
O1 - Hosts: 218.28.21.116 muchina.net.cn
O1 - Hosts: 218.28.21.116 www.qx1000.com
O1 - Hosts: 218.28.21.116 bsmu.com
O1 - Hosts: 218.28.21.116 huansf.com
O1 - Hosts: 218.28.21.116 00511.net
O1 - Hosts: 218.28.21.116 vipmu.com
O1 - Hosts: 218.28.21.116 60sf.com
O1 - Hosts: 218.28.21.116 gm163.cn
O1 - Hosts: 218.28.21.116 66wow.com
O1 - Hosts: 218.28.21.116 720sf.com
O1 - Hosts: 218.28.21.116 1717mu.com
O1 - Hosts: 218.28.21.116 200sf.com
O1 - Hosts: 218.28.21.116 19mu.com
O1 - Hosts: 218.28.21.116 75sf.com
O1 - Hosts: 218.28.21.116 29mu.com
O1 - Hosts: 218.28.21.116 muxj.com
O1 - Hosts: 218.28.21.116 qjsf.net
O1 - Hosts: 218.28.21.116 houyee.com
O1 - Hosts: 218.28.21.116 c920.com
O1 - Hosts: 218.28.21.116 4fmu.com
O1 - Hosts: 218.28.21.116 92lh.com
O1 - Hosts: 218.28.21.116 mu2006.com
O1 - Hosts: 218.28.21.116 40mu.com
O1 - Hosts: 218.28.21.116 trmu.com
O1 - Hosts: 218.28.21.116 012mu.com
O1 - Hosts: 218.28.21.116 176wow.com
O1 - Hosts: 218.28.21.116 lynuoming.com
O1 - Hosts: 218.28.21.116 163mm.cn
O1 - Hosts: 218.28.21.116 1717mu.com
O1 - Hosts: 218.28.21.116 sf200.com
O1 - Hosts: 218.28.21.116 www.sf200.com
O1 - Hosts: 218.28.21.116 ggvmm.com
O1 - Hosts: 218.28.21.116 free4f.com
O1 - Hosts: 218.28.21.116 kklmu.com
O1 - Hosts: 218.28.21.116 www.kklmu.com
O1 - Hosts: 218.28.21.116 www.52w.org
O1 - Hosts: 218.28.21.116 52w.org
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: IDDTInitObj Class - {15DDE989-CD45-4561-BF99-D22C0D5C2B74} - D:\软件\UC\UCddt\ddtinit.dll (文件故障)
O2 - BHO: TeachingHandler - {31EBA2E2-58B2-4980-9C41-F12F5F1422C5} - C:\WINDOWS\system32\TPHANDLE.dll
O2 - BHO: CNNIC_IDN - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O2 - BHO: (no name) - {35980F6E-A137-4E50-953D-813BB8556899}? - (没有文件) 
O2 - BHO: VnetCookie Class - {4E83D567-4697-4F7B-B1F0-A513B01DB89A} - c:\PROGRA~1\chinanet\VNETTR~1.DLL
O2 - BHO: QQIEHelper - {54EBD53A-9BC1-480B-966A-843A333CA162} - E:\Tencent QQ\qq\QQIEHelper.dll
O2 - BHO: YDragSearch - {62EED7C6-9F02-42f9-B634-98E2899E147B} - C:\PROGRA~1\Yahoo!\ASSIST~1\Assist\YDRAGS~1.DLL
O2 - BHO: KillObj Class - {66C28884-4E5D-494B-80C9-CAA27528FD6D} - D:\软砑件\UC\UCddt\ddtkillw.ocx (文件故障)
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport\NTIEHelper.dll
O2 - BHO: WMHlprObj Class - {F5824EFB-728A-4726-A5A5-85A68B20EDC3} - C:\PROGRA~1\CNNIC\Cdn\wmhlpr.dll (文件故障)
O3 - Toolbar: BitCometBar - {3F1ABCDB-A875-46c1-8345-B72A4567E486} - D:\软件\BitComet\BitCometBar\BitCometBar0.1.dll
O3 - Toolbar: 卡卡安全助手 - {DB9ECD4F-FB8F-4311-B3CE-90B976C2707C} - C:\WINDOWS\system32\KakaTool.dll
O3 - Toolbar: 新浪点点通 - {F60C7D81-8471-4D40-AAFE-56D318F34C2D} - D:\软件\UC\UCddt\DDTONG~1.DLL
O4 - HKLM\..\Run: [HuaShanTGEUSBKbd] C:\Program Files\联想\联想键盘驱动\hidSevice.exe
O4 - HKLM\..\Run: [HuaShanTGEUSBKbd1] C:\Program Files\联想\联想键盘驱动\usbkbdriver.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [RavTimer] C:\PROGRA~1\RISING\RAV\RAVTIMER.EXE
O4 - HKLM\..\Run: [RavMon] C:\PROGRA~1\RISING\RAV\RAVMON.EXE -SYSTEM
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: &使用迅雷下载 - D:\软件\Thunder Network\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - D:\软件\Thunder Network\Thunder\getAllurl.htm
O8 - Extra context menu item: 下载编码内容(&D.S.Lite) - D:\软件\DSLite2\dl_text.html
O8 - Extra context menu item: 下载编码文件内容(&D.S.Lite) - D:\软件\DSLite2\dl_url.html
O8 - Extra context menu item: 使用彩信超级自写发送到手机 - http://mms.sina.com.cn/mmsnews.html
O8 - Extra context menu item: 使用影音传送带下载 - C:\Program Files\Xi\NetTransport\NTAddLink.html
O8 - Extra context menu item: 使用影音传送带下载全部链接 - C:\Program Files\Xi\NetTransport\NTAddList.html
O8 - Extra context menu item: 使用新浪下载助手下载 - D:\软件\UC\UCddt\sinadl.htm
O8 - Extra context menu item: 发送图片到手机(&M) - http://sms.sina.com.cn/diy/send.html?from=467
O8 - Extra context menu item: 收藏此页到新浪ViVi - http://vivi.sina.com.cn/collect/click.php?agent=ddt
O8 - Extra context menu item: 新浪搜索 - http://cha.sina.com.cn/ddt.html
O8 - Extra context menu item: 添加到QQ自定义面板 - E:\Tencent QQ\qq\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - E:\Tencent QQ\qq\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - E:\Tencent QQ\qq\SendMMS.htm
O8 - Extra context menu item: 用比特精灵下载(&B) - D:\软件\BitSpirit\bsurl.htm
O9 - Extra button: 新浪UC - {2253922F-1B26-4C74-8B57-E3AEE748DBB8} - D:\软件\UC\UC.exe (文件故障)
O9 - Extra button: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - Extra 'Tools' menuitem: 中文上网 - {35980F6E-A137-4E50-953D-813BB8556899} - C:\PROGRA~1\CNNIC\Cdn\cdniehlp.dll
O9 - Extra button: (no name) - {35980F6E-A137-4E50-953D-813BB8556899}? - (没有文件) 
O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\Tencent QQ\qq\QQ.EXE
O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - E:\Tencent QQ\qq\QQ.EXE
O9 - Extra button: 新浪点点通 - {F60C7D81-8471-4D40-AAFE-56D318F34C2D} - D:\软件\UC\UCddt\DDTONG~1.DLL
O9 - Extra button: D.S.Lite - {F8475519-8412-4D40-A46E-692D9D04DF7F} - D:\软件\DSLite2\DSLite.exe
O9 - Extra 'Tools' menuitem: &D.S.Lite - {F8475519-8412-4D40-A46E-692D9D04DF7F} - D:\软件\DSLite2\DSLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {974AD624-EA50-4831-A6C0-3040F6665396} - D:\软件\UC\UCddt\rssband.dll (HKCU)
O9 - Extra 'Tools' menuitem: 新浪点点通阅读器 - {974AD624-EA50-4831-A6C0-3040F6665396} - D:\软件\UC\UCddt\rssband.dll (HKCU)
O9 - Extra button: 新浪点点通阅读器 - {F0646DC8-58CD-4C64-8F6B-525043914685} - D:\软件\UC\UCddt\rssband.dll (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\cdnns.dll
O11 - Options group: [CDNCLIENT]  中文上网
O14 - IERESET.INF: START_PAGE_URL=http://www.legend.com
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1120535105666
O17 - HKLM\System\CCS\Services\Tcpip\..\{E52D02F4-6B05-4633-A823-247EC160C645}: NameServer = 222.88.88.88 219.150.150.150
O20 - Winlogon Notify: ZGNotify - C:\WINDOWS\MyNotification.dll

这么多01项，有什么危害吗？
请楼主把01项的危害给菜菜我说下好吗？

我扫描出了两个TPHANDLE.dll 一个是system32下的，一个是Common Files\Collegesoft\Share Components 下的，这个Collegesoft里带的TPHANDLE.dll是我装的Teaching Player（用来播放课件的工具）带的！
我要删哪个？

谢谢斑竹

斑竹我要不要把HOSTS文件给删掉？

对了，还有啊斑竹，20项的哪个东西是什么？
有危害吗？
是木马？病毒？

哦，呵呵，我是想搞彻底，别汗我这个菜菜