Logfile of HijackThis v1.99.1
Scan saved at 20:58:05, on 2005-12-24
Platform: Windows 2003  (WinNT 5.02.3790)
MSIE: Internet Explorer v6.00 (6.00.3790.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
F:\Program Files\ISS\BlackICE\blackd.exe
F:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
F:\Program Files\cFosSpeed\spd.exe
C:\WINDOWS\System32\svchost.exe
F:\KV2004\KVSrvXP.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\Explorer.EXE
F:\KV2004\KVMonXP.kxp
F:\Program Files\cFosSpeed\cFosSpeed.exe
F:\Program Files\ISS\BlackICE\blackice.exe
F:\网络软件\ha_hijackthis_1991\HijackThis.exe

R3 - Default URLSearchHook is missing
O2 - BHO: ThunderIEHelper Class -

{0005A87D-D626-4B3A-84F9-1D9571695F55} -

C:\WINDOWS\system32\xunleibho_v8.dll
O2 - BHO: 迅彩图铃通 - {1D8E8710-88F8-4d6e-AD7C-1437937E82A9} -

(no file)
O2 - BHO: IEHandle Class - {31EBA2E2-58B2-4980-9C41-F12F5F1422C5}

- C:\Program Files\Common Files\Collegesoft\Share

Components\TPHANDLE.dll
O2 - BHO: MMSAssist - {6671A431-5C3D-463d-A7CF-5587F9B7E191} -

C:\PROGRA~1\MMSASS~1\MMSASS~2.DLL
O2 - BHO: std software - {6A512BF7-EC78-4e8d-9841-6C02E8FA9838} -

C:\WINDOWS\SYSTEM32\stdup.dll
O2 - BHO: BrowseHelper Class -

{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} - F:\KV2004\KvShell.dll
O2 - BHO: (no name) - {A9930D97-9CF0-42A0-A10D-4F28836579D5} -

F:\PROGRA~1\KuGoo\KUGOO3~1.OCX
O2 - BHO: T2BHO Class - {B1D147E7-873E-4909-8127-695D9BB78728} -

C:\WINDOWS\Downloaded Program Files\barhelp22.0.dll
O2 - BHO: Infofo 工具栏 - {D74EC18E-3DDD-4174-B1B1-949FE3B8366D} -

C:\Program Files\Infofo Bar\infofobar.dll
O2 - BHO: Kwyshell MidpX - {EBE9E2B5-B526-48BC-AD46-687263EDCB0E}

- F:\Program Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll
O3 - Toolbar: @msdxmLC.dll,-1@2052,电台(&R) -

{8E718888-423F-11D2-876E-00A0C9082467} -

C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: 江民杀毒工具栏 -

{B5A34A93-D538-43A7-8371-864CB6148D12} - F:\KV2004\KvShell.dll
O3 - Toolbar: 完美网译通 - {F43BD772-ABDD-43b7-A96A-3E9E61946EC0}

- C:\WINDOWS\WORLD2\TOOLBAR\hmtoolbar.dll
O3 - Toolbar: 迅彩图铃通 - {1D8E8710-88F8-4d6e-AD7C-1437937E82A9}

- (no file)
O3 - Toolbar: Kwyshell MidpX -

{EBE9E2B5-B526-48BC-AD46-687263EDCB0E} - F:\Program

Files\Kwyshell\MidpX\JadInvoker\MidpInvoker.dll
O3 - Toolbar: Infofo 工具栏 -

{D74EC18E-3DDD-4174-B1B1-949FE3B8366D} - C:\Program Files\Infofo

Bar\infofobar.dll
O3 - Toolbar: 金山快译(&K) -

{6C3797D2-3FEF-4cd4-B654-D3AE55B4128C} - F:\Program

Files\Kingsoft\FastAIT 2005\IEBand.dll
O4 - HKLM\..\Run: [PHIME2002ASync]

C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A]

C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IMSCMig]

C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload
O4 - HKLM\..\Run: [KvMonXP] F:\KV2004\KVMonXP.kxp /auto
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE

C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [cFosSpeed] F:\Program

Files\cFosSpeed\cFosSpeed.exe
O4 - Global Startup: BlackICE Server Protection.lnk = F:\Program

Files\ISS\BlackICE\blackice.exe
O8 - Extra context menu item:  >> 彩信发送 << -

res://C:\PROGRA~1\MMSASS~1\MMSASS~2.DLL/mms.htm
O8 - Extra context menu item: &使用迅雷下载 - F:\Program

Files\Thunder Network\Thunder\geturl.htm
O8 - Extra context menu item: &使用迅雷下载全部链接 - F:\Program

Files\Thunder Network\Thunder\getallurl.htm
O8 - Extra context menu item: 上传到QQ网络硬盘 - F:\Program

Files\Tencent\qq\AddToNetDisk.htm
O8 - Extra context menu item: 使用KuGoo3下载(&K) -

F:\PROGRA~1\KuGoo\KuGoo3DownX.htm
O8 - Extra context menu item: 收藏到我的空间(佳禾文摘) -

http://www.cn126.net/link.asp
O8 - Extra context menu item: 添加到QQ自定义面板 - F:\Program

Files\Tencent\qq\AddPanel.htm
O8 - Extra context menu item: 添加到QQ表情 - F:\Program

Files\Tencent\qq\AddEmotion.htm
O8 - Extra context menu item: 用QQ彩信发送该图片 - F:\Program

Files\Tencent\qq\SendMMS.htm
O9 - Extra button: (no name) -

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: (no name) -

{2253922F-1B26-4C74-8B57-E3AEE748DBB8} - (no file)
O9 - Extra button: (no name) -

{6671A433-5C3D-463d-A7CF-5587F9B7E191} -

C:\PROGRA~1\MMSASS~1\MMSASS~2.DLL
O9 - Extra 'Tools' menuitem: MMSAssist工具条设置 -

{6671A433-5C3D-463d-A7CF-5587F9B7E191} -

C:\PROGRA~1\MMSASS~1\MMSASS~2.DLL
O9 - Extra button: Infofo 工具栏 -

{8507326C-B5C1-4559-BB91-0919E753836F} - C:\Program Files\Infofo

Bar\infofobar.dll
O9 - Extra 'Tools' menuitem: Infofo 工具栏 -

{8507326C-B5C1-4559-BB91-0919E753836F} - C:\Program Files\Infofo

Bar\infofobar.dll
O9 - Extra button: 信息检索 -

{92780B25-18CC-41C8-B9BE-3C9C571A8263} -

F:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program

files\bonjour\mdnsnsp.dll
O16 - DPF: {0CA54D3F-CEAE-48AF-9A2B-31909CB9515D} (Edit Class) -

https://www.nj1.cmbchina.com/download/CMBEdit.cab
O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} (KX-HCM10

Control) - http://sakura777.miemasu.net/kxhcm10.ocx
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo

Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {56A7DC70-E102-4408-A34A-AE06FEF01586} (天下搜索) -

http://iebar.t2t2.com/iebar.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class)

- http://www.opentopia.com/support/activex/AxisCamControl.cab
O17 -

HKLM\System\CCS\Services\Tcpip\..\{C00FD746-BEFB-439B-93FC-FCE6F14

018B5}: NameServer = 202.96.209.6 202.96.209.133
O18 - Protocol: koboo - {7DEE9D05-FA0A-4416-A6F3-6537D0EAB6A6} -

C:\WINDOWS\system32\mbprot.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} -

C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -

"C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O21 - SSODL: IconPackager Repair -

{1799460C-0BC8-4865-B9DF-4A36CD703FF0} - F:\Program

Files\Stardock\Object Desktop\IconPackager\iprepair.dll
O23 - Service: Autodesk Licensing Service - Autodesk, Inc. -

C:\Program Files\Common Files\Autodesk

Shared\Service\AdskScSrv.exe
O23 - Service: BlackICE - Internet Security Systems, Inc. -

F:\Program Files\ISS\BlackICE\blackd.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - F:\Program

Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Bonjour 服务 (Bonjour Service) - Apple Computer,

Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - Unknown

owner - F:\Program Files\cFosSpeed\spd.exe" -service (file

missing)
O23 - Service: InstallDriver Table Manager (IDriverT) -

Macrovision Corporation - C:\Program Files\Common

Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program

Files\iPod\bin\iPodService.exe
O23 - Service: KVSrvXP - JiangMin Ltd. - F:\KV2004\KVSrvXP.exe
O23 - Service: Macromedia Licensing Service - Unknown owner -

C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia

Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA

Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RapApp - Internet Security Systems, Inc. -

F:\Program Files\ISS\BlackICE\rapapp.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program

Files\TGTSoft\StyleXP\StyleXPService.exe

可以从“添加/删除程序”里卸载“MMSAssist”和“Winstdup”。