My Windows Explorer crashes often. I received "Data Execution Prevention - Microsoft Windows." and it closes down. I also noticed that my internet connection isn't as fast as before. I ran an antivirus (Eset Nod 32) but I found nothing. I also ran Malwarebytes and also found nothing.
I hope somebody could figure out what's wrong with my computer. Please help.
Here are the log files requested:
Malwarebyte's Log File:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6330
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180
4/11/2011 5:21:19 PM
mbam-log-2011-04-11 (17-21-19).txt
Scan type: Quick scan
Objects scanned: 150179
Time elapsed: 1 minute(s), 26 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER log file:
GMER 1.0.15.15570 - http://www.gmer.net
Rootkit quick scan 2011-04-11 17:30:05
Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-19 ST3250310AS rev.4.AAA
Running: y8qpn90q.exe; Driver: D:\DOCUME~1\ST6FE9~1.MIC\LOCALS~1\Temp\kgtdqpog.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \FileSystem\Fastfat \Fat eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys
---- EOF - GMER 1.0.15 ----
DDS.txt Log File:
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by St.Michael at 17:30:47.79 on Mon 04/11/2011
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1012.591 [GMT 8:00]
.
AV: ESET NOD32 Antivirus 3.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
============== Running Processes ===============
.
D:\Program Files\Faronics\Deep Freeze\Install D-0\DF5Serv.exe
D:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\RTHDCPL.EXE
D:\WINDOWS\system32\igfxpers.exe
D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\Program Files\Common Files\Java\Java Update\jusched.exe
D:\Program Files\DivX\DivX Update\DivXUpdate.exe
D:\WINDOWS\system32\igfxsrvc.exe
D:\Program Files\Faronics\Deep Freeze\Install D-0\_$Df\FrzState2k.exe
D:\Program Files\RocketDock\RocketDock.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\Documents and Settings\St.Michael\Desktop\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - d:\program files\divx\divx plus web player\npdivx32.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - e:\progra~1\spybot~1\SDHelper.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - d:\program files\divx\divx plus web player\npdivx32.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - d:\program files\yahoo!\common\yiesrvc.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
uRun: [SpybotSD TeaTimer] e:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [RocketDock] "d:\program files\rocketdock\RocketDock.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SkyTel] SkyTel.EXE
mRun: [IgfxTray] d:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] d:\windows\system32\hkcmd.exe
mRun: [Persistence] d:\windows\system32\igfxpers.exe
mRun: [egui] "d:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [SunJavaUpdateSched] "d:\program files\common files\java\java update\jusched.exe"
mRun: [DivXUpdate] "d:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
dRunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll"
dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe
IE: E&xport to Microsoft Excel - d:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - d:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - e:\progra~1\spybot~1\SDHelper.dll
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - d:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
TCP: {148290E1-EB23-47C8-8527-8CAD3AFE7B9B} = 208.67.222.222,208.67.220.220
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - d:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - d:\program files\superantispyware\SASWINLO.DLL
Notify: DfLogon - LogonDll.dll
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - d:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - d:\docume~1\st6fe9~1.mic\applic~1\mozilla\firefox\profiles\uv7v33rl.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: network.proxy.type - 0
FF - plugin: d:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: d:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: d:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R0 DeepFrz;DeepFrz;d:\windows\system32\drivers\DeepFrz.sys [2004-8-8 93568]
R1 epfwtdir;epfwtdir;d:\windows\system32\drivers\epfwtdir.sys [2008-2-20 33800]
R1 SASDIFSV;SASDIFSV;d:\program files\superantispyware\sasdifsv.sys [2010-2-18 12872]
R1 SASKUTIL;SASKUTIL;d:\program files\superantispyware\SASKUTIL.SYS [2010-5-11 67656]
R2 ekrn;Eset Service;d:\program files\eset\eset nod32 antivirus\ekrn.exe [2008-2-20 472320]
S2 NOD32FiXTemDono;Eset Nod32 Boot;d:\windows\system32\regedt32.exe [2006-1-13 3584]
S3 GGSAFERDriver;GGSAFER Driver;\??\e:\program files\garena\safedrv.sys --> e:\program files\garena\safedrv.sys [?]
.
=============== Created Last 30 ================
.
2011-04-06 00:27:51 -------- d-----w- d:\program files\SUPERAntiSpyware
2011-04-05 02:11:12 -------- d-s---w- d:\documents and settings\st.michael\UserData
2011-04-05 02:01:26 98816 ----a-w- d:\windows\sed.exe
2011-04-05 02:01:26 89088 ----a-w- d:\windows\MBR.exe
2011-04-05 02:01:26 256512 ----a-w- d:\windows\PEV.exe
2011-04-05 02:01:26 161792 ----a-w- d:\windows\SWREG.exe
2011-03-25 00:58:37 -------- d-----w- d:\docume~1\alluse~1\applic~1\DivX
2011-03-17 09:03:15 172032 ----a-w- d:\windows\system32\AniGIF.ocx
.
==================== Find3M ====================
.
2011-02-02 13:40:23 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-02-02 11:19:39 73728 ----a-w- d:\windows\system32\javacpl.cpl
.
============= FINISH: 17:31:08.62 ===============
Attach.txt Log File:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 1/12/2009 7:54:03 PM
System Uptime: 4/11/2011 5:11:35 PM (0 hours ago)
.
Motherboard: Intel Corporation | | DG31PR
Processor: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz | J3E1 | 2199/800mhz
Processor: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz | J3E1 | 2199/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (FAT32) - 29 GiB total, 3.976 GiB free.
D: is FIXED (NTFS) - 98 GiB total, 3.642 GiB free.
E: is FIXED (NTFS) - 106 GiB total, 11.426 GiB free.
F: is CDROM ()
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP25: 3/18/2009 4:51:56 PM - Removed Java(TM) 6 Update 11
RP26: 3/18/2009 4:52:14 PM - Installed Java(TM) 6 Update 12
RP27: 3/28/2009 2:14:39 AM - Installed Java(TM) 6 Update 13
RP28: 4/30/2009 5:23:04 PM - Avira AntiVir Personal - 4/30/2009 10:23
RP29: 4/30/2009 5:25:45 PM - Avira AntiVir Personal - 4/30/2009 10:25
RP30: 4/30/2009 5:27:38 PM - Avira AntiVir Personal - 4/30/2009 10:27
RP31: 4/30/2009 5:30:48 PM - Avira AntiVir Personal - 4/30/2009 10:30
RP32: 5/10/2009 9:16:15 PM - Avira AntiVir Personal - 5/10/2009 14:16
RP33: 5/11/2009 12:41:00 AM - Scanned
RP34: 5/13/2009 5:11:19 PM - Installed ESET NOD32 Antivirus
RP35: 6/4/2009 8:25:23 AM - Removed ESET NOD32 Antivirus
RP36: 6/4/2009 8:33:01 AM - Installed ESET NOD32 Antivirus
RP37: 6/12/2009 3:31:42 PM - Installed Java(TM) 6 Update 14
RP38: 6/12/2009 6:59:38 PM - Removed Safari
RP39: 7/4/2009 11:42:48 PM - Removed ESET NOD32 Antivirus
RP40: 7/4/2009 11:52:04 PM - Installed ESET NOD32 Antivirus
RP41: 8/27/2009 4:29:03 PM - Installed Java(TM) 6 Update 15
RP42: 10/17/2009 3:02:33 PM - System Checkpoint
RP43: 10/23/2009 9:19:57 AM - Restore Operation
RP44: 10/23/2009 9:22:49 AM - Restore Operation
RP45: 10/23/2009 10:43:37 AM - Restore Operation
RP46: 10/23/2009 10:49:01 AM - Restore Operation
RP47: 10/23/2009 11:09:51 AM - Removed ESET NOD32 Antivirus
RP48: 10/23/2009 11:14:16 AM - Installed ESET NOD32 Antivirus
RP49: 10/23/2009 11:20:32 AM - Removed ESET NOD32 Antivirus
RP50: 10/23/2009 11:20:52 AM - Removed ESET NOD32 Antivirus
RP51: 10/23/2009 11:43:46 AM - Removed Safari
RP52: 10/23/2009 12:13:56 PM - Installed Avast
RP53: 10/26/2009 9:31:22 AM - System Checkpoint
RP54: 10/26/2009 12:57:23 PM - Installed ESET NOD32 Antivirus
RP55: 10/26/2009 1:00:59 PM - Installed Eset Nod32
RP56: 11/10/2009 9:58:20 AM - System Checkpoint
RP57: 11/25/2009 9:08:44 AM - Installed Java(TM) 6 Update 17
RP58: 1/30/2010 6:48:29 PM - System Checkpoint
RP59: 1/30/2010 8:30:33 PM - Removed Garena
RP60: 3/7/2010 8:55:31 AM - Installed Xara3D6
RP61: 3/12/2010 6:38:46 AM - Installed Java(TM) 6 Update 18
RP62: 4/1/2010 9:48:10 AM - Removed Java(TM) 6 Update 12
RP63: 4/1/2010 9:48:37 AM - Installed Java(TM) 6 Update 19
RP64: 5/13/2010 5:47:49 PM - Installed Java(TM) 6 Update 20
RP65: 8/23/2010 3:08:21 PM - Installed Java(TM) 6 Update 21
RP66: 10/21/2010 9:04:33 AM - Virgin
RP67: 10/24/2010 12:00:50 PM - Restore Operation
RP68: 11/2/2010 8:09:07 AM - Installed Java(TM) 6 Update 22
RP69: 11/21/2010 9:55:40 AM - System Checkpoint
RP70: 1/11/2011 5:53:17 AM - System Checkpoint
RP71: 1/11/2011 8:18:58 AM - Installed Java(TM) 6 Update 23
RP72: 2/24/2011 9:17:18 AM - Installed Java(TM) 6 Update 24
RP73: 3/5/2011 2:16:05 PM - IObit Uninstaller RestorePoint
RP74: 4/3/2011 5:18:04 PM - mao lagi
RP75: 4/4/2011 8:45:49 AM - Removed Xara3D6
RP76: 4/6/2011 8:07:06 AM - System Checkpoint
RP77: 4/6/2011 8:16:28 AM - Removed SUPERAntiSpyware Free Edition
RP78: 4/7/2011 5:24:33 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
µTorrent
7-Zip 4.65
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Photoshop 7.0
Any Video Converter 2.5.2
Apple Software Update
AVI Movie Player
Bonjour
Camtasia Studio 6
Canon Camera Access Library
Canon Camera Support Core Library
Canon Digital Camera Solution Disk 34 Software Starter Guide
Canon Direct Print User Guide
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon PowerShot A470 Camera User Guide
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC
Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities EOS Utility
Canon Utilities MyCamera
Canon Utilities MyCamera DC
Canon Utilities PhotoStitch
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner
Chikka Messenger V4
CyberLink PowerDVD 8
DivX Plus DirectShow Filters
DivX Setup
DivX Version Checker
ESET NOD32 Antivirus
Foxit Reader
Garena 2010
Intel(R) Graphics Media Accelerator Driver
Java Auto Updater
Java(TM) 6 Update 24
LimeWire 4.18.8
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
mIRC
Mozilla Firefox 4.0 (x86 en-US)
Nero Suite
NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up
On2 VP7 Personal Edition
QuickTime Alternative 1.67
Realtek High Definition Audio Driver
RocketDock 1.3.5
Safari
Skype™ 4.0
Software Update for Web Folders
SUPERAntiSpyware
VC80CRTRedist - 8.0.50727.4053
VideoLAN VLC media player 0.8.6d
VobSub v2.23 (Remove Only)
Win AVI HelixSDK
Winamp
WinAVI Video Converter
Yahoo! Browser Services
Yahoo! Install Manager
Yahoo! Messenger
YouTube Downloader 2.7.1
.
==== Event Viewer Messages From Past Week ========
.
4/6/2011 9:02:05 AM, error: Service Control Manager [7023] - The Automatic Updates service terminated with the following error: The specified module could not be found.
4/6/2011 9:02:05 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Eset Nod32 Boot service to connect.
4/6/2011 9:02:05 AM, error: Service Control Manager [7001] - The Canon Camera Access Library 8 service depends on the Windows Image Acquisition (WIA) service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
4/6/2011 9:02:05 AM, error: Service Control Manager [7000] - The Eset Nod32 Boot service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================
I hope somebody could figure out what's wrong with my computer. Please help.
Here are the log files requested:
Malwarebyte's Log File:
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6330
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180
4/11/2011 5:21:19 PM
mbam-log-2011-04-11 (17-21-19).txt
Scan type: Quick scan
Objects scanned: 150179
Time elapsed: 1 minute(s), 26 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER log file:
GMER 1.0.15.15570 - http://www.gmer.net
Rootkit quick scan 2011-04-11 17:30:05
Windows 5.1.2600 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-19 ST3250310AS rev.4.AAA
Running: y8qpn90q.exe; Driver: D:\DOCUME~1\ST6FE9~1.MIC\LOCALS~1\Temp\kgtdqpog.sys
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \FileSystem\Fastfat \Fat eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdir.sys
---- EOF - GMER 1.0.15 ----
DDS.txt Log File:
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by St.Michael at 17:30:47.79 on Mon 04/11/2011
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1012.591 [GMT 8:00]
.
AV: ESET NOD32 Antivirus 3.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
============== Running Processes ===============
.
D:\Program Files\Faronics\Deep Freeze\Install D-0\DF5Serv.exe
D:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\RTHDCPL.EXE
D:\WINDOWS\system32\igfxpers.exe
D:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
D:\Program Files\Common Files\Java\Java Update\jusched.exe
D:\Program Files\DivX\DivX Update\DivXUpdate.exe
D:\WINDOWS\system32\igfxsrvc.exe
D:\Program Files\Faronics\Deep Freeze\Install D-0\_$Df\FrzState2k.exe
D:\Program Files\RocketDock\RocketDock.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\Documents and Settings\St.Michael\Desktop\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - d:\program files\divx\divx plus web player\npdivx32.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - e:\progra~1\spybot~1\SDHelper.dll
BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - d:\program files\divx\divx plus web player\npdivx32.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - d:\program files\yahoo!\common\yiesrvc.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
uRun: [SpybotSD TeaTimer] e:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [RocketDock] "d:\program files\rocketdock\RocketDock.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SkyTel] SkyTel.EXE
mRun: [IgfxTray] d:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] d:\windows\system32\hkcmd.exe
mRun: [Persistence] d:\windows\system32\igfxpers.exe
mRun: [egui] "d:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [SunJavaUpdateSched] "d:\program files\common files\java\java update\jusched.exe"
mRun: [DivXUpdate] "d:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW
dRunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll"
dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe
IE: E&xport to Microsoft Excel - d:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - d:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - e:\progra~1\spybot~1\SDHelper.dll
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - d:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
TCP: {148290E1-EB23-47C8-8527-8CAD3AFE7B9B} = 208.67.222.222,208.67.220.220
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - d:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - d:\program files\superantispyware\SASWINLO.DLL
Notify: DfLogon - LogonDll.dll
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - d:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - d:\docume~1\st6fe9~1.mic\applic~1\mozilla\firefox\profiles\uv7v33rl.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: network.proxy.type - 0
FF - plugin: d:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: d:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: d:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R0 DeepFrz;DeepFrz;d:\windows\system32\drivers\DeepFrz.sys [2004-8-8 93568]
R1 epfwtdir;epfwtdir;d:\windows\system32\drivers\epfwtdir.sys [2008-2-20 33800]
R1 SASDIFSV;SASDIFSV;d:\program files\superantispyware\sasdifsv.sys [2010-2-18 12872]
R1 SASKUTIL;SASKUTIL;d:\program files\superantispyware\SASKUTIL.SYS [2010-5-11 67656]
R2 ekrn;Eset Service;d:\program files\eset\eset nod32 antivirus\ekrn.exe [2008-2-20 472320]
S2 NOD32FiXTemDono;Eset Nod32 Boot;d:\windows\system32\regedt32.exe [2006-1-13 3584]
S3 GGSAFERDriver;GGSAFER Driver;\??\e:\program files\garena\safedrv.sys --> e:\program files\garena\safedrv.sys [?]
.
=============== Created Last 30 ================
.
2011-04-06 00:27:51 -------- d-----w- d:\program files\SUPERAntiSpyware
2011-04-05 02:11:12 -------- d-s---w- d:\documents and settings\st.michael\UserData
2011-04-05 02:01:26 98816 ----a-w- d:\windows\sed.exe
2011-04-05 02:01:26 89088 ----a-w- d:\windows\MBR.exe
2011-04-05 02:01:26 256512 ----a-w- d:\windows\PEV.exe
2011-04-05 02:01:26 161792 ----a-w- d:\windows\SWREG.exe
2011-03-25 00:58:37 -------- d-----w- d:\docume~1\alluse~1\applic~1\DivX
2011-03-17 09:03:15 172032 ----a-w- d:\windows\system32\AniGIF.ocx
.
==================== Find3M ====================
.
2011-02-02 13:40:23 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-02-02 11:19:39 73728 ----a-w- d:\windows\system32\javacpl.cpl
.
============= FINISH: 17:31:08.62 ===============
Attach.txt Log File:
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_11-03-05.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 1/12/2009 7:54:03 PM
System Uptime: 4/11/2011 5:11:35 PM (0 hours ago)
.
Motherboard: Intel Corporation | | DG31PR
Processor: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz | J3E1 | 2199/800mhz
Processor: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz | J3E1 | 2199/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (FAT32) - 29 GiB total, 3.976 GiB free.
D: is FIXED (NTFS) - 98 GiB total, 3.642 GiB free.
E: is FIXED (NTFS) - 106 GiB total, 11.426 GiB free.
F: is CDROM ()
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP25: 3/18/2009 4:51:56 PM - Removed Java(TM) 6 Update 11
RP26: 3/18/2009 4:52:14 PM - Installed Java(TM) 6 Update 12
RP27: 3/28/2009 2:14:39 AM - Installed Java(TM) 6 Update 13
RP28: 4/30/2009 5:23:04 PM - Avira AntiVir Personal - 4/30/2009 10:23
RP29: 4/30/2009 5:25:45 PM - Avira AntiVir Personal - 4/30/2009 10:25
RP30: 4/30/2009 5:27:38 PM - Avira AntiVir Personal - 4/30/2009 10:27
RP31: 4/30/2009 5:30:48 PM - Avira AntiVir Personal - 4/30/2009 10:30
RP32: 5/10/2009 9:16:15 PM - Avira AntiVir Personal - 5/10/2009 14:16
RP33: 5/11/2009 12:41:00 AM - Scanned
RP34: 5/13/2009 5:11:19 PM - Installed ESET NOD32 Antivirus
RP35: 6/4/2009 8:25:23 AM - Removed ESET NOD32 Antivirus
RP36: 6/4/2009 8:33:01 AM - Installed ESET NOD32 Antivirus
RP37: 6/12/2009 3:31:42 PM - Installed Java(TM) 6 Update 14
RP38: 6/12/2009 6:59:38 PM - Removed Safari
RP39: 7/4/2009 11:42:48 PM - Removed ESET NOD32 Antivirus
RP40: 7/4/2009 11:52:04 PM - Installed ESET NOD32 Antivirus
RP41: 8/27/2009 4:29:03 PM - Installed Java(TM) 6 Update 15
RP42: 10/17/2009 3:02:33 PM - System Checkpoint
RP43: 10/23/2009 9:19:57 AM - Restore Operation
RP44: 10/23/2009 9:22:49 AM - Restore Operation
RP45: 10/23/2009 10:43:37 AM - Restore Operation
RP46: 10/23/2009 10:49:01 AM - Restore Operation
RP47: 10/23/2009 11:09:51 AM - Removed ESET NOD32 Antivirus
RP48: 10/23/2009 11:14:16 AM - Installed ESET NOD32 Antivirus
RP49: 10/23/2009 11:20:32 AM - Removed ESET NOD32 Antivirus
RP50: 10/23/2009 11:20:52 AM - Removed ESET NOD32 Antivirus
RP51: 10/23/2009 11:43:46 AM - Removed Safari
RP52: 10/23/2009 12:13:56 PM - Installed Avast
RP53: 10/26/2009 9:31:22 AM - System Checkpoint
RP54: 10/26/2009 12:57:23 PM - Installed ESET NOD32 Antivirus
RP55: 10/26/2009 1:00:59 PM - Installed Eset Nod32
RP56: 11/10/2009 9:58:20 AM - System Checkpoint
RP57: 11/25/2009 9:08:44 AM - Installed Java(TM) 6 Update 17
RP58: 1/30/2010 6:48:29 PM - System Checkpoint
RP59: 1/30/2010 8:30:33 PM - Removed Garena
RP60: 3/7/2010 8:55:31 AM - Installed Xara3D6
RP61: 3/12/2010 6:38:46 AM - Installed Java(TM) 6 Update 18
RP62: 4/1/2010 9:48:10 AM - Removed Java(TM) 6 Update 12
RP63: 4/1/2010 9:48:37 AM - Installed Java(TM) 6 Update 19
RP64: 5/13/2010 5:47:49 PM - Installed Java(TM) 6 Update 20
RP65: 8/23/2010 3:08:21 PM - Installed Java(TM) 6 Update 21
RP66: 10/21/2010 9:04:33 AM - Virgin
RP67: 10/24/2010 12:00:50 PM - Restore Operation
RP68: 11/2/2010 8:09:07 AM - Installed Java(TM) 6 Update 22
RP69: 11/21/2010 9:55:40 AM - System Checkpoint
RP70: 1/11/2011 5:53:17 AM - System Checkpoint
RP71: 1/11/2011 8:18:58 AM - Installed Java(TM) 6 Update 23
RP72: 2/24/2011 9:17:18 AM - Installed Java(TM) 6 Update 24
RP73: 3/5/2011 2:16:05 PM - IObit Uninstaller RestorePoint
RP74: 4/3/2011 5:18:04 PM - mao lagi
RP75: 4/4/2011 8:45:49 AM - Removed Xara3D6
RP76: 4/6/2011 8:07:06 AM - System Checkpoint
RP77: 4/6/2011 8:16:28 AM - Removed SUPERAntiSpyware Free Edition
RP78: 4/7/2011 5:24:33 PM - System Checkpoint
.
==== Installed Programs ======================
.
.
µTorrent
7-Zip 4.65
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Photoshop 7.0
Any Video Converter 2.5.2
Apple Software Update
AVI Movie Player
Bonjour
Camtasia Studio 6
Canon Camera Access Library
Canon Camera Support Core Library
Canon Digital Camera Solution Disk 34 Software Starter Guide
Canon Direct Print User Guide
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon PowerShot A470 Camera User Guide
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC
Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities EOS Utility
Canon Utilities MyCamera
Canon Utilities MyCamera DC
Canon Utilities PhotoStitch
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner
Chikka Messenger V4
CyberLink PowerDVD 8
DivX Plus DirectShow Filters
DivX Setup
DivX Version Checker
ESET NOD32 Antivirus
Foxit Reader
Garena 2010
Intel(R) Graphics Media Accelerator Driver
Java Auto Updater
Java(TM) 6 Update 24
LimeWire 4.18.8
Malwarebytes' Anti-Malware
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
mIRC
Mozilla Firefox 4.0 (x86 en-US)
Nero Suite
NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up
On2 VP7 Personal Edition
QuickTime Alternative 1.67
Realtek High Definition Audio Driver
RocketDock 1.3.5
Safari
Skype™ 4.0
Software Update for Web Folders
SUPERAntiSpyware
VC80CRTRedist - 8.0.50727.4053
VideoLAN VLC media player 0.8.6d
VobSub v2.23 (Remove Only)
Win AVI HelixSDK
Winamp
WinAVI Video Converter
Yahoo! Browser Services
Yahoo! Install Manager
Yahoo! Messenger
YouTube Downloader 2.7.1
.
==== Event Viewer Messages From Past Week ========
.
4/6/2011 9:02:05 AM, error: Service Control Manager [7023] - The Automatic Updates service terminated with the following error: The specified module could not be found.
4/6/2011 9:02:05 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Eset Nod32 Boot service to connect.
4/6/2011 9:02:05 AM, error: Service Control Manager [7001] - The Canon Camera Access Library 8 service depends on the Windows Image Acquisition (WIA) service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
4/6/2011 9:02:05 AM, error: Service Control Manager [7000] - The Eset Nod32 Boot service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
.
==== End Of File ===========================