The original version of this page can be found at : http://forum.bullguard.com/forum/5/Probably-being-infected-by-tro_93774.html
Posted By : runescapenoob - 4/27/2012 3:53 PM
My AVG Internet Security 2012 automatically found some trojan horse, backdoors and tracing cookies in these few days(at all times when i am using the computer), but i just can't delete them as they might not be easily cleaned.
The computer is getting slower and slower. What should I do to fix this?

Posted By : runescapenoob - 4/28/2012 5:52 AM
Logfile of HijackThis v1.99.1
Scan saved at 11:49:58, on 28/4/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG2012\avgfws.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\program files\asus\epu-4 engine\fourengine.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\ctfmon.exe
E:\Programs\Kies\KiesTrayAgent.exe
E:\Programs\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Administrator\桌面\HijackThis.exe

R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live 登入小幫手 - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [UpdatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
O4 - HKLM\..\Run: [IME14 CHT Setup] C:\PROGRA~1\COMMON~1\MICROS~1\IME14\SHARED\IMEKLMG.EXE /SetPreload /CHT /Log
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [Six Engine] "c:\program files\asus\epu-4 engine\fourengine.exe" -b
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [KiesTrayAgent] E:\Programs\Kies\KiesTrayAgent.exe
O4 - HKCU\..\Run: [KiesPDLR] E:\Programs\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [A24802D8E0033B87C7A71FBB6D39DEF74469BA10._service_run] "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe" --type=service
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Foxy 下載 - res://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.546\FOXY 1.9.9 繁體中文免安裝版\Foxy.exe/download.htm
O8 - Extra context menu item: Foxy 搜尋 - res://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.546\FOXY 1.9.9 繁體中文免安裝版\Foxy.exe/search.htm
O8 - Extra context menu item: 使用快車3下載 - C:\Documents and Settings\Administrator\Application Data\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: 使用快車3下載全部鏈結 - C:\Documents and Settings\Administrator\Application Data\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: 使用迅雷下載全部連結 - C:\Program Files\Thunder Network\Thunder\Program\getallurl.htm
O8 - Extra context menu item: 匯出至 Microsoft Excel(&X) - res://C:\PROGRA~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: 匯出至 Microsoft Office Excel(&X) - res://C:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {05BCE06B-A300-4C4E-A42F-4C04BCCDE63B} (TRLuncherROC Control) - http://weblogin.talesrunner.com.hk/TRLuncherROC.cab
O16 - DPF: {444785F1-DE89-4295-863A-D46C3A781394} (UnityWebPlayer Control) - http://webplayer.unity3d.com/download_webplayer-2.x/UnityWebPlayer.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1300113023703
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.26.0.cab
O16 - DPF: {F1204720-88C1-4AEF-BE47-4EDF2A114442} - http://cyc7.ethink4u.com/~game3/game/html/VMInstall.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{368B7C5A-6E26-47E1-B8EF-33A56BAD728B}: NameServer = 203.186.94.242
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Content Service - Unknown owner - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG 防火? (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google 更新服務 (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /svc (file missing)
O23 - Service: Google 更新 服務 (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: KMService - Unknown owner - C:\WINDOWS\system32\srvany.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: vToolbarUpdater10.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe

Posted By : runescapenoob - 4/28/2012 6:49 AM
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.28.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: NOBODY [administrator]

Protection: Enabled

28/4/2012 12:39:33
mbam-log-2012-04-28 (12-39-33).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 890583
Time elapsed: 1 hour(s), 27 minute(s), 42 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Posted By : Andreea-Luciana Ostache - 4/28/2012 12:55 PM
runescapenoob said...
My AVG Internet Security 2012 automatically found some trojan horse, backdoors and tracing cookies in these few days


Post a log of the Real Time (On Access) protection from AVG. Also, run Combofix from here and post the log: www.bleepingcomputer.com/combofix/how-to-use-combofix


Andreea-Luciana Ostache
Senior Support Technician EN
support@bullguard.com
www.bullguard.com

Download the Free Trial version of BullGuard Internet Security 12

You have a BullGuard related problem? Post your question on these forums, contact Support or contact me on Twitter!


Posted By : runescapenoob - 4/28/2012 5:40 PM
Do you mean this as the real time log?

"Warning";"Found Tracking cookie.Atdmt";"C:\Documents and Settings\Administrator\Cookies\315J05RQ.txt";"N/A";"27/4/2012, 9:44:26"
"Infection";"Trojan horse Generic2_c.AHTT";"E:\BT\无双大蛇Z 免安装绿色简体中文完整版\OROCHI_Z_TC\开始游戏.exe";"N/A";"27/4/2012, 10:11:09"
"Infection";"Trojan horse BackDoor.Hupigon5.BNMK";"E:\BT\无双大蛇Z 免安装绿色简体中文完整版\OROCHI_Z_TC\OROCHI_Z_TC.exe";"N/A";"27/4/2012, 10:11:09"
"Infection";"Trojan horse Generic2_c.AHTT";"e:\System Volume Information\_restore{503FBBCF-CE5E-4BBD-A306-D9AB77FD9F6B}\RP141\A0053243.exe";"N/A";"27/4/2012, 21:01:47"
"Infection";"Trojan horse BackDoor.Hupigon5.BNMK";"e:\System Volume Information\_restore{503FBBCF-CE5E-4BBD-A306-D9AB77FD9F6B}\RP141\A0053244.exe";"N/A";"27/4/2012, 22:45:37"

Posted By : runescapenoob - 4/28/2012 6:04 PM
I can't provide my combofix log as the program causes crashes when stages 50 is completed and starts the stage "deleting files"
Then the real "blue screen" occurs immediately and my computer stops running. All I can do it to re-boot it.
The problem has happened TWICE. I am sure that my AVG is fully disabled, malwarebytes closed, and everything stoped when the program was running.

Posted By : runescapenoob - 4/28/2012 6:48 PM
These are my DDS logs.
DDS.txt


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 0:46:37 on 2012-04-29
Microsoft Windows XP Professional 5.1.2600.3.950.852.1028.18.2046.979 [GMT 8:00]
.
AV: AVG Internet Security 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Disabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Common Files\Microsoft Shared\IME14\SHARED\IMEDICTUPDATE.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
svchost.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\program files\asus\epu-4 engine\fourengine.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
E:\Programs\Kies\KiesTrayAgent.exe
E:\Programs\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\conime.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://find.localstrike.net/
uSearch Page = hxxp://find.localstrike.net/
mDefault_Page_URL = hxxp://find.localstrike.net/
mDefault_Search_URL = hxxp://find.localstrike.net/
mSearch Page = hxxp://find.localstrike.net/
mStart Page = hxxp://find.localstrike.net/
uInternet Connection Wizard,ShellNext = iexplore
uURLSearchHooks: SearchHook Class: {bc86e1ab-eda5-4059-938f-ce307b0c6f0a} - c:\program files\devicevm\browser configuration utility\AddressBarSearch.dll
mURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Canon Easy-WebPrint EX BHO: {3785d0ad-bfff-47f6-bf5b-a587c162fed9} - c:\program files\canon\easy-webprint ex\ewpexbho.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live 登入小幫手: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.2.0.3\AVG Secure Search_toolbar.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.2.0.3\AVG Secure Search_toolbar.dll
TB: Canon Easy-WebPrint EX: {759d9886-0c6f-4498-bab6-4a5f47c6c72f} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [KiesTrayAgent] e:\programs\kies\KiesTrayAgent.exe
uRun: [KiesPDLR] e:\programs\kies\external\firmwareupdate\KiesPDLR.exe
uRun: [Google Update] "c:\documents and settings\administrator\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [A24802D8E0033B87C7A71FBB6D39DEF74469BA10._service_run] "c:\documents and settings\administrator\local settings\application data\google\chrome\application\chrome.exe" --type=service
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [BCU] "c:\program files\devicevm\browser configuration utility\BCU.exe"
mRun: [NUSB3MON] "c:\program files\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
mRun: [CLMLServer] "c:\program files\cyberlink\power2go\CLMLSvc.exe"
mRun: [UpdateP2GoShortCut] "c:\program files\cyberlink\power2go\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\power2go" updatewithcreateonce "software\cyberlink\power2go\6.0"
mRun: [UpdatePSTShortCut] "c:\program files\cyberlink\dvd suite\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\dvd suite" updatewithcreateonce "software\cyberlink\PowerStarter"
mRun: [IME14 CHT Setup] c:\progra~1\common~1\micros~1\ime14\shared\IMEKLMG.EXE /SetPreload /CHT /Log
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [Six Engine] "c:\program files\asus\epu-4 engine\fourengine.exe" -b
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [CanonSolutionMenuEx] c:\program files\canon\solution menu ex\CNSEMAIN.EXE /logon
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [HydraVisionDesktopManager] c:\program files\ati technologies\ati hydravision\HydraDM.exe
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [ctfmon.exe] c:\windows\system32\CTFMON.EXE
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: Foxy 下載 - c:\docume~1\admini~1\locals~1\temp\rar$ex00.546\foxy 1.9.9 繁體中文吻安裝版\Foxy.exe/download.htm
IE: Foxy 搜尋 - c:\docume~1\admini~1\locals~1\temp\rar$ex00.546\foxy 1.9.9 繁體中文吻安裝版\Foxy.exe/search.htm
IE: 使用快車3下載 - c:\documents and settings\administrator\application data\flashgetbho\GetUrl.htm
IE: 使用快車3下載全部鏈結 - c:\documents and settings\administrator\application data\flashgetbho\GetAllUrl.htm
IE: 使用迅雷下載全部連結 - c:\program files\thunder network\thunder\program\getallurl.htm
IE: 匯出至 Microsoft Excel(&X) - c:\progra~1\office14\EXCEL.EXE/3000
IE: 匯出至 Microsoft Office Excel(&X) - c:\progra~1\office11\EXCEL.EXE/3000
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {05BCE06B-A300-4C4E-A42F-4C04BCCDE63B} - hxxp://weblogin.talesrunner.com.hk/TRLuncherROC.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {444785F1-DE89-4295-863A-D46C3A781394} - hxxp://webplayer.unity3d.com/download_webplayer-2.x/UnityWebPlayer.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1300113023703
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.26.0.cab
DPF: {F1204720-88C1-4AEF-BE47-4EDF2A114442} - hxxp://cyc7.ethink4u.com/~game3/game/html/VMInstall.cab
TCP: DhcpNameServer = 203.185.0.35 203.185.0.36 203.185.0.37
TCP: Interfaces\{368B7C5A-6E26-47E1-B8EF-33A56BAD728B} : NameServer = 203.186.94.242
TCP: Interfaces\{B114A7CB-7243-4596-B01A-12F6D2A0290F} : DhcpNameServer = 203.185.0.35 203.185.0.36 203.185.0.37
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\10.2.0\ViProtocol.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592]
R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2010-11-2 11448]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-12-8 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 40016]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-11-12 295248]
R2 AsSysCtrlService;ASUS System Control Service;c:\program files\asus\assysctrlservice\1.00.02\AsSysCtrlService.exe [2010-11-2 96896]
R2 Autodesk Content Service;Autodesk Content Service;c:\program files\autodesk\content service\Connect.Service.ContentService.exe [2011-2-2 18656]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 BCUService;Browser Configuration Utility Service;c:\program files\devicevm\browser configuration utility\BCUService.exe [2010-3-5 235752]
R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [2010-11-2 20072]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2011-11-13 217088]
R2 ImeDictUpdateService;Microsoft IME Dictionary Update;c:\program files\common files\microsoft shared\ime14\shared\IMEDICTUPDATE.EXE [2010-10-20 59760]
R2 Iprip;RIP Listener;c:\windows\system32\svchost.exe -k netsvcs [2008-4-15 14336]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-4-27 654408]
R2 RtNdPt5x;Realtek NDIS Protocol Driver;c:\windows\system32\drivers\RtNdPt5x.sys [2010-11-2 27424]
R2 StarWindServiceAE;StarWind AE Service;c:\program files\alcohol soft\alcohol 52\starwind\StarWindServiceAE.exe [2009-12-24 370688]
R2 vToolbarUpdater10.2.0;vToolbarUpdater10.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\10.2.0\ToolbarUpdater.exe [2012-3-12 918880]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [2012-2-6 100368]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30944]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 134608]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 16720]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2011-11-13 36640]
R3 IPvE;IPvE Adapter Driver;c:\windows\system32\drivers\IPvEx86.sys [2011-6-11 17184]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-4-27 22344]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-1-22 59904]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-1-22 139648]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-11-2 2106880]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google 更新服務 (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-3-16 136176]
S2 KMService;KMService;c:\windows\system32\srvany.exe [2010-11-28 8192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-27 253600]
S3 ALSysIO;ALSysIO;\??\c:\docume~1\admini~1\locals~1\temp\alsysio.sys --> c:\docume~1\admini~1\locals~1\temp\ALSysIO.sys [?]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [2011-11-13 30312]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-4-14 167264]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30944]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2012-2-12 80184]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2011-11-13 20032]
S3 dump_wmimmc;dump_wmimmc;\??\e:\programs\sd高鈿online\gameguard\dump_wmimmc.sys --> e:\programs\sd高鈿online\gameguard\dump_wmimmc.sys [?]
S3 EagleXNt;EagleXNt;\??\c:\windows\system32\drivers\eaglexnt.sys --> c:\windows\system32\drivers\EagleXNt.sys [?]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2012-1-31 13192]
S3 esgiguard;esgiguard;\??\c:\program files\enigma software group\spyhunter\esgiguard.sys --> c:\program files\enigma software group\spyhunter\esgiguard.sys [?]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2012-1-31 8456]
S3 gupdatem;Google 更新 服務 (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-3-16 136176]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 RTCore32;RTCore32;\??\c:\docume~1\admini~1\locals~1\temp\rar$ex00.406\rtcore32.sys --> c:\docume~1\admini~1\locals~1\temp\rar$ex00.406\RTCore32.sys [?]
S3 RTLTEAMING;Realtek Intermediate Driver for Ethernet Extended Features;c:\windows\system32\drivers\RTLTEAMING.SYS [2010-11-2 34208]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [2010-11-2 22944]
S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [2011-5-23 23096]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [2011-11-13 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [2011-11-13 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [2011-11-13 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [2011-11-13 114280]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2012-2-12 181432]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-4-15 14336]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2011-5-23 25704]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2011-5-23 25704]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2011-5-23 25704]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2011-5-23 25704]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2011-5-23 25704]
S3 XDva379;XDva379;\??\c:\windows\system32\xdva379.sys --> c:\windows\system32\XDva379.sys [?]
S3 XDva385;XDva385;\??\c:\windows\system32\xdva385.sys --> c:\windows\system32\XDva385.sys [?]
.
=============== Created Last 30 ================
.
2012-04-28 15:42:41 -------- dcs---w- C:\ComboFix
2012-04-28 15:25:41 -------- dcsha-r- C:\cmdcons
2012-04-27 13:29:54 418464 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
2012-04-27 13:23:57 22344 -c--a-w- c:\windows\system32\drivers\mbam.sys
2012-04-27 13:23:57 -------- dc----w- c:\program files\Malwarebytes' Anti-Malware
2012-04-27 01:54:50 -------- dc----w- c:\program files\CCleaner
2012-04-24 12:18:58 -------- dc----w- c:\program files\Cracked Steam
2012-04-14 08:42:03 -------- dc----w- c:\program files\Thunder Network
2012-04-14 08:22:47 -------- dc----w- c:\documents and settings\administrator\application data\.minecraft
2012-04-12 13:41:52 -------- dc----w- c:\program files\AVAST Software
2012-04-12 13:41:52 -------- dc----w- c:\documents and settings\all users\application data\AVAST Software
.
==================== Find3M ====================
.
2012-04-27 13:29:54 70304 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-03-08 10:05:21 73728 -c--a-w- c:\windows\system32\javacpl.cpl
2012-03-08 10:05:20 472808 -c--a-w- c:\windows\system32\deployJava1.dll
2012-03-01 11:00:27 916992 -c--a-w- c:\windows\system32\wininet.dll
2012-03-01 11:00:27 43520 -c----w- c:\windows\system32\licmgr10.dll
2012-03-01 11:00:27 1469440 -c----w- c:\windows\system32\inetcpl.cpl
2012-02-29 14:10:19 177152 -c--a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10:19 148480 -c--a-w- c:\windows\system32\imagehlp.dll
2012-02-29 12:17:40 385024 -c----w- c:\windows\system32\html.iec
2012-02-14 04:09:44 1070352 -c--a-w- c:\windows\system32\MSCOMCTL.OCX
2012-02-03 09:57:49 1859712 -c--a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 0:47:15.21 ===============

Posted By : runescapenoob - 4/28/2012 6:50 PM
Another log from DDS. I post them as the forum rules said that.

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 2/11/2010 20:43:34
System Uptime: 28/4/2012 23:49:23 (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M4A88T-M/USB3
Processor: AMD Athlon(tm) II X4 640 Processor | AM3 | 3013/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 101 GiB total, 77.278 GiB free.
D: is CDROM ()
E: is FIXED (NTFS) - 495 GiB total, 469.203 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {36FC9E60-C465-11CF-8056-444553540000}
Description: USB Mass Storage Device
Device ID: USB\VID_04E8&PID_685B\4F860002FFFC0000
Manufacturer: Compatible USB storage device
Name: USB Mass Storage Device
PNP Device ID: USB\VID_04E8&PID_685B\4F860002FFFC0000
Service: USBSTOR
.
==== System Restore Points ===================
.
RP53: 29/1/2012 19:59:27 - 系統檢查點
RP54: 31/1/2012 17:58:52 - 已安裝 Windows 7 Upgrade Advisor
RP55: 31/1/2012 18:02:39 - 已移除 Windows 7 Upgrade Advisor
RP56: 31/1/2012 18:03:47 - Software Distribution Service 3.0
RP57: 2/2/2012 15:09:28 - 系統檢查點
RP58: 3/2/2012 23:15:18 - 系統檢查點
RP59: 4/2/2012 22:42:42 - 已安裝 DirectX
RP60: 4/2/2012 22:52:03 - Installed SmartSound Common Data
RP61: 4/2/2012 22:52:18 - Installed SmartSound Quicktracks 5
RP62: 6/2/2012 17:18:34 - 系統檢查點
RP63: 7/2/2012 18:45:18 - 系統檢查點
RP64: 8/2/2012 18:50:19 - 系統檢查點
RP65: 9/2/2012 18:52:47 - 系統檢查點
RP66: 10/2/2012 19:30:04 - 系統檢查點
RP67: 12/2/2012 17:02:49 - 系統檢查點
RP68: 12/2/2012 19:37:32 - Installed Windows XP winusb0100.
RP69: 14/2/2012 19:04:35 - 系統檢查點
RP70: 15/2/2012 19:06:04 - 系統檢查點
RP71: 17/2/2012 13:00:51 - 系統檢查點
RP72: 18/2/2012 17:32:07 - 系統檢查點
RP73: 19/2/2012 17:51:33 - 系統檢查點
RP74: 21/2/2012 18:10:01 - 系統檢查點
RP75: 22/2/2012 18:48:57 - 系統檢查點
RP76: 22/2/2012 21:23:33 - Software Distribution Service 3.0
RP77: 24/2/2012 12:48:15 - 系統檢查點
RP78: 24/2/2012 16:16:33 - Removed Data Lifeguard Diagnostic for Windows
RP79: 24/2/2012 16:17:07 - Software Distribution Service 3.0
RP80: 25/2/2012 18:55:38 - 系統檢查點
RP81: 26/2/2012 18:56:36 - 系統檢查點
RP82: 28/2/2012 11:34:07 - 系統檢查點
RP83: 29/2/2012 19:13:20 - 系統檢查點
RP84: 2/3/2012 8:55:14 - 系統檢查點
RP85: 3/3/2012 9:35:55 - 系統檢查點
RP88: 4/3/2012 19:14:36 - 系統檢查點
RP89: 5/3/2012 19:39:46 - 系統檢查點
RP90: 6/3/2012 20:55:05 - 系統檢查點
RP91: 8/3/2012 17:26:38 - 系統檢查點
RP92: 8/3/2012 18:04:51 - Removed Java(TM) 6 Update 29
RP93: 9/3/2012 18:42:41 - 系統檢查點
RP94: 11/3/2012 11:34:18 - 系統檢查點
RP95: 12/3/2012 19:15:59 - 系統檢查點
RP96: 13/3/2012 19:25:32 - 系統檢查點
RP97: 14/3/2012 19:27:15 - 系統檢查點
RP98: 15/3/2012 20:55:56 - 系統檢查點
RP99: 16/3/2012 13:21:15 - Installed SpyHunter
RP100: 17/3/2012 17:07:44 - 系統檢查點
RP101: 18/3/2012 17:36:50 - 系統檢查點
RP102: 18/3/2012 20:46:58 - Software Distribution Service 3.0
RP103: 18/3/2012 20:54:13 - Software Distribution Service 3.0
RP104: 19/3/2012 20:59:05 - 系統檢查點
RP105: 20/3/2012 16:58:10 - 已移除 HP Update。
RP106: 20/3/2012 17:48:19 - Software Distribution Service 3.0
RP107: 20/3/2012 20:34:23 - 安裝了 Windows XP KB2621440。
RP108: 22/3/2012 18:51:20 - 系統檢查點
RP109: 23/3/2012 19:34:54 - 系統檢查點
RP110: 24/3/2012 21:01:26 - 系統檢查點
RP111: 26/3/2012 7:11:38 - 系統檢查點
RP112: 27/3/2012 18:06:33 - Installed Angry Birds Space
RP113: 28/3/2012 9:24:31 - Removed Angry Birds Space
RP114: 29/3/2012 10:01:34 - 系統檢查點
RP115: 30/3/2012 19:04:27 - 系統檢查點
RP116: 31/3/2012 21:27:16 - 系統檢查點
RP117: 2/4/2012 16:04:01 - 系統檢查點
RP118: 3/4/2012 17:05:13 - 系統檢查點
RP119: 4/4/2012 17:09:24 - 系統檢查點
RP120: 5/4/2012 18:59:25 - 系統檢查點
RP121: 6/4/2012 19:29:34 - 系統檢查點
RP122: 7/4/2012 19:54:45 - 系統檢查點
RP123: 8/4/2012 20:12:47 - 系統檢查點
RP124: 10/4/2012 15:42:26 - 系統檢查點
RP125: 11/4/2012 18:42:58 - 系統檢查點
RP126: 12/4/2012 21:41:52 - avast! Free Antivirus 安裝
RP127: 13/4/2012 11:15:22 - Removed Microsoft AppLocale
RP128: 13/4/2012 11:15:55 - Installed Microsoft AppLocale
RP129: 13/4/2012 11:57:06 - avast! Free Antivirus 安裝
RP130: 13/4/2012 11:58:18 - Removed SpyHunter
RP131: 13/4/2012 11:59:37 - Software Distribution Service 3.0
RP132: 14/4/2012 16:04:06 - 系統檢查點
RP133: 15/4/2012 16:34:35 - 系統檢查點
RP134: 16/4/2012 16:43:47 - 系統檢查點
RP135: 17/4/2012 18:43:22 - 系統檢查點
RP136: 18/4/2012 19:10:48 - 系統檢查點
RP137: 20/4/2012 9:39:55 - 系統檢查點
RP138: 21/4/2012 16:00:51 - 系統檢查點
RP139: 22/4/2012 19:27:42 - 系統檢查點
RP140: 24/4/2012 19:13:11 - 系統檢查點
RP141: 26/4/2012 14:13:08 - 系統檢查點
RP142: 27/4/2012 16:37:58 - 系統檢查點
RP143: 27/4/2012 21:25:09 - Software Distribution Service 3.0
RP144: 28/4/2012 13:13:33 - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
.
Adobe AIR
Adobe Download Assistant
Adobe Flash Media Live Encoder 3.2
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.3) - Chinese Traditional
Adobe Shockwave Player 11.6
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Processor Driver
ATI AVIVO Codecs
ATI Catalyst Control Center
ATI HYDRAVISION
ATI Problem Report Wizard
Audacity 1.2.6
AutoCAD 2012 - Traditional Chinese
AutoCAD 2012 Language Pack - Traditional Chinese
Autodesk Content Service
Autodesk Inventor Fusion 2012
Autodesk Inventor Fusion 2012 Language Pack
Autodesk Inventor Fusion plug-in for AutoCAD 2012
Autodesk Material Library 2012
Autodesk Material Library Base Resolution Image Library 2012
AVG 2012
BitComet(比特彗星) 1.31
Browser Configuration Utility
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon MG2100 series MP Drivers
Canon MG2100 series On-screen Manual
Canon MP Navigator EX 5.0
Canon My Printer
Canon Solution Menu EX
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center HydraVision Full
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-preinstall
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Chinese Simplified Fonts Support For Adobe Reader X
Common
Contents
Corel VideoStudio Pro X4
CP_Package_Variety1
CP_Package_Variety2
CP_Package_Variety3
CPUID HWMonitor 1.16
Cracked Steam
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DeviceIO
EASEUS Partition Master 9.1.0 Home Edition
EPU-4 Engine
FARO LS 1.1.406.58
Google Chrome
Google Earth Plug-in
Google Update Helper
HijackThis 1.99.1
Hong Kong Toolbar 5.1.0.6
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)
HP Image Zone Express
ICA
IPM_VS_Pro
ISCOM
Japanese Fonts Support For Adobe Reader X
Java Auto Updater
Java(TM) 6 Update 31
K-Lite Mega Codec Pack 4.2.5
KB2564958:Microsoft Windows 安全性更新
LAME v3.98.3 for Audacity
LG CyberLink Power2Go
LG ODD Auto Firmware Update
LG Power Tools
Little Fighter 2 version 2.0a
Malwarebytes Anti-Malware 版本 1.61.0.1400
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CHT
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CHT
Microsoft .NET Framework 3.5 Language Pack SP1 - cht
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 語言套件 SP1 - 繁體中文
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile CHT Language Pack
Microsoft .NET Framework 4 Client Profile 繁體中文語言套件
Microsoft .NET Framework 4 Extended
Microsoft .NET Framework 4 Extended CHT Language Pack
Microsoft .NET Framework 4 Extended 繁體中文語言套件
Microsoft Application Error Reporting
Microsoft AppLocale
Microsoft Base Smart Card Cryptographic Service Provider 封裝
Microsoft Choice Guard
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Flight Simulator X
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (Chinese (Traditional)) 2010
Microsoft Office Excel MUI (Chinese (Traditional)) 2010
Microsoft Office Groove MUI (Chinese (Traditional)) 2010
Microsoft Office IME (Chinese (Traditional)) 2010
Microsoft Office InfoPath MUI (Chinese (Traditional)) 2010
Microsoft Office OneNote MUI (Chinese (Traditional)) 2010
Microsoft Office Outlook MUI (Chinese (Traditional)) 2010
Microsoft Office PowerPoint MUI (Chinese (Traditional)) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (Chinese (Traditional)) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proofing (Chinese (Traditional)) 2010
Microsoft Office Publisher MUI (Chinese (Traditional)) 2010
Microsoft Office Shared MUI (Chinese (Traditional)) 2010
Microsoft Office Word MUI (Chinese (Traditional)) 2010
Microsoft Silverlight
Microsoft Software Update for Web Folders (Chinese (Traditional)) 14
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Windows Application Compatibility Database
Microsoft WinUsb 1.0
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
Microsoft_VC90_MFCLOC_x86
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
NEC Electronics USB 3.0 Host Controller Driver
Need For Speed?World
NVIDIA PhysX
Octoshape 串流播放服務
Platform
PureHD
QuickTime
Realtek Ethernet Controller All-In-One Windows Driver
Realtek Ethernet Diagnostic Utility
RuneScape Launcher 1.2
Samsung Kies
SAMSUNG USB Driver for Mobile Phones
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile 繁體中文語言套件 (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile 繁體中文語言套件 (KB2518870)
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft InfoPath 2010 (KB2510065)
Security Update for Microsoft Office 2010 (KB2289078)
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2596511) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition
Security Update for Microsoft Publisher 2010 (KB2409055)
Security Update for Microsoft Visio Viewer 2010 (KB2597170) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2345000)
Segoe UI
Setup
Share
Skins
SmartSound Common Data
SmartSound Quicktracks 5
Spelling Dictionaries Support For Adobe Reader 9
swMSM
System Requirements Lab CYRI
TrustNet Web ToolKit For SEC
Unity Web Player
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2202188)
Update for Microsoft Office 2010 (KB2413186)
Update for Microsoft Office 2010 (KB2523113)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553323) 32-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
VIA 平台裝置管理員
VIO
VSClassic
VSPro
WebFldrs XP
Windows Internet Explorer 8
Windows Internet Explorer 8 安全性更新 (KB2510531)
Windows Internet Explorer 8 安全性更新 (KB2544521)
Windows Internet Explorer 8 安全性更新 (KB2559049)
Windows Internet Explorer 8 安全性更新 (KB2586448)
Windows Internet Explorer 8 安全性更新 (KB2618444)
Windows Internet Explorer 8 安全性更新 (KB2647516)
Windows Internet Explorer 8 安全性更新 (KB2675157)
Windows Internet Explorer 8 安全性更新 (KB982381)
Windows Internet Explorer 8 更新 (KB2447568)
Windows Internet Explorer 8 更新 (KB2598845)
Windows Internet Explorer 8 更新 (KB2632503)
Windows Live Call
Windows Live Communications Platform
Windows Live Messenger
Windows Live 上載工具
Windows Live 登入小幫手
Windows Live 程式集
Windows Management Framework Core
Windows Media Encoder 9 Series
Windows Media Encoder 安全性更新 (KB2447961)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Hotfix (KB2570791)
Windows XP Hotfix (KB2633952)
Windows XP Hotfix (KB942288-v3)
Windows XP 安全性更新 (KB2393802)
Windows XP 安全性更新 (KB2412687)
Windows XP 安全性更新 (KB2419632)
Windows XP 安全性更新 (KB2476490)
Windows XP 安全性更新 (KB2476687)
Windows XP 安全性更新 (KB2478960)
Windows XP 安全性更新 (KB2478971)
Windows XP 安全性更新 (KB2479628)
Windows XP 安全性更新 (KB2479943)
Windows XP 安全性更新 (KB2481109)
Windows XP 安全性更新 (KB2483185)
Windows XP 安全性更新 (KB2485376)
Windows XP 安全性更新 (KB2485663)
Windows XP 安全性更新 (KB2503658)
Windows XP 安全性更新 (KB2503665)
Windows XP 安全性更新 (KB2506212)
Windows XP 安全性更新 (KB2506223)
Windows XP 安全性更新 (KB2507618)
Windows XP 安全性更新 (KB2507938)
Windows XP 安全性更新 (KB2508272)
Windows XP 安全性更新 (KB2508429)
Windows XP 安全性更新 (KB2509553)
Windows XP 安全性更新 (KB2510581)
Windows XP 安全性更新 (KB2511455)
Windows XP 安全性更新 (KB2524375)
Windows XP 安全性更新 (KB2535512)
Windows XP 安全性更新 (KB2536276-v2)
Windows XP 安全性更新 (KB2536276)
Windows XP 安全性更新 (KB2544521)
Windows XP 安全性更新 (KB2544893-v2)
Windows XP 安全性更新 (KB2544893)
Windows XP 安全性更新 (KB2555917)
Windows XP 安全性更新 (KB2559049)
Windows XP 安全性更新 (KB2562937)
Windows XP 安全性更新 (KB2566454)
Windows XP 安全性更新 (KB2567053)
Windows XP 安全性更新 (KB2567680)
Windows XP 安全性更新 (KB2570222)
Windows XP 安全性更新 (KB2570947)
Windows XP 安全性更新 (KB2584146)
Windows XP 安全性更新 (KB2585542)
Windows XP 安全性更新 (KB2592799)
Windows XP 安全性更新 (KB2598479)
Windows XP 安全性更新 (KB2603381)
Windows XP 安全性更新 (KB2618451)
Windows XP 安全性更新 (KB2619339)
Windows XP 安全性更新 (KB2620712)
Windows XP 安全性更新 (KB2621440)
Windows XP 安全性更新 (KB2624667)
Windows XP 安全性更新 (KB2631813)
Windows XP 安全性更新 (KB2633171)
Windows XP 安全性更新 (KB2639417)
Windows XP 安全性更新 (KB2641653)
Windows XP 安全性更新 (KB2646524)
Windows XP 安全性更新 (KB2647518)
Windows XP 安全性更新 (KB2653956)
Windows XP 安全性更新 (KB2660465)
Windows XP 安全性更新 (KB2661637)
Windows XP 更新 (KB2492386)
Windows XP 更新 (KB2541763)
Windows XP 更新 (KB2607712)
Windows XP 更新 (KB2616676)
Windows XP 更新 (KB2641690)
Windows XP 更新 (KB971029)
WinRAR 壓縮工具
XML Paper Specification Shared Components Language Pack 1.0
適用於 AutoCAD 2012 的 Autodesk Inventor Fusion 外掛程式
適用於 AutoCAD 2012 的 Autodesk Inventor Fusion 外掛程式語言套件
.
==== Event Viewer Messages From Past Week ========
.
28/4/2012 9:53:47, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 MSIServer 而引數為 "", 為了執行伺服器: {000C101C-0000-0000-C000-000000000046} 之時
28/4/2012 9:52:19, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 MSIServer 而引數為 "", 為了執行伺服器: {000C101C-0000-0000-C000-000000000046} 之時
28/4/2012 9:50:30, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 MSIServer 而引數為 "", 為了執行伺服器: {000C101C-0000-0000-C000-000000000046} 之時
28/4/2012 9:49:33, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 wuauserv 而引數為 "", 為了執行伺服器: {E60687F7-01A1-40AA-86AC-DB1CBF673334} 之時
28/4/2012 9:39:23, error: Service Control Manager [7026] - 下列開機啟動或系統啟動驅動程式無法載入: AmdPPM AsIO AsUpIO Avgldx86 Avgmfx86 BdSpy Fips NovaShieldFilterDriver NovaShieldTDIDriver sptd
28/4/2012 9:39:23, error: Service Control Manager [7023] - Help and Support 服務因下列錯誤而終止: 找不到指定的模組。
28/4/2012 9:38:11, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 EventSystem 而引數為 "", 為了執行伺服器: {1BE1F766-5536-11D1-B726-00C04FB926AF} 之時
28/4/2012 9:38:09, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 wuauserv 而引數為 "", 為了執行伺服器: {E60687F7-01A1-40AA-86AC-DB1CBF673334} 之時
28/4/2012 9:37:58, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 StiSvc 而引數為 "", 為了執行伺服器: {A1F4E726-8CF1-11D1-BF92-0060081ED811} 之時
28/4/2012 9:37:58, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 StiSvc 而引數為 "", 為了執行伺服器: {A1F4E726-8CF1-11D1-BF92-0060081ED811} 之時
28/4/2012 9:37:57, error: sptd - 驅動程式在 的資料結構中偵測內部錯誤。
28/4/2012 23:53:07, error: System Error [1003] - 錯誤碼 00000019,parameter1 00000020,parameter2 887df570,parameter3 887df988,parameter4 1a830033。
28/4/2012 23:52:31, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
28/4/2012 23:52:29, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
28/4/2012 23:51:07, error: Service Control Manager [7023] - Help and Support 服務因下列錯誤而終止: 找不到指定的模組。
28/4/2012 23:34:49, error: System Error [1003] - 錯誤碼 00000019,parameter1 00000020,parameter2 8883e9e0,parameter3 8883edf8,parameter4 1a830001。
28/4/2012 23:34:15, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
28/4/2012 23:34:13, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
28/4/2012 23:32:49, error: Service Control Manager [7023] - Help and Support 服務因下列錯誤而終止: 找不到指定的模組。
28/4/2012 23:15:35, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
28/4/2012 23:15:33, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
28/4/2012 23:14:11, error: Service Control Manager [7023] - Help and Support 服務因下列錯誤而終止: 找不到指定的模組。
28/4/2012 10:32:21, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
28/4/2012 10:32:19, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
28/4/2012 10:30:56, error: Service Control Manager [7023] - Help and Support 服務因下列錯誤而終止: 找不到指定的模組。
28/4/2012 10:29:36, error: DCOM [10005] - DCOM 遇到錯誤 "%1084",是當嘗試啟動服務 EventSystem 而引數為 "", 為了執行伺服器: {1BE1F766-5536-11D1-B726-00C04FB926AF} 之時
27/4/2012 7:19:16, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
27/4/2012 7:19:14, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
27/4/2012 22:59:34, error: sr - 系統還原篩選器在磁碟區 HarddiskVolume1 處理檔案 時遇到意外錯誤 0xC0000001。系統還原已經停止監視磁碟區。
27/4/2012 21:26:47, error: Windows Update Agent [20] - 安裝失敗: Windows 無法安裝下列更新,錯誤 0x80246007: Microsoft Office 2010 (KB2598039) 32 位元版本 的安全性更新。
27/4/2012 19:56:15, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
27/4/2012 19:56:13, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
27/4/2012 14:44:56, error: IPRIP [29053] - IPRIP 無法在 IP 位址 192.168.60.88 的本機介面上加入多點 傳送群組 224.0.0.9。資料是錯誤碼。
26/4/2012 9:09:22, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
26/4/2012 9:09:20, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
26/4/2012 6:36:13, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
26/4/2012 6:36:11, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
26/4/2012 20:32:37, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
26/4/2012 20:32:35, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
26/4/2012 12:36:49, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
26/4/2012 12:36:47, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
25/4/2012 9:38:55, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
25/4/2012 9:38:53, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
25/4/2012 6:41:13, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
25/4/2012 6:41:11, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
25/4/2012 11:20:26, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
25/4/2012 11:20:24, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
24/4/2012 9:31:35, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
24/4/2012 9:31:33, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
24/4/2012 17:27:32, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
24/4/2012 17:27:30, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
23/4/2012 21:41:40, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
23/4/2012 21:41:38, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
23/4/2012 14:04:05, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
23/4/2012 14:04:03, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
23/4/2012 10:19:38, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
23/4/2012 10:19:36, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
22/4/2012 8:12:38, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
22/4/2012 8:12:36, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
22/4/2012 18:16:13, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
22/4/2012 18:16:11, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
22/4/2012 11:53:34, error: Service Control Manager [7022] - Windows Image Acquisition (WIA) 服務在啟動時暫停。
22/4/2012 11:53:32, error: Service Control Manager [7022] - Autodesk Content Service 服務在啟動時暫停。
.
==== End Of File ===========================
-->