1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Computer problems, freezes, performance getting worse...

Discussion in 'Hardware' started by JonziB, Jun 5, 2011.

Thread Status:
Not open for further replies.
Advertisement
  1. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    Hello, I'm new to the forums so I'm not sure if this is the right place for this. I decided to Sign Up here and ask because I'm tired of trying to google my problem, but I usually trusted this website the most because people here gave the most solid results.

    I'm going to start posting my computer specs and then tell you how this problem developed and what is going on now.

    Tech Support Guy System Info Utility version 1.0.0.1
    OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
    Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+, x86 Family 15 Model 67 Stepping 3
    Processor Count: 2
    RAM: 3071 Mb
    Graphics Card: NVIDIA GeForce 8800 GT , 512 Mb
    Hard Drives: C: Total - 381543 MB, Free - 280535 MB;
    Motherboard: MICRO-STAR INTERNATIONAL CO.,LTD, MS-7388, 1.0, To be filled by O.E.M.
    Antivirus: avast! Antivirus, Updated: No, On-Demand Scanner: Enabled

    So, I've had 4 PC computers. First one was a bad computer from 1998-2000 that I got from my dad, then I bought a really good gaming computer, degraded and had a bad computer and then I upgraded again and bought this one, it was used.
    I know a man that works with computers a lot, fixing basic issues and putting up operating system and so on.

    When I got this computer first it didn't have any operating system and I asked him to put up Windows XP and he did that for me. He told me he has worked on a lot of good computers and he had never put up a system on this good computer and everything he tried happened really quickly. He told me it usually takes him about a day to put up operating system but with this one it took about an hour.
    Then I got the computer back the day after and it wasn't performing well, it wasn't a big issue because one of the RAM was loose in the computer. I had to take off some dust in the computer so I bought compressed air and used it on all the stuff in the computer, mostly the Graphics Card and the fans because it was making a lot of noise in games, now it doesn't make a lot of noise.

    But another problem came up, my SATA hard drives are not really solid. My local disc is always up and doesn't disappear but my other hard drive called New Disc or something like that (the second hard drive) is always either disappearing or not being found when I run the computer, sometimes it does but usually it doesn't. I've tried putting the plugs in other plugs in the motherboard but it might work for a day if I try for 10 minutes.

    Then another problem is coming up, my computer sometimes freezes. I play Football Manager 11 often when I'm in the computer and I'm always listening to music at youtube/iTunes. It shouldn't be a problem for my computer to handle, but sometimes it is. Out of nowhere the computer freezes and the noise also freezes and just repeats the part of the song it was only 1000x faster.

    I've tried searching for registry cleaners but many people said it was unsafe but I still downloaded CCleaner but only used it on internet history and recently used documents. I've also looked at what people think about PC Health Advisor and Tune Up Utilities and most of them say it's a scam for them to get money and it doesn't really do anything.

    I was thinking if the geniuses here could tell me what I should try, I'm a 'noob' in all problems like that. I'd appreciate it if someone could help me out here, this thread is going to my favorites and I'm going to be checking this often to look for replies.

    Thanks in advance.

    EDIT:

    And my computer isn't as fast as it used to be, it can take up to 3 minutes to start the computer up and then 1-2 minutes to wait for the startup programs to come up. In the startup programs I think Steam takes the most time to load.
     
  2. Sponsor

  3. crjdriver

    crjdriver Moderator

    Joined:
    Jan 2, 2001
    Messages:
    37,029
    A modern system is going to install an os in under an hour. To state
    There is something wrong. As an example when I clean install win7 enterprise on my system, it takes all of 20min or so [amd 965 with ssd system drive]

    Your drive not showing up can be a bad cable, poor pw connection, failing drive or a failing controller on the mb. First try reseating both the data and pw connectors. See if that fixes the problem. If not, download and run the drive maker's utility for testing the drive. Do the long or full test of the drive.

    Next post the exact pw supply you have installed; ie brand and wattage.

    Have you checked your temps and voltages? If not, do so. Specifically the cpu temp, system temp, 12V, 5V, and 3.3V values. This info is available in the bios or you can install hwmonitor
     
  4. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    Thanks, about the OS I'm not sure if it was a day but it was quick, I know this isn't a super-computer.

    I'm sorry but I have no idea what a 'poor pw connection' is or how to do these things you asked me to do, if you could explain it better it would be great! :)

    Results from hwmonitor:
    [​IMG]
     
  5. crjdriver

    crjdriver Moderator

    Joined:
    Jan 2, 2001
    Messages:
    37,029
    Ops I gave you a bad link. That is the pro version and you installed as a trial that is why it does not show 12V along with other things. Uninstall that and get the free version of hwmonitor; install that and repost.

    Next reseat means just that; pull the connector OFF and put it back on. While it is OFF, take a look for any bent pins, etc. Make sure system is OFF when you do this task.

    As for the pw supply, open the case and look. The pw supply should have a label with the brand name and wattage rating ie antec 500W or whatever.
     
  6. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    Ok thanks, I've downloaded the other one. I always have the case open if that changes anything.

    I'm going to post the results from this one and then I'm going to turn the computer off and do check for bent pins and replug everything in the power supply.

    [​IMG]
     
  7. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    I finished unplugging and replugging and nothing has changed, but one thing I saw was that one plug in the power supply that connects to the DVD/CD Drive is missing one of those 'golden plug' inside the plug, it splits into 5 different plugs and one of them to the far left is missing it but that doesn't affect the DVD/CD Drive and it still works.
     
  8. crjdriver

    crjdriver Moderator

    Joined:
    Jan 2, 2001
    Messages:
    37,029
    Your temps and voltages look ok to me. Since your system is running slowly, I would post a hijack log so a security person can check it for you.

    In addition to the hijack log, download and run memtest. This runs from bootable media that you make with the iso file. Let memtest run for at least 2~3hr to see if you have any errors.

    http://free.antivirus.com/hijackthis/
    http://www.memtest.org/
     
  9. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    Ok, I'll post the hijack log but I can't figure out how the memtest works.

    Hijack Log ~


    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 21:11:32, on 5.6.2011
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\AVAST Software\Avast\avastUI.exe
    C:\WINDOWS\tsnpstd3.exe
    C:\WINDOWS\FixCamera.exe
    C:\WINDOWS\vsnpstd3.exe
    C:\Program Files\Steam\steam.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\WINDOWS\System32\msiexec.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://intraweb.decode.is/
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 172.*;seroom.decode.is;*.local
    O1 - Hosts: 78.47.251.150 easyanticheat.se # misleading site
    O1 - Hosts: 78.47.251.150 www.easyanticheat.se # misleading site
    O1 - Hosts: 78.47.251.150 easyanticheat.com # misleading site
    O1 - Hosts: 78.47.251.150 www.easyanticheat.com # misleading site
    O1 - Hosts: 78.47.251.150 easyanticheat.org # misleading site
    O1 - Hosts: 78.47.251.150 www.easyanticheat.org # misleading site
    O2 - BHO: vShare Toolbar - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: vShare Toolbar - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
    O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
    O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
    O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
    O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: ClickPotato - {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O14 - IERESET.INF: START_PAGE_URL=http://intraweb.decode.is/
    O15 - Trusted Zone: http://asia.msi.com.tw
    O15 - Trusted Zone: http://global.msi.com.tw
    O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

    --
    End of file - 8479 bytes
     
  10. crjdriver

    crjdriver Moderator

    Joined:
    Jan 2, 2001
    Messages:
    37,029
    You make the CD with the iso file. You need some type of burning software ie nero, cdburnerxp, imgburn, etc. Both cdburnerxp and imgburn are free downloads. I would recommend cdburnerxp since it is easier to use. Once you make the CD, restart the system with the CD in the drive [CD set as first boot device in the bios] memtest will run on its own.

    I will request a security person to check your log.
     
  11. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    110,068
    There are a few minor things but I doubt they are causing the problem.

    Open HijackThis and click on the Open Misc Tools section button. Click on the Open Uninstall Manager button. Click the Save List button. Save the list then copy and paste it here.


    Please download Malwarebytes' Anti-Malware from Here.

    Double Click mbam-setup.exe to install the application.
    • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select "Perform Quick Scan", then click Scan.
    • The scan may take some time to finish, so please be patient.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Make sure that everything is checked, and click Remove Selected.
    • When disinfection is completed, a log will open in Notepad and you may be prompted to restart. (See Extra Note)
    • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    • Copy and paste the entire report in your next reply.
    Extra Note:

    If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
     
  12. crjdriver

    crjdriver Moderator

    Joined:
    Jan 2, 2001
    Messages:
    37,029
    Thanks.

    Once you are done doing what was instructed above, run the memtest and post your results.
     
  13. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    110,068
    No problem crj. :)
     
  14. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    Thank you, I've done all that and I'll post the results here. But I can't get my hands on an empty CD until Friday - Sunday.

    Here is the uninstall list, few items I don't use at all and some I don't recognize but when I clicked it to see what it was it was a part of my graphic card driver or the driver.

    Uninstall list:


    ĀµTorrent
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader X (10.0.1)
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Assassin's Creed Brotherhood
    avast! Free Antivirus
    Bonjour
    BudgetIII Web camera
    Carambis Driver Updater
    CCleaner
    CDDRV_Installer
    Counter-Strike
    Counter-Strike: Source
    CPUID HWMonitor 1.17
    Crypto Budget Web Camera
    DivX Setup
    Doxillion Document Converter
    Dragon Age: Origins
    erLT
    ESL Wire 1.9.4
    Football Manager 2011
    Full Tilt Poker
    HiJackThis
    iTunes
    Java(TM) 6 Update 24
    KhalInstallWrapper
    Logitech SetPoint
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Extended
    Microsoft .NET Framework 4 Extended
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
    Microsoft Office Access MUI (English) 2007
    Microsoft Office Access Setup Metadata MUI (English) 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Groove MUI (English) 2007
    Microsoft Office Groove Setup Metadata MUI (English) 2007
    Microsoft Office InfoPath MUI (English) 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Publisher MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Microsoft WSE 3.0 Runtime
    mIRC
    MixPad Audio Mixer
    Mount&Blade Warband
    Mozilla Firefox (3.6.13)
    Mumble and Murmur
    NVIDIA Graphics Driver 260.99
    NVIDIA nView 135.36
    NVIDIA nView Desktop Manager
    NVIDIA PhysX
    Oblivion
    Oblivion - Horse Armor Pack
    Oblivion - Knights of the Nine
    Oblivion - Mehrunes Razor
    Oblivion - Orrery
    Oblivion - Spell Tomes
    Oblivion - Thieves Den
    Oblivion - Vile Lair
    Oblivion - Wizard's Tower
    PokerStars
    PunkBuster Services
    QuickTime
    Razer Imperator
    Razer Imperator Firmware Updater
    REALTEK GbE & FE Ethernet PCI-E NIC Driver
    Realtek High Definition Audio Driver
    Skype™ 5.3
    SopCast 3.2.9
    Steam
    Swords and Sandals Full Pack
    System Requirements Lab CYRI
    TeamSpeak 3 Client
    The Sims Medieval
    The Sims™ 3
    Ubisoft Game Launcher
    VC80CRTRedist - 8.0.50727.4053
    Veetle TV 0.9.18
    Ventrilo Client
    VentriloMIX
    VLC media player 1.1.5
    vShare Plugin
    WavePad Sound Editor
    Windows XP Service Pack 3
    WinRAR 4.00 beta 2 (32-bit)
    X-ray Anti-Cheat

    Here is the Malware List, it had 23 problems and asked me to restart after that and I did. It had no problems removing them. The scan was surprisingly quick.

    Malware List:

    Malwarebytes' Anti-Malware 1.50.1.1100
    www.malwarebytes.org

    Database version: 6795

    Windows 5.1.2600 Service Pack 3
    Internet Explorer 6.0.2900.5512

    7.6.2011 10:27:32
    mbam-log-2011-06-07 (10-27-32).txt

    Scan type: Quick scan
    Objects scanned: 158329
    Time elapsed: 3 minute(s), 16 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 24
    Registry Values Infected: 2
    Registry Data Items Infected: 3
    Folders Infected: 3
    Files Infected: 6

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    HKEY_CLASSES_ROOT\CLSID\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\TypeLib\{C55CA95C-324B-451c-B2D2-6E895AA75FEC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\ClickPotatoLiteAX.info.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\ClickPotatoLiteAX.info (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4C08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{7A3D6D17-9DD5-4C60-8076-D1784DABAF8C} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\TypeLib\{814BAA91-DC22-4350-87D6-0C86E93F7F08} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\CLSID\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\MenuButtonIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\Software\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\conime.exe (Security.Hijack) -> Quarantined and deleted successfully.

    Registry Values Infected:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.

    Registry Data Items Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore\DisableConfig (Windows.Tool.Disabled) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Folders Infected:
    c:\documents and settings\all users\application data\2aca5cc3-0f83-453d-a079-1076fe1a8b65 (Adware.Seekmo) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\documents and settings\jobbi\application data\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.

    Files Infected:
    c:\documents and settings\jobbi\my documents\downloads\xvidsetup.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesa.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaabout.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaau.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaeula.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
    c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesa_kyf.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
     
  15. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    110,068
    Did you install mIRC? Because sometimes it gets installed without your knowledge by malware. If that's the case, you should be able to uninstall it via the Control Panel - Add or Remove programs.

    Please visit Combofix Guide & Instructions for instructions for installing the recovery console and downloading and running ComboFix.

    The only thing different from the instructions there is that when downloading and saving the ComboFix.exe I would like you to rename it to puppy.exe please.

    Post the log from ComboFix when you've accomplished that along with a new HijackThis log.

    Important notes regarding ComboFix:

    ComboFix may reset a number of Internet Explorer's settings, including making it the default browser. This can easily be changed once we're finished.

    ComboFix also prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you, please let me know. This can be undone manually when we're finished. Read HERE for an article written by dvk01 on why we disable autoruns.
     
  16. JonziB

    JonziB Thread Starter

    Joined:
    Jun 5, 2011
    Messages:
    10
    I installed mIRC, used to play Counter-Strike: Source a lot and used that to find matches.

    I finished using ComboFix, it didn't give me the option to save it as "name" so I renamed the ComboFix.exe to puppy.exe, I don't know if that makes a difference. No problem with the Internet Explorer, I use Google Chrome and only had to put it as my default browser again. After this scan should I delete ComboFix?

    Combofix Results:

    ComboFix 11-06-06.07 - jobbi 07.06.2011 18:10:42.1.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.354.1033.18.3071.2595 [GMT 1:00]
    Running from: c:\documents and settings\jobbi\Desktop\puppy.exe
    AV: avast! Antivirus *Disabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    * Created a new restore point
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\jobbi\Application Data\PriceGong
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\1.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\a.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\b.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\c.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\d.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\e.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\f.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\g.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\h.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\i.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\J.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\k.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\l.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\m.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\mru.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\n.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\o.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\p.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\q.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\r.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\s.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\t.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\u.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\v.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\w.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\x.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\y.xml
    c:\documents and settings\jobbi\Application Data\PriceGong\Data\z.xml
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-05-07 to 2011-06-07 )))))))))))))))))))))))))))))))
    .
    .
    2011-06-07 16:52 . 2011-06-07 16:52 -------- d-----w- C:\puppy
    2011-06-07 16:45 . 2011-06-07 17:05 -------- d-----w- C:\ComboFix
    2011-06-07 09:23 . 2011-06-07 09:23 -------- d-----w- c:\documents and settings\jobbi\Application Data\Malwarebytes
    2011-06-07 09:22 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-06-07 09:22 . 2011-06-07 09:22 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
    2011-06-07 09:22 . 2011-06-07 09:22 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    2011-06-07 09:22 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-06-05 20:02 . 2011-06-05 20:02 388096 ----a-r- c:\documents and settings\jobbi\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-06-05 20:01 . 2011-06-05 20:01 -------- d-----w- c:\program files\Trend Micro
    2011-06-05 16:49 . 2010-11-09 13:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x32.sys
    2011-06-05 16:24 . 2011-06-05 16:49 -------- d-----w- c:\program files\CPUID
    2011-06-05 14:44 . 2011-06-05 14:44 -------- d-----w- c:\program files\CCleaner
    2011-06-05 02:51 . 2011-06-05 02:51 -------- d-----w- c:\documents and settings\jobbi\Application Data\DriverCure
    2011-06-05 02:51 . 2011-06-05 02:51 -------- d-----w- c:\documents and settings\jobbi\Application Data\ParetoLogic
    2011-06-05 02:51 . 2011-06-05 02:56 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
    2011-05-28 20:23 . 2011-05-28 20:23 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
    2011-05-27 14:06 . 2009-04-24 08:18 10472960 ----a-w- c:\windows\system32\drivers\snpstd3.sys
    2011-05-26 22:08 . 2008-04-14 04:42 91136 ----a-w- c:\windows\system32\kswdmcap.ax
    2011-05-26 22:08 . 2008-04-14 04:42 61952 ----a-w- c:\windows\system32\kstvtune.ax
    2011-05-26 22:08 . 2008-04-14 04:42 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
    2011-05-26 22:08 . 2008-04-14 04:42 53760 ----a-w- c:\windows\system32\vfwwdm32.dll
    2011-05-26 22:08 . 2008-04-14 04:42 43008 ----a-w- c:\windows\system32\ksxbar.ax
    2011-05-26 22:07 . 2009-04-24 10:21 360448 ----a-w- c:\windows\tsnpstd3.exe
    2011-05-26 22:07 . 2007-09-06 15:56 98304 ----a-w- c:\windows\amcap.exe
    2011-05-26 22:07 . 2007-07-11 15:09 20480 ----a-w- c:\windows\FixCamera.exe
    2011-05-26 22:07 . 2007-05-10 12:18 835584 ----a-w- c:\windows\vsnpstd3.exe
    2011-05-26 22:07 . 2011-05-27 14:06 -------- d-----w- c:\program files\Common Files\snpstd3
    2011-05-26 22:07 . 2008-04-09 13:30 61440 ----a-w- c:\windows\system32\vsnpstd3.dll
    2011-05-26 22:07 . 2008-02-21 16:15 3968 ----a-w- c:\windows\system32\drivers\DeNoise.sys
    2011-05-26 22:07 . 2007-12-19 09:31 163840 ----a-w- c:\windows\system32\rsnpstd3.dll
    2011-05-26 22:07 . 2005-11-23 12:55 53248 ----a-w- c:\windows\system32\csnpstd3.dll
    2011-05-26 22:07 . 2005-11-23 12:55 53248 ----a-w- c:\windows\csnpstd3.dll
    2011-05-26 22:07 . 2011-05-26 22:07 -------- d-----w- c:\documents and settings\jobbi\Application Data\InstallShield
    2011-05-26 21:58 . 2011-05-26 21:58 -------- d-----w- c:\windows\Setup2K
    2011-05-26 21:58 . 2001-09-05 02:18 225280 ------w- c:\program files\Common Files\InstallShield\IScript\IScript.dll
    2011-05-26 21:58 . 2003-08-05 10:41 53248 ----a-w- c:\windows\ap561.exe
    2011-05-26 21:58 . 2002-11-22 14:56 118784 ----a-w- c:\windows\ShowBmp.exe
    2011-05-26 21:58 . 2002-10-01 13:43 119798 ----a-w- c:\windows\system32\drivers\spca561.sys
    2011-05-26 21:58 . 2002-09-20 18:44 14336 ----a-w- c:\windows\system32\dshow508.ax
    2011-05-26 21:58 . 2001-09-05 02:18 77824 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ctor.dll
    2011-05-26 21:58 . 2001-09-05 02:14 176128 ------w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
    2011-05-26 21:58 . 2001-09-05 02:13 32768 ------w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
    2011-05-26 21:57 . 2000-01-04 05:39 212992 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\ILog.dll
    2011-05-26 21:57 . 2002-07-25 15:07 614532 ----a-w- c:\program files\Common Files\InstallShield\engine\6\Intel 32\IKernel.exe
    2011-05-25 18:48 . 2011-05-26 09:17 -------- d-----w- c:\documents and settings\jobbi\Application Data\Apple Computer
    2011-05-25 18:48 . 2009-05-18 12:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
    2011-05-25 18:48 . 2008-04-17 11:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
    2011-05-25 18:46 . 2011-05-25 18:46 -------- d-----w- c:\program files\Bonjour
    2011-05-25 18:46 . 2011-05-25 18:47 -------- d-----w- c:\program files\Common Files\Apple
    2011-05-25 18:46 . 2011-05-25 18:46 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple
    2011-05-25 18:46 . 2011-05-25 18:48 -------- d-----w- c:\documents and settings\jobbi\Local Settings\Application Data\Apple Computer
    2011-05-23 15:33 . 2011-06-03 20:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype Extras
    2011-05-23 15:33 . 2011-05-23 15:33 -------- d-----w- c:\program files\Common Files\Skype
    2011-05-22 13:08 . 2011-05-22 13:08 -------- d-----w- C:\BraCa Soft
    2011-05-16 19:44 . 2011-06-05 01:32 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-06-05 16:29 . 2002-08-29 03:41 6656 ----a-w- c:\windows\system32\lpcio.dll
    2011-04-18 17:25 . 2011-05-01 21:32 40112 ----a-w- c:\windows\avastSS.scr
    2011-04-18 17:25 . 2011-05-01 21:32 199304 ----a-w- c:\windows\system32\aswBoot.exe
    2011-04-18 17:17 . 2011-05-01 21:33 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-04-18 17:17 . 2011-05-01 21:33 307288 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2011-04-18 17:16 . 2011-05-01 21:33 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2011-04-18 17:16 . 2011-05-01 21:33 102488 ----a-w- c:\windows\system32\drivers\aswmon2.sys
    2011-04-18 17:16 . 2011-05-01 21:33 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys
    2011-04-18 17:13 . 2011-05-01 21:33 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2011-04-18 17:13 . 2011-05-01 21:33 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys
    2011-04-18 17:12 . 2011-05-01 21:33 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2011-04-06 15:20 . 2011-04-06 15:20 91424 ----a-w- c:\windows\system32\dnssd.dll
    2011-04-06 15:20 . 2011-04-06 15:20 75040 ----a-w- c:\windows\system32\jdns_sd.dll
    2011-04-06 15:20 . 2011-04-06 15:20 197920 ----a-w- c:\windows\system32\dnssdX.dll
    2011-04-06 15:20 . 2011-04-06 15:20 107808 ----a-w- c:\windows\system32\dns-sd.exe
    2011-03-18 21:17 . 2011-03-18 21:17 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
    2011-03-18 21:17 . 2011-03-18 21:17 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2011-04-18 17:25 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Steam"="c:\program files\Steam\steam.exe" [2010-12-08 1242448]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2009-10-30 369200]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-10-16 13851752]
    "RTHDCPL"="RTHDCPL.EXE" [2010-12-07 19556968]
    "nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2010-08-26 1753192]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-10-16 110696]
    "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
    "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2011-01-30 35736]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-04-18 3460784]
    "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
    "tsnpstd3"="c:\windows\tsnpstd3.exe" [2009-04-24 360448]
    "FixCamera"="c:\windows\FixCamera.exe" [2007-07-11 20480]
    "snpstd3"="c:\windows\vsnpstd3.exe" [2007-05-10 835584]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\jobbi\Start Menu\Programs\Startup\
    OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
    .
    c:\documents and settings\All Users\Start Menu\Programs\Startup\
    Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-3-3 813584]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
    2009-07-20 12:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
    @=""
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\conime]
    2008-04-14 05:42 27648 ----a-w- c:\windows\system32\conime.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2010-09-16 20:04 1164584 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ESL Wire]
    2011-01-26 11:17 2577408 ----a-w- c:\program files\EslWire\wire.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
    2010-12-08 12:49 136176 ----atw- c:\documents and settings\jobbi\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
    2011-04-27 00:22 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Razer Imperator Driver]
    2010-09-07 14:15 2787224 ----a-w- c:\program files\Razer\Imperator\RazerImperatorTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusOverride"=dword:00000001
    "FirewallOverride"=dword:00000001
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Steam\\Steam.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
    "c:\\Program Files\\Dragon Age\\bin_ship\\daorigins.exe"=
    "c:\\Program Files\\Dragon Age\\DAOriginsLauncher.exe"=
    "c:\\Program Files\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
    "c:\\Program Files\\EslWire\\wire.exe"=
    "c:\\Program Files\\Ventrilo\\Ventrilo.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
    "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
    "c:\\Program Files\\Steam\\steamapps\\common\\football manager 2011\\fm.exe"=
    "c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
    "c:\\WINDOWS\\system32\\PnkBstrA.exe"=
    "c:\\WINDOWS\\system32\\PnkBstrB.exe"=
    "c:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBSP.exe"=
    "c:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\ACBMP.exe"=
    "c:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\AssassinsCreedBrotherhood.exe"=
    "c:\\Program Files\\Ubisoft\\Assassin's Creed Brotherhood\\UPlayBrowser.exe"=
    "c:\\Program Files\\Steam\\steamapps\\jonbragi\\counter-strike\\hl.exe"=
    "c:\\Program Files\\Skype\\Phone\\Skype.exe"=
    "c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
    "c:\\Program Files\\iTunes\\iTunes.exe"=
    "c:\\Program Files\\Steam\\steamapps\\jonbragi\\counter-strike source\\hl2.exe"=
    .
    R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2/20/2011 1:00 AM 691696]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [5/1/2011 10:33 PM 441176]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [5/1/2011 10:33 PM 307288]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5/1/2011 10:33 PM 19544]
    R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [6/5/2011 5:49 PM 21992]
    R2 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys [1/2/2011 5:51 PM 841912]
    R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [3/3/2011 5:42 PM 10384]
    R3 ESLvnic1;ESLvnic Virtual Network 32 Bit;c:\windows\system32\drivers\ESLvnic.sys [1/2/2011 5:51 PM 24504]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 2:16 PM 130384]
    S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [12/7/2010 1:38 AM 1691480]
    S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;c:\program files\Dragon Age\bin_ship\daupdatersvc.service.exe [12/24/2010 10:58 PM 25832]
    S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys --> c:\windows\system32\DRIVERS\ewusbnet.sys [?]
    S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys --> c:\windows\system32\DRIVERS\ewusbdev.sys [?]
    S3 MSI_DVD_010507;MSI_DVD_010507;c:\progra~1\MSI\MSIWDev\DVDSYS32_100507.sys [5/10/2010 11:44 AM 22328]
    S3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\progra~1\MSI\MSIWDev\msibios32_100507.sys [5/10/2010 11:44 AM 25912]
    S3 MSI_VGASYS_010507;MSI_VGASYS_010507;c:\progra~1\MSI\MSIWDev\VGASYS32_100507.sys [5/10/2010 11:44 AM 16696]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 2:16 PM 753504]
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2011-05-28 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 10:50]
    .
    2011-04-06 c:\windows\Tasks\doxillionShakeIcon.job
    - c:\program files\NCH Software\Doxillion\doxillion.exe [2011-04-06 16:25]
    .
    2011-06-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1645522239-562591055-839522115-1003Core.job
    - c:\documents and settings\jobbi\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-08 12:49]
    .
    2011-06-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1645522239-562591055-839522115-1003UA.job
    - c:\documents and settings\jobbi\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-08 12:49]
    .
    2011-03-08 c:\windows\Tasks\mixpadShakeIcon.job
    - c:\program files\NCH Swift Sound\MixPad\mixpad.exe [2011-03-05 23:46]
    .
    2011-03-08 c:\windows\Tasks\wavepadShakeIcon.job
    - c:\program files\NCH Swift Sound\WavePad\wavepad.exe [2011-03-05 23:47]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://vshare.toolbarhome.com/?hp=df
    uInternet Settings,ProxyOverride = 172.*;seroom.decode.is;*.local
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    Trusted Zone: com\www.msi
    Trusted Zone: com.tw\asia.msi
    Trusted Zone: com.tw\global.msi
    TCP: DhcpNameServer = 192.168.1.254
    DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
    DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
    FF - ProfilePath - c:\documents and settings\jobbi\Application Data\Mozilla\Firefox\Profiles\ynxwt6sm.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.liverpool.is
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
    FF - Ext: Java Quick Starter: [email protected] - c:\program files\Java\jre6\lib\deploy\jqs\ff
    FF - Ext: avast! WebRep: [email protected] - c:\program files\AVAST Software\Avast\WebRep\FF
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2011-06-07 18:16
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scanning hidden processes ...
    .
    scanning hidden autostart entries ...
    .
    scanning hidden files ...
    .
    scan completed successfully
    hidden files: 0
    .
    **************************************************************************

    --------------------- DLLs Loaded Under Running Processes ---------------------
    .
    - - - - - - - > 'winlogon.exe'(1208)
    c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
    c:\program files\common files\logishrd\bluetooth\LBTServ.dll
    c:\windows\system32\COMRes.dll
    c:\windows\system32\CLBCATQ.DLL
    .
    Completion time: 2011-06-07 18:19:51
    ComboFix-quarantined-files.txt 2011-06-07 17:19
    .
    Pre-Run: 298.873.929.728 bytes free
    Post-Run: 301.087.137.792 bytes free
    .
    WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    UnsupportedDebug="do not select this" /debug
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn
    .
    - - End Of File - - 73996D3E3AF2243193FEB022052477E9

    And the new HiJack log:

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 18:25:55, on 7.6.2011
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\AVAST Software\Avast\avastUI.exe
    C:\WINDOWS\tsnpstd3.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\explorer.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Documents and Settings\jobbi\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://vshare.toolbarhome.com/?hp=df
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 172.*;seroom.decode.is;*.local
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
    O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
    O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
    O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\steam.exe" -silent
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O14 - IERESET.INF: START_PAGE_URL=http://intraweb.decode.is/
    O15 - Trusted Zone: http://asia.msi.com.tw
    O15 - Trusted Zone: http://global.msi.com.tw
    O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - (no file)
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - C:\Program Files\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

    --
    End of file - 7226 bytes
     
  17. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1000672

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice