Print Page - Just Checking

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:00:41 PM, on 4/14/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\VMSnap3.EXE
C:\WINDOWS\Domino.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
D:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\DAP\DAP.EXE
D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MICROS~2\Office12\WINWORD.EXE
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\VideoLAN\VLC\vlc.exe
D:\Local Disk (D)\Stardock Window Blinds 6.3 Final + Crack\Arjuna Das F Guevara.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ (http://\"http://www.yahoo.com/\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html (http://\"http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TrojanScanner] E:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [EPSON Stylus T10 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SF5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus T10 Series (Copy 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SC2C.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Tunebite] E:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
O4 - Startup: Registration Assassin's Creed.LNK = E:\Program Files\Ubisoft\Assassin's Creed\Register\RegistrationReminder.exe
O4 - Startup: Stardock ObjectDock.lnk = D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7425 bytes

Hey, this my latest Log file, can you check if there's something wrong? because just now before I post this, my system clock automatically rolled back to January 2002 and it disabled some of my programs like my antivirus but I set it back to the real time and reinstalled my antivirus program and everything's fine again..I just want to check..^^

What are you checking about>?
I see the following
D:\Local Disk (D)\Stardock Window Blinds 6.3 Final + Crack\Arjuna Das F Guevara.exe

Are you in the habit of installing illegal software, not sure If I can even help here, your probably infected or will be in the near future, good luck with your indeavors?
I'm not even sure if you need a hand????

Checking if there is something wrong..
How do you define illegal? If, for example, I downloaded feeding frenzy with its corresponding crack is illegal, then I' am in the habit of installing illegal software..anyways, if you don't see any problems then ok..like I said,Just checking..^^..tnx for the time..

No, I don't see anything wrong in the log, are you experiencing any problems?

Besides the automatic and mysterious roll back of my system clock?Yesterday, while I was chatting with my friend, the monitor suddenly flashed a blue screen with some words that is in the same format in bios, it flashed for about half a second so I was not able to read it then it automatically restarted.
What's that all about?

/ohmy.gif\' class=\'bbc_emoticon\' alt=\':o\' />

Let's try the following
Download [color=\"blue\"]random's system information tool (RSIT)[/color] by [color=\"#6600cc\"]random/random[/color] from >>[color=\"red\"]here[/color]<< (http://\"http://images.malwareremoval.com/random/RSIT.exe\") and save it to your desktop.

Double click on RSIT.exe and choose to Run it
Click Continue at the disclaimer screen.
Your firewall may alert you that RSIT is requesting Internet access. Please allow it.
Once it has finished, two logs will open: log.txt[color=\"red\"]<-- this will be maximized[/color] and info.txt[color=\"red\"]<-- this will be minimized[/color].

Post both those logs please

NOTE: If you get an error message trying to post the logs back here to the forum
Just post info.txt back here
And upload log.txt

In addition:
Right click on MyComputer>>Left click PROPERTIES>>ADVANCED>>SETTINGS (Under Startup and Recovery)
Under SYSTEM FAILURE, Untick Automatically Restart
Ok out of there

Next time, instead of restarting, it may Blue screen with an error message
Post that error message back

info.txt logfile of random's system information tool 1.06 2009-03-22 22:02:18

======Uninstall list======

-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->MsiExec /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.65-->"D:\Program Files\7-Zip\Uninstall.exe"
A4 TECH PC Camera H-->C:\Program Files\InstallShield Installation Information\{CE3B8E96-B0AF-4871-9178-1519B58E3A93}\setup.exe -runfromtemp -l0x0009 -removeonly
Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
Apple Mobile Device Support-->MsiExec.exe /I{EC4455AB-F155-4CC1-A4C5-88F3777F9886}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Assassin's Creed-->C:\Program Files\InstallShield Installation Information\{8CFA9151-6404-409A-AF22-4632D04582FD}\setup.exe -runfromtemp -l0x0009 -removeonly
AviSynth 2.5-->"C:\Program Files\AviSynth 2.5\Uninstall.exe"
Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{42EDF895-158C-484E-A7F2-42B90759F281}\SETUP.EXE" -l0x9 UNINST
ccff7_screensaver-->C:\WINDOWS\system32\ccff7_screensaver.scr /u
CDCheck-->"D:\Program Files\CDCheck\uninst.exe"
Cooking Dash-->"E:\Program Files\Cooking Dash\ReflexiveArcade\unins000.exe"
Diner Dash - Hometown Hero-->E:\Program Files\Uninstal.exe
Diner Dash 2 Free Trial-->"E:\Program Files\DinerDash2_at\unins000.exe"
Diner Dash Flo On The Go-->"E:\Program Files\Diner Dash Flo On The Go\ReflexiveArcade\unins000.exe"
Diner Dash Free Trial-->"E:\Program Files\DinerDash_at\unins000.exe"
Download Accelerator Plus (DAP)-->C:\PROGRA~1\DAP\DAPREMOVE.EXE
EPSON Attach To Email-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A8F8391-4C2C-4BE1-A984-CD4A5A546467}\SETUP.EXE" -l0x9 UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{46CBBDF8-55B5-40DB-B459-7B848394309C}\Setup.exe" -l0x9 UNINST
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x9 -u
EPSON Stylus S20_T10_T20 Manual-->C:\Program Files\EPSON\TPMANUAL\ESS20_T10_T20\ENG\USE_G\DOCUNINS.EXE
EPSON Stylus T10 Series Printer Uninstall-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FINSEBS.EXE /R /APD /P:"EPSON Stylus T10 Series"
EPSON Web-To-Page-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}\SETUP.EXE" -l0x9 -anything
ESET Smart Security-->MsiExec.exe /I{FBF09842-EB7F-4BC2-BD32-DDE2572B2195}
Feeding Frenzy 2-->D:\PROGRA~1\GAMEHO~1\FEEDIN~1\UNWISE.EXE /U D:\PROGRA~1\GAMEHO~1\FEEDIN~1\INSTALL.LOG
Feeding Frenzy-->"D:\Program Files\Feeding Frenzy\ReflexiveArcade\unins000.exe"
Free Video to iPod Converter version 3.1-->"D:\Program Files\DVDVideoSoft\Free Video to iPod Converter\unins000.exe"
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Graboid Video 1.4-->E:\Program Files\Graboid\uninst.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"D:\Local Disk (D)\Stardock Window Blinds 6.3 Final + Crack\HijackThis.exe" /uninstall
Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB935448)-->"C:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Intel® Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
iTunes-->MsiExec.exe /I{F5C63795-2708-4D15-BF18-5ABBFF7DFFC8}
Java(tm) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(tm) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Left 4 Dead-->"C:\WINDOWS\Left 4 Dead\uninstall.exe" "/U:E:\Program Files\Left 4 Dead\Uninstall\uninstall.xml"
LimeWireTurbo-->D:\Program Files\LimeWireTurbo\uninstall.exe
Marvell Miniport Driver-->MsiExec.exe /X{C950420B-4182-49EA-850A-A6A2ABF06C6B}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Monopoly Here & Now Edition-->C:\PROGRA~1\GAMEHO~1\MONOPO~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\MONOPO~1\INSTALL.LOG
MOVAVI VideoSuite 3.5-->C:\Program Files\MOVAVI VideoSuite 3.5\uninst.exe
Mozilla ActiveX Control v1.7.12-->C:\Program Files\Mozilla ActiveX Control v1.7.12\uninst.exe
Mozilla Firefox (3.0.7)-->C:\program files\Mozilla Firefox\uninstall\helper.exe
Network Play System (Patching)-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Electronic Arts\Network Play System\NPSPatch.isu"
Nokia Connectivity Cable Driver-->RUNDLL32.EXE nsesetup.dll,DoNTUninst
NVIDIA Drivers-->C:\WINDOWS\system32\nvuninst.exe UninstallGUI
NVIDIA PhysX v8.09.04-->MsiExec.exe /X{A7E07C2B-2220-4415-87E3-784D5814BC93}
P2P_Energy Toolbar-->C:\PROGRA~1\P2P_EN~1\UNWISE.EXE C:\PROGRA~1\P2P_EN~1\INSTALL.LOG
PlayStation®Network Downloader-->MsiExec.exe /X{BC4CA8FA-41D2-4B81-8680-E9B7573D6500}
PlayStation®Store-->MsiExec.exe /X{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}
PSP Video 9 2.25-->E:\Program Files\Red Kawa\Video Converter\uninstaller.exe
QuickTime-->MsiExec.exe /I{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x9 -removeonly
Safari-->MsiExec.exe /I{D90AFDE3-3E67-407A-ACA8-F0BAAD012F08}
Sallys Spa-->"E:\Program Files\Sallys Spa\ReflexiveArcade\unins000.exe"
Security Update for Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Sony Media Manager for PSP 3.0-->MsiExec.exe /X{21C6344A-918B-4D35-ADB6-7614F97B78EA}
The Sims-->C:\WINDOWS\IsUninst.exe -f"D:\Program Files\Maxis\The Sims\Uninst.isu"
Trojan Remover 6.7.6-->"E:\Program Files\Trojan Remover\unins000.exe"
Uninstall 1.0.0.1-->"C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
Update for Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update for Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Vuze-->C:\Program Files\Vuze\uninstall.exe
WindowBlinds-->E:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\UNWISE.EXE E:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\INSTALL.LOG
Windows Essentials Media Codec Pack 1.0-->E:\Program Files\Essentials Codec Pack\uninst.exe
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Hotfix - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
WinRAR archiver-->D:\Program Files\WinRAR\uninstall.exe
Xvid 1.1.3 final uninstall-->"D:\Program Files\Xvid\unins000.exe"
Yahoo! Messenger-->C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE /U C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
Your Uninstaller! 2008 Version 6.0-->"D:\Program Files\Your Uninstaller 2008\unins000.exe"

======Security center information======

AV: ESET Smart Security 3.0
FW: ESET Personal firewall

======System event log======

Computer Name: EMILYGUEVARA
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 8194
Source Name: Tcpip
Time Written: 20090227175624.000000-480
Event Type: warning
User:

Computer Name: EMILYGUEVARA
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 8193
Source Name: Tcpip
Time Written: 20090227162538.000000-480
Event Type: warning
User:

Computer Name: EMILYGUEVARA
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 8192
Source Name: Tcpip
Time Written: 20090227154900.000000-480
Event Type: warning
User:

Computer Name: EMILYGUEVARA
Event Code: 1002
Message: The IP address lease 202.128.38.126 for the Network Card with network address 00E0B1055E04 has been
denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

Record Number: 8168
Source Name: Dhcp
Time Written: 20090227151841.000000-480
Event Type: error
User:

Computer Name: EMILYGUEVARA
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 8164
Source Name: Tcpip
Time Written: 20090227150130.000000-480
Event Type: warning
User:

=====Application event log=====

Computer Name: EMILYGUEVARA
Event Code: 1000
Message: Faulting application assassinscreed_dx9.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000057.

Record Number: 897
Source Name: Application Error
Time Written: 20090202200107.000000-480
Event Type: error
User:

Computer Name: EMILYGUEVARA
Event Code: 1000
Message: Faulting application assassinscreed_dx9.exe, version 1.0.0.1, faulting module assassinscreed_dx9.exe, version 1.0.0.1, fault address 0x003a0050.

Record Number: 896
Source Name: Application Error
Time Written: 20090202181417.000000-480
Event Type: error
User:

Computer Name: EMILYGUEVARA
Event Code: 1000
Message: Faulting application powerpnt.exe, version 12.0.4518.1014, stamp 45428035, faulting module kernel32.dll, version 5.1.2600.2180, stamp 411096b4, debug? 0, fault address 0x0001eb33.

Record Number: 895
Source Name: Microsoft Office 12
Time Written: 20090202065014.000000-480
Event Type: error
User:

Computer Name: EMILYGUEVARA
Event Code: 1000
Message: Faulting application assassinscreed_dx9.exe, version 1.0.0.1, faulting module assassinscreed_dx9.exe, version 1.0.0.1, fault address 0x003a0100.

Record Number: 891
Source Name: Application Error
Time Written: 20090201223826.000000-480
Event Type: error
User:

Computer Name: EMILYGUEVARA
Event Code: 1000
Message: Faulting application wmplayer.exe, version 9.0.0.3250, faulting module unknown, version 0.0.0.0, fault address 0x00197c03.

Record Number: 887
Source Name: Application Error
Time Written: 20090201160510.000000-480
Event Type: error
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

Did everything you said and here's the info.txt..but you said there's supposed to be 2 log files, but only the log.txt popped-up when RSIT was done scanning..There is an info.txt in the RSIT folder but I'm not sure about this because maybe this is from the last time..[attachment=4989:log.txt]

Has your computer blue screened yet, since you change the Auto restart setting?
If so, can you post back the error message please

Nope, not yet. I'll post it as soon as it occurs.

One thing I did notice from the RSIT logs, some files we removed when you were here earlier are back
However, they were renamed, and should be harmful, just concerned why they returned

Can you do the following:
Download Dr.Web CureIt to the desktop:
ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe (http://\"ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe\")

Temporarily disable your AntiVirus software so it won't interfere with this scan

Doubleclick the drweb-cureit.exe file and Allow to run the express scan
This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
Once the short scan has finished, mark the drives that you want to scan.
Select all drives. A red dot shows which drives have been chosen.
Click the green arrow at the right, and the scan will start.
Click 'Yes to all' if it asks if you want to cure/move the file.
When the scan has finished, look if you can click next icon next to the files found:(http://users.telenet.be/bluepatchy/miekiemoes/images/check.gif)
If so, click it and then click the next icon right below and select Move incurable as you'll see in next image:
(http://users.telenet.be/bluepatchy/miekiemoes/images/move.gif)
This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured.
After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list
Save the report to your desktop. The report will be called DrWeb.csv
Close Dr.Web Cureit.
Reboot your computer
After reboot, post the contents of the log from Dr.Web you saved previously in your next reply.

isn't there an alternative link? I can't download it. It always stop at 3.27mb.

Are you using DAP to download?
If so, can you directly download it bypassing DAP

Well, I was able to download it properly but when I try to run it, it always crashes and the "Don't Send" blah blah pops-up.. hmmm

Did you disable Nod32 before you ran it?
Will it run in safe mode?

RVHOST.exe.vir;C:\WINDOWS\system32;Win32.HLLW.Myweb.1;Incurable.Moved.;
vn.cmd.vir;C:\;Trojan.PWS.Wsgame.10150;Deleted.;
A0007069.cmd;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP18;Trojan.PWS.Wsgame.10150;Deleted.;
A0007079.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP18;Trojan.PWS.Wsgame.10522;Deleted.;
A0007082.cmd;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP19;Trojan.PWS.Wsgame.10150;Deleted.;
A0007093.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP19;Trojan.PWS.Wsgame.10522;Deleted.;
A0007094.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP19;Trojan.PWS.Wsgame.5960;Deleted.;
A0008098.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.5960;Deleted.;
A0008099.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.10522;Deleted.;
A0008102.cmd;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.10150;Deleted.;
A0008109.dll;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.5960;Deleted.;
A0008116.exe;C:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.10150;Deleted.;
trspack-1_0.exe\pskill.exe;D:\Local Disk (D)\trk3\trspack-1_0.exe;Tool.Prockill;;
trspack-1_0.exe;D:\Local Disk (D)\trk3;Archive contains infected objects;Moved.;
trsrun-1_0-nq.exe\pskill.exe;D:\Local Disk (D)\trk3\trsrun-1_0-nq.exe;Tool.Prockill;;
trsrun-1_0-nq.exe;D:\Local Disk (D)\trk3;Archive contains infected objects;Moved.;
trsrun-1_0.exe\pskill.exe;D:\Local Disk (D)\trk3\trsrun-1_0.exe;Tool.Prockill;;
trsrun-1_0.exe;D:\Local Disk (D)\trk3;Archive contains infected objects;Moved.;
youconv.exe;D:\Local Disk (E)\Installers;Trojan.Popuper.6374;Deleted.;
youconv.exe;D:\Local Disk (E)\Installers\youtube-convert_2.1;Trojan.Popuper.6374;Deleted.;
A0007071.cmd;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP18;Trojan.PWS.Wsgame.10150;Deleted.;
A0007084.cmd;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP19;Trojan.PWS.Wsgame.10150;Deleted.;
A0008198.cmd;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.10150;Deleted.;
A0009620.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP23;Trojan.Popuper.6374;Deleted.;
A0023605.exe\pskill.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34\A0023605.exe;Tool.Prockill;;
A0023605.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34;Archive contains infected objects;Moved.;
A0023606.exe\pskill.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34\A0023606.exe;Tool.Prockill;;
A0023606.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34;Archive contains infected objects;Moved.;
A0023607.exe\pskill.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34\A0023607.exe;Tool.Prockill;;
A0023607.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34;Archive contains infected objects;Moved.;
A0023608.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34;Trojan.Popuper.6374;Deleted.;
A0023609.exe;D:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP34;Trojan.Popuper.6374;Deleted.;
A0007073.cmd;E:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP18;Trojan.PWS.Wsgame.10150;Deleted.;
A0007086.cmd;E:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP19;Trojan.PWS.Wsgame.10150;Deleted.;
A0008209.cmd;E:\System Volume Information\_restore{9F29552D-A883-4023-B8CD-A1BE3D46855A}\RP20;Trojan.PWS.Wsgame.10150;Deleted.;

I was able to run it in safe mode and I followed every step, but I did not saw any of the images you put.
Here is the report list

How's the computer running?

I thought everything was fine now but while I was playing Gunbound, my pc suddenly crashed and even if I press the 'restart' button, it won't restart. I just turned off the AVR then I turned my computer on again. While in bios, an option prompted, but I just pressed F2 which said to run default settings. Then when I logged in to my windows, my system clock rolled back again. On December 21, 2001. Why is this happening?

How old is this computer?
When you shut down the power, the cmos battery should hold time/date
It may be getting weak and time for a replacement

The crashing while running your game is another issue
Do you have all latest drivers for Video/sound and motherboard?

It got weak that fast?This computer is just 4 months old. How does it weaken?

I think it's all up to date. How will I know if it's out of date?

The computer is only 4 months old?
What operating system came preinstalled on it?
Or did you build the computer yourself?

What's the Exact Make/model of your computer

In addition, go to Start > Run, type in
eventvwr.msc
and click OK. An Event Viewer window will display, and here you can highlight either Applications or System for a list of events that your system logs. Any entries with a red X Error shows failures of some kind. Double clicking those entries can give more information. They can be useful for troubleshooting.
Can you let me know if you are finding Red X errors, if so, what are they related too?

I built the computer myself and the Operating System is just a counterfeited Windows XP professional..

The motherboard is Emaxx, core 2 duo, I can't find the box but the "properties" on my computer says Intel® Pentium® Dual PC E2180 @ 2.00GHz. The Ram is originally just 1 gb but I bought an additional 2gb.

I got many Red X errors and most of them are on the "application" category, and on the system category there are many Red X errors relatod to cdrom, atapi, dhcp, DCOM, BTHUSB, and there are few on the Microsoft Office Sessions.

??

What is the Exact Make/model of Motherboard you put in this computer?
Did you put any Addin cards such as Video card?

The model is emaxx..not really sure..I'll just follow it up. I'll look for the box.

Yes, I put a NVIDIA GeForce 8600GT.

Let's see if we can get a bit more info on your computer
Download and save to desktop Aida32 from here
http://majorgeeks.com/AIDA32_-_Personal_Sy...ation_d181.html (http://\"http://majorgeeks.com/AIDA32_-_Personal_System_Information_d181.html\")

After you have it saved to desktop, Extract (Unzip) it to it's own folder on your desktop
Open that new folder and double click on Aida32.exe to run it >It's the icon that looks like a Monitor

Once the program opens, click on REPORT>>REPORT WIZARD>>NEXT
Ensure "Hardware Related Pages" is selected then click on NEXT
Under Report Format choose "Plain Text"
Then click FINISH
When it's done, select "Save to File"
Save a copy of the text file to desktop then copy/paste back here the contents

--------[ AIDA32 © 1995-2004 Tamas Miklos ]--------------------------------------------------------------------------- Version AIDA32 v3.93 Author [email protected] Homepage http://www.aida32.hu Report Type Report Wizard Computer EMILYGUEVARA Generator Arjuna Das F Guevara Operating System Microsoft Windows XP Professional 5.1.2600 (WinXP Retail) Date 2009-05-11 Time 23:38--------[ Summary ]----------------------------------------------------------------------------------------------------- Computer: Operating System Microsoft Windows XP Professional OS Service Pack Service Pack 2 Internet Explorer 6.0.2900.2180 Computer Name EMILYGUEVARA User Name Arjuna Das F Guevara Logon Domain EMILYGUEVARA Motherboard: CPU Type Unknown, 2000 MHz (8 x 250) Motherboard Name Unknown Motherboard Chipset Unknown System Memory 3072 MB BIOS Type AMI (09/23/08) Communication Port Communications Port (COM1) Display: Video Adapter NVIDIA GeForce 8600 GT (512 MB) Monitor SyncMaster 733NW /NW1733 [NoDB] (H9FQA35097) Multimedia: Audio Adapter Realtek HD Audio output Storage: Disk Drive Hitachi HDT725025VLA380 Optical Drive ATAPI iHAS120 6 Partitions: C: (NTFS) 100053 MB (85519 MB free) D: (NTFS) 70001 MB (24305 MB free) E: (NTFS) 68409 MB (32739 MB free) Input: Keyboard Standard 101/102-Key or Microsoft Natural PS/2 Keyboard Mouse Microsoft PS/2 Mouse Network: Primary IP Address 202.128.53.86 Primary MAC Address 00-E0-B1-05-5E-04 Network Adapter Generic Marvell Yukon Chipset based Ethernet Controller (202.128.53.86) Peripherals: Printer EPSON Stylus T10 Series (Copy 1) Printer EPSON Stylus T10 Series Printer Send To OneNote 2007 USB Device A4 TECH PC Camera H #2--------[ DMI ]--------------------------------------------------------------------------------------------------------- [ BIOS ] BIOS Properties: Vendor American Megatrends Inc. Version 080015 Release Date 09/23/2008 Size 1024 KB Boot Devices Floppy Disk, Hard Disk, CD-ROM, ATAPI ZIP, LS-120 Capabilities Flash BIOS, Shadow BIOS, Selectable Boot, EDD, BBS Supported Standards DMI, APM, ACPI, ESCD, PnP Expansion Capabilities ISA, PCI, USB [ System ] System Properties: Manufacturer To Be Filled By O.E.M. Product To Be Filled By O.E.M. Version To Be Filled By O.E.M. Serial Number To Be Filled By O.E.M. Universal Unique ID 00020003-00040005-00060007-00080009 Wake-Up Type Power Switch [ Motherboard ] Motherboard Properties: Manufacturer Emaxx Technologies,Inc Product EMX-IG31-AVL Version V1.0 Serial Number To be filled by O.E.M. [ Chassis ] Chassis Properties: Manufacturer To Be Filled By O.E.M. Version To Be Filled By O.E.M. Serial Number To Be Filled By O.E.M. Asset Tag To Be Filled By O.E.M. Chassis Type Desktop Case Boot-Up State Safe Power Supply State Safe Thermal State Safe Security Status None [ Memory Controller ] Memory Controller Properties: Error Detection Method 64-bit ECC Error Correction None Supported Memory Interleave 1-Way Current Memory Interleave 1-Way Supported Memory Types DIMM, SDRAM Supported Memory Voltages 3.3V Maximum Memory Module Size 4096 MB Memory Slots 4 [ Processors / Intel® Pentium® Dual CPU E2180 @ 2.00GHz ] Processor Properties: Manufacturer Intel Version Intel® Pentium® Dual CPU E2180 @ 2.00GHz Serial Number To Be Filled By O.E.M. Asset Tag To Be Filled By O.E.M. Part Number To Be Filled By O.E.M. External Clock 200 MHz Maximum Clock 2000 MHz Current Clock 2000 MHz Type Central Processor Voltage 1.3 V Status Enabled Socket Designation CPU 1 [ Caches / L1-Cache ] Cache Properties: Type Internal Status Enabled Operational Mode Write-Back Maximum Size 64 KB Installed Size 64 KB Error Correction Parity Socket Designation L1-Cache [ Caches / L2-Cache ] Cache Properties: Type Internal Status Enabled Operational Mode Write-Back Associativity 4-way Set-Associative Maximum Size 1024 KB Installed Size 1024 KB Error Correction Single-bit ECC Socket Designation L2-Cache [ Caches / L3-Cache ] Cache Properties: Type Internal Status Disabled Maximum Size 0 KB Installed Size 0 KB Socket Designation L3-Cache [ Memory Modules / DIMM0 ] Memory Module Properties: Socket Designation DIMM0 Type DIMM, SDRAM Installed Size 2048 MB Enabled Size 2048 MB [ Memory Modules / DIMM1 ] Memory Module Properties: Socket Designation DIMM1 Type DIMM, SDRAM Installed Size Not Installed Enabled Size Not Installed [ Memory Modules / DIMM2 ] Memory Module Properties: Socket Designation DIMM2 Type DIMM, SDRAM Installed Size 1024 MB Enabled Size 1024 MB [ Memory Modules / DIMM3 ] Memory Module Properties: Socket Designation DIMM3 Type DIMM, SDRAM Installed Size Not Installed Enabled Size Not Installed [ Memory Devices / DIMM0 ] Memory Device Properties: Form Factor DIMM Type SDRAM Type Detail Synchronous Size 2048 MB Total Width 64-bit Data Width 64-bit Device Locator DIMM0 Bank Locator BANK0 Manufacturer Manufacturer0 Serial Number SerNum0 Asset Tag AssetTagNum0 Part Number PartNum0 [ Memory Devices / DIMM1 ] Memory Device Properties: Form Factor DIMM Device Locator DIMM1 Bank Locator BANK1 Manufacturer Manufacturer1 Serial Number SerNum1 Asset Tag AssetTagNum1 Part Number PartNum1 [ Memory Devices / DIMM2 ] Memory Device Properties: Form Factor DIMM Type SDRAM Type Detail Synchronous Size 1024 MB Total Width 64-bit Data Width 64-bit Device Locator DIMM2 Bank Locator BANK2 Manufacturer Manufacturer2 Serial Number SerNum2 Asset Tag AssetTagNum2 Part Number PartNum2 [ Memory Devices / DIMM3 ] Memory Device Properties: Form Factor DIMM Device Locator DIMM3 Bank Locator BANK3 Manufacturer Manufacturer3 Serial Number SerNum3 Asset Tag AssetTagNum3 Part Number PartNum3--------[ CPU ]--------------------------------------------------------------------------------------------------------- CPU Properties: CPU Type Unknown, 2000 MHz (8 x 250) Original Clock 2000 MHz L1 Code Cache 32 KB L1 Data Cache 32 KB L2 Cache 1 MB (On-Die, ATC, Full-Speed) Multi CPU: Motherboard ID Intel Bearlake CPU #0 Intel® Pentium® Dual CPU E2180 @ 2.00GHz, 1995 MHz CPU #1 Intel® Pentium® Dual CPU E2180 @ 2.00GHz, 1995 MHz CPU Utilization: CPU #1 0 % CPU #2 0 %--------[ CPUID ]------------------------------------------------------------------------------------------------------- CPUID Properties: CPUID Manufacturer GenuineIntel CPUID CPU Name Intel® Pentium® Dual CPU E2180 @ 2.00GHz CPUID Revision 06FDh IA Brand ID 00h (Unknown) Platform ID 01h (Slot 1) IA CPU Serial Number Unknown Instruction Set: AMD 3DNow! Not Supported AMD 3DNow! Professional Not Supported AMD Enhanced 3DNow! Not Supported AMD Extended MMX Not Supported AMD64 Supported Cyrix Extended MMX Not Supported IA-64 Not Supported IA MMX Supported IA SSE Supported IA SSE 2 Supported IA SSE 3 Supported CLFLUSH Instruction Supported CMPXCHG8B Instruction Supported CMPXCHG16B Instruction Supported Conditional Move Instruction Supported FEMMS Instruction Not Supported MONITOR / MWAIT Instruction Supported CPUID Features: 36-bit Page Size Extension Supported Advanced Cryptography Engine Not Supported Alternate Instruction Set Not Supported Automatic Clock Control Supported CPL Qualified Debug Store Supported Debug Trace Store Supported Debugging Extension Supported Enhanced SpeedStep Technology Supported Fast Save & Restore Supported Fast System Call Not Supported Hyper-Threading Technology Supported L1 Context ID Not Supported Local APIC On Chip Supported LongRun Not Supported LongRun Table Interface Not Supported Machine-Check Architecture Supported Machine-Check Exception Supported Memory Type Range Registers Supported Model Specific Registers Supported No-Execute Page Protection Supported Page Attribute Table Supported Page Global Extension Supported Page Size Extension Supported Pending Break Event Supported Physical Address Extension Supported Processor Duty Cycle Control Supported Processor Serial Number Not Supported Random Number Generator Not Supported Self-Snoop Supported Thermal Monitor Supported Thermal Monitor 2 Supported Time Stamp Counter Supported Virtual Mode Extension Supported Enhanced Power Management: Frequency ID Control Not Supported Software Thermal Control Not Supported Temperature Sensing Diode Not Supported Thermal Monitoring Not Supported Thermal Trip Not Supported Voltage ID Control Not Supported CPUID Registers: CPUID 00000000 0000000A-756E6547-6C65746E-49656E69 CPUID 00000001 000006FD-00020800-0000E39D-BFEBFBFF CPUID 00000002 05B0B101-005657F0-00000000-2CB43078 CPUID 00000003 00000000-00000000-00000000-00000000 CPUID 00000004 00000000-00000000-00000000-00000000 CPUID 00000005 00000040-00000040-00000003-00000220 CPUID 00000006 00000001-00000002-00000001-00000000 CPUID 00000007 00000000-00000000-00000000-00000000 CPUID 00000008 00000400-00000000-00000000-00000000 CPUID 00000009 00000000-00000000-00000000-00000000 CPUID 0000000A 07280202-00000000-00000000-00000503 CPUID 80000000 80000008-00000000-00000000-00000000 CPUID 80000001 00000000-00000000-00000001-20100000 CPUID 80000002 65746E49-2952286C-6E655020-6D756974 CPUID 80000003 20295228-6C617544-50432020-45202055 CPUID 80000004 30383132-20402020-30302E32-007A4847 CPUID 80000005 00000000-00000000-00000000-00000000 CPUID 80000006 00000000-00000000-04004040-00000000 CPUID 80000007 00000000-00000000-00000000-00000000 CPUID 80000008 00003024-00000000-00000000-00000000 MSR 00000017 0000-0000-8B00-8A2A MSR 0000002A 0000-0000-4288-0000 MSR 0000011E 0000-0000-BE70-2105--------[ Motherboard ]------------------------------------------------------------------------------------------------- Motherboard Properties: Motherboard ID 64-0100-009999-00101111-092308-Bearlake$G310B013 Motherboard Name Unknown Front Side Bus Properties: Bus Type Intel GTL+ Bus Width 64-bit Real Clock 250 MHz Effective Clock 250 MHz Bandwidth 2000 MB/s--------[ Memory ]------------------------------------------------------------------------------------------------------ Physical Memory: Total 3071 MB Used 570 MB Free 2500 MB Utilization 19 % Swap Space: Total 4435 MB Used 431 MB Free 4003 MB Utilization 10 % Virtual Memory: Total 7506 MB Used 1002 MB Free 6504 MB Utilization 13 %--------[ BIOS ]-------------------------------------------------------------------------------------------------------- BIOS Properties: BIOS Type AMI System BIOS Date 09/23/08 Video BIOS Date 11/10/07 BIOS Manufacturer: Company Name American Megatrends Inc. Product Information http://www.ami.com/amibios--------[ Windows Video ]----------------------------------------------------------------------------------------------- [ NVIDIA GeForce 8600 GT ] Video Adapter Properties: Device Description NVIDIA GeForce 8600 GT Adapter String GeForce 8600 GT BIOS String Version 60.84.54.00.00 Chip Type GeForce 8600 GT DAC Type Integrated RAMDAC Installed Drivers nv4_disp (6.14.11.7824 - nVIDIA Detonator 78.24) Memory Size 512 MB Video Adapter Manufacturer: Company Name NVIDIA Corporation Product Information http://www.nvidia.com/view.asp?PAGE=products Driver Download http://www.nvidia.com/drivers--------[ Monitor ]----------------------------------------------------------------------------------------------------- [ SyncMaster 733NW /NW1733 [NoDB] ] Monitor Properties: Monitor Name SyncMaster 733NW /NW1733 [NoDB] Monitor ID SAM0472 Model SyncMaster Manufacture Date Week 44 / 2008 Serial Number H9FQA35097 Max. Visible Display Size 37 cm x 23 cm (17.2") Picture Aspect Ratio 16:9 Horizontal Frequency 30 - 81 kHz Vertical Frequency 56 - 75 Hz Gamma 2.35 DPMS Mode Support Active-Off Monitor Manufacturer: Company Name Samsung Product Information http://www.samsung.com/Products/Monitor/index.htm Driver Download http://www.samsung.com/Products/Monitor/Su...river/index.htm--------[ Desktop ]----------------------------------------------------------------------------------------------------- Desktop Properties: Device Technology Raster Display Resolution 1440 x 900 Color Depth 32-bit Color Planes 1 Font Resolution 96 dpi Pixel Width / Height 36 / 36 Pixel Diagonal 51 Vertical Refresh Rate 59 Hz Desktop Wallpaper C:\Documents and Settings\Arjuna Das F Guevara\Local Settings\Application Data\Microsoft\Wallpaper1.bmp Desktop Effects: Combo-Box Animation Enabled Drop Shadow Effect Enabled Flat Menu Effect Disabled Font Smoothing Enabled Full Window Dragging Enabled Gradient Window Title Bars Enabled Hide Menu Access Keys Disabled Hot Tracking Effect Disabled Icon Title Wrapping Enabled List-Box Smooth Scrolling Enabled Menu Animation Enabled Menu Fade Effect Enabled Minimize/Restore Animation Enabled Mouse Cursor Shadow Enabled Selection Fade Effect Enabled ShowSounds Accessibility Feature Disabled ToolTip Animation Enabled ToolTip Fade Effect Enabled Windows Plus! Extension Disabled Problems & Suggestions: Problem At least 85 Hz vertical refresh rate is recommended for classic displays.--------[ Multi-Monitor ]----------------------------------------------------------------------------------------------- \\.\DISPLAY1 Yes (0,0) (1440,900)--------[ Windows Audio ]----------------------------------------------------------------------------------------------- midi-out.0 0001 0066 Microsoft GS Wavetable SW Synth mixer.0 0001 0068 Realtek HD Audio output mixer.1 0001 0068 Realtek HD Audio Input wave-in.0 0001 0065 Realtek HD Audio Input wave-out.0 0001 0064 Realtek HD Audio output--------[ Windows Storage ]--------------------------------------------------------------------------------------------- [ Hitachi HDT725025VLA380 ] Device Properties: Driver Description Hitachi HDT725025VLA380 Driver Date 7/1/2001 Driver Version 5.1.2535.0 Driver Provider Microsoft INF File disk.inf Device Manufacturer: Company Name Hitachi Global Storage Technologies Product Information http://www.hgst.com/products [ ATAPI iHAS120 6 ] Device Properties: Driver Description ATAPI iHAS120 6 Driver Date 7/1/2001 Driver Version 5.1.2535.0 Driver Provider Microsoft INF File cdrom.inf [ Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF ] Device Properties: Driver Description Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF Driver Date 11/15/2006 Driver Version 8.2.0.1011 Driver Provider Intel INF File oem5.inf Device Resources: Port FFA0-FFAF [ Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0 ] Device Properties: Driver Description Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C0 Driver Date 11/15/2006 Driver Version 8.2.0.1011 Driver Provider Intel INF File oem5.inf Device Resources: IRQ 19 Port B880-B88F Port BC00-BC03 Port C000-C007 Port C080-C083 Port C400-C407 [ Primary IDE Channel ] Device Properties: Driver Description Primary IDE Channel Driver Date 7/1/2001 Driver Version 5.1.2600.2180 Driver Provider Microsoft INF File mshdc.inf Device Resources: IRQ 14 Port 01F0-01F7 Port 03F6-03F6 [ Primary IDE Channel ] Device Properties: Driver Description Primary IDE Channel Driver Date 7/1/2001 Driver Version 5.1.2600.2180 Driver Provider Microsoft INF File mshdc.inf [ Secondary IDE Channel ] Device Properties: Driver Description Secondary IDE Channel Driver Date 7/1/2001 Driver Version 5.1.2600.2180 Driver Provider Microsoft INF File mshdc.inf Device Resources: IRQ 15 Port 0170-0177 Port 0376-0376--------[ Logical Drives ]---------------------------------------------------------------------------------------------- C: Local Disk NTFS 2C71-F26C 100053 MB 85519 MB 85 % D: Local Disk NTFS C09F-2D1F 70001 MB 24305 MB 35 % E: Local Disk NTFS 6C29-3CA9 68409 MB 32739 MB 48 % F: Optical Drive --------[ Physical Drives ]--------------------------------------------------------------------------------------------- [ Drive #1 (232.9 GB) ] #1 (Active) NTFS C: 0 MB 100053 MB #2 NTFS D: 100053 MB 70001 MB #3 NTFS E: 170055 MB 68409 MB--------[ Optical Drives ]---------------------------------------------------------------------------------------------- ATAPI iHAS120 6 ? ? ?--------[ ASPI ]-------------------------------------------------------------------------------------------------------- 01 00 00 Disk Drive Hitachi HDT725025VLA380 01 07 00 Host Adapter atapi 02 00 00 Optical Drive ATAPI iH AS120 6 02 07 00 Host Adapter atapi --------[ ATA ]--------------------------------------------------------------------------------------------------------- [ Hitachi HDT725025VLA380 (VFL131R9CDLSAE) ] ATA Device Properties: Model ID Hitachi HDT725025VLA380 Serial Number VFL131R9CDLSAE Revision V5DOA7EA Parameters 484521 cylinders, 16 heads, 63 sectors per track, 512 bytes per sector LBA Sectors 488397168 Buffer 7372 KB (Dual Ported, Read Ahead) Multiple Sectors 16 ECC Bytes 52 Max. PIO Transfer Mode PIO 4 Max. UDMA Transfer Mode UDMA 6 (ATA-133) Active UDMA Transfer Mode UDMA 5 (ATA-100) Unformatted Capacity 238475 MB ATA Device Features: SMART Supported Security Mode Supported Power Management Supported Advanced Power Management Supported Write Cache Supported Host Protected Area Supported Power-Up In Standby Supported Automatic Acoustic Management Supported 48-bit LBA Supported Device Configuration Overlay Supported ATA Device Manufacturer: Company Name Hitachi Global Storage Technologies Product Information http://www.hgst.com/products--------[ SMART ]------------------------------------------------------------------------------------------------------- [ Hitachi HDT725025VLA380 (VFL131R9CDLSAE) ] 01 Raw Read Error Rate 16 100 100 65536 OK: Value is normal 02 Throughput Performance 50 100 100 0 OK: Value is normal 03 Spin Up Time 24 109 109 22544727 OK: Value is normal 04 Start/Stop Count 0 100 100 581 OK: Always passing 05 Reallocated Sector Count 5 100 100 0 OK: Value is normal 07 Seek Error Rate 67 100 100 0 OK: Value is normal 08 Seek Time Performance 20 100 100 0 OK: Value is normal 09 Power-On Time Count 0 100 100 1619 OK: Always passing 0A Spin Retry Count 60 100 100 0 OK: Value is normal 0C Power Cycle Count 0 100 100 580 OK: Always passing C0 Power-Off Retract Count 0 100 100 592 OK: Always passing C1 Load/Unload Cycle Count 0 100 100 592 OK: Always passing C2 Temperature 0 142 142 24, 42 OK: Always passing C4 Reallocation Event Count 0 100 100 0 OK: Always passing C5 Current Pending Sector Count 0 100 100 0 OK: Always passing C6 Off-Line Uncorrectable Sector Count 0 100 100 0 OK: Always passing C7 Ultra ATA CRC Error Rate 0 200 253 0 OK: Always passing--------[ Keyboard ]---------------------------------------------------------------------------------------------------- Keyboard Properties: Keyboard Name Standard 101/102-Key or Microsoft Natural PS/2 Keyboard Keyboard Type IBM enhanced (101- or 102-key) keyboard Keyboard Layout US ANSI Code Page 1252 - Western European (Windows) OEM Code Page 437 Repeat Delay 1 Repeat Rate 31--------[ Mouse ]------------------------------------------------------------------------------------------------------- Mouse Properties: Mouse Name Microsoft PS/2 Mouse Mouse Buttons 3 Mouse Hand Right Pointer Speed 1 Double-Click Time 500 msec X/Y Threshold 6 / 10 Wheel Scroll Lines 3 Mouse Features: Active Window Tracking Disabled ClickLock Disabled Hide Pointer While Typing Enabled Mouse Wheel Present Move Pointer To Default Button Disabled Pointer Trails Disabled Sonar Disabled Mouse Manufacturer: Company Name Microsoft Corporation Product Information http://www.microsoft.com/hardware/mouse/default.asp Driver Download http://www.microsoft.com/hardware/mouse/download.asp--------[ Windows Network ]--------------------------------------------------------------------------------------------- [ Generic Marvell Yukon Chipset based Ethernet Controller ] Network Adapter Properties: Network Adapter Generic Marvell Yukon Chipset based Ethernet Controller Interface Type Ethernet Hardware Address 00-E0-B1-05-5E-04 Connection Name Local Area Connection 2 Connection Speed 100 Mbps MTU 1500 bytes DHCP Lease Obtained 5/11/2009 10:38:47 PM DHCP Lease Expires 5/12/2009 10:38:47 AM Bytes Received 16915104 (16.1 MB) Bytes Sent 2999371 (2.9 MB) Network Adapter Addresses: IP / Subnet Mask 202.128.53.86 / 255.255.254.0 Gateway 202.128.52.1 DHCP 10.1.1.22 DNS 202.8.224.39 DNS 202.8.224.36--------[ PCI / PnP Network ]------------------------------------------------------------------------------------------- Generic Marvell Yukon Chipset based Ethernet Controller [NoDB] PCI--------[ DirectX Video ]----------------------------------------------------------------------------------------------- [ Primary Display Driver ] DirectDraw Device Properties: DirectDraw Driver Name display DirectDraw Driver Description Primary Display Driver Hardware Driver nv4_disp.dll Hardware Description NVIDIA GeForce 8600 GT Direct3D Device Properties: Available Local Video Memory 512691 KB Available Non-Local Video Memory (AGP) 252927 KB Rendering Bit Depths 16, 32 Z-Buffer Bit Depths 16, 24 Min Texture Size 1 x 1 Max Texture Size 8192 x 8192 Vertex Shader Version 3.0 Pixel Shader Version 3.0 Direct3D Device Features: Additive Texture Blending Supported AGP Texturing Supported Anisotropic Filtering Supported Bilinear Filtering Supported Cubic Environment Mapping Supported Cubic Filtering Not Supported Decal-Alpha Texture Blending Supported Decal Texture Blending Supported Directional Lights Not Supported DirectX Texture Compression Supported DirectX Volumetric Texture Compression Not Supported Dithering Supported Dot3 Texture Blending Supported Dynamic Textures Supported Edge Antialiasing Supported Environmental Bump Mapping Supported Environmental Bump Mapping + Luminance Supported Factor Alpha Blending Supported Geometric Hidden-Surface Removal Not Supported Guard Band Supported Hardware Scene Rasterization Supported Hardware Transform & Lighting Supported Legacy Depth Bias Not Supported Mipmap LOD Bias Adjustments Supported Mipmapped Cube Textures Supported Mipmapped Volume Textures Supported Modulate-Alpha Texture Blending Supported Modulate Texture Blending Supported Non-Square Textures Supported N-Patches Not Supported Perspective Texture Correction Supported Point Lights Not Supported Point Sampling Supported Projective Textures Supported Quintic Bezier Curves & B-Splines Not Supported Range-Based Fog Supported Rectangular & Triangular Patches Not Supported Rendering In Windowed Mode Supported Scissor Test Not Supported Slope-Scale Based Depth Bias Not Supported Specular Flat Shading Supported Specular Gouraud Shading Supported Specular Phong Shading Not Supported Spherical Mapping Supported Spot Lights Not Supported Stencil Buffers Supported Sub-Pixel Accuracy Supported Table Fog Supported Texture Alpha Blending Supported Texture Clamping Supported Texture Mirroring Supported Texture Transparency Supported Texture Wrapping Supported Triangle Culling Not Supported Trilinear Filtering Supported Two-Sided Stencil Test Not Supported Vertex Alpha Blending Supported Vertex Fog Supported Vertex Tweening Not Supported Volume Textures Supported W-Based Fog Supported W-Buffering Not Supported Z-Based Fog Supported Z-Bias Supported Z-Test Supported--------[ DirectX Sound ]----------------------------------------------------------------------------------------------- [ Primary Sound Driver ] DirectSound Device Properties: Device Description Primary Sound Driver Driver Module Primary Buffers 1 Min / Max Secondary Buffers Sample Rate 8000 / 192000 Hz Primary Buffers Sound Formats 8-bit, 16-bit, Mono, Stereo Secondary Buffers Sound Formats 8-bit, 16-bit, Mono, Stereo Total / Free Sound Buffers 33 / 32 Total / Free Static Sound Buffers 33 / 32 Total / Free Streaming Sound Buffers 33 / 32 Total / Free 3D Sound Buffers 33 / 32 Total / Free 3D Static Sound Buffers 33 / 32 Total / Free 3D Streaming Sound Buffers 33 / 32 DirectSound Device Features: Certified Driver Yes Emulated Device No Precise Sample Rate Supported [ Realtek HD Audio output ] DirectSound Device Properties: Device Description Realtek HD Audio output Driver Module RtkHDAud.sys Primary Buffers 1 Min / Max Secondary Buffers Sample Rate 8000 / 192000 Hz Primary Buffers Sound Formats 8-bit, 16-bit, Mono, Stereo Secondary Buffers Sound Formats 8-bit, 16-bit, Mono, Stereo Total / Free Sound Buffers 33 / 32 Total / Free Static Sound Buffers 33 / 32 Total / Free Streaming Sound Buffers 33 / 32 Total / Free 3D Sound Buffers 33 / 32 Total / Free 3D Static Sound Buffers 33 / 32 Total / Free 3D Streaming Sound Buffers 33 / 32 DirectSound Device Features: Certified Driver Yes Emulated Device No Precise Sample Rate Supported--------[ DirectX Music ]----------------------------------------------------------------------------------------------- [ Microsoft MIDI Mapper [Emulated] ] DirectMusic Device Properties: Device Description Microsoft MIDI Mapper [Emulated] Synthesizer Type Hardware Device Class Output Port Device Type Windows Multimedia MIDI Channels 16 DirectMusic Device Features: Built-In GM Instrument Set No Built-In Roland GS Sound Set No DirectSound Not Supported DLS L1 Sample Collections Not Supported DLS L2 Sample Collections Not Supported External MIDI Port No Fixed DLS Memory Size No Port Sharing Supported Chorus Effect Not Supported Delay Effect Not Supported Reverb Effect Not Supported [ Microsoft GS Wavetable SW Synth [Emulated] ] DirectMusic Device Properties: Device Description Microsoft GS Wavetable SW Synth [Emulated] Synthesizer Type Hardware Device Class Output Port Device Type Windows Multimedia MIDI Channels 16 DirectMusic Device Features: Built-In GM Instrument Set No Built-In Roland GS Sound Set No DirectSound Not Supported DLS L1 Sample Collections Not Supported DLS L2 Sample Collections Not Supported External MIDI Port No Fixed DLS Memory Size No Port Sharing Supported Chorus Effect Not Supported Delay Effect Not Supported Reverb Effect Not Supported [ Microsoft Synthesizer ] DirectMusic Device Properties: Device Description Microsoft Synthesizer Synthesizer Type Software Device Class Output Port Device Type User-Mode Synthesizer Audio Channels 2 MIDI Channels 16000 Voices 1000 Available Memory System Memory DirectMusic Device Features: Built-In GM Instrument Set No Built-In Roland GS Sound Set No DirectSound Supported DLS L1 Sample Collections Supported DLS L2 Sample Collections Supported External MIDI Port No Fixed DLS Memory Size No Port Sharing Not Supported Chorus Effect Not Supported Delay Effect Not Supported Reverb Effect Supported--------[ DirectX Input ]----------------------------------------------------------------------------------------------- [ Mouse ] DirectInput Device Properties: Device Description Mouse Device Type Mouse Device Subtype Unknown Axes 3 Buttons/Keys 3 DirectInput Device Features: Emulated Device Yes Alias Device No Polled Device No Polled Data Format No Attack Force Feedback Not Supported Deadband Force Feedback Not Supported Fade Force Feedback Not Supported Force Feedback Not Supported Saturation Force Feedback Not Supported +/- Force Feedback Coefficients Not Supported +/- Force Feedback Saturation Not Supported [ Keyboard ] DirectInput Device Properties: Device Description Keyboard Device Type Keyboard Device Subtype IBM PC Enhanced 101/102-key or Microsoft Natural keyboard Buttons/Keys 128 DirectInput Device Features: Emulated Device Yes Alias Device No Polled Device No Polled Data Format No Attack Force Feedback Not Supported Deadband Force Feedback Not Supported Fade Force Feedback Not Supported Force Feedback Not Supported Saturation Force Feedback Not Supported +/- Force Feedback Coefficients Not Supported +/- Force Feedback Saturation Not Supported--------[ Windows Devices ]--------------------------------------------------------------------------------------------- [ Devices ] Computer: ACPI Multiprocessor PC 5.1.2600.0 Disk drives: Hitachi HDT725025VLA380 5.1.2535.0 Display adapters: NVIDIA GeForce 8600 GT 6.14.11.7824 DVD/CD-ROM drives: ATAPI iHAS120 6 5.1.2535.0 IDE ATA/ATAPI controllers: Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF8.2.0.1011 Intel® 82801GB/GR/GH (ICH7 Family) Serial ATA Storage Controller - 27C08.2.0.1011 Primary IDE Channel 5.1.2600.2180 Primary IDE Channel 5.1.2600.2180 Secondary IDE Channel 5.1.2600.2180 Secondary IDE Channel 5.1.2600.2180 Imaging devices: A4 TECH PC Camera H #2 301.4.912.17 Keyboards: Standard 101/102-Key or Microsoft Natural PS/2 Keyboard5.1.2600.2180 Mice and other pointing devices: Microsoft PS/2 Mouse 5.1.2600.0 Monitors: SyncMaster 733NW /NW1733 3.0.0.0 Network adapters: Direct Parallel 5.1.2535.0 Generic Marvell Yukon Chipset based Ethernet Controller8.61.2.3 Generic Marvell Yukon Chipset based Ethernet Controller - Eset Personal Firewall Miniport3.0.669.0 Generic Marvell Yukon Chipset based Ethernet Controller - Packet Scheduler Miniport5.1.2535.0 Motorola SURFboard SB5101 USB Cable Modem - Eset Personal Firewall Miniport3.0.669.0 Motorola SURFboard SB5101 USB Cable Modem - Packet Scheduler Miniport5.1.2535.0 WAN Miniport (IP) 5.1.2535.0 WAN Miniport (IP) - Eset Personal Firewall Miniport3.0.669.0 WAN Miniport (IP) - Packet Scheduler Miniport 5.1.2535.0 WAN Miniport (L2TP) 5.1.2535.0 WAN Miniport (PPPOE) 5.1.2535.0 WAN Miniport (PPTP) 5.1.2535.0 Non-Plug and Play Drivers: AFD Beep dmboot dmload EAMON easdrv epfw epfwtdi Fips Generic Packet Classifier HTTP IP Network Address Translator IPSEC driver ksecdd mnmdd mountmgr NDIS System Driver NDIS Usermode I/O Protocol NDProxy NetBios over Tcpip Null Parport PartMgr ParVdm RDPCDD Remote Access Auto Connection Driver Remote Access IP ARP Driver Remote Access NDIS TAPI Driver Secdrv TCP/IP Protocol Driver VgaSave VolSnap Wdf01000 Windows Driver Foundation - User-mode Driver Framework Platform Driver Ports (COM & LPT): Communications Port (COM1) 5.1.2600.0 Processors: Intel® Pentium® Dual CPU E2180 @ 2.00GHz 5.1.2600.0 Intel® Pentium® Dual CPU E2180 @ 2.00GHz 5.1.2600.0 Sound, video and game controllers: Audio Codecs 5.1.2535.0 Legacy Audio Drivers 5.1.2535.0 Legacy Video Capture Devices 5.1.2535.0 Media Control Devices 5.1.2535.0 Microsoft Kernel System Audio Device 5.1.2535.0 Microsoft Kernel Wave Audio Mixer 5.1.2535.0 Microsoft WINMM WDM Audio Compatibility Driver 5.1.2535.0 Realtek High Definition Audio 5.10.0.5473 Video Codecs 5.1.2535.0 Storage volumes: Generic volume 5.1.2600.0 Generic volume 5.1.2600.0 Generic volume 5.1.2600.0 System devices: ACPI Fixed Feature Button 5.1.2600.2180 ACPI Power Button 5.1.2600.2180 Direct memory access controller 5.1.2600.2180 Intel® 82801 PCI Bridge - 244E 5.1.2600.2180 Intel® 82801G (ICH7 Family) PCI Express Root Port - 27D08.3.0.1011 Intel® 82801G (ICH7 Family) SMBus Controller - 27DA8.3.0.1011 Intel® 82801GB/GR (ICH7 Family) LPC Interface Controller - 27B88.3.0.1011 Intel® 82802 Firmware Hub Device 5.1.2600.2180 Intel® G33/G31/P35 Express Chipset PCI Express Root Port - 29C18.3.1.1003 Intel® G33/G31/P35 Express Chipset Processor to I/O Controller - 29C08.3.1.1003 ISAPNP Read Data Port 5.1.2600.2180 Logical Disk Manager 5.1.2600.2180 Microcode Update Device 5.1.2600.2180 Microsoft ACPI-Compliant System 5.1.2535.0 Microsoft System Management BIOS Driver 5.1.2600.2180 Microsoft UAA Bus Driver for High Definition Audio5.10.0.5010 Motherboard resources 5.1.2600.2180 Motherboard resources 5.1.2600.2180 Motherboard resources 5.1.2600.2180 Motherboard resources 5.1.2600.2180 Motherboard resources 5.1.2600.2180 Numeric data processor 5.1.2600.2180 PCI bus 5.1.2600.2180 Plug and Play Software Device Enumerator 5.1.2600.2180 Programmable interrupt controller 5.1.2600.2180 System board 5.1.2600.2180 System board 5.1.2600.2180 System CMOS/real time clock 5.1.2600.2180 System speaker 5.1.2600.2180 System timer 5.1.2600.2180 Terminal Server Device Redirector 5.1.2600.2180 Terminal Server Keyboard Driver 5.1.2600.2180 Terminal Server Mouse Driver 5.1.2600.2180 Volume Manager 5.1.2600.2180 Universal Serial Bus controllers: Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C88.2.0.1008 Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27C98.2.0.1008 Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CA8.2.0.1008 Intel® 82801G (ICH7 Family) USB Universal Host Controller - 27CB8.2.0.1008 Intel® 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC8.2.0.1008 USB Root Hub 5.1.2600.2180 USB Root Hub 5.1.2600.2180 USB Root Hub 5.1.2600.2180 USB Root Hub 5.1.2600.2180 USB Root Hub 5.1.2600.2180 [ Computer / ACPI Multiprocessor PC ] Device Properties: Driver Description ACPI Multiprocessor PC Driver Date 7/1/2001 Driver Version 5.1.2600.0 Driver Provider Microsoft INF File hal.inf [ Disk drives / Hitachi HDT725025VLA380 ] Device Properties: Driver Description Hitachi HDT725025VLA380 Driver Date 7/1/2001 Driver Version 5.1.2535.0 Driver Provider Microsoft INF File disk.inf [ Display adapters / NVIDIA GeForce 8600 GT ] Device Properties: Driver Description NVIDIA GeForce 8600 GT Driver Date 10/7/2008 Driver Version 6.14.11.7824 Driver Provider NVIDIA INF File oem12.inf Device Resources: IRQ 16 Memory 000A0000-000BFFFF Memory D0000000-DFFFFFFF Memory FA000000-FBFFFFFF Memory FD000000-FDFFFFFF Port 03B0-03BB Port 03C0-03DF Port DC00-DC7F [ DVD/CD-ROM drives / ATAPI iHAS120 6 ] Device Properties: Driver Description ATAPI iHAS120 6 Driver Date 7/1/2001 Driver Version 5.1.2535.0 Driver Provider Microsoft INF File cdrom.inf [ IDE ATA/ATAPI controllers / Intel® 82801G (ICH7 Family) Ultra ATA Storage Controllers - 27DF ] Device Properties: Driver Description Intel® 82801G (ICH7 Family) Ultra ATA Storage Control

You may want to try updating your Drivers
First, go to the following link
http://www.emaxxtech.com/products.php?id=14 (http://\"http://www.emaxxtech.com/products.php?id=14\")
Click on the DRIVERS tab

Download and save to desktop the drivers for
Realtek HD Audio driver for Windows XP
Marvell NDIS Miniport Driver for the Marvell Yukon Ethernet Controller. For all Microsoft Windows Operating System.
Intel's Chipset Driver for all Microsoft's Operating System

After you have them saved all to desktop
Run the Setup.exe files (Note: You may have to Extract a couple to their own folders onto your destkop)
I also suggest that you disable your AntiVirus software during the install, so it won't interfere with installations
You may also have to reboot the computer in between installing each one

After that is done, try updating the drivers to your Video Card
http://www.nvidia.com/object/winxp_185.85_whql.html (http://\"http://www.nvidia.com/object/winxp_185.85_whql.html\")
Take note of the Driver Installation hints on the left hand side

Let me know how it goes

Done updating, except for the Marvell NDIS, a message saying something like I already have one installed and that I should uninstall it first before trying to install what I have downloaded.

Just an out of topic question, my LCD is Samsung SyncMaster 733NW which has a resolution of 1440x900 which mean it has an aspect ratio of 16:10. Is there any way that I could change it to 16:9? because when I tried the LCD on my ps3, the picture was too stretched to the right and has black bars.

about the side question, I learned that my LCD is 16:10, and that PS3 automatically sets itself at 16:9 that's why the screen size and the video image do not match. Is there anything I can do about this?

check your settings in the PS3, you can probably adjust to Full screen or similiar, although the graphics won't be as defined, not sure what else to suggest

done it, it fit the screen but it's just like as you said. The graphics are not that defined because it's only at 480p and whenever I set it to 720p, it overly stretches again.

About my computer, is it okay now?

Just seen you online, almost forgot about this thread

I believe your logs looked ok
Can you post one last fresh Hijackthis log and let me know how things are running please
Then we'll clean up some of the tools we used

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:56:33 AM, on 5/14/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\VMSnap3.EXE
C:\WINDOWS\Domino.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Java\jre6\bin\jusched.exe
D:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\program files\mozilla firefox\firefox.exe
D:\Local Disk (D)\Stardock Window Blinds 6.3 Final + Crack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ (http://\"http://www.yahoo.com/\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html (http://\"http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TrojanScanner] E:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [EPSON Stylus T10 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SF5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus T10 Series (Copy 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SC2C.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Tunebite] E:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
O4 - Startup: Registration Assassin's Creed.LNK = E:\Program Files\Ubisoft\Assassin's Creed\Register\RegistrationReminder.exe
O4 - Startup: Stardock ObjectDock.lnk = D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7564 bytes

whew..here's the latest log..^^

This entry here in your log
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)

Did you purposely install the related software?
I'm just curious, as I've seen that entry twice now in 2 days

Yes, I think it comes with the game gunbound because it's like an anti-hack program.

Thanks for the info, let's clean some of the tools that we used
Go ahead and delete RSIT.exe on desktop, and it's folder >>C:\rsit

Delete drweb-cureit.exe on desktop
and it's folder>>C:\Documents and Settings\Arjuna Das F Guevara\DoctorWeb

To help secure your computer, update some of your software
Close down all Browser windows
Uninstall
Javaâ„¢ 6 Update 11
Javaâ„¢ 6 Update 2

Reboot the computer when you have removed both the above
Back in Windows
[color=\"blue\"]Updating Java:[/color]

Download the latest version of Java Runtime Environment (JRE) (http://\"http://java.sun.com/javase/downloads/index.jsp\").
Scroll down to where it says "JRE 6 Update 13".
Click the "Download" button to the right.
In the Window that opens, select Windows, beside Platform:>>Check the "agree" box and click Continue.
Click on the link to download Windows Offline Installation and save to your desktop.
Then from your desktop right-click on jre-6u13-windows-i586-p.exe and choose to "Run as Admin" to install the newest version.

Ensure Adobe Reader is up to date, Open Reader, click on HELP>>Check for Updates

Ensure Firefox is right up to date>>In Firefox click on HELP>>Check for Updates

you should add SpywareBlaster to your protection software
SpywareBlaster by JavaCool (http://\"http://www.javacoolsoftware.com/spywareblaster.html\")
At the link you can read more about it then continue with
Free Download on the right>>Continue Download at next page
Basically it

Select Manual updating when installing
After installation, Check for updates
After updating, select "Protection Status" on the Left
Then select "Enable all Protection"
"Check for updates every couple of weeks"
after every update just simply click the "enable protection on all unprotected items"
or again, click on Protection Startus>>enable all protection

Post one last time, keep me updated how things are running

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:51:24 AM, on 5/24/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\VMSnap3.EXE
C:\WINDOWS\Domino.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Messenger\msmsgs.exe
D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\program files\mozilla firefox\firefox.exe
C:\Program Files\DAP\DAP.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\SpywareBlaster\spywareblaster.exe
C:\Program Files\SpywareBlaster\spywareblaster.exe
D:\Local Disk (D)\Stardock Window Blinds 6.3 Final + Crack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/ (http://\"http://www.yahoo.com/\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html (http://\"http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TrojanScanner] E:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [EPSON Stylus T10 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SF5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus T10 Series (Copy 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEBS.EXE /FU "C:\WINDOWS\TEMP\E_SC2C.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Tunebite] E:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
O4 - Startup: Registration Assassin's Creed.LNK = E:\Program Files\Ubisoft\Assassin's Creed\Register\RegistrationReminder.exe
O4 - Startup: Stardock ObjectDock.lnk = D:\Local Disk (D)\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7636 bytes

here's the latest log, I didn't find any Java(tm) 6 Update 11 and I already have the 13 when I checked but anyways I still did what you said.
I already have the SpywareBlaster because you already told me to install it the last time so I just updated it. Many thanks again. ^^

Your welcome

Take a look at miekiemoes site with other ideas on How to prevent Malware: (http://\"http://users.telenet.be/bluepatchy/miekiemoes/prevention.html\")
I'll lock this topic as your problems are resolved, take care arjunadas

/smile.gif\' class=\'bbc_emoticon\' alt=\':)\' />

TheTechGuide Forum

General Category => Tech Clinic => Topic started by: arjunadas on April 14, 2009, 07:04:33 AM