Author Topic: Few problems.. (Read 887 times)

Small Shoe Magoo · « **on:** July 23, 2008, 12:59:40 PM »

A few things in vista have recently stopped working.

1. Control Panel = Gone, won't ever start up.;
2. Personalize = Gone, wont ever start up.;
3. Slowdown in each program start up - Once the program is fully loaded it spends another minute in the "Not responding" phase to be functional.
4. Slowdown in common forms on the web. The browse and upload takes very long to allow me to move around.
5. Vista is now un-genuine, but my copy is. Microsoft had a few fixes, i.e., restart the software licensing service, but the SLS wouldn't start up giving "Windows could not start the Software Licensing Services on Local Computer".
6. About 3 hours into having my computer on, Vista Aero shuts off with the method "Vista is not genuine".

My HijackThis log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:06:40 PM, on 7/23/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.17184)
Boot mode: Normal

Running processes:
H:\Windows\system32\taskeng.exe
H:\Windows\system32\Dwm.exe
H:\Windows\Explorer.EXE
H:\Program Files\Windows Defender\MSASCui.exe
H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
H:\Program Files\LogMeIn\x86\LogMeInSystray.exe
H:\Windows\System32\rundll32.exe
H:\Program Files\iTunes\iTunesHelper.exe
H:\Program Files\Common Files\Real\Update_OB\realsched.exe
H:\Program Files\Windows Sidebar\sidebar.exe
H:\Windows\ehome\ehtray.exe
H:\Program Files\Steam\Steam.exe
H:\Program Files\Windows Live\Messenger\msnmsgr.exe
H:\Program Files\RocketDock\RocketDock.exe
H:\Program Files\Google\Google Updater\GoogleUpdater.exe
H:\Program Files\Windows Media Player\wmpnscfg.exe
H:\Windows\ehome\ehmsas.exe
H:\Program Files\LogMeIn\x86\LMIGuardian.exe
H:\Program Files\Internet Explorer\IEUser.exe
H:\Program Files\Mozilla Firefox 3 Beta 5\crashreporter.exe
H:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
H:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=105563
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - H:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - h:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - h:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NBKeyScan] "H:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "H:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AppleSyncNotifier] H:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "H:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "H:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] H:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Steam] "H:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [swg] H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "H:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RocketDock] "H:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [swg] H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [msnmsgr] "H:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [RocketDock] "H:\Program Files\RocketDock\RocketDock.exe" (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe (User '?')
O4 - S-1-5-21-2547846688-812082192-2519804348-1000 Startup: Xfire.lnk = H:\Program Files\Xfire\xfire.exe (User '?')
O4 - Startup: Xfire.lnk = H:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Google Updater.lnk = H:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://H:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - H:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - H:\Windows\System32\DreamScene.dll
O23 - Service: Apple Mobile Device - Apple Inc. - H:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - H:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - H:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - H:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - H:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - H:\Windows\system32\nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - H:\Windows\system32\IoctlSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - H:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 8659 bytes

Help is much appreciated.

Thanks again,

-Matt

guestolo · « **Reply #1 on:** July 23, 2008, 09:39:07 PM »

It seems that most of your problems are because you have an illegal version of Vista
Is that what your saying?

Small Shoe Magoo · « **Reply #2 on:** July 23, 2008, 10:15:34 PM »

It says I do, but I don't. It just recently started saying that, and I really don't know why. 100% legal, purchased retail from Best Buys.

Stop Reading My Name · « **Reply #3 on:** July 23, 2008, 10:19:48 PM »

Har har diddly de being a pirate (of OS) is not right to be.

Do what you want (but don't pirate OS) because a pirate is free!

You aren't a pirate (of OS)!

(LOL LIMEWIRE!!)

[This article is a stub. You can help by adding more content.]

[There was no source mentioned in this post. You can help by adding a source of information.]

guestolo · « **Reply #4 on:** July 23, 2008, 10:30:00 PM »

Have you tried System Restore?
Why no AntiVirus software, there are free versions

Small Shoe Magoo · « **Reply #5 on:** July 23, 2008, 10:32:38 PM »

I have not tried a system restore and will do so now.

Stop Reading My Name · « **Reply #6 on:** July 23, 2008, 10:34:15 PM »

[quote name=\'guestolo\' post=\'437970\' date=\'Jul 23 2008, 08:45 PM\']Why no AntiVirus software[/quote]
Why so serious?

Small Shoe Magoo · « **Reply #7 on:** July 23, 2008, 11:17:04 PM »

System restore doesn't work :

guestolo · « **Reply #8 on:** July 24, 2008, 07:27:31 PM »

Quote

1. Control Panel = Gone, won't ever start up.;
2. Personalize = Gone, wont ever start up.;
3. Slowdown in each program start up - Once the program is fully loaded it spends another minute in the "Not responding" phase to be functional.
4. Slowdown in common forms on the web. The browse and upload takes very long to allow me to move around.
5. Vista is now un-genuine, but my copy is. Microsoft had a few fixes, i.e., restart the software licensing service, but the SLS wouldn't start up giving "Windows could not start the Software Licensing Services on Local Computer".
6. About 3 hours into having my computer on, Vista Aero shuts off with the method "Vista is not genuine".

Those are all signs of a non genuine copy of Vista, after trial has expired
Not to say your version is not genuine, but some file may be corrupt
and/or I have seen this on the net happen with spyware/viral infections

Quote

Why so serious?

If it is spyware or virus, that's why

Let's do some double checking
download Malwarebytes' Anti-Malware from Here or Here
Save the installer to desktop

Double Click mbam-setup.exe to install the application.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Full Scan", then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy&Paste the entire report in your next reply

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.
Also, Post a fresh hijackthis log and let me know how things are running please

Small Shoe Magoo · « **Reply #9 on:** July 25, 2008, 12:00:11 AM »

Thanks for the reply, btw SRMN was joking with the quote from the new Batman movie that was recently released.

http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/smile.gif\' class=\'bbc_emoticon\' alt=\'

\' />

Here's the log - Still have the same problems as before

Malwarebytes' Anti-Malware 1.23
Database version: 989
Windows 6.0.6001 Service Pack 1

1:17:52 AM 7/25/2008
mbam-log-7-25-2008 (01-17-52).txt

Scan type: Full Scan (C:\|D:\|G:\|H:\|)
Objects scanned: 291196
Time elapsed: 2 hour(s), 19 minute(s), 28 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 3

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
H:\Program Files\Gamevance (Adware.Gamevance) -> Quarantined and deleted successfully.

Files Infected:
H:\Program Files\Final Fantasy VII\tm_redist\tm_redist.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
H:\Users\Family\Downloads\PLAY_MP3(2).exe (Adware.Agent) -> Quarantined and deleted successfully.
H:\Users\Family\Downloads\PLAY_MP3.exe (Adware.Agent) -> Quarantined and deleted successfully.

Hijack This Log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:20:15 AM, on 7/25/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.17184)
Boot mode: Normal

Running processes:
H:\Windows\system32\taskeng.exe
H:\Windows\system32\Dwm.exe
H:\Windows\Explorer.EXE
H:\Program Files\Windows Defender\MSASCui.exe
H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
H:\Windows\System32\rundll32.exe
H:\Program Files\iTunes\iTunesHelper.exe
H:\Program Files\Common Files\Real\Update_OB\realsched.exe
H:\Program Files\Windows Sidebar\sidebar.exe
H:\Windows\ehome\ehtray.exe
H:\Program Files\Steam\Steam.exe
H:\Program Files\Windows Live\Messenger\msnmsgr.exe
H:\Program Files\RocketDock\RocketDock.exe
H:\Program Files\Windows Media Player\wmpnscfg.exe
H:\Program Files\Google\Google Updater\GoogleUpdater.exe
H:\Windows\ehome\ehmsas.exe
H:\Program Files\LogMeIn\x86\LogMeInSystray.exe
H:\Program Files\LogMeIn\x86\LMIGuardian.exe
H:\Program Files\Internet Explorer\iexplore.exe
H:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
H:\Program Files\Opera\Opera.exe
H:\PROGRA~1\MICROS~3\Office12\OUTLOOK.EXE
H:\Program Files\Adobe\Adobe Photoshop CS3\Photoshop.exe
H:\PROGRA~1\MICROS~3\Office12\OIS.EXE
H:\Windows\System32\mspaint.exe
H:\Program Files\GlobalSCAPE\CuteFTP 8 Professional\cuteftppro.exe
H:\Program Files\GlobalSCAPE\CuteFTP 8 Professional\ftpte.exe
H:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
H:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
H:\Program Files\Adobe\Adobe Flash CS3\Flash.exe
H:\Windows\system32\NOTEPAD.EXE
H:\Program Files\Trend Micro\HijackThis\HijackThis.exe
H:\Windows\system32\msfeedssync.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=105563
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - H:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - h:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - h:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NBKeyScan] "H:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "H:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [LogMeIn GUI] "H:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AppleSyncNotifier] H:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "H:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "H:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\RunOnce: [InnoSetupRegFile.0000000001] "H:\Windows\is-EHE2C.exe" /REG
O4 - HKCU\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] H:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Steam] "H:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [swg] H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "H:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [RocketDock] "H:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User '?')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [Sidebar] H:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [swg] H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [msnmsgr] "H:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [RocketDock] "H:\Program Files\RocketDock\RocketDock.exe" (User '?')
O4 - HKUS\S-1-5-21-2547846688-812082192-2519804348-1000\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe (User '?')
O4 - S-1-5-21-2547846688-812082192-2519804348-1000 Startup: Xfire.lnk = H:\Program Files\Xfire\xfire.exe (User '?')
O4 - Startup: Xfire.lnk = H:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Google Updater.lnk = H:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://H:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - H:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - H:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - H:\Windows\System32\DreamScene.dll
O23 - Service: Apple Mobile Device - Apple Inc. - H:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - H:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - H:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - H:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - H:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - H:\Windows\system32\nvvsvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - H:\Windows\system32\IoctlSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - H:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 9274 bytes

guestolo · « **Reply #10 on:** July 26, 2008, 09:16:31 AM »

Take a look at the following link
http://www.vistaforums.com/Forum/Topic14017-9-2.aspx

Try what's suggested by WAW8
See if it helps with System Restore

Small Shoe Magoo · « **Reply #11 on:** July 27, 2008, 09:10:30 PM »

Thank you for your response and sorry for the delay. I was gone yesterday.

I did what you WAW8 suggested and it did go farther into the system restore process (computer restarted); however, it came up with this error message on the restart.

If it's too much trouble, I can go ahead and reformat.

I appreciate the help.

guestolo · « **Reply #12 on:** July 27, 2008, 09:22:14 PM »

It might be quicker just to backup and format>>reinstall

but if you could try the following, it may help
Can you try System Restore in safe mode

if that won't work, can you try it from Booting from the Vista DVD and try system restore
Here's a link that explains
Let me know if it works, either way please
http://vistaultimate.windowsreinstall.com/...stemrestore.htm

TheTechGuide Forum

News:

Author Topic: Few problems.. (Read 887 times)

Small Shoe Magoo

Few problems..

guestolo

Few problems..

Small Shoe Magoo

Few problems..

Stop Reading My Name

Few problems..

guestolo

Few problems..

Small Shoe Magoo

Few problems..

Stop Reading My Name

Few problems..

Small Shoe Magoo

Few problems..

guestolo

Few problems..

Small Shoe Magoo

Few problems..

guestolo

Few problems..

Small Shoe Magoo

Few problems..

guestolo

Few problems..