CPU Spikes

Status
Not open for further replies.
ComboFix log continued...:
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\day of defeat source\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\WINDOWS\\system32\\LEXPPS.EXE"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Starcraft\\StarCraft.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\half-life 2 deathmatch\\hl2.exe"=
"c:\\Program Files\\THQ\\Gas Powered Games\\Supreme Commander\\bin\\SupremeCommander.exe"=
"c:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\team fortress 2\\hl2.exe"=
"c:\\Program Files\\Steam\\steam.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=
"c:\\Program Files\\Warcraft III\\Warcraft III.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\company of heroes sp demo\\RelicCOH.exe"=
"c:\\Program Files\\MIRC\\mirc.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\battleforge\\Bootstrapper.exe"=
"c:\\Program Files\\Unreal Tournament 3\\Binaries\\UT3.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Electronic Arts\\Command & Conquer 3\\RetailExe\\1.9\\cnc3game.dat"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\cogs\\cogs.exe"=
"c:\\Program Files\\Square Enix\\ORDER OF WAR (DEMO)\\oow_final.bin"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\sin episodes emergence\\SinEpisodes.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\half-life\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\ricochet\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\counter-strike\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\team fortress classic\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\world in conflict - demo\\wic.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\dawn of war ii - spd\\DOW2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\half-life deathmatch source\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\insurgency\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\roboblitz\\Binaries\\RoboLaunch.exe"=
"c:\\Program Files\\Ubisoft\\Chessmaster 10th Edition\\game.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\roboblitz\\Binaries\\RoboGame.exe"=
"c:\\SCRDS\\srcds.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\altitude\\altitude.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\eufloria - demo\\Eufloria.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\dlls\\ubiorbitapi_r1.dll"=
"c:\\Program Files\\Steam\\steamapps\\common\\torchlight\\Torchlight.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator demo\\AvP.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9842:TCP"= 9842:TCP:*:Disabled:SolidNetworkManager
"9842:UDP"= 9842:UDP:*:Disabled:SolidNetworkManager
"3389:TCP"= 3389:TCP:Remote Desktop
"38705:TCP"= 38705:TCP:*:Disabled:SolidNetworkManager
"38705:UDP"= 38705:UDP:*:Disabled:SolidNetworkManager
"65533:TCP"= 65533:TCP:Services
"52344:TCP"= 52344:TCP:Services
"2479:TCP"= 2479:TCP:Services
"5687:TCP"= 5687:TCP:Services
"3246:TCP"= 3246:TCP:Services

R0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [1/14/2010 4:45 PM 51984]
R0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys [1/14/2010 4:46 PM 59664]
S2 DNADownloader;DNADownloader;c:\program files\GameSpot\DownloadManager_Win32.exe [5/9/2007 10:48 AM 700416]
S2 PfDetNT;PfDetNT;c:\windows\system32\drivers\pfmodnt.sys [6/23/2009 1:38 PM 15896]
S2 ThreatFire;ThreatFire;c:\program files\ThreatFire\TFService.exe service --> c:\program files\ThreatFire\TFService.exe service [?]
S3 AmdTools;AMD Special Tools Driver;c:\windows\system32\DRIVERS\AmdTools.sys --> c:\windows\system32\DRIVERS\AmdTools.sys [?]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [6/23/2009 1:34 PM 99352]
S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [6/23/2009 1:34 PM 99352]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [12/29/2009 1:34 AM 79360]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [6/23/2009 1:34 PM 555032]
S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [6/23/2009 1:34 PM 555032]
S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [6/23/2009 1:35 PM 100888]
S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [6/23/2009 1:35 PM 100888]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [6/23/2009 1:34 PM 566296]
S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [6/23/2009 1:34 PM 566296]
S3 SNDP610;Dual Mode Camera;c:\windows\system32\drivers\sndp610.sys [9/30/2007 8:48 PM 219392]
S3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [1/14/2010 4:46 PM 33552]
S3 UCharger;Energizer Usb Charger Driver;c:\windows\system32\drivers\UCharger.sys [5/15/2007 6:43 AM 13765]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder

2010-02-07 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://yahoo.com/
IE: &Yahoo! Search
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Yahoo! &Dictionary
IE: Yahoo! &Maps
IE: Yahoo! &SMS
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949}
Trusted Zone: aol.com\free
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-02-07 22:01
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
CTxfiHlp = CTXFIHLP.EXE?
CTHelper = CTHELPER.EXE?

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\Policies\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (S-1-5-21-1644491937-1482476501-725345543-1003)
@Allowed: (Read) (S-1-5-21-1644491937-1482476501-725345543-1003)
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:fa,43,74,dd,9b,54,0e,3d,04,59,df,04,52,02,f4,fa,74,1c,e5,28,8d,31,2e,
be,2b,7d,18,d6,38,7c,bf,85,02,a5,fd,f8,29,65,87,1d,a3,ee,57,1b,b9,a7,45,40,\
"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(544)
c:\windows\system32\WININET.dll
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\en-us\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\en-us\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\ieframe.dll
.
Completion time: 2010-02-07 22:04:58
ComboFix-quarantined-files.txt 2010-02-08 04:04
ComboFix2.txt 2010-02-07 21:54

Pre-Run: 129,710,948,352 bytes free
Post-Run: 130,250,690,560 bytes free

- - End Of File - - 1726F8AB8413D07D383338B151F25865
 
Malwarebytes log:
Malwarebytes' Anti-Malware 1.44
Database version: 3703
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

2/7/2010 10:18:45 PM
mbam-log-2010-02-07 (22-18-26).txt

Scan type: Quick Scan
Objects scanned: 195060
Time elapsed: 11 minute(s), 0 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\HelpAssistant\Local Settings\Temp\xiyd.dll (Trojan.Dropper) -> No action taken.

HiJackThis log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:25:41 PM, on 2/7/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\GameSpot\DownloadManager_Win32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ThreatFire\TFService.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Documents and Settings\Joshua\My Documents\My Downloaded Files\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yahoo!
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://supportcenter.rr.com/sdccommon/download/tgctlcm.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} -
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.10.115.cab
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/sysreqlab2.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1164584002265
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} (Verizon Wireless Media Upload) - Cell Phones,Smartphones,Mobile Cell Phone Plans - Verizon Wireless
O16 - DPF: {A9F8D9EC-3D0A-4A60-BD82-FBD64BAD370D} (DDRevision Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsxp2k.cab
O16 - DPF: {BD08A9D5-0E5C-4F42-99A3-C0CB5E860557} (CSolidBrowserObj Object) - http://www.solidstatenetworks.com/demos/plugin/solidstateion.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15111/CTPID.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: DNADownloader - CNET Networks - C:\Program Files\GameSpot\DownloadManager_Win32.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Common Files\supportsoft\bin\ssrc.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe

--
End of file - 10047 bytes
 
Hijackthis looks good.

Now run CCleaner and Cleanup!

Reboot

Then run Combofix again in normal mode as well as Malwarebytes, post both of their logs when done.
 
Ran both CClean and Cleanup!... they helped delete a bunch of junk files. Rebooted, ran Combofix and right when it was about to make the log file, computer went to blue screen of death, so I rebooted, and it went right to blue screen of death, then I went to safe mode and haven't seen it yet. Well I got both new log files for you.

ComboFix log:
ComboFix 10-02-07.06 - Joshua 02/08/2010 0:40.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1421 [GMT -6:00]
Running from: c:\documents and settings\Joshua\My Documents\My Downloaded Files\ComboFix.exe
.
PEV Error: LocalAppDataFile

((((((((((((((((((((((((( Files Created from 2010-01-08 to 2010-02-08 )))))))))))))))))))))))))))))))
.

2010-02-08 05:28 . 2010-02-08 05:28 -------- d-----w- c:\program files\CleanUp!
2010-02-08 05:19 . 2010-02-08 05:19 -------- d-----w- c:\program files\CCleaner
2010-02-07 22:13 . 2010-02-07 22:13 -------- d-----w- c:\documents and settings\Joshua\Application Data\Malwarebytes
2010-02-07 22:13 . 2010-01-07 22:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-02-07 22:13 . 2010-02-07 22:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2010-02-07 22:13 . 2010-02-08 04:18 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-02-07 22:13 . 2010-01-07 22:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-07 05:24 . 2010-02-07 05:24 -------- d-----w- c:\program files\IFJ
2010-02-06 02:41 . 2010-02-06 02:41 -------- d-----w- c:\documents and settings\HelpAssistant\WINDOWS
2010-02-06 02:41 . 2010-02-06 02:41 -------- d-----w- c:\documents and settings\HelpAssistant\VSWebCache
2010-02-06 02:41 . 2010-02-06 02:41 -------- d-----w- c:\documents and settings\HelpAssistant\UserData
2010-02-06 02:41 . 2010-02-06 02:41 -------- d-----w- c:\documents and settings\HelpAssistant\Tracing
2010-02-06 02:40 . 2010-02-06 02:40 -------- d-----w- c:\documents and settings\HelpAssistant\PrivacIE
2010-02-05 23:45 . 2010-02-05 23:45 -------- d-----w- c:\documents and settings\HelpAssistant\LocalLow
2010-02-05 23:03 . 2009-07-05 08:00 -------- d-sh--w- c:\documents and settings\HelpAssistant\IETldCache
2010-02-05 23:03 . 2010-02-08 06:35 -------- d-----w- c:\documents and settings\HelpAssistant
2010-01-26 00:17 . 2009-09-04 23:29 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2010-01-22 02:22 . 2010-01-22 02:22 -------- d-----w- c:\documents and settings\Joshua\Application Data\runic games
2010-01-18 15:44 . 2010-01-18 21:17 -------- d-----w- c:\documents and settings\Joshua\Local Settings\Application Data\oijgyx
2010-01-14 22:46 . 2010-01-14 23:08 33552 ----a-w- c:\windows\system32\drivers\TfNetMon.sys
2010-01-14 22:46 . 2010-01-14 23:08 59664 ----a-w- c:\windows\system32\drivers\TfSysMon.sys
2010-01-14 22:45 . 2010-01-14 23:08 51984 ----a-w- c:\windows\system32\drivers\TfFsMon.sys
2010-01-12 04:17 . 2010-01-12 04:17 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-01-12 04:17 . 2010-01-12 04:17 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-01-12 04:17 . 2010-01-12 04:17 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-01-12 04:17 . 2010-01-12 04:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll
2010-01-12 04:17 . 2010-01-12 04:17 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-01-12 04:17 . 2010-01-12 04:17 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-01-10 08:20 . 2009-09-04 23:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-01-10 08:20 . 2009-09-04 23:44 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2010-01-10 08:20 . 2009-09-04 23:29 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2010-01-10 08:20 . 2009-09-04 23:29 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2010-01-10 08:20 . 2009-09-04 23:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-01-10 08:20 . 2009-09-04 23:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2010-01-09 07:39 . 2010-02-04 07:23 -------- d-----w- C:\SCRDS

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-07 23:23 . 2007-12-17 03:09 -------- d-----w- c:\documents and settings\Joshua\Application Data\gtk-2.0
2010-02-07 05:37 . 2009-04-12 04:30 -------- d-----w- c:\program files\SpeedFan
2010-02-06 21:09 . 2009-06-11 02:17 -------- d-----w- c:\documents and settings\Joshua\Application Data\IGN_DLM
2010-02-06 10:01 . 2005-01-01 23:08 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-02-06 09:34 . 2009-08-16 00:41 -------- d-----w- c:\program files\NVIDIA Corporation
2010-02-05 22:13 . 2009-04-27 23:55 -------- d-----w- c:\program files\MIRC
2010-02-04 07:36 . 2006-11-26 23:23 -------- d-----w- c:\program files\Steam
2010-02-02 07:17 . 2008-08-30 00:09 -------- d-----w- c:\documents and settings\Joshua\Application Data\OpenOffice.org2
2010-02-02 06:55 . 2008-08-30 00:12 1 ----a-w- c:\documents and settings\Joshua\Application Data\OpenOffice.org2\user\uno_packages\cache\stamp.sys
2010-01-27 01:00 . 2010-01-09 00:13 -------- d-----w- c:\program files\Ubisoft
2010-01-27 01:00 . 2006-11-26 22:34 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-20 22:30 . 2005-01-01 23:08 -------- d-----w- c:\program files\ThreatFire
2010-01-20 22:30 . 2008-08-23 17:02 -------- d-----w- c:\program files\Microsoft Silverlight
2010-01-19 08:09 . 2005-01-01 23:08 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2010-01-18 05:21 . 2009-06-30 02:24 -------- d-----w- c:\program files\Unreal Tournament 3
2010-01-18 04:51 . 2006-11-26 23:07 92560 ----a-w- c:\documents and settings\Joshua\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-01-15 02:26 . 2006-12-08 20:41 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-12 22:55 . 2007-01-23 20:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-01-12 04:03 . 2009-12-23 02:43 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-01-12 04:03 . 2009-12-23 02:43 11632640 ----a-w- c:\windows\system32\nvcompiler.dll
2010-01-12 04:03 . 2009-08-16 00:40 4077672 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-01-12 04:03 . 2009-05-01 05:38 2283526 ----a-w- c:\windows\system32\nvdata.bin
2010-01-12 04:03 . 2009-03-27 15:03 6359168 ----a-w- c:\windows\system32\nv4_disp.dll
2010-01-12 04:03 . 2009-03-27 15:03 4104192 ----a-w- c:\windows\system32\nvcuda.dll
2010-01-12 04:03 . 2009-03-27 15:03 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2010-01-12 04:03 . 2009-03-27 15:03 182888 ----a-w- c:\windows\system32\nvcodins.dll
2010-01-12 04:03 . 2009-03-27 15:03 14458880 ----a-w- c:\windows\system32\nvoglnt.dll
2010-01-12 04:03 . 2009-03-27 15:03 1081344 ----a-w- c:\windows\system32\nvapi.dll
2010-01-12 04:03 . 2009-03-27 15:03 10276768 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-01-03 06:16 . 2010-01-03 05:06 -------- d-----w- c:\program files\DTF
2010-01-01 22:47 . 2006-12-21 16:01 -------- d-----w- c:\program files\DivX
2010-01-01 22:47 . 2010-01-01 22:47 -------- d-----w- c:\program files\Common Files\DivX Shared
2010-01-01 09:13 . 2009-06-11 02:17 -------- d-----w- c:\program files\Download Manager
2009-12-31 18:09 . 2006-11-29 00:41 -------- d-----w- c:\program files\Winamp
2009-12-29 07:41 . 2009-12-29 06:15 -------- d--h--w- c:\program files\Creative Installation Information
2009-12-29 07:41 . 2009-12-29 07:21 10995608 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative CD Burner Plugin 5.01.44 for Creative MediaSource 5 Player_Organizer__\CMS5_BRNR_PCAPP_LB_5_01_44.exe
2009-12-29 07:34 . 2009-12-29 07:34 -------- d-----w- c:\program files\Common Files\Creative Labs Shared
2009-12-29 07:34 . 2006-11-26 22:40 -------- d-----w- c:\program files\Creative
2009-12-29 07:33 . 2007-03-29 01:39 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2009-12-29 07:33 . 2006-11-26 22:44 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2009-12-29 07:27 . 2009-12-29 07:27 2394674 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative Disc Maker or Creative CD Burner drive update version 1.00.05__\CDBD_PCApp_1_00_05.exe
2009-12-29 07:27 . 2009-12-29 07:27 8179932 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Plugin for MiniDisc 1.00.58__\CMS_MDC_PCAPP_LB_1_00_58.exe
2009-12-29 07:27 . 2009-12-29 07:26 21273195 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource DVD-Audio Player Update 2.00.75__\DVDA_PCApp_LB_2_00_75.exe
2009-12-29 07:26 . 2009-12-29 07:26 10388491 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative CD Burner Plugin 5.01.31 for Creative MediaSource 5 Player_Organizer__\CMS5_BRNR_PCAPP_LB_5_01_31.exe
2009-12-29 07:25 . 2009-12-29 07:25 11995656 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource CD-ROM Burner plug-in 2.01.08 for Creative Sound Blaster Audigy 2 ZS__\CMS_PCBURNER_LB_2_01_08.exe
2009-12-29 07:25 . 2009-12-29 07:24 12937613 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Go! 3.10.15__\CMS_GO_PCAPP_LB_3_10_15.exe
2009-12-29 07:24 . 2009-12-29 07:24 11690872 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Plugin for CD Burner 3.10.18__\CMS_BURNER_PCAPP_LB_3_10_18.exe
2009-12-29 07:24 . 2009-12-29 07:21 54743966 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource Player_Organizer 3.30.21__\CMS_PCAPP_LB_3_30_21.exe
2009-12-29 07:21 . 2009-12-29 07:19 39451456 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative Sound Blaster Audigy series driver 2.18.0011__\SBAX_PCDRV_LB_2_18_0011.exe
2009-12-29 06:57 . 2006-11-26 22:45 -------- d-----w- c:\documents and settings\Joshua\Application Data\Creative
2009-12-29 06:15 . 2009-12-29 06:15 -------- d-----w- c:\program files\Common Files\Creative
2009-12-29 06:13 . 2009-12-29 06:12 3364451 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource - NOMAD Pack for Creative NOMAD Jukebox_Jukebox C (version 1.01.04)__\CMS_JBT1Plugins_1_01_04.exe
2009-12-29 06:12 . 2009-12-29 06:12 12907880 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative WaveStudio 7.12.00__\WAVESTD_PCAPP_LB_7_12_00.exe
2009-12-29 06:12 . 2009-12-29 06:10 37634288 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative MediaSource 5 Player_Organizer 5.26.02__\CMS5_PCAPP_LB_5_26_02.exe
2009-12-29 06:10 . 2009-12-29 06:10 4193086 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Gracenote Update for Creative applications__\CDDB_PCApp_LB_2_40_02.exe
2009-12-29 06:10 . 2009-12-29 06:10 4441248 ----a-w- c:\documents and settings\All Users\Application Data\Creative\Software Update\cache\Creative EAX Console Update (Version 2.02.05) for Sound Blaster Audigy 2 ZS__\SBA2_WEBUP_EAXC_031230.exe
2009-12-29 06:01 . 2009-12-29 06:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Creative
2009-12-27 08:06 . 2009-12-27 08:05 -------- d-----w- c:\documents and settings\Joshua\Application Data\Crayon Physics Deluxe
2009-12-25 22:58 . 2009-01-09 01:07 -------- d-----w- c:\program files\Common Files\Adobe AIR
2009-12-25 22:58 . 2009-12-25 22:58 38784 ----a-w- c:\documents and settings\Default User\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2009-12-25 22:58 . 2008-07-15 14:05 38784 ----a-w- c:\documents and settings\Joshua\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2009-12-25 05:08 . 2009-03-01 02:55 -------- d-----w- c:\program files\EVGA Precision
2009-12-25 04:55 . 2009-12-25 04:55 -------- d-----w- c:\documents and settings\Joshua\Application Data\Wargaming.Net
2009-12-25 03:45 . 2006-11-27 06:34 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-25 03:42 . 2009-12-25 03:42 -------- d-----w- c:\program files\Square Enix
2009-12-25 03:31 . 2009-12-25 03:31 -------- d-----w- c:\program files\1C
2009-12-24 04:22 . 2009-12-24 02:40 -------- d-----w- c:\program files\AMD
2009-12-21 19:14 . 2004-08-04 12:00 916480 ------w- c:\windows\system32\wininet.dll
2009-12-20 00:20 . 2009-12-20 00:19 -------- d-----w- c:\program files\QuickTime
2009-12-20 00:18 . 2007-08-02 01:20 -------- d-----w- c:\program files\Common Files\Apple
2009-12-17 08:56 . 2009-12-17 08:56 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage
2009-12-14 09:19 . 2009-07-03 22:06 -------- d-----w- c:\program files\Microsoft Works
2009-12-12 22:13 . 2009-12-12 22:09 -------- d-----w- c:\program files\Microsoft
2009-12-12 22:13 . 2009-12-12 22:13 -------- d-----w- c:\program files\Microsoft Office Outlook Connector
2009-12-12 22:12 . 2009-03-25 02:40 -------- d-----w- c:\program files\Windows Live
2009-12-12 22:12 . 2009-12-12 22:12 -------- d-----w- c:\program files\Microsoft Sync Framework
2009-12-12 22:11 . 2009-12-12 22:11 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2009-11-21 15:51 . 2004-08-04 12:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-21 02:34 . 2009-05-01 06:36 592488 ----a-w- c:\windows\system32\nvudisp.exe
2009-11-21 02:34 . 2009-03-27 15:03 182888 ----a-w- c:\windows\system32\nvcod.dll
2009-11-20 03:42 . 2009-05-01 06:36 592488 ----a-w- c:\windows\system32\NVUNINST.EXE
.

((((((((((((((((((((((((((((( SnapShot@2010-02-07_21.37.02 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-02-08 06:32 . 2010-02-08 06:32 16384 c:\windows\temp\Perflib_Perfdata_ee0.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igndlm.exe"="c:\program files\Download Manager\DLM.exe" [2009-05-15 1103216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTSysVol"="c:\program files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe" [2003-09-17 57344]
"CTDVDDET"="c:\program files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDet.EXE" [2003-06-18 45056]
"SBDrvDet"="c:\program files\Creative\SB Drive Det\SBDrvDet.exe" [2002-12-04 45056]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2006-11-29 185896]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-11-11 417792]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-04-09 19968]
"CTHelper"="CTHELPER.EXE" [2009-06-23 19456]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-12 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-12 110696]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^eFax 4.2.lnk]
backup=c:\windows\pss\eFax 4.2.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^LUMIX Simple Viewer.lnk]
backup=c:\windows\pss\LUMIX Simple Viewer.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Joshua^Start Menu^Programs^Startup^eFax 4.4.lnk]
backup=c:\windows\pss\eFax 4.4.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Joshua^Start Menu^Programs^Startup^GameSpot Download Manager.lnk]
backup=c:\windows\pss\GameSpot Download Manager.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Joshua^Start Menu^Programs^Startup^IMVU.lnk]
backup=c:\windows\pss\IMVU.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-22 07:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2009-08-13 21:51 177440 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Arucer]
2007-05-10 13:58 28672 ----a-w- c:\windows\system32\Arucer.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eFax 4.4]
2008-10-07 20:25 95744 ----a-w- c:\program files\eFax Messenger 4.4\J2GDllCmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-10-15 02:17 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
2007-08-22 21:31 80896 ----a-w- c:\program files\HP\Digital Imaging\bin\HpqSRmon.exe
 
ComboFix log continued:
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
2009-05-15 02:03 1103216 ----a-w- c:\program files\Download Manager\DLM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2007-07-10 14:18 270648 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
2003-08-19 14:43 57344 ----a-w- c:\program files\Lexmark X1100 Series\lxbkbmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-01-12 04:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-01-12 04:17 110696 ----a-w- c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhotoShow Deluxe Media Manager]
2005-02-26 00:28 212992 ----a-w- c:\progra~1\Ahead\NEROPH~1\data\Xtras\mssysmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-11-11 05:08 417792 ----a-w- c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteCenter]
2003-10-08 21:35 139264 ----a-w- c:\program files\Creative\MediaSource\RemoteControl\RcMan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ResChanger 2005]
2005-05-27 00:30 885248 ----a-w- c:\program files\ResChanger 2005\ResChanger2005.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-05-21 16:34 148888 ----a-w- c:\program files\Java\jre6\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ThreatFire]
2010-01-14 23:08 378128 ----a-w- c:\program files\ThreatFire\TFTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
2006-11-29 00:25 185896 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yahoo! Pager]
2009-03-18 23:50 4363504 ----a-w- c:\program files\Yahoo!\Messenger\YahooMessenger.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\day of defeat source\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\counter-strike source\\hl2.exe"=
"c:\\Program Files\\Activision\\Call of Duty 2\\CoD2MP_s.exe"=
"c:\\WINDOWS\\system32\\LEXPPS.EXE"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Starcraft\\StarCraft.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\half-life 2 deathmatch\\hl2.exe"=
"c:\\Program Files\\THQ\\Gas Powered Games\\Supreme Commander\\bin\\SupremeCommander.exe"=
"c:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\team fortress 2\\hl2.exe"=
"c:\\Program Files\\Steam\\steam.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=
"c:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=
"c:\\Program Files\\Warcraft III\\Warcraft III.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\company of heroes sp demo\\RelicCOH.exe"=
"c:\\Program Files\\MIRC\\mirc.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\battleforge\\Bootstrapper.exe"=
"c:\\Program Files\\Unreal Tournament 3\\Binaries\\UT3.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Electronic Arts\\Command & Conquer 3\\RetailExe\\1.9\\cnc3game.dat"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\cogs\\cogs.exe"=
"c:\\Program Files\\Square Enix\\ORDER OF WAR (DEMO)\\oow_final.bin"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\sin episodes emergence\\SinEpisodes.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\half-life\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\ricochet\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\counter-strike\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg@sbcglobal.net\\team fortress classic\\hl.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\world in conflict - demo\\wic.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\dawn of war ii - spd\\DOW2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\half-life deathmatch source\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\ludawg\\insurgency\\hl2.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\roboblitz\\Binaries\\RoboLaunch.exe"=
"c:\\Program Files\\Ubisoft\\Chessmaster 10th Edition\\game.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\roboblitz\\Binaries\\RoboGame.exe"=
"c:\\SCRDS\\srcds.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\altitude\\altitude.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\eufloria - demo\\Eufloria.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\dlls\\ubiorbitapi_r1.dll"=
"c:\\Program Files\\Steam\\steamapps\\common\\torchlight\\Torchlight.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\aliens vs predator demo\\AvP.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9842:TCP"= 9842:TCP:*:Disabled:SolidNetworkManager
"9842:UDP"= 9842:UDP:*:Disabled:SolidNetworkManager
"3389:TCP"= 3389:TCP:Remote Desktop
"38705:TCP"= 38705:TCP:*:Disabled:SolidNetworkManager
"38705:UDP"= 38705:UDP:*:Disabled:SolidNetworkManager
"65533:TCP"= 65533:TCP:Services
"52344:TCP"= 52344:TCP:Services
"2479:TCP"= 2479:TCP:Services
"5687:TCP"= 5687:TCP:Services
"3246:TCP"= 3246:TCP:Services

R0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [1/14/2010 4:45 PM 51984]
R0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys [1/14/2010 4:46 PM 59664]
R2 DNADownloader;DNADownloader;c:\program files\GameSpot\DownloadManager_Win32.exe [5/9/2007 10:48 AM 700416]
R2 PfDetNT;PfDetNT;c:\windows\system32\drivers\pfmodnt.sys [6/23/2009 1:38 PM 15896]
R2 ThreatFire;ThreatFire;c:\program files\ThreatFire\TFService.exe service --> c:\program files\ThreatFire\TFService.exe service [?]
R3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\system32\drivers\COMMONFX.sys [6/23/2009 1:34 PM 99352]
R3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\system32\drivers\CTAUDFX.sys [6/23/2009 1:34 PM 555032]
R3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\system32\drivers\CTSBLFX.sys [6/23/2009 1:34 PM 566296]
R3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [1/14/2010 4:46 PM 33552]
S3 AmdTools;AMD Special Tools Driver;c:\windows\system32\DRIVERS\AmdTools.sys --> c:\windows\system32\DRIVERS\AmdTools.sys [?]
S3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.sys [6/23/2009 1:34 PM 99352]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [12/29/2009 1:34 AM 79360]
S3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.sys [6/23/2009 1:34 PM 555032]
S3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\system32\drivers\CTERFXFX.sys [6/23/2009 1:35 PM 100888]
S3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.sys [6/23/2009 1:35 PM 100888]
S3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.sys [6/23/2009 1:34 PM 566296]
S3 SNDP610;Dual Mode Camera;c:\windows\system32\drivers\sndp610.sys [9/30/2007 8:48 PM 219392]
S3 UCharger;Energizer Usb Charger Driver;c:\windows\system32\drivers\UCharger.sys [5/15/2007 6:43 AM 13765]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder

2010-02-07 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://yahoo.com/
IE: &Yahoo! Search
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Yahoo! &Dictionary
IE: Yahoo! &Maps
IE: Yahoo! &SMS
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949}
Trusted Zone: aol.com\free
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-02-08 01:03
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
CTxfiHlp = CTXFIHLP.EXE?
CTHelper = CTHELPER.EXE?

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys >>UNKNOWN [0x89A3E6D8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb810cf28
\Driver\ACPI -> 0x89a3e6d8
\Driver\atapi -> atapi.sys @ 0xb7f11852
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
NDIS: NVIDIA nForce Networking Controller -> SendCompleteHandler -> 0x89599330
PacketIndicateHandler -> NDIS.sys @ 0xb7dc6a21
SendHandler -> NDIS.sys @ 0xb7da487b
Warning: possible MBR rootkit infection !
copy of MBR has been found in sector 0x022EEEC02
malicious code @ sector 0x022EEEC05 !
PE file found in sector at 0x022EEEC1B !
MBR rootkit infection detected ! Use: "mbr.exe -f" to fix.

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\Policies\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (S-1-5-21-1644491937-1482476501-725345543-1003)
@Allowed: (Read) (S-1-5-21-1644491937-1482476501-725345543-1003)
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)

[HKEY_USERS\S-1-5-21-1644491937-1482476501-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:fa,43,74,dd,9b,54,0e,3d,04,59,df,04,52,02,f4,fa,74,1c,e5,28,8d,31,2e,
be,2b,7d,18,d6,38,7c,bf,85,02,a5,fd,f8,29,65,87,1d,a3,ee,57,1b,b9,a7,45,40,\
"??"=hex:5d,2e,bc,00,9b,07,bc,9c,34,34,87,88,c9,ab,ca,0d
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(772)
c:\program files\ThreatFire\TFWAH.dll
c:\program files\ThreatFire\TFNI.dll
c:\program files\ThreatFire\TFMon.dll
c:\program files\ThreatFire\TFRK.dll

- - - - - - - > 'lsass.exe'(836)
c:\program files\ThreatFire\TFWAH.dll

- - - - - - - > 'explorer.exe'(1428)
c:\windows\system32\WININET.dll
c:\program files\ThreatFire\TfWah.dll
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\en-us\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\en-us\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\ieframe.dll
c:\program files\ThreatFire\TFNI.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
c:\program files\ThreatFire\TFMon.dll
c:\program files\ThreatFire\TFRK.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2010-02-08 01:12:30
ComboFix-quarantined-files.txt 2010-02-08 07:12
ComboFix2.txt 2010-02-08 04:04
ComboFix3.txt 2010-02-07 21:54

Pre-Run: 131,779,166,208 bytes free
Post-Run: 131,730,755,584 bytes free

- - End Of File - - 111A675F0FF446E485FC647C7B992162
 
yay! the infections are gone... can I go outside and play now? :p ... on the real though, my compter still freezes and I have to reboot, like I said, this just started recently... I'm assuming right after I got that trojan virus a couple of weeks ago, it just keep getting worst :-(. I did run my Threat Fire antivirus, and it picked up some infected files, I assumed it got them all (but man them trojans leach on and hold on, lol) but now that all infections are gone, I'm not sure what's making it bog down now :-(

Edited: I'm not sure what's going on, I just watched some videos from GameTrailers and it didn't freeze once, but it did re-fresh the page automaticly every so many minutes, which was weird... be watching a video and it refreshes on me, I'm like what!!??? Anyways, I'll post more tomorrow, I'm gone to sleep, hopefully it's fixed, but we'll see... will update you more tomorrow. Thanks a bunch.

Malwarebytes log:
Malwarebytes' Anti-Malware 1.44
Database version: 3703
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

2/8/2010 2:01:42 AM
mbam-log-2010-02-08 (02-01-42).txt

Scan type: Quick Scan
Objects scanned: 140676
Time elapsed: 8 minute(s), 13 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 
No I don't have it for you :-(... on the second blue screen it said something at the bottom... TF-something ... I'm assuming it was refering to my Threat Fire (anti-virus) program. It hasn't shown up again, but as soon as I got on my computer about 10 minutes ago, it was froze, so I had to restart, and still getting spikage. Could it be my CPU is going out? I did a Ram Memtest in my Bios (it passed test), is there a way to do a CPU test?

If I see that blue screen of death again, I'll be sure to write down the error code or file information, I didn't see any codes though, first one said something about a file, second one did too (don't think they were same file).

Edited: Also, SpeedFan showed that my Core was getting up to 52 celcius... it showed a flame icon next to Core 1... but I don't think that's too hot for a CPU, I could be wrong. Then again it probably shouldn't be getting that hot just by watching videos. I'll probably open up my Computer tonight, and blow dust it throughly, been a couple of months since I did so.
 
Uninstalled Threat Fire and Installed AVG 9 free edition... I always liked AVG, I had it for awhile... then I remember reading they were shutting down the free version, and after a couple of months after reading that, my AVG just went off, quit working... so I looked up another free program, found Threat Fire. So I'm glad AVG is back, I've had Threat Fire for about 5 months, maybe longer. I was already planning on installing AVG back, after seeing on your site that the free edition was back, but I was gonna wait... cause I was trying to get this CPU spikage to quit.

Anyways, the CPU spikage is still going, nice try though... cause I remember reading some comments when I found Threat Fire, that it would cause some lagging, but I don't think I ever really felt the lag, then again my Computer is pretty good.

DFI LanParty UT nF4-D
Windows XP (SP3)
AMD Anthlon 64 x2 +4400 2.2 ghz
GeForce 7800 GT
2 Gigs of Ram
300 Gigs of Hard Drive
Sound Blaster Audigy Limited Gamer Edition

Just thought I'd throw up my Computer Specs for you, just incase it could help. I haven't tried any of the games I really like to play, like Counter-Strike Source... maybe I'll try it later tonight, see if it'll play through without freezing, which I doubt it will be able to, that's why I haven't tried within the last several days, I'm guessing since it first started really bogging down.

Edited: Oh yeah, before I forget... I also took my computer outside and used a can of air to dust it out throughly, but there was hardly any dust. I took the CPU fan out and blew air in it, hardly no dust, I took the video card out and all... hardly no dust. I did find one flaw, my side fan must have not been working, one of the wires weren't connected correctly, but I fixed it. But still my computer is still acting up. Also, the red busy signal light on front of PC keeps blinking... even when I'm not on the PC and it's just sitting idle on desktop.
 
Status
Not open for further replies.
Back
Top Bottom