anyone know how to decypher hijack log?

Hi, I am having so much trouble with my computer... running most programs, downloading or converting avi-dvd...etc... reboots my computer. This is every day... many times a day. When the system goes back up I get the windows error page stating that I need to update my video drivers or set my acceleration... I did this and my system still crashes and I still get the same error page. Any virus/spyware scan I have done shows nothing. Local techs have tested the computer and have not shown any problems. But my XP is not genuine so they could not run their own scans for viruses. I have read a few forums and people post the HiJack logs... I have no clue what to do with it... Could someone help? I also have an error recently Crogram Files/acceleration software/antivirus/sstsmon0.dll "could not locate" or something like that

Logfile of HijackThis v1.99.1
Scan saved at 1:29:55 AM, on 10/24/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\Program Files\MySoftware\MyInvoices\tracker.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\Program Files\utorrent\utorrent.exe
C:\WINDOWS\system32\HPHipm11.exe
C:\Program Files\WinTools\RAM Saver Pro\ramsaverpro.exe
C:\Program Files\Save\Save.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mmjb.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_director.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MM_TDM~1.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Documents and Settings\Craig\Desktop\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/search?hl=en&q=calendiva&btnG=Google+Search&meta=
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Blubster] C:\Program Files\Blubster\Blubster.exe SILENT
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Tracker] C:\Program Files\MySoftware\MyInvoices\tracker.exe
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon0.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Registry Defender] "C:\Program Files\Registry Defender Trial\RegClean.exe"
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_5 -reboot 1
O4 - HKCU\..\Run: [µTorrent] "C:\Program Files\utorrent\utorrent.exe"
O4 - HKCU\..\Run: [RAMSaverPro] C:\Program Files\WinTools\RAM Saver Pro\ramsaverpro.exe
O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe

Thanks

 

kim272-
There are a couple of things that you need to do.

1) Open My Computer, double click the C drive and select File -> New Folder. Name the folder HijackThis. Now drag and drop the HijackThis.exe file to this folder. It needs to be in the root directory within its own folder to make backups of the projects you do. Last thing is to rename the HijackThis.exe file to HjT.exe. I suggest this because there are some programs that try to hide from it. It should look like this: c:\HijackThis\HjT.exe

2) Go to http://www.trendmicro.com and run the online scan. This is one of the best scans you can run.

3) I recommend this to all people who are not familiar with a registry, and cleaning. You should download the following from http://www.download.com

Ad-Aware (Lavasoft)
Spybot Search & Destroy
CCleaner

Then go to this web site and download A-Squared Free http://www.emsisoft.com/en/software/download/

Make sure that you have all the updates for every program. After you do the online trend micro scan re-boot your computer in safe mode.

How to get to safe mode:
As the BIOS screen comes on your computer start pressing F8 repeatedly. This will bring up the option. Now run each of the programs I told you to download. Last but not least while you are still in safe mode run another HjT log and save it to post again. I will read your post then and see if I can help you with the problem.

With just a quick glance I saw a couple that need to be removed, but let's run the software first and see how much we can get clean.

[bold]Be careful with Spybot. Make sure the files you are removing need to be removed, it sometimes doesn't like firefox add on and so forth. These items you do not have to tell it to remove.[/bold]

[bold]Before you do anything in safe mode I want you to make a system recovery for yourself. I imagine that you have not done this. If you have done this then just do a system restore. If you have not then these are the steps to follow:
1) Open the Control Panel and select Performance and Maintenance. When the window opens on the left side you will see where it says System Restore.
2) Click System Restore and the System Restore window will open. Here you may select to Restore computer to an earlier state. This will not work if you never made a System Restore before. Select the other radio button that says Create a restore point. Name the restore point and it will process the information in a few seconds.[/bold] I know that your system is not set up correctly right now, but if something is damaged we can at least restore it to its current state.

Good luck!

 

Hi, thanks for your response... it is very detailed and easy to follow. But I am having trouble being able to complete the processes.
-I did change the HiJack this file
-I tried scanning with housecall www.trendmicro.com - the first time i did it (about 3days ago)it rebooted my computer... now, today, i tried 3 more times after your post and all 3 times i got "runtime error c\program files\internet explorer\iexplore.exe R6025 - pure virtual function call" - never had this error before today... usually just get a reboot
***my computer reboots with all large applications... HOusecall, McAfee(I had to scan each file individually to get it all done without crashing... yikes!) actually AVG seems to not crash.
-I do have spybot already
-had Ad-Aware... but recently uninstalled it... (will download again)

This is as far as I have gone... I did manage to write down the errors that housecall found (anticipating the crash)
Adware - Whenu, Whenusave, shopathome, casinoonnet, istbar, abetterinternet, need2find
Spyware - Trak_espynow.200
Other Errors - MS00-0034 office 2000 UA control vulnerablity and MS01-028 RTF document linked to template can run macros without warning.

This was all it found before the runtime crash just as it started scanning "files and folders". I did say the I had a very slow internet connection... but my server is supposed to be 100Mb.. I did a speed test through utorrent and it said I was about 56k (which is dial up isn't it?) I just installed the cable high speed a month ago.. thinking the problem was my provider... the installer actually said that I have an over above average connection. I guess that means to their server eh?

What should I do... finish your list without the housecall scan?

Logfile of HijackThis v1.99.1
Scan saved at 11:10:58 PM, on 10/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
c:\program files\mcafee.com\agent\mcdetect.exe
C:\WINDOWS\Explorer.EXE
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\Program Files\MySoftware\MyInvoices\tracker.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\WINDOWS\system32\ctfmon.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\HPHipm11.exe
C:\WINDOWS\system32\WgaTray.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HiJackThis\HjT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/search?hl=en&q=calendiva&btnG=Google+Search&meta=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: McAfee AntiPhishing Filter - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - c:\PROGRA~1\mcafee\SPAMKI~1\mcapfbho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Blubster] C:\Program Files\Blubster\Blubster.exe SILENT
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Tracker] C:\Program Files\MySoftware\MyInvoices\tracker.exe
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\PROGRA~1\McAfee\SPAMKI~1\MSKDetct.exe /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - c:\PROGRA~1\mcafee\SPAMKI~1\mcapfbho.dll
O9 - Extra 'Tools' menuitem: McAfee AntiPhishing Filter - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - c:\PROGRA~1\mcafee\SPAMKI~1\mcapfbho.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee SpamKiller Server (MskService) - McAfee Inc. - C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe

 

I think that this is your main problem. Do you use a program called MyInvoices? It seems to cause havoc in the start up menu. It is located at C:\Program Files\MySoftware\MyInvoices\tracker.exe. If this is not a program that you use please uninstall it. Let me know what the outcome was on this.

You need to remove McAfee completely from your computer. Two AV’s will cause problems and give false positives. After you have removed McAfee from your machine reboot in safe mode and run a virus scan with AVG. Make sure that you have the latest updates.

You can run an online scan at this web site also:
http://www.ewido.net/en/product/
On the left hand side you will see where it has an online scan. You may also download the software. They use to have a free trial of the software before you purchased it. I’m not sure if that is the case any longer.

After you do this run another HjT log and let’s see if it is a little cleaner.

 

I did everything I could on your original list last night, in safe mode... computer crashed a few times. I actually ran everything twice. One of the programs found Malware-Win32 Trojan downloader... deleted it, but after I ran that program again this malware reappeared. The only thing I couldn't get to complete without crashing was the housecall and A-squared.

In regards to the invoice generator... I use this for creating invoices for my small business. Is there anyway to keep it... can it be loaded on a cd or something? Thinking back... my computer started getting really bad sometime after installing it. Here is an updated log... uninstalled McAfee... haven't rebooted yet though.

Thnx

Logfile of HijackThis v1.99.1
Scan saved at 2:13:52 PM, on 10/27/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\MySoftware\MyInvoices\tracker.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
C:\WINDOWS\System32\svchost.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\WINDOWS\system32\HPHipm11.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\WINDOWS\system32\WgaTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\msiexec.exe
C:\HiJackThis\HjT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/search?hl=en&q=calendiva&btnG=Google+Search&meta=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Tracker] C:\Program Files\MySoftware\MyInvoices\tracker.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [Cleanup] C:\DOCUME~1\Craig\LOCALS~1\Temp\2006102714131_mcappins.exe /v=3 /cleanup
O4 - HKLM\..\Run: [msci] C:\DOCUME~1\Craig\LOCALS~1\Temp\20061027141259_mcinfo.exe /insfin
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe

 

Do you have the original disk that you used to put that software on your computer? If you do then I want to try to uninstall it completely and see how your machine reacts. This may take a couple of steps, but let me know if you can backup the information that you already have. If you can't there is possibly one other thing that we can do.

I do not recommend this to everyone. You can select Start -> Run and type "msconfig" without the quotes. You will see a tab that says Startup. Select that tab and if you see any listings of that program un-check them. Then reboot the machine. The other thing that you need to do is to reboot the machine before you post another HjT log. There are still some instances of McAfee and I want to see if they disappear after a reboot.

You did make a backup of your system right?

 

I did a system restore checkpoint... or whatever it is called... just before I started doing the stuff on your list. I think it fixed a few things... but I still have the crashing... is it possible that i have a bad memory stick? My task manager constantly runs at 100%cpu usage with each of these applications.. and the red bar (not sure what it is) is very high also. once the application is done or I stop it... my usage is low again.

also... spybot keeps saying "the program has changed... spybot would not have changed it... please run virus programs immediately"

I appreciate your time on this... is it reformat time?

tx
Logfile of HijackThis v1.99.1
Scan saved at 6:06:43 PM, on 10/27/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\PROGRA~1\MUSICM~1\MUSICM~1\MMDiag.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\WINDOWS\system32\HPHipm11.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wpabaln.exe
C:\HiJackThis\HjT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/search?hl=en&q=calendiva&btnG=Google+Search&meta=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5746\GoogleToolbarNotifier.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://www.wclc.ca/download/wclc/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe

 

Okay, run HjT again and tell it to fix these problem areas.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/search?hl=en&q=cale...le+Search&meta=

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm

R3 - Default URLSearchHook is missing

O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)

O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)

Then the next thing that I want you to do is boot in safe mode, run all of the programs I originally told you to run. Include your AVG in the list.

Then go to Start -> All Programs -> Accessories -> System Tools you will see two things in system tools. Run the Scan Disk and then run the Disk Deframenter. Running these programs will speed up your system performance. Hopefully the tools that you ran found something to remove.

Last, but not least! Open your computer up and make sure your fans are clean both system and processor fans. Get a can of compressed air for cleaning this area. Make sure that the computer is off and unplugged before doing this. Make sure that you are static free before touching any component in the computer. With the compressed air blow off your memory sticks as well. Basically try to make your computer look like new. When you buy the compressed air make sure to get two cans. If you use all of one you will still have one left. If you do not use all of the first can, it is good to have a can in the house for occasional cleaning of electronic components.

Your system was pretty much clean of McAfee. There was only one entry in the file this time. After you remove the items listed above and run the programs one more time in safe mode your system should be clean. After all of this is done let me know if you are still having problems. Try to run the A-Squared program. It is a very good and very effective tool.

Let me know how it turns out.

 

Hi, I did everything you listed except have not blown out the computer yet. I am noticing a big improvement on a few things... such as normal websurfing and opening up files, but I am still having the same 100%cpu usage when running most applications and about a 25% decrease in reboot. I was able to complete each scan without a reboot... which was awesome, but each scan took so long it took all night to finish all of them. I think I am going to have to reformat. I did notice that my mouse is not on the XP compatiblity list... so this would probably be the reason why I have to reboot twice to get it to work (not sure why it would work on the second boot?) Also, my Office 2000 must need a reinstall or something... I got an application crash while in excel... usually it would have crashed the computer completely... this is an improvement also. I am getting my files ready for backup to do a reformat, and install the genuine XP home that i have... I am not sure why the guy at my work installed a pirated XP pro, he did not give me a disk... or even tell me he did it, I am sure it isn't much differnt... awww, maybe he didn't have my disk when he reformatted my computer... but he didn't ask for it. Oh well, damage has been done. Here is my new log... if there is anything else you think may work, please mention... I do appreciate your time on this.

PS. when my computer runs at 100%... you can hear it, hard to explain, maybe a distant high pitch buzz. It took an hour for my defragmenter to reach 10%... so I went to bed, but the computer was not crashed in the morning and it did complete.
Logfile of HijackThis v1.99.1
Scan saved at 2:34:56 AM, on 10/29/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\HPHipm11.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mim.exe
C:\WINDOWS\system32\WgaTray.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\MMDiag.exe
C:\WINDOWS\system32\wpabaln.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\taskmgr.exe
C:\PROGRA~1\MICROS~2\Office\OUTLOOK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\HiJackThis\HjT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
O4 - HKLM\..\Run: [WheelMouse] C:\PROGRA~1\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra 'Tools' menuitem: AbsolutePoker.com - {EFFF8D47-D060-4108-B761-E8EC86622E56} - C:\Documents and Settings\All Users\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://www.wclc.ca/download/wclc/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe

 

Don't re-format your machine. I think that the big problem now is the fact that you have not cleaned out your computer. In many cases a CPU or Memory can cause problems if they are overheating. There is another thing that I would like you to try. I have never used it so make a new system restore point before you do.

http://www.eusing.com/free_registry_cleaner/registry_cleaner.htm

Read the instructions on using it. It is free software and may find some problems in your registry. you do need to clean the inside of your computer, I think that could be causing a lot of the problems.

Another thing you can do is give me a list of all of your startup programs. Do you remember when I told you to use msconfig. Here is what you do. First go to the tab that says startup, then select the first one so that it is highlighted blue. Scroll to the bottom of the list [bold]HOLD SHIFT[/bold] while selecting the last one. This should make all of the entries turn blue. Now hold Ctrl (control) button and press "C".

Do all of the above while posting your next reply. Now put your cursor in the window and hold Ctrl and press "V". That will past the entries to this message so that I may see if there are any faulty entries.

You do not need to run another HjT log. That seems to be clean. Now what we need to do is get your registry clean. In most cases unless you are going to re-format your machine. [bold]By that I mean physically erase everything from your HD.[/bold] Then a reinstall of the OS [bold]may[/bold] not do anything to fix the problem. This is especially true if you are keeping your system files intact. We have only worked on this for a couple of days. Let me see what happens after the machine is clean.

Do you trust me?

 

Hi, I have not yet done anything with your last post yet... as I have been researching I noticed that my mouse was not compatible, so I went and bought a new one (not yet installed). This gave me the idea to look into my monitor drivers... I have an old Compaq presario FX500 that I now realize is not compatible with anything but win95. My errors have been advising about display drivers and incompatibliy... but I was updating nvidia drivers. Could this be the root of all problems? Also.. I do need to get the pirated XP off of my computer... can I install Home without reformatting?

Tx

 

Lol... yes I do trust you.

 

No you can't put Win 98 back on unless you format the drive. How much memory do you have in your machine? XP comes with drivers for your monitor, mouse, and other components. You probably did not have to buy a new mouse.

If you wish to keep XP, then we need to start with the Device Manager to find out what devices are not working and get them working.

If you want to switch back to Win 98 you will have to format your drive before you install the new (old!) OS. Before you format you may want to back up any information that you have on your machine. You will have to re-install all software, but if you back up your files you will be able to drag and drop them.

Let me know what route you wish to take.

 

Actually, I want to reinstall XP Home edition (Genuine copy). I keep getting the "not genuine" popup with this XPPro edition... so at some point I am going to have to do it anyways. Was thinking that this would be the perfect opportunity. As for the mouse... I tried many different ways of upgrading/downloading/installing new drivers and nothing worked, I do not have the XPPro disk to try to upgrade from there. (we've been wanting a wireless keyboard and mouse system anyways) And the monitor... only shows up in my system as "unknown plug n' play monitor"... none of the advanced features work... after internet research... I have not found any fixes or upgrades for it... actually states that this monitor is not compatible with most systems. (We are planning to buy a LCD monitor... but probably after xmas)

My system has 768mb of ram... is there a way to tell if all sticks are functional... or does the system page show only working ram?

Once again... thank you for your time and patience.

-----------------------------------------------------------
Item Value
OS Name Microsoft Windows XP Professional
Version 5.1.2600 Service Pack 2 Build 2600
OS Manufacturer Microsoft Corporation
Activation Status Activation Pending (28 days remaining)
System Name COMPY386
System Manufacturer ASRock
System Model K7VM2
System Type X86-based PC
Processor x86 Family 6 Model 6 Stepping 2 AuthenticAMD ~1665 Mhz
BIOS Version/Date American Megatrends Inc. L1.22, 12/13/2002
SMBIOS Version 2.3
Windows Directory C:\WINDOWS
System Directory C:\WINDOWS\system32
Boot Device \Device\HarddiskVolume1
Locale United States
Hardware Abstraction Layer Version = "5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)"
User Name COMPY386\Craig
Time Zone Canada Central Standard Time
Total Physical Memory 768.00 MB
Available Physical Memory 383.26 MB
Total Virtual Memory 2.00 GB
Available Virtual Memory 1.96 GB
Page File Space 1.46 GB
Page File C:\pagefile.sys

[Display]
Item Value
Name NVIDIA GeForce4 MX 440
PNP Device ID PCI\VEN_10DE&DEV_0171&SUBSYS_84701462&REV_A3\4&26E5833C&0&0008
Adapter Type GeForce4 MX 440, NVIDIA compatible
Adapter Description NVIDIA GeForce4 MX 440
Adapter RAM 64.00 MB (67,108,864 bytes)
Installed Drivers nv4_disp.dll
Driver Version 6.14.10.9147
INF File oem14.inf (nv4 section)
Color Planes 1
Color Table Entries 65536
Resolution 1024 x 768 x 60 hertz
Bits/Pixel 16
Memory Address 0xDE000000-0xDEFFFFFF
Memory Address 0xD0000000-0xD7FFFFFF
Memory Address 0xDDC80000-0xDDCFFFFF
IRQ Channel IRQ 16
I/O Port 0x000003B0-0x000003BB
I/O Port 0x000003C0-0x000003DF
Memory Address 0xA0000-0xBFFFF
Driver c:\windows\system32\drivers\nv4_mini.sys (6.14.10.9147, 3.78 MB (3,958,496 bytes), 6/7/2005 5:47 PM)

[Pointing Device]
Item Value
Hardware Type USB Human Interface Device
Number of Buttons 5
Status OK
PNP Device ID USB\VID_09DA&PID_0006\5&13F82F15&0&2
Power Management Supported No
Double Click Threshold 4
Handedness Right Handed Operation
Driver c:\windows\system32\drivers\hidusb.sys (5.1.2600.0 (XPClient.010817-1148), 9.38 KB (9,600 bytes), 6/14/2005 8:39 PM)

 

please notice the top of what you just sent me. Your activation is temporary on XP Pro and that is why you are getting that pop up. You may just want to get an activation code for it. However, I see that you already purchased XP Home. Home is not as good as Pro when it comes to networking, but if your computer is for home use than Home edition is fine.

It is normally okay if XP says that the monitor is an unknown. When you install XP Home, I am not 100% sure because I use Pro, you will be given the opportunity to tell it to do a full Install but keep all existing files.

Basically when you do a re-install you will also be creating a new user name. Any existing software that you had on your machine will stay. You may have to register it again, but it is still there. If it is software that you designated to a particular user then you will need to do a copy paste from one user to another.

How to find out the amount of memory and where to locate the Device Manager:
Right click My Computer and select properties. On the tab that opens called General you will see your OS and service pack, your Processor, and the memory you have in the machine.

There is another tab called Hardware. Select the Hardware tab and you will see a button called Device Manager. Select that button and it will show you a list of all devices on your computer. As long as no device has an "!" beside it, then it should be functioning fine. If you are having problems with a particular device then select it and tell it to update the driver.

Sometimes XP will not have the exact driver for the device. Go to their website, for example Logitech.com select drivers and put in the model number of the item. Download the driver and run it.

When you Install XP Home, remember to read the items carefully. It can be done, but not if you miss a question it asks you. Good luck and let me know how it goes.

 

Hi,

I tried downloading a crack and keygen to get my xppro activated, but it didn't work... prior to that popup, I was getting the counterfeit and not genuine popup. Yes, 768mb of ram and I do not have any exclamation marks in device manager... usually one of the first places i check when I have a problem.

So, if I understand correctly... what you are saying is I could just pop in my XP Home disk and install it right now without losing any of my information or installed programs? Because you don't think a reformat will fix anything right?

I installed the new mouse... and I can now reboot without the second reboot to get the mouse working... but it seems that my computer either "locks" or goes on standby, I notice it does that when I hit Ctrl Alt Del to get task manager.

So, even if the monitor is not compatible with anything other than Win95... it will still work without any issues? Would this not be the problem that windows is warning me about "please update display driver"

My husband is going to blow out the computer with a compressor tomorrow

Couldn't copy and paste this with ctrl C/V or right click... I have written them all down with description.

hpztsb05 c:\windows\system32\spool\drivers\w32x86\3\hpztsb05.exe
hphmon04 c:\window\system32\hphmon04.exe
hphupd04 "c:\program files\hp photosmart11\hphinstall\unipatch\hphup04.exe"
hpgs2wnd c:\program files\hewlett-packard\HP share-to-web\hpgs2wnd.exe
jusched c:\program files\java\jre.5.0_06\bin\jusched.exe
avgcc c:\progra~1\grisoft\avgfre~1\avgcc.exe/startup
mimboot c:\progra~1\musicm~1\musicm~1\mimboot.exe
qttask "c:\program files\quick time\qttask.exe"-atboottime
nvcpl rundll32.exe.c:\windows\system32\nvcpl.dll,nvstartup
nwiz nwiz.exe /install
nvmctray rundll32.exe c:\windows\system32\nvmctray.dll,nvtaskbarinit
daemon "c:\program files\daemon tools\daemon.exe"-lang 1033
mskdetct c:\program files\mcafee\spamkiller\mskdetct.exe /uninstall
moffice c:\program files\wireless optical mouse\msoffice.exe
kbdap32a c:\program files\multimedia keyboard utility\kbdap32a.exe
ctfmon c:\windows\system32\ctfmon.exe
nbj "c:\program files\ahead\nero backitup\nbj.exe"
adobe reader speed launch c:\progra~1\adobe\acroba~1.0\reader\reader~1.exe
microsoft office c:\progra~1\micros~2\office\osa9.exe-b-1


wow... no wonder why system is so slow to start up

I am going to try some scans again and see what the speed is now that the registry has been cleaned.

Tx again

 

Hi, just another note...

I was looking in my event viewer... and I have a very consistant error

Event Type: Error
Event Source: Microsoft Fax
Event Category: Initialization/Termination
Event ID: 32035
Date: 9/30/2006
Time: 5:21:07 PM
User: N/A
Computer: COMPY386
Description:
Fax Service had problems restoring the fax queue. After restarting, the service could not restore the outgoing and/or incoming faxes queue. If there was a fax job in the outgoing queue, and you are not sure it was transmitted, you should retransmit the fax.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


I do not use microsoft fax... and I see that it has been attempting something about 6 times a day since 09/30/06... maybe this is as far back as the log goes? When I have used a fax... I use the fax console... with the modem that I installed about a year ago.... and I have not used the fax for about a year now... there is nothing pending in this console either.


And this one comes up often in the "system" catagory
Event Type: Error
Event Source: System Error
Event Category: (102)
Event ID: 1003
Date: 10/24/2006
Time: 10:17:39 PM
User: N/A
Computer: COMPY386
Description:
Error code 0000001a, parameter1 00041284, parameter2 dd6e0001, parameter3 00007376, parameter4 c0c00000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 53 79 73 74 65 6d 20 45 System E
0008: 72 72 6f 72 20 20 45 72 rror Er
0010: 72 6f 72 20 63 6f 64 65 ror code
0018: 20 30 30 30 30 30 30 31 0000001
0020: 61 20 20 50 61 72 61 6d a Param
0028: 65 74 65 72 73 20 30 30 eters 00
0030: 30 34 31 32 38 34 2c 20 041284,
0038: 64 64 36 65 30 30 30 31 dd6e0001
0040: 2c 20 30 30 30 30 37 33 , 000073
0048: 37 36 2c 20 63 30 63 30 76, c0c0
0050: 30 30 30 30 0000


There are also a few other system errors in here... not sure if this is any relevence or you would like to know what the other errors are

tx

 

kim272-
For the error messages check out this web site. Maybe it will be able to help you to get the errors corrected.

As for the Fax this is how you turn it off. Go to the control panel and select Add/Remove programs. In the left window you will see a control that says Windows Components. Select that and make sure that fax is not selected. http://aumha.org/win5/kbestop.php#0x1a

Your startup programs are fine. As far as your monitor goes, do you use a video card or is your video card built in the motherboard? If you use a video card tell me the name and model of the card and I will do some research. If it is built into the motherboard then we might need to do a BIOS or firmware update to get it to work properly.

Yes, you may update windows to Home Edition but, if you really want the computer fixed then you should probably format the drive before installing XP Home. The best way to do this is to first save any documents, pictures, important folders, etc. to a disk. Remember that you will have to reinstall all of your programs!

[bold]Is your version of XP Home a full version or an upgrade version? If it is a full version then you may do this, if it is not then don't[/bold]
Reboot your machine and press F8 repeatedly like you are going in safe mode. However, this time choose Command Prompt. Make sure that you are at the root of the directory by typing "cd\" (without the quotes). Now you should see C:\ and your cursor blinking after it. Now tell it to format the drive by typing format. Remember that after you do this your machine will have dos only and not have Windows on it. Now put your XP Home disk in the drive and reboot the machine. Set up Windows! Once you have formatted and put on a new OS you should be set with the exception of a few things.

You will need to get a firewall, other than the firewall that comes with XP, you will need an Anti-Virus, you will need Windows Defender. All of these items I can direct you to for free. Let me know what you decide to do.

[bold]Edit to put web site in[/bold]

 

Hi,

Computer is working alot smoother now... some processes still have the cpu at 100% (WinAvi and spybot etc..) but I am not crashing anymore.

I was able to get microsoft fax to stop setting off errors... but I really couldn't find anything on that web page about the other errors... maybe I wasn't reading it right.

I ran all the programs you asked... we did blow out the computer... I was able to get housecall to complete the scan and fix errors. 2 viruses it found were goga and davinia Win Office problems... I was directed to a patch from windows, but couldn't get the patches to install... I ended up updating the office premium to sp1 and then eventually service pack 3 (which i think included the patches) ran housecall again and the viruses were gone. Not sure why the other anitvirus scans did not pick these up.

Still having a problem with the new mouse and keyboard though... every once in a while it puts my computer on standby, I have never purposely put this computer on standby... I called the manufacturer c-serve and they were unbelievably stupid...no luck... was going to call the shop i bought it from... I am also going to see if there are any driver updates.

I downloaded a crack and keygen for winxp... but have yet to get it to work... I think I will keep trying, if not, then I will reformat and install my (full version) of XP Home.

I don't think my video card is attached to the motherboard... it is a Geforce4 MX440.

Do you know if there is a way to find out if any of my drivers are incompatible... every where I turn for certain issues seems to point to having something incompatible, but I can not eliminate it.

Thanks

 

Try this site for the download of you graphics card. http://www.nvidia.com/content/drivers/drivers.asp