Thread: Stop error while playing games
View Single Post
Old 05-03-2007, 01:43 PM   #1 (permalink)
Zell
Registered User
 
Join Date: May 2007
Posts: 59
OS: XP Professional


Stop error while playing games
This is what I got after the computer has been rebooted:
Error signature:
BCCode : 100000ea BCP1 : 88D795A8 BCP2 : 884BD610 BCP3 : BACDBCBC
BCP4 : 00000001 OSVer : 5_1_2600 SP : 2_0 Product : 256_1

which led me to:

http://wer.microsoft.com/Responses/R...2-8f254420ddb3

http://wer.microsoft.com/Responses/R...8-451433725c68

so basically what's bugging me is the graphic card drivers.
(nv4_disp.dll ******* up and making computer rebooting)

I tried updating the drivers and removing them and installing again.
I tried the advice Microsoft support FAQ gave with little success.

Spec:

CPU: AMD Athlon 64 x2 Dual core processor 2ghz
Motherboard: NVidia nForce 3 250
Graphic Card: NVidia GeForce 6600LE 256mb
2 gb ram

Do I need more info?

DSS log

Deckard's System Scanner v20070426.43
Run by Zell_ on 2007-05-03 at 19:02:11
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
20: 2007-05-03 17:02:14 UTC - RP221 - Deckard's System Scanner Restore Point
19: 2007-05-03 15:58:06 UTC - RP220 - Installed Ad-Aware SE Personal
18: 2007-05-02 19:58:27 UTC - RP219 - Installed Dual-Core Optimizer
17: 2007-05-02 19:09:09 UTC - RP218 - Installation av osignerad drivrutin
16: 2007-05-02 14:34:06 UTC - RP217 - Systemkontrollpunkt


-- First Restore Point --
1: 2007-04-17 16:12:03 UTC - RP202 - Systemkontrollpunkt


Performed disk cleanup.


-- HijackThis (run as Zell_.exe) -----------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 19:04:32, on 2007-05-03
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\System32\nvraidservice.exe
C:\Program\Java\jre1.6.0_01\bin\jusched.exe
C:\Program\DAEMON Tools\daemon.exe
C:\Program\Eset\nod32kui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program\MSN Messenger\MsnMsgr.Exe
C:\PROGRAM\FRAPS\FRAPS.EXE
C:\Program\SEC\Natural Color\NaturalColorLoad.exe
C:\Program\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\wbem\unsecapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program\SensorsViewPro31\sviewpro.exe
C:\Program\Winamp\winamp.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program\Internet Explorer\IEXPLORE.EXE
C:\Program\Internet Explorer\iexplore.exe
G:\Programfiler\dss.exe
C:\Program\HIJACK~1\Zell_.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.jalba.se/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Länkar
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program\Java\jre1.6.0_01\bin\ssv.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\System32\nvraidservice.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [YeppStudioAgent] C:\Program\Samsung\SamsungMediaStudio4.1\SamsungMediaStudioAgent.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [nod32kui] "C:\Program\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NodLogin] C:\Program\Eset\nodlogin.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Fraps] C:\PROGRAM\FRAPS\FRAPS.EXE
O4 - Startup: Adobe Gamma.lnk = C:\Program\Delade filer\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: NaturalColorLoad.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java-konsol - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsof...?1152631578858
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O16 - DPF: {68BCE50A-DC9B-4519-A118-6FDA19DB450D} (Info Class) - http://www.blizzard.com/support/includes/cabs/si.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1152631568530
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/game...Plugin9USA.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program\Delade filer\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatisk LiveUpdate-schemaläggare - Unknown owner - C:\Program\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe


-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R2 sensorsview - c:\windows\system32\drivers\sensorsview.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
R2 SVKP - c:\windows\system32\svkp.sys <Not Verified; AntiCracking; SVKP driver for NT>

S3 AmdTools (AMD Special Tools Driver) - c:\windows\system32\drivers\amdtools.sys (file missing)
S3 gdrv - c:\windows\gdrv.sys


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S2 Automatisk LiveUpdate-schemaläggare - "c:\program\symantec\liveupdate\aluschedulersvc.exe" (file missing)


-- Files created between 2007-04-03 and 2007-05-03 -----------------------------

2007-05-03 18:22:58 0 d-------- C:\Documents and Settings\Zell_\Application Data\Lavasoft
2007-05-03 18:04:43 0 d-------- C:\WINDOWS\system32\ActiveScan
2007-05-03 18:04:36 0 d-------- C:\WINDOWS\LastGood
2007-05-03 17:58:06 0 d-------- C:\Program\Lavasoft
2007-05-03 17:49:22 0 d-------- C:\Program\SensorsViewPro31
2007-05-03 16:15:14 0 d--hs---- C:\FOUND.013
2007-05-02 22:26:28 0 d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2007-05-02 21:58:27 0 d-------- C:\Program\AMD
2007-05-02 21:58:10 0 d-------- C:\WINDOWS\Downloaded Installations
2007-05-02 21:09:58 0 d-------- C:\WINDOWS\nview
2007-05-01 16:11:26 1324 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-05-01 16:11:20 1100 --a------ C:\WINDOWS\system32\d3d8caps.dat
2007-05-01 15:04:00 0 d--hs---- C:\FOUND.012
2007-04-28 12:33:34 0 d--hs---- C:\FOUND.011
2007-04-28 12:30:42 0 d--hs---- C:\FOUND.010
2007-04-28 12:22:56 0 d--hs---- C:\FOUND.009
2007-04-24 21:11:29 0 d-------- C:\Program\Fraps
2007-04-17 18:12:01 3932160 --a------ C:\Documents and Settings\Zell_\ntuser.dat
2007-04-16 19:21:38 0 d--hs---- C:\FOUND.008
2007-04-16 18:59:56 0 d--hs---- C:\FOUND.007
2007-04-09 14:59:56 0 d--hs---- C:\FOUND.006
2007-04-07 01:29:29 0 d-------- C:\Program\directx


-- Find3M Report ---------------------------------------------------------------

2007-03-27 18:45:42 0 d-------- C:\Documents and Settings\Zell_\Application Data\Opera


-- Registry Dump ---------------------------------------------------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Program\Java\jre1.6.0_01\bin\ssv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"SoundMan"="SOUNDMAN.EXE"
"NVRaidService"="C:\\WINDOWS\\System32\\nvraidservice.exe"
"SunJavaUpdateSched"="\"C:\\Program\\Java\\jre1.6.0_01\\bin\\jusched.exe\""
"YeppStudioAgent"="C:\\Program\\Samsung\\SamsungMediaStudio4.1\\SamsungMediaStudioAgent.exe"
"DAEMON Tools"="\"C:\\Program\\DAEMON Tools\\daemon.exe\" -lang 1033"
"nod32kui"="\"C:\\Program\\Eset\\nod32kui.exe\" /WAITSERVICE"
"NodLogin"="C:\\Program\\Eset\\nodlogin.exe"
"KernelFaultCheck"=hex(2):25,73,79,73,74,65,6d,72,6f,6f,74,25,5c,73,79,73,74,\
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"nwiz"="nwiz.exe /install"
"amd_dc_opt"="C:\\Program\\AMD\\Dual-Core Optimizer\\amd_dc_opt.exe"
"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"MsnMsgr"="\"C:\\Program\\MSN Messenger\\MsnMsgr.Exe\" /background"
"Steam"=""
"Fraps"="C:\\PROGRAM\\FRAPS\\FRAPS.EXE"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
Notification Packages REG_MULTI_SZ scecli\0\0


[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
Usnsvc REG_MULTI_SZ usnsvc\0\0
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0


[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5fcb8292-18cf-11db-a0b5-806d6172696f}]
Shell\AutoRun\command F:\autoplay.exe
*newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_SENSORSVIEW


-- End of Deckard's System Scanner: finished at 2007-05-03 at 19:04:58 ---------


Here's a picture of some temperatures
If it's any help (Taken while computer was idle and under heavy load)



And last the panda log:

For better visual: http://www.megaupload.com/se/?d=6UQW8MYN

Incident | Status | Location

Spyware:Cookie/Xiti | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@xiti[1].txt
Spyware:Cookie/Yadro | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@yadro[2].txt
Spyware:Cookie/Cgi-bin | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@cgi-bin[1].txt
Spyware:Cookie/Com.com | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@com[1].txt
Spyware:Cookie/Xiti | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@xiti[2].txt
Spyware:Cookie/DriveCleaner | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@drivecleaner[2].txt
Spyware:Cookie/DriveCleaner | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@www.drivecleaner[1].txt
Spyware:Cookie/Azjmp | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@azjmp[1].txt
Spyware:Cookie/Toplist | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@toplist[1].txt
Spyware:Cookie/Hbmediapro | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@adopt.hbmediapro[2].txt
Spyware:Cookie/Go | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@go[2].txt
Spyware:Cookie/BurstNet | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@burstnet[1].txt
Spyware:Cookie/Com.com | Not disinfected | C:\Documents and Settings\Zell_\Cookies\zell_@com[2].txt
Potentially unwanted tool:Application/MotherboardMonitor.A | Not disinfected | C:\Program\mIRC\Moo.dll

----

I would like to thank you in advance for any help, I just want to be able to play games
Zell is offline  
Important Information
Join the #1 Tech Support Forum Today - It's Totally Free!

TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free.

Join TechSupportforum.com Today - Click Here