1972vet

Great! You can delete these now: DDS.scr DDS.txt Attach.txt GMER.zip GMER.exe Your occasional freeze issue during idle time could just be related to an out dated driver somewhere on the system. Be sure to check all of your installed software for updates from the manufacturer(s) website(s). Sometimes, these can be found on the Windows Update site but not always for all of your software/hardware installations. It's always best to do an individual search for each piece installed. Commonly, reputable software authors will write into the program some update feature whether automatic or manual. You can navigate each program's GUI and look for an "Update" feature. Usually you will find it listed under "Tools", "Options", "Preferences". Next, please click start-->run...then copy and paste the Bold text below into the run box and click "OK": ComboFix /Uninstall Performing this function will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again for you automatically. To assist in the prevention of spyware infections: Immunize your browser by installing Spywareblaster. What does it do? Prevents the installation of ActiveX-based spyware, adware, browser hijackers, dialers, and other potentially unwanted software. Blocks spyware/tracking cookies in Internet Explorer and Mozilla/Firefox. Restricts the actions of potentially unwanted sites in Internet Explorer. Keep your anti-virus and spyware definitions up to date. Be sure to scan often. Web of Trust, (WOT,) warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites, helping you avoid the dangerous sites: Green to go Yellow for caution Red to stop WOT has an add-on available for both Firefox and IE. Install the Winpatrol security monitor utility. WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. What I hear most from users is how much they like the startup control feature and it's ease of use. Need help understanding something about Winpatol? Here it is. Below you can choose from several of the freeware Firewalls available on the public domain. Even though you may have a Firewall already installed, keep this list handy should you choose not to renew your subscription for whatever reason. You should always have at least (but not more than ) one of these types of third party firewalls running on board: Sunbelt Personal Firewall Zone Alarm Beware This download includes the Ask Toolbar...The ZoneAlarm Spy Blocker toolbar is powered by "Ask.com". The "Ask" search engine will cause "targeted" ads to be presented to you based upon the content of the web pages you visit, any personally identifiable information you have provided to "Ask.com", or keywords appearing in your search queries. Many security experts consider this type of behavior offensive...Windows 2k/XP/Vista Outpost Free Comodo Beware This download includes the HopSurf toolbar...If YOU DONT WANT THIS TOOLBAR be sure to remove the check from the box when presented during the installation. By installing the HopSurf toolbar, you grant Comodo permission to collect information about your Internet usage. Read the HopSurf EULA. Don't be too alarmed by this caveat...I highly recommend this firewall, but it may just be best suited for advanced users. Keep your software updated...make it easier on yourself and install the free security tool "Secunia PSI" It helps in the background to protect your system against software vulnerabilities. The free utility scans your system's software applications and offers a one button "Download "Solution" feature that updates the exploited software that it finds AND provides other related information/patching if warranted. Stay updated with the most recent Windows patches as well...using Microsoft's Windows Update. Make it easy on yourself, and set this feature to Automatic. Using an alternate browser can reduce your chance of certain infections installing themselves. I recommend installing Mozilla Firefox. If you don't already have "Firefox", please consider installing and using this browser for surfing. If you still wish to use Internet Explorer, please make sure you install SpywareBlaster (from above) to protect you from most ActiveX infections. Run CCleaner often. The Yahoo Toolbar is included by default during the installation...if you DO NOT WANT IT, be sure to remove the check from the "Add CCleaner Yahoo! Toolbar and use CCleaner from your browser" option during installation setup or else just download the Slim version (no toolbar...last download link at the bottom of that page)... Or if you just want to run your on board Disk Cleanup: ("Start--> Programs-->Accessories-->System Tools-->Disk Cleanup" ), just open the utility and check off the following: Downloaded Program Files, Temporary Internet Files, Recycle Bin, and Temporary Files. Don't forget to defrag the system. So how did I get infected in the first place? Regards, and Happy Surfing!

There were (still are), some questionable items in the last combofix log but not significant enough (at that time) to rattle my cage. However, there are now a couple new things I am troubled about that I just recently became aware of...the latest Java exploit affecting even the most up to date version, and the issue McAfee has had with removing a critical system file affecting Windows XPSP2. I know I had already addressed an outdated and exploited java issue and had you install the latest version. It wasn't until after that, I became aware of this issue. Additionally, I just became aware of the McAfee issue last evening. As it seems from your description of current performance issues, that things with your system are still not quite right with the universe, I would like you to uninstall both of them (Java and McAfee) for the time being. If you know how to disable java for all browsers then that's fine, otherwise, uninstalling it entirely is the better plan I believe (for that system). Until both issues are resolved, it would be better for you if your system were not even running a Java enabled program...additionally, I would suggest using one of the proven and effective antivirus programs available free on the public domain. Please select and install One of these free antivirus applications: Microsoft Security Essentials AntiVir Personal Edition Classic Avast! 4 Home Edition After successful installation, please reboot the computer. When the system comes up, run a manual update to the antivirus program you installed. Download and install everything it presented. When that completes, run the manual update again and once more install everything it finds. Continue in that manner until the manual update scan finds no more updates to install. When THAT completes, boot into safe mode and run a complete system scan. Post back the results. Thanks!

Hard drives can fail at any time for several reasons but age and usage combined are always going to be a concern. It has been my experience over the past several decades to have witnessed hard drive failure on older systems just simply due to their age. It's most common I'd say to begin thinking of replacement in system's approaching the 5 year mark. Of course that is just a statistic and may not always apply. I simply mention it to give you a frame of reference for such a possibility. I'd say, all things considered, the system is probably just fine. On a system that old, it's not uncommon to see occasional blue screens of various origins. You can find out what is behind it by making a slight system change to prevent the reboot. At the times when the system finds it necessary to stop what's going on, instead of rebooting automatically it will just come to a screetching halt and present the blue stop screen instead. On that screen will be some valuable information relating to the cause. When that happens, write down exactly what is displayed on that screen with specific attention to any driver information at the bottom. To set this up, please do the following: Click start-->Control Panel-->System-->Advanced Under Startup and Recovery, remove the check from "Automatically restart". Click "OK", "Apply", and "OK" to close the System Properties box. Close the Control Panel and reboot the system. With this configuration, the next time your system crashes, the computer will freeze at the stop screen (Blue Screen of Death, or BSOD as it is known). As mentioned previously, when that happens, write the information down exactly as it appears on that screen, with specific detail relating to any driver information that should appear along the bottom of that screen. Post THAT information back here. Thanks!

Before we finish, I'd like to have a look at the GMER log. Thanks! edit added: To clarify, please run it again as before so I can make a final determination. Thanks!

Alright then, let's tidy up a bit and sort things in their proper order to help speed things up for you. It may be that a cleanup is all that is needed to eliminate what may seem like a freeze issue. If such behavior continues afterward, check the event viewer log for details about a "Hang" issue: If you have more than one drive you can follow these instructions for each drive, substituting the drive letter in each instance: Delete Cookies ***Note*** Deleting ALL cookies will require you to log back into any web sites you visit that required you to log on with a user ID and password. You CAN be selective here and keep the good cookies if you think you know which ones they are. I recommend deleting "All" cookies in order to remove any problems that may be present. Click Start-->Run and Type Cookies then click OK. Click "Edit" from the menu at the top then scroll to and click on: Select All Next, click "File" from the menu at the top. Scroll to and select Delete Return to your desktop. Delete the Contents of the Prefetch Folder ***Note*** It is not necessary to delete the contents of the "Prefetch" folder as a matter of routine. However, if your system has been in use for quite some time and you have installed, then uninstalled many programs, OR if you have recently gone through the removal of malware then deleting the contents of the "Prefetch" folder may be beneficial as it can become quite bloated in time, as well it may contain entries from the malware you have removed. Click Start-->Run and Type Prefetch then click OK. Click "Edit" from the menu at the top then scroll to and click on: Select All Next, click "File" from the menu at the top. Scroll to and select Delete Return to your desktop Delete Windows Temp Files Click Start-->Run, and Type Temp then click OK. Click "Edit" from the menu at the top then scroll to and click on: Select All Next, click "File" from the menu at the top. Scroll to and select Delete It is important to pay attention here to what files may remain after you click "Delete". There are some windows temp files that the system will not allow you to delete which is normal as there are a few files (from your most recent log on session) that are in use by the operating system. You should have only two or three files that remain. Please select what files remain (a few at a time) and delete everything that windows will allow you to delete. Return to your desktop Delete User Temp Files Click Start-->Run, and Type %Temp% then click OK. Click "Edit" from the menu at the top then scroll to and click on: Select All Next, click "File" from the menu at the top. Scroll to and select Delete Return to your desktop Delete other Unnecessary Files Click Start-->My Computer-->Right Click on C:/ Drive Select "Properties" then click the Disk Clean-Up button. Select everything Except for "Office Set-Up Files" (if present) and "Compress Old Files". Click "OK". Run CHKDSK Click the "Tools" Tab. Under Error Checking click the "Check Now" button. Under Check Disk Options put a check in Both boxes then Click Start. Click Yes then Click OK and reboot the system. This first reboot after you've completed the cleanup session will take a bit longer than usual. Let your system stabilize with no intervention...DO NOTHING WITH YOUR COMPUTER AT THIS TIME Allow the scan to complete. Upon completion, windows will reboot the system again. When the system comes back up and has stabilized (watch for the light on your CPU tower to stop blinking or at least slow to a crawl...this may take maybe 3 minutes or so) then continue with these instructions below: Click Start-->All Programs-->Accessories, and select The Command Prompt again. Copy and paste the following text at the

OK, that explains the locked key then...which should be fine by the way. How's it running?

Did you set up the proxy server settings yourself? Although you may have uninstalled ViewPoint, the FF plugin will remain. In FireFox you can only disable it but you cannot uninstall a plugin. This isn't just peculiar to Viewpoint, it's the case with any plugin in Firefox. To disable it, click tools-->addons-->Plugins tab...locate the plugin in the list and click on it to highlight it, then click the "Disable" option button. Next, I should take a minute to explain a little about the Trusted Zone. The idea of such a feature is really suited for some corporate environment where multiple systems need access to a single source. That source, when placed in the trusted zone, can be accessed without incident by any one of those multiple systems no matter where they are located, in house or remote. The reason I say "without incident" is because the "source" is another one of the corporate owned systems maintained by the same IT department (also in house) and of course, the rest of those systems can safely place it in their trusted zone. When a home user places something from the internet in the trusted zone...something they really have no control over, it is equal to leaving their keys in the front door while they go away on vacation. Now...If I explained that well, and you agree that it is a bad idea then please, remove them...to do that, open "Internet Options" from within the control panel. Click the "Security" tab-->Trusted sites-->Sites button. Remove everything you find there inside the "Websites" window. Apply those changes and "OK" your way out to close the properties window...then close the control panel. Please open a blank Notepad by clicking start-->run Then, in the run box type Notepad.exe and click "OK". Copy the below text in Bold and paste it into the blank Notepad. Save it as CFScript.txt...Change the "Save as type" to All Files and save it to your desktop. Now drag the text document over to your Combofix.exe Combofix will run again automatically. Please post back the new log that will be generated and describe any issues that remain. Thanks! Note: Do not mouseclick combofix's window while it's running. That may cause it to stall Folder:: c:\program files\Viewpoint Reglock:: [HKEY_LOCAL_MACHINE\software\DeterministicNetworks\DNE\Parameters]

Since you have AOL installed (AIM)...."ViewPoint" foistware will come along with it and will be recreated each time you run the AOL software Messenger, for example. You can prevent Viewpoint Manager or Viewpoint Media Player from being recreated every time you run the AOL software by doing the following: Open AOL...Go to Help on the toolbar. Select About AOL Hit Ctrl D and a secret panel can be accessed which will allow you to disable all desktop and IM features associated with Viewpoint. Another way to prevent Viewpoint from being recreated every time you run the AOL software is: Click C:\Program Files\AOL 9.0\Jiti (a hidden folder). Rename viewpoint.exe to viewpoint.old. Also look in Services for Viewpoint Manager Service - Viewpoint Corporation. Click 'properties' and disable it. In addition to this suggestion, it is also recommended to uninstall the following software: Adobe Reader 7.0.9 Java 2 Runtime Environment, SE v1.4.2_01 ...both of which are outdated and exploited. You can install the latest Adobe reader Here, and the latest version of Java Here. Scroll down and click on the 2nd download link titled "Download JRE". Select your Platform: "Windows". Read the License Agreement, and then check the box that says: "I agree to the Java SE Runtime Environment...". Click Continue and the page will refresh. Click on the link to download Windows Offline Installation (Should be the very first one). Save it to your desktop. Close any programs you may have running - especially your web browser. Navigate to and delete the Java folder: C:\Program Files\Java<-- indicated in Bold Red Text (if found). You may also find a folder labeled JRE and should delete that one as well. Reboot your computer once all Java components are removed. Then from your desktop double-click on the Java installer file you downloaded to your Desktop to install the newest version. -- If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator. -- If you choose to update via the Java applet in Control Panel, uncheck the option to install the Toolbar unless you want it. Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it: Go to Start-->Control Panel-->Java-->Advanced-->Miscellaneous and uncheck the box for Java Quick Starter. Click Ok and reboot your computer. Next, please download combofix from This Webpage...and read through the instructions there for running the tool. ***Important Note*** Please read through the guidance on that web page carefully and thoroughly...and install the Recovery Console. Using this tool without the Recovery Console installed is NOT RECOMMENDED. If you have Windows Vista, you can skip the recovery console step...in Vista it's in the System Recovery Options menu. The System Recovery Options menu is on the Windows Vista installation disc. If Windows doesn't start correctly, you can use these tools to repair startup problems. The Windows Recovery Console will allow you to boot into a special recovery (repair) mode that is not otherwise available. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It's a simple procedure that will only take a few moments. Once installed, a blue screen prompt should appear that reads as follows: The Recovery Console was successfully installed. When you see that screen, please continue as follows: Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. Click Yes to allow ComboFix to continue scanning for malware. When the tool is finished, it will produce a log file for you. Please post that log back here on your next reply. Thanks! Note: Do not mouseclick combofix's window while it's running....that may cause the scan to stall

Pardon the intrusion Blade81 and Amy Kwon...I've removed the spurious posting made here by another member and sent an appropriate warning. Please carry on.

Thread re-opened at member's request...please carry on with your expert assistant, you are in good hands!

At the request of this member who has resolved the issue via assistance from another forum, the thread is closed to prevent others from posting here. Other members who need assistance please start your own topic in a new thread. Thanks! The fixes and advice in these various forum threads are for the particular machine only relative to the user who initiated the request for assistance. Do not apply the instructions from these threads to your own machine. Please start a new thread describing your issue and someone will be along to assist you.

Re-opened at user's request.

Just one of MANY reasons why users should avoid using p2p programs. Click Me.

Yep...same issue. I see it was resolved once with an earlier update, then reappeared.

Here we go: Malwarebytes' Anti-Malware 1.39 Database version: 2518 Windows 5.1.2600 Service Pack 3 7/28/2009 8:34:58 PM mbam-log-2009-07-28 (20-34-51).txt Scan type: Quick Scan Objects scanned: 87431 Time elapsed: 3 minute(s), 42 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: d:\WINDOWS\system32\drivers\uti2mzm2.sys (Rootkit.Bagle) -> No action taken. [41345241302219216925692122172319196967216624252422671818186819262666242367]

Uhmm...mbam was not running a scan when this happened, only it's active protection. It was the AVZ scan that was running. As soon as I clicked the AVZ scan button, mbam popped up the warning box that I mentioned previously. If I run mbam in developer mode, I suppose I need also to disable it's active protection? I'm thinking, what this would mean is that I would have to run the AVZ scan again, and while it is running, I should run mbam in developer mode?

mbam reports the AVZ scan driver as bagel. The driver is peculiar to each machine and appears only during a scan. However, even as this is a free utility, I believe the user has the option available to enable the guard to run on system startup. If mbam is also on board and running it's real time protection, the action comes to a screaming halt. This morning, only during the AVZ scan, mbam halted the process and reported: uti2mzm2.sys as bagel...this is the same AVZ kernel driver that can be enabled to run on startup. Don't bother googling that file as it is peculiar to only my machine much like if you would install and run AVZ, the kernel driver for your installation would be a different name, also unique to that particular scan. Not having tested these settings, I suspect this would create a bsod on boot up since the mbam warning notice requires user interaction. I doubt the boot sequence would get that far before a bsod would occur...And having no idea how much (if any) AVZ (Russian) users make up your customer base, I wouldn't know if one may want to test this to see...since I've not noticed this before. I have no idea if it is because of mbam's latest update to the data base or not. The probability is that you may not even be concerned but I thought you might at least be interested to know about this.

Member is being helped Here...this thread is now closed.

I'm not sure of the version number when it first appeared...it's been quite a while now but the version I have is "3.5.56968.437"...and I know it's installed with that one. The latest scan results: Malwarebytes' Anti-Malware 1.34 Database version: 1770 Windows 5.1.2600 Service Pack 3 2/17/2009 11:42:38 AM mbam-log-2009-02-17 (11-42-38).txt Scan type: Quick Scan Objects scanned: 58718 Time elapsed: 2 minute(s), 29 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) ...Thanks Bruce!

This issue appears resolved and the thread is closed to prevent others from posting here. Other members who need assistance please start your own topic in a new thread. Thanks! The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.

To assist in the prevention of spyware infections: Immunize your browser by installing Spywareblaster. What does it do? Prevents the installation of ActiveX-based spyware, adware, browser hijackers, dialers, and other potentially unwanted software. Blocks spyware/tracking cookies in Internet Explorer and Mozilla/Firefox. Restricts the actions of potentially unwanted sites in Internet Explorer. Keep your anti-virus and spyware definitions up to date. Be sure to scan often. Below you can choose from several of the freeware Firewalls available on the public domain. Even though you may have a Firewall already installed, keep this list handy should you choose not to renew your subscription for whatever reason. You should always have at least (but not more than ) one of these types of third party firewalls running on board: Kerio Personal Firewall Zone Alarm Outpost Free Comodo Beware of the "Ask" tool bar that's now included. If you don't want it, remove the check from the box during installation Install the free security tool "Secunia PSI" to help protect your system against software vulnerabilities. The free utility scans your system's software applications and offers a one button "Download "Solution" feature that updates the exploited software AND provides other related information/patching if warranted. Stay updated with the most recent Windows patches as well...using Microsoft's Windows Update. Make it easy on yourself, and set this feature to Automatic. Using an alternate browser can reduce your chance of certain infections installing themselves. I recommend installing Mozilla Firefox. If you don't already have "Firefox", please consider installing and using this browser for surfing. If you still wish to use Internet Explorer, please make sure you install SpywareBlaster (from above) to protect you from most ActiveX infections. Become familiar with the MalwareBytes anti-malware application. Use it often especially if you begin to notice the system performance behavior is not what it should be. Learn more about the program Here where you can also request assistance if you have some concerns about the programs findings. ***Note*** The licensed version provides real time protection and other automatic features otherwise not available. Comodo's BOClean utility is another very good "Free" malware cleaner that runs in the background to help prevent malware intrusions. Run CCleaner often. The Yahoo Toolbar is included by default during the installation...if you DO NOT WANT IT, be sure to remove the check from the "Add CCleaner Yahoo! Toolbar and use CCleaner from your browser" option during installation setup or else just download the Slim version (no toolbar...third download link at the bottom of that page).. Or if you just want to run your on board Disk Cleanup ("Start--> Programs-->Accessories-->System Tools-->Disk Cleanup" ), just open the utility and check off the following: Downloaded Program Files, Temporary Internet Files, Recycle Bin, and Temporary Files. Don't forget to defrag the system. So how did I get infected in the first place? Regards, and Happy Surfing!

I'm not going to say it's a false positive...I couldn't. I'm not on the investigative team but I can say it is most definitely related to Comodo Internet Security. My scan came up with that too this morning: Files Infected: E:\WINDOWS\system32\guard32.dll (Trojan.Agent) -> No action taken. E:\WINDOWS\system32\cssdll32.dll (Trojan.Agent) -> No action taken. ...both of those are Comodo Internet Security. My guess is you have the latest version of CIS and mbam is complaining of the file as it relates to the "Safe Surf" feature. Safe Surf is one of Comodo's recent mistakes in my opinion. That feature works hand and glove with [Ask.com]...a browser search engine hijacker that is in my opinion (which by the way, is shared by most other security experts I know)...foistware in the sense that it is bundled with the download and is checked by default. You have to remove the check in order to prevent it's download. You should be able to uninstall it in your add/remove program listing but should also check your browser to see that the BHO is either disabled or uninstalled as well. In my case, I have Firefox designated as my default browser. I removed the check from the "Askdotcom" search bar installation but it nevertheless installed and hijacked my Internet Explorer. If you have multiple browsers, check them all. Once you've removed the search bar, you may have to look for the .dll file in your system32 folder. It would have an identical name but ending with the number "1": guard32.dll1 ...that file is prior to the update you installed that included the Askdotcom garbage.

Great! Now let's see a fresh HijackThis log. How's it running for you?

This issue appears resolved and the thread is closed to prevent others from posting here. Other members who need assistance please start your own topic in a new thread. Thanks! The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.

I took some time to go over your list of installed programs a bit more. I doubt any of them relate to your issue but I should run down the list of things I took note of for you: Adobe Reader 8.1.0 is out of date. You should uninstall it and install the latest version Here. AVG Anti-Rootkit Free is no longer supported so you may as well uninstall this one. Your AVG version 8 is sufficient...just remember to keep it updated if you don't have a paid subscription for it. The tool below is shareware...you need a license for it to work. Is this a paid subscription or are you still using it as a trial? If so, you should uninstall this since windows does the identical thing as this software claims to do...it's just not necessary and uses up more disk space than is required. HDD Regenerator The program below: Motherboard Monitor 5 ...is no longer being developed by it's author. It's fine to leave it if it works for you but if your motherboard's manufacturer is one that refused to cooperate with the author of this program then you may as well uninstall this too. Mozilla Firefox (2.0.0.20) is out of date. Just open Firefox and it will download the latest version for you. The program OpenOffice.org 2.0 is an excellent product. I use it...however, the latest version is Here. Paltalk Messenger is a problem...you should uninstall this one too. The program RegCure 1.2.0.4 is overzealous in my opinion. These registry cleaners are all overrated. A user almost never even notices any improvement whatsoever from removing what these programs suggest. In many cases, and I believe RegCure is one of them, the entries presented for removal are legitimate and necessary registry entries. If it were me, I would restore every single backup that this program may have made then uninstall it. The program ShredIt PC is another needless program on your system. With the likes of trusted and time tested applications as Spybot Search and Destroy, you can use the shredding feature that it has available as well as take advantage of it's scanning and infection preventative features. You have many programs on your system that I would not have. You should go over the list and think to yourself..."Do I use this or not"...also take a look at the programs you installed that are trial versions. If you are no longer evaluating them uninstall them and uninstall the others that you decided upon. I believe this is also out of date...UltraVNC v1.0.2. Please run the MGA Diagnostic Tool and post back the report it creates: Download MGADiag to your desktop. Double-click on MGADiag.exe to launch the program Click "Continue" Ensure that the "Windows" tab is selected (it should be by default). Click the "Copy" button to copy the MGA Diagnostic Report to the Windows clipboard. Paste the MGA Diagnostic Report back here in your next reply.