run a dll as an app keeps appearing when I want to do ANY window operation!

What OS?

CoolATIGuy

Checkout http://techrepublic.com.com/5100-6270-5225409.html

CoolATIGuy

OS is XPHome
Here is the log from Hijakthis:

Logfile of HijackThis v1.97.7
Scan saved at 9:41:22 PM, on 7/28/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Administrator\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = res://mshp.dll/index.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://mshp.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://easy-search.biz
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = file://C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://easy-search.biz
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,Shellnext = http://www.webroot.com/php/disp0201.php?pc=64150&rc=1&mo=2&oc=26&ps=R
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,(Default) = about:blank
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - {20239CAD-9608-49E2-8E0D-DAAD7E58BF82} - C:\WINDOWS\System32\lgckec.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: . - {D34F08C5-4F18-477c-86CB-1A9BEECFE37B} - C:\Documents and Settings\owner_2\Application Data\winit\winit.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [S3apphk] S3apphk.exe
O4 - HKLM\..\Run: [PS2] C:\hp\drivers\keyboard\PS2.EXE
O4 - HKLM\..\Run: [checktime] c:\program files\HPSelect\Frontend\ct.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\VERIZO~1\SUPPOR~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [2P6WFAX43ZHE7C] C:\WINDOWS\SYSTEM32\XTAWJ.EXE
O4 - HKLM\..\Run: [SM1BG] C:\WINDOWS\SM1BG.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [Image] rundll32 C:\WINDOWS\sdkqh32.dll,Install
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [sounoft] sounoft.exe
O4 - HKLM\..\Run: [soundcontrl] soundcontrl.exe
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0400.dll",cdaEngineMain
O4 - HKLM\..\Run: [Adstartup] C:\WINDOWS\System32\automove.exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [Cryptographic Service] C:\WINDOWS\System32\jopnyc.exe
O4 - HKLM\..\Run: [System Update] C:\WINDOWS\System32\gxwnbht.exe
O4 - HKLM\..\Run: [DjrL.exe] C:\documents and settings\owner_2\local settings\temp\DjrL.exe
O4 - HKLM\..\Run: [B4693369] C:\WINDOWS\System32\fjqzezyj.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [intlgntc] C:\WINDOWS\System32\intlgntc.exe
O4 - HKLM\..\Run: [Microsoft Update Machine] javaw.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\RunServices: [sounoft] sounoft.exe
O4 - HKLM\..\RunServices: [soundcontrl] soundcontrl.exe
O4 - HKLM\..\RunServices: [8F7BBF0F] C:\WINDOWS\System32\fjqzezyj.exe
O4 - HKLM\..\RunServices: [Microsoft Update Machine] javaw.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU\..\Run: [winupd.exe] C:\WINDOWS\System32\winupd.exe
O4 - HKCU\..\Run: [Plug and Play] C:\WINDOWS\wininet32.exe
O4 - HKCU\..\Run: [Remote Packet Capture Protocol v.2.0] C:\WINDOWS\runwin32.exe
O4 - Startup: AutoPlay.exe
O4 - Global Startup: GoBack.lnk = C:\Program Files\Roxio\GoBack\GBTray.exe
O4 - Global Startup: hp center UI.lnk = C:\Program Files\hp center\137903\Shadow\ShadowBar.exe
O4 - Global Startup: hp center.lnk = C:\Program Files\hp center\137903\Program\BackWeb-137903.exe
O9 - Extra button: Control Pad (HKLM)
O9 - Extra 'Tools' menuitem: Control Pad (HKLM)
O9 - Extra button: Yahoo! Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM)
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com/templates/ieawsdc.cab
O16 - DPF: {0FC6BF2B-E16A-11CF-AB2E-0080AD08A326} - http://activex.liveupdate.com/controls/cres.cab
O16 - DPF: {10000000-1000-0000-1000-000000000000} - ms-its:mhtml:file://C:\MAIN.MHT!http://d.dialer2004.com//paxan/main.chm::/load.exe
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralInitialSetup1.0.0.8.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://download.yahoo.com/dl/installs/yinst0401.cab
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {65E7DB1D-0101-4100-BD66-C5C78C917F93} - http://install.wildtangent.com/bgn/partners/aolim/install.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2003080601/housecall.antivirus.com/housecall/xscan53.cab
O16 - DPF: {87067F04-DE4C-4688-BC3C-4FCF39D609E7} - http://download.websearch.com/Dnl/T_50151/QDow_AS2.cab
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://F:\Content\include\msSecUcd.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.napster.com/client/isetup.cab
O16 - DPF: {9EB320CE-BE1D-4304-A081-4B4665414BEF} (MediaTicketsInstaller Control) - ms-its:mhtml:file://c:\nosuch.mht!http://www.n28.net/n001/mt/mt.chm::/MediaTicketsInstaller.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?37949.4211805556
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - http://us.dl1.yimg.com/download.yahoo.com/dl/toolbar/yiebio5_1_5_0.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://fdl.msn.com/public/chat/msnchat45.cab

coolAT guy, its not happening with just XP restore.. sorry. That does not help me at all.

Sorry, guess I should have looked closer at that link. :-(

CoolATIGuy

If u cannot access System Restore, then leave it,,,, and fix the above entries, Restart ur machine and perform some online virus scans !!!!

CHECK FOR ONLINE VIRUS SCAN:
--------------------------------------
1. http://us.mcafee.com/root/mfs/default.asp?cid=9059
2. http://security.symantec.com/
3. http://housecall.trendmicro.com/
4. http://www.pandasoftware.com/activescan/com/activescan_principal.htm
5. http://www.pcpitstop.com/antivirus/default.asp

then download these tools and install Adaware and Spybot !!!!!
========================================================
AdAware ==> http://www.spychecker.com/program/adaware.html
SpyBot  ==> http://www.spychecker.com/program/spybot.html
CoolWebShredder ==> http://www.spychecker.com/program/coolwebshredder.html
ToolBar Cop >> http://www.mvps.org/sramesh2k/toolbarcop.htm
Stinger >> http://vil.nai.com/vil/stinger
========================================================
After that Follow these Instructions:

1. First turn Off ur System Restore
2. Boot into safemode and Login as Administrator
3. Run the AntiVirus tool and delete all viruses it found
4. Run the Spyware Removal tools and delete everything they detect
5. Then goto C:\Documents and Settings\ur usernmae\Local Settings\Temp and delete all files present here
6. Goto C:\Documents and Settings\ur usernmae\Local Settings\Temporary Internet Files, and delete the folder of ContentIE
7. Goto C:\Documents and Settings\ur usernmae\Cookies, and delete all cookies present here.
8. Reboot back in Normal Mode and check if problems are gone
9. If YES then Great, otherwise run the Hijakcthis scan, and post the LOG file here
10. After making sure that every junk stuff is deleted, and System is Clean, Turn On the System Restore again !!!

I cant turn off system restore, get that darn dll message again.  I also get a bunch of dr. watson errors that I want to get rid of.

see my second post :)

and if after fixing those entries, u still get those errors, then try a SFC scan,,,,,,
Goto START>RUN and type  sfc /scannow
u will need ur WinXP CD in order to fix the corrupted windows system files, if found by scan.

and if still nothing helps u, then go ahead and perform a Repair so that atleast we can run some programs =\

How to Perform an In-Place Upgrade (Reinstallation) of Windows XP:
http://support.microsoft.com/?kbid=315341

Or this site explains a Repair with pics:
http://www.webtree.ca/windowsxp/repair_xp.htm

You may not be able to fix the sp.html about:blank hijacker with hijackthis.  That's the one that brings up a search page that you can't get out of.  CWShredder might get it depending upon the variant but also probably not.  For the ones that hijacthis doesn't kill, you might be able to download process explorer from http://sysinternals.com and kill more virus processes that way which would allow you to delete their executables and dlls without having to go into the rc.  If you kill enough of them, then you might get msconfig back, but if not, you can go into the registry and delete the startup entries in the run  and runservice keys that are likely launching some of them.

I removed the items you stated to with Hijackthis.  I still can not run anything in normal/safe mode without getting the dll error.  Help!

then refer to my last post =\

I was able to get ad-aware to run in safe mode. Any other app in safe mode just does not run (no erro), but I get the dll when trying to run anything in normal mode.  Imalso getting a bunch of 'backup' files in safe mode everytime I look there are more!
I will go to sysinternals.com and try that next.  I am just afraid if I put this PC on the network it would infect the rest of my machines.  I have internet running through a server (I have to, using a satallite connection for internet).

I would definitely make sure that your other machines aren't exposed to the sp.html startup page virus.  Some versions of that haven't been fixed yet and I eventually had to abondon a good XP installation because of it.  It's wicked.

how do I know if the sick PC has it?  Also, where in the registry can I stop some of the programs from starting? (provided I can get in it).  Im trying to get an online antivirus to work, so far they dont.  How do I make it so my other machines are not exposed.  I have a firewall on them.

I got sysinternals up.. now what do I do with it?  It lists all the processes... what do I keep? What do I kill?  THe read me file won't come up, but the program did...

I worked through sysinternals and can now run some spyware cleaners... still trying to get any antivirus to run.. but its being difficult.  The programs start, then close up.

If you can hold on for a few minutes I'll try to post a list of the processes and modules that need to be running for xp to run.  Everything else you could presumbably kill except your browser.

Spysweeper found 403 traces of 46 software spywares and cleaned them.  Im running ad-aware now.  Spybot wont load which I wish it would since it has its own 'built in' msconfig for me to use!

These are the processes that are running on my computer.  You should be able to kill everything except these and still be online and running.  The svchost.exe processes are hosts to multiple service processes.  Sometimes viruses run in there also. When you highlight a process, you will see the modules (dll's) it contains in the lower window, if you don't, go to the view tab and select DLL's in the Lower Pane View instead of Handles and make sure the Lower Pane View entry above it has a checkmark so that you will have a lower split window. When you highlight a process, look at the dll's that are running under it in the lower window and see if there are any that don't have a Microsoft name listed.  These would be suspects.  You can then do a wildcard search on the computer *.* which should list every file in the computer, although you really need to download a good search tool because ms native search won't list all the files and won't tell you it isn't.  Agent Ransack is free and very thorough for search.  Likewise, Registrar Lite is very thorough for registry.  Regedit and Regedt32 are very bad about missing items in searches.  To do a wildcard of the whole computer in Agent Ransack, just leave the search field blank and click search.  Then sort by name, then find your suspect files, note the timestamps and then sort by timestamp and see what other files have the same timestamp.You can then google the filenames and see if they correlate to any viruses.

CSRSS.exe
explorer.exe
Isass.exe
Services.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
SMSS.exe
System Idle Process
System
Winlogon.exe
procexp.exe  (process explorer)
iexplore.exe (or your browser name)

Alot of spyware is designed to stop you from contacting online scanners and prevent local scanners from running. My theory is that if you can kill the spyware process, you might be able to start the antivirus programs and remove the virus.  What I definitely would not do is reboot because you will just reload everything thats set to run at startup.

There is one process that wont kill: tfswctrl.exe... othewise all is clean like you stated above.  Im trying to install Norton now... will try online scanners again if this does not work. Thank you so much.. I'll keep you posted!

Getting a microsoft register server error.. it encountered a problem and needs to close... says anything I was working on will be lost.  Im back to square one.  I need to find a way to get antivirus to install / run!  Getting tired and cranky with myself now   :)

I will again say that atleast do a REPAIR,,,,, so that original registries and windows system files can get restored =|
after that u will be able to run online virus scans, install av tools and anything to get rid of the rest junk material !!!!

WinTasks Process Library
Looks like windows native burner possibly.  Also, earlier I said that dlls without Microsoft names were suspect.  That doesn't mean that spyware hasn't infested a Microsoft dll.  Dll's can be modified rather easily and while Windows File Protection is supposed to protect the system files from being changed, it probably works about as well as other Windows stuff.  I've hacked into explorer and changed the logo and hacked into mshtml.dll and changed stuff and Windows File Protection didn't notice the difference though not sure if I ever ran SFC against the hacked versions to see if it picked them up.  You might also try that though, run System File Checker to see if it catches any modified windows files.


tfswctrl - tfswctrl.exe - Process Information
Process File: tfswctrl or tfswctrl.exe
Process Name: DLA Packet Writing Software
Description: Application that is used to write data to CDs directly from Windows applications, without using the actual CD Writing software.
Company: Hewlett-Packard
System Process: No
Security Risk ( Virus/Trojan/Worm/Adware/Spyware ): No
Common Errors: N/A

I didn't understand what server they were referring to. Did it give specifics.
 

Also ShehaaryarSahill, do you have to reinstall programs after repair install.  I've done so few and so long ago I can't remember.

yes,,,,,, those ones which use reigstry settings for their operations, like Office, Norton, Mcafee, Real Player etc etc
coz a Reinstall replaces the present reigstries with the default ones, and thus deletes all the information stored by these programs !!!!!

I'd like to not have to do a repair and then lose all the applications.  I'd like to get some data off here first that my customer wants saved... but need to burn it on CDR since the files are large.  

The repair install shouldn't destroy any data.  But as SheharyaarSaahil said, you have to reinstall the apps. One of the files that you mentioned above that was still running was the native ms burner I think.  Are you sure you can't burn with that.  Also, what was the server you mentioned earlier.  Did it have a specific name that you could see before it went down.

It looked like you had a pretty good handle on it all the way up until the server error.

Yes, u can still access the hard drive, so move all ur required data to either to second partition, or put in a separate folder in C: drive...... coz repair will replace the My Documents folder, C:\Windows and registries !!!!!!
will not delete\replace anything else !!!!!!

The error I constantly get when ever I try to access any control panel apps is:  Run a DLL as an App. Run a DLL as ann App has encountered a problem and needs to close, we are sorry for the inconvenience.  Please tell MS about this problem.

I am now going to move the customers 'data' to another folder and try a 'repair' of the OS.  I will keep you all posted!

Maybe rundll.exe is corrupt.

Is there a way for me to find what the XPHome registration number is on this computer?  There is no sticker and I want to be able to have it if I need to do a restore.  THe system information program will not work, and I also tried Belark.  I have an OEM XP Home CD that I use to do recovery/repairs.

http://www.magicaljellybean.com/keyfinder.shtml

Thank you, that tool worked great!  Saved it in my bag of tricks!

OK, I ended up doing a new install of XP with my OEM disk... nothing else worked. I installed it to the C drive and left the D drive in tact (D is the 'recovery' drive for HP since they dont issue CD's anymore).  I also made a 'backup' directory on D for my clients data.  Now the problem is that I can't get back any HP applications nor drivers that are needed for this machine.  THis is a Pavillion 522n.  I simply want this machine to work normally again, even if it is back to square one.  HP said by hitting the f10 key it would do its own system recover but that failed.  Any suggestions?  I am indesparate need for all the MultiMedia (video, etc) drivers.

>> OK, I ended up doing a new install of XP with my OEM disk

are u sure that u did a Legal work here...... means if u have used the OEM disk of another system on this laptop..... i dont think that it can be termed as a GOOD thing =|

There was no recovery CD with system, all I want to do is use the XP registration number they had before that I have and use it again since I had to reinstall the OS.... same system.  This should not be illegal.  And this is a PC, not a laptop.  What else could I do?

I don't see any ethical problem with putting your legally purchased copy of xp onto any machine that you want to put it on.  You just have to raise your right hand and swear that you won't put it on any other machines also.  I'll wait a second while you swear...................OK, now that your finished swearing, I looked around but didn't see the process for activating the recovery process.  I'm sure it 's out there somewhere though.  I did track down the driver download page for the machine which is the link below.  I also ran across a couple of references to a one time option to download the recovery cd's but I didn't find the website.  If this customer never received recovery cd's with his machine and never downloaded any, then you might be able to download them free from hp by providing the machine's serial number on an online download site.  Also, I reloaded my aunt's hp at one point, and after discovering that she had no cds, I called hp to complain and the telephone service rep pulled up half dozen or so scripted rebuttals and then, after checking with his supervisor to make sure the sky wasn't going to fall in, agreed to send the set for $10.00.  Eight cds in all. If customer can wait, you might want to go that route.  When I have a chance I'll look further for the recovery cd download page, but personally, I don't think you'll miss anything if you just replace the basic drivers which may be all on the download page in the link below.  I had an hp at a previous job and the supplemental disk had a couple off things on it that were ok but alot of it was worthless, like Backweb and Wild Tangent Games and crap like that.  The cd burner may be  the only thing you really have to have, and you might be able to get an update for that online.  

I'll keep looking for something you can use.  All of this nonsense is about Microsoft, being our favorite monopolist, using it's monopolistic power to pressure the vendors into not providing hard media with the machines.  Just like every other big business, they are trying to build a limitation into the lifespan of the product to improve their sales.  Microsoft is doing it under the guise of reducing piracy, which I guess they think sounds better to the public.


http://h10025.www1.hp.com/ewfrf/wc/softwareList?product=83455&lang=en&cc=us&lc=en&dlc=en&os=228

THank you so much for all your persistance with this timothyflyer!  THis is the 3rd HP that I have had recovery issues this year and HP is really getting me angry!  I did go to their site and they do not have the drivers (specifially I am looking for video drivers).  I called HP and they said for $35 I can purchase the CD's.. I tried to get a discount but it did not work.  Maybe I am not mean enough!  I really hate HPs!  I actually went to all the web pages you went to.. no there is no download anymore I found out from their site.  I went to your URL and I have the same one and there are no drivers on it that would help.  I may have to suck up to HP and purchase the CD's. I'll call my customer and see if they created the recovery CDs like they were supposed to when they first turned on the machine.  If not, I will have to charge them.  THe only problem I am having with the OEM copy of XP is that it wont register and I never get a 'live' person on the Microsoft phone line to tell them what I am trying to do!  I had done this once and was able to get to a live person with a compaq machine a few months ago,, but now they changed the process perhaps.

Any more suggestions?  I looked up the motherboard, ASUS P4GLA and there are no video drivers on the site.  Going nuts here!

I found the motherboard on their website but I did not see any 'video or multimedia' drivers.  I can't get the video to go better than medium 16 bit at 640X480.

some guy on another forum says he had to download the video from intel to fix it.. Im going there now..

From the looks of it, I would say it was a proprietary build.  Got 24 googles on p4gla, 500 something on   p4 gla   at which point I noticed correlation between gl and intel and somehow ended up at this site with guy with same problem and he solved it this way- I guess the video drivers are in the chipset drivers but not sure.  If you can't make it out from the excerpt, I would go to the forum and read the whole thread for more clues. The excerpt is for the same machine as yours a 522n
I'm going to have to run now but I'll check back later to see if I can help on anything.
http://forum.osnn.net/archive/index.php/t-25340.html

from link above
Ok.. I was able to figure it out. What you have to do with machines like this after you reformat and delete there partition and start from scratch. You have to find out the chipset because HP's customer care won't know what the video card and or driver because it's on board. You have to find the "chipset" from either hp or going through your BIOS. Then you have to go to your chipset makers website, in this case it was intel. There chipset for this machine was "Intel 845GL" after going there you have to go though the letters on intels website to finally get to this chipsets drivers. Install and reboot. What a huge pain in the ass this was to find this, but if you have an HP and lose all your info, do what I did here..

I got it and it worked.. now for the other drivers!

All I need now according to the device manager is the MultiMedia Audio Controller and the USB Controller...

I cant find the USB nor the audo drivers.. suggestions? Please?

Just got back in, I'll look.

Im on driverguide.com now ... this is not fun at all!
I am loading some software now that equates to what HP had on this system, like DVD players and CD burning software... man, I hate HP systems!

I think #2 and #5 on this page will take care of the usb and audio
http://downloadfinder2.intel.com/scripts-df/filter_results.asp?strOSs=45&strTypes=DRV%2CARC%2CUTL&ProductID=757&OSFullName=Windows*+XP+Home+Edition&submit=Go%21

Also look at #8.  I don't know if you have and Intel audio chip or not so don't know if you'll have to search more or not.

Also, the hp driver download page link I posted earlier had burner updates on it.  Alot of times, the update is the complete program so assuming the update doesn't freak on  the xp pid, you might be able to replace the burner program (RecordNow).  There are programs that can change that pid also though I haven't used one.

http://labmice.techtarget.com/windowsxp/articles/changeID.htm

I was able to finally get the sound drivers installed!  I went to the device manager and let it search on the internet for the drivers and it worked!  Now I am checking out everything else before I close this issue.  Thanks to all who hellped!  Tim, you put a lot of time into this for me, and I do appreciate it!

XP found a driver on the internet? **************** ALERT THE MEDIA ********************
My experience is that XP can't find it's own windows drivers when they're in the same folder.
Ha!!!!!!