I have had the worst problems lately with my computer.

1. My Task Manager says there is 7 instances of svchost.exe running, 4 running under SYSTEM, 2 running under NETWORK SERVICE, and one in LOCAL SERVICE. End any one of them and my sound dies. Must reboot. :mad:

2. Explorer uses 50% of the Processing power to do simple commands, such as, explore through file folders in My Computer. As time progresses it will eventuall eat up as much as 200MB of virtual memory. :mad:

3. I have a file on my PC, suppossedly (*sp) it's a movie which is 744MB but it does not play and I cannot delete it. :mad: I have tried multiple ways and it won't go away, it tells me that there is a program using it at the moment and it cannot be deleted. I have downloaded it twice on to a non-system disk. A completely seperate disk. :mad:

4. I have tried to just KILL ALL and start over but when I put my XP disk in the CD-ROM it says my current version of windows is cooler than hell and it won't let me re-do anything or even use it as a boot disk.



All these problems sound like I might have a Virus but none of my detectors show any signs of a virus and it doesn't do anything but eat up processing power and virtual memory. I have cleaned up all of my Temp files, Spy ware, etc and nothing changes. I have even gone through my registry to look for stuff and I find only stupid problems. Can anyone help me please??

It would be greatly appreciated. :D
--------------------------------------------------------------------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 12:00:58 PM, on 5/30/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Winamp\Winamp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\User\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/sb/*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/sp/*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rr.com/flash/index.cfm
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

1. That is normal. SVCHOST.exe is a process (service host) that monitors other vital processes on the PC (Like sound card software) Evidently you are running 7 programs as a NT service. While you need a few services (usually 4 or 5) running you may be able to drop one or two. If you wish to lower that figure, then alter what programs start automatically and run in memory at boot in the 'services' applet. Available via control panel or "start", "run", type in "services.msc" and click "Ok". Take a look around and disable automatic startup of services you don't use. Frankly though, 7 monitored process is normal.

2. Explorer usually spikes processor usage initially during operations. Nothing strange about that. As for gobbling memory, perhaps there is some application your are running in the background that is leaking memory? Just a guess.

3. To delete the 744 mb movie file, start your PC in safe mode. When you get to your desktop in safe mode, then delete it. Reboot your PC.

4. I'll assume your XP disk is sp1 or pre sp1. Since you are on service pack 2 you are getting that message about your OS being newer than what is on the CD, because it is newer. You will need to slipstream sp2 into a new CD in order to run repairs or use the disk. You can create slipstreamed XP SP2 CD's by following the tutorials at WinSuperSite (http://www.winsupersite.com/showcase/windowsxp_sp2_slipstream.asp) or at TheElderGeek.com (http://www.theeldergeek.com/slipstreamed_xpsp2_cd.htm). There are others, but these are pretty comprehensive.

An alternative to deleting the file by starting up in safe mode (as this sometimes doesn't work) is to do so from the DOS prompt.

I can't remember if using the command prompt supplied in windows works or if you need to create a boot disc to do it but if safe mode won't let you remove it the command prompt method most certainly will.