| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 124455 | 2012-04-27 05:36:00 | Hijack this log | lakewoodlady (103) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1272254 | 2012-04-27 05:36:00 | My Vista machine has given a couple of BSODs and freezes in the past few days. My son was using it at the time and doing something on Carrara. he didn't write down the error code, but will if it happens again. Here is HJT log for it which I just did before. Please can Speedy or someone look at and advise on it. Thanks, LL |
lakewoodlady (103) | ||
| 1272255 | 2012-04-27 05:42:00 | You forgot to post the log. Put teamviewer on it, if you want. I cant check it out from here. And see what the stop error is or was. If you install it, send me the ID and pw it gives you in a PM. After you install it. If it crashes often in normal windows, boot into safe mode / networking. Then send the ID and pw to me | Speedy Gonzales (78) | ||
| 1272256 | 2012-04-27 08:23:00 | OMG. that's what a few wines does at the end of the day! :o Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 4:21:24 p.m., on 27/04/2012 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Users\Steve's Computer\AppData\Local\Google\Chrome\Application\c hrome.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = homepage.acer.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = homepage.acer.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = homepage.acer.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin \IE\rpbrowserrecordplugin.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [9B6904E84EFCF6A513ED7829B5DAFE2D2A163E3E._service_ run] "C:\Users\Steve's Computer\AppData\Local\Google\Chrome\Application\c hrome.exe" --type=service O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-411165475-1848600127-4017264945-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser') O4 - HKUS\S-1-5-21-411165475-1848600127-4017264945-1005\..\RunOnce: [RUN] C:\Windows\Acer_Normal\run_DT.exe (User 'UpdatusUser') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - platformdl.adobe.com O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - utilities.pcpitstop.com O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpda teService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE O23 - Service: Google Update Service (gupdate1ca2247aab6f5a0) (gupdate1ca2247aab6f5a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: Seagate Sync Service - Seagate Technology LLC - C:\Program Files\Seagate\Sync\SeaSyncServices.exe O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- End of file - 7833 bytes LL |
lakewoodlady (103) | ||
| 1272257 | 2012-04-27 10:38:00 | What version of java is installed? Its just been update to 6 update 32 Dont know if this is is suss or not, I dont use Chrome. I have used it before, but I cant remember this entry being in startup. Unless its a new feature in the latest version O4 - HKCU\..\Run: [9B6904E84EFCF6A513ED7829B5DAFE2D2A163E3E._service_ run] "C:\Users\Steve's Computer\AppData\Local\Google\Chrome\Application\c hrome.exe" --type=service 0ont know what this is either O4 - HKUS\S-1-5-21-411165475-1848600127-4017264945-1005\..\RunOnce: [RUN] C:\Windows\Acer_Normal\run_DT.exe (User 'UpdatusUser') Disable auto restart and let us know what the BSOD says |
Speedy Gonzales (78) | ||
| 1272258 | 2012-04-27 10:54:00 | i thought java 7 was the latest??? that's what im running | GameJunkie (72) | ||
| 1272259 | 2012-04-27 10:57:00 | There is 7 update 4 which just came out. And 6 update 32. | Speedy Gonzales (78) | ||
| 1272260 | 2012-04-27 21:32:00 | Hi guys Thanks for those suggestions. Just turned it on this morning and it froze on start up just after POST. Its running its repair thing now. Will check Java when it comes on ,and fix those Chrome entries and see what happens. If it blue screens again I'll take note and post error on here. Thank you for the Teamviewer offer Speedy, will consider that too. Cheers, LL |
lakewoodlady (103) | ||
| 1272261 | 2012-04-27 21:38:00 | No probs. Doesnt sound good if its freezing before it gets into windows | Speedy Gonzales (78) | ||
| 1272262 | 2012-04-27 21:54:00 | If it can boot into windows and if you can stay in windows long enough install bluescreenview on it. Then run it. What does it say, is the cause? | Speedy Gonzales (78) | ||
| 1272263 | 2012-04-27 22:27:00 | Ok, here are results of bsods from yesterday. It said the cause was a driver, ntkrnlpa, but I don't know what that driver belongs to. Mini042712-02.dmp 27/04/2012 7:50:15 a.m. KERNEL_MODE_EXCEPTION_NOT_HANDLED 0x1000008e 0xc0000005 0x82e0a65a 0x824e2b68 0x00000000 ntkrnlpa.exe ntkrnlpa.exe+20565a NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.0.6002.18595 (vistasp2_gdr.120305-0430) 32-bit ntkrnlpa.exe+20565a ntkrnlpa.exe+1fd422 ntkrnlpa.exe+1fd6db ntkrnlpa.exe+4ac7a C:\Windows\Minidump\Mini042712-02.dmp 4 15 6002 150,616 Mini042712-01.dmp 27/04/2012 7:48:25 a.m. IRQL_NOT_LESS_OR_EQUAL 0x0000000a 0x00340068 0x0000001b 0x00000001 0x82cc45ce 32-bit C:\Windows\Minidump\Mini042712-01.dmp 4 15 6002 131,072 LL |
lakewoodlady (103) | ||
| 1 2 | |||||