Random BSOD's
I"m getting random BSOD's. Here is my HJT log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:39:05 PM, on 2007-11-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.e
C:\WINDOWS\system32\winlog
C:\WINDOWS\system32\servic
C:\WINDOWS\system32\lsass.
C:\WINDOWS\system32\svchos
C:\WINDOWS\System32\svchos
C:\Program Files\Ahead\InCD\InCDsrv.e
C:\WINDOWS\system32\svchos
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex
C:\WINDOWS\system32\LEXBCE
C:\WINDOWS\system32\spools
C:\Program Files\Common Files\Maxtor\Schedule2\sch
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\Symantec\LiveUpdate\
C:\WINDOWS\system32\CTsvcC
C:\Program Files\PC Magazine Utilities\HD HeartBeat 2\HBSrvApp.exe
C:\WINDOWS\System32\svchos
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc3
C:\WINDOWS\system32\RioMSC
C:\Program Files\Lasso Logic\Lasso Continuous Data Protection\CDPAgent.exe
C:\WINDOWS\System32\svchos
C:\WINDOWS\system32\MsPMSP
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskmg
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\spool\
C:\Program Files\Common Files\Real\Update_OB\reals
C:\Program Files\Maxtor\MaxBlast\MaxB
C:\Program Files\Maxtor\MaxBlast\Timo
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbar
C:\WINDOWS\system32\ctfmon
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Citrix\GoToMeeting\1
C:\PROGRA~1\MI3AA1~1\rapim
C:\Program Files\Zinio\ZinioDeliveryM
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Citrix\GoToMeeting\1
C:\Program Files\Citrix\GoToMeeting\1
C:\Program Files\CMS Peripherals\BounceBack Express\BBLauncher.exe
C:\Program Files\eFax Messenger 4.3\J2GTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Mirra\Mirra.Client.e
C:\Program Files\PKWARE\PKZIPM\9.00.0
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlma
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.E
C:\PROGRA~1\Yahoo!\MESSEN~
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
c:\program files\mirra\mirra.service.
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\LVComs
C:\WINDOWS\system32\Search
C:\WINDOWS\system32\Search
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trend Micro\HijackThis\HijackThi
R0 - HKCU\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R0 - HKLM\Software\Microsoft\In
R0 - HKCU\Software\Microsoft\In
R0 - HKLM\Software\Microsoft\In
R1 - HKCU\Software\Microsoft\In
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-7
O2 - BHO: Web Historian - {4018FEE0-AAEB-4c2f-8F5A-6
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-2
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-B
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-7
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-C
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-C
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-6
O2 - BHO: inetLock route - {E02E86EB-220B-4B59-A251-F
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-2
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-0
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-6
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\reals
O4 - HKLM\..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxB
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Maxtor\MaxBlast\Timo
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dump
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbar
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN
O4 - HKCU\..\Run: [GoToMeeting] C:\Program Files\Citrix\GoToMeeting\1
O4 - HKCU\..\Run: [Zinio DLM] C:\Program Files\Zinio\ZinioDeliveryM
O4 - HKCU\..\Run: [OCAEBNDVDUpdate] C:\Program Files\ObjectCube\XXX2Burn DVD Wizard\xxx2burn.exe /update
O4 - Startup: BounceBack Launcher.lnk = ?
O4 - Startup: Microsoft Office OneNote 2003 Quick Launch.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.E
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Ad
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: BounceBack Launcher.lnk = ?
O4 - Global Startup: eFax 4.3.lnk = C:\Program Files\eFax Messenger 4.3\J2GTray.exe
O4 - Global Startup: Free WebSite Tools.lnk = ?
O4 - Global Startup: Mirra.lnk = C:\Program Files\Mirra\Mirra.Client.e
O4 - Global Startup: PKZIP Attachments Status.lnk = C:\Program Files\PKWARE\PKZIPM\9.00.0
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QB
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlma
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.h
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2
O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\m
O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\m
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-0
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-0
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-0
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-0
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-0
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-0
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-0
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-0
O15 - Trusted Zone: http://service1.symantec.com
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-8
O16 - DPF: {11A02365-2859-4598-A9D5-4
O16 - DPF: {17492023-C23A-453E-A040-C
O16 - DPF: {1D9EFA3B-4E85-41A8-9092-1
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3
O16 - DPF: {2357B3CF-7F8D-4451-8D81-F
O16 - DPF: {238F6F83-B8B4-11CF-8771-0
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-0
O16 - DPF: {30528230-99f7-4bb4-88d8-f
O16 - DPF: {3451DEDE-631F-421C-8127-F
O16 - DPF: {485D813E-EE26-4DF8-9FAF-D
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-0
O16 - DPF: {556DDE35-E955-11D0-A707-0
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D
O16 - DPF: {6414512B-B978-451D-A0D8-F
O16 - DPF: {644E432F-49D3-41A1-8DD5-E
O16 - DPF: {6A344D34-5231-452A-8A57-D
O16 - DPF: {6E32070A-766D-4EE6-879C-D
O16 - DPF: {6E5A37BF-FD42-463A-877C-4
O16 - DPF: {74C861A1-D548-4916-BC8A-F
O16 - DPF: {7584C670-2274-4EFB-B00B-D
O16 - DPF: {7F8C8173-AD80-4807-AA75-5
O16 - DPF: {87587503-20F0-4FF5-8DA3-0
O16 - DPF: {8BBDC81D-81B3-49EE-87E8-4
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-1
O16 - DPF: {A90A5822-F108-45AD-8482-9
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-5
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-0
O16 - DPF: {E7D2588A-7FB5-47DC-8830-8
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-D
O17 - HKLM\System\CCS\Services\T
O17 - HKLM\Software\..\Telephony
O17 - HKLM\System\CS1\Services\T
O17 - HKLM\System\CS2\Services\T
O20 - AppInit_DLLs: msjt3032Patch.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Maxtor\Schedule2\sch
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcC
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google
O23 - Service: HBService - Ziff Davis Media, Inc - C:\Program Files\PC Magazine Utilities\HD HeartBeat 2\HBSrvApp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver
O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.ex
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.e
O23 - Service: InCD Helper (read only) (InCDsrvR) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.e
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEU
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
O23 - Service: MirraSync Service (Mirra.Service) - Seagate Technology - c:\program files\mirra\mirra.service.
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Unknown owner - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc3
O23 - Service: PMounter - Unknown owner - C:\WINDOWS\system32\PMount
O23 - Service: Rio MSC Manager (RioMSC) - Digital Networks North America, Inc. - C:\WINDOWS\system32\RioMSC
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SonicWALL CDP Agent Service (SonicWALLCDPAgent) - Lasso Logic - C:\Program Files\Lasso Logic\Lasso Continuous Data Protection\CDPAgent.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex
--
End of file - 20149 bytes
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:39:05 PM, on 2007-11-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.e
C:\WINDOWS\system32\winlog
C:\WINDOWS\system32\servic
C:\WINDOWS\system32\lsass.
C:\WINDOWS\system32\svchos
C:\WINDOWS\System32\svchos
C:\Program Files\Ahead\InCD\InCDsrv.e
C:\WINDOWS\system32\svchos
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex
C:\WINDOWS\system32\LEXBCE
C:\WINDOWS\system32\spools
C:\Program Files\Common Files\Maxtor\Schedule2\sch
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\Symantec\LiveUpdate\
C:\WINDOWS\system32\CTsvcC
C:\Program Files\PC Magazine Utilities\HD HeartBeat 2\HBSrvApp.exe
C:\WINDOWS\System32\svchos
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc3
C:\WINDOWS\system32\RioMSC
C:\Program Files\Lasso Logic\Lasso Continuous Data Protection\CDPAgent.exe
C:\WINDOWS\System32\svchos
C:\WINDOWS\system32\MsPMSP
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskmg
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\spool\
C:\Program Files\Common Files\Real\Update_OB\reals
C:\Program Files\Maxtor\MaxBlast\MaxB
C:\Program Files\Maxtor\MaxBlast\Timo
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbar
C:\WINDOWS\system32\ctfmon
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Citrix\GoToMeeting\1
C:\PROGRA~1\MI3AA1~1\rapim
C:\Program Files\Zinio\ZinioDeliveryM
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Citrix\GoToMeeting\1
C:\Program Files\Citrix\GoToMeeting\1
C:\Program Files\CMS Peripherals\BounceBack Express\BBLauncher.exe
C:\Program Files\eFax Messenger 4.3\J2GTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Mirra\Mirra.Client.e
C:\Program Files\PKWARE\PKZIPM\9.00.0
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlma
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.E
C:\PROGRA~1\Yahoo!\MESSEN~
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
c:\program files\mirra\mirra.service.
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\LVComs
C:\WINDOWS\system32\Search
C:\WINDOWS\system32\Search
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trend Micro\HijackThis\HijackThi
R0 - HKCU\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R1 - HKLM\Software\Microsoft\In
R0 - HKLM\Software\Microsoft\In
R0 - HKCU\Software\Microsoft\In
R0 - HKLM\Software\Microsoft\In
R1 - HKCU\Software\Microsoft\In
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-7
O2 - BHO: Web Historian - {4018FEE0-AAEB-4c2f-8F5A-6
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-2
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-B
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-7
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-C
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-C
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-6
O2 - BHO: inetLock route - {E02E86EB-220B-4B59-A251-F
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-2
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-0
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-6
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\reals
O4 - HKLM\..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxB
O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Maxtor\MaxBlast\Timo
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dump
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbar
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN
O4 - HKCU\..\Run: [GoToMeeting] C:\Program Files\Citrix\GoToMeeting\1
O4 - HKCU\..\Run: [Zinio DLM] C:\Program Files\Zinio\ZinioDeliveryM
O4 - HKCU\..\Run: [OCAEBNDVDUpdate] C:\Program Files\ObjectCube\XXX2Burn DVD Wizard\xxx2burn.exe /update
O4 - Startup: BounceBack Launcher.lnk = ?
O4 - Startup: Microsoft Office OneNote 2003 Quick Launch.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.E
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Ad
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: APC UPS Status.lnk = ?
O4 - Global Startup: BounceBack Launcher.lnk = ?
O4 - Global Startup: eFax 4.3.lnk = C:\Program Files\eFax Messenger 4.3\J2GTray.exe
O4 - Global Startup: Free WebSite Tools.lnk = ?
O4 - Global Startup: Mirra.lnk = C:\Program Files\Mirra\Mirra.Client.e
O4 - Global Startup: PKZIP Attachments Status.lnk = C:\Program Files\PKWARE\PKZIPM\9.00.0
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QB
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlma
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.h
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2
O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\m
O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\m
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-0
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-0
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-0
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-0
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-0
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-0
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-0
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-0
O15 - Trusted Zone: http://service1.symantec.com
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-8
O16 - DPF: {11A02365-2859-4598-A9D5-4
O16 - DPF: {17492023-C23A-453E-A040-C
O16 - DPF: {1D9EFA3B-4E85-41A8-9092-1
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3
O16 - DPF: {2357B3CF-7F8D-4451-8D81-F
O16 - DPF: {238F6F83-B8B4-11CF-8771-0
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-0
O16 - DPF: {30528230-99f7-4bb4-88d8-f
O16 - DPF: {3451DEDE-631F-421C-8127-F
O16 - DPF: {485D813E-EE26-4DF8-9FAF-D
O16 - DPF: {4D7F48C0-CB49-4EA6-97D4-0
O16 - DPF: {556DDE35-E955-11D0-A707-0
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D
O16 - DPF: {6414512B-B978-451D-A0D8-F
O16 - DPF: {644E432F-49D3-41A1-8DD5-E
O16 - DPF: {6A344D34-5231-452A-8A57-D
O16 - DPF: {6E32070A-766D-4EE6-879C-D
O16 - DPF: {6E5A37BF-FD42-463A-877C-4
O16 - DPF: {74C861A1-D548-4916-BC8A-F
O16 - DPF: {7584C670-2274-4EFB-B00B-D
O16 - DPF: {7F8C8173-AD80-4807-AA75-5
O16 - DPF: {87587503-20F0-4FF5-8DA3-0
O16 - DPF: {8BBDC81D-81B3-49EE-87E8-4
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-1
O16 - DPF: {A90A5822-F108-45AD-8482-9
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-5
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-0
O16 - DPF: {E7D2588A-7FB5-47DC-8830-8
O16 - DPF: {E7DBFB6C-113A-47CF-B278-F
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-D
O17 - HKLM\System\CCS\Services\T
O17 - HKLM\Software\..\Telephony
O17 - HKLM\System\CS1\Services\T
O17 - HKLM\System\CS2\Services\T
O20 - AppInit_DLLs: msjt3032Patch.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Maxtor\Schedule2\sch
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcC
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google
O23 - Service: HBService - Ziff Davis Media, Inc - C:\Program Files\PC Magazine Utilities\HD HeartBeat 2\HBSrvApp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver
O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.ex
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.e
O23 - Service: InCD Helper (read only) (InCDsrvR) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.e
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEU
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-
O23 - Service: MirraSync Service (Mirra.Service) - Seagate Technology - c:\program files\mirra\mirra.service.
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Unknown owner - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc3
O23 - Service: PMounter - Unknown owner - C:\WINDOWS\system32\PMount
O23 - Service: Rio MSC Manager (RioMSC) - Digital Networks North America, Inc. - C:\WINDOWS\system32\RioMSC
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SonicWALL CDP Agent Service (SonicWALLCDPAgent) - Lasso Logic - C:\Program Files\Lasso Logic\Lasso Continuous Data Protection\CDPAgent.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.ex
--
End of file - 20149 bytes
ASKER
Memtest was normal. In fact, I replaced the RAM with new modules purchased from Crucial 2 days ago. Would a bios update just suddenly be needed? I get several other error messages. Here's one from a few days ago: BCCode : 1000007e BCP1 : C0000005 BCP2 : 805B9E56 BCP3 : F7AC3C74
BCP4 : F7AC3970 OSVer : 5_1_2600 SP : 2_0 Product : 256_1
BCP4 : F7AC3970 OSVer : 5_1_2600 SP : 2_0 Product : 256_1
Did the BSOD's start right after swapping the memory, or was swapping the memory part of your troubleshooting?
Navigate to C:\windows\minidump
Zip some of the recent minidumps and upload them to any free web hosting and give us the link
Zip some of the recent minidumps and upload them to any free web hosting and give us the link
You can upload minidumps to eestuff.
http://www.ee-stuff.com/
http://www.ee-stuff.com/
No ... For some reason .. ?? i can't open ee-stuff ... upload somewhere else
ASKER
Here's the file: Your file has successfully been uploaded!
To download the file, you must be logged into EE-Stuff. Here are two pages that will display your file, if logged in:
View all files for Question ID: 22989503
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
Direct link to your file
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
To download the file, you must be logged into EE-Stuff. Here are two pages that will display your file, if logged in:
View all files for Question ID: 22989503
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
Direct link to your file
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
ASKER
Sorry, yes, my memory was replaced as part of troubleshooting. Devil, where should I upload the files for you to access?
GetPointerFromAddress: unable to read from 80561114
PROCESS 89547ae8 SessionId: none Cid: 09b0 Peb: 7ffdf000 ParentCid: 0398
DirBase: 0b0804a0 ObjectTable: e161e5b0 HandleCount: <Data Not Accessible>
Image: searchindexer.e
VadRoot 89178658 Vads 394 Clone 0 Private 6722. Modified 93957. Locked 0.
DeviceMap e10001a0
Token e19669d8
ReadMemory error: Cannot get nt!KeMaximumIncrement value.
ffdf0000: Unable to get shared data
ElapsedTime 00:00:00.000
UserTime 00:00:00.000
KernelTime 00:00:00.000
QuotaPoolUsage[PagedPool] 195660
QuotaPoolUsage[NonPagedPoo
Working Set Sizes (now,min,max) (5797, 50, 345) (23188KB, 200KB, 1380KB)
PeakWorkingSetSize 11392
VirtualSize 275 Mb
PeakVirtualSize 289 Mb
PageFaultCount 480776
MemoryPriority BACKGROUND
BasePriority 8
CommitCharge 10337
PROCESS 89547ae8 SessionId: none Cid: 09b0 Peb: 7ffdf000 ParentCid: 0398
DirBase: 0b0804a0 ObjectTable: e161e5b0 HandleCount: <Data Not Accessible>
Image: searchindexer.e
VadRoot 89178658 Vads 394 Clone 0 Private 6722. Modified 93957. Locked 0.
DeviceMap e10001a0
Token e19669d8
ReadMemory error: Cannot get nt!KeMaximumIncrement value.
ffdf0000: Unable to get shared data
ElapsedTime 00:00:00.000
UserTime 00:00:00.000
KernelTime 00:00:00.000
QuotaPoolUsage[PagedPool] 195660
QuotaPoolUsage[NonPagedPoo
Working Set Sizes (now,min,max) (5797, 50, 345) (23188KB, 200KB, 1380KB)
PeakWorkingSetSize 11392
VirtualSize 275 Mb
PeakVirtualSize 289 Mb
PageFaultCount 480776
MemoryPriority BACKGROUND
BasePriority 8
CommitCharge 10337
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
John, translation, please?
ASKER
I removed windows desktop search 3.01. I've had it disabled for the past few hours (while using this forum) and haven't had any problems. You may have corrected my problem. Thanks!
ASKER
After 8 hours (approx.) of computer sitting idly (locked), it was "locked up". A manual restart was the only recourse. I forgot to mentiont that "lock ups" are another symptom of the issue here. If there are no more BSODs, I'll award the points and open a new thread. If there continue to be BSODs, I guess the problem still exists...Any more suggestions? I've posted the HJT log at the beginning of the thread and posted my minidump on ee. View all files for Question ID: 22989503
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
Direct link to your file
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
Direct link to your file
https://filedb.experts-exchange.com/incoming/ee-stuff/5872-Mini112807-03.zip
ASKER
I had to remove and/or reinstall a couple other programs as well. Microsoft ActiveSync and a few Outlook Add-ins.
If no errors are found then check the manufactures website for updates to your BIOS.