troubleshooting Question

iexplore.exe application error, undefined, mshtml.dll, ntdll.dll, others

Avatar of RickNCN
RickNCNFlag for United States of America asked on
Windows Server 2003Microsoft Server OS
28 Comments1 Solution4815 ViewsLast Modified:
Windows Terminal Server 2003. 2 XP RDP clients, 1 Win 7 client.

User remotes in and a 6-12 times a day roughly Internet Explorer crashes. Logging into the server, all those crashes pop up. I've inadvertently erased the Application Log through Dr Watson it seems, so I'm going from memory with some written notes.

Most errors were:
undefined
mshtml.dll
ntdll.dll
msvcrt.dll

I also noticed other programs would crash on those same modules: mbam.exe and cbplus (= clientbase: a travel agency program) among others.

I *think* these errors have been evident in the app log since the beginning, but in small numbers (since 2010) - around every 2-7 days But sometime around Sept 2011, the incidence of them increased to almost daily and many times a day.

What happened on Sept 9 was a malware infection. It was cleaned up and I'm quite certain it's clean now, but since then, they've experienced this spike in crashes. I think I've read just about every post on related topics and nothing is "connecting" and making sense as the issue.

I did match up the event log with Internet Explorer history to see if there was a correlation. I made notes of recent dates and times of these crashes. Then I used IEHistView as Admin on the server, had it display the cache history for all users and looked for any websites that might be setting it off. There was absolutely no correlation between a crash in event log and hitting a website at that time. Something else is triggering it.

In Dr Watson, before I cleared the history, I do recall seeing crashes referencing a network CAPT print driver (AXIS CAPT port I think). May be nothing.

Here, Dr Watson just caught a crash:
---------------------------------------------------
Event Type:      Information
Event Source:      DrWatson
Event Category:      None
Event ID:      4097
Date:            2/7/2012
Time:            5:16:23 PM
User:            N/A
Computer:      NPTSERVER
Description:
The application, C:\Program Files\Internet Explorer\iexplore.exe, generated an application error The error occurred on 02/07/2012 @ 17:16:22.812 The exception generated was c0000005 at address 3FA6B616 (mshtml!DllGetClassObject)
------------------------------------------------------------

I'm having a user disable addons as a test. I haven't reset Advanced settings yet. I might try uninstalling IE8 but fear breaking the "web apps" that this travel business relies on. And, IE 7 is less secure?
ASKER CERTIFIED SOLUTION
1namyln

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 28 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 28 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros