1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Blue screens making me blue!

Discussion in 'Virus & Other Malware Removal' started by verbalista, Nov 3, 2007.

Thread Status:
Not open for further replies.
  1. verbalista

    verbalista Thread Starter

    Joined:
    Oct 16, 2001
    Messages:
    497
    I have a blue screen problem that occurs unpredictably, sometimes I'm in the other room! The info says, "bad pool call", guess that means everybody out of the pool, LOL.
    Possible reasons: I had a Cyberlink power DVD version on this comp and removed it. Logitech quickcam was causing crashes and I removed it, but after removal, it kept trying to reinstall itself at startup, even though the registry doesn't have any references to Logitech, Quickcam, or QuickC now.
    So, I made a log with HijackThis and am hoping someone here will magically figure out what's wrong. I've already spent hours investigating and am boggled. By the way, the log says I'm running Windows XP, but I'm running Windows XP Media Center Edition and on this millionth restart, I guess media center didn't open. I don't need media center and would remove it, if it were possible, without messing up everything else. There's practically nothing on here, just Word, because this is my downstairs computer and is used mainly for communication over the net. My serious programs are on the upstairs computer.

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:07:33 AM, on 11/3/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
    C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
    C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
    C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
    C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
    C:\Program Files\Wireless-G USB Network adapter with SRX400\WLService.exe
    C:\Program Files\Wireless-G USB Network adapter with SRX400\WUSB54GX.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfsem.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\stsystra.exe
    C:\WINDOWS\system32\kmw_run.exe
    C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe
    C:\WINDOWS\system32\KMW_SHOW.EXE
    C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAPPActiveProtection.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
    C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Shohana\Desktop\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common

    Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program

    Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: IEHlprObjClass - {CE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [kmw_run.exe] kmw_run.exe
    O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"
    O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe"
    O4 - HKLM\..\Run: [cafwc] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe -cl
    O4 - HKLM\..\Run: [capfasem] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe
    O4 - HKLM\..\Run: [capfupgrade] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe
    O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe"
    O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

    https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: bw+0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw+0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw-0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw-0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw00 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw00s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw10 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw10s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw20 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw20s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw30 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw30s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw40 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw40s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw50 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw50s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw60 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw60s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw70 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw70s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw80 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw80s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw90 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bw90s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwa0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwa0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwb0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwb0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwc0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwc0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwd0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwd0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwe0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwe0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwf0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwf0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - (no file)
    O18 - Protocol: bwg0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwg0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwh0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwh0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwi0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwi0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwj0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwj0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwk0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwk0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwl0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwl0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwm0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwm0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwn0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwn0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwo0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwo0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwp0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwp0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwq0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwq0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwr0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwr0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bws0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bws0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwt0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwt0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwu0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwu0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwv0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwv0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bww0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bww0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwx0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwx0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwy0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwy0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwz0 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: bwz0s - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O18 - Protocol: offline-8876480 - {6B720E00-9943-4B32-8067-3EAD60058754} - (no file)
    O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements

    6.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: CaCCProvSP - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
    O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet

    Publisher\FNPLicensingService.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program

    Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PPCtlPriv - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
    O23 - Service: HIPS Event Manager (UmxAgent) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
    O23 - Service: HIPS Configuration Interpreter (UmxCfg) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
    O23 - Service: HIPS Firewall Helper (UmxFwHlp) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
    O23 - Service: HIPS Policy Manager (UmxPol) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
    O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
    O23 - Service: WUSB54GX4SVC - GEMTEKS - C:\Program Files\Wireless-G USB Network adapter with SRX400\WLService.exe

    --
    End of file - 13528 bytes

    Thanks for any help you can give!!
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - Blue screens making
  1. Omaly
    Replies:
    0
    Views:
    443
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/647283

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice