1. TechSpot is dedicated to computer enthusiasts and power users. Ask a question and give support. Join the community here.
    TechSpot is dedicated to computer enthusiasts and power users.
    Ask a question and give support.
    Join the community here, it only takes a minute.
    Dismiss Notice

Random system Crash!!!

By eguev79
Jan 19, 2005
  1. Hi everyone. Hopefully someone can help me out. I've ran every spyware removal tool and trojan removal tool I can think of, and found nothing. I have a brand new (Dec 04) PC from Gateway(maybe that's the problem lol) running XP Pro with 512MB of RAM. My PC seems to crash when I try and start an app(no specific one) and it's random, usually after a few hours of the pc running. Even if I don't have any other programs running and I've benchmarked to make sure I have plenty of RAM. I've attached my hijackthis log. Maybe someone can give me some pointers.
  2. RealBlackStuff

    RealBlackStuff TS Rookie Posts: 6,452

    Go to my post here and follow it EXACTLY
    How to remove Begin2Search / Coolwebsearch

    Then reboot in Safe Mode and
    UNinstall anything to do with this adware-riddled crap:
    C:\Program Files\PeerGuardian pr14\PeerGuardian_1.99b_pr14.exe
    C:\Program Files\NetPumper\NetPumperIEProxy.exe

    I can't find enough info on this stuff:
    C:\PROGRA~1\D5 Streaming Media Server\ImmsService.exe
    You will have to decide if you trust it.

    Then run and let HJT "fix":
    C:\Program Files\NetPumper\NetPumperIEProxy.exe
    C:\Program Files\PeerGuardian pr14\PeerGuardian_1.99b_pr14.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gatewaybiz.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gatewaybiz.com
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [SM1BG] C:\WINDOWS\SM1BG.EXE
    O4 - HKLM\..\Run: [NetPumper] "C:\Program Files\NetPumper\NetPumperIEProxy.exe"
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=34738&clcid=0x409
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1105501225984

    Delete the bold files. When a directory is also bold, delete everything in it, including that directory itself.
  3. cpc2004

    cpc2004 TS Evangelist Posts: 1,994

    The hijack log is insufficient to find out the problem.
    Attach the two minidumps here and you can find out the minidumps at the folder /windows/minidumps
Topic Status:
Not open for further replies.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...