Post by: Dale on April 22, 2009, 05:38:11 AM
I suspect I've installed something bad when setting it up.
If you could help me clean it up - get rid of malware, remove things that don't need to run at startup, etc., assuming it needs it already, I'd sure appreciate it.
Dale
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:26:56 AM, on 4/22/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\GEARSec.exe
C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\SageTV\SageTV\SageTVService.exe
C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe
C:\Program Files\Raxco\PerfectDisk\PDSched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
C:\Program Files\lg_fwupdate\fwupdate.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\COMMON~1\SNAPST~1\Common\x10nets.exe
C:\PROGRA~1\STREAM~1\Remote\zremote.exe
C:\Program Files\GIGABYTE\ET6\GUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Interlink Electronics\RemotePointRF\rpointRF.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\SageTV\SageTV\SageTV.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [InstantBurn] C:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun
O4 - HKLM\..\Run: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETcall.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [StreamZap Remote] C:\PROGRA~1\STREAM~1\Remote\zremote.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - Global Startup: RemotePointRF.lnk = ?
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx (http://\"http://download.gigabyte.com.tw/object/Dldrv.ocx\")
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDSched.exe
O23 - Service: SageTV - SageTV, LLC - C:\Program Files\SageTV\SageTV\SageTVService.exe
O23 - Service: V2i Protector - PowerQuest Corporation - C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\SNAPST~1\Common\x10nets.exe
--
End of file - 6382 bytes
Post by: Dale on April 22, 2009, 05:58:24 PM
Post by: guestolo on April 22, 2009, 07:22:54 PM
Under Processes, what appears to be using the CPU %
Also, I assume you started installation of XP from scratch, correct?
As in Formatted and installed XP
Did you install all latest motherboard drivers?
Post by: Dale on April 22, 2009, 07:52:18 PM
Under Processes, what appears to be using the CPU %
Also, I assume you started installation of XP from scratch, correct?
As in Formatted and installed XP
Did you install all latest motherboard drivers?[/quote]
System Idle Process is using all the CPU. Everything else reads 0 - for the most part. If I can count on the sort order for values that are the same, there's taskmgr.exe, jucheck.exe, alg.exe, X10nets.exe all towards the top of the list.
You are correct. This is a fresh install of XP SP3, albeit with a few Microsoft updates already. I formatted a new drive. I believe I did go to the Internet to update the drivers for the motherboard (after I installed the ones on the CD that came with). For everything else, the video card, optical drive, and tuner cards, I downloaded the latest drivers first and installed them.
I just have a feeling I installed something bad during this process. There are several programs in the startup list I don't recognize. For example, one has the name = The thing I don't understand is why the drive light keeps flickering all the time. The PC this one is replacing did not do that. I used power management to tell the system to stop the drives after 10 minutes of inactivity before getting on this forum, thinking that would do the trick, but it did not.
Post by: guestolo on April 22, 2009, 08:33:38 PM
O4 - HKLM\..\Run: [GEST] =
This I believe is related to the gigabyte software
Could be why it's not working properly
Where did you get EasyTune 6
On CD with your motherboard, or did you download/install it from online?
Quote
The thing I don't understand is why the drive light keeps flickering all the time.
If it flashes for a split second, continually, at a regular interval
Some computers may do that, It could it is monitoring for CD/DVD insertion, I've had that happen on one of my computers
Could never understand it really, but it caused no harm, I was able to disable it, but next clean install it was there again, can't remember quite what I did, it was on a laptop, so it wasn't physical disconnection
I believe it was just disabling AutoPlay on CD/DVD drive cured it
Post by: Dale on April 23, 2009, 07:07:40 AM
O4 - HKLM\..\Run: [GEST] =
This I believe is related to the gigabyte software
Could be why it's not working properly
Where did you get EasyTune 6
On CD with your motherboard, or did you download/install it from online?
If it flashes for a split second, continually, at a regular interval
Some computers may do that, It could it is monitoring for CD/DVD insertion, I've had that happen on one of my computers
Could never understand it really, but it caused no harm, I was able to disable it, but next clean install it was there again, can't remember quite what I did, it was on a laptop, so it wasn't physical disconnection
I believe it was just disabling AutoPlay on CD/DVD drive cured it[/quote]
EasyTune did come on the CD, but it seemed problematic, so I did get whatever the latest version off of Gigabyte's website to install. It still seems problematic. When I start it, I see the hour glass for a moment and then nothing. Sometimes I'll see it down in the tool tray, and from there I can open it, but sometimes not (i.e., I don't see it in the tool tray all the time). I've yet to figure out how it works/is supposed to work. I wish I could, at least while the system's new, I'd like to see how the CPU is doing temp wise.
You're correct about the drive light. It flashes for a split second, continually, at a regular interval. I'd rather it didn't, but I guess I can live with it as long as it not caused by something that shouldn't be running on my system. I will see if I can figure out how to turn off AutoPlay.
Post by: guestolo on April 24, 2009, 07:42:49 PM
Reboot afterwards, post back a fresh Hijackthis log
What is the exact model Motherboard you have in this computer?
Post by: Dale on April 25, 2009, 07:31:47 AM
Reboot afterwards, post back a fresh Hijackthis log
What is the exact model Motherboard you have in this computer?[/quote]
Gigabyte EP45-UD3R
EasyTunes uninstalled and system rebooted.
Here's the log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:28:11 AM, on 4/25/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\GEARSec.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\STREAM~1\Remote\zremote.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\lg_fwupdate\fwupdate.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Interlink Electronics\RemotePointRF\rpointRF.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\SageTV\SageTV\SageTVService.exe
C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe
C:\Program Files\Raxco\PerfectDisk\PDSched.exe
C:\PROGRA~1\COMMON~1\SNAPST~1\Common\x10nets.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StreamZap Remote] C:\PROGRA~1\STREAM~1\Remote\zremote.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [InstantBurn] C:\PROGRA~1\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
O4 - HKLM\..\Run: [GEST] =
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - Global Startup: RemotePointRF.lnk = ?
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx (http://\"http://download.gigabyte.com.tw/object/Dldrv.ocx\")
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe
O23 - Service: GEST Service for program management. (GEST Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: PDScheduler (PDSched) - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDSched.exe
O23 - Service: SageTV - SageTV, LLC - C:\Program Files\SageTV\SageTV\SageTVService.exe
O23 - Service: V2i Protector - PowerQuest Corporation - C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\SNAPST~1\Common\x10nets.exe
--
End of file - 6610 bytes
Post by: guestolo on April 25, 2009, 09:47:07 AM
Here's the link to Easytune 6
http://www.gigabyte.com.tw/Support/Motherb...=2921#anchor_os (http://\"http://www.gigabyte.com.tw/Support/Motherboard/Utility_Model.aspx?ProductID=2921#anchor_os\")
If this doesn't work, I would uninstall it and get a different utility to monitor your temperatures, etc..
Post by: Dale on April 25, 2009, 10:07:05 AM
Here's the link to Easytune 6
http://www.gigabyte.com.tw/Support/Motherb...=2921#anchor_os (http://\"http://www.gigabyte.com.tw/Support/Motherboard/Utility_Model.aspx?ProductID=2921#anchor_os\")
If this doesn't work, I would uninstall it and get a different utility to monitor your temperatures, etc..[/quote]
Will do.
As far as spyware/malware, viruses, etc., things look clean/fine?
Post by: guestolo on April 25, 2009, 10:17:35 AM
Do you plan on installing One?
Do you have one to install, or do you need a free solution, such as Avast or Avira?
Post by: Dale on April 25, 2009, 12:28:57 PM
Do you plan on installing One?
Do you have one to install, or do you need a free solution, such as Avast or Avira?[/quote]
I don't have an Antivirus to install. I guess I would install AVG's 8.5 as I have my other system, but I was kind of leaning against installing it on this system. It's my "TV" computer. It's connected to my TV's PC input, as well as my receiver. I use it to play music and TV shows it records. I do use it for some Internet browsing, but that's not its primary function. I did install a copy of Spyware Blaster just in case. :-) That's more than I had on my last system and it went almost 5 years with no issues. That I know of. I could install AVG too probably with no issues. My last system was much slower than this one but I also don't want the antivirus to interfere with the system's ability to store the data it does when recording multiple shows at once.
I guess I'll live with the flickering hard drive light - that or unplug it I could always tell before when the system was busy, or not, by that light and now I can't. I like being able to plug a disk in and have Windows regcognize it so I'm not sure I want to turn autoplay off.
Thanks for your assistance.
Dale
Post by: Dale on April 28, 2009, 06:04:11 PM
Now I'm not so sure.
I have the dump (?) and other information that was to be sent to Microsoft after the system restarted. I don't know how to read it however.
I was wondering how I might could isolate was the true cause of these reboots is.
Post by: Dale on April 28, 2009, 06:05:59 PM
Now I'm not so sure.
I have the dump (?) and other information that was to be sent to Microsoft after the system restarted. I don't know how to read it however.
I was wondering how I might could isolate was the true cause of these reboots is.[/quote]
Attaching information I have.
Post by: Dale on April 30, 2009, 07:41:18 PM
FYI I changed JREs. I had been running the latest 1.6 JRE and switched to the latest 1.5. So far the system has stayed up for 24 hours. I'll see how it does tonight. I remember having similar rebooting issues with my last system when I ran anything but the 1.4 JRE with SageTV. Sage support suggested I try 1.5, so I am.
The hard drive light still flickers on about once a second when the system is supposedly idling.
/dry.gif\' class=\'bbc_emoticon\' alt=\'<_<\' />
Post by: guestolo on April 30, 2009, 11:07:02 PM
Can you upload it by other means and supply a new zip file
As eg.. Use Savefile and post the link here
http://www.savefile.com/upload.php (http://\"http://www.savefile.com/upload.php\")
Post by: Dale on May 01, 2009, 06:33:35 PM
Can you upload it by other means and supply a new zip file
As eg.. Use Savefile and post the link here
http://www.savefile.com/upload.php (http://\"http://www.savefile.com/upload.php\")[/quote]
Try these links. There were just four small files - 3 created when the system died and one\s a snap shot of some info from the Microsoft dialog that appeared when the system restarted.
http://www.savefile.com/files/2089730 (http://\"http://www.savefile.com/files/2089730\")
http://www.savefile.com/files/2089731 (http://\"http://www.savefile.com/files/2089731\")
http://www.savefile.com/files/2089732 (http://\"http://www.savefile.com/files/2089732\")
http://www.savefile.com/files/2089733 (http://\"http://www.savefile.com/files/2089733\")
I appreciate your time on this. FYI, the system hasn't crashed now for 3 days and 2 nights. Not since I switched JREs. Could just be a coincidence, but hopefully not. For all I know this could be a hardware problem.
Thanks,
Dale
Post by: guestolo on May 02, 2009, 02:06:46 PM
It seemed to have crashed at stream.sys
Do you have a USB Webcam connected to this computer?
Post by: Dale on May 02, 2009, 05:11:58 PM
It seemed to have crashed at stream.sys
Do you have a USB Webcam connected to this computer?[/quote]
No camera. There are a couple of things connected to USB ports. An RF receiver for a keyboard, and an infrared receiver for a remote control.
I do have other dumps I believe. I did only put one. The other files I uploaded were created at the same time and I wasn't sure which ones were important. I'll post the other dumps I have if I can find them. All were a result of the computer just crashing and I mean boom. One second it's sitting there and the next thing you know the monitor goes black and the system is restarting. Is there anyway to tell what caused this from the dump? That' what I was hoping.
Post by: Dale on May 02, 2009, 05:25:41 PM
I'll see if I can find what stream.sys is. I bet its related to SageTV. It's just an educated guess though for now.
Here's the link to the zip file with the dumps: http://www.savefile.com/files/2090532 (http://\"http://www.savefile.com/files/2090532\")
Thanks again,
Dale
Post by: Dale on May 02, 2009, 05:30:57 PM
I'd like to understand more about stream.sys.
Post by: guestolo on May 02, 2009, 08:07:55 PM
Having more than one can help to determine if one driver is the cause of the file
You will know if you have a dump file by the extension>>.dmp
Post by: Dale on May 03, 2009, 08:24:43 AM
Having more than one can help to determine if one driver is the cause of the file
You will know if you have a dump file by the extension>>.dmp[/quote]
Did the last file I uploaded, a zip file, not have 8 minidumps in it? I'll upload them again just in case.
Post by: guestolo on May 03, 2009, 11:01:46 AM
7 of 8 of those dumps were the same information, that's a good indication of Driver fault with relation to Stream.sys
Here's some of the info
Code: [Select]
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 100000D1, {f7689372, 6, 8, f7689372}
Probably caused by : STREAM.SYS ( STREAM!StreamClassInterrupt+2c )
Followup: MachineOwner
---------
1: kd> !analyze -v;r;kv;lmtn;.logclose;q
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high. This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: f7689372, memory referenced
Arg2: 00000006, IRQL
Arg3: 00000008, value 0 = read operation, 1 = write operation
Arg4: f7689372, address which referenced memory
Debugging Details:
------------------
READ_ADDRESS: f7689372
CURRENT_IRQL: 6
FAULTING_IP:
+2c
f7689372 ?? ???
CUSTOMER_CRASH_COUNT: 2
DEFAULT_BUCKET_ID: DRIVER_FAULT
BUGCHECK_STR: 0xD1
PROCESS_NAME: Idle
LAST_CONTROL_TRANSFER: from 00000000 to f7689372
FAILED_INSTRUCTION_ADDRESS:
+2c
f7689372 ?? ???
SYMBOL_ON_RAW_STACK: 1
STACK_ADDR_RAW_STACK_SYMBOL: fffffffff78b2c80
STACK_COMMAND: dds F78B2C80-0x20; kb
STACK_TEXT:
f78b2c60 f76894e4
f78b2c64 00000000
f78b2c68 f78b2c77
f78b2c6c 8a426688
f78b2c70 8a0dadcc
f78b2c74 00000006
f78b2c78 f78b2c8c
f78b2c7c f769acba STREAM!StreamClassInterrupt+0x2c
f78b2c80 8a4268cc
f78b2c84 8a0dadcc
f78b2c88 8a0dadc4
f78b2c8c 00000000
f78b2c90 805454dc nt!KiChainedDispatch2ndLvl+0x44
f78b2c94 8a0dadc8
f78b2c98 8a4265d0
f78b2c9c 804ffb90 nt!KiIpiServiceRoutine+0x80
f78b2ca0 f7679162 intelppm!AcpiC1Idle+0x12
f78b2ca4 f7717c50
f78b2ca8 8054547c nt!KiChainedDispatch+0x1c
f78b2cac 00000000
f78b2cb0 f78b2cc0
f78b2cb4 80545489 nt!KiChainedDispatch+0x29
f78b2cb8 89e1e902
f78b2cbc 00000174
f78b2cc0 f78b2d50
f78b2cc4 f7679162 intelppm!AcpiC1Idle+0x12
f78b2cc8 badb0d00
f78b2ccc 0000097a
f78b2cd0 00000001
f78b2cd4 8a38df98
f78b2cd8 00000028
f78b2cdc a9b0c2e8
FOLLOWUP_IP:
STREAM!StreamClassInterrupt+2c
f769acba 8ad8 mov bl,al
SYMBOL_NAME: STREAM!StreamClassInterrupt+2c
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: STREAM
IMAGE_NAME: STREAM.SYS
DEBUG_FLR_IMAGE_TIMESTAMP: 480254ba
FAILURE_BUCKET_ID: 0xD1_CODE_AV_BAD_IP_STREAM!StreamClassInterrupt+2c
BUCKET_ID: 0xD1_CODE_AV_BAD_IP_STREAM!StreamClassInterrupt+2cI'll dig around and see what comes up
P.S. One was related to SageTV.exe
Post by: Dale on May 03, 2009, 12:38:03 PM
Thanks! FYI the system hasn't crashed since the JRE change I did late Wednesday night.. Coincidence?
I plan to stress it some today to see if it holds up while it's busier.
Post by: guestolo on May 03, 2009, 12:43:49 PM
http://www.sagetv.com/troubleshooting.html#1 (http://\"http://www.sagetv.com/troubleshooting.html#1\")
SageTv is recommending removing All earlier versions of Java and install the Latest
But your method or reverting to an older version seems to be helping
Because earlier versions of Java are not as Secure as the latest
I'm wondering if Removing All older versions and installing the Latest would help?
I like to use a tool called JavaRA to ensure all older versions are removed
Reboot the machine then install the latest
I also notice the following from Sage
Quote
If you are experiencing random crashes, lockups or freezes in either SageTV or SageTV Recorder:Do you have the latest Video drivers installed?
Be sure you have the latest drivers installed for your TV Tuner/Capture card. You may also want to try upgrading your video card drivers and updating your motherboard's BIOS to the latest version.
Post by: Dale on May 03, 2009, 04:02:11 PM
http://www.sagetv.com/troubleshooting.html#1 (http://\"http://www.sagetv.com/troubleshooting.html#1\")
SageTv is recommending removing All earlier versions of Java and install the Latest
But your method or reverting to an older version seems to be helping
Because earlier versions of Java are not as Secure as the latest
I'm wondering if Removing All older versions and installing the Latest would help?
I like to use a tool called JavaRA to ensure all older versions are removed
Reboot the machine then install the latest
I also notice the following from Sage
Do you have the latest Video drivers installed?[/quote]
I had followed the instructions for reverting to the older level of Java. :-)
I look for JavaRA and see what it sayes but I was pretty careful about shutting down Sage. Uninstalling Java and then installing the new version, with approrpiate reboots inbetween. I may try 1.4 to see if it makes a diiference.
I will check on the video drivers too, but they were the latest as of 2 weeks ago. When I built the system, I started with the latest drivers as opposed to what was on the dsik that came with the card.
FYI, the system appears to have crashed several times while I was out. Before I left, I set the system to record 3 diferent shows simultaneously, and when I got back, the system was at the screen where you select a user, which means it restarted at least once. I looked for new dumps and found several.
I uploaded them: http://www.savefile.com/files/2091556 (http://\"http://www.savefile.com/files/2091556\")
Note the drivers for the tuner cards I'm using, are also the latest.
I'll see if ASUS has updated the video drivers and let you know if they have.
Dale
Post by: Dale on May 03, 2009, 04:16:02 PM
Post by: guestolo on May 03, 2009, 05:20:01 PM
Can you do the following:
Right click on MyComputer>>Left click PROPERTIES>>ADVANCED>>SETTINGS (Under Startup and Recovery)
Under SYSTEM FAILURE, Untick Automatically Restart
Ok out of there
Next time, instead of restarting, it may Blue screen with an error message
Post that error message back , it may include an additional filename that may help
Post by: Dale on May 03, 2009, 09:40:57 PM
Can you do the following:
Right click on MyComputer>>Left click PROPERTIES>>ADVANCED>>SETTINGS (Under Startup and Recovery)
Under SYSTEM FAILURE, Untick Automatically Restart
Ok out of there
Next time, instead of restarting, it may Blue screen with an error message
Post that error message back , it may include an additional filename that may help[/quote]
Well, I missed the error message. ;( I did get the file name - zuluvcap.sys Address f762937c base at f7627000
I had updated the video driver earlier today and went back to JRE 1.4 - I know later is supposed to be better but my previous experience says otherwise. After doing so the system ran fine while recording three shows at once, and showing one too with no problems. It went for 4+ hours with no issues whatsoever.
Then boom.
I imagine it will happen again. I'll get the error message then.
Dump uploaded: http://www.savefile.com/files/2091814 (http://\"http://www.savefile.com/files/2091814\")
Post by: guestolo on May 03, 2009, 10:05:57 PM
That seems to be what's causing the problems
Post by: Dale on May 04, 2009, 08:07:47 AM
That seems to be what's causing the problems[/quote]
You're good! I do. 3 of them. All PCI cards "salvaged" from my last system. In fact I picked the mother board I got based on the fact it had three usable PCI slots - other mother boards had 3 PCI slots but once you added a graphics card only you couldn't use them all.
Anything I can do (short of replacing them)? I'm pretty sure I have the latest drivers for the cards - Fusion HDTV 5 RT Lite if I remember correctly - installed (even if the drivers were pretty old).
Post by: Dale on May 04, 2009, 08:17:13 AM
http://www.xpmediacentre.com.au/community/...luvcap-sys.html (http://\"http://www.xpmediacentre.com.au/community/tuners-xpmce/12392-bsod-zuluvcap-sys.html\")
http://archive2.avsforum.com/avs-vb/archiv...p/t-635784.html (http://\"http://archive2.avsforum.com/avs-vb/archive/index.php/t-635784.html\")
http://www.epinions.com/reviews/Video_Capt...vico_HDTV5USB_1 (http://\"http://www.epinions.com/reviews/Video_Capture_Fusion_HDTV5_USB_Gold_by_Dvico_HDTV5USB_1\")
http://forums.gbpvr.com/showthread.php?t=33561 (http://\"http://forums.gbpvr.com/showthread.php?t=33561\")
Didn't see any solutions though. :-(
Post by: guestolo on May 04, 2009, 09:27:36 AM
But I see lots of ppls. having problems with their software
concerning BSOD's
Here's a link
http://www.fusionhdtv.co.kr/eng/Products/RTLite.aspx (http://\"http://www.fusionhdtv.co.kr/eng/Products/RTLite.aspx\")
Software Download link near the bottom
Take note of the Warning of removing old software before installation
Also seen a couple of users, don't have links, that have pinned it down to bad Memory
I don't think that's your problem, but it may not hurt to run MemTest on this computer to ensure the sticks are OK
Have you run Memtest before?
It's quite simple, Download the compiled zip file>>Unzip just burn the ISO to disk as image file and boot up with the CD or floppy and it will run automatically
http://www.memtest.org/#downiso (http://\"http://www.memtest.org/#downiso\")
Post by: Dale on May 04, 2009, 06:56:57 PM
But I see lots of ppls. having problems with their software
concerning BSOD's
Here's a link
http://www.fusionhdtv.co.kr/eng/Products/RTLite.aspx (http://\"http://www.fusionhdtv.co.kr/eng/Products/RTLite.aspx\")
Software Download link near the bottom
Take note of the Warning of removing old software before installation
Also seen a couple of users, don't have links, that have pinned it down to bad Memory
I don't think that's your problem, but it may not hurt to run MemTest on this computer to ensure the sticks are OK
Have you run Memtest before?
It's quite simple, Download the compiled zip file>>Unzip just burn the ISO to disk as image file and boot up with the CD or floppy and it will run automatically
http://www.memtest.org/#downiso (http://\"http://www.memtest.org/#downiso\")[/quote]
The error message is DRIVER_IRQL_NOT_LESS_OR_EQUAL
I am already running their latest software it turns out - 3.68
Assuming I don't have a memory issue - and I'll check and see, but probably not tonight, what else can I do?
Sage says this board is supported. Think this is something they can fix via their software if I get them a trace?
Thanks for your assistance so far. It seems worse case I'd just need to invest in some other HDTV capture cards. I just hope I pick something better than the Fusion cards if I have to go that route - which get great reception but evidently have faulty driver software.
Dale
Post by: Dale on May 10, 2009, 10:20:59 AM
Thank you so much for helping me track down the root cause of my system crashing!
Post by: guestolo on May 10, 2009, 10:29:28 AM