Shutting down after login

[cloather]

hello, just registered myself and i hoped to get my problem solved at this forum.


when i got home this afternoon and wanted to login, my pc just shut down. just after i clicked my account name. i tryed it again this time i saw my desktop, but just again it shuts down.

the first think i thought was that my pc was overheating, put a ventilator behind my pc, unfortunately this didn't solved the problem.

after that i tryed to boot up in safe mode. this worked!!
with this in my mind i looked for an unusual program and searched the net, for a new virus. nothing of that all !?

next i rebootet and now with the options cecked: boot up with the last know good boot, somethink like that. this worked, but it made me only more confused.

sow can you pls help me and let me use my computer normally.

specs:
Windows XP home -SP1-
intel pentium 4 1.7 ghz
512 mb ram
Ati radeon 9600 xt
ie 6

Hijackthis logfile:

Logfile of HijackThis v1.97.7
Scan saved at 21:05:04, on 3-9-2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\System32\Ati2evxx.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\system32\Ati2evxx.exe
E:\WINDOWS\Explorer.EXE
E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Downloads\Java\bin\jusched.exe
E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
E:\WINDOWS\System32\drivers\CDAC11BA.EXE
E:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
E:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\ctfmon.exe
E:\Program Files\MSN Messenger\msnmsgr.exe
C:\Utilities\Adobe Acrobat 6.0\Distillr\acrotray.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Windows Media Player\wmplayer.exe
E:\WINDOWS\System32\dllhost.exe
E:\WINDOWS\System32\wuauclt.exe
C:\UTILIT~1\OFFICE~1\OFFICE11\OUTLOOK.EXE
C:\Utilities\Office Professional 2003\OFFICE11\WINWORD.EXE
E:\WINDOWS\System32\dxdiag.exe
E:\Protection\Hijack This\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: (no name) - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - C:\Downloads\Download Acc 7.2\DAP\DAPBHO.dll
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Utilities\Adobe Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Utilities\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\Downloads\FlashFXP\IEFlash.dll (file missing)
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Downloads\Download Acc 7.2\DAP\DAPIEBar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Utilities\Adobe Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [ATIPTA] E:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Downloads\Java\bin\jusched.exe
O4 - HKLM\..\Run: [Fortis Secure Layer Config] cseinst.exe -o-h
O4 - HKLM\..\Run: [snpstd] E:\WINDOWS\vsnpstdold.exe
O4 - HKLM\..\Run: [ISUSPM Startup] E:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "E:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [MSConfig] E:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "E:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKLM\..\RunOnce: [GrpConv] grpconv.exe -o
O4 - HKLM\..\RunOnce: [Q814995] rundll32.exe apphelp.dll,ShimFlushCache
O4 - HKLM\..\RunOnce: [KB826939] rundll32.exe apphelp.dll,ShimFlushCache
O4 - Global Startup: Acrobat Assistant.lnk = C:\Utilities\Adobe Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = E:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: AutoCAD Startup Accelerator.lnk = E:\Program Files\Common Files\Autodesk Shared\acstart16.exe
O4 - Global Startup: Preventon Personal Firewall.lnk = E:\Protection\Firewall\PFwall.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\UTILIT~1\OFFICE~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM)
O9 - Extra button: Run DAP (HKLM)
O9 - Extra button: Research (HKLM)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {19E28AFC-EAE3-4CE5-AC83-2407B42F57C9} (MSSecurityAdvisor Class) - http://download.microsoft.com/downl...-a3de-373c3e5552fc/msSecAdv.cab?1094236808697
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Besturing) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - http://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38196.5340740741
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab


Thanks alot,

 

[cloather]

i just discovert something about my own problem, i got myself in msconfig just a while ago an discovert that my boot.ini tab was gone, so i concluded that my boot.ini file was gone. immidaitly made a system search no boot.ini !!

i also concluded that i just used style xp some time ago, this program changes the boot.ini file. could something went wrong there maybe??

hope you have a new boot file for me or another solution
thnx.

 

[cloather]

thanks for you reply

i just used sfc /scannow a and it didn't found anything corrupted files, also i did a online virus scan(my norton doesnt work anymore, very suspicious if you ask me ). he found 1 virus Doep.A, the virusscanner says it is nog active and i lookt over the internet and read that it cant be the reason for my problems.(if you think differnt tell me) i also used ad aware. it found some programmas but nothing serieus.

when i searched for boot.ini turned on ,look in system files, as you read above it didnt find anything.

then i tryed to repair windows with the Widows xp CD, after that istead of shutting down i get a blue window with the message, widows has to be shut down to limit damage, it keeps coming just as before.

i didnt get myself any new hardware but
this are the programms i installed before the accident:

Style XP
Universal Shield 3.2
Kazaa Premium
File sercurer

i all deleted them from harddisk and from register, as you know it didnt help.

i hope you find something in the logfile,

your help is so much appreciated, thnx

p.s. srry for the bad english.

 

[NoodleKnight]

Wierd problem, maybe could be a driver conflict, since you seem to be able to run in safe mode. Next time you boot up, get into safe mode, goto Start -> Run -> type in 'msconfig' then choose selective diagnostic startup. If you can boot normally then it's most likely a driver conflict of some sort.

Also, have you tried using system restore? Might fix your problems.

 

[cloather]

thanks for reply,

i cant use selective diagnostic startup, cause the boot tap at msconfig wont shop up, when i choose it at startup with f8 and get to desktop, the mouse and the keyboard both don't work.

and about system restore i always keep that as last just before formatting cause i got some bad experiences with it.

i got some information about the blue error screen i was talking about this is wat it says:

--------------------------------------------------------------------------

Stop: 0x0000008e (0c0000005, 0xf8aa38132, 0xebf30c10, 0x00000000)

sysdrv.sys -adress f8aa38b2

base at f8aa3000,datestamp 4021c60f

---------------------------------------------------------------------------
i think the 3e line is the most important,it looks like SYStepDriVer to me, i googled it, and found people who had also the blue screen, it seems the had also file securer installed:

http://www.buddhasbarandgrill.com/hangout/showthread.php?t=841&page=2&pp=10

and someone with exacly the same error message:

http://forums.windrivers.com/showthread.php?p=438854#post438854

i hope you guys can find a connection, it looks like a driver issue from me, how do i find ou witch driver??


Thanks,

 

[NoodleKnight]

I'm not sure what the SYStepDriver is, never heard of it. You could do a bunch of things, like uninstall it, or roll it back. Google around for the driver or driver update. Usually if I can't find the specific driver I head to: www.driverguide.com - they got a bunch of drivers that others have found/made.

Odd as it seems you also might want to try a BIOS update, since this is a problem at boot. But first try fixing the drivers.

 

[cloather]

i managed to solve the problem, so for everyone who has the same problem, this is what i did, i you got only the blue window with the following error message

--------------------------------------------------------------------------

Stop: 0x0000008e (0c0000005, 0xf8aa38132, 0xebf30c10, 0x00000000)

sysdrv.sys -adress f8aa38b2

base at f8aa3000,datestamp 4021c60f

---------------------------------------------------------------------------

skip the first step.

1 repaired windows, can be don to put you windows xp home cd in your computer on startup, you ll get a blue screen, follow along

2 use start--> search and find the file sysdrv,(dont forget to use search in hidden and system files.

2 once you found it, browse to the folder were the file is located, and back it up somewere els.

3 open it with notepad, you ll get something like this:

@#)$_@_!#__!)$))_))_?>>??__)_$)_$(alot more of that)

($(@(# at the buttom of the code you will see path to a certain programm in my case "file securer". delete ONLY the path not the code that is in front of it.

4 reboot

that solved my problem i hope i could help anybody with it, and thanks for all the support.