You may be able to get more info from the Event viewer.
HOW TO: View and Manage Event Logs in Event Viewer in Windows XP
http://support.microsoft.com/default.aspx?scid=kb;EN-US;308427
Or,
Start > Run, copy & paste > eventvwr.msc /s & press Enter.
Scroll down to the last time your computer crashed and it should tell you what device/driver caused the problem?
================================
Windows XP Events and Errors
Enter the message source and ID in the text field, then click Go.
http://www.microsoft.com/technet/support/eventserrors.mspx
http://www.microsoft.com/technet/support/ee/search.aspx?DisplayName=Windows%20XP%20Professional&ProdName=Windows%20Operating%20System&MajorMinor=5.1&LCID=1033
You may get more info from minidumps.
Control Panel --> System --> Advance --> Startup and Recovery --> Write debugging
information --> Complete memory dump
Minidumps are located in c/windows/minidumps
====================================
Or it may be >
LIST OF FILES AND FOLDERS TARGETED BY THE smitRem TOOL
http://noahdfear.geekstogo.com/smitRem_filelist.htm
SmitRem is a tool I created to remove the Trojan-Spy.HTML.Smitfraud.c malware infection and it’s variants, AntivirusGold, PSGuard Spyware Remover, SpySheriff, Search Maid & Virtual Maid. These infections are known as Desktop Hijackers and make many unwanted changes to a user’s computer. They are also difficult to remove. The effects of each of the above variants varies, in some cases infecting the system file wininet.dll and/or disabling the Task Manager in addition to taking over the desktop. I have included the repair of all of the known registry changes made by these hijackers, as well as the removal of the associated files and folders created. Panda ActiveScan online should be run following the use of this tool, since it can detect and often repair anything not found and removed with the tool.
The tool also detects if the system file wininet.dll is infected, and attempts to replace it with another copy on the system. In XP and 2000, if another copy of wininet.dll is found in one of the locations the tool looks, the tool will replace the infected file. Windows 95, 98 and Windows Millennium do not have copies, so it’s necessary to try to clean it or replace it otherwise.
Panda ActiveScan online had been properly cleaning the infected wininet, but I recently noticed it was instead deleting it. I hope they get this fixed, but in the meantime, if you have one of those operating systems with an infected wininet.dll, I suggest you download the appropriate patch for your system from Microsoft, which contains a copy of the file, before scanning with Panda, in case it does get deleted.
http://www.microsoft.com/technet/security/Bulletin/MS05-025.mspx
I do not recommend using the tool without guidance from a qualified malware removal specialist!
Download smitRem.exe, saving the file to your desktop. Double click it to extract the contents to a folder of it’s own. Restart your computer in safe mode, open the smitRem folder and double click the RunThis.bat file to start the tool. Follow the prompts on screen and allow disk cleanup to complete.
Upon reboot, you can reset your desktop background. Note: XP users using the XP theme may ex-perience a change to the Classic Windows theme. This can be changed on the themes tab of desktop properties.
