Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

UNEXPECTED_KERNEL_MODE_TRAP Win7 I think it's with FLASH and prior DRIVER_POWER


  • Please log in to reply
1 reply to this topic

#1 sotapop

sotapop

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:30 AM

Posted 12 December 2013 - 10:03 AM

Machine becomes unresponsive and Chrome crashes - seems to be something with:

*Flash

*Java

 

*LogMein

possibly another application I user for remote control to others may play in, but not sure.

 

Speccy Results:

 

http://speccy.piriform.com/results/40sFERgqAyRb7UYDhKlmKok

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by sotapop (administrator) on 12-12-2013 at 07:00:20
Running from "D:\EssentialData\installs_XP\minitoolbox"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Hardware not present)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Sotapop-AMD64x7
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-30-67-15-E1-38
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::eddf:ffa6:51d4:9203%10(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.5.35(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, December 03, 2013 2:07:36 PM
   Lease Expires . . . . . . . . . . : Friday, December 13, 2013 2:08:38 AM
   Default Gateway . . . . . . . . . : 192.168.5.17
   DHCP Server . . . . . . . . . . . : 192.168.5.17
   DHCPv6 IAID . . . . . . . . . . . : 234893415
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-1B-BC-97-00-30-67-15-E1-38
   DNS Servers . . . . . . . . . . . : 192.168.5.17
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{24E782D1-D0DF-42C0-A66A-7B48A89EA1FE}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.5.17

Name:    google.com
Addresses:  2607:f8b0:4005:802::1006
   74.125.239.135
   74.125.239.142
   74.125.239.131
   74.125.239.133
   74.125.239.136
   74.125.239.130
   74.125.239.129
   74.125.239.128
   74.125.239.134
   74.125.239.137
   74.125.239.132

Pinging google.com [74.125.239.135] with 32 bytes of data:
Reply from 74.125.239.135: bytes=32 time=14ms TTL=54
Reply from 74.125.239.135: bytes=32 time=13ms TTL=54

Ping statistics for 74.125.239.135:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 13ms, Maximum = 14ms, Average = 13ms
Server:  UnKnown
Address:  192.168.5.17

Name:    yahoo.com
Addresses:  206.190.36.45
   98.138.253.109
   98.139.183.24

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=43ms TTL=45
Reply from 206.190.36.45: bytes=32 time=34ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 34ms, Maximum = 43ms, Average = 38ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 30 67 15 e1 38 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.5.17     192.168.5.35     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.5.0    255.255.255.0         On-link      192.168.5.35    266
     192.168.5.35  255.255.255.255         On-link      192.168.5.35    266
    192.168.5.255  255.255.255.255         On-link      192.168.5.35    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.5.35    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.5.35    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    266 fe80::/64                On-link
 10    266 fe80::eddf:ffa6:51d4:9203/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/11/2013 02:20:21 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {b4b809d0-82ee-4475-9aa5-15ad87137e15}

Error: (12/10/2013 02:05:30 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {b4b809d0-82ee-4475-9aa5-15ad87137e15}

Error: (12/09/2013 07:11:05 AM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2013/12/09 07:11:05.472]: [00004192]:   Read S-Key information failed!

Error: (12/09/2013 02:57:42 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0f31da35-651f-4089-85db-611ace78813d}

Error: (12/09/2013 02:09:25 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0f31da35-651f-4089-85db-611ace78813d}

Error: (12/08/2013 00:09:04 PM) (Source: Brother BrLog) (User: )
Description: TWN BrtTWN: [2013/12/08 12:09:04.178]: [00004192]:   Read S-Key information failed!

Error: (12/08/2013 00:04:20 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {e4e479a0-0261-463c-ad29-398130db91d3}

Error: (12/08/2013 02:09:40 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {f7967564-9487-4cea-91c7-b663707baf94}

Error: (12/08/2013 01:07:17 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0af5ee03-f156-4bc0-bf47-02f9eeb513b5}

Error: (12/08/2013 01:01:05 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak).  hr = 0x80070539, The security ID structure is invalid.
.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0af5ee03-f156-4bc0-bf47-02f9eeb513b5}

System errors:
=============
Error: (12/03/2013 02:11:53 PM) (Source: Service Control Manager) (User: )
Description: The Advanced SystemCare Service 6 service terminated unexpectedly.  It has done this 1 time(s).

Error: (12/03/2013 02:09:25 PM) (Source: Service Control Manager) (User: )
Description: The SecureUpdate service terminated unexpectedly.  It has done this 1 time(s).

Error: (12/03/2013 02:08:10 PM) (Source: Service Control Manager) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%20

Error: (12/03/2013 02:08:03 PM) (Source: BugCheck) (User: )
Description: 0x0000007f (0x0000000000000008, 0x0000000080050031, 0x00000000000006f8, 0xfffff800037ffc12)C:\Windows\MEMORY.DMP120313-162709-01

Error: (12/03/2013 02:07:29 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:02:35 PM on ?12/?3/?2013 was unexpected.

Error: (12/03/2013 02:05:48 PM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Error: (11/30/2013 04:50:20 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/30/2013 04:49:51 PM) (Source: Service Control Manager) (User: )
Description: The VersaCheck ActiveCheck Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/30/2013 04:49:42 PM) (Source: Service Control Manager) (User: )
Description: The WinAgents TFTP Service 4 service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/30/2013 02:04:38 PM) (Source: Service Control Manager) (User: )
Description: The DeviceMonitorService service terminated unexpectedly.  It has done this 1 time(s).

Microsoft Office Sessions:
=========================
Error: (12/11/2013 02:20:21 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {b4b809d0-82ee-4475-9aa5-15ad87137e15}

Error: (12/10/2013 02:05:30 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {b4b809d0-82ee-4475-9aa5-15ad87137e15}

Error: (12/09/2013 07:11:05 AM) (Source: Brother BrLog)(User: )
Description: TWNBrtTWN: [2013/12/09 07:11:05.472]: [00004192]:   Read S-Key information failed!

Error: (12/09/2013 02:57:42 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0f31da35-651f-4089-85db-611ace78813d}

Error: (12/09/2013 02:09:25 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0f31da35-651f-4089-85db-611ace78813d}

Error: (12/08/2013 00:09:04 PM) (Source: Brother BrLog)(User: )
Description: TWNBrtTWN: [2013/12/08 12:09:04.178]: [00004192]:   Read S-Key information failed!

Error: (12/08/2013 00:04:20 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {e4e479a0-0261-463c-ad29-398130db91d3}

Error: (12/08/2013 02:09:40 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {f7967564-9487-4cea-91c7-b663707baf94}

Error: (12/08/2013 01:07:17 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0af5ee03-f156-4bc0-bf47-02f9eeb513b5}

Error: (12/08/2013 01:01:05 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2418284622-1569172761-677219438-1001.bak)0x80070539, The security ID structure is invalid.

Operation:
   OnIdentify event
   Gathering Writer Data

Context:
   Execution Context: Shadow Copy Optimization Writer
   Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Writer Name: Shadow Copy Optimization Writer
   Writer Instance ID: {0af5ee03-f156-4bc0-bf47-02f9eeb513b5}

CodeIntegrity Errors:
===================================
  Date: 2012-12-12 14:37:42.479
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\l3codeca.acm because the set of per-page image hashes could not be found on the system.

  Date: 2010-02-28 03:50:02.304
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:02.304
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:02.085
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\WZSE0.TMP\BIN\aticd64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:02.085
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\WZSE0.TMP\BIN\aticd64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:01.586
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:01.586
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:01.102
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\WZSE0.TMP\BIN\aticd64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:01.102
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\WZSE0.TMP\BIN\aticd64a.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2010-02-28 03:50:00.088
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\sotapop\AppData\Local\Temp\ATICDSDr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

=========================== Installed Programs ============================

ABC Amber BlackBerry Converter
AccelerateTab (Version: 1.4)
Adobe AIR (Version: 3.9.0.1210)
Adobe Flash Player 10 ActiveX 64-bit (Version: 10.2.161.22)
Adobe Flash Player 10 Plugin 64-bit (Version: 10.2.161.22)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133)
Adobe Shockwave Player 12.0 (Version: 12.0.4.144)
Advanced SystemCare 6 (Version: 6.4)
AMD DnD V1.0.19 (Version: 1.0.19)
AMD OverDrive (Version: 2.1.6.0257)
AMD Processor Driver (Version: 1.3.2.0053)
AMD USB Filter Driver (Version: 1.0.11.86)
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
AntispamSniper for TheBat!
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1022)
ATI Catalyst Install Manager (Version: 3.0.762.0)
Audacity 1.3.13 (Unicode)
Audacity 2.0
AudibleManager (Version: 2005482734.48.56.42019530)
Avant Browser (remove only)
Backup Assistant Plus
Belarc Advisor 8.1
BlackBerry Desktop Software 6.1 (Version: 6.1.0.36)
Bonjour (Version: 3.0.0.10)
Bonjour Print Services (Version: 2.0.2.0)
BRAdmin Professional 3 (Version: 3.45.0007)
Brother BRAgent 1.32.0000 (Version: 1.32.0000)
Brother MFL-Pro Suite MFC-8870DW (Version: 1.0.0.0)
Brother MFL-Pro Suite MFC-8890DW (Version: 1.0.5.0)
CamStudio version 2.7 (Version: 2.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0202.2335.42270)
Catalyst Control Center Graphics Full Existing (Version: 2010.0202.2335.42270)
Catalyst Control Center Graphics Full New (Version: 2010.0202.2335.42270)
Catalyst Control Center Graphics Light (Version: 2010.0202.2335.42270)
Catalyst Control Center Graphics Previews Common (Version: 2010.0202.2335.42270)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0202.2335.42270)
Catalyst Control Center HydraVision Full (Version: 2010.0202.2335.42270)
Catalyst Control Center InstallProxy (Version: 2010.0202.2335.42270)
CCC Help English (Version: 2010.0202.2334.42270)
ccc-core-static (Version: 2010.0202.2335.42270)
ccc-utility64 (Version: 2010.0202.2335.42270)
CCleaner (Version: 3.00)
Chromium (Version: 3.0.191.0)
Cisco WebEx Meetings
CloudReading (Version: 1.0.27.1025)
Codec Install
ControlCenter
Core FTP LE
COWON Media Center - jetAudio Basic VX (Version: 8.0.16)
Crystal Reports Basic Runtime for Visual Studio 2008 (Version: 10.5.0.0)
CuneiForm OpenOCR (Version: 01.08.1006)
Custody X Change 5.11 (Version: 5.11)
CutePDF Professional 3.6 (Version: 3.6.4.7)
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Dell KACE Secure Browser (Firefox) (Version: 0.8.1660)
Driver Booster (Version: 1.0)
DriverMax 5 (Version: 5.6.0.799)
Dropbox (Version: 2.4.7)
EasySolve
eHOT Line
EMET (Version: 3.0.0)
EULAlyzer 2.1 (Version: 2.1.0)
FedEx Desktop (Version: 2.03)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
FileZilla Client 3.7.3 (Version: 3.7.3)
Fitbit Connect (Version: 1.0.0.2578)
Foxit Reader (Version: 6.1.1.1031)
FreeTrim MP3 2.2.8
FVD Suite 3.0.2
Ghostery IE (Version: 1.26.153.3)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google SketchUp 8 (Version: 3.0.4811)
Google Talk (remove only)
Google Update Helper (Version: 1.3.22.3)
GoToAssist Expert 1.6.0.545 (Version: 1.6.0.545)
GoToMeeting 5.4.0.1082 (Version: 5.4.0.1082)
GPL Ghostscript (Version: 9.05)
Green Power Utility
HP USB Disk Storage Format Tool
HTML-Kit 292 (Version: 1.0)
HW Monitor
InfraRecorder 0.50 (x64 edition) (Version: 0.50.00.00)
IObit Malware Fighter (Version: 2.1)
iTunes (Version: 11.0.5.5)
Java Auto Updater (Version: 2.1.9.5)
JavaFX 2.1.1 (Version: 2.1.1)
K-Meleon 1.5.4 en-US (remove only) (Version: 1.5.4)
LastPass (uninstall only)
LastPass for Applications
Licensing Service Install (Version: 2.0.0.125)
LogMeIn (Version: 4.1.1310)
LogMeIn Rescue Technician Console  (Version: 7.0.1148)
Lorex Client 10 (Version: 10)
Lorex Client7.0 (Version: 1.00.0000)
LorexClient (Version: 1.0.1)
Magic ISO Maker v5.5 (build 0276)
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft MapPoint North America 2010 (Version: 17.0.18.2200)
Microsoft Office Access database engine 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Project MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Project Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Visio 2010 (Version: 14.0.7015.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Project Professional 2010 (Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.3.0219.0)
Microsoft Security Essentials (Version: 4.3.219.0)
Microsoft SharedView (Version: 8.0.5725.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (Version: 2.0.1578.0)
Microsoft Visio Professional 2010 (Version: 14.0.7015.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable Package (Version: 1.0.0)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual J# 2.0 Redistributable Package (Version: 2.0.50727)
Microsoft XML Parser (Version: 8.70.1104.04)
MotoCast (Version: 2.0.31)
Motorola Device Manager (Version: 2.3.9)
Motorola Device Software Update (Version: 13.02.1402)
MOTOROLA MEDIA LINK (Version: 1.9.0002.0)
Motorola Mobile Drivers Installation 6.0.0 (Version: 6.0.0)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Firefox 24.0 (x86 en-US) (Version: 24.0)
Mozilla Maintenance Service (Version: 19.0.2)
MozyPro (Version: 2.22.2.334)
mRemote
mRemoteNG (Version: 1.69.4360.2915)
MRU-Blaster v1.5 (Database 3/28/2004) (Version: 1.5)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Namoroka (3.6) (Version: 3.6 (en-US))
NetSupport Manager (Version: 12.00.0000)
Network Notepad 4.6.6
NirSoft BlueScreenView
nLite 1.4.9.1 (Version: 1.4.9.1)
Octoshape add-in for Adobe Flash Player
Oracle VM VirtualBox 4.1.2 (Version: 4.1.2)
Orca Browser
QuickBooks Pro Timer (Version: 8.00.0000)
Quicken 2010 (Version: 19.1.5.3)
Quicken 2012 (Version: 21.1.7.18)
QuickTime (Version: 7.74.80.86)
RAIDar 4.3.4 (Version: 4.3.4)
Rainmeter (Version: 2.3.3 r1522)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (Version: 1.20.0000)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.5897)
Realtek High Definition Audio Driver (Version: 6.0.1.7040)
Revo Uninstaller 1.92 (Version: 1.92)
Samsung ML-2510 Series SmartPanel
Secunia PSI (3.0.0.3001) (Version: 3.0.0.3001)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
Sibelius Scorch (Firefox, Opera, Netscape, Chrome only) (Version: 6.2.0)
Sizer 3.34 (Version: 3.3.4.0)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.9)
Speccy (Version: 1.24)
SpeedFan (remove only)
SpywareBlaster 4.2 (Version: 4.2.0)
swMSM (Version: 12.0.0.1)
SyncToy 2.1 (x64) (Version: 2.1.0)
T Utility Over Clock III
TextPad 5 (Version: 5.4.2)
The Bat! Professional v5.8.8 (Version: 5.8.8.0)
TheWorld Browser 3.0 Final
TSE Pro v4.40TD
Tseries BIOS Update
TurboTax 2009
TurboTax 2009 wcaiper (Version: 009.000.1050)
TurboTax 2009 WinPerFedFormset (Version: 009.000.2881)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0245)
TurboTax 2009 wrapper (Version: 009.000.0145)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Word 2010 (KB2827323) 64-Bit Edition
VersaCheck ActiveCheck Server (Version: 3.0.8)
VersaCheck Platinum 2010 (Version: 10.0.1.0)
Vigilix Remote Control Plugin (Version: 4.10.3124.1)
Web Server (remove only)
WinAgents TFTP Server (Version: 4.1.0.527)
Winamp (Version: 5.63 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Installer Clean Up (Version: 2.05.00.0000)
Windows Internet Explorer Platform Preview (Version: 2.10.1000.16394)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Mode (Version: 1.3.7600.16423)
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinRAR archiver
Wireshark 1.2.6 (Version: 1.2.6)

========================= Memory info: ===================================

Percentage of memory in use: 68%
Total physical RAM: 7927.88 MB
Available physical RAM: 2523.62 MB
Total Pagefile: 18349.86 MB
Available Pagefile: 6675.88 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.61 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:121.97 GB) (Free:16.73 GB) NTFS
2 Drive d: (Data Drive) (Fixed) (Total:343.59 GB) (Free:164.05 GB) NTFS
3 Drive e: (Quicken Legal Business Pro 2009) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\SOTAPOP-AMD64X7

Administrator            ASPNET                   DeannaP                 
Guest                    QBDataServiceUser20      QBDataServiceUser22     
sotapop                 

========================= Minidump Files ==================================

No minidump file found

**** End of log ****



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 56,552 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:30 PM

Posted 12 December 2013 - 11:25 AM

Please uninstall the following programs:

    Advanced System Care

    Driver Booster

    Driver Max

    EasySolve (no longer supported)

    Iobit Malware Fighter

    Smart Defrag

 

Then...run the chkdsk /r command.

 

Let us know how system runs.

 

ATICDSDr.sys  seems to be inappropriate/old software for older video card/chipset.  Your errors reference it...are a mystery to me.

 

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users