Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

can only boot to safemode


  • Please log in to reply
12 replies to this topic

#1 geoffh05

geoffh05

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 29 January 2014 - 07:19 PM

Hi, Im dealing with my mothers Dell Inspiron 1720 and she cannot boot normally except in safe mode.

what I've noticed is. she started getting bsod's every time she would get on facebook or play a game (words with friends for example).

 

ive run malwarebytes, avg, and an all in 1 windows repair utility (tweaking.com's) 

 

malware and avg reported nothing. and the windows repair utility found a ton of errors all supposedly "repaired"... theres a log file that i cannot access because "access is denied" 

 

 

what I've tried

ive tried uninstalling java/flash standalone's instead of the chrome plugins. ive also tried reformatting using the recovery image a while back but all that did was screw things up more and cause trouble with drivers and re-installing windows service pack 2 (which i had to dl/install manually)

 

im at my wits end and i figured i would consult the elders b4 making things worse.

 

seriously, you guys are great and i really appreciate the help. 

 

 

*EDIT- some of the errors i get in the event viewer say a wide range of troubling things... some more common sources are from "service control manager eventlog provider", "DistributedCOM", "Broadcom", "kernel-processor-power" im not sure what i should be focusing on in the event viewer so most of that may very well be useless lol.


Edited by geoffh05, 29 January 2014 - 07:45 PM.


BC AdBot (Login to Remove)

 


#2 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 29 January 2014 - 07:51 PM

It could be a hardware/software or thermal issues. Do you still get BSODs after completing a reinstall?

 

Download MiniToolBox and run the program. Select
List Last 10 Event Viewers, List Installed Programs and List Users, Partitions and Memory Size then click Go.
A notepad will open then copy-paste the report on your next reply.

 

Try downloading Speccy and then install the program.  To post and publish a snapshot of your PC.
. In the Menu bar, click File -> Publish Snapshot
. Click Yes > then Copy to Clipboard
. On your next reply, right-click on a empty space and click Paste on reply box then click Post.


Tekken
 


#3 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 29 January 2014 - 08:11 PM

thanks for the quick reply. heres the minitoolbox log
 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Admin (ATTENTION: The logged in user is not administrator) on 29-01-2014 at 20:01:34
Running from "C:\Users\Admin\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Network
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (01/29/2014 06:39:38 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 10:20:40 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 09:54:36 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 09:27:04 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:38:07 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:24:16 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80040206.
 
Error: (01/28/2014 08:24:16 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:24:08 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance.  hr = 0x80040206.
 
Error: (01/28/2014 08:24:08 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:10:07 PM) (Source: WinMgmt) (User: )
Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\WDF01000.MOF
 
 
System errors:
=============
Error: (01/29/2014 06:40:00 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (01/29/2014 06:39:52 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
 
Error: (01/29/2014 06:39:38 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}
 
Error: (01/29/2014 06:39:30 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}
 
Error: (01/29/2014 06:38:51 PM) (Source: Service Control Manager) (User: )
Description: Avgdiskx
AVGIDSDriver
AVGIDSShim
Avgldx86
spldr
Wanarpv6
 
Error: (01/29/2014 06:38:51 PM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgentAVGIDSDriver%%31
 
Error: (01/29/2014 06:38:51 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068
 
Error: (01/29/2014 06:34:39 PM) (Source: Service Control Manager) (User: )
Description: AFD
Avgdiskx
AVGIDSDriver
AVGIDSShim
Avgldx86
Avgtdix
DfsC
NetBIOS
netbt
nsiproxy
PSched
RasAcd
rdbss
Smb
spldr
tdx
Wanarpv6
 
Error: (01/29/2014 06:34:39 PM) (Source: Service Control Manager) (User: )
Description: Network Location AwarenessNetwork Store Interface Service%%1068
 
Error: (01/29/2014 06:34:39 PM) (Source: Service Control Manager) (User: )
Description: IP HelperNetwork Store Interface Service%%1068
 
 
Microsoft Office Sessions:
=========================
Error: (01/29/2014 06:39:38 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 10:20:40 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 09:54:36 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/29/2014 09:27:04 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:38:07 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:24:16 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206
 
Error: (01/28/2014 08:24:16 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:24:08 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040206
 
Error: (01/28/2014 08:24:08 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/28/2014 08:10:07 PM) (Source: WinMgmt)(User: )
Description: 0x8004401eC:\WINDOWS\SYSTEM32\WBEM\WDF01000.MOF
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-01-29 19:56:55.700
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:54.934
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:54.151
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:53.405
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:52.645
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:51.745
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:50.568
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:49.656
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:48.833
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 19:56:47.969
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG2014\Drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Flash Player ActiveX (Version: 9.0.47.0)
Adobe Reader 8.1.0 (Version: 8.1.0)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133)
AVG 2014 (Version: 14.0.3681)
AVG 2014 (Version: 14.0.4259)
AVG 2014 (Version: 2014.0.4259)
Banctec Service Agreement (Version: 1.11.0000)
Broadcom Management Programs (Version: 10.15.03)
Browser Address Error Redirector (Version: 1.00.0000)
Cisco EAP-FAST Module (Version: 2.0.26)
Cisco LEAP Module (Version: 1.0.11)
Cisco PEAP Module (Version: 1.0.12)
Conexant HDA D330 MDC V.92 Modem
Dell Automated PC TuneUp (Version: 1.0.3085)
Dell DataSafe Online (Version: 1.0.21)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 2.0.07282)
Dell Touchpad (Version: 7.1.102.7)
Dell Wireless WLAN Card (Version: 4.170.25.12)
Digital Line Detect (Version: 1.21)
Google Chrome (Version: 32.0.1700.76)
Google Update Helper (Version: 1.3.22.3)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MediaDirect (Version: 3.5)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Works (Version: 08.05.0818)
Modem Diagnostic Tool (Version: 1.0.20.0)
Mouse Suite
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music, Photos & Videos Launcher (Version: 1.00.0000)
NetWaiting (Version: 2.5.44)
OutlookAddinSetup (Version: 1.0.0)
Product Documentation Launcher (Version: 1.00.0000)
QuickSet (Version: 8.2.14)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
Sonic Activation Module (Version: 1.0)
swMSM (Version: 12.0.0.1)
Tweaking.com - Windows Repair (All in One) (Version: 2.1.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
User's Guides
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
Yahoo! Music Jukebox (Version: 2.1.1.013)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 80%
Total physical RAM: 1013.31 MB
Available physical RAM: 202.02 MB
Total Pagefile: 2292.94 MB
Available Pagefile: 1545.96 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.86 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:99.21 GB) (Free:59.6 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.64 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\KATHHG
 
Admin                    admin_2                  Administrator            
Guest                    
 
 
**** End of log ****
 

 

And Secondly speccy says Cannot initialize SPC dll

http://speccy.piriform.com/results/BR5Mul2FaoUZ7Ue3DKBmbv0

 

i can paste the whole log if you'd rather :) thanks again


Edited by geoffh05, 29 January 2014 - 09:49 PM.


#4 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 29 January 2014 - 08:22 PM

and to answer your question, yes... briefly after reformatting there were no bsod's (for about a month) but after the reformat i couldn't install windows updates normally... and it seems like the only thing windows update ever installs is hotfixes and security updates for windows .net framework 3.5 sp1



#5 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 30 January 2014 - 04:56 AM

Ok, please post the complete Dell computer model next time. The last reinstall was 2008 according to speccy,  is that correct?

Remove AVG using the removal tool, outdated flash and Java plugin or check for the latest version by the Java and Flash applet in Control Panel.

 

Download then run Farbar Service Scanner and checkmark all boxes.
Click Scan and then a Notepad text will open. Copy-Paste the report on your next reply.
 


Tekken
 


#6 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 30 January 2014 - 05:56 AM

I ran the AVG removal tool and am in the process of removing flash and java. i remember doing at least 1 factory restore in the past 12 months. but no i guess the last full windows install was back in 08 (shameful)

 

the farbar log as requested...

 
Farbar Service Scanner Version: 08-01-2014
Ran by Admin (ATTENTION: The logged in user is not administrator) on 30-01-2014 at 05:54:04
Running from "C:\Users\Admin\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
Checking LEGACY_SDRSVC: ATTENTION!=====> Unable to open LEGACY_SDRSVC\0000 registry key. The key does not exist.
 
VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.
 
 
System Restore Disabled Policy: 
========================
 
 
Security Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
 
 
**** End of log ****

Edited by geoffh05, 30 January 2014 - 06:40 AM.


#7 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 30 January 2014 - 09:41 PM

Can you boot in your main admin user account and post a new minitoolbox and FSS log?


Tekken
 


#8 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 04 February 2014 - 09:03 PM

sorry it took me so long, SOMEONE decided to do a system restore once i left >.> 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Admin (administrator) on 04-02-2014 at 20:56:32
Running from "C:\Users\Admin\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
 
System errors:
=============
Error: (02/04/2014 08:48:35 PM) (Source: Service Control Manager) (User: )
Description: BCM42RLY%%2
 
Error: (02/04/2014 08:47:15 PM) (Source: Service Control Manager) (User: )
Description: BCM42RLY%%2
 
Error: (02/04/2014 08:43:00 PM) (Source: DCOM) (User: )
Description: 1068BITS{4991D34B-80A1-4291-83B6-3328366B9097}
 
Error: (02/04/2014 08:42:59 PM) (Source: DCOM) (User: )
Description: 1084gupdate/comsvc{4EB61BAC-A3B6-4760-9581-655041EF4D69}
 
Error: (02/04/2014 08:42:58 PM) (Source: DCOM) (User: )
Description: 1084gupdatem/comsvc{9465B4B4-5216-4042-9A2C-754D3BCDC410}
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2014-02-04 17:24:10.825
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:09.778
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:09.259
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:08.594
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:06.093
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:01.344
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:00.877
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-02-04 17:24:00.300
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 21:39:25.208
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-01-29 21:39:24.482
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-securestartup-core_31bf3856ad364e35_6.0.6000.16386_none_32a3e3ecf533e7fe\fveapi.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Flash Player ActiveX (Version: 9.0.47.0)
Adobe Reader 8.1.0 (Version: 8.1.0)
Adobe Shockwave Player 12.0 (Version: 12.0.3.133)
Banctec Service Agreement (Version: 1.11.0000)
Bitdefender Antivirus Free Edition (Version: 1.0.21.1099)
Broadcom Management Programs (Version: 10.15.03)
Browser Address Error Redirector (Version: 1.00.0000)
Cisco EAP-FAST Module (Version: 2.0.26)
Cisco LEAP Module (Version: 1.0.11)
Cisco PEAP Module (Version: 1.0.12)
Conexant HDA D330 MDC V.92 Modem
Dell DataSafe Online (Version: 1.0.21)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 2.0.07282)
Dell Touchpad (Version: 7.1.102.7)
Dell Wireless WLAN Card (Version: 4.170.25.12)
Digital Line Detect (Version: 1.21)
Google Chrome (Version: 32.0.1700.107)
Google Update Helper (Version: 1.3.22.3)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MediaDirect (Version: 3.5)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Works (Version: 08.05.0818)
Modem Diagnostic Tool (Version: 1.0.20.0)
Mouse Suite
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music, Photos & Videos Launcher (Version: 1.00.0000)
NetWaiting (Version: 2.5.44)
OutlookAddinSetup (Version: 1.0.0)
Product Documentation Launcher (Version: 1.00.0000)
QuickSet (Version: 8.2.14)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
Sonic Activation Module (Version: 1.0)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
User's Guides
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 84%
Total physical RAM: 1013.31 MB
Available physical RAM: 154.43 MB
Total Pagefile: 2290.94 MB
Available Pagefile: 1057.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1951.52 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:99.21 GB) (Free:61.25 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.63 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\KATHHG
 
Admin                    admin_2                  Administrator            
Guest                    
 
 
**** End of log ****
 
 
and lastly 
 
Farbar Service Scanner Version: 02-02-2014
Ran by Admin (administrator) on 04-02-2014 at 20:59:36
Running from "C:\Users\Admin\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Security Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
 
 
**** End of log ****


#9 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 04 February 2014 - 09:41 PM

Ok, how is the computer running? Anymore BSOD? Do you see the problem on a particular browser and or have you tried Internet Explorer or Firefox?

 

:exclame: Remove Adobe Flash outdated version and install the latest version. Uncheck the Mcafee product when offered to install. http://get.adobe.com/flashplayer/

 

:exclame: Go to device manager and right-click your Video, Audio and Network cards alternately and compare the official drivers version from the Dell support site. Check the Operating System below and change to Windows Vista 32 bit. Expand the drivers category and see if it matches the aforementioned installed versions on each components. Let us know if everything is according to the official dell drivers or not and list if possible one that does not matches.


Tekken
 


#10 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 09 February 2014 - 10:22 PM

the network drivers were official, ironically because that's the only thing throwing errors lol

the video driver had me install an earlier version... Dunno if that's a good thing or not but i trust the experts

 

but the audio was in fact out of date.

 

 

awaiting further instructions :P



#11 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 10 February 2014 - 06:51 PM

Can you list the particular driver versions? Is Java and Flash up to date? Please remove AVG and Bitdefender completely using the AVG removal tool and Bitdefender instruction and removal tool then install free Microsoft Security Essentials. Post a new Minitoolbox report and most likely we need to scan for PUPs or malwares next time.


Edited by jhayz, 10 February 2014 - 06:52 PM.

Tekken
 


#12 geoffh05

geoffh05
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:03:07 AM

Posted 19 February 2014 - 06:22 AM

so since i rolled back the video driver things have been going swimmingly. I'm out of town now for the next month or so and won't be able track progress... im relatively confident infection/malware isn't playing a big role atm and feel we can close this topic for now.

 

you sir are a gentlemanly scholar!   :bowdown:



#13 jhayz

jhayz

  • BC Advisor
  • 6,922 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:07 PM

Posted 19 February 2014 - 11:51 PM

Ok, glad to hear you got it resolved geoffh05. :thumbup2:


Tekken
 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users