Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

random BSOD's after thorough cleaning


  • This topic is locked This topic is locked
43 replies to this topic

#31 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 06 April 2014 - 07:39 PM

run combo fix again? You did get the last log I posted a couple of hours ago, right?

And if you want me to run it again, I'm guessing without the custom script?

Also, I was in the process of re-running the CHKDSK when you posted. In the course of doing that, I logged on normally rather than safe mode. Just wanted to note that it did allow me to get on without incurring any BSOD's. While I had deleted the "trusted sites" for one of the users before the last ComboFix log I posted, I had not checked the other users. I have done the deletion of "trusted sites" for all of the users now.  I mention this because if you do want me to run ComboFix again, would you prefer I try to do that "normally" rather than in safe mode?


Edited by skeeterbyte, 07 April 2014 - 12:32 AM.


BC AdBot (Login to Remove)

 


#32 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 07 April 2014 - 03:42 AM

Hmmm, ok delay the last instruction to run combofix again in safe mode...as I could swear when I last read your posting, there was no combofix log with it.

What I would prefer you do for now is just boot it up in the normal windows user mode and run combofix from there by just a double click, hoping the blue screen issue is now resolved. Post back THAT log. Thanks!


Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven


#33 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 07 April 2014 - 12:26 PM

no problem, 1972vet. Finally got to resume working on this after it was our turn "in the the barrel" with storms moving through. Did boot up in normal mode and ran ComboFix with no issues yet. Here's the ComboFix log from that run:

 

ComboFix 14-04-06.01 - Repair 04/07/2014  13:07:57.7.2 - x86
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3454.2507 [GMT -4:00]
Running from: c:\users\Repair\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
.
(((((((((((((((((((((((((   Files Created from 2014-03-07 to 2014-04-07  )))))))))))))))))))))))))))))))
.
.
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\UpdatusUser\AppData\Local\temp
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\Public\AppData\Local\temp
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\Noah\AppData\Local\temp
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\Gatis\AppData\Local\temp
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-04-07 17:17 . 2014-04-07 17:17    --------    d-----w-    c:\users\Bethany\AppData\Local\temp
2014-04-07 17:05 . 2014-04-07 17:05    39464    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{234DC07F-1C0B-4286-A292-76A3FDE99DE8}\MpKslc8e96d3b.sys
2014-04-07 17:01 . 2014-04-07 17:01    62576    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{234DC07F-1C0B-4286-A292-76A3FDE99DE8}\offreg.dll
2014-04-07 02:16 . 2014-04-07 02:16    --------    d-----w-    c:\program files\Malwarebytes Anti-Malware
2014-04-07 02:16 . 2014-04-03 13:51    51416    ----a-w-    c:\windows\system32\drivers\mwac.sys
2014-04-07 02:16 . 2014-04-03 13:51    73432    ----a-w-    c:\windows\system32\drivers\mbamchameleon.sys
2014-04-07 02:16 . 2014-04-03 13:50    23256    ----a-w-    c:\windows\system32\drivers\mbam.sys
2014-04-07 00:08 . 2014-03-07 01:35    7969936    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{234DC07F-1C0B-4286-A292-76A3FDE99DE8}\mpengine.dll
2014-04-05 16:40 . 2014-04-05 16:41    --------    d-----w-    c:\users\Repair
2014-04-04 16:13 . 2014-04-04 16:13    --------    d-----w-    c:\users\Gatis\AppData\Local\Skype
2014-04-04 16:13 . 2014-04-04 16:13    --------    d-----w-    c:\program files\Common Files\Skype
2014-04-04 16:13 . 2014-04-04 16:13    --------    d-----r-    c:\program files\Skype
2014-04-04 16:09 . 2014-04-04 16:09    --------    d-----w-    c:\program files\Common Files\Java
2014-04-04 16:05 . 2014-04-04 16:05    --------    d-----w-    c:\program files\FileHippo.com
2014-04-04 15:04 . 2014-03-21 01:31    765968    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DF30F92D-10BC-42C6-AF91-65D9A0D1C9B4}\gapaengine.dll
2014-04-03 23:55 . 2014-04-04 16:08    96664    ----a-w-    c:\windows\system32\WindowsAccessBridge.dll
2014-04-03 23:55 . 2014-04-04 16:08    --------    d-----w-    c:\program files\Java
2014-04-03 20:56 . 2014-04-03 20:56    --------    d-----w-    c:\program files\ESET
2014-04-02 21:35 . 2014-03-07 01:35    7969936    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-02 20:48 . 2014-04-06 17:35    107736    ----a-w-    c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-03-25 18:25 . 2014-03-21 01:31    765968    ----a-w-    c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-03-23 16:00 . 2014-03-23 16:00    --------    d-----w-    c:\program files\iPod
2014-03-23 16:00 . 2014-03-23 16:01    --------    d-----w-    c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-03-23 16:00 . 2014-03-23 16:01    --------    d-----w-    c:\program files\iTunes
2014-03-23 15:53 . 2014-03-23 15:53    159744    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2014-03-23 15:53 . 2014-03-23 15:53    159744    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2014-03-23 15:53 . 2014-03-23 15:53    159744    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2014-03-23 15:53 . 2014-03-23 15:53    159744    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2014-03-23 15:53 . 2014-03-23 15:53    159744    ----a-w-    c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2014-03-23 15:53 . 2014-03-23 15:53    --------    d-----w-    c:\program files\QuickTime
2014-03-23 03:02 . 2014-03-23 03:02    --------    d-----w-    c:\windows\ERUNT
2014-03-22 18:44 . 2014-03-22 18:58    --------    d-----w-    C:\FRST
2014-03-21 23:37 . 2014-03-21 23:37    --------    d-----w-    c:\users\Gatis\AppData\Roaming\Oracle
2014-03-21 23:36 . 2014-04-04 16:08    --------    d-----w-    c:\programdata\Oracle
2014-03-21 23:22 . 2014-03-21 23:29    --------    d-----w-    c:\program files\VS Revo Group
2014-03-21 04:01 . 2014-01-09 02:22    5694464    ----a-w-    c:\windows\system32\mstscax.dll
2014-03-21 03:37 . 2014-04-02 23:05    --------    d-----w-    c:\windows\system32\catroot2
2014-03-21 03:14 . 2014-04-07 17:00    --------    d-----w-    c:\windows\system32\wbem\repository
2014-03-21 03:11 . 2014-03-21 03:19    181064    ----a-w-    c:\windows\PSEXESVC.EXE
2014-03-21 03:08 . 2014-03-21 03:08    --------    d-----w-    C:\RegBackup
2014-03-21 02:21 . 2014-03-21 02:21    --------    d-----w-    c:\program files\Tweaking.com
2014-03-21 01:59 . 2014-03-23 03:14    --------    d-----w-    C:\AdwCleaner
2014-03-20 19:22 . 2013-10-01 23:45    32256    ----a-w-    c:\windows\system32\TsUsbGDCoInstaller.dll
2014-03-20 19:22 . 2013-10-02 00:32    12800    ----a-w-    c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-03-20 19:22 . 2013-10-02 00:42    49152    ----a-w-    c:\windows\system32\drivers\TsUsbFlt.sys
2014-03-20 19:22 . 2013-10-02 00:30    14336    ----a-w-    c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-03-20 19:22 . 2013-10-02 00:14    17920    ----a-w-    c:\windows\system32\wksprtPS.dll
2014-03-20 19:22 . 2013-10-02 00:14    50176    ----a-w-    c:\windows\system32\MsRdpWebAccess.dll
2014-03-20 19:22 . 2013-10-01 23:58    53248    ----a-w-    c:\windows\system32\tsgqec.dll
2014-03-20 19:22 . 2013-10-01 23:08    855552    ----a-w-    c:\windows\system32\rdvidcrl.dll
2014-03-20 19:22 . 2013-10-01 23:00    76288    ----a-w-    c:\windows\system32\TSWbPrxy.exe
2014-03-20 19:22 . 2013-10-01 22:53    350208    ----a-w-    c:\windows\system32\wksprt.exe
2014-03-20 19:22 . 2013-10-01 22:34    1068544    ----a-w-    c:\windows\system32\mstsc.exe
2014-03-20 19:21 . 2013-09-25 01:57    792576    ----a-w-    c:\windows\system32\TSWorkspace.dll
2014-03-20 17:55 . 2014-04-02 20:47    --------    d-----w-    c:\users\Gatis\AppData\Roaming\Malwarebytes
2014-03-20 17:55 . 2014-04-02 20:47    --------    d-----w-    c:\programdata\Malwarebytes
2014-03-20 17:54 . 2014-03-20 17:54    --------    d-----w-    c:\users\Gatis\AppData\Local\Programs
2014-03-18 23:10 . 2014-03-01 22:02    235224    ----a-w-    c:\program files\Internet Explorer\sqmapi.dll
2014-03-18 23:09 . 2014-02-07 01:07    2349056    ----a-w-    c:\windows\system32\win32k.sys
2014-03-18 23:09 . 2014-01-28 02:07    185344    ----a-w-    c:\windows\system32\wwansvc.dll
2014-03-18 23:09 . 2014-01-29 02:06    381440    ----a-w-    c:\windows\system32\wer.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-06 22:24 . 2007-03-22 12:22    13824    ----a-w-    c:\windows\system32\drivers\SSFS041A.sys
2014-03-20 21:02 . 2012-04-02 15:44    692616    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2014-03-20 21:02 . 2011-06-13 00:21    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-11 13:52 . 2013-01-20 19:59    104264    ----a-w-    c:\windows\system32\drivers\NisDrvWFP.sys
2014-01-25 05:19 . 2014-01-25 05:19    231960    ----a-w-    c:\windows\system32\drivers\MpFilter.sys
2014-01-19 07:32 . 2010-09-20 05:34    231584    ------w-    c:\windows\system32\MpSigStub.exe
2014-01-17 20:24 . 2014-01-17 20:24    94208    ----a-w-    c:\windows\system32\QuickTimeVR.qtx
2014-01-17 20:24 . 2014-01-17 20:24    69632    ----a-w-    c:\windows\system32\QuickTime.qts
2010-09-01 12:49 . 2014-03-21 03:53    119808    ----a-w-    c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-02-13 43848]
"CHotkey"="zHotkey.exe" [2006-11-07 547840]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-09-01 30192]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-11 49152]
"Intuit SyncManager"="c:\program files\Common Files\Intuit\Sync\IntuitSyncManager.exe" [2011-06-15 1532760]
"ModPS2"="ModPS2Key.exe" [2006-11-07 53248]
"ShowWnd"="ShowWnd.exe" [2005-01-27 36864]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 951576]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2014-01-17 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2014-02-21 152392]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2014-03-04 224128]
.
c:\users\Noah\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk.disabled [2007-3-24 1111]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2009-6-26 113664]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2011-12-22 984936]
w98Eject.lnk.disabled [2009-4-26 549]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HelpCenter4.1]
2008-06-18 04:13    198184    ----a-w-    c:\program files\FastAccessDSL\HelpCenter43\bin\sprtcmd.exe
.
R3 CFcatchme;CFcatchme;c:\users\Repair\AppData\Local\Temp\CFcatchme.sys [x]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-01 30192]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-01 108032]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2014-04-06 107736]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 20992]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSLC8E96D3B
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HsfXAudioService    REG_MULTI_SZ       HsfXAudioService
hpdevmgmt    REG_MULTI_SZ       hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-21 00:23    1150280    ----a-w-    c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-04-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 21:02]
.
2014-03-03 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-03-23 13:18]
.
2014-04-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-27 06:34]
.
2014-04-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-27 06:34]
.
.
------- Supplementary Scan -------
.
TCP: DhcpNameServer = 97.81.22.195 71.92.29.130 24.217.201.67
FF - ProfilePath - c:\users\Repair\AppData\Roaming\Mozilla\Firefox\Profiles\mkf42b08.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/
.
.
Completion time: 2014-04-07  13:18:43
ComboFix-quarantined-files.txt  2014-04-07 17:18
ComboFix2.txt  2014-04-06 22:31
ComboFix3.txt  2014-04-06 15:07
ComboFix4.txt  2013-03-31 16:56
.
Pre-Run: 133,767,831,552 bytes free
Post-Run: 136,101,654,528 bytes free
.
- - End Of File - - EEAE1F01631FABFA08B4E625F3747D96
A36C5E4F47E84449FF07ED3517B43A31
 

 

Thanks,

Skeet



#34 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 07 April 2014 - 02:22 PM

Outstanding!

 

We need to let it sit for a while doing just the usual things you normally do with it. Wait a day or so to see if you get any more blue screen errors. Take note though, what things you ARE doing with it during that time so that if it does crash, you have a detailed log of what might be involved. Thanks!


Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven


#35 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 07 April 2014 - 02:26 PM

Will do. So far it's been behaving ever since I turned it on this morning. Still running with no BSOD's or anything else since I last posted. Although I haven't been doing anything on it. Just letting it sit but on. And up until now, it wouldn't even do that for this long. So, so far, so good! I'll update you tomorrow (unless I have something happen today that warrants a report.)

Thanks!!



#36 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 08 April 2014 - 11:52 AM

Well, things went well through the remainder of the day yesterday. Ran a Malwarebytes scan and ESET scan without any issues. Started it up this morning, and in order to run through it doing something, went ahead and started another Malwarebytes Full scan. (a note here.....when I tried to start the Malwarebytes scan yesterday, the 2.00 version that we upgraded to, wouldn't start. Thinking that some quirk may have happened, I uninstalled and tried to reinstall the 2.0 version but had the same problem. So I reverted back to the 1.75 or whatever the number of the previous version was. So running the scan to completion yesterday and the one run today were in that version). It crashed and gave the following BSOD:

STOP 0x0000007F (0x0000000D, 0x00000000, 0x00000000, 0x00000000)

 

Will wait for your reply before trying anything additionally.

Thanks,

Skeet



#37 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 08 April 2014 - 03:43 PM

That particular error message seems nearly always to be related to some high stack usage or clash involving Windows drivers and third party filter drivers, such as with antivirus software, sometimes third party firewall(s), often, ZoneAlarm to be precise. Not having anything like it on board though, it would seem to me that some RAM corruption would be a likely culprit.

If you haven't already done so, checking RAM now would be in order:
1) Click Start, type mdsched.exe in the Search box, and then pressEnter.
2) Choose whether to restart the computer and run the tool immediately or schedule the tool to run at the next restart.


Windows Memory Diagnostics runs automatically after the computer restarts and performs a standard memory test automatically. If you want to perform fewer or more tests, press F1, use the Up and Down arrow keys to set the Test Mix as Basic, Standard, or Extended, and then press F10 to apply the desired settings and resume testing.

When testing is completed, the computer restarts automatically. You’ll see the test results when you log on. Let us know what results. Thanks!

Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven


#38 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 08 April 2014 - 04:33 PM

Ran the test. Did not change any of the options. Just let it run as it was. I watched while it ran and it didn't detect any problems. However, it did not show any test results when it restarted and I logged back on. Is this anything to be concerned about? run it again but with extended settings, maybe?



#39 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 08 April 2014 - 05:55 PM

No. If RAM were the problem, then it WOULD have popped up with a message. I trust you also checked that disk properly. If not, use this web site's tools:

http://www.seagate.com/support/external-hard-drives/desktop-hard-drives/story-series/seatools-win-master/

...to check that disk for the possibility of impending failure. If all is well, then it might be time to check on the other user accounts on that system. How many are there?


Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven


#40 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 08 April 2014 - 06:02 PM

there were 3 accounts on it originally (2 admin and 1 standard user). I added a fourth as a "just in case" measure....in case one of the others was corrupted or otherwise a problem.

Will try the hard drive test you reference.

 

Thanks!

Skeet


Edited by skeeterbyte, 08 April 2014 - 06:03 PM.


#41 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 08 April 2014 - 08:33 PM

Ran the Seagate test. Initially it reported that the Short DST failed. I then ran the Short Generic which it passed. Then the Long Generic which it passed as well. Just for good measure, ran the DST again and it failed. Here's the contents of the log file:

 

-------------- SeaTools for Windows v1.2.0.10 ---------------
4/8/2014 7:11:55 PM
Model: HDT725032VLA
Serial Number: VFC200R2
Firmware Revision: V54O
Short DST - Started 4/8/2014 7:11:55 PM
Short DST - FAIL 4/8/2014 7:11:57 PM
Sense Key: 0x05  Sense Code: 0x20 Sense Qual: 0x00 FRU: 0x00
Short Generic - Started 4/8/2014 7:14:00 PM
Short Generic - Pass 4/8/2014 7:15:27 PM
Long Generic - Started 4/8/2014 7:17:28 PM
Long Generic - Pass 4/8/2014 8:53:30 PM
Short DST - Started 4/8/2014 9:18:42 PM
Short DST - FAIL 4/8/2014 9:18:44 PM
Sense Key: 0x05  Sense Code: 0x20 Sense Qual: 0x00 FRU: 0x00

 

Let me know what you think from here.

Thanks,

Skeet



#42 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 09 April 2014 - 07:19 AM

That's bad news, sorry.

 

Considering the fact that you ran a proper chkdsk, along with a system file scan, removed stray (orphaned) Webroot driver and found no other malicious software on that system, the results of the seagate test then implies that it's time to consider the hard drive condition. A disk that failes any of  Seagate's tests isn't worth the time money or effort to tinker around with it anymore. It's time to consider purchasing a new disk and try to salvage what the owner want's to keep that may have been created and stored on that disk.
 

Let us know what that plans are and we can then archive this thread. Thanks!


Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven


#43 skeeterbyte

skeeterbyte
  • Topic Starter

  • Members
  • 67 posts
  • OFFLINE
  •  
  • Local time:10:55 PM

Posted 09 April 2014 - 11:07 AM

Was afraid that was the verdict. But we gave it quite a valiant try. Thank you so very much for all your excellent help.

Unfortunately, as we know, hardware isn't meant to last forever. I will see what they want to do. But I think it's ok to close

this thread.

 

Again, thanks for your help!

Skeet



#44 1972vet

1972vet

  • Malware Response Team
  • 1,698 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Midwest U.S.A.
  • Local time:10:55 PM

Posted 09 April 2014 - 11:12 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

Disabled Veteran, U.S.C.G. 1972 - 1978
mvpsigpic.jpg
2009 - 2013

Member: U.N.I.T.E.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users