Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Repeated BSOD's With Various Errors


  • Please log in to reply
54 replies to this topic

#1 bjefferies

bjefferies

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 11:31 AM

I am having a pretty serious BSOD problem, which comes and goes as it pleases but today it's got particularly bad and has now caused an issue with a few files.

My problem started a few weeks ago when I installed a new graphics card to replace my on-board one which needed updating. It was a brand new Nvidia GeForce GT630. Ever since then I have been getting BSOD's, some up to 5 times a day, then sometimes none for 5 days.

According to bluescreenviewer, it's ntoskrnl.exe that is causing the issue (sometimes tcpip.sys, NETIO.SYS and Rt64win7.sys is mentioned too), and the bug check string is normally KMODE_EXCEPTION_NOT_HANDLED.

I did everything that I could find which was linked to my problem on the thread I provided, including removing and reinstalling the graphics card driver (100% did it in the correct order which I found in a previous thread related to this issue.)

 

Having had 3 this afternoon, I've come to the end of trying to fix it myself so I've had to call on you experts I'm afraid!   :killcomp:

 

Thank you very much in advance to anyone who can offer any help, I will be on here for the next few hours and will be able to reply promptly to anyone who has any ideas or suggestions.


Edited by hamluis, 12 May 2014 - 06:28 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 12:05 PM

Hi bjefferies, and welcome to Bleeping Computer.

 

Please download and install Speccy to provide us with information about your computer.  When  FileHippo opens, click on Download latest version in the upper right pane.
 
When Speccy opens you will see a screen similar to the one below.
 
speccy9_zps2d9cdedc.png
 
Click on File which is outlined in red in the screen above, and then click on Publish Snapshot.
 
The following screen will appear, click on Yes.
 
speccy7_zpsfa02105f.png
 
The following screen will appear, click on Copy to Clipboard.
 
speccy3_zps1791b093.png
 
In your next post right click inside the Reply to Topic box, then click on Paste.  This will load a link to the Speccy log.
 
 

Please download MiniToolBox  , save it to your desktop and run it.
 
 Checkmark the following checkboxes:
 
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
• List Minidump Files
 
 Click on Go to start the scan.  Once it is finished highlight the text, copy it and paste it in your next post.
 

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 12:12 PM

Thank you very much for taking the time to write such a well written reply! I have pasted the requested information below.

 

Speccy list:
http://speccy.piriform.com/results/7IDEmBN8PtNqkBHPmU3BSRW

 

MiniToolBox list:

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Bildo (administrator) on 11-05-2014 at 18:11:04
Running from "C:\Users\Bildo\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/11/2014 05:14:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2014 05:09:13 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},000000000035AB90).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/11/2014 04:27:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2014 04:26:48 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_stisvc, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
Faulting module name: wiaservc.dll, version: 6.1.7601.17514, time stamp: 0x4ce7ca0f
Exception code: 0x40000015
Fault offset: 0x0000000000047a6b
Faulting process id: 0x994
Faulting application start time: 0xsvchost.exe_stisvc0
Faulting application path: svchost.exe_stisvc1
Faulting module path: svchost.exe_stisvc2
Report Id: svchost.exe_stisvc3
 
Error: (05/11/2014 07:29:16 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000401950).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 07:33:36 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},000000000034A370).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 07:17:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/10/2014 05:50:44 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 05:48:10 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 05:47:53 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230).
 
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
 
System errors:
=============
Error: (05/11/2014 05:13:04 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2.0 service failed to start due to the following error: 
%%3
 
Error: (05/11/2014 05:13:03 PM) (Source: BugCheck) (User: )
Description: 0x0000001e (0x0000000000000000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000)C:\Windows\MEMORY.DMP051114-42447-01
 
Error: (05/11/2014 05:13:01 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 17:11:28 on ?11/?05/?2014 was unexpected.
 
Error: (05/11/2014 04:26:48 PM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (05/11/2014 04:26:48 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (05/11/2014 04:26:48 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (05/11/2014 04:26:48 PM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004
 
Error: (05/11/2014 04:26:30 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2.0 service failed to start due to the following error: 
%%3
 
Error: (05/11/2014 04:26:29 PM) (Source: BugCheck) (User: )
Description: 0x00000101 (0x0000000000000031, 0x0000000000000000, 0xfffff88002f64180, 0x0000000000000002)C:\Windows\MEMORY.DMP051114-56253-01
 
Error: (05/11/2014 04:26:28 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 16:23:39 on ?11/?05/?2014 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (05/11/2014 05:14:18 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2014 05:09:13 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},000000000035AB90)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/11/2014 04:27:31 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2014 04:26:48 PM) (Source: Application Error)(User: )
Description: svchost.exe_stisvc6.1.7600.163854a5bc3c1wiaservc.dll6.1.7601.175144ce7ca0f400000150000000000047a6b99401cf6d2d62f99a43C:\Windows\system32\svchost.exec:\windows\system32\wiaservc.dllaa2e6774-d920-11e3-9742-00306775a1af
 
Error: (05/11/2014 07:29:16 AM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},0000000000401950)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 07:33:36 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},000000000034A370)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 07:17:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/10/2014 05:50:44 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 05:48:10 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
Error: (05/10/2014 05:47:53 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003FA230)
 
Operation:
   Get Shadow Copy Properties
 
Context:
   Execution Context: Coordinator
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-04-25 08:44:01.218
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_c014624816718091\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:44:01.074
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_c014624816718091\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:44:00.930
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_c014624816718091\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:44:00.767
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:44:00.622
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:44:00.478
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:34:08.067
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_b5bfb7f5e210be96\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:34:07.925
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_b5bfb7f5e210be96\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:34:07.784
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_b5bfb7f5e210be96\appidapi.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-04-25 08:34:07.619
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Backup\Complete Recovery\C\Windows\winsxs\amd64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22379_none_b5bfb7f5e210be96\appid.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.4.1.30888)
7-Zip 9.20
Ace Stream Media 2.2.0-next (Version: 2.2.0-next)
Actual Multiple Monitors 8.1.4 (Version: 8.1.4)
Adobe Acrobat XI Pro (Version: 11.0.06)
Adobe AIR (Version: 4.0.0.1390)
Adobe Dreamweaver CS6 (Version: 12)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.206)
Adobe Help Manager (Version: 4.0.244)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Photoshop Lightroom 5.3 64-bit (Version: 5.3.1)
AIMP3 (Version: v3.55.1345, 26.03.2014)
AMD USB Filter Driver (Version: 1.0.15.94)
Any Video Converter 5.5.6
Apple Software Update (Version: 2.1.3.127)
ASUS Xonar DG Audio Driver
ATI Catalyst Install Manager (Version: 3.0.765.0)
avast! Free Antivirus (Version: 9.0.2018)
CCleaner (Version: 4.12)
CrashPlan (Version: 3.6.3)
Definition Update for Microsoft Office 2013 (KB2760587) 32-Bit Edition
Dropbox (Version: 2.6.31)
Dual Package (Version: 2.9)
EaseUS Todo Backup Free 6.5 (Version: 6.5)
Fresco Logic USB3.0 Host Controller (Version: 3.5.100.0)
FTPRush 2.1.8 (Version: 2.1.8)
GetFLV 9.3.1.8
Google Chrome (Version: 34.0.1847.131)
Google Update Helper (Version: 1.3.24.7)
HP Deskjet 3050A J611 series Basic Device Software (Version: 28.0.1315.0)
HP Deskjet 3050A J611 series Help (Version: 140.0.2.2)
HP Deskjet 3050A J611 series Product Improvement Study (Version: 28.0.1315.0)
HP Update (Version: 5.005.000.002)
ImgBurn (Version: 2.5.8.0)
iTunes (Version: 11.1.5.5)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
LastPass (uninstall only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office 64-bit Components 2013 (Version: 15.0.4569.1506)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506)
Microsoft Office Shared 64-bit MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Word MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Nik Collection (Version: 1.1.1.1)
Notepad++ (Version: 6.5.3)
NVIDIA 3D Vision Controller Driver 335.21 (Version: 335.21)
NVIDIA 3D Vision Driver 335.23 (Version: 335.23)
NVIDIA Control Panel 335.23 (Version: 335.23)
NVIDIA GeForce Experience 2.0.1 (Version: 2.0.1)
NVIDIA Graphics Driver 335.23 (Version: 335.23)
NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1)
NVIDIA Install Application (Version: 2.1002.151.1095)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA PhysX (Version: 9.13.1220)
NVIDIA PhysX System Software 9.13.1220 (Version: 9.13.1220)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3523)
NVIDIA Update 12.4.67 (Version: 12.4.67)
NVIDIA Update Core (Version: 12.4.67)
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23)
OpenAL
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506)
PDF Settings CS6 (Version: 11.0)
Perfect Effects 8 (Version: 8.1.0)
QuickSFV (Version: 3.0.0)
QuickTime 7 (Version: 7.75.80.95)
Realtek Ethernet Controller Driver (Version: 7.65.1025.2012)
Revo Uninstaller Pro 3.0.8 (Version: 3.0.8)
SHIELD Streaming (Version: 2.1.108)
Skype™ 6.13 (Version: 6.13.104)
Speccy (Version: 1.26)
StreamTorrent 1.0
TeamViewer 9 (Version: 9.0.24951)
TreeSize Free V2.7 (Version: 2.7)
Update for Microsoft Excel 2013 (KB2752087) 32-Bit Edition
Update for Microsoft Lync 2013 (KB2817678) 32-Bit Edition
Update for Microsoft Lync 2013 (KB2863908) 32-Bit Edition
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition
Update for Microsoft Office 2013 (KB2760544) 32-Bit Edition
Update for Microsoft Office 2013 (KB2768012) 32-Bit Edition
Update for Microsoft Office 2013 (KB2817636) 32-Bit Edition
Update for Microsoft Office 2013 (KB2825631) 32-Bit Edition
Update for Microsoft Office 2013 (KB2827272) 32-Bit Edition
Update for Microsoft Office 2013 (KB2863825) 32-Bit Edition
Update for Microsoft Office 2013 (KB2863843) 32-Bit Edition
Update for Microsoft Office 2013 (KB2863844) 32-Bit Edition
Update for Microsoft Office 2013 (KB2863860) 32-Bit Edition
Update for Microsoft OneDrive for Business (KB2863864) 32-Bit Edition
Update for Microsoft OneNote 2013 (KB2817628) 32-Bit Edition
Update for Microsoft Outlook 2013 (KB2863911) 32-Bit Edition
Update for Microsoft PowerPoint 2013 (KB2837627) 32-Bit Edition
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition
Update for Microsoft Word 2013 (KB2863909) 32-Bit Edition
VLC media player 2.1.3 (Version: 2.1.3)
Windows Grep 2.3
WinRAR 5.01 (64-bit) (Version: 5.01.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 57%
Total physical RAM: 8191.3 MB
Available physical RAM: 3471.49 MB
Total Pagefile: 16380.79 MB
Available Pagefile: 10582.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3953.08 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:223.47 GB) (Free:132.31 GB) NTFS
2 Drive d: () (Fixed) (Total:2794.39 GB) (Free:2168.49 GB) NTFS
3 Drive f: () (Fixed) (Total:2794.39 GB) (Free:1878.95 GB) NTFS
4 Drive g: (NIKON D800) (Removable) (Total:29.71 GB) (Free:1.91 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\BILDO-PC
 
Administrator            Bildo                    Guest                    
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****


#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 12:56 PM

You have both Windows Defender and Avast running.  You should only have one antivirus running at any time.  This can cause stability problems which could explain part of what you are experiencing.

 

Try updating your graphics drivers.

 

Please download AdwCleaner and run it.
 
An image like the one below will open, click on Scan.
 
adwcleaner11_zps48314883.png
 
Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.  
 
Click on Clean to remove the selected items.  
 
You will receive a message telling you that all programs will be close so that the infections can be removed.  Click on Ok.
 
When cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your next post.
 
 

 
Double click on the download and choose to run the program.
 
A screen similar to the one below will open, click any key to run the program.
 
securitycheck_zpscfb86945.png
 
When the scan is finished there will be a log, copy and then paste your log in your next post.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 01:29 PM

Thank you for your prompt and informative reply!
 
I have now disabled Windows Defender, I had no idea it was running!
 
Are my graphics card drivers showing as being outdated at all? The reason I ask is because just yesterday I tried what you had mentioned in this thread (http://www.bleepingcomputer.com/forums/t/526444/drivers-bsod-irql-not-less-or-equal-netiosys/) and did it EXACTLY as outlined. If they are still showing as outdated perhaps I'm doing something wrong in that respect?
 
Ran AdwCleaner, and removed everything that it requested, figured it was better to be safe than sorry!
 
AdwCleaner log: (Security Check log is below!)
# AdwCleaner v3.207 - Report created 11/05/2014 at 19:09:01
# Updated 05/05/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : Bildo - BILDO-PC
# Running from : C:\Users\Bildo\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Windows\SysWOW64\AI_RecycleBin
Folder Deleted : C:\Windows\SysWOW64\SearchProtect
Folder Deleted : C:\Users\Bildo\AppData\Roaming\SendSpace
Folder Deleted : C:\Users\Bildo\AppData\Local\Software
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : [x64] HKLM\SOFTWARE\Iminent
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17041
 
 
-\\ Google Chrome v34.0.1847.131
 
[ File : C:\Users\Bildo\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://isearch.avg.com/search?cid={4F2E80F4-C583-4257-8EAD-64A4CA8462C9}&mid=1acb967ac24547d1b95bd1792191485c-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=pl011&pr=sa&d=2012-06-29 10:56:02&v=11.1.0.12&sap=dsp&q={searchTerms}
Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
Deleted [Homepage] : hxxp://search.conduit.com/?ctid=CT3317740&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPCA6E6623-CDD5-4EA0-B9E8-5797C562D98F&SSPV=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
Deleted [Extension] : fmlgoencnlndpglbocajlimaikjohmab
 
*************************
 
AdwCleaner[R0].txt - [1638 octets] - [11/05/2014 19:02:41]
AdwCleaner[S0].txt - [1747 octets] - [11/05/2014 19:09:01]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1807 octets] ##########
 
Here is the security check log:
 Results of screen317's Security Check version 0.99.83  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 51  
 Java version out of Date! 
 Google Chrome 34.0.1847.116  
 Google Chrome 34.0.1847.131  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 24% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log`````````````````````` 
 


#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 01:38 PM

If you have a program which uses Java you need to update it, if you don't use Java uninstall it.
 
You need to defrag your hdd, I would also suggest using the Disk Cleanup tool as well.


Please run the ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

 

 
 
Please download Malwarebytes Anti-Malware.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 03:26 PM

I need Java sadly, got a program that requires it.

 

HDD is an SSD, and it mentioned not to defrag if it is, so I assume it's best to not be doing that?

 

Just carried out a disk cleanup.

 

Started doing the ESET scan, got to about 80% and got a lovely BSOD, so it's back to the start again (joy!) BSOD was: ntoskrnl.exe (pretty much every time) and dxgmms1.sys. I seem to get a HUGE variety of things along side ntoskrnl.exe.

 

Just tried to re-run ESET and now it's saying: "Can not get update. Is proxy configured?" despite working perfectly earlier and not changing anything? :(



#8 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 03:39 PM

If you need Java, then you need it.  Just update to a current version.

 

Please run the Malwarebytes.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#9 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 03:39 PM

Just had 3 BSOD's in a matter of minutes, and I've now lost all my data for Adobe Lightroom! :(



#10 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 03:50 PM

Managed to recover lightroom, panic over for now!

 

Disk cleanup done, Java update done, currently running MalwareBytes, will update when finished.

 

Thanks :)



#11 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 03:57 PM

It's almost ten o'clock where you are.  If you are getting tired I will be around for a while in the morning and then later in the afternoon.

 

It is on two o'clock in the afternoon here.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#12 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 11 May 2014 - 04:09 PM

Thanks so much. I'm a photographer so I have a huge amount of files to have to go through sadly, so I think this one could take some time!

 

I have to go to work at 8am, but I'll be back at 4pm tomorrow. Provided I don't get another BSOD overnight, I'll leave this running and hopefully carry out the required actions before I head to work.

 

Thank you very much once again, it's hugely appreciated.



#13 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 11 May 2014 - 04:32 PM

Looking forward to see the results tomorrow.  Have a good evening.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#14 bjefferies

bjefferies
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:09:06 AM

Posted 12 May 2014 - 12:54 AM

Right, good news is that I managed to get ESET to start working before I went to bed, and they both managed to complete without BSOD'ing over night.

 

ESET managed to find 8 issues, all of which were quarantined and deleted (I think I missed the chance to post up a log?) But they were definitely removed.

 

MalwareBytes managed to find 2 issues, here's the log

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.05.11.08
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17105
Bildo :: BILDO-PC [administrator]
 
11/05/2014 21:40:54
mbam-log-2014-05-11 (21-40-54).txt
 
Scan type: Full scan (C:\|D:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 674081
Time elapsed: 1 hour(s), 36 minute(s), 13 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 2
C:\Users\Bildo\AppData\Local\Google\Chrome\User Data\Default\File System\004\t\00\00000000 (PUP.Optional.OneClickDownloader.A) -> Quarantined and deleted successfully.
F:\Backup\Complete Recovery\C\Program Files (x86)\Conduit\CT3289075\plugins\TBVerifier.dll (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
 
(end)


#15 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:06 AM

Posted 12 May 2014 - 09:58 AM

The items found in the Malwarebytes scan were PUPs (Potentially Unwanted Programs) which are not malicious.

 

You can find the Eset scan log by following the following file path.  Knowing what was found is important.

 

C;\Program Files\EsetPm;omScammer\;pg.txt


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users