Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Multiple BSOD since installing Windows 10


  • Please log in to reply
9 replies to this topic

#1 sonodade

sonodade

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 16 August 2015 - 02:55 PM

Hey, everybody!

This forum seems amazing, so I thought I should give it a go and post here my problems..

 

This madness started since upgrading my laptop from 8.1 to windows 10.

But, here's the list.

 

· OS - Windows 10 Home
· x64
· Originally installed: W7, upgraded all the way through 8, 8.1 and 10.
· The OS, as long as I remember, is the retail version
· The laptop is a Samsung NP350V5C - S06IT, 2013.
· CPU: i7-3630QM
· Video Card: Intel HD Graphics 4000 + 1024MB Ati radeon HD 7600M

 

HD is great (840EVO SSD 1TB), RAM is ok (memtest is fine).

 

Now, I'll go try Driver Verifier again (in my previous tests, I was clearly doing things in a wrong way as you will see from all the dumps, so I'll follow your link and do that correctly).

 

EDIT: Driver Verifier keeps on giving the same problem!

Attached Files


Edited by sonodade, 16 August 2015 - 03:11 PM.


BC AdBot (Login to Remove)

 


#2 sonodade

sonodade
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 16 August 2015 - 03:04 PM

Adding a few details: originally, the problem was about BSODs going to sleep / waking from sleep.

I THINK I solved those, but other random BSOD were occouring.

 

PS: The last 2 DRIVER VERIFIER runs were one with avast installed (and culprit for the BSOD) and the other with it uninstalled (with the culprit being this SGdrv64.sys that I know nothing about).


Edited by sonodade, 16 August 2015 - 03:13 PM.


#3 Jtiger360

Jtiger360

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:30 AM

Posted 17 August 2015 - 12:52 AM

Try to Refresh Windows 10, see if that solves the problem.

 

 

A+ Certified


Edited by Jtiger360, 17 August 2015 - 12:53 AM.


#4 sonodade

sonodade
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 17 August 2015 - 03:02 AM

A refresh is for the moment out of question, since it has important software that I need to use for work!

#5 Jtiger360

Jtiger360

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:30 AM

Posted 17 August 2015 - 12:19 PM

A refresh is for the moment out of question, since it has important software that I need to use for work!

 

Dose your work have a tech deparment or an IT Admin?



#6 sonodade

sonodade
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 17 August 2015 - 01:28 PM

 

A refresh is for the moment out of question, since it has important software that I need to use for work!

 

Dose your work have a tech deparment or an IT Admin?

 

Laptop is not property of my University, sadly, so no :/



#7 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:12:30 AM

Posted 18 August 2015 - 08:15 AM

What steps did you take before updating to Win10?

 

While the BSOD/memory dump may blame a file, it's not necessarily the one that actually caused the problem.

For example, we often see ntoskrnl.exe as being at fault.

It's the core (kernel) of the OS.  If that was the case, then there'd be many other problems than just the occasional BSOD.

Most likely it's another driver - usually a 3rd party driver (non-Windows) that's corrupted the memory space used by ntoskrnl.exe

 

In this case, the memory dumps are scattered about and don't blame any one thing in particular.

There are video, antivirus, wireless, kernel, and Phoenix Technologies SecureGuard drivers that are blamed.

Most often these random errors suggest a problem with hardware or low-level drivers.

 

Your UEFI/BIOS (version P09ABE) dates from 2013.  Please check at the manufacturer's website to see if there are any UEFI/BIOS updates available for your system.  If you are able to install the update through Windows (without booting from an external drive), then go ahead and update it.  WARNING - if the computer might shut down during this procedure, please don't do it, as this may physically damage the computer and prevent it from booting.

TrueCrypt is no longer being developed, is not secure, and is not certified as compatible w/Win10.

http://truecrypt.sourceforge.net/

Please remove it from your system immediately.

 

SecureGuard driver dates from 2011.  It is likely not compatible w/Win10 also.

Please uninstall it.  Should you wish to continue using it, get a Win10 compatible version from the manufacturer's website

 

Your Fortinet (Forticlient) PPPoP WAN Adapter dates from 2009 and is certainly not compatible w/Win10.

This will be difficult for you as it's likely to affect your internet connectivity.

Also update your wired and wireless adapter drivers (if no Win10 versions are available, try installing the Win8.1 versions in compatibility mode)

 

Finally, remove MalwareBytes - it's memory resident component may be conflicting with your Avast.
Should you decide to reinstall it, DO NOT accept the default trial of the Pro version (that's the portion that resides in memory).

 

Analysis:
The following is for informational purposes only.

[font=lucida console]**************************Sun Aug 16 15:08:53.957 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081615-6921-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 0:00:08.768[/B]
*** ERROR: Module load completed but symbols could not be loaded for mssmbios.sys
*** WARNING: Unable to verify timestamp for SGdrv64.sys
*** ERROR: Module load completed but symbols could not be loaded for SGdrv64.sys
Probably caused by :[B]SGdrv64.sys ( SGdrv64+1075 )[/B]
BugCheck [B]C4, {83, e0000, fff20000, 600}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000C4]DRIVER_VERIFIER_DETECTED_VIOLATION (c4)[/url]
DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
Arguments:
Arg1: 0000000000000083, MmMapIoSpace called to map, but the caller hasn't locked down the MDL pages.
Arg2: 00000000000e0000, Starting physical address to map.
Arg3: 00000000fff20000, Number of bytes to map.
Arg4: 0000000000000600, The first page frame number that isn't locked down.
BUGCHECK_STR:  0xc4_83
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xc4_83_VRF_SGdrv64+1075[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug 16 14:49:28.863 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081615-7359-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 0:00:04.678[/B]
*** ERROR: Module load completed but symbols could not be loaded for mssmbios.sys
*** WARNING: Unable to verify timestamp for aswSnx.sys
*** ERROR: Module load completed but symbols could not be loaded for aswSnx.sys
Probably caused by :[B]aswSnx.sys ( aswSnx+24731 )[/B]
BugCheck [B]C4, {e3, fffff80167284731, 7ff8c8894440, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000C4]DRIVER_VERIFIER_DETECTED_VIOLATION (c4)[/url]
DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
Arguments:
Arg1: 00000000000000e3, Kernel Zw API called with user-mode address as parameter.
Arg2: fffff80167284731, Address inside the driver making the incorrect API call.
Arg3: 00007ff8c8894440, User-mode address used as API parameter.
Arg4: 0000000000000000
BUGCHECK_STR:  0xc4_e3
PROCESS_NAME:  smss.exe
FAILURE_BUCKET_ID: [B]0xc4_e3_VRF_aswSnx+24731[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug 16 13:02:53.836 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081615-10406-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 5:08:53.580[/B]
*** WARNING: Unable to verify timestamp for athrx.sys
*** ERROR: Module load completed but symbols could not be loaded for athrx.sys
Probably caused by :[B]athrx.sys ( athrx+11bdd9 )[/B]
BugCheck [B]192, {ffffd00174354cc0, ffffe001d003c050, 2, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#Example]Unknown bugcheck code (192)[/url]
Arguments:
Arg1: ffffd00174354cc0
Arg2: ffffe001d003c050
Arg3: 0000000000000002
Arg4: 0000000000000000
BUGCHECK_STR:  0x192
DEFAULT_BUCKET_ID:  WIN8_DRIVER_FAULT
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0x192_athrx+11bdd9[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu Aug 13 19:53:16.341 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081415-7968-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 0:08:02.085[/B]
Probably caused by :[B]dxgkrnl.sys ( dxgkrnl!TraceDxgkFunctionProfiler+a083 )[/B]
BugCheck [B]A0, {608, ffffe001a156c630, 0, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe001a156c630, POP_FX_COMPONENT component
Arg3: 0000000000000000, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xA0_dxgkrnl!TraceDxgkFunctionProfiler[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu Aug 13 19:39:41.458 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081415-6953-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 0:00:32.202[/B]
Probably caused by :[B]dxgkrnl.sys ( dxgkrnl!TraceDxgkFunctionProfiler+a083 )[/B]
BugCheck [B]A0, {608, ffffe000dfdb9250, 0, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe000dfdb9250, POP_FX_COMPONENT component
Arg3: 0000000000000000, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xA0_dxgkrnl!TraceDxgkFunctionProfiler[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu Aug 13 19:17:48.888 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081415-7703-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16430.amd64fre.th1.150807-2049
System Uptime:[B]0 days 0:00:04.702[/B]
*** ERROR: Module load completed but symbols could not be loaded for mssmbios.sys
*** WARNING: Unable to verify timestamp for aswSnx.sys
*** ERROR: Module load completed but symbols could not be loaded for aswSnx.sys
Probably caused by :[B]aswSnx.sys ( aswSnx+24731 )[/B]
BugCheck [B]C4, {e3, fffff80201774731, 7ffd6d304440, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000C4]DRIVER_VERIFIER_DETECTED_VIOLATION (c4)[/url]
DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
Arguments:
Arg1: 00000000000000e3, Kernel Zw API called with user-mode address as parameter.
Arg2: fffff80201774731, Address inside the driver making the incorrect API call.
Arg3: 00007ffd6d304440, User-mode address used as API parameter.
Arg4: 0000000000000000
BUGCHECK_STR:  0xc4_e3
PROCESS_NAME:  smss.exe
FAILURE_BUCKET_ID: [B]0xc4_e3_VRF_aswSnx+24731[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Wed Aug 12 21:44:32.138 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081315-10875-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16412.amd64fre.th1.150729-1800
System Uptime:[B]0 days 14:11:34.888[/B]
*** WARNING: Unable to verify timestamp for atikmpag.sys
*** ERROR: Module load completed but symbols could not be loaded for atikmpag.sys
Probably caused by :[B]dxgkrnl.sys ( dxgkrnl!TraceDxgkFunctionProfiler+ab19 )[/B]
BugCheck [B]A0, {608, ffffe00042169630, 0, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe00042169630, POP_FX_COMPONENT component
Arg3: 0000000000000000, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xA0_dxgkrnl!TraceDxgkFunctionProfiler[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Wed Aug 12 06:30:36.972 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081215-13250-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16412.amd64fre.th1.150729-1800
System Uptime:[B]1 days 19:49:07.720[/B]
Probably caused by :[B]ntkrnlmp.exe ( nt!PopFxBugCheck+1c )[/B]
BugCheck [B]A0, {608, ffffe000fabc2630, ffffe000fabc2688, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe000fabc2630, POP_FX_COMPONENT component
Arg3: ffffe000fabc2688, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xA0_nt!PopFxBugCheck[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Mon Aug 10 10:41:08.633 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\081015-9015-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16412.amd64fre.th1.150729-1800
System Uptime:[B]0 days 17:15:34.381[/B]
*** WARNING: Unable to verify timestamp for athwbx.sys
*** ERROR: Module load completed but symbols could not be loaded for athwbx.sys
Probably caused by :[B]athwbx.sys ( athwbx+e9d11 )[/B]
BugCheck [B]1000007E, {ffffffffc0000005, fffff8012ec29d11, ffffd000264cb6c8, ffffd000264caee0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x1000007E]SYSTEM_THREAD_EXCEPTION_NOT_HANDLED_M (1000007e)[/url]
Arguments:
Arg1: ffffffffc0000005, The exception code that was not handled
Arg2: fffff8012ec29d11, The address that the exception occurred at
Arg3: ffffd000264cb6c8, Exception Record Address
Arg4: ffffd000264caee0, Context Record Address
PROCESS_NAME:  System
BUGCHECK_STR:  AV
DEFAULT_BUCKET_ID:  WIN8_DRIVER_FAULT
FAILURE_BUCKET_ID: [B]AV_athwbx+e9d11[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug  9 17:25:14.064 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\080915-11250-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16412.amd64fre.th1.150729-1800
System Uptime:[B]0 days 9:18:31.813[/B]
*** WARNING: Unable to verify timestamp for SynTP.sys
*** ERROR: Module load completed but symbols could not be loaded for SynTP.sys
Probably caused by :[B]dxgkrnl.sys ( dxgkrnl!TraceDxgkFunctionProfiler+a0a3 )[/B]
BugCheck [B]A0, {608, ffffe0016a3c8630, 0, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe0016a3c8630, POP_FX_COMPONENT component
Arg3: 0000000000000000, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  System
FAILURE_BUCKET_ID: [B]0xA0_dxgkrnl!TraceDxgkFunctionProfiler[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug  2 17:44:21.136 2015 (UTC - 4:00)**************************
Loading Dump File [C:\Users\John\SysnativeBSODApps\080215-8578-01.dmp]
Windows 8 Kernel Version 10240 MP (8 procs) Free x64
Built by: [B]1024[/B]0.16393.amd64fre.th1_st1.150717-1719
System Uptime:[B]0 days 0:03:50.886[/B]
Probably caused by :[B]dxgkrnl.sys ( dxgkrnl!TraceDxgkFunctionProfiler+a0a3 )[/B]
BugCheck [B]A0, {608, ffffe001e3db1630, 0, 0}[/B]
BugCheck Info: [url=http://www.carrona.org/bsodindx.html#0x000000A0]INTERNAL_POWER_ERROR (a0)[/url]
Arguments:
Arg1: 0000000000000608, A driver has attempted to transition a component to idle without
    a preceeding active request.
Arg2: ffffe001e3db1630, POP_FX_COMPONENT component
Arg3: 0000000000000000, POP_FX_COMPONENT_FLAGS component condition
Arg4: 0000000000000000
BUGCHECK_STR:  0xA0
PROCESS_NAME:  WinSAT.exe
FAILURE_BUCKET_ID: [B]0xA0_dxgkrnl!TraceDxgkFunctionProfiler[/B]
CPUID:        "Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: [B]2395[/B]
  BIOS Version                  P09ABE
  BIOS Release Date             07/04/2013
  Manufacturer                  SAMSUNG ELECTRONICS CO., LTD.
  Product Name                  350V5C/351V5C/3540VC/3440VC
  Baseboard Product             NP350V5C-S06IT
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
[/font]

3rd Party Drivers:
The following is for information purposes only.
Any drivers in red should be updated or removed from your system. And should have been discussed in the body of my post.
[font=lucida console]**************************Sun Aug 16 15:08:53.957 2015 (UTC - 4:00)**************************
pppop64.sys                 Wed Jul 15 17:57:15 2009 (4A5E50BB)
SGdrv64.sys                 Mon Apr 11 22:55:23 2011 (4DA3BF1B)
truecrypt.sys               Tue Feb  7 04:09:36 2012 (4F30EA50)
athrx.sys                   Tue Apr 24 01:00:41 2012 (4F963379)
RadioHIDMini.sys            Fri Jul 27 07:57:08 2012 (50128214)
iaStorA.sys                 Sat Sep  1 21:01:24 2012 (5042AFE4)
HECIx64.sys                 Mon Dec 17 14:32:21 2012 (50CF7345)
amdkmpfd.sys                Mon Oct 27 19:26:38 2014 (544ED4AE)
HWiNFO64A.SYS               Sun Nov 23 11:24:07 2014 (54720A27)
rt640x64.sys                Wed Apr  1 10:34:31 2015 (551C01F7)
VBoxNetAdp.sys              Wed May 13 11:10:21 2015 (5553695D)
VBoxUSBMon.sys              Wed May 13 11:10:21 2015 (5553695D)
VBoxDrv.sys                 Wed May 13 11:11:30 2015 (555369A2)
iwdbus.sys                  Mon Jun  8 18:12:39 2015 (55761357)
SynTP.sys                   Tue Jun 23 18:48:01 2015 (5589E221)
intelppm.sys                Thu Jul  9 23:12:59 2015 (559F383B)
igdkmd64.sys                Fri Jul 10 20:37:09 2015 (55A06535)
atikmpag.sys                Mon Aug  3 21:42:28 2015 (55C01884)
atikmdag.sys                Mon Aug  3 23:28:52 2015 (55C03174)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug 16 14:49:28.863 2015 (UTC - 4:00)**************************
aswRvrt.sys                 Mon Jul 27 13:06:13 2015 (55B66505)
aswRdr2.sys                 Mon Jul 27 13:07:28 2015 (55B66550)
aswVmm.sys                  Mon Jul 27 13:34:01 2015 (55B66B89)
aswSP.sys                   Mon Jul 27 13:34:27 2015 (55B66BA3)
aswSnx.sys                  Wed Aug 12 10:44:50 2015 (55CB5BE2)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Aug 16 13:02:53.836 2015 (UTC - 4:00)**************************
athrx.sys                   Mon Dec 12 08:02:13 2011 (4EE5FB55)
btfilter.sys                Thu Apr 24 23:01:52 2014 (5359D020)
rtsuvc.sys                  Tue Jun 10 11:44:22 2014 (539727D6)
mbam.sys                    Wed Sep  3 13:50:25 2014 (540754E1)
RtsUer.sys                  Mon May 11 03:10:15 2015 (555055D7)
RTKVHD64.sys                Tue Jun 16 06:55:05 2015 (55800089)
aswMonFlt.sys               Mon Jul 27 13:06:30 2015 (55B66516)
aswHwid.sys                 Mon Jul 27 13:06:58 2015 (55B66532)
aswStm.sys                  Mon Jul 27 13:37:56 2015 (55B66C74)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu Aug 13 19:53:16.341 2015 (UTC - 4:00)**************************
atikmpag.sys                Wed Jul 15 21:13:26 2015 (55A70536)
atikmdag.sys                Wed Jul 15 21:37:09 2015 (55A70AC5)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu Aug 13 19:39:41.458 2015 (UTC - 4:00)**************************
IntcDAud.sys                Tue Sep  9 08:13:01 2014 (540EEECD)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Wed Aug 12 21:44:32.138 2015 (UTC - 4:00)**************************
athwbx.sys                  Fri Dec 12 00:50:50 2014 (548A823A)
aswSnx.sys                  Mon Jul 27 13:08:34 2015 (55B66592)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Wed Aug 12 06:30:36.972 2015 (UTC - 4:00)**************************
hiber_storport.sys          Thu Jul  9 23:20:46 2015 (559F3A0E)
[/font]
http://www.carrona.org/drivers/driver.php?id=pppop64.sys
http://www.carrona.org/drivers/driver.php?id=SGdrv64.sys
http://www.carrona.org/drivers/driver.php?id=truecrypt.sys
http://www.carrona.org/drivers/driver.php?id=athrx.sys
http://www.carrona.org/drivers/driver.php?id=RadioHIDMini.sys
http://www.carrona.org/drivers/driver.php?id=iaStorA.sys
http://www.carrona.org/drivers/driver.php?id=HECIx64.sys
http://www.carrona.org/drivers/driver.php?id=amdkmpfd.sys
http://www.carrona.org/drivers/driver.php?id=HWiNFO64A.SYS
rt640x64.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=VBoxNetAdp.sys
http://www.carrona.org/drivers/driver.php?id=VBoxUSBMon.sys
http://www.carrona.org/drivers/driver.php?id=VBoxDrv.sys
http://www.carrona.org/drivers/driver.php?id=iwdbus.sys
http://www.carrona.org/drivers/driver.php?id=SynTP.sys
http://www.carrona.org/drivers/driver.php?id=intelppm.sys
http://www.carrona.org/drivers/driver.php?id=igdkmd64.sys
http://www.carrona.org/drivers/driver.php?id=atikmpag.sys
http://www.carrona.org/drivers/driver.php?id=atikmdag.sys
http://www.carrona.org/drivers/driver.php?id=aswRvrt.sys
http://www.carrona.org/drivers/driver.php?id=aswRdr2.sys
http://www.carrona.org/drivers/driver.php?id=aswVmm.sys
http://www.carrona.org/drivers/driver.php?id=aswSP.sys
http://www.carrona.org/drivers/driver.php?id=aswSnx.sys
http://www.carrona.org/drivers/driver.php?id=athrx.sys
http://www.carrona.org/drivers/driver.php?id=btfilter.sys
http://www.carrona.org/drivers/driver.php?id=rtsuvc.sys
http://www.carrona.org/drivers/driver.php?id=mbam.sys
RtsUer.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=RTKVHD64.sys
http://www.carrona.org/drivers/driver.php?id=aswMonFlt.sys
http://www.carrona.org/drivers/driver.php?id=aswHwid.sys
http://www.carrona.org/drivers/driver.php?id=aswStm.sys
http://www.carrona.org/drivers/driver.php?id=atikmpag.sys
http://www.carrona.org/drivers/driver.php?id=atikmdag.sys
http://www.carrona.org/drivers/driver.php?id=IntcDAud.sys
http://www.carrona.org/drivers/driver.php?id=athwbx.sys
http://www.carrona.org/drivers/driver.php?id=aswSnx.sys
http://www.carrona.org/drivers/driver.php?id=hiber_storport.sys
 
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#8 sonodade

sonodade
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 18 August 2015 - 07:56 PM

Hey!

Thanks for the time you took.

 

Truecrypt is still safe to use (has been audited a few months ago), so that thing I'm keeping.

The others, I tried and update both wireless and wired drivers, as long as removed (and reinstalled correctly) malwarebytes and forticlient.

 

a BIG issue is this "SGDRV64.sys". Cannot find ANY way to update, repair or delete it.

Seems almost like every guy posting online some Hijackthis-style of log has it running. Seems something important...

What do you think?



#9 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:12:30 AM

Posted 19 August 2015 - 07:17 AM

The first thing to do would be to install a fresh copy and then uninstall it.  That works in most cases.

Beyond that, there are ways to remove drivers manually, but it's risky.

Here's what to do (if you decide to try it):

 

 

1)   Create a Restore Point using System Restore
2)   Create a Repair disc (Recovery Drive in Win8.1):
Win 7 - Go to Start...All Programs...Maintenance...Create a System Repair Disc
Win 8 - Press "WIN" and "R" to open the Run dialog...type "RECDISC" (without the quotes) and press ENTER
Win 8.1 - Go to the Start Screen and type in "recoverydrive" (one word, without the quotes).  That will start the recovery drive process.  You will need a USB drive of at least 512 mB - and all data will be erased off of it.  If copying the recovery partition the drive size will be much, much larger (16 - 32 gB drive required).

Win 10 - Should be similar to the Win8.1 instructions.
3)   Test the System Repair disc/Recovery Drive to make sure that you can get to the System Restore entry when you boot from the disk/drive (you may also want to try actually using System Restore to make sure that it works)
4)   Download this free program (http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx) and use it to disable any instances of SGdrv64.sys that are starting (or any other SecureGuard entries) (DO NOT DELETE - only disable by removing the checkmark in the left hand column)
5)   Check in Device Manager (to include showing hidden devices from the View menu item) and ensure that any instances of SGdrv64.sys (or any other SecureGuard entries) are "Uninstalled" (DO NOT DISABLE THESE).
6)   Check in the Services applet (services.msc) to be sure any instances of SGdrv64.sys or any other SecureGuard entries are disabled.
7)   EXPERIMENTAL STEP (only try if you're certain of your abilities - I have not tried this step myself).  Search the registry (use regedit.exe) to locate any entries that have the driver name (SGdrv64.sys) or the program name (SecureGuard).  Delete these keys (it's advisable to back them up first - but you've also backed up the entire registry when creating a System Restore point in step 1.  Alternatively, you can set the values in these keys to DISABLED (but the "how" of this is beyond the scope of this guide).
8)   Go to C:\Windows\System32\drivers and rename the SGdrv64.sys driver to SGdrv64.BAD (search the hard drive for it if it's not in C:\Windows\System32\drivers).


In the event that the system doesn't boot:

1)   Boot from the System Repair disc/Recovery Drive and use the Command Prompt option to rename SGdrv64.BAD to SGdrv64.sys

ren C:\Windows\System32\drivers\SGdrv64.BAD C:\Windows\System32\drivers\SGdrv64.sys
2)   Boot from the System Repair disc/Recovery Drive and use the System Restore option to restore the system to a point before the changes were made.

Good luck!

Edited by usasma, 19 August 2015 - 07:37 AM.

My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#10 sonodade

sonodade
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:06:30 AM

Posted 19 August 2015 - 12:22 PM

I tried uninstalling from the Device Manager the System Service "Secureguard driver". No problem for now, even though the file SGdrv64.sys didn't get deleted in the process. Will check if it's still active or of it's there but not used.

Will update in the next days, holidays now!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users