Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

lots of BSODs!


  • Please log in to reply
1 reply to this topic

#1 crunkkcar

crunkkcar

  • Members
  • 47 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:07 AM

Posted 03 December 2016 - 08:12 AM

here is the SysnativeFileCollectionApp.zip ... perfmon would not finish "collecting data for 60 seconds" and would just get hung up which is why i do not have the perfmon.zip file 

Attached Files



BC AdBot (Login to Remove)

 


#2 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:06:07 AM

Posted 03 December 2016 - 08:56 AM

Your UEFI/BIOS (version A08) dates from 2015.  Please check at the manufacturer's website to see if there are any UEFI/BIOS updates available for your system.  This is just in case there has been a more recent update.
FYI - W8 and W10 communicate more with the UEFI/BIOS than previous versions of Windows, so it's important to ensure that the UEFI/BIOS is kept up to date (and that outdated UEFI/BIOS' may be the cause of some compatibility issues).

Although you appear to have a reasonable number of Windows Update hotfixes for this version of your OS, please double check for any new Windows Updates.  It only takes one update to cause a problem, so it's essential that you have all of them.  The actual number is not important.  Rather it's important that you checked manually, installed any available updates, and didn't experience any errors when checking or updating.

You only have 708 MB of available Physical Memory (RAM).
Please get more memory if the system is able to handle it.
While waiting to upgrade the memory, please:
- only use one program at a time
- go through your startup items and stop those that aren't essential from loading with Windows
 

There are at least 4 security type programs seen running in the memory dumps (Avast, Kaspersky, HItManPro, and MalwareBytes).
I have to suspect that they may be a part of your difficulties.  Only have 1 antivirus running at a time.

As such, I'd leave Kaspersky and MalwareBytes installed - and would strongly encourage you to uninstall Avast and HitManPro.

Let us know if they help fix things, and if so, you may not have to proceed with my other suggestions.

 

From what I can see of the 3 memory dumps (as long as the previous stuff that I mentioned didn't cause it), it appears likely that this is being caused by an infection.

As such, the first step is to post over in the Am I Infected forum:  http://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/
Please read the pinned topics at the top of the forum for instructions on how to post there.

If the BSOD's continue (once cleared by the experts there), post back here for further assistance.

 

FYI - Intel Smart Connect is no longer supported in W10.

Please uninstall it from Control Panel...Programs and Features - then go into your BIOS/UEFI and disable it there.

 

Analysis:
The following is for information purposes only. The following information contains the relevant information from the blue screen analysis:
**************************Fri Dec  2 05:48:59.220 2016 (UTC - 5:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\120216-7125-01.dmp]
Windows 10 Kernel Version 14393 MP (4 procs) Free x64
Built by: 14393.447.amd64fre.rs1_release_inmarket.161102-0100
System Uptime:0 days 2:07:46.002
*** WARNING: Unable to verify timestamp for klwfp.sys
*** ERROR: Module load completed but symbols could not be loaded for klwfp.sys
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
Probably caused by :memory_corruption
BugCheck D1, {2000, 2, 1, fffff80e1e4b2a4f}
BugCheck Info: DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
Arguments:
Arg1: 0000000000002000, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000001, value 0 = read operation, 1 = write operation
Arg4: fffff80e1e4b2a4f, address which referenced memory
BUGCHECK_STR:  AV
DEFAULT_BUCKET_ID:  CODE_CORRUPTION
PROCESS_NAME:  System
FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
CPUID:        "Intel® Core™ i5-4200U CPU @ 1.60GHz"
MaxSpeed:     1600
CurrentSpeed: 2295
 
Processor may be overclocked!
Expected Frequency:   1600
Actual Frequency:     2295
Overclock Ratio:      1.43438
 
  BIOS Version                  A08
  BIOS Release Date             03/03/2015
  Manufacturer                  Dell Inc.
  Product Name                  XPS 12-9Q33
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Fri Dec  2 03:40:44.867 2016 (UTC - 5:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\120216-6718-01.dmp]
Windows 10 Kernel Version 14393 MP (4 procs) Free x64
Built by: 14393.447.amd64fre.rs1_release_inmarket.161102-0100
System Uptime:0 days 0:00:35.647
*** WARNING: Unable to verify timestamp for aswVmm.sys
*** ERROR: Module load completed but symbols could not be loaded for aswVmm.sys
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
Probably caused by :memory_corruption
BugCheck 50, {fffff6fb7dbede58, 0, fffff8041c6078be, 2}
BugCheck Info: PAGE_FAULT_IN_NONPAGED_AREA (50)
Arguments:
Arg1: fffff6fb7dbede58, memory referenced.
Arg2: 0000000000000000, value 0 = read operation, 1 = write operation.
Arg3: fffff8041c6078be, If non-zero, the instruction address which referenced the bad memory
    address.
Arg4: 0000000000000002, (reserved)
BUGCHECK_STR:  AV
DEFAULT_BUCKET_ID:  CODE_CORRUPTION
PROCESS_NAME:  System
FAILURE_BUCKET_ID: MEMORY_CORRUPTION_ONE_BYTE
CPUID:        "Intel® Core™ i5-4200U CPU @ 1.60GHz"
MaxSpeed:     1600
CurrentSpeed: 2295
 
Processor may be overclocked!
Expected Frequency:   1600
Actual Frequency:     2295
Overclock Ratio:      1.43438
 
  BIOS Version                  A08
  BIOS Release Date             03/03/2015
  Manufacturer                  Dell Inc.
  Product Name                  XPS 12-9Q33
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Fri Dec  2 03:39:37.616 2016 (UTC - 5:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\120216-6781-01.dmp]
Windows 10 Kernel Version 14393 MP (4 procs) Free x64
Built by: 14393.447.amd64fre.rs1_release_inmarket.161102-0100
System Uptime:0 days 22:20:20.400
*** WARNING: Unable to verify timestamp for aswVmm.sys
*** ERROR: Module load completed but symbols could not be loaded for aswVmm.sys
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
Probably caused by :memory_corruption
BugCheck 50, {fffff6fb7dbeda98, 0, fffff80c7e2378be, 2}
BugCheck Info: PAGE_FAULT_IN_NONPAGED_AREA (50)
Arguments:
Arg1: fffff6fb7dbeda98, memory referenced.
Arg2: 0000000000000000, value 0 = read operation, 1 = write operation.
Arg3: fffff80c7e2378be, If non-zero, the instruction address which referenced the bad memory
    address.
Arg4: 0000000000000002, (reserved)
BUGCHECK_STR:  AV
DEFAULT_BUCKET_ID:  CODE_CORRUPTION
PROCESS_NAME:  System
FAILURE_BUCKET_ID: MEMORY_CORRUPTION_ONE_BYTE
CPUID:        "Intel® Core™ i5-4200U CPU @ 1.60GHz"
MaxSpeed:     1600
CurrentSpeed: 2295
 
Processor may be overclocked!
Expected Frequency:   1600
Actual Frequency:     2295
Overclock Ratio:      1.43438
 
  BIOS Version                  A08
  BIOS Release Date             03/03/2015
  Manufacturer                  Dell Inc.
  Product Name                  XPS 12-9Q33
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``


3rd Party Drivers:
The following is for information purposes only. My recommendations were given above. The drivers that follow belong to software or devices that were not developed by Microsoft.  You can find links to the driver information and where to update the drivers in the section after the code box:

**************************Fri Dec  2 05:48:59.220 2016 (UTC - 5:00)**************************
DellRbtn.sys                Fri Aug  3 17:32:54 2012 (501C4386)
irstrtdv.sys                Fri Jun 28 16:09:48 2013 (51CDED8C)
ISCTD.sys                   Wed Jan 22 14:37:35 2014 (52E01DFF)
rawdsk3.sys                 Tue Feb 11 16:10:17 2014 (52FA91B9)
aswVmm.sys                  Mon Apr 28 07:15:30 2014 (535E3852)
DDDriver64Dcsa.sys          Wed May 28 15:58:54 2014 (53863FFE)
mwac.sys                    Tue Jun 17 22:07:00 2014 (53A0F444)
aswMBR.sys                  Thu Nov 13 07:04:01 2014 (54649E31)
iaLPSS_GPIO.sys             Tue Feb 24 10:51:38 2015 (54EC9E0A)
iaLPSSi_I2C.sys             Tue Feb 24 10:52:07 2015 (54EC9E27)
VirtualButtons.sys          Tue Apr 14 12:58:50 2015 (552D474A)
DellProf.sys                Wed May 13 10:17:19 2015 (55535CEF)
klmouflt.sys                Tue Jun  2 08:36:12 2015 (556DA33C)
iaStorA.sys                 Wed Jun  3 05:38:57 2015 (556ECB31)
iwdbus.sys                  Mon Jun  8 18:12:39 2015 (55761357)
LEqdUsb.Sys                 Tue Jun  9 15:25:30 2015 (55773DAA)
LHidEqd.Sys                 Tue Jun  9 15:25:30 2015 (55773DAA)
RTKVHD64.sys                Wed Jun 24 06:04:57 2015 (558A80C9)
Smb_driver_Intel.sys        Thu Jul  9 17:06:36 2015 (559EE25C)
SynRMIHID.sys               Thu Jul  9 17:06:55 2015 (559EE26F)
SynTP.sys                   Fri Jul 10 15:34:22 2015 (55A01E3E)
MBAMSwissArmy.sys           Wed Jul 29 00:26:01 2015 (55B855D9)
mbam.sys                    Tue Aug 11 13:35:19 2015 (55CA3257)
amdkmpfd.sys                Tue Aug 11 16:06:12 2015 (55CA55B4)
ICCWDT.sys                  Sun Sep 20 03:59:19 2015 (55FE6757)
TeeDriverW8x64.sys          Thu Dec 24 11:24:00 2015 (567C1C20)
kldisk.sys                  Fri Dec 25 02:47:51 2015 (567CF4A7)
kl1.sys                     Fri Apr  1 10:20:28 2016 (56FE83AC)
klpd.sys                    Mon Apr 11 10:25:19 2016 (570BB3CF)
Netwbw02.sys                Sun Apr 17 10:09:53 2016 (57139931)
klbackupdisk.sys            Fri Apr 22 09:25:48 2016 (571A265C)
klkbdflt.sys                Fri May 13 16:10:05 2016 (5736349D)
kneps.sys                   Mon May 16 09:33:56 2016 (5739CC44)
kltap.sys                   Mon May 16 17:04:28 2016 (573A35DC)
klbackupflt.sys             Thu May 19 11:15:06 2016 (573DD87A)
ibtusb.sys                  Mon May 23 13:22:39 2016 (57433C5F)
cm_km.sys                   Wed May 25 05:00:10 2016 (5745699A)
igdkmd64.sys                Wed May 25 17:12:54 2016 (57461556)
klflt.sys                   Wed Jun  8 07:43:21 2016 (575804D9)
klwfp.sys                   Mon Jun 13 05:29:14 2016 (575E7CEA)
intelppm.sys                Fri Jul 15 22:10:43 2016 (578997A3)
klupd_klif_klark.sys        Wed Aug  3 05:13:02 2016 (57A1B59E)
klupd_klif_klbg.sys         Wed Aug  3 05:25:45 2016 (57A1B899)
klupd_klif_arkmon.sys       Wed Aug  3 05:37:12 2016 (57A1BB48)
klupd_klif_mark.sys         Wed Aug  3 05:51:24 2016 (57A1BE9C)
klif.sys                    Thu Aug  4 10:52:32 2016 (57A356B0)
klhk.sys                    Mon Aug 22 12:16:05 2016 (57BB2545)
klwtp.sys                   Tue Aug 23 05:43:35 2016 (57BC1AC7)
klim6.sys                   Tue Aug 23 06:42:09 2016 (57BC2881)
hitmanpro37.sys             Mon Sep 12 07:45:27 2016 (57D69557)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Fri Dec  2 03:39:37.616 2016 (UTC - 5:00)**************************
pcdsrvc_x64.pkms            Mon May  9 20:20:44 2011 (4DC884DC)
semav6msr64.sys             Fri Jan 24 14:22:40 2014 (52E2BD80)
uxlyypob.sys                Wed Mar  9 02:28:57 2016 (56DFD0B9)


http://www.carrona.org/drivers/driver.php?id=DellRbtn.sys
http://www.carrona.org/drivers/driver.php?id=irstrtdv.sys
http://www.carrona.org/drivers/driver.php?id=ISCTD.sys
http://www.carrona.org/drivers/driver.php?id=rawdsk3.sys
http://www.carrona.org/drivers/driver.php?id=aswVmm.sys
http://www.carrona.org/drivers/driver.php?id=DDDriver64Dcsa.sys
http://www.carrona.org/drivers/driver.php?id=mwac.sys
http://www.carrona.org/drivers/driver.php?id=aswMBR.sys
http://www.carrona.org/drivers/driver.php?id=iaLPSS_GPIO.sys
http://www.carrona.org/drivers/driver.php?id=iaLPSSi_I2C.sys
http://www.carrona.org/drivers/driver.php?id=VirtualButtons.sys
http://www.carrona.org/drivers/driver.php?id=DellProf.sys
http://www.carrona.org/drivers/driver.php?id=klmouflt.sys
http://www.carrona.org/drivers/driver.php?id=iaStorA.sys
http://www.carrona.org/drivers/driver.php?id=iwdbus.sys
http://www.carrona.org/drivers/driver.php?id=LEqdUsb.Sys
http://www.carrona.org/drivers/driver.php?id=LHidEqd.Sys
http://www.carrona.org/drivers/driver.php?id=RTKVHD64.sys
http://www.carrona.org/drivers/driver.php?id=Smb_driver_Intel.sys
http://www.carrona.org/drivers/driver.php?id=SynRMIHID.sys
http://www.carrona.org/drivers/driver.php?id=SynTP.sys
http://www.carrona.org/drivers/driver.php?id=MBAMSwissArmy.sys
http://www.carrona.org/drivers/driver.php?id=mbam.sys
http://www.carrona.org/drivers/driver.php?id=amdkmpfd.sys
http://www.carrona.org/drivers/driver.php?id=ICCWDT.sys
http://www.carrona.org/drivers/driver.php?id=TeeDriverW8x64.sys
http://www.carrona.org/drivers/driver.php?id=kldisk.sys
http://www.carrona.org/drivers/driver.php?id=kl1.sys
http://www.carrona.org/drivers/driver.php?id=klpd.sys
http://www.carrona.org/drivers/driver.php?id=Netwbw02.sys
http://www.carrona.org/drivers/driver.php?id=klbackupdisk.sys
http://www.carrona.org/drivers/driver.php?id=klkbdflt.sys
http://www.carrona.org/drivers/driver.php?id=kneps.sys
kltap.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=klbackupflt.sys
http://www.carrona.org/drivers/driver.php?id=ibtusb.sys
http://www.carrona.org/drivers/driver.php?id=cm_km.sys
http://www.carrona.org/drivers/driver.php?id=igdkmd64.sys
http://www.carrona.org/drivers/driver.php?id=klflt.sys
http://www.carrona.org/drivers/driver.php?id=klwfp.sys
http://www.carrona.org/drivers/driver.php?id=intelppm.sys
klupd_klif_klark.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
klupd_klif_klbg.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
klupd_klif_arkmon.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
klupd_klif_mark.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=klif.sys
http://www.carrona.org/drivers/driver.php?id=klhk.sys
http://www.carrona.org/drivers/driver.php?id=klwtp.sys
http://www.carrona.org/drivers/driver.php?id=klim6.sys
http://www.carrona.org/drivers/driver.php?id=hitmanpro37.sys
http://www.carrona.org/drivers/driver.php?id=pcdsrvc_x64.pkms
http://www.carrona.org/drivers/driver.php?id=semav6msr64.sys
uxlyypob.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
 
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users