Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Kernal_Security_Check_Error


  • Please log in to reply
2 replies to this topic

#1 co1615

co1615

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:18 PM

Posted 04 July 2017 - 12:05 PM

Hello,

 

 Receiving the above error message while trying to install new Malwarebytes version. Ran Sysnative BSOD Dump + System File Collection App, results attached. perfmon /report wouldn't run.

System info: HP Pavilion P6-2326s desktop, bought 2nd hand 3 or 4 yrs ago, bought new HDD & installed Windows 8 (x86) OEM originally, updated to 8.1, 

Specs: https://support.hp.com/us-en/document/c03135925

Intel G645 CPU

8mb ram

No video card

Belarc Advisor report attached

 

Thanks!

Attached Files


Edited by co1615, 04 July 2017 - 12:06 PM.


BC AdBot (Login to Remove)

 


#2 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:09:18 PM

Posted 04 July 2017 - 05:15 PM

Your UEFI/BIOS (version 8.11) dates from 2012.  Please check at the manufacturer's website to see if there are any UEFI/BIOS updates available for your system.  If you are able to install the update through Windows (without booting from an external drive), then go ahead and update it.  WARNING - if the computer might shut down during this procedure, please don't do it, as this may physically damage the computer and prevent it from booting.
FYI - W8 and W10 communicate more with the UEFI/BIOS than previous versions of Windows, so it's important to ensure that the UEFI/BIOS is kept up to date (and that outdated UEFI/BIOS' may be the cause of some compatibility issues).

Although you appear to have a reasonable number of Windows Update hotfixes for this version of your OS, please double check for any new Windows Updates.  It only takes one update to cause a problem, so it's essential that you have all of them.  The actual number is not important.  Rather it's important that you checked manually, installed any available updates, and didn't experience any errors when checking or updating.

This device has a problem in Device Manager:

 

Not Available    SW\{CFD669F1-9BC2-11D0-8299-0000F822FE8A}\{0A4252A0-7E70-11D0-A5D6-28DB04C10000}    This device is not configured correctly.

This is most likely a Microsoft filter driver.  It's essential that you have ALL available Windows Updates.

You can uninstall this device (in Device Manager), by right clicking on it and selecting "Uninstall".  Reboot for the changes to take effect.

Check to see if the problem device comes back.

 

Daemon Tools (and Alcohol % software) are known to cause BSOD's on some Windows systems (mostly due to the sptd.sys driver, although I have seen both dtsoftbus01.sys and dtscsibus.sys blamed on several occasions).
[quote]Please un-install the program, then use the following free tool to ensure that the troublesome sptd.sys driver is removed from your system (pick the 32 or 64 bit system depending on your system's configuration):  New link (15 Aug 2012):  http://www.duplexsecure.com/downloads (pick the appropriate version for your system and select "Un-install" when you run it).
Alternate link:  http://www.disc-tools.com/download/sptd
Manual procedure here:  http://daemonpro-help.com/en/problems_and_solutions/registry_and_sptd_problems.html
[/quote]NOTE:  The uninstaller may not find the SPTD.sys driver.  Don't worry about it, just let us know in your post.
NOTE2:  The latest version has an SPTD2.sys driver - the uninstaller is on the same page as the SPTD.sys driver - just download the version for W10!

Please uninstall MalwareBytes, then follow the instructions here to remove all traces: 

According to the memory dumps, this is what's most likely to blame.  All 50 of the memory dumps blamed MBAMSwissArmy.sys for the crashes.

 

Analysis:
The following is for information purposes only.
The following information contains the relevant information from the blue screen analysis:
[QUOTE]**Loading Dump File [C:\Users\john\SysnativeBSODApps\070417-75875-01.dmp]
Windows 8.1 Kernel Version 9600 MP (2 procs) Free x64
Built by: 9600.18505.amd64fre.winblue_ltsb.160930-0600
System Uptime:8 days 3:44:44.240
*** WARNING: Unable to verify timestamp for MBAMSwissArmy.sys
*** ERROR: Module load completed but symbols could not be loaded for MBAMSwissArmy.sys
Probably caused by :MBAMSwissArmy.sys ( MBAMSwissArmy+389f6 )
BugCheck 139, {3, ffffd0014fbb1a10, ffffd0014fbb1968, 0}
BugCheck Info: KERNEL_SECURITY_CHECK_FAILURE (139)
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd0014fbb1a10, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd0014fbb1968, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
BUGCHECK_STR:  0x139
DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
PROCESS_NAME:  System
FAILURE_BUCKET_ID: 0x139_3_MBAMSwissArmy!unknown_function
CPUID:        "Intel® Pentium® CPU G645 @ 2.90GHz"
MaxSpeed:     2900
CurrentSpeed: 2893
  BIOS Version                  8.11
  BIOS Release Date             10/24/2012
  Manufacturer                  Hewlett-Packard
  Baseboard Manufacturer        Foxconn
  Product Name                  p6-2326s
  Baseboard Product             2ADA
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Jun 25 16:01:25.408 2017 (UTC - 4:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\062517-47593-01.dmp]
Windows 8.1 Kernel Version 9600 MP (2 procs) Free x64
Built by: 9600.18505.amd64fre.winblue_ltsb.160930-0600
System Uptime:4 days 15:12:30.501
*** WARNING: Unable to verify timestamp for MBAMSwissArmy.sys
*** ERROR: Module load completed but symbols could not be loaded for MBAMSwissArmy.sys
Probably caused by :MBAMSwissArmy.sys ( MBAMSwissArmy+389f6 )
BugCheck 139, {3, ffffd000cd0bfa10, ffffd000cd0bf968, 0}
BugCheck Info: KERNEL_SECURITY_CHECK_FAILURE (139)
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd000cd0bfa10, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd000cd0bf968, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
BUGCHECK_STR:  0x139
DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
PROCESS_NAME:  System
FAILURE_BUCKET_ID: 0x139_3_MBAMSwissArmy!unknown_function
CPUID:        "Intel® Pentium® CPU G645 @ 2.90GHz"
MaxSpeed:     2900
CurrentSpeed: 2893
  BIOS Version                  8.11
  BIOS Release Date             10/24/2012
  Manufacturer                  Hewlett-Packard
  Baseboard Manufacturer        Foxconn
  Product Name                  p6-2326s
  Baseboard Product             2ADA
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Wed Jun 21 00:48:25.063 2017 (UTC - 4:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\062117-33640-01.dmp]
Windows 8.1 Kernel Version 9600 MP (2 procs) Free x64
Built by: 9600.18505.amd64fre.winblue_ltsb.160930-0600
System Uptime:0 days 0:17:21.451
*** WARNING: Unable to verify timestamp for MBAMSwissArmy.sys
*** ERROR: Module load completed but symbols could not be loaded for MBAMSwissArmy.sys
Probably caused by :MBAMSwissArmy.sys ( MBAMSwissArmy+389f6 )
BugCheck 139, {3, ffffd000925bca10, ffffd000925bc968, 0}
BugCheck Info: KERNEL_SECURITY_CHECK_FAILURE (139)
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd000925bca10, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd000925bc968, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
BUGCHECK_STR:  0x139
DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
PROCESS_NAME:  System
FAILURE_BUCKET_ID: 0x139_3_MBAMSwissArmy!unknown_function
CPUID:        "Intel® Pentium® CPU G645 @ 2.90GHz"
MaxSpeed:     2900
CurrentSpeed: 2893
  BIOS Version                  8.11
  BIOS Release Date             10/24/2012
  Manufacturer                  Hewlett-Packard
  Baseboard Manufacturer        Foxconn
  Product Name                  p6-2326s
  Baseboard Product             2ADA
Loading Dump File [C:\Users\john\SysnativeBSODApps\062117-37671-01.dmp]
Windows 8.1 Kernel Version 9600 MP (2 procs) Free x64
Built by: 9600.18505.amd64fre.winblue_ltsb.160930-0600
System Uptime:4 days 21:53:16.256
*** WARNING: Unable to verify timestamp for MBAMSwissArmy.sys
*** ERROR: Module load completed but symbols could not be loaded for MBAMSwissArmy.sys
Probably caused by :MBAMSwissArmy.sys ( MBAMSwissArmy+389f6 )
BugCheck 139, {3, ffffd000216a6a10, ffffd000216a6968, 0}
BugCheck Info: KERNEL_SECURITY_CHECK_FAILURE (139)
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd000216a6a10, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd000216a6968, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
BUGCHECK_STR:  0x139
DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
PROCESS_NAME:  System
FAILURE_BUCKET_ID: 0x139_3_MBAMSwissArmy!unknown_function
CPUID:        "Intel® Pentium® CPU G645 @ 2.90GHz"
MaxSpeed:     2900
CurrentSpeed: 2893
  BIOS Version                  8.11
  BIOS Release Date             10/24/2012
  Manufacturer                  Hewlett-Packard
  Baseboard Manufacturer        Foxconn
  Product Name                  p6-2326s
  Baseboard Product             2ADA
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
The rest of the memory dump summaries are hidden in the Spoiler tag below.  Click on "Show" to reveal them.

Spoiler



3rd Party Drivers:
The following is for information purposes only.
My recommendations were given above. The drivers that follow belong to software or devices that were not developed by Microsoft.  You can find links to the driver information and where to update the drivers in the section after the code box:

**************************Tue Jul  4 01:30:25.821 2017 (UTC - 4:00)**************************
CLVirtualDrive.sys          Mon Dec 26 08:26:47 2011 (4EF87617)
HECIx64.sys                 Mon Jul  2 18:14:58 2012 (4FF21D62)
igdkmd64.sys                Wed Dec 12 19:42:26 2012 (50C92472)
tib_mounter.sys             Thu Dec 27 08:25:05 2012 (50DC4C31)
snapman.sys                 Wed Jan 16 08:44:06 2013 (50F6AEA6)
fltsrv.sys                  Fri Mar  1 08:53:39 2013 (5130B2E3)
tib.sys                     Wed Mar 20 05:00:38 2013 (51497AB6)
dtsoftbus01.sys             Thu Jun 20 03:22:51 2013 (51C2ADCB)
stwrt64.sys                 Fri Aug 16 06:26:26 2013 (520DFE52)
intelppm.sys                Thu Aug 22 04:46:35 2013 (5215CFEB)
netr28x.sys                 Tue Nov 26 03:32:08 2013 (52945C88)
rtlh64.sys                  Mon Nov  3 04:31:13 2014 (54574B61)
TIxHCIufilter.sys           Fri Jul 17 15:42:11 2015 (55A95A93)
TIxHCIlfilter.sys           Fri Jul 17 15:42:27 2015 (55A95AA3)
MBAMSwissArmy.sys           Wed Mar 15 15:00:41 2017 (58C98F59)
isedrv.sys                  Wed Mar 29 02:39:19 2017 (58DB5697)
aswbuniva.sys               Thu Apr 20 05:18:35 2017 (58F87CEB)
aswbidsha.sys               Thu Apr 20 05:18:36 2017 (58F87CEC)
aswbidsdrivera.sys          Thu Apr 20 05:18:37 2017 (58F87CED)
aswbloga.sys                Thu Apr 20 05:18:38 2017 (58F87CEE)
aswKbd.sys                  Fri Apr 28 03:34:38 2017 (5902F08E)
aswRvrt.sys                 Fri Apr 28 03:34:40 2017 (5902F090)
aswSnx.sys                  Fri Apr 28 03:35:06 2017 (5902F0AA)
aswRdr2.sys                 Fri Apr 28 03:35:08 2017 (5902F0AC)
aswMonFlt.sys               Fri Apr 28 03:46:02 2017 (5902F33A)
aswVmm.sys                  Fri Apr 28 03:46:05 2017 (5902F33D)
aswSP.sys                   Fri Apr 28 03:46:31 2017 (5902F357)
CmdCCAV.sys                 Thu May 11 02:57:28 2017 (59140B58)
aswStm.sys                  Fri May 12 10:52:16 2017 (5915CC20)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Sun Jun 25 16:01:25.408 2017 (UTC - 4:00)**************************
exfat.SYS                   Thu Aug 22 07:40:18 2013 (5215F8A2)


http://www.carrona.org/drivers/driver.php?id=CLVirtualDrive.sys
http://www.carrona.org/drivers/driver.php?id=HECIx64.sys
http://www.carrona.org/drivers/driver.php?id=igdkmd64.sys
http://www.carrona.org/drivers/driver.php?id=tib_mounter.sys
http://www.carrona.org/drivers/driver.php?id=snapman.sys
http://www.carrona.org/drivers/driver.php?id=fltsrv.sys
http://www.carrona.org/drivers/driver.php?id=tib.sys
http://www.carrona.org/drivers/driver.php?id=dtsoftbus01.sys
http://www.carrona.org/drivers/driver.php?id=stwrt64.sys
http://www.carrona.org/drivers/driver.php?id=intelppm.sys
http://www.carrona.org/drivers/driver.php?id=netr28x.sys
http://www.carrona.org/drivers/driver.php?id=rtlh64.sys
TIxHCIufilter.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
TIxHCIlfilter.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=MBAMSwissArmy.sys
isedrv.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
aswbuniva.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
aswbidsha.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
aswbidsdrivera.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
aswbloga.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=aswKbd.sys
http://www.carrona.org/drivers/driver.php?id=aswRvrt.sys
http://www.carrona.org/drivers/driver.php?id=aswSnx.sys
http://www.carrona.org/drivers/driver.php?id=aswRdr2.sys
http://www.carrona.org/drivers/driver.php?id=aswMonFlt.sys
http://www.carrona.org/drivers/driver.php?id=aswVmm.sys
http://www.carrona.org/drivers/driver.php?id=aswSP.sys
CmdCCAV.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=aswStm.sys
http://www.carrona.org/drivers/driver.php?id=exfat.SYS
 
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#3 co1615

co1615
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:18 PM

Posted 04 July 2017 - 11:15 PM

Thanks for the detailed info! The HP site doesn't list a newer Bios. I don't see anything in device manager showing bad? I did windows update and updated 3. The 12 showing in the Belarc file don't show in Windows Update. I'll look into those later. I did uninstall Malwarebytes & after restarting was able to install the new version. I also ran memtest 86+ prior with no errors. I appear to be good now. I appreciate the help John.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users