New
#1
Random BSOD
Hi guys , I got a new random BSOD , please help , thanks in advance(minidump file provided).
Random BSOD
-
-
New #2
Hi gabranthx33. :)
You are infected by a Rogue Antivirus ( AVA.exe ). "atikmdag.sys" also seems to be related to the problem but I believe that RA is the cause itself.
Download Malwarebytes, update it and run a full scan. Let us know the results.
Code:Built by: 7600.16792.amd64fre.win7_gdr.110408-1633 Machine Name: Kernel base = 0xfffff800`02c02000 PsLoadedModuleList = 0xfffff800`02e3fe50 Debug session time: Thu Jun 9 20:54:28.639 2011 (UTC - 3:00) System Uptime: 0 days 12:22:03.935 Loading Kernel Symbols ............................................................... ................................................................ .................................. Loading User Symbols Loading unloaded module list ....... ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* Use !analyze -v to get detailed debugging information. BugCheck 3B, {c0000005, fffff88004b9d10e, fffff8800a928790, 0} Probably caused by : atikmdag.sys ( atikmdag+37510e ) Followup: MachineOwner --------- 1: kd> !analyze -v ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* SYSTEM_SERVICE_EXCEPTION (3b) An exception happened while executing a system service routine. Arguments: Arg1: 00000000c0000005, Exception code that caused the bugcheck Arg2: fffff88004b9d10e, Address of the instruction which caused the bugcheck Arg3: fffff8800a928790, Address of the context record for the exception that caused the bugcheck Arg4: 0000000000000000, zero. Debugging Details: ------------------ EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - A instru o no 0x%08lx fez refer ncia mem ria no 0x%08lx. A mem ria n o p de ser %s. FAULTING_IP: atikmdag+37510e fffff880`04b9d10e 8178083000bebe cmp dword ptr [rax+8],0BEBE0030h CONTEXT: fffff8800a928790 -- (.cxr 0xfffff8800a928790) rax=000000b8000000b0 rbx=fffff8a00b87e360 rcx=fffff8a0082d31b0 rdx=fffffa800a910040 rsi=fffff8800a929430 rdi=fffff8a00bc9ee88 rip=fffff88004b9d10e rsp=fffff8800a929168 rbp=0000000000000000 r8=fffff8a00b87e360 r9=0000000000016614 r10=00000000ffffffff r11=fffff8a00bc9ee58 r12=fffffa800a910040 r13=fffff8a00bc9ee88 r14=000000000000009b r15=fffffa80072f6438 iopl=0 nv up ei pl nz na pe nc cs=0010 ss=0018 ds=002b es=002b fs=0053 gs=002b efl=00010202 atikmdag+0x37510e: fffff880`04b9d10e 8178083000bebe cmp dword ptr [rax+8],0BEBE0030h ds:002b:000000b8`000000b8=???????? Resetting default scope CUSTOMER_CRASH_COUNT: 1 DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT BUGCHECK_STR: 0x3B PROCESS_NAME: AVA.exe CURRENT_IRQL: 0 LAST_CONTROL_TRANSFER: from 0000000000000000 to fffff88004b9d10e STACK_TEXT: fffff880`0a929168 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : atikmdag+0x37510e FOLLOWUP_IP: atikmdag+37510e fffff880`04b9d10e 8178083000bebe cmp dword ptr [rax+8],0BEBE0030h SYMBOL_STACK_INDEX: 0 SYMBOL_NAME: atikmdag+37510e FOLLOWUP_NAME: MachineOwner MODULE_NAME: atikmdag IMAGE_NAME: atikmdag.sys DEBUG_FLR_IMAGE_TIMESTAMP: 4dae3c99 STACK_COMMAND: .cxr 0xfffff8800a928790 ; kb FAILURE_BUCKET_ID: X64_0x3B_atikmdag+37510e BUCKET_ID: X64_0x3B_atikmdag+37510e Followup: MachineOwner --------- 1: kd> lmvm atikmdag start end module name fffff880`04828000 fffff880`0515c000 atikmdag T (no symbols) Loaded symbol image file: atikmdag.sys Image path: \SystemRoot\system32\DRIVERS\atikmdag.sys Image name: atikmdag.sys Timestamp: Tue Apr 19 22:53:29 2011 (4DAE3C99) CheckSum: 008E91DD ImageSize: 00934000 Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4
Quote
Related Discussions