BSOD happening at Random Times - possibly Video Driver or Malware?

Page 1 of 2 12 LastLast

  1. Posts : 10
    Windows 7 Professional 64 bit
       #1

    BSOD happening at Random Times - possibly Video Driver or Malware?


    Need help from someone far wiser than I.

    My system is a little long in the tooth, but has been working great for years without ANY issues.
    Suddenly last week it started acting unstable and is crashing and BSODing multiple times a day.
    There isn't a specific trigger to this, but it seems to happen most often when I'm on the internet w a lot of windows open. Then again, I spend the bulk of my time on the web when I'm on the computer so that could just be coincidental.

    At first I thought I might have picked up a bug online somewhere so I checked for Malware.
    I didn't see any unusual processes in task mgr, but usually a good first step in troubleshooting is running a few scans. So I ran a scan with Malware Bytes Pro & also w Trend Micro Housecall (Online) and the system came up clean. In addition, I use Eset Nod32 Antivirus and my log doesn't show anything unusual. So my system looks clean.

    A few days ago I upgraded my video card to a GeForce GT 730.
    I noticed that crashes were more frequently after this, so I downgraded back to my old card. However, the crashes kept happening so I put the new card back in and can't tell if they're any more or less frequent. My computer has ample power to drive the graphics card and I've installed the drivers as per the instruction in the manual without issue.

    I also ran a sfc /scannow and windows didn't find any integrity violations.
    So I'm stumped since I've never had this kind of issue before.
    It either bluescreens and gives me a msg -- or just just restarts to the reboot screen multiple times a day. Below are two recent crash info and I've also attached the DM Log Collector report, as indicated in instructions.

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 7f
    BCP1: 0000000000000008
    BCP2: 0000000080050031
    BCP3: 00000000000406F8
    BCP4: FFFFF88001838E9C
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\062815-15334-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-28797-0.sysdata.xml

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 3b
    BCP1: 00000000C0000005
    BCP2: FFFFF80003527306
    BCP3: FFFFF8800961FF90
    BCP4: 0000000000000000
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\062915-15943-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-31886-0.sysdata.xml
      My Computer


  2. Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       #2

    Hello and welcome Austin sorry for the wait mate just for starters there a few issues and we shall need to work through them in the meantime I would run these (in safe mode where you can) - they don't take long and eliminate something basic or simple.

    https://www.sevenforums.com/tutorials/1538-sfc-scannow-command-system-file-checker.html

    https://www.sevenforums.com/tutorials/433-disk-check.html< if necessary include the /f and /r in the command line as per Option2

    if no go then these

    http://www.superantispyware.com/

    http://www.malwarebytes.org/products/malwarebytes_free/

    http://www.bleepingcomputer.com/download/adwcleaner/

    ADW download from bleeping computerdelete any rubbish found with the malware scans

    (with ADW ifyou are running Kaspersky it will throw it up as malware just overrideKaspersky by ignoring it or disabling it for the duration of the scan)
      My Computer


  3. Posts : 10
    Windows 7 Professional 64 bit
    Thread Starter
       #3

    First off, thanks so much for your help!
    It's much appreciated and I'm pulling my hair out trying to figure out what's going on w this previously reliable machine.

    So I ran a scan w Eset Nod32, as well as Malware Bytes & SuperantiSpyware as suggested.
    These all finished clean without finding any issues (except a few tracking cookies)
    ADwCleaner found a few things in random folders and I had it clean those.

    In addition, I ran the Sfc Scannow and it completed and didn't find any integrity issues.
    The other Scanreg f/ r/ command said it would run the next time I rebooted since it needed the drive to be fixed.

    I also trimmed the programs that launch at startup and updated my Nvida video driver.
    I've also downloaded MemTest since I'm thinking that should be checked to and will run it tonight.

    That being said, the system has BSOD at least 7 times today so I've attached the newest DM LOG so you can see it for yourself. I've also attached the notes from the reboot, so please let me know your thoughts and the next steps.


    Here is the event log after BSOD w the most recent crashes at the bottom:


    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 7f
    BCP1: 0000000000000008
    BCP2: 0000000080050031
    BCP3: 00000000000406F8
    BCP4: FFFFF88001838E9C
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\062815-15334-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-28797-0.sysdata.xml

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 3b
    BCP1: 00000000C0000005
    BCP2: FFFFF80003527306
    BCP3: FFFFF8800961FF90
    BCP4: 0000000000000000
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\062915-15943-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-31886-0.sysdata.xml

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 50
    BCP1: FFFFF88051A12B38
    BCP2: 0000000000000000
    BCP3: FFFFF9600013C81F
    BCP4: 0000000000000005
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\062915-15288-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-99840-0.sysdata.xml
    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 50
    BCP1: FFFFF8800E5A797A
    BCP2: 0000000000000001
    BCP3: FFFFF80003580805
    BCP4: 0000000000000000
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\063015-15990-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-3090301-0.sysdata.xml
    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7601.2.1.0.256.48
    Locale ID: 1033
    Additional information about the problem:
    BCCode: 50
    BCP1: FFFFF80004580DE6
    BCP2: 0000000000000008
    BCP3: FFFFF80004580DE6
    BCP4: 0000000000000002
    OS Version: 6_1_7601
    Service Pack: 1_0
    Product: 256_1
    Files that help describe the problem:
    C:\Windows\Minidump\063015-17737-01.dmp
    D:\Users\Travis\AppData\Local\Temp\WER-31449-0.sysdata.xml
      My Computer


  4. Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       #4

    Wow so many dumps mate and one that has got me concerned is this one which involves a graphics issue for ATI failure so before you got the NVidia were you running ATI graphics? if so find and uninstall them plus the Catalyst Control Centre that goes with ATI.
    Code:
    *******************************************************************************
    *                                                                             *
    *                        Bugcheck Analysis                                    *
    *                                                                             *
    *******************************************************************************
    VIDEO_TDR_FAILURE (116)
    Attempt to reset the display driver and recover from timeout failed.
    Arguments:
    Arg1: fffffa800dd0b4e0, Optional pointer to internal TDR recovery context (TDR_RECOVERY_CONTEXT).
    Arg2: fffff880048f78c8, The pointer into responsible device driver module (e.g. owner tag).
    Arg3: 0000000000000000, Optional error code (NTSTATUS) of the last failed operation.
    Arg4: 0000000000000002, Optional internal context dependent data.
    Debugging Details:
    ------------------
    
    FAULTING_IP: 
    atikmpag+78c8
    fffff880`048f78c8 4883ec28        sub     rsp,28h
    DEFAULT_BUCKET_ID:  GRAPHICS_DRIVER_TDR_FAULT
    CUSTOMER_CRASH_COUNT:  1
    BUGCHECK_STR:  0x116
    PROCESS_NAME:  System
    CURRENT_IRQL:  0
    ANALYSIS_VERSION: 6.3.9600.17298 (debuggers(dbg).141024-1500) amd64fre
    STACK_TEXT:  
    fffff880`02ddb988 fffff880`056da000 : 00000000`00000116 fffffa80`0dd0b4e0 fffff880`048f78c8 00000000`00000000 : nt!KeBugCheckEx
    fffff880`02ddb990 fffff880`056d9d0a : fffff880`048f78c8 fffffa80`0dd0b4e0 fffffa80`088476f0 fffffa80`0833f410 : dxgkrnl!TdrBugcheckOnTimeout+0xec
    fffff880`02ddb9d0 fffff880`05780f07 : fffffa80`0dd0b4e0 00000000`00000000 fffffa80`088476f0 fffffa80`0833f410 : dxgkrnl!TdrIsRecoveryRequired+0x1a2
    fffff880`02ddba00 fffff880`057aab75 : 00000000`ffffffff 00000000`092db8cd 00000000`00000000 00000000`00000002 : dxgmms1!VidSchiReportHwHang+0x40b
    fffff880`02ddbae0 fffff880`057a92bb : 00000000`00000102 00000000`00000000 00000000`092db8cd 00000000`00000000 : dxgmms1!VidSchiCheckHwProgress+0x71
    fffff880`02ddbb10 fffff880`0577c2c6 : ffffffff`ff676980 fffffa80`0833f410 00000000`00000000 00000000`00000000 : dxgmms1!VidSchiWaitForSchedulerEvents+0x1fb
    fffff880`02ddbbb0 fffff880`057a8e7a : 00000000`00000000 fffffa80`08bbeb30 00000000`00000080 fffffa80`0833f410 : dxgmms1!VidSchiScheduleCommandToRun+0x1da
    fffff880`02ddbcc0 fffff800`02d30e6a : 00000000`fffffc32 fffffa80`087c7b50 fffffa80`06a4b040 fffffa80`087c7b50 : dxgmms1!VidSchiWorkerThread+0xba
    fffff880`02ddbd00 fffff800`02a8af06 : fffff800`02c0ce80 fffffa80`087c7b50 fffff800`02c1acc0 3033646e`49584c2f : nt!PspSystemThreadStartup+0x5a
    fffff880`02ddbd40 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiStartSystemThread+0x16
    
    STACK_COMMAND:  .bugcheck ; kb
    FOLLOWUP_IP: 
    atikmpag+78c8
    fffff880`048f78c8 4883ec28        sub     rsp,28h
    SYMBOL_NAME:  atikmpag+78c8
    FOLLOWUP_NAME:  MachineOwner
    MODULE_NAME: atikmpag
    IMAGE_NAME:  atikmpag.sys
    DEBUG_FLR_IMAGE_TIMESTAMP:  4ebb331c
    FAILURE_BUCKET_ID:  X64_0x116_IMAGE_atikmpag.sys
    BUCKET_ID:  X64_0x116_IMAGE_atikmpag.sys
    ANALYSIS_SOURCE:  KM
    FAILURE_ID_HASH_STRING:  km:x64_0x116_image_atikmpag.sys
    FAILURE_ID_HASH:  {83e844bc-fe68-2042-4230-7f5d3e90b48a}
    Followup: MachineOwner
      My Computer


  5. Posts : 10
    Windows 7 Professional 64 bit
    Thread Starter
       #5

    Yes, my system has been going down like a $2 hooker lately.

    As far as ATI and Catalyst, that is exactly right!
    Before I switched to the NVidia card a few weeks ago, I was using an ATI Radeon HD 4850 w ATI Catalyst software. Since updating the NVidia drivers yesterday, I don't see any reference to Catalyst or ATI in my programs in Control Panel. Does this mean it has already been removed from my system when I updated??

    Please let me know.
      My Computer


  6. Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       #6

    Ok mate now one way you can check to see if there are any ATI stuff on the machine is to look inside the registry.

    To do that > Start > type "regedit" No quotes) > a blue box with regedit will pop up > click on that > then - Yes > a window will open with the registry entries in it.
    Look at my pic and open it out - you can see my old laptop here has ATI entries listed let us know if you have the same. Now it may be that being the on board graphics (like my old laptop here) it will have entries because of the hardware.
    Don't do anything until we know.
      My Computer


  7. Posts : 10
    Windows 7 Professional 64 bit
    Thread Starter
       #7

    Interesting. It's not in control panel but regedit shows there are entries for both AMD and ATI.

    I've attached a screenshot here.
    Please let me know what I should do next.
    And thanks again for the helping hand.
      My Computer


  8. Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       #8

    Ok sorry for late reply and that is just about exactly what is in my registry entries though I am running ATI graphics simply because the laptop cannot accept a NVidia card.

    You will notice a little further down that listing the NVidia entries Now before you go deleting any entries for ATI follow and do this Registry - Backup and Restore I being a tad pedantic do it to my desktop and a stick.

    Now I have to go offline for a while and I will get back to you a little later
      My Computer


  9. Posts : 10
    Windows 7 Professional 64 bit
    Thread Starter
       #9

    Hello there, my friend.
    I was away for a bit enjoying the holiday and am now back at the grind and at this crashing computer.
    Hopefully you're well and had a nice break offline too.

    So I backed up the registry w a restore point, as suggested in your link.
    Please let me know how to delete these ATI entries in the registry and I'll be sure to do so.

    I also had hoped that maybe updating the NVidia driver would have reduced the crash frequency, but that is not the case. In fact, I've already had at least 4 BSODs this morning. Also the computer was on while I was away and since I sometimes remote in to grab work files, I know it crashed a number of times over the weekend/earlier in the week also since it was always at the log in screen when I remoted in instead of the desktop. So I ran DM log collector and have attached the update report file as well as the updated text file showing the errors on reboot.

    It also seems that crashes most frequently occur when I'm browsing the web.
    My browsers are Chrome, Internet Explorer and Firefox and I can't say it happens more with any specific browser. Then again this observation may be coincidental since I spend most time on the web.

    Please let me know what we should do/update/etc since this thing is driving me nuts.

    Thanks again.
      My Computer


  10. Posts : 10
    Windows 7 Professional 64 bit
    Thread Starter
       #10

    Good afternoon.

    Crashed another 10 times this afternoon and the day is only halfway over, so posting an updated log file.
    Hopefully this helps sleuth out what is crashing this system so frequently.
    And it does seem to happen more often when a browser is open.

    Please let me know what the next steps are.
    Thanks.
      My Computer


 
Page 1 of 2 12 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 18:23.
Find Us