Constant BSOD

mssouth1964 · 02 Dec 2012

Hello,
I am new to this so please bear with me. I have been experiencing BSOD crashes on my HP omni all in one which is only 2 months old. I have tried to fix this problem by reading inquiries on the internet but I continue to have BSOD. I have put my system information on this website and I have downloaded SF diagnostic tool and made a zip folder. If I could get the help of some more computer savvy individuals I would greatly appreciate it. You may have to walk me through some steps but I am very willing to comply.

Thanks so much,

mssouth1964

mssouth1964 · 02 Dec 2012

Hello,

I just tried to upload my files that are in my SF file. I hope this uploaded right.

Arc · 02 Dec 2012

It is caused by Comodo firewall, that you have installed last month.

Code:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 135, {ffffffffc0000005, fffff8800966ea20, fffff88003c46148, fffff8a0001e5770}

Unable to load image cmdguard.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for cmdguard.sys
*** ERROR: Module load completed but symbols could not be loaded for cmdguard.sys
Probably caused by : cmdguard.sys ( cmdguard+1626f )

Followup: MachineOwner
---------

0: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

REGISTRY_FILTER_DRIVER_EXCEPTION (135)
This bugcheck is caused by an unhandled exception in a registry filtering driver.
This bugcheck indicates that a registry filtering driver didn't handle exception inside
its notification routine. One can identify the driver by the 3rd parameter.
Arguments:
Arg1: ffffffffc0000005, ExceptionCode
Arg2: fffff8800966ea20, Address of the context record for the exception that caused the bugcheck
Arg3: fffff88003c46148, The driver's callback routine address
Arg4: fffff8a0001e5770, Internal

Debugging Details:
------------------


CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0x135

PROCESS_NAME:  svchost.exe

CURRENT_IRQL:  0

EXCEPTION_RECORD:  fffff8800966f1c8 -- (.exr 0xfffff8800966f1c8)
ExceptionAddress: fffff88003c4d26f (cmdguard+0x000000000001626f)
   ExceptionCode: c0000005 (Access violation)
  ExceptionFlags: 00000000
NumberParameters: 2
   Parameter[0]: 0000000000000001
   Parameter[1]: 0000000000000807
Attempt to write to address 0000000000000807

TRAP_FRAME:  fffff8800966f270 -- (.trap 0xfffff8800966f270)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffff88003cbffd0 rbx=0000000000000000 rcx=fffff88003cbffd0
rdx=0000000000000000 rsi=0000000000000000 rdi=0000000000000000
rip=fffff88003c4d26f rsp=fffff8800966f400 rbp=fffffa800483e8e0
 r8=fffff8a0022521b0  r9=000000000000046c r10=000000000000046c
r11=0000000000000401 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei pl nz na pe nc
cmdguard+0x1626f:
fffff880`03c4d26f ??              ???
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff80002e4f6a4 to fffff80002adefc0

STACK_TEXT:  
fffff880`0966e1f8 fffff800`02e4f6a4 : 00000000`00000135 ffffffff`c0000005 fffff880`0966ea20 fffff880`03c46148 : nt!KeBugCheckEx
fffff880`0966e200 fffff800`02e842ed : fffffa80`048828b0 fffff880`0184dea0 fffffa80`067a1030 00000000`00000000 : nt!CmpFatalFilter+0x24
fffff880`0966e240 fffff800`02b0a06c : fffff880`018309a0 00000000`00000000 00000000`00000000 fffffa80`067e7580 : nt!CmpCallCallBacks+0x556
fffff880`0966e270 fffff800`02b09aed : fffff800`02c41d5c fffff880`0966f500 00000000`00000000 fffff800`02a60000 : nt!_C_specific_handler+0x8c
fffff880`0966e2e0 fffff800`02b088c5 : fffff800`02c41d5c fffff880`0966e358 fffff880`0966f1c8 fffff800`02a60000 : nt!RtlpExecuteHandlerForException+0xd
fffff880`0966e310 fffff800`02b19851 : fffff880`0966f1c8 fffff880`0966ea20 fffff880`00000000 00000000`c0000503 : nt!RtlDispatchException+0x415
fffff880`0966e9f0 fffff800`02ade642 : fffff880`0966f1c8 00000000`000007ff fffff880`0966f270 00000000`c0000001 : nt!KiDispatchException+0x135
fffff880`0966f090 fffff800`02add1ba : 00000000`00000001 00000000`00000807 fffff8a0`ef8f4600 00000000`000007ff : nt!KiExceptionDispatch+0xc2
fffff880`0966f270 fffff880`03c4d26f : 00000000`00000001 00000000`000007ff fffffa80`0483e8e0 00000000`000007ff : nt!KiPageFault+0x23a
fffff880`0966f400 00000000`00000001 : 00000000`000007ff fffffa80`0483e8e0 00000000`000007ff 00000000`00000000 : cmdguard+0x1626f
fffff880`0966f408 00000000`000007ff : fffffa80`0483e8e0 00000000`000007ff 00000000`00000000 fffff880`03c3a867 : 0x1
fffff880`0966f410 fffffa80`0483e8e0 : 00000000`000007ff 00000000`00000000 fffff880`03c3a867 00000000`00000000 : 0x7ff
fffff880`0966f418 00000000`000007ff : 00000000`00000000 fffff880`03c3a867 00000000`00000000 fffffa80`0483e8e0 : 0xfffffa80`0483e8e0
fffff880`0966f420 00000000`00000000 : fffff880`03c3a867 00000000`00000000 fffffa80`0483e8e0 00000000`c0000001 : 0x7ff


STACK_COMMAND:  kb

FOLLOWUP_IP: 
cmdguard+1626f
fffff880`03c4d26f ??              ???

SYMBOL_STACK_INDEX:  9

SYMBOL_NAME:  cmdguard+1626f

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: cmdguard

IMAGE_NAME:  cmdguard.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  509adbab

FAILURE_BUCKET_ID:  X64_0x135_cmdguard+1626f

BUCKET_ID:  X64_0x135_cmdguard+1626f

Followup: MachineOwner
---------

0: kd> lmvm cmdguard
start             end                 module name
fffff880`03c37000 fffff880`03cca000   cmdguard T (no symbols)           
    Loaded symbol image file: cmdguard.sys
    Image path: cmdguard.sys
    Image name: cmdguard.sys
    Timestamp:        Thu Nov 08 03:37:39 2012 (509ADBAB)
    CheckSum:         00094A35
    ImageSize:        00093000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

Description here: Driver Reference Table - cmdguard.sys

Uninstall Comodo Firewall. It will configure windows inbuilt firewall automatically.

Realtek NIC driver is also in problem.

Code:

fffff880`0966e1c0  fffff880`0425d9e8Unable to load image Rt64win7.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for Rt64win7.sys
*** ERROR: Module load completed but symbols could not be loaded for Rt64win7.sys
 Rt64win7+0x1b9e8

Which is very old.

Code:

lmvm Rt64win7
start             end                 module name
fffff880`04242000 fffff880`042cf000   Rt64win7 T (no symbols)           
    Loaded symbol image file: Rt64win7.sys
    Image path: Rt64win7.sys
    Image name: Rt64win7.sys
    Timestamp:        Tue Aug 23 19:25:41 2011 (4E53B15D)
    CheckSum:         00097338
    ImageSize:        0008D000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

Update it from Realtek.

The display driver is outdated, and crashing.

Code:

 lmvm atikmdag
start             end                 module name
fffff880`0488b000 fffff880`05317000   atikmdag T (no symbols)           
    Loaded symbol image file: atikmdag.sys
    Image path: atikmdag.sys
    Image name: atikmdag.sys
    Timestamp:        Fri Jan 27 18:18:52 2012 (4F229D34)
    CheckSum:         00A42C49
    ImageSize:        00A8C000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

Update it from AMD Graphics Drivers & Software.

AMD SATA Controller AHCI 1.2 Device Driver is also very old, and crashing.

Code:

lmvm amd_sata
start             end                 module name
fffff880`00e1a000 fffff880`00e31000   amd_sata T (no symbols)           
    Loaded symbol image file: amd_sata.sys
    Image path: amd_sata.sys
    Image name: amd_sata.sys
    Timestamp:        Sat Mar 05 02:15:41 2011 (4D714F75)
    CheckSum:         000202DD
    ImageSize:        00017000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

Update it from AMD Support & Drivers.

There may be some more faults. But, after performing those, let us know the situation.

mssouth1964 · 02 Dec 2012

Dear ARC,

I am letting AMD catalyst do updates. I hope this was right. One question though.....will AMD catalyst automatically do the SATA Controller update also? I thank you for your help and looking at my crash files. I will keep you posted.

Mssouth1964

Arc · 02 Dec 2012

Hello mssouth1964 :)

Catalyst will update the display driver only, not the sata controllers. If the link I supplied is confusing, try it: AMD Chipset Drivers. Under windows 7 tab, get the AMD Chipset driver.

mssouth1964 · 02 Dec 2012

Thanks you so very much Arc. I believe I have all the corrections made to my computer now. I changed my anti virus because Comodo did not want to just let me uninstall the firewall so I went back to my trusty Avira. Which I have never had a problem with on my other devices.

Today this computer brought up at least 3 BSOD after logging on before I did these updates. I have since restarted my computer 3 times to make sure I didn't get the BSOD. So far..so good. I want to wait a few days and see what happens, then I will mark my problem solved. I appreciate all the help. If I need further assistance I will sure let you know.

Greatly appreciated!

mssouth1964

Arc · 03 Dec 2012

Hello mssouth1964,

Take your time, observe it how it works, let us know it there is any further problems.

mssouth1964 · 05 Dec 2012

Hello again,

I thought I had this problem fixed but apparently the BSOD appeared again tonite. If it is alright with this site I copied the message and would like to post it. Let me know if I need to save files or whatever since I have no clue what to do so you can view the latest crash file.

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.768.3
Locale ID: 1033
Additional information about the problem:
BCCode: 19
BCP1: 0000000000000020
BCP2: FFFFFA80040A5C70
BCP3: FFFFFA80040A5CF0
BCP4: 0000000004080021
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1
Files that help describe the problem:
C:\Windows\Minidump\120412-17752-01.dmp
C:\Users\Christine\AppData\Local\Temp\WER-43914-0.sysdata.xml

I appreciate any and all help with this matter.

Thanks so very much,
mssouth1964

Arc · 05 Dec 2012

Upload the crash dump?

mssouth1964 · 05 Dec 2012

Hello again,

I believe this is the minidump which is what I need? I work during the week, so if I am a little slow at getting back please bear with me. I will check this thread in the evenings. Let me know if I didn't get what you needed. Thanks again Arc.

mssouth1964

Constant BSOD

Constant BSOD

Thanks Arc

BSOD Reappears