BSOD frequently playing mmorpg and surfing net


  1. ryuong
    Posts : 3
    Windows 7 Home Premium 64bit
       New #1

    BSOD frequently playing mmorpg and surfing net


    Hi,

    Been getting BSOD/pc hangs every now and then, but recently, the BSOD is getting more frequent when i play MMORPG (Battle of the Immortal) and surfing the net. Please help and let me know if you need any other information.

    - Did Memtest overnight and got 10 pass no issue
    - Furmark 10mins+ no issue
    - Temp seems to be in the ok range (50-60ish degree Celsius)
    - No overclocking done before
    - Power Supply from coolmaster

    Please let me know if you need more info and thanks in advance for your help!!
      My Computer
    Quote Quote

  3. HonorGamer
    Posts : 1,436
    Windows 8.1 Pro x64
       New #2

    Hello, Welcome to SF!

    From looking at the crash files, you may have some sort of malware.

    For your anti-virus I suggest doing a full scan with Download Microsoft Security Essentials from Official Microsoft Download Center

    For malware I suggest https://www.malwarebytes.org/ (free version)

    Please download Malwarebytes' Anti-Malware to your Desktop
    • Double-click mbam-setup.exe and follow the prompts to install the program.
    • At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select Perform full scan, then click Scan.
    • When the scan is complete, click OK, then Show Results to view the results.
    • Be sure that everything is checked, and click Remove Selected.
    • When completed, a log will open in Notepad. Please save it to a location you will remember.
    • Copy and Paste that log into your next reply.
    Note:
    If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
    Click OK for either of the prompts and let MBAM proceed with the disinfection process.
    If asked to restart the computer, please do so immediately.



    Please download HijackThis from here.

    Save it to a permanent folder (such as C:\HJT).

    Next, open HijackThis, and select Do a system scan and save a logfile.

    A Notepad document will open. Please post the contents of that document.

    Once I can get our Consumer Security Expert over here, I will take a look and see what I can do. Once she get's here she will be able to better assist you.

    -Justin
      My Computer
    Quote Quote

  4. ryuong
    Posts : 3
    Windows 7 Home Premium 64bit
    Thread Starter
       New #3

    Thanks for the prompt response. I have been using MSE since early this year. Below is the results I got from the scan.

    Result from HijackThis

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 10:40:54 PM, on 15/10/2014
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v11.0 (11.00.9600.17344)
    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Garena Plus\ggdllhost.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Users\Ryuong\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files (x86)\MagicDisc\MagicDisc.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = msn
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = msn
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    O2 - BHO: ArcPluginIEBHO - {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} - C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
    O4 - HKCU\..\Run: [SandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe"
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - Startup: Dropbox.lnk = Ryuong\AppData\Roaming\Dropbox\bin\Dropbox.exe
    O4 - Startup: MagicDisc.lnk = C:\Program Files (x86)\MagicDisc\MagicDisc.exe
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {1ED954DE-6B99-41D6-BEAC-93ECA3313BB6} (CheckVer Control) - file:///G:/CheckVer.ocx
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
    O23 - Service: Arc Service (ArcService) - Perfect World Entertainment Inc - C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

    --
    End of file - 7005 bytes
    Malwarebytes Anti-Malware- DL yesterday and got the below results. No new stuff when scanning today

    Malwarebytes Anti-Malware
    Malwarebytes | Free Anti-Malware & Internet Security Software

    Scan Date: 14/10/2014
    Scan Time: 10:21:28 PM
    Logfile:
    Administrator: Yes

    Version: 2.00.2.1012
    Malware Database: v2014.10.14.09
    Rootkit Database: v2014.10.11.01
    License: Free
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows 7 Service Pack 1
    CPU: x64
    File System: NTFS
    User: Ryuong

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 312226
    Time Elapsed: 4 min, 0 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Enabled
    PUM: Enabled

    Processes: 2
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\updateneurowise.exe, 1812, Delete-on-Reboot, [732e8b89453749edfe5b09a4d82924dc]
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\utilneurowise.exe, 2196, Delete-on-Reboot, [dbc61ff52b512e084c0d278610f1a759]

    Modules: 0
    (No malicious items detected)

    Registry Keys: 13
    PUP.Optional.Neurowise.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update neurowise, Quarantined, [732e8b89453749edfe5b09a4d82924dc],
    PUP.Optional.Neurowise.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util neurowise, Quarantined, [dbc61ff52b512e084c0d278610f1a759],
    PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, Quarantined, [cdd4ef25275536008ff912c39d65a858],
    PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, Quarantined, [cdd4ef25275536008ff912c39d65a858],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{d08ab008-0647-4784-8e2c-5769cd4a7c3a}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{724DD777-5654-4D06-B3BC-C2FF56615998}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E693A372-A8D4-4CBD-B011-66358BEA2F48}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{E693A372-A8D4-4CBD-B011-66358BEA2F48}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{724DD777-5654-4D06-B3BC-C2FF56615998}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{D08AB008-0647-4784-8E2C-5769CD4A7C3A}, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\neurowise, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, HKLM\SOFTWARE\WOW6432NODE\neurowise, Quarantined, [abf6c1531c603afcb07a988adb284ab6],
    PUP.Optional.Neurowise.A, HKU\S-1-5-21-719502460-3259577130-2593566075-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\neurowise, Quarantined, [594844d0c3b947ef1615a280838018e8],

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 3
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise, Delete-on-Reboot, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin, Delete-on-Reboot, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins, Quarantined, [01a0de3690ec2313b475f82a8083669a],

    Files: 15
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\updateneurowise.exe, Delete-on-Reboot, [732e8b89453749edfe5b09a4d82924dc],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\utilneurowise.exe, Delete-on-Reboot, [dbc61ff52b512e084c0d278610f1a759],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\neurowisebho.dll, Quarantined, [2c750113c2ba1026f1d405955aa8c53b],
    PUP.Optional.Neurowise.A, C:\Users\Ryuong\AppData\Roaming\Mozilla\Firefox\Profiles\uze90csy.default\extensions\{fe651286-52a1-461b-a17a-f258b4b81968}.xpi, Quarantined, [732e25ef4834ce68b17d47d760a31ce4],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\neurowise.ico, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\0, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\neurowiseUninstall.exe, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\updateneurowise.InstallState, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\sqlite3.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\utilneurowise.InstallState, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins\neurowise.Bromon.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins\neurowise.BroStats.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins\neurowise.CompatibilityChecker.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins\neurowise.FFUpdate.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],
    PUP.Optional.Neurowise.A, C:\Program Files (x86)\neurowise\bin\plugins\neurowise.IEUpdate.dll, Quarantined, [01a0de3690ec2313b475f82a8083669a],

    Physical Sectors: 0
    (No malicious items detected)


    (end)
      My Computer
    Quote Quote

  6. ryuong
    Posts : 3
    Windows 7 Home Premium 64bit
    Thread Starter
       New #4

    any update on this? thanks....
      My Computer
    Quote Quote

 

  Related Discussions
Been getting alot of BSOD&freezing frequently everyday :(
BSOD while playing and surfing
in BSOD Help and Support

Hi, dont know what to do, or what causes the problem. got 3 BSODīs today by the second there stand "system_service_exception" and in the third was no message. dmp files uploaded. thanks for help.
BSOD while playing Archeage (mmorpg)
in BSOD Help and Support

I recently downloaded a game called Archeage. When running the game anywhere between 1-10 mins the game causes my pc to blue screen (this doesn't happen with any of my other games i.e ESO, FFXIV, Guild Wars 2.) Sometimes I don't even get passed the game loading screen. Sometimes I get a clock...
I was playing Dragon nest, when my pc would crash. Every time i played it would crash and just restart, i would try the game again. The Blue Screen's occurred every time i attempted to play, and once it completely wouldn't boot. My latest restore was corrupt, so i chose the only one left before the...
Im playing world of warcraft and runes of magic.
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 Đ Designer Media Ltd
All times are GMT -5. The time now is 09:27.
Find Us