blue screen

[yasvin]

Hi everyone,

I'm getting blue screen error, can you help me to solve it plz

here is the error:


Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.256.1
Locale ID: 1033

Additional information about the problem:
BCCode: 24
BCP1: 00000000000C08A5
BCP2: 0000000000000000
BCP3: 0000000000000000
BCP4: 0000000000000000
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1

Files that help describe the problem:
C:\Windows\Minidump\110211-19827-01.dmp
C:\Users\yas\AppData\Local\Temp\WER-595643-0.sysdata.xml

Thx in adv

 

[Capt.Jack Sparrow]

Hello and Welcome!

Seems like the dump is pointing to NT File System Driver which is less likey the problem. But I would recommend to run Hardware Diagnostic to make sure everything is fine.

Update the following Drivers:

pcouffin.sys Fri Jun 30 19:10:29 2006
LVUSBS64.sys Fri Oct 12 07:09:40 2007
ElRawDsk.sys Sat Jul 26 23:29:09 2008

Check this thread: How to Update Drivers on Windows 7 | Captain Debugger

Bugcheck:

NTFS_FILE_SYSTEM (24)
    If you see NtfsExceptionFilter on the stack then the 2nd and 3rd
    parameters are the exception record and context record. Do a .cxr
    on the 3rd parameter and then kb to obtain a more informative stack
    trace.
Arguments:
Arg1: 00000000000c08a5
Arg2: 0000000000000000
Arg3: 0000000000000000
Arg4: 0000000000000000

Debugging Details:
------------------


DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0x24

PROCESS_NAME:  SearchProtocol

CURRENT_IRQL:  0

TRAP_FRAME:  fffff88006a8b5a0 -- (.trap 0xfffff88006a8b5a0)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffffa800736c060 rbx=0000000000000000 rcx=fffff88006a8b8b0
rdx=00000f7ef4c9a740 rsi=0000000000000000 rdi=0000000000000000
rip=fffff80002eda813 rsp=fffff88006a8b738 rbp=fffff88006a8bc60
 r8=0000000000000001  r9=000007fefb725ff0 r10=0000000000000001
r11=fffff88006a8b8b0 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei ng nz na pe nc
nt!memcpy+0x223:
fffff800`02eda813 8a040a          mov     al,byte ptr [rdx+rcx] ds:d7a0:000007fe`fb725ff0=??
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff880012441d5 to fffff80002ee3c40

STACK_TEXT:  
fffff880`06a8b038 fffff880`012441d5 : 00000000`00000024 00000000`000c08a5 00000000`00000000 00000000`00000000 : nt!KeBugCheckEx
fffff880`06a8b040 fffff880`01243e28 : 00000001`00000000 00000000`00000000 00000000`00000000 00000fff`ff8a0000 : Ntfs!NtfsPagingFileIo+0x155
fffff880`06a8b140 fffff880`00c02bcf : fffffa80`04995c58 fffffa80`04995870 fffffa80`06c6d4d0 00000000`00000000 : Ntfs! ?? ::FNODOBFM::`string'+0x8ba9
fffff880`06a8b1f0 fffff880`00c016df : fffffa80`049a25e0 fffffa80`0736c001 fffffa80`049a2500 fffffa80`04995870 : fltmgr!FltpLegacyProcessingAfterPreCallbacksCompleted+0x24f
fffff880`06a8b280 fffff800`02f0bbc5 : fffffa80`04995890 fffffa80`04cd9ae0 fffffa80`078c1cf0 fffff800`03059e80 : fltmgr!FltpDispatch+0xcf
fffff880`06a8b2e0 fffff800`02f0b699 : 00000000`00000000 00000000`00000000 fffffa80`078c1c30 fffffa80`078c1c30 : nt!IoPageRead+0x255
fffff880`06a8b370 fffff800`02ef202a : 00000000`00000000 00000000`00000000 ffffffff`ffffffff fffffa80`00000000 : nt!MiIssueHardFault+0x255
fffff880`06a8b440 fffff800`02ee1d6e : 00000000`00000000 000007fe`fb725ff0 fffff880`06a8b700 00000000`00000000 : nt!MmAccessFault+0x146a
fffff880`06a8b5a0 fffff800`02eda813 : fffff800`03188fc3 fffff880`06a8bc60 fffff880`012df807 fffff880`00000040 : nt!KiPageFault+0x16e
fffff880`06a8b738 fffff800`03188fc3 : fffff880`06a8bc60 fffff880`012df807 fffff880`00000040 fffffa80`00000000 : nt!memcpy+0x223
fffff880`06a8b740 fffff800`03188ddb : fffffa80`04206060 000007fe`fb725ff0 fffffa80`0859a060 00000000`000eacf8 : nt!MmCopyVirtualMemory+0x17b
fffff880`06a8baf0 fffff800`02ee2ed3 : fffffa80`0736c060 00000000`000eac58 fffff880`06a8bb88 00000000`00000150 : nt!NtReadVirtualMemory+0xff
fffff880`06a8bb70 00000000`776f170a : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x13
00000000`000eac38 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x776f170a


STACK_COMMAND:  kb

FOLLOWUP_IP: 
Ntfs!NtfsPagingFileIo+155
fffff880`012441d5 cc              int     3

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  Ntfs!NtfsPagingFileIo+155

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: Ntfs

IMAGE_NAME:  Ntfs.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  4d79997b

FAILURE_BUCKET_ID:  X64_0x24_Ntfs!NtfsPagingFileIo+155

BUCKET_ID:  X64_0x24_Ntfs!NtfsPagingFileIo+155

Followup: MachineOwner
---------

0: kd> lmvm Ntfs
start             end                 module name
fffff880`01242000 fffff880`013e5000   Ntfs       (pdb symbols)          c:\symbols\ntfs.pdb\D51347AE03CB4523A2844EA865BA0BE92\ntfs.pdb
    Loaded symbol image file: Ntfs.sys
    Mapped memory image file: c:\symbols\Ntfs.sys\4D79997B1a3000\Ntfs.sys
    Image path: \SystemRoot\System32\Drivers\Ntfs.sys
    Image name: Ntfs.sys
    Timestamp:        Fri Mar 11 09:09:39 2011 (4D79997B)
    CheckSum:         0019968A
    ImageSize:        001A3000
    File version:     6.1.7601.17577
    Product version:  6.1.7601.17577
    File flags:       0 (Mask 3F)
    File OS:          40004 NT Win32
    File type:        3.7 Driver
    File date:        00000000.00000000
    Translations:     0409.04b0
    CompanyName:      Microsoft Corporation
    ProductName:      Microsoft® Windows® Operating System
    InternalName:     ntfs.sys
    OriginalFilename: ntfs.sys
    ProductVersion:   6.1.7601.17577
    FileVersion:      6.1.7601.17577 (win7sp1_gdr.110310-1504)
    FileDescription:  NT File System Driver
    LegalCopyright:   © Microsoft Corporation. All rights reserved.

 

[yasvin]

Thanks for replying

Can I delete these driver except
LVUSBS64.sys because it is for logitech

pcouffin.sys Fri Jun 30 19:10:29 2006 LVUSBS64.sys Fri Oct 12 07:09:40 2007 ElRawDsk.sys Sat Jul 26 23:29:09 2008

I have already test memory using MemTest86+ during 9 hours it detect no error

http://www.seagate.com/www/en-us/support/downloads/seatoolsSeaTools detect no error

Thanks

 

[Capt.Jack Sparrow]

Don't delete them just update it to the latest version. let me know how it goes.

 

[yasvin]

Where can I find these driver?

 

[Capt.Jack Sparrow]

Where can I find these driver?

As for Logitech check their support website Support + Downloads

 

[yasvin]

Thanks I have update these file and waiting if I get the blue screen again

 

[yasvin]

I think my pc is ok now, thank for your help Capt jack

 

[Capt.Jack Sparrow]

I think my pc is ok now, thank for your help Capt jack

Your Welcome Mate ... Thanks for reporting back.

 

[yasvin]

Hi again,

I'm get the blue screen again

Please help me!!!!!!!!!!!

 

[yasvin]

latest blue screen

 

[Capt.Jack Sparrow]

latest blue screen

Sorry the post missed out from my list. The dump wasn;t very helpful so let's Enable Driver Verifier http://www.sevenforums.com/tutorials/101379-driver-verifier-enable-disable.html and let it run for 36 hours. It will cause BSOD post the latest files.

 

[yasvin]

Thank for replying,
I have Enable Driver Verifier and I have restart my pc but when windows is loading my pc freeze and it restart automatically everytime when I select start windows normally and there are no blue screen I think because windows have have not being loaded.

I when I select mode last known good configuration It does not freeze and I will let it run for 36 hours and will post new BSOD when it happen

Thanks,

 

[yasvin]

Here is latest bluescreen

 

[Capt.Jack Sparrow]

Hello there!

Run a Hardware Diagnostic | Captain Debugger to make sure all the components are in good shape.

Bugcheck:

NTFS_FILE_SYSTEM (24)
    If you see NtfsExceptionFilter on the stack then the 2nd and 3rd
    parameters are the exception record and context record. Do a .cxr
    on the 3rd parameter and then kb to obtain a more informative stack
    trace.
Arguments:
Arg1: 00000000000c08a5
Arg2: 0000000000000000
Arg3: 0000000000000000
Arg4: 0000000000000000

Debugging Details:
------------------


CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0x24

PROCESS_NAME:  LogonUI.exe

CURRENT_IRQL:  0

LAST_CONTROL_TRANSFER:  from fffff880012291d5 to fffff80002e90c40

STACK_TEXT:  
fffff880`0a73c6b8 fffff880`012291d5 : 00000000`00000024 00000000`000c08a5 00000000`00000000 00000000`00000000 : nt!KeBugCheckEx
fffff880`0a73c6c0 fffff880`01228e28 : 00000001`00000000 00000000`00000000 00000000`00000000 00000fff`ff8a0000 : Ntfs!NtfsPagingFileIo+0x155
fffff880`0a73c7c0 fffff880`00c02bcf : fffffa80`0899afb8 fffffa80`0899abd0 fffffa80`08fa9d30 00000000`00000000 : Ntfs! ?? ::FNODOBFM::`string'+0x8ba9
fffff880`0a73c870 fffff880`00c016df : fffffa80`049abde0 fffffa80`05fb5001 fffffa80`049abd00 fffffa80`0899abd0 : fltmgr!FltpLegacyProcessingAfterPreCallbacksCompleted+0x24f
fffff880`0a73c900 fffff800`02eb8bc5 : fffffa80`0899abf0 fffffa80`04d6dae0 fffffa80`066e4600 fffff880`009ea180 : fltmgr!FltpDispatch+0xcf
fffff880`0a73c960 fffff800`02eb8699 : fffff900`c0888001 fffff900`c0888001 fffffa80`066e4540 fffff880`0a73ca50 : nt!IoPageRead+0x255
fffff880`0a73c9f0 fffff800`02e9f02a : 00000000`00000000 00000000`00000000 ffffffff`ffffffff fffff900`00000000 : nt!MiIssueHardFault+0x255
fffff880`0a73ca80 fffff800`02e8ed6e : 00000000`00000008 000007fe`feefc430 fffff880`0a73cb01 00000000`00000000 : nt!MmAccessFault+0x146a
fffff880`0a73cbe0 000007fe`feefc430 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiPageFault+0x16e
00000000`0023e968 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x7fe`feefc430


STACK_COMMAND:  kb

FOLLOWUP_IP: 
Ntfs!NtfsPagingFileIo+155
fffff880`012291d5 cc              int     3

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  Ntfs!NtfsPagingFileIo+155

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: Ntfs

IMAGE_NAME:  Ntfs.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  4d79997b

FAILURE_BUCKET_ID:  X64_0x24_Ntfs!NtfsPagingFileIo+155

BUCKET_ID:  X64_0x24_Ntfs!NtfsPagingFileIo+155

Followup: MachineOwner
---------

 

[yasvin]

I have run Hardware Diagnostic by Captain Debugger expect the memtest because I already done this test and I have passed all these test

And can I disable the Driver Verifier?

 

[Capt.Jack Sparrow]

The dump files that was posted today was not created by Driver Verifier. Run Hard drive Diagnostic as well.

 

[yasvin]

I have install seatools and I have passed all test

 

[yasvin]

new blue screen !!!

 

[Capt.Jack Sparrow]

new blue screen !!!

Try to reinstall your Network adapter and see if that makes any difference if that if that fails then I think it could be the Windows itself. I afraid we might need to reinstall Windows.