BSOD after starting computer in 20 mins

[Silksz]

Hey
I have big bsod problem... Gettin blue screen almost nearly after starting computer and I can't find fix for it.
Uploaded my DM Log also

I have to get my pc working asap cause I have to get my school works done
Cheers

 

[koolkat77]

Welcome to the forum.

Your BSOD was caused by MalwareBytes. Remove it to test.

https://forums.malwarebytes.org/ind...d-pool-header-w-malicious-website-protection/

Microsoft (R) Windows Debugger Version 6.2.9200.20512 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\admin\Downloads\ECHO-K_26_11_2014_192233,54\112614-32214-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (8 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.18113.amd64fre.win7sp1_gdr.130318-1533
Machine Name:
Kernel base = 0xfffff800`02e53000 PsLoadedModuleList = 0xfffff800`03096670
Debug session time: Wed Nov 26 22:39:31.812 2014 (UTC + 6:00)
System Uptime: 0 days 0:09:12.154
Loading Kernel Symbols
...............................................................
................................................................
................................................
Loading User Symbols
Loading unloaded module list
.........
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 19, {20, fffffa800a22f2e0, fffffa800a22f300, 4020009}

*** WARNING: Unable to verify timestamp for mwac.sys
*** ERROR: Module load completed but symbols could not be loaded for mwac.sys
Probably caused by : fwpkclnt.sys ( fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+20a )

Followup: MachineOwner
---------

7: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

BAD_POOL_HEADER (19)
The pool is already corrupt at the time of the current request.
This may or may not be due to the caller.
The internal pool links must be walked to figure out a possible cause of
the problem, and then special pool applied to the suspect tags or the driver
verifier to a suspect driver.
Arguments:
Arg1: 0000000000000020, a pool block header size is corrupt.
Arg2: fffffa800a22f2e0, The pool entry we were looking for within the page.
Arg3: fffffa800a22f300, The next pool entry.
Arg4: 0000000004020009, (reserved)

Debugging Details:
------------------


BUGCHECK_STR:  0x19_20

POOL_ADDRESS: GetPointerFromAddress: unable to read from fffff80003100100
GetUlongFromAddress: unable to read from fffff800031001c0
 fffffa800a22f2e0 Nonpaged pool

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT

PROCESS_NAME:  mbamservice.ex

CURRENT_IRQL:  0

LAST_CONTROL_TRANSFER:  from fffff80002ffbcae to fffff80002ec8c00

STACK_TEXT:  
fffff880`03fae258 fffff800`02ffbcae : 00000000`00000019 00000000`00000020 fffffa80`0a22f2e0 fffffa80`0a22f300 : nt!KeBugCheckEx
fffff880`03fae260 fffff880`019290bd : 00000000`00000008 00000000`0000000c 00000000`676e7049 fffffa80`07818da8 : nt!ExDeferredFreePool+0x12da
fffff880`03fae310 fffff880`0160a04a : 00000000`00000000 fffff880`016060c3 00000000`00000000 fffffa80`06a8c720 : tcpip!IppInspectBuildHeaders+0x65d
fffff880`03fae5f0 fffff880`07e9e12d : 00000000`00000000 00000000`00000014 00000000`00000000 fffffa80`0a5ee9a0 : fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+0x20a
fffff880`03fae690 00000000`00000000 : 00000000`00000014 00000000`00000000 fffffa80`0a5ee9a0 fffffa80`0a5ee9b4 : mwac+0x612d


STACK_COMMAND:  kb

FOLLOWUP_IP: 
fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+20a
fffff880`0160a04a 85c0            test    eax,eax

SYMBOL_STACK_INDEX:  3

SYMBOL_NAME:  fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+20a

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: fwpkclnt

IMAGE_NAME:  fwpkclnt.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  50e4f5c8

FAILURE_BUCKET_ID:  X64_0x19_20_fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+20a

BUCKET_ID:  X64_0x19_20_fwpkclnt!FwpsConstructIpHeaderForTransportPacket0+20a

Followup: MachineOwner
---------

7: kd> lmvm fwpkclnt
start             end                 module name
fffff880`01600000 fffff880`01649000   fwpkclnt   (pdb symbols)          c:\symbols\fwpkclnt.pdb\95A5D52C0D8B47F2B080C74EE8A33D3F1\fwpkclnt.pdb
    Loaded symbol image file: fwpkclnt.sys
    Mapped memory image file: c:\symbols\fwpkclnt.sys\50E4F5C849000\fwpkclnt.sys
    Image path: \SystemRoot\System32\drivers\fwpkclnt.sys
    Image name: fwpkclnt.sys
    Timestamp:        Thu Jan 03 09:06:48 2013 (50E4F5C8)
    CheckSum:         0004D5F9
    ImageSize:        00049000
    File version:     6.1.7601.18042
    Product version:  6.1.7601.18042
    File flags:       0 (Mask 3F)
    File OS:          40004 NT Win32
    File type:        2.0 Dll
    File date:        00000000.00000000
    Translations:     0409.04b0
    CompanyName:      Microsoft Corporation
    ProductName:      Microsoft® Windows® Operating System
    InternalName:     fwpkclnt.sys
    OriginalFilename: fwpkclnt.sys
    ProductVersion:   6.1.7601.18042
    FileVersion:      6.1.7601.18042 (win7sp1_gdr.130102-1436)
    FileDescription:  FWP/IPsec Kernel-Mode API
    LegalCopyright:   © Microsoft Corporation. All rights reserved.