Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Slowdowns and Crashes on Relatively New Laptop

blue screen bsod slowdown crash irql_not_less_or_equal firefox chrome

  • Please log in to reply

#1
Brennan C.

Brennan C.

    Member

  • Member
  • PipPip
  • 83 posts

Hey there, G2G! 

 

Back on Boxing Day, my fiancee and I took advantage of the sales to buy her a new laptop. 

Make: Lenovo

Model: G500

O/S: Windows 8.1

CPU: Intel i3 3210M @ 2.5 GHz

RAM: 8GB DDR3

Integrated graphics

1TB HDD

 

I chose it because the price was right, the specs seemed decent to me, and all of my past experiences with the brand have been positive. In any case, we've been having some issues with it over the last few months with frequent system slowdowns and crashes. It generally happens when there's four or five browser tabs open, and maybe iTunes or something, and the whole thing just seizes up out of nowhere. It usually resolves itself after a minute or so (strangely, as soon as I touch the computer it seems to kick back in), but occasionally it bluescreens with error message "IRQL_NOT_LESS_OR_EQUAL"; when it restarts after that particular bluescreen, the Lenovo startup splash screen never goes away and the OS doesn't load. When that happens, I have to hard-boot the system and start again, which loads Windows just fine.

 

The issue seemed to begin when I installed the free McAfee security that our new ISP provided us (we were previously using Windows Defender), so the first thing I tried was uninstalling that and switching back to Windows Defender. When the issue persisted, I tried switching her from Chrome to Firefox, because I understand that some systems just have memory issues when running Chrome. Firefox worked great for a few days before it started having similar problems. At that point I tried using CCleaner to clear the cache/cookies, because why else would Firefox work fine and then stop working? That didn't solve anything, either, and I'm honestly not too sure who I can trust when I Google that bluescreen error. I've also tried startup repair, defragging, and checking the disc for errors, but none of those fix it, either.  I've tried everything I can think of on this aside a factory reset, which is obviously destructive, and with my fiancee's anxiety/OCD I'd rather avoid that solution if at all possible. 

 

Do any of you have any insight into what could be causing this problem? Lenovo's tech support was useless, so I'm reaching out to y'all. Any help is highly appreciated. :-D


  • 0

Advertisements


#2
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi!
Welcome back :)
 
Let's have a general look at your OS.
 
Please download MiniToolBox by Farbar and save it to your desktop.

Close any open browsers!

Run MiniToolBox by double-clicking the 51e15692b05a4-MiniToolbox.PNG icon
(Users of Windows Vista and above please right-click and choose Run as Administrator).

You will be presented with this window:

miniToolBox.jpg

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

 

Cheers,

Naat :)


  • 0

#3
Shanaedawn

Shanaedawn

    New Member

  • Member
  • Pip
  • 8 posts

Hey, there! Original poster from my fiancee's account. Reporting back with the results of the toolkit:

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by ShanaeDawn (administrator) on 05-06-2014 at 08:17:34
Running from "C:\Users\ShanaeDawn\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wi-Fi (Connected)
Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30) = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : ShanaeLappy
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 82-56-F2-84-6C-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 80-56-F2-84-6C-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d123:f214:1aad:934d%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.11(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : June 5, 2014 8:11:35 AM
   Lease Expires . . . . . . . . . . : June 5, 2014 9:11:34 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 75519730
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-FD-64-F9-20-1A-06-35-98-63
   DNS Servers . . . . . . . . . . . : 64.59.160.15
                                       64.59.161.69
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : 20-1A-06-35-98-63
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{916734DF-6C83-4B10-BD74-B36341818CEC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:18ef:1759:b9bd:bee4(Preferred)
   Link-local IPv6 Address . . . . . : fe80::18ef:1759:b9bd:bee4%8(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 335544320
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-FD-64-F9-20-1A-06-35-98-63
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  nsc2.cv.gv.shawcable.net
Address:  64.59.160.15

Name:    google.com
Addresses:  2607:f8b0:400a:803::1008
      173.194.33.105
      173.194.33.104
      173.194.33.98
      173.194.33.101
      173.194.33.102
      173.194.33.96
      173.194.33.110
      173.194.33.103
      173.194.33.99
      173.194.33.100
      173.194.33.97


Pinging google.com [173.194.33.105] with 32 bytes of data:
Reply from 173.194.33.105: bytes=32 time=12ms TTL=57
Reply from 173.194.33.105: bytes=32 time=13ms TTL=57

Ping statistics for 173.194.33.105:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 13ms, Average = 12ms
Server:  nsc2.cv.gv.shawcable.net
Address:  64.59.160.15

Name:    yahoo.com
Addresses:  98.139.183.24
      98.138.253.109
      206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=96ms TTL=50
Reply from 98.139.183.24: bytes=32 time=100ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 96ms, Maximum = 100ms, Average = 98ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...82 56 f2 84 6c 95 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...80 56 f2 84 6c 95 ......Broadcom 802.11n Network Adapter
  3...20 1a 06 35 98 63 ......Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30)
  1...........................Software Loopback Interface 1
  6...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  8...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.11     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.11    281
     192.168.0.11  255.255.255.255         On-link      192.168.0.11    281
    192.168.0.255  255.255.255.255         On-link      192.168.0.11    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.11    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.11    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  8    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  8    306 2001::/32                On-link
  8    306 2001:0:9d38:6ab8:18ef:1759:b9bd:bee4/128
                                    On-link
  4    281 fe80::/64                On-link
  8    306 fe80::/64                On-link
  8    306 fe80::18ef:1759:b9bd:bee4/128
                                    On-link
  4    281 fe80::d123:f214:1aad:934d/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    281 ff00::/8                 On-link
  8    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1172

Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1172

Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service) (User: )
Description: The plug-in manager <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application


Details:
    (HRESULT : 0x8e5e0210) (0x8e5e0210)

Error: (06/04/2014 08:06:50 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
    The content index catalog is corrupt.   0xc0041801 (0xc0041801)

Error: (06/04/2014 08:06:50 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
     0x8e5e0210 (0x8e5e0210)


System errors:
=============
Error: (06/05/2014 08:16:32 AM) (Source: Service Control Manager) (User: )
Description: The pcicsa.sys service failed to start due to the following error:
%%2

Error: (06/04/2014 09:12:27 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}

Error: (06/04/2014 08:16:32 PM) (Source: Service Control Manager) (User: )
Description: The pcicsa.sys service failed to start due to the following error:
%%2

Error: (06/04/2014 08:06:54 PM) (Source: DCOM) (User: ShanaeLappy)
Description: 1053WSearchUnavailable{9E175B68-F52A-11D8-B9A5-505054503030}

Error: (06/04/2014 08:06:54 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053

Error: (06/04/2014 08:06:54 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.

Error: (06/04/2014 08:06:54 PM) (Source: DCOM) (User: ShanaeLappy)
Description: 1053WSearchUnavailable{9E175B68-F52A-11D8-B9A5-505054503030}

Error: (06/04/2014 08:06:54 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1053

Error: (06/04/2014 08:06:54 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.

Error: (06/04/2014 08:06:52 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1172

Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1172

Error: (06/04/2014 11:42:11 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The specified object cannot be found. Specify the name of an existing object.  (HRESULT : 0x80040d06) (0x80040d06)
Search.TripoliIndexer

Error: (06/04/2014 08:06:51 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
    (HRESULT : 0x8e5e0210) (0x8e5e0210)
Search.TripoliIndexer

Error: (06/04/2014 08:06:50 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The content index catalog is corrupt.   0xc0041801 (0xc0041801)
The catalog is corrupt

Error: (06/04/2014 08:06:50 PM) (Source: Windows Search Service)(User: )
Description:
Details:
     0x8e5e0210 (0x8e5e0210)
4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)


CodeIntegrity Errors:
===================================
  Date: 2014-06-02 06:09:24.200
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:24.126
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.935
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.871
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.685
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.612
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.440
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.367
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:08:53.190
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:08:53.113
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


=========================== Installed Programs ============================

Adobe AIR (Version: 13.0.0.83)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Shockwave Player 12.0 (Version: 12.0.7.148)
Apple Application Support (Version: 3.0)
Apple Mobile Device Support (Version: 7.1.0.32)
Apple Software Update (Version: 2.1.3.127)
Belvedere 0.7.1 (Version: 0.7.1)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.14)
Conexant HD Audio (Version: 8.65.21.50)
CyberLink PhotoDirector 3 (Version: 3.0.1.4107)
CyberLink PowerDirector 10 (Version: 10.0.0.2810)
Defraggler (Version: 2.18)
Dependency Package Update (Version: 1.6.25.00)
Dolby Digital Plus Advanced Audio (Version: 7.3.2.2)
Dropbox (Version: 2.8.2)
Energy Management (Version: 8.0.2.14)
Google Chrome (Version: 35.0.1916.114)
Google Drive (Version: 1.15.6556.8063)
Google Update Helper (Version: 1.3.24.7)
Intel® Management Engine Components (Version: 9.5.13.1706)
Intel® Processor Graphics (Version: 10.18.10.3308)
Intel® Rapid Storage Technology (Version: 12.8.0.1016)
Intel® Trusted Connect Service Client (Version: 1.28.487.1)
iTunes (Version: 11.1.4.62)
Lenovo App Shop (Version: 3.10.0.45246.24)
Lenovo Dependency Package (Version: 1.6.25.00)
Lenovo EasyCamera (Version: 6.2.9200.10240)
Lenovo OneKey Recovery (Version: 8.0.0.2105)
Lenovo PowerDVD10 (Version: 10.0.5108.52)
Lenovo Solution Center (Version: 2.4.002.00)
Lenovo_Wireless_Driver (Version: 6.30.223.143)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Office (Version: 15.0.4454.1510)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 29.0.1 (x86 en-US) (Version: 29.0.1)
Mozilla Maintenance Service (Version: 29.0.1)
Nitro Pro 8 (Version: 8.5.6.5)
PicMonkey (Version: 1.0.0.50636)
Pixlr-o-Matic (Version: 1.0.0.50051)
Power2Go (Version: 5.6.0.10525)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.1.0.21)
Realtek Card Reader (Version: 6.2.9200.39048)
Speccy (Version: 1.26)
Spotify (Version: 1.1.0.48487)
Start Menu (Version: 0.269.2.430)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 17.0.14.0)
UserGuide (Version: 1.0.0.17)
Windows Driver Package - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (Version: 07/25/2013 10.30.0.288)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 8089.77 MB
Available physical RAM: 5567.65 MB
Total Pagefile: 16281.77 MB
Available Pagefile: 13673.64 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.48 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:891.32 GB) (Free:819.41 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS

========================= Users: ========================================

User accounts for \\SHANAELAPPY

Administrator            Guest                    ShanaeDawn               

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
 


  • 0

#4
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi :)

 

That's actually strange, MiniToolBox lists no minidump files. But it also listed some issues related to Microsoft Silverlight.

 

Let's try to uninstall it from the Control Panel and check out if the Blue Screens persist.

 

Keep me informed :)


  • 0

#5
Brennan C.

Brennan C.

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

Hi :)

 

That's actually strange, MiniToolBox lists no minidump files. But it also listed some issues related to Microsoft Silverlight.

 

Let's try to uninstall it from the Control Panel and check out if the Blue Screens persist.

 

Keep me informed :)

Will do; I've uninstalled Silverlight and will let you know what happens. If it turns out that Silverlight is the problem, is there an alternative? Will reinstalling it solve the problem? My fiancee watches a lot of Netflix, so going without won't fly for too long.


Edited by Brennan C., 05 June 2014 - 09:32 PM.

  • 0

#6
Brennan C.

Brennan C.

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

Also, the bluescreens are a rare symptom of this issue; usually it's just a total system seize for a minute or two. Still, I'll let you know if the seizures stop. 


  • 0

#7
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Hi both of you :)

First lets diagnose the issue. After we'll be sure what is this all about we'll try to dig for a solution.

Cheers,
Naat :)
  • 0

#8
Brennan C.

Brennan C.

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

Uninstalling Silverlight mitigated the issue for a little bit, but then it started occurring again. It seems every time we make some progress, it just reverts back to where we were. Any other suggestions?


  • 0

#9
Brennan C.

Brennan C.

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

We've got a new BSOD error: CRITICAL_PROCESS_DIED. Sounds pretty straightforward; is there any way to check to see what failed? 


  • 0

#10
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi and I'm terribly sorry for the delay here. Work with Malware here swallowed me alive.
 
I'm gonna need another MiniToolBox report, as previously. Also please provide me an additional report.

 

Please download Farbar Service Scanner by Farbar and save it on your desktop.
Run it by right-clicking the 51a5c8edc4692-icon1337952077.png icon and choosing Run as Administrator option.
(Users of Windows XP please just double-click).

  • Make sure the all options are checked!
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

  • 0

Advertisements


#11
Shanaedawn

Shanaedawn

    New Member

  • Member
  • Pip
  • 8 posts

MiniToolKit results follow:

MiniToolBox by Farbar  Version: 23-01-2014
Ran by ShanaeDawn (administrator) on 10-06-2014 at 08:32:58
Running from "C:\Users\ShanaeDawn\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wi-Fi (Connected)
Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30) = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : ShanaeLappy
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 82-56-F2-84-6C-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 80-56-F2-84-6C-95
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d123:f214:1aad:934d%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.11(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : June 10, 2014 8:31:32 AM
   Lease Expires . . . . . . . . . . : June 10, 2014 9:31:36 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 75519730
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-FD-64-F9-20-1A-06-35-98-63
   DNS Servers . . . . . . . . . . . : 64.59.160.15
                                       64.59.161.69
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : 20-1A-06-35-98-63
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{916734DF-6C83-4B10-BD74-B36341818CEC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:8c4:b07:b9bd:bee4(Preferred)
   Link-local IPv6 Address . . . . . : fe80::8c4:b07:b9bd:bee4%8(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 335544320
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-FD-64-F9-20-1A-06-35-98-63
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  nsc2.cv.gv.shawcable.net
Address:  64.59.160.15

Name:    google.com
Addresses:  2607:f8b0:400a:801::1000
      173.194.33.40
      173.194.33.32
      173.194.33.34
      173.194.33.41
      173.194.33.38
      173.194.33.36
      173.194.33.33
      173.194.33.39
      173.194.33.35
      173.194.33.46
      173.194.33.37


Pinging google.com [173.194.33.40] with 32 bytes of data:
Reply from 173.194.33.40: bytes=32 time=20ms TTL=56
Reply from 173.194.33.40: bytes=32 time=18ms TTL=56

Ping statistics for 173.194.33.40:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 18ms, Maximum = 20ms, Average = 19ms
Server:  nsc2.cv.gv.shawcable.net
Address:  64.59.160.15

Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=82ms TTL=49
Reply from 98.138.253.109: bytes=32 time=96ms TTL=50

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 82ms, Maximum = 96ms, Average = 89ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...82 56 f2 84 6c 95 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...80 56 f2 84 6c 95 ......Broadcom 802.11n Network Adapter
  3...20 1a 06 35 98 63 ......Qualcomm Atheros AR8172/8176/8178 PCI-E Fast Ethernet Controller (NDIS 6.30)
  1...........................Software Loopback Interface 1
  6...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  8...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.11     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.11    286
     192.168.0.11  255.255.255.255         On-link      192.168.0.11    286
    192.168.0.255  255.255.255.255         On-link      192.168.0.11    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.11    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.11    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  8    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  8    306 2001::/32                On-link
  8    306 2001:0:9d38:90d7:8c4:b07:b9bd:bee4/128
                                    On-link
  4    286 fe80::/64                On-link
  8    306 fe80::/64                On-link
  8    306 fe80::8c4:b07:b9bd:bee4/128
                                    On-link
  4    286 fe80::d123:f214:1aad:934d/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    286 ff00::/8                 On-link
  8    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3500

Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3500

Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/08/2014 08:27:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 29.0.1.5239, time stamp: 0x536995c2
Faulting module name: mozalloc.dll, version: 29.0.1.5239, time stamp: 0x536968fa
Exception code: 0x80000003
Fault offset: 0x0000119c
Faulting process id: 0xcf0
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (06/08/2014 05:19:28 PM) (Source: Application Error) (User: )
Description: Windows cannot access the file C:\Windows\System32\wersvc.dll for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Host Process for Windows Services because of this error.

Program: Host Process for Windows Services
File: C:\Windows\System32\wersvc.dll

The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
    - It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
    - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.

Additional Data
Error value: C0000185
Disk type: 3

Error: (06/08/2014 05:19:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe_WerSvc, version: 6.3.9600.16384, time stamp: 0x5215dfe3
Faulting module name: ntdll.dll, version: 6.3.9600.17031, time stamp: 0x530895af
Exception code: 0xc0000006
Fault offset: 0x000000000004b7e8
Faulting process id: 0x19c8
Faulting application start time: 0xsvchost.exe_WerSvc0
Faulting application path: svchost.exe_WerSvc1
Faulting module path: svchost.exe_WerSvc2
Report Id: svchost.exe_WerSvc3
Faulting package full name: svchost.exe_WerSvc4
Faulting package-relative application ID: svchost.exe_WerSvc5

Error: (06/07/2014 11:30:40 PM) (Source: Application Error) (User: )
Description: Faulting application name: googledrivesync.exe, version: 1.15.6556.8063, time stamp: 0x509418e4
Faulting module name: python27.dll, version: 2.7.6150.1013, time stamp: 0x534573a2
Exception code: 0xc000041d
Fault offset: 0x0007b8f5
Faulting process id: 0x1fc4
Faulting application start time: 0xgoogledrivesync.exe0
Faulting application path: googledrivesync.exe1
Faulting module path: googledrivesync.exe2
Report Id: googledrivesync.exe3
Faulting package full name: googledrivesync.exe4
Faulting package-relative application ID: googledrivesync.exe5

Error: (06/07/2014 11:30:40 PM) (Source: Application Error) (User: )
Description: Faulting application name: googledrivesync.exe, version: 1.15.6556.8063, time stamp: 0x509418e4
Faulting module name: python27.dll, version: 2.7.6150.1013, time stamp: 0x534573a2
Exception code: 0xc0000005
Fault offset: 0x0007b8f5
Faulting process id: 0x1fc4
Faulting application start time: 0xgoogledrivesync.exe0
Faulting application path: googledrivesync.exe1
Faulting module path: googledrivesync.exe2
Report Id: googledrivesync.exe3
Faulting package full name: googledrivesync.exe4
Faulting package-relative application ID: googledrivesync.exe5

Error: (06/07/2014 11:11:00 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (06/07/2014 11:09:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: ShanaeLappy)
Description: Activation of app Microsoft.BingWeather_8wekyb3d8bbwe!App failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.


System errors:
=============
Error: (06/10/2014 08:31:30 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\System32\bcmihvsrv64.dll
Error Code: 126

Error: (06/10/2014 08:31:23 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:16:50 AM on ?2014-?06-?10 was unexpected.

Error: (06/10/2014 08:16:57 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\System32\bcmihvsrv64.dll
Error Code: 126

Error: (06/10/2014 08:16:52 AM) (Source: BugCheck) (User: )
Description: 0x000000ef (0xffffe000bd83d900, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000)C:\windows\MEMORY.DMP061014-27140-01

Error: (06/10/2014 04:32:33 AM) (Source: DCOM) (User: ShanaeLappy)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/10/2014 04:32:03 AM) (Source: DCOM) (User: ShanaeLappy)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/09/2014 11:57:35 PM) (Source: Service Control Manager) (User: )
Description: The pcicsa.sys service failed to start due to the following error:
%%2

Error: (06/09/2014 11:57:34 AM) (Source: Service Control Manager) (User: )
Description: The pcicsa.sys service failed to start due to the following error:
%%2

Error: (06/09/2014 04:45:46 AM) (Source: DCOM) (User: ShanaeLappy)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/09/2014 04:45:13 AM) (Source: DCOM) (User: ShanaeLappy)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


Microsoft Office Sessions:
=========================
Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3500

Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3500

Error: (06/09/2014 04:10:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/08/2014 08:27:29 PM) (Source: Application Error)(User: )
Description: plugin-container.exe29.0.1.5239536995c2mozalloc.dll29.0.1.5239536968fa800000030000119ccf001cf8378832b3d01C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllfbb0238d-ef85-11e3-8279-201a06359863

Error: (06/08/2014 05:19:28 PM) (Source: Application Error)(User: )
Description: C:\Windows\System32\wersvc.dllHost Process for Windows ServicesC00001853

Error: (06/08/2014 05:19:28 PM) (Source: Application Error)(User: )
Description: svchost.exe_WerSvc6.3.9600.163845215dfe3ntdll.dll6.3.9600.17031530895afc0000006000000000004b7e819c801cf8377ae12d33eC:\windows\System32\svchost.exeC:\windows\SYSTEM32\ntdll.dllb7df7b60-ef6b-11e3-8279-201a06359863

Error: (06/07/2014 11:30:40 PM) (Source: Application Error)(User: )
Description: googledrivesync.exe1.15.6556.8063509418e4python27.dll2.7.6150.1013534573a2c000041d0007b8f51fc401cf82e3295009dfC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Users\SHANAE~1\AppData\Local\Temp\_MEI77682\python27.dll689e3fa4-eed6-11e3-8278-201a06359863

Error: (06/07/2014 11:30:40 PM) (Source: Application Error)(User: )
Description: googledrivesync.exe1.15.6556.8063509418e4python27.dll2.7.6150.1013534573a2c00000050007b8f51fc401cf82e3295009dfC:\Program Files (x86)\Google\Drive\googledrivesync.exeC:\Users\SHANAE~1\AppData\Local\Temp\_MEI77682\python27.dll684e8207-eed6-11e3-8278-201a06359863

Error: (06/07/2014 11:11:00 PM) (Source: Perflib)(User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (06/07/2014 11:09:50 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: ShanaeLappy)
Description: Microsoft.BingWeather_8wekyb3d8bbwe!App-2144927142


CodeIntegrity Errors:
===================================
  Date: 2014-06-02 06:09:24.200
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:24.126
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.935
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.871
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.685
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.612
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.440
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:09:23.367
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:08:53.190
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-06-02 06:08:53.113
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


=========================== Installed Programs ============================

Adobe AIR (Version: 13.0.0.83)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Shockwave Player 12.1 (Version: 12.1.2.152)
Apple Application Support (Version: 3.0)
Apple Mobile Device Support (Version: 7.1.0.32)
Apple Software Update (Version: 2.1.3.127)
Belvedere 0.7.1 (Version: 0.7.1)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.14)
Conexant HD Audio (Version: 8.65.21.50)
CyberLink PhotoDirector 3 (Version: 3.0.1.4107)
CyberLink PowerDirector 10 (Version: 10.0.0.2810)
Defraggler (Version: 2.18)
Dependency Package Update (Version: 1.6.25.00)
Dolby Digital Plus Advanced Audio (Version: 7.3.2.2)
Dropbox (Version: 2.8.2)
Energy Management (Version: 8.0.2.14)
Google Chrome (Version: 35.0.1916.114)
Google Drive (Version: 1.15.6556.8063)
Google Update Helper (Version: 1.3.24.7)
Intel® Management Engine Components (Version: 9.5.13.1706)
Intel® Processor Graphics (Version: 10.18.10.3308)
Intel® Rapid Storage Technology (Version: 12.8.0.1016)
Intel® Trusted Connect Service Client (Version: 1.28.487.1)
iTunes (Version: 11.1.4.62)
Lenovo App Shop (Version: 3.10.0.45246.24)
Lenovo Dependency Package (Version: 1.6.25.00)
Lenovo EasyCamera (Version: 6.2.9200.10240)
Lenovo OneKey Recovery (Version: 8.0.0.2105)
Lenovo PowerDVD10 (Version: 10.0.5108.52)
Lenovo Solution Center (Version: 2.4.002.00)
Lenovo_Wireless_Driver (Version: 6.30.223.143)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Office (Version: 15.0.4454.1510)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 29.0.1 (x86 en-US) (Version: 29.0.1)
Mozilla Maintenance Service (Version: 29.0.1)
Nitro Pro 8 (Version: 8.5.6.5)
PicMonkey (Version: 1.0.0.50636)
Pixlr-o-Matic (Version: 1.0.0.50051)
Power2Go (Version: 5.6.0.10525)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 2.1.0.21)
Realtek Card Reader (Version: 6.2.9200.39048)
Speccy (Version: 1.26)
Spotify (Version: 1.1.0.48487)
Start Menu (Version: 0.269.2.430)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 17.0.14.0)
System Requirements Lab for Intel (Version: 4.5.24.0)
UserGuide (Version: 1.0.0.17)
Windows Driver Package - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (Version: 07/25/2013 10.30.0.288)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 19%
Total physical RAM: 8089.77 MB
Available physical RAM: 6521.54 MB
Total Pagefile: 16281.77 MB
Available Pagefile: 14495.88 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.27 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:891.32 GB) (Free:815.9 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS

========================= Users: ========================================

User accounts for \\SHANAELAPPY

Administrator            Guest                    ShanaeDawn               

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

Farbar Service Scanner results follow:

 

Farbar Service Scanner Version: 09-06-2014
Ran by ShanaeDawn (administrator) on 10-06-2014 at 08:37:11
Running from "C:\Users\ShanaeDawn\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2014-04-11 20:52] - [2014-03-04 05:15] - 2519384 ____A (Microsoft Corporation) FEEFE783D87C9063CDAC6DBDCF95F533

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\wscsvc.dll
[2014-04-11 21:01] - [2014-02-22 01:52] - 0134144 ____A (Microsoft Corporation) 515583507D3828E827FF6352C9ACCEFA

C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


  • 0

#12
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi :)

 

Tell me how the CPU usage is when nothing is being launched? Isn't it higher than normally should be?


  • 0

#13
Brennan C.

Brennan C.

    Member

  • Topic Starter
  • Member
  • PipPip
  • 83 posts

I just checked the task manager with about 6 or 7 FF tabs open as well as iTunes, nothing loading or playing. CPU usage floated between 3-6%


  • 0

#14
Naathim

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Hi :)
 
Your reports don't indicate any problem about it and that's a little odd. I wonder if there isn't anything lurking in there...
 
Reboot your machine into Safe Mode with Networking (instructions below)
 
Try it out there.
 
 
How to enter the Safe Mode using MsConfig?

icon_exclaim.gif Save all your current work, entering the Safe Mode requires a reboot.
  • Push both Windows + R key - Run box should open.

  • Type in:
    msconfig
    and hit Enter.

    image39.png

  • Go to the Boot tab.

  • Put a check beside the Safe Boot option.
    Also make sure, that the Network option is active (not the Minimal one, as shown in picture below)!

    image40.png

  • You will be prompted to restart your machine. Accept it.

    image41.png

Your machine should boot into safe mode automatically.

icon_idea.gifTo boot into regular mode, these changes need to be reverted:
  • Open MsConfig as before.
  • Go to the Boot tab.
  • Uncheck the Safe Boot option.
  • Accept the reboot prompt.

  • 0

#15
Shanaedawn

Shanaedawn

    New Member

  • Member
  • Pip
  • 8 posts

We tried surfing around in Safe Mode + Networking for a while, made little difference to performance. I've noticed that when I randomly check the task manager that the Disk Usage runs at 100% for a minute or more before slowing down, with pretty much idle usage. Is that an indicator of anything?


  • 0






Similar Topics


Also tagged with one or more of these keywords: blue screen, bsod, slowdown, crash, irql_not_less_or_equal, firefox, chrome

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP