Hi,
DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
This is the general bug check code for fatal errors found by Driver Verifier.
Code:
1: kd> K
ChildEBP RetAddr
80699908 83f1a565 nt!KeBugCheckEx+0x1e
80699928 83f14773 nt!VerifierBugCheckIfAppropriate+0x32
80699944 83db848e nt!ViCheckDriverUnloading+0x82
8069995c 83db8898 nt!VerifierDriverUnloading+0x61
8069999c 83d7e1d1 nt!MmUnloadSystemImage+0x26a
806999b4 83e2ccb8 nt!IopDeleteDriver+0x38
806999d0 83ca8cf2 nt!ObpRemoveObjectRoutine+0x13d
806999f8 83d9fcd8 nt!ObfDereferenceObject+0xa1
80699bd4 83f8a24c nt!IopLoadDriver+0x942
80699c38 83f8a943 nt!IopInitializeSystemDrivers+0x1af
80699c94 83f8e3ea nt!IoInitSystem+0x62c
80699d74 83d8e018 nt!Phase1InitializationDiscard+0xb15
80699d7c 83de4609 nt!Phase1Initialization+0xd
80699dc0 83ccb56e nt!PspSystemThreadStartup+0x9d
00000000 00000000 nt!KiThreadStartup+0x16
Code:
1: kd> lmvm vsprtnt4
start end module name
95a8e000 95a9b8a0 vsprtnt4 T (no symbols)
Loaded symbol image file: vsprtnt4.sys
Image path: \SystemRoot\System32\DRIVERS\vsprtnt4.sys
Image name: vsprtnt4.sys
Timestamp: Wed May 28 10:20:44 2008 (483D6A3C)
vsprtnt4.sys is a Virtual Serial Port driver AFAIK. Please uninstall the software ASAP regarding this driver.
BAD_POOL_HEADER (19)
This indicates that a pool header is corrupt.
Code:
0: kd> k
ChildEBP RetAddr
80699524 838c5cb4 nt!KeBugCheckEx+0x1e
80699560 83920bf2 nt!ExpFindAndRemoveTagBigPages+0x1d5
806995d0 92879fa4 nt!ExFreePoolWithTag+0x145
WARNING: Stack unwind information not available. Following frames may be wrong.
80699800 92878eb2 avgldx86+0x5fa4
8069981c 928a17fb avgldx86+0x4eb2
806999f0 8399fb9b avgldx86+0x2d7fb
80699bd4 83b8a24c nt!IopLoadDriver+0x805
80699c38 83b8a943 nt!IopInitializeSystemDrivers+0x1af
80699c94 83b8e3ea nt!IoInitSystem+0x62c
80699d74 8398e018 nt!Phase1InitializationDiscard+0xb15
80699d7c 839e4609 nt!Phase1Initialization+0xd
80699dc0 838cb56e nt!PspSystemThreadStartup+0x9d
00000000 00000000 nt!KiThreadStartup+0x16
We can see
avgldx86.sys calls into the
nt!ExFreePoolWithTag routine which deallocates a block of pool memory allocated with the specified tag. We can see directly afterwards the bug check was called because the pool header of the freed block has been modified after it was freed, thus the reason I believe it was called twice in this instance.
avgldx86.sys is the AVG AVI Loader driver.
1. Remove and replace AVG with Microsoft Security Essentials for temporary troubleshooting purposes as it's very likely causing conflicts:
AVG removal - http://www.avg.com/us-en/utilities
MSE - Microsoft Security Essentials - Microsoft Windows
2. Ensure you have the latest video card drivers. If you are already on the latest video card drivers, uninstall and install a version or a few versions behind the latest to ensure it's not a latest driver only issue. If you have already experimented with the latest video card driver and many previous versions, please give the beta driver for your card a try.
3. Uninstall ArcSoft ASAP.
Regards,
Patrick
Thank you kindly for your response. Unfortunately, I find that removal of the items you advised is going to be a challenge.
The Bad Pool Header BSOD was a crisis I dealt with last weekend, actually. Vista would not load at all except in safe mode. After doing some research I determined that the cause of the problem might have involved AVG (I had previously had both AVG Internet Security 2013 - paid version - and the free version of AVG 2014 installed).
I read a post somewhere that led me to believe a hardware failure of some kind had caused another user's free AVG product to ultimately cause the BSOD. Since I too had recently replaced my system's memory (one of 2 long-installed 2GB memory failed), I thought the coincidence was too great to ignore.
When I uninstalled my AVG product (using both the Control Panel and uninstallation tools), my system booted up without further issue and no BSOD. I thought I'd solved it. Unfortunately the same sort of thing happened when I subsequently replaced AVG with Avast's PAID product. Only a day or two later I uninstalled Avast (much easier to do, from what I can tell), and I was without significant errors until this weekend. And I did in fact choose Microsoft Security Essentials as my new antivirus product. I am using it now and was using it when the new BSOD reared its head.
I had already run the AVG removal tool (after confirming with AVG that it was the correct tool to use with my software and system) multiple times, and I did so again after reading your post. For whatever reason, I still can find drivers/registry entries that appear to be from AVG. Since I am my own worst enemy when it comes to computers, I have resisted the temptation to simply delete the various files, folders, and registry entries...mostly for fear that I would cause irreparable harm.
Your reference to "vsprtnt4.sys" is a new one for me, but I figured out what it is. It belongs to "HW Virtual Serial Port" by ELTIMA Software that I have no memory of installing. The package lives in a folder called "HW Group." Unfortunately, when I attempt to uninstall this software using Control Panel or any uninstallation tool I have, I get the following error: File "C:\Program Files\HW group\HW VSP3s\unins000.dat" does not exist. Cannot uninstall.
Haven't tried uninstalling ArcSoft yet, but if my luck holds, I have no doubt it won't be easy.
So I am not sure how to follow your direction. Any ideas?
I booted my PC this morning and did not get another BSOD, however I got a COM shutdown error soon afterwards and I looked it up in Event Viewer, and it appears my problems are still here.
The following boot-start or system-start driver(s) failed to load:
ArcCtrl
crcdisk
Lbd
VSPD6
Help.
JacquieDV
