« previous next »
Pages: [1]

Author Topic: rimssn64.sys BSOD  (Read 6727 times)

0 Members and 1 Guest are viewing this topic.

October 26, 2015, 04:00:16 PM

catalan

  • Newbie
  • Offline
  • *
  • 3
  • Reputation:
    0
    • View Profile
rimssn64.sys BSOD
« on: October 26, 2015, 04:00:16 PM »
I have BSOD rimssn64.sys everytime at about 86% from the past 3-4 updates. I'm using the latest free version, still BSOD. I have Vista 64. Am i got infected by a virus or is this a common crash? Thank you
Logged
Reply #1October 26, 2015, 04:14:54 PM

Curson

  • Global Moderator
  • Hero Member
  • Offline
  • *****
  • 2809
  • Reputation:
    100
    • View Profile
Re: rimssn64.sys BSOD
« Reply #1 on: October 26, 2015, 04:14:54 PM »
Hi catalan,

Welcome to Adlice.com Forum.

Quote from: catalan
I have BSOD rimssn64.sys everytime at about 86% from the past 3-4 updates.
I'm sorry, but I don't get it. Could you please try to be more specific in your explanations ?

Quote from: catalan
Am i got infected by a virus or is this a common crash?
Old versions of rimssn64.sys driver are known to cause BSOD.
Please update your Ricoh Memorystick Controller driver.

Regards.
Logged
Reply #2October 28, 2015, 01:29:13 AM

catalan

  • Newbie
  • Offline
  • *
  • 3
  • Reputation:
    0
    • View Profile
Re: rimssn64.sys BSOD
« Reply #2 on: October 28, 2015, 01:29:13 AM »
Thanks for the reply, somehow I tried it again and no more crash @@ (I didnt update the driver btw). Thanks
Logged
Reply #3October 28, 2015, 04:53:06 AM

catalan

  • Newbie
  • Offline
  • *
  • 3
  • Reputation:
    0
    • View Profile
Re: rimssn64.sys BSOD
« Reply #3 on: October 28, 2015, 04:53:06 AM »
Is this safe, those Hook.IEAT ? Thank you




RogueKiller V10.11.3.0 (x64) [Oct 26 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Started in : Normal mode
User : cuong [Administrator]
Started from : C:\Users\cuong\Desktop\roguekillerx64_2.exe
Mode : Scan -- Date : 10/27/2015 23:50:08

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 30 (Driver: Loaded) ¤¤¤
[IAT:Inl(Hook.IEAT)] (explorer.exe) ntdll!NtSetSystemInformation : Unknown @ 0x770201e0 (jmp 0x147f90|jmp 0xfffffffffffffe19|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenProcess : Unknown @ 0x77020360 (jmp 0x149520|jmp 0xfffffffffffffc99|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtQueryObject : Unknown @ 0x77020440 (jmp 0x149760|jmp 0xfffffffffffffbb9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateSection : Unknown @ 0x77020300 (jmp 0x149280|jmp 0xfffffffffffffcf9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateIoCompletion : Unknown @ 0x77020340 (jmp 0x148de0|jmp 0xfffffffffffffcb9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenSection : Unknown @ 0x77020310 (jmp 0x1493c0|jmp 0xfffffffffffffce9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtDuplicateObject : Unknown @ 0x77020380 (jmp 0x1493e0|jmp 0xfffffffffffffc79|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateEvent : Unknown @ 0x770202c0 (jmp 0x149260|jmp 0xfffffffffffffd39|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtWriteVirtualMemory : Unknown @ 0x770203a0 (jmp 0x149420|jmp 0xfffffffffffffc59|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtTerminateProcess : Unknown @ 0x770203d0 (jmp 0x149530|jmp 0xfffffffffffffc29|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtAssignProcessToJobObject : Unknown @ 0x77020390 (jmp 0x148f30|jmp 0xfffffffffffffc69|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenEvent : Unknown @ 0x770202d0 (jmp 0x1492f0|jmp 0xfffffffffffffd29|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateSemaphore : Unknown @ 0x770202a0 (jmp 0x148c60|jmp 0xfffffffffffffd59|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenSemaphore : Unknown @ 0x770202b0 (jmp 0x148750|jmp 0xfffffffffffffd49|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateMutant : Unknown @ 0x77020280 (jmp 0x148cc0|jmp 0xfffffffffffffd79|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenMutant : Unknown @ 0x77020290 (jmp 0x148780|jmp 0xfffffffffffffd69|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateTimer : Unknown @ 0x77020320 (jmp 0x148cb0|jmp 0xfffffffffffffcd9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenTimer : Unknown @ 0x77020330 (jmp 0x148790|jmp 0xfffffffffffffcc9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtCreateThreadEx : Unknown @ 0x770203c0 (jmp 0x148d60|jmp 0xfffffffffffffc39|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtTerminateThread : Unknown @ 0x770203e0 (jmp 0x1492d0|jmp 0xfffffffffffffc19|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtOpenThread : Unknown @ 0x77020370 (jmp 0x1487e0|jmp 0xfffffffffffffc89|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtSetContextThread : Unknown @ 0x770203f0 (jmp 0x148350|jmp 0xfffffffffffffc09|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtSuspendThread : Unknown @ 0x77020420 (jmp 0x1480f0|jmp 0xfffffffffffffbd9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ kernel32.dll) ntdll!NtQueueApcThread : Unknown @ 0x77020430 (jmp 0x149400|jmp 0xfffffffffffffbc9|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ advapi32.dll) ntdll!NtNotifyChangeKey : Unknown @ 0x77020480 (jmp 0x1489f0|jmp 0xfffffffffffffb79|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ advapi32.dll) ntdll!NtNotifyChangeMultipleKeys : Unknown @ 0x77020490 (jmp 0x1489f0|jmp 0xfffffffffffffb69|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ rpcrt4.dll) ntdll!NtAlpcSendWaitReceivePort : Unknown @ 0x77020470 (jmp 0x149040|jmp 0xfffffffffffffb89|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ gdi32.dll) ntdll!NtVdmControl : Unknown @ 0x77020270 (jmp 0x147e60|jmp 0xfffffffffffffd89|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ ws2_32.dll) ntdll!NtLoadDriver : Unknown @ 0x770201d0 (jmp 0x148830|jmp 0xfffffffffffffe29|jmp 0x19b)
[IAT:Inl(Hook.IEAT)] (explorer.exe @ ntmarta.dll) ntdll!NtOpenEventPair : Unknown @ 0x770202f0 (jmp 0x148830|jmp 0xfffffffffffffd09|jmp 0x19b)

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0:  +++++
--- User ---
[MBR] 6da606cc139238b00c084b989539f815
[BSP] 10a21f0f1162e09520ccc1603bbb7694 : HP MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10348 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 21194752 | Size: 294895 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1:  +++++
Error reading User MBR! ([15] The device is not ready. )
Error reading LL1 MBR! ([32] The request is not supported. )
Error reading LL2 MBR! ([32] The request is not supported. )

+++++ PhysicalDrive2:  +++++
Error reading User MBR! ([15] The device is not ready. )
Error reading LL1 MBR! NOT VALID!
Error reading LL2 MBR! ([32] The request is not supported. )
Logged
Reply #4October 28, 2015, 09:37:42 PM

Curson

  • Global Moderator
  • Hero Member
  • Offline
  • *****
  • 2809
  • Reputation:
    100
    • View Profile
Re: rimssn64.sys BSOD
« Reply #4 on: October 28, 2015, 09:37:42 PM »
Hi catalan

Quote from: catalan
Thanks for the reply, somehow I tried it again and no more crash @@ (I didnt update the driver btw). Thanks
I'm glad to read this. You are welcome.

Quote from: catalan
Is this safe, those Hook.IEAT ? Thank you
Yes, they are perfectly safe.

Regards.
Logged
Pages: [1]
« previous next »