Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Bluescreen after being on line a while


  • Please log in to reply
16 replies to this topic

#1 Astralwitch

Astralwitch

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 05 February 2010 - 05:59 AM

I have been getting bluescreened for a few days. It happens with Mozilla and Internet Explorer. I downloaded Bluescreen wiew after reading another post that is similar. Here is the report from the latest bluescreen. Any help would be greatly appreciated. Thank you.

==================================================
Dump File : Mini020510-02.dmp
Crash Time : 5/02/2010 8:47:50 PM
Bug Check String : IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x0000000a
Parameter 1 : 0xbabffff4
Parameter 2 : 0x00000002
Parameter 3 : 0x00000001
Parameter 4 : 0x81e9acbd
Caused By Driver : SYMEVENT.SYS
Caused By Address : SYMEVENT.SYS+d22f
File Description : Symantec Event Library
Product Name : SYMEVENT
Company : Symantec Corporation
File Version : 12.5.3.2
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020510-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

==================================================
Dump File : Mini020510-01.dmp
Crash Time : 5/02/2010 7:09:20 PM
Bug Check String : PFN_LIST_CORRUPT
Bug Check Code : 0x0000004e
Parameter 1 : 0x00000099
Parameter 2 : 0x000b4c88
Parameter 3 : 0x00000002
Parameter 4 : 0x000118f7
Caused By Driver : hal.dll
Caused By Address : hal.dll+7721
File Description : Hardware Abstraction Layer DLL
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020510-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

BC AdBot (Login to Remove)

 


#2 ratchet48

ratchet48

  • Members
  • 207 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Western US
  • Local time:06:12 PM

Posted 05 February 2010 - 07:25 AM

Welcome to BC.

Are you using Symantec End Point Protection 11?

Blue screen error in Windows 7 or Windows Vista after installing Symantec Endpoint Protection version 11 RU5 Application and Device Control

#3 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 05 February 2010 - 09:03 AM

Hi,
No I am using Symantec Corporate 10.2.1.1000 and have been for several tears with no pronlems. I was just blued again and this is the latest one. Thanks for helping me. It is past midnight so will check in tomorrow.
==================================================
Dump File : Mini020510-03.dmp
Crash Time : 5/02/2010 11:49:42 PM
Bug Check String : PFN_LIST_CORRUPT
Bug Check Code : 0x0000004e
Parameter 1 : 0x0000008d
Parameter 2 : 0x000794db
Parameter 3 : 0x00400000
Parameter 4 : 0xbe65c439
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb0d
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18082 (vistasp2_gdr.090803-2339)
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020510-03.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

==================================================
Dump File : Mini020510-02.dmp
Crash Time : 5/02/2010 8:47:50 PM
Bug Check String : IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x0000000a
Parameter 1 : 0xbabffff4
Parameter 2 : 0x00000002
Parameter 3 : 0x00000001
Parameter 4 : 0x81e9acbd
Caused By Driver : SYMEVENT.SYS
Caused By Address : SYMEVENT.SYS+d22f
File Description : Symantec Event Library
Product Name : SYMEVENT
Company : Symantec Corporation
File Version : 12.5.3.2
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020510-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

==================================================
Dump File : Mini020510-01.dmp
Crash Time : 5/02/2010 7:09:20 PM
Bug Check String : PFN_LIST_CORRUPT
Bug Check Code : 0x0000004e
Parameter 1 : 0x00000099
Parameter 2 : 0x000b4c88
Parameter 3 : 0x00000002
Parameter 4 : 0x000118f7
Caused By Driver : hal.dll
Caused By Address : hal.dll+7721
File Description : Hardware Abstraction Layer DLL
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020510-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 05 February 2010 - 12:25 PM

Reinstall Norton (Symantec).

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 bajoplayer

bajoplayer

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 05 February 2010 - 01:48 PM

i had the same problem before on my laptop it was the hard drive it gave out had to re in stall a new one

#6 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 05 February 2010 - 07:34 PM

I have reinstalled Symantec but now I cant get it to go passed " Downloading Avenge Microdefs25 SavCorp 10.2 (1 of 2 complete) " Any ideas?
Thank you

#7 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 05 February 2010 - 08:27 PM

I tell you your best option - get rid of Norton altogether. It's really bad piece of software.
Make sure to use Norton Removal Tool: http://service1.symantec.com/Support/tsgen...005033108162039

Free and excellent tools, which I use myself:

- Avira free antivirus: http://www.free-av.com/en/download/1/avira..._antivirus.html
- Avast! free antivirus: http://www.avast.com/eng/download-avast-home.html

- free Comodo Internet Security (firewall + AV): http://www.personalfirewall.comodo.com/
NOTE. During installation, Comodo will also allow you to install AV only, or firewall only, if you prefer to combine one Comodo product with some other product.

If you decide to install Avast, or Avira, make sure, Windows firewall is turned on, or use Comodo firewall..
If you decide to install Comodo Internet Security, or just Comodo firewall, make sure, Windows firewall is turned off.

IMPORTANT! Make sure, you use only ONE antivirus, and ONE firewall.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#8 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 06 February 2010 - 01:03 AM

Have done as you said Broni and installed Avira, made sure windows firewall is turned on. Ran a full scan and came up with TR/Dropper.Gen Trojan which is quarantined. Last crash report.
==================================================
Filename : ntkrnlpa.exe
Address In Stack : ntkrnlpa.exe+5fb48
From Address : 0x81e3b000
To Address : 0x821f4000
Size : 0x003b9000
Time Stamp : 0x4a77feb3
Time String : 4/08/2009 7:26:11 PM
Product Name : Microsoft® Windows® Operating System
File Description : NT Kernel & System
File Version : 6.0.6002.18082 (vistasp2_gdr.090803-2339)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\ntkrnlpa.exe
==================================================

==================================================
Filename : hal.dll
Address In Stack :
From Address : 0x81e08000
To Address : 0x81e3b000
Size : 0x00033000
Time Stamp : 0x49e018d9
Time String : 11/04/2009 2:13:13 PM
Product Name : Microsoft® Windows® Operating System
File Description : Hardware Abstraction Layer DLL
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\hal.dll
==================================================

==================================================
Filename : kdcom.dll
Address In Stack :
From Address : 0x80405000
To Address : 0x8040c000
Size : 0x00007000
Time Stamp : 0x49e037d9
Time String : 11/04/2009 4:25:29 PM
Product Name : Microsoft® Windows® Operating System
File Description : Kernel Debugger HW Extension DLL
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\kdcom.dll
==================================================

==================================================
Filename : PSHED.dll
Address In Stack :
From Address : 0x8040c000
To Address : 0x8041d000
Size : 0x00011000
Time Stamp : 0x49e037dc
Time String : 11/04/2009 4:25:32 PM
Product Name : Microsoft® Windows® Operating System
File Description : Platform Specific Hardware Error Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\PSHED.dll
==================================================

==================================================
Filename : BOOTVID.dll
Address In Stack :
From Address : 0x8041d000
To Address : 0x80425000
Size : 0x00008000
Time Stamp : 0x4791a653
Time String : 19/01/2008 5:27:15 PM
Product Name : Microsoft® Windows® Operating System
File Description : VGA Boot Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\BOOTVID.dll
==================================================

==================================================
Filename : CLFS.SYS
Address In Stack :
From Address : 0x80425000
To Address : 0x80466000
Size : 0x00041000
Time Stamp : 0x49e018ff
Time String : 11/04/2009 2:13:51 PM
Product Name : Microsoft® Windows® Operating System
File Description : Common Log File System Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\CLFS.SYS
==================================================

==================================================
Filename : CI.dll
Address In Stack :
From Address : 0x80466000
To Address : 0x80546000
Size : 0x000e0000
Time Stamp : 0x49e037d2
Time String : 11/04/2009 4:25:22 PM
Product Name : Microsoft® Windows® Operating System
File Description : Code Integrity Module
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\CI.dll
==================================================

==================================================
Filename : Wdf01000.sys
Address In Stack :
From Address : 0x80546000
To Address : 0x805c2000
Size : 0x0007c000
Time Stamp : 0x47919015
Time String : 19/01/2008 3:52:21 PM
Product Name : Microsoft® Windows® Operating System
File Description : WDF Dynamic
File Version : 1.7.6001.0 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Wdf01000.sys
==================================================

==================================================
Filename : WDFLDR.SYS
Address In Stack :
From Address : 0x805c2000
To Address : 0x805cf000
Size : 0x0000d000
Time Stamp : 0x47919013
Time String : 19/01/2008 3:52:19 PM
Product Name : Microsoft® Windows® Operating System
File Description : WDFLDR
File Version : 1.7.6001.0 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\WDFLDR.SYS
==================================================

==================================================
Filename : acpi.sys
Address In Stack :
From Address : 0x8060e000
To Address : 0x80654000
Size : 0x00046000
Time Stamp : 0x49e01a37
Time String : 11/04/2009 2:19:03 PM
Product Name : Microsoft® Windows® Operating System
File Description : ACPI Driver for NT
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\acpi.sys
==================================================

==================================================
Filename : WMILIB.SYS
Address In Stack :
From Address : 0x80654000
To Address : 0x8065d000
Size : 0x00009000
Time Stamp : 0x47919044
Time String : 19/01/2008 3:53:08 PM
Product Name : Microsoft® Windows® Operating System
File Description : WMILIB WMI support library Dll
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\WMILIB.SYS
==================================================

==================================================
Filename : msisadrv.sys
Address In Stack :
From Address : 0x8065d000
To Address : 0x80665000
Size : 0x00008000
Time Stamp : 0x47918b83
Time String : 19/01/2008 3:32:51 PM
Product Name : Microsoft® Windows® Operating System
File Description : ISA Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\msisadrv.sys
==================================================

==================================================
Filename : pci.sys
Address In Stack :
From Address : 0x80665000
To Address : 0x8068c000
Size : 0x00027000
Time Stamp : 0x49e01a44
Time String : 11/04/2009 2:19:16 PM
Product Name : Microsoft® Windows® Operating System
File Description : NT Plug and Play PCI Enumerator
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\pci.sys
==================================================

==================================================
Filename : partmgr.sys
Address In Stack :
From Address : 0x8068c000
To Address : 0x8069b000
Size : 0x0000f000
Time Stamp : 0x49e01ef7
Time String : 11/04/2009 2:39:19 PM
Product Name : Microsoft® Windows® Operating System
File Description : Partition Management Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\partmgr.sys
==================================================

==================================================
Filename : volmgr.sys
Address In Stack :
From Address : 0x8069b000
To Address : 0x806aa000
Size : 0x0000f000
Time Stamp : 0x47918f7f
Time String : 19/01/2008 3:49:51 PM
Product Name : Microsoft® Windows® Operating System
File Description : Volume Manager Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\volmgr.sys
==================================================

==================================================
Filename : volmgrx.sys
Address In Stack :
From Address : 0x806aa000
To Address : 0x806f4000
Size : 0x0004a000
Time Stamp : 0x49e01efd
Time String : 11/04/2009 2:39:25 PM
Product Name : Microsoft® Windows® Operating System
File Description : Volume Manager Extension Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\volmgrx.sys
==================================================

==================================================
Filename : pciide.sys
Address In Stack :
From Address : 0x806f4000
To Address : 0x806fb000
Size : 0x00007000
Time Stamp : 0x49e01eee
Time String : 11/04/2009 2:39:10 PM
Product Name : Microsoft® Windows® Operating System
File Description : Generic PCI IDE Bus Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\pciide.sys
==================================================

==================================================
Filename : PCIIDEX.SYS
Address In Stack :
From Address : 0x806fb000
To Address : 0x80709000
Size : 0x0000e000
Time Stamp : 0x49e01eed
Time String : 11/04/2009 2:39:09 PM
Product Name : Microsoft® Windows® Operating System
File Description : PCI IDE Bus Driver Extension
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\PCIIDEX.SYS
==================================================

==================================================
Filename : mountmgr.sys
Address In Stack :
From Address : 0x80709000
To Address : 0x80719000
Size : 0x00010000
Time Stamp : 0x47918f59
Time String : 19/01/2008 3:49:13 PM
Product Name : Microsoft® Windows® Operating System
File Description : Mount Point Manager
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mountmgr.sys
==================================================

==================================================
Filename : atapi.sys
Address In Stack :
From Address : 0x80719000
To Address : 0x80721000
Size : 0x00008000
Time Stamp : 0x49e01eed
Time String : 11/04/2009 2:39:09 PM
Product Name : Microsoft® Windows® Operating System
File Description : ATAPI IDE Miniport Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\atapi.sys
==================================================

==================================================
Filename : ataport.SYS
Address In Stack :
From Address : 0x80721000
To Address : 0x8073f000
Size : 0x0001e000
Time Stamp : 0x49e01eee
Time String : 11/04/2009 2:39:10 PM
Product Name : Microsoft® Windows® Operating System
File Description : ATAPI Driver Extension
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ataport.SYS
==================================================

==================================================
Filename : nvstor32.sys
Address In Stack :
From Address : 0x8073f000
To Address : 0x8075c000
Size : 0x0001d000
Time Stamp : 0x472236e8
Time String : 27/10/2007 4:50:16 AM
Product Name : NVIDIA nForce™ SATA Driver
File Description : NVIDIA® nForce™ Sata Performance Driver
File Version : 9.99.0.4 built by: WinDDK
Company : NVIDIA Corporation
Full Path : C:\Windows\system32\drivers\nvstor32.sys
==================================================

==================================================
Filename : storport.sys
Address In Stack :
From Address : 0x8075c000
To Address : 0x8079d000
Size : 0x00041000
Time Stamp : 0x49e01ef7
Time String : 11/04/2009 2:39:19 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Storage Port Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\storport.sys
==================================================

==================================================
Filename : fltmgr.sys
Address In Stack :
From Address : 0x8079d000
To Address : 0x807cf000
Size : 0x00032000
Time Stamp : 0x49e01907
Time String : 11/04/2009 2:13:59 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Filesystem Filter Manager
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\fltmgr.sys
==================================================

==================================================
Filename : fileinfo.sys
Address In Stack :
From Address : 0x807cf000
To Address : 0x807df000
Size : 0x00010000
Time Stamp : 0x47918be3
Time String : 19/01/2008 3:34:27 PM
Product Name : Microsoft® Windows® Operating System
File Description : FileInfo Filter Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\fileinfo.sys
==================================================

==================================================
Filename : ksecdd.sys
Address In Stack :
From Address : 0x89e0e000
To Address : 0x89e7f000
Size : 0x00071000
Time Stamp : 0x4a364335
Time String : 15/06/2009 10:48:53 PM
Product Name : Microsoft® Windows® Operating System
File Description : Kernel Security Support Provider Interface
File Version : 6.0.6002.18051 (vistasp2_gdr.090615-0258)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ksecdd.sys
==================================================

==================================================
Filename : ndis.sys
Address In Stack :
From Address : 0x89e7f000
To Address : 0x89f8a000
Size : 0x0010b000
Time Stamp : 0x49e02080
Time String : 11/04/2009 2:45:52 PM
Product Name : Microsoft® Windows® Operating System
File Description : NDIS 6.0 wrapper driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ndis.sys
==================================================

==================================================
Filename : msrpc.sys
Address In Stack :
From Address : 0x89f8a000
To Address : 0x89fb5000
Size : 0x0002b000
Time Stamp : 0x49e01e8c
Time String : 11/04/2009 2:37:32 PM
Product Name : Microsoft® Windows® Operating System
File Description : Kernel Remote Procedure Call Provider
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\msrpc.sys
==================================================

==================================================
Filename : NETIO.SYS
Address In Stack :
From Address : 0x89fb5000
To Address : 0x89ff0000
Size : 0x0003b000
Time Stamp : 0x49e0209d
Time String : 11/04/2009 2:46:21 PM
Product Name : Microsoft® Windows® Operating System
File Description : Network I/O Subsystem
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\NETIO.SYS
==================================================

==================================================
Filename : tcpip.sys
Address In Stack :
From Address : 0x8a008000
To Address : 0x8a0f2000
Size : 0x000ea000
Time Stamp : 0x4a856b4a
Time String : 14/08/2009 11:48:58 PM
Product Name : Microsoft® Windows® Operating System
File Description : TCP/IP Driver
File Version : 6.0.6002.18091 (vistasp2_gdr.090814-0321)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\tcpip.sys
==================================================

==================================================
Filename : fwpkclnt.sys
Address In Stack :
From Address : 0x8a0f2000
To Address : 0x8a10d000
Size : 0x0001b000
Time Stamp : 0x49e02076
Time String : 11/04/2009 2:45:42 PM
Product Name : Microsoft® Windows® Operating System
File Description : FWP/IPsec Kernel-Mode API
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\fwpkclnt.sys
==================================================

==================================================
Filename : Ntfs.sys
Address In Stack :
From Address : 0x8a203000
To Address : 0x8a313000
Size : 0x00110000
Time Stamp : 0x49e0192a
Time String : 11/04/2009 2:14:34 PM
Product Name : Microsoft® Windows® Operating System
File Description : NT File System Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Ntfs.sys
==================================================

==================================================
Filename : volsnap.sys
Address In Stack :
From Address : 0x8a313000
To Address : 0x8a34c000
Size : 0x00039000
Time Stamp : 0x49e01f09
Time String : 11/04/2009 2:39:37 PM
Product Name : Microsoft® Windows® Operating System
File Description : Volume Shadow Copy Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\volsnap.sys
==================================================

==================================================
Filename : spldr.sys
Address In Stack :
From Address : 0x8a34c000
To Address : 0x8a354000
Size : 0x00008000
Time Stamp : 0x467b17dd
Time String : 22/06/2007 10:29:17 AM
Product Name : Microsoft® Windows® Operating System
File Description : loader for security processor
File Version : 6.0.6001.16606 (lh_security(sepbld-s).070621-1657)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\spldr.sys
==================================================

==================================================
Filename : mup.sys
Address In Stack :
From Address : 0x8a354000
To Address : 0x8a363000
Size : 0x0000f000
Time Stamp : 0x49e01914
Time String : 11/04/2009 2:14:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : Multiple UNC Provider driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mup.sys
==================================================

==================================================
Filename : ecache.sys
Address In Stack :
From Address : 0x8a363000
To Address : 0x8a38a000
Size : 0x00027000
Time Stamp : 0x49e01f2c
Time String : 11/04/2009 2:40:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : Special Memory Device Cache
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ecache.sys
==================================================

==================================================
Filename : disk.sys
Address In Stack :
From Address : 0x8a38a000
To Address : 0x8a39b000
Size : 0x00011000
Time Stamp : 0x49e01ef2
Time String : 11/04/2009 2:39:14 PM
Product Name : Microsoft® Windows® Operating System
File Description : PnP Disk Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\disk.sys
==================================================

==================================================
Filename : CLASSPNP.SYS
Address In Stack :
From Address : 0x8a39b000
To Address : 0x8a3bc000
Size : 0x00021000
Time Stamp : 0x49e01ee9
Time String : 11/04/2009 2:39:05 PM
Product Name : Microsoft® Windows® Operating System
File Description : SCSI Class System Dll
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\CLASSPNP.SYS
==================================================

==================================================
Filename : crcdisk.sys
Address In Stack :
From Address : 0x8a3bc000
To Address : 0x8a3c5000
Size : 0x00009000
Time Stamp : 0x4549b1cb
Time String : 2/11/2006 6:52:27 PM
Product Name : Microsoft® Windows® Operating System
File Description : Disk Block Verification Filter Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\crcdisk.sys
==================================================

==================================================
Filename : tunnel.sys
Address In Stack :
From Address : 0x8a10d000
To Address : 0x8a118000
Size : 0x0000b000
Time Stamp : 0x479190e6
Time String : 19/01/2008 3:55:50 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Tunnel Interface Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\tunnel.sys
==================================================

==================================================
Filename : tunmp.sys
Address In Stack :
From Address : 0x8a118000
To Address : 0x8a121000
Size : 0x00009000
Time Stamp : 0x479190dc
Time String : 19/01/2008 3:55:40 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Tunnel Interface Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\tunmp.sys
==================================================

==================================================
Filename : amdk8.sys
Address In Stack :
From Address : 0x8a121000
To Address : 0x8a131000
Size : 0x00010000
Time Stamp : 0x47918a38
Time String : 19/01/2008 3:27:20 PM
Product Name : Microsoft® Windows® Operating System
File Description : Processor Device Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\amdk8.sys
==================================================

==================================================
Filename : usbohci.sys
Address In Stack :
From Address : 0x8a131000
To Address : 0x8a13b000
Size : 0x0000a000
Time Stamp : 0x49e01fcc
Time String : 11/04/2009 2:42:52 PM
Product Name : Microsoft® Windows® Operating System
File Description : OHCI USB Miniport Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\usbohci.sys
==================================================

==================================================
Filename : USBPORT.SYS
Address In Stack :
From Address : 0x8a13b000
To Address : 0x8a179000
Size : 0x0003e000
Time Stamp : 0x49e01fcf
Time String : 11/04/2009 2:42:55 PM
Product Name : Microsoft® Windows® Operating System
File Description : USB 1.1 & 2.0 Port Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\USBPORT.SYS
==================================================

==================================================
Filename : usbehci.sys
Address In Stack :
From Address : 0x8a179000
To Address : 0x8a188000
Size : 0x0000f000
Time Stamp : 0x49e01fcc
Time String : 11/04/2009 2:42:52 PM
Product Name : Microsoft® Windows® Operating System
File Description : EHCI eUSB Miniport Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\usbehci.sys
==================================================

==================================================
Filename : ohci1394.sys
Address In Stack :
From Address : 0x8a188000
To Address : 0x8a197300
Size : 0x0000f300
Time Stamp : 0x49e01fd8
Time String : 11/04/2009 2:43:04 PM
Product Name : Microsoft® Windows® Operating System
File Description : 1394 OpenHCI Port Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ohci1394.sys
==================================================

==================================================
Filename : 1394BUS.SYS
Address In Stack :
From Address : 0x8a198000
To Address : 0x8a1a5080
Size : 0x0000d080
Time Stamp : 0x47919057
Time String : 19/01/2008 3:53:27 PM
Product Name : Microsoft® Windows® Operating System
File Description : 1394 Bus Device Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\1394BUS.SYS
==================================================

==================================================
Filename : HDAudBus.sys
Address In Stack :
From Address : 0x8dc06000
To Address : 0x8dc93000
Size : 0x0008d000
Time Stamp : 0x49e01fc1
Time String : 11/04/2009 2:42:41 PM
Product Name : Microsoft® Windows® Operating System
File Description : High Definition Audio Bus Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\HDAudBus.sys
==================================================

==================================================
Filename : nvmfdx32.sys
Address In Stack :
From Address : 0x8dc93000
To Address : 0x8dd92600
Size : 0x000ff600
Time Stamp : 0x489357fd
Time String : 2/08/2008 4:37:49 AM
Product Name : NVIDIA Networking Driver
File Description : NVIDIA MCP Networking Function Driver.
File Version : 1.00.01.06789
Company : NVIDIA Corporation
Full Path : C:\Windows\system32\drivers\nvmfdx32.sys
==================================================

==================================================
Filename : cdrom.sys
Address In Stack :
From Address : 0x8dd93000
To Address : 0x8ddab000
Size : 0x00018000
Time Stamp : 0x49e01ef5
Time String : 11/04/2009 2:39:17 PM
Product Name : Microsoft® Windows® Operating System
File Description : SCSI CD-ROM Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\cdrom.sys
==================================================

==================================================
Filename : nvlddmkm.sys
Address In Stack :
From Address : 0x8e00d000
To Address : 0x8e9634a0
Size : 0x009564a0
Time Stamp : 0x4a85ede2
Time String : 15/08/2009 9:06:10 AM
Product Name : NVIDIA Windows Kernel Mode Driver, Version 186.76
File Description : NVIDIA Windows Kernel Mode Driver, Version 186.76
File Version : 8.15.11.8676
Company : NVIDIA Corporation
Full Path : C:\Windows\system32\drivers\nvlddmkm.sys
==================================================

==================================================
Filename : nvBridge.kmd
Address In Stack :
From Address : 0x8e964000
To Address : 0x8e965080
Size : 0x00001080
Time Stamp : 0x4a85e94d
Time String : 15/08/2009 8:46:37 AM
Product Name : NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 186.76
File Description : NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 186.76
File Version : 8.15.11.8676
Company : NVIDIA Corporation
Full Path : C:\Windows\system32\drivers\nvBridge.kmd
==================================================

==================================================
Filename : dxgkrnl.sys
Address In Stack :
From Address : 0x8ea00000
To Address : 0x8eaa1000
Size : 0x000a1000
Time Stamp : 0x4abc1c72
Time String : 25/09/2009 11:27:14 AM
Product Name : Microsoft® Windows® Operating System
File Description : DirectX Graphics Kernel
File Version : 7.0.6002.18107 (vistasp2_gdr_win7ip_dgt(wmbla).090924-1550)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\dxgkrnl.sys
==================================================

==================================================
Filename : watchdog.sys
Address In Stack :
From Address : 0x8eaa1000
To Address : 0x8eaad000
Size : 0x0000c000
Time Stamp : 0x49e01b13
Time String : 11/04/2009 2:22:43 PM
Product Name : Microsoft® Windows® Operating System
File Description : Watchdog Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\watchdog.sys
==================================================

==================================================
Filename : msiscsi.sys
Address In Stack :
From Address : 0x8eaad000
To Address : 0x8eadc000
Size : 0x0002f000
Time Stamp : 0x49e01f27
Time String : 11/04/2009 2:40:07 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft iSCSI Initiator Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\msiscsi.sys
==================================================

==================================================
Filename : TDI.SYS
Address In Stack :
From Address : 0x8eadc000
To Address : 0x8eae7000
Size : 0x0000b000
Time Stamp : 0x47919136
Time String : 19/01/2008 3:57:10 PM
Product Name : Microsoft® Windows® Operating System
File Description : TDI Wrapper
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\TDI.SYS
==================================================

==================================================
Filename : rasl2tp.sys
Address In Stack :
From Address : 0x8eae7000
To Address : 0x8eafe000
Size : 0x00017000
Time Stamp : 0x47919111
Time String : 19/01/2008 3:56:33 PM
Product Name : Microsoft® Windows® Operating System
File Description : RAS L2TP mini-port/call-manager driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rasl2tp.sys
==================================================

==================================================
Filename : ndistapi.sys
Address In Stack :
From Address : 0x8eafe000
To Address : 0x8eb09000
Size : 0x0000b000
Time Stamp : 0x47919108
Time String : 19/01/2008 3:56:24 PM
Product Name : Microsoft® Windows® Operating System
File Description : NDIS 3.0 connection wrapper driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ndistapi.sys
==================================================

==================================================
Filename : ndiswan.sys
Address In Stack :
From Address : 0x8eb09000
To Address : 0x8eb2c000
Size : 0x00023000
Time Stamp : 0x49e020a7
Time String : 11/04/2009 2:46:31 PM
Product Name : Microsoft® Windows® Operating System
File Description : MS PPP Framing Driver (Strong Encryption)
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ndiswan.sys
==================================================

==================================================
Filename : raspppoe.sys
Address In Stack :
From Address : 0x8eb2c000
To Address : 0x8eb3b000
Size : 0x0000f000
Time Stamp : 0x49e020a6
Time String : 11/04/2009 2:46:30 PM
Product Name : Microsoft® Windows® Operating System
File Description : RAS PPPoE mini-port/call-manager driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\raspppoe.sys
==================================================

==================================================
Filename : raspptp.sys
Address In Stack :
From Address : 0x8eb3b000
To Address : 0x8eb4f000
Size : 0x00014000
Time Stamp : 0x47919112
Time String : 19/01/2008 3:56:34 PM
Product Name : Microsoft® Windows® Operating System
File Description : Peer-to-Peer Tunneling Protocol
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\raspptp.sys
==================================================

==================================================
Filename : rassstp.sys
Address In Stack :
From Address : 0x8eb4f000
To Address : 0x8eb64000
Size : 0x00015000
Time Stamp : 0x49e020b0
Time String : 11/04/2009 2:46:40 PM
Product Name : Microsoft® Windows® Operating System
File Description : RAS SSTP Miniport Call Manager
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rassstp.sys
==================================================

==================================================
Filename : pcouffin.sys
Address In Stack :
From Address : 0x8eb64000
To Address : 0x8eb6f900
Size : 0x0000b900
Time Stamp : 0x457584b9
Time String : 6/12/2006 12:39:53 AM
Product Name : Patin couffin engine
File Description : low level access layer for CD/DVD/BD devices
File Version : 1.37
Company : VSO Software
Full Path : C:\Windows\system32\drivers\pcouffin.sys
==================================================

==================================================
Filename : termdd.sys
Address In Stack :
From Address : 0x8eb70000
To Address : 0x8eb80000
Size : 0x00010000
Time Stamp : 0x49e021c2
Time String : 11/04/2009 2:51:14 PM
Product Name : Microsoft® Windows® Operating System
File Description : Terminal Server Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\termdd.sys
==================================================

==================================================
Filename : kbdclass.sys
Address In Stack :
From Address : 0x8eb80000
To Address : 0x8eb8b000
Size : 0x0000b000
Time Stamp : 0x47918f5a
Time String : 19/01/2008 3:49:14 PM
Product Name : Microsoft® Windows® Operating System
File Description : Keyboard Class Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\kbdclass.sys
==================================================

==================================================
Filename : mouclass.sys
Address In Stack :
From Address : 0x8eb8b000
To Address : 0x8eb96000
Size : 0x0000b000
Time Stamp : 0x47918f5a
Time String : 19/01/2008 3:49:14 PM
Product Name : Microsoft® Windows® Operating System
File Description : Mouse Class Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mouclass.sys
==================================================

==================================================
Filename : swenum.sys
Address In Stack :
From Address : 0x8eb96000
To Address : 0x8eb97380
Size : 0x00001380
Time Stamp : 0x47918f60
Time String : 19/01/2008 3:49:20 PM
Product Name : Microsoft® Windows® Operating System
File Description : Plug and Play Software Device Enumerator
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\swenum.sys
==================================================

==================================================
Filename : ks.sys
Address In Stack :
From Address : 0x8eb98000
To Address : 0x8ebc2000
Size : 0x0002a000
Time Stamp : 0x49e01ed7
Time String : 11/04/2009 2:38:47 PM
Product Name : Microsoft® Windows® Operating System
File Description : Kernel CSA Library
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\ks.sys
==================================================

==================================================
Filename : mssmbios.sys
Address In Stack :
From Address : 0x8ebc2000
To Address : 0x8ebcc000
Size : 0x0000a000
Time Stamp : 0x47918b87
Time String : 19/01/2008 3:32:55 PM
Product Name : Microsoft® Windows® Operating System
File Description : System Management BIOS Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mssmbios.sys
==================================================

==================================================
Filename : umbus.sys
Address In Stack :
From Address : 0x8ebcc000
To Address : 0x8ebd9000
Size : 0x0000d000
Time Stamp : 0x47919064
Time String : 19/01/2008 3:53:40 PM
Product Name : Microsoft® Windows® Operating System
File Description : User-Mode Bus Enumerator
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\umbus.sys
==================================================

==================================================
Filename : usbhub.sys
Address In Stack :
From Address : 0x8e966000
To Address : 0x8e99b000
Size : 0x00035000
Time Stamp : 0x49e01fe2
Time String : 11/04/2009 2:43:14 PM
Product Name : Microsoft® Windows® Operating System
File Description : Default Hub Driver for USB
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\usbhub.sys
==================================================

==================================================
Filename : NDProxy.SYS
Address In Stack :
From Address : 0x8ebd9000
To Address : 0x8ebea000
Size : 0x00011000
Time Stamp : 0x4791910c
Time String : 19/01/2008 3:56:28 PM
Product Name : Microsoft® Windows® Operating System
File Description : NDIS Proxy
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\NDProxy.SYS
==================================================

==================================================
Filename : RTKVHDA.sys
Address In Stack :
From Address : 0x8ee00000
To Address : 0x8eff2940
Size : 0x001f2940
Time Stamp : 0x478c968c
Time String : 15/01/2008 9:18:36 PM
Product Name : Realtek® High Definition Audio Function Driver
File Description : Realtek® High Definition Audio Function Driver
File Version : 6.0.1.5548 built by: WinDDK
Company : Realtek Semiconductor Corp.
Full Path : C:\Windows\system32\drivers\RTKVHDA.sys
==================================================

==================================================
Filename : portcls.sys
Address In Stack :
From Address : 0x8e99b000
To Address : 0x8e9c8000
Size : 0x0002d000
Time Stamp : 0x49e01fc8
Time String : 11/04/2009 2:42:48 PM
Product Name : Microsoft® Windows® Operating System
File Description : Port Class (Class Driver for Port/Miniport Devices)
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\portcls.sys
==================================================

==================================================
Filename : drmk.sys
Address In Stack :
From Address : 0x8e9c8000
To Address : 0x8e9ed000
Size : 0x00025000
Time Stamp : 0x47919e4e
Time String : 19/01/2008 4:53:02 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Kernel DRM Descrambler Filter
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\drmk.sys
==================================================

==================================================
Filename : Fs_Rec.SYS
Address In Stack :
From Address : 0x8eff3000
To Address : 0x8effc000
Size : 0x00009000
Time Stamp : 0x47918a5d
Time String : 19/01/2008 3:27:57 PM
Product Name : Microsoft® Windows® Operating System
File Description : File System Recognizer Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Fs_Rec.SYS
==================================================

==================================================
Filename : Null.SYS
Address In Stack :
From Address : 0x8ebea000
To Address : 0x8ebf1000
Size : 0x00007000
Time Stamp : 0x47918f58
Time String : 19/01/2008 3:49:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : NULL Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Null.SYS
==================================================

==================================================
Filename : Beep.SYS
Address In Stack :
From Address : 0x8ebf1000
To Address : 0x8ebf8000
Size : 0x00007000
Time Stamp : 0x47918f56
Time String : 19/01/2008 3:49:10 PM
Product Name : Microsoft® Windows® Operating System
File Description : BEEP Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Beep.SYS
==================================================

==================================================
Filename : HIDPARSE.SYS
Address In Stack :
From Address : 0x8ebf8000
To Address : 0x8ebfe380
Size : 0x00006380
Time Stamp : 0x4791904c
Time String : 19/01/2008 3:53:16 PM
Product Name : Microsoft® Windows® Operating System
File Description : Hid Parsing Library
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\HIDPARSE.SYS
==================================================

==================================================
Filename : vga.sys
Address In Stack :
From Address : 0x8e9ed000
To Address : 0x8e9f9000
Size : 0x0000c000
Time Stamp : 0x47919006
Time String : 19/01/2008 3:52:06 PM
Product Name : Microsoft® Windows® Operating System
File Description : VGA/Super VGA Video Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\vga.sys
==================================================

==================================================
Filename : VIDEOPRT.SYS
Address In Stack :
From Address : 0x8ddab000
To Address : 0x8ddcc000
Size : 0x00021000
Time Stamp : 0x4791900a
Time String : 19/01/2008 3:52:10 PM
Product Name : Microsoft® Windows® Operating System
File Description : Video Port Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\VIDEOPRT.SYS
==================================================

==================================================
Filename : RDPCDD.sys
Address In Stack :
From Address : 0x8e000000
To Address : 0x8e008000
Size : 0x00008000
Time Stamp : 0x47919224
Time String : 19/01/2008 4:01:08 PM
Product Name : Microsoft® Windows® Operating System
File Description : RDP Miniport
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\RDPCDD.sys
==================================================

==================================================
Filename : rdpencdd.sys
Address In Stack :
From Address : 0x8ddcc000
To Address : 0x8ddd4000
Size : 0x00008000
Time Stamp : 0x47919225
Time String : 19/01/2008 4:01:09 PM
Product Name : Microsoft® Windows® Operating System
File Description : RDP Miniport
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rdpencdd.sys
==================================================

==================================================
Filename : Msfs.SYS
Address In Stack :
From Address : 0x8ddd4000
To Address : 0x8dddf000
Size : 0x0000b000
Time Stamp : 0x47918a68
Time String : 19/01/2008 3:28:08 PM
Product Name : Microsoft® Windows® Operating System
File Description : Mailslot driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Msfs.SYS
==================================================

==================================================
Filename : Npfs.SYS
Address In Stack :
From Address : 0x8dddf000
To Address : 0x8dded000
Size : 0x0000e000
Time Stamp : 0x49e01909
Time String : 11/04/2009 2:14:01 PM
Product Name : Microsoft® Windows® Operating System
File Description : NPFS Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Npfs.SYS
==================================================

==================================================
Filename : rasacd.sys
Address In Stack :
From Address : 0x8dded000
To Address : 0x8ddf6000
Size : 0x00009000
Time Stamp : 0x4791910f
Time String : 19/01/2008 3:56:31 PM
Product Name : Microsoft® Windows® Operating System
File Description : RAS Automatic Connection Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rasacd.sys
==================================================

==================================================
Filename : tdx.sys
Address In Stack :
From Address : 0x8a1a6000
To Address : 0x8a1bc000
Size : 0x00016000
Time Stamp : 0x49e02084
Time String : 11/04/2009 2:45:56 PM
Product Name : Microsoft® Windows® Operating System
File Description : TDI Translation Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\tdx.sys
==================================================

==================================================
Filename : smb.sys
Address In Stack :
From Address : 0x8a1bc000
To Address : 0x8a1d0000
Size : 0x00014000
Time Stamp : 0x49e02062
Time String : 11/04/2009 2:45:22 PM
Product Name : Microsoft® Windows® Operating System
File Description : SMB Transport driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\smb.sys
==================================================

==================================================
Filename : afd.sys
Address In Stack :
From Address : 0x8f00c000
To Address : 0x8f054000
Size : 0x00048000
Time Stamp : 0x49e020c5
Time String : 11/04/2009 2:47:01 PM
Product Name : Microsoft® Windows® Operating System
File Description : Ancillary Function Driver for WinSock
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\afd.sys
==================================================

==================================================
Filename : netbt.sys
Address In Stack :
From Address : 0x8f054000
To Address : 0x8f086000
Size : 0x00032000
Time Stamp : 0x49e0206f
Time String : 11/04/2009 2:45:35 PM
Product Name : Microsoft® Windows® Operating System
File Description : MBT Transport driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\netbt.sys
==================================================

==================================================
Filename : pacer.sys
Address In Stack :
From Address : 0x8f086000
To Address : 0x8f09c000
Size : 0x00016000
Time Stamp : 0x49e0207f
Time String : 11/04/2009 2:45:51 PM
Product Name : Microsoft® Windows® Operating System
File Description : QoS Packet Scheduler
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\pacer.sys
==================================================

==================================================
Filename : usbccgp.sys
Address In Stack :
From Address : 0x8f09c000
To Address : 0x8f0b3000
Size : 0x00017000
Time Stamp : 0x47919059
Time String : 19/01/2008 3:53:29 PM
Product Name : Microsoft® Windows® Operating System
File Description : USB Common Class Generic Parent Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\usbccgp.sys
==================================================

==================================================
Filename : USBD.SYS
Address In Stack :
From Address : 0x8f0b3000
To Address : 0x8f0b4700
Size : 0x00001700
Time Stamp : 0x4791904d
Time String : 19/01/2008 3:53:17 PM
Product Name : Microsoft® Windows® Operating System
File Description : Universal Serial Bus Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\USBD.SYS
==================================================

==================================================
Filename : netbios.sys
Address In Stack :
From Address : 0x8f0b5000
To Address : 0x8f0c3000
Size : 0x0000e000
Time Stamp : 0x479190e1
Time String : 19/01/2008 3:55:45 PM
Product Name : Microsoft® Windows® Operating System
File Description : NetBIOS interface driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\netbios.sys
==================================================

==================================================
Filename : StarOpen.SYS
Address In Stack :
From Address : 0x8f0c3000
To Address : 0x8f0c9000
Size : 0x00006000
Time Stamp : 0x44a183ec
Time String : 28/06/2006 5:15:56 AM
Product Name :
File Description :
File Version :
Company :
Full Path : C:\Windows\system32\drivers\StarOpen.SYS
==================================================

==================================================
Filename : wanarp.sys
Address In Stack :
From Address : 0x8f0c9000
To Address : 0x8f0dc000
Size : 0x00013000
Time Stamp : 0x4791910f
Time String : 19/01/2008 3:56:31 PM
Product Name : Microsoft® Windows® Operating System
File Description : MS Remote Access and Routing ARP Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\wanarp.sys
==================================================

==================================================
Filename : hidusb.sys
Address In Stack :
From Address : 0x8f0dc000
To Address : 0x8f0e5000
Size : 0x00009000
Time Stamp : 0x49e01fc8
Time String : 11/04/2009 2:42:48 PM
Product Name : Microsoft® Windows® Operating System
File Description : USB Miniport Driver for Input Devices
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\hidusb.sys
==================================================

==================================================
Filename : HIDCLASS.SYS
Address In Stack :
From Address : 0x8f0e5000
To Address : 0x8f0f5000
Size : 0x00010000
Time Stamp : 0x49e01fc7
Time String : 11/04/2009 2:42:47 PM
Product Name : Microsoft® Windows® Operating System
File Description : Hid Class Library
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\HIDCLASS.SYS
==================================================

==================================================
Filename : rdbss.sys
Address In Stack :
From Address : 0x8f0f5000
To Address : 0x8f131000
Size : 0x0003c000
Time Stamp : 0x49e01922
Time String : 11/04/2009 2:14:26 PM
Product Name : Microsoft® Windows® Operating System
File Description : Redirected Drive Buffering SubSystem Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rdbss.sys
==================================================

==================================================
Filename : kbdhid.sys
Address In Stack :
From Address : 0x8f131000
To Address : 0x8f13a000
Size : 0x00009000
Time Stamp : 0x49e01ed0
Time String : 11/04/2009 2:38:40 PM
Product Name : Microsoft® Windows® Operating System
File Description : HID Keyboard Filter Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\kbdhid.sys
==================================================

==================================================
Filename : nsiproxy.sys
Address In Stack :
From Address : 0x8f13a000
To Address : 0x8f144000
Size : 0x0000a000
Time Stamp : 0x479190e6
Time String : 19/01/2008 3:55:50 PM
Product Name : Microsoft® Windows® Operating System
File Description : NSI Proxy
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\nsiproxy.sys
==================================================

==================================================
Filename : dfsc.sys
Address In Stack :
From Address : 0x8f144000
To Address : 0x8f15b000
Size : 0x00017000
Time Stamp : 0x49e01914
Time String : 11/04/2009 2:14:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : DFS Namespace Client Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\dfsc.sys
==================================================

==================================================
Filename : NuidFltr.sys
Address In Stack :
From Address : 0x8f15b000
To Address : 0x8f162000
Size : 0x00007000
Time Stamp : 0x4a03eede
Time String : 8/05/2009 6:35:42 PM
Product Name : Microsoft IntelliType Pro / IntelliPoint
File Description : Filter Driver for Microsoft Hardware HID Non-User Input Data
File Version : 7.00.258.0
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\NuidFltr.sys
==================================================

==================================================
Filename : mouhid.sys
Address In Stack :
From Address : 0x8f162000
To Address : 0x8f16a000
Size : 0x00008000
Time Stamp : 0x47918f5c
Time String : 19/01/2008 3:49:16 PM
Product Name : Microsoft® Windows® Operating System
File Description : HID Mouse Filter Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mouhid.sys
==================================================

==================================================
Filename : usbprint.sys
Address In Stack :
From Address : 0x8f16a000
To Address : 0x8f174000
Size : 0x0000a000
Time Stamp : 0x47919550
Time String : 19/01/2008 4:14:40 PM
Product Name : Microsoft® Windows® Operating System
File Description : USB Printer driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\usbprint.sys
==================================================

==================================================
Filename : USBSTOR.SYS
Address In Stack :
From Address : 0x8f174000
To Address : 0x8f189000
Size : 0x00015000
Time Stamp : 0x49e01fcf
Time String : 11/04/2009 2:42:55 PM
Product Name : Microsoft® Windows® Operating System
File Description : USB Mass Storage Class Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\USBSTOR.SYS
==================================================

==================================================
Filename : fastfat.SYS
Address In Stack :
From Address : 0x8f189000
To Address : 0x8f1b1000
Size : 0x00028000
Time Stamp : 0x49e01900
Time String : 11/04/2009 2:13:52 PM
Product Name : Microsoft® Windows® Operating System
File Description : Fast FAT File System Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\fastfat.SYS
==================================================

==================================================
Filename : crashdmp.sys
Address In Stack :
From Address : 0x8f1b1000
To Address : 0x8f1be000
Size : 0x0000d000
Time Stamp : 0x49e01ef0
Time String : 11/04/2009 2:39:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : Crash Dump Driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\crashdmp.sys
==================================================

==================================================
Filename : dump_diskdump.sys
Address In Stack :
From Address : 0x8f1be000
To Address : 0x8f1c8000
Size : 0x0000a000
Time Stamp : 0x49e01eef
Time String : 11/04/2009 2:39:11 PM
Product Name :
File Description :
File Version :
Company :
Full Path :
==================================================

==================================================
Filename : dump_nvstor32.sys
Address In Stack :
From Address : 0x8f1c8000
To Address : 0x8f1e5000
Size : 0x0001d000
Time Stamp : 0x472236e8
Time String : 27/10/2007 4:50:16 AM
Product Name :
File Description :
File Version :
Company :
Full Path :
==================================================

==================================================
Filename : win32k.sys
Address In Stack :
From Address : 0x97440000
To Address : 0x97642000
Size : 0x00202000
Time Stamp : 0x4a856629
Time String : 14/08/2009 11:27:05 PM
Product Name : Microsoft® Windows® Operating System
File Description : Multi-User Win32 Driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\win32k.sys
==================================================

==================================================
Filename : Dxapi.sys
Address In Stack :
From Address : 0x8f1e5000
To Address : 0x8f1ef000
Size : 0x0000a000
Time Stamp : 0x47918c4c
Time String : 19/01/2008 3:36:12 PM
Product Name : Microsoft® Windows® Operating System
File Description : DirectX API Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\Dxapi.sys
==================================================

==================================================
Filename : monitor.sys
Address In Stack :
From Address : 0x8f1ef000
To Address : 0x8f1fe000
Size : 0x0000f000
Time Stamp : 0x47919013
Time String : 19/01/2008 3:52:19 PM
Product Name : Microsoft® Windows® Operating System
File Description : Monitor Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\monitor.sys
==================================================

==================================================
Filename : TSDDD.dll
Address In Stack :
From Address : 0x97660000
To Address : 0x97669000
Size : 0x00009000
Time Stamp : 0x00000000
Time String :
Product Name : Microsoft® Windows® Operating System
File Description : Framebuffer Display Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\TSDDD.dll
==================================================

==================================================
Filename : luafv.sys
Address In Stack :
From Address : 0x8a3c5000
To Address : 0x8a3e0000
Size : 0x0001b000
Time Stamp : 0x47918afb
Time String : 19/01/2008 3:30:35 PM
Product Name : Microsoft® Windows® Operating System
File Description : LUA File Virtualization Filter Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\luafv.sys
==================================================

==================================================
Filename : cdd.dll
Address In Stack :
From Address : 0x97680000
To Address : 0x9768e000
Size : 0x0000e000
Time Stamp : 0x4abc1c66
Time String : 25/09/2009 11:27:02 AM
Product Name : Microsoft® Windows® Operating System
File Description : Canonical Display Driver
File Version : 7.0.6002.18107 (vistasp2_gdr_win7ip_dgt(wmbla).090924-1550)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\cdd.dll
==================================================

==================================================
Filename : spsys.sys
Address In Stack :
From Address : 0x9c200000
To Address : 0x9c2b0000
Size : 0x000b0000
Time Stamp : 0x49b69f04
Time String : 11/03/2009 3:10:28 AM
Product Name : Microsoft® Windows® Operating System
File Description : security processor
File Version : 6.0.6002.17040 (longhorn(sepbld-s).090310-1002)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\spsys.sys
==================================================

==================================================
Filename : lltdio.sys
Address In Stack :
From Address : 0x9c2b0000
To Address : 0x9c2c0000
Size : 0x00010000
Time Stamp : 0x479190b7
Time String : 19/01/2008 3:55:03 PM
Product Name : Microsoft® Windows® Operating System
File Description : Link-Layer Topology Mapper I/O Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\lltdio.sys
==================================================

==================================================
Filename : rspndr.sys
Address In Stack :
From Address : 0x9c2c0000
To Address : 0x9c2d3000
Size : 0x00013000
Time Stamp : 0x479190b7
Time String : 19/01/2008 3:55:03 PM
Product Name : Microsoft® Windows® Operating System
File Description : Link-Layer Topology Responder Driver for NDIS 6
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\rspndr.sys
==================================================

==================================================
Filename : HTTP.sys
Address In Stack :
From Address : 0x9c2d3000
To Address : 0x9c340000
Size : 0x0006d000
Time Stamp : 0x4af7f0ba
Time String : 9/11/2009 8:36:42 PM
Product Name : Microsoft® Windows® Operating System
File Description : HTTP Protocol Stack
File Version : 6.0.6002.18136 (vistasp2_gdr.091102-2300)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\HTTP.sys
==================================================

==================================================
Filename : srvnet.sys
Address In Stack :
From Address : 0x9c340000
To Address : 0x9c35d000
Size : 0x0001d000
Time Stamp : 0x49e01945
Time String : 11/04/2009 2:15:01 PM
Product Name : Microsoft® Windows® Operating System
File Description : Server Network driver
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\srvnet.sys
==================================================

==================================================
Filename : bowser.sys
Address In Stack :
From Address : 0x9c35d000
To Address : 0x9c376000
Size : 0x00019000
Time Stamp : 0x47918a7a
Time String : 19/01/2008 3:28:26 PM
Product Name : Microsoft® Windows® Operating System
File Description : NT Lan Manager Datagram Receiver Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\bowser.sys
==================================================

==================================================
Filename : mpsdrv.sys
Address In Stack :
From Address : 0x9c376000
To Address : 0x9c38b000
Size : 0x00015000
Time Stamp : 0x479190a5
Time String : 19/01/2008 3:54:45 PM
Product Name : Microsoft® Windows® Operating System
File Description : Microsoft Protection Service Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mpsdrv.sys
==================================================

==================================================
Filename : mrxdav.sys
Address In Stack :
From Address : 0x9c38b000
To Address : 0x9c3ac000
Size : 0x00021000
Time Stamp : 0x49e0192f
Time String : 11/04/2009 2:14:39 PM
Product Name : Microsoft® Windows® Operating System
File Description : Windows NT WebDav Minirdr
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mrxdav.sys
==================================================

==================================================
Filename : mrxsmb.sys
Address In Stack :
From Address : 0x9c3ac000
To Address : 0x9c3cb000
Size : 0x0001f000
Time Stamp : 0x49e01923
Time String : 11/04/2009 2:14:27 PM
Product Name : Microsoft® Windows® Operating System
File Description : Windows NT SMB Minirdr
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mrxsmb.sys
==================================================

==================================================
Filename : mrxsmb10.sys
Address In Stack :
From Address : 0x9d40a000
To Address : 0x9d443000
Size : 0x00039000
Time Stamp : 0x49e0192a
Time String : 11/04/2009 2:14:34 PM
Product Name : Microsoft® Windows® Operating System
File Description : Longhorn SMB Downlevel SubRdr
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mrxsmb10.sys
==================================================

==================================================
Filename : mrxsmb20.sys
Address In Stack :
From Address : 0x9d443000
To Address : 0x9d45b000
Size : 0x00018000
Time Stamp : 0x49e01924
Time String : 11/04/2009 2:14:28 PM
Product Name : Microsoft® Windows® Operating System
File Description : Longhorn SMB 2.0 Redirector
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\mrxsmb20.sys
==================================================

==================================================
Filename : srv2.sys
Address In Stack :
From Address : 0x9d45b000
To Address : 0x9d482000
Size : 0x00027000
Time Stamp : 0x4aae0d0d
Time String : 14/09/2009 7:29:49 PM
Product Name : Microsoft® Windows® Operating System
File Description : Smb 2.0 Server driver
File Version : 6.0.6002.18112 (vistasp2_gdr.090913-2340)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\srv2.sys
==================================================

==================================================
Filename : srv.sys
Address In Stack :
From Address : 0x9d482000
To Address : 0x9d4ce000
Size : 0x0004c000
Time Stamp : 0x49e01955
Time String : 11/04/2009 2:15:17 PM
Product Name : Microsoft® Windows® Operating System
File Description : Server driver
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\srv.sys
==================================================

==================================================
Filename : peauth.sys
Address In Stack :
From Address : 0x9d4ce000
To Address : 0x9d5ac000
Size : 0x000de000
Time Stamp : 0x453c8384
Time String : 23/10/2006 6:55:32 PM
Product Name : Microsoft® Windows® Operating System
File Description : Protected Environment Authentication and Authorization Export Driver
File Version : 6.0.5840.16385 (VISTA_RTM_CLIENT_akaDMD.061022-1800)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\peauth.sys
==================================================

==================================================
Filename : secdrv.SYS
Address In Stack :
From Address : 0x9d5ac000
To Address : 0x9d5b6000
Size : 0x0000a000
Time Stamp : 0x45080528
Time String : 13/09/2006 11:18:32 PM
Product Name : Macrovision SECURITY Driver
File Description : Macrovision SECURITY Driver
File Version : 4.03.086
Company : Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.
Full Path : C:\Windows\system32\drivers\secdrv.SYS
==================================================

==================================================
Filename : tcpipreg.sys
Address In Stack :
From Address : 0x9d5b6000
To Address : 0x9d5c2000
Size : 0x0000c000
Time Stamp : 0x4a856b25
Time String : 14/08/2009 11:48:21 PM
Product Name : Microsoft® Windows® Operating System
File Description : TCP/IP Registry Compatibility Driver
File Version : 6.0.6002.18091 (vistasp2_gdr.090814-0321)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\tcpipreg.sys
==================================================

==================================================
Filename : cdfs.sys
Address In Stack :
From Address : 0x9d5c2000
To Address : 0x9d5d8000
Size : 0x00016000
Time Stamp : 0x47918a62
Time String : 19/01/2008 3:28:02 PM
Product Name : Microsoft® Windows® Operating System
File Description : CD-ROM File System Driver
File Version : 6.0.6001.18000 (longhorn_rtm.080118-1840)
Company : Microsoft Corporation
Full Path : C:\Windows\system32\drivers\cdfs.sys
==================================================

==================================================
Filename : avipbb.sys
Address In Stack :
From Address : 0x9d5d8000
To Address : 0x9d5f4000
Size : 0x0001c000
Time Stamp : 0x49c9008b
Time String : 25/03/2009 1:47:23 AM
Product Name :
File Description : Avira Driver for RootKit Detection
File Version : 1.0.2.86
Company : Avira GmbH
Full Path : C:\Windows\system32\drivers\avipbb.sys
==================================================

==================================================
Filename : avgntflt.sys
Address In Stack :
From Address : 0x9c3df000
To Address : 0x9c3f3000
Size : 0x00014000
Time Stamp : 0x4b052f89
Time String : 19/11/2009 9:44:09 PM
Product Name : AntiVir Workstation
File Description : Avira Minifilter Driver
File Version : 9.00.03.17
Company : Avira GmbH
Full Path : C:\Windows\system32\drivers\avgntflt.sys
==================================================

==================================================
Filename : ssmdrv.sys
Address In Stack :
From Address : 0x9d5f6000
To Address : 0x9d5fba00
Size : 0x00005a00
Time Stamp : 0x4a000f5e
Time String : 5/05/2009 8:05:18 PM
Product Name :
File Description : AVIRA SnapShot Driver
File Version : 7.00.02.02
Company : Avira GmbH
Full Path : C:\Windows\system32\drivers\ssmdrv.sys
==================================================

#9 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 06 February 2010 - 01:14 AM

Oh, those are old crashes.
You didn't have any new one after uninstalling Norton, did you?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#10 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 06 February 2010 - 01:58 AM

Sorry about that.
==================================================
Dump File : Mini020610-02.dmp
Crash Time : 6/02/2010 4:54:00 PM
Bug Check String : IRQL_NOT_LESS_OR_EQUAL
Bug Check Code : 0x0000000a
Parameter 1 : 0x03c879b4
Parameter 2 : 0x00000002
Parameter 3 : 0x00000001
Parameter 4 : 0x81ee6c35
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+4dfb9
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18082 (vistasp2_gdr.090803-2339)
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020610-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

==================================================
Dump File : Mini020610-01.dmp
Crash Time : 6/02/2010 3:47:51 PM
Bug Check String : MEMORY_MANAGEMENT
Bug Check Code : 0x0000001a
Parameter 1 : 0x00005003
Parameter 2 : 0x96c30000
Parameter 3 : 0x0000131b
Parameter 4 : 0x00d574b2
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb0d
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18082 (vistasp2_gdr.090803-2339)
Processor : 32-bit
Computer Name :
Full Path : C:\Windows\minidump\Mini020610-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
==================================================

#11 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 06 February 2010 - 11:35 AM

I see....

A. If you have more than one RAM module installed, try starting computer with one RAM stick at a time.

NOTE Keep in mind, the manual check listed above is always superior to the software check, listed below. DO NOT proceed with memtest, if you can go with option A

B. If you have only one RAM stick installed...
...run memtest...

1. Download - Pre-Compiled Bootable ISO (.zip)
2. Unzip downloaded memtest86+-....iso.zip file.
3. Inside, you'll find memtest86+-....iso file.
4. Download, and install ImgBurn: http://www.imgburn.com/
5. Insert blank CD into your CD drive.
6. Open ImgBurn, and click on Write image file to disc
7. Click on Browse for a file... icon:

Posted Image

8. Locate memtest86+-....iso file, and click Open button.
9. Click on ImgBurn green arrow to start burning bootable memtest86 CD:

Posted Image

10. Once the CD is created, boot from it, and memtest will automatically start to run.

The running program will look something like this depending on the size and number of ram modules installed:


Posted Image

It's recommended to run 5-6 passes. Each pass contains very same 8 tests.

This will show the progress of the test. It can take a while. Be patient, or leave it running overnight.

Posted Image

The following image is the test results area:

Posted Image

The most important item here is the “errors” line. If you see ANY errors, even one, most likely, you have bad RAM.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#12 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 06 February 2010 - 06:15 PM

Hi Broni
I am running scan now, will let you know when it has done six. 2 so far and no errors. Having to you hubby's comp till I sort this.

#13 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 06 February 2010 - 06:18 PM

Do you have only 1 RAM stick?

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#14 Astralwitch

Astralwitch
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:06:12 PM

Posted 06 February 2010 - 10:54 PM

Yes only the one.
7 passes, no errors.

#15 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:04:12 PM

Posted 06 February 2010 - 11:31 PM

In that case, I suggest, you start a new topic in "Am I Infected?".
Errors like that can be also caused by some malwares.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users