Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BSODs caused by ntoskrnl.exe


  • Please log in to reply
7 replies to this topic

#1 Hoothoot

Hoothoot

  • Members
  • 247 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:32 AM

Posted 14 May 2016 - 10:00 AM

According to BlueScreenView, ntoskrnl.exe is the responsible one - I get bluescreens, no matter if it's safe mode or not. I'm unable to obtain full SysNative app raport - it gets stuck at "Waiting for system info". I zip what I have.

Best regards,

Hoothoot

Attached Files



BC AdBot (Login to Remove)

 


#2 Hoothoot

Hoothoot
  • Topic Starter

  • Members
  • 247 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:32 AM

Posted 14 May 2016 - 10:03 AM

Take a look, if you want - it is what BlueScreenView tells.

Attached Files


Edited by Hoothoot, 14 May 2016 - 10:03 AM.


#3 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,091 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:11:32 AM

Posted 16 May 2016 - 04:41 AM

The Sysnative app didn't complete successfully and we're missing several reports.

Please let it run for at least 15-20 minutes.  It will tell you when it's done.

Then re-upload the reports.

 

Here's what I got from the memory dumps.....

 

The most common fault here is your Norton protection.

Please uninstall it, then run the free Norton Removal Tool:  https://support.norton.com/sp/en/us/home/current/solutions/kb20080710133834EN_EndUserProfile_en_us
- Direct Download: ftp://ftp.symantec.com/public/english_us_canada/removal_tools/Norton_Removal_Tool.exe

 

There's also some suspicious files showing.  If infected, I'd suggest posting over in the Am I Infected forum:  http://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/
Please read the pinned topics at the top of the forum for instructions on how to post there.

Analysis:

The following is for information purposes only. The following information contains the relevant information from the blue screen analysis:

**************************Sat May 14 10:32:58.322 2016 (UTC - 4:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\051416-29905-01.dmp]
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Built by: 7601.19160.amd64fre.win7sp1_gdr.160211-0600
System Uptime:0 days 0:04:28.899
*** WARNING: Unable to verify timestamp for SYMEFASI64.SYS
*** ERROR: Module load completed but symbols could not be loaded for SYMEFASI64.SYS
Probably caused by :Pool_Corruption ( nt!ExDeferredFreePool+118b )
BugCheck 19, {3, fffff8a012058030, fffff8a012058030, 65536c41030a0403}
BugCheck Info: BAD_POOL_HEADER (19)
Arguments:
Arg1: 0000000000000003, the pool freelist is corrupt.
Arg2: fffff8a012058030, the pool entry being checked.
Arg3: fffff8a012058030, the read back flink freelist value (should be the same as 2).
Arg4: 65536c41030a0403, the read back blink freelist value (should be the same as 2).
BUGCHECK_STR:  0x19_3
PROCESS_NAME:  nis.exe
FAILURE_BUCKET_ID: X64_0x19_3_nt!ExDeferredFreePool+118b
CPUID:        "Intel® Core™ i3 CPU       M 370  @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: 2400
  BIOS Version                  68AHH Ver. F.21
  BIOS Release Date             06/13/2012
  Manufacturer                  Hewlett-Packard
  Product Name                  HP ProBook 4320s
  Baseboard Product             1423
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
The rest of the memory dump summaries are hidden in the Spoiler tag below.  Click on "Show" to reveal them.
Spoiler




3rd Party Drivers:

The following is for information purposes only. My recommendations were given above. The drivers that follow belong to software or devices that were not developed by Microsoft. Any drivers in red should be updated/replaced/removed. You can find links to the driver information and where to update the drivers in the section after the code box:

**************************Sat May 14 10:32:58.322 2016 (UTC - 4:00)**************************
Afc.sys                     Wed Jul 12 01:48:20 2006 (44B48D24)
SbAlg.sys                   Wed Nov 26 06:00:08 2008 (492D2C38)
sncduvc.SYS                 Sun Apr  5 23:48:54 2009 (49D97BA6)
Accelerometer.sys           Wed Jul  8 14:41:38 2009 (4A54E862)
hpdskflt.sys                Wed Jul  8 14:41:38 2009 (4A54E862)
intelppm.sys                Mon Jul 13 19:19:25 2009 (4A5BC0FD)
agrsm64.sys                 Thu Aug 13 11:20:43 2009 (4A842F4B)
HECIx64.sys                 Thu Sep 17 15:54:16 2009 (4AB293E8)
SafeBoot.sys                Fri Oct  2 05:18:05 2009 (4AC5C54D)
RsvLock.SYS                 Fri Oct  2 05:18:24 2009 (4AC5C560)
SbFsLock.sys                Fri Oct  2 05:18:28 2009 (4AC5C564)
ArcSoftVCapture.sys         Thu Dec  3 13:32:41 2009 (4B180449)
snp2uvc.sys                 Fri Dec 18 01:48:53 2009 (4B2B25D5)
HpqKbFiltr.sys              Tue Feb 16 13:22:39 2010 (4B7AE26F)
Impcd.sys                   Fri Feb 26 18:32:11 2010 (4B8859FB)
iaStor.sys                  Wed Mar  3 21:51:31 2010 (4B8F2033)
amdxata.sys                 Fri Mar 19 12:18:18 2010 (4BA3A3CA)
SynTP.sys                   Thu Jun  3 21:27:13 2010 (4C085671)
IntcDAud.sys                Mon Jun 21 05:45:55 2010 (4C1F34D3)
btmusb.sys                  Fri Jun 25 07:43:33 2010 (4C249665)
igdkmd64.sys                Wed Jul 28 17:10:36 2010 (4C509CCC)
stwrt64.sys                 Thu Sep  9 03:12:10 2010 (4C8888CA)
netr28x.sys                 Thu Nov  4 08:57:01 2010 (4CD2AD9D)
ccSetx64.sys                Mon Aug 18 15:33:11 2014 (53F254F7)
SRTSPX64.SYS                Tue Aug 26 02:36:42 2014 (53FC2AFA)
SYMEVENT64x86.SYS           Mon Jan 19 17:43:56 2015 (54BD88AC)
mbam.sys                    Tue Aug 11 13:35:19 2015 (55CA3257)
SYMNETS.SYS                 Mon Aug 24 16:15:17 2015 (55DB7B55)
SYMEFASI64.SYS              Mon Oct 19 19:48:01 2015 (56258131)
Ironx64.SYS                 Mon Oct 26 18:01:38 2015 (562EA2C2)
BHDrvx64.sys                Mon Feb 22 18:42:01 2016 (56CB9CC9)
eeCtrl64.sys                Mon Apr 25 13:47:05 2016 (571E5819)
IDSvia64.sys                Fri Apr 29 14:52:06 2016 (5723AD56)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu May 12 08:22:29.769 2016 (UTC - 4:00)**************************
IDSvia64.sys                Mon Oct 12 22:00:26 2015 (561C65BA)
EX64.SYS                    Tue Oct 13 22:01:49 2015 (561DB78D)
ENG64.SYS                   Tue Oct 13 22:06:35 2015 (561DB8AB)
SRTSP64.SYS                 Thu Feb  4 19:57:03 2016 (56B3F35F)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Tue May 10 11:29:46.393 2016 (UTC - 4:00)**************************
kxtdqpow.sys                Wed Mar  9 02:28:57 2016 (56DFD0B9)
EraserUtilRebootDrv.sys     Mon Apr 25 13:47:06 2016 (571E581A)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu May  5 16:06:25.106 2016 (UTC - 4:00)**************************
eeCtrl64.sys                Fri Nov  6 21:29:47 2015 (563D621B)
EraserUtilRebootDrv.sys     Fri Nov  6 21:29:47 2015 (563D621B)

 

http://www.carrona.org/drivers/driver.php?id=Afc.sys
http://www.carrona.org/drivers/driver.php?id=SbAlg.sys
http://www.carrona.org/drivers/driver.php?id=sncduvc.SYS
http://www.carrona.org/drivers/driver.php?id=Accelerometer.sys
http://www.carrona.org/drivers/driver.php?id=hpdskflt.sys
http://www.carrona.org/drivers/driver.php?id=intelppm.sys
http://www.carrona.org/drivers/driver.php?id=agrsm64.sys
http://www.carrona.org/drivers/driver.php?id=HECIx64.sys
http://www.carrona.org/drivers/driver.php?id=SafeBoot.sys
http://www.carrona.org/drivers/driver.php?id=RsvLock.SYS
http://www.carrona.org/drivers/driver.php?id=SbFsLock.sys
http://www.carrona.org/drivers/driver.php?id=ArcSoftVCapture.sys
http://www.carrona.org/drivers/driver.php?id=snp2uvc.sys
http://www.carrona.org/drivers/driver.php?id=HpqKbFiltr.sys
http://www.carrona.org/drivers/driver.php?id=Impcd.sys
http://www.carrona.org/drivers/driver.php?id=iaStor.sys
http://www.carrona.org/drivers/driver.php?id=amdxata.sys
http://www.carrona.org/drivers/driver.php?id=SynTP.sys
http://www.carrona.org/drivers/driver.php?id=IntcDAud.sys
http://www.carrona.org/drivers/driver.php?id=btmusb.sys
http://www.carrona.org/drivers/driver.php?id=igdkmd64.sys
http://www.carrona.org/drivers/driver.php?id=stwrt64.sys
http://www.carrona.org/drivers/driver.php?id=netr28x.sys
http://www.carrona.org/drivers/driver.php?id=ccSetx64.sys
http://www.carrona.org/drivers/driver.php?id=SRTSPX64.SYS
http://www.carrona.org/drivers/driver.php?id=SYMEVENT64x86.SYS
http://www.carrona.org/drivers/driver.php?id=mbam.sys
http://www.carrona.org/drivers/driver.php?id=SYMNETS.SYS
http://www.carrona.org/drivers/driver.php?id=SYMEFASI64.SYS
http://www.carrona.org/drivers/driver.php?id=Ironx64.SYS
http://www.carrona.org/drivers/driver.php?id=BHDrvx64.sys
http://www.carrona.org/drivers/driver.php?id=eeCtrl64.sys
http://www.carrona.org/drivers/driver.php?id=IDSvia64.sys
http://www.carrona.org/drivers/driver.php?id=IDSvia64.sys
http://www.carrona.org/drivers/driver.php?id=EX64.SYS
http://www.carrona.org/drivers/driver.php?id=ENG64.SYS
http://www.carrona.org/drivers/driver.php?id=SRTSP64.SYS
kxtdqpow.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=EraserUtilRebootDrv.sys
http://www.carrona.org/drivers/driver.php?id=eeCtrl64.sys
http://www.carrona.org/drivers/driver.php?id=EraserUtilRebootDrv.sys
 



 


My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#4 Hoothoot

Hoothoot
  • Topic Starter

  • Members
  • 247 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:32 AM

Posted 16 May 2016 - 03:03 PM

Hi usasma,

thank you so much for your response.

I am unable at this moment to upload SysNative report, all I see is "Waiting for SystemInfo" for at most 10 minutes, then I get a bluescreen. Should I use a Windows repair disc?

Second of all - what is wrong with Norton? I have always regarded Norton as good AV software, caused no significant problems in the past.

Best regards,

Hoothoot



#5 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,091 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:11:32 AM

Posted 17 May 2016 - 09:49 AM

Try generating this report instead:

Please run this report collecting tool so that we can provide a complete analysis:  http://omgdebugging.com/bsod-inspector/
When done a Notepad document will open with the name of the file and it's location. (By default it'll be a .zip file located on your Desktop)
Simply upload the .zip file with your next post and we'll move on from there.

 

If that doesn't work, then do this:

 

MSINFO32:
Please go to Start and type in "msinfo32.exe" (without the quotes) and press Enter
Save the report as an .nfo file, then zip up the .nfo file and upload/attach the .zip file with your next post.
Also, save a copy as a .txt file and include it also (it's much more difficult to read, but we have greater success in getting the info from it).

If you're having difficulties with the format, please open an elevated (Run as administrator) Command Prompt and type (or copy/paste) "msinfo32 /nfo %USERPROFILE%\Desktop\TEST.NFO" (without the quotes) and press Enter.  Then navigate to Desktop to retrieve the TEST.NFO file.  If you have difficulties with making this work, please post back.  Then zip up the .nfo file and upload/attach the .zip file with your next post.

systeminfo:
Please open an elevated (Run as administrator) Command Prompt and type (or copy/paste) "systeminfo.exe >%USERPROFILE%\Desktop\systeminfo.txt" (without the quotes) and press Enter.  Then navigate to Desktop to retrieve the syteminfo.txt file.  If you have difficulties with making this work, please post back.  Then zip up the .txt file and upload/attach the .zip file with your next post.

A BSOD problem from Norton isn't a criticism of the Norton program.  It's a statement that the memory dumps have pointed to Norton drivers as being to blame.
For example, one of the memory dumps stated:

 

Probably caused by :EX64.SYS ( EX64+12d996 )

This is a driver that belongs to Norton.

If you look for the "Probably caused by" string in the memory dumps concealed by the Show/Hide tags, you'll see that at least 6 of them blame Norton drivers.

 

All programs have the potential to become corrupted (which is what I suspect here).  There's also many other possible reasons for why this would happen - but we don't often get into discovering why it happened (as long as we fix it).

 

Uninstalling your Norton will tell you if that is the problem.

While testing, you should have an antivirus installed (to keep from getting infected).  I recommend using a free one during testing (for W7, I suggest Microsoft Security Essentials).

Then, when finished testing, feel free to download a fresh copy of the Norton and reinstall it (and uninstall the Microsoft Security Essentials).

Again, this is a testing procedure - it is not a criticism of the Norton product.

 

Finally, in BSOD analysis there's different types of BSOD events.

Most are simple and the debugger points to the faulting driver.

Some are more complex, and involve different drivers working against each other, faulting drivers exiting before the crash - so no info is available for them, hardware problems, compatibility issues, etc.

On average it takes about 2 pages of posts to fix a simple BSOD problem, the more complicated take 4-6 or more pages.


My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#6 Hoothoot

Hoothoot
  • Topic Starter

  • Members
  • 247 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:32 AM

Posted 17 May 2016 - 05:24 PM

This one was able to generate the report, here you are: http://www.filedropper.com/notebook20160518000956

Thank you,

HH



#7 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,091 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:11:32 AM

Posted 19 May 2016 - 05:15 PM

You only have 1 191 MB of available Physical Memory (RAM).
Please get more memory if the system is able to handle it.
While waiting to upgrade the memory, please:
- only use one program at a time
- go through your startup items and stop those that aren't essential from loading with Windows
 

No Windows Update hotfixes installed.  Most systems with SP1 have 300-400 or more.  Please visit Windows Update and get ALL available updates (it may take several trips to get them all).
The actual number is not important.  Rather it's important that you checked manually, installed any available updates, and didn't experience any errors when checking or updating.
 

This device has a problem in Device Manager:

 

Teredo Tunneling Pseudo-Interface    ROOT\*TEREDO\0000    This device cannot start.

Please right click on it and select "Uninstall".
Then reboot the system and check to make sure that the problem is gone, and that it hasn't returned.

 

Out of 28 memory dumps there were 5 different BSOD  (aka STOP or BugCheck) error codes.  The differing error codes are usually symptomatic of a lower level problem within the system. They are usually caused by one of these things (the list is not in any sort of order):
- borked (broken) hardware (several different procedures used to isolate the problem device)
- BIOS issues (check for updates at the motherboard manufacturer's website)
- overclocking/overheating - You'll know if you're overclocking or not. If uncertain we can suggest things to check.
- dirt/dust/hair/fur/crud inside the case.  Blow out the case/vents with canned air (DO NOT use an air compressor or vacuum as they can cause damage to the system)
- missing Windows Updates
- compatibility issues (3rd party hardware/drivers), older systems, or even pirated systems
- low-level driver problems
- or even malware (scanned for when we ask for hardware diagnostics from http://www.carrona.org/initdiag.html or http://www.carrona.org/hwdiag.html ).

Please get a head start on the hardware diagnostics - they are located here:  http://www.carrona.org/hwdiag.html

The most likely issue here is your Norton.

Please uninstall it and see if that helps.

Make sure that you've enabled Windows Defender and the Windows firewall while testing.

 

Will post the results of the memory dumps either later tonight or in the early AM (UTC-5, east coast of the US)


My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#8 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,091 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:11:32 AM

Posted 20 May 2016 - 04:24 AM

Additionally, the system may be infected.

Please scan your system for infections using a couple of these free scans:

           F-Secure
           https://www.f-secure.com/en/web/home_global/online-scanner (link is external)

           McAfee
           http://www.mcafee.com/uk/downloads/free-tools/stinger.aspx (link is external)

           Microsoft
           http://www.microsoft.com/security/scanner/en-us/default.aspx (link is external)

           Sophos
           https://www.sophos.com/en-us/products/free-tools/virus-removal-tool.aspx (link is external)

           Trend Micro
           http://housecall.trendmicro.com/ (link is external)

The list comes from this page:  https://www.us-cert.gov/ncas/alerts/TA15-286A

If infected, I'd suggest posting over in the Am I Infected forum:  http://www.bleepingcomputer.com/forums/f/103/am-i-infected-what-do-i-do/
Please read the pinned topics at the top of the forum for instructions on how to post there.

 

 

Analysis:

The following is for information purposes only. The following information contains the relevant information from the blue screen analysis:

**************************Mon May 16 16:22:57.284 2016 (UTC - 4:00)**************************
Loading Dump File [C:\Users\john\SysnativeBSODApps\051816-36051-01.dmp]
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Built by: 7601.19160.amd64fre.win7sp1_gdr.160211-0600
System Uptime:0 days 0:04:12.860
*** WARNING: Unable to verify timestamp for EX64.SYS
*** ERROR: Module load completed but symbols could not be loaded for EX64.SYS
Probably caused by :EX64.SYS ( EX64+12d996 )
BugCheck 1000007E, {ffffffffc0000005, fffff880091b0996, fffff880080d2698, fffff880080d1ef0}
BugCheck Info: SYSTEM_THREAD_EXCEPTION_NOT_HANDLED_M (1000007e)
Arguments:
Arg1: ffffffffc0000005, The exception code that was not handled
Arg2: fffff880091b0996, The address that the exception occurred at
Arg3: fffff880080d2698, Exception Record Address
Arg4: fffff880080d1ef0, Context Record Address
PROCESS_NAME:  System
BUGCHECK_STR:  0x7E
FAILURE_BUCKET_ID: X64_0x7E_EX64+12d996
CPUID:        "Intel® Core™ i3 CPU       M 370  @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: 2400
  BIOS Version                  68AHH Ver. F.21
  BIOS Release Date             06/13/2012
  Manufacturer                  Hewlett-Packard
  Product Name                  HP ProBook 4320s
  Baseboard Product             1423
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
The rest of the memory dump summaries are hidden in the Spoiler tag below.  Click on "Show" to reveal them.
Spoiler




3rd Party Drivers:

The following is for information purposes only. My recommendations were given above. The drivers that follow belong to software or devices that were not developed by Microsoft. Any drivers in red should be updated/replaced/removed. You can find links to the driver information and where to update the drivers in the section after the code box:

**************************Mon May 16 16:22:57.284 2016 (UTC - 4:00)**************************
Afc.sys                     Wed Jul 12 01:48:20 2006 (44B48D24)
[SbAlg.sys                   Wed Nov 26 06:00:08 2008 (492D2C38)
sncduvc.SYS                 Sun Apr  5 23:48:54 2009 (49D97BA6)
Accelerometer.sys           Wed Jul  8 14:41:38 2009 (4A54E862)
hpdskflt.sys                Wed Jul  8 14:41:38 2009 (4A54E862)
intelppm.sys                Mon Jul 13 19:19:25 2009 (4A5BC0FD)
agrsm64.sys                 Thu Aug 13 11:20:43 2009 (4A842F4B)
HECIx64.sys                 Thu Sep 17 15:54:16 2009 (4AB293E8)
SafeBoot.sys                Fri Oct  2 05:18:05 2009 (4AC5C54D)
RsvLock.SYS                 Fri Oct  2 05:18:24 2009 (4AC5C560)
SbFsLock.sys                Fri Oct  2 05:18:28 2009 (4AC5C564)
ArcSoftVCapture.sys         Thu Dec  3 13:32:41 2009 (4B180449)
snp2uvc.sys                 Fri Dec 18 01:48:53 2009 (4B2B25D5)
HpqKbFiltr.sys              Tue Feb 16 13:22:39 2010 (4B7AE26F)
Impcd.sys                   Fri Feb 26 18:32:11 2010 (4B8859FB)
iaStor.sys                  Wed Mar  3 21:51:31 2010 (4B8F2033)
amdxata.sys                 Fri Mar 19 12:18:18 2010 (4BA3A3CA)
SynTP.sys                   Thu Jun  3 21:27:13 2010 (4C085671)
IntcDAud.sys                Mon Jun 21 05:45:55 2010 (4C1F34D3)
btmusb.sys                  Fri Jun 25 07:43:33 2010 (4C249665)
igdkmd64.sys                Wed Jul 28 17:10:36 2010 (4C509CCC)
stwrt64.sys                 Thu Sep  9 03:12:10 2010 (4C8888CA)
netr28x.sys                 Thu Nov  4 08:57:01 2010 (4CD2AD9D)
ccSetx64.sys                Mon Aug 18 15:33:11 2014 (53F254F7)
SRTSPX64.SYS                Tue Aug 26 02:36:42 2014 (53FC2AFA)
SYMEVENT64x86.SYS           Mon Jan 19 17:43:56 2015 (54BD88AC)
mbam.sys                    Tue Aug 11 13:35:19 2015 (55CA3257)
SYMNETS.SYS                 Mon Aug 24 16:15:17 2015 (55DB7B55)
EX64.SYS                    Tue Oct 13 22:01:49 2015 (561DB78D)
ENG64.SYS                   Tue Oct 13 22:06:35 2015 (561DB8AB)
SYMEFASI64.SYS              Mon Oct 19 19:48:01 2015 (56258131)
Ironx64.SYS                 Mon Oct 26 18:01:38 2015 (562EA2C2)
SRTSP64.SYS                 Thu Feb  4 19:57:03 2016 (56B3F35F)
BHDrvx64.sys                Mon Feb 22 18:42:01 2016 (56CB9CC9)
eeCtrl64.sys                Mon Apr 25 13:47:05 2016 (571E5819)
EraserUtilRebootDrv.sys     Mon Apr 25 13:47:06 2016 (571E581A)
IDSvia64.sys                Fri Apr 29 14:52:06 2016 (5723AD56)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Mon May 16 15:47:56.085 2016 (UTC - 4:00)**************************
EraserUtilDrv11521.sys      Mon Apr 25 13:47:06 2016 (571E581A)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu May 12 08:22:29.769 2016 (UTC - 4:00)**************************
IDSvia64.sys                Mon Oct 12 22:00:26 2015 (561C65BA)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Tue May 10 11:29:46.393 2016 (UTC - 4:00)**************************
kxtdqpow.sys                Wed Mar  9 02:28:57 2016 (56DFD0B9)
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``
**************************Thu May  5 16:06:25.106 2016 (UTC - 4:00)**************************
eeCtrl64.sys                Fri Nov  6 21:29:47 2015 (563D621B)
EraserUtilRebootDrv.sys     Fri Nov  6 21:29:47 2015 (563D621B)

 

http://www.carrona.org/drivers/driver.php?id=Afc.sys
http://www.carrona.org/drivers/driver.php?id=SbAlg.sys
http://www.carrona.org/drivers/driver.php?id=sncduvc.SYS
http://www.carrona.org/drivers/driver.php?id=Accelerometer.sys
http://www.carrona.org/drivers/driver.php?id=hpdskflt.sys
http://www.carrona.org/drivers/driver.php?id=intelppm.sys
http://www.carrona.org/drivers/driver.php?id=agrsm64.sys
http://www.carrona.org/drivers/driver.php?id=HECIx64.sys
http://www.carrona.org/drivers/driver.php?id=SafeBoot.sys
http://www.carrona.org/drivers/driver.php?id=RsvLock.SYS
http://www.carrona.org/drivers/driver.php?id=SbFsLock.sys
http://www.carrona.org/drivers/driver.php?id=ArcSoftVCapture.sys
http://www.carrona.org/drivers/driver.php?id=snp2uvc.sys
http://www.carrona.org/drivers/driver.php?id=HpqKbFiltr.sys
http://www.carrona.org/drivers/driver.php?id=Impcd.sys
http://www.carrona.org/drivers/driver.php?id=iaStor.sys
http://www.carrona.org/drivers/driver.php?id=amdxata.sys
http://www.carrona.org/drivers/driver.php?id=SynTP.sys
http://www.carrona.org/drivers/driver.php?id=IntcDAud.sys
http://www.carrona.org/drivers/driver.php?id=btmusb.sys
http://www.carrona.org/drivers/driver.php?id=igdkmd64.sys
http://www.carrona.org/drivers/driver.php?id=stwrt64.sys
http://www.carrona.org/drivers/driver.php?id=netr28x.sys
http://www.carrona.org/drivers/driver.php?id=ccSetx64.sys
http://www.carrona.org/drivers/driver.php?id=SRTSPX64.SYS
http://www.carrona.org/drivers/driver.php?id=SYMEVENT64x86.SYS
http://www.carrona.org/drivers/driver.php?id=mbam.sys
http://www.carrona.org/drivers/driver.php?id=SYMNETS.SYS
http://www.carrona.org/drivers/driver.php?id=EX64.SYS
http://www.carrona.org/drivers/driver.php?id=ENG64.SYS
http://www.carrona.org/drivers/driver.php?id=SYMEFASI64.SYS
http://www.carrona.org/drivers/driver.php?id=Ironx64.SYS
http://www.carrona.org/drivers/driver.php?id=SRTSP64.SYS
http://www.carrona.org/drivers/driver.php?id=BHDrvx64.sys
http://www.carrona.org/drivers/driver.php?id=eeCtrl64.sys
http://www.carrona.org/drivers/driver.php?id=EraserUtilRebootDrv.sys
http://www.carrona.org/drivers/driver.php?id=IDSvia64.sys
EraserUtilDrv11521.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=IDSvia64.sys
kxtdqpow.sys - this driver hasn't been added to the DRT as of this run. Please search Google/Bing for the driver if additional information is needed.
http://www.carrona.org/drivers/driver.php?id=eeCtrl64.sys
http://www.carrona.org/drivers/driver.php?id=EraserUtilRebootDrv.sys
 


 


My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users