Go Back   Tech Support Forum > Microsoft Support > BSOD, App Crashes And Hangs


Windows Vista Blue Screen

This is a discussion on Windows Vista Blue Screen within the BSOD, App Crashes And Hangs forums, part of the Tech Support Forum category. I have been receiving a blue screen the past two days and I can't quite figure it out. The computer


Closed Thread
 
Thread Tools Search this Thread
Old 12-07-2008, 09:25 AM   #1
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



I have been receiving a blue screen the past two days and I can't quite figure it out. The computer stays on for an average of about 5-10 minutes, no matter what I'm doing. The only thing that I have been doing on it lately is converting .avi formatted movies to dvd formatted movies. I also tried installing an application for my blackberry on my computer yesterday, but I uninstalled it already because it didn't work.
I'll also add that I noticed AVG Free 8.0 stopped updating the same time this problem appeared. I have internet access, it just seems as though AVG can't update.

Blue Screen Codes:

STOP: 0XC0000005 (0X9220CB8A, 0XA7F00754, 0X00000000)
or
STOP: 0X0000008E (0XC0000005, 0X92208B8A, 0X81545754)

It didn't give any file name or anything, it just displayed the physical memory dump information after the stop codes, so this is all the information on the blue screen.

Problem Details after startup:

BCCode: 1000008e
BCP1: C0000005
BCP2: 9220CB8A
BCP3: A7F00754
BCP4: 00000000
OS Version: 6_0_6001
Service Pack: 1_0
Product 256_1

I have attached the Minidump information from the computer. Any help would be appreciated.
Attached Files
File Type: zip Mini120708-06.zip (18.0 KB, 15 views)
dledbetter is offline  
Sponsored Links
Advertisement
 
Old 12-07-2008, 10:44 AM   #2
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



I am led to believe that this may be a virus from the blackberry application I downloaded. It had a trojan in it, but I believe it may have surpassed my anti-virus. Any info?
dledbetter is offline  
Old 12-07-2008, 09:37 PM   #3
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



Any help would be super.
dledbetter is offline  
Old 12-07-2008, 09:43 PM   #4
Team Manager, Microsoft Support
BSOD Kernel Dump Expert
 
jcgriff2's Avatar
 
Join Date: Sep 2007
Location: New Jersey Shore
Posts: 33,395
OS: Windows 10, 8.1, 7 + Windbg :)



Quote:
Originally Posted by dledbetter

STOP: 0XC0000005 (0X9220CB8A, 0XA7F00754, 0X00000000)
or
STOP: 0X0000008E (0XC0000005, 0X92208B8A, 0X81545754)
Hi. . .

Both of those STOP error codes (bugchecks) are missing a parm - there s/b be 4 #'s inside parenthesis. 1st one listing 0xc0000005 as bugcheck is not correct, I suspect that one was 0x8e and the 0xc0000005 was the 1st parm inside parenthesis - just like the 2nd one. Not a big deal, though - read on:

I ran your mini kernel dump - that was #6 as of that time:

bugcheck - 0x1000008e (0xc0000005, 0x8f7d9b8a, 0x9b6d2754, 0x0), probable cause = ntkrpamp.exe - the Vista NT Kernel. Process running at time of this crash = msiexec.exe, the Vista program installer.

0x8e = KERNEL_MODE_EXCEPTION_NOT_HANDLED = kernel mode app threw exception - the exception is 1st parm - 0xc0000005 = memory access violation.

Assuming hardware platform stable, the NT Kernel IS NOT the cause here. The Kernel does of course run in kernel mode, so I believe the culprit is probably a driver hiding under the memory address range of the NT kernel. Dumps naming the NT Kernel as probable cause will get us nowhere. So I'd like for you to run the driver verifier - it will hopefully flush the bad driver out -

START | type cmd.exe | right-click on cmd.exe uptop under programs | Run as Administrator | type verifier & hit enter - the Verifier screen will appear | do the following:
Code:

1. Select 2nd option - Create custom settings (for code developers)
2. Select 2nd option - Select individual settings from a full list.
3. Check the boxes
Special Pool Pool Tracking Force IRQL checking
4. Select last option - Select driver names from a list 5. Click on the Provider heading - sorts list by Provider 6. Check ALL boxes where Microsoft is not the Provider 7. Click on Finish 8. Re-boot
If the Driver Verifier (DV) finds a violation, it will result in a BSOD - usually a 0xc4 - but not always. It will verify your drivers 1-by-1, so it will take some time. To see the status of the Driver Verifier, bring up an elevated command prompt, type verifier - but this time select the last option on the first screen - "Display information about the currently verified drivers..". If you find your system to unstable (the verifier generally consumes CPU & RAM), turn if "off" and re-boot. To turn the Driver Verifier off, bring up an elevated command prompt and type verifier /reset then re-boot.

If you get a verifier-enabled BSOD, get the dump - go to \windows\minidump - get it, zip it up and attach.

I also need system info from you -

Download Live SysInternals Autoruns from Microsoft TechNet and SAVE it to your DOCUMENTS folder. Then download the attached zip and extract the batch file to your DESKTOP. Then go to desktop, right-click on the batch file and run as Administrator. It will take about 5 minutes for it to run. The output will be in a new folder named TSF_Vista_Support created in your documents folder. Zip up the entire folder and attach to next post. If resulting zip file is > 1.96mb, split into two zip files. 1.96mb is post attachment limit, but you can attach five 1.96mb zip files to each post.

Finally, I went through the loaded driver list in the dump file and found these - they appear old, but may be the most recent versions. Check for driver updates w/ system manufacturer.

This may be your problem driver based on your last post - not sure:
- Research in Motion (RIM) - RIM Virtual Serial Port
Code:
82beb000 82bf1780 RimSerial.sys Tue Jan 09 11:52:20 2007 (45A3C844)
Other drivers to look at for updates:
Code:
8f20b000 8f20c420 ASACPI.sys   Thu Aug 12 22:52:52 2004 (411C2D04)  ATTK ATK0110 ACPI Utility

8f00f000 8f161000 P17.sys      Mon Feb 05 04:10:32 2007 (45C6F488) - Sound blaster

82bdf000 82bea900 pcouffin.sys Tue Dec 05 09:39:53 2006 (457584B9) -  CopyToDVD 

92542000 9257d000 vmm.sys      Sun Feb 18 03:10:42 2007 (45D80A02)
8f000000 8f00f000 VMNetSrv.sys Wed Jan 24 07:05:29 2007 (45B74B89)
8a5a1000 8a5e9000 VSTBS23.SYS  Tue Jun 20 13:39:54 2006 (449832EA)
8f312000 8f3c5000 VSTCNXT3.SYS Tue Jun 20 13:39:37 2006 (449832D9)
8f20e000 8f312000 VSTDPV3.SYS  Tue Jun 20 13:41:01 2006 (4498332D)
Based on one driver - I believe you have Asus mobo..? Driver updates if so -
http://support.asus.com/download/dow...Language=en-us

Any ? - please let me know.

Regards. . .

jcgriff2

.

Code:
Opened log file 'A:\D\#Dumps\dledbetter_Vista_12-08-08\$99-dbug.txt'

Microsoft (R) Windows Debugger Version 6.10.0003.233 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [A:\D\#Dumps\dledbetter_Vista_12-08-08\Mini120708-06.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*a:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows Server 2008/Windows Vista SP1 Kernel Version 6001 (Service Pack 1) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 6001.18145.x86fre.vistasp1_gdr.080917-1612
Machine Name:
Kernel base = 0x82400000 PsLoadedModuleList = 0x82517c70
Debug session time: Sun Dec  7 11:54:53.569 2008 (GMT-5)
System Uptime: 0 days 0:04:54.194
Loading Kernel Symbols
...............................................................
................................................................
.................................
Loading User Symbols
Loading unloaded module list
......
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 1000008E, {c0000005, 8f7d9b8a, 9b6d2754, 0}

Probably caused by : ntkrpamp.exe ( nt!PsCallImageNotifyRoutines+5e )

Followup: MachineOwner
---------

1: kd> !analyze -v;r;kv;lmtn;lmtsmn;.bugcheck;.logclose;q
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_EXCEPTION_NOT_HANDLED_M (1000008e)
This is a very common bugcheck.  Usually the exception address pinpoints
the driver/function that caused the problem.  Always note this address
as well as the link date of the driver/image that contains this address.
Some common problems are exception code 0x80000003.  This means a hard
coded breakpoint or assertion was hit, but this system was booted
/NODEBUG.  This is not supposed to happen as developers should never have
hardcoded breakpoints in retail code, but ...
If this happens, make sure a debugger gets connected, and the
system is booted /DEBUG.  This will let us see why this breakpoint is
happening.
Arguments:
Arg1: c0000005, The exception code that was not handled
Arg2: 8f7d9b8a, The address that the exception occurred at
Arg3: 9b6d2754, Trap Frame
Arg4: 00000000

Debugging Details:
------------------


EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.

FAULTING_IP: 
+ffffffff8f7d9b8a
8f7d9b8a 0fb611          movzx   edx,byte ptr [ecx]

TRAP_FRAME:  9b6d2754 -- (.trap 0xffffffff9b6d2754)
.trap 0xffffffff9b6d2754
ErrCode = 00000000
eax=52ffabd9 ebx=eb0fe981 ecx=6a96f000 edx=000000b3 esi=6a960080 edi=00014000
eip=8f7d9b8a esp=9b6d27c8 ebp=9b6d2b4c iopl=0         nv up ei pl nz na pe nc
cs=0008  ss=0010  ds=0023  es=0023  fs=0030  gs=0000             efl=00010206
8f7d9b8a 0fb611          movzx   edx,byte ptr [ecx]         ds:0023:6a96f000=??
.trap
Resetting default scope

CUSTOMER_CRASH_COUNT:  6

DEFAULT_BUCKET_ID:  COMMON_SYSTEM_FAULT

BUGCHECK_STR:  0x8E

PROCESS_NAME:  msiexec.exe

CURRENT_IRQL:  0

LAST_CONTROL_TRANSFER:  from 826328fe to 8f7d9b8a

STACK_TEXT:  
WARNING: Frame IP not in any known module. Following frames may be wrong.
9b6d2b4c 826328fe 87467d10 000012e4 9b6d2b9c 0x8f7d9b8a
9b6d2b74 826326c2 87467d10 000012e4 8250d488 nt!PsCallImageNotifyRoutines+0x5e
9b6d2c18 82624655 85ac7958 8506fa78 9b6d2d14 nt!MiMapViewOfImageSection+0x812
9b6d2c88 82624745 8506fa78 9b6d2d14 00000000 nt!MiMapViewOfSection+0x22a
9b6d2cb8 82624952 ae6ea450 8506fa78 9b6d2d14 nt!MmMapViewOfSection+0x2a
9b6d2d34 82457a1a 000002d0 ffffffff 0119e770 nt!NtMapViewOfSection+0x203
9b6d2d34 779e9a94 000002d0 ffffffff 0119e770 nt!KiFastCallEntry+0x12a
0119e7e8 00000000 00000000 00000000 00000000 0x779e9a94


STACK_COMMAND:  kb

FOLLOWUP_IP: 
nt!PsCallImageNotifyRoutines+5e
826328fe 8b4510          mov     eax,dword ptr [ebp+10h]

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  nt!PsCallImageNotifyRoutines+5e

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: nt

IMAGE_NAME:  ntkrpamp.exe

DEBUG_FLR_IMAGE_TIMESTAMP:  48d1b7fa

FAILURE_BUCKET_ID:  0x8E_nt!PsCallImageNotifyRoutines+5e

BUCKET_ID:  0x8E_nt!PsCallImageNotifyRoutines+5e

Followup: MachineOwner
---------

eax=52ffabd9 ebx=eb0fe981 ecx=6a96f000 edx=000000b3 esi=6a960080 edi=00014000
eip=8f7d9b8a esp=9b6d27c8 ebp=9b6d2b4c iopl=0         nv up ei pl nz na pe nc
cs=0008  ss=0010  ds=0023  es=0023  fs=0030  gs=0000             efl=00010206
8f7d9b8a 0fb611          movzx   edx,byte ptr [ecx]         ds:0023:6a96f000=??
ChildEBP RetAddr  Args to Child              
WARNING: Frame IP not in any known module. Following frames may be wrong.
9b6d2b4c 826328fe 87467d10 000012e4 9b6d2b9c 0x8f7d9b8a
9b6d2b74 826326c2 87467d10 000012e4 8250d488 nt!PsCallImageNotifyRoutines+0x5e
9b6d2c18 82624655 85ac7958 8506fa78 9b6d2d14 nt!MiMapViewOfImageSection+0x812
9b6d2c88 82624745 8506fa78 9b6d2d14 00000000 nt!MiMapViewOfSection+0x22a
9b6d2cb8 82624952 ae6ea450 8506fa78 9b6d2d14 nt!MmMapViewOfSection+0x2a
9b6d2d34 82457a1a 000002d0 ffffffff 0119e770 nt!NtMapViewOfSection+0x203
9b6d2d34 779e9a94 000002d0 ffffffff 0119e770 nt!KiFastCallEntry+0x12a (FPO: [0,3] TrapFrame @ 9b6d2d64)
0119e7e8 00000000 00000000 00000000 00000000 0x779e9a94
start    end        module name
80401000 80409000   kdcom    kdcom.dll    Sat Jan 19 02:31:53 2008 (4791A769)
80409000 80469000   mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Sat Jan 19 02:29:43 2008 (4791A6E7)
80469000 8047a000   PSHED    PSHED.dll    Sat Jan 19 02:31:21 2008 (4791A749)
8047a000 80482000   BOOTVID  BOOTVID.dll  Sat Jan 19 02:27:15 2008 (4791A653)
80482000 804c3000   CLFS     CLFS.SYS     Sat Jan 19 00:28:01 2008 (47918A61)
804c3000 805a3000   CI       CI.dll       Fri Feb 22 00:00:56 2008 (47BE5708)
805a3000 805e9000   acpi     acpi.sys     Sat Jan 19 00:32:48 2008 (47918B80)
805e9000 805f8000   volmgr   volmgr.sys   Sat Jan 19 00:49:51 2008 (47918F7F)
80603000 8067f000   Wdf01000 Wdf01000.sys Sat Jan 19 00:52:21 2008 (47919015)
8067f000 8068c000   WDFLDR   WDFLDR.SYS   Sat Jan 19 00:52:19 2008 (47919013)
8068c000 8078c000   sptd     sptd.sys     Wed Mar 05 19:32:57 2008 (47CF3BB9)
8078c000 80795000   WMILIB   WMILIB.SYS   Sat Jan 19 00:53:08 2008 (47919044)
80795000 807bb000   SCSIPORT SCSIPORT.SYS Sat Jan 19 00:49:44 2008 (47918F78)
807bb000 807c3000   msisadrv msisadrv.sys Sat Jan 19 00:32:51 2008 (47918B83)
807c3000 807ea000   pci      pci.sys      Sat Jan 19 00:32:57 2008 (47918B89)
807ea000 807f9000   partmgr  partmgr.sys  Sat Jan 19 00:49:54 2008 (47918F82)
82400000 827b9000   nt       ntkrpamp.exe Wed Sep 17 22:07:54 2008 (48D1B7FA)
827b9000 827ec000   hal      halmacpi.dll Sat Jan 19 00:27:20 2008 (47918A38)
82a03000 82a4d000   volmgrx  volmgrx.sys  Sat Jan 19 00:50:00 2008 (47918F88)
82a4d000 82a54000   intelide intelide.sys Sat Jan 19 00:49:42 2008 (47918F76)
82a54000 82a62000   PCIIDEX  PCIIDEX.SYS  Sat Jan 19 00:49:40 2008 (47918F74)
82a62000 82a69000   pciide   pciide.sys   Sat Jan 19 00:49:42 2008 (47918F76)
82a69000 82a79000   mountmgr mountmgr.sys Sat Jan 19 00:49:13 2008 (47918F59)
82a79000 82a81000   atapi    atapi.sys    Sat Jan 19 00:49:40 2008 (47918F74)
82a81000 82a9f000   ataport  ataport.SYS  Sat Jan 19 00:49:40 2008 (47918F74)
82a9f000 82ad1000   fltmgr   fltmgr.sys   Sat Jan 19 00:28:10 2008 (47918A6A)
82ad1000 82ae1000   fileinfo fileinfo.sys Sat Jan 19 00:34:27 2008 (47918BE3)
82ae1000 82b52000   ksecdd   ksecdd.sys   Sat Jan 19 00:41:20 2008 (47918D80)
82b52000 82b93000   storport storport.sys Sat Jan 19 00:49:49 2008 (47918F7D)
82b93000 82bb6000   ndiswan  ndiswan.sys  Sat Jan 19 00:56:32 2008 (47919110)
82bb6000 82bca000   raspptp  raspptp.sys  Sat Jan 19 00:56:34 2008 (47919112)
82bca000 82bdf000   rassstp  rassstp.sys  Sat Jan 19 00:56:43 2008 (4791911B)
82bdf000 82bea900   pcouffin pcouffin.sys Tue Dec 05 09:39:53 2006 (457584B9)
82beb000 82bf1780   RimSerial RimSerial.sys Tue Jan 09 11:52:20 2007 (45A3C844)
8a200000 8a30b000   ndis     ndis.sys     Sat Jan 19 00:55:51 2008 (479190E7)
8a30b000 8a336000   msrpc    msrpc.sys    Sat Jan 19 00:48:15 2008 (47918F1F)
8a336000 8a370000   NETIO    NETIO.SYS    Sat Jan 19 00:56:19 2008 (47919103)
8a370000 8a388000   parport  parport.sys  Sat Jan 19 00:49:32 2008 (47918F6C)
8a388000 8a3bf000   atfcag82 atfcag82.SYS Sun Jul 20 20:16:38 2008 (4883D566)
8a3bf000 8a3ed000   msiscsi  msiscsi.sys  Sat Jan 19 00:50:44 2008 (47918FB4)
8a3ed000 8a3fc000   raspppoe raspppoe.sys Sat Jan 19 00:56:33 2008 (47919111)
8a400000 8a40b000   ndistapi ndistapi.sys Sat Jan 19 00:56:24 2008 (47919108)
8a40d000 8a4f4000   tcpip    tcpip.sys    Sat Apr 26 02:00:17 2008 (4812C4F1)
8a4f4000 8a50f000   fwpkclnt fwpkclnt.sys Sat Jan 19 00:55:44 2008 (479190E0)
8a528000 8a533000   tunnel   tunnel.sys   Sat Jan 19 00:55:50 2008 (479190E6)
8a533000 8a53c000   tunmp    tunmp.sys    Sat Jan 19 00:55:40 2008 (479190DC)
8a53c000 8a54b000   intelppm intelppm.sys Sat Jan 19 00:27:20 2008 (47918A38)
8a54b000 8a589000   USBPORT  USBPORT.SYS  Sat Jan 19 00:53:23 2008 (47919053)
8a589000 8a5a1000   cdrom    cdrom.sys    Sat Jan 19 00:49:50 2008 (47918F7E)
8a5a1000 8a5e9000   VSTBS23  VSTBS23.SYS  Tue Jun 20 13:39:54 2006 (449832EA)
8a5e9000 8a600000   rasl2tp  rasl2tp.sys  Sat Jan 19 00:56:33 2008 (47919111)
8a602000 8a711000   Ntfs     Ntfs.sys     Sat Jan 19 00:28:54 2008 (47918A96)
8a711000 8a74a000   volsnap  volsnap.sys  Sat Jan 19 00:50:10 2008 (47918F92)
8a74a000 8a752000   spldr    spldr.sys    Thu Jun 21 20:29:17 2007 (467B17DD)
8a752000 8a761000   mup      mup.sys      Sat Jan 19 00:28:20 2008 (47918A74)
8a761000 8a788000   ecache   ecache.sys   Sat Jan 19 00:50:47 2008 (47918FB7)
8a788000 8a7ac000   fvevol   fvevol.sys   Sat Jan 19 00:27:09 2008 (47918A2D)
8a7ac000 8a7bd000   disk     disk.sys     Sat Jan 19 00:49:47 2008 (47918F7B)
8a7bd000 8a7de000   CLASSPNP CLASSPNP.SYS Sat Jan 19 00:49:36 2008 (47918F70)
8a7de000 8a7e7000   crcdisk  crcdisk.sys  Thu Nov 02 04:52:27 2006 (4549B1CB)
8e600000 8e60b000   TDI      TDI.SYS      Sat Jan 19 00:57:10 2008 (47919136)
8e60b000 8ed14ba0   nvlddmkm nvlddmkm.sys Wed Sep 17 13:55:33 2008 (48D14495)
8ed15000 8edb4000   dxgkrnl  dxgkrnl.sys  Fri Aug 01 21:01:19 2008 (4893B1DF)
8edb4000 8edc1000   watchdog watchdog.sys Sat Jan 19 00:35:29 2008 (47918C21)
8edc1000 8edcc000   usbuhci  usbuhci.sys  Sat Jan 19 00:53:20 2008 (47919050)
8edcc000 8eddb000   usbehci  usbehci.sys  Sat Jan 19 00:53:21 2008 (47919051)
8eddb000 8eded000   HDAudBus HDAudBus.sys Tue Nov 27 18:18:41 2007 (474CA5D1)
8eded000 8edfc000   l160x86  l160x86.sys  Tue Apr 29 01:55:03 2008 (4816B837)
8edfc000 8edfe700   GEARAspiWDM GEARAspiWDM.sys Tue Apr 08 15:15:38 2008 (47FBC45A)
8f000000 8f00f000   VMNetSrv VMNetSrv.sys Wed Jan 24 07:05:29 2007 (45B74B89)
8f00f000 8f161000   P17      P17.sys      Mon Feb 05 04:10:32 2007 (45C6F488)
8f161000 8f18e000   portcls  portcls.sys  Sat Jan 19 00:53:17 2008 (4791904D)
8f18e000 8f1b3000   drmk     drmk.sys     Sat Jan 19 01:53:02 2008 (47919E4E)
8f1b3000 8f1dd000   ks       ks.sys       Sat Jan 19 00:49:21 2008 (47918F61)
8f1dd000 8f1f7000   serial   serial.sys   Sat Jan 19 00:49:34 2008 (47918F6E)
8f1f7000 8f1ff000   RootMdm  RootMdm.sys  Sat Jan 19 00:57:14 2008 (4791913A)
8f200000 8f20b000   fdc      fdc.sys      Sat Jan 19 00:49:37 2008 (47918F71)
8f20b000 8f20c420   ASACPI   ASACPI.sys   Thu Aug 12 22:52:52 2004 (411C2D04)
8f20e000 8f312000   VSTDPV3  VSTDPV3.SYS  Tue Jun 20 13:41:01 2006 (4498332D)
8f312000 8f3c5000   VSTCNXT3 VSTCNXT3.SYS Tue Jun 20 13:39:37 2006 (449832D9)
8f3c5000 8f3d2000   modem    modem.sys    Sat Jan 19 00:57:16 2008 (4791913C)
8f3d2000 8f3e1200   ohci1394 ohci1394.sys Sat Jan 19 00:53:33 2008 (4791905D)
8f3e2000 8f3ef080   1394BUS  1394BUS.SYS  Sat Jan 19 00:53:27 2008 (47919057)
8f3f0000 8f3fa000   serenum  serenum.sys  Sat Jan 19 00:49:29 2008 (47918F69)
8f604000 8f68d000   rdpdr    rdpdr.sys    Sat Jan 19 01:02:27 2008 (47919273)
8f68d000 8f69d000   termdd   termdd.sys   Sat Jan 19 01:01:06 2008 (47919222)
8f69d000 8f6a8000   kbdclass kbdclass.sys Sat Jan 19 00:49:14 2008 (47918F5A)
8f6a8000 8f6b3000   mouclass mouclass.sys Sat Jan 19 00:49:14 2008 (47918F5A)
8f6b3000 8f6b4380   swenum   swenum.sys   Sat Jan 19 00:49:20 2008 (47918F60)
8f6b5000 8f6bf000   mssmbios mssmbios.sys Sat Jan 19 00:32:55 2008 (47918B87)
8f6bf000 8f6cc000   umbus    umbus.sys    Sat Jan 19 00:53:40 2008 (47919064)
8f6cc000 8f6d8000   vga      vga.sys      Sat Jan 19 00:52:06 2008 (47919006)
8f6d8000 8f6f9000   VIDEOPRT VIDEOPRT.SYS Sat Jan 19 00:52:10 2008 (4791900A)
8f6f9000 8f708000   monitor  monitor.sys  Sat Jan 19 00:52:19 2008 (47919013)
8f708000 8f73c000   usbhub   usbhub.sys   Sat Jan 19 00:53:40 2008 (47919064)
8f73c000 8f746000   flpydisk flpydisk.sys Sat Jan 19 00:49:37 2008 (47918F71)
8f746000 8f757000   NDProxy  NDProxy.SYS  Sat Jan 19 00:56:28 2008 (4791910C)
8f757000 8f796000   HdAudio  HdAudio.sys  Wed Nov 01 21:43:11 2006 (45494D2F)
8f796000 8f79f000   Fs_Rec   Fs_Rec.SYS   Sat Jan 19 00:27:57 2008 (47918A5D)
8f79f000 8f7a6000   Null     Null.SYS     Sat Jan 19 00:49:12 2008 (47918F58)
8f7a6000 8f7ad000   Beep     Beep.SYS     Sat Jan 19 00:49:10 2008 (47918F56)
8f7b6000 8f7bc380   HIDPARSE HIDPARSE.SYS Sat Jan 19 00:53:16 2008 (4791904C)
8f7bd000 8f7c5000   RDPCDD   RDPCDD.sys   Sat Jan 19 01:01:08 2008 (47919224)
8f7c5000 8f7cd000   rdpencdd rdpencdd.sys Sat Jan 19 01:01:09 2008 (47919225)
8f7cd000 8f7d8000   Msfs     Msfs.SYS     Sat Jan 19 00:28:08 2008 (47918A68)
9240d000 92424000   usbccgp  usbccgp.sys  Sat Jan 19 00:53:29 2008 (47919059)
92424000 92425700   USBD     USBD.SYS     Sat Jan 19 00:53:17 2008 (4791904D)
92426000 9242f000   hidusb   hidusb.sys   Sat Jan 19 00:53:17 2008 (4791904D)
9242f000 9243f000   HIDCLASS HIDCLASS.SYS Sat Jan 19 00:53:16 2008 (4791904C)
9243f000 92448000   kbdhid   kbdhid.sys   Sat Jan 19 00:49:17 2008 (47918F5D)
92448000 92456000   Npfs     Npfs.SYS     Sat Jan 19 00:28:09 2008 (47918A69)
92456000 9245f000   rasacd   rasacd.sys   Sat Jan 19 00:56:31 2008 (4791910F)
9245f000 92475000   tdx      tdx.sys      Sat Jan 19 00:55:58 2008 (479190EE)
92475000 92489000   smb      smb.sys      Sat Jan 19 00:55:27 2008 (479190CF)
92489000 924d1000   afd      afd.sys      Sat Jan 19 00:57:00 2008 (4791912C)
924d1000 92503000   netbt    netbt.sys    Sat Jan 19 00:55:33 2008 (479190D5)
92503000 92519000   pacer    pacer.sys    Fri Apr 04 21:21:42 2008 (47F6D426)
92519000 92527000   netbios  netbios.sys  Sat Jan 19 00:55:45 2008 (479190E1)
92527000 9252f000   mouhid   mouhid.sys   Sat Jan 19 00:49:16 2008 (47918F5C)
9252f000 92542000   wanarp   wanarp.sys   Sat Jan 19 00:56:31 2008 (4791910F)
92542000 9257d000   vmm      vmm.sys      Sun Feb 18 03:10:42 2007 (45D80A02)
9257d000 925b9000   rdbss    rdbss.sys    Sat Jan 19 00:28:34 2008 (47918A82)
925b9000 925c3000   nsiproxy nsiproxy.sys Sat Jan 19 00:55:50 2008 (479190E6)
925c3000 925ce000   Ndisprot Ndisprot.sys Thu Oct 16 19:34:28 2008 (48F7CF84)
9280f000 92869000   csc      csc.sys      Sat Jan 19 00:28:54 2008 (47918A96)
92869000 92880000   dfsc     dfsc.sys     Sat Jan 19 00:28:20 2008 (47918A74)
92880000 92884ec0   avgmfx86 avgmfx86.sys Thu Jun 26 11:19:13 2008 (4863B371)
92885000 9289b480   avgldx86 avgldx86.sys Mon Jul 14 14:46:33 2008 (487B9F09)
9289c000 928a9000   crashdmp crashdmp.sys Sat Jan 19 00:49:43 2008 (47918F77)
928a9000 928b4000   dump_dumpata dump_dumpata.sys Sat Jan 19 00:49:40 2008 (47918F74)
928b4000 928bc000   dump_atapi dump_atapi.sys Sat Jan 19 00:49:40 2008 (47918F74)
928bc000 928cd000   dump_dumpfve dump_dumpfve.sys Sat Jan 19 00:27:05 2008 (47918A29)
928cd000 928d7000   Dxapi    Dxapi.sys    Sat Jan 19 00:36:12 2008 (47918C4C)
928d7000 928f2000   luafv    luafv.sys    Sat Jan 19 00:30:35 2008 (47918AFB)
928fa000 929a9000   spsys    spsys.sys    Thu Jun 21 20:33:02 2007 (467B18BE)
929a9000 929b9000   lltdio   lltdio.sys   Sat Jan 19 00:55:03 2008 (479190B7)
929b9000 929cc000   rspndr   rspndr.sys   Sat Jan 19 00:55:03 2008 (479190B7)
99670000 99872000   win32k   win32k.sys   Wed Sep 17 22:16:15 2008 (48D1B9EF)
99890000 99899000   TSDDD    TSDDD.dll    Sat Jan 19 01:01:09 2008 (47919225)
998b0000 998be000   cdd      cdd.dll      unavailable (00000000)
998c0000 9990c000   ATMFD    ATMFD.DLL    Sat Jan 19 00:36:13 2008 (47918C4D)
9d00a000 9d075000   HTTP     HTTP.sys     Sat Jan 19 00:55:21 2008 (479190C9)
9d075000 9d092000   srvnet   srvnet.sys   Sat Jan 19 00:29:11 2008 (47918AA7)
9d092000 9d0ab000   bowser   bowser.sys   Sat Jan 19 00:28:26 2008 (47918A7A)
9d0ab000 9d0c0000   mpsdrv   mpsdrv.sys   Sat Jan 19 00:54:45 2008 (479190A5)
9d0c0000 9d0e0000   mrxdav   mrxdav.sys   Sat Jan 19 00:28:44 2008 (47918A8C)
9d0e0000 9d0ff000   mrxsmb   mrxsmb.sys   Sat Jan 19 00:28:33 2008 (47918A81)
9d0ff000 9d138000   mrxsmb10 mrxsmb10.sys Thu May 08 15:21:54 2008 (482352D2)
9d138000 9d150000   mrxsmb20 mrxsmb20.sys Sat Jan 19 00:28:35 2008 (47918A83)
9d150000 9d177000   srv2     srv2.sys     Sat Jan 19 00:29:14 2008 (47918AAA)
9d177000 9d1c3000   srv      srv.sys      Tue Aug 26 21:06:23 2008 (48B4A88F)
9d1c3000 9d1cc000   asyncmac asyncmac.sys Sat Jan 19 00:56:29 2008 (4791910D)
9d1cc000 9d1d3000   parvdm   parvdm.sys   Sat Jan 19 00:49:28 2008 (47918F68)
9d1d3000 9d1d64c0   mrtRate  mrtRate.SYS  Wed Feb 28 13:41:57 2001 (3A9D4675)
9e60d000 9e6eb000   peauth   peauth.sys   Mon Oct 23 04:55:32 2006 (453C8384)
9e6eb000 9e6f5000   secdrv   secdrv.SYS   Wed Sep 13 09:18:32 2006 (45080528)
9e6f5000 9e701000   tcpipreg tcpipreg.sys Sat Jan 19 00:56:07 2008 (479190F7)
9e701000 9e70c000   tdtcp    tdtcp.sys    Sat Jan 19 01:01:08 2008 (47919224)
9e70c000 9e718000   tssecsrv tssecsrv.sys Sat Jan 19 01:01:15 2008 (4791922B)
9e718000 9e74b000   RDPWD    RDPWD.SYS    Sat Jan 19 01:01:16 2008 (4791922C)
9e74b000 9e761000   cdfs     cdfs.sys     Sat Jan 19 00:28:02 2008 (47918A62)

Unloaded modules:
928f2000 928fa000   drmkaud.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a7e7000 8a7f4000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a7f4000 8a7ff000   dump_ataport
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a50f000 8a517000   dump_atapi.s
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a517000 8a528000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8f7ad000 8f7b6000   kbdhid.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
start    end        module name
8f3e2000 8f3ef080   1394BUS  1394BUS.SYS  Sat Jan 19 00:53:27 2008 (47919057)
805a3000 805e9000   acpi     acpi.sys     Sat Jan 19 00:32:48 2008 (47918B80)
92489000 924d1000   afd      afd.sys      Sat Jan 19 00:57:00 2008 (4791912C)
8f20b000 8f20c420   ASACPI   ASACPI.sys   Thu Aug 12 22:52:52 2004 (411C2D04)
9d1c3000 9d1cc000   asyncmac asyncmac.sys Sat Jan 19 00:56:29 2008 (4791910D)
82a79000 82a81000   atapi    atapi.sys    Sat Jan 19 00:49:40 2008 (47918F74)
82a81000 82a9f000   ataport  ataport.SYS  Sat Jan 19 00:49:40 2008 (47918F74)
8a388000 8a3bf000   atfcag82 atfcag82.SYS Sun Jul 20 20:16:38 2008 (4883D566)
998c0000 9990c000   ATMFD    ATMFD.DLL    Sat Jan 19 00:36:13 2008 (47918C4D)
92885000 9289b480   avgldx86 avgldx86.sys Mon Jul 14 14:46:33 2008 (487B9F09)
92880000 92884ec0   avgmfx86 avgmfx86.sys Thu Jun 26 11:19:13 2008 (4863B371)
8f7a6000 8f7ad000   Beep     Beep.SYS     Sat Jan 19 00:49:10 2008 (47918F56)
8047a000 80482000   BOOTVID  BOOTVID.dll  Sat Jan 19 02:27:15 2008 (4791A653)
9d092000 9d0ab000   bowser   bowser.sys   Sat Jan 19 00:28:26 2008 (47918A7A)
998b0000 998be000   cdd      cdd.dll      unavailable (00000000)
9e74b000 9e761000   cdfs     cdfs.sys     Sat Jan 19 00:28:02 2008 (47918A62)
8a589000 8a5a1000   cdrom    cdrom.sys    Sat Jan 19 00:49:50 2008 (47918F7E)
804c3000 805a3000   CI       CI.dll       Fri Feb 22 00:00:56 2008 (47BE5708)
8a7bd000 8a7de000   CLASSPNP CLASSPNP.SYS Sat Jan 19 00:49:36 2008 (47918F70)
80482000 804c3000   CLFS     CLFS.SYS     Sat Jan 19 00:28:01 2008 (47918A61)
9289c000 928a9000   crashdmp crashdmp.sys Sat Jan 19 00:49:43 2008 (47918F77)
8a7de000 8a7e7000   crcdisk  crcdisk.sys  Thu Nov 02 04:52:27 2006 (4549B1CB)
9280f000 92869000   csc      csc.sys      Sat Jan 19 00:28:54 2008 (47918A96)
92869000 92880000   dfsc     dfsc.sys     Sat Jan 19 00:28:20 2008 (47918A74)
8a7ac000 8a7bd000   disk     disk.sys     Sat Jan 19 00:49:47 2008 (47918F7B)
8f18e000 8f1b3000   drmk     drmk.sys     Sat Jan 19 01:53:02 2008 (47919E4E)
928b4000 928bc000   dump_atapi dump_atapi.sys Sat Jan 19 00:49:40 2008 (47918F74)
928a9000 928b4000   dump_dumpata dump_dumpata.sys Sat Jan 19 00:49:40 2008 (47918F74)
928bc000 928cd000   dump_dumpfve dump_dumpfve.sys Sat Jan 19 00:27:05 2008 (47918A29)
928cd000 928d7000   Dxapi    Dxapi.sys    Sat Jan 19 00:36:12 2008 (47918C4C)
8ed15000 8edb4000   dxgkrnl  dxgkrnl.sys  Fri Aug 01 21:01:19 2008 (4893B1DF)
8a761000 8a788000   ecache   ecache.sys   Sat Jan 19 00:50:47 2008 (47918FB7)
8f200000 8f20b000   fdc      fdc.sys      Sat Jan 19 00:49:37 2008 (47918F71)
82ad1000 82ae1000   fileinfo fileinfo.sys Sat Jan 19 00:34:27 2008 (47918BE3)
8f73c000 8f746000   flpydisk flpydisk.sys Sat Jan 19 00:49:37 2008 (47918F71)
82a9f000 82ad1000   fltmgr   fltmgr.sys   Sat Jan 19 00:28:10 2008 (47918A6A)
8f796000 8f79f000   Fs_Rec   Fs_Rec.SYS   Sat Jan 19 00:27:57 2008 (47918A5D)
8a788000 8a7ac000   fvevol   fvevol.sys   Sat Jan 19 00:27:09 2008 (47918A2D)
8a4f4000 8a50f000   fwpkclnt fwpkclnt.sys Sat Jan 19 00:55:44 2008 (479190E0)
8edfc000 8edfe700   GEARAspiWDM GEARAspiWDM.sys Tue Apr 08 15:15:38 2008 (47FBC45A)
827b9000 827ec000   hal      halmacpi.dll Sat Jan 19 00:27:20 2008 (47918A38)
8eddb000 8eded000   HDAudBus HDAudBus.sys Tue Nov 27 18:18:41 2007 (474CA5D1)
8f757000 8f796000   HdAudio  HdAudio.sys  Wed Nov 01 21:43:11 2006 (45494D2F)
9242f000 9243f000   HIDCLASS HIDCLASS.SYS Sat Jan 19 00:53:16 2008 (4791904C)
8f7b6000 8f7bc380   HIDPARSE HIDPARSE.SYS Sat Jan 19 00:53:16 2008 (4791904C)
92426000 9242f000   hidusb   hidusb.sys   Sat Jan 19 00:53:17 2008 (4791904D)
9d00a000 9d075000   HTTP     HTTP.sys     Sat Jan 19 00:55:21 2008 (479190C9)
82a4d000 82a54000   intelide intelide.sys Sat Jan 19 00:49:42 2008 (47918F76)
8a53c000 8a54b000   intelppm intelppm.sys Sat Jan 19 00:27:20 2008 (47918A38)
8f69d000 8f6a8000   kbdclass kbdclass.sys Sat Jan 19 00:49:14 2008 (47918F5A)
9243f000 92448000   kbdhid   kbdhid.sys   Sat Jan 19 00:49:17 2008 (47918F5D)
80401000 80409000   kdcom    kdcom.dll    Sat Jan 19 02:31:53 2008 (4791A769)
8f1b3000 8f1dd000   ks       ks.sys       Sat Jan 19 00:49:21 2008 (47918F61)
82ae1000 82b52000   ksecdd   ksecdd.sys   Sat Jan 19 00:41:20 2008 (47918D80)
8eded000 8edfc000   l160x86  l160x86.sys  Tue Apr 29 01:55:03 2008 (4816B837)
929a9000 929b9000   lltdio   lltdio.sys   Sat Jan 19 00:55:03 2008 (479190B7)
928d7000 928f2000   luafv    luafv.sys    Sat Jan 19 00:30:35 2008 (47918AFB)
80409000 80469000   mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Sat Jan 19 02:29:43 2008 (4791A6E7)
8f3c5000 8f3d2000   modem    modem.sys    Sat Jan 19 00:57:16 2008 (4791913C)
8f6f9000 8f708000   monitor  monitor.sys  Sat Jan 19 00:52:19 2008 (47919013)
8f6a8000 8f6b3000   mouclass mouclass.sys Sat Jan 19 00:49:14 2008 (47918F5A)
92527000 9252f000   mouhid   mouhid.sys   Sat Jan 19 00:49:16 2008 (47918F5C)
82a69000 82a79000   mountmgr mountmgr.sys Sat Jan 19 00:49:13 2008 (47918F59)
9d0ab000 9d0c0000   mpsdrv   mpsdrv.sys   Sat Jan 19 00:54:45 2008 (479190A5)
9d1d3000 9d1d64c0   mrtRate  mrtRate.SYS  Wed Feb 28 13:41:57 2001 (3A9D4675)
9d0c0000 9d0e0000   mrxdav   mrxdav.sys   Sat Jan 19 00:28:44 2008 (47918A8C)
9d0e0000 9d0ff000   mrxsmb   mrxsmb.sys   Sat Jan 19 00:28:33 2008 (47918A81)
9d0ff000 9d138000   mrxsmb10 mrxsmb10.sys Thu May 08 15:21:54 2008 (482352D2)
9d138000 9d150000   mrxsmb20 mrxsmb20.sys Sat Jan 19 00:28:35 2008 (47918A83)
8f7cd000 8f7d8000   Msfs     Msfs.SYS     Sat Jan 19 00:28:08 2008 (47918A68)
807bb000 807c3000   msisadrv msisadrv.sys Sat Jan 19 00:32:51 2008 (47918B83)
8a3bf000 8a3ed000   msiscsi  msiscsi.sys  Sat Jan 19 00:50:44 2008 (47918FB4)
8a30b000 8a336000   msrpc    msrpc.sys    Sat Jan 19 00:48:15 2008 (47918F1F)
8f6b5000 8f6bf000   mssmbios mssmbios.sys Sat Jan 19 00:32:55 2008 (47918B87)
8a752000 8a761000   mup      mup.sys      Sat Jan 19 00:28:20 2008 (47918A74)
8a200000 8a30b000   ndis     ndis.sys     Sat Jan 19 00:55:51 2008 (479190E7)
925c3000 925ce000   Ndisprot Ndisprot.sys Thu Oct 16 19:34:28 2008 (48F7CF84)
8a400000 8a40b000   ndistapi ndistapi.sys Sat Jan 19 00:56:24 2008 (47919108)
82b93000 82bb6000   ndiswan  ndiswan.sys  Sat Jan 19 00:56:32 2008 (47919110)
8f746000 8f757000   NDProxy  NDProxy.SYS  Sat Jan 19 00:56:28 2008 (4791910C)
92519000 92527000   netbios  netbios.sys  Sat Jan 19 00:55:45 2008 (479190E1)
924d1000 92503000   netbt    netbt.sys    Sat Jan 19 00:55:33 2008 (479190D5)
8a336000 8a370000   NETIO    NETIO.SYS    Sat Jan 19 00:56:19 2008 (47919103)
92448000 92456000   Npfs     Npfs.SYS     Sat Jan 19 00:28:09 2008 (47918A69)
925b9000 925c3000   nsiproxy nsiproxy.sys Sat Jan 19 00:55:50 2008 (479190E6)
82400000 827b9000   nt       ntkrpamp.exe Wed Sep 17 22:07:54 2008 (48D1B7FA)
8a602000 8a711000   Ntfs     Ntfs.sys     Sat Jan 19 00:28:54 2008 (47918A96)
8f79f000 8f7a6000   Null     Null.SYS     Sat Jan 19 00:49:12 2008 (47918F58)
8e60b000 8ed14ba0   nvlddmkm nvlddmkm.sys Wed Sep 17 13:55:33 2008 (48D14495)
8f3d2000 8f3e1200   ohci1394 ohci1394.sys Sat Jan 19 00:53:33 2008 (4791905D)
8f00f000 8f161000   P17      P17.sys      Mon Feb 05 04:10:32 2007 (45C6F488)
92503000 92519000   pacer    pacer.sys    Fri Apr 04 21:21:42 2008 (47F6D426)
8a370000 8a388000   parport  parport.sys  Sat Jan 19 00:49:32 2008 (47918F6C)
807ea000 807f9000   partmgr  partmgr.sys  Sat Jan 19 00:49:54 2008 (47918F82)
9d1cc000 9d1d3000   parvdm   parvdm.sys   Sat Jan 19 00:49:28 2008 (47918F68)
807c3000 807ea000   pci      pci.sys      Sat Jan 19 00:32:57 2008 (47918B89)
82a62000 82a69000   pciide   pciide.sys   Sat Jan 19 00:49:42 2008 (47918F76)
82a54000 82a62000   PCIIDEX  PCIIDEX.SYS  Sat Jan 19 00:49:40 2008 (47918F74)
82bdf000 82bea900   pcouffin pcouffin.sys Tue Dec 05 09:39:53 2006 (457584B9)
9e60d000 9e6eb000   peauth   peauth.sys   Mon Oct 23 04:55:32 2006 (453C8384)
8f161000 8f18e000   portcls  portcls.sys  Sat Jan 19 00:53:17 2008 (4791904D)
80469000 8047a000   PSHED    PSHED.dll    Sat Jan 19 02:31:21 2008 (4791A749)
92456000 9245f000   rasacd   rasacd.sys   Sat Jan 19 00:56:31 2008 (4791910F)
8a5e9000 8a600000   rasl2tp  rasl2tp.sys  Sat Jan 19 00:56:33 2008 (47919111)
8a3ed000 8a3fc000   raspppoe raspppoe.sys Sat Jan 19 00:56:33 2008 (47919111)
82bb6000 82bca000   raspptp  raspptp.sys  Sat Jan 19 00:56:34 2008 (47919112)
82bca000 82bdf000   rassstp  rassstp.sys  Sat Jan 19 00:56:43 2008 (4791911B)
9257d000 925b9000   rdbss    rdbss.sys    Sat Jan 19 00:28:34 2008 (47918A82)
8f7bd000 8f7c5000   RDPCDD   RDPCDD.sys   Sat Jan 19 01:01:08 2008 (47919224)
8f604000 8f68d000   rdpdr    rdpdr.sys    Sat Jan 19 01:02:27 2008 (47919273)
8f7c5000 8f7cd000   rdpencdd rdpencdd.sys Sat Jan 19 01:01:09 2008 (47919225)
9e718000 9e74b000   RDPWD    RDPWD.SYS    Sat Jan 19 01:01:16 2008 (4791922C)
82beb000 82bf1780   RimSerial RimSerial.sys Tue Jan 09 11:52:20 2007 (45A3C844)
8f1f7000 8f1ff000   RootMdm  RootMdm.sys  Sat Jan 19 00:57:14 2008 (4791913A)
929b9000 929cc000   rspndr   rspndr.sys   Sat Jan 19 00:55:03 2008 (479190B7)
80795000 807bb000   SCSIPORT SCSIPORT.SYS Sat Jan 19 00:49:44 2008 (47918F78)
9e6eb000 9e6f5000   secdrv   secdrv.SYS   Wed Sep 13 09:18:32 2006 (45080528)
8f3f0000 8f3fa000   serenum  serenum.sys  Sat Jan 19 00:49:29 2008 (47918F69)
8f1dd000 8f1f7000   serial   serial.sys   Sat Jan 19 00:49:34 2008 (47918F6E)
92475000 92489000   smb      smb.sys      Sat Jan 19 00:55:27 2008 (479190CF)
8a74a000 8a752000   spldr    spldr.sys    Thu Jun 21 20:29:17 2007 (467B17DD)
928fa000 929a9000   spsys    spsys.sys    Thu Jun 21 20:33:02 2007 (467B18BE)
8068c000 8078c000   sptd     sptd.sys     Wed Mar 05 19:32:57 2008 (47CF3BB9)
9d177000 9d1c3000   srv      srv.sys      Tue Aug 26 21:06:23 2008 (48B4A88F)
9d150000 9d177000   srv2     srv2.sys     Sat Jan 19 00:29:14 2008 (47918AAA)
9d075000 9d092000   srvnet   srvnet.sys   Sat Jan 19 00:29:11 2008 (47918AA7)
82b52000 82b93000   storport storport.sys Sat Jan 19 00:49:49 2008 (47918F7D)
8f6b3000 8f6b4380   swenum   swenum.sys   Sat Jan 19 00:49:20 2008 (47918F60)
8a40d000 8a4f4000   tcpip    tcpip.sys    Sat Apr 26 02:00:17 2008 (4812C4F1)
9e6f5000 9e701000   tcpipreg tcpipreg.sys Sat Jan 19 00:56:07 2008 (479190F7)
8e600000 8e60b000   TDI      TDI.SYS      Sat Jan 19 00:57:10 2008 (47919136)
9e701000 9e70c000   tdtcp    tdtcp.sys    Sat Jan 19 01:01:08 2008 (47919224)
9245f000 92475000   tdx      tdx.sys      Sat Jan 19 00:55:58 2008 (479190EE)
8f68d000 8f69d000   termdd   termdd.sys   Sat Jan 19 01:01:06 2008 (47919222)
99890000 99899000   TSDDD    TSDDD.dll    Sat Jan 19 01:01:09 2008 (47919225)
9e70c000 9e718000   tssecsrv tssecsrv.sys Sat Jan 19 01:01:15 2008 (4791922B)
8a533000 8a53c000   tunmp    tunmp.sys    Sat Jan 19 00:55:40 2008 (479190DC)
8a528000 8a533000   tunnel   tunnel.sys   Sat Jan 19 00:55:50 2008 (479190E6)
8f6bf000 8f6cc000   umbus    umbus.sys    Sat Jan 19 00:53:40 2008 (47919064)
9240d000 92424000   usbccgp  usbccgp.sys  Sat Jan 19 00:53:29 2008 (47919059)
92424000 92425700   USBD     USBD.SYS     Sat Jan 19 00:53:17 2008 (4791904D)
8edcc000 8eddb000   usbehci  usbehci.sys  Sat Jan 19 00:53:21 2008 (47919051)
8f708000 8f73c000   usbhub   usbhub.sys   Sat Jan 19 00:53:40 2008 (47919064)
8a54b000 8a589000   USBPORT  USBPORT.SYS  Sat Jan 19 00:53:23 2008 (47919053)
8edc1000 8edcc000   usbuhci  usbuhci.sys  Sat Jan 19 00:53:20 2008 (47919050)
8f6cc000 8f6d8000   vga      vga.sys      Sat Jan 19 00:52:06 2008 (47919006)
8f6d8000 8f6f9000   VIDEOPRT VIDEOPRT.SYS Sat Jan 19 00:52:10 2008 (4791900A)
92542000 9257d000   vmm      vmm.sys      Sun Feb 18 03:10:42 2007 (45D80A02)
8f000000 8f00f000   VMNetSrv VMNetSrv.sys Wed Jan 24 07:05:29 2007 (45B74B89)
805e9000 805f8000   volmgr   volmgr.sys   Sat Jan 19 00:49:51 2008 (47918F7F)
82a03000 82a4d000   volmgrx  volmgrx.sys  Sat Jan 19 00:50:00 2008 (47918F88)
8a711000 8a74a000   volsnap  volsnap.sys  Sat Jan 19 00:50:10 2008 (47918F92)
8a5a1000 8a5e9000   VSTBS23  VSTBS23.SYS  Tue Jun 20 13:39:54 2006 (449832EA)
8f312000 8f3c5000   VSTCNXT3 VSTCNXT3.SYS Tue Jun 20 13:39:37 2006 (449832D9)
8f20e000 8f312000   VSTDPV3  VSTDPV3.SYS  Tue Jun 20 13:41:01 2006 (4498332D)
9252f000 92542000   wanarp   wanarp.sys   Sat Jan 19 00:56:31 2008 (4791910F)
8edb4000 8edc1000   watchdog watchdog.sys Sat Jan 19 00:35:29 2008 (47918C21)
80603000 8067f000   Wdf01000 Wdf01000.sys Sat Jan 19 00:52:21 2008 (47919015)
8067f000 8068c000   WDFLDR   WDFLDR.SYS   Sat Jan 19 00:52:19 2008 (47919013)
99670000 99872000   win32k   win32k.sys   Wed Sep 17 22:16:15 2008 (48D1B9EF)
8078c000 80795000   WMILIB   WMILIB.SYS   Sat Jan 19 00:53:08 2008 (47919044)

Unloaded modules:
928f2000 928fa000   drmkaud.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a7e7000 8a7f4000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a7f4000 8a7ff000   dump_ataport
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a50f000 8a517000   dump_atapi.s
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8a517000 8a528000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
8f7ad000 8f7b6000   kbdhid.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
Bugcheck code 1000008E
Arguments c0000005 8f7d9b8a 9b6d2754 00000000
Closing open log file A:\D\#Dumps\dledbetter_Vista_12-08-08\$99-dbug.txt

.
__________________________________________ 
 
          by jcgriff2, Moderator, Microsoft Support,  Tech Support Forum  * com  
 
Sun 12/07/2008 
23:19:17.86
jcgriff2 is offline  
Old 12-07-2008, 10:32 PM   #5
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



I would really like to do all of these things for you but the blue screen usually appears soon after I boot, so I may have to boot in to safe mode to do all of these things. I will be able to do that tomorrow morning. The Research In Motion Driver you pointed out I believe is the Desktop Software, which I don't think is the problem. I really think it has something to do with the application I downloaded that I intended to load onto my blackberry, but it was infected with a virus. I think this virus has infected my computer, because, as I said before, AVG is noting that it cannot update, although I have a working internet connection. Also, I noticed that all my System Restore points are missing, except for one this morning, after this trojan was found. I will complete the steps you mentioned after you reply, if you still think it is necessary. Thanks a lot for the reply.
dledbetter is offline  
Old 12-07-2008, 10:58 PM   #6
dai
TSF Team, Emeritus
 
Join Date: Jul 2004
Location: west australia
Posts: 78,002
OS: win 7 32x 64x rtm



in the device manager uninstall the video card
reboot tapping f8 and choose vga mode
when windows finishes rebooting
disable a/virus
install your drivers
reboot the computer

if that does not fix run memtest on the ram 1 stick at a time
http://www.memtest.org/
dai is offline  
Old 12-08-2008, 06:20 AM   #7
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



If I have a virus, how do I know where to look for it to disable it? And now that you mention it, I did notice some of the video to be a bit buggy. After the blue screen and the computer restarts, it goes to the screen that asks if I want to boot in to safe mode or boot as normal etc... Usually this screen all popped up at once, but now it is displayed line by line until it is all there. Does that mean the virus did something to my video driver?
dledbetter is offline  
Old 12-08-2008, 06:29 AM   #8
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



I did the verifier, and when I was asked to reboot, I did. When the computer was booting, I received a new blue screen:

STOP: 0X000000D6 (0X8FD8B014, 0X00000000, 0X8F60986B, 0X00000000)

Last minidump:
Attached Files
File Type: zip Mini120808-03.zip (18.7 KB, 20 views)
dledbetter is offline  
Old 12-08-2008, 06:54 AM   #9
Registered Member
 
Join Date: Jul 2008
Posts: 39
OS: Windows Vista



Ok this s definately a virus now, as it will not let met boot in to safe mode the normal way. Pressing F8 does nothing when I am booting now. The only way I can get into safe mode is when I get a blue screen right before it logs on, then the prompt is brought up after the reboot.
dledbetter is offline  
Old 12-08-2008, 07:12 AM   #10
dai
TSF Team, Emeritus
 
Join Date: Jul 2004
Location: west australia
Posts: 78,002
OS: win 7 32x 64x rtm



http://www.techsupportforum.com/secu...oval-help.html
dai is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2


All times are GMT -7. The time now is 08:49 AM.


vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2017 DragonByte Technologies Ltd.
Copyright 2001 - 2015, Tech Support Forum

Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts

 

Partially Powered By Products Found At Lampwrights.com