svchost.exe high memory usage....bsod with driver_irql_not_less_or_equal

[karan.k]

hey from last couple of days im experiencing frequent bsod with error driver_irql_not_less_or_equal.............on enquiring i found svchost.exe using high resources......and one thing i noticed is that the occurance of bsod is more when im using openvpn......i have scanned my computer for any virus or malware.....so plz dnt suggest that
for the specifications
win 7 home basic oem
intel i3 processor
3 gb ram
that would be sufficient !
i'm posting my hijackthis log
-----------------------------------------------------------------------------------

[FONT=Lucida Console][COLOR=#000000][FONT=Verdana]Logfile of Trend Micro HijackThis v2.0.4[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]Scan saved at PM 4:49:44, on 06/06/2012[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]Platform: Windows 7  (WinNT 6.00.3504)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]MSIE: Internet Explorer v8.00 (8.00.7600.16968)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]Boot mode: Normal[/FONT][/COLOR]

[COLOR=#000000][FONT=Verdana]Running processes:[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Windows\SysWOW64\RunDll32.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\iTunes\iTunesHelper.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\TATA DOCOMO 3G\UIExec.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Program Files\Sony\VAIO Care\listener.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Users\kohli\AppData\Local\Google\Chrome\Application\chrome.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Users\kohli\AppData\Local\Google\Chrome\Application\chrome.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Users\kohli\AppData\Local\Google\Chrome\Application\chrome.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Users\kohli\AppData\Local\Google\Chrome\Application\chrome.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]C:\Users\kohli\Desktop\hj\Trend Micro\HiJackThis\HiJackThis.exe[/FONT][/COLOR]

[COLOR=#000000][FONT=Verdana]R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url=http://sony.msn.com]MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url=http://go.microsoft.com/fwlink/?LinkId=69157]MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url=http://go.microsoft.com/fwlink/?LinkId=69157]MSN.com - Hotmail, Outlook, Skype, Bing, Latest News, Photos & Videos[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = [/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = [/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = [/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O1 - Hosts: 74.208.10.249 gs.apple.com[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [IAStorIcon] "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [PMBVolumeWatcher] "C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [UIExec] "C:\Program Files (x86)\TATA DOCOMO 3G\UIExec.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKLM\..\Run: [PD-Proxy] C:\Users\kohli\AppData\Local\Temp\Rar$EX00.602\PD-Proxy_2.1.9\PD-Launcher.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O4 - Global Startup: Bluetooth.lnk = ?[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O10 - Unknown file in Winsock LSP: c:\windows\system32\prxernsp.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O10 - Unknown file in Winsock LSP: c:\windows\system32\prxerdrv.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O16 - DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} (VaioInfo.CMClass) - [url]http://www.sony.co.in/HP/script/supt/VaioInfo.CAB[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O16 - DPF: {A3D93B25-4601-49D2-B3AF-F447C73D561F} (Sony SNC-RZ25 Control) - [url]http://192.168.202.5/program/SonySncRz25View.cab[/url][/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O17 - HKLM\System\CCS\Services\Tcpip\..\{36BA9AB1-67F6-4714-8143-4A0BF155ED55}: NameServer = 10.200.112.1[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: NMDVPN Service (NMDVPNService) - Unknown owner - C:\Program Files (x86)\NMDVPN\bin\nmdvpnserv.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Care Performance Service (SampleCollector) - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: UDisk Monitor - Unknown owner - C:\Program Files\MBlaze UI\bin\MonServiceUDisk.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files (x86)\TATA DOCOMO 3G\AssistantServices.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)[/FONT][/COLOR]

[COLOR=#000000][FONT=Verdana]--[/FONT][/COLOR]
[COLOR=#000000][FONT=Verdana]End of file - 16367 bytes[/FONT][/COLOR] [/FONT]

 

[jcgriff2]

Hi -

The lone dump is not offering any clues.

Run Driver Verifier - https://www.sysnative.com/forums/showthread.php/29-Driver-Verifier-BSOD-related

Use Process Explorer to see what is running under the troubled svchost -

http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx

Run ProcExp "As Administrator"; hover mouse over the svchost in question.

What system services are listed?

I don't see anything out of the ordinary in tasklist for svchost -

 [FONT=Lucida Console]Image Name                     PID Session Name        Session#    Mem Usage Status          User Name                                              CPU Time Window Title                                                            
========================= ======== ================ =========== ============ =============== ================================================== ============ ========================================================================
System Idle Process              0 Services                   0         24 K Unknown         NT AUTHORITY\SYSTEM                                     2:37:23 N/A                                                                     
System                           4 Services                   0      1,016 K Unknown         N/A                                                     0:00:34 N/A                                                                     
smss.exe                       324 Services                   0      1,256 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
csrss.exe                      496 Services                   0      5,628 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:01 N/A                                                                     
wininit.exe                    560 Services                   0      4,556 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
csrss.exe                      584 Console                    1     12,560 K Running         NT AUTHORITY\SYSTEM                                     0:00:07 N/A                                                                     
services.exe                   620 Services                   0      9,364 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:03 N/A                                                                     
lsass.exe                      648 Services                   0     13,812 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:11 N/A                                                                     
lsm.exe                        660 Services                   0      4,696 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
svchost.exe                    776 Services                   0     10,928 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:12 N/A                                                                     
svchost.exe                    852 Services                   0      9,940 K Unknown         NT AUTHORITY\NETWORK SERVICE                            0:00:09 N/A                                                                     
atiesrxx.exe                   912 Services                   0      4,496 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
winlogon.exe                   948 Console                    1      7,368 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
svchost.exe                    996 Services                   0     21,772 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:01:10 N/A                                                                     
svchost.exe                    304 Services                   0     99,432 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:14 N/A                                                                     
svchost.exe                    456 Services                   0     53,404 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:34 N/A                                                                     
svchost.exe                    484 Services                   0     12,936 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:00:00 N/A                                                                     
svchost.exe                   1152 Services                   0     24,568 K Unknown         NT AUTHORITY\NETWORK SERVICE                            0:00:27 N/A                                                                     
atieclxx.exe                  1240 Console                    1      6,296 K Running         NT AUTHORITY\SYSTEM                                     0:00:00 AMD EEU Client                                                          
spoolsv.exe                   1428 Services                   0     12,036 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
svchost.exe                   1476 Services                   0     15,712 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:00:01 N/A                                                                     
PhotoshopElementsFileAgen     1592 Services                   0      1,176 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
AppleMobileDeviceService.     1664 Services                   0      9,616 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
mDNSResponder.exe             1728 Services                   0      6,144 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
btwdins.exe                   1764 Services                   0      5,880 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
ekrn.exe                      1808 Services                   0     92,564 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:27 N/A                                                                     
LMS.exe                       1872 Services                   0      4,904 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
SMSvcHost.exe                 1904 Services                   0     22,420 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:00:00 N/A                                                                     
PMBDeviceInfoProvider.exe     1136 Services                   0      5,044 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
svchost.exe                   1496 Services                   0      6,160 K Unknown         NT AUTHORITY\NETWORK SERVICE                            0:00:00 N/A                                                                     
PsiService_2.exe              1604 Services                   0      3,712 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
SOHDms.exe                    1684 Services                   0      9,980 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:01 N/A                                                                     
svchost.exe                   1516 Services                   0      5,548 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:00:00 N/A                                                                     
uCamMonitor.exe               1300 Services                   0      4,712 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
MonServiceUDisk.exe           2016 Services                   0      4,444 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
AssistantServices.exe         1996 Services                   0      4,060 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:12 N/A                                                                     
VESMgr.exe                    1944 Services                   0     11,048 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
VCFw.exe                      2052 Services                   0     14,612 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:04 N/A                                                                     
VcmIAlzMgr.exe                2080 Services                   0      9,060 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:04 N/A                                                                     
VcmINSMgr.exe                 2100 Services                   0      8,252 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
VSNService.exe                2148 Services                   0     10,364 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
dllhost.exe                   2160 Services                   0      7,216 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
WLIDSVC.EXE                   2200 Services                   0     11,968 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
WLIDSVCM.EXE                  2508 Services                   0      3,568 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
VESMgrSub.exe                 2552 Console                    1     16,696 K Running         NT AUTHORITY\SYSTEM                                     0:00:01 AppMon Wnd                                                              
SpfService64.exe              2944 Services                   0     12,268 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:02 N/A                                                                     
dwm.exe                       3640 Console                    1     27,972 K Running         WORKGROUP\kohli                                         0:00:16 DWM Notification Window                                                 
taskhost.exe                  3652 Console                    1      9,884 K Running         WORKGROUP\kohli                                         0:00:00 MCI command handling window                                             
explorer.exe                  3744 Console                    1     77,280 K Running         WORKGROUP\kohli                                         0:00:15 N/A                                                                     
taskeng.exe                   3780 Console                    1      6,556 K Running         WORKGROUP\kohli                                         0:00:00 TaskEng - Task Scheduler Engine Process                                 
VSNClient.exe                 3856 Console                    1     15,108 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
SPMgr.exe                     3944 Console                    1        532 K Running         WORKGROUP\kohli                                         0:00:00 VAIO_Power_Management                                                   
WmiPrvSE.exe                  4016 Services                   0      6,660 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
RAVBg64.exe                   3348 Console                    1     10,472 K Running         WORKGROUP\kohli                                         0:00:00 Realtek HD Audio Background Process for Vista                           
SynTPEnh.exe                  3356 Console                    1     19,100 K Running         WORKGROUP\kohli                                         0:00:13 N/A                                                                     
egui.exe                      3376 Console                    1     20,648 K Running         WORKGROUP\kohli                                         0:00:01 ESET Smart Security                                                     
BTTray.exe                    3504 Console                    1     11,132 K Running         WORKGROUP\kohli                                         0:00:00 BTTrayMainWindow                                                        
SynTPHelper.exe               3604 Console                    1      3,656 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
rundll32.exe                  3316 Console                    1      4,920 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
SearchIndexer.exe             3480 Services                   0     44,684 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:23 N/A                                                                     
IAStorIcon.exe                3552 Console                    1     22,680 K Running         WORKGROUP\kohli                                         0:00:00 .NET-BroadcastEventWindow.2.0.0.0.33c0d9d.0                             
ISBMgr.exe                    4088 Console                    1      7,404 K Running         WORKGROUP\kohli                                         0:00:00 ISBMainWnd                                                              
PMBVolumeWatcher.exe          4068 Console                    1      2,932 K Running         WORKGROUP\kohli                                         0:00:01 N/A                                                                     
SHTtray.exe                   3528 Console                    1      8,092 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
MOM.exe                        724 Console                    1      4,872 K Running         WORKGROUP\kohli                                         0:00:01 .NET-BroadcastEventWindow.2.0.0.0.5c39d4.0                              
iTunesHelper.exe              1752 Console                    1     11,736 K Running         WORKGROUP\kohli                                         0:00:00 WinAMRestoreWnd                                                         
UIExec.exe                    4196 Console                    1      4,976 K Running         WORKGROUP\kohli                                         0:00:00 ZTEMODEMDETECTMTO                                                       
IEMonitor.exe                 4428 Console                    1      6,648 K Running         WORKGROUP\kohli                                         0:00:00 IDM agent for click monitoring in IE-based browsers                     
iPodService.exe               4468 Services                   0      7,568 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
CCC.exe                       4732 Console                    1      4,428 K Running         WORKGROUP\kohli                                         0:00:06 N/A                                                                     
svchost.exe                   4628 Services                   0      9,124 K Unknown         NT AUTHORITY\LOCAL SERVICE                              0:00:00 N/A                                                                     
IAStorDataMgrSvc.exe          1860 Services                   0     16,580 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:01 N/A                                                                     
iviRegMgr.exe                 4220 Services                   0      4,188 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
mbamservice.exe               3864 Services                   0      7,400 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
VCPerfService.exe             3388 Services                   0     13,152 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:08 N/A                                                                     
VUAgent.exe                   5124 Services                   0      7,164 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
listener.exe                  5792 Console                    1      5,044 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
UNS.exe                       5892 Services                   0      9,084 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
SPMService.exe                5992 Services                   0     15,880 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
svchost.exe                   6020 Services                   0     24,900 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:16 N/A                                                                     
wmpnetwk.exe                  6072 Services                   0      2,752 K Unknown         NT AUTHORITY\NETWORK SERVICE                            0:00:00 N/A                                                                     
VAIOUpdt.exe                  5360 Console                    1      3,488 K Running         WORKGROUP\kohli                                         0:00:00 TrayICON                                                                
chrome.exe                    2248 Console                    1   1,23,552 K Running         WORKGROUP\kohli                                         0:01:22 BSOD, Crashes, Kernel Debugging - Post New Thread - Google Chrome       
chrome.exe                    5308 Console                    1     36,444 K Unknown         WORKGROUP\kohli                                         0:00:10 N/A                                                                     
chrome.exe                    6036 Console                    1     28,680 K Not Responding  WORKGROUP\kohli                                         0:00:01 OleMainThreadWndName                                                    
chrome.exe                     788 Console                    1     70,752 K Unknown         WORKGROUP\kohli                                         0:00:25 N/A                                                                     
VCsystray.exe                 5104 Console                    1        596 K Running         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
VCService.exe                 3532 Services                   0      5,092 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
VCAgent.exe                   2460 Services                   0     48,912 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
vds.exe                        720 Services                   0      8,224 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
chrome.exe                    5332 Console                    1     37,928 K Unknown         WORKGROUP\kohli                                         0:00:02 N/A                                                                     
chrome.exe                    4564 Console                    1     61,240 K Unknown         WORKGROUP\kohli                                         0:00:08 N/A                                                                     
rundll32.exe                  5736 Console                    1      6,560 K Not Responding  WORKGROUP\kohli                                         0:00:00 N/A                                                                     
chrome.exe                    5136 Console                    1     26,900 K Running         WORKGROUP\kohli                                         0:00:00 Msg                                                                     
chrome.exe                    2936 Console                    1     44,728 K Unknown         WORKGROUP\kohli                                         0:00:02 N/A                                                                     
chrome.exe                    3460 Console                    1     36,172 K Unknown         WORKGROUP\kohli                                         0:00:01 N/A                                                                     
IDMan.exe                     5824 Console                    1     23,244 K Running         WORKGROUP\kohli                                         0:00:01 IDM drop target. Drop web-links for downloading here                    
BSOD_Windows7_Vista_v2.60     2884 Console                    1      4,468 K Running         WORKGROUP\kohli                                         0:00:00 Administrator:  kohli                                                   
conhost.exe                   4800 Console                    1      6,436 K Running         WORKGROUP\kohli                                         0:00:01 CicMarshalWnd                                                           
cmd.exe                       4284 Console                    1      4,484 K Unknown         WORKGROUP\kohli                                         0:00:01 N/A                                                                     
WmiPrvSE.exe                  1440 Services                   0      5,960 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
TrustedInstaller.exe          3268 Services                   0     13,480 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:04 N/A                                                                     
chrome.exe                    3752 Console                    1     28,160 K Unknown         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
chrome.exe                    3068 Console                    1     77,480 K Unknown         WORKGROUP\kohli                                         0:00:07 N/A                                                                     
SearchProtocolHost.exe        4420 Services                   0      8,784 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
SearchFilterHost.exe          5476 Services                   0      7,252 K Unknown         NT AUTHORITY\SYSTEM                                     0:00:00 N/A                                                                     
WmiPrvSE.exe                  5324 Services                   0      9,192 K Unknown         NT AUTHORITY\NETWORK SERVICE                            0:00:00 N/A                                                                     
tasklist.exe                   748 Console                    1      6,212 K Unknown         WORKGROUP\kohli                                         0:00:00 N/A                                                                     
[/FONT]

Please run AutoRuns - step 1A - https://www.sysnative.com/forums/sh...D)-Posting-Instructions-Windows-8-7-amp-Vista

Save it as an ARN file (default file ext). Zip it up & attach to next post.


Are you running ESET ESS 5 or ESS 6 beta?


Regards. . .

jcgriff2


`

BSOD SUMMARY

[font=lucida console]
Loading Dump File [C:\Users\PalmDesert\_jcgriff2_\dbug\__Kernel__\060612-19047-01.dmp]
Built by: 7600.16988.amd64fre.win7_gdr.120401-1505
Debug session time: Wed Jun  6 07:06:39.321 2012 (GMT-4)
System Uptime: 0 days 3:51:32.882
BugCheck D1, {fffffa8007ccf004, 2, 0, fffffa8006f12d0f}
Probably caused by : ntkrnlmp.exe ( nt!KiPageFault+260 )
DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT
BUGCHECK_STR:  0xD1
PROCESS_NAME:  openvpn.exe
FAILURE_BUCKET_ID:  X64_0xD1_nt!KiPageFault+260
Bugcheck code 000000D1
Arguments fffffa80`07ccf004 00000000`00000002 00000000`00000000 fffffa80`06f12d0f
BiosVersion = R1100Y8
BiosReleaseDate = 08/17/2010
SystemManufacturer = Sony Corporation
SystemProductName = VPCEA33EN
MaxSpeed:     2400
CurrentSpeed: 2394
¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``  
[/font]

[font=lucida console]
Microsoft (R) Windows Debugger Version 6.12.0002.633 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\PalmDesert\_jcgriff2_\dbug\__Kernel__\060612-19047-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*a:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7600 MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7600.16988.amd64fre.win7_gdr.120401-1505
Machine Name:
Kernel base = 0xfffff800`0360e000 PsLoadedModuleList = 0xfffff800`0384ae70
Debug session time: Wed Jun  6 07:06:39.321 2012 (UTC - 4:00)
System Uptime: 0 days 3:51:32.882
Loading Kernel Symbols
...............................................................
................................................................
...........................
Loading User Symbols
Loading unloaded module list
..............
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck D1, {fffffa8007ccf004, 2, 0, fffffa8006f12d0f}

Probably caused by : ntkrnlmp.exe ( nt!KiPageFault+260 )

Followup: MachineOwner
---------

0: kd> !analyze -v;r;kv;lmtn;lmtsmn;.bugcheck;!peb;!sysinfo cpuinfo;!sysinfo machineid; !sysinfo cpuspeed; !sysinfo smbios 
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: fffffa8007ccf004, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000000, value 0 = read operation, 1 = write operation
Arg4: fffffa8006f12d0f, address which referenced memory

Debugging Details:
------------------


READ_ADDRESS: GetPointerFromAddress: unable to read from fffff800038b50e0
 fffffa8007ccf004 

CURRENT_IRQL:  2

FAULTING_IP: 
+3935313038343031
fffffa80`06f12d0f 0fb602          movzx   eax,byte ptr [rdx]

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0xD1

PROCESS_NAME:  openvpn.exe

TRAP_FRAME:  fffff88009579980 -- (.trap 0xfffff88009579980)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=000000000000006e rbx=0000000000000000 rcx=000000000000005a
rdx=fffffa8007ccf004 rsi=0000000000000000 rdi=0000000000000000
rip=fffffa8006f12d0f rsp=fffff88009579b10 rbp=fffffa8007ccefae
 r8=0000000000000001  r9=0000000000007b00 r10=0000000000000079
r11=00000000000000ea r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei ng nz na po cy
fffffa80`06f12d0f 0fb602          movzx   eax,byte ptr [rdx] ds:03e8:fffffa80`07ccf004=??
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff8000367d5a9 to fffff8000367e040

STACK_TEXT:  
fffff880`09579838 fffff800`0367d5a9 : 00000000`0000000a fffffa80`07ccf004 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`09579840 fffff800`0367c220 : 00000000`000007ff 00000000`00000002 fffffa80`02488190 fffffa80`02569830 : nt!KiBugCheckDispatch+0x69
fffff880`09579980 fffffa80`06f12d0f : 00000000`000003e8 fffff880`09579b78 00000000`800003e8 00000000`00000000 : nt!KiPageFault+0x260
fffff880`09579b10 00000000`000003e8 : fffff880`09579b78 00000000`800003e8 00000000`00000000 fffffa80`050d1188 : 0xfffffa80`06f12d0f
fffff880`09579b18 fffff880`09579b78 : 00000000`800003e8 00000000`00000000 fffffa80`050d1188 fffffa80`06f52448 : 0x3e8
fffff880`09579b20 00000000`800003e8 : 00000000`00000000 fffffa80`050d1188 fffffa80`06f52448 fffffa80`02ffc600 : 0xfffff880`09579b78
fffff880`09579b28 00000000`00000000 : fffffa80`050d1188 fffffa80`06f52448 fffffa80`02ffc600 00000000`00000120 : 0x800003e8


STACK_COMMAND:  kb

FOLLOWUP_IP: 
nt!KiPageFault+260
fffff800`0367c220 440f20c0        mov     rax,cr8

SYMBOL_STACK_INDEX:  2

SYMBOL_NAME:  nt!KiPageFault+260

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: nt

IMAGE_NAME:  ntkrnlmp.exe

DEBUG_FLR_IMAGE_TIMESTAMP:  4f7912ee

FAILURE_BUCKET_ID:  X64_0xD1_nt!KiPageFault+260

BUCKET_ID:  X64_0xD1_nt!KiPageFault+260

Followup: MachineOwner
---------

rax=fffff88009579940 rbx=0000000000000002 rcx=000000000000000a
rdx=fffffa8007ccf004 rsi=fffffa8007ccef86 rdi=0000000000001a86
rip=fffff8000367e040 rsp=fffff88009579838 rbp=fffff88009579a00
 r8=0000000000000002  r9=0000000000000000 r10=fffffa8006f12d0f
r11=fffff6fb7ea001f0 r12=fffffa8006ebe338 r13=0000000000000000
r14=0000000000000014 r15=0000000000000056
iopl=0         nv up ei ng nz na pe nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00000282
nt!KeBugCheckEx:
fffff800`0367e040 48894c2408      mov     qword ptr [rsp+8],rcx ss:0018:fffff880`09579840=000000000000000a
Child-SP          RetAddr           : Args to Child                                                           : Call Site
fffff880`09579838 fffff800`0367d5a9 : 00000000`0000000a fffffa80`07ccf004 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`09579840 fffff800`0367c220 : 00000000`000007ff 00000000`00000002 fffffa80`02488190 fffffa80`02569830 : nt!KiBugCheckDispatch+0x69
fffff880`09579980 fffffa80`06f12d0f : 00000000`000003e8 fffff880`09579b78 00000000`800003e8 00000000`00000000 : nt!KiPageFault+0x260 (TrapFrame @ fffff880`09579980)
fffff880`09579b10 00000000`000003e8 : fffff880`09579b78 00000000`800003e8 00000000`00000000 fffffa80`050d1188 : 0xfffffa80`06f12d0f
fffff880`09579b18 fffff880`09579b78 : 00000000`800003e8 00000000`00000000 fffffa80`050d1188 fffffa80`06f52448 : 0x3e8
fffff880`09579b20 00000000`800003e8 : 00000000`00000000 fffffa80`050d1188 fffffa80`06f52448 fffffa80`02ffc600 : 0xfffff880`09579b78
fffff880`09579b28 00000000`00000000 : fffffa80`050d1188 fffffa80`06f52448 fffffa80`02ffc600 00000000`00000120 : 0x800003e8
start             end                 module name
fffff800`00bc4000 fffff800`00bce000   kdcom    kdcom.dll    Sat Feb 05 07:21:45 2011 (4D4D40D9)
fffff800`0360e000 fffff800`03be9000   nt       ntkrnlmp.exe Sun Apr 01 22:46:06 2012 (4F7912EE)
fffff800`03be9000 fffff800`03c32000   hal      hal.dll      Mon Jul 13 21:27:36 2009 (4A5BDF08)
fffff880`00c00000 fffff880`00cc0000   CI       CI.dll       Mon Jul 13 21:32:13 2009 (4A5BE01D)
fffff880`00ce3000 fffff880`00d27000   mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Mon Jul 13 21:29:10 2009 (4A5BDF66)
fffff880`00d27000 fffff880`00d3b000   PSHED    PSHED.dll    Mon Jul 13 21:32:23 2009 (4A5BE027)
fffff880`00d3b000 fffff880`00d99000   CLFS     CLFS.SYS     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`00d99000 fffff880`00df5000   volmgrx  volmgrx.sys  Mon Jul 13 19:20:33 2009 (4A5BC141)
fffff880`00e00000 fffff880`00e1a000   mountmgr mountmgr.sys Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`00e26000 fffff880`00eca000   Wdf01000 Wdf01000.sys Mon Jul 13 19:22:07 2009 (4A5BC19F)
fffff880`00eca000 fffff880`00ed9000   WDFLDR   WDFLDR.SYS   Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`00ed9000 fffff880`00f30000   ACPI     ACPI.sys     Mon Jul 13 19:19:34 2009 (4A5BC106)
fffff880`00f30000 fffff880`00f39000   WMILIB   WMILIB.SYS   Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`00f39000 fffff880`00f43000   msisadrv msisadrv.sys Mon Jul 13 19:19:26 2009 (4A5BC0FE)
fffff880`00f43000 fffff880`00f76000   pci      pci.sys      Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`00f76000 fffff880`00f83000   vdrvroot vdrvroot.sys Mon Jul 13 20:01:31 2009 (4A5BCADB)
fffff880`00f83000 fffff880`00f98000   partmgr  partmgr.sys  Sat Mar 17 01:12:46 2012 (4F641D4E)
fffff880`00f98000 fffff880`00fa5000   ssfs0bbc ssfs0bbc.sys Tue Apr 21 20:47:13 2009 (49EE6911)
fffff880`00fa5000 fffff880`00fc9000   ssidrv   ssidrv.sys   Tue Apr 21 20:48:14 2009 (49EE694E)
fffff880`00fc9000 fffff880`00fd2000   compbatt compbatt.sys Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`00fd2000 fffff880`00fde000   BATTC    BATTC.SYS    Mon Jul 13 19:31:01 2009 (4A5BC3B5)
fffff880`00fde000 fffff880`00ff3000   volmgr   volmgr.sys   Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`01000000 fffff880`01073000   cng      cng.sys      Wed Nov 16 23:26:35 2011 (4EC48CFB)
fffff880`01073000 fffff880`010bf000   volsnap  volsnap.sys  Mon Jul 13 19:20:08 2009 (4A5BC128)
fffff880`010ea000 fffff880`012f4000   iaStor   iaStor.sys   Wed Mar 03 21:51:31 2010 (4B8F2033)
fffff880`012f4000 fffff880`012ff000   amdxata  amdxata.sys  Fri Mar 19 12:18:18 2010 (4BA3A3CA)
fffff880`012ff000 fffff880`0134b000   fltmgr   fltmgr.sys   Mon Jul 13 19:19:59 2009 (4A5BC11F)
fffff880`0134b000 fffff880`0135f000   fileinfo fileinfo.sys Mon Jul 13 19:34:25 2009 (4A5BC481)
fffff880`0135f000 fffff880`0136ad00   PxHlpa64 PxHlpa64.sys Wed Mar 12 21:58:17 2008 (47D88A39)
fffff880`0136b000 fffff880`013c9000   msrpc    msrpc.sys    Mon Jul 13 19:21:32 2009 (4A5BC17C)
fffff880`01428000 fffff880`015ca000   Ntfs     Ntfs.sys     Thu Mar 10 22:39:25 2011 (4D79996D)
fffff880`015ca000 fffff880`015e4000   ksecdd   ksecdd.sys   Wed Nov 16 22:54:33 2011 (4EC48579)
fffff880`015e4000 fffff880`015f5000   pcw      pcw.sys      Mon Jul 13 19:19:27 2009 (4A5BC0FF)
fffff880`015f5000 fffff880`015ff000   Fs_Rec   Fs_Rec.sys   Wed Feb 29 22:54:36 2012 (4F4EF2FC)
fffff880`01600000 fffff880`01621000   raspptp  raspptp.sys  Mon Jul 13 20:10:18 2009 (4A5BCCEA)
fffff880`01621000 fffff880`0163b000   rassstp  rassstp.sys  Mon Jul 13 20:10:25 2009 (4A5BCCF1)
fffff880`0164a000 fffff880`01652000   spldr    spldr.sys    Mon May 11 12:56:27 2009 (4A0858BB)
fffff880`01654000 fffff880`01746000   ndis     ndis.sys     Mon Jul 13 19:21:40 2009 (4A5BC184)
fffff880`01746000 fffff880`017a6000   NETIO    NETIO.SYS    Mon Jul 13 19:21:46 2009 (4A5BC18A)
fffff880`017a6000 fffff880`017d1000   ksecpkg  ksecpkg.sys  Wed Nov 16 23:27:30 2011 (4EC48D32)
fffff880`017d1000 fffff880`017ec000   raspppoe raspppoe.sys Mon Jul 13 20:10:17 2009 (4A5BCCE9)
fffff880`01800000 fffff880`0182f000   ndiswan  ndiswan.sys  Mon Jul 13 20:10:11 2009 (4A5BCCE3)
fffff880`01834000 fffff880`0186e000   rdyboost rdyboost.sys Sat Jun 19 00:25:06 2010 (4C1C46A2)
fffff880`0186e000 fffff880`01880000   mup      mup.sys      Mon Jul 13 19:23:45 2009 (4A5BC201)
fffff880`01880000 fffff880`01889000   hwpolicy hwpolicy.sys Mon Jul 13 19:19:22 2009 (4A5BC0FA)
fffff880`01889000 fffff880`018c3000   fvevol   fvevol.sys   Fri Sep 25 22:34:26 2009 (4ABD7DB2)
fffff880`018c3000 fffff880`018d9000   disk     disk.sys     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`018d9000 fffff880`01909000   CLASSPNP CLASSPNP.SYS Mon Jul 13 19:19:58 2009 (4A5BC11E)
fffff880`01917000 fffff880`01961000   fwpkclnt fwpkclnt.sys Mon Jul 13 19:21:08 2009 (4A5BC164)
fffff880`01961000 fffff880`0196e000   TDI      TDI.SYS      Mon Jul 13 19:21:18 2009 (4A5BC16E)
fffff880`0196e000 fffff880`019b3000   netbt    netbt.sys    Mon Jul 13 19:21:28 2009 (4A5BC178)
fffff880`019b3000 fffff880`019e9000   atikmpag atikmpag.sys Mon Sep 20 21:20:30 2010 (4C98085E)
fffff880`02c00000 fffff880`02c51000   rdbss    rdbss.sys    Mon Jul 13 19:24:09 2009 (4A5BC219)
fffff880`02c51000 fffff880`02c5d000   nsiproxy nsiproxy.sys Mon Jul 13 19:21:02 2009 (4A5BC15E)
fffff880`02c5d000 fffff880`02c68000   mssmbios mssmbios.sys Mon Jul 13 19:31:10 2009 (4A5BC3BE)
fffff880`02c68000 fffff880`02c77000   discache discache.sys Mon Jul 13 19:37:18 2009 (4A5BC52E)
fffff880`02c77000 fffff880`02c95000   dfsc     dfsc.sys     Tue Apr 26 22:57:39 2011 (4DB78623)
fffff880`02c95000 fffff880`02ca6000   blbdrive blbdrive.sys Mon Jul 13 19:35:59 2009 (4A5BC4DF)
fffff880`02cac000 fffff880`02d35000   afd      afd.sys      Tue Dec 27 22:59:08 2011 (4EFA940C)
fffff880`02d35000 fffff880`02d40000   ws2ifsl  ws2ifsl.sys  Mon Jul 13 20:10:33 2009 (4A5BCCF9)
fffff880`02d40000 fffff880`02d49000   wfplwf   wfplwf.sys   Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`02d49000 fffff880`02d6f000   pacer    pacer.sys    Mon Jul 13 20:09:41 2009 (4A5BCCC5)
fffff880`02d6f000 fffff880`02d85000   vwififlt vwififlt.sys Mon Jul 13 20:07:22 2009 (4A5BCC3A)
fffff880`02d85000 fffff880`02d92000   EpfwLWF  EpfwLWF.sys  Wed Mar 07 09:28:51 2012 (4F5770A3)
fffff880`02d92000 fffff880`02da1000   netbios  netbios.sys  Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`02da1000 fffff880`02dbc000   wanarp   wanarp.sys   Mon Jul 13 20:10:21 2009 (4A5BCCED)
fffff880`02dbc000 fffff880`02dd0000   termdd   termdd.sys   Mon Jul 13 20:16:36 2009 (4A5BCE64)
fffff880`02dd0000 fffff880`02df6000   tunnel   tunnel.sys   Mon Jul 13 20:09:37 2009 (4A5BCCC1)
fffff880`03a00000 fffff880`03a0f000   kbdclass kbdclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`03a0f000 fffff880`03a10f00   USBD     USBD.SYS     Thu Mar 24 23:22:51 2011 (4D8C0A8B)
fffff880`03a11000 fffff880`03a13f00   SFEP     SFEP.sys     Fri Nov 27 00:39:13 2009 (4B0F6601)
fffff880`03a15000 fffff880`03b99000   athrx    athrx.sys    Mon Dec 14 15:46:53 2009 (4B26A43D)
fffff880`03b99000 fffff880`03ba6000   vwifibus vwifibus.sys Mon Jul 13 20:07:21 2009 (4A5BCC39)
fffff880`03ba6000 fffff880`03bc6000   sdbus    sdbus.sys    Fri Oct 09 22:41:20 2009 (4ACFF450)
fffff880`03bc6000 fffff880`03be6000   rimssne64 rimssne64.sys Wed Mar 24 04:39:31 2010 (4BA9CFC3)
fffff880`03be6000 fffff880`03bff000   risdsne64 risdsne64.sys Tue May 11 22:06:11 2010 (4BEA0D13)
fffff880`04000000 fffff880`04025000   VIDEOPRT VIDEOPRT.SYS Mon Jul 13 19:38:51 2009 (4A5BC58B)
fffff880`04025000 fffff880`04035000   watchdog watchdog.sys Mon Jul 13 19:37:35 2009 (4A5BC53F)
fffff880`04035000 fffff880`0403e000   RDPCDD   RDPCDD.sys   Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`0403e000 fffff880`04047000   rdpencdd rdpencdd.sys Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`04047000 fffff880`04050000   rdprefmp rdprefmp.sys Mon Jul 13 20:16:35 2009 (4A5BCE63)
fffff880`04050000 fffff880`0405b000   Msfs     Msfs.SYS     Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`0405b000 fffff880`0406c000   Npfs     Npfs.SYS     Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`0406c000 fffff880`0408a000   tdx      tdx.sys      Mon Jul 13 19:21:15 2009 (4A5BC16B)
fffff880`0408a000 fffff880`04294000   dump_iaStor dump_iaStor.sys Wed Mar 03 21:51:31 2010 (4B8F2033)
fffff880`042ab000 fffff880`042d5000   cdrom    cdrom.sys    Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`042d5000 fffff880`043b9000   eamonm   eamonm.sys   Wed Mar 07 09:32:36 2012 (4F577184)
fffff880`043b9000 fffff880`043c2000   Null     Null.SYS     Mon Jul 13 19:19:37 2009 (4A5BC109)
fffff880`043c2000 fffff880`043c9000   Beep     Beep.SYS     Mon Jul 13 20:00:13 2009 (4A5BCA8D)
fffff880`043c9000 fffff880`043f2000   ehdrv    ehdrv.sys    Wed Mar 07 09:33:42 2012 (4F5771C6)
fffff880`043f2000 fffff880`04400000   vga      vga.sys      Mon Jul 13 19:38:47 2009 (4A5BC587)
fffff880`04400000 fffff880`045fd000   tcpip    tcpip.sys    Fri Mar 30 04:24:19 2012 (4F756DB3)
fffff880`04600000 fffff880`046c8000   HTTP     HTTP.sys     Mon Jul 13 19:22:16 2009 (4A5BC1A8)
fffff880`046c8000 fffff880`046e6000   bowser   bowser.sys   Wed Feb 23 00:15:06 2011 (4D6497DA)
fffff880`046e6000 fffff880`046fe000   mpsdrv   mpsdrv.sys   Mon Jul 13 20:08:25 2009 (4A5BCC79)
fffff880`046fe000 fffff880`0472b000   mrxsmb   mrxsmb.sys   Tue May 03 22:51:06 2011 (4DC0BF1A)
fffff880`0472b000 fffff880`04779000   mrxsmb10 mrxsmb10.sys Fri Jul 08 22:44:55 2011 (4E17C0A7)
fffff880`04779000 fffff880`0479c000   mrxsmb20 mrxsmb20.sys Tue May 03 22:51:05 2011 (4DC0BF19)
fffff880`0479c000 fffff880`047c5000   idmwfp   idmwfp.sys   Mon Apr 23 09:14:15 2012 (4F9555A7)
fffff880`04800000 fffff880`04852000   SynTP    SynTP.sys    Thu Feb 18 22:36:15 2010 (4B7E072F)
fffff880`04852000 fffff880`04861000   mouclass mouclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`04861000 fffff880`0486e000   GEARAspiWDM GEARAspiWDM.sys Mon May 18 08:17:04 2009 (4A1151C0)
fffff880`0486e000 fffff880`04884000   intelppm intelppm.sys Mon Jul 13 19:19:25 2009 (4A5BC0FD)
fffff880`04884000 fffff880`04894000   CompositeBus CompositeBus.sys Mon Jul 13 20:00:33 2009 (4A5BCAA1)
fffff880`04894000 fffff880`048aa000   AgileVpn AgileVpn.sys Mon Jul 13 20:10:24 2009 (4A5BCCF0)
fffff880`048aa000 fffff880`048ce000   rasl2tp  rasl2tp.sys  Mon Jul 13 20:10:11 2009 (4A5BCCE3)
fffff880`048d2000 fffff880`04f7e000   atikmdag atikmdag.sys Mon Sep 20 21:50:23 2010 (4C980F5F)
fffff880`04f7e000 fffff880`04fe3000   yk62x64  yk62x64.sys  Fri Apr 16 08:58:30 2010 (4BC85EF6)
fffff880`04fe3000 fffff880`04fef000   ndistapi ndistapi.sys Mon Jul 13 20:10:00 2009 (4A5BCCD8)
fffff880`05000000 fffff880`05024000   HDAudBus HDAudBus.sys Mon Jul 13 20:06:13 2009 (4A5BCBF5)
fffff880`05024000 fffff880`05035000   HECIx64  HECIx64.sys  Thu Sep 17 15:54:16 2009 (4AB293E8)
fffff880`05035000 fffff880`05046000   usbehci  usbehci.sys  Thu Mar 24 23:22:57 2011 (4D8C0A91)
fffff880`05046000 fffff880`0509c000   USBPORT  USBPORT.SYS  Thu Mar 24 23:23:03 2011 (4D8C0A97)
fffff880`0509c000 fffff880`050a0500   CmBatt   CmBatt.sys   Mon Jul 13 19:31:03 2009 (4A5BC3B7)
fffff880`050a1000 fffff880`050a2480   swenum   swenum.sys   Mon Jul 13 20:00:18 2009 (4A5BCA92)
fffff880`050a5000 fffff880`05199000   dxgkrnl  dxgkrnl.sys  Thu Oct 01 21:00:14 2009 (4AC5509E)
fffff880`05199000 fffff880`051df000   dxgmms1  dxgmms1.sys  Mon Jul 13 19:38:32 2009 (4A5BC578)
fffff880`051df000 fffff880`051fd000   i8042prt i8042prt.sys Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`05200000 fffff880`0523d000   portcls  portcls.sys  Mon Jul 13 20:06:27 2009 (4A5BCC03)
fffff880`0523d000 fffff880`0525f000   drmk     drmk.sys     Mon Jul 13 21:01:25 2009 (4A5BD8E5)
fffff880`0525f000 fffff880`05264200   ksthunk  ksthunk.sys  Mon Jul 13 20:00:19 2009 (4A5BCA93)
fffff880`052d8000 fffff880`0531b000   ks       ks.sys       Wed Mar 03 23:32:25 2010 (4B8F37D9)
fffff880`0531b000 fffff880`0532d000   umbus    umbus.sys    Mon Jul 13 20:06:56 2009 (4A5BCC20)
fffff880`0532d000 fffff880`05387000   usbhub   usbhub.sys   Thu Mar 24 23:23:22 2011 (4D8C0AAA)
fffff880`05387000 fffff880`0539c000   NDProxy  NDProxy.SYS  Mon Jul 13 20:10:05 2009 (4A5BCCDD)
fffff880`0539c000 fffff880`053d2d80   RtHDMIVX RtHDMIVX.sys Tue Jan 26 22:04:58 2010 (4B5FAD5A)
fffff880`05800000 fffff880`05853000   nwifi    nwifi.sys    Mon Jul 13 20:07:23 2009 (4A5BCC3B)
fffff880`05853000 fffff880`05866000   ndisuio  ndisuio.sys  Mon Jul 13 20:09:25 2009 (4A5BCCB5)
fffff880`0587c000 fffff880`05ab9d00   RTKVHD64 RTKVHD64.sys Tue Apr 27 04:20:13 2010 (4BD69E3D)
fffff880`05aba000 fffff880`05ad7000   usbccgp  usbccgp.sys  Thu Mar 24 23:23:03 2011 (4D8C0A97)
fffff880`05ad7000 fffff880`05b04200   usbvideo usbvideo.sys Wed Mar 03 23:40:57 2010 (4B8F39D9)
fffff880`05b05000 fffff880`05b0f000   ArcSoftKsUFilter ArcSoftKsUFilter.sys Mon May 25 04:27:31 2009 (4A1A5673)
fffff880`05b0f000 fffff880`05b1d000   crashdmp crashdmp.sys Mon Jul 13 20:01:01 2009 (4A5BCABD)
fffff880`05b1d000 fffff880`05b30000   dump_dumpfve dump_dumpfve.sys Mon Jul 13 19:21:51 2009 (4A5BC18F)
fffff880`05b30000 fffff880`05b3c000   Dxapi    Dxapi.sys    Mon Jul 13 19:38:28 2009 (4A5BC574)
fffff880`05b4a000 fffff880`05b6d000   luafv    luafv.sys    Mon Jul 13 19:26:13 2009 (4A5BC295)
fffff880`05b6d000 fffff880`05b8e000   WudfPf   WudfPf.sys   Mon Jul 13 20:05:37 2009 (4A5BCBD1)
fffff880`05b8e000 fffff880`05bbf000   epfw     epfw.sys     Wed Mar 07 09:28:53 2012 (4F5770A5)
fffff880`05bbf000 fffff880`05bd4000   lltdio   lltdio.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`05bd4000 fffff880`05bec000   rspndr   rspndr.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`05c00000 fffff880`05c67000   srv2     srv2.sys     Thu Apr 28 23:12:51 2011 (4DBA2CB3)
fffff880`05cea000 fffff880`05d90000   peauth   peauth.sys   Mon Jul 13 21:01:19 2009 (4A5BD8DF)
fffff880`05d90000 fffff880`05d9b000   secdrv   secdrv.SYS   Wed Sep 13 09:18:38 2006 (4508052E)
fffff880`05d9b000 fffff880`05dc8000   srvnet   srvnet.sys   Thu Apr 28 23:12:35 2011 (4DBA2CA3)
fffff880`05dc8000 fffff880`05dda000   tcpipreg tcpipreg.sys Mon Jul 13 20:09:49 2009 (4A5BCCCD)
fffff880`06200000 fffff880`06236000   fastfat  fastfat.SYS  Mon Jul 13 19:23:28 2009 (4A5BC1F0)
fffff880`06244000 fffff880`06252000   monitor  monitor.sys  Mon Jul 13 19:38:52 2009 (4A5BC58C)
fffff880`06265000 fffff880`062fa000   srv      srv.sys      Thu Apr 28 23:13:05 2011 (4DBA2CC1)
fffff880`062fa000 fffff880`0630f000   epfwwfp  epfwwfp.sys  Wed Mar 07 09:28:51 2012 (4F5770A3)
fffff880`0630f000 fffff880`06319000   mbam     mbam.sys     Tue Mar 20 12:04:48 2012 (4F68AAA0)
fffff880`0634a000 fffff880`06357000   tap0901  tap0901.sys  Thu Mar 24 17:20:03 2011 (4D8BB583)
fffff880`06357000 fffff880`06364000   taphss   taphss.sys   Tue Sep 15 15:58:23 2009 (4AAFF1DF)
fffff960`000e0000 fffff960`003f4000   win32k   win32k.sys   Sun Apr 01 23:00:47 2012 (4F79165F)
fffff960`00420000 fffff960`0042a000   TSDDD    TSDDD.dll    unavailable (00000000)
fffff960`00760000 fffff960`00787000   cdd      cdd.dll      Wed May 19 15:48:26 2010 (4BF4408A)

Unloaded modules:
fffff880`06319000 fffff880`0634a000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`0638a000 fffff880`06397000   tap0901.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000D000
fffff880`06236000 fffff880`06244000   monitor.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`05b3c000 fffff880`05b4a000   monitor.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`06397000 fffff880`063a8000   usbaapl64.sy
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`063b9000 fffff880`063ea000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`063a8000 fffff880`063b9000   WinUsb.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`04fef000 fffff880`04ffc000   tap0901.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000D000
fffff880`06319000 fffff880`0638a000   spsys.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00071000
fffff880`01909000 fffff880`01917000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`0408e000 fffff880`04298000   dump_iaStor.
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0020A000
fffff880`04298000 fffff880`042ab000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00013000
fffff880`01600000 fffff880`0164a000   fwpkclnt.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0004A000
fffff880`017d1000 fffff880`017e6000   epfwwfp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00015000
start             end                 module name
fffff880`00ed9000 fffff880`00f30000   ACPI     ACPI.sys     Mon Jul 13 19:19:34 2009 (4A5BC106)
fffff880`02cac000 fffff880`02d35000   afd      afd.sys      Tue Dec 27 22:59:08 2011 (4EFA940C)
fffff880`04894000 fffff880`048aa000   AgileVpn AgileVpn.sys Mon Jul 13 20:10:24 2009 (4A5BCCF0)
fffff880`012f4000 fffff880`012ff000   amdxata  amdxata.sys  Fri Mar 19 12:18:18 2010 (4BA3A3CA)
fffff880`05b05000 fffff880`05b0f000   ArcSoftKsUFilter ArcSoftKsUFilter.sys Mon May 25 04:27:31 2009 (4A1A5673)
fffff880`03a15000 fffff880`03b99000   athrx    athrx.sys    Mon Dec 14 15:46:53 2009 (4B26A43D)
fffff880`048d2000 fffff880`04f7e000   atikmdag atikmdag.sys Mon Sep 20 21:50:23 2010 (4C980F5F)
fffff880`019b3000 fffff880`019e9000   atikmpag atikmpag.sys Mon Sep 20 21:20:30 2010 (4C98085E)
fffff880`00fd2000 fffff880`00fde000   BATTC    BATTC.SYS    Mon Jul 13 19:31:01 2009 (4A5BC3B5)
fffff880`043c2000 fffff880`043c9000   Beep     Beep.SYS     Mon Jul 13 20:00:13 2009 (4A5BCA8D)
fffff880`02c95000 fffff880`02ca6000   blbdrive blbdrive.sys Mon Jul 13 19:35:59 2009 (4A5BC4DF)
fffff880`046c8000 fffff880`046e6000   bowser   bowser.sys   Wed Feb 23 00:15:06 2011 (4D6497DA)
fffff960`00760000 fffff960`00787000   cdd      cdd.dll      Wed May 19 15:48:26 2010 (4BF4408A)
fffff880`042ab000 fffff880`042d5000   cdrom    cdrom.sys    Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`00c00000 fffff880`00cc0000   CI       CI.dll       Mon Jul 13 21:32:13 2009 (4A5BE01D)
fffff880`018d9000 fffff880`01909000   CLASSPNP CLASSPNP.SYS Mon Jul 13 19:19:58 2009 (4A5BC11E)
fffff880`00d3b000 fffff880`00d99000   CLFS     CLFS.SYS     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`0509c000 fffff880`050a0500   CmBatt   CmBatt.sys   Mon Jul 13 19:31:03 2009 (4A5BC3B7)
fffff880`01000000 fffff880`01073000   cng      cng.sys      Wed Nov 16 23:26:35 2011 (4EC48CFB)
fffff880`00fc9000 fffff880`00fd2000   compbatt compbatt.sys Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`04884000 fffff880`04894000   CompositeBus CompositeBus.sys Mon Jul 13 20:00:33 2009 (4A5BCAA1)
fffff880`05b0f000 fffff880`05b1d000   crashdmp crashdmp.sys Mon Jul 13 20:01:01 2009 (4A5BCABD)
fffff880`02c77000 fffff880`02c95000   dfsc     dfsc.sys     Tue Apr 26 22:57:39 2011 (4DB78623)
fffff880`02c68000 fffff880`02c77000   discache discache.sys Mon Jul 13 19:37:18 2009 (4A5BC52E)
fffff880`018c3000 fffff880`018d9000   disk     disk.sys     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`0523d000 fffff880`0525f000   drmk     drmk.sys     Mon Jul 13 21:01:25 2009 (4A5BD8E5)
fffff880`05b1d000 fffff880`05b30000   dump_dumpfve dump_dumpfve.sys Mon Jul 13 19:21:51 2009 (4A5BC18F)
fffff880`0408a000 fffff880`04294000   dump_iaStor dump_iaStor.sys Wed Mar 03 21:51:31 2010 (4B8F2033)
fffff880`05b30000 fffff880`05b3c000   Dxapi    Dxapi.sys    Mon Jul 13 19:38:28 2009 (4A5BC574)
fffff880`050a5000 fffff880`05199000   dxgkrnl  dxgkrnl.sys  Thu Oct 01 21:00:14 2009 (4AC5509E)
fffff880`05199000 fffff880`051df000   dxgmms1  dxgmms1.sys  Mon Jul 13 19:38:32 2009 (4A5BC578)
fffff880`042d5000 fffff880`043b9000   eamonm   eamonm.sys   Wed Mar 07 09:32:36 2012 (4F577184)
fffff880`043c9000 fffff880`043f2000   ehdrv    ehdrv.sys    Wed Mar 07 09:33:42 2012 (4F5771C6)
fffff880`05b8e000 fffff880`05bbf000   epfw     epfw.sys     Wed Mar 07 09:28:53 2012 (4F5770A5)
fffff880`02d85000 fffff880`02d92000   EpfwLWF  EpfwLWF.sys  Wed Mar 07 09:28:51 2012 (4F5770A3)
fffff880`062fa000 fffff880`0630f000   epfwwfp  epfwwfp.sys  Wed Mar 07 09:28:51 2012 (4F5770A3)
fffff880`06200000 fffff880`06236000   fastfat  fastfat.SYS  Mon Jul 13 19:23:28 2009 (4A5BC1F0)
fffff880`0134b000 fffff880`0135f000   fileinfo fileinfo.sys Mon Jul 13 19:34:25 2009 (4A5BC481)
fffff880`012ff000 fffff880`0134b000   fltmgr   fltmgr.sys   Mon Jul 13 19:19:59 2009 (4A5BC11F)
fffff880`015f5000 fffff880`015ff000   Fs_Rec   Fs_Rec.sys   Wed Feb 29 22:54:36 2012 (4F4EF2FC)
fffff880`01889000 fffff880`018c3000   fvevol   fvevol.sys   Fri Sep 25 22:34:26 2009 (4ABD7DB2)
fffff880`01917000 fffff880`01961000   fwpkclnt fwpkclnt.sys Mon Jul 13 19:21:08 2009 (4A5BC164)
fffff880`04861000 fffff880`0486e000   GEARAspiWDM GEARAspiWDM.sys Mon May 18 08:17:04 2009 (4A1151C0)
fffff800`03be9000 fffff800`03c32000   hal      hal.dll      Mon Jul 13 21:27:36 2009 (4A5BDF08)
fffff880`05000000 fffff880`05024000   HDAudBus HDAudBus.sys Mon Jul 13 20:06:13 2009 (4A5BCBF5)
fffff880`05024000 fffff880`05035000   HECIx64  HECIx64.sys  Thu Sep 17 15:54:16 2009 (4AB293E8)
fffff880`04600000 fffff880`046c8000   HTTP     HTTP.sys     Mon Jul 13 19:22:16 2009 (4A5BC1A8)
fffff880`01880000 fffff880`01889000   hwpolicy hwpolicy.sys Mon Jul 13 19:19:22 2009 (4A5BC0FA)
fffff880`051df000 fffff880`051fd000   i8042prt i8042prt.sys Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`010ea000 fffff880`012f4000   iaStor   iaStor.sys   Wed Mar 03 21:51:31 2010 (4B8F2033)
fffff880`0479c000 fffff880`047c5000   idmwfp   idmwfp.sys   Mon Apr 23 09:14:15 2012 (4F9555A7)
fffff880`0486e000 fffff880`04884000   intelppm intelppm.sys Mon Jul 13 19:19:25 2009 (4A5BC0FD)
fffff880`03a00000 fffff880`03a0f000   kbdclass kbdclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff800`00bc4000 fffff800`00bce000   kdcom    kdcom.dll    Sat Feb 05 07:21:45 2011 (4D4D40D9)
fffff880`052d8000 fffff880`0531b000   ks       ks.sys       Wed Mar 03 23:32:25 2010 (4B8F37D9)
fffff880`015ca000 fffff880`015e4000   ksecdd   ksecdd.sys   Wed Nov 16 22:54:33 2011 (4EC48579)
fffff880`017a6000 fffff880`017d1000   ksecpkg  ksecpkg.sys  Wed Nov 16 23:27:30 2011 (4EC48D32)
fffff880`0525f000 fffff880`05264200   ksthunk  ksthunk.sys  Mon Jul 13 20:00:19 2009 (4A5BCA93)
fffff880`05bbf000 fffff880`05bd4000   lltdio   lltdio.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`05b4a000 fffff880`05b6d000   luafv    luafv.sys    Mon Jul 13 19:26:13 2009 (4A5BC295)
fffff880`0630f000 fffff880`06319000   mbam     mbam.sys     Tue Mar 20 12:04:48 2012 (4F68AAA0)
fffff880`00ce3000 fffff880`00d27000   mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Mon Jul 13 21:29:10 2009 (4A5BDF66)
fffff880`06244000 fffff880`06252000   monitor  monitor.sys  Mon Jul 13 19:38:52 2009 (4A5BC58C)
fffff880`04852000 fffff880`04861000   mouclass mouclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`00e00000 fffff880`00e1a000   mountmgr mountmgr.sys Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`046e6000 fffff880`046fe000   mpsdrv   mpsdrv.sys   Mon Jul 13 20:08:25 2009 (4A5BCC79)
fffff880`046fe000 fffff880`0472b000   mrxsmb   mrxsmb.sys   Tue May 03 22:51:06 2011 (4DC0BF1A)
fffff880`0472b000 fffff880`04779000   mrxsmb10 mrxsmb10.sys Fri Jul 08 22:44:55 2011 (4E17C0A7)
fffff880`04779000 fffff880`0479c000   mrxsmb20 mrxsmb20.sys Tue May 03 22:51:05 2011 (4DC0BF19)
fffff880`04050000 fffff880`0405b000   Msfs     Msfs.SYS     Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`00f39000 fffff880`00f43000   msisadrv msisadrv.sys Mon Jul 13 19:19:26 2009 (4A5BC0FE)
fffff880`0136b000 fffff880`013c9000   msrpc    msrpc.sys    Mon Jul 13 19:21:32 2009 (4A5BC17C)
fffff880`02c5d000 fffff880`02c68000   mssmbios mssmbios.sys Mon Jul 13 19:31:10 2009 (4A5BC3BE)
fffff880`0186e000 fffff880`01880000   mup      mup.sys      Mon Jul 13 19:23:45 2009 (4A5BC201)
fffff880`01654000 fffff880`01746000   ndis     ndis.sys     Mon Jul 13 19:21:40 2009 (4A5BC184)
fffff880`04fe3000 fffff880`04fef000   ndistapi ndistapi.sys Mon Jul 13 20:10:00 2009 (4A5BCCD8)
fffff880`05853000 fffff880`05866000   ndisuio  ndisuio.sys  Mon Jul 13 20:09:25 2009 (4A5BCCB5)
fffff880`01800000 fffff880`0182f000   ndiswan  ndiswan.sys  Mon Jul 13 20:10:11 2009 (4A5BCCE3)
fffff880`05387000 fffff880`0539c000   NDProxy  NDProxy.SYS  Mon Jul 13 20:10:05 2009 (4A5BCCDD)
fffff880`02d92000 fffff880`02da1000   netbios  netbios.sys  Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`0196e000 fffff880`019b3000   netbt    netbt.sys    Mon Jul 13 19:21:28 2009 (4A5BC178)
fffff880`01746000 fffff880`017a6000   NETIO    NETIO.SYS    Mon Jul 13 19:21:46 2009 (4A5BC18A)
fffff880`0405b000 fffff880`0406c000   Npfs     Npfs.SYS     Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`02c51000 fffff880`02c5d000   nsiproxy nsiproxy.sys Mon Jul 13 19:21:02 2009 (4A5BC15E)
fffff800`0360e000 fffff800`03be9000   nt       ntkrnlmp.exe Sun Apr 01 22:46:06 2012 (4F7912EE)
fffff880`01428000 fffff880`015ca000   Ntfs     Ntfs.sys     Thu Mar 10 22:39:25 2011 (4D79996D)
fffff880`043b9000 fffff880`043c2000   Null     Null.SYS     Mon Jul 13 19:19:37 2009 (4A5BC109)
fffff880`05800000 fffff880`05853000   nwifi    nwifi.sys    Mon Jul 13 20:07:23 2009 (4A5BCC3B)
fffff880`02d49000 fffff880`02d6f000   pacer    pacer.sys    Mon Jul 13 20:09:41 2009 (4A5BCCC5)
fffff880`00f83000 fffff880`00f98000   partmgr  partmgr.sys  Sat Mar 17 01:12:46 2012 (4F641D4E)
fffff880`00f43000 fffff880`00f76000   pci      pci.sys      Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`015e4000 fffff880`015f5000   pcw      pcw.sys      Mon Jul 13 19:19:27 2009 (4A5BC0FF)
fffff880`05cea000 fffff880`05d90000   peauth   peauth.sys   Mon Jul 13 21:01:19 2009 (4A5BD8DF)
fffff880`05200000 fffff880`0523d000   portcls  portcls.sys  Mon Jul 13 20:06:27 2009 (4A5BCC03)
fffff880`00d27000 fffff880`00d3b000   PSHED    PSHED.dll    Mon Jul 13 21:32:23 2009 (4A5BE027)
fffff880`0135f000 fffff880`0136ad00   PxHlpa64 PxHlpa64.sys Wed Mar 12 21:58:17 2008 (47D88A39)
fffff880`048aa000 fffff880`048ce000   rasl2tp  rasl2tp.sys  Mon Jul 13 20:10:11 2009 (4A5BCCE3)
fffff880`017d1000 fffff880`017ec000   raspppoe raspppoe.sys Mon Jul 13 20:10:17 2009 (4A5BCCE9)
fffff880`01600000 fffff880`01621000   raspptp  raspptp.sys  Mon Jul 13 20:10:18 2009 (4A5BCCEA)
fffff880`01621000 fffff880`0163b000   rassstp  rassstp.sys  Mon Jul 13 20:10:25 2009 (4A5BCCF1)
fffff880`02c00000 fffff880`02c51000   rdbss    rdbss.sys    Mon Jul 13 19:24:09 2009 (4A5BC219)
fffff880`04035000 fffff880`0403e000   RDPCDD   RDPCDD.sys   Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`0403e000 fffff880`04047000   rdpencdd rdpencdd.sys Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`04047000 fffff880`04050000   rdprefmp rdprefmp.sys Mon Jul 13 20:16:35 2009 (4A5BCE63)
fffff880`01834000 fffff880`0186e000   rdyboost rdyboost.sys Sat Jun 19 00:25:06 2010 (4C1C46A2)
fffff880`03bc6000 fffff880`03be6000   rimssne64 rimssne64.sys Wed Mar 24 04:39:31 2010 (4BA9CFC3)
fffff880`03be6000 fffff880`03bff000   risdsne64 risdsne64.sys Tue May 11 22:06:11 2010 (4BEA0D13)
fffff880`05bd4000 fffff880`05bec000   rspndr   rspndr.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`0539c000 fffff880`053d2d80   RtHDMIVX RtHDMIVX.sys Tue Jan 26 22:04:58 2010 (4B5FAD5A)
fffff880`0587c000 fffff880`05ab9d00   RTKVHD64 RTKVHD64.sys Tue Apr 27 04:20:13 2010 (4BD69E3D)
fffff880`03ba6000 fffff880`03bc6000   sdbus    sdbus.sys    Fri Oct 09 22:41:20 2009 (4ACFF450)
fffff880`05d90000 fffff880`05d9b000   secdrv   secdrv.SYS   Wed Sep 13 09:18:38 2006 (4508052E)
fffff880`03a11000 fffff880`03a13f00   SFEP     SFEP.sys     Fri Nov 27 00:39:13 2009 (4B0F6601)
fffff880`0164a000 fffff880`01652000   spldr    spldr.sys    Mon May 11 12:56:27 2009 (4A0858BB)
fffff880`06265000 fffff880`062fa000   srv      srv.sys      Thu Apr 28 23:13:05 2011 (4DBA2CC1)
fffff880`05c00000 fffff880`05c67000   srv2     srv2.sys     Thu Apr 28 23:12:51 2011 (4DBA2CB3)
fffff880`05d9b000 fffff880`05dc8000   srvnet   srvnet.sys   Thu Apr 28 23:12:35 2011 (4DBA2CA3)
fffff880`00f98000 fffff880`00fa5000   ssfs0bbc ssfs0bbc.sys Tue Apr 21 20:47:13 2009 (49EE6911)
fffff880`00fa5000 fffff880`00fc9000   ssidrv   ssidrv.sys   Tue Apr 21 20:48:14 2009 (49EE694E)
fffff880`050a1000 fffff880`050a2480   swenum   swenum.sys   Mon Jul 13 20:00:18 2009 (4A5BCA92)
fffff880`04800000 fffff880`04852000   SynTP    SynTP.sys    Thu Feb 18 22:36:15 2010 (4B7E072F)
fffff880`0634a000 fffff880`06357000   tap0901  tap0901.sys  Thu Mar 24 17:20:03 2011 (4D8BB583)
fffff880`06357000 fffff880`06364000   taphss   taphss.sys   Tue Sep 15 15:58:23 2009 (4AAFF1DF)
fffff880`04400000 fffff880`045fd000   tcpip    tcpip.sys    Fri Mar 30 04:24:19 2012 (4F756DB3)
fffff880`05dc8000 fffff880`05dda000   tcpipreg tcpipreg.sys Mon Jul 13 20:09:49 2009 (4A5BCCCD)
fffff880`01961000 fffff880`0196e000   TDI      TDI.SYS      Mon Jul 13 19:21:18 2009 (4A5BC16E)
fffff880`0406c000 fffff880`0408a000   tdx      tdx.sys      Mon Jul 13 19:21:15 2009 (4A5BC16B)
fffff880`02dbc000 fffff880`02dd0000   termdd   termdd.sys   Mon Jul 13 20:16:36 2009 (4A5BCE64)
fffff960`00420000 fffff960`0042a000   TSDDD    TSDDD.dll    unavailable (00000000)
fffff880`02dd0000 fffff880`02df6000   tunnel   tunnel.sys   Mon Jul 13 20:09:37 2009 (4A5BCCC1)
fffff880`0531b000 fffff880`0532d000   umbus    umbus.sys    Mon Jul 13 20:06:56 2009 (4A5BCC20)
fffff880`05aba000 fffff880`05ad7000   usbccgp  usbccgp.sys  Thu Mar 24 23:23:03 2011 (4D8C0A97)
fffff880`03a0f000 fffff880`03a10f00   USBD     USBD.SYS     Thu Mar 24 23:22:51 2011 (4D8C0A8B)
fffff880`05035000 fffff880`05046000   usbehci  usbehci.sys  Thu Mar 24 23:22:57 2011 (4D8C0A91)
fffff880`0532d000 fffff880`05387000   usbhub   usbhub.sys   Thu Mar 24 23:23:22 2011 (4D8C0AAA)
fffff880`05046000 fffff880`0509c000   USBPORT  USBPORT.SYS  Thu Mar 24 23:23:03 2011 (4D8C0A97)
fffff880`05ad7000 fffff880`05b04200   usbvideo usbvideo.sys Wed Mar 03 23:40:57 2010 (4B8F39D9)
fffff880`00f76000 fffff880`00f83000   vdrvroot vdrvroot.sys Mon Jul 13 20:01:31 2009 (4A5BCADB)
fffff880`043f2000 fffff880`04400000   vga      vga.sys      Mon Jul 13 19:38:47 2009 (4A5BC587)
fffff880`04000000 fffff880`04025000   VIDEOPRT VIDEOPRT.SYS Mon Jul 13 19:38:51 2009 (4A5BC58B)
fffff880`00fde000 fffff880`00ff3000   volmgr   volmgr.sys   Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`00d99000 fffff880`00df5000   volmgrx  volmgrx.sys  Mon Jul 13 19:20:33 2009 (4A5BC141)
fffff880`01073000 fffff880`010bf000   volsnap  volsnap.sys  Mon Jul 13 19:20:08 2009 (4A5BC128)
fffff880`03b99000 fffff880`03ba6000   vwifibus vwifibus.sys Mon Jul 13 20:07:21 2009 (4A5BCC39)
fffff880`02d6f000 fffff880`02d85000   vwififlt vwififlt.sys Mon Jul 13 20:07:22 2009 (4A5BCC3A)
fffff880`02da1000 fffff880`02dbc000   wanarp   wanarp.sys   Mon Jul 13 20:10:21 2009 (4A5BCCED)
fffff880`04025000 fffff880`04035000   watchdog watchdog.sys Mon Jul 13 19:37:35 2009 (4A5BC53F)
fffff880`00e26000 fffff880`00eca000   Wdf01000 Wdf01000.sys Mon Jul 13 19:22:07 2009 (4A5BC19F)
fffff880`00eca000 fffff880`00ed9000   WDFLDR   WDFLDR.SYS   Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`02d40000 fffff880`02d49000   wfplwf   wfplwf.sys   Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff960`000e0000 fffff960`003f4000   win32k   win32k.sys   Sun Apr 01 23:00:47 2012 (4F79165F)
fffff880`00f30000 fffff880`00f39000   WMILIB   WMILIB.SYS   Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`02d35000 fffff880`02d40000   ws2ifsl  ws2ifsl.sys  Mon Jul 13 20:10:33 2009 (4A5BCCF9)
fffff880`05b6d000 fffff880`05b8e000   WudfPf   WudfPf.sys   Mon Jul 13 20:05:37 2009 (4A5BCBD1)
fffff880`04f7e000 fffff880`04fe3000   yk62x64  yk62x64.sys  Fri Apr 16 08:58:30 2010 (4BC85EF6)

Unloaded modules:
fffff880`06319000 fffff880`0634a000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`0638a000 fffff880`06397000   tap0901.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000D000
fffff880`06236000 fffff880`06244000   monitor.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`05b3c000 fffff880`05b4a000   monitor.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`06397000 fffff880`063a8000   usbaapl64.sy
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`063b9000 fffff880`063ea000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`063a8000 fffff880`063b9000   WinUsb.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`04fef000 fffff880`04ffc000   tap0901.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000D000
fffff880`06319000 fffff880`0638a000   spsys.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00071000
fffff880`01909000 fffff880`01917000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`0408e000 fffff880`04298000   dump_iaStor.
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0020A000
fffff880`04298000 fffff880`042ab000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00013000
fffff880`01600000 fffff880`0164a000   fwpkclnt.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0004A000
fffff880`017d1000 fffff880`017e6000   epfwwfp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00015000
Bugcheck code 000000D1
Arguments fffffa80`07ccf004 00000000`00000002 00000000`00000000 fffffa80`06f12d0f
PEB at 000000007efdf000
error 1 InitTypeRead( nt!_PEB at 000000007efdf000)...
[CPU Information]
~MHz = REG_DWORD 2394
Component Information = REG_BINARY 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0
Configuration Data = REG_FULL_RESOURCE_DESCRIPTOR ff,ff,ff,ff,ff,ff,ff,ff,0,0,0,0,0,0,0,0
Identifier = REG_SZ Intel64 Family 6 Model 37 Stepping 5
ProcessorNameString = REG_SZ Intel(R) Core(TM) i3 CPU       M 370  @ 2.40GHz
Update Signature = REG_BINARY 0,0,0,0,2,0,0,0
Update Status = REG_DWORD 2
VendorIdentifier = REG_SZ GenuineIntel
MSR8B = REG_QWORD 200000000
Machine ID Information [From Smbios 2.6, DMIVersion 38, Size=728]
BiosMajorRelease = 11
BiosMinorRelease = 0
FirmwareMajorRelease = 11
FirmwareMinorRelease = 0
BiosVendor = American Megatrends Inc.
BiosVersion = R1100Y8
BiosReleaseDate = 08/17/2010
SystemManufacturer = Sony Corporation
SystemProductName = VPCEA33EN
SystemFamily = VAIO
SystemVersion = C606NV6J
SystemSKU = N/A
BaseBoardManufacturer = Sony Corporation
BaseBoardProduct = VAIO
BaseBoardVersion = N/A
CPUID:        "Intel(R) Core(TM) i3 CPU       M 370  @ 2.40GHz"
MaxSpeed:     2400
CurrentSpeed: 2394
[SMBIOS Data Tables v2.6]
[DMI Version - 38]
[2.0 Calling Convention - No]
[Table Size - 728 bytes]

[BIOS Information (Type 0) - Length 24 - Handle 0000h]
  Vendor                        American Megatrends Inc.
  BIOS Version                  R1100Y8
  BIOS Starting Address Segment f000
  BIOS Release Date             08/17/2010
  BIOS ROM Size                 400000
  BIOS Characteristics
       07: - PCI Supported
       09: - Plug and Play Supported
       11: - Upgradeable FLASH BIOS
       12: - BIOS Shadowing Supported
       14: - ESCD Supported
       15: - CD-Boot Supported
       16: - Selectable Boot Supported
       19: - EDD Supported
       27: - Keyboard Services Supported
       30: - CGA/Mono Services Supported
  BIOS Characteristic Extensions
       00: - ACPI Supported
       01: - USB Legacy Supported
       02: - AGP Supported
       07: - Smart Battery Supported
       08: - BIOS Boot Specification Supported
       09: - Fn-Key NET-Boot Supported
       10: - Specification Reserved
  BIOS Major Revision           11
  BIOS Minor Revision           0
  EC Firmware Major Revision    11
  EC Firmware Minor Revision    0
[System Information (Type 1) - Length 27 - Handle 0001h]
  Manufacturer                  Sony Corporation
  Product Name                  VPCEA33EN
  Version                       C606NV6J
  Serial Number                                 
  UUID                          00000000-0000-0000-0000-000000000000
  Wakeup Type                   Power Switch
  SKUNumber                     N/A
  Family                        VAIO
[BaseBoard Information (Type 2) - Length 10 - Handle 0002h]
  Manufacturer                  Sony Corporation
  Product                       VAIO
  Version                       N/A
  Serial Number                    
  Asset Tag                        
  Feature Flags                 01h
       -331770168: - h
[System Enclosure (Type 3) - Length 17 - Handle 0003h]
  Manufacturer                  Sony Corporation
  Chassis Type                  Notebook
  Version                       N/A
  Serial Number                    
  Asset Tag Number                 
  Bootup State                  Safe
  Power Supply State            Safe
  Thermal State                 Safe
  Security Status               None
  OEM Defined                   0
[Processor Information (Type 4) - Length 35 - Handle 0004h]
  Socket Designation            N/A
  Processor Type                Central Processor
  Processor Family              ceh - Specification Reserved
  Processor Manufacturer        GenuineIntel
  Processor ID                  55060200fffbebbf
  Processor Version             Intel(R) Core(TM) i3 CPU       M 370  @ 2.40GHz
  Processor Voltage             8eh - 1.4V
  External Clock                133MHz
  Max Speed                     2399MHz
  Current Speed                 2399MHz
  Status                        Enabled Populated
  Processor Upgrade             None
  L1 Cache Handle               0005h
  L2 Cache Handle               0006h
  L3 Cache Handle               0007h
  Serial Number                    
  Asset Tag Number                 
  Part Number                   N/A
[Cache Information (Type 7) - Length 19 - Handle 0005h]
  Socket Designation            L1 Cache
  Cache Configuration           0088h - WT Enabled Int Socketed L1
  Maximum Cache Size            0080h - 128K
  Installed Size                0080h - 128K
  Supported SRAM Type           0002h - Unknown 
  Current SRAM Type             0002h - Unknown 
  Cache Speed                   0ns
  Error Correction Type         Multi-Bit ECC
  System Cache Type             Other
  Associativity                 4-way Set-Associative
[Cache Information (Type 7) - Length 19 - Handle 0006h]
  Socket Designation            L2 Cache
  Cache Configuration           0089h - WT Enabled Int Socketed L2
  Maximum Cache Size            0200h - 512K
  Installed Size                0200h - 512K
  Supported SRAM Type           0002h - Unknown 
  Current SRAM Type             0002h - Unknown 
  Cache Speed                   0ns
  Error Correction Type         Multi-Bit ECC
  System Cache Type             Unified
  Associativity                 8-way Set-Associative
[Cache Information (Type 7) - Length 19 - Handle 0007h]
  Socket Designation            L3 Cache
  Cache Configuration           018ah - WB Enabled Int Socketed L3
  Maximum Cache Size            0c00h - 3072K
  Installed Size                0c00h - 3072K
  Supported SRAM Type           0002h - Unknown 
  Current SRAM Type             0002h - Unknown 
  Cache Speed                   0ns
  Error Correction Type         Multi-Bit ECC
  System Cache Type             Unified
  Associativity                 Specification Reserved
[OEM Strings (Type 11) - Length 5 - Handle 0008h]
  Number of Strings             5
   1                            0000070882H
   2                            FNC-EXTB
   3                            9KER32_zFJJfB@_zDEEv0pn3GGDEal_JqqwI_l_JJfAI_zDFJf
   4                            Reserved
   5                            6.0.31.1208
[Physical Memory Array (Type 16) - Length 15 - Handle 0009h]
  Location                      03h - SystemBoard/Motherboard
  Use                           03h - System Memory
  Memory Error Correction       03h - None
  Maximum Capacity              [Unknown]
  Memory Error Inf Handle       [Not Provided]
  Number of Memory Devices      2
[Memory Device (Type 17) - Length 21 - Handle 000ah]
  Physical Memory Array Handle  0009h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          2048MB
  Form Factor                   0dh - SODIMM
  Device Set                    [None]
  Device Locator                SODIMM1
  Bank Locator                  Bank 0
  Memory Type                   18h - Specification Reserved
  Type Detail                   0004h - Unknown
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 000bh]
  Starting Address              00000000h
  Ending Address                001fffffh
  Memory Device Handle          000ah
  Mem Array Mapped Adr Handle   000eh
  Partition Row Position        [Unknown]
  Interleave Position           [Unknown]
  Interleave Data Depth         [Unknown]
[Memory Device (Type 17) - Length 21 - Handle 000ch]
  Physical Memory Array Handle  0009h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          1024MB
  Form Factor                   0dh - SODIMM
  Device Set                    [None]
  Device Locator                SODIMM2
  Bank Locator                  Bank 1
  Memory Type                   18h - Specification Reserved
  Type Detail                   0004h - Unknown
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 000dh]
  Starting Address              00200000h
  Ending Address                002fffffh
  Memory Device Handle          000ch
  Mem Array Mapped Adr Handle   000eh
  Partition Row Position        [Unknown]
  Interleave Position           [Unknown]
  Interleave Data Depth         [Unknown]
[Memory Array Mapped Address (Type 19) - Length 15 - Handle 000eh]
  Starting Address              00000000h
  Ending Address                002fffffh
  Memory Array Handle           0009h
  Partition Width               02

¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨``


	    
             
       [color=#000033]J. C. Griffith, Microsoft MVP (jcgriff2)[/color]   
             
           [url=https://mvp.support.microsoft.com/profile/Griffith][color=#000055][u]https://mvp.support.microsoft.com/profile/Griffith[/u][/color][/url]   

           [url=https://www.sysnative.com][color=#000033][u][url]www.sysnative.com[/url][/u][/color][/url]
             
           [url=http://jcgriff2.com][color=#000055][u][url]www.jcgriff2.com[/url][/u][/color][/url] 


¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨¨


  
[/font]

 

[Tj Belfiore]

Hello, karan.k -

Have you tried uninstalling OpenVPN w/Revo Uninstaller yet? It's worth a shot.

Download HERE.

 

[jcgriff2]

[font=lucida console]
Original Install Date:     04/11/2010, AM 1:27:31[/font]

Windows 7 SP1 needs to be installed.

http://windows.microsoft.com/en-US/windows7/install-windows-7-service-pack-1

Regards. . .

jcgriff2

 

[Safderali]

SearchProtocolHost is an important part of the Windows search device and is related to Indexing on your computer. Sometimes SearchProtocolHost.exe consuming a huge amount of CPU and cause slow working of your computer. We can fix this error to use the following method.
Solution: Disabling Windows Search:
Write services.msc dialogue box > Find Windows Search > right-click on it > select “Properties” > Startup type as “Disabled” > Stop the process to click stop button > Click on Apply button > Restart your PC.
Some more methods which are lengthy and you can follow Fix: SearchProtocolHost.exe High CPU Usage - Appuals.com to acknowledge more solutions of this error and make your computer faster.