Symbols could not be loaded for win32k.sys

writhziden · Aug 20, 2012

Anyone else have issues with the win32k.sys module? Specifically these messages:

*** WARNING: Unable to verify checksum for win32k.sys

and

*** ERROR: Module load completed but symbols could not be loaded for win32k.sys

The issue with win32k.sys was wreaking havoc with the Sysnative BSOD Apps. I finally was able to find a workaround, but it would be nice to know why this issue exists. Let me know if you have problems with the .dmps attached, as well.

Here are some .dmps that I have issues with: View attachment SymbolIssues.zip

Thanks.

-Mike

jcgriff2 · Aug 20, 2012

Yep.. win32k showed up w/o symbols in all 9 dumps.

McAfee & Intel wifi in a few.

One new MS symbol was d/l - bthport.sys

Here is a 167 MB ProcMon log recording SysnativeBSODApps.exe & kd.exe I/O activity -

17.7 MB zip - https://www.sysnative.com/temp/

ProcMon opens the PML file - http://live.sysinternals.com/Procmon.exe

All output from my run is attached.

No idea what's up w/ win32k at this time.

Wrench97 · Aug 20, 2012

Occasionally I get that error, but can rerun the dump later and not get it.
There's another thread on it here> https://www.sysnative.com/forums/sh...s?highlight=Unable+verify+checksum+win32k.sys

writhziden · Aug 20, 2012

I have a group of 518 .dmps. I receive this error on 30% of them whether I use online or local symbols. Re-running does not resolve it for most of them. I'll have to do further testing to give you more accurate data as to how many are affected. Preliminary results are 110 of the first 378 were affected:

Code:

378 .dmps processed 

*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys

Wrench97 · Aug 20, 2012

Any correlation between Windows versions I.E OEM or Retail?

writhziden · Aug 20, 2012

That may be more difficult to find out, but it is an excellent suggestion. I'll look into it. Keep the thoughts coming.

jcgriff2 · Aug 20, 2012

ProcMon screenshots...

Check out the ProcessTree --- look at the time on the kd's. One is 5 min... or never finished..?

Path sorted by READ bytes shows total READ bytes = 222 MB; NT = 216 MB - 97.3% (of the 222 MB). All other symbol files are listed. IDK if that is normal or not.

The other 2 are ProcMon I/O sorted by dir, file ext.

Doesn't help us w/ win32k, but interesting as hell to me nonetheless!

jcgriff2 · Aug 20, 2012

writhziden said:
I have a group of 518 .dmps. I receive this error on 30% of them whether I use online or local symbols. Re-running does not resolve it for most of them. I'll have to do further testing to give you more accurate data as to how many are affected. Preliminary results are 110 of the first 378 were affected:

Code:

378 .dmps processed

Code:

Zip them up,  please.

I want to pull the timestamps & build number from them.

I won't be back home until later tonight.

writhziden · Aug 20, 2012

I am currently consolidating only the ones that cause the win32k.sys error to appear using local symbols. I am then going to run them with online symbols and see how many are cleaned up. Do you want the full 518 or just the ones I have issues with? Do you want both sets of issues (local and then internet) or just the ones I ran local symbols for?

jcgriff2 · Aug 20, 2012

I'll take them all... separated, please.

I want to see if any timestamps match between those with sym errors & those without.

It really is time to send our findings to Mark Russinovich, but I need to compile a 1 or 2 page Word doc with links to the dumps & STATS, e.g., OS (build), win32k timestamps, versions.

We're going in circles and they may very well know the answer.

writhziden · Aug 20, 2012

Alright, I'll separate the ones that do not have win32k.sys problems at all, the ones that do if run with local symbols, the ones that do even with internet symbols, etc.

writhziden · Aug 20, 2012

This is all so baffling. Maybe someone else can make some sense of it: https://rapidshare.com/files/3340162011/win32k.sys_Symbols.zip

Most of those that are missing are:

Code:

fffff960`000e0000 fffff960`003f5000   win32k   win32k.sys   unavailable (00000000)

Not sure what causes this... I see it on retail and OEM systems.

One I found was:

Code:

fffff960`000b0000 fffff960`003c5000   win32k   win32k.sys   Mon Jun 11 21:08:09 2012 (4FD6B299)

This came from the same system though that showed unavailable earlier. The two that always have issues are:

Code:

fffff960`000e0000 fffff960`003f5000   win32k   win32k.sys   unavailable (00000000)
fffff960`000b0000 fffff960`003c5000   win32k   win32k.sys   Mon Jun 11 21:08:09 2012 (4FD6B299)

I wonder if some of these could be counterfeit Windows systems or systems using OEM DVDs... The above was from an ASUS RAMPAGE IV EXTREME.

I do note that most of the unavailable win32k.sys modules are on Dell and ASUS computers so far...

Nope, that rules that out:

Code:

fffff960`00070000 fffff960`00385000   win32k   win32k.sys   Mon Jun 11 21:08:08 2012 (4FD6B298)

was also found on a Dell system and the symbols could be loaded. Odd thing that this is just one second prior to the version above that cannot be verified.

If you check Drivers.txt, you can search for win32k.sys easier. Keep in mind that unavailable (00000000) is converted to Unk 0 00:00:00 1969 (00000000) by the Synsative BSOD Apps.

You can also check SMBIOS.txt for whether the system is OEM or retail based. I don't have systeminfo.txt to show whether Windows is OEM or retail, though. I think that may have been enlightening. In SMBIOS.txt, search for Product Name

So here is what I wonder: Is win32k.sys just more prone to becoming corrupted in the module list, or is it due to OEM software not having the right versions? Could it also be counterfeit Windows that causes this? I am more apt to think it is corrupted easier in the module list or it is an OEM issue, but I do wonder... What are others' thoughts on this?

jcgriff2 · Aug 20, 2012

Maybe we request Driver Verifier be run on win32k?

Better yet... SysInternals Sigcheck - https://www.sysnative.com/forums/sh...nternals-SigCheck-system32-syswow64-sysnative

writhziden · Aug 20, 2012

Interesting. Those are definitely good methods to find out if it is a valid version or if the driver itself has become corrupted. I'll have to check these two things in the future with OPs if I see win32k.sys has an unavailable or (00000000) timestamp. Since you recommend Sigcheck as the better option, I'll start with that. I know signature information can be missing with cracked OSes, but is there another reason you recommend it?

jcgriff2 · Aug 20, 2012

No... just that it is a SysInternals app written by Mark Russinovich -

http://technet.microsoft.com/en-us/sysinternals/bb897441

... and that I'm running out of ideas. :r1:

writhziden · Aug 20, 2012

Fair enough. At least digging into these has revealed some common traits. The most mysterious one to me is the version that is one second off from the timestamp that is accepted.

jcgriff2 · Aug 20, 2012

Also .. these commands may help...

Code:

!for_each_module .echo @#ModuleName fver = @#FileVersion pver = @#ProductVersion 

!for_each_module .echo @#ModuleIndex : @#Base @#End @#ModuleName @#ImageName  @#LoadedImageName

Read More:

IDK......

jcgriff2 · Aug 20, 2012

No... just ran one with win32k sym error -

Code:

3: kd> !for_each_module .echo @#ModuleName fver = @#FileVersion pver = @#ProductVersion 
kdcom fver = 6.1.7601.17556 (win7sp1_gdr.110204-2120) pver = 6.1.7601.17556
hal fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
nt fver = 6.1.7601.17835 (win7sp1_gdr.120503-2030) pver = 6.1.7601.17835
Wdf01000 fver = 1.9.7600.16385 (win7_rtm.090713-1255) pver = 1.9.7600.16385
WDFLDR fver =  pver =
mcupdate_AuthenticAMD fver =  pver =
PSHED fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
CLFS fver =  pver =
CI fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
atapi fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
ACPI fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
WMILIB fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
msisadrv fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
pci fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
vdrvroot fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
vsflt67 fver =  pver =
partmgr fver =  pver =
volmgr fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
volmgrx fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
pciide fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
PCIIDEX fver =  pver =
mountmgr fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
vmbus fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
winhv fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
psinknc fver =  pver =
ataport fver =  pver =
msahci fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
amdxata fver =  pver =
fltmgr fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
fileinfo fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
msrpc fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
cng fver = 6.1.7601.17856 (win7sp1_gdr.120601-1505) pver = 6.1.7601.17856
tdx fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
TDI fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
NNSTlsc fver =  pver =
Npfs fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
Ntfs fver = 6.1.7601.17577 (win7sp1_gdr.110310-1504) pver = 6.1.7601.17577
ksecdd fver = 6.1.7601.17856 (win7sp1_gdr.120601-1505) pver = 6.1.7601.17856
pcw fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
Fs_Rec fver = 6.1.7601.17787 (win7sp1_gdr.120229-1502) pver = 6.1.7601.17787
Msfs fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
ndis fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
NETIO fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
ksecpkg fver = 6.1.7601.17856 (win7sp1_gdr.120601-1505) pver = 6.1.7601.17856
cdrom fver =  pver =
vga fver =  pver =
VIDEOPRT fver =  pver =
watchdog fver =  pver =
rdpencdd fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
rdprefmp fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
CLASSPNP fver =  pver =
luafv fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
tcpip fver = 6.1.7601.17802 (win7sp1_gdr.120329-2050) pver = 6.1.7601.17802
fwpkclnt fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
vmstorfl fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
volsnap fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
spldr fver =  pver =
rdyboost fver =  pver =
mup fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
hwpolicy fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
fltsrv fver =  pver =
fvevol fver =  pver =
disk fver =  pver =
Null fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
Beep fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
RDPCDD fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
netbios fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
serial fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
wanarp fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
termdd fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
SCDEmu fver =  pver =
rdbss fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
nsiproxy fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
afd fver = 6.1.7601.17752 (win7sp1_gdr.111227-1505) pver = 6.1.7601.17752
netbt fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
wfplwf fver =  pver =
pacer fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
NNSNAHSL fver =  pver =
NNSHttp fver =  pver =
NNSAlpc fver =  pver =
mssmbios fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
ElbyCDIO fver =  pver =
discache fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
Dxapi fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
monitor fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
NNSStrm fver =  pver =
NNSSmtp fver =  pver =
NNSPrv fver =  pver =
NNSProt fver =  pver =
NNSPop3 fver =  pver =
NNSPihsw fver =  pver =
NNSPicc fver =  pver =
NNSIds fver =  pver =
mpsdrv fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
PSINAflt fver =  pver =
PSINProt fver =  pver =
PSINFile fver =  pver =
PSINProc fver =  pver =
WudfPf fver =  pver =
lltdio fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
rspndr fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
HTTP fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
bowser fver = 6.1.7601.17565 (win7sp1_gdr.110222-1630) pver = 6.1.7601.17565
atikmpag fver =  pver =
rassstp fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
VKbms fver =  pver =
HIDCLASS fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
HIDPARSE fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
rdpbus fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
kbdclass fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
csc fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
dfsc fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
blbdrive fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
AppleCharger fver =  pver =
tunnel fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
amdppm fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
wmiacpi fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
mouclass fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
dump_dumpata fver =  pver =
dump_msahci fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
dump_dumpfve fver =  pver =
USBPORT fver = 6.1.7601.17586 (win7sp1_gdr.110324-1501) pver = 6.1.7601.17586
usbehci fver = 6.1.7601.17586 (win7sp1_gdr.110324-1501) pver = 6.1.7601.17586
1394ohci fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
serenum fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
CompositeBus fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
AgileVpn fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
ndistapi fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
Rt64win7 fver =  pver =
AnyDVD fver =  pver =
GEARAspiWDM fver =  pver =
usbohci fver = 6.1.7601.17586 (win7sp1_gdr.110324-1501) pver = 6.1.7601.17586
rasl2tp fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
mshidkmdf fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
swenum fver =  pver =
atikmdag fver =  pver =
dxgkrnl fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
dxgmms1 fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
HDAudBus fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
EtronXHCI fver =  pver =
ndiswan fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
raspppoe fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
raspptp fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
crashdmp fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
ks fver =  pver =
amdiox64 fver =  pver =
umbus fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
EtronHub3 fver =  pver =
USBD fver =  pver =
usbhub fver = 6.1.7601.17586 (win7sp1_gdr.110324-1501) pver = 6.1.7601.17586
NDProxy fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
mouhid fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
kbdhid fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
RtHDMIVX fver =  pver =
portcls fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
drmk fver =  pver =
ksthunk fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
usbccgp fver = 6.1.7601.17586 (win7sp1_gdr.110324-1501) pver = 6.1.7601.17586
peauth fver =  pver =
secdrv fver =  pver =
mrxsmb fver = 6.1.7601.17605 (win7sp1_gdr.110426-1503) pver = 6.1.7601.17605
mrxsmb10 fver = 6.1.7601.17647 (win7sp1_gdr.110708-1503) pver = 6.1.7601.17647
mrxsmb20 fver = 6.1.7601.17605 (win7sp1_gdr.110426-1503) pver = 6.1.7601.17605
AODDriver2 fver =  pver =
srvnet fver = 6.1.7601.17608 (win7sp1_gdr.110428-1525) pver = 6.1.7601.17608
tcpipreg fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
hidusb fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
Lycosa fver =  pver =
RTKVHD64 fver =  pver =
Lachesis fver =  pver =
mbam fver =  pver =
srv2 fver = 6.1.7601.17608 (win7sp1_gdr.110428-1525) pver = 6.1.7601.17608
srv fver = 6.1.7601.17608 (win7sp1_gdr.110428-1525) pver = 6.1.7601.17608
gdrv fver =  pver =
rdpdr fver = 6.1.7601.17514 (win7sp1_rtm.101119-1850) pver = 6.1.7601.17514
asyncmac fver = 6.1.7600.16385 (win7_rtm.090713-1255) pver = 6.1.7600.16385
win32k fver =  pver =
TSDDD fver =  pver =
cdd fver =  pver =
ATMFD fver =  pver =

Code:

3: kd> !for_each_module .echo @#ModuleIndex : @#Base @#End @#ModuleName @#ImageName  @#LoadedImageName
00 : fffff80000bcd000 fffff80000bd7000 kdcom kdcom.dll
01 : fffff80003807000 fffff80003850000 hal hal.dll
02 : fffff80003850000 fffff80003e38000 nt ntkrnlmp.exe  ntkrnlmp.exe
03 : fffff88000c00000 fffff88000ca4000 Wdf01000 \SystemRoot\system32\drivers\Wdf01000.sys
04 : fffff88000ca4000 fffff88000cb3000 WDFLDR \SystemRoot\system32\drivers\WDFLDR.SYS
05 : fffff88000cba000 fffff88000cc7000 mcupdate_AuthenticAMD \SystemRoot\system32\mcupdate_AuthenticAMD.dll
06 : fffff88000cc7000 fffff88000cdb000 PSHED \SystemRoot\system32\PSHED.dll
07 : fffff88000cdb000 fffff88000d39000 CLFS \SystemRoot\system32\CLFS.SYS
08 : fffff88000d39000 fffff88000df9000 CI \SystemRoot\system32\CI.dll
09 : fffff88000e00000 fffff88000e09000 atapi \SystemRoot\system32\drivers\atapi.sys
0a : fffff88000e22000 fffff88000e79000 ACPI \SystemRoot\system32\drivers\ACPI.sys
0b : fffff88000e79000 fffff88000e82000 WMILIB \SystemRoot\system32\drivers\WMILIB.SYS
0c : fffff88000e82000 fffff88000e8c000 msisadrv \SystemRoot\system32\drivers\msisadrv.sys
0d : fffff88000e8c000 fffff88000ebf000 pci \SystemRoot\system32\drivers\pci.sys
0e : fffff88000ebf000 fffff88000ecc000 vdrvroot \SystemRoot\system32\drivers\vdrvroot.sys
0f : fffff88000ecc000 fffff88000ef2000 vsflt67 \SystemRoot\system32\DRIVERS\vsflt67.sys
10 : fffff88000ef2000 fffff88000f07000 partmgr \SystemRoot\System32\drivers\partmgr.sys
11 : fffff88000f07000 fffff88000f1c000 volmgr \SystemRoot\system32\drivers\volmgr.sys
12 : fffff88000f1c000 fffff88000f78000 volmgrx \SystemRoot\System32\drivers\volmgrx.sys
13 : fffff88000f78000 fffff88000f7f000 pciide \SystemRoot\system32\drivers\pciide.sys
14 : fffff88000f7f000 fffff88000f8f000 PCIIDEX \SystemRoot\system32\drivers\PCIIDEX.SYS
15 : fffff88000f8f000 fffff88000fa9000 mountmgr \SystemRoot\System32\drivers\mountmgr.sys
16 : fffff88000fa9000 fffff88000fe5000 vmbus \SystemRoot\system32\drivers\vmbus.sys
17 : fffff88000fe5000 fffff88000ff9000 winhv \SystemRoot\system32\drivers\winhv.sys
18 : fffff88001000000 fffff88001038000 psinknc \SystemRoot\system32\DRIVERS\psinknc.sys
19 : fffff8800103b000 fffff88001065000 ataport \SystemRoot\system32\drivers\ataport.SYS
1a : fffff88001065000 fffff88001070000 msahci \SystemRoot\system32\DRIVERS\msahci.sys
1b : fffff88001070000 fffff8800107b000 amdxata \SystemRoot\system32\drivers\amdxata.sys
1c : fffff8800107b000 fffff880010c7000 fltmgr \SystemRoot\system32\drivers\fltmgr.sys  fltmgr.sys
1d : fffff880010c7000 fffff880010db000 fileinfo \SystemRoot\system32\drivers\fileinfo.sys
1e : fffff880010db000 fffff88001139000 msrpc \SystemRoot\System32\Drivers\msrpc.sys
1f : fffff88001139000 fffff880011ab000 cng \SystemRoot\System32\Drivers\cng.sys
20 : fffff880011ab000 fffff880011cd000 tdx \SystemRoot\system32\DRIVERS\tdx.sys
21 : fffff880011cd000 fffff880011da000 TDI \SystemRoot\system32\DRIVERS\TDI.SYS
22 : fffff880011da000 fffff880011f8000 NNSTlsc \SystemRoot\system32\DRIVERS\NNSTlsc.sys
23 : fffff88001200000 fffff88001211000 Npfs \SystemRoot\System32\Drivers\Npfs.SYS
24 : fffff88001218000 fffff880013bb000 Ntfs \SystemRoot\System32\Drivers\Ntfs.sys  Ntfs.sys
25 : fffff880013bb000 fffff880013d6000 ksecdd \SystemRoot\System32\Drivers\ksecdd.sys
26 : fffff880013d6000 fffff880013e7000 pcw \SystemRoot\System32\drivers\pcw.sys
27 : fffff880013e7000 fffff880013f1000 Fs_Rec \SystemRoot\System32\Drivers\Fs_Rec.sys
28 : fffff880013f1000 fffff880013fc000 Msfs \SystemRoot\System32\Drivers\Msfs.SYS
29 : fffff88001402000 fffff880014f5000 ndis \SystemRoot\system32\drivers\ndis.sys
2a : fffff880014f5000 fffff88001555000 NETIO \SystemRoot\system32\drivers\NETIO.SYS
2b : fffff88001555000 fffff8800157f000 ksecpkg \SystemRoot\System32\Drivers\ksecpkg.sys
2c : fffff8800157f000 fffff880015a9000 cdrom \SystemRoot\system32\DRIVERS\cdrom.sys
2d : fffff880015a9000 fffff880015b7000 vga \SystemRoot\System32\drivers\vga.sys
2e : fffff880015b7000 fffff880015dc000 VIDEOPRT \SystemRoot\System32\drivers\VIDEOPRT.SYS
2f : fffff880015dc000 fffff880015ec000 watchdog \SystemRoot\System32\drivers\watchdog.sys
30 : fffff880015ec000 fffff880015f5000 rdpencdd \SystemRoot\system32\drivers\rdpencdd.sys
31 : fffff880015f5000 fffff880015fe000 rdprefmp \SystemRoot\system32\drivers\rdprefmp.sys
32 : fffff88001600000 fffff88001630000 CLASSPNP \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
33 : fffff88001630000 fffff88001653000 luafv \SystemRoot\system32\drivers\luafv.sys
34 : fffff8800166b000 fffff8800186e000 tcpip \SystemRoot\System32\drivers\tcpip.sys
35 : fffff8800186e000 fffff880018b8000 fwpkclnt \SystemRoot\System32\drivers\fwpkclnt.sys
36 : fffff880018b8000 fffff880018c8000 vmstorfl \SystemRoot\system32\drivers\vmstorfl.sys
37 : fffff880018c8000 fffff88001914000 volsnap \SystemRoot\system32\drivers\volsnap.sys
38 : fffff88001914000 fffff8800191c000 spldr \SystemRoot\System32\Drivers\spldr.sys
39 : fffff8800191c000 fffff88001956000 rdyboost \SystemRoot\System32\drivers\rdyboost.sys
3a : fffff88001956000 fffff88001968000 mup \SystemRoot\System32\Drivers\mup.sys
3b : fffff88001968000 fffff88001971000 hwpolicy \SystemRoot\System32\drivers\hwpolicy.sys
3c : fffff88001971000 fffff88001995000 fltsrv \SystemRoot\system32\DRIVERS\fltsrv.sys
3d : fffff88001995000 fffff880019cf000 fvevol \SystemRoot\System32\DRIVERS\fvevol.sys
3e : fffff880019cf000 fffff880019e5000 disk \SystemRoot\system32\DRIVERS\disk.sys
3f : fffff880019e5000 fffff880019ee000 Null \SystemRoot\System32\Drivers\Null.SYS
40 : fffff880019ee000 fffff880019f5000 Beep \SystemRoot\System32\Drivers\Beep.SYS
41 : fffff880019f5000 fffff880019fe000 RDPCDD \SystemRoot\System32\DRIVERS\RDPCDD.sys
42 : fffff88002c00000 fffff88002c0f000 netbios \SystemRoot\system32\DRIVERS\netbios.sys
43 : fffff88002c0f000 fffff88002c2c000 serial \SystemRoot\system32\DRIVERS\serial.sys
44 : fffff88002c2c000 fffff88002c47000 wanarp \SystemRoot\system32\DRIVERS\wanarp.sys
45 : fffff88002c47000 fffff88002c5b000 termdd \SystemRoot\system32\drivers\termdd.sys
46 : fffff88002c5b000 fffff88002c82000 SCDEmu \SystemRoot\System32\Drivers\SCDEmu.SYS
47 : fffff88002c82000 fffff88002cd3000 rdbss \SystemRoot\system32\DRIVERS\rdbss.sys
48 : fffff88002cd3000 fffff88002cdf000 nsiproxy \SystemRoot\system32\drivers\nsiproxy.sys
49 : fffff88002cf0000 fffff88002d79000 afd \SystemRoot\system32\drivers\afd.sys
4a : fffff88002d79000 fffff88002dbe000 netbt \SystemRoot\System32\DRIVERS\netbt.sys
4b : fffff88002dbe000 fffff88002dc7000 wfplwf \SystemRoot\system32\DRIVERS\wfplwf.sys
4c : fffff88002dc7000 fffff88002ded000 pacer \SystemRoot\system32\DRIVERS\pacer.sys
4d : fffff88002ded000 fffff88002df9000 NNSNAHSL \SystemRoot\system32\DRIVERS\NNSNAHSL.sys
4e : fffff88003c00000 fffff88003c24000 NNSHttp \SystemRoot\system32\DRIVERS\NNSHttp.sys
4f : fffff88003c24000 fffff88003c3e000 NNSAlpc \SystemRoot\system32\DRIVERS\NNSAlpc.sys
50 : fffff88003c3e000 fffff88003c49000 mssmbios \SystemRoot\system32\drivers\mssmbios.sys
51 : fffff88003c49000 fffff88003c55000 ElbyCDIO \SystemRoot\System32\Drivers\ElbyCDIO.sys
52 : fffff88003c55000 fffff88003c64000 discache \SystemRoot\System32\drivers\discache.sys
53 : fffff88003c64000 fffff88003c70000 Dxapi \SystemRoot\System32\drivers\Dxapi.sys
54 : fffff88003c70000 fffff88003c7e000 monitor \SystemRoot\system32\DRIVERS\monitor.sys
55 : fffff88003c8a000 fffff88003cc7000 NNSStrm \SystemRoot\system32\DRIVERS\NNSStrm.sys
56 : fffff88003cc7000 fffff88003ce7000 NNSSmtp \SystemRoot\system32\DRIVERS\NNSSmtp.sys
57 : fffff88003ce7000 fffff88003d20000 NNSPrv \SystemRoot\system32\DRIVERS\NNSPrv.sys
58 : fffff88003d20000 fffff88003d72000 NNSProt \SystemRoot\system32\DRIVERS\NNSProt.sys
59 : fffff88003d72000 fffff88003d93000 NNSPop3 \SystemRoot\system32\DRIVERS\NNSPop3.sys
5a : fffff88003d93000 fffff88003daa000 NNSPihsw \SystemRoot\system32\DRIVERS\NNSPihsw.sys
5b : fffff88003daa000 fffff88003dc8000 NNSPicc \SystemRoot\system32\DRIVERS\NNSPicc.sys
5c : fffff88003dc8000 fffff88003df0000 NNSIds \SystemRoot\system32\DRIVERS\NNSIds.sys
5d : fffff88003e00000 fffff88003e18000 mpsdrv \SystemRoot\System32\drivers\mpsdrv.sys
5e : fffff88003e36000 fffff88003e62000 PSINAflt \SystemRoot\system32\DRIVERS\PSINAflt.sys
5f : fffff88003e62000 fffff88003e85000 PSINProt \SystemRoot\system32\DRIVERS\PSINProt.sys
60 : fffff88003e85000 fffff88003ea5000 PSINFile \SystemRoot\system32\DRIVERS\PSINFile.sys
61 : fffff88003ea5000 fffff88003ec7000 PSINProc \SystemRoot\system32\DRIVERS\PSINProc.sys
62 : fffff88003ec7000 fffff88003ee8000 WudfPf \SystemRoot\system32\drivers\WudfPf.sys
63 : fffff88003ee8000 fffff88003efd000 lltdio \SystemRoot\system32\DRIVERS\lltdio.sys
64 : fffff88003efd000 fffff88003f15000 rspndr \SystemRoot\system32\DRIVERS\rspndr.sys
65 : fffff88003f15000 fffff88003fde000 HTTP \SystemRoot\system32\drivers\HTTP.sys
66 : fffff88003fde000 fffff88003ffc000 bowser \SystemRoot\system32\DRIVERS\bowser.sys
67 : fffff88004200000 fffff88004261000 atikmpag \SystemRoot\system32\DRIVERS\atikmpag.sys
68 : fffff88004261000 fffff8800427b000 rassstp \SystemRoot\system32\DRIVERS\rassstp.sys
69 : fffff8800427b000 fffff88004286000 VKbms \SystemRoot\system32\DRIVERS\VKbms.sys
6a : fffff88004286000 fffff8800429f000 HIDCLASS \SystemRoot\System32\drivers\HIDCLASS.SYS
6b : fffff8800429f000 fffff880042a7080 HIDPARSE \SystemRoot\System32\drivers\HIDPARSE.SYS
6c : fffff880042a8000 fffff880042b3000 rdpbus \SystemRoot\system32\DRIVERS\rdpbus.sys
6d : fffff880042b3000 fffff880042c2000 kbdclass \SystemRoot\system32\DRIVERS\kbdclass.sys
6e : fffff880042c8000 fffff8800434b000 csc \SystemRoot\system32\drivers\csc.sys
6f : fffff8800434b000 fffff88004369000 dfsc \SystemRoot\System32\Drivers\dfsc.sys
70 : fffff88004369000 fffff8800437a000 blbdrive \SystemRoot\system32\DRIVERS\blbdrive.sys
71 : fffff8800437a000 fffff88004382000 AppleCharger \SystemRoot\system32\DRIVERS\AppleCharger.sys
72 : fffff88004382000 fffff880043a8000 tunnel \SystemRoot\system32\DRIVERS\tunnel.sys
73 : fffff880043a8000 fffff880043bd000 amdppm \SystemRoot\system32\DRIVERS\amdppm.sys
74 : fffff880043bd000 fffff880043c6000 wmiacpi \SystemRoot\system32\drivers\wmiacpi.sys
75 : fffff880043c6000 fffff880043d5000 mouclass \SystemRoot\system32\drivers\mouclass.sys
76 : fffff880043d5000 fffff880043e1000 dump_dumpata \SystemRoot\System32\Drivers\dump_dumpata.sys
77 : fffff880043e1000 fffff880043ec000 dump_msahci \SystemRoot\System32\Drivers\dump_msahci.sys
78 : fffff880043ec000 fffff880043ff000 dump_dumpfve \SystemRoot\System32\Drivers\dump_dumpfve.sys
79 : fffff88004400000 fffff88004456000 USBPORT \SystemRoot\system32\DRIVERS\USBPORT.SYS
7a : fffff88004456000 fffff88004467000 usbehci \SystemRoot\system32\DRIVERS\usbehci.sys
7b : fffff88004467000 fffff880044a5000 1394ohci \SystemRoot\system32\drivers\1394ohci.sys
7c : fffff880044a5000 fffff880044b1000 serenum \SystemRoot\system32\DRIVERS\serenum.sys
7d : fffff880044b1000 fffff880044c1000 CompositeBus \SystemRoot\system32\drivers\CompositeBus.sys
7e : fffff880044c1000 fffff880044d7000 AgileVpn \SystemRoot\system32\DRIVERS\AgileVpn.sys
7f : fffff880044d7000 fffff880044e3000 ndistapi \SystemRoot\system32\DRIVERS\ndistapi.sys
80 : fffff880044e5000 fffff88004594000 Rt64win7 \SystemRoot\system32\DRIVERS\Rt64win7.sys
81 : fffff88004594000 fffff880045ba000 AnyDVD \SystemRoot\System32\Drivers\AnyDVD.sys
82 : fffff880045ba000 fffff880045c7000 GEARAspiWDM \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
83 : fffff880045c7000 fffff880045d2000 usbohci \SystemRoot\system32\DRIVERS\usbohci.sys
84 : fffff880045d2000 fffff880045f6000 rasl2tp \SystemRoot\system32\DRIVERS\rasl2tp.sys
85 : fffff880045f6000 fffff880045fe000 mshidkmdf \SystemRoot\System32\drivers\mshidkmdf.sys
86 : fffff880045fe000 fffff880045ff480 swenum \SystemRoot\system32\drivers\swenum.sys
87 : fffff88004800000 fffff8800521b000 atikmdag \SystemRoot\system32\DRIVERS\atikmdag.sys
88 : fffff8800521b000 fffff8800530f000 dxgkrnl \SystemRoot\System32\drivers\dxgkrnl.sys
89 : fffff8800530f000 fffff88005355000 dxgmms1 \SystemRoot\System32\drivers\dxgmms1.sys
8a : fffff88005355000 fffff88005379000 HDAudBus \SystemRoot\system32\DRIVERS\HDAudBus.sys
8b : fffff88005379000 fffff8800538c500 EtronXHCI \SystemRoot\System32\Drivers\EtronXHCI.sys
8c : fffff8800538d000 fffff880053bc000 ndiswan \SystemRoot\system32\DRIVERS\ndiswan.sys
8d : fffff880053bc000 fffff880053d7000 raspppoe \SystemRoot\system32\DRIVERS\raspppoe.sys
8e : fffff880053d7000 fffff880053f8000 raspptp \SystemRoot\system32\DRIVERS\raspptp.sys
8f : fffff88005800000 fffff8800580e000 crashdmp \SystemRoot\System32\Drivers\crashdmp.sys
90 : fffff88005818000 fffff8800585b000 ks \SystemRoot\system32\drivers\ks.sys
91 : fffff8800585b000 fffff8800586f000 amdiox64 \SystemRoot\system32\DRIVERS\amdiox64.sys
92 : fffff8800586f000 fffff88005881000 umbus \SystemRoot\system32\DRIVERS\umbus.sys
93 : fffff88005881000 fffff8800588ee80 EtronHub3 \SystemRoot\System32\Drivers\EtronHub3.sys
94 : fffff8800588f000 fffff88005890f00 USBD \SystemRoot\System32\Drivers\USBD.SYS
95 : fffff88005891000 fffff880058eb000 usbhub \SystemRoot\system32\DRIVERS\usbhub.sys
96 : fffff880058eb000 fffff88005900000 NDProxy \SystemRoot\System32\Drivers\NDProxy.SYS
97 : fffff88005900000 fffff8800590d000 mouhid \SystemRoot\system32\DRIVERS\mouhid.sys
98 : fffff8800590d000 fffff8800591b000 kbdhid \SystemRoot\system32\DRIVERS\kbdhid.sys
99 : fffff8800591b000 fffff88005973300 RtHDMIVX \SystemRoot\system32\drivers\RtHDMIVX.sys
9a : fffff88005974000 fffff880059b1000 portcls \SystemRoot\system32\drivers\portcls.sys
9b : fffff880059b1000 fffff880059d3000 drmk \SystemRoot\system32\drivers\drmk.sys
9c : fffff880059d3000 fffff880059d8200 ksthunk \SystemRoot\system32\drivers\ksthunk.sys
9d : fffff880059d9000 fffff880059f6000 usbccgp \SystemRoot\system32\DRIVERS\usbccgp.sys
9e : fffff88006200000 fffff880062a6000 peauth \SystemRoot\system32\drivers\peauth.sys
9f : fffff880062a6000 fffff880062b1000 secdrv \SystemRoot\System32\Drivers\secdrv.SYS
a0 : fffff880062d9000 fffff88006306000 mrxsmb \SystemRoot\system32\DRIVERS\mrxsmb.sys
a1 : fffff88006306000 fffff88006354000 mrxsmb10 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
a2 : fffff88006354000 fffff88006378000 mrxsmb20 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
a3 : fffff88006378000 fffff880063a9000 AODDriver2 \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
a4 : fffff880063a9000 fffff880063da000 srvnet \SystemRoot\System32\DRIVERS\srvnet.sys
a5 : fffff880063da000 fffff880063ec000 tcpipreg \SystemRoot\System32\drivers\tcpipreg.sys
a6 : fffff88007200000 fffff8800720e000 hidusb \SystemRoot\system32\drivers\hidusb.sys
a7 : fffff8800720e000 fffff88007215100 Lycosa \SystemRoot\system32\drivers\Lycosa.sys
a8 : fffff88007219000 fffff880075f7980 RTKVHD64 \SystemRoot\system32\drivers\RTKVHD64.sys
a9 : fffff880075f8000 fffff880075ff500 Lachesis \SystemRoot\system32\drivers\Lachesis.sys
aa : fffff88008a00000 fffff88008a0a000 mbam \??\C:\Windows\system32\drivers\mbam.sys
ab : fffff88008a52000 fffff88008abb000 srv2 \SystemRoot\System32\DRIVERS\srv2.sys
ac : fffff88008abb000 fffff88008b53000 srv \SystemRoot\System32\DRIVERS\srv.sys
ad : fffff88008b75000 fffff88008b7e000 gdrv \??\C:\Windows\gdrv.sys
ae : fffff88008b7e000 fffff88008bac000 rdpdr \SystemRoot\System32\drivers\rdpdr.sys
af : fffff8800b935000 fffff8800b940000 asyncmac \SystemRoot\system32\DRIVERS\asyncmac.sys
b0 : fffff960000c0000 fffff960003d5000 win32k \SystemRoot\System32\win32k.sys  win32k.sys
b1 : fffff96000520000 fffff9600052a000 TSDDD \SystemRoot\System32\TSDDD.dll
b2 : fffff96000600000 fffff96000627000 cdd \SystemRoot\System32\cdd.dll
b3 : fffff96000860000 fffff960008c1000 ATMFD \SystemRoot\System32\ATMFD.DLL

The Windbg log -

Read More:

Code:

Microsoft (R) Windows Debugger Version 6.12.0002.633 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\PalmDesert\AppData\Local\Temp\SAL847.tmp\081912-16458-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*a:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7601 (Service Pack 1) MP (6 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
Machine Name:
Kernel base = 0xfffff800`03850000 PsLoadedModuleList = 0xfffff800`03a94670
Debug session time: Mon Aug 20 02:51:41.045 2012 (UTC - 4:00)
System Uptime: 0 days 9:03:05.409
Loading Kernel Symbols
...............................................................
................................................................
....................................................
Loading User Symbols
Loading unloaded module list
.............
ERROR: FindPlugIns 8007007b
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck A, {fffffa001323ee60, 2, 0, fffff8000390f993}

*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
Probably caused by : ntkrnlmp.exe ( nt!CcFlushCache+103 )

Followup: MachineOwner
---------

3: kd> !analyze -v;r;kv;lmtn;lmtsmn;.bugcheck;!peb;!sysinfo cpuinfo;!sysinfo machineid; !sysinfo cpuspeed; !sysinfo smbios;
ERROR: FindPlugIns 8007007b
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

IRQL_NOT_LESS_OR_EQUAL (a)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If a kernel debugger is available get the stack backtrace.
Arguments:
Arg1: fffffa001323ee60, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000000, bitfield :
	bit 0 : value 0 = read operation, 1 = write operation
	bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
Arg4: fffff8000390f993, address which referenced memory

Debugging Details:
------------------


READ_ADDRESS: GetPointerFromAddress: unable to read from fffff80003afe100
 fffffa001323ee60 

CURRENT_IRQL:  2

FAULTING_IP: 
nt!CcFlushCache+103
fffff800`0390f993 488b7808        mov     rdi,qword ptr [rax+8]

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0xA

PROCESS_NAME:  System

TRAP_FRAME:  fffff8800545a010 -- (.trap 0xfffff8800545a010)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffffa001323ee58 rbx=0000000000000000 rcx=fffff88002fd7840
rdx=0000000000000000 rsi=0000000000000000 rdi=0000000000000000
rip=fffff8000390f993 rsp=fffff8800545a1a0 rbp=fffff8800545a2d8
 r8=0000000000000000  r9=0000000000000000 r10=0000000000000000
r11=0000000000000000 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei pl zr na po nc
nt!CcFlushCache+0x103:
fffff800`0390f993 488b7808        mov     rdi,qword ptr [rax+8] ds:6018:fffffa00`1323ee60=????????????????
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff800038ce769 to fffff800038cf1c0

STACK_TEXT:  
fffff880`05459ec8 fffff800`038ce769 : 00000000`0000000a fffffa00`1323ee60 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`05459ed0 fffff800`038cd3e0 : 00000000`00000001 fffff880`0545a080 00000000`00000000 fffff880`02fd7180 : nt!KiBugCheckDispatch+0x69
fffff880`0545a010 fffff800`0390f993 : fffff8a0`16536100 00000000`00000000 fffff8a0`00000000 00001f80`0101f1fa : nt!KiPageFault+0x260
fffff880`0545a1a0 fffff880`0129d6d4 : fffffa00`1323ee58 00000000`00000000 fffff8a0`00000000 00000000`00000001 : nt!CcFlushCache+0x103
fffff880`0545a2a0 fffff880`012934e3 : 00000000`00000000 fffff8a0`16545140 00000000`00000000 00000000`00000001 : Ntfs!NtfsFlushUserStream+0xb4
fffff880`0545a320 fffff880`0129bfad : fffffa80`102f22d0 fffffa80`0ec13180 00000000`00100001 00000000`00000000 : Ntfs!NtfsFlushVolume+0x2c7
fffff880`0545a450 fffff880`0129c6b4 : fffffa80`102f22d0 fffffa80`10742010 fffffa80`0d3ea280 00000000`00000000 : Ntfs!NtfsCommonFlushBuffers+0x459
fffff880`0545a530 fffff880`0107dbcf : fffffa80`107423b0 fffffa80`10742010 fffffa80`102f22d0 fffff880`0545a558 : Ntfs!NtfsFsdFlushBuffers+0x104
fffff880`0545a5a0 fffff880`0107c6df : fffffa80`0ebf2570 00000000`00000000 fffffa80`0ebf2500 fffffa80`10742010 : fltmgr!FltpLegacyProcessingAfterPreCallbacksCompleted+0x24f
fffff880`0545a630 fffff800`03bd2eab : 00000000`00000002 fffffa80`0d3ea280 00000000`00000000 fffffa80`10742010 : fltmgr!FltpDispatch+0xcf
fffff880`0545a690 fffff800`03b67a31 : fffffa80`10742010 fffffa80`0fdd7770 fffffa80`0d3ea280 fffff880`02fd7180 : nt!IopSynchronousServiceTail+0xfb
fffff880`0545a700 fffff800`038ce453 : fffffa80`0fdd7770 fffffa80`0ca4c040 fffffa80`0ebf2570 fffffa80`0d3ea280 : nt!NtFlushBuffersFile+0x171
fffff880`0545a790 fffff800`038caa10 : fffff800`03b0d8ed fffffa80`0fec7940 fffff880`085e1610 00000000`00000001 : nt!KiSystemServiceCopyEnd+0x13
fffff880`0545a928 fffff800`03b0d8ed : fffffa80`0fec7940 fffff880`085e1610 00000000`00000001 00000000`00000000 : nt!KiServiceLinkage
fffff880`0545a930 fffff800`03b65e6a : 00000000`00000000 fffffa80`0fdd7770 00000000`00000080 00000000`00000001 : nt!PopFlushVolumeWorker+0x1bd
fffff880`0545ac00 fffff800`038bfec6 : fffff880`02f65180 fffffa80`0fdd7770 fffff880`02f70040 00000000`00000000 : nt!PspSystemThreadStartup+0x5a
fffff880`0545ac40 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KxStartSystemThread+0x16


STACK_COMMAND:  kb

FOLLOWUP_IP: 
nt!CcFlushCache+103
fffff800`0390f993 488b7808        mov     rdi,qword ptr [rax+8]

SYMBOL_STACK_INDEX:  3

SYMBOL_NAME:  nt!CcFlushCache+103

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: nt

IMAGE_NAME:  ntkrnlmp.exe

DEBUG_FLR_IMAGE_TIMESTAMP:  4fa390f3

FAILURE_BUCKET_ID:  X64_0xA_nt!CcFlushCache+103

BUCKET_ID:  X64_0xA_nt!CcFlushCache+103

Followup: MachineOwner
---------

rax=fffff88005459fd0 rbx=fffff88002fd7180 rcx=000000000000000a
rdx=fffffa001323ee60 rsi=0000000000000000 rdi=fffff80003b01a80
rip=fffff800038cf1c0 rsp=fffff88005459ec8 rbp=fffff8800545a090
 r8=0000000000000002  r9=0000000000000000 r10=fffff8000390f993
r11=0000000000000000 r12=0000000000000000 r13=fffffa001323ee58
r14=000000001323ee58 r15=0000000000000000
iopl=0         nv up ei ng nz na pe nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00000282
nt!KeBugCheckEx:
fffff800`038cf1c0 48894c2408      mov     qword ptr [rsp+8],rcx ss:0018:fffff880`05459ed0=000000000000000a
Child-SP          RetAddr           : Args to Child                                                           : Call Site
fffff880`05459ec8 fffff800`038ce769 : 00000000`0000000a fffffa00`1323ee60 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`05459ed0 fffff800`038cd3e0 : 00000000`00000001 fffff880`0545a080 00000000`00000000 fffff880`02fd7180 : nt!KiBugCheckDispatch+0x69
fffff880`0545a010 fffff800`0390f993 : fffff8a0`16536100 00000000`00000000 fffff8a0`00000000 00001f80`0101f1fa : nt!KiPageFault+0x260 (TrapFrame @ fffff880`0545a010)
fffff880`0545a1a0 fffff880`0129d6d4 : fffffa00`1323ee58 00000000`00000000 fffff8a0`00000000 00000000`00000001 : nt!CcFlushCache+0x103
fffff880`0545a2a0 fffff880`012934e3 : 00000000`00000000 fffff8a0`16545140 00000000`00000000 00000000`00000001 : Ntfs!NtfsFlushUserStream+0xb4
fffff880`0545a320 fffff880`0129bfad : fffffa80`102f22d0 fffffa80`0ec13180 00000000`00100001 00000000`00000000 : Ntfs!NtfsFlushVolume+0x2c7
fffff880`0545a450 fffff880`0129c6b4 : fffffa80`102f22d0 fffffa80`10742010 fffffa80`0d3ea280 00000000`00000000 : Ntfs!NtfsCommonFlushBuffers+0x459
fffff880`0545a530 fffff880`0107dbcf : fffffa80`107423b0 fffffa80`10742010 fffffa80`102f22d0 fffff880`0545a558 : Ntfs!NtfsFsdFlushBuffers+0x104
fffff880`0545a5a0 fffff880`0107c6df : fffffa80`0ebf2570 00000000`00000000 fffffa80`0ebf2500 fffffa80`10742010 : fltmgr!FltpLegacyProcessingAfterPreCallbacksCompleted+0x24f
fffff880`0545a630 fffff800`03bd2eab : 00000000`00000002 fffffa80`0d3ea280 00000000`00000000 fffffa80`10742010 : fltmgr!FltpDispatch+0xcf
fffff880`0545a690 fffff800`03b67a31 : fffffa80`10742010 fffffa80`0fdd7770 fffffa80`0d3ea280 fffff880`02fd7180 : nt!IopSynchronousServiceTail+0xfb
fffff880`0545a700 fffff800`038ce453 : fffffa80`0fdd7770 fffffa80`0ca4c040 fffffa80`0ebf2570 fffffa80`0d3ea280 : nt!NtFlushBuffersFile+0x171
fffff880`0545a790 fffff800`038caa10 : fffff800`03b0d8ed fffffa80`0fec7940 fffff880`085e1610 00000000`00000001 : nt!KiSystemServiceCopyEnd+0x13 (TrapFrame @ fffff880`0545a790)
fffff880`0545a928 fffff800`03b0d8ed : fffffa80`0fec7940 fffff880`085e1610 00000000`00000001 00000000`00000000 : nt!KiServiceLinkage
fffff880`0545a930 fffff800`03b65e6a : 00000000`00000000 fffffa80`0fdd7770 00000000`00000080 00000000`00000001 : nt!PopFlushVolumeWorker+0x1bd
fffff880`0545ac00 fffff800`038bfec6 : fffff880`02f65180 fffffa80`0fdd7770 fffff880`02f70040 00000000`00000000 : nt!PspSystemThreadStartup+0x5a
fffff880`0545ac40 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KxStartSystemThread+0x16
start             end                 module name
fffff800`00bcd000 fffff800`00bd7000   kdcom    kdcom.dll    Sat Feb 05 11:52:49 2011 (4D4D8061)
fffff800`03807000 fffff800`03850000   hal      hal.dll      Sat Nov 20 08:00:25 2010 (4CE7C669)
fffff800`03850000 fffff800`03e38000   nt       ntkrnlmp.exe Fri May 04 04:18:59 2012 (4FA390F3)
fffff880`00c00000 fffff880`00ca4000   Wdf01000 Wdf01000.sys Mon Jul 13 19:22:07 2009 (4A5BC19F)
fffff880`00ca4000 fffff880`00cb3000   WDFLDR   WDFLDR.SYS   Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`00cba000 fffff880`00cc7000   mcupdate_AuthenticAMD mcupdate_AuthenticAMD.dll Mon Jul 13 21:29:09 2009 (4A5BDF65)
fffff880`00cc7000 fffff880`00cdb000   PSHED    PSHED.dll    Mon Jul 13 21:32:23 2009 (4A5BE027)
fffff880`00cdb000 fffff880`00d39000   CLFS     CLFS.SYS     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`00d39000 fffff880`00df9000   CI       CI.dll       Sat Nov 20 08:12:36 2010 (4CE7C944)
fffff880`00e00000 fffff880`00e09000   atapi    atapi.sys    Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`00e22000 fffff880`00e79000   ACPI     ACPI.sys     Sat Nov 20 04:19:16 2010 (4CE79294)
fffff880`00e79000 fffff880`00e82000   WMILIB   WMILIB.SYS   Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`00e82000 fffff880`00e8c000   msisadrv msisadrv.sys Mon Jul 13 19:19:26 2009 (4A5BC0FE)
fffff880`00e8c000 fffff880`00ebf000   pci      pci.sys      Sat Nov 20 04:19:11 2010 (4CE7928F)
fffff880`00ebf000 fffff880`00ecc000   vdrvroot vdrvroot.sys Mon Jul 13 20:01:31 2009 (4A5BCADB)
fffff880`00ecc000 fffff880`00ef2000   vsflt67  vsflt67.sys  Wed Dec 14 06:43:33 2011 (4EE88BE5)
fffff880`00ef2000 fffff880`00f07000   partmgr  partmgr.sys  Sat Mar 17 01:06:09 2012 (4F641BC1)
fffff880`00f07000 fffff880`00f1c000   volmgr   volmgr.sys   Sat Nov 20 04:19:28 2010 (4CE792A0)
fffff880`00f1c000 fffff880`00f78000   volmgrx  volmgrx.sys  Sat Nov 20 04:20:43 2010 (4CE792EB)
fffff880`00f78000 fffff880`00f7f000   pciide   pciide.sys   Mon Jul 13 19:19:49 2009 (4A5BC115)
fffff880`00f7f000 fffff880`00f8f000   PCIIDEX  PCIIDEX.SYS  Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`00f8f000 fffff880`00fa9000   mountmgr mountmgr.sys Sat Nov 20 04:19:21 2010 (4CE79299)
fffff880`00fa9000 fffff880`00fe5000   vmbus    vmbus.sys    Sat Nov 20 04:57:29 2010 (4CE79B89)
fffff880`00fe5000 fffff880`00ff9000   winhv    winhv.sys    Sat Nov 20 04:20:02 2010 (4CE792C2)
fffff880`01000000 fffff880`01038000   psinknc  psinknc.sys  Thu Jul 12 14:43:03 2012 (4FFF1AB7)
fffff880`0103b000 fffff880`01065000   ataport  ataport.SYS  Sat Nov 20 04:19:15 2010 (4CE79293)
fffff880`01065000 fffff880`01070000   msahci   msahci.sys   Sat Nov 20 05:33:58 2010 (4CE7A416)
fffff880`01070000 fffff880`0107b000   amdxata  amdxata.sys  Fri Mar 19 12:18:18 2010 (4BA3A3CA)
fffff880`0107b000 fffff880`010c7000   fltmgr   fltmgr.sys   Sat Nov 20 04:19:24 2010 (4CE7929C)
fffff880`010c7000 fffff880`010db000   fileinfo fileinfo.sys Mon Jul 13 19:34:25 2009 (4A5BC481)
fffff880`010db000 fffff880`01139000   msrpc    msrpc.sys    Sat Nov 20 04:21:56 2010 (4CE79334)
fffff880`01139000 fffff880`011ab000   cng      cng.sys      Fri Jun 01 23:25:51 2012 (4FC987BF)
fffff880`011ab000 fffff880`011cd000   tdx      tdx.sys      Sat Nov 20 04:21:54 2010 (4CE79332)
fffff880`011cd000 fffff880`011da000   TDI      TDI.SYS      Sat Nov 20 04:22:06 2010 (4CE7933E)
fffff880`011da000 fffff880`011f8000   NNSTlsc  NNSTlsc.sys  Wed Jun 27 09:07:02 2012 (4FEB0576)
fffff880`01200000 fffff880`01211000   Npfs     Npfs.SYS     Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`01218000 fffff880`013bb000   Ntfs     Ntfs.sys     Thu Mar 10 22:39:39 2011 (4D79997B)
fffff880`013bb000 fffff880`013d6000   ksecdd   ksecdd.sys   Fri Jun 01 22:50:23 2012 (4FC97F6F)
fffff880`013d6000 fffff880`013e7000   pcw      pcw.sys      Mon Jul 13 19:19:27 2009 (4A5BC0FF)
fffff880`013e7000 fffff880`013f1000   Fs_Rec   Fs_Rec.sys   Wed Feb 29 22:41:06 2012 (4F4EEFD2)
fffff880`013f1000 fffff880`013fc000   Msfs     Msfs.SYS     Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`01402000 fffff880`014f5000   ndis     ndis.sys     Sat Nov 20 04:23:30 2010 (4CE79392)
fffff880`014f5000 fffff880`01555000   NETIO    NETIO.SYS    Sat Nov 20 04:23:13 2010 (4CE79381)
fffff880`01555000 fffff880`0157f000   ksecpkg  ksecpkg.sys  Fri Jun 01 23:27:11 2012 (4FC9880F)
fffff880`0157f000 fffff880`015a9000   cdrom    cdrom.sys    Sat Nov 20 04:19:20 2010 (4CE79298)
fffff880`015a9000 fffff880`015b7000   vga      vga.sys      Mon Jul 13 19:38:47 2009 (4A5BC587)
fffff880`015b7000 fffff880`015dc000   VIDEOPRT VIDEOPRT.SYS Mon Jul 13 19:38:51 2009 (4A5BC58B)
fffff880`015dc000 fffff880`015ec000   watchdog watchdog.sys Mon Jul 13 19:37:35 2009 (4A5BC53F)
fffff880`015ec000 fffff880`015f5000   rdpencdd rdpencdd.sys Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`015f5000 fffff880`015fe000   rdprefmp rdprefmp.sys Mon Jul 13 20:16:35 2009 (4A5BCE63)
fffff880`01600000 fffff880`01630000   CLASSPNP CLASSPNP.SYS Sat Nov 20 04:19:23 2010 (4CE7929B)
fffff880`01630000 fffff880`01653000   luafv    luafv.sys    Mon Jul 13 19:26:13 2009 (4A5BC295)
fffff880`0166b000 fffff880`0186e000   tcpip    tcpip.sys    Fri Mar 30 04:34:26 2012 (4F757012)
fffff880`0186e000 fffff880`018b8000   fwpkclnt fwpkclnt.sys Sat Nov 20 04:21:37 2010 (4CE79321)
fffff880`018b8000 fffff880`018c8000   vmstorfl vmstorfl.sys Sat Nov 20 04:57:30 2010 (4CE79B8A)
fffff880`018c8000 fffff880`01914000   volsnap  volsnap.sys  Sat Nov 20 04:20:08 2010 (4CE792C8)
fffff880`01914000 fffff880`0191c000   spldr    spldr.sys    Mon May 11 12:56:27 2009 (4A0858BB)
fffff880`0191c000 fffff880`01956000   rdyboost rdyboost.sys Sat Nov 20 04:43:10 2010 (4CE7982E)
fffff880`01956000 fffff880`01968000   mup      mup.sys      Mon Jul 13 19:23:45 2009 (4A5BC201)
fffff880`01968000 fffff880`01971000   hwpolicy hwpolicy.sys Sat Nov 20 04:18:54 2010 (4CE7927E)
fffff880`01971000 fffff880`01995000   fltsrv   fltsrv.sys   Thu Nov 17 07:29:13 2011 (4EC4FE19)
fffff880`01995000 fffff880`019cf000   fvevol   fvevol.sys   Sat Nov 20 04:24:06 2010 (4CE793B6)
fffff880`019cf000 fffff880`019e5000   disk     disk.sys     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`019e5000 fffff880`019ee000   Null     Null.SYS     Mon Jul 13 19:19:37 2009 (4A5BC109)
fffff880`019ee000 fffff880`019f5000   Beep     Beep.SYS     Mon Jul 13 20:00:13 2009 (4A5BCA8D)
fffff880`019f5000 fffff880`019fe000   RDPCDD   RDPCDD.sys   Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`02c00000 fffff880`02c0f000   netbios  netbios.sys  Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`02c0f000 fffff880`02c2c000   serial   serial.sys   Mon Jul 13 20:00:40 2009 (4A5BCAA8)
fffff880`02c2c000 fffff880`02c47000   wanarp   wanarp.sys   Sat Nov 20 05:52:36 2010 (4CE7A874)
fffff880`02c47000 fffff880`02c5b000   termdd   termdd.sys   Sat Nov 20 06:03:40 2010 (4CE7AB0C)
fffff880`02c5b000 fffff880`02c82000   SCDEmu   SCDEmu.SYS   Mon Nov 14 22:18:27 2011 (4EC1DA03)
fffff880`02c82000 fffff880`02cd3000   rdbss    rdbss.sys    Sat Nov 20 04:27:51 2010 (4CE79497)
fffff880`02cd3000 fffff880`02cdf000   nsiproxy nsiproxy.sys Mon Jul 13 19:21:02 2009 (4A5BC15E)
fffff880`02cf0000 fffff880`02d79000   afd      afd.sys      Tue Dec 27 22:59:20 2011 (4EFA9418)
fffff880`02d79000 fffff880`02dbe000   netbt    netbt.sys    Sat Nov 20 04:23:18 2010 (4CE79386)
fffff880`02dbe000 fffff880`02dc7000   wfplwf   wfplwf.sys   Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`02dc7000 fffff880`02ded000   pacer    pacer.sys    Sat Nov 20 05:52:18 2010 (4CE7A862)
fffff880`02ded000 fffff880`02df9000   NNSNAHSL NNSNAHSL.sys Wed Jun 27 09:47:45 2012 (4FEB0F01)
fffff880`03c00000 fffff880`03c24000   NNSHttp  NNSHttp.sys  Wed Jun 27 09:17:48 2012 (4FEB07FC)
fffff880`03c24000 fffff880`03c3e000   NNSAlpc  NNSAlpc.sys  Wed Jun 27 09:04:31 2012 (4FEB04DF)
fffff880`03c3e000 fffff880`03c49000   mssmbios mssmbios.sys Mon Jul 13 19:31:10 2009 (4A5BC3BE)
fffff880`03c49000 fffff880`03c55000   ElbyCDIO ElbyCDIO.sys Thu Dec 16 17:58:13 2010 (4D0A9985)
fffff880`03c55000 fffff880`03c64000   discache discache.sys Mon Jul 13 19:37:18 2009 (4A5BC52E)
fffff880`03c64000 fffff880`03c70000   Dxapi    Dxapi.sys    Mon Jul 13 19:38:28 2009 (4A5BC574)
fffff880`03c70000 fffff880`03c7e000   monitor  monitor.sys  Mon Jul 13 19:38:52 2009 (4A5BC58C)
fffff880`03c8a000 fffff880`03cc7000   NNSStrm  NNSStrm.sys  Thu Jul 12 05:11:16 2012 (4FFE94B4)
fffff880`03cc7000 fffff880`03ce7000   NNSSmtp  NNSSmtp.sys  Wed Jun 27 09:45:31 2012 (4FEB0E7B)
fffff880`03ce7000 fffff880`03d20000   NNSPrv   NNSPrv.sys   Wed Jun 27 09:01:24 2012 (4FEB0424)
fffff880`03d20000 fffff880`03d72000   NNSProt  NNSProt.sys  Wed Jun 27 09:23:25 2012 (4FEB094D)
fffff880`03d72000 fffff880`03d93000   NNSPop3  NNSPop3.sys  Wed Jun 27 09:37:08 2012 (4FEB0C84)
fffff880`03d93000 fffff880`03daa000   NNSPihsw NNSPihsw.sys Wed Jun 27 09:49:36 2012 (4FEB0F70)
fffff880`03daa000 fffff880`03dc8000   NNSPicc  NNSPicc.sys  Wed Jun 27 09:20:03 2012 (4FEB0883)
fffff880`03dc8000 fffff880`03df0000   NNSIds   NNSIds.sys   Wed Jun 27 09:30:19 2012 (4FEB0AEB)
fffff880`03e00000 fffff880`03e18000   mpsdrv   mpsdrv.sys   Mon Jul 13 20:08:25 2009 (4A5BCC79)
fffff880`03e36000 fffff880`03e62000   PSINAflt PSINAflt.sys Thu Jul 12 14:43:39 2012 (4FFF1ADB)
fffff880`03e62000 fffff880`03e85000   PSINProt PSINProt.sys Thu Jul 12 14:44:52 2012 (4FFF1B24)
fffff880`03e85000 fffff880`03ea5000   PSINFile PSINFile.sys Thu Jul 12 14:44:06 2012 (4FFF1AF6)
fffff880`03ea5000 fffff880`03ec7000   PSINProc PSINProc.sys Thu Jul 12 14:44:30 2012 (4FFF1B0E)
fffff880`03ec7000 fffff880`03ee8000   WudfPf   WudfPf.sys   Sat Nov 20 05:42:44 2010 (4CE7A624)
fffff880`03ee8000 fffff880`03efd000   lltdio   lltdio.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`03efd000 fffff880`03f15000   rspndr   rspndr.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`03f15000 fffff880`03fde000   HTTP     HTTP.sys     Sat Nov 20 04:24:30 2010 (4CE793CE)
fffff880`03fde000 fffff880`03ffc000   bowser   bowser.sys   Tue Feb 22 23:55:04 2011 (4D649328)
fffff880`04200000 fffff880`04261000   atikmpag atikmpag.sys Mon Jun 11 12:26:14 2012 (4FD61C26)
fffff880`04261000 fffff880`0427b000   rassstp  rassstp.sys  Mon Jul 13 20:10:25 2009 (4A5BCCF1)
fffff880`0427b000 fffff880`04286000   VKbms    VKbms.sys    Thu Sep 30 12:16:33 2010 (4CA4B7E1)
fffff880`04286000 fffff880`0429f000   HIDCLASS HIDCLASS.SYS Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`0429f000 fffff880`042a7080   HIDPARSE HIDPARSE.SYS Mon Jul 13 20:06:17 2009 (4A5BCBF9)
fffff880`042a8000 fffff880`042b3000   rdpbus   rdpbus.sys   Mon Jul 13 20:17:46 2009 (4A5BCEAA)
fffff880`042b3000 fffff880`042c2000   kbdclass kbdclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`042c8000 fffff880`0434b000   csc      csc.sys      Sat Nov 20 04:27:12 2010 (4CE79470)
fffff880`0434b000 fffff880`04369000   dfsc     dfsc.sys     Sat Nov 20 04:26:31 2010 (4CE79447)
fffff880`04369000 fffff880`0437a000   blbdrive blbdrive.sys Mon Jul 13 19:35:59 2009 (4A5BC4DF)
fffff880`0437a000 fffff880`04382000   AppleCharger AppleCharger.sys Mon Jan 10 04:57:29 2011 (4D2AD809)
fffff880`04382000 fffff880`043a8000   tunnel   tunnel.sys   Sat Nov 20 05:51:50 2010 (4CE7A846)
fffff880`043a8000 fffff880`043bd000   amdppm   amdppm.sys   Mon Jul 13 19:19:25 2009 (4A5BC0FD)
fffff880`043bd000 fffff880`043c6000   wmiacpi  wmiacpi.sys  Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`043c6000 fffff880`043d5000   mouclass mouclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`043d5000 fffff880`043e1000   dump_dumpata dump_dumpata.sys Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`043e1000 fffff880`043ec000   dump_msahci dump_msahci.sys Sat Nov 20 05:33:58 2010 (4CE7A416)
fffff880`043ec000 fffff880`043ff000   dump_dumpfve dump_dumpfve.sys Mon Jul 13 19:21:51 2009 (4A5BC18F)
fffff880`04400000 fffff880`04456000   USBPORT  USBPORT.SYS  Thu Mar 24 23:29:12 2011 (4D8C0C08)
fffff880`04456000 fffff880`04467000   usbehci  usbehci.sys  Thu Mar 24 23:29:04 2011 (4D8C0C00)
fffff880`04467000 fffff880`044a5000   1394ohci 1394ohci.sys Sat Nov 20 05:44:56 2010 (4CE7A6A8)
fffff880`044a5000 fffff880`044b1000   serenum  serenum.sys  Mon Jul 13 20:00:33 2009 (4A5BCAA1)
fffff880`044b1000 fffff880`044c1000   CompositeBus CompositeBus.sys Sat Nov 20 05:33:17 2010 (4CE7A3ED)
fffff880`044c1000 fffff880`044d7000   AgileVpn AgileVpn.sys Mon Jul 13 20:10:24 2009 (4A5BCCF0)
fffff880`044d7000 fffff880`044e3000   ndistapi ndistapi.sys Mon Jul 13 20:10:00 2009 (4A5BCCD8)
fffff880`044e5000 fffff880`04594000   Rt64win7 Rt64win7.sys Wed Apr 11 12:29:16 2012 (4F85B15C)
fffff880`04594000 fffff880`045ba000   AnyDVD   AnyDVD.sys   Tue May 01 19:35:22 2012 (4FA0733A)
fffff880`045ba000 fffff880`045c7000   GEARAspiWDM GEARAspiWDM.sys Mon May 18 08:17:04 2009 (4A1151C0)
fffff880`045c7000 fffff880`045d2000   usbohci  usbohci.sys  Thu Mar 24 23:29:03 2011 (4D8C0BFF)
fffff880`045d2000 fffff880`045f6000   rasl2tp  rasl2tp.sys  Sat Nov 20 05:52:34 2010 (4CE7A872)
fffff880`045f6000 fffff880`045fe000   mshidkmdf mshidkmdf.sys Mon Jul 13 20:06:24 2009 (4A5BCC00)
fffff880`045fe000 fffff880`045ff480   swenum   swenum.sys   Mon Jul 13 20:00:18 2009 (4A5BCA92)
fffff880`04800000 fffff880`0521b000   atikmdag atikmdag.sys Mon Jun 11 12:59:31 2012 (4FD623F3)
fffff880`0521b000 fffff880`0530f000   dxgkrnl  dxgkrnl.sys  Sat Nov 20 04:50:50 2010 (4CE799FA)
fffff880`0530f000 fffff880`05355000   dxgmms1  dxgmms1.sys  Sat Nov 20 04:49:53 2010 (4CE799C1)
fffff880`05355000 fffff880`05379000   HDAudBus HDAudBus.sys Sat Nov 20 05:43:42 2010 (4CE7A65E)
fffff880`05379000 fffff880`0538c500   EtronXHCI EtronXHCI.sys Mon Jul 25 17:30:56 2011 (4E2DE090)
fffff880`0538d000 fffff880`053bc000   ndiswan  ndiswan.sys  Sat Nov 20 05:52:32 2010 (4CE7A870)
fffff880`053bc000 fffff880`053d7000   raspppoe raspppoe.sys Mon Jul 13 20:10:17 2009 (4A5BCCE9)
fffff880`053d7000 fffff880`053f8000   raspptp  raspptp.sys  Sat Nov 20 05:52:31 2010 (4CE7A86F)
fffff880`05800000 fffff880`0580e000   crashdmp crashdmp.sys Mon Jul 13 20:01:01 2009 (4A5BCABD)
fffff880`05818000 fffff880`0585b000   ks       ks.sys       Sat Nov 20 05:33:23 2010 (4CE7A3F3)
fffff880`0585b000 fffff880`0586f000   amdiox64 amdiox64.sys Thu Feb 18 10:17:53 2010 (4B7D5A21)
fffff880`0586f000 fffff880`05881000   umbus    umbus.sys    Sat Nov 20 05:44:37 2010 (4CE7A695)
fffff880`05881000 fffff880`0588ee80   EtronHub3 EtronHub3.sys Mon Jul 25 17:30:59 2011 (4E2DE093)
fffff880`0588f000 fffff880`05890f00   USBD     USBD.SYS     Thu Mar 24 23:28:59 2011 (4D8C0BFB)
fffff880`05891000 fffff880`058eb000   usbhub   usbhub.sys   Thu Mar 24 23:29:25 2011 (4D8C0C15)
fffff880`058eb000 fffff880`05900000   NDProxy  NDProxy.SYS  Sat Nov 20 05:52:20 2010 (4CE7A864)
fffff880`05900000 fffff880`0590d000   mouhid   mouhid.sys   Mon Jul 13 20:00:20 2009 (4A5BCA94)
fffff880`0590d000 fffff880`0591b000   kbdhid   kbdhid.sys   Sat Nov 20 05:33:25 2010 (4CE7A3F5)
fffff880`0591b000 fffff880`05973300   RtHDMIVX RtHDMIVX.sys Wed Jul 06 06:09:50 2011 (4E14346E)
fffff880`05974000 fffff880`059b1000   portcls  portcls.sys  Mon Jul 13 20:06:27 2009 (4A5BCC03)
fffff880`059b1000 fffff880`059d3000   drmk     drmk.sys     Mon Jul 13 21:01:25 2009 (4A5BD8E5)
fffff880`059d3000 fffff880`059d8200   ksthunk  ksthunk.sys  Mon Jul 13 20:00:19 2009 (4A5BCA93)
fffff880`059d9000 fffff880`059f6000   usbccgp  usbccgp.sys  Thu Mar 24 23:29:14 2011 (4D8C0C0A)
fffff880`06200000 fffff880`062a6000   peauth   peauth.sys   Mon Jul 13 21:01:19 2009 (4A5BD8DF)
fffff880`062a6000 fffff880`062b1000   secdrv   secdrv.SYS   Wed Sep 13 09:18:38 2006 (4508052E)
fffff880`062d9000 fffff880`06306000   mrxsmb   mrxsmb.sys   Tue Apr 26 22:40:38 2011 (4DB78226)
fffff880`06306000 fffff880`06354000   mrxsmb10 mrxsmb10.sys Fri Jul 08 22:46:28 2011 (4E17C104)
fffff880`06354000 fffff880`06378000   mrxsmb20 mrxsmb20.sys Tue Apr 26 22:39:37 2011 (4DB781E9)
fffff880`06378000 fffff880`063a9000   AODDriver2 AODDriver2.sys Tue Mar 06 04:55:00 2012 (4F55DEF4)
fffff880`063a9000 fffff880`063da000   srvnet   srvnet.sys   Thu Apr 28 23:05:35 2011 (4DBA2AFF)
fffff880`063da000 fffff880`063ec000   tcpipreg tcpipreg.sys Sat Nov 20 05:51:48 2010 (4CE7A844)
fffff880`07200000 fffff880`0720e000   hidusb   hidusb.sys   Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`0720e000 fffff880`07215100   Lycosa   Lycosa.sys   Tue Sep 07 23:01:26 2010 (4C86FC86)
fffff880`07219000 fffff880`075f7980   RTKVHD64 RTKVHD64.sys Thu May 31 05:21:30 2012 (4FC7381A)
fffff880`075f8000 fffff880`075ff500   Lachesis Lachesis.sys Fri Oct 16 09:09:12 2009 (4AD87078)
fffff880`08a00000 fffff880`08a0a000   mbam     mbam.sys     Tue Mar 20 12:04:48 2012 (4F68AAA0)
fffff880`08a52000 fffff880`08abb000   srv2     srv2.sys     Thu Apr 28 23:05:46 2011 (4DBA2B0A)
fffff880`08abb000 fffff880`08b53000   srv      srv.sys      Thu Apr 28 23:06:06 2011 (4DBA2B1E)
fffff880`08b75000 fffff880`08b7e000   gdrv     gdrv.sys     Thu Mar 12 23:22:29 2009 (49B9D175)
fffff880`08b7e000 fffff880`08bac000   rdpdr    rdpdr.sys    Sat Nov 20 06:06:41 2010 (4CE7ABC1)
fffff880`0b935000 fffff880`0b940000   asyncmac asyncmac.sys Mon Jul 13 20:10:13 2009 (4A5BCCE5)
fffff960`000c0000 fffff960`003d5000   win32k   win32k.sys   unavailable (00000000)
fffff960`00520000 fffff960`0052a000   TSDDD    TSDDD.dll    unavailable (00000000)
fffff960`00600000 fffff960`00627000   cdd      cdd.dll      unavailable (00000000)
fffff960`00860000 fffff960`008c1000   ATMFD    ATMFD.DLL    unavailable (00000000)

Unloaded modules:
fffff880`08b64000 fffff880`08b75000   PSKMAD.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`08bac000 fffff880`08bb7000   tdtcp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000B000
fffff880`08bc6000 fffff880`08bff000   RDPWD.SYS
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00039000
fffff880`08bb7000 fffff880`08bc6000   tssecsrv.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000F000
fffff880`0b940000 fffff880`0b952000   usbaapl64.sy
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00012000
fffff880`0b963000 fffff880`0b994000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`0b952000 fffff880`0b963000   WinUsb.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`0b8c4000 fffff880`0b935000   spsys.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00071000
fffff880`08b53000 fffff880`08b64000   PSKMAD.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`01630000 fffff880`0163e000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`0163e000 fffff880`0164a000   dump_pciidex
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000C000
fffff880`0164a000 fffff880`01655000   dump_msahci.
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000B000
fffff880`01655000 fffff880`01668000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00013000
start             end                 module name
fffff880`04467000 fffff880`044a5000   1394ohci 1394ohci.sys Sat Nov 20 05:44:56 2010 (4CE7A6A8)
fffff880`00e22000 fffff880`00e79000   ACPI     ACPI.sys     Sat Nov 20 04:19:16 2010 (4CE79294)
fffff880`02cf0000 fffff880`02d79000   afd      afd.sys      Tue Dec 27 22:59:20 2011 (4EFA9418)
fffff880`044c1000 fffff880`044d7000   AgileVpn AgileVpn.sys Mon Jul 13 20:10:24 2009 (4A5BCCF0)
fffff880`0585b000 fffff880`0586f000   amdiox64 amdiox64.sys Thu Feb 18 10:17:53 2010 (4B7D5A21)
fffff880`043a8000 fffff880`043bd000   amdppm   amdppm.sys   Mon Jul 13 19:19:25 2009 (4A5BC0FD)
fffff880`01070000 fffff880`0107b000   amdxata  amdxata.sys  Fri Mar 19 12:18:18 2010 (4BA3A3CA)
fffff880`04594000 fffff880`045ba000   AnyDVD   AnyDVD.sys   Tue May 01 19:35:22 2012 (4FA0733A)
fffff880`06378000 fffff880`063a9000   AODDriver2 AODDriver2.sys Tue Mar 06 04:55:00 2012 (4F55DEF4)
fffff880`0437a000 fffff880`04382000   AppleCharger AppleCharger.sys Mon Jan 10 04:57:29 2011 (4D2AD809)
fffff880`0b935000 fffff880`0b940000   asyncmac asyncmac.sys Mon Jul 13 20:10:13 2009 (4A5BCCE5)
fffff880`00e00000 fffff880`00e09000   atapi    atapi.sys    Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`0103b000 fffff880`01065000   ataport  ataport.SYS  Sat Nov 20 04:19:15 2010 (4CE79293)
fffff880`04800000 fffff880`0521b000   atikmdag atikmdag.sys Mon Jun 11 12:59:31 2012 (4FD623F3)
fffff880`04200000 fffff880`04261000   atikmpag atikmpag.sys Mon Jun 11 12:26:14 2012 (4FD61C26)
fffff960`00860000 fffff960`008c1000   ATMFD    ATMFD.DLL    unavailable (00000000)
fffff880`019ee000 fffff880`019f5000   Beep     Beep.SYS     Mon Jul 13 20:00:13 2009 (4A5BCA8D)
fffff880`04369000 fffff880`0437a000   blbdrive blbdrive.sys Mon Jul 13 19:35:59 2009 (4A5BC4DF)
fffff880`03fde000 fffff880`03ffc000   bowser   bowser.sys   Tue Feb 22 23:55:04 2011 (4D649328)
fffff960`00600000 fffff960`00627000   cdd      cdd.dll      unavailable (00000000)
fffff880`0157f000 fffff880`015a9000   cdrom    cdrom.sys    Sat Nov 20 04:19:20 2010 (4CE79298)
fffff880`00d39000 fffff880`00df9000   CI       CI.dll       Sat Nov 20 08:12:36 2010 (4CE7C944)
fffff880`01600000 fffff880`01630000   CLASSPNP CLASSPNP.SYS Sat Nov 20 04:19:23 2010 (4CE7929B)
fffff880`00cdb000 fffff880`00d39000   CLFS     CLFS.SYS     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`01139000 fffff880`011ab000   cng      cng.sys      Fri Jun 01 23:25:51 2012 (4FC987BF)
fffff880`044b1000 fffff880`044c1000   CompositeBus CompositeBus.sys Sat Nov 20 05:33:17 2010 (4CE7A3ED)
fffff880`05800000 fffff880`0580e000   crashdmp crashdmp.sys Mon Jul 13 20:01:01 2009 (4A5BCABD)
fffff880`042c8000 fffff880`0434b000   csc      csc.sys      Sat Nov 20 04:27:12 2010 (4CE79470)
fffff880`0434b000 fffff880`04369000   dfsc     dfsc.sys     Sat Nov 20 04:26:31 2010 (4CE79447)
fffff880`03c55000 fffff880`03c64000   discache discache.sys Mon Jul 13 19:37:18 2009 (4A5BC52E)
fffff880`019cf000 fffff880`019e5000   disk     disk.sys     Mon Jul 13 19:19:57 2009 (4A5BC11D)
fffff880`059b1000 fffff880`059d3000   drmk     drmk.sys     Mon Jul 13 21:01:25 2009 (4A5BD8E5)
fffff880`043d5000 fffff880`043e1000   dump_dumpata dump_dumpata.sys Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`043ec000 fffff880`043ff000   dump_dumpfve dump_dumpfve.sys Mon Jul 13 19:21:51 2009 (4A5BC18F)
fffff880`043e1000 fffff880`043ec000   dump_msahci dump_msahci.sys Sat Nov 20 05:33:58 2010 (4CE7A416)
fffff880`03c64000 fffff880`03c70000   Dxapi    Dxapi.sys    Mon Jul 13 19:38:28 2009 (4A5BC574)
fffff880`0521b000 fffff880`0530f000   dxgkrnl  dxgkrnl.sys  Sat Nov 20 04:50:50 2010 (4CE799FA)
fffff880`0530f000 fffff880`05355000   dxgmms1  dxgmms1.sys  Sat Nov 20 04:49:53 2010 (4CE799C1)
fffff880`03c49000 fffff880`03c55000   ElbyCDIO ElbyCDIO.sys Thu Dec 16 17:58:13 2010 (4D0A9985)
fffff880`05881000 fffff880`0588ee80   EtronHub3 EtronHub3.sys Mon Jul 25 17:30:59 2011 (4E2DE093)
fffff880`05379000 fffff880`0538c500   EtronXHCI EtronXHCI.sys Mon Jul 25 17:30:56 2011 (4E2DE090)
fffff880`010c7000 fffff880`010db000   fileinfo fileinfo.sys Mon Jul 13 19:34:25 2009 (4A5BC481)
fffff880`0107b000 fffff880`010c7000   fltmgr   fltmgr.sys   Sat Nov 20 04:19:24 2010 (4CE7929C)
fffff880`01971000 fffff880`01995000   fltsrv   fltsrv.sys   Thu Nov 17 07:29:13 2011 (4EC4FE19)
fffff880`013e7000 fffff880`013f1000   Fs_Rec   Fs_Rec.sys   Wed Feb 29 22:41:06 2012 (4F4EEFD2)
fffff880`01995000 fffff880`019cf000   fvevol   fvevol.sys   Sat Nov 20 04:24:06 2010 (4CE793B6)
fffff880`0186e000 fffff880`018b8000   fwpkclnt fwpkclnt.sys Sat Nov 20 04:21:37 2010 (4CE79321)
fffff880`08b75000 fffff880`08b7e000   gdrv     gdrv.sys     Thu Mar 12 23:22:29 2009 (49B9D175)
fffff880`045ba000 fffff880`045c7000   GEARAspiWDM GEARAspiWDM.sys Mon May 18 08:17:04 2009 (4A1151C0)
fffff800`03807000 fffff800`03850000   hal      hal.dll      Sat Nov 20 08:00:25 2010 (4CE7C669)
fffff880`05355000 fffff880`05379000   HDAudBus HDAudBus.sys Sat Nov 20 05:43:42 2010 (4CE7A65E)
fffff880`04286000 fffff880`0429f000   HIDCLASS HIDCLASS.SYS Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`0429f000 fffff880`042a7080   HIDPARSE HIDPARSE.SYS Mon Jul 13 20:06:17 2009 (4A5BCBF9)
fffff880`07200000 fffff880`0720e000   hidusb   hidusb.sys   Sat Nov 20 05:43:49 2010 (4CE7A665)
fffff880`03f15000 fffff880`03fde000   HTTP     HTTP.sys     Sat Nov 20 04:24:30 2010 (4CE793CE)
fffff880`01968000 fffff880`01971000   hwpolicy hwpolicy.sys Sat Nov 20 04:18:54 2010 (4CE7927E)
fffff880`042b3000 fffff880`042c2000   kbdclass kbdclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`0590d000 fffff880`0591b000   kbdhid   kbdhid.sys   Sat Nov 20 05:33:25 2010 (4CE7A3F5)
fffff800`00bcd000 fffff800`00bd7000   kdcom    kdcom.dll    Sat Feb 05 11:52:49 2011 (4D4D8061)
fffff880`05818000 fffff880`0585b000   ks       ks.sys       Sat Nov 20 05:33:23 2010 (4CE7A3F3)
fffff880`013bb000 fffff880`013d6000   ksecdd   ksecdd.sys   Fri Jun 01 22:50:23 2012 (4FC97F6F)
fffff880`01555000 fffff880`0157f000   ksecpkg  ksecpkg.sys  Fri Jun 01 23:27:11 2012 (4FC9880F)
fffff880`059d3000 fffff880`059d8200   ksthunk  ksthunk.sys  Mon Jul 13 20:00:19 2009 (4A5BCA93)
fffff880`075f8000 fffff880`075ff500   Lachesis Lachesis.sys Fri Oct 16 09:09:12 2009 (4AD87078)
fffff880`03ee8000 fffff880`03efd000   lltdio   lltdio.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`01630000 fffff880`01653000   luafv    luafv.sys    Mon Jul 13 19:26:13 2009 (4A5BC295)
fffff880`0720e000 fffff880`07215100   Lycosa   Lycosa.sys   Tue Sep 07 23:01:26 2010 (4C86FC86)
fffff880`08a00000 fffff880`08a0a000   mbam     mbam.sys     Tue Mar 20 12:04:48 2012 (4F68AAA0)
fffff880`00cba000 fffff880`00cc7000   mcupdate_AuthenticAMD mcupdate_AuthenticAMD.dll Mon Jul 13 21:29:09 2009 (4A5BDF65)
fffff880`03c70000 fffff880`03c7e000   monitor  monitor.sys  Mon Jul 13 19:38:52 2009 (4A5BC58C)
fffff880`043c6000 fffff880`043d5000   mouclass mouclass.sys Mon Jul 13 19:19:50 2009 (4A5BC116)
fffff880`05900000 fffff880`0590d000   mouhid   mouhid.sys   Mon Jul 13 20:00:20 2009 (4A5BCA94)
fffff880`00f8f000 fffff880`00fa9000   mountmgr mountmgr.sys Sat Nov 20 04:19:21 2010 (4CE79299)
fffff880`03e00000 fffff880`03e18000   mpsdrv   mpsdrv.sys   Mon Jul 13 20:08:25 2009 (4A5BCC79)
fffff880`062d9000 fffff880`06306000   mrxsmb   mrxsmb.sys   Tue Apr 26 22:40:38 2011 (4DB78226)
fffff880`06306000 fffff880`06354000   mrxsmb10 mrxsmb10.sys Fri Jul 08 22:46:28 2011 (4E17C104)
fffff880`06354000 fffff880`06378000   mrxsmb20 mrxsmb20.sys Tue Apr 26 22:39:37 2011 (4DB781E9)
fffff880`01065000 fffff880`01070000   msahci   msahci.sys   Sat Nov 20 05:33:58 2010 (4CE7A416)
fffff880`013f1000 fffff880`013fc000   Msfs     Msfs.SYS     Mon Jul 13 19:19:47 2009 (4A5BC113)
fffff880`045f6000 fffff880`045fe000   mshidkmdf mshidkmdf.sys Mon Jul 13 20:06:24 2009 (4A5BCC00)
fffff880`00e82000 fffff880`00e8c000   msisadrv msisadrv.sys Mon Jul 13 19:19:26 2009 (4A5BC0FE)
fffff880`010db000 fffff880`01139000   msrpc    msrpc.sys    Sat Nov 20 04:21:56 2010 (4CE79334)
fffff880`03c3e000 fffff880`03c49000   mssmbios mssmbios.sys Mon Jul 13 19:31:10 2009 (4A5BC3BE)
fffff880`01956000 fffff880`01968000   mup      mup.sys      Mon Jul 13 19:23:45 2009 (4A5BC201)
fffff880`01402000 fffff880`014f5000   ndis     ndis.sys     Sat Nov 20 04:23:30 2010 (4CE79392)
fffff880`044d7000 fffff880`044e3000   ndistapi ndistapi.sys Mon Jul 13 20:10:00 2009 (4A5BCCD8)
fffff880`0538d000 fffff880`053bc000   ndiswan  ndiswan.sys  Sat Nov 20 05:52:32 2010 (4CE7A870)
fffff880`058eb000 fffff880`05900000   NDProxy  NDProxy.SYS  Sat Nov 20 05:52:20 2010 (4CE7A864)
fffff880`02c00000 fffff880`02c0f000   netbios  netbios.sys  Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff880`02d79000 fffff880`02dbe000   netbt    netbt.sys    Sat Nov 20 04:23:18 2010 (4CE79386)
fffff880`014f5000 fffff880`01555000   NETIO    NETIO.SYS    Sat Nov 20 04:23:13 2010 (4CE79381)
fffff880`03c24000 fffff880`03c3e000   NNSAlpc  NNSAlpc.sys  Wed Jun 27 09:04:31 2012 (4FEB04DF)
fffff880`03c00000 fffff880`03c24000   NNSHttp  NNSHttp.sys  Wed Jun 27 09:17:48 2012 (4FEB07FC)
fffff880`03dc8000 fffff880`03df0000   NNSIds   NNSIds.sys   Wed Jun 27 09:30:19 2012 (4FEB0AEB)
fffff880`02ded000 fffff880`02df9000   NNSNAHSL NNSNAHSL.sys Wed Jun 27 09:47:45 2012 (4FEB0F01)
fffff880`03daa000 fffff880`03dc8000   NNSPicc  NNSPicc.sys  Wed Jun 27 09:20:03 2012 (4FEB0883)
fffff880`03d93000 fffff880`03daa000   NNSPihsw NNSPihsw.sys Wed Jun 27 09:49:36 2012 (4FEB0F70)
fffff880`03d72000 fffff880`03d93000   NNSPop3  NNSPop3.sys  Wed Jun 27 09:37:08 2012 (4FEB0C84)
fffff880`03d20000 fffff880`03d72000   NNSProt  NNSProt.sys  Wed Jun 27 09:23:25 2012 (4FEB094D)
fffff880`03ce7000 fffff880`03d20000   NNSPrv   NNSPrv.sys   Wed Jun 27 09:01:24 2012 (4FEB0424)
fffff880`03cc7000 fffff880`03ce7000   NNSSmtp  NNSSmtp.sys  Wed Jun 27 09:45:31 2012 (4FEB0E7B)
fffff880`03c8a000 fffff880`03cc7000   NNSStrm  NNSStrm.sys  Thu Jul 12 05:11:16 2012 (4FFE94B4)
fffff880`011da000 fffff880`011f8000   NNSTlsc  NNSTlsc.sys  Wed Jun 27 09:07:02 2012 (4FEB0576)
fffff880`01200000 fffff880`01211000   Npfs     Npfs.SYS     Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`02cd3000 fffff880`02cdf000   nsiproxy nsiproxy.sys Mon Jul 13 19:21:02 2009 (4A5BC15E)
fffff800`03850000 fffff800`03e38000   nt       ntkrnlmp.exe Fri May 04 04:18:59 2012 (4FA390F3)
fffff880`01218000 fffff880`013bb000   Ntfs     Ntfs.sys     Thu Mar 10 22:39:39 2011 (4D79997B)
fffff880`019e5000 fffff880`019ee000   Null     Null.SYS     Mon Jul 13 19:19:37 2009 (4A5BC109)
fffff880`02dc7000 fffff880`02ded000   pacer    pacer.sys    Sat Nov 20 05:52:18 2010 (4CE7A862)
fffff880`00ef2000 fffff880`00f07000   partmgr  partmgr.sys  Sat Mar 17 01:06:09 2012 (4F641BC1)
fffff880`00e8c000 fffff880`00ebf000   pci      pci.sys      Sat Nov 20 04:19:11 2010 (4CE7928F)
fffff880`00f78000 fffff880`00f7f000   pciide   pciide.sys   Mon Jul 13 19:19:49 2009 (4A5BC115)
fffff880`00f7f000 fffff880`00f8f000   PCIIDEX  PCIIDEX.SYS  Mon Jul 13 19:19:48 2009 (4A5BC114)
fffff880`013d6000 fffff880`013e7000   pcw      pcw.sys      Mon Jul 13 19:19:27 2009 (4A5BC0FF)
fffff880`06200000 fffff880`062a6000   peauth   peauth.sys   Mon Jul 13 21:01:19 2009 (4A5BD8DF)
fffff880`05974000 fffff880`059b1000   portcls  portcls.sys  Mon Jul 13 20:06:27 2009 (4A5BCC03)
fffff880`00cc7000 fffff880`00cdb000   PSHED    PSHED.dll    Mon Jul 13 21:32:23 2009 (4A5BE027)
fffff880`03e36000 fffff880`03e62000   PSINAflt PSINAflt.sys Thu Jul 12 14:43:39 2012 (4FFF1ADB)
fffff880`03e85000 fffff880`03ea5000   PSINFile PSINFile.sys Thu Jul 12 14:44:06 2012 (4FFF1AF6)
fffff880`01000000 fffff880`01038000   psinknc  psinknc.sys  Thu Jul 12 14:43:03 2012 (4FFF1AB7)
fffff880`03ea5000 fffff880`03ec7000   PSINProc PSINProc.sys Thu Jul 12 14:44:30 2012 (4FFF1B0E)
fffff880`03e62000 fffff880`03e85000   PSINProt PSINProt.sys Thu Jul 12 14:44:52 2012 (4FFF1B24)
fffff880`045d2000 fffff880`045f6000   rasl2tp  rasl2tp.sys  Sat Nov 20 05:52:34 2010 (4CE7A872)
fffff880`053bc000 fffff880`053d7000   raspppoe raspppoe.sys Mon Jul 13 20:10:17 2009 (4A5BCCE9)
fffff880`053d7000 fffff880`053f8000   raspptp  raspptp.sys  Sat Nov 20 05:52:31 2010 (4CE7A86F)
fffff880`04261000 fffff880`0427b000   rassstp  rassstp.sys  Mon Jul 13 20:10:25 2009 (4A5BCCF1)
fffff880`02c82000 fffff880`02cd3000   rdbss    rdbss.sys    Sat Nov 20 04:27:51 2010 (4CE79497)
fffff880`042a8000 fffff880`042b3000   rdpbus   rdpbus.sys   Mon Jul 13 20:17:46 2009 (4A5BCEAA)
fffff880`019f5000 fffff880`019fe000   RDPCDD   RDPCDD.sys   Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`08b7e000 fffff880`08bac000   rdpdr    rdpdr.sys    Sat Nov 20 06:06:41 2010 (4CE7ABC1)
fffff880`015ec000 fffff880`015f5000   rdpencdd rdpencdd.sys Mon Jul 13 20:16:34 2009 (4A5BCE62)
fffff880`015f5000 fffff880`015fe000   rdprefmp rdprefmp.sys Mon Jul 13 20:16:35 2009 (4A5BCE63)
fffff880`0191c000 fffff880`01956000   rdyboost rdyboost.sys Sat Nov 20 04:43:10 2010 (4CE7982E)
fffff880`03efd000 fffff880`03f15000   rspndr   rspndr.sys   Mon Jul 13 20:08:50 2009 (4A5BCC92)
fffff880`044e5000 fffff880`04594000   Rt64win7 Rt64win7.sys Wed Apr 11 12:29:16 2012 (4F85B15C)
fffff880`0591b000 fffff880`05973300   RtHDMIVX RtHDMIVX.sys Wed Jul 06 06:09:50 2011 (4E14346E)
fffff880`07219000 fffff880`075f7980   RTKVHD64 RTKVHD64.sys Thu May 31 05:21:30 2012 (4FC7381A)
fffff880`02c5b000 fffff880`02c82000   SCDEmu   SCDEmu.SYS   Mon Nov 14 22:18:27 2011 (4EC1DA03)
fffff880`062a6000 fffff880`062b1000   secdrv   secdrv.SYS   Wed Sep 13 09:18:38 2006 (4508052E)
fffff880`044a5000 fffff880`044b1000   serenum  serenum.sys  Mon Jul 13 20:00:33 2009 (4A5BCAA1)
fffff880`02c0f000 fffff880`02c2c000   serial   serial.sys   Mon Jul 13 20:00:40 2009 (4A5BCAA8)
fffff880`01914000 fffff880`0191c000   spldr    spldr.sys    Mon May 11 12:56:27 2009 (4A0858BB)
fffff880`08abb000 fffff880`08b53000   srv      srv.sys      Thu Apr 28 23:06:06 2011 (4DBA2B1E)
fffff880`08a52000 fffff880`08abb000   srv2     srv2.sys     Thu Apr 28 23:05:46 2011 (4DBA2B0A)
fffff880`063a9000 fffff880`063da000   srvnet   srvnet.sys   Thu Apr 28 23:05:35 2011 (4DBA2AFF)
fffff880`045fe000 fffff880`045ff480   swenum   swenum.sys   Mon Jul 13 20:00:18 2009 (4A5BCA92)
fffff880`0166b000 fffff880`0186e000   tcpip    tcpip.sys    Fri Mar 30 04:34:26 2012 (4F757012)
fffff880`063da000 fffff880`063ec000   tcpipreg tcpipreg.sys Sat Nov 20 05:51:48 2010 (4CE7A844)
fffff880`011cd000 fffff880`011da000   TDI      TDI.SYS      Sat Nov 20 04:22:06 2010 (4CE7933E)
fffff880`011ab000 fffff880`011cd000   tdx      tdx.sys      Sat Nov 20 04:21:54 2010 (4CE79332)
fffff880`02c47000 fffff880`02c5b000   termdd   termdd.sys   Sat Nov 20 06:03:40 2010 (4CE7AB0C)
fffff960`00520000 fffff960`0052a000   TSDDD    TSDDD.dll    unavailable (00000000)
fffff880`04382000 fffff880`043a8000   tunnel   tunnel.sys   Sat Nov 20 05:51:50 2010 (4CE7A846)
fffff880`0586f000 fffff880`05881000   umbus    umbus.sys    Sat Nov 20 05:44:37 2010 (4CE7A695)
fffff880`059d9000 fffff880`059f6000   usbccgp  usbccgp.sys  Thu Mar 24 23:29:14 2011 (4D8C0C0A)
fffff880`0588f000 fffff880`05890f00   USBD     USBD.SYS     Thu Mar 24 23:28:59 2011 (4D8C0BFB)
fffff880`04456000 fffff880`04467000   usbehci  usbehci.sys  Thu Mar 24 23:29:04 2011 (4D8C0C00)
fffff880`05891000 fffff880`058eb000   usbhub   usbhub.sys   Thu Mar 24 23:29:25 2011 (4D8C0C15)
fffff880`045c7000 fffff880`045d2000   usbohci  usbohci.sys  Thu Mar 24 23:29:03 2011 (4D8C0BFF)
fffff880`04400000 fffff880`04456000   USBPORT  USBPORT.SYS  Thu Mar 24 23:29:12 2011 (4D8C0C08)
fffff880`00ebf000 fffff880`00ecc000   vdrvroot vdrvroot.sys Mon Jul 13 20:01:31 2009 (4A5BCADB)
fffff880`015a9000 fffff880`015b7000   vga      vga.sys      Mon Jul 13 19:38:47 2009 (4A5BC587)
fffff880`015b7000 fffff880`015dc000   VIDEOPRT VIDEOPRT.SYS Mon Jul 13 19:38:51 2009 (4A5BC58B)
fffff880`0427b000 fffff880`04286000   VKbms    VKbms.sys    Thu Sep 30 12:16:33 2010 (4CA4B7E1)
fffff880`00fa9000 fffff880`00fe5000   vmbus    vmbus.sys    Sat Nov 20 04:57:29 2010 (4CE79B89)
fffff880`018b8000 fffff880`018c8000   vmstorfl vmstorfl.sys Sat Nov 20 04:57:30 2010 (4CE79B8A)
fffff880`00f07000 fffff880`00f1c000   volmgr   volmgr.sys   Sat Nov 20 04:19:28 2010 (4CE792A0)
fffff880`00f1c000 fffff880`00f78000   volmgrx  volmgrx.sys  Sat Nov 20 04:20:43 2010 (4CE792EB)
fffff880`018c8000 fffff880`01914000   volsnap  volsnap.sys  Sat Nov 20 04:20:08 2010 (4CE792C8)
fffff880`00ecc000 fffff880`00ef2000   vsflt67  vsflt67.sys  Wed Dec 14 06:43:33 2011 (4EE88BE5)
fffff880`02c2c000 fffff880`02c47000   wanarp   wanarp.sys   Sat Nov 20 05:52:36 2010 (4CE7A874)
fffff880`015dc000 fffff880`015ec000   watchdog watchdog.sys Mon Jul 13 19:37:35 2009 (4A5BC53F)
fffff880`00c00000 fffff880`00ca4000   Wdf01000 Wdf01000.sys Mon Jul 13 19:22:07 2009 (4A5BC19F)
fffff880`00ca4000 fffff880`00cb3000   WDFLDR   WDFLDR.SYS   Mon Jul 13 19:19:54 2009 (4A5BC11A)
fffff880`02dbe000 fffff880`02dc7000   wfplwf   wfplwf.sys   Mon Jul 13 20:09:26 2009 (4A5BCCB6)
fffff960`000c0000 fffff960`003d5000   win32k   win32k.sys   unavailable (00000000)
fffff880`00fe5000 fffff880`00ff9000   winhv    winhv.sys    Sat Nov 20 04:20:02 2010 (4CE792C2)
fffff880`043bd000 fffff880`043c6000   wmiacpi  wmiacpi.sys  Mon Jul 13 19:31:02 2009 (4A5BC3B6)
fffff880`00e79000 fffff880`00e82000   WMILIB   WMILIB.SYS   Mon Jul 13 19:19:51 2009 (4A5BC117)
fffff880`03ec7000 fffff880`03ee8000   WudfPf   WudfPf.sys   Sat Nov 20 05:42:44 2010 (4CE7A624)

Unloaded modules:
fffff880`08b64000 fffff880`08b75000   PSKMAD.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`08bac000 fffff880`08bb7000   tdtcp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000B000
fffff880`08bc6000 fffff880`08bff000   RDPWD.SYS
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00039000
fffff880`08bb7000 fffff880`08bc6000   tssecsrv.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000F000
fffff880`0b940000 fffff880`0b952000   usbaapl64.sy
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00012000
fffff880`0b963000 fffff880`0b994000   WUDFRd.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00031000
fffff880`0b952000 fffff880`0b963000   WinUsb.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`0b8c4000 fffff880`0b935000   spsys.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00071000
fffff880`08b53000 fffff880`08b64000   PSKMAD.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00011000
fffff880`01630000 fffff880`0163e000   crashdmp.sys
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000E000
fffff880`0163e000 fffff880`0164a000   dump_pciidex
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000C000
fffff880`0164a000 fffff880`01655000   dump_msahci.
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  0000B000
fffff880`01655000 fffff880`01668000   dump_dumpfve
    Timestamp: unavailable (00000000)
    Checksum:  00000000
    ImageSize:  00013000
Bugcheck code 0000000A
Arguments fffffa00`1323ee60 00000000`00000002 00000000`00000000 fffff800`0390f993
PEB NULL...
[CPU Information]
~MHz = REG_DWORD 3322
Component Information = REG_BINARY 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0
Configuration Data = REG_FULL_RESOURCE_DESCRIPTOR ff,ff,ff,ff,ff,ff,ff,ff,0,0,0,0,0,0,0,0
Identifier = REG_SZ AMD64 Family 21 Model 1 Stepping 2
ProcessorNameString = REG_SZ AMD FX(tm)-6100 Six-Core Processor             
VendorIdentifier = REG_SZ AuthenticAMD
Machine ID Information [From Smbios 2.4, DMIVersion 36, Size=2953]
BiosVendor = Award Software International, Inc.
BiosVersion = F5
BiosReleaseDate = 03/29/2012
SystemManufacturer = Gigabyte Technology Co., Ltd.
SystemProductName = GA-970A-UD3
SystemFamily =  
SystemVersion =  
SystemSKU =  
BaseBoardManufacturer = Gigabyte Technology Co., Ltd.
BaseBoardProduct = GA-970A-UD3
BaseBoardVersion = x.x
sysinfo: unknown error 80004005
[SMBIOS Data Tables v2.4]
[DMI Version - 36]
[2.0 Calling Convention - No]
[Table Size - 2953 bytes]

[BIOS Information (Type 0) - Length 24 - Handle 0000h]
  Vendor                        Award Software International, Inc.
  BIOS Version                  F5
  BIOS Starting Address Segment e000
  BIOS Release Date             03/29/2012
  BIOS ROM Size                 400000
  BIOS Characteristics
       04: - ISA Supported
       07: - PCI Supported
       09: - Plug and Play Supported
       11: - Upgradeable FLASH BIOS
       12: - BIOS Shadowing Supported
       15: - CD-Boot Supported
       16: - Selectable Boot Supported
       17: - BIOS ROM Socketed
       19: - EDD Supported
       22: - 360KB Floppy Supported
       23: - 1.2MB Floppy Supported
       24: - 720KB Floppy Supported
       25: - 2.88MB Floppy Supported
       26: - Print Screen Device Supported
       27: - Keyboard Services Supported
       28: - Serial Services Supported
       29: - Printer Services Supported
       30: - CGA/Mono Services Supported
  BIOS Characteristic Extensions
       00: - ACPI Supported
       01: - USB Legacy Supported
       04: - LS120-Boot Supported
       05: - ATAPI ZIP-Boot Supported
       08: - BIOS Boot Specification Supported
       10: - Specification Reserved
  BIOS Major Revision           255
  BIOS Minor Revision           255
  EC Firmware Major Revision    255
  EC Firmware Minor Revision    255
[System Information (Type 1) - Length 27 - Handle 0001h]
  Manufacturer                  Gigabyte Technology Co., Ltd.
  Product Name                  GA-970A-UD3
  Version                        
  Serial Number                  
  UUID                          00000000-0000-0000-0000-000000000000
  Wakeup Type                   Power Switch
  SKUNumber                      
  Family                         
[BaseBoard Information (Type 2) - Length 8 - Handle 0002h]
  Manufacturer                  Gigabyte Technology Co., Ltd.
  Product                       GA-970A-UD3
  Version                       x.x
  Serial Number                  
[System Enclosure (Type 3) - Length 17 - Handle 0003h]
  Manufacturer                  Gigabyte Technology Co., Ltd.
  Chassis Type                  Desktop
  Version                        
  Serial Number                  
  Asset Tag Number               
  Bootup State                  Unknown
  Power Supply State            Unknown
  Thermal State                 Unknown
  Security Status               Unknown
  OEM Defined                   0
[Processor Information (Type 4) - Length 35 - Handle 0004h]
  Socket Designation            Socket M2
  Processor Type                Central Processor
  Processor Family              1dh - AMD Athlon Family
  Processor Manufacturer        AMD
  Processor ID                  120f6000fffb8b17
  Processor Version             AMD FX(tm)-6100 Six-Core Processor             
  Processor Voltage             89h - 0.9V
  External Clock                200MHz
  Max Speed                     3200MHz
  Current Speed                 3300MHz
  Status                        Enabled Populated
  Processor Upgrade             ZIF Socket
  L1 Cache Handle               000ah
  L2 Cache Handle               000ch
  L3 Cache Handle               [Not Present]
  Serial Number                  
  Asset Tag Number               
  Part Number                    
[Memory Controller Information (Type 5) - Length 24 - Handle 0005h]
  Error Detecting Method        06h - 64-bit ECC
  Error Correcting Capability   04h - None 
  Supported Interleave          03h - One Way Interleave
  Current Interleave            03h - One Way Interleave
  Maximum Memory Module Size    0ah - 1024MB
  Supported Speeds              000ch - 70ns 60ns 
  Supported Memory Types        0014h - Standard EDO 
  Memory Module Voltage         3.3V 
  Number of Memory Slots        4
  Memory Slot Handle            0006h
  Memory Slot Handle            0007h
  Memory Slot Handle            0008h
  Memory Slot Handle            0009h
  Enabled Err Correcting Caps   04h - None 
[Memory Module Information (Type 6) - Length 12 - Handle 0006h]
  Socket Designation            A0
  Bank Connections              1fh - 1
  Current Speed                 31ns
  Current Memory Type           0013h - Other Unknown EDO 
  Installed Size                8ch - 4096 [double bank]
  Enabled Size                  8ch - 4096 [double bank]
  Error Status                  00h - [No Errors] 
[Memory Module Information (Type 6) - Length 12 - Handle 0007h]
  Socket Designation            A1
  Bank Connections              2fh - 2
  Current Speed                 47ns
  Current Memory Type           0013h - Other Unknown EDO 
  Installed Size                8ch - 4096 [double bank]
  Enabled Size                  8ch - 4096 [double bank]
  Error Status                  00h - [No Errors] 
[Memory Module Information (Type 6) - Length 12 - Handle 0008h]
  Socket Designation            A2
  Bank Connections              3fh - 3
  Current Speed                 63ns
  Current Memory Type           0013h - Other Unknown EDO 
  Installed Size                8ch - 4096 [double bank]
  Enabled Size                  8ch - 4096 [double bank]
  Error Status                  00h - [No Errors] 
[Memory Module Information (Type 6) - Length 12 - Handle 0009h]
  Socket Designation            A3
  Bank Connections              4fh - 4
  Current Speed                 79ns
  Current Memory Type           0013h - Other Unknown EDO 
  Installed Size                8ch - 4096 [double bank]
  Enabled Size                  8ch - 4096 [double bank]
  Error Status                  00h - [No Errors] 
[Cache Information (Type 7) - Length 19 - Handle 000ah]
  Socket Designation            Internal Cache
  Cache Configuration           0180h - WB Enabled Int NonSocketed L1
  Maximum Cache Size            0080h - 128K
  Installed Size                0080h - 128K
  Supported SRAM Type           0020h - Synchronous 
  Current SRAM Type             0020h - Synchronous 
  Cache Speed                   0ns
  Error Correction Type         Unknown
  System Cache Type             Unknown
  Associativity                 Unknown
[Cache Information (Type 7) - Length 19 - Handle 000bh]
  Socket Designation            Internal Cache
  Cache Configuration           0180h - WB Enabled Int NonSocketed L1
  Maximum Cache Size            0080h - 128K
  Installed Size                0080h - 128K
  Supported SRAM Type           0020h - Synchronous 
  Current SRAM Type             0020h - Synchronous 
  Cache Speed                   0ns
  Error Correction Type         Unknown
  System Cache Type             Unknown
  Associativity                 Unknown
[Cache Information (Type 7) - Length 19 - Handle 000ch]
  Socket Designation            External Cache
  Cache Configuration           0182h - WB Enabled Int NonSocketed L3
  Maximum Cache Size            0800h - 2048K
  Installed Size                0800h - 2048K
  Supported SRAM Type           0020h - Synchronous 
  Current SRAM Type             0020h - Synchronous 
  Cache Speed                   0ns
  Error Correction Type         Unknown
  System Cache Type             Unknown
  Associativity                 Unknown
[Cache Information (Type 7) - Length 19 - Handle 000dh]
  Socket Designation            External Cache
  Cache Configuration           0001h - WT Disabled Int NonSocketed L2
  Maximum Cache Size            0400h - 1024K
  Installed Size                0000h - 0K
  Supported SRAM Type           0020h - Synchronous 
  Current SRAM Type             0020h - Synchronous 
  Cache Speed                   0ns
  Error Correction Type         Unknown
  System Cache Type             Unknown
  Associativity                 Unknown
[Physical Memory Array (Type 16) - Length 15 - Handle 0029h]
  Location                      03h - SystemBoard/Motherboard
  Use                           03h - System Memory
  Memory Error Correction       03h - None
  Maximum Capacity              16777216KB
  Memory Error Inf Handle       [Not Provided]
  Number of Memory Devices      4
[Memory Device (Type 17) - Length 27 - Handle 002ah]
  Physical Memory Array Handle  0029h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          4096MB
  Form Factor                   09h - DIMM
  Device Set                    [None]
  Device Locator                A0
  Bank Locator                  Bank0/1
  Memory Type                   02h - Unknown
  Type Detail                   0000h -
  Speed                         1333MHz
  Manufacturer                   
  Serial Number                  
  Asset Tag Number               
  Part Number                    
[Memory Device (Type 17) - Length 27 - Handle 002bh]
  Physical Memory Array Handle  0029h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          4096MB
  Form Factor                   09h - DIMM
  Device Set                    [None]
  Device Locator                A1
  Bank Locator                  Bank2/3
  Memory Type                   02h - Unknown
  Type Detail                   0000h -
  Speed                         1333MHz
  Manufacturer                   
  Serial Number                  
  Asset Tag Number               
  Part Number                    
[Memory Device (Type 17) - Length 27 - Handle 002ch]
  Physical Memory Array Handle  0029h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          4096MB
  Form Factor                   09h - DIMM
  Device Set                    [None]
  Device Locator                A2
  Bank Locator                  Bank4/5
  Memory Type                   02h - Unknown
  Type Detail                   0000h -
  Speed                         1333MHz
  Manufacturer                   
  Serial Number                  
  Asset Tag Number               
  Part Number                    
[Memory Device (Type 17) - Length 27 - Handle 002dh]
  Physical Memory Array Handle  0029h
  Memory Error Info Handle      [Not Provided]
  Total Width                   64 bits
  Data Width                    64 bits
  Size                          4096MB
  Form Factor                   09h - DIMM
  Device Set                    [None]
  Device Locator                A3
  Bank Locator                  Bank6/7
  Memory Type                   02h - Unknown
  Type Detail                   0000h -
  Speed                         1333MHz
  Manufacturer                   
  Serial Number                  
  Asset Tag Number               
  Part Number                    
[Memory Array Mapped Address (Type 19) - Length 15 - Handle 002eh]
  Starting Address              00000000h
  Ending Address                00ffffffh
  Memory Array Handle           0029h
  Partition Width               01
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 002fh]
  Starting Address              00000000h
  Ending Address                003fffffh
  Memory Device Handle          002ah
  Mem Array Mapped Adr Handle   002eh
  Partition Row Position        01
  Interleave Position           [None]
  Interleave Data Depth         [None]
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 0030h]
  Starting Address              00400000h
  Ending Address                007fffffh
  Memory Device Handle          002bh
  Mem Array Mapped Adr Handle   002eh
  Partition Row Position        01
  Interleave Position           [None]
  Interleave Data Depth         [None]
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 0031h]
  Starting Address              00800000h
  Ending Address                00bfffffh
  Memory Device Handle          002ch
  Mem Array Mapped Adr Handle   002eh
  Partition Row Position        01
  Interleave Position           [None]
  Interleave Data Depth         [None]
[Memory Device Mapped Address (Type 20) - Length 19 - Handle 0032h]
  Starting Address              00c00000h
  Ending Address                00ffffffh
  Memory Device Handle          002dh
  Mem Array Mapped Adr Handle   002eh
  Partition Row Position        01
  Interleave Position           [None]
  Interleave Data Depth         [None]

https://www.sysnative.com/forums/showthread.php/3367-Computer-cashes-every-once-in-a-while

writhziden · Aug 20, 2012

Interesting. The win32k.sys that has a time of 21:08:08 provides a pver. The 21:08:09 does not.

Here is what I was thinking for the win32k.sys check:

Code:
One of your modules may be corrupted or damaged. We should verify that it is intact. To do so:

Please download sigcheck.

Copy and paste sigcheck.exe to your desktop.

Open up a command prompt:

Click Start Menu

Click All Programs

Click Accessories

Click Command Prompt

In the command prompt, type the following:

Code:

cd Desktop sigcheck -i c:\windows\system32\win32k.sys > sigcheck.txt

[*]Compress (zip) the sigcheck.txt file and attach it to your next post.

jcgriff2 · Aug 20, 2012

~~It will need Admin elevation.~~

EDIT: maybe not.. been a while since I ran it!

I think it looks good, Mike.

I'm going to PM a few others for their take on this whole wn32k thing.

Symbols could not be loaded for win32k.sys

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Attachments

Administrator, Hardware Expert

Administrator, .NET/UWP Developer

Administrator, Hardware Expert

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Attachments

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Administrator, .NET/UWP Developer

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Administrator, .NET/UWP Developer

Co-Founder/AdminBSOD Expert (Ret.)Microsoft MVP (Ret.)PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED

Co-Founder/Admin
BSOD Expert (Ret.)
Microsoft MVP (Ret.)
PRIMARILY RETIRED