Irql_not_less_or_equal

debdutta

debdutta

New member
Local time
4:18 AM
Messages
44
Location
New Delhi
Once again a blue screen problem, please help me resolve it. I just recently installed Kaspersky and this problem started, very slow computer, sluggish and constant BSOD.
 

My Computer

Computer Manufacturer/Model Number
Self Manufactured
OS
Windows 7 Ultimate 32bit
CPU
Intel Pentium D@ 2.80GHz
Motherboard
BIOSTAR Group G31D-M7
Memory
Kingston 2GB DDR2 RAM
Graphics Card(s)
Intel(R) G33/G31 Express Chipset Family
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
Samsung SyncMaster 943 18.5'
Screen Resolution
1280x760
Hard Drives
2x WDC WD1600AAJS-22L7A0 ATA Device 160GB (total 320GB)
1x WDC WD800BD-08MRA1 ATA Device 80GB
Case
iBall Piano 108
Keyboard
iBall Standerd PS2 Wired Keyboard
Mouse
iBall USB Mouse
Internet Speed
DSL 512 kbps
debdutta said:
Once again a blue screen problem, please help me resolve it. I just recently installed Kaspersky and this problem started, very slow computer, sluggish and constant BSOD.
Click to expand...


As I figured your comodo firewall and kaspersky. These were caused by cmdgaurd.sys (comodo firewall) You should remove both and replace with Microsoft Security Essential and win 7 firewall.

http://support.kaspersky.com/downloads/utils/kavremover10.zip

http://www.microsoft.com/security_essentials/

Code: 
Microsoft (R) Windows Debugger Version 6.11.0001.404 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\K\Desktop\110710-17625-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*C:\Symbols*http://msdl.microsoft.com/download/symbols;srv*e:\symbols
*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7600 MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7600.16617.x86fre.win7_gdr.100618-1621
Machine Name:
Kernel base = 0x82c52000 PsLoadedModuleList = 0x82d9a810
Debug session time: Sun Nov  7 09:30:31.849 2010 (GMT-5)
System Uptime: 0 days 5:40:49.240
Loading Kernel Symbols
...............................................................
................................................................
................
Loading User Symbols
Loading unloaded module list
.......
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck A, {83ffffe4, 2, 1, 82ce5bee}

Unable to load image \SystemRoot\System32\DRIVERS\cmdguard.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for cmdguard.sys
*** ERROR: Module load completed but symbols could not be loaded for cmdguard.sys
Probably caused by : cmdguard.sys ( cmdguard+11de9 )

Followup: MachineOwner
---------

0: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

IRQL_NOT_LESS_OR_EQUAL (a)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If a kernel debugger is available get the stack backtrace.
Arguments:
Arg1: 83ffffe4, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000001, bitfield :
    bit 0 : value 0 = read operation, 1 = write operation
    bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
Arg4: 82ce5bee, address which referenced memory

Debugging Details:
------------------


WRITE_ADDRESS: GetPointerFromAddress: unable to read from 82dba718
Unable to read MiSystemVaType memory at 82d9a160
 83ffffe4 

CURRENT_IRQL:  2

FAULTING_IP: 
nt!MiInsertPageInFreeOrZeroedList+238
82ce5bee 8901            mov     dword ptr [ecx],eax

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0xA

PROCESS_NAME:  firefox.exe

TRAP_FRAME:  89d1b824 -- (.trap 0xffffffff89d1b824)
ErrCode = 00000002
eax=0004a3a6 ebx=0000001c ecx=83ffffe4 edx=00000000 esi=8481e628 edi=84defe38
eip=82ce5bee esp=89d1b898 ebp=89d1b8c0 iopl=0         nv up ei ng nz na pe cy
cs=0008  ss=0010  ds=0023  es=0023  fs=0030  gs=0000             efl=00010287
nt!MiInsertPageInFreeOrZeroedList+0x238:
82ce5bee 8901            mov     dword ptr [ecx],eax  ds:0023:83ffffe4=????????
Resetting default scope

LAST_CONTROL_TRANSFER:  from 82ce5bee to 82c9882b

STACK_TEXT:  
89d1b824 82ce5bee badb0d00 00000000 00000001 nt!KiTrap0E+0x2cf
89d1b8c0 82ce230e 8481e628 849d4544 8481e630 nt!MiInsertPageInFreeOrZeroedList+0x238
89d1b900 82cf9330 c0013bb0 89d1ba88 02770000 nt!MiPfnShareCountIsZero+0x18c
89d1ba14 82d0bad4 c0013ba8 c0013ba8 c19eb5d0 nt!MiDeletePteRun+0x403
89d1bb1c 82d05e41 02770000 02775fff cbc9ecec nt!MiDeleteVirtualAddresses+0x3c1
89d1bbb4 82c9544a ffffffff 89d1bcd8 89d1bce4 nt!NtFreeVirtualMemory+0x60b
89d1bbb4 82c93401 ffffffff 89d1bcd8 89d1bce4 nt!KiFastCallEntry+0x12a
89d1bc3c 96fad568 ffffffff 89d1bcd8 89d1bce4 nt!ZwFreeVirtualMemory+0x11
89d1bcdc 96fae920 00000000 00000000 00000000 win32k!SURFACE::bDeleteSurface+0x291
89d1bcf0 96f8e423 00000000 00000000 fe122008 win32k!SURFREF::bDeleteSurface+0x14
89d1bd04 96f8fc08 35051405 002be688 35051405 win32k!bDeleteSurface+0x20
89d1bd18 8de1cde9 35051405 002be688 89d1bd34 win32k!NtGdiDeleteObjectApp+0x7f
WARNING: Stack unwind information not available. Following frames may be wrong.
89d1bd28 82c9544a 35051405 002be69c 774164f4 cmdguard+0x11de9
89d1bd28 774164f4 35051405 002be69c 774164f4 nt!KiFastCallEntry+0x12a
002be69c 00000000 00000000 00000000 00000000 0x774164f4


STACK_COMMAND:  kb

FOLLOWUP_IP: 
cmdguard+11de9
8de1cde9 ??              ???

SYMBOL_STACK_INDEX:  c

SYMBOL_NAME:  cmdguard+11de9

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: cmdguard

IMAGE_NAME:  cmdguard.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  4c8aab1c

FAILURE_BUCKET_ID:  0xA_cmdguard+11de9

BUCKET_ID:  0xA_cmdguard+11de9

Followup: MachineOwner
---------
 

My Computer

Computer Manufacturer/Model Number
HP Pavillion dv-7 1005 Tx
OS
Win 8 Release candidate 8400
CPU
[email protected]
Memory
4 gigs
Graphics Card(s)
Nvidia 9600M
Sound Card
HD built-in
Monitor(s) Displays
17" Wxga
Screen Resolution
1440x900
Cooling
none
Internet Speed
45Mb down 5Mb up
Oh, the comodo firewall one was my previous BSOD which i resolved by uninstalling comodo internet security, the recent two are main problem...should i remove kaspersky ?
 

My Computer

Computer Manufacturer/Model Number
Self Manufactured
OS
Windows 7 Ultimate 32bit
CPU
Intel Pentium D@ 2.80GHz
Motherboard
BIOSTAR Group G31D-M7
Memory
Kingston 2GB DDR2 RAM
Graphics Card(s)
Intel(R) G33/G31 Express Chipset Family
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
Samsung SyncMaster 943 18.5'
Screen Resolution
1280x760
Hard Drives
2x WDC WD1600AAJS-22L7A0 ATA Device 160GB (total 320GB)
1x WDC WD800BD-08MRA1 ATA Device 80GB
Case
iBall Piano 108
Keyboard
iBall Standerd PS2 Wired Keyboard
Mouse
iBall USB Mouse
Internet Speed
DSL 512 kbps
Yes.... follow Kens' advice... cmdgaurd.sys is still being loaded, so rename it to cmdgaurd.bak so that it doesn't load at startup....
 
Last edited:

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
LENOVO K450 @3.0GHZ
OS
64-bit Windows 8.1 Pro
CPU
Core(TM) i5 CPU 4330 Haswell @ 3.20GHz
Motherboard
LENOVO
Memory
12.00 GB
Graphics Card(s)
Intel(R) HD Graphics
Sound Card
Intel HD integtrated
Monitor(s) Displays
HP 25' ISP Monitor
Screen Resolution
1900/1020
Hard Drives
(1) ST1000DM003-1CH162 (2) Generic STORAGE DEVICE USB Device (3) Generic STORAGE DEVICE USB Device
Internet Speed
100mb down/10mb up
@Tews

Where and how can i locate cmdguard.sys. COMODO Programs Manager doesnt finds any such driver or service.
 

My Computer

Computer Manufacturer/Model Number
Self Manufactured
OS
Windows 7 Ultimate 32bit
CPU
Intel Pentium D@ 2.80GHz
Motherboard
BIOSTAR Group G31D-M7
Memory
Kingston 2GB DDR2 RAM
Graphics Card(s)
Intel(R) G33/G31 Express Chipset Family
Sound Card
Realtek High Definition Audio
Monitor(s) Displays
Samsung SyncMaster 943 18.5'
Screen Resolution
1280x760
Hard Drives
2x WDC WD1600AAJS-22L7A0 ATA Device 160GB (total 320GB)
1x WDC WD800BD-08MRA1 ATA Device 80GB
Case
iBall Piano 108
Keyboard
iBall Standerd PS2 Wired Keyboard
Mouse
iBall USB Mouse
Internet Speed
DSL 512 kbps
Simply open c:/windows/system32/drivers locate the driver and rename it ... easy peasy.. ;)

 

My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
LENOVO K450 @3.0GHZ
OS
64-bit Windows 8.1 Pro
CPU
Core(TM) i5 CPU 4330 Haswell @ 3.20GHz
Motherboard
LENOVO
Memory
12.00 GB
Graphics Card(s)
Intel(R) HD Graphics
Sound Card
Intel HD integtrated
Monitor(s) Displays
HP 25' ISP Monitor
Screen Resolution
1900/1020
Hard Drives
(1) ST1000DM003-1CH162 (2) Generic STORAGE DEVICE USB Device (3) Generic STORAGE DEVICE USB Device
Internet Speed
100mb down/10mb up
You must log in or register to reply here.
Back
Top