Please help

[rui901]

Dear:
Please kindly help analyzer why the Win7 blue screen. thanks


thank you in advance

David Wang

 

[koolkat77]

Please upload your msinfo32.nfo file. To get this: Start Menu -> Type msinfo32 into the Search programs and files box -> When it opens, go to File, Save -> Save as msinfo32.nfo and save in a place you will remember -> Let it finish the process of gathering and saving the system info -> Right click the .nfo file, click send to compressed (zipped) folder -> Upload the .zip file here.

Please upload your msinfo32.txt file. To get this: Start Menu -> Type msinfo32 into the Search programs and files box -> When it opens, go to File, Export -> Save as msinfo32.txt and save in a place you will remember -> Let it finish the process of gathering and saving the system info -> Right click the .txt file, click send to compressed (zipped) folder -> Upload the .zip file here.

Click on the Start rb: ► Control Panel ► Programs ► Uninstall a program ► Uninstall everything related to "Atheros" and reboot the system. Delete remnants of its drivers/older drivers using Driver Sweeper.

:ar: http://www.sevenforums.com/tutorial...over-files-after-uninstalling.html#post726559

If its wireless, match your device from here:

• ATHEROS Wireless drivers for Windows

If its not a wireless, match your device from here:

• ATHEROS Network drivers for Windows

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck D1, {30, 2, 0, 992978a5}

Unable to load image \SystemRoot\system32\DRIVERS\athr.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for athr.sys
*** ERROR: Module load completed but symbols could not be loaded for athr.sys
Probably caused by : athr.sys ( athr+428a5 )

Followup: MachineOwner
---------

1: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: 00000030, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000000, value 0 = read operation, 1 = write operation
Arg4: 992978a5, address which referenced memory

Debugging Details:
------------------


READ_ADDRESS: GetPointerFromAddress: unable to read from 82d7e848
Unable to read MiSystemVaType memory at 82d5de20
 00000030 

CURRENT_IRQL:  2

FAULTING_IP: 
athr+428a5
992978a5 8b5130          mov     edx,dword ptr [ecx+30h]

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT

BUGCHECK_STR:  0xD1

PROCESS_NAME:  System

TAG_NOT_DEFINED_c000000f:  FFFFFFFF807E7000

TRAP_FRAME:  807e2894 -- (.trap 0xffffffff807e2894)
ErrCode = 00000000
eax=0000001a ebx=88115ed0 ecx=00000000 edx=00000088 esi=00000000 edi=00000001
eip=992978a5 esp=807e2908 ebp=807e290c iopl=0         nv up ei pl nz na po nc
cs=0008  ss=0010  ds=0023  es=0023  fs=0030  gs=0000             efl=00010202
athr+0x428a5:
992978a5 8b5130          mov     edx,dword ptr [ecx+30h] ds:0023:00000030=????????
Resetting default scope

LAST_CONTROL_TRANSFER:  from 992978a5 to 82c54cdb

STACK_TEXT:  
807e2894 992978a5 badb0d00 00000088 88116d38 nt!KiTrap0E+0x2cf
WARNING: Stack unwind information not available. Following frames may be wrong.
807e290c 99297647 00000000 87b1b79c 87d60928 athr+0x428a5
807e2944 99296c52 85107908 885fd8a8 00000000 athr+0x42647
807e296c 992bdfc0 85107828 885fd8a8 00000018 athr+0x41c52
807e29c0 992be8c7 872f9020 885fd8a8 00000000 athr+0x68fc0
807e2b14 9926fcfe 885fd8a8 807e2b30 9926cd2f athr+0x698c7
807e2b20 9926cd2f 885fd8a8 880a2d60 807e2b40 athr+0x1acfe
807e2b30 992b49c7 880a2d60 885fd8a8 807e2b68 athr+0x17d2f
807e2b40 992b46b7 88598628 885fd8a8 00000000 athr+0x5f9c7
807e2b68 9926862a 88598628 885fd8a8 00000000 athr+0x5f6b7
807e2b94 99268414 87d38600 885fd820 88115ed0 athr+0x1362a
807e2bac 99269499 87d38600 85047478 9ca9a918 athr+0x13414
807e2bc4 99269525 87d38600 807e2bdc 992c6554 athr+0x14499
807e2bd0 992c6554 87d38600 807e2bf8 992cb1ff athr+0x14525
807e2bdc 992cb1ff 88595020 88110022 807c7a54 athr+0x71554
807e2bf8 9926fabd 88595020 807e2c14 99256761 athr+0x761ff
807e2c04 99256761 872f9020 87d38600 807e2c50 athr+0x1aabd
807e2c14 88e8389a 87d38600 00000000 807e2c40 athr+0x1761
807e2c50 88e2ea0f 88115ee4 00115ed0 00000000 ndis!ndisMiniportDpc+0xe2
807e2c78 82c8b935 88115ee4 88115ed0 00000000 ndis!ndisInterruptDpc+0xaf
807e2cd4 82c8b798 807c6120 807cb800 00000000 nt!KiExecuteAllDpcs+0xf9
807e2d20 82c8b5b8 00000000 0000000e 00000000 nt!KiRetireDpcList+0xd5
807e2d24 00000000 0000000e 00000000 00000000 nt!KiIdleLoop+0x38


STACK_COMMAND:  kb

FOLLOWUP_IP: 
athr+428a5
992978a5 8b5130          mov     edx,dword ptr [ecx+30h]

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  athr+428a5

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: athr

IMAGE_NAME:  athr.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  4a2ea444

FAILURE_BUCKET_ID:  0xD1_athr+428a5

BUCKET_ID:  0xD1_athr+428a5

Followup: MachineOwner
---------

1: kd> lmvm athr
start    end        module name
99255000 99365000   athr     T (no symbols)           
    Loaded symbol image file: athr.sys
    Image path: \SystemRoot\system32\DRIVERS\athr.sys
    Image name: athr.sys
    Timestamp:        Wed Jun 10 00:04:52 2009 (4A2EA444)
    CheckSum:         0011A043
    ImageSize:        00110000
    Translations:     0000.04b0 0000.04e4 0409.04b0 0409.04e4

 

[rui901]

system information

Hi:
Please find enclosed the file. thanks your help

 

[koolkat77]

Thanks.

Do you use any antivirus?

 

[rui901]

yes, we use Symantec SEP for all computers

 

[koolkat77]

Okay

 

[koolkat77]

   Tip

• If your problem is solved please use the
  
  Mark this thread as solved link at the top of your thread or down on the left corner