This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple computers getting netio.sys BSOD after 2022.2.1.9 update

We're having an outbreak of DRIVER_IRQL_NOT_LESS_OR_EQUAL BSOD's in driver NETIO.SYS. Netio.sys caused BSOD's are usually tied to network drivers but that doesn't make sense because this started happening all of a sudden on multiple computers. These are fully patched/updated Windows 10 Pro computers. The common thing we're seeing is Sophos was updated to version 2022.2.1.9 around 7/20/22 on all of them. Any insight from Sophos on if the blue screen of death crashes are being caused by the latest version of Sophos? 



This thread was automatically locked due to age.
Parents
  • Hi all. Just a note but after examining memory dumps from our users who had the BSOD issues, we found that all users affected were using firefox. The dump file shows that firefox was the program that actually launches the blue screen in relation to some interaction with Sophos. Can anyone confirm if this sounds accurate for your instances as well? Or have you had users who were utilizing chrome and not any brand of firefox?

  • We also have Firefox installed on our clients and it is used, but the majority of users don't regularly use it. Thus I don't think it is the main culprit.

    We also have Cisco AnyConnect on all our devices, but BSODs occur no matter if the users are actually connected to VPN through AnyConnect, or working locally in corporate LAN.

    We do have the assumption that streaming data (Especially online meetings, using Slack and Teams in our case) have a high probability to cause issues. I can second that.

Reply
  • We also have Firefox installed on our clients and it is used, but the majority of users don't regularly use it. Thus I don't think it is the main culprit.

    We also have Cisco AnyConnect on all our devices, but BSODs occur no matter if the users are actually connected to VPN through AnyConnect, or working locally in corporate LAN.

    We do have the assumption that streaming data (Especially online meetings, using Slack and Teams in our case) have a high probability to cause issues. I can second that.

Children
No Data