疑似360安全卫士造成系统蓝屏（附dump文件）

显示全部楼层 · 发表于 2012-7-24 12:31:27

系统环境：

操作系统：正版 windows 7 企业版 sp1 (32位)
杀毒软件：Symantec Endpoint Protection 11.0.6200.754

dump文件部分内容如下：

Loading User Symbols
Loading unloaded module list
..............................
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck A, {dbaca0e4, 2, 0, 82b0c7a6}
*** WARNING: Unable to verify timestamp for 360netmon.sys
*** ERROR: Module load completed but symbols could not be loaded for 360netmon.sys
*** WARNING: Unable to verify timestamp for afd.sys
*** ERROR: Module load completed but symbols could not be loaded for afd.sys
*** WARNING: Unable to verify timestamp for 360AntiHacker.sys
*** ERROR: Module load completed but symbols could not be loaded for 360AntiHacker.sys
*** WARNING: Unable to verify timestamp for Hookport.sys
*** ERROR: Module load completed but symbols could not be loaded for Hookport.sys
***** Kernel symbols are WRONG. Please fix symbols to do analysis.
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Probably caused by : 360netmon.sys ( 360netmon+3591 )
Followup: MachineOwner

显示全部楼层 · 发表于 2012-7-24 12:34:04

帮你联系下官人看可以来不

显示全部楼层 · 发表于 2012-7-24 12:39:11

只求1种安稳发表于 2012-7-24 12:34
帮你联系下官人看可以来不

谢谢

公司的电脑不敢乱动，希望能早点解决

显示全部楼层 · 发表于 2012-7-24 12:40:21

本帖最后由只求1种安稳于 2012-7-24 12:42 编辑

heroboy0923 发表于 2012-7-24 12:39
谢谢

公司的电脑不敢乱动，希望能早点解决

http://bbs.360.cn/3229787/254533885.html 已经有回复了

原来你早就在360论坛发帖了

显示全部楼层 · 发表于 2012-7-24 12:42:25

只求1种安稳发表于 2012-7-24 12:40
http://bbs.360.cn/3229787.html
建议你去360论坛发帖官人不一定会来

官网那边我也发了同样的帖子，呵呵

显示全部楼层 · 发表于 2012-7-24 12:43:01

heroboy0923 发表于 2012-7-24 12:42
官网那边我也发了同样的帖子，呵呵

我也看到了

显示全部楼层 · 发表于 2012-7-24 13:10:49

貌似网络驱动360netmon.sys的bug

IRQL_NOT_LESS_OR_EQUAL (a)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high. This is usually
caused by drivers using improper addresses.
If a kernel debugger is available get the stack backtrace.
Arguments:
Arg1: dbaca0e4, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000000, bitfield :
bit 0 : value 0 = read operation, 1 = write operation
bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
Arg4: 82b0c7a6, address which referenced memory
Debugging Details:
------------------
READ_ADDRESS: dbaca0e4
CURRENT_IRQL: 2
FAULTING_IP:
nt!PsGetProcessId+8
82b0c7a6 8b80b4000000 mov eax,dword ptr [eax+0B4h]
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT
BUGCHECK_STR: 0xA
PROCESS_NAME: chrome.exe
TRAP_FRAME: cd9378c4 -- (.trap 0xffffffffcd9378c4)
ErrCode = 00000000
eax=dbaca030 ebx=8ff32d80 ecx=00000000 edx=00000000 esi=855d8098 edi=8ff1fa28
eip=82b0c7a6 esp=cd937938 ebp=cd937938 iopl=0 nv up ei pl zr na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010246
nt!PsGetProcessId+0x8:
82b0c7a6 8b80b4000000 mov eax,dword ptr [eax+0B4h] ds:0023:dbaca0e4=????????
Resetting default scope
LAST_CONTROL_TRANSFER: from 82b0c7a6 to 82a9765b
STACK_TEXT:
cd9378c4 82b0c7a6 badb0d00 00000000 8ff32d80 nt!KiTrap0E+0x2cf
cd937938 8ff19591 dbaca030 42628543 85a11884 nt!PsGetProcessId+0x8
WARNING: Stack unwind information not available. Following frames may be wrong.
cd937974 8ff182ed dbaca030 4262858b 858c7eb8 360netmon+0x3591
cd9379bc 82a8d5be 86c59990 85a117a8 ed711438 360netmon+0x22ed
cd9379d4 8ffc5815 4269875e 00012007 8ffc4ea4 nt!IofCallDriver+0x63
cd937aac 8ffbf2bc 866e9e20 863c4a90 cd937ad4 afd!AfdConnect+0x971
cd937abc 82a8d5be 863c4a90 85a117a8 85a117a8 afd!AfdDispatchDeviceControl+0x3b
cd937ad4 9ed271db 86559a38 866e9d68 00000000 nt!IofCallDriver+0x63
cd937af4 9ed26c02 00000000 85a117a8 866e9d68 360AntiHacker+0x21db
cd937b08 82a8d5be 866e9d68 85a117a8 85a117a8 360AntiHacker+0x1c02
cd937b20 82c80b09 86559a38 85a117a8 85a118a8 nt!IofCallDriver+0x63
cd937b40 82c83cdb 866e9d68 86559a38 00000000 nt!IopSynchronousServiceTail+0x1f8
cd937bdc 82cca61b 866e9d68 85a117a8 00000000 nt!IopXxxControlFile+0x6aa
cd937c10 83720f4f 00000628 00000000 00000000 nt!NtDeviceIoControlFile+0x2a
cd937d04 82a9427a 00000628 00000000 00000000 Hookport+0x4f4f
cd937d04 76e47094 00000628 00000000 00000000 nt!KiFastCallEntry+0x12a
03b2e760 00000000 00000000 00000000 00000000 0x76e47094

复制代码

显示全部楼层 · 发表于 2012-7-24 14:00:21

蓝屏天天都有楼主来卡饭问这问题还不去官方论坛问来这问也是转交官方你去官方论坛难道不更简便？

显示全部楼层 · 发表于 2012-7-24 14:06:42

849941754 发表于 2012-7-24 14:00
蓝屏天天都有楼主来卡饭问这问题还不去官方论坛问来这问也是转交官方你去官方论坛难道不更简便 ...

官网我也发了，发在这里主要是想看看有没有网友遇到同样的问题，或者是个提醒

显示全部楼层 · 发表于 2012-7-24 14:19:38

heroboy0923 发表于 2012-7-24 14:06
官网我也发了，发在这里主要是想看看有没有网友遇到同样的问题，或者是个提醒

确实是个问题此问题在最新的beta版本中已经解决. 谢谢您的反馈.
http://down.360safe.com/instbeta.exe

[问题反馈] 疑似360安全卫士造成系统蓝屏（附dump文件）

本帖子中包含更多资源

评分