Tema: BSOD Bad_pool_Caller
View Single Post
Staro 05.05.2009., 13:26   #4
doublev
the letter
Moj komp
 
doublev's Avatar
 
Datum registracije: Sep 2005
Lokacija: 127.0.0.1
Postovi: 794
Analizom zadnjeg crashdumpa se dođe do ovih informacija:

Code:
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

BAD_POOL_CALLER (c2)
The current thread is making a bad pool request.  Typically this is at a bad IRQL level or double freeing the same allocation, etc.
Arguments:
Arg1: 00000007, Attempt to free pool which was already freed
Arg2: 00000cd4, (reserved)
Arg3: 857804a0, Memory contents of the pool block
Arg4: 856b9168, Address of the block of pool being deallocated

Debugging Details:
------------------


POOL_ADDRESS:  856b9168 

FREED_POOL_TAG:  CcBc

BUGCHECK_STR:  0xc2_7_CcBc

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  DRIVER_FAULT

PROCESS_NAME:  firefox.exe

LAST_CONTROL_TRANSFER:  from 8054b583 to 804f9f33

STACK_TEXT:  
ba4d3e88 8054b583 000000c2 00000007 00000cd4 nt!KeBugCheckEx+0x1b
ba4d3ed8 8054b95f 856b9168 00000000 ba4d3ef8 nt!ExFreePoolWithTag+0x2a3
ba4d3ee8 804ef5f7 856b9168 856ca058 ba4d3f10 nt!ExFreePool+0xf
ba4d3ef8 ba31aceb 856b9168 896ccc68 856ca058 nt!IoFreeMdl+0x5b
WARNING: Stack unwind information not available. Following frames may be wrong.
ba4d3f10 ba319fd9 856ca058 ba4d3f40 b9e1dc2c Epfwndis+0x2ceb
ba4d3f1c b9e1dc2c 89b39968 856ca058 00000000 Epfwndis+0x1fd9
ba4d3f40 b93fda00 89b8b130 856ca058 00000000 NDIS!ndisMSendCompleteX+0x8d
ba4d3f68 b93f95d9 00000001 861a8004 00000000 yk51x86+0xda00
ba4d3fa4 b93f9ecb 681a8004 861a8114 ba4d3fcc yk51x86+0x95d9
ba4d3fb4 b9e20e99 861a8004 861b9680 ffdff9c0 yk51x86+0x9ecb
ba4d3fcc 80545e6f 861a8128 861a8114 00000000 NDIS!ndisMDpcX+0x21
ba4d3ff4 805459db a941dd44 00000000 00000000 nt!KiRetireDpcList+0x61
ba4d3ff8 a941dd44 00000000 00000000 00000000 nt!KiDispatchInterrupt+0x2b
805459db 00000000 00000009 0081850f bb830000 0xa941dd44


STACK_COMMAND:  kb

FOLLOWUP_IP: 
Epfwndis+2ceb
ba31aceb ??              ???

SYMBOL_STACK_INDEX:  4

SYMBOL_NAME:  Epfwndis+2ceb

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: Epfwndis

IMAGE_NAME:  Epfwndis.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  48a956b3

FAILURE_BUCKET_ID:  0xc2_7_CcBc_Epfwndis+2ceb

BUCKET_ID:  0xc2_7_CcBc_Epfwndis+2ceb

Followup: MachineOwner
---------
Iz toga se vidi da je epfwndis.sys odgovoran za konkretan BSOD. Uz malo guglanja se otkrije da je to file dio Eset Personal firewalla.

Analizirao sam još dva minidumpa i u jednom od njih se ne može baš lako viditi krivac ali u drugom je također Eset kriv odnosno NOD32 antivirus (eamon.sys).

Probaj maknuti NOD32 i sve vezano za njega sa stroja pa vidi dali će ti to pomoći. Ovo naravno ne mora biti točno jer ako je hardwerska greška onda antivirusi i firewalli znaju potencirati problem jer su u principu to najaktivniji procesi na stroju.
__________________
Exception up = new Exception("Illegal operation.");
throw up;
doublev je offline   Reply With Quote