c.alessandro75
08-05-2010, 12:55
Ciao a tutti,
da qualche tempo il mio PC mi va in dump.
Questa è l'analisi del file minidump... mi aiutate a capire se il problema è causato da un virus, o dall'hardware del mio PC?
Grazie......!
Ecco l'analisi del dump:
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
CRITICAL_OBJECT_TERMINATION (f4)
A process or thread crucial to system operation has unexpectedly exited or been
terminated.
Several processes and threads are necessary for the operation of the
system; when they are terminated (for any reason), the system can no
longer function.
Arguments:
Arg1: 00000003, Process
Arg2: 87057da0, Terminating object
Arg3: 87057f14, Process image file name
Arg4: 805fb046, Explanatory message (ascii)
Debugging Details:
------------------
unable to get nt!KiCurrentEtwBufferOffset
unable to get nt!KiCurrentEtwBufferBase
PROCESS_OBJECT: 87057da0
IMAGE_NAME: hardware_disk
DEBUG_FLR_IMAGE_TIMESTAMP: 0
FAULTING_MODULE: 00000000
PROCESS_NAME: csrss.exe
EXCEPTION_RECORD: f69fc9d8 -- (.exr 0xfffffffff69fc9d8)
ExceptionAddress: 75b2b3b9
ExceptionCode: c0000006 (In-page I/O error)
ExceptionFlags: 00000000
NumberParameters: 3
Parameter[0]: 00000000
Parameter[1]: 75b2b3b9
Parameter[2]: c000000e
Inpage operation failed at 75b2b3b9, due to I/O error c000000e
EXCEPTION_CODE: (NTSTATUS) 0xc0000006 - L'istruzione a "0x%08lx" ha fatto riferimento alla memoria a "0x%08lx". Il dato richiesto non è stato inserito in memoria a causa di uno stato di errore di I/O di "0x%08lx".
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: DRIVER_FAULT
ERROR_CODE: (NTSTATUS) 0xc0000006 - L'istruzione a "0x%08lx" ha fatto riferimento alla memoria a "0x%08lx". Il dato richiesto non è stato inserito in memoria a causa di uno stato di errore di I/O di "0x%08lx".
EXCEPTION_PARAMETER1: 00000000
EXCEPTION_PARAMETER2: 75b2b3b9
EXCEPTION_PARAMETER3: c000000e
IO_ERROR: (NTSTATUS) 0xc000000e - È stata specificata una periferica inesistente.
EXCEPTION_STR: 0xc0000006_c000000e
FAULTING_IP:
+f8
75b2b3b9 ?? ???
BUGCHECK_STR: 0xF4_IOERR_C000000E
FOLLOWUP_IP:
+f8
75b2b3b9 ?? ???
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: hardware_disk
SYMBOL_NAME: +f8
STACK_COMMAND: kb
FAILURE_BUCKET_ID: 0xF4_IOERR_C000000E_+f8
BUCKET_ID: 0xF4_IOERR_C000000E_+f8
Followup: MachineOwner
---------
kd> !process ffffffff87057da0 3
GetPointerFromAddress: unable to read from 8055fbd4
PROCESS 87057da0 SessionId: none Cid: 02d0 Peb: 7ffdf000 ParentCid: 0290
DirBase: 1748d000 ObjectTable: e1a915b0 HandleCount: <Data Not Accessible>
Image: csrss.exe
VadRoot 86cfc168 Vads 80 Clone 0 Private 268. Modified 72. Locked 0.
DeviceMap e1005430
Token e1cd3030
ReadMemory error: Cannot get nt!KeMaximumIncrement value.
ffdf0000: Unable to get shared data
ElapsedTime 00:00:00.000
UserTime 00:00:00.000
KernelTime 00:00:00.000
QuotaPoolUsage[PagedPool] 34628
QuotaPoolUsage[NonPagedPool] 4032
Working Set Sizes (now,min,max) (678, 50, 345) (2712KB, 200KB, 1380KB)
PeakWorkingSetSize 917
VirtualSize 20 Mb
PeakVirtualSize 39 Mb
PageFaultCount 2060
MemoryPriority BACKGROUND
BasePriority 13
CommitCharge 324
*** Error in reading nt!_ETHREAD @ 87173628
da qualche tempo il mio PC mi va in dump.
Questa è l'analisi del file minidump... mi aiutate a capire se il problema è causato da un virus, o dall'hardware del mio PC?
Grazie......!
Ecco l'analisi del dump:
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
CRITICAL_OBJECT_TERMINATION (f4)
A process or thread crucial to system operation has unexpectedly exited or been
terminated.
Several processes and threads are necessary for the operation of the
system; when they are terminated (for any reason), the system can no
longer function.
Arguments:
Arg1: 00000003, Process
Arg2: 87057da0, Terminating object
Arg3: 87057f14, Process image file name
Arg4: 805fb046, Explanatory message (ascii)
Debugging Details:
------------------
unable to get nt!KiCurrentEtwBufferOffset
unable to get nt!KiCurrentEtwBufferBase
PROCESS_OBJECT: 87057da0
IMAGE_NAME: hardware_disk
DEBUG_FLR_IMAGE_TIMESTAMP: 0
FAULTING_MODULE: 00000000
PROCESS_NAME: csrss.exe
EXCEPTION_RECORD: f69fc9d8 -- (.exr 0xfffffffff69fc9d8)
ExceptionAddress: 75b2b3b9
ExceptionCode: c0000006 (In-page I/O error)
ExceptionFlags: 00000000
NumberParameters: 3
Parameter[0]: 00000000
Parameter[1]: 75b2b3b9
Parameter[2]: c000000e
Inpage operation failed at 75b2b3b9, due to I/O error c000000e
EXCEPTION_CODE: (NTSTATUS) 0xc0000006 - L'istruzione a "0x%08lx" ha fatto riferimento alla memoria a "0x%08lx". Il dato richiesto non è stato inserito in memoria a causa di uno stato di errore di I/O di "0x%08lx".
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: DRIVER_FAULT
ERROR_CODE: (NTSTATUS) 0xc0000006 - L'istruzione a "0x%08lx" ha fatto riferimento alla memoria a "0x%08lx". Il dato richiesto non è stato inserito in memoria a causa di uno stato di errore di I/O di "0x%08lx".
EXCEPTION_PARAMETER1: 00000000
EXCEPTION_PARAMETER2: 75b2b3b9
EXCEPTION_PARAMETER3: c000000e
IO_ERROR: (NTSTATUS) 0xc000000e - È stata specificata una periferica inesistente.
EXCEPTION_STR: 0xc0000006_c000000e
FAULTING_IP:
+f8
75b2b3b9 ?? ???
BUGCHECK_STR: 0xF4_IOERR_C000000E
FOLLOWUP_IP:
+f8
75b2b3b9 ?? ???
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: hardware_disk
SYMBOL_NAME: +f8
STACK_COMMAND: kb
FAILURE_BUCKET_ID: 0xF4_IOERR_C000000E_+f8
BUCKET_ID: 0xF4_IOERR_C000000E_+f8
Followup: MachineOwner
---------
kd> !process ffffffff87057da0 3
GetPointerFromAddress: unable to read from 8055fbd4
PROCESS 87057da0 SessionId: none Cid: 02d0 Peb: 7ffdf000 ParentCid: 0290
DirBase: 1748d000 ObjectTable: e1a915b0 HandleCount: <Data Not Accessible>
Image: csrss.exe
VadRoot 86cfc168 Vads 80 Clone 0 Private 268. Modified 72. Locked 0.
DeviceMap e1005430
Token e1cd3030
ReadMemory error: Cannot get nt!KeMaximumIncrement value.
ffdf0000: Unable to get shared data
ElapsedTime 00:00:00.000
UserTime 00:00:00.000
KernelTime 00:00:00.000
QuotaPoolUsage[PagedPool] 34628
QuotaPoolUsage[NonPagedPool] 4032
Working Set Sizes (now,min,max) (678, 50, 345) (2712KB, 200KB, 1380KB)
PeakWorkingSetSize 917
VirtualSize 20 Mb
PeakVirtualSize 39 Mb
PageFaultCount 2060
MemoryPriority BACKGROUND
BasePriority 13
CommitCharge 324
*** Error in reading nt!_ETHREAD @ 87173628