TRAP_FRAME: ffffab8c1d9413a0 -- (.trap 0xffffab8c1d9413a0)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=00000000fffffffe rbx=0000000000000000 rcx=0000000000000000
rdx=0000000070536f49 rsi=0000000000000000 rdi=0000000000000000
rip=fffff8027443d7a6 rsp=ffffab8c1d941530 rbp=ffff9b0772357480
r8=0000000000000000 r9=0000000000000010 r10=00000000ffffffff
r11=000000000000006b r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up ei pl zr na po nc
nt!ObfDereferenceObjectWithTag+0x26:
fffff802`7443d7a6 f0480fc15ed0 lock xadd qword ptr [rsi-30h],rbx ds:ffffffff`ffffffd0=????????????????
Resetting default scope
encyclopedia.kaspersky.com
1: kd> lmvmnvlddmkm
Browse full module list
start end module name
fffff802`907d0000 fffff802`94226000 nvlddmkm T (no symbols)
Loaded symbol image file: nvlddmkm.sys
Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_618b150331c5f4ad\nvlddmkm.sys
Image name: nvlddmkm.sys
Browse all global symbols functions data
Timestamp: Fri Mar 1 20:55:35 2024 (65E21697)
CheckSum: 0393217E
ImageSize: 03A56000
Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4
Information from resource tables:Hocam sadece ekran kartını güncellesem olmaz mı? Hani şu an size yavru kedi bakışı atıyormuşum gibi hayal edin. O derece Kaspersky'ı silmek zorunda mıyım?
Hocam sadece ekran kartını güncellesem olmaz mı? Hani şu an size yavru kedi bakışı atıyormuşum gibi hayal edin. O derece Kaspersky'ı silmek zorunda mıyım
0xffff8009555ea078 : 0xfffff8073a540450 : ndis!ndisMTransferData
0xffff8009555ea098 : 0xfffff8073a493da0 : ndis!NetDmaDeregisterProvider
0xffff800955799258 : 0xfffff8073a517b60 : ndis!ndisOpenCancelSendNetBufferLists
0xffff8009557992d0 : 0xfffff8073a4886d0 : ndis!ndisMWakeUpDpcX
0xffff800955799310 : 0xffffce0a34354050 : USB\VID_148F&PID_7601 << donanım kimliği
*** WARNING: Unable to verify timestamp for netr28ux.sys
0xffff800955799350 : 0xfffff8073a50e350 : ndis!ndisMIndicatePacket
0xffff800955799358 : 0xfffff8073a53f8e0 : ndis!ndisMSendCompleteX
0xffff800955799360 : 0xfffff8073a53f120 : ndis!NdisMSendResourcesAvailable
0xffff800955799368 : 0xfffff8073a4f1c40 : ndis!NdisMResetComplete
0xffff9b0775c27570 : 0xfffff8028fbb2600 : usbhub!UsbHubhInitTimeoutTimerkd> lmvm netr28ux
Browse full module list
start end module name
fffff802`8fea0000 fffff802`900c9000 netr28ux (deferred)
Mapped memory image file: C:\ProgramData\Dbg\sym\netr28ux.sys\55672624229000\netr28ux.sys
Image path: \SystemRoot\System32\drivers\netr28ux.sys
Image name: netr28ux.sys
Browse all global symbols functions data
Timestamp: Thu May 28 17:28:52 2015 (55672624)Kod:TRAP_FRAME: ffffab8c1d9413a0 -- (.trap 0xffffab8c1d9413a0) NOTE: The trap frame does not contain all registers. Some register values may be zeroed or incorrect. rax=00000000fffffffe rbx=0000000000000000 rcx=0000000000000000 rdx=0000000070536f49 rsi=0000000000000000 rdi=0000000000000000 rip=fffff8027443d7a6 rsp=ffffab8c1d941530 rbp=ffff9b0772357480 r8=0000000000000000 r9=0000000000000010 r10=00000000ffffffff r11=000000000000006b r12=0000000000000000 r13=0000000000000000 r14=0000000000000000 r15=0000000000000000 iopl=0 nv up ei pl zr na po nc nt!ObfDereferenceObjectWithTag+0x26: fffff802`7443d7a6 f0480fc15ed0 lock xadd qword ptr [rsi-30h],rbx ds:ffffffff`ffffffd0=???????????????? Resetting default scope
Basitçe anlatıyorum, bir nesnenin referansını kaldırırken mevzu patlıyor, zaten kullanılmış olan bir belleğe erişiyor ve sistemde güvenlik açığı yaratıyor. Bu da sistemin çökmesine yol açıyor. Suçlu Kaspersky tabii burada. Ayrıca bununla alakalı bir güzel anlatıları da var:
What is Use-After-Free?
Definition: UAF refers to incorrect use of dynamic memory during program operation.
Kaldır bu uygulamayı. Ekran kartı sürücünü de güncelle.
Kod:1: kd> lmvmnvlddmkm Browse full module list start end module name fffff802`907d0000 fffff802`94226000 nvlddmkm T (no symbols) Loaded symbol image file: nvlddmkm.sys Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_618b150331c5f4ad\nvlddmkm.sys Image name: nvlddmkm.sys Browse all global symbols functions data Timestamp: Fri Mar 1 20:55:35 2024 (65E21697) CheckSum: 0393217E ImageSize: 03A56000 Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4 Information from resource tables:
