| DEFAULT_BUCKET_ID: DRIVER_FAULT
BUGCHECK_STR: 0x1E
PROCESS_NAME: reg.exe
EXCEPTION_RECORD: b86fb89c -- (.exr 0xffffffffb86fb89c)
ExceptionAddress: 804941a2 (nt!ExpLookupHandleTableEntry+0x0000002c)
ExceptionCode: c0000005 (Access violation)
ExceptionFlags: 00000000
NumberParameters: 2
Parameter[0]: 00000000
Parameter[1]: 00000008
Attempt to read from address 00000008
TRAP_FRAME: b86fb8f0 -- (.trap 0xffffffffb86fb8f0)
ErrCode = 00000000
eax=00000000 ebx=00000000 ecx=00000000 edx=00000002 esi=000000fe edi=00000bf8
eip=804941a2 esp=b86fb964 ebp=b86fb9dc iopl=0 nv up ei pl zr na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010246
nt!ExpLookupHandleTableEntry+0x2c:
804941a2 8b4008 mov eax,dword ptr [eax+8] ds:0023:00000008=????????
Resetting default scope
LAST_CONTROL_TRANSFER: from 80468ec5 to 804308dc
STACK_TEXT:
b86fb880 80468ec5 b86fb89c 00000000 b86fb8f0 nt!KiDispatchException+0x30e
b86fb8e8 80468e76 fb21ee28 00000000 fc825f18 nt!CommonDispatchException+0x4d
b86fb968 80493bfc 00000000 00000bf8 00000000 nt!KiUnexpectedInterruptTail+0x207
b86fb978 804513cf 00000000 00000bf8 b86fbbc0 nt!ExMapHandleToPointer+0xe
b86fb9dc 804dd6a9 00000bf8 00000000 00000000 nt!ObReferenceObjectByHandle+0x14b
b86fbb18 804683a9 00000bf8 00000004 b86fbbc0 nt!NtQueryObject+0xc1
b86fbb18 80431d5f 00000bf8 00000004 b86fbbc0 nt!KiSystemService+0xc9
b86fbba4 bdb00e82 00000bf8 00000004 b86fbbc0 nt!ZwQueryObject+0xb
WARNING: Stack unwind information not available. Following frames may be wrong.
b86fbbc4 bdafd482 00000bf8 b86fbd64 00078c50 Sandbox+0x3ce82
b86fbc60 bdafeb85 b86fbce4 fa91c1a0 00000001 Sandbox+0x39482
b86fbc80 bdadc8d8 b86fbce4 000004a0 b86fbd64 Sandbox+0x3ab85
b86fbd54 804683a9 000004a0 00000001 00000000 Sandbox+0x188d8
b86fbd54 77f88e77 000004a0 00000001 00000000 nt!KiSystemService+0xc9
00078c94 00000000 00000000 00000000 00000000 0x77f88e77
STACK_COMMAND: kb
FOLLOWUP_IP:
Sandbox+3ce82
bdb00e82 ?? ???
SYMBOL_STACK_INDEX: 8
SYMBOL_NAME: Sandbox+3ce82
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: Sandbox
IMAGE_NAME: Sandbox.SYS
DEBUG_FLR_IMAGE_TIMESTAMP: 46812a37
FAILURE_BUCKET_ID: 0x1E_Sandbox+3ce82
BUCKET_ID: 0x1E_Sandbox+3ce82
Followup: MachineOwner |
いただいた DUMPファイルをもとに、JDownloader を実行したらBSoDが発生するということだったのですが、
見た感じ、 JDownloader が reg.exe を使ってレジストリを書き換えようとしたところ、 Outpost Firewall の Sandbox.sys(2007/ 6/27版) が原因で落ちてるという解析結果に
とりあえず、仮想環境の英語版に入れたところ問題なさそうでした
しかし、Java 1.8.0_05 ってことは Java 8 update 5 使ってるのか・ω・
Translate
Comments