请使用手机微信扫码安全登录

切换账号密码登录

绑定手机号

应国家法规对于账号实名的要求,请您在进行下一步操作前,需要先完成手机绑定 (若绑定失败,请重新登录绑定)。了解更多

不绑定绑定手机号

360官网 | 360商城

推荐论坛版块活动360粉丝商城众测粉丝轰趴馆常见问题

公司局域网内出现大面积蓝屏,电脑每天不定时蓝屏。srv.sys

2018-2-28 17:23 | 复制链接
9 47111


蓝屏代码如图,其中出现蓝屏的电脑共享的打印机也出现问题其他人无法打印,可能是139或者445端口被占用。
每天蓝屏数次。
360杀毒无法查杀,全盘扫描正常。
回复 评分 收藏

共 9 个关于公司局域网内出现大面积蓝屏,电脑每天不定时蓝屏。srv.sys的回复 最后回复于 2020-2-24 17:53

评论

直达楼层

沙发
360fans_uid21386312 LV6.中尉 发表于 2018-2-28 17:58 | 只看该作者 | 私信
可以加QQ 1260143360,传dmp文件看下蓝屏原因!
板凳
360fans1464838737 LV2.下士 楼主 发表于 2018-2-28 18:21 | 只看该作者 | 私信
Microsoft (R) Windows Debugger Version 10.0.16299.15 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\Administrator\Desktop\022818-11341-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: srv*
Executable search path is:
地板
沧桑浪子 VIP认证 LV11.大校 发表于 2018-2-28 19:32 | 只看该作者 | 私信
卡饭那个帖子也是你吗?
来自360手机 N5(360社区3.3.10版)
5
360fans1464838737 LV2.下士 楼主 发表于 2018-2-28 19:40 | 只看该作者 | 私信
前面贴的dmp有误,明天再找到新的dmp贴出来。
6
360fans1464838737 LV2.下士 楼主 发表于 2018-3-1 15:15 | 只看该作者 | 私信

Microsoft (R) Windows Debugger Version 10.0.16299.15 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\Administrator\Desktop\新建文件夹\022818-11497-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available


************* Path validation summary **************
Response                         Time (ms)     Location
Deferred                                       SRV*http://msdl.microsoft.com/download/symbols
Symbol search path is: SRV*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.18409.x86fre.win7sp1_gdr.140303-2144
Machine Name:
Kernel base = 0x84412000 PsLoadedModuleList = 0x8455b5b0
Debug session time: Wed Feb 28 16:16:32.489 2018 (UTC + 8:00)
System Uptime: 0 days 1:29:10.800
Loading Kernel Symbols
...............................................................
................................................................
.......................................
Loading User Symbols
Loading unloaded module list
......
Unable to load image 360netmon.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for 360netmon.sys
*** ERROR: Module load completed but symbols could not be loaded for 360netmon.sys
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck C2, {7, 109b, 11000, 88411008}

GetPointerFromAddress: unable to read from 8457b84c
Unable to get MmSystemRangeStart
GetUlongPtrFromAddress: unable to read from 8457b208
GetUlongPtrFromAddress: unable to read from 8457b6e0
Unable to get NonPagedPoolStart
Unable to get PagedPoolStart

88411008 doesn't look like a valid small pool allocation, checking to see
if the entire page is actually part of a large page allocation...

GetUlongFromAddress: unable to read from 8454d8cc
Probably caused by : 360netmon.sys ( 360netmon+afe6 )

Followup:     MachineOwner
---------

0: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

BAD_POOL_CALLER (c2)
The current thread is making a bad pool request.  Typically this is at a bad IRQL level or double freeing the same allocation, etc.
Arguments:
Arg1: 00000007, Attempt to free pool which was already freed
Arg2: 0000109b, Pool tag value from the pool header
Arg3: 00011000, Contents of the first 4 bytes of the pool header
Arg4: 88411008, Address of the block of pool being deallocated

Debugging Details:
------------------

GetPointerFromAddress: unable to read from 8457b84c
Unable to get MmSystemRangeStart
GetUlongPtrFromAddress: unable to read from 8457b208
GetUlongPtrFromAddress: unable to read from 8457b6e0
Unable to get NonPagedPoolStart
Unable to get PagedPoolStart

88411008 doesn't look like a valid small pool allocation, checking to see
if the entire page is actually part of a large page allocation...

GetUlongFromAddress: unable to read from 8454d8cc

DUMP_CLASS: 1

DUMP_QUALIFIER: 400

BUILD_VERSION_STRING:  7601.18409.x86fre.win7sp1_gdr.140303-2144

SYSTEM_MANUFACTURER:  Gigabyte Technology Co., Ltd.

SYSTEM_PRODUCT_NAME:  H81M-DS2

SYSTEM_SKU:  To be filled by O.E.M.

SYSTEM_VERSION:  To be filled by O.E.M.

BIOS_VENDOR:  American Megatrends Inc.

BIOS_VERSION:  F2

BIOS_DATE:  08/06/2015

BASEBOARD_MANUFACTURER:  Gigabyte Technology Co., Ltd.

BASEBOARD_PRODUCT:  H81M-DS2

BASEBOARD_VERSION:  x.x

DUMP_TYPE:  2

BUGCHECK_P1: 7

BUGCHECK_P2: 109b

BUGCHECK_P3: 11000

BUGCHECK_P4: ffffffff88411008

POOL_ADDRESS: GetPointerFromAddress: unable to read from 8457b84c
Unable to get MmSystemRangeStart
GetUlongPtrFromAddress: unable to read from 8457b208
GetUlongPtrFromAddress: unable to read from 8457b6e0
Unable to get NonPagedPoolStart
Unable to get PagedPoolStart
88411008

BUGCHECK_STR:  0xc2_7

CPU_COUNT: 4

CPU_MHZ: e6b

CPU_VENDOR:  GenuineIntel

CPU_FAMILY: 6

CPU_MODEL: 3c

CPU_STEPPING: 3

CPU_MICROCODE: 6,3c,3,0 (F,M,S,R)  SIG: 19'00000000 (cache) 19'00000000 (init)

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT

PROCESS_NAME:  System

CURRENT_IRQL:  0

ANALYSIS_SESSION_HOST:  IT

ANALYSIS_SESSION_TIME:  03-01-2018 15:13:25.0589

ANALYSIS_VERSION: 10.0.16299.15 x86fre

LAST_CONTROL_TRANSFER:  from 9623ffe6 to 84532c6b

STACK_TEXT:  
915bba84 9623ffe6 88411008 00000000 8e03a0e3 nt!ExFreePoolWithTag+0x1b1
WARNING: Stack unwind information not available. Following frames may be wrong.
915bbab8 96240439 8c7be900 915bbae0 8e115cbc 360netmon+0xafe6
915bbac4 8e115cbc 00000018 00000104 8c7be900 360netmon+0xb439
915bbae0 8e1095f5 00001649 00000000 00000018 NETIO!WfpNotifyFlowContextDelete+0x40
915bbb24 8e0f3d23 00001649 00000000 00000020 NETIO!WfpProcessFlowDelete+0xc1
915bbb38 8e0f3d44 00001649 00000000 879534b4 NETIO!KfdNotifyFlowDeletion+0x19
915bbb50 8e27f549 87953498 8e311b34 00000000 NETIO!KfdAleNotifyFlowDeletion+0x18
915bbb70 8e294b06 87953478 915bbbb4 8e283fde tcpip!WfpAleFreeRemoteEndpoint+0x1c
915bbb7c 8e283fde 879534b8 848288f0 8e3112a0 tcpip!WfpAleDecrementWaitRef+0x65
915bbbb4 8e2768e4 8e3112a0 8e311b40 915bbbe8 tcpip!WfpAlepDeleteDeferredEntries+0x120
915bbbc4 8e0f4458 8e311b74 8a582120 8a538b20 tcpip!WfpAlepDeferredCleanupWorkQueueRoutine+0x15
915bbbe8 84626633 8a538b20 8e311b40 8a582120 NETIO!NetiopIoWorkItemRoutine+0x2f
915bbc00 8448f14b 8a582120 00000000 877254c0 nt!IopProcessWorkItem+0x2d
915bbc50 8461b141 00000001 be0bbfed 00000000 nt!ExpWorkerThread+0x10d
915bbc90 844c2559 8448f03e 00000001 00000000 nt!PspSystemThreadStartup+0x9e
00000000 00000000 00000000 00000000 00000000 nt!KiThreadStartup+0x19


THREAD_SHA1_HASH_MOD_FUNC:  e2af0c4e3c351138eeddb102ef571bf4a8c6aced

THREAD_SHA1_HASH_MOD_FUNC_OFFSET:  569c488318d99c8258b8f5c9c6957b28b794699d

THREAD_SHA1_HASH_MOD:  199415bd580fc2bd2a3800f0f432a5a59919455a

FOLLOWUP_IP:
360netmon+afe6
9623ffe6 ??              ???

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  360netmon+afe6

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: 360netmon

IMAGE_NAME:  360netmon.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  5a13d3d0

STACK_COMMAND:  .thread ; .cxr ; kb

FAILURE_BUCKET_ID:  0xc2_7_360netmon+afe6

BUCKET_ID:  0xc2_7_360netmon+afe6

PRIMARY_PROBLEM_CLASS:  0xc2_7_360netmon+afe6

TARGET_TIME:  2018-02-28T08:16:32.000Z

OSBUILD:  7601

OSSERVICEPACK:  1000

SERVICEPACK_NUMBER: 0

OS_REVISION: 0

SUITE_MASK:  272

PRODUCT_TYPE:  1

OSPLATFORM_TYPE:  x86

OSNAME:  Windows 7

OSEDITION:  Windows 7 WinNt (Service Pack 1) TerminalServer SingleUserTS

OS_LOCALE:  

USER_LCID:  0

OSBUILD_TIMESTAMP:  2014-03-04 16:19:27

BUILDDATESTAMP_STR:  140303-2144

BUILDLAB_STR:  win7sp1_gdr

BUILDOSVER_STR:  6.1.7601.18409.x86fre.win7sp1_gdr.140303-2144

ANALYSIS_SESSION_ELAPSED_TIME:  8e1

ANALYSIS_SOURCE:  KM

FAILURE_ID_HASH_STRING:  km:0xc2_7_360netmon+afe6

FAILURE_ID_HASH:  {8e56b23d-f32f-09e8-4e83-e049d16a076d}

Followup:     MachineOwner
---------
7
360fans111109843 LV2.下士 发表于 2018-3-2 10:47 | 只看该作者 | 私信
我们也是,而且基本都是安装了360出现的
8
360fans_u12537388 LV4.上士 发表于 2018-3-4 02:58 | 只看该作者 | 私信
根据你提供的DMP文件可以看出2018/2/28日 电脑开机了1小时29分,在16点16分出现蓝屏。蓝屏的原因是来自360安全卫士的360 netmon.sys这个驱动,模块加载完成但不能加载360 netmon.sys引起的蓝屏。楼主可以试一下卸载360试试或者重装360安全卫士。
9
360fans_uid38347277 LV1.上等兵 发表于 2018-12-15 19:56 | 只看该作者 | 私信
楼主解决了吗,我也遇到了同样的问题。
10
360fans_jM1fZY LV1.上等兵 发表于 2020-2-24 17:53 来自360社区WAP端 | 只看该作者 | 私信
永恒之蓝的问题
返回列表
高级模式   
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

360fans1464838737 LV2.下士

粉丝:2 关注:0 积分:32

精华:0 金币:32 经验:29

最后登录时间:2018-3-3

私信 加好友

最新活动

10月26日抖音感恩用户节直播预告

排行榜

热度排行 查看排行
今日 本周 本月 全部
    今日 本周 本月 全部

      内容推荐 热门推荐最新主帖

      扫码添加360客服号,涨知识的同时还有超多福利等你哦

      快速回复 返回顶部 返回列表