« previous next »
Pages: [1]   Go Down

Author Topic: bsod and avast driver  (Read 1482 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
bsod and avast driver
« on: December 11, 2017, 06:07:38 PM »
The last few weeks I've started getting bsod's which relate to aswbidsdrivera
It's possibly also related to newsbin. Any ideas what I can do about this?

The analysis of the dmp file is below
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the bugcheck
Arg2: fffff803ea0face0, Address of the instruction which caused the bugcheck
Arg3: fffffb080e85f110, Address of the context record for the exception that caused the bugcheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------


DUMP_CLASS: 1

DUMP_QUALIFIER: 401

BUILD_VERSION_STRING:  16299.15.amd64fre.rs3_release.170928-1534

SYSTEM_MANUFACTURER:  Dell Inc.

SYSTEM_PRODUCT_NAME:  XPS 8700

SYSTEM_SKU:  0x05B7

BIOS_VENDOR:  Dell Inc.

BIOS_VERSION:  A11

BIOS_DATE:  07/09/2015

BASEBOARD_MANUFACTURER:  Dell Inc.

BASEBOARD_PRODUCT:  0KWVT8

BASEBOARD_VERSION:  A02

DUMP_TYPE:  1

BUGCHECK_P1: c0000005

BUGCHECK_P2: fffff803ea0face0

BUGCHECK_P3: fffffb080e85f110

BUGCHECK_P4: 0

EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s.

FAULTING_IP:
nt!RtlCompareUnicodeString+50
fffff803`ea0face0 440fb710        movzx   r10d,word ptr [rax]

CONTEXT:  fffffb080e85f110 -- (.cxr 0xfffffb080e85f110)
rax=0038003700340031 rbx=00380037003400a5 rcx=000000000000003a
rdx=ffff908082722568 rsi=000000000000003a rdi=ffc79049823e2547
rip=fffff803ea0face0 rsp=fffffb080e85fb08 rbp=000000000000008b
 r8=ffff908082722501  r9=0000000000000000 r10=00730074006e0065
r11=0000000000000000 r12=0000000000000680 r13=0000000000000000
r14=fffffb080e85fbb0 r15=fffffb080e85fca8
iopl=0         nv up ei ng nz na po nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00010286
nt!RtlCompareUnicodeString+0x50:
fffff803`ea0face0 440fb710        movzx   r10d,word ptr [rax] ds:002b:00380037`00340031=????
Resetting default scope

CPU_COUNT: 8

CPU_MHZ: d40

CPU_VENDOR:  GenuineIntel

CPU_FAMILY: 6

CPU_MODEL: 3c

CPU_STEPPING: 3

CPU_MICROCODE: 6,3c,3,0 (F,M,S,R)  SIG: 1E'00000000 (cache) 1E'00000000 (init)

DEFAULT_BUCKET_ID:  WIN8_DRIVER_FAULT

BUGCHECK_STR:  0x3B

PROCESS_NAME:  newsbinpro64.exe

CURRENT_IRQL:  0

ANALYSIS_SESSION_HOST:  XI64

ANALYSIS_SESSION_TIME:  12-11-2017 09:58:32.0685

ANALYSIS_VERSION: 10.0.16299.15 amd64fre

LAST_CONTROL_TRANSFER:  from fffff80c345079b6 to fffff803ea0face0

STACK_TEXT: 
fffffb08`0e85fb08 fffff80c`345079b6 : ffff9080`82722540 ffff9080`57bfda78 ffffb100`d157b108 00000000`00000001 : nt!RtlCompareUnicodeString+0x50
fffffb08`0e85fb10 fffff803`e9d63d66 : 00000000`00000000 fffff80c`34524330 00000000`01100110 ffff9080`685979a6 : aswbidsdrivera+0x279b6
fffffb08`0e85fb40 fffff803`e9d92527 : ffffb100`d157b108 00000000`c0000225 00000000`00000010 ffff9080`b1e94280 : nt!FindNodeOrParent+0x42
fffffb08`0e85fb70 fffff80c`3450a500 : ffffb100`d157b010 ffff9080`56dc75d0 00000000`00000000 00000000`00000000 : nt!RtlDeleteElementGenericTable+0x17
fffffb08`0e85fba0 fffff80c`344ef179 : fffffb08`0e85fca8 fffffb08`0e85fcf0 ffff9080`68597990 fffffb08`40000000 : aswbidsdrivera+0x2a500
fffffb08`0e85fbf0 fffff80c`344f0937 : ffff9080`68597990 00000000`00001ed8 00000000`00002de4 fffffb08`0e85ffa0 : aswbidsdrivera+0xf179
fffffb08`0e85ff70 fffff80c`34d0245e : 00000000`00000000 00000000`00000000 fffffb08`0e860201 ffffb100`d88a3980 : aswbidsdrivera+0x10937
fffffb08`0e85fff0 fffff80c`34d2033b : 00000000`0000000e fffffb08`0e8600c0 fffffb08`0e860248 fffff803`e9d2fa99 : aswMonFlt+0x245e
fffffb08`0e860060 fffff80c`30b96a8a : 00000000`00000000 ffffb100`e72fd7a0 ffffb100`e72fd420 ffffb100`e72fd720 : aswMonFlt+0x2033b
fffffb08`0e8601f0 fffff80c`30b96246 : ffffb100`eee5bd00 00000000`00000000 ffffb100`d813d600 00000000`00000000 : FLTMGR!FltpPerformPostCallbacks+0x47a
fffffb08`0e8602d0 fffff80c`30b98809 : ffffb100`ef708010 ffffb100`e72fd420 ffffb100`e72fd438 ffffb100`ef708518 : FLTMGR!FltpPassThroughCompletionWorker+0x76
fffffb08`0e860340 fffff80c`30bcb57f : fffffb08`0e8603f0 00000000`00000000 ffffb100`eee5bd00 fffff803`ea156da4 : FLTMGR!FltpLegacyProcessingAfterPreCallbacksCompleted+0x239
fffffb08`0e8603b0 fffff803`e9cc58d9 : ffffb100`e89ef400 00000000`00000085 ffffb100`ef708560 ffffb100`d8133d20 : FLTMGR!FltpCreate+0x2cf
fffffb08`0e860460 fffff803`ea1577b2 : 00000000`00000085 fffffb08`0e860760 ffffb100`eee5bd30 00000000`00000989 : nt!IofCallDriver+0x59
fffffb08`0e8604a0 fffff803`ea18f987 : fffff803`ea156f90 fffff803`ea156f90 fffffb08`00000000 ffffb100`d6c7b850 : nt!IopParseDevice+0x822
fffffb08`0e860660 fffff803`ea187060 : ffffb100`d1cac500 fffffb08`0e8608b8 00000000`00000040 ffffb100`d0ad47c0 : nt!ObpLookupObjectName+0x5b7
fffffb08`0e860820 fffff803`ea183fc1 : 00000000`00000001 00000000`00000000 00000000`00000001 00000000`00000028 : nt!ObOpenObjectByNameEx+0x1e0
fffffb08`0e860960 fffff803`ea181749 : 00000000`0a2eb690 00000000`00000000 00000000`0a2eb708 00000000`0a2eb6a8 : nt!IopCreateFile+0x391
fffffb08`0e860a00 fffff803`e9dfc553 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!NtCreateFile+0x79
fffffb08`0e860a90 00007fff`af6008e4 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x13
00000000`0a2eb618 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007fff`af6008e4


THREAD_SHA1_HASH_MOD_FUNC:  b218283fec3d1c7e0f40ba1cdcefa6c3b9ed6d60

THREAD_SHA1_HASH_MOD_FUNC_OFFSET:  5526be3dd46078cabb8dc8f12da6605a1300be90

THREAD_SHA1_HASH_MOD:  a00435d86f9f9c314d75a27b03f4336237869b40

FOLLOWUP_IP:
aswbidsdrivera+279b6
fffff80c`345079b6 8bc8            mov     ecx,eax

FAULT_INSTR_CODE:  c085c88b

SYMBOL_STACK_INDEX:  1

SYMBOL_NAME:  aswbidsdrivera+279b6

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: aswbidsdrivera

IMAGE_NAME:  aswbidsdrivera.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  59e4674d

STACK_COMMAND:  .cxr 0xfffffb080e85f110 ; kb

BUCKET_ID_FUNC_OFFSET:  279b6

FAILURE_BUCKET_ID:  0x3B_aswbidsdrivera!unknown_function

BUCKET_ID:  0x3B_aswbidsdrivera!unknown_function

PRIMARY_PROBLEM_CLASS:  0x3B_aswbidsdrivera!unknown_function

TARGET_TIME:  2017-12-11T16:12:17.000Z

OSBUILD:  16299

OSSERVICEPACK:  0

SERVICEPACK_NUMBER: 0

OS_REVISION: 0

SUITE_MASK:  272

PRODUCT_TYPE:  1

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

OSEDITION:  Windows 10 WinNt TerminalServer SingleUserTS

OS_LOCALE: 

USER_LCID:  0

OSBUILD_TIMESTAMP:  2017-11-26 04:49:20

BUILDDATESTAMP_STR:  170928-1534

BUILDLAB_STR:  rs3_release

BUILDOSVER_STR:  10.0.16299.15.amd64fre.rs3_release.170928-1534

ANALYSIS_SESSION_ELAPSED_TIME:  e0d

ANALYSIS_SOURCE:  KM

FAILURE_ID_HASH_STRING:  km:0x3b_aswbidsdrivera!unknown_function

FAILURE_ID_HASH:  {d481b7f8-08bd-c543-8179-a2879fceae5d}

Followup:     MachineOwner
---------

Logged

Online bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48564
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: bsod and avast driver
« Reply #1 on: December 11, 2017, 06:09:58 PM »
Are you using Insider Preview Build of Windows 10 ???
Not supported.
Logged
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

REDACTED

  • Guest
Re: bsod and avast driver
« Reply #2 on: December 11, 2017, 08:46:20 PM »
No, I'm just using standard win10 pro. I was getting this before the last windows update to build 1709 and I'm still getting it with the update to 1709
Logged

Online bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 48564
  • 64 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: bsod and avast driver
« Reply #3 on: December 11, 2017, 09:10:17 PM »
Quote from: poobah2 on December 11, 2017, 08:46:20 PM
No, I'm just using standard win10 pro. I was getting this before the last windows update to build 1709 and I'm still getting it with the update to 1709
What version?

Have you tried this ??? Clean Install of Avast:
https://goo.gl/4Ptzkf
If you need additional help with the Clean Install, watch this:
https://youtu.be/p-h3myRD51A

Logged
Free Security Seminar: https://bit.ly/bobg2023  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v22H2 64bit, 16 Gig Ram, 1TB SSD, Avast Free 23.5.6066, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq -- My Online Activity https://bit.ly/BobGInternet

REDACTED

  • Guest
Re: bsod and avast driver
« Reply #4 on: December 11, 2017, 09:18:25 PM »
Windows 10 pro version 1709 build 16299.98.
I'll try a clean install and see what happens. For better or worse, if it can take a few days for the error to happen
Logged

Offline Alikhan

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 2220
Re: bsod and avast driver
« Reply #5 on: December 11, 2017, 09:46:20 PM »
Could you upload the memory dump?
Logged
Windows 10 Home 64-bit • Avast Free (latest stable version) •  Malwarebytes 4 Premium (On-Demand) • Windows Firewall Control • Google Chrome • LastPass • CCleaner • O&O ShutUp10 •

REDACTED

  • Guest
Re: bsod and avast driver
« Reply #6 on: December 11, 2017, 11:47:58 PM »
It's 2.5GB so probably not
Logged
Pages: [1]   Go Up
« previous next »