Windows 10 i catched BSOD, i tested simple user mode app for registry and BSOD appeared

  • Thread starter Thread starter alexeykremnev
  • Start date Start date
A

alexeykremnev

UNEXPECTED_KERNEL_MODE_TRAP (7f)
This means a trap occurred in kernel mode, and it's a trap of a kind
that the kernel isn't allowed to have/catch (bound trap) or that
is always instant death (double fault). The first number in the
bugcheck params is the number of the trap (8 = double fault, etc)
Consult an Intel x86 family manual to learn more about what these
traps are. Here is a *portion* of those codes:
If kv shows a taskGate
use .tss on the part before the colon, then kv.
Else if kv shows a trapframe
use .trap on that value
Else
.trap on the appropriate frame will show where the trap was taken
(on x86, this will be the ebp that goes with the procedure KiTrap)
Endif
kb will then show the corrected stack.
Arguments:
Arg1: 0000000000000008, EXCEPTION_DOUBLE_FAULT
Arg2: ffffab806bd29f70
Arg3: ffffa9058d254ff0
Arg4: fffff8035c87aaf0

Debugging Details:
------------------


KEY_VALUES_STRING: 1


PROCESSES_ANALYSIS: 1

SERVICE_ANALYSIS: 1

STACKHASH_ANALYSIS: 1

TIMELINE_ANALYSIS: 1


DUMP_CLASS: 1

DUMP_QUALIFIER: 0

BUILD_VERSION_STRING: 17763.1.amd64fre.rs5_release.180914-1434

DUMP_TYPE: 0

BUGCHECK_P1: 8

BUGCHECK_P2: ffffab806bd29f70

BUGCHECK_P3: ffffa9058d254ff0

BUGCHECK_P4: fffff8035c87aaf0

BUGCHECK_STR: 0x7f_8

CPU_COUNT: 4

CPU_MHZ: c7a

CPU_VENDOR: AuthenticAMD

CPU_FAMILY: 17

CPU_MODEL: 8

CPU_STEPPING: 2

DEFAULT_BUCKET_ID: WIN8_DRIVER_FAULT

PROCESS_NAME: Registry

CURRENT_IRQL: d

ANALYSIS_SESSION_HOST: DESKTOP-F9K7FQ0

ANALYSIS_SESSION_TIME: 08-26-2020 15:23:42.0018

ANALYSIS_VERSION: 10.0.18362.1 amd64fre

EXCEPTION_RECORD: fffff8035c404590 -- (.exr 0xfffff8035c404590)
ExceptionAddress: 70898bd18b4c028b
ExceptionCode: 28c48348
ExceptionFlags: ccccccc3
NumberParameters: 1140850694
Parameter[0]: 4cc0334409e8c141
Parameter[1]: 018aa3c06941da8b
Parameter[2]: 09e9c149c88b4400
Parameter[3]: 0668828b49c08b44
Parameter[4]: c9234cc8334d0000
Parameter[5]: c8148d48490c8d4b
Parameter[6]: 0000000ce8cb8b49
Parameter[7]: ccccccc328c48348
Parameter[8]: 10c28348cccccccc
Parameter[9]: c08548028b481774
Parameter[10]: 3b4808408d4c0f74
Parameter[11]: 8948008b490775c1
Parameter[12]: c0854dd08b49c302
Parameter[13]: ccccccccccc3e075
Parameter[14]: cccccccccccccccc

TRAP_FRAME: ffff818a4aa1fab8 -- (.trap 0xffff818a4aa1fab8)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=0000000000000000 rbx=0000000000000000 rcx=0000000000000000
rdx=ffff818a4aa18268 rsi=0000000000000000 rdi=0000000000000000
rip=0000000000000000 rsp=ffff818a378b81d0 rbp=0000000000000000
r8=ffff818a3b53d380 r9=ffff818a378b81d0 r10=0000000000000000
r11=00000000ffffffff r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=3 vip nv dn di pl zr ac pe nc
8398:0000 ?? ???
Resetting default scope

BAD_STACK_POINTER: ffff818a378b81d0

LAST_CONTROL_TRANSFER: from fffff8035c096402 to fffff8035bfc6780

THREAD_SHA1_HASH_MOD_FUNC: 861d1a4a34e9e230cd06c1c30fd5c4b142e1a3d5

THREAD_SHA1_HASH_MOD_FUNC_OFFSET: dd90aff82f622ece537b9b0891bf31d9a7d02870

THREAD_SHA1_HASH_MOD: b68964e6fd1ac69c5e3f91d41c4ec96a96966151

FOLLOWUP_IP:
nt!KiDoubleFaultAbort+2ae
fffff803`5bfcb2ee 90 nop

FAULT_INSTR_CODE: 6666c390

SYMBOL_STACK_INDEX: 5

SYMBOL_NAME: nt!KiDoubleFaultAbort+2ae

FOLLOWUP_NAME: MachineOwner

MODULE_NAME: nt

IMAGE_NAME: ntkrnlmp.exe

DEBUG_FLR_IMAGE_TIMESTAMP: 0

STACK_COMMAND: .thread ; .cxr ; kb

BUCKET_ID_FUNC_OFFSET: 2ae

FAILURE_BUCKET_ID: 0x7f_8_VRF_STACKPTR_ERROR_nt!KiDoubleFaultAbort

BUCKET_ID: 0x7f_8_VRF_STACKPTR_ERROR_nt!KiDoubleFaultAbort

PRIMARY_PROBLEM_CLASS: 0x7f_8_VRF_STACKPTR_ERROR_nt!KiDoubleFaultAbort

TARGET_TIME: 2020-08-26T12:23:18.000Z

OSBUILD: 17763

OSSERVICEPACK: 0

SERVICEPACK_NUMBER: 0

OS_REVISION: 0

SUITE_MASK: 272

PRODUCT_TYPE: 1

OSPLATFORM_TYPE: x64

OSNAME: Windows 10

OSEDITION: Windows 10 WinNt TerminalServer SingleUserTS

OS_LOCALE:

USER_LCID: 0

OSBUILD_TIMESTAMP: unknown_date

BUILDDATESTAMP_STR: 180914-1434

BUILDLAB_STR: rs5_release

BUILDOSVER_STR: 10.0.17763.1.amd64fre.rs5_release.180914-1434

ANALYSIS_SESSION_ELAPSED_TIME: 348a

ANALYSIS_SOURCE: KM

FAILURE_ID_HASH_STRING: km:0x7f_8_vrf_stackptr_error_nt!kidoublefaultabort

FAILURE_ID_HASH: {fddd5349-c83c-cb13-43ea-0531104b1b9d}

Followup: MachineOwner
---------

1: kd> .exr 0xfffff8035c404590
ExceptionAddress: 70898bd18b4c028b
ExceptionCode: 28c48348
ExceptionFlags: ccccccc3
NumberParameters: 1140850694
Parameter[0]: 4cc0334409e8c141
Parameter[1]: 018aa3c06941da8b
Parameter[2]: 09e9c149c88b4400
Parameter[3]: 0668828b49c08b44
Parameter[4]: c9234cc8334d0000
Parameter[5]: c8148d48490c8d4b
Parameter[6]: 0000000ce8cb8b49
Parameter[7]: ccccccc328c48348
Parameter[8]: 10c28348cccccccc
Parameter[9]: c08548028b481774
Parameter[10]: 3b4808408d4c0f74
Parameter[11]: 8948008b490775c1
Parameter[12]: c0854dd08b49c302
Parameter[13]: ccccccccccc3e075
Parameter[14]: cccccccccccccccc
1: kd> .trap 0xffff818a4aa1fab8
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=0000000000000000 rbx=0000000000000000 rcx=0000000000000000
rdx=ffff818a4aa18268 rsi=0000000000000000 rdi=0000000000000000
rip=0000000000000000 rsp=ffff818a378b81d0 rbp=0000000000000000
r8=ffff818a3b53d380 r9=ffff818a378b81d0 r10=0000000000000000
r11=00000000ffffffff r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=3 vip nv dn di pl zr ac pe nc
8398:0000 ?? ???
1: kd> !thread
THREAD ffff9908973af080 Cid 2124.1848 Teb: 0000002fb36fb000 Win32Thread: 0000000000000000 RUNNING on processor 1
IRP List:
ffff9908975a2ea0: (0006,0160) Flags: 40060030 Mdl: 00000000
Impersonation token: ffff818a4009e060 (Level Impersonation)
Owning Process ffff990897081080 Image: svchost.exe
Attached Process ffff99088e2dc080 Image: Registry
Wait Start TickCount 2218638 Ticks: 70 (0:00:00:01.093)
Context Switch Count 957 IdealProcessor: 1
UserTime 00:00:00.031
KernelTime 00:00:00.750
Win32 Start Address 0x00007ffa328eff90
Stack Init ffffa9058d25ac90 Current ffffa9058d259a90
Base ffffa9058d25b000 Limit ffffa9058d255000 Call 0000000000000000
Priority 12 BasePriority 8 PriorityDecrement 0 IoPriority 2 PagePriority 5
Child-SP RetAddr : Args to Child : Call Site
ffffab80`6bd29668 fffff803`5c096402 : 00000000`00000008 00000000`00000003 ffffab80`6bd297d0 fffff803`5bf65cb0 : nt!DbgBreakPointWithStatus
ffffab80`6bd29670 fffff803`5c095b87 : 00000000`00000003 ffffab80`6bd297d0 fffff803`5bfd2ae0 00000000`0000007f : nt!KiBugCheckDebugBreak+0x12
ffffab80`6bd296d0 fffff803`5bfbec07 : 00000000`00000000 00000000`00000000 ffff9908`8e2cc300 00000000`00000000 : nt!KeBugCheck2+0x957
ffffab80`6bd29df0 fffff803`5bfd02e9 : 00000000`0000007f 00000000`00000008 ffffab80`6bd29f70 ffffa905`8d254ff0 : nt!KeBugCheckEx+0x107
ffffab80`6bd29e30 fffff803`5bfcb2ee : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
ffffab80`6bd29f70 fffff803`5c87aaf0 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiDoubleFaultAbort+0x2ae (TrapFrame @ ffffab80`6bd29f70)
ffffa905`8d254ff0 fffff803`5bfc0a64 : 6b6b6b6b`6b6b6b6b 6b6b6b6b`6b6b6b6b 6b6b6b6b`6b6b6b6b 6b6b6b6b`6b6b6b6b : hal!HalPerformEndOfInterrupt+0x20
ffffa905`8d255020 fffff803`5c4045fd : fffff803`5c404590 ffff9908`00000003 ffff818a`4aa1fab8 ffff9908`973af080 : nt!KiInterruptDispatchNoLockNoEtw+0x44 (TrapFrame @ ffffa905`8d255020)
ffffa905`8d2551b8 fffff803`5c404590 : ffff9908`00000003 ffff818a`4aa1fab8 ffff9908`973af080 ffff818a`3787be58 : nt!CmpRemoveKeyHashFromTableEntry+0x9
ffffa905`8d2551c0 fffff803`5c4a4bdc : ffff818a`4aa1fab8 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpRemoveKeyHashFromDeletedKcbTable+0x4c
ffffa905`8d2551f0 fffff803`5c3dc80d : ffff818a`4aa1fab8 00000000`00000201 00000000`00000000 ffff818a`4aa1fab8 : nt!CmpCleanUpKcbCacheWithLock+0xc8
ffffa905`8d255220 fffff803`5c4a4bed : ffff818a`4aa27268 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255250 fffff803`5c3dc80d : ffff818a`4aa27268 00000000`00000201 00000000`00000000 ffff818a`4aa27268 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255280 fffff803`5c4a4bed : ffff818a`4aa2ed18 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d2552b0 fffff803`5c3dc80d : ffff818a`4aa2ed18 00000000`00000201 00000000`00000000 ffff818a`4aa2ed18 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d2552e0 fffff803`5c4a4bed : ffff818a`4aa36268 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255310 fffff803`5c3dc80d : ffff818a`4aa36268 00000000`00000201 00000000`00000000 ffff818a`4aa36268 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255340 fffff803`5c4a4bed : ffff818a`4aa3d988 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255370 fffff803`5c3dc80d : ffff818a`4aa3d988 00000000`00000201 00000000`00000000 ffff818a`4aa3d988 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d2553a0 fffff803`5c4a4bed : ffff818a`4a627398 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d2553d0 fffff803`5c3dc80d : ffff818a`4a627398 00000000`00000201 00000000`00000000 ffff818a`4a627398 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255400 fffff803`5c4a4bed : ffff818a`4a62a398 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255430 fffff803`5c3dc80d : ffff818a`4a62a398 00000000`00000201 00000000`00000000 ffff818a`4a62a398 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255460 fffff803`5c4a4bed : ffff818a`496acab8 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255490 fffff803`5c3dc80d : ffff818a`496acab8 00000000`00000201 00000000`00000000 ffff818a`496acab8 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d2554c0 fffff803`5c4a4bed : ffff818a`458ca398 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d2554f0 fffff803`5c3dc80d : ffff818a`458ca398 00000000`00000201 00000000`00000000 ffff818a`458ca398 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255520 fffff803`5c4a4bed : ffff818a`46b3d398 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255550 fffff803`5c3dc80d : ffff818a`46b3d398 00000000`00000201 00000000`00000000 ffff818a`46b3d398 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255580 fffff803`5c4a4bed : ffff818a`492df858 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d2555b0 fffff803`5c3dc80d : ffff818a`492df858 00000000`00000201 00000000`00000000 ffff818a`492df858 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d2555e0 fffff803`5c4a4bed : ffff818a`4a638988 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255610 fffff803`5c3dc80d : ffff818a`4a638988 00000000`00000201 00000000`00000000 ffff818a`4a638988 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255640 fffff803`5c4a4bed : ffff818a`466305f8 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255670 fffff803`5c3dc80d : ffff818a`466305f8 00000000`00000201 00000000`00000000 ffff818a`466305f8 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d2556a0 fffff803`5c4a4bed : ffff818a`4227b728 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d2556d0 fffff803`5c3dc80d : ffff818a`4227b728 00000000`00000201 00000000`00000000 ffff818a`4227b728 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255700 fffff803`5c4a4bed : ffff818a`4a646858 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75
ffffa905`8d255730 fffff803`5c3dc80d : ffff818a`4a646858 00000000`00000201 00000000`00000000 ffff818a`4a646858 : nt!CmpCleanUpKcbCacheWithLock+0xd9
ffffa905`8d255760 fffff803`5c4a4bed : ffff818a`4a64b008 00000000`00000000 00000000`00000000 00000000`00000201 : nt!CmpDereferenceKeyControlBlockWithLock+0x75

1: kd> !stackusage
Stack Usage By Function
=================================================================================

Size Count Module

Total Size: 0x00000000


Stack Usage By Module
=================================================================================

Size Count Module

Total Size: 0x00000000
1: kd> kF
*** Stack trace for last set context - .thread/.cxr resets it
# Memory Child-SP RetAddr Call Site
00 ffff818a`378b81d0 aa2137b9`00001938 0x0
01 8 ffff818a`378b81d8 ffff818a`3afa0678 0xaa2137b9`00001938
02 8 ffff818a`378b81e0 ffff818a`37872a98 0xffff818a`3afa0678
03 8 ffff818a`378b81e8 00000c02`00000184 0xffff818a`37872a98
04 8 ffff818a`378b81f0 00000158`8c040001 0x00000c02`00000184
05 8 ffff818a`378b81f8 00000000`00000168 0x00000158`8c040001
06 8 ffff818a`378b8200 01440002`00000014 0x168
07 8 ffff818a`378b8208 00181000`0000000b 0x01440002`00000014
08 8 ffff818a`378b8210 00000201`00020019 0x00181000`0000000b
09 8 ffff818a`378b8218 00000020`05000000 0x00000201`00020019
0a 8 ffff818a`378b8220 00181a00`00000221 0x00000020`05000000
0b 8 ffff818a`378b8228 00000201`80000000 0x00181a00`00000221
0c 8 ffff818a`378b8230 00000020`05000000 0x00000201`80000000
0d 8 ffff818a`378b8238 00181000`00000221 0x00000020`05000000
0e 8 ffff818a`378b8240 00000201`000f003f 0x00181000`00000221
0f 8 ffff818a`378b8248 00000020`05000000 0x00000201`000f003f
10 8 ffff818a`378b8250 00181a00`00000220 0x00000020`05000000
11 8 ffff818a`378b8258 00000201`10000000 0x00181a00`00000220
12 8 ffff818a`378b8260 00000020`05000000 0x00000201`10000000
13 8 ffff818a`378b8268 00141000`00000220 0x00000020`05000000
14 8 ffff818a`378b8270 00000101`000f003f 0x00141000`00000220
15 8 ffff818a`378b8278 00000012`05000000 0x00000101`000f003f
16 8 ffff818a`378b8280 10000000`00141a00 0x00000012`05000000
17 8 ffff818a`378b8288 05000000`00000101 0x10000000`00141a00
18 8 ffff818a`378b8290 00141a00`00000012 0x05000000`00000101
19 8 ffff818a`378b8298 00000101`10000000 0x00141a00`00000012
1a 8 ffff818a`378b82a0 00000000`03000000 0x00000101`10000000
1b 8 ffff818a`378b82a8 00020019`00181000 0x3000000
1c 8 ffff818a`378b82b0 0f000000`00000201 0x00020019`00181000
1d 8 ffff818a`378b82b8 00000001`00000002 0x0f000000`00000201
1e 8 ffff818a`378b82c0 80000000`00181a00 0x00000001`00000002
1f 8 ffff818a`378b82c8 0f000000`00000201 0x80000000`00181a00
20 8 ffff818a`378b82d0 00000001`00000002 0x0f000000`00000201
21 8 ffff818a`378b82d8 00020019`00381000 0x00000001`00000002
22 8 ffff818a`378b82e0 0f000000`00000a01 0x00020019`00381000
23 8 ffff818a`378b82e8 00000400`00000003 0x0f000000`00000a01
24 8 ffff818a`378b82f0 4c63bc6c`3f8031b0 0x00000400`00000003
25 8 ffff818a`378b82f8 62a10c97`d150e03c 0x4c63bc6c`3f8031b0
26 8 ffff818a`378b8300 c0a67a7e`19cb010f 0x62a10c97`d150e03c
27 8 ffff818a`378b8308 ce0ca319`f197e6fa 0xc0a67a7e`19cb010f
28 8 ffff818a`378b8310 80000000`00381a00 0xce0ca319`f197e6fa
29 8 ffff818a`378b8318 0f000000`00000a01 0x80000000`00381a00
2a 8 ffff818a`378b8320 00000400`00000003 0x0f000000`00000a01
2b 8 ffff818a`378b8328 4c63bc6c`3f8031b0 0x00000400`00000003
2c 8 ffff818a`378b8330 62a10c97`d150e03c 0x4c63bc6c`3f8031b0
2d 8 ffff818a`378b8338 c0a67a7e`19cb010f 0x62a10c97`d150e03c
2e 8 ffff818a`378b8340 ce0ca319`f197e6fa 0xc0a67a7e`19cb010f
2f 8 ffff818a`378b8348 05000000`00000201 0xce0ca319`f197e6fa
30 8 ffff818a`378b8350 00000220`00000020 0x05000000`00000201
31 8 ffff818a`378b8358 05000000`00000501 0x00000220`00000020
32 8 ffff818a`378b8360 14a37f11`00000015 0x05000000`00000501
33 8 ffff818a`378b8368 8f36aed8`409d7dc9 0x14a37f11`00000015
34 8 ffff818a`378b8370 00000000`00000201 0x8f36aed8`409d7dc9
35 8 ffff818a`378b8378 00000000`00000000 0x201

Continue reading...
 
You must log in or register to reply here.

Similar threads

L
Windows 10 Debug of memory.dmp help please.
Replies
0
Views
21
LPN46&2
L
J
Windows 10 Random Forced Hibernations. Asus w/ AMD and NVIDIA
Replies
0
Views
71
JoBeefus
J
P
Windows 10 Recurrent crashes
Replies
0
Views
19
PJ B
P
S
Windows 10 BSOD's with codes "IRQL_NOT_LESS_OR_EQUAL", "CRITICAL_PROCESS_DIED" and "PAGE_FAULT_IN_NONPAGED_AREA"
Replies
0
Views
57
smape
S
B
Windows 10 BSOD HOW CAN I FIX THIS
Replies
0
Views
97
breth_x
B
Back
Top