Been getting random BSOD’s with Avast Svc (apparently) the cause:
Followup: MachineOwner
2: kd> !analyze -v
-
*
-
Bugcheck Analysis *
-
*
SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the bugcheck
Arg2: fffff80002f1841f, Address of the instruction which caused the bugcheck
Arg3: fffff88003bba140, Address of the context record for the exception that caused the bugcheck
Arg4: 0000000000000000, zero.
Debugging Details:
EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.
FAULTING_IP:
nt!RtlCompareUnicodeString+b
fffff800`02f1841f 0fb711 movzx edx,word ptr [rcx]
CONTEXT: fffff88003bba140 – (.cxr 0xfffff88003bba140)
rax=fffff88002cedd30 rbx=000000000b4adfc0 rcx=00000000012b0000
rdx=fffff88002cedd30 rsi=0000000000000000 rdi=0000000020786e53
rip=fffff80002f1841f rsp=fffff88003bbab20 rbp=000000000000175c
r8=0000000000000001 r9=0000000000000008 r10=0000000000000008
r11=fffff88003bbab40 r12=0000000000000000 r13=000000000b4aeba0
r14=000000000b4aec70 r15=0000000075632450
iopl=0 nv up ei ng nz na pe nc
cs=0010 ss=0018 ds=002b es=002b fs=0053 gs=002b efl=00010282
nt!RtlCompareUnicodeString+0xb:
fffff80002f1841f 0fb711 movzx edx,word ptr [rcx] ds:002b:00000000
012b0000=???
Resetting default scope
DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT
BUGCHECK_STR: 0x3B
PROCESS_NAME: AvastSvc.exe
CURRENT_IRQL: 0
LAST_CONTROL_TRANSFER: from fffff88002c3cb3a to fffff80002f1841f
STACK_TEXT:
fffff88003bbab20 fffff880
02c3cb3a : 000000000b4adfc0 00000000
00000000 0000000020786e53 00000000
00000000 : nt!RtlCompareUnicodeString+0xb
fffff88003bbab60 fffff800
02c7ae53 : fffffa80076e6b50 fffff880
03bbaca0 000000000b4adfa8 00000980
00000000 : aswSnx+0x2cb3a
fffff88003bbabb0 00000000
77b513ba : 0000000000000000 00000000
00000000 0000000000000000 00000000
00000000 : nt!KiSystemServiceCopyEnd+0x13
000000000b4adf88 00000000
00000000 : 0000000000000000 00000000
00000000 0000000000000000 00000000
00000000 : 0x77b513ba
FOLLOWUP_IP:
aswSnx+2cb3a
fffff880`02c3cb3a 85c0 test eax,eax
SYMBOL_STACK_INDEX: 1
SYMBOL_NAME: aswSnx+2cb3a
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: aswSnx
IMAGE_NAME: aswSnx.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 525c2356
STACK_COMMAND: .cxr 0xfffff88003bba140 ; kb
FAILURE_BUCKET_ID: X64_0x3B_aswSnx+2cb3a
BUCKET_ID: X64_0x3B_aswSnx+2cb3a
Followup: MachineOwner