Advertisement

02.25.2008 at 10:31AM PST, ID: 23191086
[x]
Attachment Details

blue screen appears and system restarts

Asked by Desire2change in Windows XP Operating System

Tags: driver stack overran

whenever i connect to internet, rather msn msgr the system shows a blue screen and error message and restarts.
I ran a WinDbg and its results are :

Start Free Trial 
1:
2:
3:
4:
5:
6:
7:
8:
9:
10:
11:
12:
13:
14:
15:
16:
17:
18:
19:
20:
21:
22:
23:
24:
25:
26:
27:
28:
29:
30:
31:
32:
33:
34:
35:
36:
37:
38:
39:
40:
41:
42:
43:
44:
45:
46:
47:
48:
49:
50:
51:
52:
53:
54:
55:
56:
57:
58:
59:
60:
61:
62:
63:
64:
65:
66:
67:
68:
69:
70:
71:
72:
73:
74:
75:
76:
77:
78:

0: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************
 
DRIVER_OVERRAN_STACK_BUFFER (f7)
A driver has overrun a stack-based buffer.  This overrun could potentially
allow a malicious user to gain control of this machine.
DESCRIPTION
A driver overran a stack-based buffer (or local variable) in a way that would
have overwritten the function's return address and jumped back to an arbitrary
address when the function returned.  This is the classic "buffer overrun"
hacking attack and the system has been brought down to prevent a malicious user
from gaining complete control of it.
Do a kb to get a stack backtrace -- the last routine on the stack before the
buffer overrun handlers and bugcheck call is the one that overran its local
variable(s).
Arguments:
Arg1: 00000000, Actual security check cookie from the stack
Arg2: 00000000, Expected security check cookie
Arg3: 00000000, Complement of the expected security check cookie
Arg4: 00000000, zero
 
Debugging Details:
------------------
 
 
 
 
DEFAULT_BUCKET_ID:  GS_FALSE_POSITIVE_MISSING_GSFRAME
 
CUSTOMER_CRASH_COUNT:  12
 
BUGCHECK_STR:  0xF7
 
PROCESS_NAME:  msnmsgr.exe
 
LAST_CONTROL_TRANSFER:  from f88aef5c to 804f9deb
 
STACK_TEXT:  
a9f0a898 f88aef5c 000000f7 00000000 00000000 nt!KeBugCheckEx+0x1b
WARNING: Stack unwind information not available. Following frames may be wrong.
a9f0aa6c 80581f6e 82f11158 82c33c04 a9f0ac04 ZVONLINE+0x1f5c
a9f0ab4c 805bddc0 82f11170 00000000 82c33b60 nt!IopParseDevice+0xa12
a9f0abc4 805ba448 00000000 a9f0ac04 00000040 nt!ObpLookupObjectName+0x53c
a9f0ac18 80574ec1 00000000 00000000 9768b801 nt!ObOpenObjectByName+0xea
a9f0ac94 80575838 0349f5bc 00110180 0349f4d0 nt!IopCreateFile+0x407
a9f0acf0 80577f02 0349f5bc 00110180 0349f4d0 nt!IoCreateFile+0x8e
a9f0ad30 8054086c 0349f5bc 00110180 0349f4d0 nt!NtCreateFile+0x30
a9f0ad30 7c90eb94 0349f5bc 00110180 0349f4d0 nt!KiFastCallEntry+0xfc
0349f48c 00000000 00000000 00000000 00000000 0x7c90eb94
 
 
STACK_COMMAND:  kb
 
FOLLOWUP_IP: 
ZVONLINE+1f5c
f88aef5c ??              ???
 
SYMBOL_STACK_INDEX:  1
 
SYMBOL_NAME:  ZVONLINE+1f5c
 
FOLLOWUP_NAME:  MachineOwner
 
MODULE_NAME: ZVONLINE
 
IMAGE_NAME:  ZVONLINE.SYS
 
DEBUG_FLR_IMAGE_TIMESTAMP:  4631c278
 
FAILURE_BUCKET_ID:  0xF7_MISSING_GSFRAME_ZVONLINE+1f5c
 
BUCKET_ID:  0xF7_MISSING_GSFRAME_ZVONLINE+1f5c
 
Followup: MachineOwner
[+][-]02.25.2008 at 10:45AM PST, ID: 20978063

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]02.25.2008 at 10:55AM PST, ID: 20978143

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]02.25.2008 at 10:55AM PST, ID: 20978149

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: Windows XP Operating System
Tags: driver stack overran
Sign Up Now!
Solution Provided By: johnb6767
Participating Experts: 4
Solution Grade: A
 
 
[+][-]02.26.2008 at 01:27AM PST, ID: 20982725

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]02.26.2008 at 06:39AM PST, ID: 20984624

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]03.21.2008 at 07:10AM PDT, ID: 21179955

Experts Exchange has a courteous staff of administrators who help members get the most out of the website by means of administrative comments like this one.

Start your 7-day free trial to view this Administrative Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628