Oyuna girerken KERNEL_MODE_HEAP_CORRUPTION hatası

AEnic31 · 27 Mayıs 2023

Merhaba. Lenovo Ideapad Gaming 3 laptopum var. İçinde Ryzen 5 5800H işlemci, RTX 3060 6 GB (90 Watt) ekran kartı ve 8x2 16 GB RAM var. Tom Clancy's Rainbow Six: Siege oyununa girmeye çalıştığımda KERNEL_MODE_HEAP_CORRUPTION mavi ekran hatası alıyorum. Yardımcı olabilir misiniz?

DMP dosyaları ektedir:

DMP DosyalarÄ±.rar

drive.google.com

Şimdiden teşekkür ederim.

EgeN7 · 27 Mayıs 2023

Merhaba,

BEDaisy.sys = BattlEye'dan kaynaklanıyor.

Özellikle Tarkov'da çok rastlanan bir sorunmuş.

- BattlEye denetim masasından kaldırılabilen bir anti-cheat ise oradan silin.

- Bir de oyunun yüklü olduğu dizine gidip BattlEye klasörünü silin.

- Sildikten sonra hangi platformdan giriyorsanız onun kütüphanesini açıp R6 oyun dosyalarının bütünlüğünü doğrulayın (Steam vs.).

- Bu hata bazen BattlEye üçüncü parti anti-virüs vb. programlarıyla çakışınca oluşabiliyor. Bu tip programları mümkün olduğunca kapatın, hatta silin.

- Mesela biri iRacing'de kullandığı Fanatec pedallar takılıyken oyuna girmeye çalışmış. Tamamen alakasız aslında değil mi? Ama Tarkov'da mavi ekran almış. Pedalları PC'den sökünce düzelmiş. Yani ekstra aygıtlar ve sürücüleri ile de çakışabiliyor.

- BattlEye üçüncü parti uygulamaları hile olarak algılayıp oyunu açtırmıyor, hatta mavi ekrana sebebiyet verebiliyor.

Döküm:

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_HEAP_CORRUPTION (13a)
The kernel mode heap manager has detected corruption in a heap.
Arguments:
Arg1: 0000000000000011, Type of corruption detected
Arg2: ffffbb0a6cc02140, Address of the heap that reported the corruption
Arg3: ffffbb0a8e47b4b0, Address at which the corruption was detected
Arg4: 0000000000000000

Debugging Details:
------------------

fffff8025e91c468: Unable to get MiVisibleState
Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
HeapDbgInitExtension Failed

KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 3750

    Key  : Analysis.Elapsed.mSec
    Value: 3882

    Key  : Analysis.IO.Other.Mb
    Value: 0

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 0

    Key  : Analysis.Init.CPU.mSec
    Value: 171

    Key  : Analysis.Init.Elapsed.mSec
    Value: 11425

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 143

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x13a

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x6fa2e3fd

    Key  : Failure.Bucket
    Value: 0x13a_11_BE___BEDaisy!unknown_function

    Key  : Failure.Hash
    Value: {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  13a

BUGCHECK_P1: 11

BUGCHECK_P2: ffffbb0a6cc02140

BUGCHECK_P3: ffffbb0a8e47b4b0

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-12437-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

POOL_ADDRESS: Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
unable to get nt!MmSpecialPagesInUse
 ffffbb0a8e47b4b0

FREED_POOL_TAG:  BE__

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  RainbowSix.exe

STACK_TEXT:
ffffe403`9e0d73a8 fffff802`5e1a4084     : 00000000`0000013a 00000000`00000011 ffffbb0a`6cc02140 ffffbb0a`8e47b4b0 : nt!KeBugCheckEx
ffffe403`9e0d73b0 fffff802`5e1a40e4     : 00000000`00000011 00000000`00000000 ffffbb0a`6cc02140 ffffbb0a`7f8f6d20 : nt!RtlpHeapHandleError+0x40
ffffe403`9e0d73f0 fffff802`5e1a3d01     : 00000000`01b00030 ffffffff`ffffffff fffff802`af14c7a0 00000000`00000012 : nt!RtlpHpHeapHandleError+0x58
ffffe403`9e0d7420 fffff802`5e0aeb9e     : fffff802`5dc00000 ffffbb0a`8b83b190 ffffbb0a`6cc02140 00000000`00000000 : nt!RtlpLogHeapFailure+0x45
ffffe403`9e0d7450 fffff802`5de41689     : ffffbb0a`6cc02380 ffffbb0a`6cc020ff fffff802`5dc00000 ffffbb0a`00000000 : nt!RtlpHpLfhSubsegmentFreeBlock+0x19b2de
ffffe403`9e0d74e0 fffff802`5e69e1b0     : ffffbb0a`8e47b4b0 00000000`00000002 00000000`00000000 00000000`00000001 : nt!RtlpHpFreeHeap+0x159
ffffe403`9e0d7580 fffff802`d15639f3     : 00000000`00004542 ffff930e`26029660 fffffec8`00000002 00000000`00000030 : nt!ExFreePoolWithTag+0x1a0
ffffe403`9e0d7610 00000000`00004542     : ffff930e`26029660 fffffec8`00000002 00000000`00000030 00000000`00000000 : BEDaisy+0x3239f3
ffffe403`9e0d7618 ffff930e`26029660     : fffffec8`00000002 00000000`00000030 00000000`00000000 ffffbb0a`7f8f6d20 : 0x4542
ffffe403`9e0d7620 fffffec8`00000002     : 00000000`00000030 00000000`00000000 ffffbb0a`7f8f6d20 00000000`00000013 : 0xffff930e`26029660
ffffe403`9e0d7628 00000000`00000030     : 00000000`00000000 ffffbb0a`7f8f6d20 00000000`00000013 ffffbb0a`8c697bf0 : 0xfffffec8`00000002
ffffe403`9e0d7630 00000000`00000000     : ffffbb0a`7f8f6d20 00000000`00000013 ffffbb0a`8c697bf0 fffff802`5e90c338 : 0x30


SYMBOL_NAME:  BEDaisy+3239f3

MODULE_NAME: BEDaisy

IMAGE_NAME:  BEDaisy.sys

STACK_COMMAND:  .cxr; .ecxr ; kb

BUCKET_ID_FUNC_OFFSET:  3239f3

FAILURE_BUCKET_ID:  0x13a_11_BE___BEDaisy!unknown_function

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

Followup:     MachineOwner
---------

AEnic31 · 27 Mayıs 2023

EgeN7 dedi:

Merhaba,

BEDaisy.sys = BattlEye'dan kaynaklanıyor.

Özellikle Tarkov'da çok rastlanan bir sorunmuş.

- BattlEye denetim masasından kaldırılabilen bir anti-cheat ise oradan silin.

- Bir de oyunun yüklü olduğu dizine gidip BattlEye klasörünü silin.

- Sildikten sonra hangi platformdan giriyorsanız onun kütüphanesini açıp R6 oyun dosyalarının bütünlüğünü doğrulayın (Steam vs.).

- Bu hata bazen BattlEye üçüncü parti anti-virüs vb. programlarıyla çakışınca oluşabiliyor. Bu tip programları mümkün olduğunca kapatın, hatta silin.

- Mesela biri iRacing'de kullandığı Fanatec pedallar takılıyken oyuna girmeye çalışmış. Tamamen alakasız aslında değil mi? Ama Tarkov'da mavi ekran almış. Pedalların PC'den sökünce düzelmiş. Yani ekstra aygıtlar ve sürücüleri ile de çakışabiliyor.

- BattlEye üçüncü parti uygulamaları hile olarak algılayıp oyunu açtırmıyor, hatta mavi ekrana sebebiyet verebiliyor.

Döküm:

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_HEAP_CORRUPTION (13a)
The kernel mode heap manager has detected corruption in a heap.
Arguments:
Arg1: 0000000000000011, Type of corruption detected
Arg2: ffffbb0a6cc02140, Address of the heap that reported the corruption
Arg3: ffffbb0a8e47b4b0, Address at which the corruption was detected
Arg4: 0000000000000000

Debugging Details:
------------------

fffff8025e91c468: Unable to get MiVisibleState
Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
HeapDbgInitExtension Failed

KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 3750

    Key  : Analysis.Elapsed.mSec
    Value: 3882

    Key  : Analysis.IO.Other.Mb
    Value: 0

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 0

    Key  : Analysis.Init.CPU.mSec
    Value: 171

    Key  : Analysis.Init.Elapsed.mSec
    Value: 11425

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 143

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x13a

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x6fa2e3fd

    Key  : Failure.Bucket
    Value: 0x13a_11_BE___BEDaisy!unknown_function

    Key  : Failure.Hash
    Value: {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  13a

BUGCHECK_P1: 11

BUGCHECK_P2: ffffbb0a6cc02140

BUGCHECK_P3: ffffbb0a8e47b4b0

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-12437-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

POOL_ADDRESS: Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
unable to get nt!MmSpecialPagesInUse
 ffffbb0a8e47b4b0

FREED_POOL_TAG:  BE__

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  RainbowSix.exe

STACK_TEXT:
ffffe403`9e0d73a8 fffff802`5e1a4084     : 00000000`0000013a 00000000`00000011 ffffbb0a`6cc02140 ffffbb0a`8e47b4b0 : nt!KeBugCheckEx
ffffe403`9e0d73b0 fffff802`5e1a40e4     : 00000000`00000011 00000000`00000000 ffffbb0a`6cc02140 ffffbb0a`7f8f6d20 : nt!RtlpHeapHandleError+0x40
ffffe403`9e0d73f0 fffff802`5e1a3d01     : 00000000`01b00030 ffffffff`ffffffff fffff802`af14c7a0 00000000`00000012 : nt!RtlpHpHeapHandleError+0x58
ffffe403`9e0d7420 fffff802`5e0aeb9e     : fffff802`5dc00000 ffffbb0a`8b83b190 ffffbb0a`6cc02140 00000000`00000000 : nt!RtlpLogHeapFailure+0x45
ffffe403`9e0d7450 fffff802`5de41689     : ffffbb0a`6cc02380 ffffbb0a`6cc020ff fffff802`5dc00000 ffffbb0a`00000000 : nt!RtlpHpLfhSubsegmentFreeBlock+0x19b2de
ffffe403`9e0d74e0 fffff802`5e69e1b0     : ffffbb0a`8e47b4b0 00000000`00000002 00000000`00000000 00000000`00000001 : nt!RtlpHpFreeHeap+0x159
ffffe403`9e0d7580 fffff802`d15639f3     : 00000000`00004542 ffff930e`26029660 fffffec8`00000002 00000000`00000030 : nt!ExFreePoolWithTag+0x1a0
ffffe403`9e0d7610 00000000`00004542     : ffff930e`26029660 fffffec8`00000002 00000000`00000030 00000000`00000000 : BEDaisy+0x3239f3
ffffe403`9e0d7618 ffff930e`26029660     : fffffec8`00000002 00000000`00000030 00000000`00000000 ffffbb0a`7f8f6d20 : 0x4542
ffffe403`9e0d7620 fffffec8`00000002     : 00000000`00000030 00000000`00000000 ffffbb0a`7f8f6d20 00000000`00000013 : 0xffff930e`26029660
ffffe403`9e0d7628 00000000`00000030     : 00000000`00000000 ffffbb0a`7f8f6d20 00000000`00000013 ffffbb0a`8c697bf0 : 0xfffffec8`00000002
ffffe403`9e0d7630 00000000`00000000     : ffffbb0a`7f8f6d20 00000000`00000013 ffffbb0a`8c697bf0 fffff802`5e90c338 : 0x30


SYMBOL_NAME:  BEDaisy+3239f3

MODULE_NAME: BEDaisy

IMAGE_NAME:  BEDaisy.sys

STACK_COMMAND:  .cxr; .ecxr ; kb

BUCKET_ID_FUNC_OFFSET:  3239f3

FAILURE_BUCKET_ID:  0x13a_11_BE___BEDaisy!unknown_function

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

Followup:     MachineOwner
---------

Teşekkür ederim. BattleEye Rainbow Six Siege ile gelen zorunlu bir anti-cheat yazılımı. Ancak dediklerinizi yapmayı deneyeceğim. Gerekirse kaldırıp tekrar yükleyeceğim. Çözümleri yarın deneyeceğim.

EgeN7 · 27 Mayıs 2023

Tabii ki zorunlu, sildikten sonra yüklemeyin demek istemedim.
Kaldırdıktan sonra dosyaları doğrulayınca tekrar yüklenecek zaten.
Bu şekilde çözülmezse demek ki BattlEye sürücüsünün kendisinde bir bozukluk yok.

Üçüncü parti programlarınızdan biriyle çakışıyor yüksek ihtimalle. Özellikle ağ trafiğini izleyen, belki firewall/anti-virüs gibi programlar.

AEnic31 · 27 Mayıs 2023

EgeN7 dedi:
Tabii ki zorunlu, sildikten sonra yüklemeyin demek istemedim.
Kaldırdıktan sonra dosyaları doğrulayınca tekrar yüklenecek zaten.
Bu şekilde çözülmezse demek ki BattlEye sürücüsünün kendisinde bir bozukluk yok.

Üçüncü parti programlarınızdan biriyle çakışıyor yüksek ihtimalle. Özellikle ağ trafiğini izleyen, belki firewall/anti-virüs gibi programlar.

Merhaba. Battle-Eye'ı oyunun dosyası içindeki "Uninstall.bat" dosyasından kaldırıp klasörü tamamen sildim. Sonra oyun bütünlüğünü doğrulayıp Battle-Eye'ı tekrar yükledim ancak sorunum düzelmedi. Oyuna girdiğimde ilk seferde oyunum crash verdi, ikincisinde yine aynı hatayı aldım. Yeni oluşan mini dump dosyasıyla birlikte mevzubahis DMP dosyalarını eke koyuyorum.

Minidump DosyalarÄ±.rar

drive.google.com

Bilgisayarımda herhangi bir 3. parti program kullanmıyorum. Antivirüs olarak Microsoft Defender var. Onun haricinde dediğim gibi 3. parti bir Firewall izleyecek programım yok. Dün bilgisayarımın fan hızını ayarlayabilmek adına SpeedFan programını kurdum, ancak çalışmayınca kaldırdım. Sizce sorun neyden kaynaklı olabilir?

Edit: Bilgisayarımda dün sfc /scannow komutunu da kullandım. Herhangi bir hata tespit edilmemişti.

EgeN7 · 27 Mayıs 2023

Sanal makine kullanıyor muydunuz bu arada? Windows'un Hyper-V özelliği açık.

Hyper-V özelliğinin kapatılması gerekiyormuş. Bazı oyuncular sanal makine kullanarak oyun açığı bulma ve hile yapma veya buna benzer girişimlerde bulunmuş sanırım daha önce. Bu yüzden böyle bir önlem almışlar. Hikayenin gerisini detaylı olarak inceleyemedim. Kısaca, BattlEye ve Hyper-V birbirlerini pek sevmiyor.

Anti-hile yazılımları aralarında kendilerini "Gold-standard" olarak tanımlamalarının sebeplerinden biri de sanırım A'dan Z'ye açık oluşturabilecek her türlü özellik ve programın açık olmasına müsade etmemelerinden gibi görünüyor.

Aşağıdaki konuya gidip Hyper-V'yi kapatmaya çalışır mısınız? Birkaç yöntem var kapatmak için.

Çözüldü: Hyper-V nasıl kapatılır?

Hyper-V nasıl kapatılır?

www.technopat.net

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_HEAP_CORRUPTION (13a)
The kernel mode heap manager has detected corruption in a heap.
Arguments:
Arg1: 0000000000000011, Type of corruption detected
Arg2: ffffaf09f2e02140, Address of the heap that reported the corruption
Arg3: ffffaf0a1aacc0e0, Address at which the corruption was detected
Arg4: 0000000000000000

Debugging Details:
------------------

fffff8046951c468: Unable to get MiVisibleState
Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
HeapDbgInitExtension Failed

KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 3281

    Key  : Analysis.Elapsed.mSec
    Value: 3473

    Key  : Analysis.IO.Other.Mb
    Value: 0

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 0

    Key  : Analysis.Init.CPU.mSec
    Value: 233

    Key  : Analysis.Init.Elapsed.mSec
    Value: 6643

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 151

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x13a

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x7a14e4ed

    Key  : Failure.Bucket
    Value: 0x13a_11_BE___BEDaisy!unknown_function

    Key  : Failure.Hash
    Value: {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  13a

BUGCHECK_P1: 11

BUGCHECK_P2: ffffaf09f2e02140

BUGCHECK_P3: ffffaf0a1aacc0e0

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-14484-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

POOL_ADDRESS: Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
unable to get nt!MmSpecialPagesInUse
 ffffaf0a1aacc0e0

FREED_POOL_TAG:  BE__

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  RainbowSix.exe

STACK_TEXT:
fffff286`11ae23a8 fffff804`68da4084     : 00000000`0000013a 00000000`00000011 ffffaf09`f2e02140 ffffaf0a`1aacc0e0 : nt!KeBugCheckEx
fffff286`11ae23b0 fffff804`68da40e4     : 00000000`00000011 00000000`00000000 ffffaf09`f2e02140 fffff804`e9b10000 : nt!RtlpHeapHandleError+0x40
fffff286`11ae23f0 fffff804`68da3d01     : 00000000`00f00030 ffffffff`ffffffff 26c59ba8`f95e7387 00000000`00000012 : nt!RtlpHpHeapHandleError+0x58
fffff286`11ae2420 fffff804`68caeb9e     : fffff804`68800000 ffffaf09`f98f5300 ffffaf09`f2e02140 00000000`00000000 : nt!RtlpLogHeapFailure+0x45
fffff286`11ae2450 fffff804`68a41689     : ffffaf09`f2e02380 ffffaf09`f2e020ff fffff804`68800000 ffffaf09`00000000 : nt!RtlpHpLfhSubsegmentFreeBlock+0x19b2de
fffff286`11ae24e0 fffff804`6929e1b0     : ffffaf0a`1aacc0e0 00000000`00000002 00000000`00000000 00000000`00000001 : nt!RtlpHpFreeHeap+0x159
fffff286`11ae2580 fffff804`e98939f3     : 00000000`00004542 ffffd18c`0b65cb90 fffff804`00000002 00000000`00000030 : nt!ExFreePoolWithTag+0x1a0
fffff286`11ae2610 00000000`00004542     : ffffd18c`0b65cb90 fffff804`00000002 00000000`00000030 00000000`00000000 : BEDaisy+0x3239f3
fffff286`11ae2618 ffffd18c`0b65cb90     : fffff804`00000002 00000000`00000030 00000000`00000000 ffffaf0a`146fc4e0 : 0x4542
fffff286`11ae2620 fffff804`00000002     : 00000000`00000030 00000000`00000000 ffffaf0a`146fc4e0 00000000`00000013 : 0xffffd18c`0b65cb90
fffff286`11ae2628 00000000`00000030     : 00000000`00000000 ffffaf0a`146fc4e0 00000000`00000013 ffffaf0a`169d3ac0 : 0xfffff804`00000002
fffff286`11ae2630 00000000`00000000     : ffffaf0a`146fc4e0 00000000`00000013 ffffaf0a`169d3ac0 fffff804`6950c338 : 0x30


SYMBOL_NAME:  BEDaisy+3239f3

MODULE_NAME: BEDaisy

IMAGE_NAME:  BEDaisy.sys

STACK_COMMAND:  .cxr; .ecxr ; kb

BUCKET_ID_FUNC_OFFSET:  3239f3

FAILURE_BUCKET_ID:  0x13a_11_BE___BEDaisy!unknown_function

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

Followup:     MachineOwner
---------

AEnic31 · 27 Mayıs 2023

EgeN7 dedi:

Sanal makine kullanıyor muydunuz bu arada? Windows'un Hyper-V özelliği açık.

Hyper-V özelliğinin kapatılması gerekiyormuş. Bazı oyuncular sanal makine kullanarak oyun açığı bulma ve hile yapma veya buna benzer girişimlerde bulunmuş sanırım daha önce. Bu yüzden böyle bir önlem almışlar. Hikayenin gerisini detaylı olarak inceleyemedim. Kısaca, BattlEye ve Hyper-V birbirlerini pek sevmiyor.

Anti-hile yazılımları aralarında kendilerini "Gold-standard" olarak tanımlamalarının sebeplerinden biri de sanırım A'dan Z'ye açık oluşturabilecek her türlü özellik ve programın açık olmasına müsade etmemelerinden gibi görünüyor.

Aşağıdaki konuya gidip Hyper-V'yi kapatmaya çalışır mısınız? Birkaç yöntem var kapatmak için.

Çözüldü: Hyper-V nasıl kapatılır?

Hyper-V nasıl kapatılır?

www.technopat.net

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_HEAP_CORRUPTION (13a)
The kernel mode heap manager has detected corruption in a heap.
Arguments:
Arg1: 0000000000000011, Type of corruption detected
Arg2: ffffaf09f2e02140, Address of the heap that reported the corruption
Arg3: ffffaf0a1aacc0e0, Address at which the corruption was detected
Arg4: 0000000000000000

Debugging Details:
------------------

fffff8046951c468: Unable to get MiVisibleState
Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
HeapDbgInitExtension Failed

KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 3281

    Key  : Analysis.Elapsed.mSec
    Value: 3473

    Key  : Analysis.IO.Other.Mb
    Value: 0

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 0

    Key  : Analysis.Init.CPU.mSec
    Value: 233

    Key  : Analysis.Init.Elapsed.mSec
    Value: 6643

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 151

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x13a

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x7a14e4ed

    Key  : Failure.Bucket
    Value: 0x13a_11_BE___BEDaisy!unknown_function

    Key  : Failure.Hash
    Value: {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  13a

BUGCHECK_P1: 11

BUGCHECK_P2: ffffaf09f2e02140

BUGCHECK_P3: ffffaf0a1aacc0e0

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-14484-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

POOL_ADDRESS: Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
unable to get nt!MmSpecialPagesInUse
 ffffaf0a1aacc0e0

FREED_POOL_TAG:  BE__

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  RainbowSix.exe

STACK_TEXT:
fffff286`11ae23a8 fffff804`68da4084     : 00000000`0000013a 00000000`00000011 ffffaf09`f2e02140 ffffaf0a`1aacc0e0 : nt!KeBugCheckEx
fffff286`11ae23b0 fffff804`68da40e4     : 00000000`00000011 00000000`00000000 ffffaf09`f2e02140 fffff804`e9b10000 : nt!RtlpHeapHandleError+0x40
fffff286`11ae23f0 fffff804`68da3d01     : 00000000`00f00030 ffffffff`ffffffff 26c59ba8`f95e7387 00000000`00000012 : nt!RtlpHpHeapHandleError+0x58
fffff286`11ae2420 fffff804`68caeb9e     : fffff804`68800000 ffffaf09`f98f5300 ffffaf09`f2e02140 00000000`00000000 : nt!RtlpLogHeapFailure+0x45
fffff286`11ae2450 fffff804`68a41689     : ffffaf09`f2e02380 ffffaf09`f2e020ff fffff804`68800000 ffffaf09`00000000 : nt!RtlpHpLfhSubsegmentFreeBlock+0x19b2de
fffff286`11ae24e0 fffff804`6929e1b0     : ffffaf0a`1aacc0e0 00000000`00000002 00000000`00000000 00000000`00000001 : nt!RtlpHpFreeHeap+0x159
fffff286`11ae2580 fffff804`e98939f3     : 00000000`00004542 ffffd18c`0b65cb90 fffff804`00000002 00000000`00000030 : nt!ExFreePoolWithTag+0x1a0
fffff286`11ae2610 00000000`00004542     : ffffd18c`0b65cb90 fffff804`00000002 00000000`00000030 00000000`00000000 : BEDaisy+0x3239f3
fffff286`11ae2618 ffffd18c`0b65cb90     : fffff804`00000002 00000000`00000030 00000000`00000000 ffffaf0a`146fc4e0 : 0x4542
fffff286`11ae2620 fffff804`00000002     : 00000000`00000030 00000000`00000000 ffffaf0a`146fc4e0 00000000`00000013 : 0xffffd18c`0b65cb90
fffff286`11ae2628 00000000`00000030     : 00000000`00000000 ffffaf0a`146fc4e0 00000000`00000013 ffffaf0a`169d3ac0 : 0xfffff804`00000002
fffff286`11ae2630 00000000`00000000     : ffffaf0a`146fc4e0 00000000`00000013 ffffaf0a`169d3ac0 fffff804`6950c338 : 0x30


SYMBOL_NAME:  BEDaisy+3239f3

MODULE_NAME: BEDaisy

IMAGE_NAME:  BEDaisy.sys

STACK_COMMAND:  .cxr; .ecxr ; kb

BUCKET_ID_FUNC_OFFSET:  3239f3

FAILURE_BUCKET_ID:  0x13a_11_BE___BEDaisy!unknown_function

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

Followup:     MachineOwner
---------

Merhaba. Ne yazık ki Hyper-V'yi kapatma çözümü de işe yaramadı...

Başka bir tavsiyeniz, buna sorun olabilecek bir şey var mıdır? Bilgisayarıma format atmayı göze aldım şu an...

Ekleme:

Tekrardan dump dosyası oluştu. Onu da buraya gönderiyorum.

052723-14343-01.dmp

drive.google.com

EgeN7 · 27 Mayıs 2023

Bu sefer başka bir bugcheck gelmiş. Ekran kartı sürücüsü ile ilgili. Kaynak olarak Windows görünüyor ancak genelde suçu Windows sürücülerinde aramıyoruz. İşletim sisteminde bozukluklar meydana geldiyse orası ayrı konu tabii ki.

Bu demek oluyor ki NVIDIA ekran kartı sürücüsüne bakacağız.

SYSTEM_SERVICE_EXCEPTION (3b) ve cdd.dll

Name:	cdd.dll
Info:	Canonical Display Driver
Source:	Windows Update

NVIDIA sürücülerini DDU ile temizleyin, daha sonra tekrar yükleyin.

- Güncel sürücüyü indirin: Version:532.03 WHQL
- İnterneti kesin.
- Daha sonra DDU ile Sürücü Kaldırma rehberini takip edin.
- Sürücüyü kaldırdıktan sonra bilgisayar yeniden başlayacak.
- Bilgisayar açılınca indirdiğiniz sürücüyü kurun.
- İşlemler bitince interneti bağlayın.

Bu arada bu minidump'a göre Hyper-V hala açık görünüyor, bilmiyorum belki de Hyper-V'yi kapatmadan önce mavi ekran aldınız. Veya, daha önce Hyper-V'yi kapattığı halde açık kaldığını söyleyenler vardı. Kapatmayı sağlayan her türlü yola bakmanızda fayda var. Kısaca, Hyper-V ve sanal makine ile alakalı özellik ve araçları kapattığınızdan emin olun.

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the BugCheck
Arg2: fffff80010130734, Address of the instruction which caused the BugCheck
Arg3: ffffdc09d18b6630, Address of the context record for the exception that caused the BugCheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------


KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 2156

    Key  : Analysis.Elapsed.mSec
    Value: 9243

    Key  : Analysis.IO.Other.Mb
    Value: 6

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 7

    Key  : Analysis.Init.CPU.mSec
    Value: 171

    Key  : Analysis.Init.Elapsed.mSec
    Value: 9326

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 163

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x3b

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x7531b4f3

    Key  : Failure.Bucket
    Value: AV_cdd!CddBitmap::RemoveFromCddBitmapList

    Key  : Failure.Hash
    Value: {2d691f52-2051-554c-b0d3-4e31d98149a7}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  3b

BUGCHECK_P1: c0000005

BUGCHECK_P2: fffff80010130734

BUGCHECK_P3: ffffdc09d18b6630

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-14343-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

CONTEXT:  ffffdc09d18b6630 -- (.cxr 0xffffdc09d18b6630)
rax=0000000000000000 rbx=ffffba8967cb7720 rcx=7ffffffffffffffc
rdx=0000000000654b00 rsi=ffffba8967cb7080 rdi=0000000000000000
rip=fffff80010130734 rsp=ffffdc09d18b7050 rbp=ffffba8967cb7080
 r8=0000000000000000  r9=0000000000000000 r10=fffff80010130620
r11=ffff87fbc4600000 r12=0000000000000000 r13=000000000b0506d9
r14=0000000000000001 r15=000000000cddba5e
iopl=0         nv up ei pl zr na po nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00050246
nt!ExAcquireFastMutexUnsafe+0xe4:
fffff800`10130734 f00fba3700      lock btr dword ptr [rdi],0 ds:002b:00000000`00000000=????????
Resetting default scope

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  dwm.exe

STACK_TEXT:
ffffdc09`d18b7050 fffff800`1013063a     : 00000000`00000000 fffff800`75a01000 ffffa903`e62a7b00 ffff87fb`c4600000 : nt!ExAcquireFastMutexUnsafe+0xe4
ffffdc09`d18b7090 fffff9c5`9845845b     : fffff800`75a01000 fffff800`10150cfa ffffa903`d3c25a70 fffff800`3b1f10ed : nt!ExEnterCriticalRegionAndAcquireFastMutexUnsafe+0x1a
ffffdc09`d18b70c0 fffff9c5`98457389     : ffffa903`e62a7b00 fffff9c5`97480857 00000000`000006d9 fffff800`00000000 : cdd!CddBitmap::RemoveFromCddBitmapList+0x27
ffffdc09`d18b70f0 fffff9c5`98452d6d     : 00000000`00000001 ffffa903`e62a7b00 00000000`00000700 fffff800`75a01000 : cdd!CddBitmapHw::Release+0x79
ffffdc09`d18b71a0 fffff9c5`9747156d     : ffffa903`d3c25a70 fffff800`75a01000 ffffdc09`00000001 ffffa903`00000002 : cdd!DrvDeleteDeviceBitmapEx+0x7d
ffffdc09`d18b71d0 fffff9c5`975935e6     : fffff800`00000000 00000000`00000001 00000000`00000000 fffff9c5`00000001 : win32kbase!SURFACE::bDeleteSurface+0x1c3d
ffffdc09`d18b7400 fffff9c5`97521b75     : ffffa903`d0fce000 ffffdc09`d18b7480 00000000`000006d9 fffff800`7580a458 : win32kbase!vGarbageCollectObject<SURFREFGC>+0xaa
ffffdc09`d18b7460 fffff9c5`97463653     : 00000000`39040a05 00000000`0b0506d9 ffffa903`d427aa50 fffff9c5`974b11dc : win32kbase!GrepCloseCurrentProcess+0xcdd7d
ffffdc09`d18b74c0 fffff9c5`977b788d     : ffffa903`d3f874e0 ffffba89`5f9020c0 ffffa903`d3f874e0 ffffba89`5f9020c0 : win32kbase!GdiProcessCallout+0x243
ffffdc09`d18b7540 fffff9c5`974e98f1     : 00000000`00000000 00000000`00000001 ffffdc09`d18b7808 00000000`00000000 : win32kfull!W32pProcessCallout+0x8d
ffffdc09`d18b7580 fffff9c5`97b410cb     : 00000000`00000000 00000000`00000000 ffffba89`5599ed10 fffff800`10494648 : win32kbase!W32CalloutDispatch+0x3a1
ffffdc09`d18b76d0 fffff800`105869a1     : ffffdc09`d18b7808 00000000`00000000 fffff800`10a37c48 ffffa903`da3c7b60 : win32k!W32CalloutDispatchThunk+0x2b
ffffdc09`d18b7700 fffff800`10586903     : 00000000`00000000 ffffdc09`d18b78f9 00000000`00000000 00000000`00000000 : nt!ExCallCallBack+0x3d
ffffdc09`d18b7730 fffff800`104964c6     : ffffba89`5599ed10 00000000`00000000 ffffdc09`00000000 00000000`00000000 : nt!PsInvokeWin32Callout+0x33
ffffdc09`d18b7760 fffff800`105e96e8     : 00000000`c00001ad 00000000`00000001 00000000`00000000 ffffba89`5ef400c0 : nt!PspExitThread+0x54e
ffffdc09`d18b7860 fffff800`1000d497     : 00000000`00000000 00000000`00000000 000004ff`0010001b 00000000`00000000 : nt!KiSchedulerApcTerminate+0x38
ffffdc09`d18b78a0 fffff800`10231a90     : 000000fa`ded9f501 ffffdc09`d18b7960 00000000`00000000 00000000`00000000 : nt!KiDeliverApc+0x4a7
ffffdc09`d18b7960 fffff800`1024078f     : ffffba89`67cb7080 ffffba89`67c0bd60 00000000`00000000 00000000`00000000 : nt!KiInitiateUserApc+0x70
ffffdc09`d18b7aa0 00007ffd`9d90ecd4     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceExit+0x9f
000000fa`ded9f818 00000000`00000000     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ffd`9d90ecd4


SYMBOL_NAME:  cdd!CddBitmap::RemoveFromCddBitmapList+27

MODULE_NAME: cdd

IMAGE_NAME:  cdd.dll

IMAGE_VERSION:  10.0.22621.601

STACK_COMMAND:  .cxr 0xffffdc09d18b6630 ; kb

BUCKET_ID_FUNC_OFFSET:  27

FAILURE_BUCKET_ID:  AV_cdd!CddBitmap::RemoveFromCddBitmapList

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {2d691f52-2051-554c-b0d3-4e31d98149a7}

Followup:     MachineOwner
---------

AEnic31 · 27 Mayıs 2023

EgeN7 dedi:

Bu sefer başka bir bugcheck gelmiş. Ekran kartı sürücüsü ile ilgili. Kaynak olarak Windows görünüyor ancak genelde suçu Windows sürücülerinde aramıyoruz. İşletim sisteminde bozukluklar meydana geldiyse orası ayrı konu tabii ki.

Bu demek oluyor ki NVIDIA ekran kartı sürücüsüne bakacağız.

SYSTEM_SERVICE_EXCEPTION (3b) ve cdd.dll

Name:	cdd.dll
Info:	Canonical Display Driver
Source:	Windows Update

NVIDIA sürücülerini DDU ile temizleyin, daha sonra tekrar yükleyin.

- Güncel sürücüyü indirin: Version:532.03 WHQL
- İnterneti kesin.
- Daha sonra DDU ile Sürücü Kaldırma rehberini takip edin.
- Sürücüyü kaldırdıktan sonra bilgisayar yeniden başlayacak.
- Bilgisayar açılınca indirdiğiniz sürücüyü kurun.
- İşlemler bitince interneti bağlayın.

Bu arada bu minidump'a göre Hyper-V hala açık görünüyor, bilmiyorum belki de Hyper-V'yi kapatmadan önce mavi ekran aldınız. Veya, daha önce Hyper-V'yi kapattığı halde açık kaldığını söyleyenler vardı. Kapatmayı sağlayan her türlü yola bakmanızda fayda var. Kısaca, Hyper-V ve sanal makine ile alakalı özellik ve araçları kapattığınızdan emin olun.

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the BugCheck
Arg2: fffff80010130734, Address of the instruction which caused the BugCheck
Arg3: ffffdc09d18b6630, Address of the context record for the exception that caused the BugCheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------


KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 2156

    Key  : Analysis.Elapsed.mSec
    Value: 9243

    Key  : Analysis.IO.Other.Mb
    Value: 6

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 7

    Key  : Analysis.Init.CPU.mSec
    Value: 171

    Key  : Analysis.Init.Elapsed.mSec
    Value: 9326

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 163

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x3b

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x7531b4f3

    Key  : Failure.Bucket
    Value: AV_cdd!CddBitmap::RemoveFromCddBitmapList

    Key  : Failure.Hash
    Value: {2d691f52-2051-554c-b0d3-4e31d98149a7}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  3b

BUGCHECK_P1: c0000005

BUGCHECK_P2: fffff80010130734

BUGCHECK_P3: ffffdc09d18b6630

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-14343-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

CONTEXT:  ffffdc09d18b6630 -- (.cxr 0xffffdc09d18b6630)
rax=0000000000000000 rbx=ffffba8967cb7720 rcx=7ffffffffffffffc
rdx=0000000000654b00 rsi=ffffba8967cb7080 rdi=0000000000000000
rip=fffff80010130734 rsp=ffffdc09d18b7050 rbp=ffffba8967cb7080
 r8=0000000000000000  r9=0000000000000000 r10=fffff80010130620
r11=ffff87fbc4600000 r12=0000000000000000 r13=000000000b0506d9
r14=0000000000000001 r15=000000000cddba5e
iopl=0         nv up ei pl zr na po nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00050246
nt!ExAcquireFastMutexUnsafe+0xe4:
fffff800`10130734 f00fba3700      lock btr dword ptr [rdi],0 ds:002b:00000000`00000000=????????
Resetting default scope

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  dwm.exe

STACK_TEXT:
ffffdc09`d18b7050 fffff800`1013063a     : 00000000`00000000 fffff800`75a01000 ffffa903`e62a7b00 ffff87fb`c4600000 : nt!ExAcquireFastMutexUnsafe+0xe4
ffffdc09`d18b7090 fffff9c5`9845845b     : fffff800`75a01000 fffff800`10150cfa ffffa903`d3c25a70 fffff800`3b1f10ed : nt!ExEnterCriticalRegionAndAcquireFastMutexUnsafe+0x1a
ffffdc09`d18b70c0 fffff9c5`98457389     : ffffa903`e62a7b00 fffff9c5`97480857 00000000`000006d9 fffff800`00000000 : cdd!CddBitmap::RemoveFromCddBitmapList+0x27
ffffdc09`d18b70f0 fffff9c5`98452d6d     : 00000000`00000001 ffffa903`e62a7b00 00000000`00000700 fffff800`75a01000 : cdd!CddBitmapHw::Release+0x79
ffffdc09`d18b71a0 fffff9c5`9747156d     : ffffa903`d3c25a70 fffff800`75a01000 ffffdc09`00000001 ffffa903`00000002 : cdd!DrvDeleteDeviceBitmapEx+0x7d
ffffdc09`d18b71d0 fffff9c5`975935e6     : fffff800`00000000 00000000`00000001 00000000`00000000 fffff9c5`00000001 : win32kbase!SURFACE::bDeleteSurface+0x1c3d
ffffdc09`d18b7400 fffff9c5`97521b75     : ffffa903`d0fce000 ffffdc09`d18b7480 00000000`000006d9 fffff800`7580a458 : win32kbase!vGarbageCollectObject<SURFREFGC>+0xaa
ffffdc09`d18b7460 fffff9c5`97463653     : 00000000`39040a05 00000000`0b0506d9 ffffa903`d427aa50 fffff9c5`974b11dc : win32kbase!GrepCloseCurrentProcess+0xcdd7d
ffffdc09`d18b74c0 fffff9c5`977b788d     : ffffa903`d3f874e0 ffffba89`5f9020c0 ffffa903`d3f874e0 ffffba89`5f9020c0 : win32kbase!GdiProcessCallout+0x243
ffffdc09`d18b7540 fffff9c5`974e98f1     : 00000000`00000000 00000000`00000001 ffffdc09`d18b7808 00000000`00000000 : win32kfull!W32pProcessCallout+0x8d
ffffdc09`d18b7580 fffff9c5`97b410cb     : 00000000`00000000 00000000`00000000 ffffba89`5599ed10 fffff800`10494648 : win32kbase!W32CalloutDispatch+0x3a1
ffffdc09`d18b76d0 fffff800`105869a1     : ffffdc09`d18b7808 00000000`00000000 fffff800`10a37c48 ffffa903`da3c7b60 : win32k!W32CalloutDispatchThunk+0x2b
ffffdc09`d18b7700 fffff800`10586903     : 00000000`00000000 ffffdc09`d18b78f9 00000000`00000000 00000000`00000000 : nt!ExCallCallBack+0x3d
ffffdc09`d18b7730 fffff800`104964c6     : ffffba89`5599ed10 00000000`00000000 ffffdc09`00000000 00000000`00000000 : nt!PsInvokeWin32Callout+0x33
ffffdc09`d18b7760 fffff800`105e96e8     : 00000000`c00001ad 00000000`00000001 00000000`00000000 ffffba89`5ef400c0 : nt!PspExitThread+0x54e
ffffdc09`d18b7860 fffff800`1000d497     : 00000000`00000000 00000000`00000000 000004ff`0010001b 00000000`00000000 : nt!KiSchedulerApcTerminate+0x38
ffffdc09`d18b78a0 fffff800`10231a90     : 000000fa`ded9f501 ffffdc09`d18b7960 00000000`00000000 00000000`00000000 : nt!KiDeliverApc+0x4a7
ffffdc09`d18b7960 fffff800`1024078f     : ffffba89`67cb7080 ffffba89`67c0bd60 00000000`00000000 00000000`00000000 : nt!KiInitiateUserApc+0x70
ffffdc09`d18b7aa0 00007ffd`9d90ecd4     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceExit+0x9f
000000fa`ded9f818 00000000`00000000     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ffd`9d90ecd4


SYMBOL_NAME:  cdd!CddBitmap::RemoveFromCddBitmapList+27

MODULE_NAME: cdd

IMAGE_NAME:  cdd.dll

IMAGE_VERSION:  10.0.22621.601

STACK_COMMAND:  .cxr 0xffffdc09d18b6630 ; kb

BUCKET_ID_FUNC_OFFSET:  27

FAILURE_BUCKET_ID:  AV_cdd!CddBitmap::RemoveFromCddBitmapList

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {2d691f52-2051-554c-b0d3-4e31d98149a7}

Followup:     MachineOwner
---------

Merhaba. Hyper-V'yi kapatmak için emvai çeşit yol denedim. Ek olarak internetten araştırdığımda dediğiniz gibi Nvidia sürücüsünden kaynaklı olabileceğini öğrendim. 24 Mayıs'ta sürücü güncellemiştim ve ondan sonra da hiç Rainbow girmemiştim düne kadar. O yüzden eski sürüm sürücüye geçtim ancak bunu DDU ile değil, direk yenisini indirip üstüne yazdıracak şekilde yaptım.

Sorun hala devam ediyor ancak sorunla alakalı önemli olabileceğini düşündüğüm bi ayrıntı keşfettim. Oyun kendi başınayken çalışıyor, arka planda Chrome açınca çöküyor. Ekstra bi dump dosyası oluşmadı, sadece oyun çöktü. Bu konuda bilginiz var mı?

EgeN7 dedi:

Bu sefer başka bir bugcheck gelmiş. Ekran kartı sürücüsü ile ilgili. Kaynak olarak Windows görünüyor ancak genelde suçu Windows sürücülerinde aramıyoruz. İşletim sisteminde bozukluklar meydana geldiyse orası ayrı konu tabii ki.

Bu demek oluyor ki NVIDIA ekran kartı sürücüsüne bakacağız.

SYSTEM_SERVICE_EXCEPTION (3b) ve cdd.dll

Name:	cdd.dll
Info:	Canonical Display Driver
Source:	Windows Update

NVIDIA sürücülerini DDU ile temizleyin, daha sonra tekrar yükleyin.

- Güncel sürücüyü indirin: Version:532.03 WHQL
- İnterneti kesin.
- Daha sonra DDU ile Sürücü Kaldırma rehberini takip edin.
- Sürücüyü kaldırdıktan sonra bilgisayar yeniden başlayacak.
- Bilgisayar açılınca indirdiğiniz sürücüyü kurun.
- İşlemler bitince interneti bağlayın.

Bu arada bu minidump'a göre Hyper-V hala açık görünüyor, bilmiyorum belki de Hyper-V'yi kapatmadan önce mavi ekran aldınız. Veya, daha önce Hyper-V'yi kapattığı halde açık kaldığını söyleyenler vardı. Kapatmayı sağlayan her türlü yola bakmanızda fayda var. Kısaca, Hyper-V ve sanal makine ile alakalı özellik ve araçları kapattığınızdan emin olun.

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the BugCheck
Arg2: fffff80010130734, Address of the instruction which caused the BugCheck
Arg3: ffffdc09d18b6630, Address of the context record for the exception that caused the BugCheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------


KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 2156

    Key  : Analysis.Elapsed.mSec
    Value: 9243

    Key  : Analysis.IO.Other.Mb
    Value: 6

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 7

    Key  : Analysis.Init.CPU.mSec
    Value: 171

    Key  : Analysis.Init.Elapsed.mSec
    Value: 9326

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 163

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x3b

    Key  : Dump.Attributes.AsUlong
    Value: 180c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x7531b4f3

    Key  : Failure.Bucket
    Value: AV_cdd!CddBitmap::RemoveFromCddBitmapList

    Key  : Failure.Hash
    Value: {2d691f52-2051-554c-b0d3-4e31d98149a7}

    Key  : Hypervisor.Enlightenments.ValueHex
    Value: 1497cf94

    Key  : Hypervisor.Flags.AnyHypervisorPresent
    Value: 1

    Key  : Hypervisor.Flags.ApicEnlightened
    Value: 1

    Key  : Hypervisor.Flags.ApicVirtualizationAvailable
    Value: 0

    Key  : Hypervisor.Flags.AsyncMemoryHint
    Value: 0

    Key  : Hypervisor.Flags.CoreSchedulerRequested
    Value: 0

    Key  : Hypervisor.Flags.CpuManager
    Value: 1

    Key  : Hypervisor.Flags.DeprecateAutoEoi
    Value: 0

    Key  : Hypervisor.Flags.DynamicCpuDisabled
    Value: 1

    Key  : Hypervisor.Flags.Epf
    Value: 0

    Key  : Hypervisor.Flags.ExtendedProcessorMasks
    Value: 1

    Key  : Hypervisor.Flags.HardwareMbecAvailable
    Value: 1

    Key  : Hypervisor.Flags.MaxBankNumber
    Value: 0

    Key  : Hypervisor.Flags.MemoryZeroingControl
    Value: 0

    Key  : Hypervisor.Flags.NoExtendedRangeFlush
    Value: 0

    Key  : Hypervisor.Flags.NoNonArchCoreSharing
    Value: 1

    Key  : Hypervisor.Flags.Phase0InitDone
    Value: 1

    Key  : Hypervisor.Flags.PowerSchedulerQos
    Value: 0

    Key  : Hypervisor.Flags.RootScheduler
    Value: 0

    Key  : Hypervisor.Flags.SynicAvailable
    Value: 1

    Key  : Hypervisor.Flags.UseQpcBias
    Value: 0

    Key  : Hypervisor.Flags.Value
    Value: 4853999

    Key  : Hypervisor.Flags.ValueHex
    Value: 4a10ef

    Key  : Hypervisor.Flags.VpAssistPage
    Value: 1

    Key  : Hypervisor.Flags.VsmAvailable
    Value: 1

    Key  : Hypervisor.RootFlags.AccessStats
    Value: 1

    Key  : Hypervisor.RootFlags.CrashdumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.CreateVirtualProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.DisableHyperthreading
    Value: 0

    Key  : Hypervisor.RootFlags.HostTimelineSync
    Value: 1

    Key  : Hypervisor.RootFlags.HypervisorDebuggingEnabled
    Value: 0

    Key  : Hypervisor.RootFlags.IsHyperV
    Value: 1

    Key  : Hypervisor.RootFlags.LivedumpEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.MapDeviceInterrupt
    Value: 1

    Key  : Hypervisor.RootFlags.MceEnlightened
    Value: 1

    Key  : Hypervisor.RootFlags.Nested
    Value: 0

    Key  : Hypervisor.RootFlags.StartLogicalProcessor
    Value: 1

    Key  : Hypervisor.RootFlags.Value
    Value: 1015

    Key  : Hypervisor.RootFlags.ValueHex
    Value: 3f7


BUGCHECK_CODE:  3b

BUGCHECK_P1: c0000005

BUGCHECK_P2: fffff80010130734

BUGCHECK_P3: ffffdc09d18b6630

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-14343-01.dmp

TAG_NOT_DEFINED_202b:  *** Unknown TAG in analysis list 202b


DUMP_FILE_ATTRIBUTES: 0x180c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

CONTEXT:  ffffdc09d18b6630 -- (.cxr 0xffffdc09d18b6630)
rax=0000000000000000 rbx=ffffba8967cb7720 rcx=7ffffffffffffffc
rdx=0000000000654b00 rsi=ffffba8967cb7080 rdi=0000000000000000
rip=fffff80010130734 rsp=ffffdc09d18b7050 rbp=ffffba8967cb7080
 r8=0000000000000000  r9=0000000000000000 r10=fffff80010130620
r11=ffff87fbc4600000 r12=0000000000000000 r13=000000000b0506d9
r14=0000000000000001 r15=000000000cddba5e
iopl=0         nv up ei pl zr na po nc
cs=0010  ss=0018  ds=002b  es=002b  fs=0053  gs=002b             efl=00050246
nt!ExAcquireFastMutexUnsafe+0xe4:
fffff800`10130734 f00fba3700      lock btr dword ptr [rdi],0 ds:002b:00000000`00000000=????????
Resetting default scope

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  dwm.exe

STACK_TEXT:
ffffdc09`d18b7050 fffff800`1013063a     : 00000000`00000000 fffff800`75a01000 ffffa903`e62a7b00 ffff87fb`c4600000 : nt!ExAcquireFastMutexUnsafe+0xe4
ffffdc09`d18b7090 fffff9c5`9845845b     : fffff800`75a01000 fffff800`10150cfa ffffa903`d3c25a70 fffff800`3b1f10ed : nt!ExEnterCriticalRegionAndAcquireFastMutexUnsafe+0x1a
ffffdc09`d18b70c0 fffff9c5`98457389     : ffffa903`e62a7b00 fffff9c5`97480857 00000000`000006d9 fffff800`00000000 : cdd!CddBitmap::RemoveFromCddBitmapList+0x27
ffffdc09`d18b70f0 fffff9c5`98452d6d     : 00000000`00000001 ffffa903`e62a7b00 00000000`00000700 fffff800`75a01000 : cdd!CddBitmapHw::Release+0x79
ffffdc09`d18b71a0 fffff9c5`9747156d     : ffffa903`d3c25a70 fffff800`75a01000 ffffdc09`00000001 ffffa903`00000002 : cdd!DrvDeleteDeviceBitmapEx+0x7d
ffffdc09`d18b71d0 fffff9c5`975935e6     : fffff800`00000000 00000000`00000001 00000000`00000000 fffff9c5`00000001 : win32kbase!SURFACE::bDeleteSurface+0x1c3d
ffffdc09`d18b7400 fffff9c5`97521b75     : ffffa903`d0fce000 ffffdc09`d18b7480 00000000`000006d9 fffff800`7580a458 : win32kbase!vGarbageCollectObject<SURFREFGC>+0xaa
ffffdc09`d18b7460 fffff9c5`97463653     : 00000000`39040a05 00000000`0b0506d9 ffffa903`d427aa50 fffff9c5`974b11dc : win32kbase!GrepCloseCurrentProcess+0xcdd7d
ffffdc09`d18b74c0 fffff9c5`977b788d     : ffffa903`d3f874e0 ffffba89`5f9020c0 ffffa903`d3f874e0 ffffba89`5f9020c0 : win32kbase!GdiProcessCallout+0x243
ffffdc09`d18b7540 fffff9c5`974e98f1     : 00000000`00000000 00000000`00000001 ffffdc09`d18b7808 00000000`00000000 : win32kfull!W32pProcessCallout+0x8d
ffffdc09`d18b7580 fffff9c5`97b410cb     : 00000000`00000000 00000000`00000000 ffffba89`5599ed10 fffff800`10494648 : win32kbase!W32CalloutDispatch+0x3a1
ffffdc09`d18b76d0 fffff800`105869a1     : ffffdc09`d18b7808 00000000`00000000 fffff800`10a37c48 ffffa903`da3c7b60 : win32k!W32CalloutDispatchThunk+0x2b
ffffdc09`d18b7700 fffff800`10586903     : 00000000`00000000 ffffdc09`d18b78f9 00000000`00000000 00000000`00000000 : nt!ExCallCallBack+0x3d
ffffdc09`d18b7730 fffff800`104964c6     : ffffba89`5599ed10 00000000`00000000 ffffdc09`00000000 00000000`00000000 : nt!PsInvokeWin32Callout+0x33
ffffdc09`d18b7760 fffff800`105e96e8     : 00000000`c00001ad 00000000`00000001 00000000`00000000 ffffba89`5ef400c0 : nt!PspExitThread+0x54e
ffffdc09`d18b7860 fffff800`1000d497     : 00000000`00000000 00000000`00000000 000004ff`0010001b 00000000`00000000 : nt!KiSchedulerApcTerminate+0x38
ffffdc09`d18b78a0 fffff800`10231a90     : 000000fa`ded9f501 ffffdc09`d18b7960 00000000`00000000 00000000`00000000 : nt!KiDeliverApc+0x4a7
ffffdc09`d18b7960 fffff800`1024078f     : ffffba89`67cb7080 ffffba89`67c0bd60 00000000`00000000 00000000`00000000 : nt!KiInitiateUserApc+0x70
ffffdc09`d18b7aa0 00007ffd`9d90ecd4     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceExit+0x9f
000000fa`ded9f818 00000000`00000000     : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ffd`9d90ecd4


SYMBOL_NAME:  cdd!CddBitmap::RemoveFromCddBitmapList+27

MODULE_NAME: cdd

IMAGE_NAME:  cdd.dll

IMAGE_VERSION:  10.0.22621.601

STACK_COMMAND:  .cxr 0xffffdc09d18b6630 ; kb

BUCKET_ID_FUNC_OFFSET:  27

FAILURE_BUCKET_ID:  AV_cdd!CddBitmap::RemoveFromCddBitmapList

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {2d691f52-2051-554c-b0d3-4e31d98149a7}

Followup:     MachineOwner
---------

Tekrardan merhaba. BIOS'tan AMD V teknolojisini devre dışı bırakıp, RTX 3060 ekran kartımı da devre dışı bıraktım. İşlemci içindeki entegre ekran kartıyla oyuna girdiğimde hiçbir sorun yaşamadım. Nvidia ekran kartını tekrar devreye sokunca tekrar çökme yaşandı. DDU ile ekran kartı driver'larını tamamen silip temiz bir kurulum yapacağım. Eski çalışan sürücüyü yükleyeceğim. Bakalım neler olacak.

@EgeN7 merhaba tekrardan. Ne yazık ki DDU ile driver kaldırıp eski çalışan sürümü kurmama rağmen yine aynı şekilde hata vardı. Yeni bir DMP dosyası oluştu. Dosyayı eke koyuyorum.

052723-13984-01.dmp

drive.google.com

EgeN7 · 27 Mayıs 2023

Yine baştaki BattlEye sürücü hatasına döndük. Bu sefer Hyper-V kapalı.

Ama diğerlerinden farklı olarak sürücü detayında bir problem var. Zaman zaman minidumplarda bu olabiliyor, normal bir durum varsayıyorum ama belli olmaz.

*** WARNING: Unable to verify timestamp for BEDaisy.sys

Aşağıdaki çözüme bakmış mıydınız hiç?

Çözüldü: R5 3600 RTX 3070 KERNEL_MODE_HEAP_CORRUPTION hatası

İyi akşamlar arkadaşlar, Escape From Tarkov oynarken başıma gelen bu mavi ekran belasından ne yaptıysam kurtulamadım. Belki yardımcı olabilirsiniz diye düşündüm minidump dosyalarım ektedir; https://www.dropbox.com/s/gaecm3mkcryc8jm/Dump.zip?dl=0

www.technopat.net

Gerçi birisi de oyun kasıyor demiş bu ayardan sonra. Ama en azından çözülecek mi diye bir kontrol edersiniz.

Kod:

*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

KERNEL_MODE_HEAP_CORRUPTION (13a)
The kernel mode heap manager has detected corruption in a heap.
Arguments:
Arg1: 0000000000000011, Type of corruption detected
Arg2: ffffe78adda02140, Address of the heap that reported the corruption
Arg3: ffffe78af13f22d0, Address at which the corruption was detected
Arg4: 0000000000000000

Debugging Details:
------------------

*** WARNING: Unable to verify timestamp for BEDaisy.sys
fffff8070cb1c468: Unable to get MiVisibleState
Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
HeapDbgInitExtension Failed

KEY_VALUES_STRING: 1

    Key  : Analysis.CPU.mSec
    Value: 3515

    Key  : Analysis.Elapsed.mSec
    Value: 3705

    Key  : Analysis.IO.Other.Mb
    Value: 0

    Key  : Analysis.IO.Read.Mb
    Value: 0

    Key  : Analysis.IO.Write.Mb
    Value: 0

    Key  : Analysis.Init.CPU.mSec
    Value: 202

    Key  : Analysis.Init.Elapsed.mSec
    Value: 7272

    Key  : Analysis.Memory.CommitPeak.Mb
    Value: 141

    Key  : Bugcheck.Code.LegacyAPI
    Value: 0x13a

    Key  : Dump.Attributes.AsUlong
    Value: 100c

    Key  : Dump.Attributes.DiagDataWrittenToHeader
    Value: 1

    Key  : Dump.Attributes.ErrorCode
    Value: 0

    Key  : Dump.Attributes.InsufficientDumpfileSize
    Value: 1

    Key  : Dump.Attributes.KernelGeneratedTriageDump
    Value: 1

    Key  : Dump.Attributes.LastLine
    Value: Dump completed successfully.

    Key  : Dump.Attributes.ProgressPercentage
    Value: 0

    Key  : Dump.Attributes.RequiredDumpfileSize
    Value: 0x746835ca

    Key  : Failure.Bucket
    Value: 0x13a_11_BE___BEDaisy!unknown_function

    Key  : Failure.Hash
    Value: {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}


BUGCHECK_CODE:  13a

BUGCHECK_P1: 11

BUGCHECK_P2: ffffe78adda02140

BUGCHECK_P3: ffffe78af13f22d0

BUGCHECK_P4: 0

FILE_IN_CAB:  052723-13984-01.dmp

DUMP_FILE_ATTRIBUTES: 0x100c
  Insufficient Dumpfile Size
  Kernel Generated Triage Dump

POOL_ADDRESS: Unable to get NonPagedPoolStart
Unable to get NonPagedPoolEnd
Unable to get PagedPoolStart
Unable to get PagedPoolEnd
unable to get nt!MmSpecialPagesInUse
 ffffe78af13f22d0

FREED_POOL_TAG:  BE__

BLACKBOXBSD: 1 (!blackboxbsd)


BLACKBOXNTFS: 1 (!blackboxntfs)


BLACKBOXPNP: 1 (!blackboxpnp)


BLACKBOXWINLOGON: 1

CUSTOMER_CRASH_COUNT:  1

PROCESS_NAME:  RainbowSix.exe

STACK_TEXT:
ffff838d`439b2728 fffff807`0c3a4084     : 00000000`0000013a 00000000`00000011 ffffe78a`dda02140 ffffe78a`f13f22d0 : nt!KeBugCheckEx
ffff838d`439b2730 fffff807`0c3a40e4     : 00000000`00000011 00000000`00000000 ffffe78a`dda02140 00000000`00000000 : nt!RtlpHeapHandleError+0x40
ffff838d`439b2770 fffff807`0c3a3d01     : 00000000`00f00030 ffffffff`ffffffff 00000000`00000000 00000000`00000012 : nt!RtlpHpHeapHandleError+0x58
ffff838d`439b27a0 fffff807`0c2aeb9e     : fffff807`0be00000 ffffe78a`fee8d290 ffffe78a`dda02140 00000000`00000000 : nt!RtlpLogHeapFailure+0x45
ffff838d`439b27d0 fffff807`0c041689     : ffffe78a`dda02380 ffffe78a`dda020ff fffff807`0be00000 ffffe78a`00000000 : nt!RtlpHpLfhSubsegmentFreeBlock+0x19b2de
ffff838d`439b2860 fffff807`0c89e1b0     : ffffe78a`f13f22d0 00000000`00000002 00000000`00000000 00000000`00000001 : nt!RtlpHpFreeHeap+0x159
ffff838d`439b2900 fffff807`7efd39f3     : 00000000`00004542 ffffc381`b7b89b70 00000000`00000002 00000000`00000030 : nt!ExFreePoolWithTag+0x1a0
ffff838d`439b2990 00000000`00004542     : ffffc381`b7b89b70 00000000`00000002 00000000`00000030 00000000`00000000 : BEDaisy+0x3239f3
ffff838d`439b2998 ffffc381`b7b89b70     : 00000000`00000002 00000000`00000030 00000000`00000000 00000000`c1d00146 : 0x4542
ffff838d`439b29a0 00000000`00000002     : 00000000`00000030 00000000`00000000 00000000`c1d00146 00000000`00000013 : 0xffffc381`b7b89b70
ffff838d`439b29a8 00000000`00000030     : 00000000`00000000 00000000`c1d00146 00000000`00000013 ffffe78a`fc1ef230 : 0x2
ffff838d`439b29b0 00000000`00000000     : 00000000`c1d00146 00000000`00000013 ffffe78a`fc1ef230 fffff807`0cb0c338 : 0x30


SYMBOL_NAME:  BEDaisy+3239f3

MODULE_NAME: BEDaisy

IMAGE_NAME:  BEDaisy.sys

STACK_COMMAND:  .cxr; .ecxr ; kb

BUCKET_ID_FUNC_OFFSET:  3239f3

FAILURE_BUCKET_ID:  0x13a_11_BE___BEDaisy!unknown_function

OSPLATFORM_TYPE:  x64

OSNAME:  Windows 10

FAILURE_ID_HASH:  {6a85b8ad-f8a7-b71c-b9d1-e9d62252af2e}

Followup:     MachineOwner
---------

Bu arada, BIOS güncellemeyi deneyebilirsiniz.

Ama burada da ilginç bir durum var.

Yüklü BIOS bilgileri:

Rich (BB code):

BiosVendor = LENOVO
BiosVersion = H3CN38WW(V2.08)
BiosReleaseDate = 04/10/2022
SystemManufacturer = LENOVO
SystemProductName = 82K2
SystemFamily = IdeaPad Gaming 3 15ACH6
SystemVersion = IdeaPad Gaming 3 15ACH6
SystemSKU = LENOVO_MT_82K2_BU_idea_FM_IdeaPad Gaming 3 15ACH6
BaseBoardManufacturer = LENOVO
BaseBoardProduct = LNVNB161216
BaseBoardVersion = No DPK

Sizde yüklü olan BIOS 10 Nisan 2022 görünüyor ve sitedeki 11 Mayıs 2023 BIOS'u ile aynı versiyona sahip. Yüksek ihtimalle o parantez içindeki V2.08 numarasını sitedeki yeni sürüme eklemeyi unutmuşlar.

O yüzden aynısı olduğunu sanmıyorum, BIOS'u indirip güncelleyin.

laptops and netbooks :: gaming series :: ideapad gaming 3 15ach6 :: 82k2 - Lenovo Support TR

pcsupport.lenovo.com

Oyuna girerken KERNEL_MODE_HEAP_CORRUPTION hatası

Ayrıntılı düzenleme

AEnic31

Hectopat

DMP DosyalarÄ±.rar

EgeN7

Gigapat

AEnic31

Hectopat

EgeN7

Gigapat

AEnic31

Hectopat

Minidump DosyalarÄ±.rar

EgeN7

Gigapat

Çözüldü: Hyper-V nasıl kapatılır?

AEnic31

Hectopat

Çözüldü: Hyper-V nasıl kapatılır?

052723-14343-01.dmp

EgeN7

Gigapat

AEnic31

Hectopat

052723-13984-01.dmp

EgeN7

Gigapat

Çözüldü: R5 3600 RTX 3070 KERNEL_MODE_HEAP_CORRUPTION hatası

laptops and netbooks :: gaming series :: ideapad gaming 3 15ach6 :: 82k2 - Lenovo Support TR

Benzer konular