HOOK ZwCreateSection 导致系统重启？大侠指点

Hook ZwCreateSection 监视新建进程
偶尔会出现系统重启，如下minidump信息

附Minidump：
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

IRQL_NOT_LESS_OR_EQUAL (a)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If a kernel debugger is available get the stack backtrace.
Arguments:
Arg1: ffffff94, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000000, value 0 = read operation, 1 = write operation
Arg4: 804ffd92, address which referenced memory

Debugging Details:
------------------


READ_ADDRESS:  ffffff94

CURRENT_IRQL:  2

FAULTING_IP:
nt!KiFindFirstSetRight+2
804ffd92 8b8744010000     mov     eax,[edi+0x144]

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  DRIVER_FAULT

BUGCHECK_STR:  0xA

LAST_CONTROL_TRANSFER:  from 804ffe8d to 804ffd92

STACK_TEXT:  
f4c58a74 804ffe8d f3df5158 fffffe50 00000000 nt!KiFindFirstSetRight+0x2
f4c58b04 80584b47 00b94ff0 00008000 f4c58d30 nt!KiFindFirstSetRight+0xfd
f4c58d4c 804df7ec 00000005 00b94ff0 00008000 nt!RtlpGenerateInheritedAce+0xaf
f4c58d64 7c92eb94 badb0d00 0007f780 00000000 nt!KiUnexpectedInterrupt65+0x2
WARNING: Frame IP not in any known module. Following frames may be wrong.
f4c58d68 badb0d00 0007f780 00000000 00000000 0x7c92eb94
f4c58d6c 0007f780 00000000 00000000 00000000 0xbadb0d00
f4c58d70 00000000 00000000 00000000 00000000 0x7f780


STACK_COMMAND:  .bugcheck ; kb

FOLLOWUP_IP:
nt!KiFindFirstSetRight+2
804ffd92 8b8744010000     mov     eax,[edi+0x144]

FAULTING_SOURCE_CODE:  


SYMBOL_STACK_INDEX:  0

FOLLOWUP_NAME:  MachineOwner

SYMBOL_NAME:  nt!KiFindFirstSetRight+2

MODULE_NAME:  nt

IMAGE_NAME:  ntoskrnl.exe

DEBUG_FLR_IMAGE_TIMESTAMP:  45e54711

FAILURE_BUCKET_ID:  0xA_nt!KiFindFirstSetRight+2

BUCKET_ID:  0xA_nt!KiFindFirstSetRight+2

Followup: MachineOwner
---------

知道问题原因了

可能是开中断，关中断的时候和系统冲突了