BSOD ntkrnlmp.exe
Napsal: 24 kvě 2015 16:16
Dobrý den,
naskočila mi modrá obrazovka BSOD a počítač se restartoval. Díval jsem se na internetu čím by to mohlo být a našel jsem analýzu DMP souboru (BSOD).
Microsoft (R) Windows Debugger Version 6.11.0001.404 X86
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Windows\Minidump\052415-29343-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
WARNING: Whitespace at start of path element
Symbol search path is: http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18839.amd64fre.win7sp1_gdr.150427-0707
Machine Name:
Kernel base = 0xfffff800`02e12000 PsLoadedModuleList = 0xfffff800`03059730
Debug session time: Sun May 24 14:08:41.109 2015 (GMT+2)
System Uptime: 0 days 5:00:19.886
Loading Kernel Symbols
...............................................................
................................................................
.....................
Loading User Symbols
Loading unloaded module list
.......
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 4A, {7748dc2a, 2, 0, fffff880048cdca0}
Probably caused by : ntkrnlmp.exe ( nt!KiSystemServiceExit+245 )
Followup: MachineOwner
---------
3: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
IRQL_GT_ZERO_AT_SYSTEM_SERVICE (4a)
Returning to usermode from a system call at an IRQL > PASSIVE_LEVEL.
Arguments:
Arg1: 000000007748dc2a, Address of system function (system call routine)
Arg2: 0000000000000002, Current IRQL
Arg3: 0000000000000000, 0
Arg4: fffff880048cdca0, 0
Debugging Details:
------------------
PROCESS_NAME: vsserv.exe
BUGCHECK_STR: RAISED_IRQL_FAULT
FAULTING_IP:
+6bd5952f0413dafc
00000000`7748dc2a ?? ???
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT
CURRENT_IRQL: 2
LAST_CONTROL_TRANSFER: from fffff80002e85e69 to fffff80002e868c0
STACK_TEXT:
fffff880`048cda68 fffff800`02e85e69 : 00000000`0000004a 00000000`7748dc2a 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`048cda70 fffff800`02e85da0 : 00000000`00000d9c fffff880`048cdca0 00000000`00000000 fffff800`0316fbbb : nt!KiBugCheckDispatch+0x69
fffff880`048cdbb0 00000000`7748dc2a : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceExit+0x245
00000000`235af978 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x7748dc2a
STACK_COMMAND: kb
FOLLOWUP_IP:
nt!KiSystemServiceExit+245
fffff800`02e85da0 4883ec50 sub rsp,50h
SYMBOL_STACK_INDEX: 2
SYMBOL_NAME: nt!KiSystemServiceExit+245
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: nt
IMAGE_NAME: ntkrnlmp.exe
DEBUG_FLR_IMAGE_TIMESTAMP: 553e7b7b
FAILURE_BUCKET_ID: X64_RAISED_IRQL_FAULT_vsserv.exe_nt!KiSystemServiceExit+245
BUCKET_ID: X64_RAISED_IRQL_FAULT_vsserv.exe_nt!KiSystemServiceExit+245
Followup: MachineOwner
---------
naskočila mi modrá obrazovka BSOD a počítač se restartoval. Díval jsem se na internetu čím by to mohlo být a našel jsem analýzu DMP souboru (BSOD).
Microsoft (R) Windows Debugger Version 6.11.0001.404 X86
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Windows\Minidump\052415-29343-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
WARNING: Whitespace at start of path element
Symbol search path is: http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.18839.amd64fre.win7sp1_gdr.150427-0707
Machine Name:
Kernel base = 0xfffff800`02e12000 PsLoadedModuleList = 0xfffff800`03059730
Debug session time: Sun May 24 14:08:41.109 2015 (GMT+2)
System Uptime: 0 days 5:00:19.886
Loading Kernel Symbols
...............................................................
................................................................
.....................
Loading User Symbols
Loading unloaded module list
.......
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 4A, {7748dc2a, 2, 0, fffff880048cdca0}
Probably caused by : ntkrnlmp.exe ( nt!KiSystemServiceExit+245 )
Followup: MachineOwner
---------
3: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
IRQL_GT_ZERO_AT_SYSTEM_SERVICE (4a)
Returning to usermode from a system call at an IRQL > PASSIVE_LEVEL.
Arguments:
Arg1: 000000007748dc2a, Address of system function (system call routine)
Arg2: 0000000000000002, Current IRQL
Arg3: 0000000000000000, 0
Arg4: fffff880048cdca0, 0
Debugging Details:
------------------
PROCESS_NAME: vsserv.exe
BUGCHECK_STR: RAISED_IRQL_FAULT
FAULTING_IP:
+6bd5952f0413dafc
00000000`7748dc2a ?? ???
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT
CURRENT_IRQL: 2
LAST_CONTROL_TRANSFER: from fffff80002e85e69 to fffff80002e868c0
STACK_TEXT:
fffff880`048cda68 fffff800`02e85e69 : 00000000`0000004a 00000000`7748dc2a 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`048cda70 fffff800`02e85da0 : 00000000`00000d9c fffff880`048cdca0 00000000`00000000 fffff800`0316fbbb : nt!KiBugCheckDispatch+0x69
fffff880`048cdbb0 00000000`7748dc2a : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceExit+0x245
00000000`235af978 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x7748dc2a
STACK_COMMAND: kb
FOLLOWUP_IP:
nt!KiSystemServiceExit+245
fffff800`02e85da0 4883ec50 sub rsp,50h
SYMBOL_STACK_INDEX: 2
SYMBOL_NAME: nt!KiSystemServiceExit+245
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: nt
IMAGE_NAME: ntkrnlmp.exe
DEBUG_FLR_IMAGE_TIMESTAMP: 553e7b7b
FAILURE_BUCKET_ID: X64_RAISED_IRQL_FAULT_vsserv.exe_nt!KiSystemServiceExit+245
BUCKET_ID: X64_RAISED_IRQL_FAULT_vsserv.exe_nt!KiSystemServiceExit+245
Followup: MachineOwner
---------