明星在线 发表于 2012-10-28 19:39 
minidump这个下面的文件吧。。。一共四个。。。打不开。。我复制出来。。。压缩包里面你看看吧。。。官人 ...
四个文件的分析情况如下:
第一个文件(mini102812-01.dmp)分析:
Microsoft (R) Windows Debugger Version 6.1.7601.17514 X86
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Users\Lenovo\AppData\Local\Temp\HZ$D.778.3922\Mini102812-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: *** Invalid ***
****************************************************************************
* Symbol loading may be unreliable without a symbol search path. *
* Use .symfix to have the debugger choose a symbol path. *
* After setting your symbol path, use .reload to refresh symbol locations. *
****************************************************************************
Executable search path is:
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Machine Name:
Kernel base = 0x804d8000 PsLoadedModuleList = 0x8055e720
Debug session time: Sun Oct 28 19:24:01.562 2012 (UTC + 8:00)
System Uptime: 0 days 2:04:36.278
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
...........................................................
Loading User Symbols
Loading unloaded module list
...........
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Bugcheck code 1000007F
Arguments 00000008 80042000 00000000 00000000
Unable to load image Ntfs.sys, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for Ntfs.sys
ChildEBP RetAddr Args to Child
WARNING: Stack unwind information not available. Following frames may be wrong.
ba5550e4 b9e22ffc ba5556a4 898d2008 00000002 Ntfs+0xb1c
ba5552b4 b9e22c76 ba5556a4 87f9bab8 898d2008 Ntfs+0xffc
ba55549c b9e23fbc ba5556a4 87f9bab8 898d2008 Ntfs+0xc76
ba555694 b9e23c18 ba5556a4 87f9bab8 0110070a Ntfs+0x1fbc
*** WARNING: Unable to verify timestamp for FsWriteBack.sys
*** ERROR: Module load completed but symbols could not be loaded for FsWriteBack.sys
ba555808 a6434b19 899d9770 87f9bab8 87f9bab8 Ntfs+0x1c18
ba555838 804f01e9 899d9770 87f9bab8 89bf2a58 FsWriteBack+0x1b19
ba555858 804f01e9 8986f3f8 87f9bab8 87f9bab8 nt+0x181e9
*** WARNING: Unable to verify timestamp for fltMgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltMgr.sys
ba55588c b9edc06b ba5558ac 899d1768 00000000 nt+0x181e9
ba5558c4 804f01e9 899d1768 87f9bab8 87f9bab8 fltMgr+0x406b
ba55592c 804f01e9 89925020 87f9bab8 00000000 nt+0x181e9
*** WARNING: Unable to verify timestamp for kisknl.sys
*** ERROR: Module load completed but symbols could not be loaded for kisknl.sys
ba55598c a9b46952 899a7bd0 87f9bab8 8995df90 nt+0x181e9
ba5559b0 804f01e9 899a7bd0 87f9bab8 00002000 kisknl+0xa952
ba5559d4 b9e4413c 8995df0c 89bf4858 ba555a78 nt+0x181e9
ba555aa0 b9e44089 e187b800 e35d5470 e187b800 Ntfs+0x2213c
ba555ac4 b9e4e3db e187b800 e35d5470 e15e63b0 Ntfs+0x22089
ba555aec b9e42c60 e187b800 364da328 00000000 Ntfs+0x2c3db
ba555b2c b9e2e744 e15e63b0 364da328 00000000 Ntfs+0x20c60
ba555d14 b9e23c18 ba555d24 87f9bce0 0110070a Ntfs+0xc744
ba555e88 a6434b19 899d9770 87f9bce0 87f9bce0 Ntfs+0x1c18
ba555eb8 804f01e9 899d9770 87f9bce0 89bf2a58 FsWriteBack+0x1b19
错误文件代码在后面的这一串
第二个文件(mini102712-03.dmp)分析:
Loading Dump File [C:\Users\Lenovo\AppData\Local\Temp\HZ$D.778.3927\Mini102712-03.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: *** Invalid ***
****************************************************************************
* Symbol loading may be unreliable without a symbol search path. *
* Use .symfix to have the debugger choose a symbol path. *
* After setting your symbol path, use .reload to refresh symbol locations. *
****************************************************************************
Executable search path is:
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Machine Name:
Kernel base = 0x804d8000 PsLoadedModuleList = 0x8055e720
Debug session time: Sat Oct 27 11:40:07.656 2012 (UTC + 8:00)
System Uptime: 0 days 3:54:56.355
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
............................................................
Loading User Symbols
Loading unloaded module list
..............
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Bugcheck code 1000007F
Arguments 00000008 80042000 00000000 00000000
Unable to load image Ntfs.sys, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for Ntfs.sys
ChildEBP RetAddr Args to Child
WARNING: Stack unwind information not available. Following frames may be wrong.
ba5450e4 b9e22ffc ba5456a4 89a1e150 00000003 Ntfs+0xb1c
ba5452b4 b9e22c76 ba5456a4 882b9460 89a1e150 Ntfs+0xffc
ba54549c b9e23fbc ba5456a4 882b9460 89a1e150 Ntfs+0xc76
ba545694 b9e23c18 ba5456a4 882b9460 0110070a Ntfs+0x1fbc
*** WARNING: Unable to verify timestamp for FsWriteBack.sys
*** ERROR: Module load completed but symbols could not be loaded for FsWriteBack.sys
ba545808 a47cab19 89427770 882b9460 882b9460 Ntfs+0x1c18
ba545838 804f01e9 89427770 882b9460 89bcf380 FsWriteBack+0x1b19
ba545858 804f01e9 899fccd8 882b9460 882b9460 nt+0x181e9
*** WARNING: Unable to verify timestamp for fltMgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltMgr.sys
ba54588c b9edc06b ba5458ac 89997898 00000000 nt+0x181e9
ba5458c4 804f01e9 89997898 882b9460 882b9460 fltMgr+0x406b
ba54592c 804f01e9 898c9020 882b9460 00000000 nt+0x181e9
*** WARNING: Unable to verify timestamp for kisknl.sys
*** ERROR: Module load completed but symbols could not be loaded for kisknl.sys
ba54598c a9b46952 89902f00 882b9460 89b23988 nt+0x181e9
ba5459b0 804f01e9 89902f00 882b9460 00003000 kisknl+0xa952
ba5459d4 b9e4413c 89b2390c 898b1e78 ba545a78 nt+0x181e9
ba545aa0 b9e44089 e17c0d80 e12a6b00 e17c0d80 Ntfs+0x2213c
ba545ac4 b9e4e3db e17c0d80 e12a6b00 e1819158 Ntfs+0x22089
ba545aec b9e42c60 e17c0d80 345211ac 00000000 Ntfs+0x2c3db
ba545b2c b9e2e744 e1819158 345211ac 00000000 Ntfs+0x20c60
ba545d14 b9e23c18 ba545d24 88721290 0110070a Ntfs+0xc744
ba545e88 a47cab19 89427770 88721290 88721290 Ntfs+0x1c18
ba545eb8 804f01e9 89427770 88721290 89bcf380 FsWriteBack+0x1b19
第三个文件(mini102712-02.dmp)分析:
Loading Dump File [C:\Users\Lenovo\AppData\Local\Temp\HZ$D.778.3928\Mini102712-02.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: *** Invalid ***
****************************************************************************
* Symbol loading may be unreliable without a symbol search path. *
* Use .symfix to have the debugger choose a symbol path. *
* After setting your symbol path, use .reload to refresh symbol locations. *
****************************************************************************
Executable search path is:
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Machine Name:
Kernel base = 0x804d8000 PsLoadedModuleList = 0x8055e720
Debug session time: Sat Oct 27 07:44:49.765 2012 (UTC + 8:00)
System Uptime: 0 days 0:02:16.468
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
...........................................................
Loading User Symbols
Loading unloaded module list
............
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Bugcheck code 1000007F
Arguments 00000008 ba338d70 00000000 00000000
Unable to load image Ntfs.sys, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for Ntfs.sys
ChildEBP RetAddr Args to Child
WARNING: Stack unwind information not available. Following frames may be wrong.
ba5490dc b9e22ffc ba54969c e17673a8 00000004 Ntfs+0x33c
ba5492ac b9e22c76 ba54969c 88ae39e0 e17673a8 Ntfs+0xffc
ba549494 b9e23a6a ba54969c 88ae39e0 e17673a8 Ntfs+0xc76
ba54968c b9e23c18 ba54969c 88ae39e0 0110070a Ntfs+0x1a6a
*** WARNING: Unable to verify timestamp for FsWriteBack.sys
*** ERROR: Module load completed but symbols could not be loaded for FsWriteBack.sys
ba549800 a8a02b19 89b7f020 88ae39e0 88ae39e0 Ntfs+0x1c18
ba549830 804f01e9 89b7f020 88ae39e0 89bcba58 FsWriteBack+0x1b19
ba549850 804f01e9 89c0ec10 88ae39e0 88ae39e0 nt+0x181e9
*** WARNING: Unable to verify timestamp for fltMgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltMgr.sys
ba549884 b9edc06b ba5498a4 899e43c8 00000000 nt+0x181e9
ba5498bc 804f01e9 899e43c8 88ae39e0 88ae39e0 fltMgr+0x406b
ba549924 804f01e9 89ab6020 88ae39e0 00000000 nt+0x181e9
*** WARNING: Unable to verify timestamp for kisknl.sys
*** ERROR: Module load completed but symbols could not be loaded for kisknl.sys
ba549984 a9b46952 899e3f00 88ae39e0 89a8f278 nt+0x181e9
ba5499a8 804f01e9 899e3f00 88ae39e0 00004000 kisknl+0xa952
ba5499cc 8056aedf 89a8f20c 887aba40 ba549a70 nt+0x181e9
ba549a98 b9e5c442 89a8f278 ba549adc ba549ad4 nt+0x92edf
ba549b18 b9e240b2 ba549d24 e17673a8 89a8f278 Ntfs+0x3a442
ba549d14 b9e23c18 ba549d24 88a01578 0110070a Ntfs+0x20b2
ba549e88 a8a02b19 89b7f020 88a01578 88a01578 Ntfs+0x1c18
ba549eb8 804f01e9 89b7f020 88a01578 89bcba58 FsWriteBack+0x1b19
ba549ed8 804f01e9 89c0ec10 88a01578 88a01578 nt+0x181e9
ba549f0c b9edc06b ba549f2c 899e43c8 00000000 nt+0x181e9
第四个文件(mini102712-01.dmp)分析:
Loading Dump File [C:\Users\Lenovo\AppData\Local\Temp\HZ$D.778.3929\Mini102712-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: *** Invalid ***
****************************************************************************
* Symbol loading may be unreliable without a symbol search path. *
* Use .symfix to have the debugger choose a symbol path. *
* After setting your symbol path, use .reload to refresh symbol locations. *
****************************************************************************
Executable search path is:
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Machine Name:
Kernel base = 0x804d8000 PsLoadedModuleList = 0x8055e720
Debug session time: Sat Oct 27 07:42:15.015 2012 (UTC + 8:00)
System Uptime: 0 days 0:09:11.707
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
...........................................................
Loading User Symbols
Loading unloaded module list
............
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(ext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(exts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kext) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
The call to LoadLibrary(kdexts) failed, Win32 error 0n2
"系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Bugcheck code 1000007F
Arguments 00000008 80042000 00000000 00000000
Unable to load image Ntfs.sys, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for Ntfs.sys
ChildEBP RetAddr Args to Child
WARNING: Stack unwind information not available. Following frames may be wrong.
ba5550e4 b9e22ffc ba5556a4 89bd14e0 00000002 Ntfs+0xb1c
ba5552b4 b9e22c76 ba5556a4 887792b0 89bd14e0 Ntfs+0xffc
ba55549c b9e23fbc ba5556a4 887792b0 89bd14e0 Ntfs+0xc76
ba555694 b9e23c18 ba5556a4 887792b0 0110070a Ntfs+0x1fbc
*** WARNING: Unable to verify timestamp for FsWriteBack.sys
*** ERROR: Module load completed but symbols could not be loaded for FsWriteBack.sys
ba555808 a8737b19 89c00020 887792b0 887792b0 Ntfs+0x1c18
ba555838 804f01e9 89c00020 887792b0 89bcba58 FsWriteBack+0x1b19
ba555858 804f01e9 89c0eba8 887792b0 887792b0 nt+0x181e9
*** WARNING: Unable to verify timestamp for fltMgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltMgr.sys
ba55588c b9edc06b ba5558ac 899dae48 00000000 nt+0x181e9
ba5558c4 804f01e9 899dae48 887792b0 887792b0 fltMgr+0x406b
ba55592c 804f01e9 8996d760 887792b0 00000000 nt+0x181e9
*** WARNING: Unable to verify timestamp for kisknl.sys
*** ERROR: Module load completed but symbols could not be loaded for kisknl.sys
ba55598c a9b46952 89878f00 887792b0 89bd1468 nt+0x181e9
ba5559b0 804f01e9 89878f00 887792b0 00002000 kisknl+0xa952
ba5559d4 b9e4413c 89bd140c 89bda150 ba555a78 nt+0x181e9
ba555aa0 b9e44089 e14152a8 e36cc930 e14152a8 Ntfs+0x2213c
ba555ac4 b9e4e3db e14152a8 e36cc930 e10290f0 Ntfs+0x22089
ba555aec b9e42c60 e14152a8 5a040947 00000000 Ntfs+0x2c3db
ba555b2c b9e2e744 e10290f0 5a040947 00000000 Ntfs+0x20c60
ba555d14 b9e23c18 ba555d24 88737008 0110070a Ntfs+0xc744
ba555e88 a8737b19 89c00020 88737008 88737008 Ntfs+0x1c18
ba555eb8 804f01e9 89c00020 88737008 89bcba58 FsWriteBack+0x1b19
|
楼主: 明星在线
发表于 2012-10-28 16:47:10
楼主
