Also irgendwie hat mein Debugger bei Deinen Dateien Schwierigkeiten...
1. Mini021806-01.dmp
Die als problematisch angesehene Datei ' SYMTDI.SYS' ist von Symantec, also Virenscanner, Firewall o.ä.
Microsoft (R) Windows Debugger Version 6.6.0003.5
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Documents and Settings\Administrator\Desktop\New Folder\Mini021806-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: SRV*c:\websymbols*
http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows XP Kernel Version 2600 (Service Pack 2) MP (2 procs) Free x86 compatible
Product: WinNt
Built by: 2600.xpsp_sp2_gdr.050301-1519
Kernel base = 0x804d7000 PsLoadedModuleList = 0x805624a0
Debug session time: Sat Feb 18 23:24:19.546 2006 (GMT+1)
System Uptime: 3 days 0:58:54.210
Loading Kernel Symbols
...........................................................................................................................................................
Loading User Symbols
Loading unloaded module list
..................................................
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck C2, {7, cd4, 3e, 86d4d008}
Unable to load image \SystemRoot\System32\Drivers\SYMTDI.SYS, Win32 error 2
*** WARNING: Unable to verify timestamp for SYMTDI.SYS
*** ERROR: Module load completed but symbols could not be loaded for SYMTDI.SYS
*** WARNING: Unable to verify timestamp for SYMEVENT.SYS
*** ERROR: Module load completed but symbols could not be loaded for SYMEVENT.SYS
GetUlongFromAddress: unable to read from 8056a9f0
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
*** WARNING: Unable to verify timestamp for ati2dvag.dll
*** ERROR: Module load completed but symbols could not be loaded for ati2dvag.dll
*** WARNING: Unable to verify timestamp for ati2cqag.dll
*** ERROR: Module load completed but symbols could not be loaded for ati2cqag.dll
*** WARNING: Unable to verify timestamp for atikvmag.dll
*** ERROR: Module load completed but symbols could not be loaded for atikvmag.dll
*** WARNING: Unable to verify timestamp for ati3duag.dll
*** ERROR: Module load completed but symbols could not be loaded for ati3duag.dll
*** WARNING: Unable to verify timestamp for ativvaxx.dll
*** ERROR: Module load completed but symbols could not be loaded for ativvaxx.dll
*** WARNING: Unable to verify timestamp for ppbint.dll
*** ERROR: Module load completed but symbols could not be loaded for ppbint.dll
*** WARNING: Unable to verify timestamp for ATMFD.DLL
*** ERROR: Module load completed but symbols could not be loaded for ATMFD.DLL
*** WARNING: Unable to verify timestamp for NAVENG.Sys
*** ERROR: Module load completed but symbols could not be loaded for NAVENG.Sys
*** WARNING: Unable to verify timestamp for NavEx15.Sys
*** ERROR: Module load completed but symbols could not be loaded for NavEx15.Sys
*** WARNING: Unable to verify timestamp for SAVRT.SYS
*** ERROR: Module load completed but symbols could not be loaded for SAVRT.SYS
*** WARNING: Unable to verify timestamp for SYMREDRV.SYS
*** ERROR: Module load completed but symbols could not be loaded for SYMREDRV.SYS
*** WARNING: Unable to verify timestamp for qdfsdrv.sys
*** ERROR: Module load completed but symbols could not be loaded for qdfsdrv.sys
*** WARNING: Unable to verify timestamp for SAVRTPEL.SYS
*** ERROR: Module load completed but symbols could not be loaded for SAVRTPEL.SYS
*** WARNING: Unable to verify timestamp for BrScnUsb.sys
*** ERROR: Module load completed but symbols could not be loaded for BrScnUsb.sys
*** WARNING: Unable to verify timestamp for ElbyCDIO.sys
*** ERROR: Module load completed but symbols could not be loaded for ElbyCDIO.sys
*** WARNING: Unable to verify timestamp for ASPI32.SYS
*** ERROR: Module load completed but symbols could not be loaded for ASPI32.SYS
*** WARNING: Unable to verify timestamp for LV561AV.SYS
*** ERROR: Module load completed but symbols could not be loaded for LV561AV.SYS
*** WARNING: Unable to verify timestamp for InCDfs.SYS
*** ERROR: Module load completed but symbols could not be loaded for InCDfs.SYS
*** WARNING: Unable to verify timestamp for BCMNTIO.sys
*** ERROR: Module load completed but symbols could not be loaded for BCMNTIO.sys
*** WARNING: Unable to verify timestamp for lvusbsta.sys
*** ERROR: Module load completed but symbols could not be loaded for lvusbsta.sys
*** WARNING: Unable to verify timestamp for NPDRIVER.SYS
*** ERROR: Module load completed but symbols could not be loaded for NPDRIVER.SYS
*** WARNING: Unable to verify timestamp for SkyNET.SYS
*** ERROR: Module load completed but symbols could not be loaded for SkyNET.SYS
*** WARNING: Unable to verify timestamp for ati2mtag.sys
*** ERROR: Module load completed but symbols could not be loaded for ati2mtag.sys
*** WARNING: Unable to verify timestamp for ElbyCDFL.sys
*** ERROR: Module load completed but symbols could not be loaded for ElbyCDFL.sys
*** WARNING: Unable to verify timestamp for pfc.sys
*** ERROR: Module load completed but symbols could not be loaded for pfc.sys
*** WARNING: Unable to verify timestamp for fltmgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltmgr.sys
*** WARNING: Unable to verify timestamp for SPTD5149.SYS
*** ERROR: Module load completed but symbols could not be loaded for SPTD5149.SYS
*** WARNING: Unable to verify timestamp for sptd.sys
*** ERROR: Module load completed but symbols could not be loaded for sptd.sys
*** WARNING: Unable to verify timestamp for viamraid.sys
*** ERROR: Module load completed but symbols could not be loaded for viamraid.sys
*** WARNING: Unable to verify timestamp for drmk.sys
*** ERROR: Module load completed but symbols could not be loaded for drmk.sys
*** WARNING: Unable to verify timestamp for sfmanm.sys
*** ERROR: Module load completed but symbols could not be loaded for sfmanm.sys
*** WARNING: Unable to verify timestamp for ElbyVCD.sys
*** ERROR: Module load completed but symbols could not be loaded for ElbyVCD.sys
*** WARNING: Unable to verify timestamp for PxHelp20.sys
*** ERROR: Module load completed but symbols could not be loaded for PxHelp20.sys
*** WARNING: Unable to verify timestamp for viaagp1.sys
*** ERROR: Module load completed but symbols could not be loaded for viaagp1.sys
*** WARNING: Unable to verify timestamp for ghpciscan.sys
*** ERROR: Module load completed but symbols could not be loaded for ghpciscan.sys
*** WARNING: Unable to verify timestamp for AnyDVD.sys
*** ERROR: Module load completed but symbols could not be loaded for AnyDVD.sys
*** WARNING: Unable to verify timestamp for incdrm.SYS
*** ERROR: Module load completed but symbols could not be loaded for incdrm.SYS
*** WARNING: Unable to verify timestamp for InCDPass.sys
*** ERROR: Module load completed but symbols could not be loaded for InCDPass.sys
*** WARNING: Unable to verify timestamp for fdc.sys
*** ERROR: Module load completed but symbols could not be loaded for fdc.sys
*** WARNING: Unable to verify timestamp for CINEMSUP.SYS
*** ERROR: Module load completed but symbols could not be loaded for CINEMSUP.SYS
*** WARNING: Unable to verify timestamp for PSTRIP.SYS
*** ERROR: Module load completed but symbols could not be loaded for PSTRIP.SYS
*** WARNING: Unable to verify timestamp for viaidexp.sys
*** ERROR: Module load completed but symbols could not be loaded for viaidexp.sys
*** WARNING: Unable to verify timestamp for dmload.sys
*** ERROR: Module load completed but symbols could not be loaded for dmload.sys
*** WARNING: Unable to verify timestamp for ctlfacem.sys
*** ERROR: Module load completed but symbols could not be loaded for ctlfacem.sys
*** WARNING: Unable to verify timestamp for Fs_Rec.SYS
*** ERROR: Module load completed but symbols could not be loaded for Fs_Rec.SYS
*** WARNING: Unable to verify timestamp for InCDrec.SYS
*** ERROR: Module load completed but symbols could not be loaded for InCDrec.SYS
*** WARNING: Unable to verify timestamp for ParVdm.SYS
*** ERROR: Module load completed but symbols could not be loaded for ParVdm.SYS
*** WARNING: Unable to verify timestamp for ElbyDelay.sys
*** ERROR: Module load completed but symbols could not be loaded for ElbyDelay.sys
*** WARNING: Unable to verify timestamp for MAPMEM.sys
*** ERROR: Module load completed but symbols could not be loaded for MAPMEM.sys
*** WARNING: Unable to verify timestamp for Null.SYS
*** ERROR: Module load completed but symbols could not be loaded for Null.SYS
Probably caused by : SYMTDI.SYS ( SYMTDI+1a3c3 )
Followup: MachineOwner
---------
0: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
BAD_POOL_CALLER (c2)
The current thread is making a bad pool request. Typically this is at a bad IRQL level or double freeing the same allocation, etc.
Arguments:
Arg1: 00000007, Attempt to free pool which was already freed
Arg2: 00000cd4, (reserved)
Arg3: 0000003e, Memory contents of the pool block
Arg4: 86d4d008, Address of the block of pool being deallocated
Debugging Details:
------------------
GetUlongFromAddress: unable to read from 8056a9f0
POOL_ADDRESS: 86d4d008
BUGCHECK_STR: 0xc2_7
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: DRIVER_FAULT
LAST_CONTROL_TRANSFER: from 80550fc5 to 805371aa
STACK_TEXT:
eb0d4b68 80550fc5 000000c2 00000007 00000cd4 nt!KeBugCheckEx+0x1b
eb0d4bb8 805503e3 86d4d008 00000000 eb0d4bd4 nt!ExFreePoolWithTag+0x2c1
eb0d4bc8 f1f813c3 86d4d008 eb0d4bec f1f810b5 nt!ExFreePool+0xf
WARNING: Stack unwind information not available. Following frames may be wrong.
eb0d4bd4 f1f810b5 86d4d008 e5711a40 86d4d008 SYMTDI+0x1a3c3
eb0d4bec f1f7fb10 868c98e0 868c98e0 e1aeb348 SYMTDI+0x1a0b5
eb0d4bfc f1f39678 00000000 e5711a48 f1f3bb26 SYMTDI+0x18b10
eb0d4c40 80603fe6 00000314 000007f8 00000000 SYMEVENT+0x10678
eb0d4c64 8058c1c0 00000001 00000007 86ca5ea8 nt!PspExitProcess+0x5e
eb0d4cf0 8058c9f1 00000000 eb0d4d4c 804e75c2 nt!PspExitThread+0x54f
eb0d4cfc 804e75c2 86ca5ea8 eb0d4d48 eb0d4d3c nt!PsExitSpecialApc+0x22
eb0d4d4c 804dda0a 00000001 00000000 eb0d4d64 nt!KiDeliverApc+0x1af
eb0d4d4c 7c91eb94 00000001 00000000 eb0d4d64 nt!KiServiceExit+0x59
00bcf924 00000000 00000000 00000000 00000000 0x7c91eb94
STACK_COMMAND: kb
FOLLOWUP_IP:
SYMTDI+1a3c3
f1f813c3 ?? ???
FAULTING_SOURCE_CODE:
SYMBOL_STACK_INDEX: 3
FOLLOWUP_NAME: MachineOwner
SYMBOL_NAME: SYMTDI+1a3c3
MODULE_NAME: SYMTDI
IMAGE_NAME: SYMTDI.SYS
DEBUG_FLR_IMAGE_TIMESTAMP: 4252d4ac
FAILURE_BUCKET_ID: 0xc2_7_SYMTDI+1a3c3
BUCKET_ID: 0xc2_7_SYMTDI+1a3c3
Followup: MachineOwner
---------