New
#1
crash dump analysis
Hi,
I have been having ramdom and frequent crashes for some time. I have installed windbg and have aa couple of crash dump files that I cant make head nor tail of could someone take a look at them and point me in the right direction PLEASE
Code:Microsoft (R) Windows Debugger Version 10.0.10240.9 AMD64 Copyright (c) Microsoft Corporation. All rights reserved. Loading Dump File [C:\Windows\Minidump\112815-14258-01.dmp] Mini Kernel Dump File: Only registers and stack trace are available ************* Symbol Path validation summary ************** Response Time (ms) Location Deferred SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Executable search path is: No .natvis files found at C:\Program Files (x86)\Windows Kits\10\Debuggers\x64\Visualizers. Windows 7 Kernel Version 7601 (Service Pack 1) MP (8 procs) Free x64 Product: WinNt, suite: TerminalServer SingleUserTS Built by: 7601.19045.amd64fre.win7sp1_gdr.151019-1254 Machine Name: Kernel base = 0xfffff800`03004000 PsLoadedModuleList = 0xfffff800`0324b730 Debug session time: Sat Nov 28 12:02:22.204 2015 (UTC + 8:00) System Uptime: 0 days 0:01:37.234 Loading Kernel Symbols . Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long. Run !sym noisy before .reload to track down problems loading symbols. .............................................................. ................................................................ ................................................... Loading User Symbols Loading unloaded module list ... ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* Use !analyze -v to get detailed debugging information. BugCheck 19, {3, fffffa800c6d4460, fffffa800e6d4460, fffffa800c6d4460} *** WARNING: Unable to verify timestamp for avgmfx64.sys *** ERROR: Module load completed but symbols could not be loaded for avgmfx64.sys Debugger extension ext.Analyze execution is cancelled. PC: 000007fe`fdb3b3dd VA: fffff880`0d35b310 R/W: 7 Parameter: 00000000`00000540 4: kd> g ^ No runnable debuggees error in 'g' 4: kd> .restart /f Loading Dump File [C:\Windows\Minidump\112815-14258-01.dmp] Mini Kernel Dump File: Only registers and stack trace are available ************* Symbol Path validation summary ************** Response Time (ms) Location Deferred SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Executable search path is: Windows 7 Kernel Version 7601 (Service Pack 1) MP (8 procs) Free x64 Product: WinNt, suite: TerminalServer SingleUserTS Built by: 7601.19045.amd64fre.win7sp1_gdr.151019-1254 Machine Name: Kernel base = 0xfffff800`03004000 PsLoadedModuleList = 0xfffff800`0324b730 Debug session time: Sat Nov 28 12:02:22.204 2015 (UTC + 8:00) System Uptime: 0 days 0:01:37.234 Loading Kernel Symbols . Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long. Run !sym noisy before .reload to track down problems loading symbols. .............................................................. ................................................................ ................................................... Loading User Symbols Loading unloaded module list ... ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* Use !analyze -v to get detailed debugging information. BugCheck 19, {3, fffffa800c6d4460, fffffa800e6d4460, fffffa800c6d4460} *** WARNING: Unable to verify timestamp for avgmfx64.sys *** ERROR: Module load completed but symbols could not be loaded for avgmfx64.sys Probably caused by : Pool_Corruption ( nt!ExFreePool+503 ) Followup: Pool_corruption --------- 4: kd> analyse -v *** WARNING: Unable to verify timestamp for mcupdate.dll *** ERROR: Module load completed but symbols could not be loaded for mcupdate.dll *** WARNING: Unable to verify timestamp for asahci64.sys *** ERROR: Module load completed but symbols could not be loaded for asahci64.sys *** WARNING: Unable to verify timestamp for amdxata.sys *** ERROR: Module load completed but symbols could not be loaded for amdxata.sys *** WARNING: Unable to verify timestamp for iusb3hcs.sys *** ERROR: Module load completed but symbols could not be loaded for iusb3hcs.sys *** WARNING: Unable to verify timestamp for iaStor.sys *** ERROR: Module load completed but symbols could not be loaded for iaStor.sys *** WARNING: Unable to verify timestamp for MpFilter.sys *** ERROR: Module load completed but symbols could not be loaded for MpFilter.sys *** WARNING: Unable to verify timestamp for avgfwd6a.sys *** ERROR: Module load completed but symbols could not be loaded for avgfwd6a.sys *** WARNING: Unable to verify timestamp for spldr.sys *** ERROR: Module load completed but symbols could not be loaded for spldr.sys *** WARNING: Unable to verify timestamp for avgrkx64.sys *** ERROR: Module load completed but symbols could not be loaded for avgrkx64.sys *** WARNING: Unable to verify timestamp for avgloga.sys *** ERROR: Module load completed but symbols could not be loaded for avgloga.sys *** WARNING: Unable to verify timestamp for avgidsha.sys *** ERROR: Module load completed but symbols could not be loaded for avgidsha.sys *** WARNING: Unable to verify timestamp for mbam.sys *** ERROR: Module load completed but symbols could not be loaded for mbam.sys *** WARNING: Unable to verify timestamp for avgtdia.sys *** ERROR: Module load completed but symbols could not be loaded for avgtdia.sys *** WARNING: Unable to verify timestamp for avgldx64.sys *** ERROR: Module load completed but symbols could not be loaded for avgldx64.sys *** WARNING: Unable to verify timestamp for avgidsdrivera.sys *** ERROR: Module load completed but symbols could not be loaded for avgidsdrivera.sys *** WARNING: Unable to verify timestamp for SCDEmu.SYS *** ERROR: Module load completed but symbols could not be loaded for SCDEmu.SYS *** WARNING: Unable to verify timestamp for dump_iaStor.sys *** ERROR: Module load completed but symbols could not be loaded for dump_iaStor.sys *** WARNING: Unable to verify timestamp for avgdiska.sys *** ERROR: Module load completed but symbols could not be loaded for avgdiska.sys *** WARNING: Unable to verify timestamp for AsIO.sys *** ERROR: Module load completed but symbols could not be loaded for AsIO.sys *** WARNING: Unable to verify timestamp for iusb3xhc.sys *** ERROR: Module load completed but symbols could not be loaded for iusb3xhc.sys *** WARNING: Unable to verify timestamp for ctaud2k.sys *** ERROR: Module load completed but symbols could not be loaded for ctaud2k.sys *** WARNING: Unable to verify timestamp for drmk.sys *** ERROR: Module load completed but symbols could not be loaded for drmk.sys *** WARNING: Unable to verify timestamp for e1c62x64.sys *** ERROR: Module load completed but symbols could not be loaded for e1c62x64.sys *** WARNING: Unable to verify timestamp for iusb3hub.sys *** ERROR: Module load completed but symbols could not be loaded for iusb3hub.sys *** WARNING: Unable to verify timestamp for ctoss2k.sys *** ERROR: Module load completed but symbols could not be loaded for ctoss2k.sys *** WARNING: Unable to verify timestamp for ctprxy2k.sys *** ERROR: Module load completed but symbols could not be loaded for ctprxy2k.sys *** WARNING: Unable to verify timestamp for ctsfm2k.sys *** ERROR: Module load completed but symbols could not be loaded for ctsfm2k.sys *** WARNING: Unable to verify timestamp for CT20XUT.SYS *** ERROR: Module load completed but symbols could not be loaded for CT20XUT.SYS *** WARNING: Unable to verify timestamp for Ph3xIB64.sys *** ERROR: Module load completed but symbols could not be loaded for Ph3xIB64.sys *** WARNING: Unable to verify timestamp for asmtxhci.sys *** ERROR: Module load completed but symbols could not be loaded for asmtxhci.sys *** WARNING: Unable to verify timestamp for ISCTD64.sys *** ERROR: Module load completed but symbols could not be loaded for ISCTD64.sys *** WARNING: Unable to verify timestamp for athrx.sys *** ERROR: Module load completed but symbols could not be loaded for athrx.sys *** WARNING: Unable to verify timestamp for tap0901.sys *** ERROR: Module load completed but symbols could not be loaded for tap0901.sys *** WARNING: Unable to verify timestamp for emupia2k.sys *** ERROR: Module load completed but symbols could not be loaded for emupia2k.sys *** WARNING: Unable to verify timestamp for ha20x22k.sys *** ERROR: Module load completed but symbols could not be loaded for ha20x22k.sys *** WARNING: Unable to verify timestamp for CTHWIUT.SYS *** ERROR: Module load completed but symbols could not be loaded for CTHWIUT.SYS *** WARNING: Unable to verify timestamp for nvlddmkm.sys *** ERROR: Module load completed but symbols could not be loaded for nvlddmkm.sys *** WARNING: Unable to verify timestamp for HECIx64.sys *** ERROR: Module load completed but symbols could not be loaded for HECIx64.sys *** WARNING: Unable to verify timestamp for CTEXFIFX.SYS *** ERROR: Module load completed but symbols could not be loaded for CTEXFIFX.SYS *** WARNING: Unable to verify timestamp for nvhda64v.sys *** ERROR: Module load completed but symbols could not be loaded for nvhda64v.sys *** WARNING: Unable to verify timestamp for asmthub3.sys *** ERROR: Module load completed but symbols could not be loaded for asmthub3.sys *** WARNING: Unable to verify timestamp for NisDrvWFP.sys *** ERROR: Module load completed but symbols could not be loaded for NisDrvWFP.sys *** WARNING: Unable to verify timestamp for peauth.sys *** ERROR: Module load completed but symbols could not be loaded for peauth.sys *** WARNING: Unable to verify timestamp for spsys.sys *** ERROR: Module load completed but symbols could not be loaded for spsys.sys *** WARNING: Unable to verify timestamp for iqvw64e.sys *** ERROR: Module load completed but symbols could not be loaded for iqvw64e.sys *** WARNING: Unable to verify timestamp for DUMETR64.SYS *** ERROR: Module load completed but symbols could not be loaded for DUMETR64.SYS *** WARNING: Unable to verify timestamp for ATMFD.DLL *** ERROR: Module load completed but symbols could not be loaded for ATMFD.DLL Couldn't resolve error at 'nalyse -v' 4: kd> *** ERROR: Module load completed but symbols could not be loaded for asahci64.sys 4: kd> *** WARNING: Unable to verify timestamp for amdxata.sys 4: kd> analyse -v Couldn't resolve error at 'nalyse -v' 4: kd> analyse-v Couldn't resolve error at 'nalyse-v' 4: kd> g ^ No runnable debuggees error in 'g' 4: kd> gn ^ No runnable debuggees error in 'gn' 4: kd> .restart /f Loading Dump File [C:\Windows\Minidump\112815-14258-01.dmp] Mini Kernel Dump File: Only registers and stack trace are available ************* Symbol Path validation summary ************** Response Time (ms) Location Deferred SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols Executable search path is: Windows 7 Kernel Version 7601 (Service Pack 1) MP (8 procs) Free x64 Product: WinNt, suite: TerminalServer SingleUserTS Built by: 7601.19045.amd64fre.win7sp1_gdr.151019-1254 Machine Name: Kernel base = 0xfffff800`03004000 PsLoadedModuleList = 0xfffff800`0324b730 Debug session time: Sat Nov 28 12:02:22.204 2015 (UTC + 8:00) System Uptime: 0 days 0:01:37.234 Loading Kernel Symbols . Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long. Run !sym noisy before .reload to track down problems loading symbols. .............................................................. ................................................................ ................................................... Loading User Symbols Loading unloaded module list ... ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* Use !analyze -v to get detailed debugging information.