Blue screen due BCCode: a and driver fault ntoskrnl.exe


  1. sjmittal
    Posts : 4
    wndows 7 64 bit
       New #1

    Blue screen due BCCode: a and driver fault ntoskrnl.exe


    Hi,
    My computer is crashing once a day and due to same error code.
    Typical error log looks like:

    Problem signature
    Problem Event Name: BlueScreen
    OS Version: 6.1.7600.2.0.0.256.1
    Locale ID: 1033

    Extra information about the problem
    BCCode: a
    BCP1: 0000000000000000
    BCP2: 0000000000000002
    BCP3: 0000000000000000
    BCP4: FFFFF80002A817B6
    OS Version: 6_1_7600
    Service Pack: 0_0
    Product: 256_1

    I have windows 7 ultimate 64 bit.

    When I viewed the crash dumps I see that fault is due to ntoskrnl.exe every time.

    Could you please tell me what may be the reason for same.

    I am attaching my dumps for reference.

    Thanks for your help.

    Sachin
    Last edited by sjmittal; 15 Apr 2010 at 23:43. Reason: removed unnecessary zip. attached zip has all dumps
      My Computer
    Quote Quote

  3. zigzag3143
    Posts : 28,845
    Win 8 Release candidate 8400
       New #2

    sjmittal said:
    Hi,
    My computer is crashing once a day and due to same error code.
    Typical error log looks like:

    Problem signature
    Problem Event Name: BlueScreen
    OS Version: 6.1.7600.2.0.0.256.1
    Locale ID: 1033

    Extra information about the problem
    BCCode: a
    BCP1: 0000000000000000
    BCP2: 0000000000000002
    BCP3: 0000000000000000
    BCP4: FFFFF80002A817B6
    OS Version: 6_1_7600
    Service Pack: 0_0
    Product: 256_1

    I have windows 7 ultimate 64 bit.

    When I viewed the crash dumps I see that fault is due to ntoskrnl.exe every time.

    Could you please tell me what may be the reason for same.

    I am attaching my dumps for reference.

    Thanks for your help.

    Sachin
    This crash was probably caused by vfilter.sys which is part of your VPN client software. I would remove it to test. BTW for future reference could you zip all the DMP files into one zip file?

    Thanks
    Ken
    Code:
    Microsoft (R) Windows Debugger Version 6.11.0001.404 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\K\Desktop\040810-19796-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*F:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Kernel Version 7600 MP (8 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7600.16385.amd64fre.win7_rtm.090713-1255
Machine Name:
Kernel base = 0xfffff800`02a17000 PsLoadedModuleList = 0xfffff800`02c54e50
Debug session time: Thu Apr  8 09:58:27.539 2010 (GMT-4)
System Uptime: 0 days 8:32:11.632
Loading Kernel Symbols
...............................................................
................................................................
...........................
Loading User Symbols
Loading unloaded module list
............
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck A, {0, 2, 0, fffff80002a8d0b6}

Unable to load image \SystemRoot\system32\DRIVERS\vfilter.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for vfilter.sys
*** ERROR: Module load completed but symbols could not be loaded for vfilter.sys
Probably caused by : vfilter.sys ( vfilter+29a6 )

Followup: MachineOwner
---------

4: kd> !analyze -v
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************

IRQL_NOT_LESS_OR_EQUAL (a)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If a kernel debugger is available get the stack backtrace.
Arguments:
Arg1: 0000000000000000, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000000, bitfield :
    bit 0 : value 0 = read operation, 1 = write operation
    bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
Arg4: fffff80002a8d0b6, address which referenced memory

Debugging Details:
------------------


READ_ADDRESS: GetPointerFromAddress: unable to read from fffff80002cbf0e0
 0000000000000000 

CURRENT_IRQL:  2

FAULTING_IP: 
nt!KeSetEvent+226
fffff800`02a8d0b6 488b09          mov     rcx,qword ptr [rcx]

CUSTOMER_CRASH_COUNT:  1

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0xA

PROCESS_NAME:  svchost.exe

TRAP_FRAME:  fffff8800abded70 -- (.trap 0xfffff8800abded70)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffffa80062187f8 rbx=0000000000000000 rcx=0000000000000000
rdx=0000000000000001 rsi=0000000000000000 rdi=0000000000000000
rip=fffff80002a8d0b6 rsp=fffff8800abdef00 rbp=0000000000000002
 r8=0000000000000000  r9=0000000000000000 r10=0000000000000000
r11=0000000000000002 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei pl nz ac pe cy
nt!KeSetEvent+0x226:
fffff800`02a8d0b6 488b09          mov     rcx,qword ptr [rcx] ds:0002:00000000`00000000=????????????????
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff80002a88469 to fffff80002a88f00

STACK_TEXT:  
fffff880`0abdec28 fffff800`02a88469 : 00000000`0000000a 00000000`00000000 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`0abdec30 fffff800`02a870e0 : fffff880`0abdf331 fffffa80`062187f0 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
fffff880`0abded70 fffff800`02a8d0b6 : fffff880`0abdef70 fffff880`02cb9b0e 00000000`0000004c fffff880`0abdeff0 : nt!KiPageFault+0x260
fffff880`0abdef00 fffff880`02cb99a6 : fffffa80`00000000 00000000`00000000 00000000`00000000 fffffa80`062187e0 : nt!KeSetEvent+0x226
fffff880`0abdef70 fffffa80`00000000 : 00000000`00000000 00000000`00000000 fffffa80`062187e0 00000000`00000000 : vfilter+0x29a6
fffff880`0abdef78 00000000`00000000 : 00000000`00000000 fffffa80`062187e0 00000000`00000000 fffff880`02cb942b : 0xfffffa80`00000000


STACK_COMMAND:  kb

FOLLOWUP_IP: 
vfilter+29a6
fffff880`02cb99a6 ??              ???

SYMBOL_STACK_INDEX:  4

SYMBOL_NAME:  vfilter+29a6

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: vfilter

IMAGE_NAME:  vfilter.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  4b048bff

FAILURE_BUCKET_ID:  X64_0xA_vfilter+29a6

BUCKET_ID:  X64_0xA_vfilter+29a6

Followup: MachineOwner
---------

    Ken
      My Computer
    Quote Quote

  4. mjaric
    Posts : 1
    Windows 7 Home Premium
       New #3

    I have almost the same codes, can someone help me please with identification error from memory dump, couple instances, but I think they are all the same problem.

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.1.7600.2.0.0.768.3
    Locale ID: 2057

    Additional information about the problem:
    BCCode: a
    BCP1: 0000000000000000
    BCP2: 0000000000000002
    BCP3: 0000000000000000
    BCP4: FFFFF8000428E8B6
    OS Version: 6_1_7600
    Service Pack: 0_0
    Product: 768_1

    I have VPN client that could cause this, but I haven't had this error on my previous box with Windows 7 x64 installed.
      My Computer
    Quote Quote

 

  Related Discussions
I've had this problem intermittently for several months. I have an i5 with 8GB RAM desktop using Windows 7 Home Premier 64 bit.
Blue Screen with BCCode:116
in BSOD Help and Support

Hey, everyone: When I use my computer, i got blue screen. the code is: Problem signature: Problem Event Name: BlueScreen OS Version: 6.0.6002.2.2.0.768.2 Locale ID: 1033 Additional information about the problem: BCCode: 116
Hi, I seem to be getting this blue screen error a-lot now... "Page Fault in Non Paged Area" I have attached a copy of the Minidumps. Can someone help please.
Hey guys, Recently got my new computer, and it is amazing! Only problem is that 2 or 3 times a day i get a BSOD...:( I checked the Minidump files and it's saying something about VISTA_DRIVER_FAULT and ntoskrnl.exe driver fault. This is what the Dump File reads: Loading Dump File Mini...
Blue screen BCCode: a
in BSOD Help and Support

Hi Guys My new PC always resets itself.... I have read some users have similar problem but they have different BCCode... PS: some times the BCCode is different... PLS help me !
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 01:58.
Find Us