Bluescreen beim Starten vista64

[Genim2008]

jo ok werde ich morgen machen sry total genervt werde das net heute mehr hinbekommen gute nacht

 

[riedochs]

jo ok werde ich morgen machen sry total genervt werde das net heute mehr hinbekommen gute nacht

Guts nächtle.

 

[Genim2008]

Microsoft (R) Windows Debugger Version 6.9.0003.113 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [F:\Mini091908-05.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: *** Invalid ***
****************************************************************************
* Symbol loading may be unreliable without a symbol search path. *
* Use .symfix to have the debugger choose a symbol path. *
* After setting your symbol path, use .reload to refresh symbol locations. *
****************************************************************************
Executable search path is:
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image \SystemRoot\system32\ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows Server 2008 Kernel Version 6001 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Kernel base = 0xfffff800`02e1d000 PsLoadedModuleList = 0xfffff800`02fe2db0
Debug session time: Fri Sep 19 16:03:49.346 2008 (GMT+2)
System Uptime: 0 days 0:01:15.423
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Unable to load image \SystemRoot\system32\ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
.........................................................................................................................................
Loading User Symbols
Loading unloaded module list
......
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 3B, {c0000005, fffffa80082f30a7, fffffa600639f0d0, 0}

Unable to load image \SystemRoot\system32\drivers\fltmgr.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for fltmgr.sys
*** ERROR: Module load completed but symbols could not be loaded for fltmgr.sys
***** Kernel symbols are WRONG. Please fix symbols to do analysis.

*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
Unable to load image \SystemRoot\system32\DRIVERS\kl1.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for kl1.sys
*** ERROR: Module load completed but symbols could not be loaded for kl1.sys
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
Probably caused by : kl1.sys ( kl1+202f )

Followup: MachineOwner
---------

3: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the bugcheck
Arg2: fffffa80082f30a7, Address of the exception record for the exception that caused the bugcheck
Arg3: fffffa600639f0d0, Address of the context record for the exception that caused the bugcheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------

***** Kernel symbols are WRONG. Please fix symbols to do analysis.

*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************
*********************************************************************
* Symbols can not be loaded because symbol path is not initialized. *
* *
* The Symbol Path can be set by: *
* using the _NT_SYMBOL_PATH environment variable. *
* using the -y <symbol_path> argument when starting the debugger. *
* using .sympath and .sympath+ *
*********************************************************************

MODULE_NAME: kl1

FAULTING_MODULE: fffff80002e1d000 nt

DEBUG_FLR_IMAGE_TIMESTAMP: 4805d352

EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - Die Anweisung in 0x%08lx verweist auf Speicher 0x%08lx. Der Vorgang %s konnte nicht im Speicher durchgef hrt werden.

FAULTING_IP:
+fffffa80082f30a7
fffffa80`082f30a7 ?? ???

CONTEXT: fffffa600639f0d0 -- (.cxr 0xfffffa600639f0d0)
rax=0000000000000000 rbx=0000000000000000 rcx=fffffa8007998010
rdx=0000000e00000000 rsi=fffffa8007b9bd90 rdi=fffffa800830b790
rip=fffffa80082f30a7 rsp=fffffa600639f938 rbp=fffffa80089e47f0
r8=fffffa8007998010 r9=0000000000000306 r10=000000000006b890
r11=fffffa8008403a80 r12=000000000000021c r13=fffffa80089e4720
r14=fffffa80070072e0 r15=0000000000000000
iopl=0 nv up ei pl nz na po nc
cs=0010 **=0018 ds=002b es=002b fs=0053 gs=002b efl=00010206
fffffa80`082f30a7 ?? ???
Resetting default scope

CUSTOMER_CRASH_COUNT: 5

DEFAULT_BUCKET_ID: WRONG_SYMBOLS

BUGCHECK_STR: 0x3B

LAST_CONTROL_TRANSFER: from fffffa6003d8d02f to fffffa80082f30a7

STACK_TEXT:
fffffa60`0639f938 fffffa60`03d8d02f : 00000000`00000000 fffffa80`089e47f0 fffffa80`07b9bd90 fffffa80`07b9bda4 : 0xfffffa80`082f30a7
fffffa60`0639f940 00000000`00000000 : fffffa80`089e47f0 fffffa80`07b9bd90 fffffa80`07b9bda4 00000000`800520e8 : kl1+0x202f
fffffa60`0639f948 fffffa80`089e47f0 : fffffa80`07b9bd90 fffffa80`07b9bda4 00000000`800520e8 fffffa80`089e47f0 : 0x0
fffffa60`0639f950 fffffa80`07b9bd90 : fffffa80`07b9bda4 00000000`800520e8 fffffa80`089e47f0 00000000`00000000 : 0xfffffa80`089e47f0
fffffa60`0639f958 fffffa80`07b9bda4 : 00000000`800520e8 fffffa80`089e47f0 00000000`00000000 fffffa60`03d8d461 : 0xfffffa80`07b9bd90
fffffa60`0639f960 00000000`800520e8 : fffffa80`089e47f0 00000000`00000000 fffffa60`03d8d461 fffffa80`00000000 : 0xfffffa80`07b9bda4
fffffa60`0639f968 fffffa80`089e47f0 : 00000000`00000000 fffffa60`03d8d461 fffffa80`00000000 00000000`00000000 : 0x800520e8
fffffa60`0639f970 00000000`00000000 : fffffa60`03d8d461 fffffa80`00000000 00000000`00000000 00000000`800520e8 : 0xfffffa80`089e47f0
fffffa60`0639f978 fffffa60`03d8d461 : fffffa80`00000000 00000000`00000000 00000000`800520e8 fffffa80`07b9bd90 : 0x0
fffffa60`0639f980 fffffa80`00000000 : 00000000`00000000 00000000`800520e8 fffffa80`07b9bd90 00000000`00000000 : kl1+0x2461
fffffa60`0639f988 00000000`00000000 : 00000000`800520e8 fffffa80`07b9bd90 00000000`00000000 00000000`00000000 : 0xfffffa80`00000000
fffffa60`0639f990 00000000`800520e8 : fffffa80`07b9bd90 00000000`00000000 00000000`00000000 00000000`20206f49 : 0x0
fffffa60`0639f998 fffffa80`07b9bd90 : 00000000`00000000 00000000`00000000 00000000`20206f49 fffffa80`07b9bd90 : 0x800520e8
fffffa60`0639f9a0 00000000`00000000 : 00000000`00000000 00000000`20206f49 fffffa80`07b9bd90 00000000`800520e8 : 0xfffffa80`07b9bd90
fffffa60`0639f9a8 00000000`00000000 : 00000000`20206f49 fffffa80`07b9bd90 00000000`800520e8 fffffa80`070072e0 : 0x0
fffffa60`0639f9b0 00000000`20206f49 : fffffa80`07b9bd90 00000000`800520e8 fffffa80`070072e0 00000000`800520e8 : 0x0
fffffa60`0639f9b8 fffffa80`07b9bd90 : 00000000`800520e8 fffffa80`070072e0 00000000`800520e8 00000000`00000001 : 0x20206f49
fffffa60`0639f9c0 00000000`800520e8 : fffffa80`070072e0 00000000`800520e8 00000000`00000001 fffffa80`07c88870 : 0xfffffa80`07b9bd90
fffffa60`0639f9c8 fffffa80`070072e0 : 00000000`800520e8 00000000`00000001 fffffa80`07c88870 fffff800`030f882a : 0x800520e8
fffffa60`0639f9d0 00000000`800520e8 : 00000000`00000001 fffffa80`07c88870 fffff800`030f882a fffffa80`07c88870 : 0xfffffa80`070072e0
fffffa60`0639f9d8 00000000`00000001 : fffffa80`07c88870 fffff800`030f882a fffffa80`07c88870 fffffa60`0639fca0 : 0x800520e8
fffffa60`0639f9e0 fffffa80`07c88870 : fffff800`030f882a fffffa80`07c88870 fffffa60`0639fca0 00000000`00000001 : 0x1
fffffa60`0639f9e8 fffff800`030f882a : fffffa80`07c88870 fffffa60`0639fca0 00000000`00000001 fffffa80`089e4720 : 0xfffffa80`07c88870
fffffa60`0639f9f0 fffffa80`07c88870 : fffffa60`0639fca0 00000000`00000001 fffffa80`089e4720 fffffa60`0639fa50 : nt+0x2db82a
fffffa60`0639f9f8 fffffa60`0639fca0 : 00000000`00000001 fffffa80`089e4720 fffffa60`0639fa50 fffffa60`0639fa80 : 0xfffffa80`07c88870
fffffa60`0639fa00 00000000`00000001 : fffffa80`089e4720 fffffa60`0639fa50 fffffa60`0639fa80 00070000`00204000 : 0xfffffa60`0639fca0
fffffa60`0639fa08 fffffa80`089e4720 : fffffa60`0639fa50 fffffa60`0639fa80 00070000`00204000 00000000`00000fac : 0x1
fffffa60`0639fa10 fffffa60`0639fa50 : fffffa60`0639fa80 00070000`00204000 00000000`00000fac 00000000`00f80016 : 0xfffffa80`089e4720
fffffa60`0639fa18 fffffa60`0639fa80 : 00070000`00204000 00000000`00000fac 00000000`00f80016 fffff880`0ab88010 : 0xfffffa60`0639fa50
fffffa60`0639fa20 00070000`00204000 : 00000000`00000fac 00000000`00f80016 fffff880`0ab88010 00000000`00100000 : 0xfffffa60`0639fa80
fffffa60`0639fa28 00000000`00000fac : 00000000`00f80016 fffff880`0ab88010 00000000`00100000 00000000`0000021c : 0x70000`00204000
fffffa60`0639fa30 00000000`00f80016 : fffff880`0ab88010 00000000`00100000 00000000`0000021c fffffa80`07c88870 : 0xfac
fffffa60`0639fa38 fffff880`0ab88010 : 00000000`00100000 00000000`0000021c fffffa80`07c88870 fffffa80`084deb10 : 0xf80016
fffffa60`0639fa40 00000000`00100000 : 00000000`0000021c fffffa80`07c88870 fffffa80`084deb10 00000000`00000000 : 0xfffff880`0ab88010
fffffa60`0639fa48 00000000`0000021c : fffffa80`07c88870 fffffa80`084deb10 00000000`00000000 fffffa60`0639fca0 : 0x100000
fffffa60`0639fa50 fffffa80`07c88870 : fffffa80`084deb10 00000000`00000000 fffffa60`0639fca0 00000000`00000001 : 0x21c
fffffa60`0639fa58 fffffa80`084deb10 : 00000000`00000000 fffffa60`0639fca0 00000000`00000001 fffff800`031044cf : 0xfffffa80`07c88870
fffffa60`0639fa60 00000000`00000000 : fffffa60`0639fca0 00000000`00000001 fffff800`031044cf 00100080`00000000 : 0xfffffa80`084deb10
fffffa60`0639fa68 fffffa60`0639fca0 : 00000000`00000001 fffff800`031044cf 00100080`00000000 00000000`02bae8d0 : 0x0
fffffa60`0639fa70 00000000`00000001 : fffff800`031044cf 00100080`00000000 00000000`02bae8d0 fffffa80`07c88920 : 0xfffffa60`0639fca0
fffffa60`0639fa78 fffff800`031044cf : 00100080`00000000 00000000`02bae8d0 fffffa80`07c88920 fffffa80`07c888c0 : 0x1
fffffa60`0639fa80 00100080`00000000 : 00000000`02bae8d0 fffffa80`07c88920 fffffa80`07c888c0 fffffa80`089e4720 : nt+0x2e74cf
fffffa60`0639fa88 00000000`02bae8d0 : fffffa80`07c88920 fffffa80`07c888c0 fffffa80`089e4720 fffffa80`07c88870 : 0x100080`00000000
fffffa60`0639fa90 fffffa80`07c88920 : fffffa80`07c888c0 fffffa80`089e4720 fffffa80`07c88870 fffffa60`0639fad0 : 0x2bae8d0
fffffa60`0639fa98 fffffa80`07c888c0 : fffffa80`089e4720 fffffa80`07c88870 fffffa60`0639fad0 00000000`00000000 : 0xfffffa80`07c88920
fffffa60`0639faa0 fffffa80`089e4720 : fffffa80`07c88870 fffffa60`0639fad0 00000000`00000000 fffffa80`07c88908 : 0xfffffa80`07c888c0
fffffa60`0639faa8 fffffa80`07c88870 : fffffa60`0639fad0 00000000`00000000 fffffa80`07c88908 fffffa80`084deb10 : 0xfffffa80`089e4720
fffffa60`0639fab0 fffffa60`0639fad0 : 00000000`00000000 fffffa80`07c88908 fffffa80`084deb10 00000000`00000fac : 0xfffffa80`07c88870
fffffa60`0639fab8 00000000`00000000 : fffffa80`07c88908 fffffa80`084deb10 00000000`00000fac fffffa80`08403a80 : 0xfffffa60`0639fad0
fffffa60`0639fac0 fffffa80`07c88908 : fffffa80`084deb10 00000000`00000fac fffffa80`08403a80 fffffa80`07b9bd90 : 0x0
fffffa60`0639fac8 fffffa80`084deb10 : 00000000`00000fac fffffa80`08403a80 fffffa80`07b9bd90 fffffa80`07c88870 : 0xfffffa80`07c88908
fffffa60`0639fad0 00000000`00000fac : fffffa80`08403a80 fffffa80`07b9bd90 fffffa80`07c88870 00000000`00000000 : 0xfffffa80`084deb10
fffffa60`0639fad8 fffffa80`08403a80 : fffffa80`07b9bd90 fffffa80`07c88870 00000000`00000000 00000000`00100080 : 0xfac
fffffa60`0639fae0 fffffa80`07b9bd90 : fffffa80`07c88870 00000000`00000000 00000000`00100080 00000000`75d73380 : 0xfffffa80`08403a80
fffffa60`0639fae8 fffffa80`07c88870 : 00000000`00000000 00000000`00100080 00000000`75d73380 00000000`02baf120 : 0xfffffa80`07b9bd90
fffffa60`0639faf0 00000000`00000000 : 00000000`00100080 00000000`75d73380 00000000`02baf120 00000000`02bafd20 : 0xfffffa80`07c88870
fffffa60`0639faf8 00000000`00100080 : 00000000`75d73380 00000000`02baf120 00000000`02bafd20 00000000`7ef86000 : 0x0
fffffa60`0639fb00 00000000`75d73380 : 00000000`02baf120 00000000`02bafd20 00000000`7ef86000 fffffa60`0639fbc8 : 0x100080
fffffa60`0639fb08 00000000`02baf120 : 00000000`02bafd20 00000000`7ef86000 fffffa60`0639fbc8 00000000`02baf0c8 : 0x75d73380
fffffa60`0639fb10 00000000`02bafd20 : 00000000`7ef86000 fffffa60`0639fbc8 00000000`02baf0c8 fffffa80`08403a80 : 0x2baf120
fffffa60`0639fb18 00000000`7ef86000 : fffffa60`0639fbc8 00000000`02baf0c8 fffffa80`08403a80 fffff800`03111546 : 0x2bafd20
fffffa60`0639fb20 fffffa60`0639fbc8 : 00000000`02baf0c8 fffffa80`08403a80 fffff800`03111546 00000000`00000000 : 0x7ef86000
fffffa60`0639fb28 00000000`02baf0c8 : fffffa80`08403a80 fffff800`03111546 00000000`00000000 00000000`00000000 : 0xfffffa60`0639fbc8
fffffa60`0639fb30 fffffa80`08403a80 : fffff800`03111546 00000000`00000000 00000000`00000000 00000000`00000000 : 0x2baf0c8
fffffa60`0639fb38 fffff800`03111546 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0xfffffa80`08403a80
fffffa60`0639fb40 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`02baf100 : nt+0x2f4546
fffffa60`0639fb48 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`02baf100 00000000`80052001 : 0x0
fffffa60`0639fb50 00000000`00000000 : 00000000`00000000 00000000`02baf100 00000000`80052001 00000000`02caf3f8 : 0x0
fffffa60`0639fb58 00000000`00000000 : 00000000`02baf100 00000000`80052001 00000000`02caf3f8 00000000`0000021c : 0x0
fffffa60`0639fb60 00000000`02baf100 : 00000000`80052001 00000000`02caf3f8 00000000`0000021c 00000000`00000000 : 0x0
fffffa60`0639fb68 00000000`80052001 : 00000000`02caf3f8 00000000`0000021c 00000000`00000000 00000000`00000000 : 0x2baf100
fffffa60`0639fb70 00000000`02caf3f8 : 00000000`0000021c 00000000`00000000 00000000`00000000 00000000`00000001 : 0x80052001
fffffa60`0639fb78 00000000`0000021c : 00000000`00000000 00000000`00000000 00000000`00000001 00000000`00000000 : 0x2caf3f8
fffffa60`0639fb80 00000000`00000000 : 00000000`00000000 00000000`00000001 00000000`00000000 00000000`00000000 : 0x21c
fffffa60`0639fb88 00000000`00000000 : 00000000`00000001 00000000`00000000 00000000`00000000 fffff800`02e71e33 : 0x0


FOLLOWUP_IP:
kl1+202f
fffffa60`03d8d02f ?? ???

SYMBOL_STACK_INDEX: 1

SYMBOL_NAME: kl1+202f

FOLLOWUP_NAME: MachineOwner

IMAGE_NAME: kl1.sys

STACK_COMMAND: .cxr 0xfffffa600639f0d0 ; kb

BUCKET_ID: WRONG_SYMBOLS

Followup: MachineOwner
---------

 

[Genim2008]

ist das was ich suchen sollte sieht ja schon mal anders aus aber irgendwie steht da was von wegen doch net richtig geöffnet und wenn es das richtige ist was soll ich damit anfangen?

hmm also ich habe jetzt nochmal ne andere methode zum öffnen ausprobiert

Im Menü "File" -> "Sybol File Path" tragen Sie in die Eingabebox ein:
"SRV*C:\Symbols*http://msdl.microsoft.com/download/symbols".


das habe ich gemacht und dann crush dum file öffnen geklcikt dann hat er lange geladen und raus kam das (in der datei kam noch was mit !analyze -v dahabe ich draufgeklcikt dann kamen noch ein paar infos dazu):



Microsoft (R) Windows Debugger Version 6.9.0003.113 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [F:\Mini091908-05.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*C:\Symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows Server 2008 Kernel Version 6001 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 6001.18063.amd64fre.vistasp1_gdr.080425-1930
Kernel base = 0xfffff800`02e1d000 PsLoadedModuleList = 0xfffff800`02fe2db0
Debug session time: Fri Sep 19 16:03:49.346 2008 (GMT+2)
System Uptime: 0 days 0:01:15.423
Loading Kernel Symbols
.........................................................................................................................................
Loading User Symbols
Loading unloaded module list
......
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 3B, {c0000005, fffffa80082f30a7, fffffa600639f0d0, 0}

Unable to load image \SystemRoot\system32\DRIVERS\kl1.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for kl1.sys
*** ERROR: Module load completed but symbols could not be loaded for kl1.sys
Probably caused by : kl1.sys ( kl1+202f )

Followup: MachineOwner
---------

3: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

SYSTEM_SERVICE_EXCEPTION (3b)
An exception happened while executing a system service routine.
Arguments:
Arg1: 00000000c0000005, Exception code that caused the bugcheck
Arg2: fffffa80082f30a7, Address of the exception record for the exception that caused the bugcheck
Arg3: fffffa600639f0d0, Address of the context record for the exception that caused the bugcheck
Arg4: 0000000000000000, zero.

Debugging Details:
------------------


EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - Die Anweisung in 0x%08lx verweist auf Speicher 0x%08lx. Der Vorgang %s konnte nicht im Speicher durchgef hrt werden.

FAULTING_IP:
+fffffa80082f30a7
fffffa80`082f30a7 ?? ???

CONTEXT: fffffa600639f0d0 -- (.cxr 0xfffffa600639f0d0)
rax=0000000000000000 rbx=0000000000000000 rcx=fffffa8007998010
rdx=0000000e00000000 rsi=fffffa8007b9bd90 rdi=fffffa800830b790
rip=fffffa80082f30a7 rsp=fffffa600639f938 rbp=fffffa80089e47f0
r8=fffffa8007998010 r9=0000000000000306 r10=000000000006b890
r11=fffffa8008403a80 r12=000000000000021c r13=fffffa80089e4720
r14=fffffa80070072e0 r15=0000000000000000
iopl=0 nv up ei pl nz na po nc
cs=0010 **=0018 ds=002b es=002b fs=0053 gs=002b efl=00010206
fffffa80`082f30a7 ?? ???
Resetting default scope

CUSTOMER_CRASH_COUNT: 5

DEFAULT_BUCKET_ID: COMMON_SYSTEM_FAULT

BUGCHECK_STR: 0x3B

PROCESS_NAME: avp.exe

CURRENT_IRQL: 0

LAST_CONTROL_TRANSFER: from fffffa6003d8d02f to fffffa80082f30a7

STACK_TEXT:
fffffa60`0639f938 fffffa60`03d8d02f : 00000000`00000000 fffffa80`089e47f0 fffffa80`07b9bd90 fffffa80`07b9bda4 : 0xfffffa80`082f30a7
fffffa60`0639f940 00000000`00000000 : fffffa80`089e47f0 fffffa80`07b9bd90 fffffa80`07b9bda4 00000000`800520e8 : kl1+0x202f
fffffa60`0639f948 fffffa80`089e47f0 : fffffa80`07b9bd90 fffffa80`07b9bda4 00000000`800520e8 fffffa80`089e47f0 : 0x0
fffffa60`0639f950 fffffa80`07b9bd90 : fffffa80`07b9bda4 00000000`800520e8 fffffa80`089e47f0 00000000`00000000 : 0xfffffa80`089e47f0
fffffa60`0639f958 fffffa80`07b9bda4 : 00000000`800520e8 fffffa80`089e47f0 00000000`00000000 fffffa60`03d8d461 : 0xfffffa80`07b9bd90
fffffa60`0639f960 00000000`800520e8 : fffffa80`089e47f0 00000000`00000000 fffffa60`03d8d461 fffffa80`00000000 : 0xfffffa80`07b9bda4
fffffa60`0639f968 fffffa80`089e47f0 : 00000000`00000000 fffffa60`03d8d461 fffffa80`00000000 00000000`00000000 : 0x800520e8
fffffa60`0639f970 00000000`00000000 : fffffa60`03d8d461 fffffa80`00000000 00000000`00000000 00000000`800520e8 : 0xfffffa80`089e47f0
fffffa60`0639f978 fffffa60`03d8d461 : fffffa80`00000000 00000000`00000000 00000000`800520e8 fffffa80`07b9bd90 : 0x0
fffffa60`0639f980 fffffa80`00000000 : 00000000`00000000 00000000`800520e8 fffffa80`07b9bd90 00000000`00000000 : kl1+0x2461
fffffa60`0639f988 00000000`00000000 : 00000000`800520e8 fffffa80`07b9bd90 00000000`00000000 00000000`00000000 : 0xfffffa80`00000000
fffffa60`0639f990 00000000`800520e8 : fffffa80`07b9bd90 00000000`00000000 00000000`00000000 00000000`20206f49 : 0x0
fffffa60`0639f998 fffffa80`07b9bd90 : 00000000`00000000 00000000`00000000 00000000`20206f49 fffffa80`07b9bd90 : 0x800520e8
fffffa60`0639f9a0 00000000`00000000 : 00000000`00000000 00000000`20206f49 fffffa80`07b9bd90 00000000`800520e8 : 0xfffffa80`07b9bd90
fffffa60`0639f9a8 00000000`00000000 : 00000000`20206f49 fffffa80`07b9bd90 00000000`800520e8 fffffa80`070072e0 : 0x0
fffffa60`0639f9b0 00000000`20206f49 : fffffa80`07b9bd90 00000000`800520e8 fffffa80`070072e0 00000000`800520e8 : 0x0
fffffa60`0639f9b8 fffffa80`07b9bd90 : 00000000`800520e8 fffffa80`070072e0 00000000`800520e8 00000000`00000001 : 0x20206f49
fffffa60`0639f9c0 00000000`800520e8 : fffffa80`070072e0 00000000`800520e8 00000000`00000001 fffffa80`07c88870 : 0xfffffa80`07b9bd90
fffffa60`0639f9c8 fffffa80`070072e0 : 00000000`800520e8 00000000`00000001 fffffa80`07c88870 fffff800`030f882a : 0x800520e8
fffffa60`0639f9d0 00000000`800520e8 : 00000000`00000001 fffffa80`07c88870 fffff800`030f882a fffffa80`07c88870 : 0xfffffa80`070072e0
fffffa60`0639f9d8 00000000`00000001 : fffffa80`07c88870 fffff800`030f882a fffffa80`07c88870 fffffa60`0639fca0 : 0x800520e8
fffffa60`0639f9e0 fffffa80`07c88870 : fffff800`030f882a fffffa80`07c88870 fffffa60`0639fca0 00000000`00000001 : 0x1
fffffa60`0639f9e8 fffff800`030f882a : fffffa80`07c88870 fffffa60`0639fca0 00000000`00000001 fffffa80`089e4720 : 0xfffffa80`07c88870
fffffa60`0639f9f0 fffff800`03111546 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!IopXxxControlFile+0x5da
fffffa60`0639fb40 fffff800`02e71e33 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!NtDeviceIoControlFile+0x56
fffffa60`0639fbb0 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x13


FOLLOWUP_IP:
kl1+202f
fffffa60`03d8d02f ?? ???

SYMBOL_STACK_INDEX: 1

SYMBOL_NAME: kl1+202f

FOLLOWUP_NAME: MachineOwner

MODULE_NAME: kl1

IMAGE_NAME: kl1.sys

DEBUG_FLR_IMAGE_TIMESTAMP: 4805d352

STACK_COMMAND: .cxr 0xfffffa600639f0d0 ; kb

FAILURE_BUCKET_ID: X64_0x3B_kl1+202f

BUCKET_ID: X64_0x3B_kl1+202f

Followup: MachineOwner
---------

 

[Genim2008]

das steht ja properly caused bei kl1.sys und das ist ja Kaspersky! und bei dem code 0x00000050 kann es auch am antiviren prog liegen soll ich das mal löschen ? aber wie ich kann es unter safe mod net deinsterlieren`? aber wenn ich kaspyersky im safe mod öffne dann geht es ja o.O


edit: oder soll ich die daatier mal löschen?

"Charakteristik: Die Datei kl1.sys befindet sich im Ordner C:\Windows\System32\drivers. Bekannte Dateigrößen unter Windows XP sind 20699 bytes (38% aller Vorkommen), 110360 bytes, 18795 bytes, 104448 bytes, 33299 bytes, 15835 bytes.
Dieser Treiber führt Systemfunktionen auf niedriger Hardware-Ebene aus (z.B. zur Ansteuerung von Grafikkarte oder Drucker). Die Anwendung hat kein sichtbares Fenster. Die Datei kl1.sys ist keine Windows System Datei. Es ist keine genauere Beschreibung über diesen Dienst ermittelbar. kl1.sys scheint eine komprimierte Datei zu sein. Deshalb bewerten wir diese Datei zu 24% als gefährlich, aber vergleichen Sie diese Wertung mit den Mitglieder Meinungen."
das habe ich im inet dazu gefunden

 

[Bioschnitzel]

SYSTEM_SERVICE_EXCEPTION (3b)

PROCESS_NAME: avp.exe

IMAGE_NAME: kl1.sys


Joa klingt doch schonmal sehr nach dem netten Virenscanner

Also runter damit.

Mfg

 

[Genim2008]

aber wie runter ich kan das net deinsterlieren

 

[Bioschnitzel]

aber wie runter ich kan das net deinsterlieren

Warum?

Dann lösch die Dateien und lasse nen RegCleaner drüber laufen.

Mfg

 

[Genim2008]

die kl1.sys datei habe ich gefunden wo finde ich aber die avp.exe ? und kann ich die bedenkenlos löschen oder sollte ich backup machen?

 

[Bioschnitzel]

die kl1.sys datei habe ich gefunden wo finde ich aber die avp.exe ? und kann ich die bedenkenlos löschen oder sollte ich backup machen?

Backup ist nie verkehrt. Allerdings kannst du ja Später Problemlos das Programm nochmals installieren.

Wo die exe ist kann ich dir nicht sagen....musste schon selber auf deinem Rechner finden

 

[Genim2008]

joo habe ich gefunden das ist die ausführ datei von kaspersky hätt mir ja logisch erscheinen müssen

 

[Genim2008]

BÄMM! ist das geil! ^^ es klapt wieder


DANKESCHÖN für eure schnelle Hilfe und gedult wenn ich mal was nicht sofort verstanden habe xDD!! meint ihr soll ich mich trauen Kaspersky dann nochmal neu zu insterlieren?

 

[Bioschnitzel]

BÄMM! ist das geil! ^^ es klapt wieder


DANKESCHÖN für eure schnelle Hilfe und gedult wenn ich mal was nicht sofort verstanden habe xDD!! meint ihr soll ich mich trauen Kaspersky dann nochmal neu zu insterlieren?

Hmm joa kannste eigentlich machen. Ich denke mir das Problem wird sein, wenn eine Datei gescannt wird (was ein Virenscanner immer tut bevor die datei auf der PLatte landet) und dieser Vorgang irgenwie Unterbrochen wird, dann haste nen Problem

Hatten wa schon öfters bei Kunden.

Wenns wieder auftaucht das Problem weiste ja wie du es beheben kannst

Mfg

 

[Genim2008]

jo ok danke

 

[jetztaber]

Ahh, habe auch Kaspersky drauf. Hab das jetzt erst gefunden:
heise online - 20.09.08 - Kaspersky-Update zerlegte Vista 64

 

[Genim2008]

ja lol xDD^^

 

[kmf]

Bluescreen of Death.

Heißt BSOD um genau zu sein. Blue Screen of Dead.


Aber schon geil, dass so ein Virenscanner ein Betriebssystem vom Schlage eines Vista64 derart stören kann. Scheint doch nicht so weit her zu sein mit dem OS.

 

[jetztaber]

Blue Screen of Death!

 

[Stefan Payne]

Heißt BSOD um genau zu sein. Blue Screen of Dead.


Aber schon geil, dass so ein Virenscanner ein Betriebssystem vom Schlage eines Vista64 derart stören kann. Scheint doch nicht so weit her zu sein mit dem OS.

Nee, es ist kein blauer Schirm der Toten (Dead), es ist ein blauer Schirm des Todes (death)

Du weißt ja, der Tod -> the death.
to be dead
The dead wären die Toten und undead idR Zombies

 

[kmf]

Nee, es ist kein blauer Schirm der Toten (Dead), es ist ein blauer Schirm des Todes (death)

Du weißt ja, der Tod -> the death.
to be dead
The dead wären die Toten und undead idR Zombies

Hast recht.
Meine Konzentration war auch schon mal besser.