Ntoskrnl.exe蓝屏

来自三线的随记
Admin讨论 | 贡献2018年5月15日 (二) 19:19的版本 (创建页面,内容为“=== dmp文件分析信息如下 === Microsoft (R) Windows Debugger Version 10.0.16299.309 X86 Copyright (c) Microsoft Corporation. All rights reserved. Loadin…”)
(差异) ←上一版本 | 最后版本 (差异) | 下一版本→ (差异)

dmp文件分析信息如下

Microsoft (R) Windows Debugger Version 10.0.16299.309 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Users\Administrator\Desktop\051518-30296-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: srv*
Executable search path is: 
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows 10 Kernel Version 16299 MP (4 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Machine Name:
Kernel base = 0x81c12000 PsLoadedModuleList = 0x81e682b8
Debug session time: Tue May 15 18:48:35.850 2018 (UTC + 8:00)
System Uptime: 0 days 0:06:45.940
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
................................................................
..................................................
Loading User Symbols
Loading unloaded module list
..........

************* Symbol Loading Error Summary **************
Module name            Error
ntoskrnl               The system cannot find the file specified

You can troubleshoot most symbol related issues by turning on symbol loading diagnostics (!sym noisy) and repeating the command that caused symbols to be loaded.
You should also verify that your symbol search path (.sympath) is correct.
Unable to add extension DLL: kdexts
Unable to add extension DLL: kext
Unable to add extension DLL: exts
The call to LoadLibrary(ext) failed, Win32 error 0n2
    "系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
No .natvis files found at C:\WINDOWS\SYSTEM32\Visualizers.
No .natvis files found at C:\Users\Administrator\AppData\Local\Dbg\Visualizers.
The call to LoadLibrary(ext) failed, Win32 error 0n2
    "系统找不到指定的文件。"
Please check your debugger configuration and/or network access.
*******************************************************************************
*                                                                             *
*                        Bugcheck Analysis                                    *
*                                                                             *
*******************************************************************************
Bugcheck code 1000007F
Arguments 00000008 80bf8c00 00000000 00000000

ChildEBP RetAddr  Args to Child              
WARNING: Stack unwind information not available. Following frames may be wrong.
8793900c 81d0e29d 0000657c 00000002 81e6c500 nt+0xfea7b
87939030 81d0dfe5 822d8ca8 822d8ca8 000000d2 nt+0xfc29d
*** WARNING: Unable to verify timestamp for hal.dll
*** ERROR: Module load completed but symbols could not be loaded for hal.dll
87939090 822b19d2 879390c8 81c79ef0 822d8ca8 nt+0xfbfe5
87939098 81c79ef0 822d8ca8 00000000 822d8ca8 hal+0x189d2
879390c8 81d760db 8793916c 81d6f1a7 0002ba02 nt+0x67ef0
879390d0 81d6f1a7 0002ba02 000000d2 cb3539c8 nt+0x1640db
8793916c 81d2e153 badb0d00 00000000 879392c0 nt+0x15d1a7
8793929c 81d2c956 92de3904 c98c16cc 00000000 nt+0x11c153
8793936c 81d2b847 92de3904 00000000 00000001 nt+0x11a956
87939474 81caaab6 c98c16b8 00000000 879394b0 nt+0x119847
*** WARNING: Unable to verify timestamp for NETIO.SYS
*** ERROR: Module load completed but symbols could not be loaded for NETIO.SYS
879394c0 880083c0 c98c16b8 92de3904 00000000 nt+0x98ab6
87939520 88005d22 87939840 87939590 00000000 NETIO+0x83c0
879395dc 8800655f 87939620 00000020 00000002 NETIO+0x5d22
879396d0 88004a84 afa8bde0 879397a4 00000000 NETIO+0x655f
87939700 8800a440 00000000 87939720 00000000 NETIO+0x4a84
87939760 880374a0 0000002c 879397a4 8793a1c8 NETIO+0xa440
*** WARNING: Unable to verify timestamp for tcpip.sys
*** ERROR: Module load completed but symbols could not be loaded for tcpip.sys
87939780 8884f7e0 0000002c 879397e0 879397a4 NETIO+0x374a0
8793a114 8884da94 00000002 8ae17020 000086e3 tcpip+0x1f7e0
8793a1fc 8884cf83 00000011 cc9da7a0 8ae17020 tcpip+0x1da94
8793a3d0 8884b5ba 00000002 000086e3 0000186a tcpip+0x1cf83
8793a678 8884a337 000086e3 0000186a 8ae17020 tcpip+0x1b5ba
8793a708 88866a42 00000002 00000011 000086e3 tcpip+0x1a337
8793aa28 888660b0 8d176000 8793aa70 8793aa58 tcpip+0x36a42
8793ad48 8886317b 00000011 00000000 88994000 tcpip+0x360b0
8793ad80 88862df6 8793adc8 8793adc0 8793add8 tcpip+0x3317b
8793adf0 88860ae7 c366f928 81cb8de0 ffffffff tcpip+0x32df6
8793ae64 88860075 8793af01 00000000 8793af14 tcpip+0x30ae7
*** WARNING: Unable to verify timestamp for wanarp.sys
*** ERROR: Module load completed but symbols could not be loaded for wanarp.sys
8793ae74 94dd30c2 cc80a9f0 8d5ceee8 8793af01 tcpip+0x30075
*** WARNING: Unable to verify timestamp for ndis.sys
*** ERROR: Module load completed but symbols could not be loaded for ndis.sys
8793af14 884a9e28 0cabb1e4 8d5ceee8 00000000 wanarp+0x30c2
8793af8c 884b7ea0 00000000 00000001 00000001 ndis+0x9e28
*** WARNING: Unable to verify timestamp for ndiswan.sys
*** ERROR: Module load completed but symbols could not be loaded for ndiswan.sys
8793b07c ba4ae840 b8fce0e8 8d5ceee8 00000000 ndis+0x17ea0
8793b0d0 ba49aa48 b9788d16 00000050 cc8d16f0 ndiswan+0x1e840
8793b0f8 ba4ae17e cc8d16f0 b9788d14 00000052 ndiswan+0xaa48
8793b138 ba4adf7e cc8871d8 c36fdd60 00000000 ndiswan+0x1e17e
8793b150 ba4968e6 c36fdd60 cc8d16f0 8d4c7608 ndiswan+0x1df7e
8793b19c 884d794e b8fcd008 00000001 b40cb158 ndiswan+0x68e6
8793b1d0 884d7baa 92e6cbc0 b40cb158 00000001 ndis+0x3794e
*** WARNING: Unable to verify timestamp for raspppoe.sys
*** ERROR: Module load completed but symbols could not be loaded for raspppoe.sys
8793b1e8 ba46b159 92e6cbc0 b40cb158 00000001 ndis+0x37baa
8793b810 ba46e5f1 92e7add8 b40390e8 b40cb158 raspppoe+0xb159
8793b854 884a9e28 94f9a650 b40cb158 00000000 raspppoe+0xe5f1
8793b8cc 884aa98d 00000000 00000001 00000001 ndis+0x9e28
*** WARNING: Unable to verify timestamp for rt640x86.sys
*** ERROR: Module load completed but symbols could not be loaded for rt640x86.sys
8793b9bc 914825e6 b40390e8 b40cb158 00000000 ndis+0xa98d
8793bacc 9147183d b404f000 b404f001 0000000a rt640x86+0x125e6
8793bb00 884a2534 b404f001 00000000 8793bb40 rt640x86+0x183d
8793bb58 884a25d3 00000000 00000000 b40d7b34 ndis+0x2534
8793bbb4 884bb50d b40d7b34 00000000 8d0cd040 ndis+0x25d3
8793bc38 81ca3a9c 00000000 fcfe3567 00000000 ndis+0x1b50d
8793bc70 81d76ac1 884bb338 00000000 00000000 nt+0x91a9c
8793bc74 884bb338 00000000 00000000 00000000 nt+0x164ac1
8793bc78 00000000 00000000 00000000 00000000 ndis+0x1b338

1.尝试chkdsk c: /f