Shintaro
Well-known member
You could run MGADiag.exe from Microsoft.
Symbols could not be loaded for win32k.sys
- Thread starter writhziden
- Start date
Any chance of a !sym noisy and logfile for some of these dumps?
The missing symbols issue for win32k.sys has been around for a long while.
I didn't get any win32k.sys errors on the batch of dumps from Mike's first post - but I did get ntoskrnl.exe symbol errors on all (so that might prevent the win32k.sys from being picked up)
Got win32k.sys errors on all dumps after upgrading to the latest version of the SysnativeBSODApps.exe
I plan on reinstalling Win8 and the Debugging Tools today - I'll post back if things change.
Any difference in the version of KD being used?
Any difference when using WinDbg?In my case, WinDbg is able to get the ntoskrnl.exe symbols - and then gives me the win32k.sys errors.
Could it be that either kd.exe or the SysnativeBSODApps.exe is causing my ntoskrnl.exe errors - and the symbol server is causing the win32k.sys errors?
*****************************************************************
As I recall, we had a similar issue a while back (but it was with ntoskrnl.exe - and it was that the binary wasn't on the symbol server, but the symbols were.
To check this, we'll need access to system with the errors and the ability to run the debugger on that system. In that case put the path to win32k.sys into the .exepath
I'd suppose you could do this on your system - but wonder if the differences in the versions would cause issues for your system (or for the dumps that were run). If able to verify versions of win32k.sys you might be able to get away with running any dumps that have the same version - at least to see if it fixes the win32k.sys error. (maybe get them to zip up and upload a copy of their win32k.sys?)
EDIT: Strikeouts are due to the fix in locating ntoskrnl.exe symbol errors on my system.
Got win32k.sys errors on all dumps after upgrading to the latest version of the SysnativeBSODApps.exe
I plan on reinstalling Win8 and the Debugging Tools today - I'll post back if things change.
Any difference in the version of KD being used?
Any difference when using WinDbg?
Could it be that either kd.exe or the SysnativeBSODApps.exe is causing my ntoskrnl.exe errors - and the symbol server is causing the win32k.sys errors?
*****************************************************************
As I recall, we had a similar issue a while back (but it was with ntoskrnl.exe - and it was that the binary wasn't on the symbol server, but the symbols were.
To check this, we'll need access to system with the errors and the ability to run the debugger on that system. In that case put the path to win32k.sys into the .exepath
I'd suppose you could do this on your system - but wonder if the differences in the versions would cause issues for your system (or for the dumps that were run). If able to verify versions of win32k.sys you might be able to get away with running any dumps that have the same version - at least to see if it fixes the win32k.sys error. (maybe get them to zip up and upload a copy of their win32k.sys?)
EDIT: Strikeouts are due to the fix in locating ntoskrnl.exe symbol errors on my system.
Last edited:
Code:
DBGENG: win32k.sys - Partial symbol image load missing image infoDBGHELP: No header for win32k.sys. Searching for dbg file
DBGHELP: .\win32k.dbg - file not found
DBGHELP: .\sys\win32k.dbg - path not found
DBGHELP: .\symbols\sys\win32k.dbg - path not found
DBGHELP: win32k.sys missing debug info. Searching for pdb anyway
DBGHELP: Can't use symbol server for win32k.pdb - no header information available
DBGHELP: win32k.pdb - file not found
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
DBGHELP: win32k - no symbols loaded
fffff960`00050000 fffff960`00365000 win32k [B]win32k.sys unavailable (00000000)[/B]
DBGENG: win32k.sys - Partial symbol image load missing image info
DBGHELP: No header for win32k.sys. Searching for dbg file
DBGHELP: .\win32k.dbg - file not found
DBGHELP: .\sys\win32k.dbg - path not found
DBGHELP: .\symbols\sys\win32k.dbg - path not found
DBGHELP: win32k.sys missing debug info. Searching for pdb anyway
DBGHELP: Can't use symbol server for win32k.pdb - no header information available
DBGHELP: win32k.pdb - file not found
fffff960`000b0000 fffff960`003c5000 win32k [B]win32k.sys Mon Jun 11 21:08:09 2012 (4FD6B299)[/B]I will also supply you with 0.9.9.5 that has the problem fixed for these two cases of win32k.sys:
Code:
[LIST=1]
[*][B][COLOR=RED]FIXED[/COLOR][/B] Problem with template loading if template lines are longer than 255 characters
[*][B][COLOR=RED]FIXED[/COLOR][/B] Problem with win32k.sys symbols if the module information is unavailable or timestamp has 08:09 2012 in the timestamp
[/LIST]
Last edited:
Thanks. This may be a local issue for the unavailable case with OPs having an incomplete .dmp or a bad win32k.sys driver.
I am curious to see what they say about the Mon Jun 11 21:08:09 2012 timestamp, though. Let us know if you get any feedback.
I am curious to see what they say about the Mon Jun 11 21:08:09 2012 timestamp, though. Let us know if you get any feedback.
Do you still see them for the files in this thread? https://www.sysnative.com/forums/attachment.php?attachmentid=1477&d=1345489187
0.9.9.5 does not suppress the messages. It will still output the message if win32k.sys actually has symbol issues. What it does not do is go online to get symbols if the module list itself already has unavailable for win32k.sys or if it has the 08:09 2012 timestamp since online symbols cannot currently resolve these two issues. I am not sure if online symbols can ever resolve the unavailable case. In those two cases, you should still get messages that win32k.sys symbols could not be verified.
Also, here is a .dmp with the 08:09 2012 timestamp: View attachment 071712-19188-01.zip
0.9.9.5 does not suppress the messages. It will still output the message if win32k.sys actually has symbol issues. What it does not do is go online to get symbols if the module list itself already has unavailable for win32k.sys or if it has the 08:09 2012 timestamp since online symbols cannot currently resolve these two issues. I am not sure if online symbols can ever resolve the unavailable case. In those two cases, you should still get messages that win32k.sys symbols could not be verified.
Also, here is a .dmp with the 08:09 2012 timestamp: View attachment 071712-19188-01.zip
Last edited:
Thanks Mike!
I guess that I got lucky in the last few dumps that I've done - no win32k.sys issues
I still see them in the above examples - so it's certain that it's not fixed yet.
I haven't received an email back from the symbol server folks - and as I recall they were very good about emailing me back.
Hmmmmm........
I guess that I got lucky in the last few dumps that I've done - no win32k.sys issues
I still see them in the above examples - so it's certain that it's not fixed yet.
I haven't received an email back from the symbol server folks - and as I recall they were very good about emailing me back.
Hmmmmm........
You're welcome :smile9:
I'll check the .dmps included in this thread periodically. I'll run them through WinDbg with online symbols, and then I will update the program accordingly if the symbols are cleared up for the win32k.sys module.
Hopefully the symbol server folks get back to you, too. It would be nice to know whether the issue is on their side or on the OP's side.
I'll check the .dmps included in this thread periodically. I'll run them through WinDbg with online symbols, and then I will update the program accordingly if the symbols are cleared up for the win32k.sys module.
Hopefully the symbol server folks get back to you, too. It would be nice to know whether the issue is on their side or on the OP's side.
Same here - wun32k sym error -
Windbg:
Code:
win32k.sys Mon Jun 11 23:08:09 2012 (4FD6B299)Windbg:
Code:
6: kd> [COLOR="#FF0000"]lmvm win32k[/COLOR]
start end module name
fffff960`000b0000 fffff960`003c5000 win32k T (no symbols)
Loaded symbol image file: win32k.sys
Image path: \SystemRoot\System32\win32k.sys
Image name: win32k.sys
Timestamp: Mon Jun 11 23:08:09 2012 (4FD6B299)
CheckSum: 00308196
ImageSize: 00315000
Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4
Code:
6: kd> [COLOR="#FF0000"]lml[/COLOR]
start end module name
fffff800`05c62000 fffff800`0624a000 nt (pdb symbols) a:\symbols\ntkrnlmp.pdb\ABD176D2C7AE41B88BBF2837A09A462C2\ntkrnlmp.pdb
fffff960`000b0000 fffff960`003c5000 win32k T (no symbols)
Code:
6: kd>[COLOR="#FF0000"] !sym noisy[/COLOR]
noisy mode - symbol prompts on
6: kd> [COLOR="#FF0000"].reload [/COLOR]
DBGHELP: a:\symbols\ntoskrnl.exe\4FA390F35e8000\ntoskrnl.exe - OK
DBGENG: a:\symbols\ntoskrnl.exe\4FA390F35e8000\ntoskrnl.exe - Mapped image memory
DBGHELP: nt - public symbols
a:\symbols\ntkrnlmp.pdb\ABD176D2C7AE41B88BBF2837A09A462C2\ntkrnlmp.pdb
Loading Kernel Symbols
.
SYMSRV: a:\symbols\halaacpi.dll\4CE7C66949000\halaacpi.dll not found
SYMSRV: http://msdl.microsoft.com/download/symbols/halaacpi.dll/4CE7C66949000/halaacpi.dll not found
SYMSRV: a:\symbols\halacpi.dll\4CE7C66949000\halacpi.dll not found
SYMSRV: http://msdl.microsoft.com/download/symbols/halacpi.dll/4CE7C66949000/halacpi.dll not found
SYMSRV: a:\symbols\halapic.dll\4CE7C66949000\halapic.dll not found
SYMSRV: http://msdl.microsoft.com/download/symbols/halapic.dll/4CE7C66949000/halapic.dll not found
SYMSRV: a:\symbols\halmacpi.dll\4CE7C66949000\halmacpi.dll not found
SYMSRV: http://msdl.microsoft.com/download/symbols/halmacpi.dll/4CE7C66949000/halmacpi.dll not found
SYMSRV: a:\symbols\halmps.dll\4CE7C66949000\halmps.dll not found
SYMSRV: http://msdl.microsoft.com/download/symbols/halmps.dll/4CE7C66949000/halmps.dll not found
DBGHELP: a:\symbols\hal.dll\4CE7C66949000\hal.dll - OK
DBGENG: a:\symbols\hal.dll\4CE7C66949000\hal.dll - Mapped image memory
.
DBGHELP: a:\symbols\kdcom.dll\4D4D8061a000\kdcom.dll - OK
DBGENG: a:\symbols\kdcom.dll\4D4D8061a000\kdcom.dll - Mapped image memory
.............................................................
................................................................
...................................................
Loading User Symbols
Loading unloaded module list
....
Code:
6: kd> [COLOR="#FF0000"].reload win32k[/COLOR]
"win32k" was not found in the image list.
Debugger will attempt to load "win32k" at given base 00000000`00000000.
Please provide the full image name, including the extension (i.e. kernel32.dll)
for more reliable results.Base address and size overrides can be given as
.reload <image.ext>=<base>,<size>.
DBGENG: win32k - Partial symbol image load missing image info
DBGHELP: No header for win32k. Searching for dbg file
DBGHELP: .\win32k.dbg - file not found
DBGHELP: win32k missing debug info. Searching for pdb anyway
DBGHELP: Can't use symbol server for win32k.pdb - no header information available
DBGHELP: win32k.pdb - file not found
DBGHELP: win32k_0 - no symbols loaded
Unable to add module at 00000000`00000000
Code:
6: kd> [COLOR="#FF0000"]vertarget[/COLOR]
Windows 7 Kernel Version 7601 (Service Pack 1) MP (12 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
Machine Name:
DBGHELP: a:\symbols\srv.sys\4DBA2B1E98000\srv.sys - OK
DBGENG: a:\symbols\srv.sys\4DBA2B1E98000\srv.sys - Mapped image memory
DBGHELP: srv - public symbols
a:\symbols\srv.pdb\957B3A5B8F9E4F6C8B9B130B44A459CE2\srv.pdb
Kernel base = 0xfffff800`05c62000 PsLoadedModuleList = 0xfffff800`05ea6670
Debug session time: Tue Jul 17 03:15:30.568 2012 (UTC - 4:00)
System Uptime: 0 days 0:15:14.427
Code:
6: kd> [COLOR="#FF0000"]lmvm win32k[/COLOR]
start end module name
SYMSRV: a:\symbols\win32k.sys\4FD6B299315000\win32k.sys not found
SYMSRV: http://msdl.microsoft.com/download/symbols/win32k.sys/4FD6B299315000/win32k.sys not found
DBGHELP: C:\Users\PALMDE~1\AppData\Local\Temp\SAL675.tmp\win32k.sys - file not found
SYMSRV: a:\symbols\win32k.sys\4FD6B299315000\win32k.sys not found
SYMSRV: http://msdl.microsoft.com/download/symbols/win32k.sys/4FD6B299315000/win32k.sys not found
DBGENG: \SystemRoot\System32\win32k.sys - Image mapping disallowed by non-local path.
fffff960`000b0000 fffff960`003c5000 win32k (deferred)
Image path: \SystemRoot\System32\win32k.sys
Image name: win32k.sys
Timestamp: Mon Jun 11 23:08:09 2012 (4FD6B299)
CheckSum: 00308196
ImageSize: 00315000
Translations: 0000.04b0 0000.04e4 0409.04b0 0409.04e4
Code:
6: kd> [COLOR="#FF0000"]lm[/COLOR]
start end module name
fffff800`05c19000 fffff800`05c62000 hal (deferred)
fffff800`05c62000 fffff800`0624a000 nt (pdb symbols) a:\symbols\ntkrnlmp.pdb\ABD176D2C7AE41B88BBF2837A09A462C2\ntkrnlmp.pdb
fffff800`06408000 fffff800`06412000 kdcom (deferred)
fffff880`00c00000 fffff880`00c72000 cng (deferred)
fffff880`00c96000 fffff880`00ce5000 mcupdate_GenuineIntel (deferred)
fffff880`00ce5000 fffff880`00cf9000 PSHED (deferred)
fffff880`00cf9000 fffff880`00d57000 CLFS (deferred)
fffff880`00d57000 fffff880`00d8a000 pci (deferred)
fffff880`00d8a000 fffff880`00de6000 volmgrx (deferred)
fffff880`00e00000 fffff880`00ea4000 Wdf01000 (deferred)
fffff880`00ea4000 fffff880`00eb3000 WDFLDR (deferred)
fffff880`00eb3000 fffff880`00ec0000 vdrvroot (deferred)
fffff880`00ed1000 fffff880`00f91000 CI (deferred)
fffff880`00f91000 fffff880`00fe8000 ACPI (deferred)
fffff880`00fe8000 fffff880`00ff1000 WMILIB (deferred)
fffff880`00ff1000 fffff880`00ffb000 msisadrv (deferred)
fffff880`01000000 fffff880`0102a000 ataport (deferred)
fffff880`0102b000 fffff880`0178a000 kl1 (deferred)
fffff880`0178a000 fffff880`0179f000 partmgr (deferred)
fffff880`0179f000 fffff880`017b4000 volmgr (deferred)
fffff880`017b4000 fffff880`017b5e00 AiChargerPlus (deferred)
fffff880`017b6000 fffff880`017d0000 mountmgr (deferred)
fffff880`017d0000 fffff880`017d9000 atapi (deferred)
fffff880`017d9000 fffff880`017e4000 msahci (deferred)
fffff880`017e4000 fffff880`017f4000 PCIIDEX (deferred)
fffff880`01800000 fffff880`0185e000 msrpc (deferred)
fffff880`0185e000 fffff880`01879000 raspppoe (deferred)
fffff880`01879000 fffff880`0189a000 raspptp (deferred)
fffff880`0189a000 fffff880`018b4000 rassstp (deferred)
fffff880`018b7000 fffff880`048bb000 iaStorA (deferred)
fffff880`048bb000 fffff880`0491e000 storport (deferred)
fffff880`0491e000 fffff880`0492a000 asahci64 (deferred)
fffff880`0492a000 fffff880`04935000 amdxata (deferred)
fffff880`04935000 fffff880`04981000 fltmgr (deferred)
fffff880`04981000 fffff880`04995000 fileinfo (deferred)
fffff880`04995000 fffff880`049c3000 symsnap (deferred)
fffff880`04a00000 fffff880`04a1b000 ksecdd (deferred)
fffff880`04a1b000 fffff880`04a2c000 pcw (deferred)
fffff880`04a2c000 fffff880`04a36000 Fs_Rec (deferred)
fffff880`04a36000 fffff880`04a48000 umbus (deferred)
fffff880`04a4b000 fffff880`04bee000 Ntfs (deferred)
fffff880`04c07000 fffff880`04cfa000 ndis (deferred)
fffff880`04cfa000 fffff880`04d5a000 NETIO (deferred)
fffff880`04d5a000 fffff880`04d84000 ksecpkg (deferred)
fffff880`04d84000 fffff880`04de8000 asmtxhci (deferred)
fffff880`04de8000 fffff880`04df7000 mouclass (deferred)
fffff880`04e00000 fffff880`04e3a000 fvevol (deferred)
fffff880`04e3a000 fffff880`04e50000 disk (deferred)
fffff880`04e50000 fffff880`04e80000 CLASSPNP (deferred)
fffff880`04e98000 fffff880`04ebc000 rasl2tp (deferred)
fffff880`04ebc000 fffff880`04ecb000 kbdclass (deferred)
fffff880`04ed1000 fffff880`050d4000 tcpip (deferred)
fffff880`050d4000 fffff880`0511e000 fwpkclnt (deferred)
fffff880`0511e000 fffff880`0516a000 volsnap (deferred)
fffff880`0516a000 fffff880`05172000 spldr (deferred)
fffff880`05172000 fffff880`051ac000 rdyboost (deferred)
fffff880`051ac000 fffff880`051be000 mup (deferred)
fffff880`051be000 fffff880`051c7000 iaStorF (deferred)
fffff880`051c7000 fffff880`051d0000 hwpolicy (deferred)
fffff880`051d0000 fffff880`051ff000 ndiswan (deferred)
fffff880`07c00000 fffff880`07c51000 rdbss (deferred)
fffff880`07c51000 fffff880`07c5d000 nsiproxy (deferred)
fffff880`07c5d000 fffff880`07c68000 mssmbios (deferred)
fffff880`07c68000 fffff880`07c77000 discache (deferred)
fffff880`07c79000 fffff880`07d02000 afd (deferred)
fffff880`07d02000 fffff880`07d47000 netbt (deferred)
fffff880`07d47000 fffff880`07d50000 wfplwf (deferred)
fffff880`07d50000 fffff880`07d76000 pacer (deferred)
fffff880`07d76000 fffff880`07d7f000 klim6 (deferred)
fffff880`07d7f000 fffff880`07d8e000 netbios (deferred)
fffff880`07d8e000 fffff880`07da9000 wanarp (deferred)
fffff880`07da9000 fffff880`07dbd000 termdd (deferred)
fffff880`07dbd000 fffff880`07ddb000 dfsc (deferred)
fffff880`07ddb000 fffff880`07dec000 blbdrive (deferred)
fffff880`07dec000 fffff880`07df3000 AsUpIO (deferred)
fffff880`07df3000 fffff880`07df9000 AsIO (deferred)
fffff880`08000000 fffff880`08031000 ctoss2k (deferred)
fffff880`08031000 fffff880`08039000 ctprxy2k (deferred)
fffff880`08039000 fffff880`0803e200 ksthunk (deferred)
fffff880`0803f000 fffff880`08095000 USBPORT (deferred)
fffff880`08095000 fffff880`080a2000 tap0901 (deferred)
fffff880`080a9000 fffff880`08151b80 ctaud2k (deferred)
fffff880`08152000 fffff880`0818f000 portcls (deferred)
fffff880`0818f000 fffff880`081b1000 drmk (deferred)
fffff880`081b1000 fffff880`081f4000 ks (deferred)
fffff880`081f4000 fffff880`081ff000 btath_bus (deferred)
fffff880`08200000 fffff880`08257000 e1c62x64 (deferred)
fffff880`0825c000 fffff880`08350000 dxgkrnl (deferred)
fffff880`08350000 fffff880`08396000 dxgmms1 (deferred)
fffff880`08396000 fffff880`083ba000 HDAudBus (deferred)
fffff880`083ba000 fffff880`083cb000 HECIx64 (deferred)
fffff880`083cb000 fffff880`083dc000 usbehci (deferred)
fffff880`083dc000 fffff880`083e9000 GEARAspiWDM (deferred)
fffff880`083e9000 fffff880`083f5000 ICCWDT (deferred)
fffff880`083f5000 fffff880`083fe000 wmiacpi (deferred)
fffff880`083fe000 fffff880`083ff480 swenum (deferred)
fffff880`08637000 fffff880`08691000 usbhub (deferred)
fffff880`08691000 fffff880`086a6000 NDProxy (deferred)
fffff880`086a6000 fffff880`08702000 HdAudio (deferred)
fffff880`08702000 fffff880`08738000 fastfat (deferred)
fffff880`08738000 fffff880`08770000 ctsfm2k (deferred)
fffff880`08770000 fffff880`087ad000 CT20XUT (deferred)
fffff880`087ad000 fffff880`087c5000 BTHUSB (deferred)
fffff880`087c5000 fffff880`087e9e00 btath_rcp (deferred)
fffff880`08c92000 fffff880`08cf9000 btath_a2dp (deferred)
fffff880`08cf9000 fffff880`08d5c000 btath_hcrp (deferred)
fffff880`08d5c000 fffff880`08d6b000 btath_flt (deferred)
fffff880`08d6b000 fffff880`08d7e000 btath_lwflt (deferred)
fffff880`08d7e000 fffff880`08da1000 luafv (deferred)
fffff880`08da1000 fffff880`08db6000 lltdio (deferred)
fffff880`08db6000 fffff880`08dce000 rspndr (deferred)
fffff880`08e00000 fffff880`08e4a000 emupia2k (deferred)
fffff880`08e57000 fffff880`08fe4000 ha20x22k (deferred)
fffff880`08fe4000 fffff880`09000000 CTHWIUT (deferred)
fffff880`0920e000 fffff880`09372000 CTEXFIFX (deferred)
fffff880`09372000 fffff880`09396000 asmthub3 (deferred)
fffff880`09396000 fffff880`093a4000 ASUSFILTER (deferred)
fffff880`093a4000 fffff880`093ec000 btfilter (deferred)
fffff880`09400000 fffff880`0942c000 rfcomm (deferred)
fffff880`0942c000 fffff880`0943c000 BthEnum (deferred)
fffff880`0943c000 fffff880`0945c000 bthpan (deferred)
fffff880`0945c000 fffff880`09473000 bthmodem (deferred)
fffff880`09483000 fffff880`0950f000 bthport (deferred)
fffff880`0950f000 fffff880`09510f00 USBD (deferred)
fffff880`09511000 fffff880`0952e000 cdfs (deferred)
fffff880`0952e000 fffff880`0953a000 Dxapi (deferred)
fffff880`0953a000 fffff880`09548000 crashdmp (deferred)
fffff880`09548000 fffff880`09552000 dump_diskdump (deferred)
fffff880`09552000 fffff880`09565000 dump_dumpfve (deferred)
fffff880`09565000 fffff880`09582000 usbccgp (deferred)
fffff880`09582000 fffff880`09590000 hidusb (deferred)
fffff880`09590000 fffff880`095a9000 HIDCLASS (deferred)
fffff880`095a9000 fffff880`095b1080 HIDPARSE (deferred)
fffff880`095b2000 fffff880`095bf000 mouhid (deferred)
fffff880`095bf000 fffff880`095c9000 klmouflt (deferred)
fffff880`095c9000 fffff880`095d7000 kbdhid (deferred)
fffff880`095d7000 fffff880`095e5000 monitor (deferred)
fffff880`0ac00000 fffff880`0ac4e000 mrxsmb10 (deferred)
fffff880`0ac4e000 fffff880`0ac72000 mrxsmb20 (deferred)
fffff880`0acb2000 fffff880`0ad7b000 HTTP (deferred)
fffff880`0ad7b000 fffff880`0ad99000 bowser (deferred)
fffff880`0ad99000 fffff880`0adb1000 mpsdrv (deferred)
fffff880`0adb1000 fffff880`0adde000 mrxsmb (deferred)
fffff880`0bc00000 fffff880`0bc69000 srv2 (deferred)
fffff880`0bcb4000 fffff880`0bd5a000 peauth (deferred)
fffff880`0bd5a000 fffff880`0bd65000 secdrv (deferred)
fffff880`0bd65000 fffff880`0bd96000 srvnet (deferred)
fffff880`0bd96000 fffff880`0bda8000 tcpipreg (deferred)
fffff880`0be58000 fffff880`0bef0000 srv (pdb symbols) a:\symbols\srv.pdb\957B3A5B8F9E4F6C8B9B130B44A459CE2\srv.pdb
fffff880`0bef0000 fffff880`0bf61000 spsys (deferred)
fffff880`0bf61000 fffff880`0bf62f80 MSTEE (deferred)
fffff880`0bf63000 fffff880`0bf65b80 MSKSSRV (deferred)
fffff880`12800000 fffff880`12810000 watchdog (deferred)
fffff880`12810000 fffff880`12819000 RDPCDD (deferred)
fffff880`12819000 fffff880`12822000 rdpencdd (deferred)
fffff880`12822000 fffff880`1282b000 rdprefmp (deferred)
fffff880`1282b000 fffff880`12836000 Msfs (deferred)
fffff880`12836000 fffff880`12847000 Npfs (deferred)
fffff880`12847000 fffff880`12869000 tdx (deferred)
fffff880`12869000 fffff880`12876000 TDI (deferred)
fffff880`12876000 fffff880`1287d000 kl2 (deferred)
fffff880`1287d000 fffff880`128a3000 tunnel (deferred)
fffff880`128a3000 fffff880`128b9000 GenericMount (deferred)
fffff880`128b9000 fffff880`128cf000 AgileVpn (deferred)
fffff880`128cf000 fffff880`158d3000 dump_iaStorA (deferred)
fffff880`158f3000 fffff880`1591d000 cdrom (deferred)
fffff880`1591d000 fffff880`159b3000 klif (deferred)
fffff880`159b3000 fffff880`159bc000 Null (deferred)
fffff880`159bc000 fffff880`159c3000 Beep (deferred)
fffff880`159c3000 fffff880`159d1000 vga (deferred)
fffff880`159d1000 fffff880`159f6000 VIDEOPRT (deferred)
fffff880`15a00000 fffff880`15a10000 CompositeBus (deferred)
fffff880`15a10000 fffff880`15a1b000 rdpbus (deferred)
fffff880`15a1b000 fffff880`167dd000 nvlddmkm (deferred)
fffff880`167dd000 fffff880`167f3000 intelppm (deferred)
fffff880`167f3000 fffff880`167ff000 ndistapi (deferred)
fffff960`000b0000 fffff960`003c5000 win32k (deferred)
fffff960`00460000 fffff960`0046a000 TSDDD (deferred)
fffff960`00660000 fffff960`00687000 cdd (deferred)
Unloaded modules:
fffff880`04e80000 fffff880`04e8e000 crashdmp.sys
fffff880`04e8e000 fffff880`04e98000 dump_storpor
fffff880`128dc000 fffff880`158e0000 dump_iaStorA
fffff880`158e0000 fffff880`158f3000 dump_dumpfveThese 2 security related drivers & a few other MS showing sym errors too.
https://www.sysnative.com/drivers/driver.php?id=spldr.sys
https://www.sysnative.com/drivers/driver.php?id=secdrv.sys
Ask OP to check Device Manager, show hidden devices, non PnP
Would be iinteresting to know if red/yellow flags are present.
https://www.sysnative.com/drivers/driver.php?id=spldr.sys
https://www.sysnative.com/drivers/driver.php?id=secdrv.sys
Code:
6: kd> [COLOR="#FF0000"]!for_each_module !chkimg @#ModuleName [/COLOR]
0 errors : hal
0 errors : nt
0 errors : kdcom
0 errors : cng
0 errors : mcupdate_GenuineIntel
0 errors : PSHED
0 errors : CLFS
0 errors : pci
0 errors : volmgrx
0 errors : Wdf01000
0 errors : WDFLDR
0 errors : vdrvroot
0 errors : CI
0 errors : ACPI
0 errors : WMILIB
0 errors : msisadrv
0 errors : ataport
Error for kl1: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : partmgr
0 errors : volmgr
Error for AiChargerPlus: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : mountmgr
0 errors : atapi
0 errors : msahci
0 errors : PCIIDEX
0 errors : msrpc
0 errors : raspppoe
0 errors : raspptp
0 errors : rassstp
Error for iaStorA: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : storport
Error for asahci64: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for amdxata: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : fltmgr
0 errors : fileinfo
Error for symsnap: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : ksecdd
0 errors : pcw
0 errors : Fs_Rec
0 errors : umbus
0 errors : Ntfs
0 errors : ndis
0 errors : NETIO
0 errors : ksecpkg
Error for asmtxhci: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : mouclass
0 errors : fvevol
0 errors : disk
0 errors : CLASSPNP
0 errors : rasl2tp
0 errors : kbdclass
0 errors : tcpip
0 errors : fwpkclnt
0 errors : volsnap
[COLOR="#FF0000"]Error for spldr: Could not find image file for the module. Make sure binaries are included in the symbol path.[/COLOR]
0 errors : rdyboost
0 errors : mup
Error for iaStorF: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : hwpolicy
0 errors : ndiswan
0 errors : rdbss
0 errors : nsiproxy
0 errors : mssmbios
0 errors : discache
Error for afd: Could not find module base
0 errors : netbt
0 errors : wfplwf
0 errors : pacer
Error for klim6: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : netbios
0 errors : wanarp
0 errors : termdd
0 errors : dfsc
0 errors : blbdrive
Error for AsUpIO: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for AsIO: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ctoss2k: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ctprxy2k: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : ksthunk
0 errors : USBPORT
Error for tap0901: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ctaud2k: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : portcls
Error for drmk: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : ks
Error for btath_bus: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for e1c62x64: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : dxgkrnl
0 errors : dxgmms1
0 errors : HDAudBus
Error for HECIx64: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : usbehci
Error for GEARAspiWDM: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ICCWDT: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : wmiacpi
0 errors : swenum
0 errors : usbhub
0 errors : NDProxy
0 errors : HdAudio
0 errors : fastfat
Error for ctsfm2k: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for CT20XUT: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : BTHUSB
Error for btath_rcp: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for btath_a2dp: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for btath_hcrp: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for btath_flt: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for btath_lwflt: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : luafv
0 errors : lltdio
0 errors : rspndr
Error for emupia2k: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ha20x22k: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for CTHWIUT: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for CTEXFIFX: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for asmthub3: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for ASUSFILTER: Could not find image file for the module. Make sure binaries are included in the symbol path.
Error for btfilter: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : rfcomm
0 errors : BthEnum
0 errors : bthpan
0 errors : bthmodem
0 errors : bthport
0 errors : USBD
0 errors : cdfs
0 errors : Dxapi
0 errors : crashdmp
0 errors : dump_diskdump
0 errors : dump_dumpfve
0 errors : usbccgp
0 errors : hidusb
0 errors : HIDCLASS
0 errors : HIDPARSE
0 errors : mouhid
Error for klmouflt: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : kbdhid
0 errors : monitor
0 errors : mrxsmb10
0 errors : mrxsmb20
0 errors : HTTP
0 errors : bowser
0 errors : mpsdrv
0 errors : mrxsmb
0 errors : srv2
Error for peauth: Could not find image file for the module. Make sure binaries are included in the symbol path.
[COLOR="#FF0000"]Error for secdrv: Could not find image file for the module. Make sure binaries are included in the symbol path.[/COLOR]
0 errors : srvnet
0 errors : tcpipreg
0 errors : srv
Error for spsys: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : MSTEE
0 errors : MSKSSRV
0 errors : watchdog
0 errors : RDPCDD
0 errors : rdpencdd
0 errors : rdprefmp
0 errors : Msfs
0 errors : Npfs
0 errors : tdx
0 errors : TDI
Error for kl2: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : tunnel
Error for GenericMount: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : AgileVpn
Error for dump_iaStorA: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : cdrom
Error for klif: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : Null
0 errors : Beep
0 errors : vga
0 errors : VIDEOPRT
0 errors : CompositeBus
0 errors : rdpbus
Error for nvlddmkm: Could not find image file for the module. Make sure binaries are included in the symbol path.
0 errors : intelppm
0 errors : ndistapi
[COLOR="#FF0000"]Error for win32k: Could not find image file for the module. Make sure binaries are included in the symbol path.[/COLOR]
0 errors : TSDDD
Error for cdd: Could not find module baseAsk OP to check Device Manager, show hidden devices, non PnP
Would be iinteresting to know if red/yellow flags are present.
Yeah, I have also noticed other system drivers have unavailable next to them when win32k.sys does. CDD.dll was one in a .dmp I scrutinized at one point.
Code:
start end module name
fffff880`05d9e000 fffff880`05ddc000 1394ohci 1394ohci.sys Sat Nov 20 03:44:56 2010 (4CE7A6A8)
fffff880`048aa000 fffff880`048b6000 Acceler Acceler.sys Fri Jun 26 14:56:34 2009 (4A453602)
fffff880`00f79000 fffff880`00fd0000 ACPI ACPI.sys Sat Nov 20 02:19:16 2010 (4CE79294)
fffff880`02c00000 fffff880`02c89000 afd afd.sys Tue Dec 27 20:59:20 2011 (4EFA9418)
fffff880`04fc0000 fffff880`04fd6000 AgileVpn AgileVpn.sys Mon Jul 13 18:10:24 2009 (4A5BCCF0)
fffff880`00df2000 fffff880`00dfd000 amdxata amdxata.sys Fri Mar 19 10:18:18 2010 (4BA3A3CA)
fffff880`00c76000 fffff880`00c7f000 atapi atapi.sys Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`00dbd000 fffff880`00de7000 ataport ataport.SYS Sat Nov 20 02:19:15 2010 (4CE79293)
fffff880`051ad000 fffff880`051c8000 AtihdW76 AtihdW76.sys Fri May 11 02:25:40 2012 (4FACCD04)
fffff880`048e4000 fffff880`04fc0000 atikmdag atikmdag.sys Tue Jun 01 19:37:54 2010 (4C05B5F2)
fffff880`03a00000 fffff880`03a46000 atikmpag atikmpag.sys Tue Jun 01 19:42:47 2010 (4C05B717)
[B][COLOR=#FF0000]fffff960`00970000 fffff960`009d1000 ATMFD ATMFD.DLL unavailable (00000000)[/COLOR][/B]
fffff880`00d9c000 fffff880`00da8000 BATTC BATTC.SYS Mon Jul 13 17:31:01 2009 (4A5BC3B5)
fffff880`015f0000 fffff880`015f7000 Beep Beep.SYS Mon Jul 13 18:00:13 2009 (4A5BCA8D)
fffff880`03b88000 fffff880`03b99000 blbdrive blbdrive.sys Mon Jul 13 17:35:59 2009 (4A5BC4DF)
fffff880`062eb000 fffff880`06309000 bowser bowser.sys Tue Feb 22 21:55:04 2011 (4D649328)
fffff880`082f3000 fffff880`08303000 BthEnum BthEnum.sys Mon Jul 13 18:06:52 2009 (4A5BCC1C)
fffff880`08303000 fffff880`08323000 bthpan bthpan.sys Mon Jul 13 18:07:00 2009 (4A5BCC24)
fffff880`08231000 fffff880`082bd000 bthport bthport.sys Fri Jul 06 14:07:41 2012 (4FF7458D)
fffff880`063c0000 fffff880`063d8000 BTHUSB BTHUSB.sys Wed Apr 27 21:54:56 2011 (4DB8E510)
fffff880`0835d000 fffff880`083e3000 btwaudio btwaudio.sys Wed Jul 01 07:54:56 2009 (4A4B6AB0)
fffff880`08800000 fffff880`0887b000 btwavdt btwavdt.sys Wed Jun 24 23:50:13 2009 (4A431015)
fffff880`0887b000 fffff880`08887000 btwl2cap btwl2cap.sys Fri Apr 03 18:28:45 2009 (49D6A9BD)
fffff880`08887000 fffff880`0888a880 btwrchid btwrchid.sys Wed Jun 24 23:51:37 2009 (4A431069)
[B][COLOR=#FF0000]fffff960`00750000 fffff960`00777000 cdd cdd.dll unavailable (00000000)[/color][/b]
fffff880`01000000 fffff880`0102a000 cdrom cdrom.sys Sat Nov 20 02:19:20 2010 (4CE79298)
fffff880`00e06000 fffff880`00ec6000 CI CI.dll Sat Nov 20 06:12:36 2010 (4CE7C944)
fffff880`019c0000 fffff880`019f0000 CLASSPNP CLASSPNP.SYS Sat Nov 20 02:19:23 2010 (4CE7929B)
fffff880`00cf6000 fffff880`00d54000 CLFS CLFS.SYS Mon Jul 13 17:19:57 2009 (4A5BC11D)
fffff880`05dfa000 fffff880`05dfe500 CmBatt CmBatt.sys Mon Jul 13 17:31:03 2009 (4A5BC3B7)
fffff880`014fa000 fffff880`0156c000 cng cng.sys Fri Jun 01 21:25:51 2012 (4FC987BF)
fffff880`00ff0000 fffff880`00ff9000 compbatt compbatt.sys Mon Jul 13 17:31:02 2009 (4A5BC3B6)
fffff880`048cc000 fffff880`048dc000 CompositeBus CompositeBus.sys Sat Nov 20 03:33:17 2010 (4CE7A3ED)
fffff880`01f3e000 fffff880`01f4c000 crashdmp crashdmp.sys Mon Jul 13 18:01:01 2009 (4A5BCABD)
fffff880`01f13000 fffff880`01f3d2a0 CtClsFlt CtClsFlt.sys Sun Jun 14 23:06:41 2009 (4A35D6E1)
fffff880`03b6a000 fffff880`03b88000 dfsc dfsc.sys Sat Nov 20 02:26:31 2010 (4CE79447)
fffff880`03b5b000 fffff880`03b6a000 discache discache.sys Mon Jul 13 17:37:18 2009 (4A5BC52E)
fffff880`019aa000 fffff880`019c0000 disk disk.sys Mon Jul 13 17:19:57 2009 (4A5BC11D)
fffff880`0503d000 fffff880`0505f000 drmk drmk.sys Mon Jul 13 19:01:25 2009 (4A5BD8E5)
fffff880`01f4c000 fffff880`01f58000 dump_dumpata dump_dumpata.sys Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`01f63000 fffff880`01f76000 dump_dumpfve dump_dumpfve.sys Mon Jul 13 17:21:51 2009 (4A5BC18F)
fffff880`01f58000 fffff880`01f63000 dump_msahci dump_msahci.sys Sat Nov 20 03:33:58 2010 (4CE7A416)
fffff880`02cce000 fffff880`02cda000 Dxapi Dxapi.sys Mon Jul 13 17:38:28 2009 (4A5BC574)
fffff880`0406a000 fffff880`0415e000 dxgkrnl dxgkrnl.sys Sat Nov 20 02:50:50 2010 (4CE799FA)
fffff880`0415e000 fffff880`041a4000 dxgmms1 dxgmms1.sys Sat Nov 20 02:49:53 2010 (4CE799C1)
fffff880`09000000 fffff880`09036000 fastfat fastfat.SYS Mon Jul 13 17:23:28 2009 (4A5BC1F0)
fffff880`01099000 fffff880`010ad000 fileinfo fileinfo.sys Mon Jul 13 17:34:25 2009 (4A5BC481)
fffff880`0104d000 fffff880`01099000 fltmgr fltmgr.sys Sat Nov 20 02:19:24 2010 (4CE7929C)
fffff880`0157d000 fffff880`01587000 Fs_Rec Fs_Rec.sys Wed Feb 29 20:41:06 2012 (4F4EEFD2)
fffff880`01970000 fffff880`019aa000 fvevol fvevol.sys Sat Nov 20 02:24:06 2010 (4CE793B6)
fffff880`01831000 fffff880`0187b000 fwpkclnt fwpkclnt.sys Sat Nov 20 02:21:37 2010 (4CE79321)
fffff880`041ea000 fffff880`041f7000 GEARAspiWDM GEARAspiWDM.sys Mon May 18 06:17:04 2009 (4A1151C0)
fffff800`03204000 fffff800`0324d000 hal hal.dll Sat Nov 20 06:00:25 2010 (4CE7C669)
fffff880`041a4000 fffff880`041c8000 HDAudBus HDAudBus.sys Sat Nov 20 03:43:42 2010 (4CE7A65E)
fffff880`041c8000 fffff880`041d9000 HECIx64 HECIx64.sys Thu Sep 17 13:54:16 2009 (4AB293E8)
fffff880`0833f000 fffff880`0835d000 hidbth hidbth.sys Mon Jul 13 18:06:52 2009 (4A5BCC1C)
fffff880`051d6000 fffff880`051ef000 HIDCLASS HIDCLASS.SYS Sat Nov 20 03:43:49 2010 (4CE7A665)
fffff880`051ef000 fffff880`051f7080 HIDPARSE HIDPARSE.SYS Mon Jul 13 18:06:17 2009 (4A5BCBF9)
fffff880`051c8000 fffff880`051d6000 hidusb hidusb.sys Sat Nov 20 03:43:49 2010 (4CE7A665)
fffff880`06222000 fffff880`062eb000 HTTP HTTP.sys Sat Nov 20 02:24:30 2010 (4CE793CE)
fffff880`01967000 fffff880`01970000 hwpolicy hwpolicy.sys Sat Nov 20 02:18:54 2010 (4CE7927E)
fffff880`05ddc000 fffff880`05dfa000 i8042prt i8042prt.sys Mon Jul 13 17:19:57 2009 (4A5BC11D)
fffff880`04885000 fffff880`048a9e00 Impcd Impcd.sys Mon Oct 12 20:00:51 2009 (4AD3DF53)
fffff880`048b6000 fffff880`048cc000 intelppm intelppm.sys Mon Jul 13 17:19:25 2009 (4A5BC0FD)
fffff880`05600000 fffff880`0560f000 kbdclass kbdclass.sys Mon Jul 13 17:19:50 2009 (4A5BC116)
fffff880`03ae4000 fffff880`03af2000 kbdhid kbdhid.sys Sat Nov 20 03:33:25 2010 (4CE7A3F5)
fffff800`00b9e000 fffff800`00ba8000 kdcom kdcom.dll Sat Feb 05 09:52:49 2011 (4D4D8061)
fffff880`050e9000 fffff880`0512c000 ks ks.sys Sat Nov 20 03:33:23 2010 (4CE7A3F3)
fffff880`013d8000 fffff880`013f3000 ksecdd ksecdd.sys Fri Jun 01 20:50:23 2012 (4FC97F6F)
fffff880`01200000 fffff880`0122a000 ksecpkg ksecpkg.sys Fri Jun 01 21:27:11 2012 (4FC9880F)
fffff880`0505f000 fffff880`05064200 ksthunk ksthunk.sys Mon Jul 13 18:00:19 2009 (4A5BCA93)
fffff880`0888b000 fffff880`0889e000 LHidFilt LHidFilt.Sys Wed Jun 17 10:49:39 2009 (4A391EA3)
fffff880`01fc8000 fffff880`01fdd000 lltdio lltdio.sys Mon Jul 13 18:08:50 2009 (4A5BCC92)
fffff880`0889e000 fffff880`088b2000 LMouFilt LMouFilt.Sys Wed Jun 17 10:49:43 2009 (4A391EA7)
fffff880`01f84000 fffff880`01fa7000 luafv luafv.sys Mon Jul 13 17:26:13 2009 (4A5BC295)
fffff880`00c93000 fffff880`00ce2000 mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Sat Nov 20 06:03:51 2010 (4CE7C737)
fffff880`091db000 fffff880`091ffe00 mfeapfk mfeapfk.sys Fri Aug 26 14:45:37 2011 (4E5805F1)
fffff880`03bbf000 fffff880`03bf4e00 mfeavfk mfeavfk.sys Fri Aug 26 14:46:03 2011 (4E58060B)
fffff880`010e2000 fffff880`0117c680 mfehidk mfehidk.sys Fri Aug 26 14:44:44 2011 (4E5805BC)
fffff880`0187b000 fffff880`018be380 mfewfpk mfewfpk.sys Fri Aug 26 14:45:00 2011 (4E5805CC)
fffff880`01f76000 fffff880`01f84000 monitor monitor.sys Mon Jul 13 17:38:52 2009 (4A5BC58C)
fffff880`04056000 fffff880`04065000 mouclass mouclass.sys Mon Jul 13 17:19:50 2009 (4A5BC116)
fffff880`03ad7000 fffff880`03ae4000 mouhid mouhid.sys Mon Jul 13 18:00:20 2009 (4A5BCA94)
fffff880`00c5c000 fffff880`00c76000 mountmgr mountmgr.sys Sat Nov 20 02:19:21 2010 (4CE79299)
fffff880`010ad000 fffff880`010e2000 MpFilter MpFilter.sys Fri Mar 09 04:05:26 2012 (4F59E3F6)
fffff880`06309000 fffff880`06321000 mpsdrv mpsdrv.sys Mon Jul 13 18:08:25 2009 (4A5BCC79)
fffff880`06321000 fffff880`0634e000 mrxsmb mrxsmb.sys Tue Apr 26 20:40:38 2011 (4DB78226)
fffff880`0634e000 fffff880`0639c000 mrxsmb10 mrxsmb10.sys Fri Jul 08 20:46:28 2011 (4E17C104)
fffff880`0639c000 fffff880`063c0000 mrxsmb20 mrxsmb20.sys Tue Apr 26 20:39:37 2011 (4DB781E9)
fffff880`00de7000 fffff880`00df2000 msahci msahci.sys Sat Nov 20 03:33:58 2010 (4CE7A416)
fffff880`02d2b000 fffff880`02d36000 Msfs Msfs.SYS Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`00fd9000 fffff880`00fe3000 msisadrv msisadrv.sys Mon Jul 13 17:19:26 2009 (4A5BC0FE)
fffff880`01189000 fffff880`011e7000 msrpc msrpc.sys Sat Nov 20 02:21:56 2010 (4CE79334)
fffff880`03b50000 fffff880`03b5b000 mssmbios mssmbios.sys Mon Jul 13 17:31:10 2009 (4A5BC3BE)
fffff880`01955000 fffff880`01967000 mup mup.sys Mon Jul 13 17:23:45 2009 (4A5BC201)
fffff880`01400000 fffff880`014f3000 ndis ndis.sys Sat Nov 20 02:23:30 2010 (4CE79392)
fffff880`03a46000 fffff880`03a52000 ndistapi ndistapi.sys Mon Jul 13 18:10:00 2009 (4A5BCCD8)
fffff880`01e53000 fffff880`01e66000 ndisuio ndisuio.sys Sat Nov 20 03:50:08 2010 (4CE7A7E0)
fffff880`03a52000 fffff880`03a81000 ndiswan ndiswan.sys Sat Nov 20 03:52:32 2010 (4CE7A870)
fffff880`05198000 fffff880`051ad000 NDProxy NDProxy.SYS Sat Nov 20 03:52:20 2010 (4CE7A864)
fffff880`02dbb000 fffff880`02dca000 netbios netbios.sys Mon Jul 13 18:09:26 2009 (4A5BCCB6)
fffff880`02d76000 fffff880`02dbb000 netbt netbt.sys Sat Nov 20 02:23:18 2010 (4CE79386)
fffff880`01587000 fffff880`015e7000 NETIO NETIO.SYS Sat Nov 20 02:23:13 2010 (4CE79381)
fffff880`0565c000 fffff880`05d09000 NETw5s64 NETw5s64.sys Tue Sep 15 13:40:39 2009 (4AAFEDB7)
fffff880`08323000 fffff880`0833f000 NisDrvWFP NisDrvWFP.sys Fri Mar 09 04:05:35 2012 (4F59E3FF)
fffff880`02d36000 fffff880`02d47000 Npfs Npfs.SYS Mon Jul 13 17:19:48 2009 (4A5BC114)
fffff880`03b44000 fffff880`03b50000 nsiproxy nsiproxy.sys Mon Jul 13 17:21:02 2009 (4A5BC15E)
fffff800`0324d000 fffff800`03835000 nt ntkrnlmp.exe Fri May 04 02:18:59 2012 (4FA390F3)
fffff880`01235000 fffff880`013d8000 Ntfs Ntfs.sys Thu Mar 10 20:39:39 2011 (4D79997B)
fffff880`015e7000 fffff880`015f0000 Null Null.SYS Mon Jul 13 17:19:37 2009 (4A5BC109)
fffff880`01e00000 fffff880`01e53000 nwifi nwifi.sys Mon Jul 13 18:07:23 2009 (4A5BCC3B)
fffff880`02c92000 fffff880`02cb8000 pacer pacer.sys Sat Nov 20 03:52:18 2010 (4CE7A862)
fffff880`00d87000 fffff880`00d9c000 partmgr partmgr.sys Fri Mar 16 23:06:09 2012 (4F641BC1)
fffff880`00d54000 fffff880`00d87000 pci pci.sys Sat Nov 20 02:19:11 2010 (4CE7928F)
fffff880`00c7f000 fffff880`00c8f000 PCIIDEX PCIIDEX.SYS Mon Jul 13 17:19:48 2009 (4A5BC114)
fffff880`0156c000 fffff880`0157d000 pcw pcw.sys Mon Jul 13 17:19:27 2009 (4A5BC0FF)
fffff880`088e6000 fffff880`0898c000 peauth peauth.sys Mon Jul 13 19:01:19 2009 (4A5BD8DF)
fffff880`05000000 fffff880`0503d000 portcls portcls.sys Mon Jul 13 18:06:27 2009 (4A5BCC03)
fffff880`00ce2000 fffff880`00cf6000 PSHED PSHED.dll Mon Jul 13 19:32:23 2009 (4A5BE027)
fffff880`0117d000 fffff880`01188e00 PxHlpa64 PxHlpa64.sys Tue Jun 23 17:16:35 2009 (4A416253)
fffff880`04fd6000 fffff880`04ffa000 rasl2tp rasl2tp.sys Sat Nov 20 03:52:34 2010 (4CE7A872)
fffff880`03a81000 fffff880`03a9c000 raspppoe raspppoe.sys Mon Jul 13 18:10:17 2009 (4A5BCCE9)
fffff880`03a9c000 fffff880`03abd000 raspptp raspptp.sys Sat Nov 20 03:52:31 2010 (4CE7A86F)
fffff880`03abd000 fffff880`03ad7000 rassstp rassstp.sys Mon Jul 13 18:10:25 2009 (4A5BCCF1)
fffff880`03af3000 fffff880`03b44000 rdbss rdbss.sys Sat Nov 20 02:27:51 2010 (4CE79497)
fffff880`02d10000 fffff880`02d19000 RDPCDD RDPCDD.sys Mon Jul 13 18:16:34 2009 (4A5BCE62)
fffff880`02d19000 fffff880`02d22000 rdpencdd rdpencdd.sys Mon Jul 13 18:16:34 2009 (4A5BCE62)
fffff880`02d22000 fffff880`02d2b000 rdprefmp rdprefmp.sys Mon Jul 13 18:16:35 2009 (4A5BCE63)
fffff880`0191b000 fffff880`01955000 rdyboost rdyboost.sys Sat Nov 20 02:43:10 2010 (4CE7982E)
fffff880`082c7000 fffff880`082f3000 rfcomm rfcomm.sys Mon Jul 13 18:06:56 2009 (4A5BCC20)
fffff880`05d2f000 fffff880`05d48000 rimspe64 rimspe64.sys Wed Jul 01 17:54:49 2009 (4A4BF749)
fffff880`05d16000 fffff880`05d2f000 risdpe64 risdpe64.sys Wed Jul 01 03:31:57 2009 (4A4B2D0D)
fffff880`05d48000 fffff880`05d9e000 rixdpe64 rixdpe64.sys Sat Jul 04 04:27:00 2009 (4A4F2E74)
fffff880`01e66000 fffff880`01e7e000 rspndr rspndr.sys Mon Jul 13 18:08:50 2009 (4A5BCC92)
fffff880`04800000 fffff880`04885000 Rt64win7 Rt64win7.sys Fri Jun 10 00:33:15 2011 (4DF1BAAB)
fffff880`088b2000 fffff880`088bd000 secdrv secdrv.SYS Wed Sep 13 07:18:38 2006 (4508052E)
fffff880`01913000 fffff880`0191b000 spldr spldr.sys Mon May 11 10:56:27 2009 (4A0858BB)
fffff880`0910d000 fffff880`091a5000 srv srv.sys Thu Apr 28 21:06:06 2011 (4DBA2B1E)
fffff880`090a4000 fffff880`0910d000 srv2 srv2.sys Thu Apr 28 21:05:46 2011 (4DBA2B0A)
fffff880`0898c000 fffff880`089bd000 srvnet srvnet.sys Thu Apr 28 21:05:35 2011 (4DBA2AFF)
fffff880`0190b000 fffff880`01913000 stdflt stdflt.sys Thu Jul 16 09:36:50 2009 (4A5F4912)
fffff880`05065000 fffff880`050e4000 stwrt64 stwrt64.sys Thu Jan 21 03:15:11 2010 (4B58292F)
fffff880`04065000 fffff880`04066480 swenum swenum.sys Mon Jul 13 18:00:18 2009 (4A5BCA92)
fffff880`0560f000 fffff880`0565a000 SynTP SynTP.sys Mon Aug 24 11:37:05 2009 (4A92CFC1)
fffff880`0162e000 fffff880`01831000 tcpip tcpip.sys Fri Mar 30 02:34:26 2012 (4F757012)
fffff880`089bd000 fffff880`089cf000 tcpipreg tcpipreg.sys Sat Nov 20 03:51:48 2010 (4CE7A844)
fffff880`02d69000 fffff880`02d76000 TDI TDI.SYS Sat Nov 20 02:22:06 2010 (4CE7933E)
fffff880`02d47000 fffff880`02d69000 tdx tdx.sys Sat Nov 20 02:21:54 2010 (4CE79332)
fffff880`02de5000 fffff880`02df9000 termdd termdd.sys Sat Nov 20 04:03:40 2010 (4CE7AB0C)
[B][COLOR=#FF0000]fffff960`00560000 fffff960`0056a000 TSDDD TSDDD.dll unavailable (00000000)[/color][/b]
fffff880`03b99000 fffff880`03bbf000 tunnel tunnel.sys Sat Nov 20 03:51:50 2010 (4CE7A846)
fffff880`01e7e000 fffff880`01e85000 TurboB TurboB.sys Mon Nov 02 13:47:34 2009 (4AEF4566)
fffff880`0512c000 fffff880`0513e000 umbus umbus.sys Sat Nov 20 03:44:37 2010 (4CE7A695)
fffff880`01600000 fffff880`0161d000 usbccgp usbccgp.sys Thu Mar 24 21:29:14 2011 (4D8C0C0A)
fffff880`0565a000 fffff880`0565bf00 USBD USBD.SYS Thu Mar 24 21:28:59 2011 (4D8C0BFB)
fffff880`041d9000 fffff880`041ea000 usbehci usbehci.sys Thu Mar 24 21:29:04 2011 (4D8C0C00)
fffff880`0513e000 fffff880`05198000 usbhub usbhub.sys Thu Mar 24 21:29:25 2011 (4D8C0C15)
fffff880`04000000 fffff880`04056000 USBPORT USBPORT.SYS Thu Mar 24 21:29:12 2011 (4D8C0C08)
fffff880`01ee5000 fffff880`01f12280 usbvideo usbvideo.sys Sat Nov 20 03:44:34 2010 (4CE7A692)
fffff880`00fe3000 fffff880`00ff0000 vdrvroot vdrvroot.sys Mon Jul 13 18:01:31 2009 (4A5BCADB)
fffff880`0102a000 fffff880`01038000 vga vga.sys Mon Jul 13 17:38:47 2009 (4A5BC587)
fffff880`02cdb000 fffff880`02d00000 VIDEOPRT VIDEOPRT.SYS Mon Jul 13 17:38:51 2009 (4A5BC58B)
fffff880`00da8000 fffff880`00dbd000 volmgr volmgr.sys Sat Nov 20 02:19:28 2010 (4CE792A0)
fffff880`00c00000 fffff880`00c5c000 volmgrx volmgrx.sys Sat Nov 20 02:20:43 2010 (4CE792EB)
fffff880`018bf000 fffff880`0190b000 volsnap volsnap.sys Sat Nov 20 02:20:08 2010 (4CE792C8)
fffff880`05d09000 fffff880`05d16000 vwifibus vwifibus.sys Mon Jul 13 18:07:21 2009 (4A5BCC39)
fffff880`02cb8000 fffff880`02cce000 vwififlt vwififlt.sys Mon Jul 13 18:07:22 2009 (4A5BCC3A)
fffff880`082bd000 fffff880`082c7000 vwifimp vwifimp.sys Mon Jul 13 18:07:28 2009 (4A5BCC40)
fffff880`02dca000 fffff880`02de5000 wanarp wanarp.sys Sat Nov 20 03:52:36 2010 (4CE7A874)
fffff880`02d00000 fffff880`02d10000 watchdog watchdog.sys Mon Jul 13 17:37:35 2009 (4A5BC53F)
fffff880`00ec6000 fffff880`00f6a000 Wdf01000 Wdf01000.sys Mon Jul 13 17:22:07 2009 (4A5BC19F)
fffff880`00f6a000 fffff880`00f79000 WDFLDR WDFLDR.SYS Mon Jul 13 17:19:54 2009 (4A5BC11A)
fffff880`02c89000 fffff880`02c92000 wfplwf wfplwf.sys Mon Jul 13 18:09:26 2009 (4A5BCCB6)
[B][COLOR=#FF0000]fffff960`00020000 fffff960`00335000 win32k win32k.sys unavailable (00000000)[/color][/b]
fffff880`041f7000 fffff880`04200000 wmiacpi wmiacpi.sys Mon Jul 13 17:31:02 2009 (4A5BC3B6)
fffff880`00fd0000 fffff880`00fd9000 WMILIB WMILIB.SYS Mon Jul 13 17:19:51 2009 (4A5BC117)
fffff880`01fa7000 fffff880`01fc8000 WudfPf WudfPf.sys Sat Nov 20 03:42:44 2010 (4CE7A624)The fact that the same problem exists in WinDbg is enough for me to doubt it is the scripts at fault here. It seems to be something with the .dmps themselves...
All the .dmps are from Windows 7 systems with SP1 installed. I do not know if the .dmps are being corrupted or what is the issue. It's very strange. https://www.sysnative.com/forums/sh...-once-in-a-while?p=24893&viewfull=1#post24893 has one of the unverified win32k.sys symbol errors, but the sigcheck came back clean.
From WinDbg:
All the .dmps are from Windows 7 systems with SP1 installed. I do not know if the .dmps are being corrupted or what is the issue. It's very strange. https://www.sysnative.com/forums/sh...-once-in-a-while?p=24893&viewfull=1#post24893 has one of the unverified win32k.sys symbol errors, but the sigcheck came back clean.
From WinDbg:
Code:
Microsoft (R) Windows Debugger Version 6.2.8229.0 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Users\Mike\Downloads\win32kCases\081612-18673-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: srv*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS Personal
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
Machine Name:
Kernel base = 0xfffff800`0324d000 PsLoadedModuleList = 0xfffff800`03491670
Debug session time: Thu Aug 16 02:19:45.505 2012 (UTC - 6:00)
System Uptime: 0 days 0:44:23.941
Loading Kernel Symbols
...............................................................
................................................................
.................................................
Loading User Symbols
Loading unloaded module list
......
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\oca.ini, error 2
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\winxp\triage.ini, error 2
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck A, {a, 2, 1, fffff800032d81a8}
*** WARNING: Unable to verify timestamp for mfehidk.sys
*** ERROR: Module load completed but symbols could not be loaded for mfehidk.sys
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\modclass.ini, error 2
Probably caused by : mfehidk.sys ( mfehidk+54028 )
Followup: MachineOwner
---------
0: kd> !lmi win32k.sys
Loaded Module Info: [win32k.sys]
Cannot read Image header @ fffff96000020000
Load Report: no symbols loaded
Code:
Loading Dump File [C:\Users\Mike\Downloads\win32kCases\071712-19188-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: srv*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (12 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
Machine Name:
Kernel base = 0xfffff800`05c62000 PsLoadedModuleList = 0xfffff800`05ea6670
Debug session time: Tue Jul 17 01:15:30.568 2012 (UTC - 6:00)
System Uptime: 0 days 0:15:14.427
Loading Kernel Symbols
...............................................................
................................................................
...................................................
Loading User Symbols
Loading unloaded module list
....
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\oca.ini, error 2
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\winxp\triage.ini, error 2
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 19, {3, fffffa80181eeb00, fffffa80081eeb00, fffffa80081eeb00}
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\modclass.ini, error 2
Probably caused by : Pool_Corruption ( nt!ExDeferredFreePool+a53 )
Followup: Pool_corruption
---------
6: kd> !lmi win32k.sys
Loaded Module Info: [win32k.sys]
Cannot read Image header @ fffff960000b0000
Load Report: no symbols loaded
Code:
Loading Dump File [C:\Users\Mike\Downloads\win32kCases\052012-78000-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: srv*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17803.amd64fre.win7sp1_gdr.120330-1504
Machine Name:
Kernel base = 0xfffff800`03457000 PsLoadedModuleList = 0xfffff800`0369b670
Debug session time: Sun May 20 22:55:00.517 2012 (UTC - 6:00)
System Uptime: 0 days 1:25:15.000
Loading Kernel Symbols
...............................................................
................................................................
.................................................
Loading User Symbols
Loading unloaded module list
.....
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\oca.ini, error 2
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\winxp\triage.ini, error 2
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck D1, {9, 2, 1, fffff880045ed288}
*** WARNING: Unable to verify timestamp for PxHlpa64.sys
*** ERROR: Module load completed but symbols could not be loaded for PxHlpa64.sys
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\modclass.ini, error 2
Probably caused by : usbehci.sys ( usbehci!EHCI_AcquireAsyncDoorbellLock+0 )
Followup: MachineOwner
---------
3: kd> !lmi win32k.sys
Loaded Module Info: [win32k.sys]
Cannot read Image header @ fffff96000020000
Load Report: no symbols loaded
Last edited:
The following is from the thread: https://www.sysnative.com/forums/sh...-once-in-a-while?p=24893&viewfull=1#post24893
Code:
c:\windows\system32\win32k.sys: Verified: Signed
Catalog: C:\Windows\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3_for_KB2731847~31bf3856ad364e35~amd64~~6.1.1.2.cat
Signers:
Microsoft Windows
Microsoft Windows Verification PCA
Microsoft Root Certificate Authority
Signing date: 4:38 PM 7/18/2012
Publisher: Microsoft Corporation
Description: Multi-User Win32 Driver
Product: Microsoft® Windows® Operating System
Version: 6.1.7600.16385
File version: 6.1.7600.16385 (win7_rtm.090713-1255)
Code:
Microsoft (R) Windows Debugger Version 6.2.8229.0 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Users\BSODAnalyst\Downloads\SysnativeFiles\BSOD82212\outputDmps\2012_Aug_23_20_20\082212-16426-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: srv*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (6 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17835.amd64fre.win7sp1_gdr.120503-2030
Machine Name:
Kernel base = 0xfffff800`0384e000 PsLoadedModuleList = 0xfffff800`03a92670
Debug session time: Wed Aug 22 21:17:56.727 2012 (UTC - 6:00)
System Uptime: 0 days 0:01:05.866
Loading Kernel Symbols
...............................................................
................................................................
............................................
Loading User Symbols
Loading unloaded module list
....
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\oca.ini, error 2
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\winxp\triage.ini, error 2
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck C4, {0, 0, 0, 0}
*** WARNING: Unable to verify timestamp for win32k.sys
*** ERROR: Module load completed but symbols could not be loaded for win32k.sys
TRIAGER: Could not open triage file : C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x64\triage\modclass.ini, error 2
Probably caused by : tcpipreg.sys ( tcpipreg!InterfaceAddressRegKeyChangeHandler+109 )
Followup: MachineOwner
---------
4: kd> !lmi win32k.sys
Loaded Module Info: [win32k.sys]
Cannot read Image header @ fffff96000020000
Load Report: no symbols loaded
Code:
4: kd> lmtsmn
start end module name
fffff880`05867000 fffff880`058a5000 1394ohci 1394ohci.sys Sat Nov 20 03:44:56 2010 (4CE7A6A8)
fffff880`00f49000 fffff880`00fa0000 ACPI ACPI.sys Sat Nov 20 02:19:16 2010 (4CE79294)
fffff880`02c16000 fffff880`02c9f000 afd afd.sys Tue Dec 27 20:59:20 2011 (4EFA9418)
fffff880`058c1000 fffff880`058d7000 AgileVpn AgileVpn.sys Mon Jul 13 18:10:24 2009 (4A5BCCF0)
fffff880`04311000 fffff880`04326000 amdppm amdppm.sys Mon Jul 13 17:19:25 2009 (4A5BC0FD)
fffff880`01062000 fffff880`0106d000 amdxata amdxata.sys Fri Mar 19 10:18:18 2010 (4BA3A3CA)
fffff880`042e3000 fffff880`042eb000 AppleCharger AppleCharger.sys Mon Jan 10 02:57:29 2011 (4D2AD809)
fffff880`00ff3000 fffff880`00ffc000 atapi atapi.sys Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`0102d000 fffff880`01057000 ataport ataport.SYS Sat Nov 20 02:19:15 2010 (4CE79293)
fffff880`0488f000 fffff880`05389000 atikmdag atikmdag.sys Thu Apr 05 19:48:25 2012 (4F7E4B69)
fffff880`0432f000 fffff880`04389000 atikmpag atikmpag.sys Thu Apr 05 19:10:44 2012 (4F7E4294)
fffff960`00870000 fffff960`008d1000 ATMFD ATMFD.DLL unavailable (00000000)
fffff880`019ef000 fffff880`019f6000 Beep Beep.SYS Mon Jul 13 18:00:13 2009 (4A5BCA8D)
fffff880`042d2000 fffff880`042e3000 blbdrive blbdrive.sys Mon Jul 13 17:35:59 2009 (4A5BC4DF)
fffff880`0557e000 fffff880`0559c000 bowser bowser.sys Tue Feb 22 21:55:04 2011 (4D649328)
fffff960`00770000 fffff960`00797000 cdd cdd.dll unavailable (00000000)
fffff880`0158e000 fffff880`015b8000 cdrom cdrom.sys Sat Nov 20 02:19:20 2010 (4CE79298)
fffff880`00cd9000 fffff880`00d99000 CI CI.dll Sat Nov 20 06:12:36 2010 (4CE7C944)
fffff880`01600000 fffff880`01630000 CLASSPNP CLASSPNP.SYS Sat Nov 20 02:19:23 2010 (4CE7929B)
fffff880`00c7b000 fffff880`00cd9000 CLFS CLFS.SYS Mon Jul 13 17:19:57 2009 (4A5BC11D)
fffff880`0112b000 fffff880`0119d000 cng cng.sys Fri Jun 01 21:25:51 2012 (4FC987BF)
fffff880`058b1000 fffff880`058c1000 CompositeBus CompositeBus.sys Sat Nov 20 03:33:17 2010 (4CE7A3ED)
fffff880`072a5000 fffff880`072b3000 crashdmp crashdmp.sys Mon Jul 13 18:01:01 2009 (4A5BCABD)
fffff880`04231000 fffff880`042b4000 csc csc.sys Sat Nov 20 02:27:12 2010 (4CE79470)
fffff880`042b4000 fffff880`042d2000 dfsc dfsc.sys Sat Nov 20 02:26:31 2010 (4CE79447)
fffff880`011f0000 fffff880`011ff000 discache discache.sys Mon Jul 13 17:37:18 2009 (4A5BC52E)
fffff880`019d9000 fffff880`019ef000 disk disk.sys Mon Jul 13 17:19:57 2009 (4A5BC11D)
fffff880`07254000 fffff880`07276000 drmk drmk.sys Mon Jul 13 19:01:25 2009 (4A5BD8E5)
fffff880`072b3000 fffff880`072bf000 dump_dumpata dump_dumpata.sys Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`072ca000 fffff880`072dd000 dump_dumpfve dump_dumpfve.sys Mon Jul 13 17:21:51 2009 (4A5BC18F)
fffff880`072bf000 fffff880`072ca000 dump_msahci dump_msahci.sys Sat Nov 20 03:33:58 2010 (4CE7A416)
fffff880`07299000 fffff880`072a5000 Dxapi Dxapi.sys Mon Jul 13 17:38:28 2009 (4A5BC574)
fffff880`04408000 fffff880`044fc000 dxgkrnl dxgkrnl.sys Sat Nov 20 02:50:50 2010 (4CE799FA)
fffff880`044fc000 fffff880`04542000 dxgmms1 dxgmms1.sys Sat Nov 20 02:49:53 2010 (4CE799C1)
fffff880`04812000 fffff880`0481fe80 EtronHub3 EtronHub3.sys Mon Jul 25 15:30:59 2011 (4E2DE093)
fffff880`04566000 fffff880`04579500 EtronXHCI EtronXHCI.sys Mon Jul 25 15:30:56 2011 (4E2DE090)
fffff880`010b9000 fffff880`010cd000 fileinfo fileinfo.sys Mon Jul 13 17:34:25 2009 (4A5BC481)
fffff880`0106d000 fffff880`010b9000 fltmgr fltmgr.sys Sat Nov 20 02:19:24 2010 (4CE7929C)
fffff880`0197b000 fffff880`0199f000 fltsrv fltsrv.sys Thu Nov 17 05:29:13 2011 (4EC4FE19)
fffff880`013ec000 fffff880`013f6000 Fs_Rec Fs_Rec.sys Wed Feb 29 20:41:06 2012 (4F4EEFD2)
fffff880`0199f000 fffff880`019d9000 fvevol fvevol.sys Sat Nov 20 02:24:06 2010 (4CE793B6)
fffff880`01878000 fffff880`018c2000 fwpkclnt fwpkclnt.sys Sat Nov 20 02:21:37 2010 (4CE79321)
fffff880`059ac000 fffff880`059b9000 GEARAspiWDM GEARAspiWDM.sys Mon May 18 06:17:04 2009 (4A1151C0)
fffff800`03805000 fffff800`0384e000 hal hal.dll Sat Nov 20 06:00:25 2010 (4CE7C669)
fffff880`04542000 fffff880`04566000 HDAudBus HDAudBus.sys Sat Nov 20 03:43:42 2010 (4CE7A65E)
fffff880`045e3000 fffff880`045fc000 HIDCLASS HIDCLASS.SYS Sat Nov 20 03:43:49 2010 (4CE7A665)
fffff880`05389000 fffff880`05391080 HIDPARSE HIDPARSE.SYS Mon Jul 13 18:06:17 2009 (4A5BCBF9)
fffff880`077ef000 fffff880`077fd000 hidusb hidusb.sys Sat Nov 20 03:43:49 2010 (4CE7A665)
fffff880`054b5000 fffff880`0557e000 HTTP HTTP.sys Sat Nov 20 02:24:30 2010 (4CE793CE)
fffff880`01972000 fffff880`0197b000 hwpolicy hwpolicy.sys Sat Nov 20 02:18:54 2010 (4CE7927E)
fffff880`0539d000 fffff880`053ac000 kbdclass kbdclass.sys Mon Jul 13 17:19:50 2009 (4A5BC116)
fffff880`04396000 fffff880`043a4000 kbdhid kbdhid.sys Sat Nov 20 03:33:25 2010 (4CE7A3F5)
fffff800`00bae000 fffff800`00bb8000 kdcom kdcom.dll Sat Feb 05 09:52:49 2011 (4D4D8061)
fffff880`053bb000 fffff880`053fe000 ks ks.sys Sat Nov 20 03:33:23 2010 (4CE7A3F3)
fffff880`013c0000 fffff880`013db000 ksecdd ksecdd.sys Fri Jun 01 20:50:23 2012 (4FC97F6F)
fffff880`01564000 fffff880`0158e000 ksecpkg ksecpkg.sys Fri Jun 01 21:27:11 2012 (4FC9880F)
fffff880`07276000 fffff880`0727b200 ksthunk ksthunk.sys Mon Jul 13 18:00:19 2009 (4A5BCA93)
fffff880`077e7000 fffff880`077ee500 Lachesis Lachesis.sys Fri Oct 16 07:09:12 2009 (4AD87078)
fffff880`073c0000 fffff880`073d5000 lltdio lltdio.sys Mon Jul 13 18:08:50 2009 (4A5BCC92)
fffff880`072eb000 fffff880`0730e000 luafv luafv.sys Mon Jul 13 17:26:13 2009 (4A5BC295)
fffff880`07400000 fffff880`07407100 Lycosa Lycosa.sys Tue Sep 07 21:01:26 2010 (4C86FC86)
fffff880`00c5a000 fffff880`00c67000 mcupdate_AuthenticAMD mcupdate_AuthenticAMD.dll Mon Jul 13 19:29:09 2009 (4A5BDF65)
fffff880`072dd000 fffff880`072eb000 monitor monitor.sys Mon Jul 13 17:38:52 2009 (4A5BC58C)
fffff880`053ac000 fffff880`053bb000 mouclass mouclass.sys Mon Jul 13 17:19:50 2009 (4A5BC116)
fffff880`04389000 fffff880`04396000 mouhid mouhid.sys Mon Jul 13 18:00:20 2009 (4A5BCA94)
fffff880`00e67000 fffff880`00e81000 mountmgr mountmgr.sys Sat Nov 20 02:19:21 2010 (4CE79299)
fffff880`0559c000 fffff880`055b4000 mpsdrv mpsdrv.sys Mon Jul 13 18:08:25 2009 (4A5BCC79)
fffff880`055b4000 fffff880`055e1000 mrxsmb mrxsmb.sys Tue Apr 26 20:40:38 2011 (4DB78226)
fffff880`05400000 fffff880`0544e000 mrxsmb10 mrxsmb10.sys Fri Jul 08 20:46:28 2011 (4E17C104)
fffff880`0544e000 fffff880`05472000 mrxsmb20 mrxsmb20.sys Tue Apr 26 20:39:37 2011 (4DB781E9)
fffff880`01057000 fffff880`01062000 msahci msahci.sys Sat Nov 20 03:33:58 2010 (4CE7A416)
fffff880`01200000 fffff880`0120b000 Msfs Msfs.SYS Mon Jul 13 17:19:47 2009 (4A5BC113)
fffff880`045db000 fffff880`045e3000 mshidkmdf mshidkmdf.sys Mon Jul 13 18:06:24 2009 (4A5BCC00)
fffff880`00fa9000 fffff880`00fb3000 msisadrv msisadrv.sys Mon Jul 13 17:19:26 2009 (4A5BC0FE)
fffff880`010cd000 fffff880`0112b000 msrpc msrpc.sys Sat Nov 20 02:21:56 2010 (4CE79334)
fffff880`02c00000 fffff880`02c0b000 mssmbios mssmbios.sys Mon Jul 13 17:31:10 2009 (4A5BC3BE)
fffff880`01960000 fffff880`01972000 mup mup.sys Mon Jul 13 17:23:45 2009 (4A5BC201)
fffff880`01411000 fffff880`01504000 ndis ndis.sys Sat Nov 20 02:23:30 2010 (4CE79392)
fffff880`059c4000 fffff880`059d0000 ndistapi ndistapi.sys Mon Jul 13 18:10:00 2009 (4A5BCCD8)
fffff880`059d0000 fffff880`059ff000 ndiswan ndiswan.sys Sat Nov 20 03:52:32 2010 (4CE7A870)
fffff880`0487a000 fffff880`0488f000 NDProxy NDProxy.SYS Sat Nov 20 03:52:20 2010 (4CE7A864)
fffff880`02d1f000 fffff880`02d2e000 netbios netbios.sys Mon Jul 13 18:09:26 2009 (4A5BCCB6)
fffff880`02c9f000 fffff880`02ce4000 netbt netbt.sys Sat Nov 20 02:23:18 2010 (4CE79386)
fffff880`01504000 fffff880`01564000 NETIO NETIO.SYS Sat Nov 20 02:23:13 2010 (4CE79381)
fffff880`02ddd000 fffff880`02df7000 NNSAlpc NNSAlpc.sys Wed Jun 27 07:04:31 2012 (4FEB04DF)
fffff880`011cc000 fffff880`011f0000 NNSHttp NNSHttp.sys Wed Jun 27 07:17:48 2012 (4FEB07FC)
fffff880`02db5000 fffff880`02ddd000 NNSIds NNSIds.sys Wed Jun 27 07:30:19 2012 (4FEB0AEB)
fffff880`02d13000 fffff880`02d1f000 NNSNAHSL NNSNAHSL.sys Wed Jun 27 07:47:45 2012 (4FEB0F01)
fffff880`040c3000 fffff880`040e1000 NNSPicc NNSPicc.sys Wed Jun 27 07:20:03 2012 (4FEB0883)
fffff880`040ac000 fffff880`040c3000 NNSPihsw NNSPihsw.sys Wed Jun 27 07:49:36 2012 (4FEB0F70)
fffff880`0408b000 fffff880`040ac000 NNSPop3 NNSPop3.sys Wed Jun 27 07:37:08 2012 (4FEB0C84)
fffff880`04039000 fffff880`0408b000 NNSProt NNSProt.sys Wed Jun 27 07:23:25 2012 (4FEB094D)
fffff880`04000000 fffff880`04039000 NNSPrv NNSPrv.sys Wed Jun 27 07:01:24 2012 (4FEB0424)
fffff880`041d8000 fffff880`041f8000 NNSSmtp NNSSmtp.sys Wed Jun 27 07:45:31 2012 (4FEB0E7B)
fffff880`0419b000 fffff880`041d8000 NNSStrm NNSStrm.sys Thu Jul 12 03:11:16 2012 (4FFE94B4)
fffff880`0417d000 fffff880`0419b000 NNSTlsc NNSTlsc.sys Wed Jun 27 07:07:02 2012 (4FEB0576)
fffff880`0120b000 fffff880`0121c000 Npfs Npfs.SYS Mon Jul 13 17:19:48 2009 (4A5BC114)
fffff880`04171000 fffff880`0417d000 nsiproxy nsiproxy.sys Mon Jul 13 17:21:02 2009 (4A5BC15E)
fffff800`0384e000 fffff800`03e36000 nt ntkrnlmp.exe Fri May 04 02:18:59 2012 (4FA390F3)
fffff880`0121d000 fffff880`013c0000 Ntfs Ntfs.sys Thu Mar 10 20:39:39 2011 (4D79997B)
fffff880`01668000 fffff880`01671000 Null Null.SYS Mon Jul 13 17:19:37 2009 (4A5BC109)
fffff880`02ced000 fffff880`02d13000 pacer pacer.sys Sat Nov 20 03:52:18 2010 (4CE7A862)
fffff880`00e26000 fffff880`00e3b000 partmgr partmgr.sys Fri Mar 16 23:06:09 2012 (4F641BC1)
fffff880`00fb3000 fffff880`00fe6000 pci pci.sys Sat Nov 20 02:19:11 2010 (4CE7928F)
fffff880`00e50000 fffff880`00e57000 pciide pciide.sys Mon Jul 13 17:19:49 2009 (4A5BC115)
fffff880`00e57000 fffff880`00e67000 PCIIDEX PCIIDEX.SYS Mon Jul 13 17:19:48 2009 (4A5BC114)
fffff880`013db000 fffff880`013ec000 pcw pcw.sys Mon Jul 13 17:19:27 2009 (4A5BC0FF)
fffff880`0889b000 fffff880`08941000 peauth peauth.sys Mon Jul 13 19:01:19 2009 (4A5BD8DF)
fffff880`07217000 fffff880`07254000 portcls portcls.sys Mon Jul 13 18:06:27 2009 (4A5BCC03)
fffff880`00c67000 fffff880`00c7b000 PSHED PSHED.dll Mon Jul 13 19:32:23 2009 (4A5BE027)
fffff880`0730e000 fffff880`0733a000 PSINAflt PSINAflt.sys Thu Jul 12 12:43:39 2012 (4FFF1ADB)
fffff880`0735d000 fffff880`0737d000 PSINFile PSINFile.sys Thu Jul 12 12:44:06 2012 (4FFF1AF6)
fffff880`04139000 fffff880`04171000 psinknc psinknc.sys Thu Jul 12 12:43:03 2012 (4FFF1AB7)
fffff880`0737d000 fffff880`0739f000 PSINProc PSINProc.sys Thu Jul 12 12:44:30 2012 (4FFF1B0E)
fffff880`0733a000 fffff880`0735d000 PSINProt PSINProt.sys Thu Jul 12 12:44:52 2012 (4FFF1B24)
fffff880`058d7000 fffff880`058fb000 rasl2tp rasl2tp.sys Sat Nov 20 03:52:34 2010 (4CE7A872)
fffff880`0457a000 fffff880`04595000 raspppoe raspppoe.sys Mon Jul 13 18:10:17 2009 (4A5BCCE9)
fffff880`04595000 fffff880`045b6000 raspptp raspptp.sys Sat Nov 20 03:52:31 2010 (4CE7A86F)
fffff880`045b6000 fffff880`045d0000 rassstp rassstp.sys Mon Jul 13 18:10:25 2009 (4A5BCCF1)
fffff880`040e8000 fffff880`04139000 rdbss rdbss.sys Sat Nov 20 02:27:51 2010 (4CE79497)
fffff880`05392000 fffff880`0539d000 rdpbus rdpbus.sys Mon Jul 13 18:17:46 2009 (4A5BCEAA)
fffff880`019f6000 fffff880`019ff000 RDPCDD RDPCDD.sys Mon Jul 13 18:16:34 2009 (4A5BCE62)
fffff880`01400000 fffff880`01409000 rdpencdd rdpencdd.sys Mon Jul 13 18:16:34 2009 (4A5BCE62)
fffff880`013f6000 fffff880`013ff000 rdprefmp rdprefmp.sys Mon Jul 13 18:16:35 2009 (4A5BCE63)
fffff880`01926000 fffff880`01960000 rdyboost rdyboost.sys Sat Nov 20 02:43:10 2010 (4CE7982E)
fffff880`073d5000 fffff880`073ed000 rspndr rspndr.sys Mon Jul 13 18:08:50 2009 (4A5BCC92)
fffff880`058fd000 fffff880`059ac000 Rt64win7 Rt64win7.sys Wed Apr 11 10:29:16 2012 (4F85B15C)
fffff880`043a4000 fffff880`043fc300 RtHDMIVX RtHDMIVX.sys Wed Jul 06 04:09:50 2011 (4E14346E)
fffff880`07408000 fffff880`077e6980 RTKVHD64 RTKVHD64.sys Thu May 31 03:21:30 2012 (4FC7381A)
fffff880`02dab000 fffff880`02db5000 SASDIFSV64 SASDIFSV64.SYS Thu Jul 21 17:03:00 2011 (4E28B024)
fffff880`02da1000 fffff880`02dab000 SASKUTIL64 SASKUTIL64.SYS Tue Jul 12 15:00:01 2011 (4E1CB5D1)
fffff880`02d7a000 fffff880`02da1000 SCDEmu SCDEmu.SYS Mon Nov 14 20:18:27 2011 (4EC1DA03)
fffff880`08941000 fffff880`0894c000 secdrv secdrv.SYS Wed Sep 13 07:18:38 2006 (4508052E)
fffff880`058a5000 fffff880`058b1000 serenum serenum.sys Mon Jul 13 18:00:33 2009 (4A5BCAA1)
fffff880`02d2e000 fffff880`02d4b000 serial serial.sys Mon Jul 13 18:00:40 2009 (4A5BCAA8)
fffff880`0191e000 fffff880`01926000 spldr spldr.sys Mon May 11 10:56:27 2009 (4A0858BB)
fffff880`0894c000 fffff880`0897d000 srvnet srvnet.sys Thu Apr 28 21:05:35 2011 (4DBA2AFF)
fffff880`058fb000 fffff880`058fc480 swenum swenum.sys Mon Jul 13 18:00:18 2009 (4A5BCA92)
fffff880`01675000 fffff880`01878000 tcpip tcpip.sys Fri Mar 30 02:34:26 2012 (4F757012)
fffff880`0897d000 fffff880`0898f000 tcpipreg tcpipreg.sys Sat Nov 20 03:51:48 2010 (4CE7A844)
fffff880`011bf000 fffff880`011cc000 TDI TDI.SYS Sat Nov 20 02:22:06 2010 (4CE7933E)
fffff880`0119d000 fffff880`011bf000 tdx tdx.sys Sat Nov 20 02:21:54 2010 (4CE79332)
fffff880`02d66000 fffff880`02d7a000 termdd termdd.sys Sat Nov 20 04:03:40 2010 (4CE7AB0C)
fffff960`004e0000 fffff960`004ea000 TSDDD TSDDD.dll unavailable (00000000)
fffff880`042eb000 fffff880`04311000 tunnel tunnel.sys Sat Nov 20 03:51:50 2010 (4CE7A846)
fffff880`04800000 fffff880`04812000 umbus umbus.sys Sat Nov 20 03:44:37 2010 (4CE7A695)
fffff880`0727c000 fffff880`07299000 usbccgp usbccgp.sys Thu Mar 24 21:29:14 2011 (4D8C0C0A)
fffff880`045fc000 fffff880`045fdf00 USBD USBD.SYS Thu Mar 24 21:28:59 2011 (4D8C0BFB)
fffff880`05856000 fffff880`05867000 usbehci usbehci.sys Thu Mar 24 21:29:04 2011 (4D8C0C00)
fffff880`04820000 fffff880`0487a000 usbhub usbhub.sys Thu Mar 24 21:29:25 2011 (4D8C0C15)
fffff880`059b9000 fffff880`059c4000 usbohci usbohci.sys Thu Mar 24 21:29:03 2011 (4D8C0BFF)
fffff880`05800000 fffff880`05856000 USBPORT USBPORT.SYS Thu Mar 24 21:29:12 2011 (4D8C0C08)
fffff880`00fe6000 fffff880`00ff3000 vdrvroot vdrvroot.sys Mon Jul 13 18:01:31 2009 (4A5BCADB)
fffff880`015b8000 fffff880`015c6000 vga vga.sys Mon Jul 13 17:38:47 2009 (4A5BC587)
fffff880`015c6000 fffff880`015eb000 VIDEOPRT VIDEOPRT.SYS Mon Jul 13 17:38:51 2009 (4A5BC58B)
fffff880`045d0000 fffff880`045db000 VKbms VKbms.sys Thu Sep 30 10:16:33 2010 (4CA4B7E1)
fffff880`00c00000 fffff880`00c3c000 vmbus vmbus.sys Sat Nov 20 02:57:29 2010 (4CE79B89)
fffff880`018c2000 fffff880`018d2000 vmstorfl vmstorfl.sys Sat Nov 20 02:57:30 2010 (4CE79B8A)
fffff880`00e3b000 fffff880`00e50000 volmgr volmgr.sys Sat Nov 20 02:19:28 2010 (4CE792A0)
fffff880`00d99000 fffff880`00df5000 volmgrx volmgrx.sys Sat Nov 20 02:20:43 2010 (4CE792EB)
fffff880`018d2000 fffff880`0191e000 volsnap volsnap.sys Sat Nov 20 02:20:08 2010 (4CE792C8)
fffff880`00e00000 fffff880`00e26000 vsflt67 vsflt67.sys Wed Dec 14 04:43:33 2011 (4EE88BE5)
fffff880`02d4b000 fffff880`02d66000 wanarp wanarp.sys Sat Nov 20 03:52:36 2010 (4CE7A874)
fffff880`015eb000 fffff880`015fb000 watchdog watchdog.sys Mon Jul 13 17:37:35 2009 (4A5BC53F)
fffff880`00e96000 fffff880`00f3a000 Wdf01000 Wdf01000.sys Mon Jul 13 17:22:07 2009 (4A5BC19F)
fffff880`00f3a000 fffff880`00f49000 WDFLDR WDFLDR.SYS Mon Jul 13 17:19:54 2009 (4A5BC11A)
fffff880`02ce4000 fffff880`02ced000 wfplwf wfplwf.sys Mon Jul 13 18:09:26 2009 (4A5BCCB6)
[color=red][b]fffff960`00020000 fffff960`00335000 win32k win32k.sys unavailable (00000000)[/b][/color]
fffff880`00e81000 fffff880`00e95000 winhv winhv.sys Sat Nov 20 02:20:02 2010 (4CE792C2)
fffff880`04326000 fffff880`0432f000 wmiacpi wmiacpi.sys Mon Jul 13 17:31:02 2009 (4A5BC3B6)
fffff880`00fa0000 fffff880`00fa9000 WMILIB WMILIB.SYS Mon Jul 13 17:19:51 2009 (4A5BC117)
fffff880`0739f000 fffff880`073c0000 WudfPf WudfPf.sys Sat Nov 20 03:42:44 2010 (4CE7A624)
Unloaded modules:
fffff880`01630000 fffff880`0163e000 crashdmp.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0000E000
fffff880`0163e000 fffff880`0164a000 dump_pciidex
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0000C000
fffff880`0164a000 fffff880`01655000 dump_msahci.
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0000B000
fffff880`01655000 fffff880`01668000 dump_dumpfve
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 00013000IDK about that, John...
All versions of Windbg GUI shows the same win32k symbol errors which IMO:
- rules out the scripts 100%
- rules out different versions of KD 100%
- rules out different versions of Windbg 100%
Why are we only seeing SYM errors related to win32k.sys & no others?
I think the problem lay with MSDL SYM server.
Running this dump - https://www.sysnative.com/forums/sh...d-for-win32k-sys?p=24849&viewfull=1#post24849
I deleted win32k PDB & SYS folders from local sym cache before running.
Windbg 6.12
Running dump from non-extracted zip - MSDL successful per !lmi command -
Code:
0: kd> [COLOR=#ff0000]!lmi win32k.sys[/COLOR]
Loaded Module Info: [win32k.sys]
Module: win32k
Base Address: fffff96000020000
Image Name: win32k.sys
Machine Type: 34404 (X64)
Time Stamp: 5006fd0d Wed Jul 18 14:14:37 2012
Size: 315000
CheckSum: 306830
Characteristics: 22 perf
Debug Data Dirs: Type Size VA Pointer
CODEVIEW 23, 2a5c98, 2a5098 RSDS - GUID: {4CD57B19-7B9A-472D-9ABE-1FBDD098173F}
Age: 2, Pdb: win32k.pdb
CLSID 4, 2a5c94, 2a5094 [Data not mapped]
Image Type: FILE - Image read successfully from debugger.
win32k.sys
Symbol Type: PDB - [COLOR=#ff0000]Symbols loaded successfully from symbol server.[/COLOR]
a:\symbols\win32k.pdb\4CD57B197B9A472D9ABE1FBDD098173F2\win32k.pdb
Load Report: public symbols , not source indexed
a:\symbols\win32k.pdb\4CD57B197B9A472D9ABE1FBDD098173F2\win32k.pdbFull output -
Read More:
My local sym cache shows current timestamp on win32k folder -
Code:
Directory of A:\symbols\win32k.pdb\4CD57B197B9A472D9ABE1FBDD098173F2
08/23/2012 22:45 <DIR> .
08/23/2012 22:45 <DIR> ..
07/18/2012 19:07 4,885,504 win32k.pdb
1 File(s) 4,885,504 bytes
2 Dir(s) 23,382,413,312 bytes free
A:\symbols\win32k.pdb\4CD57B197B9A472D9ABE1FBDD098173F2>I deleted win32k from local sym cache, then re-ran, but with extracted dump.
If I extract the dump from the zip, then run it - MSDL fails to download win32k SYMs -
Code:
0: kd> !lmi win32k.sys
Loaded Module Info: [win32k.sys]
Cannot read Image header @ fffff96000020000
Load Report: [COLOR=#FF0000]no symbols loaded[/COLOR]
Read More:
No symbols downloaded for win32k -
Code:
A:\symbols>dir win32k*
Volume in drive A is BSOD Scripts - Dumps
Volume Serial Number is 1055-E977
Directory of A:\symbols
File Not Found
A:\symbols>You got 2 posts in there Mike!
You type faster than I do!
We both do agree -- win32k sym errors have nothing to do with the apps whatsoever.
And as I asked.... why only win32k??
You type faster than I do!
We both do agree -- win32k sym errors have nothing to do with the apps whatsoever.
And as I asked.... why only win32k??
Brilliant! I never would have thought to run it from the .zip itself. Nice find!!
I'll have to test that out, too.
Has Sysnative Forums helped you? Please consider donating to help us support the site!