A Windows XP help forum. PCbanter

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Go Back   Home » PCbanter forum » Microsoft Windows XP » Security and Administration with Windows XP
Reload this Page Windows Restarts
Site Map Home Register Authors List Search Today's Posts Mark Forums Read Web Partners

Windows Restarts


« Previous Thread | Next Thread »

 
 
Thread Tools Display Modes
  #1  
Old November 24th 08, 06:09 AM posted to microsoft.public.windowsxp.security_admin
Hiren V. Majithiya
external usenet poster
  
Posts: 1
Default Windows Restarts
Dear All,

We have deployed active-directory. After it, we deployed MS-FCS on domain.
Now many PC gets restarted automatically. It genereated minidump and I have
tried to debug, but I can't find out the solution. I am appending the debug
log he
++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++
Opened log file 'c:\debuglog.txt'
kd .sympath c:\windows\symbols
Symbol search path is: c:\windows\symbols
kd .reload;!analyze -v;r;kv;lmnt;.logclose;q
Unable to load image ntoskrnl.exe, Win32 error 0n2
*** WARNING: Unable to verify timestamp for ntoskrnl.exe
Loading Kernel Symbols
.................................................. .................................................. ........
Loading User Symbols
Loading unloaded module list
..........
Unable to load image tdi_fw.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for tdi_fw.sys
*** ERROR: Module load completed but symbols could not be loaded for
tdi_fw.sys
************************************************** *****************************
*
*
* Bugcheck Analysis
*
*
*
************************************************** *****************************

DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high. This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: 00000000, memory referenced
Arg2: 00000002, IRQL
Arg3: 00000000, value 0 = read operation, 1 = write operation
Arg4: 00000000, address which referenced memory

Debugging Details:
------------------

*** WARNING: Unable to verify timestamp for tcpip.sys
*** WARNING: Unable to verify timestamp for NDIS.sys
*** WARNING: Unable to verify timestamp for psched.sys
*** WARNING: Unable to verify timestamp for e100b325.sys

READ_ADDRESS: 00000000

CURRENT_IRQL: 2

FAULTING_IP:
+0
00000000 ?? ???

PROCESS_NAME: svchost.exe

CUSTOMER_CRASH_COUNT: 16

DEFAULT_BUCKET_ID: COMMON_SYSTEM_FAULT

BUGCHECK_STR: 0xD1

LAST_CONTROL_TRANSFER: from f90ba395 to 00000000

FAILED_INSTRUCTION_ADDRESS:
+0
00000000 ?? ???

STACK_TEXT:
WARNING: Frame IP not in any known module. Following frames may be wrong.
f96e19f8 f90ba395 00000000 00000016 f96e1b2c 0x0
f96e1aac f0beb86c ff87db9c 00000016 f96e1b2c tdi_fw+0x1395
f96e1b48 f0bf5d35 fd6bf008 10320a0a 00004300 tcpip!UDPDeliver+0x1be
f96e1ba0 f0beaef5 81a15758 cd370a0a 10320a0a tcpip!TCPRcv+0xe41
f96e1c00 f0c08de3 00000020 81a15758 f0beb592 tcpip!DeliverToUser+0x18e
f96e1cb4 f0be9928 81a15758 f0d31bac 00000134 tcpip!IPRcvPacket+0x644
f96e1cf4 f0be9853 00000000 ffa67378 f0d31b8a tcpip!ARPRcvIndicationNew+0x149
f96e1d30 f913ab9f 81a2a818 00000000 f8f28b40 tcpip!ARPRcvPacket+0x68
f96e1d84 f8f2301d 009989c0 81a8c290 00000001
NDIS!ethFilterDprIndicateReceivePacket+0x1c2
f96e1d98 f8f231b4 819d5370 81a8c290 00000001 psched!PsFlushReceiveQueue+0x15
f96e1dbc f8f235f9 81991dc0 00000000 819d5370
psched!PsEnqueueReceivePacket+0xda
f96e1dd4 f913ac40 81991db8 ffa7d568 ffa7d008 psched!ClReceiveComplete+0x13
f96e1e24 f903f78b 009989c0 f96e1e44 00000001
NDIS!ethFilterDprIndicateReceivePacket+0x5a4
f96e1f8c f903f97b 01a7d008 00000000 81a48130 e100b325!PciWritePowerState+0x41
f96e1fb8 f9130e99 00a7d008 81995008 8199526c
e100b325!PciCardbusClearWritePostEnable+0x61
f96e1fd0 804dbbd4 ffa7d3e0 ffa7d3cc 00000000 NDIS!ndisMDpcX+0x21
f96e1fe4 00000000 00000000 00000000 00000000 nt!KiRetireDpcList+0x46


STACK_COMMAND: kb

FOLLOWUP_IP:
tdi_fw+1395
f90ba395 ?? ???

SYMBOL_STACK_INDEX: 1

SYMBOL_NAME: tdi_fw+1395

FOLLOWUP_NAME: MachineOwner

MODULE_NAME: tdi_fw

IMAGE_NAME: tdi_fw.sys

DEBUG_FLR_IMAGE_TIMESTAMP: 3def4ef1

FAILURE_BUCKET_ID: 0xD1_CODE_AV_NULL_IP_tdi_fw+1395

BUCKET_ID: 0xD1_CODE_AV_NULL_IP_tdi_fw+1395

Followup: MachineOwner
---------

eax=ff87db9c ebx=ff87db50 ecx=00000041 edx=81b4ea02 esi=00000001 edi=f96e1b7c
eip=00000000 esp=f96e19fc ebp=f96e1aac iopl=0 nv up ei pl zr na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010246
00000000 ?? ???
ChildEBP RetAddr Args to Child
WARNING: Frame IP not in any known module. Following frames may be wrong.
f96e19f8 f90ba395 00000000 00000016 f96e1b2c 0x0
f96e1aac f0beb86c ff87db9c 00000016 f96e1b2c tdi_fw+0x1395
f96e1b48 f0bf5d35 fd6bf008 10320a0a 00004300 tcpip!UDPDeliver+0x1be (FPO:
[Non-Fpo])
f96e1ba0 f0beaef5 81a15758 cd370a0a 10320a0a tcpip!TCPRcv+0xe41 (FPO:
[Non-Fpo])
f96e1c00 f0c08de3 00000020 81a15758 f0beb592 tcpip!DeliverToUser+0x18e (FPO:
[Non-Fpo])
f96e1cb4 f0be9928 81a15758 f0d31bac 00000134 tcpip!IPRcvPacket+0x644 (FPO:
[Non-Fpo])
f96e1cf4 f0be9853 00000000 ffa67378 f0d31b8a tcpip!ARPRcvIndicationNew+0x149
(FPO: [Non-Fpo])
f96e1d30 f913ab9f 81a2a818 00000000 f8f28b40 tcpip!ARPRcvPacket+0x68 (FPO:
[Non-Fpo])
f96e1d84 f8f2301d 009989c0 81a8c290 00000001
NDIS!ethFilterDprIndicateReceivePacket+0x1c2 (FPO: [Non-Fpo])
f96e1d98 f8f231b4 819d5370 81a8c290 00000001 psched!PsFlushReceiveQueue+0x15
(FPO: [Non-Fpo])
f96e1dbc f8f235f9 81991dc0 00000000 819d5370
psched!PsEnqueueReceivePacket+0xda (FPO: [Non-Fpo])
f96e1dd4 f913ac40 81991db8 ffa7d568 ffa7d008 psched!ClReceiveComplete+0x13
(FPO: [Non-Fpo])
f96e1e24 f903f78b 009989c0 f96e1e44 00000001
NDIS!ethFilterDprIndicateReceivePacket+0x5a4 (FPO: [Non-Fpo])
f96e1f8c f903f97b 01a7d008 00000000 81a48130
e100b325!PciWritePowerState+0x41 (FPO: [Non-Fpo])
f96e1fb8 f9130e99 00a7d008 81995008 8199526c
e100b325!PciCardbusClearWritePostEnable+0x61 (FPO: [Non-Fpo])
f96e1fd0 804dbbd4 ffa7d3e0 ffa7d3cc 00000000 NDIS!ndisMDpcX+0x21 (FPO:
[Non-Fpo])
f96e1fe4 00000000 00000000 00000000 00000000 nt!KiRetireDpcList+0x46 (FPO:
[0,0,0])
start end module name
804d7000 806ed780 nt ntoskrnl.exe Thu Aug 14 15:40:51 2008 (48A404AB)
806ee000 8070e300 hal hal.dll Mon Apr 14 00:01:27 2008 (4802517F)
bf800000 bf9c2c80 win32k win32k.sys Mon Sep 15 17:42:42 2008 (48CE513A)
bf9c3000 bf9d4600 dxg dxg.sys Mon Apr 14 00:08:27 2008 (48025323)
bf9d5000 bf9e2000 ialmrnt5 ialmrnt5.dll Thu Oct 17 06:30:38 2002 (3DAE0BB6)
bf9e2000 bf9fb000 ialmdnt5 ialmdnt5.dll Thu Oct 17 06:29:29 2002 (3DAE0B71)
bf9fb000 bfa22cc0 ialmdev5 ialmdev5.DLL Thu Oct 17 06:29:12 2002 (3DAE0B60)
bfa23000 bfaab000 ialmdd5 ialmdd5.DLL Thu Oct 17 06:28:21 2002 (3DAE0B2D)
bffa0000 bffe5c00 ATMFD ATMFD.DLL Mon Apr 14 05:39:55 2008 (4802A0D3)
eff27000 eff67a80 HTTP HTTP.sys Mon Apr 14 00:23:48 2008 (480256BC)
f0030000 f005a180 kmixer kmixer.sys Mon Apr 14 00:15:07 2008 (480254B3)
f007e000 f0092480 wdmaud wdmaud.sys Mon Apr 14 00:47:18 2008 (48025C3E)
f0303000 f0311d80 sysaudio sysaudio.sys Mon Apr 14 00:45:55 2008 (48025BEB)
f0363000 f036db80 MpFilter MpFilter.sys Wed Apr 23 12:28:29 2008 (480EDE15)
f0453000 f0475100 RDPWD RDPWD.SYS Mon Apr 14 00:08:40 2008 (48025330)
f065d000 f06ae800 srv srv.sys Mon Sep 08 16:11:40 2008 (48C50164)
f0727000 f0753180 mrxdav mrxdav.sys Mon Apr 14 00:02:42 2008 (480251CA)
f0ac4000 f0adb900 dump_atapi dump_atapi.sys Mon Apr 14 00:10:29 2008
(4802539D)
f0adc000 f0b4b280 mrxsmb mrxsmb.sys Fri Oct 24 16:51:07 2008 (4901AFA3)
f0b68000 f0b6b900 ndisuio ndisuio.sys Mon Apr 14 00:25:57 2008 (4802573D)
f0b74000 f0b9ee80 rdbss rdbss.sys Mon Apr 14 00:58:38 2008 (48025EE6)
f0b9f000 f0bc0d00 afd afd.sys Thu Aug 14 15:34:35 2008 (48A40333)
f0bc1000 f0be8c00 netbt netbt.sys Mon Apr 14 00:50:59 2008 (48025D1B)
f0be9000 f0c41480 tcpip tcpip.sys Fri Jun 20 17:21:09 2008 (485B99AD)
f0c42000 f0c54600 ipsec ipsec.sys Mon Apr 14 00:49:42 2008 (48025CCE)
f0dc0000 f0dc2900 Dxapi Dxapi.sys Sat Aug 18 02:23:19 2001 (3B7D843F)
f0de4000 f0df5720 ialmkchw ialmkchw.sys Thu Oct 17 06:30:59 2002 (3DAE0BCB)
f0df6000 f0e0c5e0 ialmsbw ialmsbw.sys Thu Oct 17 06:30:47 2002 (3DAE0BBF)
f8e8d000 f8eeaf00 update update.sys Mon Apr 14 00:09:46 2008 (48025372)
f8eeb000 f8f1ae80 rdpdr rdpdr.sys Mon Apr 14 00:02:50 2008 (480251D2)
f8f1b000 f8f2be00 psched psched.sys Mon Apr 14 00:26:36 2008 (48025764)
f8f2c000 f8f42580 ndiswan ndiswan.sys Mon Apr 14 00:50:41 2008 (48025D09)
f8f43000 f8f59f60 aeaudio aeaudio.sys Wed Jun 05 21:30:39 2002 (3CFE35A7)
f8f5a000 f8f7c700 ks ks.sys Mon Apr 14 00:46:34 2008 (48025C12)
f8f7d000 f8fa0a80 portcls portcls.sys Mon Apr 14 00:49:40 2008 (48025CCC)
f8fa1000 f9021c00 smwdm smwdm.sys Tue Jun 18 01:13:13 2002 (3D0E3BD1)
f9022000 f9035900 parport parport.sys Mon Apr 14 00:10:09 2008 (48025389)
f9036000 f9058200 e100b325 e100b325.sys Mon Feb 25 21:24:01 2002 (3C7A5E19)
f9059000 f907c200 USBPORT USBPORT.SYS Mon Apr 14 00:15:34 2008 (480254CE)
f907d000 f9090f00 VIDEOPRT VIDEOPRT.SYS Mon Apr 14 00:14:39 2008 (48025497)
f9091000 f90a45a0 ialmnt5 ialmnt5.sys Thu Oct 17 06:29:33 2002 (3DAE0B75)
f90b9000 f90bbea0 tdi_fw tdi_fw.sys Thu Dec 05 18:34:49 2002 (3DEF4EF1)
f90c1000 f90c3280 rasacd rasacd.sys Sat Aug 18 02:25:39 2001 (3B7D84CB)
f90fe000 f9117b80 Mup Mup.sys Mon Apr 14 00:47:05 2008 (48025C31)
f9118000 f9144980 NDIS NDIS.sys Mon Apr 14 00:50:35 2008 (48025D03)
f9145000 f91d1600 Ntfs Ntfs.sys Mon Apr 14 00:45:49 2008 (48025BE5)
f91d2000 f91e8880 KSecDD KSecDD.sys Mon Apr 14 00:01:40 2008 (4802518C)
f91e9000 f9208b00 fltmgr fltmgr.sys Mon Apr 14 00:02:58 2008 (480251DA)
f9209000 f9220900 atapi atapi.sys Mon Apr 14 00:10:29 2008 (4802539D)
f9221000 f9246700 dmio dmio.sys Mon Apr 14 00:14:45 2008 (4802549D)
f9247000 f9265880 ftdisk ftdisk.sys Sat Aug 18 02:22:41 2001 (3B7D8419)
f9266000 f9276a80 pci pci.sys Mon Apr 14 00:06:43 2008 (480252BB)
f9277000 f92a4d80 ACPI ACPI.sys Mon Apr 14 00:06:33 2008 (480252B1)
f92c6000 f92cf180 isapnp isapnp.sys Mon Apr 14 00:06:40 2008 (480252B8)
f92d6000 f92e0580 MountMgr MountMgr.sys Mon Apr 14 00:09:45 2008 (48025371)
f92e6000 f92f2c80 VolSnap VolSnap.sys Mon Apr 14 00:11:00 2008 (480253BC)
f92f6000 f92fee00 disk disk.sys Mon Apr 14 00:10:46 2008 (480253AE)
f9306000 f9312180 CLASSPNP CLASSPNP.SYS Mon Apr 14 00:46:21 2008 (48025C05)
f9376000 f9382d00 i8042prt i8042prt.sys Mon Apr 14 00:47:59 2008 (48025C67)
f9386000 f9395c00 serial serial.sys Mon Apr 14 00:45:44 2008 (48025BE0)
f9396000 f93a4b00 drmk drmk.sys Mon Apr 14 00:15:12 2008 (480254B8)
f93a6000 f93b2880 rasl2tp rasl2tp.sys Mon Apr 14 00:49:43 2008 (48025CCF)
f93b6000 f93c0200 raspppoe raspppoe.sys Mon Apr 14 00:27:31 2008 (4802579B)
f93c6000 f93d1d00 raspptp raspptp.sys Mon Apr 14 00:49:47 2008 (48025CD3)
f93d6000 f93de900 msgpc msgpc.sys Mon Apr 14 00:26:32 2008 (48025760)
f93e6000 f93eff00 termdd termdd.sys Mon Apr 14 00:08:36 2008 (4802532C)
f9406000 f940fe80 NDProxy NDProxy.SYS Mon Apr 14 00:27:28 2008 (48025798)
f9416000 f9424880 usbhub usbhub.sys Mon Apr 14 00:15:36 2008 (480254D0)
f9476000 f947e780 netbios netbios.sys Mon Apr 14 00:26:01 2008 (48025741)
f94a6000 f94b0e00 Fips Fips.SYS Mon Apr 14 00:03:27 2008 (480251F7)
f94c6000 f94ce700 wanarp wanarp.sys Mon Apr 14 00:27:20 2008 (48025790)
f9546000 f954c180 PCIIDEX PCIIDEX.SYS Mon Apr 14 00:10:29 2008 (4802539D)
f954e000 f9552d00 PartMgr PartMgr.sys Mon Apr 14 00:10:48 2008 (480253B0)
f9596000 f959b080 usbuhci usbuhci.sys Mon Apr 14 00:15:34 2008 (480254CE)
f959e000 f95a5600 usbehci usbehci.sys Mon Apr 14 00:15:34 2008 (480254CE)
f95a6000 f95ac000 kbdclass kbdclass.sys Mon Apr 14 00:09:46 2008 (48025372)
f95ae000 f95b3a00 mouclass mouclass.sys Mon Apr 14 00:09:47 2008 (48025373)
f95b6000 f95b7000 fdc fdc.sys unavailable (00000000)
f95be000 f95c2a80 TDI TDI.SYS Mon Apr 14 00:30:04 2008 (48025834)
f95c6000 f95ca580 ptilink ptilink.sys Sat Aug 18 02:19:53 2001 (3B7D8371)
f95ce000 f95d2080 raspti raspti.sys Sat Aug 18 02:25:32 2001 (3B7D84C4)
f95e6000 f95eb000 flpydisk flpydisk.sys Mon Apr 14 00:10:24 2008 (48025398)
f95fe000 f9603200 vga vga.sys Mon Apr 14 00:14:40 2008 (48025498)
f9606000 f960aa80 Msfs Msfs.SYS Mon Apr 14 00:02:38 2008 (480251C6)
f960e000 f9615880 Npfs Npfs.SYS Mon Apr 14 00:02:38 2008 (480251C6)
f9626000 f962a500 watchdog watchdog.sys Mon Apr 14 00:14:59 2008 (480254AB)
f968e000 f9693500 TDTCP TDTCP.SYS Mon Apr 14 00:08:35 2008 (4802532B)
f96d6000 f96d9000 BOOTVID BOOTVID.dll Sat Aug 18 02:19:09 2001 (3B7D8345)
f975e000 f9761d80 serenum serenum.sys Mon Apr 14 00:10:12 2008 (4802538C)
f9762000 f9764780 ndistapi ndistapi.sys Mon Apr 14 00:27:27 2008 (48025797)
f9786000 f9789c80 mssmbios mssmbios.sys Mon Apr 14 00:06:45 2008 (480252BD)
f97c6000 f97c7b80 kdcom kdcom.dll Sat Aug 18 02:19:10 2001 (3B7D8346)
f97c8000 f97c9100 WMILIB WMILIB.SYS Sat Aug 18 02:37:23 2001 (3B7D878B)
f97ca000 f97cb580 intelide intelide.sys Mon Apr 14 00:10:29 2008 (4802539D)
f97cc000 f97cd000 dmload dmload.sys unavailable (00000000)
f97dc000 f97dd100 swenum swenum.sys Mon Apr 14 00:09:52 2008 (48025378)
f97de000 f97df280 USBD USBD.SYS Sat Aug 18 02:32:58 2001 (3B7D8682)
f97e2000 f97e3000 Fs_Rec Fs_Rec.SYS unavailable (00000000)
f97e4000 f97e5080 Beep Beep.SYS Sat Aug 18 02:17:33 2001 (3B7D82E5)
f97e6000 f97e7080 mnmdd mnmdd.SYS Sat Aug 18 02:27:28 2001 (3B7D8538)
f97e8000 f97e9080 RDPCDD RDPCDD.sys Sat Aug 18 02:16:56 2001 (3B7D82C0)
f97f6000 f97f7100 dump_WMILIB dump_WMILIB.SYS Sat Aug 18 02:37:23 2001
(3B7D878B)
f9800000 f9801000 ParVdm ParVdm.SYS unavailable (00000000)
f9858000 f9859400 pmemnt pmemnt.sys Wed Sep 23 17:39:52 1998 (3608E510)
f988e000 f988ed00 pciide pciide.sys Sat Aug 18 02:21:49 2001 (3B7D83E5)
f993e000 f993ec00 audstub audstub.sys Sat Aug 18 02:29:40 2001 (3B7D85BC)
f99a6000 f99a6b80 Null Null.SYS Sat Aug 18 02:17:39 2001 (3B7D82EB)
f9a1c000 f9a1cd00 dxgthk dxgthk.sys Sat Aug 18 02:23:12 2001 (3B7D8438)

Unloaded modules:
f9926000 f9927000 drmkaud.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f01d3000 f01e0000 DMusic.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f005b000 f007e000 aec.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f018b000 f0199000 swmidi.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f9814000 f9816000 splitter.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f9496000 f94a1000 imapi.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f9486000 f9495000 redbook.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f95f6000 f95fb000 Cdaudio.SYS
Timestamp: unavailable (00000000)
Checksum: 00000000
f9466000 f9476000 cdrom.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
Closing open log file c:\debuglog.txt
++++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++


Please help,
--
Hiren
Network & System Administrator,
M/s GNFC Ltd.
Ads
 



« Previous Thread | Next Thread »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off






All times are GMT +1. The time now is 09:33 PM.

Feed Icon - Contact Us - Windows XP Help Forum home - FAQ - Links - Privacy Statement - Top

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright ©2004-2024 PCbanter.
The comments are property of their posters.