Dump Data Analysis

I have the data from a dump file caused by a blue screen. If anyone can shed any light I would be very grateful:

Opened log file 'c:\debuglog.txt'

Microsoft (R) Windows Debugger Version 6.4.0007.2
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\Temp\Mini061405-02.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: C:\WINDOWS;C:\WINDOWS\system32;C:\WINDOWS\system32\drivers
*** ERROR: Symbol file could not be found. Defaulted to export symbols for ntkrnlmp.exe -
Windows XP Kernel Version 2600 (Service Pack 2) UP Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 2600.xpsp_sp2_gdr.050301-1519
Kernel base = 0x804d7000 PsLoadedModuleList = 0x805624a0
Debug session time: Tue Jun 14 08:22:21.283 2005 (GMT+1)
System Uptime: 0 days 0:01:36.421
*** ERROR: Symbol file could not be found. Defaulted to export symbols for ntkrnlmp.exe -
Loading Kernel Symbols
....................................................................................................................
Loading unloaded module list
...
Loading User Symbols
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck 1000007F, {8, 80042000, 0, 0}

***** Kernel symbols are WRONG. Please fix symbols to do analysis.

*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************
Probably caused by : win32k.sys ( win32k!NtGdiCreateDIBSection+15c )

Followup: MachineOwner
---------

kd> !analyze -v;r;kv;lmtn;.logclose;q
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

UNEXPECTED_KERNEL_MODE_TRAP_M (1000007f)
This means a trap occurred in kernel mode, and it's a trap of a kind
that the kernel isn't allowed to have/catch (bound trap) or that
is always instant death (double fault). The first number in the
bugcheck params is the number of the trap (8 = double fault, etc)
Consult an Intel x86 family manual to learn more about what these
traps are. Here is a *portion* of those codes:
If kv shows a taskGate
use .tss on the part before the colon, then kv.
Else if kv shows a trapframe
use .trap on that value
Else
.trap on the appropriate frame will show where the trap was taken
(on x86, this will be the ebp that goes with the procedure KiTrap)
Endif
kb will then show the corrected stack.
Arguments:
Arg1: 00000008, EXCEPTION_DOUBLE_FAULT
Arg2: 80042000
Arg3: 00000000
Arg4: 00000000

Debugging Details:
------------------

***** Kernel symbols are WRONG. Please fix symbols to do analysis.

*************************************************************************
*** ***
*** ***
*** Your debugger is not using the correct symbols ***
*** ***
*** In order for this command to work properly, your symbol path ***
*** must point to .pdb files that have full type information. ***
*** ***
*** Certain .pdb files (such as the public OS symbols) do not ***
*** contain the required information. Contact the group that ***
*** provided you with these symbols if you need this command to ***
*** work. ***
*** ***
*** Type referenced: nt!_KPRCB ***
*** ***
*************************************************************************

MODULE_NAME: win32k

FAULTING_MODULE: 804d7000 nt

DEBUG_FLR_IMAGE_TIMESTAMP: 422511a2

BUGCHECK_STR: 0x7f_8

CUSTOMER_CRASH_COUNT: 2

DEFAULT_BUCKET_ID: DRIVER_FAULT

LAST_CONTROL_TRANSFER: from 804e0944 to 806ffa87

STACK_TEXT:
ef6136bc 804e0944 00000000 011e1000 00000000 hal!KeAcquireQueuedSpinLock+0x3b
WARNING: Stack unwind information not available. Following frames may be wrong.
ef6136bc 804e0944 00000000 011e1000 00000000 nt!Kei386EoiHelper+0x271b
ef6136d4 8056d92a badb0d00 fffff000 00000000 nt!Kei386EoiHelper+0x271b
ef613750 80570def 011e0000 00002000 00000001 nt!ProbeForWrite+0x39
ef6137b8 80570fe0 011e0000 00002000 00000004 nt!NtFreeVirtualMemory+0x94f
ef6137d0 bf830fd3 011e0000 00002000 00000004 nt!MmSecureVirtualMemory+0x15
ef613838 804dd99f 030103ca 00000000 00000000 win32k!NtGdiCreateDIBSection+0x15c
ef613864 7c90eb94 badb0d00 00f7f620 bf815e89 nt!KiDeliverApc+0xb9e
00f7f8cc 00000000 00000000 00000000 00000000 0x7c90eb94


FOLLOWUP_IP:
win32k!NtGdiCreateDIBSection+15c
bf830fd3 8945c8 mov [ebp-0x38],eax

SYMBOL_STACK_INDEX: 6

FOLLOWUP_NAME: MachineOwner

SYMBOL_NAME: win32k!NtGdiCreateDIBSection+15c

IMAGE_NAME: win32k.sys

STACK_COMMAND: kb

BUCKET_ID: WRONG_SYMBOLS

Followup: MachineOwner
---------

eax=00000001 ebx=81dd9020 ecx=80558b02 edx=00000000 esi=c0004784 edi=c0300010
eip=806ffa87 esp=ef693684 ebp=ef6136bc iopl=0 nv up ei ng nz na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010282
hal!KeAcquireQueuedSpinLock+0x3b:
806ffa87 c3 ret
ChildEBP RetAddr Args to Child
ef6136bc 804e0944 00000000 011e1000 00000000 hal!KeAcquireQueuedSpinLock+0x3b (FPO: [0,0,0])
WARNING: Stack unwind information not available. Following frames may be wrong.
ef6136bc 804e0944 00000000 011e1000 00000000 nt!Kei386EoiHelper+0x271b
ef6136d4 8056d92a badb0d00 fffff000 00000000 nt!Kei386EoiHelper+0x271b
ef613750 80570def 011e0000 00002000 00000001 nt!ProbeForWrite+0x39
ef6137b8 80570fe0 011e0000 00002000 00000004 nt!NtFreeVirtualMemory+0x94f
ef6137d0 bf830fd3 011e0000 00002000 00000004 nt!MmSecureVirtualMemory+0x15
ef613838 804dd99f 030103ca 00000000 00000000 win32k!NtGdiCreateDIBSection+0x15c (FPO: [Non-Fpo])
ef613864 7c90eb94 badb0d00 00f7f620 bf815e89 nt!KiDeliverApc+0xb9e
00f7f8cc 00000000 00000000 00000000 00000000 0x7c90eb94
start end module name
804d7000 806fd000 nt ntkrnlmp.exe Wed Mar 02 00:57:27 2005 (42250F77)
806fd000 8071dd00 hal halmacpi.dll Wed Aug 04 06:59:09 2004 (41107B2D)
bf800000 bf9c0500 win32k win32k.sys Wed Mar 02 01:06:42 2005 (422511A2)
bf9c1000 bf9d2580 dxg dxg.sys Wed Aug 04 07:00:51 2004 (41107B93)
bf9d3000 bf9e1000 ialmrnt5 ialmrnt5.dll Fri Oct 01 00:57:51 2004 (415C9D7F)
bf9e1000 bfa00000 ialmdnt5 ialmdnt5.dll Fri Oct 01 00:57:45 2004 (415C9D79)
bfa00000 bfa25680 ialmdev5 ialmdev5.DLL Fri Oct 01 00:57:36 2004 (415C9D70)
bfa26000 bfae9000 ialmdd5 ialmdd5.DLL Fri Oct 01 01:04:33 2004 (415C9F11)
ef432000 ef45bf00 kmixer kmixer.sys Wed Aug 04 07:07:46 2004 (41107D32)
ef45c000 ef47ec80 aec aec.sys Fri Feb 13 15:20:15 2004 (402CEB2F)
ef47f000 ef493400 wdmaud wdmaud.sys Wed Aug 04 07:15:03 2004 (41107EE7)
ef514000 ef520e80 DMusic DMusic.sys Wed Aug 04 07:07:37 2004 (41107D29)
ef524000 ef531400 swmidi swmidi.sys Fri Aug 17 22:00:42 2001 (3B7D85FA)
ef854000 ef8a6180 srv srv.sys Wed Aug 04 07:14:44 2004 (41107ED4)
ef8f7000 ef923400 mrxdav mrxdav.sys Wed Aug 04 07:00:49 2004 (41107B91)
efb74000 efb77280 ndisuio ndisuio.sys Wed Aug 04 07:03:10 2004 (41107C1E)
efbdc000 efbead80 sysaudio sysaudio.sys Wed Aug 04 07:15:54 2004 (41107F1A)
efc94000 efcab480 dump_atapi dump_atapi.sys Wed Aug 04 06:59:41 2004 (41107B4D)
efcac000 efd1a400 mrxsmb mrxsmb.sys Wed Jan 19 04:26:50 2005 (41EDE18A)
efd1b000 efd45a00 rdbss rdbss.sys Thu Oct 28 02:13:57 2004 (418047D5)
efd46000 efd67d00 afd afd.sys Wed Aug 04 07:14:13 2004 (41107EB5)
efd68000 efd88f00 ipnat ipnat.sys Wed Sep 29 23:28:36 2004 (415B3714)
efd89000 efdb0c00 netbt netbt.sys Wed Aug 04 07:14:36 2004 (41107ECC)
efdd9000 efe30d80 tcpip tcpip.sys Mon Mar 14 00:55:05 2005 (4234E0E9)
efe31000 efe43400 ipsec ipsec.sys Wed Aug 04 07:14:27 2004 (41107EC3)
efe56000 efe88680 UdfReadr_xp UdfReadr_xp.SYS Wed Mar 26 19:15:27 2003 (3E81FC4F)
efe9b000 efed5e80 cdudf_xp cdudf_xp.SYS Wed Mar 26 19:15:00 2003 (3E81FC34)
eff1a000 eff1c900 Dxapi Dxapi.sys Fri Aug 17 21:53:19 2001 (3B7D843F)
f8066000 f8099200 update update.sys Wed Aug 04 06:58:32 2004 (41107B08)
f809a000 f80ca100 rdpdr rdpdr.sys Wed Aug 04 07:01:10 2004 (41107BA6)
f80cb000 f80dbe00 psched psched.sys Wed Aug 04 07:04:16 2004 (41107C60)
f80dc000 f80f2680 ndiswan ndiswan.sys Wed Aug 04 07:14:30 2004 (41107EC6)
f80f3000 f810a8a0 aeaudio aeaudio.sys Thu Mar 13 21:54:09 2003 (3E70FE01)
f810b000 f812e980 portcls portcls.sys Wed Aug 04 07:15:47 2004 (41107F13)
f812f000 f81bc300 smwdm smwdm.sys Tue May 27 22:05:41 2003 (3ED3D325)
f81bd000 f81dc180 pwd_2k pwd_2k.SYS Wed Mar 26 19:17:08 2003 (3E81FCB4)
f81dd000 f81ff680 ks ks.sys Wed Aug 04 07:15:20 2004 (41107EF8)
f8200000 f8213900 parport parport.sys Wed Aug 04 06:59:04 2004 (41107B28)
f8214000 f822fa00 b57xp32 b57xp32.sys Fri Nov 21 23:20:08 2003 (3FBE9DA8)
f8230000 f8252e80 USBPORT USBPORT.SYS Wed Aug 04 07:08:34 2004 (41107D62)
f8253000 f8266780 VIDEOPRT VIDEOPRT.SYS Wed Aug 04 07:07:04 2004 (41107D08)
f828f000 f83469a0 ialmnt5 ialmnt5.sys Fri Oct 01 01:05:11 2004 (415C9F37)
f8367000 f8381580 Mup Mup.sys Wed Aug 04 07:15:20 2004 (41107EF8)
f8382000 f83aea80 NDIS NDIS.sys Wed Aug 04 07:14:27 2004 (41107EC3)
f83af000 f843b480 Ntfs Ntfs.sys Wed Aug 04 07:15:06 2004 (41107EEA)
f843c000 f8452780 KSecDD KSecDD.sys Wed Aug 04 06:59:45 2004 (41107B51)
f8453000 f8464f00 sr sr.sys Wed Aug 04 07:06:22 2004 (41107CDE)
f8465000 f8483780 fltMgr fltMgr.sys Wed Aug 04 07:01:17 2004 (41107BAD)
f8484000 f849b480 atapi atapi.sys Wed Aug 04 06:59:41 2004 (41107B4D)
f849c000 f84c1700 dmio dmio.sys Wed Aug 04 07:07:13 2004 (41107D11)
f84c2000 f84e0880 ftdisk ftdisk.sys Fri Aug 17 21:52:41 2001 (3B7D8419)
f84e1000 f84f1a80 pci pci.sys Wed Aug 04 07:07:45 2004 (41107D31)
f84f2000 f851fd80 ACPI ACPI.sys Wed Aug 04 07:07:35 2004 (41107D27)
f8541000 f8549c00 isapnp isapnp.sys Fri Aug 17 21:58:01 2001 (3B7D8559)
f8551000 f855b500 MountMgr MountMgr.sys Wed Aug 04 06:58:29 2004 (41107B05)
f8561000 f856dc80 VolSnap VolSnap.sys Wed Aug 04 07:00:14 2004 (41107B6E)
f8571000 f8579e00 disk disk.sys Wed Aug 04 06:59:53 2004 (41107B59)
f8581000 f858d200 CLASSPNP CLASSPNP.SYS Wed Aug 04 07:14:26 2004 (41107EC2)
f85b1000 f85bde00 i8042prt i8042prt.sys Wed Aug 04 07:14:36 2004 (41107ECC)
f85c1000 f85d0d80 serial serial.sys Wed Aug 04 07:15:51 2004 (41107F17)
f85d1000 f85db380 imapi imapi.sys Wed Aug 04 07:00:12 2004 (41107B6C)
f85e1000 f85f0240 Cdr4_xp Cdr4_xp.SYS Wed Mar 26 19:20:23 2003 (3E81FD77)
f85f1000 f85fd180 cdrom cdrom.sys Wed Aug 04 06:59:52 2004 (41107B58)
f8601000 f860f080 redbook redbook.sys Wed Aug 04 06:59:34 2004 (41107B46)
f8611000 f861fb80 drmk drmk.sys Wed Aug 04 07:07:54 2004 (41107D3A)
f8621000 f8629d00 intelppm intelppm.sys Wed Aug 04 06:59:19 2004 (41107B37)
f8631000 f863d880 rasl2tp rasl2tp.sys Wed Aug 04 07:14:21 2004 (41107EBD)
f8641000 f864b200 raspppoe raspppoe.sys Wed Aug 04 07:05:06 2004 (41107C92)
f8651000 f865cd00 raspptp raspptp.sys Wed Aug 04 07:14:26 2004 (41107EC2)
f8661000 f8669900 msgpc msgpc.sys Wed Aug 04 07:04:11 2004 (41107C5B)
f8671000 f867af00 termdd termdd.sys Wed Aug 04 06:58:52 2004 (41107B1C)
f8691000 f869a480 NDProxy NDProxy.SYS Fri Aug 17 21:55:30 2001 (3B7D84C2)
f86a1000 f86af100 usbhub usbhub.sys Wed Aug 04 07:08:40 2004 (41107D68)
f86d1000 f86d9700 wanarp wanarp.sys Wed Aug 04 07:04:57 2004 (41107C89)
f86e1000 f86e9700 netbios netbios.sys Wed Aug 04 07:03:19 2004 (41107C27)
f86f1000 f86f9880 Fips Fips.SYS Sat Aug 18 02:31:49 2001 (3B7DC585)
f87c1000 f87c7200 PCIIDEX PCIIDEX.SYS Wed Aug 04 06:59:40 2004 (41107B4C)
f87c9000 f87cd900 PartMgr PartMgr.sys Sat Aug 18 02:32:23 2001 (3B7DC5A7)
f8809000 f880e000 usbuhci usbuhci.sys Wed Aug 04 07:08:34 2004 (41107D62)
f8811000 f8817800 usbehci usbehci.sys Wed Aug 04 07:08:34 2004 (41107D62)
f8819000 f881ea00 mouclass mouclass.sys Wed Aug 04 06:58:32 2004 (41107B08)
f8821000 f8827000 kbdclass kbdclass.sys Wed Aug 04 06:58:32 2004 (41107B08)
f8839000 f883a000 fdc fdc.sys unavailable (00000000)
f8861000 f8866560 Cdralw2k Cdralw2k.SYS Wed Mar 26 19:20:15 2003 (3E81FD6F)
f8891000 f8895880 TDI TDI.SYS Wed Aug 04 07:07:47 2004 (41107D33)
f88a1000 f88a5580 ptilink ptilink.sys Fri Aug 17 21:49:53 2001 (3B7D8371)
f88b1000 f88b5080 raspti raspti.sys Fri Aug 17 21:55:32 2001 (3B7D84C4)
f88c1000 f88c68c0 mmc_2K mmc_2K.SYS Wed Mar 26 19:17:10 2003 (3E81FCB6)
f88d1000 f88d6000 flpydisk flpydisk.sys Wed Aug 04 06:59:24 2004 (41107B3C)
f88f1000 f88f7180 HIDPARSE HIDPARSE.SYS Wed Aug 04 07:08:15 2004 (41107D4F)
f88f9000 f88fe200 vga vga.sys Wed Aug 04 07:07:06 2004 (41107D0A)
f8909000 f890da80 Msfs Msfs.SYS Wed Aug 04 07:00:37 2004 (41107B85)
f8919000 f8920880 Npfs Npfs.SYS Wed Aug 04 07:00:38 2004 (41107B86)
f8949000 f894d500 watchdog watchdog.sys Wed Aug 04 07:07:32 2004 (41107D24)
f8951000 f8954000 BOOTVID BOOTVID.dll Fri Aug 17 21:49:09 2001 (3B7D8345)
f89c5000 f89c8c80 mssmbios mssmbios.sys Wed Aug 04 07:07:47 2004 (41107D33)
f89f5000 f89f7b80 IPFilter IPFilter.sys Thu Apr 11 19:47:22 2002 (3CB5DA3A)
f8a01000 f8a04c80 serenum serenum.sys Wed Aug 04 06:59:06 2004 (41107B2A)
f8a0d000 f8a0f280 rasacd rasacd.sys Fri Aug 17 21:55:39 2001 (3B7D84CB)
f8a1d000 f8a1f580 ndistapi ndistapi.sys Fri Aug 17 21:55:29 2001 (3B7D84C1)
f8a41000 f8a42b80 kdcom kdcom.dll Fri Aug 17 21:49:10 2001 (3B7D8346)
f8a43000 f8a44100 WMILIB WMILIB.SYS Fri Aug 17 22:07:23 2001 (3B7D878B)
f8a45000 f8a46580 intelide intelide.sys Wed Aug 04 06:59:40 2004 (41107B4C)
f8a47000 f8a48700 dmload dmload.sys Fri Aug 17 21:58:15 2001 (3B7D8567)
f8a77000 f8a78100 swenum swenum.sys Wed Aug 04 06:58:41 2004 (41107B11)
f8a81000 f8a82280 USBD USBD.SYS Fri Aug 17 22:02:58 2001 (3B7D8682)
f8a85000 f8a86f00 Fs_Rec Fs_Rec.SYS Fri Aug 17 21:49:37 2001 (3B7D8361)
f8a89000 f8a8a080 Beep Beep.SYS Fri Aug 17 21:47:33 2001 (3B7D82E5)
f8a8d000 f8a8e080 mnmdd mnmdd.SYS Fri Aug 17 21:57:28 2001 (3B7D8538)
f8a91000 f8a92080 RDPCDD RDPCDD.sys Fri Aug 17 21:46:56 2001 (3B7D82C0)
f8a99000 f8a9a100 dump_WMILIB dump_WMILIB.SYS Fri Aug 17 22:07:23 2001 (3B7D878B)
f8aef000 f8af0900 splitter splitter.sys Wed Aug 04 07:07:46 2004 (41107D32)
f8b09000 f8b09d00 PCIIde PCIIde.sys Fri Aug 17 21:51:49 2001 (3B7D83E5)
f8b3b000 f8b3bb80 Null Null.SYS Fri Aug 17 21:47:39 2001 (3B7D82EB)
f8b46000 f8b46b80 drmkaud drmkaud.sys Wed Aug 04 07:07:56 2004 (41107D3C)
f8bc7000 f8bc7d00 dxgthk dxgthk.sys Fri Aug 17 21:53:12 2001 (3B7D8438)
f8c5d000 f8c5dc00 audstub audstub.sys Fri Aug 17 21:59:40 2001 (3B7D85BC)

Unloaded modules:
f826f000 f8273000 kbdhid.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
f88e1000 f88e6000 Cdaudio.SYS
Timestamp: unavailable (00000000)
Checksum: 00000000
f8273000 f8276000 Sfloppy.SYS
Timestamp: unavailable (00000000)
Checksum: 00000000
Closing open log file c:\debuglog.txt

 

The real solutions is:

Try to reinstall the system.
If the problem still there then you got to change the memory modules.