Urgent - Crash DLLHOST.EXE - BUG???
news.microsoft.com
library works fine in windows 2000. It's crashing only in windows 2003. I
think it may be a W2003 bug.
Need HELP
0:000> !analyze -v
*******************************************************************************
* *
* Exception Analysis *
* *
*******************************************************************************
FAULTING_IP:
+0
00000000 ?? ???
EXCEPTION_RECORD: ffffffff -- (.exr ffffffffffffffff)
ExceptionAddress: 00000000
ExceptionCode: 80000003 (Break instruction exception)
ExceptionFlags: 00000000
NumberParameters: 0
FAULTING_THREAD: 00003a1c
BUGCHECK_STR: 80000003
DEFAULT_BUCKET_ID: APPLICATION_FAULT
PROCESS_NAME: dllhost.exe
ERROR_CODE: (NTSTATUS) 0x80000003 - {EXCE O} Ponto de interrup o Foi alcan
ado um ponto de interrup o.
THREAD_ATTRIBUTES:
LAST_CONTROL_TRANSFER: from 77f43741 to 7ffe0304
STACK_TEXT:
0006fcd8 77f43741 77e41817 00000038 00000000
SharedUserData!SystemCallStub+0x4
0006fcdc 77e41817 00000038 00000000 0006fd20 ntdll!ZwWaitForSingleObject+0xc
0006fd4c 77e4168f 00000038 ffff15a0 00000000
kernel32!WaitForSingleObjectEx+0xac
0006fd5c 771eaa16 00000038 ffff15a0 ffffffff
kernel32!WaitForSingleObject+0xf
0006fd78 771eb48c 0008a398 0006fdb7 00000000
ole32!CSurrogateProcessActivator::WaitForSurrogateTimeout+0x49
0006fd90 0100137c 0006ff08 00000000 00000000
ole32!CoRegisterSurrogateEx+0x1a4
0006ff1c 01001646 01000000 00000000 00082390 dllhost!WinMain+0xda
0006ffc0 77e4f38c 00000000 00000000 7ffdf000 dllhost!WinMainCRTStartup+0x182
0006fff0 00000000 010014c4 00000000 78746341 kernel32!BaseProcessStart+0x23
FOLLOWUP_IP:
dllhost!WinMain+da
0100137c ff1590100001 call dword ptr [dllhost!_imp__CoUninitialize
(01001090)]
SYMBOL_STACK_INDEX: 6
FOLLOWUP_NAME: MachineOwner
SYMBOL_NAME: dllhost!WinMain+da
MODULE_NAME: dllhost
IMAGE_NAME: dllhost.exe
DEBUG_FLR_IMAGE_TIMESTAMP: 3e7fff57
STACK_COMMAND: ~0s ; kb
FAILURE_BUCKET_ID: 80000003_dllhost!WinMain+da
BUCKET_ID: 80000003_dllhost!WinMain+da
Followup: MachineOwner
---------
0:000> ~*e s -d poi(@$teb+8) poi(@$teb+4) 1003f
024ad4bc 0001003f 00000000 00000000 00000000 ?...............
024ad9a8 0001003f 00000000 00000000 00000000 ?...............
02d9ef34 0001003f 00000000 00000000 00000000 ?...............
0:000> .cxr 02d9ef34
eax=02d9f204 ebx=00000000 ecx=00000000 edx=018d26dc esi=00000000
edi=71a99bc8
eip=77e649d3 esp=02d9f200 ebp=02d9f254 iopl=0 nv up ei pl zr na po nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000246
kernel32!RaiseException+0x51:
77e649d3 5e pop esi
0:000> kb
*** Stack trace for last set context - .thread/.cxr resets it
ChildEBP RetAddr Args to Child
02d9f254 77c68c7c 000006b5 00000001 00000000 kernel32!RaiseException+0x51
02d9f268 77c68c2c 000006b5 02d9f660 77cd6553 rpcrt4!RpcpRaiseException+0x1d
02d9f274 77cd6553 02d9f2c0 00000008 018d2668 rpcrt4!NdrGetBuffer+0x44
02d9f648 71a91ba7 02d9f878 77f45a34 77f89580 rpcrt4!NdrClientCall2+0x156
02d9f65c 77f47cf2 77f473b3 77f473f3 0196e5d0
netapi32!NetrLogonGetTrustRid+0x14
02d9f6a4 77f473b3 77f473f3 02d9f94c 06fc7430
ntdll!RtlpAllocateFromHeapLookaside+0x42
77f47cf2 f3eb1046 90909090 24448b90 90909004 ntdll!RtlAllocateHeap+0x1c2
WARNING: Frame IP not in any known module. Following frames may be wrong.
![Ivan Brugiolo [MSFT]'s profile photo](https://lh3.googleusercontent.com/a/default-user=s40-c)
Ivan Brugiolo [MSFT]
creted by the exception dispatching code when rpcrt4.dll naturally
uses structured exceptions to report it's own internal errors.
So, that one is not the problem.
`!analyze ` seems to report a breakpoint, but, the stack below that does not
make much sense.
Can you report the output of `~*kb` ?
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of any included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
"news.microsoft.com" <mat...@cadsoft.com.br> wrote in message
news:eItLShGB...@tk2msftngp13.phx.gbl...
Mateus Morato Fantini
0:000> ~*kb
. 0 Id: 2ef0.3a1c Suspend: 0 Teb: 7ffde000 Unfrozen
ChildEBP RetAddr Args to Child
0006fcd8 77f43741 77e41817 00000038 00000000
SharedUserData!SystemCallStub+0x4
0006fcdc 77e41817 00000038 00000000 0006fd20 ntdll!ZwWaitForSingleObject+0xc
0006fd4c 77e4168f 00000038 ffff15a0 00000000
kernel32!WaitForSingleObjectEx+0xac
0006fd5c 771eaa16 00000038 ffff15a0 ffffffff
kernel32!WaitForSingleObject+0xf
0006fd78 771eb48c 0008a398 0006fdb7 00000000
ole32!CSurrogateProcessActivator::WaitForSurrogateTimeout+0x49
0006fd90 0100137c 0006ff08 00000000 00000000
ole32!CoRegisterSurrogateEx+0x1a4
0006ff1c 01001646 01000000 00000000 00082390 dllhost!WinMain+0xda
0006ffc0 77e4f38c 00000000 00000000 7ffdf000 dllhost!WinMainCRTStartup+0x182
0006fff0 00000000 010014c4 00000000 78746341 kernel32!BaseProcessStart+0x23
1 Id: 2ef0.574 Suspend: 0 Teb: 7ffdd000 Unfrozen
ChildEBP RetAddr Args to Child
0068fe20 77f4313f 77c47b85 000000f4 0068ff7c
SharedUserData!SystemCallStub+0x4
0068fe24 77c47b85 000000f4 0068ff7c 00000000
ntdll!NtReplyWaitReceivePortEx+0xc
0068ff8c 77c50829 77c50771 00083398 00000000
rpcrt4!LRPC_ADDRESS::ReceiveLotsaCalls+0x193
0068ff90 77c50771 00083398 00000000 00000000
rpcrt4!RecvLotsaCallsWrapper+0x9
0068ffb0 77c50857 0008c498 77e4a990 0008d780
rpcrt4!BaseCachedThreadRoutine+0x9c
0068ffb8 77e4a990 0008d780 00000000 00000000 rpcrt4!ThreadStartRoutine+0x17
0068ffec 00000000 77c50840 0008d780 00000000 kernel32!BaseThreadStart+0x34
2 Id: 2ef0.40d4 Suspend: 0 Teb: 7ffdc000 Unfrozen
ChildEBP RetAddr Args to Child
006cff10 77f4262b 77e418ea 00000000 006cff54
SharedUserData!SystemCallStub+0x4
006cff14 77e418ea 00000000 006cff54 77e4178f ntdll!NtDelayExecution+0xc
006cff7c 77e416ee 0000ea60 00000000 77142501 kernel32!SleepEx+0x68
006cff88 77142501 0000ea60 00092048 771425ea kernel32!Sleep+0xb
006cff94 771425ea 00000000 77140000 00092048
ole32!CROIDTable::WorkerThreadLoop+0x12
006cff9c 77140000 00092048 00092048 006cffec
ole32!CRpcThread::WorkerLoop+0x1e
006cffac 77142653 00000000 00000000 77e4a990 ole32!_imp__InstallApplication
<PERF> (ole32+0x0)
006cffb8 77e4a990 00092048 00000000 00000000
ole32!CRpcThreadCache::RpcWorkerThreadEntry+0x1f
006cffec 00000000 77142634 00092048 00000000 kernel32!BaseThreadStart+0x34
3 Id: 2ef0.18a4 Suspend: 0 Teb: 7ffdb000 Unfrozen
ChildEBP RetAddr Args to Child
0070ff14 77cf6718 77cf67e0 0070ff58 00000000
SharedUserData!SystemCallStub+0x4
0070ff34 77192711 0070ff58 00000000 00000000 user32!NtUserGetMessage+0xc
0070ff74 7719268f 00007530 77e4178f 00092068
ole32!CDllHost::STAWorkerLoop+0x70
0070ff90 771925da 771425ea 772513d8 77140000
ole32!CDllHost::WorkerThread+0xc6
0070ff94 771425ea 772513d8 77140000 00092068 ole32!DLLHostThreadEntry+0x9
0070ff9c 77140000 00092068 00092068 0070ffec
ole32!CRpcThread::WorkerLoop+0x1e
0070ffac 77142653 00000000 00000000 77e4a990 ole32!_imp__InstallApplication
<PERF> (ole32+0x0)
0070ffb8 77e4a990 00092068 00000000 00000000
ole32!CRpcThreadCache::RpcWorkerThreadEntry+0x1f
0070ffec 00000000 77142634 00092068 00000000 kernel32!BaseThreadStart+0x34
4 Id: 2ef0.d6c Suspend: 0 Teb: 7ffd9000 Unfrozen
ChildEBP RetAddr Args to Child
0078ff9c 77f4262b 77f6b5b2 00000001 0078ffb0
SharedUserData!SystemCallStub+0x4
0078ffa0 77f6b5b2 00000001 0078ffb0 00000000 ntdll!NtDelayExecution+0xc
0078ffb8 77e4a990 00000000 00000000 00000000 ntdll!RtlpTimerThread+0x45
0078ffec 00000000 77f6b56d 00000000 00000000 kernel32!BaseThreadStart+0x34
5 Id: 2ef0.3374 Suspend: 0 Teb: 7ffd8000 Unfrozen
ChildEBP RetAddr Args to Child
007cff70 77f430c7 77f7e6ae 00000138 007cffb0
SharedUserData!SystemCallStub+0x4
007cff74 77f7e6ae 00000138 007cffb0 007cffb4 ntdll!ZwRemoveIoCompletion+0xc
007cffb8 77e4a990 00000000 00000000 00000000 ntdll!RtlpWorkerThread+0x3b
007cffec 00000000 77f7e673 00000000 00000000 kernel32!BaseThreadStart+0x34
6 Id: 2ef0.3624 Suspend: 0 Teb: 7ffda000 Unfrozen
ChildEBP RetAddr Args to Child
0074fe20 77f4313f 77c47b85 000000f4 0074ff7c
SharedUserData!SystemCallStub+0x4
0074fe24 77c47b85 000000f4 0074ff7c 00000000
ntdll!NtReplyWaitReceivePortEx+0xc
0074ff8c 77c50829 77c50771 00083398 00000000
rpcrt4!LRPC_ADDRESS::ReceiveLotsaCalls+0x193
0074ff90 77c50771 00083398 00000000 00000000
rpcrt4!RecvLotsaCallsWrapper+0x9
0074ffb0 77c50857 0008c498 77e4a990 000acef8
rpcrt4!BaseCachedThreadRoutine+0x9c
0074ffb8 77e4a990 000acef8 00000000 00000000 rpcrt4!ThreadStartRoutine+0x17
0074ffec 00000000 77c50840 000acef8 00000000 kernel32!BaseThreadStart+0x34
7 Id: 2ef0.2d3c Suspend: 0 Teb: 7ffd4000 Unfrozen
ChildEBP RetAddr Args to Child
00c1feec 77f4262b 77e418ea 00000000 00c1ff30
SharedUserData!SystemCallStub+0x4
00c1fef0 77e418ea 00000000 00c1ff30 00000000 ntdll!NtDelayExecution+0xc
00c1ff58 77e416ee 000003e8 00000000 75545544 kernel32!SleepEx+0x68
00c1ff64 75545544 000003e8 00000000 00000000 kernel32!Sleep+0xb
00c1ffb8 77e4a990 00000000 00000000 00000000 comsvcs!PostData+0x1db
00c1ffec 00000000 75545369 00000000 00000000 kernel32!BaseThreadStart+0x34
8 Id: 2ef0.12cc Suspend: 0 Teb: 7ffa2000 Unfrozen
ChildEBP RetAddr Args to Child
010cfe94 77f43741 77e41817 0000012c 00000000
SharedUserData!SystemCallStub+0x4
010cfe98 77e41817 0000012c 00000000 00000000 ntdll!ZwWaitForSingleObject+0xc
010cff08 77e4168f 0000012c ffffffff 00000000
kernel32!WaitForSingleObjectEx+0xac
010cff18 755aa6a0 0000012c ffffffff 755ab05b
kernel32!WaitForSingleObject+0xf
010cff24 755ab05b ffffffff 00000000 00000000 comsvcs!EVENT::Wait+0xc
010cffb4 755ab1b7 77e4a990 755c28b4 00000000
comsvcs!TimeoutManager::WorkerLoop+0x33
010cffb8 77e4a990 755c28b4 00000000 00000000
comsvcs!TimeoutManager::ThreadLoop+0x16
010cffec 00000000 755ab1a1 755c28b4 00000000 kernel32!BaseThreadStart+0x34
9 Id: 2ef0.4174 Suspend: 0 Teb: 7ff9b000 Unfrozen
ChildEBP RetAddr Args to Child
024ac8d0 77f43741 77e41817 00000acc 00000000
SharedUserData!SystemCallStub+0x4
024ac8d4 77e41817 00000acc 00000000 00000000 ntdll!ZwWaitForSingleObject+0xc
024ac944 77e4168f 00000acc ffffffff 00000000
kernel32!WaitForSingleObjectEx+0xac
024ac954 7559282c 00000acc ffffffff 024ad0d8
kernel32!WaitForSingleObject+0xf
024acddc 75592be5 754ff4ec 754ff500 00002ef0 comsvcs!FF_RunCmd+0x9d
024ad0a4 75592cf3 024ad0d8 024ad89c 00000001 comsvcs!FF_DumpProcess_MD+0x218
024ad2e8 7559338d 00000001 77245bd5 77245be1 comsvcs!FF_DumpProcess+0x36
024ad844 755032f4 75503300 754e8528 0000033b comsvcs!FailFastStr+0x267
024ad86c 7553bdaf 024ad89c 7553bde0 00000000
comsvcs!ComSvcsExceptionFilter+0x9a
024afe78 7553b55a 06f79f58 06f79f58 018c8030
comsvcs!CPooledObject::Destroy+0x127
024afed8 7553aeba 06f79f58 77e425d8 024aff78
comsvcs!CPooledObject::Release+0xd3
024afef0 7553bfcd 7553f099 07116260 06ffe1e8
comsvcs!CPool::GarbageCollect+0x5f
024afef4 7553f099 07116260 06ffe1e8 7553f07e comsvcs!CGcObj::OnCall+0xc
024aff00 7553f07e 07116260 0009c9d8 755ab5b4 comsvcs!ComWorkerFunction+0xb
024aff0c 755ab5b4 06ffe1e8 00000000 0009c9d8
comsvcs!AutoDeleteWorker::DoWork+0x11
024aff78 755ab786 0009c9d8 00861458 77bb91ed
comsvcs!WORK_QUEUE::WorkerLoop+0x12b
024aff84 77bb91ed 0009c9d8 00000000 00000000
comsvcs!WORK_QUEUE::ThreadLoop+0x15
024affb8 77e4a990 00860d70 00000000 00000000 msvcrt!_endthreadex+0x95
024affec 00000000 77bb917e 00860d70 00000000 kernel32!BaseThreadStart+0x34
10 Id: 2ef0.40e8 Suspend: 0 Teb: 7ff82000 Unfrozen
ChildEBP RetAddr Args to Child
04a1ff10 77f43741 77e41817 00002a14 00000000
SharedUserData!SystemCallStub+0x4
04a1ff14 77e41817 00002a14 00000000 00000000 ntdll!ZwWaitForSingleObject+0xc
04a1ff84 77e4168f 00002a14 ffffffff 00000000
kernel32!WaitForSingleObjectEx+0xac
04a1ff94 044d38a9 00002a14 ffffffff 00000000
kernel32!WaitForSingleObject+0xf
04a1ffb8 77e4a990 01c069b8 00000000 00000000
oledb32!ReleaseResourceThread+0x54
04a1ffec 00000000 044d36b0 01c069b8 00000000 kernel32!BaseThreadStart+0x34
11 Id: 2ef0.30c Suspend: 0 Teb: 7ff81000 Unfrozen
ChildEBP RetAddr Args to Child
04a5ff08 77f43741 77e41817 00002a1c 00000000
SharedUserData!SystemCallStub+0x4
04a5ff0c 77e41817 00002a1c 00000000 00000000 ntdll!ZwWaitForSingleObject+0xc
04a5ff7c 77e4168f 00002a1c ffffffff 00000000
kernel32!WaitForSingleObjectEx+0xac
04a5ff8c 044d38b9 00002a1c ffffffff 01be1638
kernel32!WaitForSingleObject+0xf
04a5ffb8 77e4a990 01be1638 00000000 00000000
oledb32!ResetResourceThread+0x84
04a5ffec 00000000 044d3610 01be1638 00000000 kernel32!BaseThreadStart+0x34
12 Id: 2ef0.38b4 Suspend: 0 Teb: 7ff80000 Unfrozen
ChildEBP RetAddr Args to Child
04b1fd04 77f43741 77e41817 00002a28 00000000
SharedUserData!SystemCallStub+0x4
04b1fd08 77e41817 00002a28 00000000 04b1fd4c ntdll!ZwWaitForSingleObject+0xc
04b1fd78 77e4168f 00002a28 00002710 00000000
kernel32!WaitForSingleObjectEx+0xac
04b1fd88 7552065c 00002a28 00002710 00000000
kernel32!WaitForSingleObject+0xf
04b1ffb8 77e4a990 000a562c 00000000 00000000 comsvcs!PingThread+0xea
04b1ffec 00000000 75520572 000a562c 00000000 kernel32!BaseThreadStart+0x34
13 Id: 2ef0.de4 Suspend: 0 Teb: 7ffd7000 Unfrozen
ChildEBP RetAddr Args to Child
0081fecc 77f430c7 77e430bc 00000148 0081ff54
SharedUserData!SystemCallStub+0x4
0081fed0 77e430bc 00000148 0081ff54 0081ff14 ntdll!ZwRemoveIoCompletion+0xc
0081fefc 755ab4ef 00000148 0081ff3c 0081ff54
kernel32!GetQueuedCompletionStatus+0x27
0081ff78 755ab786 0009c9d8 008614f0 77bb91ed
comsvcs!WORK_QUEUE::WorkerLoop+0x66
0081ff84 77bb91ed 0009c9d8 00000000 00000000
comsvcs!WORK_QUEUE::ThreadLoop+0x15
0081ffb8 77e4a990 008616b8 00000000 00000000 msvcrt!_endthreadex+0x95
0081ffec 00000000 77bb917e 008616b8 00000000 kernel32!BaseThreadStart+0x34
14 Id: 2ef0.123c Suspend: 0 Teb: 7ffd6000 Unfrozen
ChildEBP RetAddr Args to Child
0085fecc 77f430c7 77e430bc 00000148 0085ff54
SharedUserData!SystemCallStub+0x4
0085fed0 77e430bc 00000148 0085ff54 0085ff14 ntdll!ZwRemoveIoCompletion+0xc
0085fefc 755ab4ef 00000148 0085ff3c 0085ff54
kernel32!GetQueuedCompletionStatus+0x27
0085ff78 755ab786 0009c9d8 07368ff0 77bb91ed
comsvcs!WORK_QUEUE::WorkerLoop+0x66
0085ff84 77bb91ed 0009c9d8 00000000 00000000
comsvcs!WORK_QUEUE::ThreadLoop+0x15
0085ffb8 77e4a990 008614f0 00000000 00000000 msvcrt!_endthreadex+0x95
0085ffec 00000000 77bb917e 008614f0 00000000 kernel32!BaseThreadStart+0x34
15 Id: 2ef0.2b14 Suspend: 0 Teb: 7ffd5000 Unfrozen
ChildEBP RetAddr Args to Child
00d9fecc 77f430c7 77e430bc 00000148 00d9ff54
SharedUserData!SystemCallStub+0x4
00d9fed0 77e430bc 00000148 00d9ff54 00d9ff14 ntdll!ZwRemoveIoCompletion+0xc
00d9fefc 755ab4ef 00000148 00d9ff3c 00d9ff54
kernel32!GetQueuedCompletionStatus+0x27
00d9ff78 755ab786 0009c9d8 00869fc8 77bb91ed
comsvcs!WORK_QUEUE::WorkerLoop+0x66
00d9ff84 77bb91ed 0009c9d8 00000000 00000000
comsvcs!WORK_QUEUE::ThreadLoop+0x15
00d9ffb8 77e4a990 008616b8 00000000 00000000 msvcrt!_endthreadex+0x95
00d9ffec 00000000 77bb917e 008616b8 00000000 kernel32!BaseThreadStart+0x34
16 Id: 2ef0.28e4 Suspend: 0 Teb: 7ffaf000 Unfrozen
ChildEBP RetAddr Args to Child
00f6fecc 77f430c7 77e430bc 00000148 00f6ff54
SharedUserData!SystemCallStub+0x4
00f6fed0 77e430bc 00000148 00f6ff54 00f6ff14 ntdll!ZwRemoveIoCompletion+0xc
00f6fefc 755ab4ef 00000148 00f6ff3c 00f6ff54
kernel32!GetQueuedCompletionStatus+0x27
00f6ff78 755ab786 0009c9d8 008ad4b0 77bb91ed
comsvcs!WORK_QUEUE::WorkerLoop+0x66
00f6ff84 77bb91ed 0009c9d8 00000000 00000000
comsvcs!WORK_QUEUE::ThreadLoop+0x15
00f6ffb8 77e4a990 009311c0 00000000 00000000 msvcrt!_endthreadex+0x95
00f6ffec 00000000 77bb917e 009311c0 00000000 kernel32!BaseThreadStart+0x34
17 Id: 2ef0.e6c Suspend: 0 Teb: 7ffae000 Unfrozen
ChildEBP RetAddr Args to Child
024eff04 77f4262b 77e418ea 00000000 024eff48
SharedUserData!SystemCallStub+0x4
024eff08 77e418ea 00000000 024eff48 00000000 ntdll!NtDelayExecution+0xc
024eff70 77e416ee 00000064 00000000 01ae420a kernel32!SleepEx+0x68
024eff7c 01ae420a 00000064 00000000 00000000 kernel32!Sleep+0xb
024effb4 01adabe9 77e4a990 009337a0 00000000
msdtcprx!CConnectionManager::TimerProcForNonGuardedUser+0x76
024effb8 77e4a990 009337a0 00000000 00000000
msdtcprx!CConnectionManager::TimerProc+0x1a
024effec 00000000 01adabce 009337a0 00000000 kernel32!BaseThreadStart+0x34
18 Id: 2ef0.1fac Suspend: 0 Teb: 7ffad000 Unfrozen
ChildEBP RetAddr Args to Child
02a8fe20 77f4313f 77c47b85 00002914 02a8ff7c
SharedUserData!SystemCallStub+0x4
02a8fe24 77c47b85 00002914 02a8ff7c 02a8fe40
ntdll!NtReplyWaitReceivePortEx+0xc
02a8ff8c 77c50829 77c50771 07066080 00000000
rpcrt4!LRPC_ADDRESS::ReceiveLotsaCalls+0x193
02a8ff90 77c50771 07066080 00000000 00000000
rpcrt4!RecvLotsaCallsWrapper+0x9
02a8ffb0 77c50857 0008c498 77e4a990 018f54a8
rpcrt4!BaseCachedThreadRoutine+0x9c
02a8ffb8 77e4a990 018f54a8 00000000 00000000 rpcrt4!ThreadStartRoutine+0x17
02a8ffec 00000000 77c50840 018f54a8 00000000 kernel32!BaseThreadStart+0x34
19 Id: 2ef0.2984 Suspend: 0 Teb: 7ffac000 Unfrozen
ChildEBP RetAddr Args to Child
02d9fce4 77f43741 77e41817 00002128 00000000
SharedUserData!SystemCallStub+0x4
02d9fce8 77e41817 00002128 00000000 00000000 ntdll!ZwWaitForSingleObject+0xc
02d9fd58 77e4168f 00002128 ffffffff 00000000
kernel32!WaitForSingleObjectEx+0xac
02d9fd68 01b1cca7 00002128 ffffffff 00000002
kernel32!WaitForSingleObject+0xf
02d9ff84 01b1b07f 00000002 073af008 9df1b8b5
msdtcprx!CSessionObject::MaintainItInUpState+0x1bc
02d9ff94 01b1d1b3 00000000 00000000 02d9ffec
msdtcprx!CSessionObject::SetState+0x29
02d9ffb4 01b1d2a6 77e4a990 073af008 00000000
msdtcprx!CSessionObject::MaintainIt+0x1c7
02d9ffb8 77e4a990 073af008 00000000 00000000
msdtcprx!CSessionObject::MaintainSession+0xd
02d9ffec 00000000 01b1d299 073af008 00000000 kernel32!BaseThreadStart+0x34
20 Id: 2ef0.3478 Suspend: 0 Teb: 7ffab000 Unfrozen
ChildEBP RetAddr Args to Child
03a1fe20 77f4313f 77c47b85 00002914 03a1ff7c
SharedUserData!SystemCallStub+0x4
03a1fe24 77c47b85 00002914 03a1ff7c 03a1fe40
ntdll!NtReplyWaitReceivePortEx+0xc
03a1ff8c 77c50829 77c50771 07066080 00000000
rpcrt4!LRPC_ADDRESS::ReceiveLotsaCalls+0x193
03a1ff90 77c50771 07066080 00000000 00000000
rpcrt4!RecvLotsaCallsWrapper+0x9
03a1ffb0 77c50857 0008c498 77e4a990 01983a80
rpcrt4!BaseCachedThreadRoutine+0x9c
03a1ffb8 77e4a990 01983a80 00000000 00000000 rpcrt4!ThreadStartRoutine+0x17
03a1ffec 00000000 77c50840 01983a80 00000000 kernel32!BaseThreadStart+0x34
21 Id: 2ef0.3104 Suspend: 0 Teb: 7ffaa000 Unfrozen
ChildEBP RetAddr Args to Child
0432fda8 77f4372d 77e41bfa 00000002 0432fdf8
SharedUserData!SystemCallStub+0x4
0432fdac 77e41bfa 00000002 0432fdf8 00000001
ntdll!NtWaitForMultipleObjects+0xc
0432fe54 77e4b0e4 00000002 0432ffa4 00000000
kernel32!WaitForMultipleObjectsEx+0x11a
*** ERROR: Symbol file could not be found. Defaulted to export symbols for
oramts.dll -
0432fe6c 03cc6fde 00000002 0432ffa4 00000000
kernel32!WaitForMultipleObjects+0x17
WARNING: Stack unwind information not available. Following frames may be
wrong.
0432ffb8 77e4a990 00000000 00000000 00000000 oramts!kpntsvcconfig+0xec1
0432ffec 00000000 03cc6f21 00000000 00000000 kernel32!BaseThreadStart+0x34
22 Id: 2ef0.37fc Suspend: 0 Teb: 7ffa9000 Unfrozen
ChildEBP RetAddr Args to Child
0438ff2c 77f43741 77e41817 000029ec 00000001
SharedUserData!SystemCallStub+0x4
0438ff30 77e41817 000029ec 00000001 00000000 ntdll!ZwWaitForSingleObject+0xc
0438ffa0 03cb9c4e 000029ec ffffffff 00000001
kernel32!WaitForSingleObjectEx+0xac
WARNING: Stack unwind information not available. Following frames may be
wrong.
0438ffb8 77e4a990 00000000 00000000 00000000 oramts+0x9c4e
0438ffec 00000000 03cb9c0d 00000000 00000000 kernel32!BaseThreadStart+0x34
23 Id: 2ef0.2424 Suspend: 0 Teb: 7ffa8000 Unfrozen
ChildEBP RetAddr Args to Child
049dff08 77f430c7 77e430bc 00002b84 049dff6c
SharedUserData!SystemCallStub+0x4
049dff0c 77e430bc 00002b84 049dff6c 049dff50 ntdll!ZwRemoveIoCompletion+0xc
049dff38 03cbdc2f 00002b84 049dff78 049dff6c
kernel32!GetQueuedCompletionStatus+0x27
WARNING: Stack unwind information not available. Following frames may be
wrong.
049dff84 77bb91ed 00930ea8 00000000 00000000 oramts+0xdc2f
049dffb8 77e4a990 008e6208 00000000 00000000 msvcrt!_endthreadex+0x95
049dffec 00000000 77bb917e 008e6208 00000000 kernel32!BaseThreadStart+0x34
24 Id: 2ef0.35f4 Suspend: 0 Teb: 7ffa7000 Unfrozen
ChildEBP RetAddr Args to Child
04b5ff08 77f430c7 77e430bc 00002b84 04b5ff6c
SharedUserData!SystemCallStub+0x4
04b5ff0c 77e430bc 00002b84 04b5ff6c 04b5ff50 ntdll!ZwRemoveIoCompletion+0xc
04b5ff38 03cbdc2f 00002b84 04b5ff78 04b5ff6c
kernel32!GetQueuedCompletionStatus+0x27
WARNING: Stack unwind information not available. Following frames may be
wrong.
04b5ff84 77bb91ed 00930ea8 00000000 00000000 oramts+0xdc2f
04b5ffb8 77e4a990 008f1a60 00000000 00000000 msvcrt!_endthreadex+0x95
04b5ffec 00000000 77bb917e 008f1a60 00000000 kernel32!BaseThreadStart+0x34
25 Id: 2ef0.3f2c Suspend: 0 Teb: 7ffa6000 Unfrozen
ChildEBP RetAddr Args to Child
04d9ff08 77f430c7 77e430bc 00002b84 04d9ff6c
SharedUserData!SystemCallStub+0x4
04d9ff0c 77e430bc 00002b84 04d9ff6c 04d9ff50 ntdll!ZwRemoveIoCompletion+0xc
04d9ff38 03cbdc2f 00002b84 04d9ff78 04d9ff6c
kernel32!GetQueuedCompletionStatus+0x27
WARNING: Stack unwind information not available. Following frames may be
wrong.
04d9ff84 77bb91ed 00930ea8 00000000 00000000 oramts+0xdc2f
04d9ffb8 77e4a990 008f1a60 00000000 00000000 msvcrt!_endthreadex+0x95
04d9ffec 00000000 77bb917e 008f1a60 00000000 kernel32!BaseThreadStart+0x34
26 Id: 2ef0.11e8 Suspend: 0 Teb: 7ffa5000 Unfrozen
ChildEBP RetAddr Args to Child
04f1fe20 77f4313f 77c47b85 000000f4 04f1ff7c
SharedUserData!SystemCallStub+0x4
04f1fe24 77c47b85 000000f4 04f1ff7c 00000000
ntdll!NtReplyWaitReceivePortEx+0xc
04f1ff8c 77c50829 77c50771 00083398 00000000
rpcrt4!LRPC_ADDRESS::ReceiveLotsaCalls+0x193
04f1ff90 77c50771 00083398 00000000 00000000
rpcrt4!RecvLotsaCallsWrapper+0x9
04f1ffb0 77c50857 0008c498 77e4a990 0714fd30
rpcrt4!BaseCachedThreadRoutine+0x9c
04f1ffb8 77e4a990 0714fd30 00000000 00000000 rpcrt4!ThreadStartRoutine+0x17
04f1ffec 00000000 77c50840 0714fd30 00000000 kernel32!BaseThreadStart+0x34
"Ivan Brugiolo [MSFT]" <ivan...@online.microsoft.com> wrote in message
news:uwWbGuJB...@TK2MSFTNGP15.phx.gbl...
Ivan Brugiolo [MSFT]
If you dump the memory around 024ad89c,
you might able to find a context record that is relevant to the problem
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of any included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
"Mateus Morato Fantini" <mat...@cadsoft.com.br> wrote in message
news:eyfe0BKB...@TK2MSFTNGP14.phx.gbl...
Mateus Morato Fantini
I did but I still can't find the error. Please help me
0:009> dd 024ad89c
024ad89c 024ad98c 024ad9a8 024ad8c8 77f68cf6
024ad8ac 024ad98c 024afe68 024ad9a8 024ad964
024ad8bc 024afa44 77f68ad0 024afe68 024ad974
024ad8cc 77f68cc5 024ad98c 024afe68 024ad9a8
024ad8dc 024ad964 755919fb 00000001 024ad98c
024ad8ec 024afe68 77f68bb4 024ad98c 024afe68
024ad8fc 024ad9a8 024ad964 755919fb 024afa28
024ad90c 024ad98c 05d00fd5 00000000 00000000
0:009> .exr 024ad98c
ExceptionAddress: 00000000
ExceptionCode: c0000005 (Access violation)
ExceptionFlags: 00000000
NumberParameters: 2
Parameter[0]: 00000000
Parameter[1]: 00000000
Attempt to read from address 00000000
0:009> .cxr 024ad9a8
eax=00000000 ebx=00000000 ecx=05d0000f edx=024adc78 esi=05d00fd5
edi=024afa28
eip=00000000 esp=024adc74 ebp=024adc88 iopl=0 nv up ei pl zr na po
nc
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000
efl=00010246
00000000 ??
0:009> kv
*** Stack trace for last set context - .thread/.cxr resets it
ChildEBP RetAddr Args to Child
024adc70 058d9c06 00000000 00000000 00000000 0x0
024adc88 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024adca0 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024adcb8 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024adcd0 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024adce8 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add00 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add18 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add30 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add48 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add60 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add78 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024add90 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024adda8 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024addc0 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024addd8 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024addf0 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024ade08 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024ade20 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
024ade38 058d9c06 00000000 00000000 00000000 MTSMan!StdWndProc+0x16
"Ivan Brugiolo [MSFT]" <ivan...@online.microsoft.com> wrote in message
news:enMVkgLB...@TK2MSFTNGP12.phx.gbl...
Ivan Brugiolo [MSFT]
through a function that is NULL,
or, upon returning from a call, the return address has been overwritten with
a zero.
Try to do a `dds 024adc74-100 024adc74+4000` and see if you can rebuild the
stack
manually.
--
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of any included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm
"Mateus Morato Fantini" <mat...@cadsoft.com.br> wrote in message
news:#8KKaYSB...@tk2msftngp13.phx.gbl...
Mateus Morato Fantini
thanks
"Ivan Brugiolo [MSFT]" <ivan...@online.microsoft.com> wrote in message
news:OoEKg8WB...@TK2MSFTNGP09.phx.gbl...