粉丝: 8
关注: 0
积分: 4342
精华: 6
金币: 4898
经验: 3163
最后登录 2024-5-14
|
您好,分析您的附件dump文件
蓝屏的文件为系统文件fltmgr.sys是存放在Windows系统文件夹中的重要文件——Google的。
可以COPY同名文件在DOS下复制到原文件覆盖操作
具体日志如下:
SYMBOL_STACK_INDEX: 0
SYMBOL_NAME: FLTMGR!FltpExpandShortNames+db46
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: FLTMGR
IMAGE_NAME: FLTMGR.SYS
DEBUG_FLR_IMAGE_TIMESTAMP: 5632d176
STACK_COMMAND: .cxr 0xffffd00021aa6470 ; kb
FAILURE_BUCKET_ID: X64_0x3B_FLTMGR!FltpExpandShortNames+db46
BUCKET_ID: X64_0x3B_FLTMGR!FltpExpandShortNames+db46
Followup: MachineOwner
---------
0: kd> lmvm FLTMGR
start end module name
fffff801`f1500000 fffff801`f1562000 FLTMGR (private pdb symbols) c:\symbols\fltMgr.pdb\620A988036C34BAFAD3FA05B3C5E27FF1\fltMgr.pdb
Loaded symbol image file: FLTMGR.SYS
Mapped memory image file: c:\symbols\FLTMGR.SYS\5632D17662000\FLTMGR.SYS
Image path: \SystemRoot\System32\drivers\FLTMGR.SYS
Image name: FLTMGR.SYS
Timestamp: Fri Oct 30 10:09:58 2015 (5632D176)
CheckSum: 000654CB
ImageSize: 00062000
File version: 10.0.10586.0
Product version: 10.0.10586.0
File flags: 0 (Mask 3F)
File OS: 40004 NT Win32
File type: 3.7 Driver
File date: 00000000.00000000
Translations: 0409.04b0
CompanyName: Microsoft Corporation
ProductName: Microsoft® Windows® Operating System
InternalName: fltMgr.sys
OriginalFilename: fltMgr.sys
ProductVersion: 10.0.10586.0
FileVersion: 10.0.10586.0 (th2_release.151029-1700)
FileDescription: Microsoft Filesystem Filter Manager
LegalCopyright: © Microsoft Corporation. All rights reserved.
|
|