在 PROPSYS.DLL 中找出 Explorer 崩溃的原因

tag-icon tag-icon windows-7 windows-explorer crash windbg
在 PROPSYS.DLL 中找出 Explorer 崩溃的原因

每次我这样做时,Explorer.exe 都会崩溃:

  1. 点击开始
  2. 点击跑步
  3. 键入C:\并点击进入

这个问题今天才刚刚开始,我需要帮助来查明原因。

症状

只有当我在步骤 #3 中将目标设为根目录时才会发生这种情况,例如C:\D:\等。如果我输入类似这样的内容C:\Windows,它会正常打开文件夹。从那里,我可以导航到根目录,并且它不会崩溃。但如果我打开开始|电脑然后单击其中一个驱动器(以“自上而下”的方式导航),它就会崩溃。

故障排除

到目前为止,我已经将问题追溯到动态链接库,并在下面包含了崩溃转储的 WinDBG 输出。以下是片段:

FAULTING_IP: 
propsys!CByteHashTable::_CalculateHashKey+2e
000007fe`f75119bf 410fb60b        movzx   ecx,byte ptr [r11]

我不确定它试图在哪个文件或数据上运行 CalculateHashKey。我猜是某个第三方 shell 扩展造成的。

我尝试使用 ShellExView 禁用大量 shell 扩展,但到目前为止仍无法找到导致崩溃的罪魁祸首(如果有的话)。(编辑:我尝试禁用所有非 Microsoft 扩展,但没有帮助)

它还会在带网络连接的安全模式下以及在使用新的用户帐户时崩溃。

我已经运行了sfc /scannow其他基本故障排除步骤。请注意,我使用的是 Windows 7 64 位。

经典探索者

我正在运行经典 Explorer,但我不确定问题是否与它有关。当我打开本机开始菜单并重复上述步骤时,只要我在搜索框中输入一个字符,Explorer 就会崩溃。

相关问题

我还注意到成千上万的 EventID 1006 来自属性系统在事件查看器中。我不确定这是否相关,因为它们已经堆积了好几个月。它们看起来像:

Omitted duplicate property.
Keeping: 'Corel.File.CompressionRatio' ({2B51404E-62C1-46B6-A319-90B63412D0EE} 102)  Publisher: 'Corel'  Product: 'CGS'  URL: 'corelproperties.propdesc'
Omitting: 'Corel.File.CompressionRatio' ({2B51404E-62C1-46B6-A319-90B63412D0EE} 102)  Publisher: 'Corel'  Product: 'CGS'  URL: 'corelproperties.propdesc'

它们全都与 Corel 有关。我以为我禁用了所有 Corel shell 扩展。

崩溃转储

Microsoft (R) Windows Debugger Version 6.3.9600.17029 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [C:\dumps\explorer.exe_190605_023725.dmp]
User Mini Dump File with Full Memory: Only application data is available

Comment: '
*** "C:\Program Files\SysInternals\Procdump\procdump64.exe" -accepteula -ma -j "c:\dumps" 9960 212 000000000AB80000
*** Just-In-Time debugger. PID: 9960 Event Handle: 212 JIT Context: .jdinfo 0xab80000'

************* Symbol Path validation summary **************
Response                         Time (ms)     Location
Deferred                                       SRV*C:\SymCache*http://msdl.microsoft.com/download/symbols
Symbol search path is: SRV*C:\SymCache*http://msdl.microsoft.com/download/symbols
Executable search path is: 
Windows 7 Version 7601 (Service Pack 1) MP (12 procs) Free x64
Product: WinNt, suite: SingleUserTS
Machine Name:
Debug session time: Wed Jun  5 02:37:25.000 2019 (UTC - 7:00)
System Uptime: 0 days 0:53:47.591
Process Uptime: 0 days 0:14:40.000
................................................................
................................................................
................................................................
.................................................
Loading unloaded module list
................................................................
This dump file has an exception of interest stored in it.
The stored exception information can be accessed via .ecxr.
(26e8.14ac): Access violation - code c0000005 (first/second chance not available)
ntdll!NtWaitForMultipleObjects+0xa:
00000000`76d79e3a c3              ret
0:056> .ecxr
rax=0000000012b9b0a5 rbx=0000000000000000 rcx=0000000004ae6c29
rdx=000000002969a8c9 rsi=0000000000000000 rdi=0000000000000000
rip=000007fef75119bf rsp=000000002c49e3d0 rbp=00000000029362a0
 r8=0000000000000010  r9=000000000000001d r10=0000000000000010
r11=000000000b1d0774 r12=00000000029362a0 r13=0000000000000010
r14=0000000000000010 r15=000000000b1d0774
iopl=0         nv up ei pl nz na po nc
cs=0033  ss=002b  ds=002b  es=002b  fs=0053  gs=002b             efl=00010206
propsys!CByteHashTable::_CalculateHashKey+0x2e:
000007fe`f75119bf 410fb60b        movzx   ecx,byte ptr [r11] ds:00000000`0b1d0774=??
0:056> !analyze -v
*******************************************************************************
*                                                                             *
*                        Exception Analysis                                   *
*                                                                             *
*******************************************************************************

*** WARNING: Unable to verify checksum for mscorlib.ni.dll
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for DropboxExt64.27.0.dll - 
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for WindowsCodecs.dll - 
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for ClassicStartMenuDLL.dll - 
*** WARNING: Unable to verify checksum for System.Windows.Forms.ni.dll
*** WARNING: Unable to verify checksum for QTTabBar.ni.dll
*** ERROR: Module load completed but symbols could not be loaded for QTTabBar.ni.dll
*** ERROR: Symbol file could not be found.  Defaulted to export symbols for ClassicExplorer64.dll - 
Cannot find frame 0x27, previous scope unchanged
GetUrlPageData2 (WinHttp) failed: 12002.

FAULTING_IP: 
propsys!CByteHashTable::_CalculateHashKey+2e
000007fe`f75119bf 410fb60b        movzx   ecx,byte ptr [r11]

EXCEPTION_RECORD:  ffffffffffffffff -- (.exr 0xffffffffffffffff)
ExceptionAddress: 000007fef75119bf (propsys!CByteHashTable::_CalculateHashKey+0x000000000000002e)
   ExceptionCode: c0000005 (Access violation)
  ExceptionFlags: 00000000
NumberParameters: 2
   Parameter[0]: 0000000000000000
   Parameter[1]: 000000000b1d0774
Attempt to read from address 000000000b1d0774

CONTEXT:  0000000000000000 -- (.cxr 0x0;r)
rax=0000000000000058 rbx=000000002c49d420 rcx=0000000000000002
rdx=000000002c49d390 rsi=0000000000000000 rdi=0000000000000002
rip=0000000076d79e3a rsp=000000002c49d2e8 rbp=0000000000000002
 r8=000000002c49ca08  r9=000000002c49cb70 r10=0000000000000000
r11=0000000000000246 r12=0000000000000000 r13=000000002c49d390
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei pl zr na po nc
cs=0033  ss=002b  ds=002b  es=002b  fs=0053  gs=002b             efl=00000246
ntdll!NtWaitForMultipleObjects+0xa:
00000000`76d79e3a c3              ret

DEFAULT_BUCKET_ID:  WRONG_SYMBOLS

PROCESS_NAME:  explorer.exe

OVERLAPPED_MODULE: Address regions for 'NaturalLanguage6' and 'styleman.cpl' overlap

ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.

EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%08lx referenced memory at 0x%08lx. The memory could not be %s.

EXCEPTION_PARAMETER1:  0000000000000000

EXCEPTION_PARAMETER2:  000000000b1d0774

READ_ADDRESS:  000000000b1d0774 

FOLLOWUP_IP: 
propsys!CByteHashTable::_CalculateHashKey+2e
000007fe`f75119bf 410fb60b        movzx   ecx,byte ptr [r11]

NTGLOBALFLAG:  0

APPLICATION_VERIFIER_FLAGS:  0

APP:  explorer.exe

ANALYSIS_VERSION: 6.3.9600.17029 (debuggers(dbg).140219-1702) amd64fre

MANAGED_STACK: !dumpstack -EE
OS Thread Id: 0x14ac (56)
Child-SP         RetAddr          Call Site

PRIMARY_PROBLEM_CLASS:  WRONG_SYMBOLS

BUGCHECK_STR:  APPLICATION_FAULT_WRONG_SYMBOLS

LAST_CONTROL_TRANSFER:  from 000007fef7511909 to 000007fef75119bf

STACK_TEXT:  
00000000`2c49e3d0 000007fe`f7511909 : 00000000`00000001 00000000`029362a0 00000000`00000000 000007fe`f754fd37 : propsys!CByteHashTable::_CalculateHashKey+0x2e
00000000`2c49e400 000007fe`f7511a71 : 00000000`00000000 00000000`00000000 00000000`00000000 000007fe`f7512c77 : propsys!CByteHashTable::_LookupEntry+0x31
00000000`2c49e460 000007fe`f751ef95 : 00000000`02936280 00000000`0b1d0774 00000000`00000000 00000000`02936280 : propsys!CByteHashTable::_GetValue+0x88
00000000`2c49e4b0 000007fe`f753e99e : 00000000`02936280 00000000`0b1d0774 00001b81`fd9e055e 00000000`76d3d4ea : propsys!CSchemaCache::_EnsureSchemaLoadedWithCacheItem+0x65
00000000`2c49e550 000007fe`f7532f5b : 00000000`00000000 00000000`02936280 000007fe`e0ebdbf8 00000000`76b115aa : propsys!CSchemaCache::_EnsureSchemaLoaded+0x59
00000000`2c49e590 000007fe`f7532c6a : 00000000`00000000 00000000`00000000 00000000`00000443 000007fe`f75161da : propsys!CSchemaCache::EnumSemanticTypes+0x77
00000000`2c49e620 000007fe`e0efd61c : 00000000`00000000 00000000`08d5001f 00000000`00000001 00000000`00000000 : propsys!SchemaCache_EnumSemanticTypes+0x4a
00000000`2c49e670 000007fe`e0efd088 : 00000000`00000000 00000000`00000443 00000000`0a61d020 00000000`00000000 : StructuredQuery!StructuredQuery1::CSchemaFromPropertySystem::Load+0xfc
00000000`2c49e6f0 000007fe`e0eca9de : 00000000`2c49e840 00000000`2c49e840 00000000`0a60a930 00000000`00000000 : StructuredQuery!StructuredQuery1::CreateSchemaBinaryFromPropertySystem+0xe8
00000000`2c49e750 000007fe`e0ecb420 : 00000000`00000000 00000000`00000000 00000000`2c49e840 00000000`00000000 : StructuredQuery!StructuredQuery1::QueryParser::LoadSchema+0xca
00000000`2c49e790 000007fe`e0eda5ae : 00000000`00000001 00000000`00000409 00000000`08dc2630 00000000`08dc2630 : StructuredQuery!StructuredQuery1::QueryParser::SetOption+0x1ec
00000000`2c49e7d0 000007fe`e0eda9a6 : 00000000`00000000 00000000`00000409 00000000`08dc2630 00000000`08dc2630 : StructuredQuery!StructuredQuery1::QueryParserManager::LoadLocalizedSchema+0x1f6
00000000`2c49eab0 000007fe`e0eefa8c : 00000000`00000000 00000000`003c9358 00000000`003c92f0 00000000`00000409 : StructuredQuery!StructuredQuery1::QueryParserManager::CreateLoadedParser+0xb2
00000000`2c49eb20 000007fe`e0eef987 : 00000000`003c92f0 00000000`00000000 000007fe`fdba2318 000007fe`fd188300 : StructuredQuery!StructuredQuery1::CStructuredQueryHelper::_CreateQueryParser+0xc8
00000000`2c49ebb0 000007fe`e0eef2a3 : 00000000`00000000 00000000`003c92f0 00000000`00000409 000007fe`fdb77c98 : StructuredQuery!StructuredQuery1::CStructuredQueryHelper::_EnsureInitializedParser+0xb3
00000000`2c49ebf0 000007fe`fd7cb58f : 00000000`00000000 00000000`2c49eda0 00000000`2c49ee80 00000000`2c49ecd0 : StructuredQuery!StructuredQuery1::CStructuredQueryHelper::ParseStructuredQuery+0x33
00000000`2c49ec30 000007fe`fd9595bd : 00000000`00000000 00000000`003c92f0 00000000`2c49ee80 000007fe`fdb5b450 : shell32!TextToCondition+0x8d
00000000`2c49ec70 000007fe`fd9599c8 : 00000000`2c49ee90 00000000`2c49ee00 00000000`2c49ee80 00000000`2c49ee10 : shell32!SHCreateFilterFromFullText+0x65
00000000`2c49ed60 000007fe`fd90a21c : 00000000`2c49f430 00000000`2c49ef00 00000000`2c49ee90 00000000`00000104 : shell32!DoesItemArrayMatchAQS+0x48
00000000`2c49ee40 000007fe`fd772c32 : 00000000`2c49f128 00000000`2c49f120 00000000`00000001 00000000`00000001 : shell32!CRegDataDrivenCommand::_CheckEnabledStateFromAQSQuery+0x7c
00000000`2c49f0c0 000007fe`fd77153f : 00000000`09e75b98 00000000`09e75b98 00000000`09e75b98 00000000`00000000 : shell32!CRegDataDrivenCommand::GetState+0x154
00000000`2c49f260 000007fe`fd76f1da : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : shell32!CRegistryVerbsContextMenu::QueryContextMenu+0x656
00000000`2c49f740 000007fe`fd76eb49 : 00000000`0a60a690 00000000`005b0e7f 00000000`0a60a690 00000000`0a60a690 : shell32!HDXA_QueryContextMenu+0x454
00000000`2c49f960 000007fe`fd83a141 : 00000000`00000000 00000000`00000000 00000000`00000001 00000000`09ed8630 : shell32!CDefFolderMenu::QueryContextMenu+0x625
00000000`2c49fb70 000007fe`fd83a070 : 00000000`0a6f6150 00000000`0a4ffdf0 00000000`00000000 00000000`09c203b8 : shell32!CShellExecute::_InvokeInProcExec+0xc0
00000000`2c49fc60 000007fe`fd83a003 : 00000000`0a6f6150 00000000`0a6f6150 00000000`00000974 00000000`00000000 : shell32!CShellExecute::_InvokeCtxMenu+0x48
00000000`2c49fca0 000007fe`fd747a0d : 000007fe`fd0d53d0 00000000`0a6f6150 00000000`00000974 00000000`0a6f6150 : shell32!CShellExecute::_DoExecute+0xb4
00000000`2c49fce0 000007fe`fe74c71e : 00000000`00000000 00000000`0a4ffdf0 000007fe`fd122140 00000000`00000000 : shell32!CShellExecute::s_ExecuteThreadProc+0x39
00000000`2c49fd20 00000000`76b0556d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : shlwapi!WrapperThreadProc+0x19b
00000000`2c49fe20 00000000`76d6385d : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : kernel32!BaseThreadInitThunk+0xd
00000000`2c49fe50 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x1d


SYMBOL_STACK_INDEX:  0

SYMBOL_NAME:  propsys!CByteHashTable::_CalculateHashKey+2e

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: propsys

IMAGE_NAME:  propsys.dll

DEBUG_FLR_IMAGE_TIMESTAMP:  4ce7c94a

STACK_COMMAND:  ~56s; .ecxr ; kb

FAILURE_BUCKET_ID:  WRONG_SYMBOLS_c0000005_propsys.dll!CByteHashTable::_CalculateHashKey

BUCKET_ID:  X64_APPLICATION_FAULT_WRONG_SYMBOLS_propsys!CByteHashTable::_CalculateHashKey+2e

ANALYSIS_SOURCE:  UM

FAILURE_ID_HASH_STRING:  um:wrong_symbols_c0000005_propsys.dll!cbytehashtable::_calculatehashkey

FAILURE_ID_HASH:  {d68d6dd3-5216-ea76-dfab-705cfd6c172d}

Followup: MachineOwner
---------

相关内容