R
Rajesh Kanungo
Hi,
I have a strange problem with OL2K SR-1 where I can get Illegal Instruction to kill my Outlook. OL dies when it tries to execute a malformed "mov" instruction with no source or destination !!! Look for "FAULT" in the dump below.
One thing we noticed was it occurred when spell-check was on. We don't be sure if it occurs when spell-check is off. We did set the right encoding types in options.
Application exception occurred:
App: (pid=2064)
When: 2/12/2004 @ 10:39:47.019
Exception number: c000001d (illegal instruction)
*----> System Information <----*
[...]
Number of Processors: 1
Processor Type: x86 Family 15 Model 2 Stepping 7
Windows 2000 Version: 5.0
Current Build: 2195
Service Pack: 4
Current Type: Uniprocessor Free
[...]
*----> Task List <----*
0 Idle.exe
8 System.exe
156 SMSS.exe
180 CSRSS.exe
200 WINLOGON.exe
228 SERVICES.exe
240 LSASS.exe
340 ibmpmsvc.exe
400 svchost.exe
448 svchost.exe
500 spoolsv.exe
552 ati2evxx.exe
572 CBRegCap.exe
608 clisvcl.exe
620 Crypserv.exe
648 etlisrv.exe
736 FrameworkServic.exe
796 Mcshield.exe
816 VsTskMgr.exe
844 naPrdMgr.exe
912 naimas32.exe
1016 regsvc.exe
1020 mstask.exe
1060 SNMP.exe
1100 SMAgent.exe
1128 WinMgmt.exe
1160 mspmspsv.exe
1172 svchost.exe
1192 Wuser32.exe
1244 casvc.exe
1336 pcs.exe
1264 FSMA32.exe
1408 FSMB32.exe
708 fch32.exe
720 FNRB32.exe
1520 FAMEH32.exe
1636 FIH32.exe
1528 ati2evxx.exe
1900 Fclp.exe
1860 svchost.exe
296 explorer.exe
1736 tp4serv.exe
1976 TPHKMGR.exe
1996 AGRSMMSG.exe
2056 direct.exe
2024 SMTray.exe
2092 pcshelp.exe
2104 shstat.exe
2080 UpdaterUI.exe
2116 rundll32.exe
2140 launch32.exe
2176 TP98TRAY.exe
2200 naimag32.exe
2220 FSM32.exe
2256 SMSMon32.exe
2368 atiptaxx.exe
2388 WG511WLU.exe
2400 etlitr50.exe
1904 SMSAPM32.exe
684 realsched.exe
1532 IEXPLORE.exe
436 IEXPLORE.exe
1784 DLLHOST.exe
464 pcshelp.exe
2064 OUTLOOK.exe
544 MAPISP32.exe
784 DRWTSN32.exe
0 _Total.exe
State Dump for Thread Id 0xa28
eax=000000c8 ebx=010d7550 ecx=010d7550 edx=00000000 esi=0006e4cc edi=010d8aa8
eip=010d8aaa esp=0006e49c ebp=0006e4d8 iopl=0 nv up ei ng nz ac po cy
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000297
function: <nosymbols>
010d8a94 6c insb
010d8a95 002b add [ebx],ch ds:010d7550=f8
010d8a97 004500 add [ebp+0x0],al ss:00bd83be=??
010d8a9a 6e outsb
010d8a9b 00740065 add [eax+eax+0x65],dh ds:00b69faf=??
010d8a9f 007200 add [edx+0x0],dh ds:00b69ee6=??
010d8aa2 3800 cmp [eax],al ds:000000c8=??
010d8aa4 2c00 sub al,0x0
010d8aa6 0000 add [eax],al ds:000000c8=??
010d8aa8 b0c8 mov al,0xc8
FAULT ->010d8aaa 8e30 mov ds:000000c8=????
010d8aac 0000 add [eax],al ds:000000c8=??
010d8aae 0000 add [eax],al ds:000000c8=??
010d8ab0 d8750d fdiv dword ptr [ebp+0xd] ss:00bd83be=????????
010d8ab3 0139 add [ecx],edi ds:010d7550=308eb2f8
010d8ab5 0a18 or bl,[eax] ds:000000c8=??
010d8ab7 0223 add ah,[ebx] ds:010d7550=f8
010d8ab9 006800 add [eax+0x0],ch ds:00b69fae=??
010d8abc c0880d01b8900d ror byte ptr [eax+0x90b8010d],0xd ds:90b801d5=??
010d8ac3 0144229e add [edx+0x9e],eax ds:00b69ee7=????????
010d8ac7 0139 add [ecx],edi ds:010d7550=308eb2f8
010d8ac9 0a00 or al,[eax] ds:000000c8=??
*----> Stack Back Trace <----*
FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name
0006E4D8 30D09BEE 0006E64C 007D7BCC 007D7BC8 00000001 <nosymbols>
00200000 0020002E 004D004D 0020002E 00790079 00790000 !MsoFPreTranslateMessagePicc
00640064 00000000 00000000 00000000 00000000 00000000 <nosymbols>
*----> Raw Stack Dump <----*
0006e49c a8 8a 0d 01 01 00 00 00 - 50 75 0d 01 c8 49 00 11 ........Pu...I..
0006e4ac a8 8a 0d 01 26 03 41 00 - 08 00 00 00 02 00 00 00 ....&.A.........
0006e4bc 7f 00 00 00 18 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e4cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 20 00 .............. .
0006e4dc ee 9b d0 30 4c e6 06 00 - cc 7b 7d 00 c8 7b 7d 00 ...0L....{}..{}.
0006e4ec 01 00 00 00 13 13 d2 30 - 48 f1 06 00 98 de 0f 00 .......0H.......
0006e4fc 4b 21 02 11 c8 7b 7d 00 - 48 f1 06 00 98 de 0f 00 K!...{}.H.......
0006e50c c8 49 00 11 00 00 00 00 - 00 00 00 00 00 00 00 00 .I..............
0006e51c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e52c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e53c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e54c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e55c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e56c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e57c 00 00 00 00 00 00 00 00 - c8 7b 7d 00 00 00 00 00 .........{}.....
0006e58c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e59c 00 00 00 00 00 00 00 00 - 00 00 00 00 90 9d 0d 01 ................
0006e5ac 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e5bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e5cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
[...]
I have a strange problem with OL2K SR-1 where I can get Illegal Instruction to kill my Outlook. OL dies when it tries to execute a malformed "mov" instruction with no source or destination !!! Look for "FAULT" in the dump below.
One thing we noticed was it occurred when spell-check was on. We don't be sure if it occurs when spell-check is off. We did set the right encoding types in options.
Application exception occurred:
App: (pid=2064)
When: 2/12/2004 @ 10:39:47.019
Exception number: c000001d (illegal instruction)
*----> System Information <----*
[...]
Number of Processors: 1
Processor Type: x86 Family 15 Model 2 Stepping 7
Windows 2000 Version: 5.0
Current Build: 2195
Service Pack: 4
Current Type: Uniprocessor Free
[...]
*----> Task List <----*
0 Idle.exe
8 System.exe
156 SMSS.exe
180 CSRSS.exe
200 WINLOGON.exe
228 SERVICES.exe
240 LSASS.exe
340 ibmpmsvc.exe
400 svchost.exe
448 svchost.exe
500 spoolsv.exe
552 ati2evxx.exe
572 CBRegCap.exe
608 clisvcl.exe
620 Crypserv.exe
648 etlisrv.exe
736 FrameworkServic.exe
796 Mcshield.exe
816 VsTskMgr.exe
844 naPrdMgr.exe
912 naimas32.exe
1016 regsvc.exe
1020 mstask.exe
1060 SNMP.exe
1100 SMAgent.exe
1128 WinMgmt.exe
1160 mspmspsv.exe
1172 svchost.exe
1192 Wuser32.exe
1244 casvc.exe
1336 pcs.exe
1264 FSMA32.exe
1408 FSMB32.exe
708 fch32.exe
720 FNRB32.exe
1520 FAMEH32.exe
1636 FIH32.exe
1528 ati2evxx.exe
1900 Fclp.exe
1860 svchost.exe
296 explorer.exe
1736 tp4serv.exe
1976 TPHKMGR.exe
1996 AGRSMMSG.exe
2056 direct.exe
2024 SMTray.exe
2092 pcshelp.exe
2104 shstat.exe
2080 UpdaterUI.exe
2116 rundll32.exe
2140 launch32.exe
2176 TP98TRAY.exe
2200 naimag32.exe
2220 FSM32.exe
2256 SMSMon32.exe
2368 atiptaxx.exe
2388 WG511WLU.exe
2400 etlitr50.exe
1904 SMSAPM32.exe
684 realsched.exe
1532 IEXPLORE.exe
436 IEXPLORE.exe
1784 DLLHOST.exe
464 pcshelp.exe
2064 OUTLOOK.exe
544 MAPISP32.exe
784 DRWTSN32.exe
0 _Total.exe
State Dump for Thread Id 0xa28
eax=000000c8 ebx=010d7550 ecx=010d7550 edx=00000000 esi=0006e4cc edi=010d8aa8
eip=010d8aaa esp=0006e49c ebp=0006e4d8 iopl=0 nv up ei ng nz ac po cy
cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000297
function: <nosymbols>
010d8a94 6c insb
010d8a95 002b add [ebx],ch ds:010d7550=f8
010d8a97 004500 add [ebp+0x0],al ss:00bd83be=??
010d8a9a 6e outsb
010d8a9b 00740065 add [eax+eax+0x65],dh ds:00b69faf=??
010d8a9f 007200 add [edx+0x0],dh ds:00b69ee6=??
010d8aa2 3800 cmp [eax],al ds:000000c8=??
010d8aa4 2c00 sub al,0x0
010d8aa6 0000 add [eax],al ds:000000c8=??
010d8aa8 b0c8 mov al,0xc8
FAULT ->010d8aaa 8e30 mov ds:000000c8=????
010d8aac 0000 add [eax],al ds:000000c8=??
010d8aae 0000 add [eax],al ds:000000c8=??
010d8ab0 d8750d fdiv dword ptr [ebp+0xd] ss:00bd83be=????????
010d8ab3 0139 add [ecx],edi ds:010d7550=308eb2f8
010d8ab5 0a18 or bl,[eax] ds:000000c8=??
010d8ab7 0223 add ah,[ebx] ds:010d7550=f8
010d8ab9 006800 add [eax+0x0],ch ds:00b69fae=??
010d8abc c0880d01b8900d ror byte ptr [eax+0x90b8010d],0xd ds:90b801d5=??
010d8ac3 0144229e add [edx+0x9e],eax ds:00b69ee7=????????
010d8ac7 0139 add [ecx],edi ds:010d7550=308eb2f8
010d8ac9 0a00 or al,[eax] ds:000000c8=??
*----> Stack Back Trace <----*
FramePtr ReturnAd Param#1 Param#2 Param#3 Param#4 Function Name
0006E4D8 30D09BEE 0006E64C 007D7BCC 007D7BC8 00000001 <nosymbols>
00200000 0020002E 004D004D 0020002E 00790079 00790000 !MsoFPreTranslateMessagePicc
00640064 00000000 00000000 00000000 00000000 00000000 <nosymbols>
*----> Raw Stack Dump <----*
0006e49c a8 8a 0d 01 01 00 00 00 - 50 75 0d 01 c8 49 00 11 ........Pu...I..
0006e4ac a8 8a 0d 01 26 03 41 00 - 08 00 00 00 02 00 00 00 ....&.A.........
0006e4bc 7f 00 00 00 18 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e4cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 20 00 .............. .
0006e4dc ee 9b d0 30 4c e6 06 00 - cc 7b 7d 00 c8 7b 7d 00 ...0L....{}..{}.
0006e4ec 01 00 00 00 13 13 d2 30 - 48 f1 06 00 98 de 0f 00 .......0H.......
0006e4fc 4b 21 02 11 c8 7b 7d 00 - 48 f1 06 00 98 de 0f 00 K!...{}.H.......
0006e50c c8 49 00 11 00 00 00 00 - 00 00 00 00 00 00 00 00 .I..............
0006e51c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e52c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e53c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e54c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e55c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e56c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e57c 00 00 00 00 00 00 00 00 - c8 7b 7d 00 00 00 00 00 .........{}.....
0006e58c 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e59c 00 00 00 00 00 00 00 00 - 00 00 00 00 90 9d 0d 01 ................
0006e5ac 00 00 00 00 01 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e5bc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
0006e5cc 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................
[...]