Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
- Copyright (c) Microsoft Corporation. All rights reserved.
- ========================================================================
- =================== Dump File: DUMP3567.dmp ====================
- ========================================================================
- Mini Kernel Dump File: Only registers and stack trace are available
- Executable search path is:
- Windows 10 Kernel Version 15063 MP (8 procs) Free x64
- Product: WinNt, suite: TerminalServer SingleUserTS
- Machine Name:
- Kernel base = 0xfffff803`2f60c000 PsLoadedModuleList = 0xfffff803`2f9585a0
- Debug session time: Sat Jun 3 19:55:28.579 2017 (UTC - 4:00)
- System Uptime: 0 days 0:27:10.374
- Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long.
- Run !sym noisy before .reload to track down problems loading symbols.
- BugCheck 3B, {c0000005, fffff8032fa6f6a9, ffffd28162efe580, 0}
- Probably caused by : ntkrnlmp.exe ( nt!CmpDoParseKey+239 )
- Followup: MachineOwner
- !thread
- THREAD ffffe40bf8865080 Cid 0e48.12f0 Teb: 0000000000806000 Win32Thread: ffffe40bf572a2d0 RUNNING on processor 2
- Not impersonating
- GetUlongFromAddress: unable to read from fffff8032f9492d4
- Owning Process ffffe40bf57477c0 Image: explorer.exe
- Attached Process N/A Image: N/A
- fffff78000000000: Unable to get shared data
- Wait Start TickCount 104343
- Context Switch Count 7029 IdealProcessor: 4
- ReadMemory error: Cannot get nt!KeMaximumIncrement value.
- UserTime 00:00:00.000
- KernelTime 00:00:00.000
- Win32 Start Address 0x00007ffdcff012d0
- Stack Init ffffd28162effc10 Current ffffd28162eff580
- Base ffffd28162f00000 Limit ffffd28162ef9000 Call 0000000000000000
- Priority 9 BasePriority 8 PriorityDecrement 0 IoPriority 2 PagePriority 5
- Child-SP RetAddr : Args to Child : Call Site
- ffffd281`62efdca8 fffff803`2f7833a9 : 00000000`0000003b 00000000`c0000005 fffff803`2fa6f6a9 ffffd281`62efe580 : nt!KeBugCheckEx
- ffffd281`62efdcb0 fffff803`2f782b3c : ffffd281`62efdf00 fffff803`2f7742aa fffff803`2f8e5838 ffffd281`62efed48 : nt!KiBugCheckDispatch+0x69
- ffffd281`62efddf0 fffff803`2f77e4ad : fffff803`2f996000 fffff803`2f60c000 00053748`00889000 ffffd281`62efe420 : nt!KiSystemServiceHandler+0x7c
- ffffd281`62efde30 fffff803`2f619284 : 00000000`00000003 ffffd281`62efdf60 00000000`00000000 fffff803`2f6b01eb : nt!RtlpExecuteHandlerForException+0xd
- ffffd281`62efde60 fffff803`2f618063 : ffffd281`62efed48 ffffd281`62efea80 ffffd281`62efed48 00000000`00000102 : nt!RtlDispatchException+0x404
- ffffd281`62efe550 fffff803`2f783482 : ffff9307`359b68e0 fffff803`2fe97b00 ffff9307`312fee54 ffffd281`62efee20 : nt!KiDispatchException+0x143
- ffffd281`62efec10 fffff803`2f781734 : ffffd281`62efeed0 fffff803`2fa6f005 00000000`00000000 ffffd281`62eff150 : nt!KiExceptionDispatch+0xc2
- ffffd281`62efedf0 fffff803`2fa6f6a9 : ffffd281`62eff910 ffffd281`62eff080 ffff9307`35c1b820 ffffd281`62eff170 : nt!KiGeneralProtectionFault+0xf4 (TrapFrame @ ffffd281`62efedf0)
- ffffd281`62efef80 fffff803`2fa7afa6 : ffffd281`0000001c ffffd281`62eff450 ffffd281`62eff3d0 ffff9307`2f4abcb0 : nt!CmpDoParseKey+0x239
- ffffd281`62eff360 fffff803`2fa7547b : ffffe40b`f6d33b10 ffff9307`00000000 ffffe40b`f6d33b10 ffff9307`2f415701 : nt!CmpParseKey+0x266
- ffffd281`62eff530 fffff803`2fa78df0 : ffffe40b`f6d33b00 ffffd281`62eff798 ffff9307`00000040 ffffe40b`f535bc00 : nt!ObpLookupObjectName+0x46b
- ffffd281`62eff700 fffff803`2fa79af4 : ffff9307`00000001 ffffe40b`f535bc00 00000000`00000000 00000000`00000000 : nt!ObOpenObjectByNameEx+0x1e0
- ffffd281`62eff840 fffff803`2fa7c81f : 00000000`00000000 ffff9307`35994b80 00007ffd`00000102 00000000`00000000 : nt!CmOpenKey+0x274
- ffffd281`62effa40 fffff803`2f782f13 : ffffe40b`f8865080 00000000`00000000 ffffd281`62effa58 ffffe40b`f8a698c0 : nt!NtOpenKeyEx+0xf
- ffffd281`62effa80 00007ffd`cff67644 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x13 (TrapFrame @ ffffd281`62effa80)
- 00000000`066d9448 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ffd`cff67644
- !sysinfo smbios
- [SMBIOS Data Tables v3.0]
- [DMI Version - 0]
- [2.0 Calling Convention - No]
- [Table Size - 4498 bytes]
- [BIOS Information (Type 0) - Length 24 - Handle 0000h]
- Vendor American Megatrends Inc.
- BIOS Version 0604
- BIOS Starting Address Segment f000
- BIOS Release Date 12/08/2016
- BIOS ROM Size 1000000
- BIOS Characteristics
- 07: - PCI Supported
- 10: - APM Supported
- 11: - Upgradeable FLASH BIOS
- 12: - BIOS Shadowing Supported
- 15: - CD-Boot Supported
- 16: - Selectable Boot Supported
- 17: - BIOS ROM Socketed
- 19: - EDD Supported
- 23: - 1.2MB Floppy Supported
- 24: - 720KB Floppy Supported
- 25: - 2.88MB Floppy Supported
- 26: - Print Screen Device Supported
- 27: - Keyboard Services Supported
- 28: - Serial Services Supported
- 29: - Printer Services Supported
- 32: - BIOS Vendor Reserved
- BIOS Characteristic Extensions
- 00: - ACPI Supported
- 01: - USB Legacy Supported
- 08: - BIOS Boot Specification Supported
- 10: - Specification Reserved
- 11: - Specification Reserved
- BIOS Major Revision 5
- BIOS Minor Revision 12
- EC Firmware Major Revision 255
- EC Firmware Minor Revision 255
- [System Information (Type 1) - Length 27 - Handle 0001h]
- Manufacturer System manufacturer
- Product Name System Product Name
- Version System Version
- Serial Number System Serial Number
- UUID 00000000-0000-0000-0000-000000000000
- Wakeup Type Power Switch
- SKUNumber SKU
- Family To be filled by O.E.M.
- [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
- Manufacturer ASUSTeK COMPUTER INC.
- Product MAXIMUS IX HERO
- Version Rev 1.xx
- Serial Number 161292444500835
- Asset Tag
- Feature Flags 09h
- -800213280: - -800213232: - §'Aòþ
- Location Default string
- Chassis Handle 0003h
- Board Type 0ah - Processor/Memory Module
- Number of Child Handles 0
- [System Enclosure (Type 3) - Length 22 - Handle 0003h]
- Manufacturer Default string
- Chassis Type Desktop
- Version Default string
- Serial Number
- Asset Tag Number
- Bootup State Safe
- Power Supply State Safe
- Thermal State Safe
- Security Status None
- OEM Defined 0
- Height 0U
- Number of Power Cords 1
- Number of Contained Elements 0
- Contained Element Size 3
- [Onboard Devices Information (Type 10) - Length 6 - Handle 0028h]
- Number of Devices 1
- 01: Type Video [enabled]
- 01: Description To Be Filled By O.E.M.
- [OEM Strings (Type 11) - Length 5 - Handle 0029h]
- Number of Strings 4
- 1 Default string
- 2 Default string
- 3 SAVANNA
- 4 Default string
- [System Configuration Options (Type 12) - Length 5 - Handle 002ah]
- [Physical Memory Array (Type 16) - Length 23 - Handle 0045h]
- Location 03h - SystemBoard/Motherboard
- Use 03h - System Memory
- Memory Error Correction 03h - None
- Maximum Capacity 67108864KB
- Memory Error Inf Handle [Not Provided]
- Number of Memory Devices 4
- [Memory Device (Type 17) - Length 40 - Handle 0046h]
- Physical Memory Array Handle 0045h
- Memory Error Info Handle [Not Provided]
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Set [None]
- Device Locator ChannelA-DIMM1
- Bank Locator BANK 0
- Memory Type 1ah - Specification Reserved
- Type Detail 0080h - Synchronous
- Speed 2133MHz
- Manufacturer Corsair
- Serial Number
- Asset Tag Number
- Part Number CMR32GX4M4C3000C15
- [Memory Device (Type 17) - Length 40 - Handle 0047h]
- Physical Memory Array Handle 0045h
- Memory Error Info Handle [Not Provided]
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Set [None]
- Device Locator ChannelA-DIMM2
- Bank Locator BANK 1
- Memory Type 1ah - Specification Reserved
- Type Detail 0080h - Synchronous
- Speed 2133MHz
- Manufacturer Corsair
- Serial Number
- Asset Tag Number
- Part Number CMR32GX4M4C3000C15
- [Memory Device (Type 17) - Length 40 - Handle 0048h]
- Physical Memory Array Handle 0045h
- Memory Error Info Handle [Not Provided]
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Set [None]
- Device Locator ChannelB-DIMM1
- Bank Locator BANK 2
- Memory Type 1ah - Specification Reserved
- Type Detail 0080h - Synchronous
- Speed 2133MHz
- Manufacturer Corsair
- Serial Number
- Asset Tag Number
- Part Number CMR32GX4M4C3000C15
- [Memory Device (Type 17) - Length 40 - Handle 0049h]
- Physical Memory Array Handle 0045h
- Memory Error Info Handle [Not Provided]
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Set [None]
- Device Locator ChannelB-DIMM2
- Bank Locator BANK 3
- Memory Type 1ah - Specification Reserved
- Type Detail 0080h - Synchronous
- Speed 2133MHz
- Manufacturer Corsair
- Serial Number
- Asset Tag Number
- Part Number CMR32GX4M4C3000C15
- [Memory Array Mapped Address (Type 19) - Length 31 - Handle 004ah]
- Starting Address 00000000h
- Ending Address 01ffffffh
- Memory Array Handle 0045h
- Partition Width 04
- [Cache Information (Type 7) - Length 19 - Handle 004bh]
- Socket Designation L1 Cache
- Cache Configuration 0180h - WB Enabled Int NonSocketed L1
- Maximum Cache Size 0100h - 256K
- Installed Size 0100h - 256K
- Supported SRAM Type 0020h - Synchronous
- Current SRAM Type 0020h - Synchronous
- Cache Speed 0ns
- Error Correction Type ParitySingle-Bit ECC
- System Cache Type Unified
- Associativity 8-way Set-Associative
- [Cache Information (Type 7) - Length 19 - Handle 004ch]
- Socket Designation L2 Cache
- Cache Configuration 0181h - WB Enabled Int NonSocketed L2
- Maximum Cache Size 0400h - 1024K
- Installed Size 0400h - 1024K
- Supported SRAM Type 0020h - Synchronous
- Current SRAM Type 0020h - Synchronous
- Cache Speed 0ns
- Error Correction Type Multi-Bit ECC
- System Cache Type Unified
- Associativity 4-way Set-Associative
- [Cache Information (Type 7) - Length 19 - Handle 004dh]
- Socket Designation L3 Cache
- Cache Configuration 0182h - WB Enabled Int NonSocketed L3
- Maximum Cache Size 2000h - 8192K
- Installed Size 2000h - 8192K
- Supported SRAM Type 0020h - Synchronous
- Current SRAM Type 0020h - Synchronous
- Cache Speed 0ns
- Error Correction Type Specification Reserved
- System Cache Type Unified
- Associativity 16-way Set-Associative
- [Processor Information (Type 4) - Length 48 - Handle 004eh]
- Socket Designation LGA1151
- Processor Type Central Processor
- Processor Family c6h - Specification Reserved
- Processor Manufacturer Intel(R) Corporation
- Processor ID e9060900fffbebbf
- Processor Version Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz
- Processor Voltage 8bh - 1.1V
- External Clock 100MHz
- Max Speed 8300MHz
- Current Speed 4200MHz
- Status Enabled Populated
- Processor Upgrade Other
- L1 Cache Handle 004bh
- L2 Cache Handle 004ch
- L3 Cache Handle 004dh
- Serial Number
- Asset Tag Number
- Part Number To Be Filled By O.E.M.
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 004fh]
- Starting Address 00000000h
- Ending Address 007fffffh
- Memory Device Handle 0046h
- Mem Array Mapped Adr Handle 004ah
- Partition Row Position [Unknown]
- Interleave Position 01
- Interleave Data Depth 02
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0050h]
- Starting Address 01000000h
- Ending Address 017fffffh
- Memory Device Handle 0047h
- Mem Array Mapped Adr Handle 004ah
- Partition Row Position [Unknown]
- Interleave Position 01
- Interleave Data Depth 02
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0051h]
- Starting Address 00800000h
- Ending Address 00ffffffh
- Memory Device Handle 0048h
- Mem Array Mapped Adr Handle 004ah
- Partition Row Position [Unknown]
- Interleave Position 02
- Interleave Data Depth 02
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0052h]
- Starting Address 01800000h
- Ending Address 01ffffffh
- Memory Device Handle 0049h
- Mem Array Mapped Adr Handle 004ah
- Partition Row Position [Unknown]
- Interleave Position 02
- Interleave Data Depth 02
- SYSTEM_SERVICE_EXCEPTION (3b)
- An exception happened while executing a system service routine.
- Arguments:
- Arg1: 00000000c0000005, Exception code that caused the bugcheck
- Arg2: fffff8032fa6f6a9, Address of the instruction which caused the bugcheck
- Arg3: ffffd28162efe580, Address of the context record for the exception that caused the bugcheck
- Arg4: 0000000000000000, zero.
- Debugging Details:
- DUMP_CLASS: 1
- DUMP_QUALIFIER: 400
- BUILD_VERSION_STRING: 10.0.15063.0 (WinBuild.160101.0800)
- SYSTEM_MANUFACTURER: System manufacturer
- SYSTEM_PRODUCT_NAME: System Product Name
- SYSTEM_SKU: SKU
- SYSTEM_VERSION: System Version
- BIOS_VENDOR: American Megatrends Inc.
- BIOS_VERSION: 0604
- BIOS_DATE: 12/08/2016
- BASEBOARD_MANUFACTURER: ASUSTeK COMPUTER INC.
- BASEBOARD_PRODUCT: MAXIMUS IX HERO
- BASEBOARD_VERSION: Rev 1.xx
- DUMP_TYPE: 2
- DUMP_FILE_ATTRIBUTES: 0x8
- Kernel Generated Triage Dump
- EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s.
- FAULTING_IP:
- nt!CmpDoParseKey+239
- fffff803`2fa6f6a9 66833e5c cmp word ptr [rsi],5Ch
- CONTEXT: ffffd28162efe580 -- (.cxr 0xffffd28162efe580)
- rax=0000000001040102 rbx=0000000000000000 rcx=ffff93072f43b000
- rdx=0000000000000000 rsi=ffff93073a073254 rdi=0000000000000102
- rip=fffff8032fa6f6a9 rsp=ffffd28162efef80 rbp=ffffd28162eff080
- r8=000000000000fffe r9=0000000000000000 r10=0000000000000200
- r11=fffff8032f784517 r12=ffffd28162eff9a0 r13=0000000000000000
- r14=0000000000000104 r15=ffff93072f43b008
- iopl=0 nv up ei ng nz na pe cy
- cs=0010 ss=0018 ds=002b es=002b fs=0053 gs=002b efl=00010283
- nt!CmpDoParseKey+0x239:
- fffff803`2fa6f6a9 66833e5c cmp word ptr [rsi],5Ch ds:002b:ffff9307`3a073254=????
- Resetting default scope
- CPU_COUNT: 8
- CPU_MHZ: 1068
- CPU_VENDOR: GenuineIntel
- CPU_FAMILY: 6
- CPU_MODEL: 9e
- CPU_STEPPING: 9
- CPU_MICROCODE: 6,9e,9,0 (F,M,S,R) SIG: 42'00000000 (cache) 42'00000000 (init)
- DEFAULT_BUCKET_ID: WIN8_DRIVER_FAULT
- BUGCHECK_STR: 0x3B
- PROCESS_NAME: explorer.exe
- CURRENT_IRQL: 0
- ANALYSIS_SESSION_HOST: USERNAME-PC
- ANALYSIS_SESSION_TIME: 06-03-2017 23:25:41.0763
- ANALYSIS_VERSION: 10.0.14321.1024 amd64fre
- LAST_CONTROL_TRANSFER: from fffff8032fa7afa6 to fffff8032fa6f6a9
- THREAD_SHA1_HASH_MOD_FUNC: 862c53fe43f8a98df43bc2882a330a6c6f1e3ceb
- THREAD_SHA1_HASH_MOD_FUNC_OFFSET: 72aa087d1063f45534b73e407530071aaedbdb5e
- THREAD_SHA1_HASH_MOD: 30a3e915496deaace47137d5b90c3ecc03746bf6
- FOLLOWUP_IP:
- nt!CmpDoParseKey+239
- fffff803`2fa6f6a9 66833e5c cmp word ptr [rsi],5Ch
- FAULT_INSTR_CODE: 5c3e8366
- SYMBOL_STACK_INDEX: 0
- SYMBOL_NAME: nt!CmpDoParseKey+239
- FOLLOWUP_NAME: MachineOwner
- MODULE_NAME: nt
- IMAGE_NAME: ntkrnlmp.exe
- DEBUG_FLR_IMAGE_TIMESTAMP: 58ccba4c
- IMAGE_VERSION: 10.0.15063.0
- STACK_COMMAND: .cxr 0xffffd28162efe580 ; kb
- BUCKET_ID_FUNC_OFFSET: 239
- FAILURE_BUCKET_ID: 0x3B_nt!CmpDoParseKey
- BUCKET_ID: 0x3B_nt!CmpDoParseKey
- PRIMARY_PROBLEM_CLASS: 0x3B_nt!CmpDoParseKey
- TARGET_TIME: 2017-06-03T23:55:28.000Z
- OSBUILD: 15063
- OSSERVICEPACK: 0
- SERVICEPACK_NUMBER: 0
- OS_REVISION: 0
- SUITE_MASK: 272
- PRODUCT_TYPE: 1
- OSPLATFORM_TYPE: x64
- OSNAME: Windows 10
- OSEDITION: Windows 10 WinNt TerminalServer SingleUserTS
- OS_LOCALE:
- USER_LCID: 0
- OSBUILD_TIMESTAMP: 2017-03-18 00:40:44
- BUILDDATESTAMP_STR: 160101.0800
- BUILDLAB_STR: WinBuild
- BUILDOSVER_STR: 10.0.15063.0
- ANALYSIS_SESSION_ELAPSED_TIME: 580
- ANALYSIS_SOURCE: KM
- FAILURE_ID_HASH_STRING: km:0x3b_nt!cmpdoparsekey
- FAILURE_ID_HASH: {a806c8b5-5067-6f86-24dd-6dbfd96a7e15}
- Followup: MachineOwner
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement