API tools faq
paste
Guest User

Untitled

a guest
Jul 5th, 2020
77
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 48.66 KB | None | 0 0
raw download clone embed print report
  1. ========================== AUTO DUMP ANALYZER ==========================
  2. Auto Dump Analyzer
  3. Version: 0.91
  4. Time to analyze file(s): 00 hours and 01 minutes and 00 seconds
  5.  
  6. ================================ SYSTEM ================================
  7. MANUFACTURER: Dell Inc.
  8. PRODUCT_NAME: XPS 8910
  9. SKU: [Removed]
  10. VERSION: 1.1.11
  11.  
  12. ================================= BIOS =================================
  13. VENDOR: Dell Inc.
  14. VERSION: 1.1.11
  15. DATE: 03/05/2020
  16.  
  17. ============================= MOTHERBOARD ==============================
  18. MANUFACTURER: Dell Inc.
  19. PRODUCT: 0WPMFG
  20. VERSION: A00
  21.  
  22. ================================= RAM ==================================
  23. Size Speed Manufacturer Part No.
  24. -------------- -------------- ------------------- ----------------------
  25. 0MHz
  26. 0MHz
  27. 8192MB 2133MHz Micron 16ATF1G64AZ-2G1B1
  28. 8192MB 2133MHz Micron 16ATF1G64AZ-2G1B1
  29.  
  30. ================================= CPU ==================================
  31. Processor Version: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
  32. COUNT: 8
  33. MHZ: 4008
  34. VENDOR: GenuineIntel
  35. FAMILY: 6
  36. MODEL: 5e
  37. STEPPING: 3
  38. MICROCODE: 6,5e,3,0 (F,M,S,R) SIG: D6'00000000 (cache) D6'00000000 (init)
  39.  
  40. ================================== OS ==================================
  41. Product: WinNt, suite: TerminalServer SingleUserTS
  42. Built by: 19041.1.amd64fre.vb_release.191206-1406
  43. BUILD_VERSION: 10.0.19041.329 (WinBuild.160101.0800)
  44. BUILD: 19041
  45. SERVICEPACK: 329
  46. PLATFORM_TYPE: x64
  47. NAME: Windows 10
  48. EDITION: Windows 10 WinNt TerminalServer SingleUserTS
  49. BUILD_TIMESTAMP: unknown_date
  50. BUILDDATESTAMP: 160101.0800
  51. BUILDLAB: WinBuild
  52. BUILDOSVER: 10.0.19041.329
  53.  
  54. =============================== DEBUGGER ===============================
  55. Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
  56. Copyright (c) Microsoft Corporation. All rights reserved.
  57.  
  58. =============================== COMMENTS ===============================
  59. * Information gathered from different dump files may be different. If
  60. Windows updates between two dump files, two or more OS versions may
  61. be shown above.
  62. * If the user updates the BIOS between dump files, two or more versions
  63. and dates may be shown above.
  64. * More RAM information can be found below in a full BIOS section.
  65.  
  66. ========================================================================
  67. ======================= Dump #1: ANALYZE VERBOSE =======================
  68. ====================== File: 070420-10890-01.dmp =======================
  69. ========================================================================
  70.  
  71. Mini Kernel Dump File: Only registers and stack trace are available
  72. Windows 10 Kernel Version 19041 MP (8 procs) Free x64
  73. Kernel base = 0xfffff801`7c600000 PsLoadedModuleList = 0xfffff801`7d22a2b0
  74. Debug session time: Sun Jul 5 02:51:15.931 2020 (UTC - 4:00)
  75. System Uptime: 2 days 1:52:00.737
  76.  
  77. BugCheck 124, {0, ffffca8fc71a6028, be000000, 200135}
  78. *************************************************************************
  79. *** Either you specified an unqualified symbol, or your debugger ***
  80. *** doesn't have full symbol information. Unqualified symbol ***
  81. *** resolution is turned off by default. Please either specify a ***
  82. *** fully qualified symbol module!symbolname, or enable resolution ***
  83. *** of unqualified symbols by typing ".symopt- 100". Note that ***
  84. *** enabling unqualified symbol resolution with network symbol ***
  85. *** server shares in the symbol path may cause the debugger to ***
  86. *** appear to hang for long periods of time when an incorrect ***
  87. *** symbol name is typed or the network symbol server is down. ***
  88. *** For some commands to work properly, your symbol path ***
  89. *** must point to .pdb files that have full type information. ***
  90. *** Certain .pdb files (such as the public OS symbols) do not ***
  91. *** contain the required information. Contact the group that ***
  92. *** provided you with these symbols if you need this command to ***
  93. *** work. ***
  94. *** Type referenced: hal!_WHEA_PROCESSOR_GENERIC_ERROR_SECTION ***
  95. *************************************************************************
  96. *************************************************************************
  97. *** Either you specified an unqualified symbol, or your debugger ***
  98. *** doesn't have full symbol information. Unqualified symbol ***
  99. *** resolution is turned off by default. Please either specify a ***
  100. *** fully qualified symbol module!symbolname, or enable resolution ***
  101. *** of unqualified symbols by typing ".symopt- 100". Note that ***
  102. *** enabling unqualified symbol resolution with network symbol ***
  103. *** server shares in the symbol path may cause the debugger to ***
  104. *** appear to hang for long periods of time when an incorrect ***
  105. *** symbol name is typed or the network symbol server is down. ***
  106. *** For some commands to work properly, your symbol path ***
  107. *** must point to .pdb files that have full type information. ***
  108. *** Certain .pdb files (such as the public OS symbols) do not ***
  109. *** contain the required information. Contact the group that ***
  110. *** provided you with these symbols if you need this command to ***
  111. *** work. ***
  112. *** Type referenced: hal!_WHEA_PROCESSOR_GENERIC_ERROR_SECTION ***
  113. *************************************************************************
  114. *** WARNING: Unable to verify timestamp for win32k.sys
  115. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  116. Probably caused by : memory_corruption
  117. Followup: memory_corruption
  118.  
  119. WHEA_UNCORRECTABLE_ERROR (124)
  120. A fatal hardware error has occurred. Parameter 1 identifies the type of error
  121. source that reported the error. Parameter 2 holds the address of the
  122. WHEA_ERROR_RECORD structure that describes the error conditon.
  123.  
  124. Arguments:
  125. Arg1: 0000000000000000, Machine Check Exception
  126. Arg2: ffffca8fc71a6028, Address of the WHEA_ERROR_RECORD structure.
  127. Arg3: 00000000be000000, High order 32-bits of the MCi_STATUS value.
  128. Arg4: 0000000000200135, Low order 32-bits of the MCi_STATUS value.
  129.  
  130. Debugging Details:
  131. *************************************************************************
  132. *** Either you specified an unqualified symbol, or your debugger ***
  133. *** doesn't have full symbol information. Unqualified symbol ***
  134. *** resolution is turned off by default. Please either specify a ***
  135. *** fully qualified symbol module!symbolname, or enable resolution ***
  136. *** of unqualified symbols by typing ".symopt- 100". Note that ***
  137. *** enabling unqualified symbol resolution with network symbol ***
  138. *** server shares in the symbol path may cause the debugger to ***
  139. *** appear to hang for long periods of time when an incorrect ***
  140. *** symbol name is typed or the network symbol server is down. ***
  141. *** For some commands to work properly, your symbol path ***
  142. *** must point to .pdb files that have full type information. ***
  143. *** Certain .pdb files (such as the public OS symbols) do not ***
  144. *** contain the required information. Contact the group that ***
  145. *** provided you with these symbols if you need this command to ***
  146. *** work. ***
  147. *** Type referenced: hal!_WHEA_PROCESSOR_GENERIC_ERROR_SECTION ***
  148. *************************************************************************
  149. *************************************************************************
  150. *** Either you specified an unqualified symbol, or your debugger ***
  151. *** doesn't have full symbol information. Unqualified symbol ***
  152. *** resolution is turned off by default. Please either specify a ***
  153. *** fully qualified symbol module!symbolname, or enable resolution ***
  154. *** of unqualified symbols by typing ".symopt- 100". Note that ***
  155. *** enabling unqualified symbol resolution with network symbol ***
  156. *** server shares in the symbol path may cause the debugger to ***
  157. *** appear to hang for long periods of time when an incorrect ***
  158. *** symbol name is typed or the network symbol server is down. ***
  159. *** For some commands to work properly, your symbol path ***
  160. *** must point to .pdb files that have full type information. ***
  161. *** Certain .pdb files (such as the public OS symbols) do not ***
  162. *** contain the required information. Contact the group that ***
  163. *** provided you with these symbols if you need this command to ***
  164. *** work. ***
  165. *** Type referenced: hal!_WHEA_PROCESSOR_GENERIC_ERROR_SECTION ***
  166. *************************************************************************
  167. DUMP_CLASS: 1
  168. DUMP_QUALIFIER: 400
  169. DUMP_TYPE: 2
  170. BUGCHECK_STR: 0x124_GenuineIntel
  171. CUSTOMER_CRASH_COUNT: 1
  172. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  173.  
  174. PROCESS_NAME: System
  175.  
  176. CURRENT_IRQL: f
  177. STACK_TEXT:
  178. fffff801`838478e8 fffff801`7cabe33a : 00000000`00000124 00000000`00000000 ffffca8f`c71a6028 00000000`be000000 : nt!KeBugCheckEx
  179. fffff801`838478f0 fffff801`7bcc15b0 : 00000000`00000000 ffffca8f`c71a6028 ffffca8f`c07b0390 ffffca8f`c71a6028 : nt!HalBugCheckSystem+0xca
  180. fffff801`83847930 fffff801`7cbc3b4e : 00000000`00000000 fffff801`838479d9 ffffca8f`c71a6028 ffffca8f`c07b0390 : PSHED!PshedBugCheckSystem+0x10
  181. fffff801`83847960 fffff801`7cabfc61 : ffffca8f`c0926070 ffffca8f`c0926070 ffffca8f`c07b03e0 ffffca8f`c07b0390 : nt!WheaReportHwError+0x46e
  182. fffff801`83847a40 fffff801`7cabffd3 : 00000000`00000000 ffffca8f`c07b03e0 ffffca8f`c07b0390 00000000`00000000 : nt!HalpMcaReportError+0xb1
  183. fffff801`83847bb0 fffff801`7cabfeb0 : ffffca8f`bd90bbe0 00000000`00000001 00000000`00000000 00000000`00000000 : nt!HalpMceHandlerCore+0xef
  184. fffff801`83847c00 fffff801`7cac0101 : 00000000`00000008 00000000`00000001 00000000`00000000 00000000`00000000 : nt!HalpMceHandler+0xe0
  185. fffff801`83847c40 fffff801`7cabf36b : 00000000`00000000 00000000`00000000 fffff801`83847ed0 00000000`00000000 : nt!HalpMceHandlerWithRendezvous+0xc9
  186. fffff801`83847c70 fffff801`7cac1bb5 : ffffca8f`bd90bbe0 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HalpHandleMachineCheck+0x5f
  187. fffff801`83847ca0 fffff801`7cb18889 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HalHandleMcheck+0x35
  188. fffff801`83847cd0 fffff801`7c9ecaba : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiHandleMcheck+0x9
  189. fffff801`83847d00 fffff801`7c9ec777 : fffff801`00000000 fffff801`7c9ec6ac 00000000`00000000 00000000`00000000 : nt!KxMcheckAbort+0x7a
  190. fffff801`83847e40 fffff801`7c8ccc55 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiMcheckAbort+0x277
  191. fffff801`8381c620 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!PpmIdleExecuteTransition+0xac5
  192. STACK_COMMAND: kb
  193. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  194. fffff8017c984f1e-fffff8017c984f21 4 bytes - nt!MiFreeUltraMapping+32
  195. [ a0 7d fb f6:00 23 46 8c ]
  196. 4 errors : !nt (fffff8017c984f1e-fffff8017c984f21)
  197. MODULE_NAME: memory_corruption
  198.  
  199. IMAGE_NAME: memory_corruption
  200.  
  201. FOLLOWUP_NAME: memory_corruption
  202. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  203. MEMORY_CORRUPTOR: LARGE
  204. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  205. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  206. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  207. TARGET_TIME: 2020-07-05T06:51:15.000Z
  208. SUITE_MASK: 272
  209. PRODUCT_TYPE: 1
  210. USER_LCID: 0
  211. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  212. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  213. Followup: memory_corruption
  214.  
  215. ====================== Dump #1: 3RD PARTY DRIVERS ======================
  216.  
  217. Mar 31 2013 - L1C63x64.sys - Qualcomm Atheros AR8151 or AR8152 NDIS 6.30 Gigabit Ethernet Controller driver http://www.qualcomm.com/drivers/
  218. Aug 08 2016 - iaLPSS2_UART2.sys - Intel(R) Serial IO UART driver http://www.intel.com/
  219. Aug 09 2016 - RTKVHD64.sys - Realtek Audio System driver https://www.realtek.com/en/
  220. Apr 19 2018 - iaLPSS2i_GPIO2.sys - Intel(R) Serial IO driver http://www.intel.com/
  221. Apr 19 2018 - iaLPSS2i_I2C.sys - Intel(R) Serial IO I2C Host Controller driver http://www.intel.com/
  222. Apr 04 2019 - TeeDriverW8x64.sys - Intel Management Engine Interface driver https://downloadcenter.intel.com/
  223. Apr 25 2019 - mbae64.sys - Malwarebytes driver https://www.malwarebytes.com/
  224. May 05 2019 - ibtusb.sys - Intel(R) Wireless Bluetooth(R) Filter driver (Intel Corporation)
  225. May 17 2019 - IntcDAud.sys - Intel Display Audio Driver http://www.intel.com/
  226. Jul 15 2019 - iaStorAC.sys - Intel Rapid Storage Technology driver
  227. Aug 27 2019 - Netwtw04.sys - Intel Wireless Wifi Link driver https://downloadcenter.intel.com/
  228. Sep 25 2019 - igdkmd64.sys - Intel HD graphics driver
  229. Oct 30 2019 - dddriver64Dcsa.sys - Dell Diagnostics Device driver
  230. Nov 20 2019 - mbamswissarmy.sys - MalwareBytes Anti-Malware system driver https://www.malwarebytes.com/
  231. Jan 26 2020 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  232. Apr 15 2020 - farflt.sys - Malwarebytes Anti-RansomWare SDK http://www.malwarebytes.org/
  233. Apr 17 2020 - mbam.sys - Malwarebytes Anti-Malware https://www.malwarebytes.com/
  234. Apr 29 2020 - MbamChameleon.sys - Malwarebytes Anti-Malware Chameleon driver https://www.malwarebytes.com/
  235. May 27 2020 - mwac.sys - Malwarebytes Web Access Control http://www.malwarebytes.org/
  236. Jun 09 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  237. Jun 21 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  238.  
  239. ================== Dump #1: 3RD PARTY DRIVERS (FULL) ===================
  240.  
  241. Mapped memory image file: C:\ProgramData\dbg\sym\L1C63x64.sys\5158FBC522000\L1C63x64.sys
  242. Image path: \SystemRoot\System32\drivers\L1C63x64.sys
  243. Image name: L1C63x64.sys
  244. Search : https://www.google.com/search?q=L1C63x64.sys
  245. ADA Info : Qualcomm Atheros AR8151 or AR8152 NDIS 6.30 Gigabit Ethernet Controller driver http://www.qualcomm.com/drivers/
  246. Timestamp : Sun Mar 31 2013
  247. File version: 2.1.0.16
  248. Product version: 2.1.0.16
  249. File flags: 8 (Mask 3F) Private
  250. File OS: 40004 NT Win32
  251. File type: 3.6 Driver
  252. File date: 00000000.00000000
  253. CompanyName: Qualcomm Atheros Co., Ltd.
  254. ProductName: Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controller
  255. InternalName: L1c63x64.sys
  256. OriginalFilename: L1c63x64.sys
  257. ProductVersion: 2.1.0.16
  258. FileVersion: 2.1.0.16
  259. FileDescription: Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controller
  260. LegalCopyright: 2001-2012 Qualcomm Atheros Co., Ltd. All Rights Reserved.
  261.  
  262. Image path: \SystemRoot\System32\drivers\iaLPSS2_UART2.sys
  263. Image name: iaLPSS2_UART2.sys
  264. Search : https://www.google.com/search?q=iaLPSS2_UART2.sys
  265. ADA Info : Intel(R) Serial IO UART driver http://www.intel.com/
  266. Timestamp : Mon Aug 8 2016
  267.  
  268. Image path: \SystemRoot\system32\drivers\RTKVHD64.sys
  269. Image name: RTKVHD64.sys
  270. Search : https://www.google.com/search?q=RTKVHD64.sys
  271. ADA Info : Realtek Audio System driver https://www.realtek.com/en/
  272. Timestamp : Tue Aug 9 2016
  273.  
  274. Mapped memory image file: C:\ProgramData\dbg\sym\iaLPSS2i_GPIO2.sys\5AD84AF419000\iaLPSS2i_GPIO2.sys
  275. Image path: \SystemRoot\System32\drivers\iaLPSS2i_GPIO2.sys
  276. Image name: iaLPSS2i_GPIO2.sys
  277. Search : https://www.google.com/search?q=iaLPSS2i_GPIO2.sys
  278. ADA Info : Intel(R) Serial IO driver http://www.intel.com/
  279. Timestamp : Thu Apr 19 2018
  280. File version: 30.100.1816.3
  281. Product version: 30.100.1816.3
  282. File flags: 8 (Mask 3F) Private
  283. File OS: 40004 NT Win32
  284. File type: 3.7 Driver
  285. File date: 00000000.00000000
  286. CompanyName: Intel Corporation
  287. ProductName: Intel(R) Serial IO Driver
  288. InternalName: iaLPSS2i_GPIO2.sys
  289. OriginalFilename: iaLPSS2i_GPIO2.sys
  290. ProductVersion: 30.100.1816.3
  291. FileVersion: 30.100.1816.3
  292. FileDescription: Intel(R) Serial IO GPIO Driver v2
  293. LegalCopyright: Copyright © 2015, Intel Corporation.
  294.  
  295. Mapped memory image file: C:\ProgramData\dbg\sym\iaLPSS2i_I2C.sys\5AD84ADA2f000\iaLPSS2i_I2C.sys
  296. Image path: \SystemRoot\System32\drivers\iaLPSS2i_I2C.sys
  297. Image name: iaLPSS2i_I2C.sys
  298. Search : https://www.google.com/search?q=iaLPSS2i_I2C.sys
  299. ADA Info : Intel(R) Serial IO I2C Host Controller driver http://www.intel.com/
  300. Timestamp : Thu Apr 19 2018
  301. File version: 30.100.1816.3
  302. Product version: 30.100.1816.3
  303. File flags: 8 (Mask 3F) Private
  304. File OS: 40004 NT Win32
  305. File type: 3.7 Driver
  306. File date: 00000000.00000000
  307. CompanyName: Intel Corporation
  308. ProductName: Intel(R) Serial IO Driver
  309. InternalName: iaLPSS2i_I2C.sys
  310. OriginalFilename: iaLPSS2i_I2C.sys
  311. ProductVersion: 30.100.1816.3
  312. FileVersion: 30.100.1816.3
  313. FileDescription: Intel(R) Serial IO I2C Driver v2
  314. LegalCopyright: Copyright © 2015, Intel Corporation.
  315.  
  316. Image path: \SystemRoot\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys
  317. Image name: TeeDriverW8x64.sys
  318. Search : https://www.google.com/search?q=TeeDriverW8x64.sys
  319. ADA Info : Intel Management Engine Interface driver https://downloadcenter.intel.com/
  320. Timestamp : Thu Apr 4 2019
  321.  
  322. Image path: \??\C:\Windows\system32\drivers\mbae64.sys
  323. Image name: mbae64.sys
  324. Search : https://www.google.com/search?q=mbae64.sys
  325. ADA Info : Malwarebytes driver https://www.malwarebytes.com/
  326. Timestamp : Thu Apr 25 2019
  327.  
  328. Image path: \SystemRoot\System32\DriverStore\FileRepository\ibtusb.inf_amd64_00068a43b493b910\ibtusb.sys
  329. Image name: ibtusb.sys
  330. Search : https://www.google.com/search?q=ibtusb.sys
  331. ADA Info : Intel(R) Wireless Bluetooth(R) Filter driver (Intel Corporation)
  332. Timestamp : Sun May 5 2019
  333.  
  334. Image path: \SystemRoot\System32\DriverStore\FileRepository\intcdaud.inf_amd64_0d54ec4feb82b9c1\IntcDAud.sys
  335. Image name: IntcDAud.sys
  336. Search : https://www.google.com/search?q=IntcDAud.sys
  337. ADA Info : Intel Display Audio Driver http://www.intel.com/
  338. Timestamp : Fri May 17 2019
  339.  
  340. Image path: \SystemRoot\System32\drivers\iaStorAC.sys
  341. Image name: iaStorAC.sys
  342. Search : https://www.google.com/search?q=iaStorAC.sys
  343. ADA Info : Intel Rapid Storage Technology driver
  344. Timestamp : Mon Jul 15 2019
  345.  
  346. Image path: \SystemRoot\System32\drivers\Netwtw04.sys
  347. Image name: Netwtw04.sys
  348. Search : https://www.google.com/search?q=Netwtw04.sys
  349. ADA Info : Intel Wireless Wifi Link driver https://downloadcenter.intel.com/
  350. Timestamp : Tue Aug 27 2019
  351.  
  352. Image path: \SystemRoot\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\igdkmd64.sys
  353. Image name: igdkmd64.sys
  354. Search : https://www.google.com/search?q=igdkmd64.sys
  355. ADA Info : Intel HD graphics driver
  356. Timestamp : Wed Sep 25 2019
  357.  
  358. Image path: \SystemRoot\System32\drivers\dddriver64Dcsa.sys
  359. Image name: dddriver64Dcsa.sys
  360. Search : https://www.google.com/search?q=dddriver64Dcsa.sys
  361. ADA Info : Dell Diagnostics Device driver
  362. Timestamp : Wed Oct 30 2019
  363.  
  364. Image path: \SystemRoot\System32\Drivers\mbamswissarmy.sys
  365. Image name: mbamswissarmy.sys
  366. Search : https://www.google.com/search?q=mbamswissarmy.sys
  367. ADA Info : MalwareBytes Anti-Malware system driver https://www.malwarebytes.com/
  368. Timestamp : Wed Nov 20 2019
  369.  
  370. Image path: \SystemRoot\System32\DriverStore\FileRepository\nvppc.inf_amd64_0f22333f160a8f42\UcmCxUcsiNvppc.sys
  371. Image name: UcmCxUcsiNvppc.sys
  372. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  373. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  374. Timestamp : Sun Jan 26 2020
  375.  
  376. Image path: \SystemRoot\system32\DRIVERS\farflt.sys
  377. Image name: farflt.sys
  378. Search : https://www.google.com/search?q=farflt.sys
  379. ADA Info : Malwarebytes Anti-RansomWare SDK http://www.malwarebytes.org/
  380. Timestamp : Wed Apr 15 2020
  381.  
  382. Image path: \??\C:\Windows\system32\DRIVERS\mbam.sys
  383. Image name: mbam.sys
  384. Search : https://www.google.com/search?q=mbam.sys
  385. ADA Info : Malwarebytes Anti-Malware https://www.malwarebytes.com/
  386. Timestamp : Fri Apr 17 2020
  387.  
  388. Image path: \SystemRoot\System32\Drivers\MbamChameleon.sys
  389. Image name: MbamChameleon.sys
  390. Search : https://www.google.com/search?q=MbamChameleon.sys
  391. ADA Info : Malwarebytes Anti-Malware Chameleon driver https://www.malwarebytes.com/
  392. Timestamp : Wed Apr 29 2020
  393.  
  394. Image path: \SystemRoot\system32\DRIVERS\mwac.sys
  395. Image name: mwac.sys
  396. Search : https://www.google.com/search?q=mwac.sys
  397. ADA Info : Malwarebytes Web Access Control http://www.malwarebytes.org/
  398. Timestamp : Wed May 27 2020
  399.  
  400. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  401. Image name: nvhda64v.sys
  402. Search : https://www.google.com/search?q=nvhda64v.sys
  403. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  404. Timestamp : Tue Jun 9 2020
  405.  
  406. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ccad5caddc3a3d35\nvlddmkm.sys
  407. Image name: nvlddmkm.sys
  408. Search : https://www.google.com/search?q=nvlddmkm.sys
  409. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  410. Timestamp : Sun Jun 21 2020
  411.  
  412. ====================== Dump #1: MICROSOFT DRIVERS ======================
  413.  
  414. ACPI.sys ACPI Driver for NT (Microsoft)
  415. acpiex.sys ACPIEx Driver (Microsoft)
  416. acpipagr.sys ACPI Processor Aggregator Device driver (Microsoft)
  417. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  418. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  419. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  420. ahcache.sys Application Compatibility Cache (Microsoft)
  421. bam.sys BAM Kernal driver (Microsoft)
  422. BasicDisplay.sys Basic Display driver (Microsoft)
  423. BasicRender.sys Basic Render driver (Microsoft)
  424. Beep.SYS BEEP driver (Microsoft)
  425. bindflt.sys Windows Bind Filter driver (Microsoft)
  426. BOOTVID.dll VGA Boot Driver (Microsoft)
  427. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  428. BTHport.sys Bluetooth Bus driver (Microsoft)
  429. BTHUSB.sys Bluetooth Miniport driver (Microsoft)
  430. cdd.dll Canonical Display Driver (Microsoft)
  431. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  432. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  433. CI.dll Code Integrity Module (Microsoft)
  434. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  435. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  436. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  437. CLFS.SYS Common Log File System Driver (Microsoft)
  438. clipsp.sys CLIP Service (Microsoft)
  439. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  440. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  441. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  442. condrv.sys Console Driver (Microsoft)
  443. crashdmp.sys Crash Dump driver (Microsoft)
  444. csc.sys Windows Client Side Caching driver (Microsoft)
  445. dfsc.sys DFS Namespace Client Driver (Microsoft)
  446. disk.sys PnP Disk Driver (Microsoft)
  447. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  448. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  449. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  450. dump_iaStorAC.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  451. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  452. dxgmms2.sys DirectX Graphics MMS
  453. fastfat.SYS Fast FAT File System Driver (Microsoft)
  454. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  455. fileinfo.sys FileInfo Filter Driver (Microsoft)
  456. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  457. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  458. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  459. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  460. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  461. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  462. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  463. HIDCLASS.SYS Hid Class Library (Microsoft)
  464. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  465. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  466. HTTP.sys HTTP Protocol Stack (Microsoft)
  467. intelpep.sys Intel Power Engine Plugin (Microsoft)
  468. intelppm.sys Processor Device Driver (Microsoft)
  469. IntelTA.sys Intel Telemetry Driver
  470. iorate.sys I/O rate control Filter (Microsoft)
  471. kbdclass.sys Keyboard Class Driver (Microsoft)
  472. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  473. kd.dll Local Kernal Debugger (Microsoft)
  474. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  475. ks.sys Kernal CSA Library (Microsoft)
  476. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  477. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  478. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  479. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  480. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  481. mcupdate_GenuineIntel.dll Intel Microcode Update Library (Microsoft)
  482. mmcss.sys MMCSS Driver (Microsoft)
  483. monitor.sys Monitor Driver (Microsoft)
  484. mouclass.sys Mouse Class Driver (Microsoft)
  485. mouhid.sys HID Mouse Filter Driver (Microsoft)
  486. mountmgr.sys Mount Point Manager (Microsoft)
  487. MpKslDrv.sys Microsoft Anti-malware Protection driver
  488. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  489. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  490. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  491. Msfs.SYS Mailslot driver (Microsoft)
  492. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  493. msisadrv.sys ISA Driver (Microsoft)
  494. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  495. msquic.sys Windows QUIC Driver
  496. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  497. mssecflt.sys Microsoft Security Events Component file system filter driver (Microsoft)
  498. mssmbios.sys System Management BIOS driver (Microsoft)
  499. mup.sys Multiple UNC Provider driver (Microsoft)
  500. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  501. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  502. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  503. ndisuio.sys NDIS User mode I/O driver (Microsoft)
  504. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  505. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  506. NDProxy.sys NDIS Proxy driver (Microsoft)
  507. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  508. netbios.sys NetBIOS Interface driver (Microsoft)
  509. netbt.sys MBT Transport driver (Microsoft)
  510. NETIO.SYS Network I/O Subsystem (Microsoft)
  511. Npfs.SYS NPFS driver (Microsoft)
  512. npsvctrig.sys Named pipe service triggers (Microsoft)
  513. nsiproxy.sys NSI Proxy driver (Microsoft)
  514. Ntfs.sys NT File System Driver (Microsoft)
  515. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  516. ntosext.sys NTOS Extension Host driver (Microsoft)
  517. Null.SYS NULL Driver (Microsoft)
  518. nwifi.sys NativeWiFi Miniport Driver (Microsoft)
  519. pacer.sys QoS Packet Scheduler (Microsoft)
  520. partmgr.sys Partition driver (Microsoft)
  521. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  522. pcw.sys Performance Counter Driver (Microsoft)
  523. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  524. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  525. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  526. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  527. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  528. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  529. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  530. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  531. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  532. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  533. rdpvideominiport.sys RDP Video Miniport driver (Microsoft)
  534. rdyboost.sys ReadyBoost Driver (Microsoft)
  535. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  536. SerCx2.sys Serial Class Extension V2 (Microsoft)
  537. serenum.sys Serial Port Enumerator (Microsoft)
  538. serial.sys Serial Device Driver
  539. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  540. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  541. spaceport.sys Storage Spaces driver (Microsoft)
  542. SpbCx.sys SPB Class Extension (Microsoft)
  543. srv2.sys Smb 2.0 Server driver (Microsoft)
  544. srvnet.sys Server Network driver (Microsoft)
  545. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  546. storqosflt.sys Storage QoS Filter driver (Microsoft)
  547. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  548. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  549. tcpip.sys TCP/IP Protocol driver (Microsoft)
  550. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  551. TDI.SYS TDI Wrapper driver (Microsoft)
  552. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  553. tm.sys Kernel Transaction Manager driver (Microsoft)
  554. tpm.sys Trusted Platform Module Device driver (Microsoft)
  555. UcmCx.sys USB Connector Manager KMDF Class Extension
  556. ucx01000.sys USB Controller Extension (Microsoft)
  557. UEFI.sys UEFI NT driver (Microsoft)
  558. umbus.sys User-Mode Bus Enumerator (Microsoft)
  559. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  560. USBD.SYS Universal Serial Bus Driver (Microsoft)
  561. UsbHub3.sys USB3 HUB driver (Microsoft)
  562. USBSTOR.SYS USB Mass Storage Class driver (Microsoft)
  563. USBXHCI.SYS USB XHCI driver (Microsoft)
  564. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  565. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  566. volmgr.sys Volume Manager Driver (Microsoft)
  567. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  568. volsnap.sys Volume Shadow Copy driver (Microsoft)
  569. volume.sys Volume driver (Microsoft)
  570. vwifibus.sys Virtual Wireless Bus driver (Microsoft)
  571. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  572. vwifimp.sys Virtual WiFi Miniport Driver (Microsoft)
  573. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  574. watchdog.sys Watchdog driver (Microsoft)
  575. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  576. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  577. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  578. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  579. wdiwifi.sys WDI Driver Framework driver (Microsoft)
  580. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  581. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  582. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  583. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  584. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  585. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  586. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  587. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  588. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  589. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  590. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  591. Wof.sys Windows Overlay Filter (Microsoft)
  592. WpdUpFltr.sys Portable Device Upper Class Filter driver (Microsoft)
  593. WppRecorder.sys WPP Trace Recorder (Microsoft)
  594. WUDFRd.sys Windows Driver Foundation - User-mode Driver Framework Reflector driver (Microsoft)
  595.  
  596. ====================== Dump #1: UNLOADED MODULES =======================
  597.  
  598. fffff801`d8400000 fffff801`d841d000 EhStorClass.
  599. fffff801`d83f0000 fffff801`d83ff000 hiber_storpo
  600. fffff801`dc300000 fffff801`dcea6000 hiber_iaStor
  601. fffff801`dceb0000 fffff801`dcece000 hiber_dumpfv
  602. fffff801`d8430000 fffff801`d843f000 pcdsrvc_x64.
  603. fffff801`d7e10000 fffff801`d83e9000 iqvw64e.sys
  604. fffff801`d83f0000 fffff801`d8401000 MpKsl2a78a2d
  605. fffff801`d8410000 fffff801`d841f000 hiber_storpo
  606. fffff801`d96a0000 fffff801`da246000 hiber_iaStor
  607. fffff801`da250000 fffff801`da26e000 hiber_dumpfv
  608. fffff801`d8440000 fffff801`d844f000 pcdsrvc_x64.
  609. fffff801`d7e10000 fffff801`d83e9000 iqvw64e.sys
  610. fffff801`97f40000 fffff801`97f51000 MpKslDrv.sys
  611. fffff801`d8430000 fffff801`d843f000 hiber_storpo
  612. fffff801`d8cd0000 fffff801`d9876000 hiber_iaStor
  613. fffff801`d9880000 fffff801`d989e000 hiber_dumpfv
  614. fffff801`d7e20000 fffff801`d7e31000 MpKsl7565dbc
  615. fffff801`d7e10000 fffff801`d7e1f000 pcdsrvc_x64.
  616. fffff801`d7e40000 fffff801`d8419000 iqvw64e.sys
  617. fffff801`958e0000 fffff801`958ef000 dump_storpor
  618. fffff801`96600000 fffff801`971a6000 dump_iaStorA
  619. fffff801`971d0000 fffff801`971ee000 dump_dumpfve
  620. fffff801`828b0000 fffff801`828cd000 EhStorClass.
  621. fffff801`97fc0000 fffff801`97fdc000 dam.sys
  622. fffff801`81940000 fffff801`81951000 WdBoot.sys
  623. fffff801`81930000 fffff801`81939000 MbamElam.sys
  624. fffff801`834b0000 fffff801`834c0000 hwpolicy.sys
  625.  
  626. ====================== Dump #1: BIOS INFORMATION =======================
  627.  
  628. [SMBIOS Data Tables v2.8]
  629. [DMI Version - 0]
  630. [2.0 Calling Convention - No]
  631. [Table Size - 4631 bytes]
  632. [BIOS Information (Type 0) - Length 24 - Handle 0000h]
  633. Vendor Dell Inc.
  634. BIOS Version 1.1.11
  635. BIOS Starting Address Segment f000
  636. BIOS Release Date 03/05/2020
  637. BIOS ROM Size 800000
  638. BIOS Characteristics
  639. 07: - PCI Supported
  640. 09: - Plug and Play Supported
  641. 11: - Upgradeable FLASH BIOS
  642. 12: - BIOS Shadowing Supported
  643. 15: - CD-Boot Supported
  644. 16: - Selectable Boot Supported
  645. 19: - EDD Supported
  646. 23: - 1.2MB Floppy Supported
  647. 24: - 720KB Floppy Supported
  648. 25: - 2.88MB Floppy Supported
  649. 26: - Print Screen Device Supported
  650. 28: - Serial Services Supported
  651. 29: - Printer Services Supported
  652. 32: - BIOS Vendor Reserved
  653. 48: - System Vendor Reserved
  654. 49: - System Vendor Reserved
  655. 52: - System Vendor Reserved
  656. BIOS Characteristic Extensions
  657. 00: - ACPI Supported
  658. 01: - USB Legacy Supported
  659. 08: - BIOS Boot Specification Supported
  660. 09: - Fn-Key NET-Boot Supported
  661. 10: - Specification Reserved
  662. 11: - Specification Reserved
  663. BIOS Major Revision 1
  664. BIOS Minor Revision 1
  665. EC Firmware Major Revision 255
  666. EC Firmware Minor Revision 255
  667. [System Information (Type 1) - Length 27 - Handle 0001h]
  668. Manufacturer Dell Inc.
  669. Product Name XPS 8910
  670. Version 1.1.11
  671. UUID 00000000-0000-0000-0000-000000000000
  672. Wakeup Type Power Switch
  673. SKUNumber 072A
  674. Family XPS
  675. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  676. Manufacturer Dell Inc.
  677. Product 0WPMFG
  678. Version A00
  679. Feature Flags 09h
  680. -396249376: - -396249328: - ÷7!ü
  681. Location Default string
  682. Chassis Handle 0003h
  683. Board Type 0ah - Processor/Memory Module
  684. Number of Child Handles 0
  685. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  686. Manufacturer Dell Inc.
  687. Chassis Type Desktop
  688. Version Not Specified
  689. Bootup State Safe
  690. Power Supply State Safe
  691. Thermal State Safe
  692. Security Status None
  693. OEM Defined 0
  694. Height 0U
  695. Number of Power Cords 1
  696. Number of Contained Elements 0
  697. Contained Element Size 3
  698. [OEM Strings (Type 11) - Length 5 - Handle 0024h]
  699. Number of Strings 16
  700. 1 Dell System
  701. 2 1[072A]
  702. 3 3[3.3]
  703. 4 4[0001]
  704. 5 5[0003]
  705. 6 6[D0, D4, D8, DA, DE]
  706. 7 7[]
  707. 8 8[]
  708. 9 9[]
  709. 10 10[1.1.11]
  710. 11 11[]
  711. 12 12[]
  712. 13 13[PP4IL]
  713. 14 14[0]
  714. 15 15[8]
  715. 16 PR5633954179_1
  716. [Cache Information (Type 7) - Length 19 - Handle 0027h]
  717. Socket Designation L1 Cache
  718. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  719. Maximum Cache Size 0080h - 128K
  720. Installed Size 0080h - 128K
  721. Supported SRAM Type 0020h - Synchronous
  722. Current SRAM Type 0020h - Synchronous
  723. Cache Speed 0ns
  724. Error Correction Type ParitySingle-Bit ECC
  725. System Cache Type Data
  726. Associativity 8-way Set-Associative
  727. [Cache Information (Type 7) - Length 19 - Handle 0028h]
  728. Socket Designation L1 Cache
  729. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  730. Maximum Cache Size 0080h - 128K
  731. Installed Size 0080h - 128K
  732. Supported SRAM Type 0020h - Synchronous
  733. Current SRAM Type 0020h - Synchronous
  734. Cache Speed 0ns
  735. Error Correction Type ParitySingle-Bit ECC
  736. System Cache Type Instruction
  737. Associativity 8-way Set-Associative
  738. [Cache Information (Type 7) - Length 19 - Handle 0029h]
  739. Socket Designation L2 Cache
  740. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  741. Maximum Cache Size 0400h - 1024K
  742. Installed Size 0400h - 1024K
  743. Supported SRAM Type 0020h - Synchronous
  744. Current SRAM Type 0020h - Synchronous
  745. Cache Speed 0ns
  746. Error Correction Type Multi-Bit ECC
  747. System Cache Type Unified
  748. Associativity 4-way Set-Associative
  749. [Cache Information (Type 7) - Length 19 - Handle 002ah]
  750. Socket Designation L3 Cache
  751. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  752. Maximum Cache Size 2000h - 8192K
  753. Installed Size 2000h - 8192K
  754. Supported SRAM Type 0020h - Synchronous
  755. Current SRAM Type 0020h - Synchronous
  756. Cache Speed 0ns
  757. Error Correction Type Specification Reserved
  758. System Cache Type Unified
  759. Associativity 16-way Set-Associative
  760. [Processor Information (Type 4) - Length 48 - Handle 002bh]
  761. Socket Designation U3E1
  762. Processor Type Central Processor
  763. Processor Family c6h - Specification Reserved
  764. Processor Manufacturer Intel(R) Corporation
  765. Processor ID e3060500fffbebbf
  766. Processor Version Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
  767. Processor Voltage 8ch - 1.2V
  768. External Clock 100MHz
  769. Max Speed 8300MHz
  770. Current Speed 4000MHz
  771. Status Enabled Populated
  772. Processor Upgrade Other
  773. L1 Cache Handle 0028h
  774. L2 Cache Handle 0029h
  775. L3 Cache Handle 002ah
  776. [Physical Memory Array (Type 16) - Length 23 - Handle 002ch]
  777. Location 03h - SystemBoard/Motherboard
  778. Use 03h - System Memory
  779. Memory Error Correction 03h - None
  780. Maximum Capacity 67108864KB
  781. Number of Memory Devices 4
  782. [Memory Device (Type 17) - Length 40 - Handle 002dh]
  783. Physical Memory Array Handle 002ch
  784. Total Width 0 bits
  785. Data Width 0 bits
  786. Form Factor 09h - DIMM
  787. Device Locator ChannelA-DIMM0
  788. Bank Locator
  789. Memory Type 02h - Unknown
  790. Type Detail 0000h -
  791. Speed 0MHz
  792. [Memory Device (Type 17) - Length 40 - Handle 002eh]
  793. Physical Memory Array Handle 002ch
  794. Total Width 0 bits
  795. Data Width 0 bits
  796. Form Factor 09h - DIMM
  797. Device Locator ChannelA-DIMM1
  798. Bank Locator
  799. Memory Type 02h - Unknown
  800. Type Detail 0000h -
  801. Speed 0MHz
  802. [Memory Device (Type 17) - Length 40 - Handle 002fh]
  803. Physical Memory Array Handle 002ch
  804. Total Width 64 bits
  805. Data Width 64 bits
  806. Size 8192MB
  807. Form Factor 09h - DIMM
  808. Device Locator ChannelB-DIMM0
  809. Bank Locator
  810. Memory Type 1ah - Specification Reserved
  811. Type Detail 0080h - Synchronous
  812. Speed 2133MHz
  813. Manufacturer Micron
  814. Part Number 16ATF1G64AZ-2G1B1
  815. [Memory Device (Type 17) - Length 40 - Handle 0030h]
  816. Physical Memory Array Handle 002ch
  817. Total Width 64 bits
  818. Data Width 64 bits
  819. Size 8192MB
  820. Form Factor 09h - DIMM
  821. Device Locator ChannelB-DIMM1
  822. Bank Locator
  823. Memory Type 1ah - Specification Reserved
  824. Type Detail 0080h - Synchronous
  825. Speed 2133MHz
  826. Manufacturer Micron
  827. Part Number 16ATF1G64AZ-2G1B1
  828. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0031h]
  829. Starting Address 00000000h
  830. Ending Address 00ffffffh
  831. Memory Array Handle 002ch
  832. Partition Width 02
  833. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0032h]
  834. Starting Address 00000000h
  835. Ending Address 007fffffh
  836. Memory Device Handle 002fh
  837. Mem Array Mapped Adr Handle 0031h
  838. Partition Row Position 01
  839. Interleave Position [None]
  840. Interleave Data Depth [None]
  841. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0033h]
  842. Starting Address 00800000h
  843. Ending Address 00ffffffh
  844. Memory Device Handle 0030h
  845. Mem Array Mapped Adr Handle 0031h
  846. Partition Row Position 01
  847. Interleave Position [None]
  848. Interleave Data Depth [None]
  849.  
  850. ========================== Dump #1: Extra #1 ===========================
  851.  
  852. 0: kd> !verifier
  853. Verify Flags Level 0x00000000
  854. STANDARD FLAGS:
  855. [X] (0x00000000) Automatic Checks
  856. [ ] (0x00000001) Special pool
  857. [ ] (0x00000002) Force IRQL checking
  858. [ ] (0x00000008) Pool tracking
  859. [ ] (0x00000010) I/O verification
  860. [ ] (0x00000020) Deadlock detection
  861. [ ] (0x00000080) DMA checking
  862. [ ] (0x00000100) Security checks
  863. [ ] (0x00000800) Miscellaneous checks
  864. [ ] (0x00020000) DDI compliance checking
  865. ADDITIONAL FLAGS:
  866. [ ] (0x00000004) Randomized low resources simulation
  867. [ ] (0x00000200) Force pending I/O requests
  868. [ ] (0x00000400) IRP logging
  869. [ ] (0x00002000) Invariant MDL checking for stack
  870. [ ] (0x00004000) Invariant MDL checking for driver
  871. [ ] (0x00008000) Power framework delay fuzzing
  872. [ ] (0x00010000) Port/miniport interface checking
  873. [ ] (0x00040000) Systematic low resources simulation
  874. [ ] (0x00080000) DDI compliance checking (additional)
  875. [ ] (0x00200000) NDIS/WIFI verification
  876. [ ] (0x00800000) Kernel synchronization delay fuzzing
  877. [ ] (0x01000000) VM switch verification
  878. [ ] (0x02000000) Code integrity checks
  879. [X] Indicates flag is enabled
  880. Summary of All Verifier Statistics
  881. RaiseIrqls 0x0
  882. AcquireSpinLocks 0x0
  883. Synch Executions 0x0
  884. Trims 0x0
  885. Pool Allocations Attempted 0x0
  886. Pool Allocations Succeeded 0x0
  887. Pool Allocations Succeeded SpecialPool 0x0
  888. Pool Allocations With NO TAG 0x0
  889. Pool Allocations Failed 0x0
  890. Current paged pool allocations 0x0 for 00000000 bytes
  891. Peak paged pool allocations 0x0 for 00000000 bytes
  892. Current nonpaged pool allocations 0x0 for 00000000 bytes
  893. Peak nonpaged pool allocations 0x0 for 00000000 bytes
  894.  
  895. ========================== Dump #1: Extra #2 ===========================
  896.  
  897. 0: kd> !thread
  898. THREAD fffff8017d326600 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 0
  899. Not impersonating
  900. GetUlongFromAddress: unable to read from fffff8017d21143c
  901. Owning Process fffff8017d323a00 Image: System Process
  902. Attached Process ffffca8fbd8eb080 Image: System
  903. fffff78000000000: Unable to get shared data
  904. Wait Start TickCount 11489325
  905. Context Switch Count 101673835 IdealProcessor: 0
  906. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  907. UserTime 00:00:00.000
  908. KernelTime 00:00:00.000
  909. Win32 Start Address nt!KiIdleLoop (0xfffff8017c9e14f0)
  910. Stack Init fffff8018381cb90 Current fffff8018381cb20
  911. Base fffff8018381d000 Limit fffff80183816000 Call 0000000000000000
  912. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 5
  913. Child-SP RetAddr : Args to Child : Call Site
  914. fffff801`838478e8 fffff801`7cabe33a : 00000000`00000124 00000000`00000000 ffffca8f`c71a6028 00000000`be000000 : nt!KeBugCheckEx
  915. fffff801`838478f0 fffff801`7bcc15b0 : 00000000`00000000 ffffca8f`c71a6028 ffffca8f`c07b0390 ffffca8f`c71a6028 : nt!HalBugCheckSystem+0xca
  916. fffff801`83847930 fffff801`7cbc3b4e : 00000000`00000000 fffff801`838479d9 ffffca8f`c71a6028 ffffca8f`c07b0390 : PSHED!PshedBugCheckSystem+0x10
  917. fffff801`83847960 fffff801`7cabfc61 : ffffca8f`c0926070 ffffca8f`c0926070 ffffca8f`c07b03e0 ffffca8f`c07b0390 : nt!WheaReportHwError+0x46e
  918. fffff801`83847a40 fffff801`7cabffd3 : 00000000`00000000 ffffca8f`c07b03e0 ffffca8f`c07b0390 00000000`00000000 : nt!HalpMcaReportError+0xb1
  919. fffff801`83847bb0 fffff801`7cabfeb0 : ffffca8f`bd90bbe0 00000000`00000001 00000000`00000000 00000000`00000000 : nt!HalpMceHandlerCore+0xef
  920. fffff801`83847c00 fffff801`7cac0101 : 00000000`00000008 00000000`00000001 00000000`00000000 00000000`00000000 : nt!HalpMceHandler+0xe0
  921. fffff801`83847c40 fffff801`7cabf36b : 00000000`00000000 00000000`00000000 fffff801`83847ed0 00000000`00000000 : nt!HalpMceHandlerWithRendezvous+0xc9
  922. fffff801`83847c70 fffff801`7cac1bb5 : ffffca8f`bd90bbe0 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HalpHandleMachineCheck+0x5f
  923. fffff801`83847ca0 fffff801`7cb18889 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HalHandleMcheck+0x35
  924. fffff801`83847cd0 fffff801`7c9ecaba : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiHandleMcheck+0x9
  925. fffff801`83847d00 fffff801`7c9ec777 : fffff801`00000000 fffff801`7c9ec6ac 00000000`00000000 00000000`00000000 : nt!KxMcheckAbort+0x7a
  926. fffff801`83847e40 fffff801`7c8ccc55 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiMcheckAbort+0x277 (TrapFrame @ fffff801`83847e50)
  927. fffff801`8381c620 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!PpmIdleExecuteTransition+0xac5
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!