API tools faq
paste
Guest User

Untitled

a guest
Jul 19th, 2020
88
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 34.47 KB | None | 0 0
raw download clone embed print report
  1. ========================== AUTO DUMP ANALYZER ==========================
  2. Auto Dump Analyzer
  3. Version: 0.91
  4. Time to analyze file(s): 00 hours and 02 minutes and 18 seconds
  5.  
  6. ================================= BIOS =================================
  7. VENDOR: American Megatrends Inc.
  8. VERSION: P1.10
  9. DATE: 12/04/2015
  10.  
  11. ============================= MOTHERBOARD ==============================
  12. MANUFACTURER: ASRock
  13. PRODUCT: 970A-G/3.1
  14.  
  15. ================================= RAM ==================================
  16. Size Speed Manufacturer Part No.
  17. -------------- -------------- ------------------- ----------------------
  18. 8192MB 1600MHz Kingston KHX1600C10D3/8G
  19. 0MHz A1_Manufacturer1 Array1_PartNumber1
  20. 8192MB 1600MHz Kingston KHX1600C10D3/8G
  21. 0MHz A1_Manufacturer3 Array1_PartNumber3
  22.  
  23. ================================= CPU ==================================
  24. Processor Version: AMD FX-8320E Eight-Core Processor
  25. COUNT: 8
  26. MHZ: 3193
  27. VENDOR: AuthenticAMD
  28. FAMILY: 15
  29. MODEL: 2
  30. STEPPING: 0
  31.  
  32. ================================== OS ==================================
  33. Product: WinNt, suite: TerminalServer SingleUserTS
  34. BUILD_VERSION: 10.0.18362.959 (WinBuild.160101.0800)
  35. BUILD: 18362
  36. SERVICEPACK: 959
  37. PLATFORM_TYPE: x64
  38. NAME: Windows 10
  39. EDITION: Windows 10 WinNt TerminalServer SingleUserTS
  40. BUILD_TIMESTAMP: unknown_date
  41. BUILDDATESTAMP: 160101.0800
  42. BUILDLAB: WinBuild
  43. BUILDOSVER: 10.0.18362.959
  44.  
  45. =============================== DEBUGGER ===============================
  46. Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
  47. Copyright (c) Microsoft Corporation. All rights reserved.
  48.  
  49. =============================== COMMENTS ===============================
  50. * Information gathered from different dump files may be different. If
  51. Windows updates between two dump files, two or more OS versions may
  52. be shown above.
  53. * If the user updates the BIOS between dump files, two or more versions
  54. and dates may be shown above.
  55. * More RAM information can be found below in a full BIOS section.
  56.  
  57. ========================================================================
  58. ======================= Dump #1: ANALYZE VERBOSE =======================
  59. ====================== File: 071920-63500-01.dmp =======================
  60. ========================================================================
  61.  
  62. Mini Kernel Dump File: Only registers and stack trace are available
  63. Windows 10 Kernel Version 18362 MP (8 procs) Free x64
  64. Kernel base = 0xfffff802`7a600000 PsLoadedModuleList = 0xfffff802`7aa48190
  65. Debug session time: Sun Jul 19 05:31:23.968 2020 (UTC - 4:00)
  66. System Uptime: 3 days 17:41:00.740
  67.  
  68. BugCheck 1000007F, {8, ffffe6008aac40b0, be48049895, fffff8027a7c958a}
  69. Probably caused by : memory_corruption
  70. Followup: memory_corruption
  71.  
  72. UNEXPECTED_KERNEL_MODE_TRAP_M (1000007f)
  73. This means a trap occurred in kernel mode, and it's a trap of a kind
  74. that the kernel isn't allowed to have/catch (bound trap) or that
  75. is always instant death (double fault). The first number in the
  76. bugcheck params is the number of the trap (8 = double fault, etc)
  77. Consult an Intel x86 family manual to learn more about what these
  78. traps are. Here is a *portion* of those codes:
  79. If kv shows a taskGate
  80. use .tss on the part before the colon, then kv.
  81. Else if kv shows a trapframe
  82. use .trap on that value
  83. Else
  84. .trap on the appropriate frame will show where the trap was taken
  85. (on x86, this will be the ebp that goes with the procedure KiTrap)
  86. Endif
  87. kb will then show the corrected stack.
  88.  
  89. Arguments:
  90. Arg1: 0000000000000008, EXCEPTION_DOUBLE_FAULT
  91. Arg2: ffffe6008aac40b0
  92. Arg3: 000000be48049895
  93. Arg4: fffff8027a7c958a
  94.  
  95. Debugging Details:
  96. DUMP_CLASS: 1
  97. DUMP_QUALIFIER: 400
  98. DUMP_TYPE: 2
  99. DUMP_FILE_ATTRIBUTES: 0x8
  100. Kernel Generated Triage Dump
  101. BUGCHECK_STR: 0x7f_8
  102. BAD_STACK_POINTER: 000000be48049895
  103. CUSTOMER_CRASH_COUNT: 1
  104. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  105.  
  106. PROCESS_NAME: The Universim.
  107.  
  108. CURRENT_IRQL: 2
  109. UNALIGNED_STACK_POINTER: 000000be48049895
  110. LAST_CONTROL_TRANSFER: from 0000000000000000 to fffff8027a7c958a
  111. STACK_TEXT:
  112. 000000be`48049895 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!SwapContext+0x1aa
  113. STACK_COMMAND: kb
  114. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  115. fffff8027a7c9433-fffff8027a7c9434 2 bytes - nt!SwapContext+53
  116. [ 48 ff:4c 8b ]
  117. fffff8027a7c943a-fffff8027a7c943d 4 bytes - nt!SwapContext+5a (+0x07)
  118. [ 0f 1f 44 00:e8 e1 0c 8f ]
  119. fffff8027a7c986e-fffff8027a7c986f 2 bytes - nt!SwapContext+48e (+0x434)
  120. [ 48 ff:4c 8b ]
  121. fffff8027a7c9875-fffff8027a7c9878 4 bytes - nt!SwapContext+495 (+0x07)
  122. [ 0f 1f 44 00:e8 a6 08 8f ]
  123. fffff8027a7c9fe6-fffff8027a7c9fea 5 bytes - nt!tcpxsum+96 (+0x771)
  124. [ 41 ff e1 cc cc:e8 d5 a1 18 00 ]
  125. 17 errors : !nt (fffff8027a7c9433-fffff8027a7c9fea)
  126. MODULE_NAME: memory_corruption
  127.  
  128. IMAGE_NAME: memory_corruption
  129.  
  130. FOLLOWUP_NAME: memory_corruption
  131. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  132. MEMORY_CORRUPTOR: LARGE
  133. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  134. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  135. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  136. TARGET_TIME: 2020-07-19T09:31:23.000Z
  137. SUITE_MASK: 272
  138. PRODUCT_TYPE: 1
  139. USER_LCID: 0
  140. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  141. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  142. Followup: memory_corruption
  143.  
  144. ====================== Dump #1: 3RD PARTY DRIVERS ======================
  145.  
  146. Feb 18 2010 - amdiox64.sys - AMD IO driver
  147. Dec 04 2012 - amdide64.sys - AMD SATA Controller driver http://support.amd.com/
  148. Feb 17 2014 - usbfilter.sys - AMD USB Filter driver
  149. Mar 31 2015 - HWiNFO64A.SYS - HWiNFO AMD64 Kernel driver https://www.hwinfo.com/
  150. Apr 21 2016 - tap0901.sys - TAP-Win32 Virtual Private Network Driver 0901 (OpenVPN by OpenVPN Technologies) https://openvpn.net/
  151. Feb 09 2017 - tib.sys - Acronis Backup Archive (TIB) Explorer
  152. Feb 10 2017 - tib_mounter.sys - Acronis Backup Archive Mounter driver (Acronis International GmbH)
  153. May 14 2017 - ElbyCDIO.sys - ElbyCD Windows Input/Output driver http://www.elby.ch/
  154. Jun 28 2017 - volume_tracker.sys - Acronis Volume Tracker driver (Acronis International GmbH)
  155. Sep 11 2017 - rtwlanu.sys - Realtek WLAN USB NDIS Driver https://www.realtek.com/en/
  156. Nov 21 2017 - virtual_file.sys - Acronis Virtual File driver (Acronis International GmbH)
  157. Feb 21 2018 - fltsrv.sys - Acronis Storage Filter Management driver http://www.acronis.com/
  158. Jul 10 2018 - asmthub3.sys - ASMedia USB 3.0 Hub driver http://www.asmedia.com.tw/
  159. Jul 10 2018 - asmtxhci.sys - ASMedia USB 3.0 driver http://www.asmedia.com.tw/
  160. Jul 20 2018 - snapman.sys - Acronis Snapshots Manager from Acronis Snapshots Manager or Seagate DiscWizard
  161. Aug 03 2018 - file_tracker.sys - File Tracker Minifilter driver (Acronis International GmbH)
  162. Aug 09 2018 - dokan1.sys - Dokan Project driver (ISLOG)
  163. Apr 22 2019 - eubakup.sys - EaseUS Todo Backup
  164. Apr 22 2019 - EUBKMON.sys - EaseUS Todo Backup Kernel Monitor driver
  165. Apr 22 2019 - eudskacs.sys - EaseUS Todo Backup Disk Access driver
  166. Apr 22 2019 - EuFdDisk.sys - EaseUS Todo Backup Image Preview driver
  167. Jul 02 2019 - RTKVHD64.sys - Realtek Audio System driver https://www.realtek.com/en/
  168. Nov 15 2019 - AtihdWT6.sys - AMD High Definition Audio Function driver http://support.amd.com/
  169. Feb 12 2020 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  170. Feb 22 2020 - VClone.sys - Virtual Clone CD driver http://www.elby.ch/
  171. Apr 21 2020 - atikmdag.sys - ATI Radeon Kernel Mode driver
  172. Apr 21 2020 - atikmpag.sys - ATI video card driver
  173.  
  174. ================== Dump #1: 3RD PARTY DRIVERS (FULL) ===================
  175.  
  176. Image name: amdiox64.sys
  177. Search : https://www.google.com/search?q=amdiox64.sys
  178. ADA Info : AMD IO driver
  179. Timestamp : Thu Feb 18 2010
  180.  
  181. Image name: amdide64.sys
  182. Search : https://www.google.com/search?q=amdide64.sys
  183. ADA Info : AMD SATA Controller driver http://support.amd.com/
  184. Timestamp : Tue Dec 4 2012
  185.  
  186. Image name: usbfilter.sys
  187. Search : https://www.google.com/search?q=usbfilter.sys
  188. ADA Info : AMD USB Filter driver
  189. Timestamp : Mon Feb 17 2014
  190.  
  191. Image name: HWiNFO64A.SYS
  192. Search : https://www.google.com/search?q=HWiNFO64A.SYS
  193. ADA Info : HWiNFO AMD64 Kernel driver https://www.hwinfo.com/
  194. Timestamp : Tue Mar 31 2015
  195.  
  196. Image name: tap0901.sys
  197. Search : https://www.google.com/search?q=tap0901.sys
  198. ADA Info : TAP-Win32 Virtual Private Network Driver 0901 (OpenVPN by OpenVPN Technologies) https://openvpn.net/
  199. Timestamp : Thu Apr 21 2016
  200.  
  201. Image name: tib.sys
  202. Search : https://www.google.com/search?q=tib.sys
  203. ADA Info : Acronis Backup Archive (TIB) Explorer
  204. Timestamp : Thu Feb 9 2017
  205.  
  206. Image name: tib_mounter.sys
  207. Search : https://www.google.com/search?q=tib_mounter.sys
  208. ADA Info : Acronis Backup Archive Mounter driver (Acronis International GmbH)
  209. Timestamp : Fri Feb 10 2017
  210.  
  211. Image name: ElbyCDIO.sys
  212. Search : https://www.google.com/search?q=ElbyCDIO.sys
  213. ADA Info : ElbyCD Windows Input/Output driver http://www.elby.ch/
  214. Timestamp : Sun May 14 2017
  215.  
  216. Image name: volume_tracker.sys
  217. Search : https://www.google.com/search?q=volume_tracker.sys
  218. ADA Info : Acronis Volume Tracker driver (Acronis International GmbH)
  219. Timestamp : Wed Jun 28 2017
  220.  
  221. Image name: rtwlanu.sys
  222. Search : https://www.google.com/search?q=rtwlanu.sys
  223. ADA Info : Realtek WLAN USB NDIS Driver https://www.realtek.com/en/
  224. Timestamp : Mon Sep 11 2017
  225.  
  226. Image name: virtual_file.sys
  227. Search : https://www.google.com/search?q=virtual_file.sys
  228. ADA Info : Acronis Virtual File driver (Acronis International GmbH)
  229. Timestamp : Tue Nov 21 2017
  230.  
  231. Image name: fltsrv.sys
  232. Search : https://www.google.com/search?q=fltsrv.sys
  233. ADA Info : Acronis Storage Filter Management driver http://www.acronis.com/
  234. Timestamp : Wed Feb 21 2018
  235.  
  236. Image name: asmthub3.sys
  237. Search : https://www.google.com/search?q=asmthub3.sys
  238. ADA Info : ASMedia USB 3.0 Hub driver http://www.asmedia.com.tw/
  239. Timestamp : Tue Jul 10 2018
  240.  
  241. Image name: asmtxhci.sys
  242. Search : https://www.google.com/search?q=asmtxhci.sys
  243. ADA Info : ASMedia USB 3.0 driver http://www.asmedia.com.tw/
  244. Timestamp : Tue Jul 10 2018
  245.  
  246. Image name: snapman.sys
  247. Search : https://www.google.com/search?q=snapman.sys
  248. ADA Info : Acronis Snapshots Manager from Acronis Snapshots Manager or Seagate DiscWizard
  249. Timestamp : Fri Jul 20 2018
  250.  
  251. Image name: file_tracker.sys
  252. Search : https://www.google.com/search?q=file_tracker.sys
  253. ADA Info : File Tracker Minifilter driver (Acronis International GmbH)
  254. Timestamp : Fri Aug 3 2018
  255.  
  256. Image name: dokan1.sys
  257. Search : https://www.google.com/search?q=dokan1.sys
  258. ADA Info : Dokan Project driver (ISLOG)
  259. Timestamp : Thu Aug 9 2018
  260.  
  261. Image name: eubakup.sys
  262. Search : https://www.google.com/search?q=eubakup.sys
  263. ADA Info : EaseUS Todo Backup
  264. Timestamp : Mon Apr 22 2019
  265.  
  266. Image name: EUBKMON.sys
  267. Search : https://www.google.com/search?q=EUBKMON.sys
  268. ADA Info : EaseUS Todo Backup Kernel Monitor driver
  269. Timestamp : Mon Apr 22 2019
  270.  
  271. Image name: eudskacs.sys
  272. Search : https://www.google.com/search?q=eudskacs.sys
  273. ADA Info : EaseUS Todo Backup Disk Access driver
  274. Timestamp : Mon Apr 22 2019
  275.  
  276. Image name: EuFdDisk.sys
  277. Search : https://www.google.com/search?q=EuFdDisk.sys
  278. ADA Info : EaseUS Todo Backup Image Preview driver
  279. Timestamp : Mon Apr 22 2019
  280.  
  281. Image name: RTKVHD64.sys
  282. Search : https://www.google.com/search?q=RTKVHD64.sys
  283. ADA Info : Realtek Audio System driver https://www.realtek.com/en/
  284. Timestamp : Tue Jul 2 2019
  285.  
  286. Image name: AtihdWT6.sys
  287. Search : https://www.google.com/search?q=AtihdWT6.sys
  288. ADA Info : AMD High Definition Audio Function driver http://support.amd.com/
  289. Timestamp : Fri Nov 15 2019
  290.  
  291. Image name: rt640x64.sys
  292. Search : https://www.google.com/search?q=rt640x64.sys
  293. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  294. Timestamp : Wed Feb 12 2020
  295.  
  296. Image name: VClone.sys
  297. Search : https://www.google.com/search?q=VClone.sys
  298. ADA Info : Virtual Clone CD driver http://www.elby.ch/
  299. Timestamp : Sat Feb 22 2020
  300.  
  301. Image name: atikmdag.sys
  302. Search : https://www.google.com/search?q=atikmdag.sys
  303. ADA Info : ATI Radeon Kernel Mode driver
  304. Timestamp : Tue Apr 21 2020
  305.  
  306. Image name: atikmpag.sys
  307. Search : https://www.google.com/search?q=atikmpag.sys
  308. ADA Info : ATI video card driver
  309. Timestamp : Tue Apr 21 2020
  310.  
  311. ====================== Dump #1: MICROSOFT DRIVERS ======================
  312.  
  313. ACPI.sys ACPI Driver for NT (Microsoft)
  314. acpiex.sys ACPIEx Driver (Microsoft)
  315. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  316. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  317. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  318. ahcache.sys Application Compatibility Cache (Microsoft)
  319. amdppm.sys Processor Device Driver
  320. atapi.sys ATAPI IDE MiniPort driver (Microsoft)
  321. ataport.SYS ATAPI Driver Extension (Microsoft)
  322. bam.sys BAM Kernal driver (Microsoft)
  323. BasicDisplay.sys Basic Display driver (Microsoft)
  324. BasicRender.sys Basic Render driver (Microsoft)
  325. Beep.SYS BEEP driver (Microsoft)
  326. bindflt.sys Windows Bind Filter driver (Microsoft)
  327. BOOTVID.dll VGA Boot Driver (Microsoft)
  328. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  329. cdd.dll Canonical Display Driver (Microsoft)
  330. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  331. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  332. CI.dll Code Integrity Module (Microsoft)
  333. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  334. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  335. CLFS.SYS Common Log File System Driver (Microsoft)
  336. clipsp.sys CLIP Service (Microsoft)
  337. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  338. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  339. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  340. condrv.sys Console Driver (Microsoft)
  341. crashdmp.sys Crash Dump driver (Microsoft)
  342. csc.sys Windows Client Side Caching driver (Microsoft)
  343. dfsc.sys DFS Namespace Client Driver (Microsoft)
  344. disk.sys PnP Disk Driver (Microsoft)
  345. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  346. dump_atapi.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  347. dump_ataport.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  348. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  349. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  350. dxgmms2.sys DirectX Graphics MMS
  351. fastfat.SYS Fast FAT File System Driver (Microsoft)
  352. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  353. fileinfo.sys FileInfo Filter Driver (Microsoft)
  354. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  355. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  356. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  357. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  358. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  359. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  360. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  361. HIDCLASS.SYS Hid Class Library (Microsoft)
  362. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  363. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  364. HTTP.sys HTTP Protocol Stack (Microsoft)
  365. intelpep.sys Intel Power Engine Plugin (Microsoft)
  366. iorate.sys I/O rate control Filter (Microsoft)
  367. kbdclass.sys Keyboard Class Driver (Microsoft)
  368. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  369. kdcom.dll Kernel Debugger HW Extension DLL (Microsoft)
  370. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  371. ks.sys Kernal CSA Library (Microsoft)
  372. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  373. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  374. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  375. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  376. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  377. mcupdate.dll Media Center Update (Microsoft)
  378. mmcss.sys MMCSS Driver (Microsoft)
  379. monitor.sys Monitor Driver (Microsoft)
  380. mouclass.sys Mouse Class Driver (Microsoft)
  381. mouhid.sys HID Mouse Filter Driver (Microsoft)
  382. mountmgr.sys Mount Point Manager (Microsoft)
  383. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  384. mqac.sys Message Queuing Device driver (Microsoft)
  385. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  386. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  387. Msfs.SYS Mailslot driver (Microsoft)
  388. msisadrv.sys ISA Driver (Microsoft)
  389. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  390. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  391. mssecflt.sys Microsoft Security Events Component file system filter driver (Microsoft)
  392. mssmbios.sys System Management BIOS driver (Microsoft)
  393. mup.sys Multiple UNC Provider driver (Microsoft)
  394. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  395. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  396. ndisuio.sys NDIS User mode I/O driver (Microsoft)
  397. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  398. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  399. NDProxy.sys NDIS Proxy driver (Microsoft)
  400. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  401. netbios.sys NetBIOS Interface driver (Microsoft)
  402. netbt.sys MBT Transport driver (Microsoft)
  403. NETIO.SYS Network I/O Subsystem (Microsoft)
  404. Npfs.SYS NPFS driver (Microsoft)
  405. npsvctrig.sys Named pipe service triggers (Microsoft)
  406. nsiproxy.sys NSI Proxy driver (Microsoft)
  407. Ntfs.sys NT File System Driver (Microsoft)
  408. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  409. ntosext.sys NTOS Extension Host driver (Microsoft)
  410. Null.SYS NULL Driver (Microsoft)
  411. nwifi.sys NativeWiFi Miniport Driver (Microsoft)
  412. pacer.sys QoS Packet Scheduler (Microsoft)
  413. partmgr.sys Partition driver (Microsoft)
  414. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  415. PCIIDEX.SYS PCI IDE Bus driver file (Microsoft)
  416. pcw.sys Performance Counter Driver (Microsoft)
  417. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  418. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  419. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  420. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  421. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  422. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  423. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  424. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  425. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  426. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  427. rdpdr.sys RDP Device redirector (Microsoft)
  428. rdpvideominiport.sys RDP Video Miniport driver (Microsoft)
  429. rdyboost.sys ReadyBoost Driver (Microsoft)
  430. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  431. serenum.sys Serial Port Enumerator (Microsoft)
  432. serial.sys Serial Device Driver
  433. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  434. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  435. spaceport.sys Storage Spaces driver (Microsoft)
  436. srv2.sys Smb 2.0 Server driver (Microsoft)
  437. srvnet.sys Server Network driver (Microsoft)
  438. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  439. storqosflt.sys Storage QoS Filter driver (Microsoft)
  440. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  441. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  442. tcpip.sys TCP/IP Protocol driver (Microsoft)
  443. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  444. TDI.SYS TDI Wrapper driver (Microsoft)
  445. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  446. tm.sys Kernel Transaction Manager driver (Microsoft)
  447. tsusbhub.sys USB-Hub driver (Microsoft)
  448. ucx01000.sys USB Controller Extension (Microsoft)
  449. umbus.sys User-Mode Bus Enumerator (Microsoft)
  450. USBD.SYS Universal Serial Bus Driver (Microsoft)
  451. usbehci.sys EHCI eUSB Miniport Driver (Microsoft)
  452. usbhub.sys Default Hub Driver for USB (Microsoft)
  453. UsbHub3.sys USB3 HUB driver (Microsoft)
  454. usbohci.sys OHCI USB Miniport Driver (Microsoft)
  455. USBPORT.SYS USB 1.1 & 2.0 Port Driver (Microsoft)
  456. USBSTOR.SYS USB Mass Storage Class driver (Microsoft)
  457. USBXHCI.SYS USB XHCI driver (Microsoft)
  458. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  459. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  460. volmgr.sys Volume Manager Driver (Microsoft)
  461. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  462. volsnap.sys Volume Shadow Copy driver (Microsoft)
  463. volume.sys Volume driver (Microsoft)
  464. vwifibus.sys Virtual Wireless Bus driver (Microsoft)
  465. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  466. vwifimp.sys Virtual WiFi Miniport Driver (Microsoft)
  467. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  468. watchdog.sys Watchdog driver (Microsoft)
  469. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  470. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  471. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  472. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  473. wdiwifi.sys WDI Driver Framework driver (Microsoft)
  474. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  475. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  476. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  477. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  478. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  479. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  480. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  481. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  482. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  483. winquic.sys QUIC Transport Protocol driver (Microsoft)
  484. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  485. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  486. Wof.sys Windows Overlay Filter (Microsoft)
  487. WpdUpFltr.sys Portable Device Upper Class Filter driver (Microsoft)
  488. WppRecorder.sys WPP Trace Recorder (Microsoft)
  489. WUDFRd.sys Windows Driver Foundation - User-mode Driver Framework Reflector driver (Microsoft)
  490.  
  491. ====================== Dump #1: UNLOADED MODULES =======================
  492.  
  493. fffff802`76ef0000 fffff802`76f00000 hiber_atapor
  494. fffff802`76f00000 fffff802`76f0e000 hiber_atapi.
  495. fffff802`76f10000 fffff802`76f2e000 hiber_dumpfv
  496. fffff802`77df0000 fffff802`77e00000 hiber_atapor
  497. fffff802`76ec0000 fffff802`76ece000 hiber_atapi.
  498. fffff802`76ed0000 fffff802`76eee000 hiber_dumpfv
  499. fffff802`76f00000 fffff802`76f11000 MpKslDrv.sys
  500. fffff802`76f20000 fffff802`76f30000 hiber_atapor
  501. fffff802`76f30000 fffff802`76f3e000 hiber_atapi.
  502. fffff802`76f40000 fffff802`76f5e000 hiber_dumpfv
  503. fffff802`76ec0000 fffff802`76ed0000 hiber_atapor
  504. fffff802`76ed0000 fffff802`76ede000 hiber_atapi.
  505. fffff802`76ee0000 fffff802`76efe000 hiber_dumpfv
  506. fffff802`7ed80000 fffff802`7ed90000 dump_ataport
  507. fffff802`7eda0000 fffff802`7edae000 dump_atapi.s
  508. fffff802`7edd0000 fffff802`7edee000 dump_dumpfve
  509. fffff802`7d7c0000 fffff802`7d7dc000 EhStorClass.
  510. fffff802`7f650000 fffff802`7f66e000 dam.sys
  511. fffff802`7d3d0000 fffff802`7d3e1000 WdBoot.sys
  512. fffff802`7e5d0000 fffff802`7e5e1000 hwpolicy.sys
  513.  
  514. ====================== Dump #1: BIOS INFORMATION =======================
  515.  
  516. [SMBIOS Data Tables v2.7]
  517. [DMI Version - 0]
  518. [2.0 Calling Convention - No]
  519. [Table Size - 1611 bytes]
  520. [BIOS Information (Type 0) - Length 24 - Handle 0000h]
  521. Vendor American Megatrends Inc.
  522. BIOS Version P1.10
  523. BIOS Starting Address Segment f000
  524. BIOS Release Date 12/04/2015
  525. BIOS ROM Size 400000
  526. BIOS Characteristics
  527. 07: - PCI Supported
  528. 11: - Upgradeable FLASH BIOS
  529. 12: - BIOS Shadowing Supported
  530. 15: - CD-Boot Supported
  531. 16: - Selectable Boot Supported
  532. 17: - BIOS ROM Socketed
  533. 19: - EDD Supported
  534. 23: - 1.2MB Floppy Supported
  535. 24: - 720KB Floppy Supported
  536. 25: - 2.88MB Floppy Supported
  537. 26: - Print Screen Device Supported
  538. 27: - Keyboard Services Supported
  539. 28: - Serial Services Supported
  540. 29: - Printer Services Supported
  541. 32: - BIOS Vendor Reserved
  542. BIOS Characteristic Extensions
  543. 00: - ACPI Supported
  544. 01: - USB Legacy Supported
  545. 08: - BIOS Boot Specification Supported
  546. 10: - Specification Reserved
  547. 11: - Specification Reserved
  548. BIOS Major Revision 4
  549. BIOS Minor Revision 6
  550. EC Firmware Major Revision 255
  551. EC Firmware Minor Revision 255
  552. [System Information (Type 1) - Length 27 - Handle 0001h]
  553. UUID 00000000-0000-0000-0000-000000000000
  554. Wakeup Type Power Switch
  555. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  556. Manufacturer ASRock
  557. Product 970A-G/3.1
  558. Version
  559. Feature Flags 09h
  560. -1988315424: - -1988315376: - «Eºþ
  561. Location
  562. Chassis Handle 0003h
  563. Board Type 0ah - Processor/Memory Module
  564. Number of Child Handles 0
  565. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  566. Chassis Type Desktop
  567. Bootup State Safe
  568. Power Supply State Safe
  569. Thermal State Safe
  570. Security Status None
  571. OEM Defined 0
  572. Height 0U
  573. Number of Power Cords 1
  574. Number of Contained Elements 0
  575. Contained Element Size 0
  576. [Processor Information (Type 4) - Length 42 - Handle 0004h]
  577. Socket Designation CPUSocket
  578. Processor Type Central Processor
  579. Processor Family 02h - Unknown
  580. Processor Manufacturer AMD
  581. Processor ID 200f6000fffb8b17
  582. Processor Version AMD FX-8320E Eight-Core Processor
  583. Processor Voltage 8ch - 1.2V
  584. External Clock 200MHz
  585. Max Speed 3200MHz
  586. Current Speed 3200MHz
  587. Status Enabled Populated
  588. Processor Upgrade Specification Reserved
  589. L1 Cache Handle 0005h
  590. L2 Cache Handle 0006h
  591. L3 Cache Handle 0007h
  592. [Cache Information (Type 7) - Length 19 - Handle 0005h]
  593. Socket Designation L1-Cache
  594. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  595. Maximum Cache Size 0180h - 384K
  596. Installed Size 0180h - 384K
  597. Supported SRAM Type 0010h - Pipeline-Burst
  598. Current SRAM Type 0010h - Pipeline-Burst
  599. Cache Speed 1ns
  600. Error Correction Type Specification Reserved
  601. System Cache Type Unified
  602. Associativity 2-way Set-Associative
  603. [Cache Information (Type 7) - Length 19 - Handle 0006h]
  604. Socket Designation L2-Cache
  605. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  606. Maximum Cache Size 2000h - 8192K
  607. Installed Size 2000h - 8192K
  608. Supported SRAM Type 0010h - Pipeline-Burst
  609. Current SRAM Type 0010h - Pipeline-Burst
  610. Cache Speed 1ns
  611. Error Correction Type Specification Reserved
  612. System Cache Type Unified
  613. Associativity 16-way Set-Associative
  614. [Cache Information (Type 7) - Length 19 - Handle 0007h]
  615. Socket Designation L3-Cache
  616. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  617. Maximum Cache Size 2000h - 8192K
  618. Installed Size 2000h - 8192K
  619. Supported SRAM Type 0010h - Pipeline-Burst
  620. Current SRAM Type 0010h - Pipeline-Burst
  621. Cache Speed 1ns
  622. Error Correction Type Specification Reserved
  623. System Cache Type Unified
  624. Associativity Specification Reserved
  625. [OEM Strings (Type 11) - Length 5 - Handle 000dh]
  626. Number of Strings 1
  627. [Physical Memory Array (Type 16) - Length 23 - Handle 000eh]
  628. Location 03h - SystemBoard/Motherboard
  629. Use 03h - System Memory
  630. Memory Error Correction 03h - None
  631. Maximum Capacity 33554432KB
  632. Number of Memory Devices 4
  633. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 000fh]
  634. Starting Address 00000000h
  635. Ending Address 010fc000h
  636. Memory Array Handle 000eh
  637. Partition Width 255
  638. [Memory Device (Type 17) - Length 34 - Handle 0010h]
  639. Physical Memory Array Handle 000eh
  640. Total Width 64 bits
  641. Data Width 64 bits
  642. Size 8192MB
  643. Form Factor 09h - DIMM
  644. Device Locator A1_DIMM0
  645. Bank Locator A1_BANK0
  646. Memory Type 18h - Specification Reserved
  647. Type Detail 4080h - Synchronous
  648. Speed 1600MHz
  649. Manufacturer Kingston
  650. Part Number KHX1600C10D3/8G
  651. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0011h]
  652. Starting Address 00000000h
  653. Ending Address 007fffffh
  654. Memory Device Handle 0010h
  655. Mem Array Mapped Adr Handle 000fh
  656. Partition Row Position 01
  657. Interleave Position [None]
  658. Interleave Data Depth [None]
  659. [Memory Device (Type 17) - Length 34 - Handle 0012h]
  660. Physical Memory Array Handle 000eh
  661. Total Width 0 bits
  662. Data Width 64 bits
  663. Form Factor 09h - DIMM
  664. Device Locator A1_DIMM1
  665. Bank Locator A1_BANK1
  666. Memory Type 02h - Unknown
  667. Type Detail 0080h - Synchronous
  668. Speed 0MHz
  669. Manufacturer A1_Manufacturer1
  670. Part Number Array1_PartNumber1
  671. [Memory Device (Type 17) - Length 34 - Handle 0014h]
  672. Physical Memory Array Handle 000eh
  673. Total Width 64 bits
  674. Data Width 64 bits
  675. Size 8192MB
  676. Form Factor 09h - DIMM
  677. Device Locator A1_DIMM2
  678. Bank Locator A1_BANK2
  679. Memory Type 18h - Specification Reserved
  680. Type Detail 4080h - Synchronous
  681. Speed 1600MHz
  682. Manufacturer Kingston
  683. Part Number KHX1600C10D3/8G
  684. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0015h]
  685. Starting Address 00800000h
  686. Ending Address 00ffffffh
  687. Memory Device Handle 0014h
  688. Mem Array Mapped Adr Handle 000fh
  689. Partition Row Position 01
  690. Interleave Position [None]
  691. Interleave Data Depth [None]
  692. [Memory Device (Type 17) - Length 34 - Handle 0016h]
  693. Physical Memory Array Handle 000eh
  694. Total Width 0 bits
  695. Data Width 64 bits
  696. Form Factor 09h - DIMM
  697. Device Locator A1_DIMM3
  698. Bank Locator A1_BANK3
  699. Memory Type 02h - Unknown
  700. Type Detail 0080h - Synchronous
  701. Speed 0MHz
  702. Manufacturer A1_Manufacturer3
  703. Part Number Array1_PartNumber3
  704.  
  705. ========================== Dump #1: Extra #1 ===========================
  706.  
  707. 5: kd> !verifier
  708. fffff8027aa485c0: Unable to get verifier list.
  709.  
  710. ========================== Dump #1: Extra #2 ===========================
  711.  
  712. 5: kd> !thread
  713. THREAD ffffb88f3ffde080 Cid 0930.1814 Teb: 0000003b938fc000 Win32Thread: 0000000000000000 RUNNING on processor 5
  714. Not impersonating
  715. GetUlongFromAddress: unable to read from fffff8027aa2ca14
  716. Owning Process ffffb88f3ed130c0 Image: The Universim.
  717. Attached Process N/A Image: N/A
  718. fffff78000000000: Unable to get shared data
  719. Wait Start TickCount 20663087
  720. Context Switch Count 9898917 IdealProcessor: 2
  721. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  722. UserTime 00:00:00.000
  723. KernelTime 00:00:00.000
  724. Win32 Start Address 0x00007ff89e109070
  725. Stack Init ffff8b8e44427c90 Current 000000be48049895
  726. Base ffff8b8e44428000 Limit ffff8b8e44422000 Call 0000000000000000
  727. Priority 11 BasePriority 8 PriorityDecrement 2 IoPriority 2 PagePriority 5
  728. Child-SP RetAddr : Args to Child : Call Site
  729. 000000be`48049895 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!SwapContext+0x1aa
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!