Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ========================== AUTO DUMP ANALYZER ==========================
- Auto Dump Analyzer
- Version: 0.91
- Time to analyze file(s): 00 hours and 01 minutes and 01 seconds
- ================================= BIOS =================================
- VENDOR: American Megatrends Inc.
- VERSION: 4029
- DATE: 11/30/2018
- ============================= MOTHERBOARD ==============================
- MANUFACTURER: ASUSTeK COMPUTER INC.
- PRODUCT: PRIME A320M-K
- VERSION: Rev X.0x
- ================================= RAM ==================================
- Size Speed Manufacturer Part No.
- -------------- -------------- ------------------- ----------------------
- 8192MB 3000MHz G-Skill F4-3200C16-8GVKB
- 8192MB 3000MHz G-Skill F4-3200C16-8GVKB
- ================================= CPU ==================================
- Processor Version: AMD Ryzen 5 2600 Six-Core Processor
- COUNT: c
- MHZ: 3394
- VENDOR: AuthenticAMD
- FAMILY: 17
- MODEL: 8
- STEPPING: 2
- ================================== OS ==================================
- Product: WinNt, suite: TerminalServer SingleUserTS Personal
- Built by: 19041.1.amd64fre.vb_release.191206-1406
- BUILD_VERSION: 10.0.19041.330 (WinBuild.160101.0800)
- BUILD: 19041
- SERVICEPACK: 330
- PLATFORM_TYPE: x64
- NAME: Windows 10
- EDITION: Windows 10 WinNt TerminalServer SingleUserTS Personal
- BUILD_TIMESTAMP: unknown_date
- BUILDDATESTAMP: 160101.0800
- BUILDLAB: WinBuild
- BUILDOSVER: 10.0.19041.330
- =============================== DEBUGGER ===============================
- Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
- Copyright (c) Microsoft Corporation. All rights reserved.
- =============================== COMMENTS ===============================
- * Information gathered from different dump files may be different. If
- Windows updates between two dump files, two or more OS versions may
- be shown above.
- * If the user updates the BIOS between dump files, two or more versions
- and dates may be shown above.
- * More RAM information can be found below in a full BIOS section.
- ========================================================================
- ======================= Dump #1: ANALYZE VERBOSE =======================
- ======================= File: 070220-8031-01.dmp =======================
- ========================================================================
- Mini Kernel Dump File: Only registers and stack trace are available
- Windows 10 Kernel Version 19041 MP (12 procs) Free x64
- Kernel base = 0xfffff802`71000000 PsLoadedModuleList = 0xfffff802`71c2a2b0
- Debug session time: Thu Jul 2 16:46:41.380 2020 (UTC - 4:00)
- System Uptime: 0 days 0:38:06.041
- BugCheck 1E, {ffffffffc0000005, fffff8026f320386, 1, 558}
- *** WARNING: Unable to verify timestamp for win32k.sys
- *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
- Probably caused by : memory_corruption
- Followup: memory_corruption
- KMODE_EXCEPTION_NOT_HANDLED (1e)
- This is a very common bugcheck. Usually the exception address pinpoints
- the driver/function that caused the problem. Always note this address
- as well as the link date of the driver/image that contains this address.
- Arguments:
- Arg1: ffffffffc0000005, The exception code that was not handled
- Arg2: fffff8026f320386, The address that the exception occurred at
- Arg3: 0000000000000001, Parameter 0 of the exception
- Arg4: 0000000000000558, Parameter 1 of the exception
- Debugging Details:
- DUMP_CLASS: 1
- DUMP_QUALIFIER: 400
- DUMP_TYPE: 2
- WRITE_ADDRESS: fffff80271cfa388: Unable to get MiVisibleState
- 0000000000000558
- EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s.
- FAULTING_IP:
- HTTP!UlPrepare416Response+1de
- fffff802`6f320386 41c7465003000000 mov dword ptr [r14+50h],3
- EXCEPTION_PARAMETER1: 0000000000000001
- EXCEPTION_PARAMETER2: 0000000000000558
- BUGCHECK_STR: 0x1E_c0000005_W
- CUSTOMER_CRASH_COUNT: 1
- DEFAULT_BUCKET_ID: CODE_CORRUPTION
- PROCESS_NAME: System
- CURRENT_IRQL: 0
- EXCEPTION_RECORD: fffff48b20e14170 -- (.exr 0xfffff48b20e14170)
- ExceptionAddress: 0000000000000000
- ExceptionCode: ffffffff
- ExceptionFlags: ffffffff
- NumberParameters: 1
- Parameter[0]: 000002b6d2cb41e0
- TRAP_FRAME: fffff48b20e140f0 -- (.trap 0xfffff48b20e140f0)
- NOTE: The trap frame does not contain all registers.
- Some register values may be zeroed or incorrect.
- rax=ffff950000000028 rbx=0000000000000000 rcx=000000000186254a
- rdx=0000000000000001 rsi=0000000000000000 rdi=0000000000000000
- rip=fffff8026f320386 rsp=fffff48b20e14288 rbp=0000000000000007
- r8=0000000000000008 r9=0000000000000800 r10=ffff950000000028
- r11=0000007ffffffff8 r12=0000000000000000 r13=0000000000000000
- r14=0000000000000000 r15=0000000000000000
- iopl=0 nv up ei ng nz ac pe nc
- HTTP!UlPrepare416Response+0x1de:
- fffff802`6f320386 41c7465003000000 mov dword ptr [r14+50h],3 ds:00000000`00000050=????????
- Resetting default scope
- LAST_CONTROL_TRANSFER: from fffff8027142edf9 to fffff802713dda20
- STACK_TEXT:
- fffff48b`20e13848 fffff802`7142edf9 : 00000000`0000001e ffffffff`c0000005 fffff802`6f320386 00000000`00000001 : nt!KeBugCheckEx
- fffff48b`20e13850 fffff802`713efa6c : fffff48b`20e14170 00000000`00001000 fffff48b`20e140f0 ffff8000`00000000 : nt!KiDispatchException+0x1b3d59
- fffff48b`20e13f10 fffff802`713ebc03 : ffffe38f`981cba20 fffff48b`20e14170 ffffe38f`89637010 fffff802`7dba5256 : nt!KiExceptionDispatch+0x12c
- fffff48b`20e140f0 fffff802`6f320386 : 00000000`00000000 8a000004`106009e3 00000000`00000000 ffffbcf1`c7c4b1c0 : nt!KiPageFault+0x443
- fffff48b`20e14288 00000000`00000000 : fffff48b`20e143f8 ffffe38f`899e70a0 00000000`00000000 00000000`00000000 : HTTP!UlPrepare416Response+0x1de
- STACK_COMMAND: kb
- CHKIMG_EXTENSION: !chkimg -lo 50 -d !FLTMGR
- fffff8026efc2795-fffff8026efc2796 2 bytes - FLTMGR!FltpPreFsFilterOperation+115
- [ 48 ff:4c 8b ]
- fffff8026efc279c-fffff8026efc27a0 5 bytes - FLTMGR!FltpPreFsFilterOperation+11c (+0x07)
- [ 0f 1f 44 00 00:e8 6f 42 35 02 ]
- fffff8026efc27d8-fffff8026efc27d9 2 bytes - FLTMGR!FltpPreFsFilterOperation+158 (+0x3c)
- [ 48 ff:4c 8b ]
- fffff8026efc27df-fffff8026efc27e3 5 bytes - FLTMGR!FltpPreFsFilterOperation+15f (+0x07)
- [ 0f 1f 44 00 00:e8 ac 84 27 02 ]
- fffff8026efc48fa-fffff8026efc48fb 2 bytes - FLTMGR!FltpDispatch+ca (+0x211b)
- [ 48 ff:4c 8b ]
- fffff8026efc4901-fffff8026efc4905 5 bytes - FLTMGR!FltpDispatch+d1 (+0x07)
- [ 0f 1f 44 00 00:e8 ca 23 28 02 ]
- fffff8026efc5ed8-fffff8026efc5ed9 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1b8 (+0x15d7)
- [ 48 ff:4c 8b ]
- fffff8026efc5edf-fffff8026efc5ee3 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1bf (+0x07)
- [ 0f 1f 44 00 00:e8 9c e5 2a 02 ]
- fffff8026efc5ef1-fffff8026efc5ef2 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1d1 (+0x12)
- [ 48 ff:4c 8b ]
- fffff8026efc5ef8-fffff8026efc5efe 7 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1d8 (+0x07)
- [ 0f 1f 44 00 00 48 ff:e8 33 f6 25 02 4c 8b ]
- fffff8026efc5f04-fffff8026efc5f08 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1e4 (+0x0c)
- [ 0f 1f 44 00 00:e8 b7 59 33 02 ]
- fffff8026efc5f45-fffff8026efc5f46 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+225 (+0x41)
- [ 48 ff:4c 8b ]
- fffff8026efc5f4c-fffff8026efc5f50 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+22c (+0x07)
- [ 0f 1f 44 00 00:e8 9f c6 34 02 ]
- fffff8026efc8a63-fffff8026efc8a64 2 bytes - FLTMGR!FltpPostFsFilterOperation+43 (+0x2b17)
- [ 48 ff:4c 8b ]
- fffff8026efc8a6a-fffff8026efc8a6e 5 bytes - FLTMGR!FltpPostFsFilterOperation+4a (+0x07)
- [ 0f 1f 44 00 00:e8 21 22 27 02 ]
- fffff8026effb9a4-fffff8026effb9a5 2 bytes - FLTMGR!FltpCreate+f4
- [ 48 ff:4c 8b ]
- fffff8026effb9ab-fffff8026effb9af 5 bytes - FLTMGR!FltpCreate+fb (+0x07)
- [ 0f 1f 44 00 00:e8 30 37 22 02 ]
- fffff8026effcd05-fffff8026effcd06 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+35 (+0x135a)
- [ 48 ff:4c 8b ]
- fffff8026effcd0c-fffff8026effcd10 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+3c (+0x07)
- [ 0f 1f 44 00 00:e8 ff 5a 31 02 ]
- fffff8026effcd1a-fffff8026effcd1b 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+4a (+0x0e)
- [ 48 ff:4c 8b ]
- fffff8026effcd21-fffff8026effcd25 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+51 (+0x07)
- [ 0f 1f 44 00 00:e8 da 63 22 02 ]
- fffff8026effcd6a-fffff8026effcd6b 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+9a (+0x49)
- [ 48 ff:4c 8b ]
- fffff8026effcd71-fffff8026effcd77 7 bytes - FLTMGR!DeleteStreamListCtrlCallback+a1 (+0x07)
- [ 0f 1f 44 00 00 48 ff:e8 da 5b 22 02 4c 8b ]
- fffff8026effcd7d-fffff8026effcd81 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+ad (+0x0c)
- [ 0f 1f 44 00 00:e8 3e eb 2f 02 ]
- 91 errors : !FLTMGR (fffff8026efc2795-fffff8026effcd81)
- MODULE_NAME: memory_corruption
- IMAGE_NAME: memory_corruption
- FOLLOWUP_NAME: memory_corruption
- DEBUG_FLR_IMAGE_TIMESTAMP: 0
- MEMORY_CORRUPTOR: LARGE
- FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
- BUCKET_ID: MEMORY_CORRUPTION_LARGE
- PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
- TARGET_TIME: 2020-07-02T20:46:41.000Z
- SUITE_MASK: 784
- PRODUCT_TYPE: 1
- USER_LCID: 0
- FAILURE_ID_HASH_STRING: km:memory_corruption_large
- FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
- Followup: memory_corruption
- ====================== Dump #1: 3RD PARTY DRIVERS ======================
- Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
- Jun 03 2016 - RTKVHD64.sys - Realtek Audio System driver https://www.realtek.com/en/
- Jun 05 2017 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
- Apr 12 2018 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
- Mar 20 2019 - amdkmpfd.sys - AMD Kernel Miniport Filter driver
- May 24 2019 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
- Sep 29 2019 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
- Apr 30 2020 - amdlog.sys - AMD LOG driver
- May 15 2020 - atikmdag.sys - ATI Radeon Kernel Mode driver
- May 15 2020 - atikmpag.sys - ATI video card driver
- Jun 05 2020 - EasyAntiCheat.sys - EasyAntiCheat is a anti-cheat driver (EasyAntiCheat Oy.) https://support.easyanticheat.net/
- ================== Dump #1: 3RD PARTY DRIVERS (FULL) ===================
- Image path: \SystemRoot\System32\drivers\amdgpio3.sys
- Image name: amdgpio3.sys
- Search : https://www.google.com/search?q=amdgpio3.sys
- ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
- Timestamp : Mon Mar 14 2016
- Image path: \SystemRoot\system32\drivers\RTKVHD64.sys
- Image name: RTKVHD64.sys
- Search : https://www.google.com/search?q=RTKVHD64.sys
- ADA Info : Realtek Audio System driver https://www.realtek.com/en/
- Timestamp : Fri Jun 3 2016
- Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
- Image name: amdpsp.sys
- Search : https://www.google.com/search?q=amdpsp.sys
- ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
- Timestamp : Mon Jun 5 2017
- Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
- Image name: AMDPCIDev.sys
- Search : https://www.google.com/search?q=AMDPCIDev.sys
- ADA Info : Advanced Micro Devices PCI Device driver
- Timestamp : Thu Apr 12 2018
- Image path: \SystemRoot\System32\drivers\amdkmpfd.sys
- Image name: amdkmpfd.sys
- Search : https://www.google.com/search?q=amdkmpfd.sys
- ADA Info : AMD Kernel Miniport Filter driver
- Timestamp : Wed Mar 20 2019
- Mapped memory image file: C:\ProgramData\dbg\sym\rt640x64.sys\5CE7AF86ad000\rt640x64.sys
- Image path: \SystemRoot\System32\drivers\rt640x64.sys
- Image name: rt640x64.sys
- Search : https://www.google.com/search?q=rt640x64.sys
- ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
- Timestamp : Fri May 24 2019
- File version: 9.1.410.2015
- Product version: 9.1.410.2015
- File flags: 8 (Mask 3F) Private
- File OS: 40004 NT Win32
- File type: 3.6 Driver
- File date: 00000000.00000000
- CompanyName: Realtek
- ProductName: Realtek 8125/8136/8168/8169 PCI/PCIe Adapters
- InternalName: rt640x64.sys
- OriginalFilename: rt640x64.sys
- ProductVersion: 9.001.0410.2015
- FileVersion: 9.001.0410.2015
- FileDescription: Realtek 8125/8136/8168/8169 NDIS 6.40 64-bit Driver
- LegalCopyright: Copyright (C) 2019 Realtek Semiconductor Corporation. All Right Reserved.
- Image path: \SystemRoot\System32\drivers\amdgpio2.sys
- Image name: amdgpio2.sys
- Search : https://www.google.com/search?q=amdgpio2.sys
- ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
- Timestamp : Sun Sep 29 2019
- Image path: \SystemRoot\System32\drivers\amdlog.sys
- Image name: amdlog.sys
- Search : https://www.google.com/search?q=amdlog.sys
- ADA Info : AMD LOG driver
- Timestamp : Thu Apr 30 2020
- Image path: \SystemRoot\System32\DriverStore\FileRepository\u0355311.inf_amd64_183b8d63847c90cf\B355199\atikmdag.sys
- Image name: atikmdag.sys
- Search : https://www.google.com/search?q=atikmdag.sys
- ADA Info : ATI Radeon Kernel Mode driver
- Timestamp : Fri May 15 2020
- Image path: \SystemRoot\System32\DriverStore\FileRepository\u0355311.inf_amd64_183b8d63847c90cf\B355199\atikmpag.sys
- Image name: atikmpag.sys
- Search : https://www.google.com/search?q=atikmpag.sys
- ADA Info : ATI video card driver
- Timestamp : Fri May 15 2020
- Image path: \??\C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys
- Image name: EasyAntiCheat.sys
- Search : https://www.google.com/search?q=EasyAntiCheat.sys
- ADA Info : EasyAntiCheat is a anti-cheat driver (EasyAntiCheat Oy.) https://support.easyanticheat.net/
- Timestamp : Fri Jun 5 2020
- ====================== Dump #1: MICROSOFT DRIVERS ======================
- ACPI.sys ACPI Driver for NT (Microsoft)
- acpiex.sys ACPIEx Driver (Microsoft)
- afd.sys Ancillary Function Driver for WinSock (Microsoft)
- afunix.sys AF_UNIX Socket Provider driver (Microsoft)
- ahcache.sys Application Compatibility Cache (Microsoft)
- amdppm.sys Processor Device Driver
- bam.sys BAM Kernal driver (Microsoft)
- BasicDisplay.sys Basic Display driver (Microsoft)
- BasicRender.sys Basic Render driver (Microsoft)
- Beep.SYS BEEP driver (Microsoft)
- bindflt.sys Windows Bind Filter driver (Microsoft)
- BOOTVID.dll VGA Boot Driver (Microsoft)
- bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
- cdd.dll Canonical Display Driver (Microsoft)
- cdrom.sys SCSI CD-ROM Driver (Microsoft)
- CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
- CI.dll Code Integrity Module (Microsoft)
- CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
- CLASSPNP.SYS SCSI Class System Dll (Microsoft)
- cldflt.sys Cloud Files Mini Filter driver (Microsoft)
- CLFS.SYS Common Log File System Driver (Microsoft)
- clipsp.sys CLIP Service (Microsoft)
- cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
- cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
- CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
- condrv.sys Console Driver (Microsoft)
- crashdmp.sys Crash Dump driver (Microsoft)
- dfsc.sys DFS Namespace Client Driver (Microsoft)
- disk.sys PnP Disk Driver (Microsoft)
- drmk.sys Digital Rights Management (DRM) driver (Microsoft)
- dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
- dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
- dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
- dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
- dxgmms2.sys DirectX Graphics MMS
- EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
- fastfat.SYS Fast FAT File System Driver (Microsoft)
- filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
- fileinfo.sys FileInfo Filter Driver (Microsoft)
- FLTMGR.SYS Filesystem Filter Manager (Microsoft)
- Fs_Rec.sys File System Recognizer Driver (Microsoft)
- fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
- fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
- gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
- hal.dll Hardware Abstraction Layer DLL (Microsoft)
- HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
- HIDCLASS.SYS Hid Class Library (Microsoft)
- HIDPARSE.SYS Hid Parsing Library (Microsoft)
- hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
- HTTP.sys HTTP Protocol Stack (Microsoft)
- intelpep.sys Intel Power Engine Plugin (Microsoft)
- IntelTA.sys Intel Telemetry Driver
- iorate.sys I/O rate control Filter (Microsoft)
- kbdclass.sys Keyboard Class Driver (Microsoft)
- kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
- kd.dll Local Kernal Debugger (Microsoft)
- kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
- ks.sys Kernal CSA Library (Microsoft)
- ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
- ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
- ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
- lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
- luafv.sys LUA File Virtualization Filter Driver (Microsoft)
- mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
- mmcss.sys MMCSS Driver (Microsoft)
- monitor.sys Monitor Driver (Microsoft)
- mouclass.sys Mouse Class Driver (Microsoft)
- mouhid.sys HID Mouse Filter Driver (Microsoft)
- mountmgr.sys Mount Point Manager (Microsoft)
- mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
- mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
- mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
- mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
- Msfs.SYS Mailslot driver (Microsoft)
- msgpioclx.sys GPIO Class Extension Driver (Microsoft)
- msisadrv.sys ISA Driver (Microsoft)
- mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
- msquic.sys Windows QUIC Driver
- msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
- mssmbios.sys System Management BIOS driver (Microsoft)
- mup.sys Multiple UNC Provider driver (Microsoft)
- ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
- ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
- NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
- Ndu.sys Network Data Usage Monitoring driver (Microsoft)
- netbios.sys NetBIOS Interface driver (Microsoft)
- netbt.sys MBT Transport driver (Microsoft)
- NETIO.SYS Network I/O Subsystem (Microsoft)
- Npfs.SYS NPFS driver (Microsoft)
- npsvctrig.sys Named pipe service triggers (Microsoft)
- nsiproxy.sys NSI Proxy driver (Microsoft)
- Ntfs.sys NT File System Driver (Microsoft)
- ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
- ntosext.sys NTOS Extension Host driver (Microsoft)
- Null.SYS NULL Driver (Microsoft)
- pacer.sys QoS Packet Scheduler (Microsoft)
- partmgr.sys Partition driver (Microsoft)
- pci.sys NT Plug and Play PCI Enumerator (Microsoft)
- pcw.sys Performance Counter Driver (Microsoft)
- pdc.sys Power Dependency Coordinator Driver (Microsoft)
- peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
- portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
- PSHED.dll Platform Specific Hardware Error driver (Microsoft)
- rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
- rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
- rdyboost.sys ReadyBoost Driver (Microsoft)
- rspndr.sys Link-Layer Topology Responder driver (Microsoft)
- serenum.sys Serial Port Enumerator (Microsoft)
- serial.sys Serial Device Driver
- SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
- SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
- spaceport.sys Storage Spaces driver (Microsoft)
- srv2.sys Smb 2.0 Server driver (Microsoft)
- srvnet.sys Server Network driver (Microsoft)
- storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
- storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
- storqosflt.sys Storage QoS Filter driver (Microsoft)
- swenum.sys Plug and Play Software Device Enumerator (Microsoft)
- tbs.sys Export driver for kernel mode TPM API (Microsoft)
- tcpip.sys TCP/IP Protocol driver (Microsoft)
- tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
- TDI.SYS TDI Wrapper driver (Microsoft)
- tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
- tm.sys Kernel Transaction Manager driver (Microsoft)
- ucx01000.sys USB Controller Extension (Microsoft)
- UEFI.sys UEFI NT driver (Microsoft)
- umbus.sys User-Mode Bus Enumerator (Microsoft)
- usbaudio.sys USB Audio Class Driver (Microsoft)
- usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
- USBD.SYS Universal Serial Bus Driver (Microsoft)
- UsbHub3.sys USB3 HUB driver (Microsoft)
- USBXHCI.SYS USB XHCI driver (Microsoft)
- vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
- Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
- volmgr.sys Volume Manager Driver (Microsoft)
- volmgrx.sys Volume Manager Extension Driver (Microsoft)
- volsnap.sys Volume Shadow Copy driver (Microsoft)
- volume.sys Volume driver (Microsoft)
- vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
- watchdog.sys Watchdog driver (Microsoft)
- wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
- Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
- WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
- WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
- WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
- werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
- wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
- win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
- win32kbase.sys Base Win32k Kernel Driver (Microsoft)
- win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
- WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
- WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
- winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
- wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
- WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
- Wof.sys Windows Overlay Filter (Microsoft)
- WppRecorder.sys WPP Trace Recorder (Microsoft)
- ====================== Dump #1: UNLOADED MODULES =======================
- fffff802`7de70000 fffff802`7dec5000 WudfRd.sys
- fffff802`7d360000 fffff802`7d36f000 dump_storpor
- fffff802`7d3b0000 fffff802`7d3e3000 dump_storahc
- fffff802`7ce20000 fffff802`7ce3e000 dump_dumpfve
- fffff802`7dba0000 fffff802`7dbf5000 WudfRd.sys
- fffff802`7d7b0000 fffff802`7d7cc000 dam.sys
- fffff802`749a0000 fffff802`749b1000 WdBoot.sys
- fffff802`75a80000 fffff802`75a90000 hwpolicy.sys
- ====================== Dump #1: BIOS INFORMATION =======================
- [SMBIOS Data Tables v3.1]
- [DMI Version - 0]
- [2.0 Calling Convention - No]
- [Table Size - 2115 bytes]
- [BIOS Information (Type 0) - Length 26 - Handle 0000h]
- Vendor American Megatrends Inc.
- BIOS Version 4029
- BIOS Starting Address Segment f000
- BIOS Release Date 11/30/2018
- BIOS ROM Size 1000000
- BIOS Characteristics
- 07: - PCI Supported
- 10: - APM Supported
- 11: - Upgradeable FLASH BIOS
- 12: - BIOS Shadowing Supported
- 15: - CD-Boot Supported
- 16: - Selectable Boot Supported
- 17: - BIOS ROM Socketed
- 19: - EDD Supported
- 23: - 1.2MB Floppy Supported
- 24: - 720KB Floppy Supported
- 25: - 2.88MB Floppy Supported
- 26: - Print Screen Device Supported
- 27: - Keyboard Services Supported
- 28: - Serial Services Supported
- 29: - Printer Services Supported
- 32: - BIOS Vendor Reserved
- BIOS Characteristic Extensions
- 00: - ACPI Supported
- 01: - USB Legacy Supported
- 08: - BIOS Boot Specification Supported
- 10: - Specification Reserved
- 11: - Specification Reserved
- BIOS Major Revision 5
- BIOS Minor Revision 13
- EC Firmware Major Revision 255
- EC Firmware Minor Revision 255
- [System Information (Type 1) - Length 27 - Handle 0001h]
- Manufacturer System manufacturer
- Product Name System Product Name
- Version System Version
- UUID 00000000-0000-0000-0000-000000000000
- Wakeup Type Power Switch
- SKUNumber SKU
- [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
- Manufacturer ASUSTeK COMPUTER INC.
- Product PRIME A320M-K
- Version Rev X.0x
- Feature Flags 09h
- -388188448: - -388188400: - Γ·7!ΓΌ
- Location Default string
- Chassis Handle 0003h
- Board Type 0ah - Processor/Memory Module
- Number of Child Handles 0
- [System Enclosure (Type 3) - Length 22 - Handle 0003h]
- Manufacturer Default string
- Chassis Type Desktop
- Version Default string
- Bootup State Safe
- Power Supply State Safe
- Thermal State Safe
- Security Status None
- OEM Defined 0
- Height 0U
- Number of Power Cords 1
- Number of Contained Elements 0
- Contained Element Size 3
- [Onboard Devices Information (Type 10) - Length 6 - Handle 001ch]
- Number of Devices 1
- 01: Type Video [enabled]
- [OEM Strings (Type 11) - Length 5 - Handle 001dh]
- Number of Strings 8
- 1 Default string
- 2 Default string
- 3 MIRINDA
- 4 Default string
- 5 FFFFFFFFFFFFF
- 6 FFFFFFFFFFFFF
- 7 FFFFFFFFFFFFF
- 8 Default string
- [System Configuration Options (Type 12) - Length 5 - Handle 001eh]
- [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0022h]
- [Physical Memory Array (Type 16) - Length 23 - Handle 0023h]
- Location 03h - SystemBoard/Motherboard
- Use 03h - System Memory
- Memory Error Correction 03h - None
- Maximum Capacity 268435456KB
- Memory Error Inf Handle 0022h
- Number of Memory Devices 2
- [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0024h]
- Starting Address 00000000h
- Ending Address 00ffffffh
- Memory Array Handle 0023h
- Partition Width 02
- [Cache Information (Type 7) - Length 19 - Handle 0025h]
- Socket Designation L1 - Cache
- Cache Configuration 0180h - WB Enabled Int NonSocketed L1
- Maximum Cache Size 0240h - 576K
- Installed Size 0240h - 576K
- Supported SRAM Type 0010h - Pipeline-Burst
- Current SRAM Type 0010h - Pipeline-Burst
- Cache Speed 1ns
- Error Correction Type Specification Reserved
- System Cache Type Unified
- Associativity 8-way Set-Associative
- [Cache Information (Type 7) - Length 19 - Handle 0026h]
- Socket Designation L2 - Cache
- Cache Configuration 0181h - WB Enabled Int NonSocketed L2
- Maximum Cache Size 0c00h - 3072K
- Installed Size 0c00h - 3072K
- Supported SRAM Type 0010h - Pipeline-Burst
- Current SRAM Type 0010h - Pipeline-Burst
- Cache Speed 1ns
- Error Correction Type Specification Reserved
- System Cache Type Unified
- Associativity 8-way Set-Associative
- [Cache Information (Type 7) - Length 19 - Handle 0027h]
- Socket Designation L3 - Cache
- Cache Configuration 0182h - WB Enabled Int NonSocketed L3
- Maximum Cache Size 4000h - 16384K
- Installed Size 4000h - 16384K
- Supported SRAM Type 0010h - Pipeline-Burst
- Current SRAM Type 0010h - Pipeline-Burst
- Cache Speed 1ns
- Error Correction Type Specification Reserved
- System Cache Type Unified
- Associativity 16-way Set-Associative
- [Processor Information (Type 4) - Length 48 - Handle 0028h]
- Socket Designation AM4
- Processor Type Central Processor
- Processor Family 6bh - Specification Reserved
- Processor Manufacturer Advanced Micro Devices, Inc.
- Processor ID 820f8000fffb8b17
- Processor Version AMD Ryzen 5 2600 Six-Core Processor
- Processor Voltage 8bh - 1.1V
- External Clock 100MHz
- Max Speed 3900MHz
- Current Speed 3400MHz
- Status Enabled Populated
- Processor Upgrade Specification Reserved
- L1 Cache Handle 0025h
- L2 Cache Handle 0026h
- L3 Cache Handle 0027h
- Part Number Unknown
- [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0029h]
- [Memory Device (Type 17) - Length 40 - Handle 002ah]
- Physical Memory Array Handle 0023h
- Memory Error Info Handle 0029h
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Locator DIMM_A1
- Bank Locator BANK 0
- Memory Type 1ah - Specification Reserved
- Type Detail 4080h - Synchronous
- Speed 3000MHz
- Manufacturer G-Skill
- Part Number F4-3200C16-8GVKB
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 002bh]
- Starting Address 00000000h
- Ending Address 00ffffffh
- Memory Device Handle 002ah
- Mem Array Mapped Adr Handle 0024h
- [32Bit Memory Error Information (Type 18) - Length 23 - Handle 002ch]
- [Memory Device (Type 17) - Length 40 - Handle 002dh]
- Physical Memory Array Handle 0023h
- Memory Error Info Handle 002ch
- Total Width 64 bits
- Data Width 64 bits
- Size 8192MB
- Form Factor 09h - DIMM
- Device Locator DIMM_B1
- Bank Locator BANK 1
- Memory Type 1ah - Specification Reserved
- Type Detail 4080h - Synchronous
- Speed 3000MHz
- Manufacturer G-Skill
- Part Number F4-3200C16-8GVKB
- [Memory Device Mapped Address (Type 20) - Length 35 - Handle 002eh]
- Starting Address 00000000h
- Ending Address 00ffffffh
- Memory Device Handle 002dh
- Mem Array Mapped Adr Handle 0024h
- ========================== Dump #1: Extra #1 ===========================
- 0: kd> !verifier
- Verify Flags Level 0x00000000
- STANDARD FLAGS:
- [X] (0x00000000) Automatic Checks
- [ ] (0x00000001) Special pool
- [ ] (0x00000002) Force IRQL checking
- [ ] (0x00000008) Pool tracking
- [ ] (0x00000010) I/O verification
- [ ] (0x00000020) Deadlock detection
- [ ] (0x00000080) DMA checking
- [ ] (0x00000100) Security checks
- [ ] (0x00000800) Miscellaneous checks
- [ ] (0x00020000) DDI compliance checking
- ADDITIONAL FLAGS:
- [ ] (0x00000004) Randomized low resources simulation
- [ ] (0x00000200) Force pending I/O requests
- [ ] (0x00000400) IRP logging
- [ ] (0x00002000) Invariant MDL checking for stack
- [ ] (0x00004000) Invariant MDL checking for driver
- [ ] (0x00008000) Power framework delay fuzzing
- [ ] (0x00010000) Port/miniport interface checking
- [ ] (0x00040000) Systematic low resources simulation
- [ ] (0x00080000) DDI compliance checking (additional)
- [ ] (0x00200000) NDIS/WIFI verification
- [ ] (0x00800000) Kernel synchronization delay fuzzing
- [ ] (0x01000000) VM switch verification
- [ ] (0x02000000) Code integrity checks
- [X] Indicates flag is enabled
- Summary of All Verifier Statistics
- RaiseIrqls 0x0
- AcquireSpinLocks 0x0
- Synch Executions 0x0
- Trims 0x0
- Pool Allocations Attempted 0x0
- Pool Allocations Succeeded 0x0
- Pool Allocations Succeeded SpecialPool 0x0
- Pool Allocations With NO TAG 0x0
- Pool Allocations Failed 0x0
- Current paged pool allocations 0x0 for 00000000 bytes
- Peak paged pool allocations 0x0 for 00000000 bytes
- Current nonpaged pool allocations 0x0 for 00000000 bytes
- Peak nonpaged pool allocations 0x0 for 00000000 bytes
- ========================== Dump #1: Extra #2 ===========================
- 0: kd> !thread
- THREAD ffffe38f89a2a080 Cid 0004.01d0 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 0
- Not impersonating
- GetUlongFromAddress: unable to read from fffff80271c1143c
- Owning Process ffffe38f872ad180 Image: System
- Attached Process N/A Image: N/A
- fffff78000000000: Unable to get shared data
- Wait Start TickCount 146305 Ticks: 1
- Context Switch Count 49672 IdealProcessor: 4
- ReadMemory error: Cannot get nt!KeMaximumIncrement value.
- UserTime 00:00:00.000
- KernelTime 00:00:00.000
- Win32 Start Address nt!MiMappedPageWriter (0xfffff802713a0780)
- Stack Init fffff48b20e14c90 Current fffff48b20e14390
- Base fffff48b20e15000 Limit fffff48b20e0f000 Call 0000000000000000
- Priority 18 BasePriority 8 PriorityDecrement 0 IoPriority 2 PagePriority 5
- Child-SP RetAddr : Args to Child : Call Site
- fffff48b`20e13848 fffff802`7142edf9 : 00000000`0000001e ffffffff`c0000005 fffff802`6f320386 00000000`00000001 : nt!KeBugCheckEx
- fffff48b`20e13850 fffff802`713efa6c : fffff48b`20e14170 00000000`00001000 fffff48b`20e140f0 ffff8000`00000000 : nt!KiDispatchException+0x1b3d59
- fffff48b`20e13f10 fffff802`713ebc03 : ffffe38f`981cba20 fffff48b`20e14170 ffffe38f`89637010 fffff802`7dba5256 : nt!KiExceptionDispatch+0x12c
- fffff48b`20e140f0 fffff802`6f320386 : 00000000`00000000 8a000004`106009e3 00000000`00000000 ffffbcf1`c7c4b1c0 : nt!KiPageFault+0x443 (TrapFrame @ fffff48b`20e140f0)
- fffff48b`20e14288 00000000`00000000 : fffff48b`20e143f8 ffffe38f`899e70a0 00000000`00000000 00000000`00000000 : HTTP!UlPrepare416Response+0x1de
Add Comment
Please, Sign In to add comment