API tools faq
paste
Guest User

Untitled

a guest
Jul 3rd, 2020
68
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 36.17 KB | None | 0 0
raw download clone embed print report
  1. ========================== AUTO DUMP ANALYZER ==========================
  2. Auto Dump Analyzer
  3. Version: 0.91
  4. Time to analyze file(s): 00 hours and 01 minutes and 01 seconds
  5.  
  6. ================================= BIOS =================================
  7. VENDOR: American Megatrends Inc.
  8. VERSION: 4029
  9. DATE: 11/30/2018
  10.  
  11. ============================= MOTHERBOARD ==============================
  12. MANUFACTURER: ASUSTeK COMPUTER INC.
  13. PRODUCT: PRIME A320M-K
  14. VERSION: Rev X.0x
  15.  
  16. ================================= RAM ==================================
  17. Size Speed Manufacturer Part No.
  18. -------------- -------------- ------------------- ----------------------
  19. 8192MB 3000MHz G-Skill F4-3200C16-8GVKB
  20. 8192MB 3000MHz G-Skill F4-3200C16-8GVKB
  21.  
  22. ================================= CPU ==================================
  23. Processor Version: AMD Ryzen 5 2600 Six-Core Processor
  24. COUNT: c
  25. MHZ: 3394
  26. VENDOR: AuthenticAMD
  27. FAMILY: 17
  28. MODEL: 8
  29. STEPPING: 2
  30.  
  31. ================================== OS ==================================
  32. Product: WinNt, suite: TerminalServer SingleUserTS Personal
  33. Built by: 19041.1.amd64fre.vb_release.191206-1406
  34. BUILD_VERSION: 10.0.19041.330 (WinBuild.160101.0800)
  35. BUILD: 19041
  36. SERVICEPACK: 330
  37. PLATFORM_TYPE: x64
  38. NAME: Windows 10
  39. EDITION: Windows 10 WinNt TerminalServer SingleUserTS Personal
  40. BUILD_TIMESTAMP: unknown_date
  41. BUILDDATESTAMP: 160101.0800
  42. BUILDLAB: WinBuild
  43. BUILDOSVER: 10.0.19041.330
  44.  
  45. =============================== DEBUGGER ===============================
  46. Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
  47. Copyright (c) Microsoft Corporation. All rights reserved.
  48.  
  49. =============================== COMMENTS ===============================
  50. * Information gathered from different dump files may be different. If
  51. Windows updates between two dump files, two or more OS versions may
  52. be shown above.
  53. * If the user updates the BIOS between dump files, two or more versions
  54. and dates may be shown above.
  55. * More RAM information can be found below in a full BIOS section.
  56.  
  57. ========================================================================
  58. ======================= Dump #1: ANALYZE VERBOSE =======================
  59. ======================= File: 070220-8031-01.dmp =======================
  60. ========================================================================
  61.  
  62. Mini Kernel Dump File: Only registers and stack trace are available
  63. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  64. Kernel base = 0xfffff802`71000000 PsLoadedModuleList = 0xfffff802`71c2a2b0
  65. Debug session time: Thu Jul 2 16:46:41.380 2020 (UTC - 4:00)
  66. System Uptime: 0 days 0:38:06.041
  67.  
  68. BugCheck 1E, {ffffffffc0000005, fffff8026f320386, 1, 558}
  69. *** WARNING: Unable to verify timestamp for win32k.sys
  70. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  71. Probably caused by : memory_corruption
  72. Followup: memory_corruption
  73.  
  74. KMODE_EXCEPTION_NOT_HANDLED (1e)
  75. This is a very common bugcheck. Usually the exception address pinpoints
  76. the driver/function that caused the problem. Always note this address
  77. as well as the link date of the driver/image that contains this address.
  78.  
  79. Arguments:
  80. Arg1: ffffffffc0000005, The exception code that was not handled
  81. Arg2: fffff8026f320386, The address that the exception occurred at
  82. Arg3: 0000000000000001, Parameter 0 of the exception
  83. Arg4: 0000000000000558, Parameter 1 of the exception
  84.  
  85. Debugging Details:
  86. DUMP_CLASS: 1
  87. DUMP_QUALIFIER: 400
  88. DUMP_TYPE: 2
  89. WRITE_ADDRESS: fffff80271cfa388: Unable to get MiVisibleState
  90. 0000000000000558
  91. EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s.
  92. FAULTING_IP:
  93. HTTP!UlPrepare416Response+1de
  94. fffff802`6f320386 41c7465003000000 mov dword ptr [r14+50h],3
  95. EXCEPTION_PARAMETER1: 0000000000000001
  96. EXCEPTION_PARAMETER2: 0000000000000558
  97. BUGCHECK_STR: 0x1E_c0000005_W
  98. CUSTOMER_CRASH_COUNT: 1
  99. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  100.  
  101. PROCESS_NAME: System
  102.  
  103. CURRENT_IRQL: 0
  104. EXCEPTION_RECORD: fffff48b20e14170 -- (.exr 0xfffff48b20e14170)
  105. ExceptionAddress: 0000000000000000
  106. ExceptionCode: ffffffff
  107. ExceptionFlags: ffffffff
  108. NumberParameters: 1
  109. Parameter[0]: 000002b6d2cb41e0
  110. TRAP_FRAME: fffff48b20e140f0 -- (.trap 0xfffff48b20e140f0)
  111. NOTE: The trap frame does not contain all registers.
  112. Some register values may be zeroed or incorrect.
  113. rax=ffff950000000028 rbx=0000000000000000 rcx=000000000186254a
  114. rdx=0000000000000001 rsi=0000000000000000 rdi=0000000000000000
  115. rip=fffff8026f320386 rsp=fffff48b20e14288 rbp=0000000000000007
  116. r8=0000000000000008 r9=0000000000000800 r10=ffff950000000028
  117. r11=0000007ffffffff8 r12=0000000000000000 r13=0000000000000000
  118. r14=0000000000000000 r15=0000000000000000
  119. iopl=0 nv up ei ng nz ac pe nc
  120. HTTP!UlPrepare416Response+0x1de:
  121. fffff802`6f320386 41c7465003000000 mov dword ptr [r14+50h],3 ds:00000000`00000050=????????
  122. Resetting default scope
  123. LAST_CONTROL_TRANSFER: from fffff8027142edf9 to fffff802713dda20
  124. STACK_TEXT:
  125. fffff48b`20e13848 fffff802`7142edf9 : 00000000`0000001e ffffffff`c0000005 fffff802`6f320386 00000000`00000001 : nt!KeBugCheckEx
  126. fffff48b`20e13850 fffff802`713efa6c : fffff48b`20e14170 00000000`00001000 fffff48b`20e140f0 ffff8000`00000000 : nt!KiDispatchException+0x1b3d59
  127. fffff48b`20e13f10 fffff802`713ebc03 : ffffe38f`981cba20 fffff48b`20e14170 ffffe38f`89637010 fffff802`7dba5256 : nt!KiExceptionDispatch+0x12c
  128. fffff48b`20e140f0 fffff802`6f320386 : 00000000`00000000 8a000004`106009e3 00000000`00000000 ffffbcf1`c7c4b1c0 : nt!KiPageFault+0x443
  129. fffff48b`20e14288 00000000`00000000 : fffff48b`20e143f8 ffffe38f`899e70a0 00000000`00000000 00000000`00000000 : HTTP!UlPrepare416Response+0x1de
  130. STACK_COMMAND: kb
  131. CHKIMG_EXTENSION: !chkimg -lo 50 -d !FLTMGR
  132. fffff8026efc2795-fffff8026efc2796 2 bytes - FLTMGR!FltpPreFsFilterOperation+115
  133. [ 48 ff:4c 8b ]
  134. fffff8026efc279c-fffff8026efc27a0 5 bytes - FLTMGR!FltpPreFsFilterOperation+11c (+0x07)
  135. [ 0f 1f 44 00 00:e8 6f 42 35 02 ]
  136. fffff8026efc27d8-fffff8026efc27d9 2 bytes - FLTMGR!FltpPreFsFilterOperation+158 (+0x3c)
  137. [ 48 ff:4c 8b ]
  138. fffff8026efc27df-fffff8026efc27e3 5 bytes - FLTMGR!FltpPreFsFilterOperation+15f (+0x07)
  139. [ 0f 1f 44 00 00:e8 ac 84 27 02 ]
  140. fffff8026efc48fa-fffff8026efc48fb 2 bytes - FLTMGR!FltpDispatch+ca (+0x211b)
  141. [ 48 ff:4c 8b ]
  142. fffff8026efc4901-fffff8026efc4905 5 bytes - FLTMGR!FltpDispatch+d1 (+0x07)
  143. [ 0f 1f 44 00 00:e8 ca 23 28 02 ]
  144. fffff8026efc5ed8-fffff8026efc5ed9 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1b8 (+0x15d7)
  145. [ 48 ff:4c 8b ]
  146. fffff8026efc5edf-fffff8026efc5ee3 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1bf (+0x07)
  147. [ 0f 1f 44 00 00:e8 9c e5 2a 02 ]
  148. fffff8026efc5ef1-fffff8026efc5ef2 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1d1 (+0x12)
  149. [ 48 ff:4c 8b ]
  150. fffff8026efc5ef8-fffff8026efc5efe 7 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1d8 (+0x07)
  151. [ 0f 1f 44 00 00 48 ff:e8 33 f6 25 02 4c 8b ]
  152. fffff8026efc5f04-fffff8026efc5f08 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+1e4 (+0x0c)
  153. [ 0f 1f 44 00 00:e8 b7 59 33 02 ]
  154. fffff8026efc5f45-fffff8026efc5f46 2 bytes - FLTMGR!FltpPerformPreCallbacksWorker+225 (+0x41)
  155. [ 48 ff:4c 8b ]
  156. fffff8026efc5f4c-fffff8026efc5f50 5 bytes - FLTMGR!FltpPerformPreCallbacksWorker+22c (+0x07)
  157. [ 0f 1f 44 00 00:e8 9f c6 34 02 ]
  158. fffff8026efc8a63-fffff8026efc8a64 2 bytes - FLTMGR!FltpPostFsFilterOperation+43 (+0x2b17)
  159. [ 48 ff:4c 8b ]
  160. fffff8026efc8a6a-fffff8026efc8a6e 5 bytes - FLTMGR!FltpPostFsFilterOperation+4a (+0x07)
  161. [ 0f 1f 44 00 00:e8 21 22 27 02 ]
  162. fffff8026effb9a4-fffff8026effb9a5 2 bytes - FLTMGR!FltpCreate+f4
  163. [ 48 ff:4c 8b ]
  164. fffff8026effb9ab-fffff8026effb9af 5 bytes - FLTMGR!FltpCreate+fb (+0x07)
  165. [ 0f 1f 44 00 00:e8 30 37 22 02 ]
  166. fffff8026effcd05-fffff8026effcd06 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+35 (+0x135a)
  167. [ 48 ff:4c 8b ]
  168. fffff8026effcd0c-fffff8026effcd10 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+3c (+0x07)
  169. [ 0f 1f 44 00 00:e8 ff 5a 31 02 ]
  170. fffff8026effcd1a-fffff8026effcd1b 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+4a (+0x0e)
  171. [ 48 ff:4c 8b ]
  172. fffff8026effcd21-fffff8026effcd25 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+51 (+0x07)
  173. [ 0f 1f 44 00 00:e8 da 63 22 02 ]
  174. fffff8026effcd6a-fffff8026effcd6b 2 bytes - FLTMGR!DeleteStreamListCtrlCallback+9a (+0x49)
  175. [ 48 ff:4c 8b ]
  176. fffff8026effcd71-fffff8026effcd77 7 bytes - FLTMGR!DeleteStreamListCtrlCallback+a1 (+0x07)
  177. [ 0f 1f 44 00 00 48 ff:e8 da 5b 22 02 4c 8b ]
  178. fffff8026effcd7d-fffff8026effcd81 5 bytes - FLTMGR!DeleteStreamListCtrlCallback+ad (+0x0c)
  179. [ 0f 1f 44 00 00:e8 3e eb 2f 02 ]
  180. 91 errors : !FLTMGR (fffff8026efc2795-fffff8026effcd81)
  181. MODULE_NAME: memory_corruption
  182.  
  183. IMAGE_NAME: memory_corruption
  184.  
  185. FOLLOWUP_NAME: memory_corruption
  186. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  187. MEMORY_CORRUPTOR: LARGE
  188. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  189. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  190. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  191. TARGET_TIME: 2020-07-02T20:46:41.000Z
  192. SUITE_MASK: 784
  193. PRODUCT_TYPE: 1
  194. USER_LCID: 0
  195. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  196. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  197. Followup: memory_corruption
  198.  
  199. ====================== Dump #1: 3RD PARTY DRIVERS ======================
  200.  
  201. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  202. Jun 03 2016 - RTKVHD64.sys - Realtek Audio System driver https://www.realtek.com/en/
  203. Jun 05 2017 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  204. Apr 12 2018 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  205. Mar 20 2019 - amdkmpfd.sys - AMD Kernel Miniport Filter driver
  206. May 24 2019 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  207. Sep 29 2019 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  208. Apr 30 2020 - amdlog.sys - AMD LOG driver
  209. May 15 2020 - atikmdag.sys - ATI Radeon Kernel Mode driver
  210. May 15 2020 - atikmpag.sys - ATI video card driver
  211. Jun 05 2020 - EasyAntiCheat.sys - EasyAntiCheat is a anti-cheat driver (EasyAntiCheat Oy.) https://support.easyanticheat.net/
  212.  
  213. ================== Dump #1: 3RD PARTY DRIVERS (FULL) ===================
  214.  
  215. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  216. Image name: amdgpio3.sys
  217. Search : https://www.google.com/search?q=amdgpio3.sys
  218. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  219. Timestamp : Mon Mar 14 2016
  220.  
  221. Image path: \SystemRoot\system32\drivers\RTKVHD64.sys
  222. Image name: RTKVHD64.sys
  223. Search : https://www.google.com/search?q=RTKVHD64.sys
  224. ADA Info : Realtek Audio System driver https://www.realtek.com/en/
  225. Timestamp : Fri Jun 3 2016
  226.  
  227. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  228. Image name: amdpsp.sys
  229. Search : https://www.google.com/search?q=amdpsp.sys
  230. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  231. Timestamp : Mon Jun 5 2017
  232.  
  233. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  234. Image name: AMDPCIDev.sys
  235. Search : https://www.google.com/search?q=AMDPCIDev.sys
  236. ADA Info : Advanced Micro Devices PCI Device driver
  237. Timestamp : Thu Apr 12 2018
  238.  
  239. Image path: \SystemRoot\System32\drivers\amdkmpfd.sys
  240. Image name: amdkmpfd.sys
  241. Search : https://www.google.com/search?q=amdkmpfd.sys
  242. ADA Info : AMD Kernel Miniport Filter driver
  243. Timestamp : Wed Mar 20 2019
  244.  
  245. Mapped memory image file: C:\ProgramData\dbg\sym\rt640x64.sys\5CE7AF86ad000\rt640x64.sys
  246. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  247. Image name: rt640x64.sys
  248. Search : https://www.google.com/search?q=rt640x64.sys
  249. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  250. Timestamp : Fri May 24 2019
  251. File version: 9.1.410.2015
  252. Product version: 9.1.410.2015
  253. File flags: 8 (Mask 3F) Private
  254. File OS: 40004 NT Win32
  255. File type: 3.6 Driver
  256. File date: 00000000.00000000
  257. CompanyName: Realtek
  258. ProductName: Realtek 8125/8136/8168/8169 PCI/PCIe Adapters
  259. InternalName: rt640x64.sys
  260. OriginalFilename: rt640x64.sys
  261. ProductVersion: 9.001.0410.2015
  262. FileVersion: 9.001.0410.2015
  263. FileDescription: Realtek 8125/8136/8168/8169 NDIS 6.40 64-bit Driver
  264. LegalCopyright: Copyright (C) 2019 Realtek Semiconductor Corporation. All Right Reserved.
  265.  
  266. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  267. Image name: amdgpio2.sys
  268. Search : https://www.google.com/search?q=amdgpio2.sys
  269. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  270. Timestamp : Sun Sep 29 2019
  271.  
  272. Image path: \SystemRoot\System32\drivers\amdlog.sys
  273. Image name: amdlog.sys
  274. Search : https://www.google.com/search?q=amdlog.sys
  275. ADA Info : AMD LOG driver
  276. Timestamp : Thu Apr 30 2020
  277.  
  278. Image path: \SystemRoot\System32\DriverStore\FileRepository\u0355311.inf_amd64_183b8d63847c90cf\B355199\atikmdag.sys
  279. Image name: atikmdag.sys
  280. Search : https://www.google.com/search?q=atikmdag.sys
  281. ADA Info : ATI Radeon Kernel Mode driver
  282. Timestamp : Fri May 15 2020
  283.  
  284. Image path: \SystemRoot\System32\DriverStore\FileRepository\u0355311.inf_amd64_183b8d63847c90cf\B355199\atikmpag.sys
  285. Image name: atikmpag.sys
  286. Search : https://www.google.com/search?q=atikmpag.sys
  287. ADA Info : ATI video card driver
  288. Timestamp : Fri May 15 2020
  289.  
  290. Image path: \??\C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys
  291. Image name: EasyAntiCheat.sys
  292. Search : https://www.google.com/search?q=EasyAntiCheat.sys
  293. ADA Info : EasyAntiCheat is a anti-cheat driver (EasyAntiCheat Oy.) https://support.easyanticheat.net/
  294. Timestamp : Fri Jun 5 2020
  295.  
  296. ====================== Dump #1: MICROSOFT DRIVERS ======================
  297.  
  298. ACPI.sys ACPI Driver for NT (Microsoft)
  299. acpiex.sys ACPIEx Driver (Microsoft)
  300. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  301. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  302. ahcache.sys Application Compatibility Cache (Microsoft)
  303. amdppm.sys Processor Device Driver
  304. bam.sys BAM Kernal driver (Microsoft)
  305. BasicDisplay.sys Basic Display driver (Microsoft)
  306. BasicRender.sys Basic Render driver (Microsoft)
  307. Beep.SYS BEEP driver (Microsoft)
  308. bindflt.sys Windows Bind Filter driver (Microsoft)
  309. BOOTVID.dll VGA Boot Driver (Microsoft)
  310. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  311. cdd.dll Canonical Display Driver (Microsoft)
  312. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  313. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  314. CI.dll Code Integrity Module (Microsoft)
  315. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  316. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  317. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  318. CLFS.SYS Common Log File System Driver (Microsoft)
  319. clipsp.sys CLIP Service (Microsoft)
  320. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  321. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  322. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  323. condrv.sys Console Driver (Microsoft)
  324. crashdmp.sys Crash Dump driver (Microsoft)
  325. dfsc.sys DFS Namespace Client Driver (Microsoft)
  326. disk.sys PnP Disk Driver (Microsoft)
  327. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  328. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  329. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  330. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  331. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  332. dxgmms2.sys DirectX Graphics MMS
  333. EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
  334. fastfat.SYS Fast FAT File System Driver (Microsoft)
  335. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  336. fileinfo.sys FileInfo Filter Driver (Microsoft)
  337. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  338. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  339. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  340. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  341. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  342. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  343. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  344. HIDCLASS.SYS Hid Class Library (Microsoft)
  345. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  346. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  347. HTTP.sys HTTP Protocol Stack (Microsoft)
  348. intelpep.sys Intel Power Engine Plugin (Microsoft)
  349. IntelTA.sys Intel Telemetry Driver
  350. iorate.sys I/O rate control Filter (Microsoft)
  351. kbdclass.sys Keyboard Class Driver (Microsoft)
  352. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  353. kd.dll Local Kernal Debugger (Microsoft)
  354. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  355. ks.sys Kernal CSA Library (Microsoft)
  356. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  357. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  358. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  359. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  360. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  361. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  362. mmcss.sys MMCSS Driver (Microsoft)
  363. monitor.sys Monitor Driver (Microsoft)
  364. mouclass.sys Mouse Class Driver (Microsoft)
  365. mouhid.sys HID Mouse Filter Driver (Microsoft)
  366. mountmgr.sys Mount Point Manager (Microsoft)
  367. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  368. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  369. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  370. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  371. Msfs.SYS Mailslot driver (Microsoft)
  372. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  373. msisadrv.sys ISA Driver (Microsoft)
  374. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  375. msquic.sys Windows QUIC Driver
  376. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  377. mssmbios.sys System Management BIOS driver (Microsoft)
  378. mup.sys Multiple UNC Provider driver (Microsoft)
  379. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  380. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  381. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  382. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  383. netbios.sys NetBIOS Interface driver (Microsoft)
  384. netbt.sys MBT Transport driver (Microsoft)
  385. NETIO.SYS Network I/O Subsystem (Microsoft)
  386. Npfs.SYS NPFS driver (Microsoft)
  387. npsvctrig.sys Named pipe service triggers (Microsoft)
  388. nsiproxy.sys NSI Proxy driver (Microsoft)
  389. Ntfs.sys NT File System Driver (Microsoft)
  390. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  391. ntosext.sys NTOS Extension Host driver (Microsoft)
  392. Null.SYS NULL Driver (Microsoft)
  393. pacer.sys QoS Packet Scheduler (Microsoft)
  394. partmgr.sys Partition driver (Microsoft)
  395. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  396. pcw.sys Performance Counter Driver (Microsoft)
  397. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  398. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  399. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  400. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  401. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  402. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  403. rdyboost.sys ReadyBoost Driver (Microsoft)
  404. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  405. serenum.sys Serial Port Enumerator (Microsoft)
  406. serial.sys Serial Device Driver
  407. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  408. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  409. spaceport.sys Storage Spaces driver (Microsoft)
  410. srv2.sys Smb 2.0 Server driver (Microsoft)
  411. srvnet.sys Server Network driver (Microsoft)
  412. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  413. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  414. storqosflt.sys Storage QoS Filter driver (Microsoft)
  415. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  416. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  417. tcpip.sys TCP/IP Protocol driver (Microsoft)
  418. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  419. TDI.SYS TDI Wrapper driver (Microsoft)
  420. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  421. tm.sys Kernel Transaction Manager driver (Microsoft)
  422. ucx01000.sys USB Controller Extension (Microsoft)
  423. UEFI.sys UEFI NT driver (Microsoft)
  424. umbus.sys User-Mode Bus Enumerator (Microsoft)
  425. usbaudio.sys USB Audio Class Driver (Microsoft)
  426. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  427. USBD.SYS Universal Serial Bus Driver (Microsoft)
  428. UsbHub3.sys USB3 HUB driver (Microsoft)
  429. USBXHCI.SYS USB XHCI driver (Microsoft)
  430. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  431. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  432. volmgr.sys Volume Manager Driver (Microsoft)
  433. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  434. volsnap.sys Volume Shadow Copy driver (Microsoft)
  435. volume.sys Volume driver (Microsoft)
  436. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  437. watchdog.sys Watchdog driver (Microsoft)
  438. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  439. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  440. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  441. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  442. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  443. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  444. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  445. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  446. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  447. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  448. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  449. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  450. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  451. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  452. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  453. Wof.sys Windows Overlay Filter (Microsoft)
  454. WppRecorder.sys WPP Trace Recorder (Microsoft)
  455.  
  456. ====================== Dump #1: UNLOADED MODULES =======================
  457.  
  458. fffff802`7de70000 fffff802`7dec5000 WudfRd.sys
  459. fffff802`7d360000 fffff802`7d36f000 dump_storpor
  460. fffff802`7d3b0000 fffff802`7d3e3000 dump_storahc
  461. fffff802`7ce20000 fffff802`7ce3e000 dump_dumpfve
  462. fffff802`7dba0000 fffff802`7dbf5000 WudfRd.sys
  463. fffff802`7d7b0000 fffff802`7d7cc000 dam.sys
  464. fffff802`749a0000 fffff802`749b1000 WdBoot.sys
  465. fffff802`75a80000 fffff802`75a90000 hwpolicy.sys
  466.  
  467. ====================== Dump #1: BIOS INFORMATION =======================
  468.  
  469. [SMBIOS Data Tables v3.1]
  470. [DMI Version - 0]
  471. [2.0 Calling Convention - No]
  472. [Table Size - 2115 bytes]
  473. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  474. Vendor American Megatrends Inc.
  475. BIOS Version 4029
  476. BIOS Starting Address Segment f000
  477. BIOS Release Date 11/30/2018
  478. BIOS ROM Size 1000000
  479. BIOS Characteristics
  480. 07: - PCI Supported
  481. 10: - APM Supported
  482. 11: - Upgradeable FLASH BIOS
  483. 12: - BIOS Shadowing Supported
  484. 15: - CD-Boot Supported
  485. 16: - Selectable Boot Supported
  486. 17: - BIOS ROM Socketed
  487. 19: - EDD Supported
  488. 23: - 1.2MB Floppy Supported
  489. 24: - 720KB Floppy Supported
  490. 25: - 2.88MB Floppy Supported
  491. 26: - Print Screen Device Supported
  492. 27: - Keyboard Services Supported
  493. 28: - Serial Services Supported
  494. 29: - Printer Services Supported
  495. 32: - BIOS Vendor Reserved
  496. BIOS Characteristic Extensions
  497. 00: - ACPI Supported
  498. 01: - USB Legacy Supported
  499. 08: - BIOS Boot Specification Supported
  500. 10: - Specification Reserved
  501. 11: - Specification Reserved
  502. BIOS Major Revision 5
  503. BIOS Minor Revision 13
  504. EC Firmware Major Revision 255
  505. EC Firmware Minor Revision 255
  506. [System Information (Type 1) - Length 27 - Handle 0001h]
  507. Manufacturer System manufacturer
  508. Product Name System Product Name
  509. Version System Version
  510. UUID 00000000-0000-0000-0000-000000000000
  511. Wakeup Type Power Switch
  512. SKUNumber SKU
  513. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  514. Manufacturer ASUSTeK COMPUTER INC.
  515. Product PRIME A320M-K
  516. Version Rev X.0x
  517. Feature Flags 09h
  518. -388188448: - -388188400: - Γ·7!ΓΌ
  519. Location Default string
  520. Chassis Handle 0003h
  521. Board Type 0ah - Processor/Memory Module
  522. Number of Child Handles 0
  523. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  524. Manufacturer Default string
  525. Chassis Type Desktop
  526. Version Default string
  527. Bootup State Safe
  528. Power Supply State Safe
  529. Thermal State Safe
  530. Security Status None
  531. OEM Defined 0
  532. Height 0U
  533. Number of Power Cords 1
  534. Number of Contained Elements 0
  535. Contained Element Size 3
  536. [Onboard Devices Information (Type 10) - Length 6 - Handle 001ch]
  537. Number of Devices 1
  538. 01: Type Video [enabled]
  539. [OEM Strings (Type 11) - Length 5 - Handle 001dh]
  540. Number of Strings 8
  541. 1 Default string
  542. 2 Default string
  543. 3 MIRINDA
  544. 4 Default string
  545. 5 FFFFFFFFFFFFF
  546. 6 FFFFFFFFFFFFF
  547. 7 FFFFFFFFFFFFF
  548. 8 Default string
  549. [System Configuration Options (Type 12) - Length 5 - Handle 001eh]
  550. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0022h]
  551. [Physical Memory Array (Type 16) - Length 23 - Handle 0023h]
  552. Location 03h - SystemBoard/Motherboard
  553. Use 03h - System Memory
  554. Memory Error Correction 03h - None
  555. Maximum Capacity 268435456KB
  556. Memory Error Inf Handle 0022h
  557. Number of Memory Devices 2
  558. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0024h]
  559. Starting Address 00000000h
  560. Ending Address 00ffffffh
  561. Memory Array Handle 0023h
  562. Partition Width 02
  563. [Cache Information (Type 7) - Length 19 - Handle 0025h]
  564. Socket Designation L1 - Cache
  565. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  566. Maximum Cache Size 0240h - 576K
  567. Installed Size 0240h - 576K
  568. Supported SRAM Type 0010h - Pipeline-Burst
  569. Current SRAM Type 0010h - Pipeline-Burst
  570. Cache Speed 1ns
  571. Error Correction Type Specification Reserved
  572. System Cache Type Unified
  573. Associativity 8-way Set-Associative
  574. [Cache Information (Type 7) - Length 19 - Handle 0026h]
  575. Socket Designation L2 - Cache
  576. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  577. Maximum Cache Size 0c00h - 3072K
  578. Installed Size 0c00h - 3072K
  579. Supported SRAM Type 0010h - Pipeline-Burst
  580. Current SRAM Type 0010h - Pipeline-Burst
  581. Cache Speed 1ns
  582. Error Correction Type Specification Reserved
  583. System Cache Type Unified
  584. Associativity 8-way Set-Associative
  585. [Cache Information (Type 7) - Length 19 - Handle 0027h]
  586. Socket Designation L3 - Cache
  587. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  588. Maximum Cache Size 4000h - 16384K
  589. Installed Size 4000h - 16384K
  590. Supported SRAM Type 0010h - Pipeline-Burst
  591. Current SRAM Type 0010h - Pipeline-Burst
  592. Cache Speed 1ns
  593. Error Correction Type Specification Reserved
  594. System Cache Type Unified
  595. Associativity 16-way Set-Associative
  596. [Processor Information (Type 4) - Length 48 - Handle 0028h]
  597. Socket Designation AM4
  598. Processor Type Central Processor
  599. Processor Family 6bh - Specification Reserved
  600. Processor Manufacturer Advanced Micro Devices, Inc.
  601. Processor ID 820f8000fffb8b17
  602. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  603. Processor Voltage 8bh - 1.1V
  604. External Clock 100MHz
  605. Max Speed 3900MHz
  606. Current Speed 3400MHz
  607. Status Enabled Populated
  608. Processor Upgrade Specification Reserved
  609. L1 Cache Handle 0025h
  610. L2 Cache Handle 0026h
  611. L3 Cache Handle 0027h
  612. Part Number Unknown
  613. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0029h]
  614. [Memory Device (Type 17) - Length 40 - Handle 002ah]
  615. Physical Memory Array Handle 0023h
  616. Memory Error Info Handle 0029h
  617. Total Width 64 bits
  618. Data Width 64 bits
  619. Size 8192MB
  620. Form Factor 09h - DIMM
  621. Device Locator DIMM_A1
  622. Bank Locator BANK 0
  623. Memory Type 1ah - Specification Reserved
  624. Type Detail 4080h - Synchronous
  625. Speed 3000MHz
  626. Manufacturer G-Skill
  627. Part Number F4-3200C16-8GVKB
  628. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 002bh]
  629. Starting Address 00000000h
  630. Ending Address 00ffffffh
  631. Memory Device Handle 002ah
  632. Mem Array Mapped Adr Handle 0024h
  633. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 002ch]
  634. [Memory Device (Type 17) - Length 40 - Handle 002dh]
  635. Physical Memory Array Handle 0023h
  636. Memory Error Info Handle 002ch
  637. Total Width 64 bits
  638. Data Width 64 bits
  639. Size 8192MB
  640. Form Factor 09h - DIMM
  641. Device Locator DIMM_B1
  642. Bank Locator BANK 1
  643. Memory Type 1ah - Specification Reserved
  644. Type Detail 4080h - Synchronous
  645. Speed 3000MHz
  646. Manufacturer G-Skill
  647. Part Number F4-3200C16-8GVKB
  648. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 002eh]
  649. Starting Address 00000000h
  650. Ending Address 00ffffffh
  651. Memory Device Handle 002dh
  652. Mem Array Mapped Adr Handle 0024h
  653.  
  654. ========================== Dump #1: Extra #1 ===========================
  655.  
  656. 0: kd> !verifier
  657. Verify Flags Level 0x00000000
  658. STANDARD FLAGS:
  659. [X] (0x00000000) Automatic Checks
  660. [ ] (0x00000001) Special pool
  661. [ ] (0x00000002) Force IRQL checking
  662. [ ] (0x00000008) Pool tracking
  663. [ ] (0x00000010) I/O verification
  664. [ ] (0x00000020) Deadlock detection
  665. [ ] (0x00000080) DMA checking
  666. [ ] (0x00000100) Security checks
  667. [ ] (0x00000800) Miscellaneous checks
  668. [ ] (0x00020000) DDI compliance checking
  669. ADDITIONAL FLAGS:
  670. [ ] (0x00000004) Randomized low resources simulation
  671. [ ] (0x00000200) Force pending I/O requests
  672. [ ] (0x00000400) IRP logging
  673. [ ] (0x00002000) Invariant MDL checking for stack
  674. [ ] (0x00004000) Invariant MDL checking for driver
  675. [ ] (0x00008000) Power framework delay fuzzing
  676. [ ] (0x00010000) Port/miniport interface checking
  677. [ ] (0x00040000) Systematic low resources simulation
  678. [ ] (0x00080000) DDI compliance checking (additional)
  679. [ ] (0x00200000) NDIS/WIFI verification
  680. [ ] (0x00800000) Kernel synchronization delay fuzzing
  681. [ ] (0x01000000) VM switch verification
  682. [ ] (0x02000000) Code integrity checks
  683. [X] Indicates flag is enabled
  684. Summary of All Verifier Statistics
  685. RaiseIrqls 0x0
  686. AcquireSpinLocks 0x0
  687. Synch Executions 0x0
  688. Trims 0x0
  689. Pool Allocations Attempted 0x0
  690. Pool Allocations Succeeded 0x0
  691. Pool Allocations Succeeded SpecialPool 0x0
  692. Pool Allocations With NO TAG 0x0
  693. Pool Allocations Failed 0x0
  694. Current paged pool allocations 0x0 for 00000000 bytes
  695. Peak paged pool allocations 0x0 for 00000000 bytes
  696. Current nonpaged pool allocations 0x0 for 00000000 bytes
  697. Peak nonpaged pool allocations 0x0 for 00000000 bytes
  698.  
  699. ========================== Dump #1: Extra #2 ===========================
  700.  
  701. 0: kd> !thread
  702. THREAD ffffe38f89a2a080 Cid 0004.01d0 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 0
  703. Not impersonating
  704. GetUlongFromAddress: unable to read from fffff80271c1143c
  705. Owning Process ffffe38f872ad180 Image: System
  706. Attached Process N/A Image: N/A
  707. fffff78000000000: Unable to get shared data
  708. Wait Start TickCount 146305 Ticks: 1
  709. Context Switch Count 49672 IdealProcessor: 4
  710. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  711. UserTime 00:00:00.000
  712. KernelTime 00:00:00.000
  713. Win32 Start Address nt!MiMappedPageWriter (0xfffff802713a0780)
  714. Stack Init fffff48b20e14c90 Current fffff48b20e14390
  715. Base fffff48b20e15000 Limit fffff48b20e0f000 Call 0000000000000000
  716. Priority 18 BasePriority 8 PriorityDecrement 0 IoPriority 2 PagePriority 5
  717. Child-SP RetAddr : Args to Child : Call Site
  718. fffff48b`20e13848 fffff802`7142edf9 : 00000000`0000001e ffffffff`c0000005 fffff802`6f320386 00000000`00000001 : nt!KeBugCheckEx
  719. fffff48b`20e13850 fffff802`713efa6c : fffff48b`20e14170 00000000`00001000 fffff48b`20e140f0 ffff8000`00000000 : nt!KiDispatchException+0x1b3d59
  720. fffff48b`20e13f10 fffff802`713ebc03 : ffffe38f`981cba20 fffff48b`20e14170 ffffe38f`89637010 fffff802`7dba5256 : nt!KiExceptionDispatch+0x12c
  721. fffff48b`20e140f0 fffff802`6f320386 : 00000000`00000000 8a000004`106009e3 00000000`00000000 ffffbcf1`c7c4b1c0 : nt!KiPageFault+0x443 (TrapFrame @ fffff48b`20e140f0)
  722. fffff48b`20e14288 00000000`00000000 : fffff48b`20e143f8 ffffe38f`899e70a0 00000000`00000000 00000000`00000000 : HTTP!UlPrepare416Response+0x1de
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!