API tools faq
paste
Guest User

Untitled

a guest
Jun 3rd, 2020
67
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 162.03 KB | None | 0 0
raw download clone embed print report
  1. ========================== AUTO DUMP ANALYZER ==========================
  2. Auto Dump Analyzer
  3. Version: 0.91
  4. Time to analyze file(s): 00 hours and 04 minutes and 27 seconds
  5.  
  6. ================================ SYSTEM ================================
  7. MANUFACTURER: Micro-Star International Co., Ltd.
  8. PRODUCT_NAME: MS-7B84
  9. VERSION: 1.0
  10.  
  11. ================================= BIOS =================================
  12. VENDOR: American Megatrends Inc.
  13. VERSION: 2.D0
  14. DATE: 12/03/2019
  15. VERSION: 2.A0
  16. DATE: 09/02/2019
  17.  
  18. ============================= MOTHERBOARD ==============================
  19. MANUFACTURER: Micro-Star International Co., Ltd.
  20. PRODUCT: B450M PRO-M2 (MS-7B84)
  21. VERSION: 1.0
  22.  
  23. ================================= RAM ==================================
  24. Size Speed Manufacturer Part No.
  25. -------------- -------------- ------------------- ----------------------
  26. 8192MB 2400MHz Kingston KHX2400C15/8G
  27. 8192MB 2400MHz Kingston KHX2400C15/8G
  28.  
  29. ================================= CPU ==================================
  30. Processor Version: AMD Ryzen 5 2600 Six-Core Processor
  31. COUNT: c
  32. MHZ: 3400
  33. VENDOR: AuthenticAMD
  34. FAMILY: 17
  35. MODEL: 8
  36. STEPPING: 2
  37.  
  38. ================================== OS ==================================
  39. Product: WinNt, suite: TerminalServer SingleUserTS Personal
  40. Built by: 19041.1.amd64fre.vb_release.191206-1406
  41. BUILD_VERSION: 10.0.19041.264 (WinBuild.160101.0800)
  42. BUILD: 19041
  43. SERVICEPACK: 264
  44. PLATFORM_TYPE: x64
  45. NAME: Windows 10
  46. EDITION: Windows 10 WinNt TerminalServer SingleUserTS Personal
  47. BUILD_TIMESTAMP: unknown_date
  48. BUILDDATESTAMP: 160101.0800
  49. BUILDLAB: WinBuild
  50. BUILDOSVER: 10.0.19041.264
  51.  
  52. =============================== DEBUGGER ===============================
  53. Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
  54. Copyright (c) Microsoft Corporation. All rights reserved.
  55.  
  56. =============================== COMMENTS ===============================
  57. * Information gathered from different dump files may be different. If
  58. Windows updates between two dump files, two or more OS versions may
  59. be shown above.
  60. * If the user updates the BIOS between dump files, two or more versions
  61. and dates may be shown above.
  62. * More RAM information can be found below in a full BIOS section.
  63.  
  64. ========================================================================
  65. ======================= Dump #1: ANALYZE VERBOSE =======================
  66. ====================== File: 060320-12562-01.dmp =======================
  67. ========================================================================
  68.  
  69. Mini Kernel Dump File: Only registers and stack trace are available
  70. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  71. Kernel base = 0xfffff800`0a617000 PsLoadedModuleList = 0xfffff800`0b241250
  72. Debug session time: Wed Jun 3 06:14:43.180 2020 (UTC - 4:00)
  73. System Uptime: 0 days 13:33:52.723
  74.  
  75. BugCheck 139, {3, ffff8e89e2a377d0, ffff8e89e2a37728, 0}
  76. *** WARNING: Unable to verify timestamp for win32k.sys
  77. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  78. Probably caused by : memory_corruption
  79. Followup: memory_corruption
  80.  
  81. KERNEL_SECURITY_CHECK_FAILURE (139)
  82. A kernel component has corrupted a critical data structure. The corruption
  83. could potentially allow a malicious user to gain control of this machine.
  84.  
  85. Arguments:
  86. Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
  87. Arg2: ffff8e89e2a377d0, Address of the trap frame for the exception that caused the bugcheck
  88. Arg3: ffff8e89e2a37728, Address of the exception record for the exception that caused the bugcheck
  89. Arg4: 0000000000000000, Reserved
  90.  
  91. Debugging Details:
  92. DUMP_CLASS: 1
  93. DUMP_QUALIFIER: 400
  94. DUMP_TYPE: 2
  95. TRAP_FRAME: ffff8e89e2a377d0 -- (.trap 0xffff8e89e2a377d0)
  96. NOTE: The trap frame does not contain all registers.
  97. Some register values may be zeroed or incorrect.
  98. rax=fffff8000947f148 rbx=0000000000000000 rcx=0000000000000003
  99. rdx=ffffad0dab1531a0 rsi=0000000000000000 rdi=0000000000000000
  100. rip=fffff8000aa2b01b rsp=ffff8e89e2a37960 rbp=00000000000000a4
  101. r8=0000000000000001 r9=ffff8e89e2a37a58 r10=fffff8000947bac0
  102. r11=00000071b2923466 r12=0000000000000000 r13=0000000000000000
  103. r14=0000000000000000 r15=0000000000000000
  104. iopl=0 nv up ei ng nz na po cy
  105. nt!KiRemoveEntryTimer+0x1dc7eb:
  106. fffff800`0aa2b01b cd29 int 29h
  107. Resetting default scope
  108. EXCEPTION_RECORD: ffff8e89e2a37728 -- (.exr 0xffff8e89e2a37728)
  109. ExceptionAddress: fffff8000aa2b01b (nt!KiRemoveEntryTimer+0x00000000001dc7eb)
  110. ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
  111. ExceptionFlags: 00000001
  112. NumberParameters: 1
  113. Parameter[0]: 0000000000000003
  114. Subcode: 0x3 FAST_FAIL_CORRUPT_LIST_ENTRY
  115. CUSTOMER_CRASH_COUNT: 1
  116. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  117. BUGCHECK_STR: 0x139
  118.  
  119. PROCESS_NAME: System
  120.  
  121. CURRENT_IRQL: 2
  122. ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  123. EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  124. EXCEPTION_CODE_STR: c0000409
  125. EXCEPTION_PARAMETER1: 0000000000000003
  126. LAST_CONTROL_TRANSFER: from fffff8000aa06929 to fffff8000a9f4a20
  127. STACK_TEXT:
  128. ffff8e89`e2a374a8 fffff800`0aa06929 : 00000000`00000139 00000000`00000003 ffff8e89`e2a377d0 ffff8e89`e2a37728 : nt!KeBugCheckEx
  129. ffff8e89`e2a374b0 fffff800`0aa06d50 : ffff37d4`f29f5dac fffff800`0a8fe5a7 00000003`86368533 00000071`b292343c : nt!KiBugCheckDispatch+0x69
  130. ffff8e89`e2a375f0 fffff800`0aa050e3 : 00000000`00000000 ffffad0d`a3245b40 00000000`00000001 00000000`00989680 : nt!KiFastFailDispatch+0xd0
  131. ffff8e89`e2a377d0 fffff800`0aa2b01b : ffffad0d`a795b010 00000071`b292365e ffffffff`00000001 ffffad0d`a795b1f8 : nt!KiRaiseSecurityCheckFailure+0x323
  132. ffff8e89`e2a37960 fffff800`0a850eca : 00000000`00000000 00000000`00000000 00000000`00140001 ffff8e89`e2a37a58 : nt!KiRemoveEntryTimer+0x1dc7eb
  133. ffff8e89`e2a379d0 fffff800`0a9f858e : ffffffff`00000000 ffffbd00`75d2b180 ffffbd00`75d36340 ffffad0d`af2a0080 : nt!KiRetireDpcList+0x73a
  134. ffff8e89`e2a37c60 00000000`00000000 : ffff8e89`e2a38000 ffff8e89`e2a32000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  135. STACK_COMMAND: kb
  136. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  137. fffff8000a82577d-fffff8000a82577e 2 bytes - nt!MiLockPageTablePage+5d
  138. [ 80 fa:00 f0 ]
  139. fffff8000a99bf1f-fffff8000a99bf21 3 bytes - nt!MiFreeUltraMapping+33 (+0x1767a2)
  140. [ 7d fb f6:62 c5 8a ]
  141. 5 errors : !nt (fffff8000a82577d-fffff8000a99bf21)
  142. MODULE_NAME: memory_corruption
  143.  
  144. IMAGE_NAME: memory_corruption
  145.  
  146. FOLLOWUP_NAME: memory_corruption
  147. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  148. MEMORY_CORRUPTOR: LARGE
  149. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  150. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  151. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  152. TARGET_TIME: 2020-06-03T10:14:43.000Z
  153. SUITE_MASK: 784
  154. PRODUCT_TYPE: 1
  155. USER_LCID: 0
  156. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  157. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  158. Followup: memory_corruption
  159.  
  160. ====================== Dump #1: 3RD PARTY DRIVERS ======================
  161.  
  162. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  163. Oct 18 2018 - AMDRyzenMasterDriver.sys - AMD Ryzen Master driver
  164. Mar 14 2019 - nvvad64v.sys - Nvidia Virtual Audio driver http://www.nvidia.com/
  165. May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  166. Jun 19 2019 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  167. Jan 10 2020 - nvvhci.sys - Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  168. Jan 14 2020 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  169. Feb 12 2020 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  170. Feb 19 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  171. Mar 03 2020 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  172. May 15 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  173.  
  174. ================== Dump #1: 3RD PARTY DRIVERS (FULL) ===================
  175.  
  176. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  177. Image name: amdgpio3.sys
  178. Search : https://www.google.com/search?q=amdgpio3.sys
  179. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  180. Timestamp : Mon Mar 14 2016
  181.  
  182. Image path: \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
  183. Image name: AMDRyzenMasterDriver.sys
  184. Search : https://www.google.com/search?q=AMDRyzenMasterDriver.sys
  185. ADA Info : AMD Ryzen Master driver
  186. Timestamp : Thu Oct 18 2018
  187.  
  188. Image path: \SystemRoot\system32\drivers\nvvad64v.sys
  189. Image name: nvvad64v.sys
  190. Search : https://www.google.com/search?q=nvvad64v.sys
  191. ADA Info : Nvidia Virtual Audio driver http://www.nvidia.com/
  192. Timestamp : Thu Mar 14 2019
  193.  
  194. Image path: \SystemRoot\System32\drivers\UcmCxUcsiNvppc.sys
  195. Image name: UcmCxUcsiNvppc.sys
  196. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  197. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  198. Timestamp : Tue May 14 2019
  199.  
  200. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  201. Image name: amdpsp.sys
  202. Search : https://www.google.com/search?q=amdpsp.sys
  203. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  204. Timestamp : Wed Jun 19 2019
  205.  
  206. Image path: \SystemRoot\System32\drivers\nvvhci.sys
  207. Image name: nvvhci.sys
  208. Search : https://www.google.com/search?q=nvvhci.sys
  209. ADA Info : Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  210. Timestamp : Fri Jan 10 2020
  211.  
  212. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  213. Image name: amdgpio2.sys
  214. Search : https://www.google.com/search?q=amdgpio2.sys
  215. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  216. Timestamp : Tue Jan 14 2020
  217.  
  218. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  219. Image name: rt640x64.sys
  220. Search : https://www.google.com/search?q=rt640x64.sys
  221. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  222. Timestamp : Wed Feb 12 2020
  223.  
  224. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  225. Image name: nvhda64v.sys
  226. Search : https://www.google.com/search?q=nvhda64v.sys
  227. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  228. Timestamp : Wed Feb 19 2020
  229.  
  230. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  231. Image name: AMDPCIDev.sys
  232. Search : https://www.google.com/search?q=AMDPCIDev.sys
  233. ADA Info : Advanced Micro Devices PCI Device driver
  234. Timestamp : Tue Mar 3 2020
  235.  
  236. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys
  237. Image name: nvlddmkm.sys
  238. Search : https://www.google.com/search?q=nvlddmkm.sys
  239. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  240. Timestamp : Fri May 15 2020
  241.  
  242. ====================== Dump #1: MICROSOFT DRIVERS ======================
  243.  
  244. ACPI.sys ACPI Driver for NT (Microsoft)
  245. acpiex.sys ACPIEx Driver (Microsoft)
  246. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  247. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  248. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  249. ahcache.sys Application Compatibility Cache (Microsoft)
  250. amdppm.sys Processor Device Driver
  251. bam.sys BAM Kernal driver (Microsoft)
  252. BasicDisplay.sys Basic Display driver (Microsoft)
  253. BasicRender.sys Basic Render driver (Microsoft)
  254. Beep.SYS BEEP driver (Microsoft)
  255. bindflt.sys Windows Bind Filter driver (Microsoft)
  256. BOOTVID.dll VGA Boot Driver (Microsoft)
  257. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  258. cdd.dll Canonical Display Driver (Microsoft)
  259. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  260. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  261. CI.dll Code Integrity Module (Microsoft)
  262. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  263. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  264. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  265. CLFS.SYS Common Log File System Driver (Microsoft)
  266. clipsp.sys CLIP Service (Microsoft)
  267. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  268. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  269. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  270. condrv.sys Console Driver (Microsoft)
  271. crashdmp.sys Crash Dump driver (Microsoft)
  272. dfsc.sys DFS Namespace Client Driver (Microsoft)
  273. disk.sys PnP Disk Driver (Microsoft)
  274. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  275. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  276. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  277. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  278. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  279. dxgmms2.sys DirectX Graphics MMS
  280. EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
  281. fastfat.SYS Fast FAT File System Driver (Microsoft)
  282. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  283. fileinfo.sys FileInfo Filter Driver (Microsoft)
  284. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  285. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  286. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  287. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  288. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  289. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  290. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  291. HdAudio.sys High Definition Audio Function driver (Microsoft)
  292. HIDCLASS.SYS Hid Class Library (Microsoft)
  293. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  294. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  295. HTTP.sys HTTP Protocol Stack (Microsoft)
  296. intelpep.sys Intel Power Engine Plugin (Microsoft)
  297. IntelTA.sys Intel Telemetry Driver
  298. iorate.sys I/O rate control Filter (Microsoft)
  299. kbdclass.sys Keyboard Class Driver (Microsoft)
  300. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  301. kd.dll Local Kernal Debugger (Microsoft)
  302. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  303. ks.sys Kernal CSA Library (Microsoft)
  304. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  305. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  306. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  307. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  308. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  309. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  310. mmcss.sys MMCSS Driver (Microsoft)
  311. monitor.sys Monitor Driver (Microsoft)
  312. mouclass.sys Mouse Class Driver (Microsoft)
  313. mouhid.sys HID Mouse Filter Driver (Microsoft)
  314. mountmgr.sys Mount Point Manager (Microsoft)
  315. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  316. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  317. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  318. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  319. Msfs.SYS Mailslot driver (Microsoft)
  320. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  321. msisadrv.sys ISA Driver (Microsoft)
  322. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  323. msquic.sys Windows QUIC Driver
  324. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  325. mssmbios.sys System Management BIOS driver (Microsoft)
  326. mup.sys Multiple UNC Provider driver (Microsoft)
  327. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  328. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  329. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  330. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  331. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  332. NDProxy.sys NDIS Proxy driver (Microsoft)
  333. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  334. netbios.sys NetBIOS Interface driver (Microsoft)
  335. netbt.sys MBT Transport driver (Microsoft)
  336. NETIO.SYS Network I/O Subsystem (Microsoft)
  337. Npfs.SYS NPFS driver (Microsoft)
  338. npsvctrig.sys Named pipe service triggers (Microsoft)
  339. nsiproxy.sys NSI Proxy driver (Microsoft)
  340. Ntfs.sys NT File System Driver (Microsoft)
  341. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  342. ntosext.sys NTOS Extension Host driver (Microsoft)
  343. Null.SYS NULL Driver (Microsoft)
  344. pacer.sys QoS Packet Scheduler (Microsoft)
  345. partmgr.sys Partition driver (Microsoft)
  346. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  347. pcw.sys Performance Counter Driver (Microsoft)
  348. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  349. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  350. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  351. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  352. qwavedrv.sys Quality Windows Audio Video Experience (qWave) Support driver (Microsoft)
  353. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  354. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  355. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  356. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  357. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  358. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  359. rdpvideominiport.sys RDP Video Miniport driver (Microsoft)
  360. rdyboost.sys ReadyBoost Driver (Microsoft)
  361. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  362. serenum.sys Serial Port Enumerator (Microsoft)
  363. serial.sys Serial Device Driver
  364. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  365. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  366. spaceport.sys Storage Spaces driver (Microsoft)
  367. srv2.sys Smb 2.0 Server driver (Microsoft)
  368. srvnet.sys Server Network driver (Microsoft)
  369. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  370. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  371. storqosflt.sys Storage QoS Filter driver (Microsoft)
  372. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  373. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  374. tcpip.sys TCP/IP Protocol driver (Microsoft)
  375. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  376. TDI.SYS TDI Wrapper driver (Microsoft)
  377. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  378. tm.sys Kernel Transaction Manager driver (Microsoft)
  379. UcmCx.sys USB Connector Manager KMDF Class Extension
  380. ucx01000.sys USB Controller Extension (Microsoft)
  381. UEFI.sys UEFI NT driver (Microsoft)
  382. umbus.sys User-Mode Bus Enumerator (Microsoft)
  383. usbaudio.sys USB Audio Class Driver (Microsoft)
  384. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  385. USBD.SYS Universal Serial Bus Driver (Microsoft)
  386. UsbHub3.sys USB3 HUB driver (Microsoft)
  387. USBXHCI.SYS USB XHCI driver (Microsoft)
  388. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  389. VerifierExt.sys Driver Verifier Extension
  390. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  391. volmgr.sys Volume Manager Driver (Microsoft)
  392. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  393. volsnap.sys Volume Shadow Copy driver (Microsoft)
  394. volume.sys Volume driver (Microsoft)
  395. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  396. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  397. watchdog.sys Watchdog driver (Microsoft)
  398. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  399. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  400. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  401. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  402. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  403. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  404. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  405. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  406. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  407. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  408. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  409. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  410. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  411. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  412. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  413. Wof.sys Windows Overlay Filter (Microsoft)
  414. WppRecorder.sys WPP Trace Recorder (Microsoft)
  415.  
  416. ====================== Dump #1: UNLOADED MODULES =======================
  417.  
  418. fffff808`58f10000 fffff808`58f22000 kbdhid.sys
  419. fffff808`58ed0000 fffff808`58ee1000 mouhid.sys
  420. fffff808`59630000 fffff808`5963f000 hiber_storpo
  421. fffff800`16680000 fffff800`166b3000 hiber_storah
  422. fffff800`166c0000 fffff800`166de000 hiber_dumpfv
  423. fffff808`58e50000 fffff808`58e85000 usbccgp.sys
  424. fffff808`58e90000 fffff808`58ea3000 hidusb.sys
  425. fffff808`58eb0000 fffff808`58ef0000 HIDCLASS.SYS
  426. fffff808`58f90000 fffff808`58fc8000 usbaudio.sys
  427. fffff808`58f50000 fffff808`58f62000 kbdhid.sys
  428. fffff808`58f10000 fffff808`58f21000 mouhid.sys
  429. fffff800`09820000 fffff800`0982e000 WSDScan.sys
  430. fffff800`09810000 fffff800`0981e000 WSDPrint.sys
  431. fffff808`57080000 fffff808`5708f000 dump_storpor
  432. fffff808`570d0000 fffff808`57103000 dump_storahc
  433. fffff808`57130000 fffff808`5714e000 dump_dumpfve
  434. fffff808`56a70000 fffff808`56a8c000 dam.sys
  435. fffff800`0bb80000 fffff800`0bb91000 WdBoot.sys
  436. fffff800`0cd00000 fffff800`0cd10000 hwpolicy.sys
  437.  
  438. ====================== Dump #1: BIOS INFORMATION =======================
  439.  
  440. [SMBIOS Data Tables v2.8]
  441. [DMI Version - 0]
  442. [2.0 Calling Convention - No]
  443. [Table Size - 2272 bytes]
  444. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  445. Vendor American Megatrends Inc.
  446. BIOS Version 2.D0
  447. BIOS Starting Address Segment f000
  448. BIOS Release Date 12/03/2019
  449. BIOS ROM Size 1000000
  450. BIOS Characteristics
  451. 07: - PCI Supported
  452. 11: - Upgradeable FLASH BIOS
  453. 12: - BIOS Shadowing Supported
  454. 15: - CD-Boot Supported
  455. 16: - Selectable Boot Supported
  456. 17: - BIOS ROM Socketed
  457. 19: - EDD Supported
  458. 23: - 1.2MB Floppy Supported
  459. 24: - 720KB Floppy Supported
  460. 25: - 2.88MB Floppy Supported
  461. 26: - Print Screen Device Supported
  462. 27: - Keyboard Services Supported
  463. 28: - Serial Services Supported
  464. 29: - Printer Services Supported
  465. 32: - BIOS Vendor Reserved
  466. BIOS Characteristic Extensions
  467. 00: - ACPI Supported
  468. 01: - USB Legacy Supported
  469. 08: - BIOS Boot Specification Supported
  470. 10: - Specification Reserved
  471. 11: - Specification Reserved
  472. BIOS Major Revision 5
  473. BIOS Minor Revision 14
  474. EC Firmware Major Revision 255
  475. EC Firmware Minor Revision 255
  476. [System Information (Type 1) - Length 27 - Handle 0001h]
  477. Manufacturer Micro-Star International Co., Ltd.
  478. Product Name MS-7B84
  479. Version 1.0
  480. UUID 00000000-0000-0000-0000-000000000000
  481. Wakeup Type Power Switch
  482. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  483. Manufacturer Micro-Star International Co., Ltd.
  484. Product B450M PRO-M2 (MS-7B84)
  485. Version 1.0
  486. Feature Flags 09h
  487. -805652768: - -805652720: - ÷7?
  488. ü
  489. Chassis Handle 0003h
  490. Board Type 0ah - Processor/Memory Module
  491. Number of Child Handles 0
  492. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  493. Manufacturer Micro-Star International Co., Ltd.
  494. Chassis Type Desktop
  495. Version 1.0
  496. Bootup State Safe
  497. Power Supply State Safe
  498. Thermal State Safe
  499. Security Status None
  500. OEM Defined 0
  501. Height 0U
  502. Number of Power Cords 1
  503. Number of Contained Elements 0
  504. Contained Element Size 3
  505. [OEM Strings (Type 11) - Length 5 - Handle 000bh]
  506. Number of Strings 1
  507. [System Configuration Options (Type 12) - Length 5 - Handle 000ch]
  508. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 000eh]
  509. [Physical Memory Array (Type 16) - Length 23 - Handle 000fh]
  510. Location 03h - SystemBoard/Motherboard
  511. Use 03h - System Memory
  512. Memory Error Correction 03h - None
  513. Maximum Capacity 134217728KB
  514. Memory Error Inf Handle 000eh
  515. Number of Memory Devices 2
  516. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0010h]
  517. Starting Address 00000000h
  518. Ending Address 00ffffffh
  519. Memory Array Handle 000fh
  520. Partition Width 02
  521. [Cache Information (Type 7) - Length 19 - Handle 0011h]
  522. Socket Designation L1 - Cache
  523. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  524. Maximum Cache Size 0240h - 576K
  525. Installed Size 0240h - 576K
  526. Supported SRAM Type 0010h - Pipeline-Burst
  527. Current SRAM Type 0010h - Pipeline-Burst
  528. Cache Speed 1ns
  529. Error Correction Type Specification Reserved
  530. System Cache Type Unified
  531. Associativity 8-way Set-Associative
  532. [Cache Information (Type 7) - Length 19 - Handle 0012h]
  533. Socket Designation L2 - Cache
  534. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  535. Maximum Cache Size 0c00h - 3072K
  536. Installed Size 0c00h - 3072K
  537. Supported SRAM Type 0010h - Pipeline-Burst
  538. Current SRAM Type 0010h - Pipeline-Burst
  539. Cache Speed 1ns
  540. Error Correction Type Specification Reserved
  541. System Cache Type Unified
  542. Associativity 8-way Set-Associative
  543. [Cache Information (Type 7) - Length 19 - Handle 0013h]
  544. Socket Designation L3 - Cache
  545. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  546. Maximum Cache Size 4000h - 16384K
  547. Installed Size 4000h - 16384K
  548. Supported SRAM Type 0010h - Pipeline-Burst
  549. Current SRAM Type 0010h - Pipeline-Burst
  550. Cache Speed 1ns
  551. Error Correction Type Specification Reserved
  552. System Cache Type Unified
  553. Associativity 16-way Set-Associative
  554. [Processor Information (Type 4) - Length 48 - Handle 0014h]
  555. Socket Designation AM4
  556. Processor Type Central Processor
  557. Processor Family 6bh - Specification Reserved
  558. Processor Manufacturer Advanced Micro Devices, Inc.
  559. Processor ID 820f8000fffb8b17
  560. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  561. Processor Voltage 8bh - 1.1V
  562. External Clock 100MHz
  563. Max Speed 3900MHz
  564. Current Speed 3400MHz
  565. Status Enabled Populated
  566. Processor Upgrade Specification Reserved
  567. L1 Cache Handle 0011h
  568. L2 Cache Handle 0012h
  569. L3 Cache Handle 0013h
  570. Part Number Unknown
  571. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0015h]
  572. [Memory Device (Type 17) - Length 40 - Handle 0016h]
  573. Physical Memory Array Handle 000fh
  574. Memory Error Info Handle 0015h
  575. Total Width 64 bits
  576. Data Width 64 bits
  577. Size 8192MB
  578. Form Factor 09h - DIMM
  579. Device Locator DIMM 0
  580. Bank Locator P0 CHANNEL A
  581. Memory Type 1ah - Specification Reserved
  582. Type Detail 4080h - Synchronous
  583. Speed 2400MHz
  584. Manufacturer Kingston
  585. Part Number KHX2400C15/8G
  586. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0017h]
  587. Starting Address 00000000h
  588. Ending Address 00ffffffh
  589. Memory Device Handle 0016h
  590. Mem Array Mapped Adr Handle 0010h
  591. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0018h]
  592. [Memory Device (Type 17) - Length 40 - Handle 0019h]
  593. Physical Memory Array Handle 000fh
  594. Memory Error Info Handle 0018h
  595. Total Width 64 bits
  596. Data Width 64 bits
  597. Size 8192MB
  598. Form Factor 09h - DIMM
  599. Device Locator DIMM 0
  600. Bank Locator P0 CHANNEL B
  601. Memory Type 1ah - Specification Reserved
  602. Type Detail 4080h - Synchronous
  603. Speed 2400MHz
  604. Manufacturer Kingston
  605. Part Number KHX2400C15/8G
  606. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 001ah]
  607. Starting Address 00000000h
  608. Ending Address 00ffffffh
  609. Memory Device Handle 0019h
  610. Mem Array Mapped Adr Handle 0010h
  611.  
  612. ========================== Dump #1: Extra #1 ===========================
  613.  
  614. 2: kd> !verifier
  615. Verify Flags Level 0x001209bb
  616. STANDARD FLAGS:
  617. [X] (0x00000000) Automatic Checks
  618. [X] (0x00000001) Special pool
  619. [X] (0x00000002) Force IRQL checking
  620. [X] (0x00000008) Pool tracking
  621. [X] (0x00000010) I/O verification
  622. [X] (0x00000020) Deadlock detection
  623. [X] (0x00000080) DMA checking
  624. [X] (0x00000100) Security checks
  625. [X] (0x00000800) Miscellaneous checks
  626. [X] (0x00020000) DDI compliance checking
  627. ADDITIONAL FLAGS:
  628. [ ] (0x00000004) Randomized low resources simulation
  629. [ ] (0x00000200) Force pending I/O requests
  630. [ ] (0x00000400) IRP logging
  631. [ ] (0x00002000) Invariant MDL checking for stack
  632. [ ] (0x00004000) Invariant MDL checking for driver
  633. [ ] (0x00008000) Power framework delay fuzzing
  634. [ ] (0x00010000) Port/miniport interface checking
  635. [ ] (0x00040000) Systematic low resources simulation
  636. [ ] (0x00080000) DDI compliance checking (additional)
  637. [ ] (0x00200000) NDIS/WIFI verification
  638. [ ] (0x00800000) Kernel synchronization delay fuzzing
  639. [ ] (0x01000000) VM switch verification
  640. [ ] (0x02000000) Code integrity checks
  641. RESERVED FLAGS (use of these flags is unsupported):
  642. [X] (0x00100000) Unused or reserved flag
  643. [X] Indicates flag is enabled
  644. Summary of All Verifier Statistics
  645. RaiseIrqls 0x0
  646. AcquireSpinLocks 0x0
  647. Synch Executions 0x0
  648. Trims 0x3
  649. Pool Allocations Attempted 0x336d49c
  650. Pool Allocations Succeeded 0x336d49c
  651. Pool Allocations Succeeded SpecialPool 0x336d49c
  652. Pool Allocations With NO TAG 0x0
  653. Pool Allocations Failed 0x0
  654. Current paged pool allocations 0x1 for 0000066C bytes
  655. Peak paged pool allocations 0x1 for 0000066C bytes
  656. Current nonpaged pool allocations 0x2 for 00001068 bytes
  657. Peak nonpaged pool allocations 0x2 for 00001068 bytes
  658.  
  659. ========================== Dump #1: Extra #2 ===========================
  660.  
  661. 2: kd> !thread
  662. THREAD ffffbd0075d36340 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 2
  663. Not impersonating
  664. GetUlongFromAddress: unable to read from fffff8000b22843c
  665. Owning Process fffff8000b33aa00 Image: System Process
  666. Attached Process ffffad0da04e8040 Image: System
  667. fffff78000000000: Unable to get shared data
  668. Wait Start TickCount 3125281
  669. Context Switch Count 13491788 IdealProcessor: 2
  670. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  671. UserTime 00:00:00.000
  672. KernelTime 00:00:00.000
  673. Win32 Start Address nt!KiIdleLoop (0xfffff8000a9f84f0)
  674. Stack Init ffff8e89e2a37c90 Current ffff8e89e2a37c20
  675. Base ffff8e89e2a38000 Limit ffff8e89e2a32000 Call 0000000000000000
  676. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 0
  677. Child-SP RetAddr : Args to Child : Call Site
  678. ffff8e89`e2a374a8 fffff800`0aa06929 : 00000000`00000139 00000000`00000003 ffff8e89`e2a377d0 ffff8e89`e2a37728 : nt!KeBugCheckEx
  679. ffff8e89`e2a374b0 fffff800`0aa06d50 : ffff37d4`f29f5dac fffff800`0a8fe5a7 00000003`86368533 00000071`b292343c : nt!KiBugCheckDispatch+0x69
  680. ffff8e89`e2a375f0 fffff800`0aa050e3 : 00000000`00000000 ffffad0d`a3245b40 00000000`00000001 00000000`00989680 : nt!KiFastFailDispatch+0xd0
  681. ffff8e89`e2a377d0 fffff800`0aa2b01b : ffffad0d`a795b010 00000071`b292365e ffffffff`00000001 ffffad0d`a795b1f8 : nt!KiRaiseSecurityCheckFailure+0x323 (TrapFrame @ ffff8e89`e2a377d0)
  682. ffff8e89`e2a37960 fffff800`0a850eca : 00000000`00000000 00000000`00000000 00000000`00140001 ffff8e89`e2a37a58 : nt!KiRemoveEntryTimer+0x1dc7eb
  683. ffff8e89`e2a379d0 fffff800`0a9f858e : ffffffff`00000000 ffffbd00`75d2b180 ffffbd00`75d36340 ffffad0d`af2a0080 : nt!KiRetireDpcList+0x73a
  684. ffff8e89`e2a37c60 00000000`00000000 : ffff8e89`e2a38000 ffff8e89`e2a32000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  685.  
  686.  
  687. ========================================================================
  688. ======================= Dump #2: ANALYZE VERBOSE =======================
  689. ====================== File: 060320-12468-01.dmp =======================
  690. ========================================================================
  691.  
  692. Mini Kernel Dump File: Only registers and stack trace are available
  693. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  694. Kernel base = 0xfffff800`03e16000 PsLoadedModuleList = 0xfffff800`04a40250
  695. Debug session time: Wed Jun 3 08:17:54.519 2020 (UTC - 4:00)
  696. System Uptime: 0 days 0:18:17.244
  697.  
  698. BugCheck 139, {3, ffffe303fa6613d0, ffffe303fa661328, 0}
  699. *** WARNING: Unable to verify timestamp for win32k.sys
  700. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  701. Probably caused by : memory_corruption
  702. Followup: memory_corruption
  703.  
  704. KERNEL_SECURITY_CHECK_FAILURE (139)
  705. A kernel component has corrupted a critical data structure. The corruption
  706. could potentially allow a malicious user to gain control of this machine.
  707.  
  708. Arguments:
  709. Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
  710. Arg2: ffffe303fa6613d0, Address of the trap frame for the exception that caused the bugcheck
  711. Arg3: ffffe303fa661328, Address of the exception record for the exception that caused the bugcheck
  712. Arg4: 0000000000000000, Reserved
  713.  
  714. Debugging Details:
  715. DUMP_CLASS: 1
  716. DUMP_QUALIFIER: 400
  717. DUMP_TYPE: 2
  718. TRAP_FRAME: ffffe303fa6613d0 -- (.trap 0xffffe303fa6613d0)
  719. NOTE: The trap frame does not contain all registers.
  720. Some register values may be zeroed or incorrect.
  721. rax=ffffc18855f39910 rbx=0000000000000000 rcx=0000000000000003
  722. rdx=ffffc1885f093dd0 rsi=0000000000000000 rdi=0000000000000000
  723. rip=fffff8000422321f rsp=ffffe303fa661560 rbp=000000028e0584c4
  724. r8=070000028e06b697 r9=fffff80003e16000 r10=fffff80002ce0ac0
  725. r11=0000000000000000 r12=0000000000000000 r13=0000000000000000
  726. r14=0000000000000000 r15=0000000000000000
  727. iopl=0 nv up ei ng nz na po cy
  728. nt!KiInsertTimerTable+0x1e406f:
  729. fffff800`0422321f cd29 int 29h
  730. Resetting default scope
  731. EXCEPTION_RECORD: ffffe303fa661328 -- (.exr 0xffffe303fa661328)
  732. ExceptionAddress: fffff8000422321f (nt!KiInsertTimerTable+0x00000000001e406f)
  733. ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
  734. ExceptionFlags: 00000001
  735. NumberParameters: 1
  736. Parameter[0]: 0000000000000003
  737. Subcode: 0x3 FAST_FAIL_CORRUPT_LIST_ENTRY
  738. CUSTOMER_CRASH_COUNT: 1
  739. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  740. BUGCHECK_STR: 0x139
  741.  
  742. PROCESS_NAME: System
  743.  
  744. CURRENT_IRQL: 2
  745. ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  746. EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  747. EXCEPTION_CODE_STR: c0000409
  748. EXCEPTION_PARAMETER1: 0000000000000003
  749. LAST_CONTROL_TRANSFER: from fffff80004205929 to fffff800041f3a20
  750. STACK_TEXT:
  751. ffffe303`fa6610a8 fffff800`04205929 : 00000000`00000139 00000000`00000003 ffffe303`fa6613d0 ffffe303`fa661328 : nt!KeBugCheckEx
  752. ffffe303`fa6610b0 fffff800`04205d50 : ffffc188`5897d640 ffffc188`5897d480 ffffc188`55a31300 ffffc188`55a32100 : nt!KiBugCheckDispatch+0x69
  753. ffffe303`fa6611f0 fffff800`042040e3 : 00000000`00000001 ffffe303`fa661b30 00000000`00000001 fffff800`04055026 : nt!KiFastFailDispatch+0xd0
  754. ffffe303`fa6613d0 fffff800`0422321f : 00000000`00000000 00000000`00000000 fffff800`041381c0 fffff800`05fa9a5b : nt!KiRaiseSecurityCheckFailure+0x323
  755. ffffe303`fa661560 fffff800`040fecbe : ffffffff`fffca4a0 00000000`00000002 ffffc188`51cf5d00 00000000`00000000 : nt!KiInsertTimerTable+0x1e406f
  756. ffffe303`fa6615e0 fffff800`05fa8d6d : 00000000`0010bf01 ffffe303`fa661740 ffffe303`00000081 00000002`8e00e09f : nt!KeSetTimerEx+0xfe
  757. ffffe303`fa661640 fffff800`0405069e : ffffe681`8bb66240 00000000`00000000 ffffe303`fa661b20 ffffe681`8bb63180 : tcpip!TcpPeriodicTimeoutHandler+0xc8d
  758. ffffe303`fa661860 fffff800`0404f984 : 00000000`00000000 00000000`00000000 00000000`00140001 00000000`00000000 : nt!KiExecuteAllDpcs+0x30e
  759. ffffe303`fa6619d0 fffff800`041f758e : ffffffff`00000000 ffffe681`8bb63180 ffffe681`8bb6e340 ffffc188`5f0e5080 : nt!KiRetireDpcList+0x1f4
  760. ffffe303`fa661c60 00000000`00000000 : ffffe303`fa662000 ffffe303`fa65c000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  761. STACK_COMMAND: kb
  762. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  763. fffff8000419af1e-fffff8000419af21 4 bytes - nt!MiFreeUltraMapping+32
  764. [ a0 7d fb f6:20 7e fc f8 ]
  765. 4 errors : !nt (fffff8000419af1e-fffff8000419af21)
  766. MODULE_NAME: memory_corruption
  767.  
  768. IMAGE_NAME: memory_corruption
  769.  
  770. FOLLOWUP_NAME: memory_corruption
  771. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  772. MEMORY_CORRUPTOR: LARGE
  773. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  774. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  775. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  776. TARGET_TIME: 2020-06-03T12:17:54.000Z
  777. SUITE_MASK: 784
  778. PRODUCT_TYPE: 1
  779. USER_LCID: 0
  780. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  781. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  782. Followup: memory_corruption
  783.  
  784. ====================== Dump #2: 3RD PARTY DRIVERS ======================
  785.  
  786. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  787. Oct 18 2018 - AMDRyzenMasterDriver.sys - AMD Ryzen Master driver
  788. Mar 14 2019 - nvvad64v.sys - Nvidia Virtual Audio driver http://www.nvidia.com/
  789. May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  790. Jun 19 2019 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  791. Sep 11 2019 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  792. Oct 28 2019 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  793. Jan 10 2020 - nvvhci.sys - Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  794. Feb 12 2020 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  795. Feb 19 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  796. May 15 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  797.  
  798. ================== Dump #2: 3RD PARTY DRIVERS (FULL) ===================
  799.  
  800. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  801. Image name: amdgpio3.sys
  802. Search : https://www.google.com/search?q=amdgpio3.sys
  803. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  804. Timestamp : Mon Mar 14 2016
  805.  
  806. Image path: \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
  807. Image name: AMDRyzenMasterDriver.sys
  808. Search : https://www.google.com/search?q=AMDRyzenMasterDriver.sys
  809. ADA Info : AMD Ryzen Master driver
  810. Timestamp : Thu Oct 18 2018
  811.  
  812. Image path: \SystemRoot\system32\drivers\nvvad64v.sys
  813. Image name: nvvad64v.sys
  814. Search : https://www.google.com/search?q=nvvad64v.sys
  815. ADA Info : Nvidia Virtual Audio driver http://www.nvidia.com/
  816. Timestamp : Thu Mar 14 2019
  817.  
  818. Image path: \SystemRoot\System32\drivers\UcmCxUcsiNvppc.sys
  819. Image name: UcmCxUcsiNvppc.sys
  820. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  821. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  822. Timestamp : Tue May 14 2019
  823.  
  824. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  825. Image name: amdpsp.sys
  826. Search : https://www.google.com/search?q=amdpsp.sys
  827. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  828. Timestamp : Wed Jun 19 2019
  829.  
  830. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  831. Image name: AMDPCIDev.sys
  832. Search : https://www.google.com/search?q=AMDPCIDev.sys
  833. ADA Info : Advanced Micro Devices PCI Device driver
  834. Timestamp : Wed Sep 11 2019
  835.  
  836. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  837. Image name: amdgpio2.sys
  838. Search : https://www.google.com/search?q=amdgpio2.sys
  839. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  840. Timestamp : Mon Oct 28 2019
  841.  
  842. Image path: \SystemRoot\System32\drivers\nvvhci.sys
  843. Image name: nvvhci.sys
  844. Search : https://www.google.com/search?q=nvvhci.sys
  845. ADA Info : Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  846. Timestamp : Fri Jan 10 2020
  847.  
  848. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  849. Image name: rt640x64.sys
  850. Search : https://www.google.com/search?q=rt640x64.sys
  851. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  852. Timestamp : Wed Feb 12 2020
  853.  
  854. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  855. Image name: nvhda64v.sys
  856. Search : https://www.google.com/search?q=nvhda64v.sys
  857. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  858. Timestamp : Wed Feb 19 2020
  859.  
  860. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys
  861. Image name: nvlddmkm.sys
  862. Search : https://www.google.com/search?q=nvlddmkm.sys
  863. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  864. Timestamp : Fri May 15 2020
  865.  
  866. ====================== Dump #2: MICROSOFT DRIVERS ======================
  867.  
  868. ACPI.sys ACPI Driver for NT (Microsoft)
  869. acpiex.sys ACPIEx Driver (Microsoft)
  870. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  871. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  872. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  873. ahcache.sys Application Compatibility Cache (Microsoft)
  874. amdppm.sys Processor Device Driver
  875. bam.sys BAM Kernal driver (Microsoft)
  876. BasicDisplay.sys Basic Display driver (Microsoft)
  877. BasicRender.sys Basic Render driver (Microsoft)
  878. Beep.SYS BEEP driver (Microsoft)
  879. bindflt.sys Windows Bind Filter driver (Microsoft)
  880. BOOTVID.dll VGA Boot Driver (Microsoft)
  881. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  882. cdd.dll Canonical Display Driver (Microsoft)
  883. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  884. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  885. CI.dll Code Integrity Module (Microsoft)
  886. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  887. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  888. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  889. CLFS.SYS Common Log File System Driver (Microsoft)
  890. clipsp.sys CLIP Service (Microsoft)
  891. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  892. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  893. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  894. condrv.sys Console Driver (Microsoft)
  895. crashdmp.sys Crash Dump driver (Microsoft)
  896. dfsc.sys DFS Namespace Client Driver (Microsoft)
  897. disk.sys PnP Disk Driver (Microsoft)
  898. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  899. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  900. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  901. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  902. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  903. dxgmms2.sys DirectX Graphics MMS
  904. EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
  905. fastfat.SYS Fast FAT File System Driver (Microsoft)
  906. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  907. fileinfo.sys FileInfo Filter Driver (Microsoft)
  908. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  909. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  910. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  911. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  912. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  913. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  914. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  915. HdAudio.sys High Definition Audio Function driver (Microsoft)
  916. HIDCLASS.SYS Hid Class Library (Microsoft)
  917. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  918. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  919. HTTP.sys HTTP Protocol Stack (Microsoft)
  920. intelpep.sys Intel Power Engine Plugin (Microsoft)
  921. IntelTA.sys Intel Telemetry Driver
  922. iorate.sys I/O rate control Filter (Microsoft)
  923. kbdclass.sys Keyboard Class Driver (Microsoft)
  924. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  925. kd.dll Local Kernal Debugger (Microsoft)
  926. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  927. ks.sys Kernal CSA Library (Microsoft)
  928. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  929. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  930. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  931. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  932. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  933. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  934. mmcss.sys MMCSS Driver (Microsoft)
  935. monitor.sys Monitor Driver (Microsoft)
  936. mouclass.sys Mouse Class Driver (Microsoft)
  937. mouhid.sys HID Mouse Filter Driver (Microsoft)
  938. mountmgr.sys Mount Point Manager (Microsoft)
  939. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  940. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  941. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  942. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  943. Msfs.SYS Mailslot driver (Microsoft)
  944. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  945. msisadrv.sys ISA Driver (Microsoft)
  946. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  947. msquic.sys Windows QUIC Driver
  948. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  949. mssmbios.sys System Management BIOS driver (Microsoft)
  950. mup.sys Multiple UNC Provider driver (Microsoft)
  951. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  952. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  953. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  954. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  955. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  956. NDProxy.sys NDIS Proxy driver (Microsoft)
  957. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  958. netbios.sys NetBIOS Interface driver (Microsoft)
  959. netbt.sys MBT Transport driver (Microsoft)
  960. NETIO.SYS Network I/O Subsystem (Microsoft)
  961. Npfs.SYS NPFS driver (Microsoft)
  962. npsvctrig.sys Named pipe service triggers (Microsoft)
  963. nsiproxy.sys NSI Proxy driver (Microsoft)
  964. Ntfs.sys NT File System Driver (Microsoft)
  965. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  966. ntosext.sys NTOS Extension Host driver (Microsoft)
  967. Null.SYS NULL Driver (Microsoft)
  968. pacer.sys QoS Packet Scheduler (Microsoft)
  969. partmgr.sys Partition driver (Microsoft)
  970. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  971. pcw.sys Performance Counter Driver (Microsoft)
  972. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  973. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  974. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  975. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  976. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  977. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  978. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  979. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  980. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  981. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  982. rdyboost.sys ReadyBoost Driver (Microsoft)
  983. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  984. serenum.sys Serial Port Enumerator (Microsoft)
  985. serial.sys Serial Device Driver
  986. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  987. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  988. spaceport.sys Storage Spaces driver (Microsoft)
  989. srv2.sys Smb 2.0 Server driver (Microsoft)
  990. srvnet.sys Server Network driver (Microsoft)
  991. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  992. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  993. storqosflt.sys Storage QoS Filter driver (Microsoft)
  994. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  995. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  996. tcpip.sys TCP/IP Protocol driver (Microsoft)
  997. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  998. TDI.SYS TDI Wrapper driver (Microsoft)
  999. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  1000. tm.sys Kernel Transaction Manager driver (Microsoft)
  1001. UcmCx.sys USB Connector Manager KMDF Class Extension
  1002. ucx01000.sys USB Controller Extension (Microsoft)
  1003. UEFI.sys UEFI NT driver (Microsoft)
  1004. umbus.sys User-Mode Bus Enumerator (Microsoft)
  1005. usbaudio.sys USB Audio Class Driver (Microsoft)
  1006. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  1007. USBD.SYS Universal Serial Bus Driver (Microsoft)
  1008. UsbHub3.sys USB3 HUB driver (Microsoft)
  1009. USBXHCI.SYS USB XHCI driver (Microsoft)
  1010. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  1011. VerifierExt.sys Driver Verifier Extension
  1012. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  1013. volmgr.sys Volume Manager Driver (Microsoft)
  1014. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  1015. volsnap.sys Volume Shadow Copy driver (Microsoft)
  1016. volume.sys Volume driver (Microsoft)
  1017. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  1018. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  1019. watchdog.sys Watchdog driver (Microsoft)
  1020. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  1021. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  1022. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  1023. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  1024. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  1025. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  1026. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  1027. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  1028. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  1029. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  1030. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  1031. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  1032. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  1033. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  1034. Wof.sys Windows Overlay Filter (Microsoft)
  1035. WppRecorder.sys WPP Trace Recorder (Microsoft)
  1036.  
  1037. ====================== Dump #2: UNLOADED MODULES =======================
  1038.  
  1039. fffff80a`62f20000 fffff80a`62f55000 usbccgp.sys
  1040. fffff80a`62f60000 fffff80a`62f73000 hidusb.sys
  1041. fffff80a`62f80000 fffff80a`62fc0000 HIDCLASS.SYS
  1042. fffff80a`63060000 fffff80a`63098000 usbaudio.sys
  1043. fffff80a`63020000 fffff80a`63032000 kbdhid.sys
  1044. fffff80a`62fe0000 fffff80a`62ff1000 mouhid.sys
  1045. fffff80a`63020000 fffff80a`63032000 kbdhid.sys
  1046. fffff80a`62fe0000 fffff80a`62ff1000 mouhid.sys
  1047. fffff80a`64bf0000 fffff80a`64bfd000 atdcm64a.sys
  1048. fffff80a`60760000 fffff80a`60776000 WdNisDrv.sys
  1049. fffff80a`64bf0000 fffff80a`64bfd000 atdcm64a.sys
  1050. fffff80a`60750000 fffff80a`6075e000 WSDScan.sys
  1051. fffff80a`64bf0000 fffff80a`64bfe000 WSDPrint.sys
  1052. fffff80a`60720000 fffff80a`6072f000 dump_storpor
  1053. fffff80a`60770000 fffff80a`607a3000 dump_storahc
  1054. fffff80a`607d0000 fffff80a`607ee000 dump_dumpfve
  1055. fffff80a`61100000 fffff80a`6111c000 dam.sys
  1056. fffff800`05380000 fffff800`05391000 WdBoot.sys
  1057. fffff800`06500000 fffff800`06510000 hwpolicy.sys
  1058.  
  1059. ====================== Dump #2: BIOS INFORMATION =======================
  1060.  
  1061. [SMBIOS Data Tables v2.8]
  1062. [DMI Version - 0]
  1063. [2.0 Calling Convention - No]
  1064. [Table Size - 2272 bytes]
  1065. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  1066. Vendor American Megatrends Inc.
  1067. BIOS Version 2.D0
  1068. BIOS Starting Address Segment f000
  1069. BIOS Release Date 12/03/2019
  1070. BIOS ROM Size 1000000
  1071. BIOS Characteristics
  1072. 07: - PCI Supported
  1073. 11: - Upgradeable FLASH BIOS
  1074. 12: - BIOS Shadowing Supported
  1075. 15: - CD-Boot Supported
  1076. 16: - Selectable Boot Supported
  1077. 17: - BIOS ROM Socketed
  1078. 19: - EDD Supported
  1079. 23: - 1.2MB Floppy Supported
  1080. 24: - 720KB Floppy Supported
  1081. 25: - 2.88MB Floppy Supported
  1082. 26: - Print Screen Device Supported
  1083. 27: - Keyboard Services Supported
  1084. 28: - Serial Services Supported
  1085. 29: - Printer Services Supported
  1086. 32: - BIOS Vendor Reserved
  1087. BIOS Characteristic Extensions
  1088. 00: - ACPI Supported
  1089. 01: - USB Legacy Supported
  1090. 08: - BIOS Boot Specification Supported
  1091. 10: - Specification Reserved
  1092. 11: - Specification Reserved
  1093. BIOS Major Revision 5
  1094. BIOS Minor Revision 14
  1095. EC Firmware Major Revision 255
  1096. EC Firmware Minor Revision 255
  1097. [System Information (Type 1) - Length 27 - Handle 0001h]
  1098. Manufacturer Micro-Star International Co., Ltd.
  1099. Product Name MS-7B84
  1100. Version 1.0
  1101. UUID 00000000-0000-0000-0000-000000000000
  1102. Wakeup Type Power Switch
  1103. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  1104. Manufacturer Micro-Star International Co., Ltd.
  1105. Product B450M PRO-M2 (MS-7B84)
  1106. Version 1.0
  1107. Feature Flags 09h
  1108. -808667424: - -808667376: - ÷7?
  1109. ü
  1110. Chassis Handle 0003h
  1111. Board Type 0ah - Processor/Memory Module
  1112. Number of Child Handles 0
  1113. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  1114. Manufacturer Micro-Star International Co., Ltd.
  1115. Chassis Type Desktop
  1116. Version 1.0
  1117. Bootup State Safe
  1118. Power Supply State Safe
  1119. Thermal State Safe
  1120. Security Status None
  1121. OEM Defined 0
  1122. Height 0U
  1123. Number of Power Cords 1
  1124. Number of Contained Elements 0
  1125. Contained Element Size 3
  1126. [OEM Strings (Type 11) - Length 5 - Handle 000bh]
  1127. Number of Strings 1
  1128. [System Configuration Options (Type 12) - Length 5 - Handle 000ch]
  1129. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 000eh]
  1130. [Physical Memory Array (Type 16) - Length 23 - Handle 000fh]
  1131. Location 03h - SystemBoard/Motherboard
  1132. Use 03h - System Memory
  1133. Memory Error Correction 03h - None
  1134. Maximum Capacity 134217728KB
  1135. Memory Error Inf Handle 000eh
  1136. Number of Memory Devices 2
  1137. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0010h]
  1138. Starting Address 00000000h
  1139. Ending Address 00ffffffh
  1140. Memory Array Handle 000fh
  1141. Partition Width 02
  1142. [Cache Information (Type 7) - Length 19 - Handle 0011h]
  1143. Socket Designation L1 - Cache
  1144. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  1145. Maximum Cache Size 0240h - 576K
  1146. Installed Size 0240h - 576K
  1147. Supported SRAM Type 0010h - Pipeline-Burst
  1148. Current SRAM Type 0010h - Pipeline-Burst
  1149. Cache Speed 1ns
  1150. Error Correction Type Specification Reserved
  1151. System Cache Type Unified
  1152. Associativity 8-way Set-Associative
  1153. [Cache Information (Type 7) - Length 19 - Handle 0012h]
  1154. Socket Designation L2 - Cache
  1155. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  1156. Maximum Cache Size 0c00h - 3072K
  1157. Installed Size 0c00h - 3072K
  1158. Supported SRAM Type 0010h - Pipeline-Burst
  1159. Current SRAM Type 0010h - Pipeline-Burst
  1160. Cache Speed 1ns
  1161. Error Correction Type Specification Reserved
  1162. System Cache Type Unified
  1163. Associativity 8-way Set-Associative
  1164. [Cache Information (Type 7) - Length 19 - Handle 0013h]
  1165. Socket Designation L3 - Cache
  1166. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  1167. Maximum Cache Size 4000h - 16384K
  1168. Installed Size 4000h - 16384K
  1169. Supported SRAM Type 0010h - Pipeline-Burst
  1170. Current SRAM Type 0010h - Pipeline-Burst
  1171. Cache Speed 1ns
  1172. Error Correction Type Specification Reserved
  1173. System Cache Type Unified
  1174. Associativity 16-way Set-Associative
  1175. [Processor Information (Type 4) - Length 48 - Handle 0014h]
  1176. Socket Designation AM4
  1177. Processor Type Central Processor
  1178. Processor Family 6bh - Specification Reserved
  1179. Processor Manufacturer Advanced Micro Devices, Inc.
  1180. Processor ID 820f8000fffb8b17
  1181. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  1182. Processor Voltage 8bh - 1.1V
  1183. External Clock 100MHz
  1184. Max Speed 3900MHz
  1185. Current Speed 3400MHz
  1186. Status Enabled Populated
  1187. Processor Upgrade Specification Reserved
  1188. L1 Cache Handle 0011h
  1189. L2 Cache Handle 0012h
  1190. L3 Cache Handle 0013h
  1191. Part Number Unknown
  1192. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0015h]
  1193. [Memory Device (Type 17) - Length 40 - Handle 0016h]
  1194. Physical Memory Array Handle 000fh
  1195. Memory Error Info Handle 0015h
  1196. Total Width 64 bits
  1197. Data Width 64 bits
  1198. Size 8192MB
  1199. Form Factor 09h - DIMM
  1200. Device Locator DIMM 0
  1201. Bank Locator P0 CHANNEL A
  1202. Memory Type 1ah - Specification Reserved
  1203. Type Detail 4080h - Synchronous
  1204. Speed 2400MHz
  1205. Manufacturer Kingston
  1206. Part Number KHX2400C15/8G
  1207. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0017h]
  1208. Starting Address 00000000h
  1209. Ending Address 00ffffffh
  1210. Memory Device Handle 0016h
  1211. Mem Array Mapped Adr Handle 0010h
  1212. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0018h]
  1213. [Memory Device (Type 17) - Length 40 - Handle 0019h]
  1214. Physical Memory Array Handle 000fh
  1215. Memory Error Info Handle 0018h
  1216. Total Width 64 bits
  1217. Data Width 64 bits
  1218. Size 8192MB
  1219. Form Factor 09h - DIMM
  1220. Device Locator DIMM 0
  1221. Bank Locator P0 CHANNEL B
  1222. Memory Type 1ah - Specification Reserved
  1223. Type Detail 4080h - Synchronous
  1224. Speed 2400MHz
  1225. Manufacturer Kingston
  1226. Part Number KHX2400C15/8G
  1227. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 001ah]
  1228. Starting Address 00000000h
  1229. Ending Address 00ffffffh
  1230. Memory Device Handle 0019h
  1231. Mem Array Mapped Adr Handle 0010h
  1232.  
  1233. ========================== Dump #2: Extra #1 ===========================
  1234.  
  1235. 5: kd> !verifier
  1236. Verify Flags Level 0x001209bb
  1237. STANDARD FLAGS:
  1238. [X] (0x00000000) Automatic Checks
  1239. [X] (0x00000001) Special pool
  1240. [X] (0x00000002) Force IRQL checking
  1241. [X] (0x00000008) Pool tracking
  1242. [X] (0x00000010) I/O verification
  1243. [X] (0x00000020) Deadlock detection
  1244. [X] (0x00000080) DMA checking
  1245. [X] (0x00000100) Security checks
  1246. [X] (0x00000800) Miscellaneous checks
  1247. [X] (0x00020000) DDI compliance checking
  1248. ADDITIONAL FLAGS:
  1249. [ ] (0x00000004) Randomized low resources simulation
  1250. [ ] (0x00000200) Force pending I/O requests
  1251. [ ] (0x00000400) IRP logging
  1252. [ ] (0x00002000) Invariant MDL checking for stack
  1253. [ ] (0x00004000) Invariant MDL checking for driver
  1254. [ ] (0x00008000) Power framework delay fuzzing
  1255. [ ] (0x00010000) Port/miniport interface checking
  1256. [ ] (0x00040000) Systematic low resources simulation
  1257. [ ] (0x00080000) DDI compliance checking (additional)
  1258. [ ] (0x00200000) NDIS/WIFI verification
  1259. [ ] (0x00800000) Kernel synchronization delay fuzzing
  1260. [ ] (0x01000000) VM switch verification
  1261. [ ] (0x02000000) Code integrity checks
  1262. RESERVED FLAGS (use of these flags is unsupported):
  1263. [X] (0x00100000) Unused or reserved flag
  1264. [X] Indicates flag is enabled
  1265. Summary of All Verifier Statistics
  1266. RaiseIrqls 0x0
  1267. AcquireSpinLocks 0x0
  1268. Synch Executions 0x0
  1269. Trims 0x0
  1270. Pool Allocations Attempted 0x6ff236
  1271. Pool Allocations Succeeded 0x6ff236
  1272. Pool Allocations Succeeded SpecialPool 0x6ff236
  1273. Pool Allocations With NO TAG 0x0
  1274. Pool Allocations Failed 0x0
  1275. Current paged pool allocations 0x1 for 0000066C bytes
  1276. Peak paged pool allocations 0x1 for 0000066C bytes
  1277. Current nonpaged pool allocations 0x2 for 00001068 bytes
  1278. Peak nonpaged pool allocations 0x2 for 00001068 bytes
  1279.  
  1280. ========================== Dump #2: Extra #2 ===========================
  1281.  
  1282. 5: kd> !thread
  1283. THREAD ffffe6818bb6e340 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 5
  1284. Not impersonating
  1285. GetUlongFromAddress: unable to read from fffff80004a2743c
  1286. Owning Process fffff80004b39a00 Image: System Process
  1287. Attached Process ffffc18851ce8040 Image: System
  1288. fffff78000000000: Unable to get shared data
  1289. Wait Start TickCount 69167
  1290. Context Switch Count 437579 IdealProcessor: 5
  1291. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  1292. UserTime 00:00:00.000
  1293. KernelTime 00:00:00.000
  1294. Win32 Start Address nt!KiIdleLoop (0xfffff800041f74f0)
  1295. Stack Init ffffe303fa661c90 Current ffffe303fa661c20
  1296. Base ffffe303fa662000 Limit ffffe303fa65c000 Call 0000000000000000
  1297. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 0
  1298. Child-SP RetAddr : Args to Child : Call Site
  1299. ffffe303`fa6610a8 fffff800`04205929 : 00000000`00000139 00000000`00000003 ffffe303`fa6613d0 ffffe303`fa661328 : nt!KeBugCheckEx
  1300. ffffe303`fa6610b0 fffff800`04205d50 : ffffc188`5897d640 ffffc188`5897d480 ffffc188`55a31300 ffffc188`55a32100 : nt!KiBugCheckDispatch+0x69
  1301. ffffe303`fa6611f0 fffff800`042040e3 : 00000000`00000001 ffffe303`fa661b30 00000000`00000001 fffff800`04055026 : nt!KiFastFailDispatch+0xd0
  1302. ffffe303`fa6613d0 fffff800`0422321f : 00000000`00000000 00000000`00000000 fffff800`041381c0 fffff800`05fa9a5b : nt!KiRaiseSecurityCheckFailure+0x323 (TrapFrame @ ffffe303`fa6613d0)
  1303. ffffe303`fa661560 fffff800`040fecbe : ffffffff`fffca4a0 00000000`00000002 ffffc188`51cf5d00 00000000`00000000 : nt!KiInsertTimerTable+0x1e406f
  1304. ffffe303`fa6615e0 fffff800`05fa8d6d : 00000000`0010bf01 ffffe303`fa661740 ffffe303`00000081 00000002`8e00e09f : nt!KeSetTimerEx+0xfe
  1305. ffffe303`fa661640 fffff800`0405069e : ffffe681`8bb66240 00000000`00000000 ffffe303`fa661b20 ffffe681`8bb63180 : tcpip!TcpPeriodicTimeoutHandler+0xc8d
  1306. ffffe303`fa661860 fffff800`0404f984 : 00000000`00000000 00000000`00000000 00000000`00140001 00000000`00000000 : nt!KiExecuteAllDpcs+0x30e
  1307. ffffe303`fa6619d0 fffff800`041f758e : ffffffff`00000000 ffffe681`8bb63180 ffffe681`8bb6e340 ffffc188`5f0e5080 : nt!KiRetireDpcList+0x1f4
  1308. ffffe303`fa661c60 00000000`00000000 : ffffe303`fa662000 ffffe303`fa65c000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  1309.  
  1310.  
  1311. ========================================================================
  1312. ======================= Dump #3: ANALYZE VERBOSE =======================
  1313. ====================== File: 060220-12656-01.dmp =======================
  1314. ========================================================================
  1315.  
  1316. Mini Kernel Dump File: Only registers and stack trace are available
  1317. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  1318. Kernel base = 0xfffff807`2c200000 PsLoadedModuleList = 0xfffff807`2ce2a250
  1319. Debug session time: Tue Jun 2 16:20:08.308 2020 (UTC - 4:00)
  1320. System Uptime: 0 days 0:04:56.967
  1321.  
  1322. BugCheck A, {ffffffffffffff8c, ff, ff, fffff8072c5ffa01}
  1323. *** WARNING: Unable to verify timestamp for win32k.sys
  1324. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  1325. Probably caused by : memory_corruption
  1326. Followup: memory_corruption
  1327.  
  1328. IRQL_NOT_LESS_OR_EQUAL (a)
  1329. An attempt was made to access a pageable (or completely invalid) address at an
  1330. interrupt request level (IRQL) that is too high. This is usually
  1331. caused by drivers using improper addresses.
  1332. If a kernel debugger is available get the stack backtrace.
  1333.  
  1334. Arguments:
  1335. Arg1: ffffffffffffff8c, memory referenced
  1336. Arg2: 00000000000000ff, IRQL
  1337. Arg3: 00000000000000ff, bitfield :
  1338. bit 0 : value 0 = read operation, 1 = write operation
  1339. bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
  1340. Arg4: fffff8072c5ffa01, address which referenced memory
  1341.  
  1342. Debugging Details:
  1343. DUMP_CLASS: 1
  1344. DUMP_QUALIFIER: 400
  1345. DUMP_TYPE: 2
  1346. WRITE_ADDRESS: fffff8072cefa388: Unable to get MiVisibleState
  1347. ffffffffffffff8c
  1348. CURRENT_IRQL: 0
  1349. FAULTING_IP:
  1350. nt!MiGetPfnProtection+1f3f0d
  1351. fffff807`2c5ffa01 ff418b inc dword ptr [rcx-75h]
  1352. CUSTOMER_CRASH_COUNT: 1
  1353. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  1354. BUGCHECK_STR: AV
  1355.  
  1356. PROCESS_NAME: System
  1357.  
  1358. TRAP_FRAME: fffff8073206a940 -- (.trap 0xfffff8073206a940)
  1359. NOTE: The trap frame does not contain all registers.
  1360. Some register values may be zeroed or incorrect.
  1361. rax=fffff8072c5ffa00 rbx=0000000000000000 rcx=0000000000000001
  1362. rdx=0000000000000000 rsi=0000000000000000 rdi=0000000000000000
  1363. rip=fffff8072c5ffa01 rsp=fffff8073206aad0 rbp=fffff8073206ab50
  1364. r8=0000000000000008 r9=0000000000000000 r10=0000fffff8072c5f
  1365. r11=ffffcb7e0e000000 r12=0000000000000000 r13=0000000000000000
  1366. r14=0000000000000000 r15=0000000000000000
  1367. iopl=0 nv up di pl nz ac po cy
  1368. nt!MiGetPfnProtection+0x1f3f0d:
  1369. fffff807`2c5ffa01 ff418b inc dword ptr [rcx-75h] ds:ffffffff`ffffff8c=????????
  1370. Resetting default scope
  1371. MISALIGNED_IP:
  1372. nt!MiGetPfnProtection+1f3f0d
  1373. fffff807`2c5ffa01 ff418b inc dword ptr [rcx-75h]
  1374. LAST_CONTROL_TRANSFER: from fffff8072c5ef929 to fffff8072c5dda20
  1375. STACK_TEXT:
  1376. fffff807`3206a7f8 fffff807`2c5ef929 : 00000000`0000000a ffffffff`ffffff8c 00000000`000000ff 00000000`000000ff : nt!KeBugCheckEx
  1377. fffff807`3206a800 fffff807`2c5ebc29 : 00000000`00000000 00000000`00000001 00000000`00000004 fffff807`00000058 : nt!KiBugCheckDispatch+0x69
  1378. fffff807`3206a940 fffff807`2c5ffa01 : fffff807`3206abf0 00000000`00000001 00000000`00040046 fffff807`2c4cc048 : nt!KiPageFault+0x469
  1379. fffff807`3206aad0 00001fa0`00000000 : 00000000`00000000 00000000`00000002 00000000`00000000 00000000`00000008 : nt!MiGetPfnProtection+0x1f3f0d
  1380. fffff807`3206ab00 00000000`00000000 : 00000000`00000002 00000000`00000000 00000000`00000008 00000000`00000000 : 0x00001fa0`00000000
  1381. STACK_COMMAND: kb
  1382. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  1383. fffff8072c584f1e-fffff8072c584f21 4 bytes - nt!MiFreeUltraMapping+32
  1384. [ a0 7d fb f6:c0 a6 4d 9b ]
  1385. fffff8072c5dfab8-fffff8072c5dfab9 2 bytes - nt!KiInterruptDispatchNoLockNoEtw+b8 (+0x5ab9a)
  1386. [ 48 ff:4c 8b ]
  1387. fffff8072c5dfabf-fffff8072c5dfac2 4 bytes - nt!KiInterruptDispatchNoLockNoEtw+bf (+0x07)
  1388. [ 0f 1f 44 00:e8 5c 49 64 ]
  1389. fffff8072c5ffbf5 - nt!NtLockVirtualMemory+1f3fe5 (+0x20136)
  1390. [ fa:91 ]
  1391. fffff8072c5ffc48 - nt!NtLockVirtualMemory+1f4038 (+0x53)
  1392. [ fa:91 ]
  1393. 12 errors : !nt (fffff8072c584f1e-fffff8072c5ffc48)
  1394. MODULE_NAME: memory_corruption
  1395.  
  1396. IMAGE_NAME: memory_corruption
  1397.  
  1398. FOLLOWUP_NAME: memory_corruption
  1399. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  1400. MEMORY_CORRUPTOR: LARGE
  1401. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  1402. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  1403. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  1404. TARGET_TIME: 2020-06-02T20:20:08.000Z
  1405. SUITE_MASK: 784
  1406. PRODUCT_TYPE: 1
  1407. USER_LCID: 0
  1408. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  1409. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  1410. Followup: memory_corruption
  1411.  
  1412. ====================== Dump #3: 3RD PARTY DRIVERS ======================
  1413.  
  1414. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  1415. Oct 18 2018 - AMDRyzenMasterDriver.sys - AMD Ryzen Master driver
  1416. Mar 14 2019 - nvvad64v.sys - Nvidia Virtual Audio driver http://www.nvidia.com/
  1417. May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  1418. Jun 19 2019 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  1419. Jan 10 2020 - nvvhci.sys - Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  1420. Jan 14 2020 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  1421. Feb 12 2020 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  1422. Feb 19 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  1423. Mar 03 2020 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  1424. May 15 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  1425.  
  1426. ================== Dump #3: 3RD PARTY DRIVERS (FULL) ===================
  1427.  
  1428. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  1429. Image name: amdgpio3.sys
  1430. Search : https://www.google.com/search?q=amdgpio3.sys
  1431. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  1432. Timestamp : Mon Mar 14 2016
  1433.  
  1434. Image path: \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
  1435. Image name: AMDRyzenMasterDriver.sys
  1436. Search : https://www.google.com/search?q=AMDRyzenMasterDriver.sys
  1437. ADA Info : AMD Ryzen Master driver
  1438. Timestamp : Thu Oct 18 2018
  1439.  
  1440. Image path: \SystemRoot\system32\drivers\nvvad64v.sys
  1441. Image name: nvvad64v.sys
  1442. Search : https://www.google.com/search?q=nvvad64v.sys
  1443. ADA Info : Nvidia Virtual Audio driver http://www.nvidia.com/
  1444. Timestamp : Thu Mar 14 2019
  1445.  
  1446. Image path: \SystemRoot\System32\drivers\UcmCxUcsiNvppc.sys
  1447. Image name: UcmCxUcsiNvppc.sys
  1448. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  1449. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  1450. Timestamp : Tue May 14 2019
  1451.  
  1452. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  1453. Image name: amdpsp.sys
  1454. Search : https://www.google.com/search?q=amdpsp.sys
  1455. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  1456. Timestamp : Wed Jun 19 2019
  1457.  
  1458. Image path: \SystemRoot\System32\drivers\nvvhci.sys
  1459. Image name: nvvhci.sys
  1460. Search : https://www.google.com/search?q=nvvhci.sys
  1461. ADA Info : Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  1462. Timestamp : Fri Jan 10 2020
  1463.  
  1464. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  1465. Image name: amdgpio2.sys
  1466. Search : https://www.google.com/search?q=amdgpio2.sys
  1467. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  1468. Timestamp : Tue Jan 14 2020
  1469.  
  1470. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  1471. Image name: rt640x64.sys
  1472. Search : https://www.google.com/search?q=rt640x64.sys
  1473. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  1474. Timestamp : Wed Feb 12 2020
  1475.  
  1476. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  1477. Image name: nvhda64v.sys
  1478. Search : https://www.google.com/search?q=nvhda64v.sys
  1479. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  1480. Timestamp : Wed Feb 19 2020
  1481.  
  1482. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  1483. Image name: AMDPCIDev.sys
  1484. Search : https://www.google.com/search?q=AMDPCIDev.sys
  1485. ADA Info : Advanced Micro Devices PCI Device driver
  1486. Timestamp : Tue Mar 3 2020
  1487.  
  1488. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys
  1489. Image name: nvlddmkm.sys
  1490. Search : https://www.google.com/search?q=nvlddmkm.sys
  1491. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  1492. Timestamp : Fri May 15 2020
  1493.  
  1494. ====================== Dump #3: MICROSOFT DRIVERS ======================
  1495.  
  1496. ACPI.sys ACPI Driver for NT (Microsoft)
  1497. acpiex.sys ACPIEx Driver (Microsoft)
  1498. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  1499. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  1500. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  1501. ahcache.sys Application Compatibility Cache (Microsoft)
  1502. amdppm.sys Processor Device Driver
  1503. bam.sys BAM Kernal driver (Microsoft)
  1504. BasicDisplay.sys Basic Display driver (Microsoft)
  1505. BasicRender.sys Basic Render driver (Microsoft)
  1506. Beep.SYS BEEP driver (Microsoft)
  1507. bindflt.sys Windows Bind Filter driver (Microsoft)
  1508. BOOTVID.dll VGA Boot Driver (Microsoft)
  1509. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  1510. cdd.dll Canonical Display Driver (Microsoft)
  1511. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  1512. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  1513. CI.dll Code Integrity Module (Microsoft)
  1514. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  1515. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  1516. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  1517. CLFS.SYS Common Log File System Driver (Microsoft)
  1518. clipsp.sys CLIP Service (Microsoft)
  1519. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  1520. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  1521. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  1522. condrv.sys Console Driver (Microsoft)
  1523. crashdmp.sys Crash Dump driver (Microsoft)
  1524. dfsc.sys DFS Namespace Client Driver (Microsoft)
  1525. disk.sys PnP Disk Driver (Microsoft)
  1526. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  1527. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  1528. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  1529. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  1530. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  1531. dxgmms2.sys DirectX Graphics MMS
  1532. EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
  1533. fastfat.SYS Fast FAT File System Driver (Microsoft)
  1534. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  1535. fileinfo.sys FileInfo Filter Driver (Microsoft)
  1536. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  1537. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  1538. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  1539. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  1540. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  1541. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  1542. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  1543. HdAudio.sys High Definition Audio Function driver (Microsoft)
  1544. HIDCLASS.SYS Hid Class Library (Microsoft)
  1545. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  1546. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  1547. HTTP.sys HTTP Protocol Stack (Microsoft)
  1548. intelpep.sys Intel Power Engine Plugin (Microsoft)
  1549. IntelTA.sys Intel Telemetry Driver
  1550. iorate.sys I/O rate control Filter (Microsoft)
  1551. kbdclass.sys Keyboard Class Driver (Microsoft)
  1552. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  1553. kd.dll Local Kernal Debugger (Microsoft)
  1554. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  1555. ks.sys Kernal CSA Library (Microsoft)
  1556. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  1557. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  1558. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  1559. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  1560. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  1561. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  1562. mmcss.sys MMCSS Driver (Microsoft)
  1563. monitor.sys Monitor Driver (Microsoft)
  1564. mouclass.sys Mouse Class Driver (Microsoft)
  1565. mouhid.sys HID Mouse Filter Driver (Microsoft)
  1566. mountmgr.sys Mount Point Manager (Microsoft)
  1567. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  1568. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  1569. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  1570. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  1571. Msfs.SYS Mailslot driver (Microsoft)
  1572. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  1573. msisadrv.sys ISA Driver (Microsoft)
  1574. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  1575. msquic.sys Windows QUIC Driver
  1576. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  1577. mssmbios.sys System Management BIOS driver (Microsoft)
  1578. mup.sys Multiple UNC Provider driver (Microsoft)
  1579. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  1580. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  1581. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  1582. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  1583. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  1584. NDProxy.sys NDIS Proxy driver (Microsoft)
  1585. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  1586. netbios.sys NetBIOS Interface driver (Microsoft)
  1587. netbt.sys MBT Transport driver (Microsoft)
  1588. NETIO.SYS Network I/O Subsystem (Microsoft)
  1589. Npfs.SYS NPFS driver (Microsoft)
  1590. npsvctrig.sys Named pipe service triggers (Microsoft)
  1591. nsiproxy.sys NSI Proxy driver (Microsoft)
  1592. Ntfs.sys NT File System Driver (Microsoft)
  1593. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  1594. ntosext.sys NTOS Extension Host driver (Microsoft)
  1595. Null.SYS NULL Driver (Microsoft)
  1596. pacer.sys QoS Packet Scheduler (Microsoft)
  1597. partmgr.sys Partition driver (Microsoft)
  1598. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  1599. pcw.sys Performance Counter Driver (Microsoft)
  1600. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  1601. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  1602. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  1603. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  1604. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  1605. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  1606. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  1607. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  1608. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  1609. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  1610. rdpvideominiport.sys RDP Video Miniport driver (Microsoft)
  1611. rdyboost.sys ReadyBoost Driver (Microsoft)
  1612. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  1613. serenum.sys Serial Port Enumerator (Microsoft)
  1614. serial.sys Serial Device Driver
  1615. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  1616. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  1617. spaceport.sys Storage Spaces driver (Microsoft)
  1618. srv2.sys Smb 2.0 Server driver (Microsoft)
  1619. srvnet.sys Server Network driver (Microsoft)
  1620. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  1621. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  1622. storqosflt.sys Storage QoS Filter driver (Microsoft)
  1623. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  1624. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  1625. tcpip.sys TCP/IP Protocol driver (Microsoft)
  1626. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  1627. TDI.SYS TDI Wrapper driver (Microsoft)
  1628. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  1629. tm.sys Kernel Transaction Manager driver (Microsoft)
  1630. UcmCx.sys USB Connector Manager KMDF Class Extension
  1631. ucx01000.sys USB Controller Extension (Microsoft)
  1632. UEFI.sys UEFI NT driver (Microsoft)
  1633. umbus.sys User-Mode Bus Enumerator (Microsoft)
  1634. usbaudio.sys USB Audio Class Driver (Microsoft)
  1635. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  1636. USBD.SYS Universal Serial Bus Driver (Microsoft)
  1637. UsbHub3.sys USB3 HUB driver (Microsoft)
  1638. USBXHCI.SYS USB XHCI driver (Microsoft)
  1639. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  1640. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  1641. volmgr.sys Volume Manager Driver (Microsoft)
  1642. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  1643. volsnap.sys Volume Shadow Copy driver (Microsoft)
  1644. volume.sys Volume driver (Microsoft)
  1645. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  1646. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  1647. watchdog.sys Watchdog driver (Microsoft)
  1648. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  1649. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  1650. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  1651. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  1652. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  1653. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  1654. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  1655. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  1656. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  1657. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  1658. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  1659. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  1660. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  1661. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  1662. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  1663. Wof.sys Windows Overlay Filter (Microsoft)
  1664. WppRecorder.sys WPP Trace Recorder (Microsoft)
  1665.  
  1666. ====================== Dump #3: UNLOADED MODULES =======================
  1667.  
  1668. fffff807`2b630000 fffff807`2b63f000 hiber_storpo
  1669. fffff807`2b640000 fffff807`2b673000 hiber_storah
  1670. fffff807`2b680000 fffff807`2b69e000 hiber_dumpfv
  1671. fffff807`2b5d0000 fffff807`2b5de000 WSDScan.sys
  1672. fffff807`2b5c0000 fffff807`2b5ce000 WSDPrint.sys
  1673. fffff807`3a150000 fffff807`3a15f000 dump_storpor
  1674. fffff807`3a1a0000 fffff807`3a1d3000 dump_storahc
  1675. fffff807`3a000000 fffff807`3a01e000 dump_dumpfve
  1676. fffff807`3a9d0000 fffff807`3a9ec000 dam.sys
  1677. fffff807`309a0000 fffff807`309b1000 WdBoot.sys
  1678. fffff807`31a50000 fffff807`31a60000 hwpolicy.sys
  1679.  
  1680. ====================== Dump #3: BIOS INFORMATION =======================
  1681.  
  1682. [SMBIOS Data Tables v2.8]
  1683. [DMI Version - 0]
  1684. [2.0 Calling Convention - No]
  1685. [Table Size - 2272 bytes]
  1686. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  1687. Vendor American Megatrends Inc.
  1688. BIOS Version 2.D0
  1689. BIOS Starting Address Segment f000
  1690. BIOS Release Date 12/03/2019
  1691. BIOS ROM Size 1000000
  1692. BIOS Characteristics
  1693. 07: - PCI Supported
  1694. 11: - Upgradeable FLASH BIOS
  1695. 12: - BIOS Shadowing Supported
  1696. 15: - CD-Boot Supported
  1697. 16: - Selectable Boot Supported
  1698. 17: - BIOS ROM Socketed
  1699. 19: - EDD Supported
  1700. 23: - 1.2MB Floppy Supported
  1701. 24: - 720KB Floppy Supported
  1702. 25: - 2.88MB Floppy Supported
  1703. 26: - Print Screen Device Supported
  1704. 27: - Keyboard Services Supported
  1705. 28: - Serial Services Supported
  1706. 29: - Printer Services Supported
  1707. 32: - BIOS Vendor Reserved
  1708. BIOS Characteristic Extensions
  1709. 00: - ACPI Supported
  1710. 01: - USB Legacy Supported
  1711. 08: - BIOS Boot Specification Supported
  1712. 10: - Specification Reserved
  1713. 11: - Specification Reserved
  1714. BIOS Major Revision 5
  1715. BIOS Minor Revision 14
  1716. EC Firmware Major Revision 255
  1717. EC Firmware Minor Revision 255
  1718. [System Information (Type 1) - Length 27 - Handle 0001h]
  1719. Manufacturer Micro-Star International Co., Ltd.
  1720. Product Name MS-7B84
  1721. Version 1.0
  1722. UUID 00000000-0000-0000-0000-000000000000
  1723. Wakeup Type Power Switch
  1724. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  1725. Manufacturer Micro-Star International Co., Ltd.
  1726. Product B450M PRO-M2 (MS-7B84)
  1727. Version 1.0
  1728. Feature Flags 09h
  1729. -808667424: - -808667376: - ÷7?
  1730. ü
  1731. Chassis Handle 0003h
  1732. Board Type 0ah - Processor/Memory Module
  1733. Number of Child Handles 0
  1734. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  1735. Manufacturer Micro-Star International Co., Ltd.
  1736. Chassis Type Desktop
  1737. Version 1.0
  1738. Bootup State Safe
  1739. Power Supply State Safe
  1740. Thermal State Safe
  1741. Security Status None
  1742. OEM Defined 0
  1743. Height 0U
  1744. Number of Power Cords 1
  1745. Number of Contained Elements 0
  1746. Contained Element Size 3
  1747. [OEM Strings (Type 11) - Length 5 - Handle 000bh]
  1748. Number of Strings 1
  1749. [System Configuration Options (Type 12) - Length 5 - Handle 000ch]
  1750. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 000eh]
  1751. [Physical Memory Array (Type 16) - Length 23 - Handle 000fh]
  1752. Location 03h - SystemBoard/Motherboard
  1753. Use 03h - System Memory
  1754. Memory Error Correction 03h - None
  1755. Maximum Capacity 134217728KB
  1756. Memory Error Inf Handle 000eh
  1757. Number of Memory Devices 2
  1758. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0010h]
  1759. Starting Address 00000000h
  1760. Ending Address 00ffffffh
  1761. Memory Array Handle 000fh
  1762. Partition Width 02
  1763. [Cache Information (Type 7) - Length 19 - Handle 0011h]
  1764. Socket Designation L1 - Cache
  1765. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  1766. Maximum Cache Size 0240h - 576K
  1767. Installed Size 0240h - 576K
  1768. Supported SRAM Type 0010h - Pipeline-Burst
  1769. Current SRAM Type 0010h - Pipeline-Burst
  1770. Cache Speed 1ns
  1771. Error Correction Type Specification Reserved
  1772. System Cache Type Unified
  1773. Associativity 8-way Set-Associative
  1774. [Cache Information (Type 7) - Length 19 - Handle 0012h]
  1775. Socket Designation L2 - Cache
  1776. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  1777. Maximum Cache Size 0c00h - 3072K
  1778. Installed Size 0c00h - 3072K
  1779. Supported SRAM Type 0010h - Pipeline-Burst
  1780. Current SRAM Type 0010h - Pipeline-Burst
  1781. Cache Speed 1ns
  1782. Error Correction Type Specification Reserved
  1783. System Cache Type Unified
  1784. Associativity 8-way Set-Associative
  1785. [Cache Information (Type 7) - Length 19 - Handle 0013h]
  1786. Socket Designation L3 - Cache
  1787. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  1788. Maximum Cache Size 4000h - 16384K
  1789. Installed Size 4000h - 16384K
  1790. Supported SRAM Type 0010h - Pipeline-Burst
  1791. Current SRAM Type 0010h - Pipeline-Burst
  1792. Cache Speed 1ns
  1793. Error Correction Type Specification Reserved
  1794. System Cache Type Unified
  1795. Associativity 16-way Set-Associative
  1796. [Processor Information (Type 4) - Length 48 - Handle 0014h]
  1797. Socket Designation AM4
  1798. Processor Type Central Processor
  1799. Processor Family 6bh - Specification Reserved
  1800. Processor Manufacturer Advanced Micro Devices, Inc.
  1801. Processor ID 820f8000fffb8b17
  1802. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  1803. Processor Voltage 8bh - 1.1V
  1804. External Clock 100MHz
  1805. Max Speed 3900MHz
  1806. Current Speed 3400MHz
  1807. Status Enabled Populated
  1808. Processor Upgrade Specification Reserved
  1809. L1 Cache Handle 0011h
  1810. L2 Cache Handle 0012h
  1811. L3 Cache Handle 0013h
  1812. Part Number Unknown
  1813. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0015h]
  1814. [Memory Device (Type 17) - Length 40 - Handle 0016h]
  1815. Physical Memory Array Handle 000fh
  1816. Memory Error Info Handle 0015h
  1817. Total Width 64 bits
  1818. Data Width 64 bits
  1819. Size 8192MB
  1820. Form Factor 09h - DIMM
  1821. Device Locator DIMM 0
  1822. Bank Locator P0 CHANNEL A
  1823. Memory Type 1ah - Specification Reserved
  1824. Type Detail 4080h - Synchronous
  1825. Speed 2400MHz
  1826. Manufacturer Kingston
  1827. Part Number KHX2400C15/8G
  1828. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0017h]
  1829. Starting Address 00000000h
  1830. Ending Address 00ffffffh
  1831. Memory Device Handle 0016h
  1832. Mem Array Mapped Adr Handle 0010h
  1833. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0018h]
  1834. [Memory Device (Type 17) - Length 40 - Handle 0019h]
  1835. Physical Memory Array Handle 000fh
  1836. Memory Error Info Handle 0018h
  1837. Total Width 64 bits
  1838. Data Width 64 bits
  1839. Size 8192MB
  1840. Form Factor 09h - DIMM
  1841. Device Locator DIMM 0
  1842. Bank Locator P0 CHANNEL B
  1843. Memory Type 1ah - Specification Reserved
  1844. Type Detail 4080h - Synchronous
  1845. Speed 2400MHz
  1846. Manufacturer Kingston
  1847. Part Number KHX2400C15/8G
  1848. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 001ah]
  1849. Starting Address 00000000h
  1850. Ending Address 00ffffffh
  1851. Memory Device Handle 0019h
  1852. Mem Array Mapped Adr Handle 0010h
  1853.  
  1854. ========================== Dump #3: Extra #1 ===========================
  1855.  
  1856. 0: kd> !verifier
  1857. Verify Flags Level 0x00000000
  1858. STANDARD FLAGS:
  1859. [X] (0x00000000) Automatic Checks
  1860. [ ] (0x00000001) Special pool
  1861. [ ] (0x00000002) Force IRQL checking
  1862. [ ] (0x00000008) Pool tracking
  1863. [ ] (0x00000010) I/O verification
  1864. [ ] (0x00000020) Deadlock detection
  1865. [ ] (0x00000080) DMA checking
  1866. [ ] (0x00000100) Security checks
  1867. [ ] (0x00000800) Miscellaneous checks
  1868. [ ] (0x00020000) DDI compliance checking
  1869. ADDITIONAL FLAGS:
  1870. [ ] (0x00000004) Randomized low resources simulation
  1871. [ ] (0x00000200) Force pending I/O requests
  1872. [ ] (0x00000400) IRP logging
  1873. [ ] (0x00002000) Invariant MDL checking for stack
  1874. [ ] (0x00004000) Invariant MDL checking for driver
  1875. [ ] (0x00008000) Power framework delay fuzzing
  1876. [ ] (0x00010000) Port/miniport interface checking
  1877. [ ] (0x00040000) Systematic low resources simulation
  1878. [ ] (0x00080000) DDI compliance checking (additional)
  1879. [ ] (0x00200000) NDIS/WIFI verification
  1880. [ ] (0x00800000) Kernel synchronization delay fuzzing
  1881. [ ] (0x01000000) VM switch verification
  1882. [ ] (0x02000000) Code integrity checks
  1883. [X] Indicates flag is enabled
  1884. Summary of All Verifier Statistics
  1885. RaiseIrqls 0x0
  1886. AcquireSpinLocks 0x0
  1887. Synch Executions 0x0
  1888. Trims 0x0
  1889. Pool Allocations Attempted 0x0
  1890. Pool Allocations Succeeded 0x0
  1891. Pool Allocations Succeeded SpecialPool 0x0
  1892. Pool Allocations With NO TAG 0x0
  1893. Pool Allocations Failed 0x0
  1894. Current paged pool allocations 0x0 for 00000000 bytes
  1895. Peak paged pool allocations 0x0 for 00000000 bytes
  1896. Current nonpaged pool allocations 0x0 for 00000000 bytes
  1897. Peak nonpaged pool allocations 0x0 for 00000000 bytes
  1898.  
  1899. ========================== Dump #3: Extra #2 ===========================
  1900.  
  1901. 0: kd> !thread
  1902. THREAD fffff8072cf26600 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 0
  1903. Not impersonating
  1904. GetUlongFromAddress: unable to read from fffff8072ce1143c
  1905. Owning Process fffff8072cf23a00 Image: System Process
  1906. Attached Process ffff800fcc48c040 Image: System
  1907. fffff78000000000: Unable to get shared data
  1908. Wait Start TickCount 19004
  1909. Context Switch Count 247452 IdealProcessor: 0
  1910. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  1911. UserTime 00:00:00.000
  1912. KernelTime 00:00:00.000
  1913. Win32 Start Address nt!KiIdleLoop (0xfffff8072c5e14f0)
  1914. Stack Init fffff8073206ac90 Current fffff8073206ac20
  1915. Base fffff8073206b000 Limit fffff80732065000 Call 0000000000000000
  1916. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 5
  1917. Child-SP RetAddr : Args to Child : Call Site
  1918. fffff807`3206a7f8 fffff807`2c5ef929 : 00000000`0000000a ffffffff`ffffff8c 00000000`000000ff 00000000`000000ff : nt!KeBugCheckEx
  1919. fffff807`3206a800 fffff807`2c5ebc29 : 00000000`00000000 00000000`00000001 00000000`00000004 fffff807`00000058 : nt!KiBugCheckDispatch+0x69
  1920. fffff807`3206a940 fffff807`2c5ffa01 : fffff807`3206abf0 00000000`00000001 00000000`00040046 fffff807`2c4cc048 : nt!KiPageFault+0x469 (TrapFrame @ fffff807`3206a940)
  1921. fffff807`3206aad0 00001fa0`00000000 : 00000000`00000000 00000000`00000002 00000000`00000000 00000000`00000008 : nt!MiGetPfnProtection+0x1f3f0d
  1922. fffff807`3206ab00 00000000`00000000 : 00000000`00000002 00000000`00000000 00000000`00000008 00000000`00000000 : 0x00001fa0`00000000
  1923.  
  1924.  
  1925. ========================================================================
  1926. ======================= Dump #4: ANALYZE VERBOSE =======================
  1927. ====================== File: 060220-11218-01.dmp =======================
  1928. ========================================================================
  1929.  
  1930. Mini Kernel Dump File: Only registers and stack trace are available
  1931. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  1932. Kernel base = 0xfffff801`5d000000 PsLoadedModuleList = 0xfffff801`5dc2a250
  1933. Debug session time: Tue Jun 2 16:23:28.907 2020 (UTC - 4:00)
  1934. System Uptime: 0 days 0:02:54.570
  1935.  
  1936. BugCheck 139, {0, 0, 0, 50}
  1937. *** WARNING: Unable to verify timestamp for win32k.sys
  1938. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  1939. Probably caused by : memory_corruption
  1940. Followup: memory_corruption
  1941.  
  1942. KERNEL_SECURITY_CHECK_FAILURE (139)
  1943. A kernel component has corrupted a critical data structure. The corruption
  1944. could potentially allow a malicious user to gain control of this machine.
  1945.  
  1946. Arguments:
  1947. Arg1: 0000000000000000, A stack-based buffer has been overrun.
  1948. Arg2: 0000000000000000, Address of the trap frame for the exception that caused the bugcheck
  1949. Arg3: 0000000000000000, Address of the exception record for the exception that caused the bugcheck
  1950. Arg4: 0000000000000050, Reserved
  1951.  
  1952. Debugging Details:
  1953. DUMP_CLASS: 1
  1954. DUMP_QUALIFIER: 400
  1955. DUMP_TYPE: 2
  1956. TRAP_FRAME: 0000000000000000 -- (.trap 0x0)
  1957. EXCEPTION_RECORD: 0000000000000000 -- (.exr 0x0)
  1958. Cannot read Exception record @ 0000000000000000
  1959. CUSTOMER_CRASH_COUNT: 1
  1960. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  1961. BUGCHECK_STR: 0x139
  1962.  
  1963. PROCESS_NAME: System
  1964.  
  1965. CURRENT_IRQL: 2
  1966. LAST_CONTROL_TRANSFER: from fffff8015d3e652b to fffff8015d3dda20
  1967. STACK_TEXT:
  1968. ffff9a85`7627d7c8 fffff801`5d3e652b : 00000000`00000139 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KeBugCheckEx
  1969. ffff9a85`7627d7d0 fffff801`5d231689 : ffffdd8f`3cefc080 ffff9a85`7627d8a9 00000000`00000050 ffff9a85`00000002 : nt!guard_icall_bugcheck+0x1b
  1970. ffff9a85`7627d800 fffff801`5d230ec5 : ffff9a85`7627d948 00000000`00000000 ffff9a85`7627db10 ffffdd8f`3cefc098 : nt!KiExpireTimer2+0x429
  1971. ffff9a85`7627d910 fffff801`5d23a004 : 00000000`00000000 00000000`00000000 00000000`00000008 00000000`00001a1b : nt!KiTimer2Expiration+0x165
  1972. ffff9a85`7627d9d0 fffff801`5d3e158e : ffffffff`00000000 ffffb180`eb447180 00000000`00000000 ffffb180`eb452340 : nt!KiRetireDpcList+0x874
  1973. ffff9a85`7627dc60 00000000`00000000 : ffff9a85`7627e000 ffff9a85`76278000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  1974. STACK_COMMAND: kb
  1975. CHKIMG_EXTENSION: !chkimg -lo 50 -d !FLTMGR
  1976. fffff8015bf1ce8d-fffff8015bf1ce8e 2 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+2d
  1977. [ 48 ff:4c 8b ]
  1978. fffff8015bf1ce94-fffff8015bf1ce98 5 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+34 (+0x07)
  1979. [ 0f 1f 44 00 00:e8 67 81 30 01 ]
  1980. fffff8015bf1cebc-fffff8015bf1cebd 2 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+5c (+0x28)
  1981. [ 48 ff:4c 8b ]
  1982. fffff8015bf1cec3-fffff8015bf1cec7 5 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+63 (+0x07)
  1983. [ 0f 1f 44 00 00:e8 d8 92 30 01 ]
  1984. fffff8015bf1cf07-fffff8015bf1cf08 2 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+a7 (+0x44)
  1985. [ 48 ff:4c 8b ]
  1986. fffff8015bf1cf0e-fffff8015bf1cf12 5 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+ae (+0x07)
  1987. [ 0f 1f 44 00 00:e8 ed 80 30 01 ]
  1988. fffff8015bf1cf4c-fffff8015bf1cf4d 2 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+ec (+0x3e)
  1989. [ 48 ff:4c 8b ]
  1990. fffff8015bf1cf53-fffff8015bf1cf57 5 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+f3 (+0x07)
  1991. [ 0f 1f 44 00 00:e8 a8 b9 3c 01 ]
  1992. fffff8015bf1cf5b-fffff8015bf1cf5c 2 bytes - FLTMGR!FltpProcessIrpCtrlStackProfiler+fb (+0x08)
  1993. [ 48 ff:4c 8b ]
  1994. fffff8015bf1d150-fffff8015bf1d151 2 bytes - FLTMGR!InsertEventEntryInLookUpTable+70 (+0x1f5)
  1995. [ 48 ff:4c 8b ]
  1996. fffff8015bf1d157-fffff8015bf1d15b 5 bytes - FLTMGR!InsertEventEntryInLookUpTable+77 (+0x07)
  1997. [ 0f 1f 44 00 00:e8 44 e4 40 01 ]
  1998. fffff8015bf1d16d-fffff8015bf1d16e 2 bytes - FLTMGR!InsertEventEntryInLookUpTable+8d (+0x16)
  1999. [ 48 ff:4c 8b ]
  2000. fffff8015bf1d174-fffff8015bf1d178 5 bytes - FLTMGR!InsertEventEntryInLookUpTable+94 (+0x07)
  2001. [ 0f 1f 44 00 00:e8 57 89 30 01 ]
  2002. 44 errors : !FLTMGR (fffff8015bf1ce8d-fffff8015bf1d178)
  2003. MODULE_NAME: memory_corruption
  2004.  
  2005. IMAGE_NAME: memory_corruption
  2006.  
  2007. FOLLOWUP_NAME: memory_corruption
  2008. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  2009. MEMORY_CORRUPTOR: LARGE
  2010. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  2011. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  2012. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  2013. TARGET_TIME: 2020-06-02T20:23:28.000Z
  2014. SUITE_MASK: 784
  2015. PRODUCT_TYPE: 1
  2016. USER_LCID: 0
  2017. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  2018. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  2019. Followup: memory_corruption
  2020.  
  2021. ====================== Dump #4: 3RD PARTY DRIVERS ======================
  2022.  
  2023. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2024. Oct 18 2018 - AMDRyzenMasterDriver.sys - AMD Ryzen Master driver
  2025. Mar 14 2019 - nvvad64v.sys - Nvidia Virtual Audio driver http://www.nvidia.com/
  2026. May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  2027. Jun 19 2019 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  2028. Jan 10 2020 - nvvhci.sys - Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  2029. Jan 14 2020 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2030. Feb 12 2020 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  2031. Feb 19 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  2032. Mar 03 2020 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  2033. May 15 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  2034.  
  2035. ================== Dump #4: 3RD PARTY DRIVERS (FULL) ===================
  2036.  
  2037. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  2038. Image name: amdgpio3.sys
  2039. Search : https://www.google.com/search?q=amdgpio3.sys
  2040. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2041. Timestamp : Mon Mar 14 2016
  2042.  
  2043. Image path: \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
  2044. Image name: AMDRyzenMasterDriver.sys
  2045. Search : https://www.google.com/search?q=AMDRyzenMasterDriver.sys
  2046. ADA Info : AMD Ryzen Master driver
  2047. Timestamp : Thu Oct 18 2018
  2048.  
  2049. Image path: \SystemRoot\system32\drivers\nvvad64v.sys
  2050. Image name: nvvad64v.sys
  2051. Search : https://www.google.com/search?q=nvvad64v.sys
  2052. ADA Info : Nvidia Virtual Audio driver http://www.nvidia.com/
  2053. Timestamp : Thu Mar 14 2019
  2054.  
  2055. Image path: \SystemRoot\System32\drivers\UcmCxUcsiNvppc.sys
  2056. Image name: UcmCxUcsiNvppc.sys
  2057. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  2058. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  2059. Timestamp : Tue May 14 2019
  2060.  
  2061. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  2062. Image name: amdpsp.sys
  2063. Search : https://www.google.com/search?q=amdpsp.sys
  2064. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  2065. Timestamp : Wed Jun 19 2019
  2066.  
  2067. Image path: \SystemRoot\System32\drivers\nvvhci.sys
  2068. Image name: nvvhci.sys
  2069. Search : https://www.google.com/search?q=nvvhci.sys
  2070. ADA Info : Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  2071. Timestamp : Fri Jan 10 2020
  2072.  
  2073. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  2074. Image name: amdgpio2.sys
  2075. Search : https://www.google.com/search?q=amdgpio2.sys
  2076. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2077. Timestamp : Tue Jan 14 2020
  2078.  
  2079. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  2080. Image name: rt640x64.sys
  2081. Search : https://www.google.com/search?q=rt640x64.sys
  2082. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  2083. Timestamp : Wed Feb 12 2020
  2084.  
  2085. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  2086. Image name: nvhda64v.sys
  2087. Search : https://www.google.com/search?q=nvhda64v.sys
  2088. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  2089. Timestamp : Wed Feb 19 2020
  2090.  
  2091. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  2092. Image name: AMDPCIDev.sys
  2093. Search : https://www.google.com/search?q=AMDPCIDev.sys
  2094. ADA Info : Advanced Micro Devices PCI Device driver
  2095. Timestamp : Tue Mar 3 2020
  2096.  
  2097. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys
  2098. Image name: nvlddmkm.sys
  2099. Search : https://www.google.com/search?q=nvlddmkm.sys
  2100. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  2101. Timestamp : Fri May 15 2020
  2102.  
  2103. ====================== Dump #4: MICROSOFT DRIVERS ======================
  2104.  
  2105. ACPI.sys ACPI Driver for NT (Microsoft)
  2106. acpiex.sys ACPIEx Driver (Microsoft)
  2107. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  2108. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  2109. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  2110. ahcache.sys Application Compatibility Cache (Microsoft)
  2111. amdppm.sys Processor Device Driver
  2112. bam.sys BAM Kernal driver (Microsoft)
  2113. BasicDisplay.sys Basic Display driver (Microsoft)
  2114. BasicRender.sys Basic Render driver (Microsoft)
  2115. Beep.SYS BEEP driver (Microsoft)
  2116. bindflt.sys Windows Bind Filter driver (Microsoft)
  2117. BOOTVID.dll VGA Boot Driver (Microsoft)
  2118. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  2119. cdd.dll Canonical Display Driver (Microsoft)
  2120. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  2121. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  2122. CI.dll Code Integrity Module (Microsoft)
  2123. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  2124. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  2125. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  2126. CLFS.SYS Common Log File System Driver (Microsoft)
  2127. clipsp.sys CLIP Service (Microsoft)
  2128. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  2129. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  2130. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  2131. condrv.sys Console Driver (Microsoft)
  2132. crashdmp.sys Crash Dump driver (Microsoft)
  2133. dfsc.sys DFS Namespace Client Driver (Microsoft)
  2134. disk.sys PnP Disk Driver (Microsoft)
  2135. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  2136. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2137. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2138. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2139. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  2140. dxgmms2.sys DirectX Graphics MMS
  2141. EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
  2142. fastfat.SYS Fast FAT File System Driver (Microsoft)
  2143. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  2144. fileinfo.sys FileInfo Filter Driver (Microsoft)
  2145. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  2146. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  2147. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  2148. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  2149. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  2150. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  2151. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  2152. HdAudio.sys High Definition Audio Function driver (Microsoft)
  2153. HIDCLASS.SYS Hid Class Library (Microsoft)
  2154. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  2155. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  2156. HTTP.sys HTTP Protocol Stack (Microsoft)
  2157. intelpep.sys Intel Power Engine Plugin (Microsoft)
  2158. IntelTA.sys Intel Telemetry Driver
  2159. iorate.sys I/O rate control Filter (Microsoft)
  2160. kbdclass.sys Keyboard Class Driver (Microsoft)
  2161. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  2162. kd.dll Local Kernal Debugger (Microsoft)
  2163. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  2164. ks.sys Kernal CSA Library (Microsoft)
  2165. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  2166. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  2167. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  2168. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  2169. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  2170. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  2171. mmcss.sys MMCSS Driver (Microsoft)
  2172. monitor.sys Monitor Driver (Microsoft)
  2173. mouclass.sys Mouse Class Driver (Microsoft)
  2174. mouhid.sys HID Mouse Filter Driver (Microsoft)
  2175. mountmgr.sys Mount Point Manager (Microsoft)
  2176. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  2177. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  2178. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  2179. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  2180. Msfs.SYS Mailslot driver (Microsoft)
  2181. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  2182. msisadrv.sys ISA Driver (Microsoft)
  2183. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  2184. msquic.sys Windows QUIC Driver
  2185. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  2186. mssmbios.sys System Management BIOS driver (Microsoft)
  2187. mup.sys Multiple UNC Provider driver (Microsoft)
  2188. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  2189. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  2190. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  2191. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  2192. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  2193. NDProxy.sys NDIS Proxy driver (Microsoft)
  2194. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  2195. netbios.sys NetBIOS Interface driver (Microsoft)
  2196. netbt.sys MBT Transport driver (Microsoft)
  2197. NETIO.SYS Network I/O Subsystem (Microsoft)
  2198. Npfs.SYS NPFS driver (Microsoft)
  2199. npsvctrig.sys Named pipe service triggers (Microsoft)
  2200. nsiproxy.sys NSI Proxy driver (Microsoft)
  2201. Ntfs.sys NT File System Driver (Microsoft)
  2202. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  2203. ntosext.sys NTOS Extension Host driver (Microsoft)
  2204. Null.SYS NULL Driver (Microsoft)
  2205. pacer.sys QoS Packet Scheduler (Microsoft)
  2206. partmgr.sys Partition driver (Microsoft)
  2207. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  2208. pcw.sys Performance Counter Driver (Microsoft)
  2209. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  2210. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  2211. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  2212. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  2213. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  2214. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  2215. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  2216. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  2217. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  2218. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  2219. rdyboost.sys ReadyBoost Driver (Microsoft)
  2220. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  2221. serenum.sys Serial Port Enumerator (Microsoft)
  2222. serial.sys Serial Device Driver
  2223. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  2224. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  2225. spaceport.sys Storage Spaces driver (Microsoft)
  2226. srv2.sys Smb 2.0 Server driver (Microsoft)
  2227. srvnet.sys Server Network driver (Microsoft)
  2228. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  2229. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  2230. storqosflt.sys Storage QoS Filter driver (Microsoft)
  2231. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  2232. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  2233. tcpip.sys TCP/IP Protocol driver (Microsoft)
  2234. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  2235. TDI.SYS TDI Wrapper driver (Microsoft)
  2236. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  2237. tm.sys Kernel Transaction Manager driver (Microsoft)
  2238. UcmCx.sys USB Connector Manager KMDF Class Extension
  2239. ucx01000.sys USB Controller Extension (Microsoft)
  2240. UEFI.sys UEFI NT driver (Microsoft)
  2241. umbus.sys User-Mode Bus Enumerator (Microsoft)
  2242. usbaudio.sys USB Audio Class Driver (Microsoft)
  2243. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  2244. USBD.SYS Universal Serial Bus Driver (Microsoft)
  2245. UsbHub3.sys USB3 HUB driver (Microsoft)
  2246. USBXHCI.SYS USB XHCI driver (Microsoft)
  2247. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  2248. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  2249. volmgr.sys Volume Manager Driver (Microsoft)
  2250. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  2251. volsnap.sys Volume Shadow Copy driver (Microsoft)
  2252. volume.sys Volume driver (Microsoft)
  2253. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  2254. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  2255. watchdog.sys Watchdog driver (Microsoft)
  2256. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  2257. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  2258. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  2259. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  2260. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  2261. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  2262. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  2263. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  2264. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  2265. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  2266. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  2267. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  2268. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  2269. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  2270. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  2271. Wof.sys Windows Overlay Filter (Microsoft)
  2272. WppRecorder.sys WPP Trace Recorder (Microsoft)
  2273.  
  2274. ====================== Dump #4: UNLOADED MODULES =======================
  2275.  
  2276. fffff801`6df50000 fffff801`6df62000 kbdhid.sys
  2277. fffff801`6df10000 fffff801`6df21000 mouhid.sys
  2278. fffff801`5e2b0000 fffff801`5e2be000 WSDScan.sys
  2279. fffff801`5e2a0000 fffff801`5e2ae000 WSDPrint.sys
  2280. fffff801`6bb80000 fffff801`6bb8f000 dump_storpor
  2281. fffff801`6b000000 fffff801`6b033000 dump_storahc
  2282. fffff801`6b060000 fffff801`6b07e000 dump_dumpfve
  2283. fffff801`6b980000 fffff801`6b99c000 dam.sys
  2284. fffff801`619a0000 fffff801`619b1000 WdBoot.sys
  2285. fffff801`62a50000 fffff801`62a60000 hwpolicy.sys
  2286.  
  2287. ====================== Dump #4: BIOS INFORMATION =======================
  2288.  
  2289. [SMBIOS Data Tables v2.8]
  2290. [DMI Version - 0]
  2291. [2.0 Calling Convention - No]
  2292. [Table Size - 2272 bytes]
  2293. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  2294. Vendor American Megatrends Inc.
  2295. BIOS Version 2.D0
  2296. BIOS Starting Address Segment f000
  2297. BIOS Release Date 12/03/2019
  2298. BIOS ROM Size 1000000
  2299. BIOS Characteristics
  2300. 07: - PCI Supported
  2301. 11: - Upgradeable FLASH BIOS
  2302. 12: - BIOS Shadowing Supported
  2303. 15: - CD-Boot Supported
  2304. 16: - Selectable Boot Supported
  2305. 17: - BIOS ROM Socketed
  2306. 19: - EDD Supported
  2307. 23: - 1.2MB Floppy Supported
  2308. 24: - 720KB Floppy Supported
  2309. 25: - 2.88MB Floppy Supported
  2310. 26: - Print Screen Device Supported
  2311. 27: - Keyboard Services Supported
  2312. 28: - Serial Services Supported
  2313. 29: - Printer Services Supported
  2314. 32: - BIOS Vendor Reserved
  2315. BIOS Characteristic Extensions
  2316. 00: - ACPI Supported
  2317. 01: - USB Legacy Supported
  2318. 08: - BIOS Boot Specification Supported
  2319. 10: - Specification Reserved
  2320. 11: - Specification Reserved
  2321. BIOS Major Revision 5
  2322. BIOS Minor Revision 14
  2323. EC Firmware Major Revision 255
  2324. EC Firmware Minor Revision 255
  2325. [System Information (Type 1) - Length 27 - Handle 0001h]
  2326. Manufacturer Micro-Star International Co., Ltd.
  2327. Product Name MS-7B84
  2328. Version 1.0
  2329. UUID 00000000-0000-0000-0000-000000000000
  2330. Wakeup Type Power Switch
  2331. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  2332. Manufacturer Micro-Star International Co., Ltd.
  2333. Product B450M PRO-M2 (MS-7B84)
  2334. Version 1.0
  2335. Feature Flags 09h
  2336. -808667424: - -808667376: - ÷7?
  2337. ü
  2338. Chassis Handle 0003h
  2339. Board Type 0ah - Processor/Memory Module
  2340. Number of Child Handles 0
  2341. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  2342. Manufacturer Micro-Star International Co., Ltd.
  2343. Chassis Type Desktop
  2344. Version 1.0
  2345. Bootup State Safe
  2346. Power Supply State Safe
  2347. Thermal State Safe
  2348. Security Status None
  2349. OEM Defined 0
  2350. Height 0U
  2351. Number of Power Cords 1
  2352. Number of Contained Elements 0
  2353. Contained Element Size 3
  2354. [OEM Strings (Type 11) - Length 5 - Handle 000bh]
  2355. Number of Strings 1
  2356. [System Configuration Options (Type 12) - Length 5 - Handle 000ch]
  2357. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 000eh]
  2358. [Physical Memory Array (Type 16) - Length 23 - Handle 000fh]
  2359. Location 03h - SystemBoard/Motherboard
  2360. Use 03h - System Memory
  2361. Memory Error Correction 03h - None
  2362. Maximum Capacity 134217728KB
  2363. Memory Error Inf Handle 000eh
  2364. Number of Memory Devices 2
  2365. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0010h]
  2366. Starting Address 00000000h
  2367. Ending Address 00ffffffh
  2368. Memory Array Handle 000fh
  2369. Partition Width 02
  2370. [Cache Information (Type 7) - Length 19 - Handle 0011h]
  2371. Socket Designation L1 - Cache
  2372. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  2373. Maximum Cache Size 0240h - 576K
  2374. Installed Size 0240h - 576K
  2375. Supported SRAM Type 0010h - Pipeline-Burst
  2376. Current SRAM Type 0010h - Pipeline-Burst
  2377. Cache Speed 1ns
  2378. Error Correction Type Specification Reserved
  2379. System Cache Type Unified
  2380. Associativity 8-way Set-Associative
  2381. [Cache Information (Type 7) - Length 19 - Handle 0012h]
  2382. Socket Designation L2 - Cache
  2383. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  2384. Maximum Cache Size 0c00h - 3072K
  2385. Installed Size 0c00h - 3072K
  2386. Supported SRAM Type 0010h - Pipeline-Burst
  2387. Current SRAM Type 0010h - Pipeline-Burst
  2388. Cache Speed 1ns
  2389. Error Correction Type Specification Reserved
  2390. System Cache Type Unified
  2391. Associativity 8-way Set-Associative
  2392. [Cache Information (Type 7) - Length 19 - Handle 0013h]
  2393. Socket Designation L3 - Cache
  2394. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  2395. Maximum Cache Size 4000h - 16384K
  2396. Installed Size 4000h - 16384K
  2397. Supported SRAM Type 0010h - Pipeline-Burst
  2398. Current SRAM Type 0010h - Pipeline-Burst
  2399. Cache Speed 1ns
  2400. Error Correction Type Specification Reserved
  2401. System Cache Type Unified
  2402. Associativity 16-way Set-Associative
  2403. [Processor Information (Type 4) - Length 48 - Handle 0014h]
  2404. Socket Designation AM4
  2405. Processor Type Central Processor
  2406. Processor Family 6bh - Specification Reserved
  2407. Processor Manufacturer Advanced Micro Devices, Inc.
  2408. Processor ID 820f8000fffb8b17
  2409. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  2410. Processor Voltage 8bh - 1.1V
  2411. External Clock 100MHz
  2412. Max Speed 3900MHz
  2413. Current Speed 3400MHz
  2414. Status Enabled Populated
  2415. Processor Upgrade Specification Reserved
  2416. L1 Cache Handle 0011h
  2417. L2 Cache Handle 0012h
  2418. L3 Cache Handle 0013h
  2419. Part Number Unknown
  2420. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0015h]
  2421. [Memory Device (Type 17) - Length 40 - Handle 0016h]
  2422. Physical Memory Array Handle 000fh
  2423. Memory Error Info Handle 0015h
  2424. Total Width 64 bits
  2425. Data Width 64 bits
  2426. Size 8192MB
  2427. Form Factor 09h - DIMM
  2428. Device Locator DIMM 0
  2429. Bank Locator P0 CHANNEL A
  2430. Memory Type 1ah - Specification Reserved
  2431. Type Detail 4080h - Synchronous
  2432. Speed 2400MHz
  2433. Manufacturer Kingston
  2434. Part Number KHX2400C15/8G
  2435. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0017h]
  2436. Starting Address 00000000h
  2437. Ending Address 00ffffffh
  2438. Memory Device Handle 0016h
  2439. Mem Array Mapped Adr Handle 0010h
  2440. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0018h]
  2441. [Memory Device (Type 17) - Length 40 - Handle 0019h]
  2442. Physical Memory Array Handle 000fh
  2443. Memory Error Info Handle 0018h
  2444. Total Width 64 bits
  2445. Data Width 64 bits
  2446. Size 8192MB
  2447. Form Factor 09h - DIMM
  2448. Device Locator DIMM 0
  2449. Bank Locator P0 CHANNEL B
  2450. Memory Type 1ah - Specification Reserved
  2451. Type Detail 4080h - Synchronous
  2452. Speed 2400MHz
  2453. Manufacturer Kingston
  2454. Part Number KHX2400C15/8G
  2455. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 001ah]
  2456. Starting Address 00000000h
  2457. Ending Address 00ffffffh
  2458. Memory Device Handle 0019h
  2459. Mem Array Mapped Adr Handle 0010h
  2460.  
  2461. ========================== Dump #4: Extra #1 ===========================
  2462.  
  2463. 7: kd> !verifier
  2464. Verify Flags Level 0x00000000
  2465. STANDARD FLAGS:
  2466. [X] (0x00000000) Automatic Checks
  2467. [ ] (0x00000001) Special pool
  2468. [ ] (0x00000002) Force IRQL checking
  2469. [ ] (0x00000008) Pool tracking
  2470. [ ] (0x00000010) I/O verification
  2471. [ ] (0x00000020) Deadlock detection
  2472. [ ] (0x00000080) DMA checking
  2473. [ ] (0x00000100) Security checks
  2474. [ ] (0x00000800) Miscellaneous checks
  2475. [ ] (0x00020000) DDI compliance checking
  2476. ADDITIONAL FLAGS:
  2477. [ ] (0x00000004) Randomized low resources simulation
  2478. [ ] (0x00000200) Force pending I/O requests
  2479. [ ] (0x00000400) IRP logging
  2480. [ ] (0x00002000) Invariant MDL checking for stack
  2481. [ ] (0x00004000) Invariant MDL checking for driver
  2482. [ ] (0x00008000) Power framework delay fuzzing
  2483. [ ] (0x00010000) Port/miniport interface checking
  2484. [ ] (0x00040000) Systematic low resources simulation
  2485. [ ] (0x00080000) DDI compliance checking (additional)
  2486. [ ] (0x00200000) NDIS/WIFI verification
  2487. [ ] (0x00800000) Kernel synchronization delay fuzzing
  2488. [ ] (0x01000000) VM switch verification
  2489. [ ] (0x02000000) Code integrity checks
  2490. [X] Indicates flag is enabled
  2491. Summary of All Verifier Statistics
  2492. RaiseIrqls 0x0
  2493. AcquireSpinLocks 0x0
  2494. Synch Executions 0x0
  2495. Trims 0x0
  2496. Pool Allocations Attempted 0x0
  2497. Pool Allocations Succeeded 0x0
  2498. Pool Allocations Succeeded SpecialPool 0x0
  2499. Pool Allocations With NO TAG 0x0
  2500. Pool Allocations Failed 0x0
  2501. Current paged pool allocations 0x0 for 00000000 bytes
  2502. Peak paged pool allocations 0x0 for 00000000 bytes
  2503. Current nonpaged pool allocations 0x0 for 00000000 bytes
  2504. Peak nonpaged pool allocations 0x0 for 00000000 bytes
  2505.  
  2506. ========================== Dump #4: Extra #2 ===========================
  2507.  
  2508. 7: kd> !thread
  2509. THREAD ffffb180eb452340 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 7
  2510. Not impersonating
  2511. GetUlongFromAddress: unable to read from fffff8015dc1143c
  2512. Owning Process fffff8015dd23a00 Image: System Process
  2513. Attached Process ffffdd8f3428c040 Image: System
  2514. fffff78000000000: Unable to get shared data
  2515. Wait Start TickCount 11172
  2516. Context Switch Count 81717 IdealProcessor: 7
  2517. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  2518. UserTime 00:00:00.000
  2519. KernelTime 00:00:00.000
  2520. Win32 Start Address nt!KiIdleLoop (0xfffff8015d3e14f0)
  2521. Stack Init ffff9a857627dc90 Current ffff9a857627dc20
  2522. Base ffff9a857627e000 Limit ffff9a8576278000 Call 0000000000000000
  2523. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 0
  2524. Child-SP RetAddr : Args to Child : Call Site
  2525. ffff9a85`7627d7c8 fffff801`5d3e652b : 00000000`00000139 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KeBugCheckEx
  2526. ffff9a85`7627d7d0 fffff801`5d231689 : ffffdd8f`3cefc080 ffff9a85`7627d8a9 00000000`00000050 ffff9a85`00000002 : nt!guard_icall_bugcheck+0x1b
  2527. ffff9a85`7627d800 fffff801`5d230ec5 : ffff9a85`7627d948 00000000`00000000 ffff9a85`7627db10 ffffdd8f`3cefc098 : nt!KiExpireTimer2+0x429
  2528. ffff9a85`7627d910 fffff801`5d23a004 : 00000000`00000000 00000000`00000000 00000000`00000008 00000000`00001a1b : nt!KiTimer2Expiration+0x165
  2529. ffff9a85`7627d9d0 fffff801`5d3e158e : ffffffff`00000000 ffffb180`eb447180 00000000`00000000 ffffb180`eb452340 : nt!KiRetireDpcList+0x874
  2530. ffff9a85`7627dc60 00000000`00000000 : ffff9a85`7627e000 ffff9a85`76278000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x9e
  2531.  
  2532.  
  2533. ========================================================================
  2534. ======================= Dump #5: ANALYZE VERBOSE =======================
  2535. ====================== File: 060120-40984-01.dmp =======================
  2536. ========================================================================
  2537.  
  2538. Mini Kernel Dump File: Only registers and stack trace are available
  2539. Windows 10 Kernel Version 19041 MP (12 procs) Free x64
  2540. Kernel base = 0xfffff801`75c00000 PsLoadedModuleList = 0xfffff801`7682a250
  2541. Debug session time: Mon Jun 1 07:01:07.131 2020 (UTC - 4:00)
  2542. System Uptime: 0 days 17:18:07.879
  2543.  
  2544. BugCheck 1E, {ffffffffc0000005, fffff80175fe154a, 0, ffffffffffffffff}
  2545. *** WARNING: Unable to verify timestamp for win32k.sys
  2546. *** ERROR: Module load completed but symbols could not be loaded for win32k.sys
  2547. Probably caused by : memory_corruption
  2548. Followup: memory_corruption
  2549.  
  2550. KMODE_EXCEPTION_NOT_HANDLED (1e)
  2551. This is a very common bugcheck. Usually the exception address pinpoints
  2552. the driver/function that caused the problem. Always note this address
  2553. as well as the link date of the driver/image that contains this address.
  2554.  
  2555. Arguments:
  2556. Arg1: ffffffffc0000005, The exception code that was not handled
  2557. Arg2: fffff80175fe154a, The address that the exception occurred at
  2558. Arg3: 0000000000000000, Parameter 0 of the exception
  2559. Arg4: ffffffffffffffff, Parameter 1 of the exception
  2560.  
  2561. Debugging Details:
  2562. DUMP_CLASS: 1
  2563. DUMP_QUALIFIER: 400
  2564. DUMP_TYPE: 2
  2565. READ_ADDRESS: fffff801768fa388: Unable to get MiVisibleState
  2566. ffffffffffffffff
  2567. EXCEPTION_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s.
  2568. FAULTING_IP:
  2569. nt!KiIdleLoop+5a
  2570. fffff801`75fe154a 833d07a1910000 cmp dword ptr [nt!KiIrqlFlags (fffff801`768fb658)],0
  2571. EXCEPTION_PARAMETER2: ffffffffffffffff
  2572. BUGCHECK_STR: 0x1E_c0000005_R
  2573. CUSTOMER_CRASH_COUNT: 1
  2574. DEFAULT_BUCKET_ID: CODE_CORRUPTION
  2575.  
  2576. PROCESS_NAME: System
  2577.  
  2578. CURRENT_IRQL: 0
  2579. LAST_CONTROL_TRANSFER: from fffff80176100c3e to fffff80175fdda20
  2580. STACK_TEXT:
  2581. fffffa8a`ef044a98 fffff801`76100c3e : 00000000`0000001e ffffffff`c0000005 fffff801`75fe154a 00000000`00000000 : nt!KeBugCheckEx
  2582. fffffa8a`ef044aa0 fffff801`75fe68e2 : fffff801`76100c1c 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HvlpVtlCallExceptionHandler+0x22
  2583. fffffa8a`ef044ae0 fffff801`75e32fb7 : fffffa8a`ef045050 00000000`00000000 fffffa8a`ef045260 fffff801`75fe154a : nt!RtlpExecuteHandlerForException+0x12
  2584. fffffa8a`ef044b10 fffff801`75e7b226 : fffffa8a`ef045a28 fffffa8a`ef045760 fffffa8a`ef045a28 ffffdc05`821a2080 : nt!RtlDispatchException+0x297
  2585. fffffa8a`ef045230 fffff801`75fefa6c : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiDispatchException+0x186
  2586. fffffa8a`ef0458f0 fffff801`75feb7a0 : fffffa8a`ef045bf0 00000000`00000001 00000000`00040046 fffff801`75ecc048 : nt!KiExceptionDispatch+0x12c
  2587. fffffa8a`ef045ad0 fffff801`75fe154a : ffffffff`00000000 ffff8381`d4f6a340 ffffdc05`821a2080 00000000`000009d4 : nt!KiGeneralProtectionFault+0x320
  2588. fffffa8a`ef045c60 00000000`00000000 : fffffa8a`ef046000 fffffa8a`ef040000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x5a
  2589. STACK_COMMAND: kb
  2590. CHKIMG_EXTENSION: !chkimg -lo 50 -d !nt
  2591. fffff80175f84f1e-fffff80175f84f21 4 bytes - nt!MiFreeUltraMapping+32
  2592. [ a0 7d fb f6:40 a5 4a 95 ]
  2593. fffff80175fe1230-fffff80175fe1234 5 bytes - nt!KiCallUserMode+220 (+0x5c312)
  2594. [ ff e1 cc cc cc:e8 8b 2e 64 00 ]
  2595. fffff80175fe695d-fffff80175fe6960 4 bytes - nt!RtlpExecuteHandlerForUnwind+d (+0x572d)
  2596. [ ff d0 0f 1f:e8 7e d9 63 ]
  2597. 13 errors : !nt (fffff80175f84f1e-fffff80175fe6960)
  2598. MODULE_NAME: memory_corruption
  2599.  
  2600. IMAGE_NAME: memory_corruption
  2601.  
  2602. FOLLOWUP_NAME: memory_corruption
  2603. DEBUG_FLR_IMAGE_TIMESTAMP: 0
  2604. MEMORY_CORRUPTOR: LARGE
  2605. FAILURE_BUCKET_ID: MEMORY_CORRUPTION_LARGE
  2606. BUCKET_ID: MEMORY_CORRUPTION_LARGE
  2607. PRIMARY_PROBLEM_CLASS: MEMORY_CORRUPTION_LARGE
  2608. TARGET_TIME: 2020-06-01T11:01:07.000Z
  2609. SUITE_MASK: 784
  2610. PRODUCT_TYPE: 1
  2611. USER_LCID: 0
  2612. FAILURE_ID_HASH_STRING: km:memory_corruption_large
  2613. FAILURE_ID_HASH: {e29154ac-69a4-0eb8-172a-a860f73c0a3c}
  2614. Followup: memory_corruption
  2615.  
  2616. ====================== Dump #5: 3RD PARTY DRIVERS ======================
  2617.  
  2618. Mar 14 2016 - amdgpio3.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2619. Jun 05 2017 - amdpsp.sys - Advanced Micro Devices, Inc http://support.amd.com/
  2620. Apr 12 2018 - AMDPCIDev.sys - Advanced Micro Devices PCI Device driver
  2621. Oct 18 2018 - AMDRyzenMasterDriver.sys - AMD Ryzen Master driver
  2622. Mar 14 2019 - nvvad64v.sys - Nvidia Virtual Audio driver http://www.nvidia.com/
  2623. May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
  2624. May 24 2019 - rt640x64.sys - Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  2625. Sep 29 2019 - amdgpio2.sys - AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2626. Jan 10 2020 - nvvhci.sys - Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  2627. Feb 19 2020 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
  2628. May 15 2020 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
  2629.  
  2630. ================== Dump #5: 3RD PARTY DRIVERS (FULL) ===================
  2631.  
  2632. Image path: \SystemRoot\System32\drivers\amdgpio3.sys
  2633. Image name: amdgpio3.sys
  2634. Search : https://www.google.com/search?q=amdgpio3.sys
  2635. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2636. Timestamp : Mon Mar 14 2016
  2637.  
  2638. Image path: \SystemRoot\system32\DRIVERS\amdpsp.sys
  2639. Image name: amdpsp.sys
  2640. Search : https://www.google.com/search?q=amdpsp.sys
  2641. ADA Info : Advanced Micro Devices, Inc http://support.amd.com/
  2642. Timestamp : Mon Jun 5 2017
  2643.  
  2644. Image path: \SystemRoot\System32\drivers\AMDPCIDev.sys
  2645. Image name: AMDPCIDev.sys
  2646. Search : https://www.google.com/search?q=AMDPCIDev.sys
  2647. ADA Info : Advanced Micro Devices PCI Device driver
  2648. Timestamp : Thu Apr 12 2018
  2649.  
  2650. Image path: \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
  2651. Image name: AMDRyzenMasterDriver.sys
  2652. Search : https://www.google.com/search?q=AMDRyzenMasterDriver.sys
  2653. ADA Info : AMD Ryzen Master driver
  2654. Timestamp : Thu Oct 18 2018
  2655.  
  2656. Image path: \SystemRoot\system32\drivers\nvvad64v.sys
  2657. Image name: nvvad64v.sys
  2658. Search : https://www.google.com/search?q=nvvad64v.sys
  2659. ADA Info : Nvidia Virtual Audio driver http://www.nvidia.com/
  2660. Timestamp : Thu Mar 14 2019
  2661.  
  2662. Image path: \SystemRoot\System32\drivers\UcmCxUcsiNvppc.sys
  2663. Image name: UcmCxUcsiNvppc.sys
  2664. Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
  2665. ADA Info : NVIDIA USB Type-C Port Policy Controller driver
  2666. Timestamp : Tue May 14 2019
  2667.  
  2668. Mapped memory image file: C:\ProgramData\dbg\sym\rt640x64.sys\5CE7AF86ad000\rt640x64.sys
  2669. Image path: \SystemRoot\System32\drivers\rt640x64.sys
  2670. Image name: rt640x64.sys
  2671. Search : https://www.google.com/search?q=rt640x64.sys
  2672. ADA Info : Realtek NICDRV 8169 PCIe GBE Family Controller driver https://www.realtek.com/en/
  2673. Timestamp : Fri May 24 2019
  2674. File version: 9.1.410.2015
  2675. Product version: 9.1.410.2015
  2676. File flags: 8 (Mask 3F) Private
  2677. File OS: 40004 NT Win32
  2678. File type: 3.6 Driver
  2679. File date: 00000000.00000000
  2680. CompanyName: Realtek
  2681. ProductName: Realtek 8125/8136/8168/8169 PCI/PCIe Adapters
  2682. InternalName: rt640x64.sys
  2683. OriginalFilename: rt640x64.sys
  2684. ProductVersion: 9.001.0410.2015
  2685. FileVersion: 9.001.0410.2015
  2686. FileDescription: Realtek 8125/8136/8168/8169 NDIS 6.40 64-bit Driver
  2687. LegalCopyright: Copyright (C) 2019 Realtek Semiconductor Corporation. All Right Reserved.
  2688.  
  2689. Image path: \SystemRoot\System32\drivers\amdgpio2.sys
  2690. Image name: amdgpio2.sys
  2691. Search : https://www.google.com/search?q=amdgpio2.sys
  2692. ADA Info : AMD GPIO Controller Driver from Advanced Micro Devices http://support.amd.com/
  2693. Timestamp : Sun Sep 29 2019
  2694.  
  2695. Image path: \SystemRoot\System32\drivers\nvvhci.sys
  2696. Image name: nvvhci.sys
  2697. Search : https://www.google.com/search?q=nvvhci.sys
  2698. ADA Info : Nvidia Virtual USB Host Controller driver http://www.nvidia.com/
  2699. Timestamp : Fri Jan 10 2020
  2700.  
  2701. Image path: \SystemRoot\system32\drivers\nvhda64v.sys
  2702. Image name: nvhda64v.sys
  2703. Search : https://www.google.com/search?q=nvhda64v.sys
  2704. ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
  2705. Timestamp : Wed Feb 19 2020
  2706.  
  2707. Image path: \SystemRoot\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d5216eae94436d77\nvlddmkm.sys
  2708. Image name: nvlddmkm.sys
  2709. Search : https://www.google.com/search?q=nvlddmkm.sys
  2710. ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
  2711. Timestamp : Fri May 15 2020
  2712.  
  2713. ====================== Dump #5: MICROSOFT DRIVERS ======================
  2714.  
  2715. ACPI.sys ACPI Driver for NT (Microsoft)
  2716. acpiex.sys ACPIEx Driver (Microsoft)
  2717. afd.sys Ancillary Function Driver for WinSock (Microsoft)
  2718. afunix.sys AF_UNIX Socket Provider driver (Microsoft)
  2719. AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
  2720. ahcache.sys Application Compatibility Cache (Microsoft)
  2721. amdppm.sys Processor Device Driver
  2722. bam.sys BAM Kernal driver (Microsoft)
  2723. BasicDisplay.sys Basic Display driver (Microsoft)
  2724. BasicRender.sys Basic Render driver (Microsoft)
  2725. Beep.SYS BEEP driver (Microsoft)
  2726. bindflt.sys Windows Bind Filter driver (Microsoft)
  2727. BOOTVID.dll VGA Boot Driver (Microsoft)
  2728. bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
  2729. cdd.dll Canonical Display Driver (Microsoft)
  2730. cdrom.sys SCSI CD-ROM Driver (Microsoft)
  2731. CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
  2732. CI.dll Code Integrity Module (Microsoft)
  2733. CimFS.SYS Consumer IR Class Driver for eHome (Microsoft)
  2734. CLASSPNP.SYS SCSI Class System Dll (Microsoft)
  2735. cldflt.sys Cloud Files Mini Filter driver (Microsoft)
  2736. CLFS.SYS Common Log File System Driver (Microsoft)
  2737. clipsp.sys CLIP Service (Microsoft)
  2738. cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
  2739. cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
  2740. CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
  2741. condrv.sys Console Driver (Microsoft)
  2742. crashdmp.sys Crash Dump driver (Microsoft)
  2743. dfsc.sys DFS Namespace Client Driver (Microsoft)
  2744. disk.sys PnP Disk Driver (Microsoft)
  2745. drmk.sys Digital Rights Management (DRM) driver (Microsoft)
  2746. dump_diskdump.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2747. dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2748. dump_storahci.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
  2749. dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
  2750. dxgmms2.sys DirectX Graphics MMS
  2751. fastfat.SYS Fast FAT File System Driver (Microsoft)
  2752. filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
  2753. fileinfo.sys FileInfo Filter Driver (Microsoft)
  2754. FLTMGR.SYS Filesystem Filter Manager (Microsoft)
  2755. Fs_Rec.sys File System Recognizer Driver (Microsoft)
  2756. fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
  2757. fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
  2758. gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
  2759. hal.dll Hardware Abstraction Layer DLL (Microsoft)
  2760. HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
  2761. HdAudio.sys High Definition Audio Function driver (Microsoft)
  2762. HIDCLASS.SYS Hid Class Library (Microsoft)
  2763. HIDPARSE.SYS Hid Parsing Library (Microsoft)
  2764. hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
  2765. HTTP.sys HTTP Protocol Stack (Microsoft)
  2766. intelpep.sys Intel Power Engine Plugin (Microsoft)
  2767. IntelTA.sys Intel Telemetry Driver
  2768. iorate.sys I/O rate control Filter (Microsoft)
  2769. kbdclass.sys Keyboard Class Driver (Microsoft)
  2770. kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
  2771. kd.dll Local Kernal Debugger (Microsoft)
  2772. kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
  2773. ks.sys Kernal CSA Library (Microsoft)
  2774. ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
  2775. ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
  2776. ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
  2777. lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
  2778. luafv.sys LUA File Virtualization Filter Driver (Microsoft)
  2779. mcupdate_AuthenticAMD.dll AMD Microcode Update Library (Microsoft)
  2780. mmcss.sys MMCSS Driver (Microsoft)
  2781. monitor.sys Monitor Driver (Microsoft)
  2782. mouclass.sys Mouse Class Driver (Microsoft)
  2783. mouhid.sys HID Mouse Filter Driver (Microsoft)
  2784. mountmgr.sys Mount Point Manager (Microsoft)
  2785. mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
  2786. mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
  2787. mrxsmb10.sys Longhorn SMB Downlevel SubRdr (Microsoft)
  2788. mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
  2789. Msfs.SYS Mailslot driver (Microsoft)
  2790. msgpioclx.sys GPIO Class Extension Driver (Microsoft)
  2791. msisadrv.sys ISA Driver (Microsoft)
  2792. mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
  2793. msquic.sys Windows QUIC Driver
  2794. msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
  2795. mssmbios.sys System Management BIOS driver (Microsoft)
  2796. mup.sys Multiple UNC Provider driver (Microsoft)
  2797. ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
  2798. ndiscap.sys Microsoft NDIS Packet Capture Filter Driver
  2799. ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
  2800. NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
  2801. ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
  2802. NDProxy.sys NDIS Proxy driver (Microsoft)
  2803. Ndu.sys Network Data Usage Monitoring driver (Microsoft)
  2804. netbios.sys NetBIOS Interface driver (Microsoft)
  2805. netbt.sys MBT Transport driver (Microsoft)
  2806. NETIO.SYS Network I/O Subsystem (Microsoft)
  2807. Npfs.SYS NPFS driver (Microsoft)
  2808. npsvctrig.sys Named pipe service triggers (Microsoft)
  2809. nsiproxy.sys NSI Proxy driver (Microsoft)
  2810. Ntfs.sys NT File System Driver (Microsoft)
  2811. ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
  2812. ntosext.sys NTOS Extension Host driver (Microsoft)
  2813. Null.SYS NULL Driver (Microsoft)
  2814. pacer.sys QoS Packet Scheduler (Microsoft)
  2815. partmgr.sys Partition driver (Microsoft)
  2816. pci.sys NT Plug and Play PCI Enumerator (Microsoft)
  2817. pcw.sys Performance Counter Driver (Microsoft)
  2818. pdc.sys Power Dependency Coordinator Driver (Microsoft)
  2819. peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
  2820. portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
  2821. PSHED.dll Platform Specific Hardware Error driver (Microsoft)
  2822. qwavedrv.sys Quality Windows Audio Video Experience (qWave) Support driver (Microsoft)
  2823. rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
  2824. raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
  2825. raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
  2826. rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
  2827. rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
  2828. rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
  2829. rdpvideominiport.sys RDP Video Miniport driver (Microsoft)
  2830. rdyboost.sys ReadyBoost Driver (Microsoft)
  2831. rspndr.sys Link-Layer Topology Responder driver (Microsoft)
  2832. serenum.sys Serial Port Enumerator (Microsoft)
  2833. serial.sys Serial Device Driver
  2834. SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
  2835. SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
  2836. spaceport.sys Storage Spaces driver (Microsoft)
  2837. srv2.sys Smb 2.0 Server driver (Microsoft)
  2838. srvnet.sys Server Network driver (Microsoft)
  2839. storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
  2840. storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
  2841. storqosflt.sys Storage QoS Filter driver (Microsoft)
  2842. swenum.sys Plug and Play Software Device Enumerator (Microsoft)
  2843. tbs.sys Export driver for kernel mode TPM API (Microsoft)
  2844. tcpip.sys TCP/IP Protocol driver (Microsoft)
  2845. tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
  2846. TDI.SYS TDI Wrapper driver (Microsoft)
  2847. tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
  2848. tm.sys Kernel Transaction Manager driver (Microsoft)
  2849. UcmCx.sys USB Connector Manager KMDF Class Extension
  2850. ucx01000.sys USB Controller Extension (Microsoft)
  2851. UEFI.sys UEFI NT driver (Microsoft)
  2852. umbus.sys User-Mode Bus Enumerator (Microsoft)
  2853. usbaudio.sys USB Audio Class Driver (Microsoft)
  2854. usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
  2855. USBD.SYS Universal Serial Bus Driver (Microsoft)
  2856. UsbHub3.sys USB3 HUB driver (Microsoft)
  2857. USBSTOR.SYS USB Mass Storage Class driver (Microsoft)
  2858. USBXHCI.SYS USB XHCI driver (Microsoft)
  2859. vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
  2860. Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
  2861. volmgr.sys Volume Manager Driver (Microsoft)
  2862. volmgrx.sys Volume Manager Extension Driver (Microsoft)
  2863. volsnap.sys Volume Shadow Copy driver (Microsoft)
  2864. volume.sys Volume driver (Microsoft)
  2865. vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
  2866. wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
  2867. watchdog.sys Watchdog driver (Microsoft)
  2868. wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
  2869. Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
  2870. WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
  2871. WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
  2872. WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
  2873. werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
  2874. wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
  2875. wimmount.sys Wim file system Driver
  2876. win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
  2877. win32kbase.sys Base Win32k Kernel Driver (Microsoft)
  2878. win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
  2879. WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
  2880. WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
  2881. winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
  2882. wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
  2883. WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
  2884. Wof.sys Windows Overlay Filter (Microsoft)
  2885. WppRecorder.sys WPP Trace Recorder (Microsoft)
  2886.  
  2887. ====================== Dump #5: UNLOADED MODULES =======================
  2888.  
  2889. fffff801`86840000 fffff801`8684d000 amdgpio2.sys
  2890. fffff801`7aec0000 fffff801`7af26000 WdFilter.sys
  2891. fffff801`858e0000 fffff801`858f6000 WdNisDrv.sys
  2892. fffff801`85950000 fffff801`8595e000 WSDScan.sys
  2893. fffff801`85960000 fffff801`8596e000 WSDPrint.sys
  2894. fffff801`85980000 fffff801`8598f000 hiber_storpo
  2895. fffff801`85990000 fffff801`859c3000 hiber_storah
  2896. fffff801`859d0000 fffff801`859ee000 hiber_dumpfv
  2897. fffff801`85fa0000 fffff801`85faf000 WpdUpFltr.sy
  2898. fffff801`85f40000 fffff801`85f95000 WUDFRd.sys
  2899. fffff801`84c60000 fffff801`84c6f000 dump_storpor
  2900. fffff801`84cb0000 fffff801`84ce3000 dump_storahc
  2901. fffff801`84d10000 fffff801`84d2e000 dump_dumpfve
  2902. fffff801`7ae30000 fffff801`7ae4d000 EhStorClass.
  2903. fffff801`84870000 fffff801`8488c000 dam.sys
  2904. fffff801`7a9a0000 fffff801`7a9b1000 WdBoot.sys
  2905. fffff801`7ba60000 fffff801`7ba70000 hwpolicy.sys
  2906.  
  2907. ====================== Dump #5: BIOS INFORMATION =======================
  2908.  
  2909. [SMBIOS Data Tables v2.8]
  2910. [DMI Version - 0]
  2911. [2.0 Calling Convention - No]
  2912. [Table Size - 2308 bytes]
  2913. [BIOS Information (Type 0) - Length 26 - Handle 0000h]
  2914. Vendor American Megatrends Inc.
  2915. BIOS Version 2.A0
  2916. BIOS Starting Address Segment f000
  2917. BIOS Release Date 09/02/2019
  2918. BIOS ROM Size 1000000
  2919. BIOS Characteristics
  2920. 07: - PCI Supported
  2921. 11: - Upgradeable FLASH BIOS
  2922. 12: - BIOS Shadowing Supported
  2923. 15: - CD-Boot Supported
  2924. 16: - Selectable Boot Supported
  2925. 17: - BIOS ROM Socketed
  2926. 19: - EDD Supported
  2927. 23: - 1.2MB Floppy Supported
  2928. 24: - 720KB Floppy Supported
  2929. 25: - 2.88MB Floppy Supported
  2930. 26: - Print Screen Device Supported
  2931. 27: - Keyboard Services Supported
  2932. 28: - Serial Services Supported
  2933. 29: - Printer Services Supported
  2934. 32: - BIOS Vendor Reserved
  2935. BIOS Characteristic Extensions
  2936. 00: - ACPI Supported
  2937. 01: - USB Legacy Supported
  2938. 08: - BIOS Boot Specification Supported
  2939. 10: - Specification Reserved
  2940. 11: - Specification Reserved
  2941. BIOS Major Revision 5
  2942. BIOS Minor Revision 14
  2943. EC Firmware Major Revision 255
  2944. EC Firmware Minor Revision 255
  2945. [System Information (Type 1) - Length 27 - Handle 0001h]
  2946. Manufacturer Micro-Star International Co., Ltd.
  2947. Product Name MS-7B84
  2948. Version 1.0
  2949. UUID 00000000-0000-0000-0000-000000000000
  2950. Wakeup Type Power Switch
  2951. [BaseBoard Information (Type 2) - Length 15 - Handle 0002h]
  2952. Manufacturer Micro-Star International Co., Ltd.
  2953. Product B450M PRO-M2 (MS-7B84)
  2954. Version 1.0
  2955. Feature Flags 09h
  2956. -808667424: - -808667376: - ÷7?
  2957. ü
  2958. Chassis Handle 0003h
  2959. Board Type 0ah - Processor/Memory Module
  2960. Number of Child Handles 0
  2961. [System Enclosure (Type 3) - Length 22 - Handle 0003h]
  2962. Manufacturer Micro-Star International Co., Ltd.
  2963. Chassis Type Desktop
  2964. Version 1.0
  2965. Bootup State Safe
  2966. Power Supply State Safe
  2967. Thermal State Safe
  2968. Security Status None
  2969. OEM Defined 0
  2970. Height 0U
  2971. Number of Power Cords 1
  2972. Number of Contained Elements 0
  2973. Contained Element Size 3
  2974. [OEM Strings (Type 11) - Length 5 - Handle 000bh]
  2975. Number of Strings 1
  2976. [System Configuration Options (Type 12) - Length 5 - Handle 000ch]
  2977. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 000eh]
  2978. [Physical Memory Array (Type 16) - Length 23 - Handle 000fh]
  2979. Location 03h - SystemBoard/Motherboard
  2980. Use 03h - System Memory
  2981. Memory Error Correction 03h - None
  2982. Maximum Capacity 134217728KB
  2983. Memory Error Inf Handle 000eh
  2984. Number of Memory Devices 2
  2985. [Memory Array Mapped Address (Type 19) - Length 31 - Handle 0010h]
  2986. Starting Address 00000000h
  2987. Ending Address 007fffffh
  2988. Memory Array Handle 000fh
  2989. Partition Width 01
  2990. [Cache Information (Type 7) - Length 19 - Handle 0011h]
  2991. Socket Designation L1 - Cache
  2992. Cache Configuration 0180h - WB Enabled Int NonSocketed L1
  2993. Maximum Cache Size 0240h - 576K
  2994. Installed Size 0240h - 576K
  2995. Supported SRAM Type 0010h - Pipeline-Burst
  2996. Current SRAM Type 0010h - Pipeline-Burst
  2997. Cache Speed 1ns
  2998. Error Correction Type Specification Reserved
  2999. System Cache Type Unified
  3000. Associativity 8-way Set-Associative
  3001. [Cache Information (Type 7) - Length 19 - Handle 0012h]
  3002. Socket Designation L2 - Cache
  3003. Cache Configuration 0181h - WB Enabled Int NonSocketed L2
  3004. Maximum Cache Size 0c00h - 3072K
  3005. Installed Size 0c00h - 3072K
  3006. Supported SRAM Type 0010h - Pipeline-Burst
  3007. Current SRAM Type 0010h - Pipeline-Burst
  3008. Cache Speed 1ns
  3009. Error Correction Type Specification Reserved
  3010. System Cache Type Unified
  3011. Associativity 8-way Set-Associative
  3012. [Cache Information (Type 7) - Length 19 - Handle 0013h]
  3013. Socket Designation L3 - Cache
  3014. Cache Configuration 0182h - WB Enabled Int NonSocketed L3
  3015. Maximum Cache Size 4000h - 16384K
  3016. Installed Size 4000h - 16384K
  3017. Supported SRAM Type 0010h - Pipeline-Burst
  3018. Current SRAM Type 0010h - Pipeline-Burst
  3019. Cache Speed 1ns
  3020. Error Correction Type Specification Reserved
  3021. System Cache Type Unified
  3022. Associativity 16-way Set-Associative
  3023. [Processor Information (Type 4) - Length 48 - Handle 0014h]
  3024. Socket Designation AM4
  3025. Processor Type Central Processor
  3026. Processor Family 6bh - Specification Reserved
  3027. Processor Manufacturer Advanced Micro Devices, Inc.
  3028. Processor ID 820f8000fffb8b17
  3029. Processor Version AMD Ryzen 5 2600 Six-Core Processor
  3030. Processor Voltage 8bh - 1.1V
  3031. External Clock 100MHz
  3032. Max Speed 3900MHz
  3033. Current Speed 3400MHz
  3034. Status Enabled Populated
  3035. Processor Upgrade Specification Reserved
  3036. L1 Cache Handle 0011h
  3037. L2 Cache Handle 0012h
  3038. L3 Cache Handle 0013h
  3039. Part Number Unknown
  3040. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0015h]
  3041. [Memory Device (Type 17) - Length 84 - Handle 0016h]
  3042. Physical Memory Array Handle 000fh
  3043. Memory Error Info Handle 0015h
  3044. Form Factor 02h - Unknown
  3045. Device Locator DIMM 0
  3046. Bank Locator P0 CHANNEL A
  3047. Memory Type 02h - Unknown
  3048. Type Detail 0004h - Unknown
  3049. Speed 2400MHz
  3050. Manufacturer Unknown
  3051. Part Number Unknown
  3052. [32Bit Memory Error Information (Type 18) - Length 23 - Handle 0017h]
  3053. [Memory Device (Type 17) - Length 84 - Handle 0018h]
  3054. Physical Memory Array Handle 000fh
  3055. Memory Error Info Handle 0017h
  3056. Total Width 64 bits
  3057. Data Width 64 bits
  3058. Size 8192MB
  3059. Form Factor 09h - DIMM
  3060. Device Locator DIMM 0
  3061. Bank Locator P0 CHANNEL B
  3062. Memory Type 1ah - Specification Reserved
  3063. Type Detail 4080h - Synchronous
  3064. Speed 2400MHz
  3065. Manufacturer Kingston
  3066. Part Number KHX2400C15/8G
  3067. [Memory Device Mapped Address (Type 20) - Length 35 - Handle 0019h]
  3068. Starting Address 00000000h
  3069. Ending Address 007fffffh
  3070. Memory Device Handle 0018h
  3071. Mem Array Mapped Adr Handle 0010h
  3072. Interleave Position [None]
  3073. Interleave Data Depth [None]
  3074.  
  3075. ========================== Dump #5: Extra #1 ===========================
  3076.  
  3077. 3: kd> !verifier
  3078. Verify Flags Level 0x00000000
  3079. STANDARD FLAGS:
  3080. [X] (0x00000000) Automatic Checks
  3081. [ ] (0x00000001) Special pool
  3082. [ ] (0x00000002) Force IRQL checking
  3083. [ ] (0x00000008) Pool tracking
  3084. [ ] (0x00000010) I/O verification
  3085. [ ] (0x00000020) Deadlock detection
  3086. [ ] (0x00000080) DMA checking
  3087. [ ] (0x00000100) Security checks
  3088. [ ] (0x00000800) Miscellaneous checks
  3089. [ ] (0x00020000) DDI compliance checking
  3090. ADDITIONAL FLAGS:
  3091. [ ] (0x00000004) Randomized low resources simulation
  3092. [ ] (0x00000200) Force pending I/O requests
  3093. [ ] (0x00000400) IRP logging
  3094. [ ] (0x00002000) Invariant MDL checking for stack
  3095. [ ] (0x00004000) Invariant MDL checking for driver
  3096. [ ] (0x00008000) Power framework delay fuzzing
  3097. [ ] (0x00010000) Port/miniport interface checking
  3098. [ ] (0x00040000) Systematic low resources simulation
  3099. [ ] (0x00080000) DDI compliance checking (additional)
  3100. [ ] (0x00200000) NDIS/WIFI verification
  3101. [ ] (0x00800000) Kernel synchronization delay fuzzing
  3102. [ ] (0x01000000) VM switch verification
  3103. [ ] (0x02000000) Code integrity checks
  3104. [X] Indicates flag is enabled
  3105. Summary of All Verifier Statistics
  3106. RaiseIrqls 0x0
  3107. AcquireSpinLocks 0x0
  3108. Synch Executions 0x0
  3109. Trims 0x0
  3110. Pool Allocations Attempted 0x0
  3111. Pool Allocations Succeeded 0x0
  3112. Pool Allocations Succeeded SpecialPool 0x0
  3113. Pool Allocations With NO TAG 0x0
  3114. Pool Allocations Failed 0x0
  3115. Current paged pool allocations 0x0 for 00000000 bytes
  3116. Peak paged pool allocations 0x0 for 00000000 bytes
  3117. Current nonpaged pool allocations 0x0 for 00000000 bytes
  3118. Peak nonpaged pool allocations 0x0 for 00000000 bytes
  3119.  
  3120. ========================== Dump #5: Extra #2 ===========================
  3121.  
  3122. 3: kd> !thread
  3123. THREAD ffff8381d4f6a340 Cid 0000.0000 Teb: 0000000000000000 Win32Thread: 0000000000000000 RUNNING on processor 3
  3124. Not impersonating
  3125. GetUlongFromAddress: unable to read from fffff8017681143c
  3126. Owning Process fffff80176923a00 Image: System Process
  3127. Attached Process ffffdc0576a6e040 Image: System
  3128. fffff78000000000: Unable to get shared data
  3129. Wait Start TickCount 3986415
  3130. Context Switch Count 13392117 IdealProcessor: 3
  3131. ReadMemory error: Cannot get nt!KeMaximumIncrement value.
  3132. UserTime 00:00:00.000
  3133. KernelTime 00:00:00.000
  3134. Win32 Start Address nt!KiIdleLoop (0xfffff80175fe14f0)
  3135. Stack Init fffffa8aef045c90 Current fffffa8aef045c20
  3136. Base fffffa8aef046000 Limit fffffa8aef040000 Call 0000000000000000
  3137. Priority 0 BasePriority 0 PriorityDecrement 0 IoPriority 0 PagePriority 0
  3138. Child-SP RetAddr : Args to Child : Call Site
  3139. fffffa8a`ef044a98 fffff801`76100c3e : 00000000`0000001e ffffffff`c0000005 fffff801`75fe154a 00000000`00000000 : nt!KeBugCheckEx
  3140. fffffa8a`ef044aa0 fffff801`75fe68e2 : fffff801`76100c1c 00000000`00000000 00000000`00000000 00000000`00000000 : nt!HvlpVtlCallExceptionHandler+0x22
  3141. fffffa8a`ef044ae0 fffff801`75e32fb7 : fffffa8a`ef045050 00000000`00000000 fffffa8a`ef045260 fffff801`75fe154a : nt!RtlpExecuteHandlerForException+0x12
  3142. fffffa8a`ef044b10 fffff801`75e7b226 : fffffa8a`ef045a28 fffffa8a`ef045760 fffffa8a`ef045a28 ffffdc05`821a2080 : nt!RtlDispatchException+0x297
  3143. fffffa8a`ef045230 fffff801`75fefa6c : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiDispatchException+0x186
  3144. fffffa8a`ef0458f0 fffff801`75feb7a0 : fffffa8a`ef045bf0 00000000`00000001 00000000`00040046 fffff801`75ecc048 : nt!KiExceptionDispatch+0x12c
  3145. fffffa8a`ef045ad0 fffff801`75fe154a : ffffffff`00000000 ffff8381`d4f6a340 ffffdc05`821a2080 00000000`000009d4 : nt!KiGeneralProtectionFault+0x320 (TrapFrame @ fffffa8a`ef045ad0)
  3146. fffffa8a`ef045c60 00000000`00000000 : fffffa8a`ef046000 fffffa8a`ef040000 00000000`00000000 00000000`00000000 : nt!KiIdleLoop+0x5a
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!