Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ========================== AUTO DUMP ANALYZER ==========================
- Auto Dump Analyzer
- Version: 0.9
- Time to analyze file(s): 00 hours and 00 minutes and 33 seconds
- ================================= CPU ==================================
- COUNT: 6
- MHZ: 3696
- VENDOR: GenuineIntel
- FAMILY: 6
- MODEL: 9e
- STEPPING: c
- ================================== OS ==================================
- Product: WinNt, suite: TerminalServer SingleUserTS
- BUILD_VERSION: 10.0.18362.476 (WinBuild.160101.0800)
- BUILD: 18362
- SERVICEPACK: 476
- PLATFORM_TYPE: x64
- NAME: Windows 10
- EDITION: Windows 10 WinNt TerminalServer SingleUserTS
- BUILD_TIMESTAMP: 2011-12-29 18:28:41
- BUILDDATESTAMP: 160101.0800
- BUILDLAB: WinBuild
- BUILDOSVER: 10.0.18362.476
- =============================== DEBUGGER ===============================
- Microsoft (R) Windows Debugger Version 10.0.14321.1024 AMD64
- Copyright (c) Microsoft Corporation. All rights reserved.
- =============================== COMMENTS ===============================
- * Additional BIOS information (including RAM information) was unreadable
- from the first dump file. This can be caused by an outdated BIOS.
- ========================================================================
- ==================== Dump File: 120919-18796-01.dmp ====================
- ========================================================================
- Mini Kernel Dump File: Only registers and stack trace are available
- Windows 10 Kernel Version 18362 MP (6 procs) Free x64
- Kernel base = 0xfffff800`73000000 PsLoadedModuleList = 0xfffff800`73448170
- Debug session time: Mon Dec 9 06:27:26.967 2019 (UTC - 5:00)
- System Uptime: 1 days 8:34:39.707
- BugCheck A, {fffff8000000c81c, 2, 8, fffff8007303cb9c}
- Probably caused by : ntkrnlmp.exe ( nt!KiSearchForNewThreadOnProcessor+2ec )
- Followup: MachineOwner
- IRQL_NOT_LESS_OR_EQUAL (a)
- An attempt was made to access a pageable (or completely invalid) address at an
- interrupt request level (IRQL) that is too high. This is usually
- caused by drivers using improper addresses.
- If a kernel debugger is available get the stack backtrace.
- Arguments:
- Arg1: fffff8000000c81c, memory referenced
- Arg2: 0000000000000002, IRQL
- Arg3: 0000000000000008, bitfield :
- bit 0 : value 0 = read operation, 1 = write operation
- bit 3 : value 0 = not an execute operation, 1 = execute operation (only on chips which support this level of status)
- Arg4: fffff8007303cb9c, address which referenced memory
- Debugging Details:
- DUMP_CLASS: 1
- DUMP_QUALIFIER: 400
- DUMP_TYPE: 2
- DUMP_FILE_ATTRIBUTES: 0x8
- Kernel Generated Triage Dump
- READ_ADDRESS: fffff800735733b8: Unable to get MiVisibleState
- fffff8000000c81c
- CURRENT_IRQL: 2
- FAULTING_IP:
- nt!KiSearchForNewThreadOnProcessor+2ec
- fffff800`7303cb9c 488b051d795300 mov rax,qword ptr [nt!KiCpuSetSequence (fffff800`735744c0)]
- CUSTOMER_CRASH_COUNT: 1
- DEFAULT_BUCKET_ID: WIN8_DRIVER_FAULT
- BUGCHECK_STR: AV
- PROCESS_NAME: destiny2.exe
- TRAP_FRAME: ffff888da1e7f540 -- (.trap 0xffff888da1e7f540)
- NOTE: The trap frame does not contain all registers.
- Some register values may be zeroed or incorrect.
- rax=0000000000000001 rbx=0000000000000000 rcx=ffffe781648a3180
- rdx=0000000000000000 rsi=0000000000000000 rdi=0000000000000000
- rip=fffff8007303cb9c rsp=ffff888da1e7f6d0 rbp=0000000000000000
- r8=000000000000003f r9=0000000000000000 r10=0000000000000000
- r11=fffff80073000000 r12=0000000000000000 r13=0000000000000000
- r14=0000000000000000 r15=0000000000000000
- iopl=0 nv up ei ng nz na pe nc
- nt!KiSearchForNewThreadOnProcessor+0x2ec:
- fffff800`7303cb9c 488b051d795300 mov rax,qword ptr [nt!KiCpuSetSequence (fffff800`735744c0)] ds:fffff800`735744c0=????????????????
- Resetting default scope
- LAST_CONTROL_TRANSFER: from fffff800731d32e9 to fffff800731c14e0
- STACK_TEXT:
- ffff888d`a1e7f3f8 fffff800`731d32e9 : 00000000`0000000a fffff800`0000c81c 00000000`00000002 00000000`00000008 : nt!KeBugCheckEx
- ffff888d`a1e7f400 fffff800`731cf62b : ffffd789`2a002340 00000000`000000ff 00000000`00000103 00000000`00000000 : nt!KiBugCheckDispatch+0x69
- ffff888d`a1e7f540 fffff800`7303cb9c : 00000000`00000000 ffffe781`648a3180 00000000`00000000 00000000`00000000 : nt!KiPageFault+0x46b
- ffff888d`a1e7f6d0 fffff800`7303c281 : ffffe781`648a3180 00000000`ffffff00 ffffe781`ffffffff 00000000`00000040 : nt!KiSearchForNewThreadOnProcessor+0x2ec
- ffff888d`a1e7f760 fffff800`7303b644 : ffffd789`3af55080 00000000`00000000 ffffd789`00000000 00000000`00000000 : nt!KiSwapThread+0x6c1
- ffff888d`a1e7f800 fffff800`7303ade5 : ffffe781`00000009 fffff800`00000000 ffffd789`3d195101 00000000`00000000 : nt!KiCommitThreadWait+0x144
- ffff888d`a1e7f8a0 fffff800`735f3c5b : ffffd789`39a7dbe0 00000000`00000006 00000000`00000001 fffff800`736b0a00 : nt!KeWaitForSingleObject+0x255
- ffff888d`a1e7f980 fffff800`731d2d15 : ffffd789`3af55080 0000004c`319ffc48 ffff888d`a1e7fa18 ffffffff`ffffd8f0 : nt!NtWaitForSingleObject+0x10b
- ffff888d`a1e7fa00 00007ff8`1143c144 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x25
- 0000004c`319ffc18 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ff8`1143c144
- STACK_COMMAND: kb
- THREAD_SHA1_HASH_MOD_FUNC: 7f5a9addc79d4ba78e7eeba93b2967f7702950fb
- THREAD_SHA1_HASH_MOD_FUNC_OFFSET: b58e6f4c412fe2138ffdf73de5f7b7c95cc015db
- THREAD_SHA1_HASH_MOD: 9f457f347057f10e1df248e166a3e95e6570ecfe
- FOLLOWUP_IP:
- nt!KiSearchForNewThreadOnProcessor+2ec
- fffff800`7303cb9c 488b051d795300 mov rax,qword ptr [nt!KiCpuSetSequence (fffff800`735744c0)]
- FAULT_INSTR_CODE: 1d058b48
- SYMBOL_STACK_INDEX: 3
- SYMBOL_NAME: nt!KiSearchForNewThreadOnProcessor+2ec
- FOLLOWUP_NAME: MachineOwner
- MODULE_NAME: nt
- IMAGE_NAME: ntkrnlmp.exe
- DEBUG_FLR_IMAGE_TIMESTAMP: 4efcf7a9
- IMAGE_VERSION: 10.0.18362.476
- BUCKET_ID_FUNC_OFFSET: 2ec
- FAILURE_BUCKET_ID: AV_nt!KiSearchForNewThreadOnProcessor
- BUCKET_ID: AV_nt!KiSearchForNewThreadOnProcessor
- PRIMARY_PROBLEM_CLASS: AV_nt!KiSearchForNewThreadOnProcessor
- TARGET_TIME: 2019-12-09T11:27:26.000Z
- SUITE_MASK: 272
- PRODUCT_TYPE: 1
- USER_LCID: 0
- FAILURE_ID_HASH_STRING: km:av_nt!kisearchfornewthreadonprocessor
- FAILURE_ID_HASH: {f6898590-0a2f-456e-2101-8929228989d1}
- Followup: MachineOwner
- ========================================================================
- ===================== 3RD PARTY DRIVER QUICK LIST ======================
- ========================================================================
- Oct 22 2012 - lvrs64.sys - Logitech Kernel Audio Improvement Filter Driver http://support.logitech.com/
- Oct 22 2012 - lvuvc64.sys - Logitech USB Video Class Driver (WebCam) http://support.logitech.com/
- Jan 15 2015 - AppShopDrv103.sys - ASRock APP Shop driver
- Apr 24 2015 - LGBusEnum.sys - Logitech GamePanel Virtual Bus Enumerator driver http://support.logitech.com/
- Apr 24 2015 - LGJoyXlCore.sys - Logitech Gaming Software driver http://support.logitech.com/
- Apr 24 2015 - LGVirHid.sys - Logitech Gamepanel Virtual HID Device driver http://support.logitech.com/
- Jun 09 2015 - lgcoretemp.sys - CPU Core Temperature Monitor http://support.logitech.com/
- Sep 30 2016 - RTCore64.sys - !!! Overclocking Software - RivaTuner - MSI Afterburner http://www.msi.com/ or EVGA Precision X http://www.evga.com/
- Sep 19 2017 - ICCWDT.sys - Intel(R) Watchdog Timer driver
- Feb 01 2019 - ALSysIO64.sys - Arthur Liberman System Input Output driver - VIPRE Internet Security or Adobe Photoshop Elements
- Mar 28 2019 - RTKVHD64.sys - Realtek Audio System driver https://www.realtek.com/en/
- Apr 22 2019 - GLCKIO2.sys - ASUS RGB driver
- May 07 2019 - TeeDriverW8x64.sys - Intel Management Engine Interface driver https://downloadcenter.intel.com/
- May 14 2019 - UcmCxUcsiNvppc.sys - NVIDIA USB Type-C Port Policy Controller driver
- May 15 2019 - ene.sys - (Ptolemy Tech Co.) or ASUS RGB driver
- May 24 2019 - e1r68x64.sys - Intel(R) Gigabit Adapter driver https://downloadcenter.intel.com/
- Jun 21 2019 - nvhda64v.sys - Nvidia HDMI Audio Device http://www.nvidia.com/
- Jun 27 2019 - e1d68x64.sys - Intel(R) Gigabit Adapter driver
- Jul 23 2019 - iaStorAC.sys - Intel Rapid Storage Technology driver
- Nov 20 2019 - nvlddmkm.sys - Nvidia Graphics Card driver http://www.nvidia.com/
- Dec 03 2019 - FACEIT.sys - FACEIT Client https://www.faceit.com/
- ========================================================================
- ========================== 3RD PARTY DRIVERS ===========================
- ========================================================================
- Image name: lvrs64.sys
- Search : https://www.google.com/search?q=lvrs64.sys
- ADA Info : Logitech Kernel Audio Improvement Filter Driver http://support.logitech.com/
- Timestamp : Mon Oct 22 2012
- Image name: lvuvc64.sys
- Search : https://www.google.com/search?q=lvuvc64.sys
- ADA Info : Logitech USB Video Class Driver (WebCam) http://support.logitech.com/
- Timestamp : Mon Oct 22 2012
- Image name: AppShopDrv103.sys
- Search : https://www.google.com/search?q=AppShopDrv103.sys
- ADA Info : ASRock APP Shop driver
- Timestamp : Thu Jan 15 2015
- Image name: LGBusEnum.sys
- Search : https://www.google.com/search?q=LGBusEnum.sys
- ADA Info : Logitech GamePanel Virtual Bus Enumerator driver http://support.logitech.com/
- Timestamp : Fri Apr 24 2015
- Image name: LGJoyXlCore.sys
- Search : https://www.google.com/search?q=LGJoyXlCore.sys
- ADA Info : Logitech Gaming Software driver http://support.logitech.com/
- Timestamp : Fri Apr 24 2015
- Image name: LGVirHid.sys
- Search : https://www.google.com/search?q=LGVirHid.sys
- ADA Info : Logitech Gamepanel Virtual HID Device driver http://support.logitech.com/
- Timestamp : Fri Apr 24 2015
- Image name: lgcoretemp.sys
- Search : https://www.google.com/search?q=lgcoretemp.sys
- ADA Info : CPU Core Temperature Monitor http://support.logitech.com/
- Timestamp : Tue Jun 9 2015
- Image name: RTCore64.sys
- Search : https://www.google.com/search?q=RTCore64.sys
- ADA Info : !!! Overclocking Software - RivaTuner - MSI Afterburner http://www.msi.com/ or EVGA Precision X http://www.evga.com/
- Timestamp : Fri Sep 30 2016
- Image name: ICCWDT.sys
- Search : https://www.google.com/search?q=ICCWDT.sys
- ADA Info : Intel(R) Watchdog Timer driver
- Timestamp : Tue Sep 19 2017
- Image name: ALSysIO64.sys
- Search : https://www.google.com/search?q=ALSysIO64.sys
- ADA Info : Arthur Liberman System Input Output driver - VIPRE Internet Security or Adobe Photoshop Elements
- Timestamp : Fri Feb 1 2019
- Image name: RTKVHD64.sys
- Search : https://www.google.com/search?q=RTKVHD64.sys
- ADA Info : Realtek Audio System driver https://www.realtek.com/en/
- Timestamp : Thu Mar 28 2019
- Image name: GLCKIO2.sys
- Search : https://www.google.com/search?q=GLCKIO2.sys
- ADA Info : ASUS RGB driver
- Timestamp : Mon Apr 22 2019
- Image name: TeeDriverW8x64.sys
- Search : https://www.google.com/search?q=TeeDriverW8x64.sys
- ADA Info : Intel Management Engine Interface driver https://downloadcenter.intel.com/
- Timestamp : Tue May 7 2019
- Image name: UcmCxUcsiNvppc.sys
- Search : https://www.google.com/search?q=UcmCxUcsiNvppc.sys
- ADA Info : NVIDIA USB Type-C Port Policy Controller driver
- Timestamp : Tue May 14 2019
- Image name: ene.sys
- Search : https://www.google.com/search?q=ene.sys
- ADA Info : (Ptolemy Tech Co.) or ASUS RGB driver
- Timestamp : Wed May 15 2019
- Image name: e1r68x64.sys
- Search : https://www.google.com/search?q=e1r68x64.sys
- ADA Info : Intel(R) Gigabit Adapter driver https://downloadcenter.intel.com/
- Timestamp : Fri May 24 2019
- Image name: nvhda64v.sys
- Search : https://www.google.com/search?q=nvhda64v.sys
- ADA Info : Nvidia HDMI Audio Device http://www.nvidia.com/
- Timestamp : Fri Jun 21 2019
- Image name: e1d68x64.sys
- Search : https://www.google.com/search?q=e1d68x64.sys
- ADA Info : Intel(R) Gigabit Adapter driver
- Timestamp : Thu Jun 27 2019
- Image name: iaStorAC.sys
- Search : https://www.google.com/search?q=iaStorAC.sys
- ADA Info : Intel Rapid Storage Technology driver
- Timestamp : Tue Jul 23 2019
- Image name: nvlddmkm.sys
- Search : https://www.google.com/search?q=nvlddmkm.sys
- ADA Info : Nvidia Graphics Card driver http://www.nvidia.com/
- Timestamp : Wed Nov 20 2019
- Image name: FACEIT.sys
- Search : https://www.google.com/search?q=FACEIT.sys
- ADA Info : FACEIT Client https://www.faceit.com/
- Timestamp : Tue Dec 3 2019
- If any of the above drivers are from Microsoft then please let me know.
- I will have them moved to the Microsoft list on the next update.
- ========================================================================
- ========================== MICROSOFT DRIVERS ===========================
- ========================================================================
- ACPI.sys ACPI Driver for NT (Microsoft)
- acpiex.sys ACPIEx Driver (Microsoft)
- acpipagr.sys ACPI Processor Aggregator Device driver (Microsoft)
- acpitime.sys ACPI Wake Alarm (Microsoft)
- afd.sys Ancillary Function Driver for WinSock (Microsoft)
- afunix.sys AF_UNIX Socket Provider driver (Microsoft)
- AgileVpn.sys RAS Agil VPN Miniport Call Manager driver (Microsoft)
- ahcache.sys Application Compatibility Cache (Microsoft)
- bam.sys BAM Kernal driver (Microsoft)
- BasicDisplay.sys Basic Display driver (Microsoft)
- BasicRender.sys Basic Render driver (Microsoft)
- Beep.SYS BEEP driver (Microsoft)
- bindflt.sys Windows Bind Filter driver (Microsoft)
- BOOTVID.dll VGA Boot Driver (Microsoft)
- bowser.sys NT Lan Manager Datagram Receiver Driver (Microsoft)
- cdd.dll Canonical Display Driver (Microsoft)
- cdrom.sys SCSI CD-ROM Driver (Microsoft)
- CEA.sys Event Aggregation Kernal Mode Library (Microsoft)
- CI.dll Code Integrity Module (Microsoft)
- CLASSPNP.SYS SCSI Class System Dll (Microsoft)
- cldflt.sys Cloud Files Mini Filter driver (Microsoft)
- CLFS.SYS Common Log File System Driver (Microsoft)
- clipsp.sys CLIP Service (Microsoft)
- cmimcext.sys Kernal Configuration Manager Initial Con. Driver (Microsoft)
- cng.sys Kernal Cryptography, Next Generation Driver (Microsoft)
- CompositeBus.sys Multi-Transport Composite Bus Enumerator (Microsoft)
- condrv.sys Console Driver (Microsoft)
- crashdmp.sys Crash Dump driver (Microsoft)
- csc.sys Windows Client Side Caching driver (Microsoft)
- dfsc.sys DFS Namespace Client Driver (Microsoft)
- disk.sys PnP Disk Driver (Microsoft)
- drmk.sys Digital Rights Management (DRM) driver (Microsoft)
- dump_dumpfve.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
- dump_iaStorAC.sys (Generic Description) dump_*.sys drivers usually provide disk access during a crash to write dump files.
- dump_storport.sys Provides disk access during crash dump file generation (Microsoft)
- dxgkrnl.sys DirectX Graphics Kernal (Microsoft)
- dxgmms2.sys DirectX Graphics MMS
- EhStorClass.sys Enhanced Storage Class driver for IEEE... (Microsoft)
- fastfat.SYS Fast FAT File System Driver (Microsoft)
- filecrypt.sys Windows sandboxing and encryption filter (Microsoft)
- fileinfo.sys FileInfo Filter Driver (Microsoft)
- FLTMGR.SYS Filesystem Filter Manager (Microsoft)
- Fs_Rec.sys File System Recognizer Driver (Microsoft)
- fvevol.sys BitLocker Driver Encryption Driver (Microsoft)
- fwpkclnt.sys FWP/IPsec Kernal-Mode API (Microsoft)
- gpuenergydrv.sys GPU Energy Kernal Driver (Microsoft)
- hal.dll Hardware Abstraction Layer DLL (Microsoft)
- HDAudBus.sys High Definition Audio Bus Driver (Microsoft)
- HIDCLASS.SYS Hid Class Library (Microsoft)
- HIDPARSE.SYS Hid Parsing Library (Microsoft)
- hidusb.sys USB Miniport Driver for Input Devices (Microsoft)
- HTTP.sys HTTP Protocol Stack (Microsoft)
- intelpep.sys Intel Power Engine Plugin (Microsoft)
- intelppm.sys Processor Device Driver (Microsoft)
- iorate.sys I/O rate control Filter (Microsoft)
- kbdclass.sys Keyboard Class Driver (Microsoft)
- kbdhid.sys HID Mouse Filter Driver or HID Keyboard Filter Driver (Microsoft)
- kdcom.dll Kernel Debugger HW Extension DLL (Microsoft)
- kdnic.sys Microsoft Kernel Debugger Network Miniport (Microsoft)
- ks.sys Kernal CSA Library (Microsoft)
- ksecdd.sys Kernel Security Support Provider Interface (Microsoft)
- ksecpkg.sys Kernel Security Support Provider Interface Packages (Microsoft)
- ksthunk.sys Kernal Streaming WOW Thunk Service (Microsoft)
- lltdio.sys Link-Layer Topology Mapper I/O Driver (Microsoft)
- luafv.sys LUA File Virtualization Filter Driver (Microsoft)
- mcupdate.dll Media Center Update (Microsoft)
- mmcss.sys MMCSS Driver (Microsoft)
- monitor.sys Monitor Driver (Microsoft)
- mouclass.sys Mouse Class Driver (Microsoft)
- mouhid.sys HID Mouse Filter Driver (Microsoft)
- mountmgr.sys Mount Point Manager (Microsoft)
- mpsdrv.sys Microsoft Protection Service Driver (Microsoft)
- mrxsmb.sys SMB MiniRedirector Wrapper and Engine (Microsoft)
- mrxsmb20.sys Longhorn SMB 2.0 Redirector (Microsoft)
- Msfs.SYS Mailslot driver (Microsoft)
- msisadrv.sys ISA Driver (Microsoft)
- mslldp.sys Microsoft Link-Layer Discovery Protocol... (Microsoft)
- msrpc.sys Kernel Remote Procedure Call Provider (Microsoft)
- mssecflt.sys Microsoft Security Events Component file system filter driver (Microsoft)
- mssmbios.sys System Management BIOS driver (Microsoft)
- mup.sys Multiple UNC Provider driver (Microsoft)
- ndis.sys Network Driver Interface Specification (NDIS) driver (Microsoft)
- ndistapi.sys NDIS 3.0 Connection Wrapper driver (Microsoft)
- ndisuio.sys NDIS User mode I/O driver (Microsoft)
- NdisVirtualBus.sys Virtual Network Adapter Enumerator (Microsoft)
- ndiswan.sys MS PPP Framing Driver (Strong Encryption) Microsoft)
- NDProxy.sys NDIS Proxy driver (Microsoft)
- Ndu.sys Network Data Usage Monitoring driver (Microsoft)
- netbios.sys NetBIOS Interface driver (Microsoft)
- netbt.sys MBT Transport driver (Microsoft)
- NETIO.SYS Network I/O Subsystem (Microsoft)
- Npfs.SYS NPFS driver (Microsoft)
- npsvctrig.sys Named pipe service triggers (Microsoft)
- nsiproxy.sys NSI Proxy driver (Microsoft)
- Ntfs.sys NT File System Driver (Microsoft)
- ntkrnlmp.exe Windows NT operating system kernel (Microsoft)
- ntosext.sys NTOS Extension Host driver (Microsoft)
- Null.SYS NULL Driver (Microsoft)
- nwifi.sys NativeWiFi Miniport Driver (Microsoft)
- pacer.sys QoS Packet Scheduler (Microsoft)
- partmgr.sys Partition driver (Microsoft)
- pci.sys NT Plug and Play PCI Enumerator (Microsoft)
- pcw.sys Performance Counter Driver (Microsoft)
- pdc.sys Power Dependency Coordinator Driver (Microsoft)
- peauth.sys Protected Environment Authentication and Authorization Export Driver (Microsoft)
- portcls.sys Class Driver for Port/Miniport Devices system driver (Microsoft)
- PSHED.dll Platform Specific Hardware Error driver (Microsoft)
- rasl2tp.sys RAS L2TP Mini-port/Call-manager driver (Microsoft)
- raspppoe.sys RAS PPPoE Mini-port/Call manager driver (Microsoft)
- raspptp.sys Peer-to-Peer Tunneling Protocol (Microsoft)
- rassstp.sys RAS SSTP Miniport Call Manager driver (Microsoft)
- rdbss.sys Redirected Drive Buffering SubSystem driver (Microsoft)
- rdpbus.sys Microsoft RDP Bus Device driver (Microsoft)
- rdyboost.sys ReadyBoost Driver (Microsoft)
- rspndr.sys Link-Layer Topology Responder driver (Microsoft)
- SgrmAgent.sys System Guard Runtime Monitor Agent driver (Microsoft)
- SleepStudyHelper.sys Sleep Study Helper driver (Microsoft)
- spaceport.sys Storage Spaces driver (Microsoft)
- srv2.sys Smb 2.0 Server driver (Microsoft)
- srvnet.sys Server Network driver (Microsoft)
- storahci.sys MS AHCI Storport Miniport Driver (Microsoft)
- storport.sys Storage port driver for use with high-performance buses such as fibre channel buses and RAID adapters. (Microsoft)
- storqosflt.sys Storage QoS Filter driver (Microsoft)
- swenum.sys Plug and Play Software Device Enumerator (Microsoft)
- tbs.sys Export driver for kernel mode TPM API (Microsoft)
- tcpip.sys TCP/IP Protocol driver (Microsoft)
- tcpipreg.sys Microsoft Windows TCP/IP Registry Compatibility driver (Microsoft)
- TDI.SYS TDI Wrapper driver (Microsoft)
- tdx.sys NetIO Legacy TDI x-bit Support Driver (Microsoft)
- tm.sys Kernel Transaction Manager driver (Microsoft)
- UcmCx.sys USB Connector Manager KMDF Class Extension
- ucx01000.sys USB Controller Extension (Microsoft)
- UEFI.sys UEFI NT driver (Microsoft)
- umbus.sys User-Mode Bus Enumerator (Microsoft)
- usbaudio.sys USB Audio Class Driver (Microsoft)
- usbccgp.sys USB Common Class Generic Parent Driver (Microsoft)
- USBD.SYS Universal Serial Bus Driver (Microsoft)
- UsbHub3.sys USB3 HUB driver (Microsoft)
- USBXHCI.SYS USB XHCI driver (Microsoft)
- vdrvroot.sys Virtual Drive Root Enumerator (Microsoft)
- Vid.sys Microsoft Hyper-V Virtualization Infrastructure Driver
- volmgr.sys Volume Manager Driver (Microsoft)
- volmgrx.sys Volume Manager Extension Driver (Microsoft)
- volsnap.sys Volume Shadow Copy driver (Microsoft)
- volume.sys Volume driver (Microsoft)
- vwififlt.sys Virtual WiFi Filter Driver (Microsoft)
- wanarp.sys MS Remote Access and Routing ARP driver (Microsoft)
- watchdog.sys Watchdog driver (Microsoft)
- wcifs.sys Windows Container Isolation FS Filter driver (Microsoft)
- Wdf01000.sys Kernel Mode Driver Framework Runtime (Microsoft)
- WdFilter.sys Microsoft Anti-malware file system filter driver (Microsoft)
- WDFLDR.SYS Kernel Mode Driver Framework Loader (Microsoft)
- WdNisDrv.sys Microsoft Network Realtime Inspection driver (Microsoft)
- werkernel.sys Windows Error Reporting Kernel driver (Microsoft)
- wfplwfs.sys WPF NDIS Lightweight Filter driver (Microsoft)
- win32k.sys Full/Desktop Multi-User Win32 driver (Microsoft)
- win32kbase.sys Base Win32k Kernel Driver (Microsoft)
- win32kfull.sys Full/Desktop Win32k Kernel Driver (Microsoft)
- WindowsTrustedRT.sys Windows Trusted Runtime Interface driver (Microsoft)
- WindowsTrustedRTProxy.sys Windows Trusted Runtime Service Proxy driver (Microsoft)
- winhvr.sys Windows Hypervisor Root Interface driver (Microsoft)
- winquic.sys QUIC Transport Protocol driver (Microsoft)
- wmiacpi.sys Windows Management Interface for ACPI (Microsoft)
- WMILIB.SYS WMILIB WMI support library DLL (Microsoft)
- Wof.sys Windows Overlay Filter (Microsoft)
- WppRecorder.sys WPP Trace Recorder (Microsoft)
- WUDFRd.sys Windows Driver Foundation - User-mode Driver Framework Reflector driver (Microsoft)
- Unloaded modules:
- fffff800`cd6a0000 fffff800`cd6b1000 MSKSSRV.sys
- fffff800`cd680000 fffff800`cd691000 MSKSSRV.sys
- fffff800`cd660000 fffff800`cd671000 MSKSSRV.sys
- fffff800`cd640000 fffff800`cd651000 MSKSSRV.sys
- fffff800`cd620000 fffff800`cd631000 MSKSSRV.sys
- fffff800`cd600000 fffff800`cd611000 MSKSSRV.sys
- fffff800`cd4a0000 fffff800`cd5d6000 EasyAntiChea
- fffff800`cd5e0000 fffff800`cd5f1000 MSKSSRV.sys
- fffff800`cd360000 fffff800`cd496000 EasyAntiChea
- fffff800`cd310000 fffff800`cd321000 MSKSSRV.sys
- fffff800`6fae0000 fffff800`6faf1000 MSKSSRV.sys
- fffff800`8c300000 fffff800`8c30f000 dump_storpor
- fffff800`8c460000 fffff800`8cff9000 dump_iaStorA
- fffff800`8c420000 fffff800`8c43e000 dump_dumpfve
- fffff800`90b50000 fffff800`90ba1000 WUDFRd.sys
- fffff800`8eb00000 fffff800`8eb1e000 dam.sys
- fffff800`75fb0000 fffff800`75fc1000 WdBoot.sys
- fffff800`79c20000 fffff800`79c30000 hwpolicy.sys
- ========================================================================
- ============================== BIOS INFO ===============================
- ========================================================================
- sysinfo: could not find necessary interfaces.
- sysinfo: note that mssmbios.sys must be loaded (XPSP2+).
- ========================================================================
- ============================== IMAGE SCAN ==============================
- ========================================================================
- MZ at ffff8325`06a00000, prot 00000040, type 01000000 - size 3a1000
- Name: win32kfull.sys
- MZ at ffff8325`06e30000, prot 00000040, type 01000000 - size 8c000
- Name: WIN32K.SYS
- MZ at ffff8325`07ac0000, prot 00000040, type 01000000 - size 2a5000
- Name: win32kbase.sys
- MZ at ffff8325`07d70000, prot 00000040, type 01000000 - size 48000
- Name: cdd.dll
- MZ at fffff800`6fa00000, prot 00000040, type 01000000 - size 14000
- Name: mmcss.exe
- MZ at fffff800`6fa20000, prot 00000040, type 01000000 - size 77000
- Name: cldflt.exe
- MZ at fffff800`6faa0000, prot 00000040, type 01000000 - size 19000
- Name: mslldp.exe
- MZ at fffff800`6fac0000, prot 00000040, type 01000000 - size 1a000
- Name: storqosflt.exe
- MZ at fffff800`6fb00000, prot 00000040, type 01000000 - size 18000
- Name: lltdio.exe
- MZ at fffff800`6fb20000, prot 00000040, type 01000000 - size 1b000
- Name: rspndr.exe
- MZ at fffff800`6fb40000, prot 00000040, type 01000000 - size 1d000
- Name: wanarp.exe
- MZ at fffff800`6fb60000, prot 00000040, type 01000000 - size b2000
- Name: nwifi.exe
- MZ at fffff800`6fc20000, prot 00000040, type 01000000 - size da000
- Name: dxgmms2.sys
- MZ at fffff800`6fd00000, prot 00000040, type 01000000 - size 18000
- Name: monitor.exe
- MZ at fffff800`6fd20000, prot 00000040, type 01000000 - size 50000
- Name: WUDFRd.exe
- MZ at fffff800`6fd80000, prot 00000040, type 01000000 - size 2a000
- Name: luafv.exe
- MZ at fffff800`6fdb0000, prot 00000040, type 01000000 - size 37000
- Name: wcifs.exe
- MZ at fffff800`73000000, prot 00000040, type 01000000 - size ab6000
- Name: ntoskrnl.exe
- MZ at fffff800`73ab6000, prot 00000040, type 01000000 - size a3000
- Name: HAL.dll
- MZ at fffff800`75820000, prot 00000040, type 01000000 - size 11000
- Name: WerLiveKernelApi.dll
- MZ at fffff800`75840000, prot 00000040, type 01000000 - size 2a000
- Name: ksecdd.sys
- MZ at fffff800`75870000, prot 00000040, type 01000000 - size 60000
- Name: msrpc.sys
- MZ at fffff800`758e0000, prot 00000040, type 01000000 - size 27000
- Name: ntostmhost.dll
- MZ at fffff800`75910000, prot 00000040, type 01000000 - size 68000
- Name: CLFS.SYS
- MZ at fffff800`75980000, prot 00000040, type 01000000 - size 1a000
- Name: PSHED.dll
- MZ at fffff800`759a0000, prot 00000040, type 01000000 - size b000
- Name: BOOTVID.dll
- MZ at fffff800`759b0000, prot 00000040, type 01000000 - size e000
- Name: cmimcext.dll
- MZ at fffff800`759c0000, prot 00000040, type 01000000 - size c000
- Name: ntosext.dll
- MZ at fffff800`759d0000, prot 00000040, type 01000000 - size 13000
- Name: WDFLDR.SYS
- MZ at fffff800`759f0000, prot 00000040, type 01000000 - size f000
- Name: SleepStudyHelper.sys
- MZ at fffff800`75a00000, prot 00000040, type 01000000 - size 105000
- Name: clipsp.sys
- MZ at fffff800`75b10000, prot 00000040, type 01000000 - size 71000
- Name: FLTMGR.SYS
- MZ at fffff800`75b90000, prot 00000040, type 01000000 - size dc000
- Name: CI.dll
- MZ at fffff800`75c70000, prot 00000040, type 01000000 - size bc000
- Name: cng.sys
- MZ at fffff800`75d30000, prot 00000040, type 01000000 - size d5000
- Name: Wdf01000.exe
- MZ at fffff800`75e10000, prot 00000040, type 01000000 - size 10000
- Name: WppRecorder.sys
- MZ at fffff800`75e30000, prot 00000040, type 01000000 - size 25000
- Name: acpiex.exe
- MZ at fffff800`75e60000, prot 00000040, type 01000000 - size 42000
- Name: mssecflt.exe
- MZ at fffff800`75eb0000, prot 00000040, type 01000000 - size 1a000
- Name: SgrmAgent.exe
- MZ at fffff800`75ed0000, prot 00000040, type 01000000 - size cc000
- Name: ACPI.SYS
- MZ at fffff800`75fa0000, prot 00000040, type 01000000 - size c000
- Name: WMILIB.SYS
- MZ at fffff800`75fd0000, prot 00000040, type 01000000 - size 5b000
- Name: intelpep.exe
- MZ at fffff800`76030000, prot 00000040, type 01000000 - size 17000
- Name: WindowsTrustedRT.exe
- MZ at fffff800`76050000, prot 00000040, type 01000000 - size b000
- Name: WindowsTrustedRTProxy.exe
- MZ at fffff800`76060000, prot 00000040, type 01000000 - size 15000
- Name: pcw.exe
- MZ at fffff800`76080000, prot 00000040, type 01000000 - size b000
- Name: msisadrv.exe
- MZ at fffff800`76090000, prot 00000040, type 01000000 - size 6f000
- Name: pci.exe
- MZ at fffff800`76100000, prot 00000040, type 01000000 - size 13000
- Name: vdrvroot.exe
- MZ at fffff800`76120000, prot 00000040, type 01000000 - size 33000
- Name: PDC.exe
- MZ at fffff800`76160000, prot 00000040, type 01000000 - size 19000
- Name: CEA.sys
- MZ at fffff800`76180000, prot 00000040, type 01000000 - size 30000
- Name: partmgr.exe
- MZ at fffff800`761c0000, prot 00000040, type 01000000 - size a5000
- Name: spaceport.exe
- MZ at fffff800`76270000, prot 00000040, type 01000000 - size 1a000
- Name: volmgr.exe
- MZ at fffff800`76290000, prot 00000040, type 01000000 - size 63000
- Name: volmgrx.exe
- MZ at fffff800`76300000, prot 00000040, type 01000000 - size 1f000
- Name: mountmgr.exe
- MZ at fffff800`76320000, prot 00000040, type 01000000 - size 2e000
- Name: storahci.exe
- MZ at fffff800`76350000, prot 00000040, type 01000000 - size a2000
- Name: storport.sys
- MZ at fffff800`76fa0000, prot 00000040, type 01000000 - size 1b000
- Name: EhStorClass.exe
- MZ at fffff800`76fc0000, prot 00000040, type 01000000 - size 1a000
- Name: fileinfo.exe
- MZ at fffff800`76fe0000, prot 00000040, type 01000000 - size 3d000
- Name: wof.exe
- MZ at fffff800`77080000, prot 00000040, type 01000000 - size d000
- Name: fs_rec.exe
- MZ at fffff800`77090000, prot 00000040, type 01000000 - size 94000
- Name: NETIO.SYS
- MZ at fffff800`77130000, prot 00000040, type 01000000 - size 32000
- Name: ksecpkg.exe
- MZ at fffff800`77170000, prot 00000040, type 01000000 - size b000
- Name: volume.exe
- MZ at fffff800`77180000, prot 00000040, type 01000000 - size 12000
- Name: iorate.exe
- MZ at fffff800`79290000, prot 00000040, type 01000000 - size 29d000
- Name: ntfs.exe
- MZ at fffff800`79530000, prot 00000040, type 01000000 - size 172000
- Name: NDIS.SYS
- MZ at fffff800`796b0000, prot 00000040, type 01000000 - size 2ea000
- Name: TCPIP.SYS
- MZ at fffff800`799a0000, prot 00000040, type 01000000 - size 7a000
- Name: fwpkclnt.sys
- MZ at fffff800`79a20000, prot 00000040, type 01000000 - size 30000
- Name: wfplwfs.exe
- MZ at fffff800`79a60000, prot 00000040, type 01000000 - size c9000
- Name: fvevol.exe
- MZ at fffff800`79b30000, prot 00000040, type 01000000 - size 6d000
- Name: volsnap.exe
- MZ at fffff800`79ba0000, prot 00000040, type 01000000 - size 4e000
- Name: rdyboost.exe
- MZ at fffff800`79bf0000, prot 00000040, type 01000000 - size 25000
- Name: MUP.SYS
- MZ at fffff800`79c30000, prot 00000040, type 01000000 - size 1c000
- Name: disk.exe
- MZ at fffff800`79c50000, prot 00000040, type 01000000 - size 6b000
- Name: CLASSPNP.SYS
- MZ at fffff800`8be00000, prot 00000040, type 01000000 - size 374000
- Name: dxgkrnl.sys
- MZ at fffff800`8c180000, prot 00000040, type 01000000 - size a7000
- Name: afd.exe
- MZ at fffff800`8c230000, prot 00000040, type 01000000 - size 7b000
- Name: rdbss.sys
- MZ at fffff800`8c2d0000, prot 00000040, type 01000000 - size 1d000
- Name: CRASHDMP.SYS
- MZ at fffff800`8c310000, prot 00000040, type 01000000 - size 94000
- Name: csc.exe
- MZ at fffff800`8c3b0000, prot 00000040, type 01000000 - size 12000
- Name: nsiproxy.exe
- MZ at fffff800`8c3d0000, prot 00000040, type 01000000 - size 10000
- Name: mssmbios.exe
- MZ at fffff800`8c3f0000, prot 00000040, type 01000000 - size a000
- Name: gpuenergydrv.exe
- MZ at fffff800`8c440000, prot 00000040, type 01000000 - size 15000
- Name: filecrypt.exe
- MZ at fffff800`8d000000, prot 00000040, type 01000000 - size 11000
- Name: BasicRender.exe
- MZ at fffff800`8d020000, prot 00000040, type 01000000 - size 1c000
- Name: npfs.exe
- MZ at fffff800`8d040000, prot 00000040, type 01000000 - size 11000
- Name: msfs.exe
- MZ at fffff800`8d060000, prot 00000040, type 01000000 - size 26000
- Name: tdx.exe
- MZ at fffff800`8d090000, prot 00000040, type 01000000 - size 10000
- Name: TDI.SYS
- MZ at fffff800`8d0b0000, prot 00000040, type 01000000 - size 59000
- Name: netbt.exe
- MZ at fffff800`8d110000, prot 00000040, type 01000000 - size 13000
- Name: afunix.dll
- MZ at fffff800`8d130000, prot 00000040, type 01000000 - size 1a000
- Name: vwififlt.SYS
- MZ at fffff800`8d150000, prot 00000040, type 01000000 - size 2b000
- Name: pacer.exe
- MZ at fffff800`8d180000, prot 00000040, type 01000000 - size 14000
- Name: netbios.exe
- MZ at fffff800`8d1a0000, prot 00000040, type 01000000 - size d000
- Name: NpSvcTrig.exe
- MZ at fffff800`8dd50000, prot 00000040, type 01000000 - size 30000
- Name: cdrom.exe
- MZ at fffff800`8dd90000, prot 00000040, type 01000000 - size e000
- Name: tbs.sys
- MZ at fffff800`8dda0000, prot 00000040, type 01000000 - size a000
- Name: null.exe
- MZ at fffff800`8ddb0000, prot 00000040, type 01000000 - size a000
- Name: beep.exe
- MZ at fffff800`8ddc0000, prot 00000040, type 01000000 - size 16000
- Name: watchdog.sys
- MZ at fffff800`8dde0000, prot 00000040, type 01000000 - size 16000
- Name: BasicDisplay.exe
- MZ at fffff800`8de00000, prot 00000040, type 01000000 - size 8c000
- Name: Vid.exe
- MZ at fffff800`8de90000, prot 00000040, type 01000000 - size 1f000
- Name: winhvr.sys
- MZ at fffff800`8deb0000, prot 00000040, type 01000000 - size 11000
- Name: CompositeBus.exe
- MZ at fffff800`8ded0000, prot 00000040, type 01000000 - size d000
- Name: kdnic.sys
- MZ at fffff800`8dee0000, prot 00000040, type 01000000 - size 15000
- Name: UmBus.exe
- MZ at fffff800`8ead0000, prot 00000040, type 01000000 - size 2c000
- Name: dfsc.exe
- MZ at fffff800`8eb20000, prot 00000040, type 01000000 - size 6b000
- Name: fastfat.exe
- MZ at fffff800`8eb90000, prot 00000040, type 01000000 - size 16000
- Name: bam.exe
- MZ at fffff800`8ebb0000, prot 00000040, type 01000000 - size 4f000
- Name: ahcache.exe
- MZ at fffff800`90400000, prot 00000040, type 01000000 - size 67000
- Name: portcls.sys
- MZ at fffff800`904a0000, prot 00000040, type 01000000 - size 78000
- Name: ks.sys
- MZ at fffff800`90520000, prot 00000040, type 01000000 - size 89000
- Name: usbxhci.exe
- MZ at fffff800`905b0000, prot 00000040, type 01000000 - size 41000
- Name: ucx01000.exe
- MZ at fffff800`906b0000, prot 00000040, type 01000000 - size 2c000
- Name: UcmCx.exe
- MZ at fffff800`90880000, prot 00000040, type 01000000 - size c000
- Name: wmiacpi.exe
- MZ at fffff800`90890000, prot 00000040, type 01000000 - size 3e000
- Name: intelppm.exe
- MZ at fffff800`908d0000, prot 00000040, type 01000000 - size b000
- Name: acpipagr.exe
- MZ at fffff800`908e0000, prot 00000040, type 01000000 - size c000
- Name: acpitime.exe
- MZ at fffff800`908f0000, prot 00000040, type 01000000 - size e000
- Name: UEFI.SYS
- MZ at fffff800`90900000, prot 00000040, type 01000000 - size d000
- Name: NdisVirtualBus.exe
- MZ at fffff800`90910000, prot 00000040, type 01000000 - size c000
- Name: swenum.exe
- MZ at fffff800`90940000, prot 00000040, type 01000000 - size e000
- Name: rdpbus.exe
- MZ at fffff800`90990000, prot 00000040, type 01000000 - size f000
- Name: ksthunk.exe
- MZ at fffff800`909a0000, prot 00000040, type 01000000 - size 9c000
- Name: usbhub3.sys
- MZ at fffff800`90a40000, prot 00000040, type 01000000 - size e000
- Name: USBD.SYS
- MZ at fffff800`90a50000, prot 00000040, type 01000000 - size 33000
- Name: usbccgp.exe
- MZ at fffff800`90a90000, prot 00000040, type 01000000 - size 37000
- Name: USBAudio.exe
- MZ at fffff800`90ad0000, prot 00000040, type 01000000 - size 12000
- Name: hidusb.exe
- MZ at fffff800`90af0000, prot 00000040, type 01000000 - size 3b000
- Name: HIDCLASS.SYS
- MZ at fffff800`90b30000, prot 00000040, type 01000000 - size 13000
- Name: HIDPARSE.SYS
- MZ at fffff800`90c10000, prot 00000040, type 01000000 - size 10000
- Name: mouhid.exe
- MZ at fffff800`90c30000, prot 00000040, type 01000000 - size 13000
- Name: mouclass.exe
- MZ at fffff800`90c50000, prot 00000040, type 01000000 - size 11000
- Name: kbdhid.exe
- MZ at fffff800`90c70000, prot 00000040, type 01000000 - size 14000
- Name: kbdclass.exe
- MZ at fffff800`90cd0000, prot 00000040, type 01000000 - size 1d000
- Name: DUMPFVE.SYS
- MZ at fffff800`90cf0000, prot 00000040, type 01000000 - size 18000
- Name: ndisuio.exe
- MZ at fffff800`90d10000, prot 00000040, type 01000000 - size 38000
- Name: winquic.sys
- MZ at fffff800`90d50000, prot 00000040, type 01000000 - size 1a000
- Name: mpsdrv.exe
- MZ at fffff800`923c0000, prot 00000040, type 01000000 - size 22000
- Name: hdaudbus.exe
- MZ at fffff800`cc400000, prot 00000040, type 01000000 - size c5000
- Name: srv2.exe
- MZ at fffff800`cc4e0000, prot 00000040, type 01000000 - size 8f000
- Name: mrxsmb.sys
- MZ at fffff800`cc570000, prot 00000040, type 01000000 - size 45000
- Name: mrxsmb20.exe
- MZ at fffff800`cc5d0000, prot 00000040, type 01000000 - size 27000
- Name: ndu.exe
- MZ at fffff800`cc610000, prot 00000040, type 01000000 - size 145000
- Name: http.exe
- MZ at fffff800`cc760000, prot 00000040, type 01000000 - size 25000
- Name: bowser.exe
- MZ at fffff800`cc790000, prot 00000040, type 01000000 - size 53000
- Name: srvnet.sys
- MZ at fffff800`cd200000, prot 00000040, type 01000000 - size 20000
- Name: raspptp.exe
- MZ at fffff800`cd230000, prot 00000040, type 01000000 - size 1c000
- Name: raspppoe.exe
- MZ at fffff800`cd250000, prot 00000040, type 01000000 - size f000
- Name: NDISTAPI.SYS
- MZ at fffff800`cd260000, prot 00000040, type 01000000 - size 3a000
- Name: ndiswan.exe
- MZ at fffff800`cd2c0000, prot 00000040, type 01000000 - size 13000
- Name: condrv.exe
- MZ at fffff800`cd330000, prot 00000040, type 01000000 - size 21000
- Name: bindflt.exe
- MZ at fffff800`cdf10000, prot 00000040, type 01000000 - size 14000
- Name: tcpipreg.exe
- MZ at fffff800`cdf30000, prot 00000040, type 01000000 - size 1d000
- Name: rassstp.exe
- MZ at fffff800`cdf50000, prot 00000040, type 01000000 - size 41000
- Name: ndproxy.exe
- MZ at fffff800`cdfa0000, prot 00000040, type 01000000 - size 27000
- Name: AgileVpn.exe
- MZ at fffff800`cdfd0000, prot 00000040, type 01000000 - size 22000
- Name: rasl2tp.exe
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement