Attempting to diagnose BSOD with STOP code 0x000000F7

Full stop code: 0x000000F7 (0x00000000, 0x00009C69, 0xFFFF6396, 0x00000000)

The text message said that the "driver has overrun stack based buffer." Heading over here, I find that it falls under CRITICAL_OBECT_TERMINATION, and not much else.

"Specific causes are many, and often best resolved by a careful history of the problem and the circumstances of the error message. "

I have not been able to replicate the problem yet, so I can't document the exact triggers that caused a BSOD in the first place. It was a production computer doing a normal workload under normal circumstances when it happened, and I've been told this has happened once before (and they just rebooted without recording the stop code... >_<).

Currently running a checkdisk on hard drive, but while that waits, what are the steps to open and read the memory dump? That should tell me enough to get some specific answers, right?

 

I got as far as running the program, and it tells me that when the DOS window closes, I'll find the file in C:\debuglog.txt... Except that a DOS window is not opening, at all. I can find no log.

Am I not waiting long enough? Or have I done something wrong?


EDIT:
"debugging key not found- please install the tools (button above)" is the erro message in the first window. I have uninstalled and reinstalled the debug tools from the MS website, per instructions. <puzzlement>

 

It's installed to the correct directory. I installed the debugwiz.exe to both the desktop and that same folder, with identical results.

I used the browse button to find the dump files, but everything seems to have been by the book.

XP Pro, SP3, 32-bit

 

Same results as before.

 

Go the log. Do I post it here, or is there someone I submit it to specifically?

 

Opened log file 'c:debuglog.txt'

Microsoft (R) Windows Debugger Version 6.8.0004.0 X86
Copyright (c) Microsoft Corporation. All rights reserved.


Loading Dump File [H:\temp\Mini080709-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available

Symbol search path is: SRV*c:\symbols*http://msdl.microsoft.com/download/symbols
Executable search path is: C:\WINDOWS;C:\WINDOWS\system32;C:\WINDOWS\system32\drivers
Windows XP Kernel Version 2600 (Service Pack 3) MP (2 procs) Free x86 compatible
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 2600.xpsp_sp3_gdr.090206-1234
Kernel base = 0x804d7000 PsLoadedModuleList = 0x805634c0
Debug session time: Thu Aug 6 18:01:51.018 2009 (GMT-5)
System Uptime: 8 days 1:55:55.828
Loading Kernel Symbols
...........................................................................................................................
Loading User Symbols
Loading unloaded module list
..................................................
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

Use !analyze -v to get detailed debugging information.

BugCheck F7, {0, 9c69, ffff6396, 0}



Probably caused by : win32k.sys ( win32k!xxxResolveDesktop+86f )

Followup: MachineOwner
---------

1: kd> !analyze -v;r;kv;lmtn;.logclose;q
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************

DRIVER_OVERRAN_STACK_BUFFER (f7)
A driver has overrun a stack-based buffer. This overrun could potentially
allow a malicious user to gain control of this machine.
DESCRIPTION
A driver overran a stack-based buffer (or local variable) in a way that would
have overwritten the function's return address and jumped back to an arbitrary
address when the function returned. This is the classic "buffer overrun "
hacking attack and the system has been brought down to prevent a malicious user
from gaining complete control of it.
Do a kb to get a stack backtrace -- the last routine on the stack before the
buffer overrun handlers and bugcheck call is the one that overran its local
variable(s).
Arguments:
Arg1: 00000000, Actual security check cookie from the stack
Arg2: 00009c69, Expected security check cookie
Arg3: ffff6396, Complement of the expected security check cookie
Arg4: 00000000, zero

Debugging Details:
------------------




FAULTING_IP:
win32k!xxxResolveDesktop+86f
bf8bd636 e8d835f4ff call win32k!_SEH_epilog (bf800c13)

GSFAILURE_FUNCTION: win32k!xxxResolveDesktop

GSFAILURE_MODULE_COOKIE: <unavailable> win32k!__security_cookie [ bf99afb4 ]

GSFAILURE_ANALYSIS_TEXT: !gs output:
Stack buffer overrun analysis follows:

Corruption occured in win32k!xxxResolveDesktop or one of its callers
Error reading real canary at 0xbf99afb4
Warning: Unable to read real canary complement at 0x00000000
(OK - it is not present in all cases)
GS analysis will be limited due to previous errors
Corrupted cookie value (0x00000000) too generic, skipping read bit-flip check
The canary doesn't look corrupted. Not sure how we got here
Determining __gs_reportfailure version failed. Guessing...
Detected off-by-4 bug in __report_gsfailure, saved ESP will be corrected to ESP+4.
Error 16386 getting EBP and ESP
EBP/ESP appear correct. (EBP-ESP) matches local storage set up in the function prolog

Function win32k!xxxResolveDesktop:
Funtion has no locals
no candidate buffer found

Stack buffer overrun analysis complete.


BUGCHECK_STR: STACK_OVERRUN

SECURITY_COOKIE: Expected 00009c69 found 00000000

CUSTOMER_CRASH_COUNT: 1

DEFAULT_BUCKET_ID: DRIVER_FAULT

PROCESS_NAME: VSoftECLService

FOLLOWUP_IP:
win32k!xxxResolveDesktop+86f
bf8bd636 e8d835f4ff call win32k!_SEH_epilog (bf800c13)

SYMBOL_NAME: win32k!xxxResolveDesktop+86f

FOLLOWUP_NAME: MachineOwner

MODULE_NAME: win32k

IMAGE_NAME: win32k.sys

DEBUG_FLR_IMAGE_TIMESTAMP: 49e87572

STACK_COMMAND: kb

FAILURE_BUCKET_ID: STACK_OVERRUN_win32k!xxxResolveDesktop+86f

BUCKET_ID: STACK_OVERRUN_win32k!xxxResolveDesktop+86f

Followup: MachineOwner
---------

eax=f78a513c ebx=00009c69 ecx=00000000 edx=804e390f esi=00000000 edi=003e0018
eip=8053767a esp=a87d2a94 ebp=a87d2aac iopl=0 nv up ei ng nz na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00000286
nt!KeBugCheckEx+0x1b:
8053767a 5d pop ebp
ChildEBP RetAddr Args to Child
a87d2aac bf911646 000000f7 00000000 00009c69 nt!KeBugCheckEx+0x1b (FPO: [Non-Fpo])
a87d2acc bf8bd636 a87d2c58 e6531428 e6539418 win32k!__report_gsfailure+0x25 (FPO: [Non-Fpo])
a87d2bc0 bf8be46f ffffffff a87d2c58 a87d2c94 win32k!xxxResolveDesktop+0x86f (FPO: [Non-Fpo])
a87d2cc0 bf819c7d 84e20518 00000000 00000000 win32k!xxxCreateThreadInfo+0x4d5 (FPO: [Non-Fpo])
a87d2cd4 bf819d83 84e20518 00000000 00000000 win32k!UserThreadCallout+0x72 (FPO: [Non-Fpo])
a87d2cf0 80583ca7 84e20518 00000000 80562530 win32k!W32pThreadCallout+0x3d (FPO: [Non-Fpo])
a87d2d54 804dd68e 000010dc 0012f460 0012f464 nt!PsConvertToGuiThread+0x139 (FPO: [Non-Fpo])
a87d2ddc 804ec6d9 f743bb85 855810b0 00000000 nt!KiBBTUnexpectedRange+0xc
a87d2de0 f743bb84 855810b0 00000000 0000027f nt!KiThreadStartup+0x16
a87d2de4 855810b0 00000000 0000027f 7c910000 NDIS!___PchSym_+0xc
WARNING: Frame IP not in any known module. Following frames may be wrong.
a87d2de8 00000000 0000027f 7c910000 00000000 0x855810b0
start end module name
804d7000 806ff000 nt ntkrnlmp.exe Fri Feb 06 05:06:29 2009 (498C19B5)
806ff000 8071fd00 hal halmacpi.dll Sun Apr 13 13:31:27 2008 (4802517F)
a8518000 a8542180 kmixer kmixer.sys Sun Apr 13 13:45:07 2008 (480254B3)
a8a6b000 a8aaba80 HTTP HTTP.sys Sun Apr 13 13:53:48 2008 (480256BC)
a8e22000 a8e36480 wdmaud wdmaud.sys Sun Apr 13 14:17:18 2008 (48025C3E)
a9117000 a9125d80 sysaudio sysaudio.sys Sun Apr 13 14:15:55 2008 (48025BEB)
a935f000 a93b0880 srv srv.sys Thu Dec 11 04:57:07 2008 (4940F203)
a9401000 a942d180 mrxdav mrxdav.sys Sun Apr 13 13:32:42 2008 (480251CA)
a953e000 a9541c00 Aspi32 Aspi32.SYS Fri Nov 30 15:09:43 2001 (3C07F597)
a97e6000 a97e9900 ndisuio ndisuio.sys Sun Apr 13 13:55:57 2008 (4802573D)
a9906000 a991d900 dump_atapi dump_atapi.sys Sun Apr 13 13:40:29 2008 (4802539D)
a991e000 a993b000 EraserUtilRebootDrv EraserUtilRebootDrv.sys Fri Feb 06 13:39:35 2009 (498C91F7)
a993b000 a9999000 eeCtrl eeCtrl.sys Fri Feb 06 13:39:34 2009 (498C91F6)
a9999000 a9a08280 mrxsmb mrxsmb.sys Fri Oct 24 06:21:07 2008 (4901AFA3)
a9a09000 a9a33e80 rdbss rdbss.sys Sun Apr 13 14:28:38 2008 (48025EE6)
a9a34000 a9a9e000 SPBBCDrv SPBBCDrv.sys Fri Sep 05 00:46:11 2008 (48C0C7A3)
a9a9e000 a9abfd00 afd afd.sys Thu Aug 14 05:04:35 2008 (48A40333)
a9ac0000 a9ae7c00 netbt netbt.sys Sun Apr 13 14:20:59 2008 (48025D1B)
a9ae8000 a9b0d000 SYMEVENT SYMEVENT.SYS Mon Jan 14 17:29:24 2008 (478BF054)
a9b0d000 a9b32500 ipnat ipnat.sys Sun Apr 13 13:57:10 2008 (48025786)
a9b33000 a9b60200 SYMTDI SYMTDI.SYS Tue Aug 19 15:17:48 2008 (48AB2A6C)
a9b61000 a9bb9480 tcpip tcpip.sys Fri Jun 20 06:51:09 2008 (485B99AD)
a9bba000 a9bcc600 ipsec ipsec.sys Sun Apr 13 14:19:42 2008 (48025CCE)
a9bed000 a9c011e0 NAVENG NAVENG.SYS Thu Feb 12 17:38:15 2009 (4994B2E7)
a9c02000 a9cd6440 NAVEX15 NAVEX15.SYS Thu Feb 12 17:37:39 2009 (4994B2C3)
a9ceb000 a9ced280 rasacd rasacd.sys Fri Aug 17 15:55:39 2001 (3B7D84CB)
aa150000 aa19a000 SRTSP SRTSP.SYS Mon Feb 23 20:47:54 2009 (49A35FDA)
aaeea000 aaef9900 Cdfs Cdfs.SYS Sun Apr 13 14:14:21 2008 (48025B8D)
bf800000 bf9c2f80 win32k win32k.sys Fri Apr 17 07:26:26 2009 (49E87572)
bf9c3000 bf9d4600 dxg dxg.sys Sun Apr 13 13:38:27 2008 (48025323)
bf9d5000 bf9e3000 ialmrnt5 ialmrnt5.dll Fri Aug 20 18:11:34 2004 (41268526)
bf9e3000 bfa01000 ialmdnt5 ialmdnt5.dll Fri Aug 20 18:11:29 2004 (41268521)
bfa01000 bfa26540 ialmdev5 ialmdev5.DLL Fri Aug 20 18:18:43 2004 (412686D3)
bfa27000 bfae8000 ialmdd5 ialmdd5.DLL Fri Aug 20 18:25:26 2004 (41268866)
bffa0000 bffe5c00 ATMFD ATMFD.DLL Sun Apr 13 19:09:55 2008 (4802A0D3)
f7083000 f70e0f00 update update.sys Sun Apr 13 13:39:46 2008 (48025372)
f70f9000 f70fb900 Dxapi Dxapi.sys Fri Aug 17 15:53:19 2001 (3B7D843F)
f7109000 f7138e80 rdpdr rdpdr.sys Sun Apr 13 13:32:50 2008 (480251D2)
f7139000 f7149e00 psched psched.sys Sun Apr 13 13:56:36 2008 (48025764)
f714a000 f7160580 ndiswan ndiswan.sys Sun Apr 13 14:20:41 2008 (48025D09)
f7161000 f7174900 parport parport.sys Sun Apr 13 13:40:09 2008 (48025389)
f7175000 f7227f00 senfilt senfilt.sys Thu Sep 16 21:02:52 2004 (414A45CC)
f7228000 f724a700 ks ks.sys Sun Apr 13 14:16:34 2008 (48025C12)
f724b000 f726ea80 portcls portcls.sys Sun Apr 13 14:19:40 2008 (48025CCC)
f726f000 f72ae900 smwdm smwdm.sys Thu Jan 27 14:31:04 2005 (41F94F88)
f72af000 f72d4a00 e100b325 e100b325.sys Tue Feb 10 16:49:11 2004 (40295FE7)
f72d5000 f72f8200 USBPORT USBPORT.SYS Sun Apr 13 13:45:34 2008 (480254CE)
f72f9000 f730cf00 VIDEOPRT VIDEOPRT.SYS Sun Apr 13 13:44:39 2008 (48025497)
f730d000 f73c11e0 ialmnt5 ialmnt5.sys Fri Aug 20 18:25:59 2004 (41268887)
f73d6000 f73d9c80 mssmbios mssmbios.sys Sun Apr 13 13:36:45 2008 (480252BD)
f741b000 f7434b80 Mup Mup.sys Sun Apr 13 14:17:05 2008 (48025C31)
f7435000 f7461980 NDIS NDIS.sys Sun Apr 13 14:20:35 2008 (48025D03)
f7462000 f74ee600 Ntfs Ntfs.sys Sun Apr 13 14:15:49 2008 (48025BE5)
f74ef000 f7505880 KSecDD KSecDD.sys Sun Apr 13 13:31:40 2008 (4802518C)
f7506000 f7517f00 sr sr.sys Sun Apr 13 13:36:50 2008 (480252C2)
f7518000 f7537b00 fltmgr fltmgr.sys Sun Apr 13 13:32:58 2008 (480251DA)
f7538000 f754f880 SCSIPORT SCSIPORT.SYS Sun Apr 13 13:40:29 2008 (4802539D)
f7550000 f7567900 atapi atapi.sys Sun Apr 13 13:40:29 2008 (4802539D)
f7568000 f758d700 dmio dmio.sys Sun Apr 13 13:44:45 2008 (4802549D)
f758e000 f75ac880 ftdisk ftdisk.sys Fri Aug 17 15:52:41 2001 (3B7D8419)
f75ad000 f75bda80 pci pci.sys Sun Apr 13 13:36:43 2008 (480252BB)
f75be000 f75ebd80 ACPI ACPI.sys Sun Apr 13 13:36:33 2008 (480252B1)
f760d000 f7616180 isapnp isapnp.sys Sun Apr 13 13:36:40 2008 (480252B8)
f761d000 f7627580 MountMgr MountMgr.sys Sun Apr 13 13:39:45 2008 (48025371)
f762d000 f7639c80 VolSnap VolSnap.sys Sun Apr 13 13:41:00 2008 (480253BC)
f763d000 f7645e00 disk disk.sys Sun Apr 13 13:40:46 2008 (480253AE)
f764d000 f7659180 CLASSPNP CLASSPNP.SYS Sun Apr 13 14:16:21 2008 (48025C05)
f766d000 f7675900 msgpc msgpc.sys Sun Apr 13 13:56:32 2008 (48025760)
f767d000 f7686f00 termdd termdd.sys Sun Apr 13 13:38:36 2008 (4802532C)
f76ad000 f76b6e80 NDProxy NDProxy.SYS Sun Apr 13 13:57:28 2008 (48025798)
f76bd000 f76cb880 usbhub usbhub.sys Sun Apr 13 13:45:36 2008 (480254D0)
f773d000 f7746000 HIDCLASS HIDCLASS.SYS Sun Apr 13 13:45:25 2008 (480254C5)
f776d000 f7776100 SRTSPX SRTSPX.SYS Mon Feb 23 20:50:26 2009 (49A36072)
f77cd000 f77d5700 wanarp wanarp.sys Sun Apr 13 13:57:20 2008 (48025790)
f77dd000 f77e5780 netbios netbios.sys Sun Apr 13 13:56:01 2008 (48025741)
f77ed000 f77f7e00 Fips Fips.SYS Sun Apr 13 13:33:27 2008 (480251F7)
f77fd000 f7805e00 intelppm intelppm.sys Sun Apr 13 13:31:31 2008 (48025183)
f780d000 f781bb00 drmk drmk.sys Sun Apr 13 13:45:12 2008 (480254B8)
f781d000 f782cc00 serial serial.sys Sun Apr 13 14:15:44 2008 (48025BE0)
f782d000 f7837480 imapi imapi.sys Sun Apr 13 13:40:57 2008 (480253B9)
f783d000 f784c600 cdrom cdrom.sys Sun Apr 13 13:40:45 2008 (480253AD)
f784d000 f785b100 redbook redbook.sys Sun Apr 13 13:40:27 2008 (4802539B)
f785d000 f7869880 rasl2tp rasl2tp.sys Sun Apr 13 14:19:43 2008 (48025CCF)
f786d000 f7877200 raspppoe raspppoe.sys Sun Apr 13 13:57:31 2008 (4802579B)
f787d000 f7888d00 raspptp raspptp.sys Sun Apr 13 14:19:47 2008 (48025CD3)
f788d000 f7893180 PCIIDEX PCIIDEX.SYS Sun Apr 13 13:40:29 2008 (4802539D)
f7895000 f7899d00 PartMgr PartMgr.sys Sun Apr 13 13:40:48 2008 (480253B0)
f789d000 f78a41c0 cercsr6 cercsr6.sys Wed Dec 08 17:31:10 2004 (41B78EBE)
f78d5000 f78da200 vga vga.sys Sun Apr 13 13:44:40 2008 (48025498)
f78dd000 f78e1a80 Msfs Msfs.SYS Sun Apr 13 13:32:38 2008 (480251C6)
f78e5000 f78ec880 Npfs Npfs.SYS Sun Apr 13 13:32:38 2008 (480251C6)
f7905000 f7909500 watchdog watchdog.sys Sun Apr 13 13:44:59 2008 (480254AB)
f793d000 f7942080 usbuhci usbuhci.sys Sun Apr 13 13:45:34 2008 (480254CE)
f7945000 f794c600 usbehci usbehci.sys Sun Apr 13 13:45:34 2008 (480254CE)
f794d000 f7951a80 TDI TDI.SYS Sun Apr 13 14:00:04 2008 (48025834)
f7955000 f7959580 ptilink ptilink.sys Fri Aug 17 15:49:53 2001 (3B7D8371)
f795d000 f7961080 raspti raspti.sys Fri Aug 17 15:55:32 2001 (3B7D84C4)
f7965000 f796b000 kbdclass kbdclass.sys Sun Apr 13 13:39:46 2008 (48025372)
f796d000 f7972a00 mouclass mouclass.sys Sun Apr 13 13:39:47 2008 (48025373)
f799d000 f79a3180 HIDPARSE HIDPARSE.SYS Sun Apr 13 13:45:22 2008 (480254C2)
f79f5000 f79fa200 SYMREDRV SYMREDRV.SYS Tue Aug 19 15:18:20 2008 (48AB2A8C)
f7a1d000 f7a20000 BOOTVID BOOTVID.dll Fri Aug 17 15:49:09 2001 (3B7D8345)
f7ad9000 f7adc900 kbdhid kbdhid.sys Sun Apr 13 13:39:47 2008 (48025373)
f7add000 f7adff80 mouhid mouhid.sys Fri Aug 17 15:47:57 2001 (3B7D82FD)
f7ae1000 f7ae3880 hidusb hidusb.sys Sun Apr 13 13:45:27 2008 (480254C7)
f7aed000 f7af0b00 usbscan usbscan.sys Sun Apr 13 13:45:34 2008 (480254CE)
f7af9000 f7afcd80 serenum serenum.sys Sun Apr 13 13:40:12 2008 (4802538C)
f7b01000 f7b03780 ndistapi ndistapi.sys Sun Apr 13 13:57:27 2008 (48025797)
f7b0d000 f7b0eb80 kdcom kdcom.dll Fri Aug 17 15:49:10 2001 (3B7D8346)
f7b0f000 f7b10100 WMILIB WMILIB.SYS Fri Aug 17 16:07:23 2001 (3B7D878B)
f7b11000 f7b12580 intelide intelide.sys Sun Apr 13 13:40:29 2008 (4802539D)
f7b13000 f7b14700 dmload dmload.sys Fri Aug 17 15:58:15 2001 (3B7D8567)
f7b3f000 f7b40100 swenum swenum.sys Sun Apr 13 13:39:52 2008 (48025378)
f7b49000 f7b4a280 USBD USBD.SYS Fri Aug 17 16:02:58 2001 (3B7D8682)
f7b7b000 f7b7ca80 ParVdm ParVdm.SYS Fri Aug 17 15:49:49 2001 (3B7D836D)
f7bbd000 f7bbef00 Fs_Rec Fs_Rec.SYS Fri Aug 17 15:49:37 2001 (3B7D8361)
f7bbf000 f7bc0080 Beep Beep.SYS Fri Aug 17 15:47:33 2001 (3B7D82E5)
f7bc1000 f7bc2080 mnmdd mnmdd.SYS Fri Aug 17 15:57:28 2001 (3B7D8538)
f7bc3000 f7bc4080 RDPCDD RDPCDD.sys Fri Aug 17 15:46:56 2001 (3B7D82C0)
f7bcf000 f7bd0100 dump_WMILIB dump_WMILIB.SYS Fri Aug 17 16:07:23 2001 (3B7D878B)
f7bd5000 f7bd5d00 PCIIde PCIIde.sys Fri Aug 17 15:51:49 2001 (3B7D83E5)
f7c1d000 f7c1dc00 audstub audstub.sys Fri Aug 17 15:59:40 2001 (3B7D85BC)
f7c2c000 f7c2cb80 Null Null.SYS Fri Aug 17 15:47:39 2001 (3B7D82EB)
f7d05000 f7d05d00 dxgthk dxgthk.sys Fri Aug 17 15:53:12 2001 (3B7D8438)

Unloaded modules:
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a8518000 a8543000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
a85b8000 a85e3000 kmixer.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
Closing open log file c:debuglog.txt