游戏狂人
 
- 贡献度
- 152
- 金元
- 10202
- 积分
- 1628
- 精华
- 0
- 注册时间
- 2006-1-28
|
°´¼ü¾«Áé 2014.03.16480 °æ
Environment = 1920x1080|32|Windows 10 Enterprise
Type = 0xC0000005
Address = 0x488832
LineNum = 0(0)
Registers:
EAX=FFFFFFFF EBX=00000000 ECX=069544F8 EDX=FFFFFFFF
ESI=069560C4 EDI=069560C0 ESP=0019DA9C EBP=0019DC1C
Current Modules:
==>
Name = °´¼ü¾«Áé201607.exe, Base = 0x400000, Top = 0x1119000, Size = 13733888
Name = ntdll.dll, Base = 0x77900000, Top = 0x77AA4000, Size = 1720320
Name = KERNEL32.DLL, Base = 0x770A0000, Top = 0x77190000, Size = 983040
Name = KERNELBASE.dll, Base = 0x766D0000, Top = 0x768EC000, Size = 2211840
Name = apphelp.dll, Base = 0x75720000, Top = 0x757C0000, Size = 655360
Name = comctl32.dll, Base = 0x6CAF0000, Top = 0x6CD00000, Size = 2162688
Name = msvcrt.dll, Base = 0x777A0000, Top = 0x7785F000, Size = 782336
Name = GDI32.dll, Base = 0x75F20000, Top = 0x75F43000, Size = 143360
Name = win32u.dll, Base = 0x76650000, Top = 0x76668000, Size = 98304
Name = gdi32full.dll, Base = 0x77250000, Top = 0x77330000, Size = 917504
Name = msvcp_win.dll, Base = 0x76140000, Top = 0x761BB000, Size = 503808
Name = ucrtbase.dll, Base = 0x76480000, Top = 0x765A0000, Size = 1179648
Name = USER32.dll, Base = 0x76950000, Top = 0x76AED000, Size = 1691648
Name = IMM32.DLL, Base = 0x76620000, Top = 0x76646000, Size = 155648
Name = ADVAPI32.dll, Base = 0x77870000, Top = 0x778EB000, Size = 503808
Name = sechost.dll, Base = 0x765A0000, Top = 0x76616000, Size = 483328
Name = RPCRT4.dll, Base = 0x76350000, Top = 0x7640E000, Size = 778240
Name = winmm.dll, Base = 0x73770000, Top = 0x73798000, Size = 163840
Name = MSIMG32.dll, Base = 0x65C20000, Top = 0x65C26000, Size = 24576
Name = COMDLG32.dll, Base = 0x76090000, Top = 0x7613F000, Size = 716800
Name = combase.dll, Base = 0x77430000, Top = 0x776B0000, Size = 2621440
Name = shcore.dll, Base = 0x75FA0000, Top = 0x76027000, Size = 552960
Name = SHLWAPI.dll, Base = 0x76040000, Top = 0x76085000, Size = 282624
Name = SHELL32.dll, Base = 0x75930000, Top = 0x75EE6000, Size = 5988352
Name = WINSPOOL.DRV, Base = 0x75180000, Top = 0x751F3000, Size = 471040
Name = ole32.dll, Base = 0x761C0000, Top = 0x762A3000, Size = 929792
Name = OLEAUT32.dll, Base = 0x762B0000, Top = 0x76346000, Size = 614400
Name = oledlg.dll, Base = 0x50060000, Top = 0x5008C000, Size = 180224
Name = urlmon.dll, Base = 0x74190000, Top = 0x74339000, Size = 1740800
Name = iertutil.dll, Base = 0x737F0000, Top = 0x73A1D000, Size = 2281472
Name = srvcli.dll, Base = 0x749D0000, Top = 0x749ED000, Size = 118784
Name = netutils.dll, Base = 0x749C0000, Top = 0x749CB000, Size = 45056
Name = gdiplus.dll, Base = 0x684E0000, Top = 0x68647000, Size = 1470464
Name = DINPUT8.dll, Base = 0x67710000, Top = 0x67747000, Size = 225280
Name = SensApi.dll, Base = 0x65970000, Top = 0x65978000, Size = 32768
Name = WININET.dll, Base = 0x74340000, Top = 0x74796000, Size = 4546560
Name = WS2_32.dll, Base = 0x76410000, Top = 0x76473000, Size = 405504
Name = dbghelp.dll, Base = 0x73C80000, Top = 0x73E08000, Size = 1605632
Name = Syntconv.dll, Base = 0x10000000, Top = 0x10053000, Size = 339968
Name = MFC42.DLL, Base = 0x79A30000, Top = 0x79B54000, Size = 1196032
Name = MSVCP60.dll, Base = 0x7A4E0000, Top = 0x7A550000, Size = 458752
Name = refs.dll, Base = 0x7BBA0000, Top = 0x7BD36000, Size = 1662976
Name = OLEACC.dll, Base = 0x5E740000, Top = 0x5E793000, Size = 339968
Name = UxTheme.dll, Base = 0x6BAA0000, Top = 0x6BB14000, Size = 475136
Name = dwmapi.dll, Base = 0x6FE80000, Top = 0x6FEA6000, Size = 155648
Name = inputhost.dll, Base = 0x67620000, Top = 0x6770D000, Size = 970752
Name = wintypes.dll, Base = 0x67540000, Top = 0x6761B000, Size = 897024
Name = CoreMessaging.dll, Base = 0x674A0000, Top = 0x6753B000, Size = 634880
Name = PROPSYS.dll, Base = 0x6AB30000, Top = 0x6ABF2000, Size = 794624
Name = CoreUIComponents.dll, Base = 0x67220000, Top = 0x6749E000, Size = 2613248
Name = bcryptPrimitives.dll, Base = 0x768F0000, Top = 0x7694F000, Size = 389120
Name = ntmarta.dll, Base = 0x75440000, Top = 0x75469000, Size = 167936
Name = kernel.appcore.dll, Base = 0x74A70000, Top = 0x74A7F000, Size = 61440
Name = windows.storage.dll, Base = 0x74AE0000, Top = 0x750EC000, Size = 6340608
Name = Wldp.dll, Base = 0x749F0000, Top = 0x74A17000, Size = 159744
Name = profapi.dll, Base = 0x73360000, Top = 0x73378000, Size = 98304
Name = MSCTF.dll, Base = 0x757C0000, Top = 0x75894000, Size = 868352
Name = clbcatq.dll, Base = 0x776B0000, Top = 0x77733000, Size = 536576
Name = ieframe.dll, Base = 0x55CD0000, Top = 0x5630D000, Size = 6541312
Name = NETAPI32.dll, Base = 0x75420000, Top = 0x75434000, Size = 81920
Name = VERSION.dll, Base = 0x75410000, Top = 0x75418000, Size = 32768
Name = USERENV.dll, Base = 0x75210000, Top = 0x75235000, Size = 151552
Name = WINHTTP.dll, Base = 0x75610000, Top = 0x756DB000, Size = 831488
Name = WKSCLI.DLL, Base = 0x73570000, Top = 0x73581000, Size = 69632
Name = dataexchange.dll, Base = 0x60670000, Top = 0x606A1000, Size = 200704
Name = dcomp.dll, Base = 0x60500000, Top = 0x60664000, Size = 1458176
Name = d3d11.dll, Base = 0x60320000, Top = 0x60500000, Size = 1966080
Name = dxgi.dll, Base = 0x70040000, Top = 0x70102000, Size = 794624
Name = twinapi.appcore.dll, Base = 0x66260000, Top = 0x663EF000, Size = 1634304
Name = sxs.dll, Base = 0x5FA00000, Top = 0x5FA8C000, Size = 573440
Name = coml2.dll, Base = 0x76670000, Top = 0x766CE000, Size = 385024
Name = msscript.ocx, Base = 0x56400000, Top = 0x5641C000, Size = 114688
Name = vbscript.dll, Base = 0x7C0E0000, Top = 0x7C166000, Size = 548864
Name = amsi.dll, Base = 0x72DB0000, Top = 0x72DC8000, Size = 98304
Name = antimalware_provider.dll, Base = 0x72AE0000, Top = 0x72C94000, Size = 1785856
Name = WindowsCodecs.dll, Base = 0x606B0000, Top = 0x60821000, Size = 1511424
Name = bcrypt.dll, Base = 0x75F00000, Top = 0x75F19000, Size = 102400
Name = SspiCli.dll, Base = 0x74A80000, Top = 0x74AA1000, Size = 135168
Name = ondemandconnroutehelper.dll, Base = 0x5F3D0000, Top = 0x5F3E2000, Size = 73728
Name = mswsock.dll, Base = 0x753A0000, Top = 0x753F2000, Size = 335872
Name = IPHLPAPI.DLL, Base = 0x756E0000, Top = 0x75712000, Size = 204800
Name = WINNSI.DLL, Base = 0x6DBF0000, Top = 0x6DBF8000, Size = 32768
Name = NSI.dll, Base = 0x76030000, Top = 0x76037000, Size = 28672
Name = TextShaping.dll, Base = 0x5F900000, Top = 0x5F994000, Size = 606208
Name = DNSAPI.dll, Base = 0x73A80000, Top = 0x73B10000, Size = 589824
Name = textinputframework.dll, Base = 0x6C450000, Top = 0x6C509000, Size = 757760
Name = rasadhlp.dll, Base = 0x73380000, Top = 0x73388000, Size = 32768
Name = fwpuclnt.dll, Base = 0x73300000, Top = 0x73359000, Size = 364544
Code Before:
8B C8 E8 9B AD 33 00 85 C0 75 04 33 D2 EB 0E 8B D0 8D 5A 01
Current Code:
8A 0A 42 84 C9 75 F9 2B D3 52 50 8D 4F 08 E8 5B F9 F7 FF 68
Call Stack:
0043C49E ===> °´¼ü¾«Áé201607.exe
Current Stack:
[0019DA9C] = 12959337
[0019DAA0] = 610EB34C
[0019DAA4] = 0019DC18
[0019DAA8] = 0019DAC8
[0019DAAC] = 0522BE90
[0019DAB0] = 0019D97C
[0019DAB4] = 00000107
[0019DAB8] = 00000000
[0019DABC] = 0019DB58
[0019DAC0] = 069CEDB8
[0019DAC4] = 0522BE30
[0019DAC8] = 0019D97C
[0019DACC] = 00000107
[0019DAD0] = 00000000
[0019DAD4] = 0019DC70
[0019DAD8] = 00000000
[0019DADC] = 009E03B8
[0019DAE0] = 0522C990
[0019DAE4] = 06956418
[0019DAE8] = 05229D90
[0019DAEC] = 0522B7A0
[0019DAF0] = 06955F80
[0019DAF4] = 00000008
[0019DAF8] = 00000000
[0019DAFC] = 00000001
[0019DB00] = 05229D38
[0019DB04] = 0522B730
[0019DB08] = 00000000
[0019DB0C] = 00000000
[0019DB10] = 00000000
[0019DB14] = 00000000
[0019DB18] = 00000000
[0019DB1C] = 05229F78
[0019DB20] = 00000002
[0019DB24] = 00000000
[0019DB28] = 00000004
[0019DB2C] = 0000003E
[0019DB30] = 0000003F
[0019DB34] = 00000000
[0019DB38] = 05229F78
[0019DB3C] = 05229FB6
[0019DB40] = 05229FB6
[0019DB44] = 05229FB6
[0019DB48] = 0019DAAC
[0019DB4C] = 00000000
[0019DB50] = 0019DB70
[0019DB54] = 77945EAE
[0019DB58] = 00000013
[0019DB5C] = 00000000
[0019DB60] = 0000000F
[0019DB64] = 00000000
[0019DB68] = 00010001
[0019DB6C] = 0522B6F0
[0019DB70] = 06956110
[0019DB74] = 00000008
[0019DB78] = 00000000
[0019DB7C] = 00000001
[0019DB80] = 0522D0F0
[0019DB84] = 0522B680
[0019DB88] = 00000000
[0019DB8C] = 00000000
[0019DB90] = 00000000
[0019DB94] = 00000000
[0019DB98] = 009E03A8
[0019DB9C] = 06954278
[0019DBA0] = 00408050
[0019DBA4] = 0522D100
[0019DBA8] = 00000002
[0019DBAC] = 0000002D
[0019DBB0] = 0000002F
[0019DBB4] = 006B6A4D
[0019DBB8] = 06954278
[0019DBBC] = 069542A5
[0019DBC0] = 069542A5
[0019DBC4] = 069542A5
[0019DBC8] = 0019DAC4
[0019DBCC] = 00408200
[0019DBD0] = 0522D100
[0019DBD4] = 00000002
[0019DBD8] = 0095F678
[0019DBDC] = 00000000
[0019DBE0] = 0000000F
[0019DBE4] = 069560C0
[0019DBE8] = 00010001
[0019DBEC] = 0019DC18
[0019DBF0] = 05229D38
[0019DBF4] = 0095F678
[0019DBF8] = 00000000
[0019DBFC] = 12959333
[0019DC00] = 0000003E
[0019DC04] = 0000003F
[0019DC08] = 0019DC18
[0019DC0C] = 12959337
[0019DC10] = 0019E0C4
[0019DC14] = 0089C565
[0019DC18] = 0000000A
[0019DC1C] = 0019E0D0
[0019DC20] = 0043C49E
[0019DC24] = 12959303
[0019DC28] = 76973E20
[0019DC2C] = 0522B770
[0019DC30] = 06956440
[0019DC34] = 01200000
[0019DC38] = 069560C0
[0019DC3C] = 77963801
[0019DC40] = 069DC1B0
[0019DC44] = 0522D3C0
[0019DC48] = 00000004
[0019DC4C] = 0019DCC4
[0019DC50] = 009E03B8
[0019DC54] = 069DC1B0
[0019DC58] = 00000003
[0019DC5C] = 00000003
[0019DC60] = 0019DCC4
[0019DC64] = 009E03B8
[0019DC68] = 069DC390
[0019DC6C] = 009E03B8
[0019DC70] = 0522C990
[0019DC74] = 06953FB0
[0019DC78] = 017901C8
[0019DC7C] = 00000000
[0019DC80] = 00000018
[0019DC84] = 01790AF4
[0019DC88] = 00000000
[0019DC8C] = 01200000
[0019DC90] = 01790AF0
[0019DC94] = 0019DCBC
[0019DC98] = 0019DCB8
[0019DC9C] = 77945EAE
[0019DCA0] = 0129A74C
[0019DCA4] = 07542678
[0019DCA8] = 0019DCC8
[0019DCAC] = 7796374D
[0019DCB0] = 00000008
[0019DCB4] = 00000000
[0019DCB8] = 00000000
[0019DCBC] = 00000000
[0019DCC0] = 07542678
[0019DCC4] = 00000000
[0019DCC8] = 00000000
[0019DCCC] = 00000000
[0019DCD0] = 0019DFA0
[0019DCD4] = 767F8350
[0019DCD8] = 0129A74C
[0019DCDC] = 767F8227
[0019DCE0] = 861E8074
[0019DCE4] = 00599C1F
[0019DCE8] = 069DB410
[0019DCEC] = 00000000
[0019DCF0] = 00000000
[0019DCF4] = 00000000
[0019DCF8] = 00000000
[0019DCFC] = 00000000
[0019DD00] = 008C0310
[0019DD04] = 00000000
[0019DD08] = 00000000
[0019DD0C] = 00000000
[0019DD10] = 00000000
[0019DD14] = 00000000
[0019DD18] = 00000000
[0019DD1C] = 00000000
[0019DD20] = 00000000
[0019DD24] = 00000000
[0019DD28] = 00000000
[0019DD2C] = 00000000
[0019DD30] = 00000000
[0019DD34] = 00000000
[0019DD38] = 00000000
[0019DD3C] = 00000000
[0019DD40] = 01000000
[0019DD44] = 0019DD48
[0019DD48] = 00450000
[0019DD4C] = 004E0052
[0019DD50] = 004C0045
[0019DD54] = 1D900001
[0019DD58] = 069CF288
[0019DD5C] = 00000000
[0019DD60] = 006BD836
[0019DD64] = 069DB410
[0019DD68] = 00000001
[0019DD6C] = 000036F8
[0019DD70] = 00000DCC
[0019DD74] = 00000002
[0019DD78] = 00262000
[0019DD7C] = FFFFFFFF
[0019DD80] = 0129A74C
[0019DD84] = 00000000
[0019DD88] = 07542678
[0019DD8C] = 00000000
[0019DD90] = 00000920
[0019DD94] = 0100037B
[0019DD98] = 00000000
[0019DD9C] = 01010000
[0019DDA0] = 00000024
[0019DDA4] = 00010003
[0019DDA8] = 00000008
[0019DDAC] = 0019DD6C
[0019DDB0] = 00000000
[0019DDB4] = 00010004
[0019DDB8] = 00000004
|
|
[复制链接]
发表于 2022-12-6 21:35
